Bug#770462: Unblock: pcl/1.7.2-3
Please find the debdiff attached. Cheers Jochen diff -Nru pcl-1.7.2/debian/changelog pcl-1.7.2/debian/changelog --- pcl-1.7.2/debian/changelog 2014-10-26 09:46:32.0 +0100 +++ pcl-1.7.2/debian/changelog 2014-11-18 14:41:54.0 +0100 @@ -1,3 +1,13 @@ +pcl (1.7.2-3) unstable; urgency=medium + + [ Jochen Sprickerhof ] + * Change openni-dev to libopenni, Closes: #768953 + * Build without OpenNI when it's not available. It opens +the number of architectures where it could be built. Closes: #769883 + * Fix PCLConfig.cmake (patch taken from Fedora). Closes: #770029 + + -- Leopold Palomo-Avellaneda l...@alaxarxa.net Tue, 11 Nov 2014 15:34:43 +0100 + pcl (1.7.2-2) unstable; urgency=medium [Leopold Palomo-Avellaneda] diff -Nru pcl-1.7.2/debian/control pcl-1.7.2/debian/control --- pcl-1.7.2/debian/control 2014-10-25 11:39:25.0 +0200 +++ pcl-1.7.2/debian/control 2014-11-11 15:29:20.0 +0100 @@ -19,7 +19,7 @@ libflann-dev, libvtk5-dev, libqhull-dev, - libopenni-dev, + libopenni-dev [i386 amd64], libqt4-opengl-dev, libusb-1.0-0-dev, freeglut3-dev, @@ -39,7 +39,7 @@ libflann-dev, libvtk5-dev, libqhull-dev, - libopenni-dev, + libopenni-dev [i386 amd64], libpcl1.7 (= ${binary:Version}), ${misc:Depends} Suggests: libpcl-doc diff -Nru pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch --- pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch 1970-01-01 01:00:00.0 +0100 +++ pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch 2014-11-11 15:29:20.0 +0100 @@ -0,0 +1,82 @@ +From 881e4cf919a86ebc58ab80b51ac5d154f3b8f82e Mon Sep 17 00:00:00 2001 +From: Emmanuel Durand emmanueldur...@gmail.com +Date: Thu, 25 Sep 2014 16:11:47 -0400 +Subject: [PATCH 1/3] Package names for OpenNI and OpenNI2 were wrong in cmake + modules and in output pkgconfig file + +--- + cmake/Modules/FindOpenNI.cmake | 4 ++-- + cmake/Modules/FindOpenNI2.cmake | 4 ++-- + io/CMakeLists.txt | 4 ++-- + visualization/CMakeLists.txt| 4 ++-- + 4 files changed, 8 insertions(+), 8 deletions(-) + +diff --git a/cmake/Modules/FindOpenNI.cmake b/cmake/Modules/FindOpenNI.cmake +index cb537be..9f772a4 100644 +--- a/cmake/Modules/FindOpenNI.cmake b/cmake/Modules/FindOpenNI.cmake +@@ -35,9 +35,9 @@ if(NOT WIN32) + endif(NOT WIN32) + + if(${CMAKE_VERSION} VERSION_LESS 2.8.2) +- pkg_check_modules(PC_OPENNI openni-dev) ++ pkg_check_modules(PC_OPENNI libopenni) + else() +- pkg_check_modules(PC_OPENNI QUIET openni-dev) ++ pkg_check_modules(PC_OPENNI QUIET libopenni) + endif() + + set(OPENNI_DEFINITIONS ${PC_OPENNI_CFLAGS_OTHER}) +diff --git a/cmake/Modules/FindOpenNI2.cmake b/cmake/Modules/FindOpenNI2.cmake +index 036e4e0..713099a 100644 +--- a/cmake/Modules/FindOpenNI2.cmake b/cmake/Modules/FindOpenNI2.cmake +@@ -35,9 +35,9 @@ if(NOT WIN32) + endif(NOT WIN32) + + if(${CMAKE_VERSION} VERSION_LESS 2.8.2) +- pkg_check_modules(PC_OPENNI2 openni2-dev) ++ pkg_check_modules(PC_OPENNI2 libopenni2) + else() +- pkg_check_modules(PC_OPENNI2 QUIET openni2-dev) ++ pkg_check_modules(PC_OPENNI2 QUIET libopenni2) + endif() + + set(OPENNI2_DEFINITIONS ${PC_OPENNI_CFLAGS_OTHER}) +diff --git a/io/CMakeLists.txt b/io/CMakeLists.txt +index 347f658..6106349 100644 +--- a/io/CMakeLists.txt b/io/CMakeLists.txt +@@ -329,10 +329,10 @@ if(build) + set(EXT_DEPS eigen3) + + if(OPENNI_FOUND) +- list(APPEND EXT_DEPS openni-dev) ++ list(APPEND EXT_DEPS libopenni) + endif(OPENNI_FOUND) + if(OPENNI2_FOUND) +- list(APPEND EXT_DEPS openni2-dev) ++ list(APPEND EXT_DEPS libopenni2) + endif(OPENNI2_FOUND) + + PCL_MAKE_PKGCONFIG(${LIB_NAME} ${SUBSYS_NAME} ${SUBSYS_DESC} +diff --git a/visualization/CMakeLists.txt b/visualization/CMakeLists.txt +index d7becc5..746a693 100644 +--- a/visualization/CMakeLists.txt b/visualization/CMakeLists.txt +@@ -154,10 +154,10 @@ if(build) + + set(EXT_DEPS ) + if(OPENNI_FOUND) +- list(APPEND EXT_DEPS openni-dev) ++ list(APPEND EXT_DEPS libopenni) + endif(OPENNI_FOUND) + if(OPENNI2_FOUND) +- list(APPEND EXT_DEPS openni2-dev) ++ list(APPEND EXT_DEPS libopenni2) + endif(OPENNI2_FOUND) + PCL_MAKE_PKGCONFIG(${LIB_NAME} ${SUBSYS_NAME} ${SUBSYS_DESC} + ${SUBSYS_DEPS} ${EXT_DEPS} ) +-- +2.1.3 + diff -Nru pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch --- pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch 1970-01-01 01:00:00.0 +0100 +++ pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch
Bug#771053: unblock: openni/1.5.4.0-8
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package openni The version in unstable fixes a serious bug in the config file handling: * Do not ship but generate {licenses,modules}.xml at install time * (Closes: #767653) The xml files are modified from plugin packages as well, which is a policy violation. The new version generated the files in the postinst script. Thanks for consideration! Cheers Jochen unblock openni/1.5.4.0-8 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 armhf Kernel: Linux 3.16.0-4-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru openni-1.5.4.0/debian/changelog openni-1.5.4.0/debian/changelog --- openni-1.5.4.0/debian/changelog 2014-02-25 17:30:30.0 +0100 +++ openni-1.5.4.0/debian/changelog 2014-11-25 20:11:55.0 +0100 @@ -1,3 +1,10 @@ +openni (1.5.4.0-8) unstable; urgency=medium + + * Do not ship but generate {licenses,modules}.xml at install time +(Closes: #767653) + + -- Jochen Sprickerhof deb...@jochen.sprickerhof.de Mon, 24 Nov 2014 22:33:38 +0100 + openni (1.5.4.0-7) unstable; urgency=low [ Jochen Sprickerhof ] diff -Nru openni-1.5.4.0/debian/control openni-1.5.4.0/debian/control --- openni-1.5.4.0/debian/control 2014-02-25 17:26:18.0 +0100 +++ openni-1.5.4.0/debian/control 2014-11-25 20:03:45.0 +0100 @@ -23,7 +23,8 @@ Architecture: any Pre-Depends: dpkg (= 1.15.7.2) Depends: ${shlibs:Depends}, - ${misc:Depends} + ${misc:Depends}, + openni-utils Recommends: libopenni-sensor-pointclouds0 | libopenni-sensor-primesense0 Conflicts: openni-dev Description: framework for sensor-based 'Natural Interaction' diff -Nru openni-1.5.4.0/debian/libopenni0.dirs openni-1.5.4.0/debian/libopenni0.dirs --- openni-1.5.4.0/debian/libopenni0.dirs 1970-01-01 01:00:00.0 +0100 +++ openni-1.5.4.0/debian/libopenni0.dirs 2014-11-24 21:58:21.0 +0100 @@ -0,0 +1 @@ +/var/lib/ni diff -Nru openni-1.5.4.0/debian/libopenni0.install openni-1.5.4.0/debian/libopenni0.install --- openni-1.5.4.0/debian/libopenni0.install 2014-02-25 17:26:06.0 +0100 +++ openni-1.5.4.0/debian/libopenni0.install 2014-11-25 20:03:45.0 +0100 @@ -1,4 +1,2 @@ Platform/Linux/Bin/*-Release/lib*.so.* usr/lib/ Data/SamplesConfig.xml etc/openni/ -debian/licenses.xml var/lib/ni/ -debian/modules.xml var/lib/ni/ diff -Nru openni-1.5.4.0/debian/libopenni0.postinst openni-1.5.4.0/debian/libopenni0.postinst --- openni-1.5.4.0/debian/libopenni0.postinst 2014-02-25 17:26:06.0 +0100 +++ openni-1.5.4.0/debian/libopenni0.postinst 2014-11-24 21:58:21.0 +0100 @@ -5,6 +5,26 @@ dpkg-maintscript-helper mv_conffile /etc/openni/modules.xml /var/lib/ni/modules.xml 1.5.4.0-7~ libopenni0 -- $@ dpkg-maintscript-helper mv_conffile /etc/openni/licenses.xml /var/lib/ni/licenses.xml 1.5.4.0-7~ libopenni0 -- $@ +MODULE_DIR=/usr/lib/ +MODULES=libnimMockNodes.so.0 libnimCodecs.so.0 libnimRecorder.so.0 + +case $1 in + configure) +# Fix for #767653 +if [ -n $2 ] dpkg --compare-versions $2 lt-nl 1.5.4.0-8; then + mv /var/lib/ni/licenses.xml.dpkg-old /var/lib/ni/licenses.xml + mv /var/lib/ni/modules.xml.dpkg-old /var/lib/ni/modules.xml +fi +# Only register upon fresh install +if [ -z $2 ]; then + niLicense PrimeSense 0KOIk2JeIBYClPWVnMoRKn5cdY4= + for module in $MODULES; do +niReg -r $MODULE_DIR/$module /etc/openni + done +fi +;; +esac + #DEBHELPER# exit 0 diff -Nru openni-1.5.4.0/debian/libopenni0.postrm openni-1.5.4.0/debian/libopenni0.postrm --- openni-1.5.4.0/debian/libopenni0.postrm 2014-02-25 17:26:06.0 +0100 +++ openni-1.5.4.0/debian/libopenni0.postrm 2014-11-24 21:58:21.0 +0100 @@ -5,6 +5,13 @@ dpkg-maintscript-helper mv_conffile /etc/openni/modules.xml /var/lib/ni/modules.xml 1.5.4.0-7~ libopenni0 -- $@ dpkg-maintscript-helper mv_conffile /etc/openni/licenses.xml /var/lib/ni/licenses.xml 1.5.4.0-7~ libopenni0 -- $@ +case $1 in + purge) +rm -f /var/lib/ni/modules.xml 2/dev/null +rm -f /var/lib/ni/licenses.xml 2/dev/null +;; +esac + #DEBHELPER# exit 0 diff -Nru openni-1.5.4.0/debian/libopenni0.preinst openni-1.5.4.0/debian/libopenni0.preinst --- openni-1.5.4.0/debian/libopenni0.preinst 2014-02-25 17:26:06.0 +0100 +++ openni-1.5.4.0/debian/libopenni0.preinst 2014-11-24 21:58:21.0 +0100 @@ -5,6 +5,15 @@ dpkg-maintscript-helper mv_conffile /etc/openni/modules.xml /var/lib/ni/modules.xml 1.5.4.0-7~ libopenni0 -- $@ dpkg-maintscript-helper mv_conffile /etc/openni/licenses.xml /var/lib/ni/licenses.xml 1.5.4.0-7~ libopenni0 -- $@ +case $1 in + upgrade) +# Fix for #767653 +if dpkg --compare-versions $2 lt 1.5.4.0-8
Bug#771053: unblock: openni/1.5.4.0-8
* Jonathan Wiltshire j...@debian.org [2014-11-26 22:19]: On Wed, Nov 26, 2014 at 12:06:18PM +0100, Jochen Sprickerhof wrote: +if [ -z $2 ]; then + niLicense PrimeSense 0KOIk2JeIBYClPWVnMoRKn5cdY4= Er, what's this and are we allowed to distribute it? Good point, it's actually needed for an other package (primesense-nite-nonfree) and I've filled a bug to resolve this: #771189. I guess we need an other package upload to resolve this, should I fill a new unblock request, once it's done? Cheers Jochen signature.asc Description: Digital signature
Bug#815400: transition: ros-ros-comm
Hi, Thanks for the quick confirmation. I've uploaded the package to unstable and pushed one rdepends which wouldn't build oherwise. Can someone start the binNMUs or do I need to do something else? Cheers Jochen signature.asc Description: PGP signature
Bug#815400: transition: ros-ros-comm
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, we want to transition librosconsole to link against log4cxx instead of an internal print version. librosconsole exports these symbols, so other packages depend on the choice and we can't simply switch it. We went for a Soname bump because it's Debian internal anyhow, as upstream declined to add one. The new version of ros-ros-comm is in experimental already. Ben file: title = "ros-ros-comm"; is_affected = .depends ~ "librosconsole0d" | .depends ~ "librosconsole1d"; is_good = .depends ~ "librosconsole1d"; is_bad = .depends ~ "librosconsole0d"; We are maintainer of all reverse dependencies and we did test rebuilds already and have all needed patches prepared. All rdepends are listed here: https://release.debian.org/transitions/html/auto-ros-ros-comm.html -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.3.0-1-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#836799: transition: ros-geometric-shapes
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, ros-geometric-shapes got a small ABI change I would like to transition. Only ros-robot-model is affected, which is also maintained by me. Cheers Jochen Ben file: title = "ros-geometric-shapes"; is_affected = .depends ~ /\b(libgeometric\-shapes0d)\b/ | .depends ~ /\b(libgeometric\-shapes1d)\b/; is_good = .depends ~ /\b(libgeometric\-shapes1d)\b/; is_bad = .depends ~ /\b(libgeometric\-shapes0d)\b/; -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.6.0-1-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#838625: transition: ros-robot-model
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, librosbag got a small ABI change I would like to do a transition for. Cheers Jochen Ben file: title = "ros-robot-model"; is_affected = .depends ~ "librosbag1d" | .depends ~ "librosbag2d"; is_good = .depends ~ "librosbag2d"; is_bad = .depends ~ "librosbag1d"; -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.6.0-1-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#844322: nmu: ros-rospack, ros-roscpp, ros-ros, ros-random-numbers
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, the recent upload of libgtest-dev broke catkin resulting in broken packages. ros-rospack build, but contains wrong files, the rest FTBFS. Thanks! Jochen nmu ros-rospack_2.3.1-1+b1 . armel kfreebsd-i386 kfreebsd-amd64 s390x powerpc arm64 i386 ppc64el amd64 x32 armhf . -m 'Rebuild against fixed catkin, see #844199.' gb ros-roscpp-core_0.6.1-1+b1 . arm64 ppc64el armhf armel s390x amd64 powerpc i386 kfreebsd-i386 x32 kfreebsd-amd64 gb ros-ros_1.13.4-1+b1 . armhf ppc64el kfreebsd-amd64 i386 arm64 x32 s390x powerpc amd64 kfreebsd-i386 armel gb ros-random-numbers_0.3.1-1+b2 . powerpc s390x amd64 ppc64el armhf arm64 x32 armel kfreebsd-i386 i386 kfreebsd-amd64 -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.7.0-1-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#842262: transition: ros-geometric-shapes
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, I would like to transition to the new ABI of libgeometric-shapes. The only effected package is ros-robot-model which I maintain as well. Cheers Jochen Ben file: title = "ros-geometric-shapes"; is_affected = .depends ~ "libgeometric-shapes1d" | .depends ~ "libgeometric-shapes2d"; is_good = .depends ~ "libgeometric-shapes2d"; is_bad = .depends ~ "libgeometric-shapes1d"; -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.7.0-1-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#843133: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, I would like to transition poco as it's tagged autorm and a number of my packages depend on it. Ben file: title = "poco"; is_affected = .depends ~ "libpoco*9v5" | .depends ~ "libpoco*46"; is_good = .depends ~ "libpoco*46"; is_bad = .depends ~ "libpoco*9v5"; -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.7.0-1-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#843133: transition: poco
* Emilio Pozuelo Monfort[2016-11-04 09:24]: > Do the rdeps build fine with the new version? Particularly note the recent > boost > 1.62 change, which affects a bunch of the rdeps. I tested all without problems (using Boost 1.62), except gpsshogi which FTBFS with gcc6 (#811689) and is flagged for removal (#840245). signature.asc Description: PGP signature
Bug#860892: nmu: pcl_1.8.0+dfsg1-3+b1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu pcl_1.8.0+dfsg1-3+b1 . ANY . stretch . -m "rebuild due to update of VTK/openmpi2 (Closes: #860775)" Dear release team, could you please trigger a rebuild of libpcl-dev to fix #860775 in stretch? Thanks! -- System Information: Debian Release: 9.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#868355: nmu: ceres-solver_1.12.0+dfsg0-1+b3
Hi Emilio, can you comment if requesting BinNMUs in such cases would be ok for the release team, or should we try find an other solution? Cheers Jochen * Anton Gladky[2017-07-19 17:59]: > Hi all, > > well, I would prefer to rebuild all reverse dependencies after > each new eigen3 (and probably any other header-only lib) > upload [1] and be ready to request it. But it looks like it is > not a common case to do such BinNMUs. > > [1] https://bugs.debian.org/845819 > > Regards > > Anton > > > 2017-07-19 8:35 GMT+02:00 Philipp Huebner : > > Hi, > > > > until I find the time to package the new release of Ceres Solver, > > please go ahead with the BinNMU. > > > > With Eigen3 being a header-only library and numeric math libraries > > making use of derivatives and templating like crazy, I believe this > > strict Eigen3 check to be well reasoned. > > > > I'll ask upstream about this, but expect them to confirm it. > > > > > > Regards, > > -- > > .''`. Philipp Huebner > > : :' : pgp fp: 6719 25C5 B8CD E74A 5225 3DF9 E5CA 8C49 25E4 205F > > `. `'` > > `- > > > signature.asc Description: PGP signature
Bug#871911: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition poco to the new ABI version available in experimental. I did test rebuilds of the reverse dependencies and found no problems. Thanks Jochen Ben file: title = "poco"; is_affected = .depends ~ /\b(libpococrypto46|libpocodata46|libpocodatamysql46|libpocodataodbc46|libpocodatasqlite46|libpocofoundation46|libpocomongodb46|libpoconet46|libpoconetssl46|libpocoutil46|libpocoxml46|libpocozip46)\b/ | .depends ~ /\b(libpococrypto48|libpocodata48|libpocodatamysql48|libpocodataodbc48|libpocodatasqlite48|libpocofoundation48|libpocomongodb48|libpoconet48|libpoconetssl48|libpocoutil48|libpocoxml48|libpocozip48)\b/; is_good = .depends ~ /\b(libpococrypto48|libpocodata48|libpocodatamysql48|libpocodataodbc48|libpocodatasqlite48|libpocofoundation48|libpocomongodb48|libpoconet48|libpoconetssl48|libpocoutil48|libpocoxml48|libpocozip48)\b/; is_bad = .depends ~ /\b(libpococrypto46|libpocodata46|libpocodatamysql46|libpocodataodbc46|libpocodatasqlite46|libpocofoundation46|libpocomongodb46|libpoconet46|libpoconetssl46|libpocoutil46|libpocoxml46|libpocozip46)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#868355: nmu: ceres-solver_1.12.0+dfsg0-1+b3
[adding Philipp and Anton as the respective maintainers] * Emilio Pozuelo Monfort <po...@debian.org> [2017-07-15 09:40]: > On 14/07/17 21:42, Jochen Sprickerhof wrote: > > Package: release.debian.org > > Severity: normal > > User: release.debian@packages.debian.org > > Usertags: binnmu > > > > Hi, > > > > please rebuild Ceres against the current Eigen3 version, as it encodes the > > version in the CeresConfig.cmake and makes Google Cartographer to file in > > cmake > > with: > > > > CMake Error at /usr/lib/cmake/ceres/CeresConfig.cmake:88 (message): > > Failed to find Ceres - Found Eigen dependency, but the version of Eigen > > found (3.3.4) does not exactly match the version of Eigen Ceres was > > compiled with (3.3.2). This can cause subtle bugs by triggering > > violations > > of the One Definition Rule. See the Wikipedia article > > http://en.wikipedia.org/wiki/One_Definition_Rule for more details > > Why do you need the same version at runtime than the one it was compiled with? > Multiple definitions doesn't sound like a good reason to me, as eigen and > ceres > shouldn't be defining things in the same namespace in the first place, thus > conflicts should be impossible. > > Sounds like a too strict check that should be removed. I think it's an actual problem not only in Ceres: http://eigen.tuxfamily.narkive.com/fweQWUaX/eigen-and-the-one-definition-rule At the moment Ceres is not usable in Debian unstable, so as a simple measure I would propose to do the binnmu. I'm not sure about a long term solution. I've looked into the Built-Using field [1]. But we would have to make sure that every package using Eigen adds this field and I have found nothing about recompiling every user automatically when a new Eigen version is uploaded. I assume it would be better to trigger a rebuild of all dependencies when Eigen is uploaded, but I'm not aware of an automatic mechanism in Debian to do that. Any ideas? Cheers Jochen [1] https://www.debian.org/doc/debian-policy/ch-relationships.html#s-built-using signature.asc Description: PGP signature
Bug#868355: nmu: ceres-solver_1.12.0+dfsg0-1+b3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, please rebuild Ceres against the current Eigen3 version, as it encodes the version in the CeresConfig.cmake and makes Google Cartographer to file in cmake with: CMake Error at /usr/lib/cmake/ceres/CeresConfig.cmake:88 (message): Failed to find Ceres - Found Eigen dependency, but the version of Eigen found (3.3.4) does not exactly match the version of Eigen Ceres was compiled with (3.3.2). This can cause subtle bugs by triggering violations of the One Definition Rule. See the Wikipedia article http://en.wikipedia.org/wiki/One_Definition_Rule for more details Thanks! Jochen nmu ceres-solver_1.12.0+dfsg0-1+b3 . ANY . unstable . -m "Rebuild against new libeigen3-dev" -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#861160: unblock: pcl/1.8.0+dfsg1-3+b2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, Please unblock package pcl. This would fix #860775 in stretch, which is a problem when using PCL/VTK with cmake. There is no debdiff, as it's only a binNMU, requested #860892. Thanks! Jochen unblock pcl/1.8.0+dfsg1-3+b2 -- System Information: Debian Release: 9.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#862036: unblock: pylama/7.3.3-1.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package pylama The new version is just a plain recompile to fix the dependencies, as reported in #856794. Debdiff attached. unblock pylama/7.3.3-1.1 -- System Information: Debian Release: 9.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru pylama-7.3.3/debian/changelog pylama-7.3.3/debian/changelog --- pylama-7.3.3/debian/changelog 2017-01-01 19:20:09.0 +0100 +++ pylama-7.3.3/debian/changelog 2017-05-06 17:38:42.0 +0200 @@ -1,3 +1,10 @@ +pylama (7.3.3-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Source only upload to dependencies (Closes: #856794). + + -- Jochen Sprickerhof <jspri...@debian.org> Sat, 06 May 2017 17:38:42 +0200 + pylama (7.3.3-1) unstable; urgency=medium * New upstream release.
Bug#861723: unblock: poco/1.7.6+dfsg1-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package poco I only added missing dependencies to fix the RC bug #861682. Thanks! debdiff attached. unblock poco/1.7.6+dfsg1-5 -- System Information: Debian Release: 9.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru poco-1.7.6+dfsg1/debian/changelog poco-1.7.6+dfsg1/debian/changelog --- poco-1.7.6+dfsg1/debian/changelog 2016-11-07 08:41:36.0 +0100 +++ poco-1.7.6+dfsg1/debian/changelog 2017-05-02 22:00:07.0 +0200 @@ -1,3 +1,9 @@ +poco (1.7.6+dfsg1-5) unstable; urgency=medium + + * Add missing dependencies (Closes: #861682) + + -- Jochen Sprickerhof <jspri...@debian.org> Tue, 02 May 2017 22:00:07 +0200 + poco (1.7.6+dfsg1-4) unstable; urgency=medium * Fix unit tests (Closes: #843225) diff -Nru poco-1.7.6+dfsg1/debian/control poco-1.7.6+dfsg1/debian/control --- poco-1.7.6+dfsg1/debian/control 2016-11-02 08:23:30.0 +0100 +++ poco-1.7.6+dfsg1/debian/control 2017-05-02 21:58:53.0 +0200 @@ -19,7 +19,7 @@ Package: libpoco-dev Section: libdevel Architecture: any -Depends: ${misc:Depends}, libpococrypto46 (= ${binary:Version}), libpocodata46 (= ${binary:Version}), libpocofoundation46 (= ${binary:Version}), libpocodatamysql46 (= ${binary:Version}), libpocomongodb46 (= ${binary:Version}), libpoconet46 (= ${binary:Version}), libpoconetssl46 (= ${binary:Version}), libpocodataodbc46 (= ${binary:Version}), libpocodatasqlite46 (= ${binary:Version}), libpocoutil46 (= ${binary:Version}), libpocoxml46 (= ${binary:Version}), libpocozip46 (= ${binary:Version}) +Depends: ${misc:Depends}, libpococrypto46 (= ${binary:Version}), libpocodata46 (= ${binary:Version}), libpocofoundation46 (= ${binary:Version}), libpocodatamysql46 (= ${binary:Version}), libpocomongodb46 (= ${binary:Version}), libpoconet46 (= ${binary:Version}), libpoconetssl46 (= ${binary:Version}), libpocodataodbc46 (= ${binary:Version}), libpocodatasqlite46 (= ${binary:Version}), libpocoutil46 (= ${binary:Version}), libpocoxml46 (= ${binary:Version}), libpocozip46 (= ${binary:Version}), libexpat1-dev, default-libmysqlclient-dev, libpcre3-dev, libsqlite3-dev, libssl-dev, zlib1g-dev Description: C++ Portable Components (POCO) Development files The POCO C++ Libraries are a collection of open source C++ class libraries that simplify and accelerate the development of network-centric, portable
Bug#861875: unblock: gflags/2.1.2-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gflags this would fix #858077 in stretch and would allow building cartographer with it. unblock gflags/2.1.2-4 -- System Information: Debian Release: 9.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/12 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru gflags-2.1.2/debian/changelog gflags-2.1.2/debian/changelog --- gflags-2.1.2/debian/changelog 2015-08-05 20:10:40.0 +0200 +++ gflags-2.1.2/debian/changelog 2017-03-18 10:06:03.0 +0100 @@ -1,3 +1,9 @@ +gflags (2.1.2-4) unstable; urgency=medium + + * Install CMake development files to the -dev package (closes: #858077). + + -- Laszlo Boszormenyi (GCS)Sat, 18 Mar 2017 09:06:03 + + gflags (2.1.2-3) unstable; urgency=medium * Rename library to libgflags2v5 for GCC 5 transition. diff -Nru gflags-2.1.2/debian/libgflags-dev.install gflags-2.1.2/debian/libgflags-dev.install --- gflags-2.1.2/debian/libgflags-dev.install 2015-03-26 01:35:45.0 +0100 +++ gflags-2.1.2/debian/libgflags-dev.install 2017-03-18 10:06:03.0 +0100 @@ -1,3 +1,4 @@ +usr/lib/*/cmake/gflags/ usr/include/ usr/lib/*/lib*.a usr/lib/*/lib*.so
Bug#875809: transition: ros-ros-comm
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, just a mini transition inside ROS. Cheers Jochen Ben file: title = "ros-ros-comm"; is_affected = .depends ~ /\b(librosbag\-storage1d|librosbag2d)\b/ | .depends ~ /\b(librosbag\-storage2d|librosbag3d)\b/; is_good = .depends ~ /\b(librosbag\-storage2d|librosbag3d)\b/; is_bad = .depends ~ /\b(librosbag\-storage1d|librosbag2d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#878187: nmu: simbody_3.5.4+dfsg-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu simbody_3.5.4+dfsg-1 . ANY . unstable . -m "recompile against multiarch lapack" Hi, lapack moved it's libraries to /usr/include/ in 3.7.1-2. As libsimbody-dev includes the full path in SimbodyConfig.cmake, please do an nmu to fix it. This currently brakes compilation of gazebo. Cheers Jochen -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#881330: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, I would like to transition the new poco release to unstable. I recompiled the reverse dependencies and found no problems. Note that the last upload to experimental failed to build on s390x because of a wonky unit test (it was compiling fine before). I will disable the test before uploading to unstable. Cheers Jochen Ben file: title = "poco"; is_affected = .depends ~ /\b(libpococrypto48|libpocodata48|libpocodatamysql48|libpocodataodbc48|libpocodatasqlite48|libpocofoundation48|libpocomongodb48|libpoconet48|libpoconetssl48|libpocoutil48|libpocoxml48|libpocozip48)\b/ | .depends ~ /\b(libpococrypto49|libpocodata49|libpocodatamysql49|libpocodataodbc49|libpocodatasqlite49|libpocofoundation49|libpocomongodb49|libpoconet49|libpoconetssl49|libpocoutil49|libpocoxml49|libpocozip49)\b/; is_good = .depends ~ /\b(libpococrypto49|libpocodata49|libpocodatamysql49|libpocodataodbc49|libpocodatasqlite49|libpocofoundation49|libpocomongodb49|libpoconet49|libpoconetssl49|libpocoutil49|libpocoxml49|libpocozip49)\b/; is_bad = .depends ~ /\b(libpococrypto48|libpocodata48|libpocodatamysql48|libpocodataodbc48|libpocodatasqlite48|libpocofoundation48|libpocomongodb48|libpoconet48|libpoconetssl48|libpocoutil48|libpocoxml48|libpocozip48)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.13.0-1-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#881330: transition: poco
* Emilio Pozuelo Monfort[2017-11-10 08:19]: I would like to transition the new poco release to unstable. I recompiled the reverse dependencies and found no problems. Note that the last upload to experimental failed to build on s390x because of a wonky unit test (it was compiling fine before). I will disable the test before uploading to unstable. Go ahead. And just now there is a new upstream release fixing #856192, but would need to go through new again. I'm working on the packing it and will upload it to new (and experimental) soon. As nothing was rebuild till now, we could put this on hold, or do an other transition soon, whatever you prefer. Cheers Jochen signature.asc Description: PGP signature
Bug#881330: transition: poco
I've finished testing and the new poco is in experimental. Would it be ok to upload it to unstable, to transition directly to that one? The new Ben file would be: title = "poco"; is_affected = .depends ~ /\b(libpococrypto48|libpocodata48|libpocodatamysql48|libpocodataodbc48|libpocodatasqlite48|libpocofoundation48|libpocomongodb48|libpoconet48|libpoconetssl48|libpocoutil48|libpocoxml48|libpocozip48)\b/ | .depends ~ /\b(libpococrypto49|libpocodata49|libpocodatamysql49|libpocodataodbc49|libpocodatasqlite49|libpocofoundation49|libpocomongodb49|libpoconet49|libpoconetssl49|libpocoutil49|libpocoxml49|libpocozip49)\b/ | .depends ~ /\b(libpococrypto50|libpocodata50|libpocodatamysql50|libpocodataodbc50|libpocodatasqlite50|libpocofoundation50|libpocomongodb50|libpoconet50|libpoconetssl50|libpocoutil50|libpocoxml50|libpocozip50)\b/; is_good = .depends ~ /\b(libpococrypto50|libpocodata50|libpocodatamysql50|libpocodataodbc50|libpocodatasqlite50|libpocofoundation50|libpocomongodb50|libpoconet50|libpoconetssl50|libpocoutil50|libpocoxml50|libpocozip50)\b/; is_bad = .depends ~ /\b(libpococrypto48|libpocodata48|libpocodatamysql48|libpocodataodbc48|libpocodatasqlite48|libpocofoundation48|libpocomongodb48|libpoconet48|libpoconetssl48|libpocoutil48|libpocoxml48|libpocozip48)\b/ | .depends ~ /\b(libpococrypto49|libpocodata49|libpocodatamysql49|libpocodataodbc49|libpocodatasqlite49|libpocofoundation49|libpocomongodb49|libpoconet49|libpoconetssl49|libpocoutil49|libpocoxml49|libpocozip49)\b/; signature.asc Description: PGP signature
Bug#898006: stretch-pu: package pcl/1.8.0+dfsg1-3
Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Dear release team, in #894656 I was asked to add libvtk6-qt-dev as a dependency to libpcl-dev in stretch. I would like to do this, except for armel and armhf which fails due to OpenGLES, cf. #835292. The resulting debdiff is attached. Thanks for consideration Jochen diff -Nru pcl-1.8.0+dfsg1/debian/changelog pcl-1.8.0+dfsg1/debian/changelog --- pcl-1.8.0+dfsg1/debian/changelog2016-09-04 07:30:23.0 + +++ pcl-1.8.0+dfsg1/debian/changelog2018-05-05 12:52:44.0 + @@ -1,3 +1,9 @@ +pcl (1.8.0+dfsg1-4+deb9u1) stretch; urgency=medium + + * Add dependency to libvtk6-qt-dev (Closes: #894656) + + -- Jochen Sprickerhof <jspri...@debian.org> Sat, 05 May 2018 14:52:44 +0200 + pcl (1.8.0+dfsg1-3) unstable; urgency=medium * Disable QT on arm (Closes: #835292) diff -Nru pcl-1.8.0+dfsg1/debian/control pcl-1.8.0+dfsg1/debian/control --- pcl-1.8.0+dfsg1/debian/control 2016-09-04 07:22:11.0 + +++ pcl-1.8.0+dfsg1/debian/control 2018-05-05 12:52:44.0 + @@ -40,6 +40,7 @@ libflann-dev, libvtk6-dev, libqhull-dev, +libvtk6-qt-dev [!armel !armhf], libopenni-dev [!s390x !alpha !hppa !hurd-i386 !kfreebsd-any !m68k !sh4 !sparc64], libopenni2-dev [!armel !hppa !hurd-i386 !kfreebsd-any !m68k !powerpcspe], libpcl-apps1.8 (= ${binary:Version}),
Bug#898044: transition: orocos-kdl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition orocos-kdl. There are only two packages depending on it, which I both maintain as well. Note that one of them, ros-geometry, is currently blocked to transition due to a problem in ros-metapackages I fixed yesterday. Give that ros-geometry solves quite a number of bugs, I would propose to either upload orocos-kdl soon or after the new ros-geometry hit testing. Whatever you think would work better. Cheers Jochen Ben file: title = "orocos-kdl"; is_affected = .depends ~ /\b(liborocos\-kdl1\.3)\b/ | .depends ~ /\b(liborocos\-kdl1\.4|python3\-pykdl)\b/; is_good = .depends ~ /\b(liborocos\-kdl1\.4|python3\-pykdl)\b/; is_bad = .depends ~ /\b(liborocos\-kdl1\.3)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.16.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#899146: transition: orocos-kdl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, there was a bug in liborocos-kdl-dev exposing the Soversion in the cmake file of the reverse build dependencies (#898883). This should be fixed in 1.4.0-4. Could you please schedule binNMUs for all the reverse build dependencies? Thanks Jochen P.S.: I hope this is the right way to request this, please redirect me otherwise. -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.16.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#901815: transition: ros-geometry
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition ros-geometry. I will take care of any build failures, as I'm maintaining all packages involved. Cheers Jochen Ben file: title = "ros-geometry"; is_affected = .depends ~ /\b(libtf0d)\b/ | .depends ~ /\b(libtf1d)\b/; is_good = .depends ~ /\b(libtf1d)\b/; is_bad = .depends ~ /\b(libtf0d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.16.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#900263: transition: ros-geometry2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition ros-geometry2 to unstable. Cheers Jochen Ben file: title = "ros-geometry2"; is_affected = .depends ~ /\b(libtf2\-0d)\b/ | .depends ~ /\b(libtf2\-1d)\b/; is_good = .depends ~ /\b(libtf2\-1d)\b/; is_bad = .depends ~ /\b(libtf2\-0d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.15.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#901974: transition: ros-class-loader
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition ros-class-loader. I'm maintaining all depending packages and will take care of any problems. Cheers Jochen Ben file: title = "ros-class-loader"; is_affected = .depends ~ /\b(libclass\-loader0d)\b/ | .depends ~ /\b(libclass\-loader1d)\b/; is_good = .depends ~ /\b(libclass\-loader1d)\b/; is_bad = .depends ~ /\b(libclass\-loader0d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.16.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#902867: transition: ros-ros-comm
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition ros-ros-comm. I'm maintaining all depending packages, so I will take care of any problems. Note that the ben file on the website¹ seems somehow wrong, so I defined a different set below. Hope that's right. Context was that I pulled one package (ros-rosconsole) out of ros-ros-comm and also had one intermediate experimental release in the meantime, maybe that produced a hickup. Cheers Jochen ¹: https://release.debian.org/transitions/html/auto-ros-ros-comm.html Ben file: title = "ros-ros-comm"; is_affected = .depends ~ /\b(librosbag-storage2d|libroscpp1d|libxmlrpcpp1d)\b/ | .depends ~ /\b(librosbag-storage3d|libroscpp2d|libxmlrpcpp2d)\b/; is_good = .depends ~ /\b(librosbag-storage3d|libroscpp2d|libxmlrpcpp2d)\b/; is_bad = .depends ~ /\b(librosbag-storage2d|libroscpp1d|libxmlrpcpp1d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.16.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#886354: transition: ros-bond-core
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition ros-bond-core to unstable. I tested the reverse dependencies and found no problems. Cheers Jochen Ben file: title = "ros-bond-core"; is_affected = .depends ~ /\b(libbondcpp0d)\b/ | .depends ~ /\b(libbondcpp1d)\b/; is_good = .depends ~ /\b(libbondcpp1d)\b/; is_bad = .depends ~ /\b(libbondcpp0d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf Kernel: Linux 4.12.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#868355: nmu: ceres-solver_1.12.0+dfsg0-1+b3
Hi Julien, * Julien Cristau[2017-12-02 19:46]: I don't think the release team is willing to routinely do this without understanding why we're doing it, so an explanation for why these would be necessary is welcome. I gave some insides in this same bug in https://bugs.debian.org/868355#15. Can you be more specific if you need more information? Thanks and Cheers Jochen signature.asc Description: PGP signature
Bug#868355: nmu: ceres-solver_1.12.0+dfsg0-1+b3
Hi Emilio, * Emilio Pozuelo Monfort[2017-12-27 10:25]: Now, it'd be a different case if your project exposed part of the Eigen ABI, and given there's no shared library, there can't be a SONAME bump so the only way to ensure there are no ABI mismatches is to ensure all projects are built with the same Eigen version. That's the case for Ceres and PCL. The headers and shared objects shows numerous references to Eigen. BTW I was going to schedule this binNMU for the time being in order to have a working ceres-solver, but it seems there was an upload since this request was opened. Do you need a binNMU now? If so I'll schedule it. Otherwise let's continue this conversation to clarify whether these binNMUs are required or they could be prevented. Ceres was, but if you could schedule one for pcl, that would be great. And yes, let's use this Bug to continue the discussion. Cheers Jochen signature.asc Description: PGP signature
Bug#902034: transition: ros-geometric-shapes
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition ros-geometric-shapes. It's only a dependency of ros-robot-model, which I'm maintaining as well. Cheers Jochen Ben file: title = "ros-geometric-shapes"; is_affected = .depends ~ /\b(libgeometric\-shapes2d)\b/ | .depends ~ /\b(libgeometric\-shapes3d)\b/; is_good = .depends ~ /\b(libgeometric\-shapes3d)\b/; is_bad = .depends ~ /\b(libgeometric\-shapes2d)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.16.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#903697: nmu: ros-geometry2_0.6.2-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Due to being stuck in new due to the transition, this was build against the old ros-ros-comm, can you please schedule a rebuild? Thanks! nmu ros-geometry2_0.6.2-6 . amd64 . unstable . -m "Rebuild against ros-ros-comm 1.14.2." -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.16.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#895006: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition poco to unstable. Changes where rather small, so I don't expect any blockers. Cheers Jochen Ben file: title = "poco"; is_affected = .depends ~ /\b(libpococrypto51|libpocodata51|libpocodatamysql51|libpocodataodbc51|libpocodatasqlite51|libpocofoundation51|libpocojson51|libpocomongodb51|libpoconet51|libpoconetssl51|libpocoredis51|libpocoutil51|libpocoxml51|libpocozip51)\b/ | .depends ~ /\b(libpococrypto60|libpocodata60|libpocodatamysql60|libpocodataodbc60|libpocodatasqlite60|libpocoencodings60|libpocofoundation60|libpocojson60|libpocomongodb60|libpoconet60|libpoconetssl60|libpocoredis60|libpocoutil60|libpocoxml60|libpocozip60)\b/; is_good = .depends ~ /\b(libpococrypto60|libpocodata60|libpocodatamysql60|libpocodataodbc60|libpocodatasqlite60|libpocoencodings60|libpocofoundation60|libpocojson60|libpocomongodb60|libpoconet60|libpoconetssl60|libpocoredis60|libpocoutil60|libpocoxml60|libpocozip60)\b/; is_bad = .depends ~ /\b(libpococrypto51|libpocodata51|libpocodatamysql51|libpocodataodbc51|libpocodatasqlite51|libpocofoundation51|libpocojson51|libpocomongodb51|libpoconet51|libpoconetssl51|libpocoredis51|libpocoutil51|libpocoxml51|libpocozip51)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.15.0-2-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#891876: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition poco to the new version. The changes where rather small, so I don't expect any problems. Cheers Jochen Ben file: title = "poco"; is_affected = .depends ~ /\b(libpococrypto50|libpocodata50|libpocodatamysql50|libpocodataodbc50|libpocodatasqlite50|libpocofoundation50|libpocojson50|libpocomongodb50|libpoconet50|libpoconetssl50|libpocoredis50|libpocoutil50|libpocoxml50|libpocozip50)\b/ | .depends ~ /\b(libpococrypto51|libpocodata51|libpocodatamysql51|libpocodataodbc51|libpocodatasqlite51|libpocofoundation51|libpocojson51|libpocomongodb51|libpoconet51|libpoconetssl51|libpocoredis51|libpocoutil51|libpocoxml51|libpocozip51)\b/; is_good = .depends ~ /\b(libpococrypto51|libpocodata51|libpocodatamysql51|libpocodataodbc51|libpocodatasqlite51|libpocofoundation51|libpocojson51|libpocomongodb51|libpoconet51|libpoconetssl51|libpocoredis51|libpocoutil51|libpocoxml51|libpocozip51)\b/; is_bad = .depends ~ /\b(libpococrypto50|libpocodata50|libpocodatamysql50|libpocodataodbc50|libpocodatasqlite50|libpocofoundation50|libpocojson50|libpocomongodb50|libpoconet50|libpoconetssl50|libpocoredis50|libpocoutil50|libpocoxml50|libpocozip50)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: armhf (armv7l) Kernel: Linux 4.14.0-3-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#909273: nmu: ros-rosconsole_1.13.7-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu ros-rosconsole_1.13.7-1 . amd64 . unstable . -m "clean rebuild" Hi release team, look like my build setup wasn't clean when I build this (or something else changed while this was sitting in new). It was reported to be broken in https://lists.debian.org/debian-science/2018/09/msg00045.html And I confirmed it on my local amd64 machine. I tested it on armhf (buildd build) as well and it was working there. So I assume only amd64 is affected. Thanks Jochen -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.18.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#916744: transition: pcl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi, I would like to transition the new PCL to unstable. Ben only lists python-pcl, which I tested already and will upload a fixed version manually. But also there is ros-pcl-conversions build depending and integrating it. It compiles with the new version and I will request a binNMU for it. Cheers Jochen Ben file: title = "pcl"; is_affected = .depends ~ /\b(libpcl\-apps1\.8|libpcl\-common1\.8|libpcl\-features1\.8|libpcl\-filters1\.8|libpcl\-io1\.8|libpcl\-kdtree1\.8|libpcl\-keypoints1\.8|libpcl\-ml1\.8|libpcl\-octree1\.8|libpcl\-outofcore1\.8|libpcl\-people1\.8|libpcl\-recognition1\.8|libpcl\-registration1\.8|libpcl\-sample\-consensus1\.8|libpcl\-search1\.8|libpcl\-segmentation1\.8|libpcl\-stereo1\.8|libpcl\-surface1\.8|libpcl\-tracking1\.8|libpcl\-visualization1\.8)\b/ | .depends ~ "\b(libpcl\-apps1\.9|libpcl\-common1\.9|libpcl\-features1\.9|libpcl\-filters1\.9|libpcl\-io1\.9|libpcl\-kdtree1\.9|libpcl\-keypoints1\.9|libpcl\-ml1\.9|libpcl\-octree1\.9|libpcl\-outofcore1\.9|libpcl\-people1\.9|libpcl\-recognition1\.9|libpcl\-registration1\.9|libpcl\-sample\-consensus1\.9|libpcl\-search1\.9|libpcl\-segmentation1\.9|libpcl\-stereo1\.9|libpcl\-surface1\.9|libpcl\-tracking1\.9|libpcl\-visualization1\.9)\b/"; is_good = .depends ~ "\b(libpcl\-apps1\.9|libpcl\-common1\.9|libpcl\-features1\.9|libpcl\-filters1\.9|libpcl\-io1\.9|libpcl\-kdtree1\.9|libpcl\-keypoints1\.9|libpcl\-ml1\.9|libpcl\-octree1\.9|libpcl\-outofcore1\.9|libpcl\-people1\.9|libpcl\-recognition1\.9|libpcl\-registration1\.9|libpcl\-sample\-consensus1\.9|libpcl\-search1\.9|libpcl\-segmentation1\.9|libpcl\-stereo1\.9|libpcl\-surface1\.9|libpcl\-tracking1\.9|libpcl\-visualization1\.9)\b/"; is_bad = .depends ~ /\b(libpcl\-apps1\.8|libpcl\-common1\.8|libpcl\-features1\.8|libpcl\-filters1\.8|libpcl\-io1\.8|libpcl\-kdtree1\.8|libpcl\-keypoints1\.8|libpcl\-ml1\.8|libpcl\-octree1\.8|libpcl\-outofcore1\.8|libpcl\-people1\.8|libpcl\-recognition1\.8|libpcl\-registration1\.8|libpcl\-sample\-consensus1\.8|libpcl\-search1\.8|libpcl\-segmentation1\.8|libpcl\-stereo1\.8|libpcl\-surface1\.8|libpcl\-tracking1\.8|libpcl\-visualization1\.8)\b/; -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.18.0-1-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#898006: stretch-pu: package pcl/1.8.0+dfsg1-3
Hi Julien, * Julien Cristau [2018-12-03 08:16]: On Sat, May 05, 2018 at 06:38:25PM +0200, Jochen Sprickerhof wrote: Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Dear release team, in #894656 I was asked to add libvtk6-qt-dev as a dependency to libpcl-dev in stretch. I would like to do this, except for armel and armhf which fails due to OpenGLES, cf. #835292. Is there anything different about libpcl itself that makes it not need vtk on arm{el,hf}? If not that smells fishy to me. pcl wasn't compiled against libvtk6-qt-dev on armel/hf: https://sources.debian.org/src/pcl/stable/debian/control/#L27 That's bug #835292 I mentioned above. Cheers Jochen signature.asc Description: PGP signature
Bug#926510: unblock: python-scales/1.0.9-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package python-scales Changed the build dependency from the transitional python-tox to tox. Updated metadata. Diff attached. unblock python-scales/1.0.9-2 -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.19.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff --git a/debian/changelog b/debian/changelog index 1287ad4..316882a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,15 @@ +python-scales (1.0.9-2) unstable; urgency=medium + + [ Ondřej Nový ] + * d/control: Remove ancient X-Python-Version field + * d/control: Remove ancient X-Python3-Version field + * d/copyright: Use https protocol in Format field + + [ Christian Ehrhardt ] + * d/control: follow tox transition to fix FTBFS (Closes: #924798) + + -- Jochen Sprickerhof Fri, 05 Apr 2019 21:50:34 +0200 + python-scales (1.0.9-1) unstable; urgency=low * Initial release (Closes: #810263) diff --git a/debian/control b/debian/control index 38fa52a..8bb5d82 100644 --- a/debian/control +++ b/debian/control @@ -9,17 +9,15 @@ Build-Depends-Indep: python-nose, python-setuptools (>= 0.6b3), python-six, - python-tox, + tox, python3-all, python3-nose, python3-setuptools, python3-six, Standards-Version: 3.9.6 Homepage: https://www.github.com/Cue/scales -X-Python-Version: >= 2.7 -X-Python3-Version: >= 3.2 -Vcs-Git: git://anonscm.debian.org/collab-maint/python-scales.git -Vcs-Browser: https://anonscm.debian.org/gitweb/?p=collab-maint/python-scales.git;a=summary +Vcs-Git: https://salsa.debian.org/debian/python-scales.git +Vcs-Browser: https://salsa.debian.org/debian/python-scales Package: python-scales Architecture: all diff --git a/debian/copyright b/debian/copyright index daf7247..d9e2bb6 100644 --- a/debian/copyright +++ b/debian/copyright @@ -1,4 +1,4 @@ -Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ +Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ Upstream-Name: python-scales Source: https://github.com/Cue/scales
Bug#930998: RM: ompl/1.4.2+ds1-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hi release team, as discussed with ivodd in #debian-release I request to remove ompl from testing (buster), as a debian-science team member. Reason: The package in testing is RC buggy with #930507. Leo pushed a new -3 revision over a week ago to unstable but expressed in https://lists.debian.org/debian-release/2019/06/msg00526.html that he is not 'very happy with the patches'. After discussing the state in #debian-release today, I had a look at the -3 version and tested it using http://ompl.kavrakilab.org/RigidBodyPlanningWithIntegrationAndControls_8cpp_source.html and g++ $(pkg-config --cflags --libs ompl) -o RigidBodyPlanningWithIntegrationAndControls RigidBodyPlanningWithIntegrationAndControls.cpp I found that that libompl-dev was still missing dependencies, i.e. libode-dev and boost. Given that the deadline for change in buster passed and the package would need more review to get fixed, I propose to drop it from the buster release. Cheers Jochen -- System Information: Debian Release: 10.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#929231: unblock: vit/1.3~beta1-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package vit Added missing runtime dependencies to make it usable out of the box. I updated some meta data along the lines, hope that's fine. Diff attached. unblock vit/1.3~beta1-3 -- System Information: Debian Release: 10.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff --git a/debian/changelog b/debian/changelog index 53317b4..cdda572 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +vit (1.3~beta1-3) unstable; urgency=medium + + * Team upload. + * Update metadata (priority, URLs, watch) + * Add missing runtime dependencies (Closes: #929230) + + -- Jochen Sprickerhof Sun, 19 May 2019 19:33:55 +0200 + vit (1.3~beta1-2) unstable; urgency=medium * Makes build reproducible using UTC for timestamp (Closes: #918534) diff --git a/debian/control b/debian/control index b441b64..c8fd04c 100644 --- a/debian/control +++ b/debian/control @@ -3,15 +3,15 @@ Maintainer: Debian Tasktools Packaging Team Uploaders: Iain R. Learmonth , Alejandro Garrido Mota Section: utils -Priority: extra +Priority: optional Build-Depends: debhelper (>= 9), autotools-dev, libcurses-perl, taskwarrior Standards-Version: 3.9.8 -Vcs-Browser: https://anonscm.debian.org/cgit/pkg-tasktools/vit.git -Vcs-Git: https://anonscm.debian.org/git/pkg-tasktools/vit.git -Homepage: https://tasktools.org/projects/vit.html +Vcs-Browser: https://salsa.debian.org/tasktools-team/vit +Vcs-Git: https://salsa.debian.org/tasktools-team/vit.git +Homepage: https://github.com/scottkosty/vit Package: vit Architecture: all @@ -19,6 +19,8 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, ${perl:Depends}, libcurses-perl, + libtext-charwidth-perl, + libtry-tiny-perl, taskwarrior Description: full-screen terminal interface for Taskwarrior A minimalistic Taskwarrior full-screen terminal interface with Vim key diff --git a/debian/watch b/debian/watch index 4debd75..6b1ae8b 100644 --- a/debian/watch +++ b/debian/watch @@ -1,2 +1,4 @@ -version=3 -http://tasktools.org/ .*vit-(.*)\.(?:zip|tgz|tbz|txz|(?:tar\.(?:gz|bz2|xz))) +version=4 +opts="filenamemangle=s%(?:.*?)?v?(\d[\d.]*)\.tar\.gz%vit-$1.tar.gz%" \ +https://github.com/scottkosty/vit/tags \ +(?:.*?/)?v?(\d[\d.]*)\.tar\.gz debian uupdate
Bug#928295: unblock: pythonmagick/0.9.19-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package pythonmagick pythonmagick was patched to compile with ImageMagick 7 in 0.9.19-1 whereas buster is still on 6. This resulted the package failing to import, see #928103 (missed to close this in the changelog). I disabled the autopkgtest as it was failing because autopep8 doesn't support module names different to packages names. unblock pythonmagick/0.9.19-3 -- System Information: Debian Release: 10.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.19.0-4-armmp (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff --git a/debian/changelog b/debian/changelog index 9a93a17..a20d793 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +pythonmagick (0.9.19-3) unstable; urgency=medium + + * Team upload. + * Disable failing autopkgtest + * Add patch for ImageMagick < 7 + + -- Jochen Sprickerhof Wed, 01 May 2019 14:45:43 +0200 + pythonmagick (0.9.19-2) unstable; urgency=medium * Fix debci diff --git a/debian/control b/debian/control index 4bbea2f..e3795c1 100644 --- a/debian/control +++ b/debian/control @@ -22,7 +22,6 @@ Build-Depends: python3-setuptools Standards-Version: 4.3.0 Homepage: http://www.imagemagick.org -Testsuite: autopkgtest-pkg-python Package: python-pythonmagick Architecture: any diff --git a/debian/patches/0002-Partly-revert-f4772d8-for-ImageMagick-7.patch b/debian/patches/0002-Partly-revert-f4772d8-for-ImageMagick-7.patch new file mode 100644 index 000..25d9e84 --- /dev/null +++ b/debian/patches/0002-Partly-revert-f4772d8-for-ImageMagick-7.patch @@ -0,0 +1,110 @@ +From 0c0e1e9a038d7e9f79f567714ab5054c9345 Mon Sep 17 00:00:00 2001 +From: Jochen Sprickerhof +Date: Wed, 1 May 2019 12:28:12 +0200 +Subject: [PATCH] Partly revert f4772d8 for ImageMagick < 7 + +--- + PythonMagick/__init__.py | 8 + pythonmagick_src/_main.cpp | 16 + 2 files changed, 12 insertions(+), 12 deletions(-) + +diff --git a/PythonMagick/__init__.py b/PythonMagick/__init__.py +index 61ba8d4..6750c2e 100644 +--- a/PythonMagick/__init__.py b/PythonMagick/__init__.py +@@ -51,10 +51,10 @@ class DrawableColor(_PythonMagick.DrawableColor): + class DrawableCompositeImage(_PythonMagick.DrawableCompositeImage): +pass + +-class DrawableStrokeDashArray(_PythonMagick.DrawableStrokeDashArray): ++class DrawableDashArray(_PythonMagick.DrawableDashArray): +pass + +-class DrawableStrokeDashOffset(_PythonMagick.DrawableStrokeDashOffset): ++class DrawableDashOffset(_PythonMagick.DrawableDashOffset): +pass + + class DrawableEllipse(_PythonMagick.DrawableEllipse): +@@ -78,7 +78,7 @@ class DrawableGravity(_PythonMagick.DrawableGravity): + class DrawableLine(_PythonMagick.DrawableLine): +pass + +-class DrawableAlpha(_PythonMagick.DrawableAlpha): ++class DrawableMatte(_PythonMagick.DrawableMatte): +pass + + class DrawableMiterLimit(_PythonMagick.DrawableMiterLimit): +@@ -174,7 +174,7 @@ class DrawableViewbox(_PythonMagick.DrawableViewbox): + class Exception(_PythonMagick.Exception): +pass + +-class FilterType(_PythonMagick.FilterType): ++class FilterTypes(_PythonMagick.FilterTypes): +pass + + class Geometry(_PythonMagick.Geometry): +diff --git a/pythonmagick_src/_main.cpp b/pythonmagick_src/_main.cpp +index a7d3cce..449f0b1 100644 +--- a/pythonmagick_src/_main.cpp b/pythonmagick_src/_main.cpp +@@ -30,7 +30,7 @@ void Export_pyste_src_PathArcAbs(); + void Export_pyste_src_Image(); + void Export_pyste_src_GravityType(); + void Export_pyste_src_Geometry(); +-void Export_pyste_src_FilterType(); ++void Export_pyste_src_FilterTypes(); + void Export_pyste_src_Exception(); + void Export_pyste_src_DrawableViewbox(); + void Export_pyste_src_DrawableTranslation(); +@@ -62,7 +62,7 @@ void Export_pyste_src_DrawablePointSize(); + void Export_pyste_src_DrawablePoint(); + void Export_pyste_src_DrawablePath(); + void Export_pyste_src_DrawableMiterLimit(); +-void Export_pyste_src_DrawableAlpha(); ++void Export_pyste_src_DrawableMatte(); + void Export_pyste_src_DrawableLine(); + void Export_pyste_src_DrawableGravity(); + void Export_pyste_src_DrawableFont(); +@@ -70,8 +70,8 @@ void Export_pyste_src_DrawableFillRule(); + void Export_pyste_src_DrawableFillOpacity(); + void Export_pyste_src_DrawableFillColor(); + void Export_pyste_src_DrawableEllipse(); +-void Export_pyste_src_DrawableStrokeDashOffset(); +-void Export_pyste_src_DrawableStrokeDashArray(); ++void Export_pyste_src_DrawableDashOffset(); ++void Export_pyste_src_DrawableDashArray(); + void Export_pyste_src_DrawableCompositeImage(); + void Export_pyste_src_DrawableColor(); + void Export_pyste_src_DrawableClipPath(); +@@ -119,7
Bug#928295: unblock: pythonmagick/0.9.19-3
Control: tag -1 - moreinfo * Paul Gevers [2019-05-01 15:29]: pythonmagick was patched to compile with ImageMagick 7 in 0.9.19-1 whereas buster is still on 6. This resulted the package failing to import, see #928103 (missed to close this in the changelog). I disabled the autopkgtest as it was failing because autopep8 doesn't support module names different to packages names. How about generating a superficial test that does the same as autodep8 (I like your typo) but with the right module name for now? The rest looks good to me. There was one already, but it failed as well. I uploaded a fixed version in -4. Diff against the version in buster attached. diff --git a/debian/changelog b/debian/changelog index 9a93a17..348c161 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,18 @@ +pythonmagick (0.9.19-4) unstable; urgency=medium + + * Team upload. + * Fix autopkgtests + + -- Jochen Sprickerhof Wed, 01 May 2019 20:33:19 +0200 + +pythonmagick (0.9.19-3) unstable; urgency=medium + + * Team upload. + * Disable failing autopkgtest + * Add patch for ImageMagick < 7 + + -- Jochen Sprickerhof Wed, 01 May 2019 14:45:43 +0200 + pythonmagick (0.9.19-2) unstable; urgency=medium * Fix debci diff --git a/debian/patches/0002-Partly-revert-f4772d8-for-ImageMagick-7.patch b/debian/patches/0002-Partly-revert-f4772d8-for-ImageMagick-7.patch new file mode 100644 index 000..25d9e84 --- /dev/null +++ b/debian/patches/0002-Partly-revert-f4772d8-for-ImageMagick-7.patch @@ -0,0 +1,110 @@ +From 0c0e1e9a038d7e9f79f567714ab5054c9345 Mon Sep 17 00:00:00 2001 +From: Jochen Sprickerhof +Date: Wed, 1 May 2019 12:28:12 +0200 +Subject: [PATCH] Partly revert f4772d8 for ImageMagick < 7 + +--- + PythonMagick/__init__.py | 8 + pythonmagick_src/_main.cpp | 16 + 2 files changed, 12 insertions(+), 12 deletions(-) + +diff --git a/PythonMagick/__init__.py b/PythonMagick/__init__.py +index 61ba8d4..6750c2e 100644 +--- a/PythonMagick/__init__.py b/PythonMagick/__init__.py +@@ -51,10 +51,10 @@ class DrawableColor(_PythonMagick.DrawableColor): + class DrawableCompositeImage(_PythonMagick.DrawableCompositeImage): +pass + +-class DrawableStrokeDashArray(_PythonMagick.DrawableStrokeDashArray): ++class DrawableDashArray(_PythonMagick.DrawableDashArray): +pass + +-class DrawableStrokeDashOffset(_PythonMagick.DrawableStrokeDashOffset): ++class DrawableDashOffset(_PythonMagick.DrawableDashOffset): +pass + + class DrawableEllipse(_PythonMagick.DrawableEllipse): +@@ -78,7 +78,7 @@ class DrawableGravity(_PythonMagick.DrawableGravity): + class DrawableLine(_PythonMagick.DrawableLine): +pass + +-class DrawableAlpha(_PythonMagick.DrawableAlpha): ++class DrawableMatte(_PythonMagick.DrawableMatte): +pass + + class DrawableMiterLimit(_PythonMagick.DrawableMiterLimit): +@@ -174,7 +174,7 @@ class DrawableViewbox(_PythonMagick.DrawableViewbox): + class Exception(_PythonMagick.Exception): +pass + +-class FilterType(_PythonMagick.FilterType): ++class FilterTypes(_PythonMagick.FilterTypes): +pass + + class Geometry(_PythonMagick.Geometry): +diff --git a/pythonmagick_src/_main.cpp b/pythonmagick_src/_main.cpp +index a7d3cce..449f0b1 100644 +--- a/pythonmagick_src/_main.cpp b/pythonmagick_src/_main.cpp +@@ -30,7 +30,7 @@ void Export_pyste_src_PathArcAbs(); + void Export_pyste_src_Image(); + void Export_pyste_src_GravityType(); + void Export_pyste_src_Geometry(); +-void Export_pyste_src_FilterType(); ++void Export_pyste_src_FilterTypes(); + void Export_pyste_src_Exception(); + void Export_pyste_src_DrawableViewbox(); + void Export_pyste_src_DrawableTranslation(); +@@ -62,7 +62,7 @@ void Export_pyste_src_DrawablePointSize(); + void Export_pyste_src_DrawablePoint(); + void Export_pyste_src_DrawablePath(); + void Export_pyste_src_DrawableMiterLimit(); +-void Export_pyste_src_DrawableAlpha(); ++void Export_pyste_src_DrawableMatte(); + void Export_pyste_src_DrawableLine(); + void Export_pyste_src_DrawableGravity(); + void Export_pyste_src_DrawableFont(); +@@ -70,8 +70,8 @@ void Export_pyste_src_DrawableFillRule(); + void Export_pyste_src_DrawableFillOpacity(); + void Export_pyste_src_DrawableFillColor(); + void Export_pyste_src_DrawableEllipse(); +-void Export_pyste_src_DrawableStrokeDashOffset(); +-void Export_pyste_src_DrawableStrokeDashArray(); ++void Export_pyste_src_DrawableDashOffset(); ++void Export_pyste_src_DrawableDashArray(); + void Export_pyste_src_DrawableCompositeImage(); + void Export_pyste_src_DrawableColor(); + void Export_pyste_src_DrawableClipPath(); +@@ -119,7 +119,7 @@ BOOST_PYTHON_MODULE(_PythonMagick) + Export_pyste_src_Image(); + Export_pyste_src_GravityType(); + Export_pyste_src_Geometry(); +-Export_pyste_src_FilterType(); ++Export_pyste_src_FilterTypes(); + Export_pyste_src_Exception(); + Export_pyste_src_DrawableViewbox(); + Export_pyste_src_DrawableTranslation(); +@@ -151,7 +151,7 @@ BOOST_PYTHON_
Bug#928200: unblock: pcl/1.9.1+dfsg1-10
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package pcl Added Breaks: vtk6* due to the transition to vtk7, as proposed in #928198. Note that I bumped the Debian revision to -10 due to test uploads to experimental. Diff attached. unblock pcl/1.9.1+dfsg1-10 -- System Information: Debian Release: 10.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.19.0-4-armmp (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff --git a/debian/changelog b/debian/changelog index 7c6fb22..99b2c83 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +pcl (1.9.1+dfsg1-10) unstable; urgency=medium + + [ Andreas Beckmann ] + * libpcl-dev: Add Breaks against several vtk6 packages (Closes: #928198) + + -- Jochen Sprickerhof Mon, 29 Apr 2019 20:44:32 +0200 + pcl (1.9.1+dfsg1-3) unstable; urgency=medium * Install cmake modules (Closes: #916913) diff --git a/debian/control b/debian/control index 52a8589..ffdf685 100644 --- a/debian/control +++ b/debian/control @@ -67,6 +67,10 @@ Depends: libboost-all-dev, libpcl-visualization1.9 (= ${binary:Version}), ${misc:Depends} Suggests: libpcl-doc +Breaks: libvtk6-dev, +libvtk6-java, +libvtk6-jni, +libvtk6-qt-dev, Description: Point Cloud Library - development files The Point Cloud Library (PCL) is a standalone, large scale, open project for 2D/3D image and point cloud processing.
Bug#927390: unblock: gpxviewer/0.5.2-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gpxviewer It was missing runtime dependencies, as detailed in #853092. Diff attached. unblock gpxviewer/0.5.2-2 -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.19.0-4-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff --git a/debian/changelog b/debian/changelog index 89d85bf..2b03ae1 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,20 @@ +gpxviewer (0.5.2-2) unstable; urgency=medium + + * Team upload. + [ SVN-Git Migration ] + * Update Vcs fields for git migration + * git-buildpackage config for DEP14 branches + + [ Ondřej Nový ] + * d/control: Remove trailing whitespaces + * Remove debian/pycompat, it's not used by any modern Python helper + + [ Jochen Sprickerhof ] + * Add missing dependencies. +Thanks to Hans Joachim Desserud (Closes: #853092) + + -- Jochen Sprickerhof Thu, 18 Apr 2019 19:52:25 +0200 + gpxviewer (0.5.2-1) unstable; urgency=low [ Jakub Wilk ] diff --git a/debian/control b/debian/control index 4ee11bc..91fe676 100644 --- a/debian/control +++ b/debian/control @@ -6,13 +6,14 @@ Uploaders: Python Applications Packaging Team = 7.0.50~), dh-python, python (>= 2.6.6-3~), python-distutils-extra Standards-Version: 3.9.6 Homepage: http://andrewgee.org/blog/gpxviewer -Vcs-Svn: svn://anonscm.debian.org/python-apps/packages/gpxviewer/trunk/ -Vcs-Browser: http://anonscm.debian.org/viewvc/python-apps/packages/gpxviewer/trunk/ +Vcs-Git: https://salsa.debian.org/python-team/applications/gpxviewer.git +Vcs-Browser: https://salsa.debian.org/python-team/applications/gpxviewer Package: gpxviewer Architecture: all -Depends: ${python:Depends}, gir1.2-osmgpsmap-1.0, gir1.2-glib-2.0, - gir1.2-freedesktop, gir1.2-gtk-3.0, gir1.2-pango-1.0, librsvg2-common, +Depends: ${python:Depends}, gir1.2-osmgpsmap-1.0, gir1.2-glib-2.0, + gir1.2-freedesktop, gir1.2-gtk-3.0, gir1.2-pango-1.0, librsvg2-common, + python-cairo, python-gi, python-gtk2, ${misc:Depends} Description: views GPS traces collected in the GPX format This application allows the user to load a GPS trace, in the GPX file format, diff --git a/debian/gbp.conf b/debian/gbp.conf new file mode 100644 index 000..3879982 --- /dev/null +++ b/debian/gbp.conf @@ -0,0 +1,2 @@ +[DEFAULT] +debian-branch=debian/master diff --git a/debian/pycompat b/debian/pycompat deleted file mode 100644 index 0cfbf08..000 --- a/debian/pycompat +++ /dev/null @@ -1 +0,0 @@ -2
Bug#927069: unblock: makehuman/1.1.1-1.2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package makehuman It fixes the RC bug #924273 (taken from upstream) and would otherwise drop out of buster. Diff attached unblock makehuman/1.1.1-1.2 Cheers Jochen -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.19.0-4-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff --git a/debian/changelog b/debian/changelog index 7978710..e12f21b 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +makehuman (1.1.1-1.2) unstable; urgency=medium + + * Non-maintainer upload. + * Add patch for shape mismatch error (Closes: #924273) + + -- Jochen Sprickerhof Sun, 14 Apr 2019 10:51:40 +0200 + makehuman (1.1.1-1.1) unstable; urgency=medium * Non-maintainer upload. diff --git a/debian/patches/0003-Ensure-we-stick-to-the-length-of-the-array-that-is-a.patch b/debian/patches/0003-Ensure-we-stick-to-the-length-of-the-array-that-is-a.patch new file mode 100644 index 000..e5e1196 --- /dev/null +++ b/debian/patches/0003-Ensure-we-stick-to-the-length-of-the-array-that-is-a.patch @@ -0,0 +1,22 @@ +From: Joel Palmius +Date: Wed, 7 Mar 2018 09:33:29 +0100 +Subject: Ensure we stick to the length of the array that is assigned to (nbt + #1) + +--- + makehuman/core/module3d.py | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/makehuman/core/module3d.py b/makehuman/core/module3d.py +index 11df086..cb6e6f2 100644 +--- a/makehuman/core/module3d.py b/makehuman/core/module3d.py +@@ -308,7 +308,7 @@ class Object3D(object): + fuvs = self.fuvs[self.face_mask] + uv_idx = np.unique(fuvs.reshape(-1)) + inverse_uv_idx = - np.ones(self.texco.shape[0], dtype=np.int32) +-inverse_uv_idx[uv_idx] = np.arange(self.texco.shape[0], dtype=np.int32) ++inverse_uv_idx[uv_idx] = np.arange(uv_idx.shape[0], dtype=np.int32) + for i in xrange(self.vertsPerPrimitive): + fuvs[:,i] = inverse_uv_idx[fuvs[:,i]] + diff --git a/debian/patches/series b/debian/patches/series index c6bfdab..8e99163 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,2 +1,3 @@ 01_makehuman.py.patch sphinx.ext.pngmath.patch +0003-Ensure-we-stick-to-the-length-of-the-array-that-is-a.patch
Bug#934112: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hey release team, I would like to transition Poco to the new ABI version. Cheers Jochen Ben file: title = "poco"; is_affected = .depends ~ /\b(libpococrypto60|libpocodata60|libpocodatamysql60|libpocodataodbc60|libpocodatasqlite60|libpocoencodings60|libpocofoundation60|libpocojson60|libpocomongodb60|libpoconet60|libpoconetssl60|libpocoredis60|libpocoutil60|libpocoxml60|libpocozip60)\b/ | .depends ~ /\b(libpococrypto62|libpocodata62|libpocodatamysql62|libpocodataodbc62|libpocodatasqlite62|libpocoencodings62|libpocofoundation62|libpocojson62|libpocomongodb62|libpoconet62|libpoconetssl62|libpocoredis62|libpocoutil62|libpocoxml62|libpocozip62)\b/; is_good = .depends ~ /\b(libpococrypto62|libpocodata62|libpocodatamysql62|libpocodataodbc62|libpocodatasqlite62|libpocoencodings62|libpocofoundation62|libpocojson62|libpocomongodb62|libpoconet62|libpoconetssl62|libpocoredis62|libpocoutil62|libpocoxml62|libpocozip62)\b/; is_bad = .depends ~ /\b(libpococrypto60|libpocodata60|libpocodatamysql60|libpocodataodbc60|libpocodatasqlite60|libpocoencodings60|libpocofoundation60|libpocojson60|libpocomongodb60|libpoconet60|libpoconetssl60|libpocoredis60|libpocoutil60|libpocoxml60|libpocozip60)\b/; -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.19.0-5-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#934256: transition: ros-rosconsole
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hey release team, I would like to transition to the new rosconsole ABI. Changes where minimal so I don't expect any problems and I'm maintaining all downstream packages anyway. Cheers Jochen Ben file: title = "ros-rosconsole"; is_affected = .depends ~ /\b(librosconsole2d)\b/ | .depends ~ /\b(librosconsole3d)\b/; is_good = .depends ~ /\b(librosconsole3d)\b/; is_bad = .depends ~ /\b(librosconsole2d)\b/; -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: armhf (armv7l) Kernel: Linux 4.19.0-5-armmp (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#930593: unblock: ompl/1.4.2+ds1-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package ompl The libompl-dev package uses libeigen3-dev but was missing a dependency, as reported in #930507. I removed it's Multi-Arch flag as well, as it was wrong according to the hinter. Hope that's fine with you. unblock ompl/1.4.2+ds1-2 -- System Information: Debian Release: 10.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled diff --git a/debian/changelog b/debian/changelog index 44a3482..617317e 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +ompl (1.4.2+ds1-2) unstable; urgency=medium + + * Team upload. + * Remove wrong MA hint (according to hinter) + * Add missing dependency (Closes: #930507) + + -- Jochen Sprickerhof Sun, 16 Jun 2019 10:34:15 +0200 + ompl (1.4.2+ds1-1) unstable; urgency=medium * New upstream version. diff --git a/debian/control b/debian/control index b8c0900..baccfc8 100644 --- a/debian/control +++ b/debian/control @@ -25,12 +25,12 @@ Vcs-Git: https://salsa.debian.org/science-team/ompl.git Homepage: http://ompl.kavrakilab.org Package: libompl-dev -Multi-Arch: same Architecture: any Section: libdevel Depends: libompl15 (= ${binary:Version}), ${misc:Depends}, - libboost-dev + libboost-dev, + libeigen3-dev Suggests: libode-dev, pkg-config Description: Open Motion Planning Library (OMPL) development files The Open Motion Planning Library is a set of sampling-based motion
Bug#944384: nmu: ros-*-msgs
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, ros-gencpp in version 0.6.2-3 doesn't sort elements before generating headers during the build of ros-*-msgs resulting in multi arch problems. This has been fixed in ros-gencpp 0.6.2-4. Please binnmu the following packages to align all headers again and make the multi arch hinter happy: nmu ros-common-msgs_1.12.7-2 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" nmu ros-navigation-msgs_1.13.1-1 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" nmu ros-navigation-msgs_1.13.1-1 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" nmu ros-ros-comm-msgs_1.11.2-10 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" nmu ros-std-msgs_0.5.12-2 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" Thanks Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.3.8 (SMP w/8 CPU cores) Kernel taint flags: TAINT_UNSIGNED_MODULE Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#944384: nmu: ros-*-msgs
Hi Paul, * Paul Gevers [2019-11-11 22:41]: nmu ros-navigation-msgs_1.13.1-1 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" nmu ros-navigation-msgs_1.13.1-1 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" ^ double. Did you mean something else? Only copy and paste error, thanks for asking :). nmu ros-ros-comm-msgs_1.11.2-10 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" nmu ros-std-msgs_0.5.12-2 . ANY . unstable . -m "rebuild against ros-gencpp 0.6.2-4" Scheduled. Thx! signature.asc Description: PGP signature
Bug#945944: stretch-pu: package ros-ros-comm/1.12.6-2
* Adam D. Barratt [2019-12-10 18:35]: On Sun, 2019-12-01 at 14:08 +0100, Jochen Sprickerhof wrote: The ros-ros-comm version in stretch is affected affected by CVE-2019-13566 which was flagged no-dsa by the security team. I propose the attached patch to fix the issue. Would you be fine with me uploading it? Please go ahead. Done. This is the same as #945896, just for stretch. I adopted the values as reportbug doesn't seem to support stretch-pu. Hope I did it right. Really? Which version? 7.5.3 from unstable, which is affected by #938941, which is only fixed in stable.. Cheers Jochen signature.asc Description: PGP signature
Bug#945896: buster-pu: package ros-ros-comm/1.14.3+ds1-5
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release team, The ros-ros-comm version in buster is affected affected by CVE-2019-13566 which was flagged no-dsa by the security team. I propose the attached patch to fix the issue. Would you be fine with me uploading it? The same patch (modulo the version number) applies to stretch as well. Can I upload it as well or do you want an extra ticket? Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.3.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled diff --git a/debian/changelog b/debian/changelog index 3f3bc57..02ec0a5 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-ros-comm (1.14.3+ds1-5+deb10u1) stable; urgency=high + + * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566) + + -- Jochen Sprickerhof Sun, 24 Nov 2019 17:06:34 +0100 + ros-ros-comm (1.14.3+ds1-5) unstable; urgency=medium * install ros/transport headers (LP: #1815896) diff --git a/debian/patches/0008-fixing-string-check.patch b/debian/patches/0008-fixing-string-check.patch new file mode 100644 index 000..513acfe --- /dev/null +++ b/debian/patches/0008-fixing-string-check.patch @@ -0,0 +1,65 @@ +From: Daniel Wang +Date: Mon, 22 Jul 2019 15:47:21 -0700 +Subject: fixing string check + +Signed-off-by: Daniel Wang +--- + clients/roscpp/src/libros/transport/transport_tcp.cpp | 8 + clients/roscpp/src/libros/transport/transport_udp.cpp | 4 ++-- + 2 files changed, 6 insertions(+), 6 deletions(-) + +diff --git a/clients/roscpp/src/libros/transport/transport_tcp.cpp b/clients/roscpp/src/libros/transport/transport_tcp.cpp +index f33a355..ddc47f5 100644 +--- a/clients/roscpp/src/libros/transport/transport_tcp.cpp b/clients/roscpp/src/libros/transport/transport_tcp.cpp +@@ -276,7 +276,7 @@ bool TransportTCP::connect(const std::string& host, int port) + + bool found = false; + struct addrinfo* it = addr; +-char namebuf[128]; ++char namebuf[128] = {}; + for (; it; it = it->ai_next) + { + if (!s_use_ipv6_ && it->ai_family == AF_INET) +@@ -288,7 +288,7 @@ bool TransportTCP::connect(const std::string& host, int port) + address->sin_family = it->ai_family; + address->sin_port = htons(port); + +-strcpy(namebuf, inet_ntoa(address->sin_addr)); ++strncpy(namebuf, inet_ntoa(address->sin_addr), sizeof(namebuf)-1); + found = true; + break; + } +@@ -734,14 +734,14 @@ std::string TransportTCP::getClientURI() + sockaddr_in *sin = (sockaddr_in *) + sockaddr_in6 *sin6 = (sockaddr_in6 *) + +- char namebuf[128]; ++ char namebuf[128] = {}; + int port; + + switch (sas.ss_family) + { + case AF_INET: + port = ntohs(sin->sin_port); +- strcpy(namebuf, inet_ntoa(sin->sin_addr)); ++ strncpy(namebuf, inet_ntoa(sin->sin_addr), sizeof(namebuf)-1); + break; + case AF_INET6: + port = ntohs(sin6->sin6_port); +diff --git a/clients/roscpp/src/libros/transport/transport_udp.cpp b/clients/roscpp/src/libros/transport/transport_udp.cpp +index 47d969e..45f817e 100644 +--- a/clients/roscpp/src/libros/transport/transport_udp.cpp b/clients/roscpp/src/libros/transport/transport_udp.cpp +@@ -710,9 +710,9 @@ std::string TransportUDP::getClientURI() + + sockaddr_in *sin = (sockaddr_in *) + +- char namebuf[128]; ++ char namebuf[128] = {}; + int port = ntohs(sin->sin_port); +- strcpy(namebuf, inet_ntoa(sin->sin_addr)); ++ strncpy(namebuf, inet_ntoa(sin->sin_addr), sizeof(namebuf)-1); + + std::string ip = namebuf; + std::stringstream uri; diff --git a/debian/patches/series b/debian/patches/series index 6e4e210..19f293d 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -5,3 +5,4 @@ 0005-Add-defaults-to-roswtf.patch 0006-Use-system-libb64.patch 0007-Build-Python-3-version-of-roslz4.patch +0008-fixing-string-check.patch
Bug#945944: stretch-pu: package ros-ros-comm/1.12.6-2
Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Hi release team, The ros-ros-comm version in stretch is affected affected by CVE-2019-13566 which was flagged no-dsa by the security team. I propose the attached patch to fix the issue. Would you be fine with me uploading it? This is the same as #945896, just for stretch. I adopted the values as reportbug doesn't seem to support stretch-pu. Hope I did it right. Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.3.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled diff --git a/debian/changelog b/debian/changelog index 28db48e..b4bfdc6 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-ros-comm (1.12.6-2+deb9u1) stretch; urgency=high + + * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566) + + -- Jochen Sprickerhof Sun, 24 Nov 2019 17:03:50 +0100 + ros-ros-comm (1.12.6-2) unstable; urgency=medium * rebuild due to changes in ros-genpy diff --git a/debian/patches/0007-fixing-string-check.patch b/debian/patches/0007-fixing-string-check.patch new file mode 100644 index 000..53dbe12 --- /dev/null +++ b/debian/patches/0007-fixing-string-check.patch @@ -0,0 +1,65 @@ +From: Daniel Wang +Date: Mon, 22 Jul 2019 15:47:21 -0700 +Subject: fixing string check + +Signed-off-by: Daniel Wang +--- + clients/roscpp/src/libros/transport/transport_tcp.cpp | 8 + clients/roscpp/src/libros/transport/transport_udp.cpp | 4 ++-- + 2 files changed, 6 insertions(+), 6 deletions(-) + +diff --git a/clients/roscpp/src/libros/transport/transport_tcp.cpp b/clients/roscpp/src/libros/transport/transport_tcp.cpp +index f061fc2..6a537a2 100644 +--- a/clients/roscpp/src/libros/transport/transport_tcp.cpp b/clients/roscpp/src/libros/transport/transport_tcp.cpp +@@ -266,7 +266,7 @@ bool TransportTCP::connect(const std::string& host, int port) + + bool found = false; + struct addrinfo* it = addr; +-char namebuf[128]; ++char namebuf[128] = {}; + for (; it; it = it->ai_next) + { + if (!s_use_ipv6_ && it->ai_family == AF_INET) +@@ -278,7 +278,7 @@ bool TransportTCP::connect(const std::string& host, int port) + address->sin_family = it->ai_family; + address->sin_port = htons(port); + +-strcpy(namebuf, inet_ntoa(address->sin_addr)); ++strncpy(namebuf, inet_ntoa(address->sin_addr), sizeof(namebuf)-1); + found = true; + break; + } +@@ -723,14 +723,14 @@ std::string TransportTCP::getClientURI() + sockaddr_in *sin = (sockaddr_in *) + sockaddr_in6 *sin6 = (sockaddr_in6 *) + +- char namebuf[128]; ++ char namebuf[128] = {}; + int port; + + switch (sas.ss_family) + { + case AF_INET: + port = ntohs(sin->sin_port); +- strcpy(namebuf, inet_ntoa(sin->sin_addr)); ++ strncpy(namebuf, inet_ntoa(sin->sin_addr), sizeof(namebuf)-1); + break; + case AF_INET6: + port = ntohs(sin6->sin6_port); +diff --git a/clients/roscpp/src/libros/transport/transport_udp.cpp b/clients/roscpp/src/libros/transport/transport_udp.cpp +index 848893b..d472a73 100644 +--- a/clients/roscpp/src/libros/transport/transport_udp.cpp b/clients/roscpp/src/libros/transport/transport_udp.cpp +@@ -706,9 +706,9 @@ std::string TransportUDP::getClientURI() + + sockaddr_in *sin = (sockaddr_in *) + +- char namebuf[128]; ++ char namebuf[128] = {}; + int port = ntohs(sin->sin_port); +- strcpy(namebuf, inet_ntoa(sin->sin_addr)); ++ strncpy(namebuf, inet_ntoa(sin->sin_addr), sizeof(namebuf)-1); + + std::string ip = namebuf; + std::stringstream uri; diff --git a/debian/patches/series b/debian/patches/series index bb74494..6695bde 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -4,3 +4,4 @@ 0004-Fix-executable-not-elf-or-script.patch 0005-Add-defaults-to-roswtf.patch 0007-move-heaers-to-include-xmlrpcpp.patch +0007-fixing-string-check.patch
Bug#943889: buster-pu: package hbci4java/3.0.22+dfsg-1 hibiscus/2.8.18+dfsg-2
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release team, I would like to integrate new upstream versions of hbci4java and hibiscus into Debian 10 (buster). Hibiscus is a electronic banking software and hbci4java the underlying library. The update is necessary because of the new EU directive on payment services (PSD2) [1], leading to changes in the interfaces of most European banks and thus breaking Hibiscus for most users. Due to the new upstream versions, the diff is quiet big (~1MB) so I only include links to the diff [2, 3] here. I can send the full diff as well, if you prefer. Apart from the upstream change there is only a small patch in hibiscus needed to remove a version locking [4]. The hibiscus version is in testing for some time and the previous patch release of hbci4java as well. Both versions have no open bugs and work fine for me and for others (according to user reports). I uploaded the latest version of hbci4java today which mostly contain licensing corrections. Note that it only makes sense to update both together so I open only one issue but can open a second one if you prefer. Cheers Jochen [1] https://en.wikipedia.org/wiki/Payment_Services_Directive#Revised_Directive_on_Payment_Services_(PSD2) [2] https://github.com/willuhn/hibiscus/compare/V_2_8_10_BUILD_374..V_2_8_18_BUILD_382 [3] https://github.com/hbci4j/hbci4java/compare/hbci4j-core-3.0.22...hbci4j-core-3.1.22 [4] https://sources.debian.org/src/hibiscus/2.8.18+dfsg-2/debian/patches/0006-Disable-version-check.patch/ -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.2.0-3-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#952381: nmu: ros-geometric-shapes_0.6.1-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu ros-geometric-shapes_0.6.1-1 . ANY . unstable . -m "rebuild against new liboctomap-dev (Closes: #952277)" -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.4.0-4-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#943889: buster-pu: package hbci4java/3.0.22+dfsg-1 hibiscus/2.8.18+dfsg-2
Control: tags -1 - moreinfo Hi Adam, thanks a lot for looking into this. * Adam D. Barratt [2020-01-28 22:47]: On Thu, 2019-10-31 at 14:00 +0100, Jochen Sprickerhof wrote: I would like to integrate new upstream versions of hbci4java and hibiscus into Debian 10 (buster). Hibiscus is a electronic banking software and hbci4java the underlying library. The update is necessary because of the new EU directive on payment services (PSD2) [1], leading to changes in the interfaces of most European banks and thus breaking Hibiscus for most users. Due to the new upstream versions, the diff is quiet big (~1MB) so I only include links to the diff [2, 3] here. I can send the full diff as well, if you prefer. They are quite large, particularly the hbci4java diff. :-( I guess it's unlikely that such a large change would be needed again during buster's lifetime? I surely hope not. The EU regulation making this change needed is from 2015 but banks where only required to implement it by 14th of September 2019 and most banks implemented it to this date or even afterwards. Even worse, every bank implemented it slightly different so upstream had to wait for the banks to implement the client side. I'm not aware of new regulation and the predecessor was from 2007, so we should be save for the coming ~12 years ;). Regarding the size of the diff, I didn't look into making it smaller as I wouldn't be able to test if specific changes are needed as I don't have accounts with all the banks. Cheers Jochen signature.asc Description: PGP signature
Bug#950204: transition: pcl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition pcl to the new ABI version. I tested and updated it's build-rdeps, so I don't expect any problems. Note that the new version doesn't build on armel anymore due to virtual memory exhaustion. I will ask the ftp-masters to remove the old binary after I uploaded the new version. Cheers Jochen Ben file: title = "pcl"; is_affected = .depends ~ /\b(libpcl\-apps1\.9|libpcl\-common1\.9|libpcl\-features1\.9|libpcl\-filters1\.9|libpcl\-io1\.9|libpcl\-kdtree1\.9|libpcl\-keypoints1\.9|libpcl\-ml1\.9|libpcl\-octree1\.9|libpcl\-outofcore1\.9|libpcl\-people1\.9|libpcl\-recognition1\.9|libpcl\-registration1\.9|libpcl\-sample\-consensus1\.9|libpcl\-search1\.9|libpcl\-segmentation1\.9|libpcl\-stereo1\.9|libpcl\-surface1\.9|libpcl\-tracking1\.9|libpcl\-visualization1\.9)\b/ | .depends ~ /\b(libpcl\-apps1\.10|libpcl\-common1\.10|libpcl\-features1\.10|libpcl\-filters1\.10|libpcl\-io1\.10|libpcl\-kdtree1\.10|libpcl\-keypoints1\.10|libpcl\-ml1\.10|libpcl\-octree1\.10|libpcl\-outofcore1\.10|libpcl\-people1\.10|libpcl\-recognition1\.10|libpcl\-registration1\.10|libpcl\-sample\-consensus1\.10|libpcl\-search1\.10|libpcl\-segmentation1\.10|libpcl\-stereo1\.10|libpcl\-surface1\.10|libpcl\-tracking1\.10|libpcl\-visualization1\.10)\b/; is_good = .depends ~ /\b(libpcl\-apps1\.10|libpcl\-common1\.10|libpcl\-features1\.10|libpcl\-filters1\.10|libpcl\-io1\.10|libpcl\-kdtree1\.10|libpcl\-keypoints1\.10|libpcl\-ml1\.10|libpcl\-octree1\.10|libpcl\-outofcore1\.10|libpcl\-people1\.10|libpcl\-recognition1\.10|libpcl\-registration1\.10|libpcl\-sample\-consensus1\.10|libpcl\-search1\.10|libpcl\-segmentation1\.10|libpcl\-stereo1\.10|libpcl\-surface1\.10|libpcl\-tracking1\.10|libpcl\-visualization1\.10)\b/; is_bad = .depends ~ /\b(libpcl\-apps1\.9|libpcl\-common1\.9|libpcl\-features1\.9|libpcl\-filters1\.9|libpcl\-io1\.9|libpcl\-kdtree1\.9|libpcl\-keypoints1\.9|libpcl\-ml1\.9|libpcl\-octree1\.9|libpcl\-outofcore1\.9|libpcl\-people1\.9|libpcl\-recognition1\.9|libpcl\-registration1\.9|libpcl\-sample\-consensus1\.9|libpcl\-search1\.9|libpcl\-segmentation1\.9|libpcl\-stereo1\.9|libpcl\-surface1\.9|libpcl\-tracking1\.9|libpcl\-visualization1\.9)\b/; -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.4.0-3-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#950204: transition: pcl
Control: tags -1 - moreinfo Hi Paul, * Paul Gevers [2020-01-30 18:41]: On 30-01-2020 07:11, Jochen Sprickerhof wrote: I would like to transition pcl to the new ABI version. I tested and updated it's build-rdeps, so I don't expect any problems. Note that the new version doesn't build on armel anymore due to virtual memory exhaustion. I will ask the ftp-masters to remove the old binary after I uploaded the new version. Is the autotracker [1] correct? Then, let this bug know but you can go ahead. [1] https://release.debian.org/transitions/html/auto-pcl.html Good point, a rebuild of ros-pcl-conversions is needed as well, because it encodes the PCL version into it's cmake files in the binary package but doesn't depend on any .so. I don't see a way to teach that to ben, though¹. Should I fill a separate NMU request or could you schedule that one as well? Cheers Jochen ¹: I could probably list both affected packages manually, but I don't think that's a nice. Maybe we could use the buildinfo files for this in some future.. signature.asc Description: PGP signature
Bug#948219: stretch-pu: package ros-ros-comm/1.12.6-2
Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Hi release team, The ros-ros-comm version in stretch is affected by two new CVEs: CVE-2019-13465 and CVE-2019-13445. The first one was already fixed by 1.12.6-2+deb9u1, cf. #945944, but the second one is new. The attached patch is against 1.12.6-2+deb9u1 and also adopts the changelog to mention the second CVE. Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.4.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled diff --git a/debian/changelog b/debian/changelog index b4bfdc6..7630a9a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,6 +1,12 @@ +ros-ros-comm (1.12.6-2+deb9u2) stretch; urgency=medium + + * Add https://github.com/ros/ros_comm/pull/1741 (Fix CVE-2019-13445) + + -- Jochen Sprickerhof Sun, 05 Jan 2020 15:45:11 +0100 + ros-ros-comm (1.12.6-2+deb9u1) stretch; urgency=high - * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566) + * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566, CVE-2019-13465) -- Jochen Sprickerhof Sun, 24 Nov 2019 17:03:50 +0100 diff --git a/debian/patches/1741.patch b/debian/patches/1741.patch new file mode 100644 index 000..86b4b35 --- /dev/null +++ b/debian/patches/1741.patch @@ -0,0 +1,21 @@ +From: Christopher Wecht +Date: Thu, 4 Jul 2019 21:19:14 +0200 +Subject: [PATCH] rosbag/record: fix signed int overflow + +--- + tools/rosbag/src/record.cpp | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/tools/rosbag/src/record.cpp b/tools/rosbag/src/record.cpp +index dda378f..95e3413 100644 +--- a/tools/rosbag/src/record.cpp b/tools/rosbag/src/record.cpp +@@ -121,7 +121,7 @@ rosbag::RecorderOptions parseOptions(int argc, char** argv) { + ROS_WARN("Use of \"--split \" has been deprecated. Please use --split --size or --split --duration "); + if (S < 0) + throw ros::Exception("Split size must be 0 or positive"); +-opts.max_size = 1048576 * S; ++opts.max_size = 1048576 * static_cast(S); + } + } + if(vm.count("max-splits")) diff --git a/debian/patches/series b/debian/patches/series index 6695bde..bbadad6 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -5,3 +5,4 @@ 0005-Add-defaults-to-roswtf.patch 0007-move-heaers-to-include-xmlrpcpp.patch 0007-fixing-string-check.patch +1741.patch
Bug#945896: buster-pu: package ros-ros-comm/1.14.3+ds1-5
Two more CVEs where published, please find a new patch attached. Cheers Jochen diff --git a/debian/changelog b/debian/changelog index 3f3bc57..2f80bb1 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +ros-ros-comm (1.14.3+ds1-5+deb10u1) stable; urgency=high + + * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566, CVE-2019-13465) + * Add https://github.com/ros/ros_comm/pull/1741 (Fix CVE-2019-13445) + + -- Jochen Sprickerhof Sun, 05 Jan 2020 15:33:55 +0100 + ros-ros-comm (1.14.3+ds1-5) unstable; urgency=medium * install ros/transport headers (LP: #1815896) diff --git a/debian/patches/0008-fixing-string-check.patch b/debian/patches/0008-fixing-string-check.patch new file mode 100644 index 000..513acfe --- /dev/null +++ b/debian/patches/0008-fixing-string-check.patch @@ -0,0 +1,65 @@ +From: Daniel Wang +Date: Mon, 22 Jul 2019 15:47:21 -0700 +Subject: fixing string check + +Signed-off-by: Daniel Wang +--- + clients/roscpp/src/libros/transport/transport_tcp.cpp | 8 + clients/roscpp/src/libros/transport/transport_udp.cpp | 4 ++-- + 2 files changed, 6 insertions(+), 6 deletions(-) + +diff --git a/clients/roscpp/src/libros/transport/transport_tcp.cpp b/clients/roscpp/src/libros/transport/transport_tcp.cpp +index f33a355..ddc47f5 100644 +--- a/clients/roscpp/src/libros/transport/transport_tcp.cpp b/clients/roscpp/src/libros/transport/transport_tcp.cpp +@@ -276,7 +276,7 @@ bool TransportTCP::connect(const std::string& host, int port) + + bool found = false; + struct addrinfo* it = addr; +-char namebuf[128]; ++char namebuf[128] = {}; + for (; it; it = it->ai_next) + { + if (!s_use_ipv6_ && it->ai_family == AF_INET) +@@ -288,7 +288,7 @@ bool TransportTCP::connect(const std::string& host, int port) + address->sin_family = it->ai_family; + address->sin_port = htons(port); + +-strcpy(namebuf, inet_ntoa(address->sin_addr)); ++strncpy(namebuf, inet_ntoa(address->sin_addr), sizeof(namebuf)-1); + found = true; + break; + } +@@ -734,14 +734,14 @@ std::string TransportTCP::getClientURI() + sockaddr_in *sin = (sockaddr_in *) + sockaddr_in6 *sin6 = (sockaddr_in6 *) + +- char namebuf[128]; ++ char namebuf[128] = {}; + int port; + + switch (sas.ss_family) + { + case AF_INET: + port = ntohs(sin->sin_port); +- strcpy(namebuf, inet_ntoa(sin->sin_addr)); ++ strncpy(namebuf, inet_ntoa(sin->sin_addr), sizeof(namebuf)-1); + break; + case AF_INET6: + port = ntohs(sin6->sin6_port); +diff --git a/clients/roscpp/src/libros/transport/transport_udp.cpp b/clients/roscpp/src/libros/transport/transport_udp.cpp +index 47d969e..45f817e 100644 +--- a/clients/roscpp/src/libros/transport/transport_udp.cpp b/clients/roscpp/src/libros/transport/transport_udp.cpp +@@ -710,9 +710,9 @@ std::string TransportUDP::getClientURI() + + sockaddr_in *sin = (sockaddr_in *) + +- char namebuf[128]; ++ char namebuf[128] = {}; + int port = ntohs(sin->sin_port); +- strcpy(namebuf, inet_ntoa(sin->sin_addr)); ++ strncpy(namebuf, inet_ntoa(sin->sin_addr), sizeof(namebuf)-1); + + std::string ip = namebuf; + std::stringstream uri; diff --git a/debian/patches/1741.patch b/debian/patches/1741.patch new file mode 100644 index 000..a107510 --- /dev/null +++ b/debian/patches/1741.patch @@ -0,0 +1,21 @@ +From: Christopher Wecht +Date: Thu, 4 Jul 2019 21:19:14 +0200 +Subject: [PATCH] rosbag/record: fix signed int overflow + +--- + tools/rosbag/src/record.cpp | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/tools/rosbag/src/record.cpp b/tools/rosbag/src/record.cpp +index f6cbb20..d8739bc 100644 +--- a/tools/rosbag/src/record.cpp b/tools/rosbag/src/record.cpp +@@ -123,7 +123,7 @@ rosbag::RecorderOptions parseOptions(int argc, char** argv) { + ROS_WARN("Use of \"--split \" has been deprecated. Please use --split --size or --split --duration "); + if (S < 0) + throw ros::Exception("Split size must be 0 or positive"); +-opts.max_size = 1048576 * S; ++opts.max_size = 1048576 * static_cast(S); + } + } + if(vm.count("max-splits")) diff --git a/debian/patches/series b/debian/patches/series index 6e4e210..daf961c 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -5,3 +5,5 @@ 0005-Add-defaults-to-roswtf.patch 0006-Use-system-libb64.patch 0007-Build-Python-3-version-of-roslz4.patch +0008-fixing-string-check.patch +1741.patch signature.asc Description: PGP signature
Bug#956315: buster-pu: package orocos-kdl/1.4.0-7
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release team, I would like to update orocos-kdl in buster to fix #956254 (PyKDL crashes Python 3 interpreter). The bug shows a simple way to reproduce the issue and the patch was taken from the upstream git. The diff to the package is attached. Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers buildd-unstable APT policy: (500, 'buildd-unstable'), (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.5.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled diff --git a/debian/changelog b/debian/changelog index 451fd76..9dc72bf 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +orocos-kdl (1.4.0-7+deb10u1) buster; urgency=medium + + * Add patch for python3 std string conversion (Closes: #956254) + + -- Jochen Sprickerhof Thu, 09 Apr 2020 18:46:55 +0200 + orocos-kdl (1.4.0-7) unstable; urgency=medium * Add missing dependency (Closes: #913803) diff --git a/debian/patches/0005-Fixed-python3-std-string-conversion-issue.patch b/debian/patches/0005-Fixed-python3-std-string-conversion-issue.patch new file mode 100644 index 000..fd138cf --- /dev/null +++ b/debian/patches/0005-Fixed-python3-std-string-conversion-issue.patch @@ -0,0 +1,35 @@ +From: Zihan Chen +Date: Mon, 14 May 2018 11:54:04 -0700 +Subject: Fixed python3 std string conversion issue + +--- + python_orocos_kdl/PyKDL/std_string.sip | 11 +-- + 1 file changed, 5 insertions(+), 6 deletions(-) + +diff --git a/python_orocos_kdl/PyKDL/std_string.sip b/python_orocos_kdl/PyKDL/std_string.sip +index e31324a..a399c9b 100644 +--- a/python_orocos_kdl/PyKDL/std_string.sip b/python_orocos_kdl/PyKDL/std_string.sip +@@ -47,17 +47,16 @@ + *sipCppPtr = new std::string; + return 1; + } +- if (PyUnicode_Check(sipPy)) { +-PyObject* s = PyUnicode_AsEncodedString(sipPy, "UTF-8", ""); +-*sipCppPtr = new std::string(PyUnicode_AS_DATA(s)); +-Py_DECREF(s); +-return 1; +- } + #if PY_MAJOR_VERSION < 3 + if (PyString_Check(sipPy)) { + *sipCppPtr = new std::string(PyString_AS_STRING(sipPy)); + return 1; + } ++#else ++ if (PyUnicode_Check(sipPy)) { ++*sipCppPtr = new std::string(PyUnicode_AsUTF8(sipPy)); ++return 1; ++ } + #endif + + return 0; diff --git a/debian/patches/series b/debian/patches/series index dbffb60..da119f6 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,3 +1,4 @@ 0001-Added-CMakeLists-to-build-the-package.patch 0002-Support-in-tree-compilation.patch 0003-Don-t-install-OrocosKDLTargets.patch +0005-Fixed-python3-std-string-conversion-issue.patch
Bug#956374: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi Release team, I would like to transition to the new poco version from experimental. All reverse dependencies build with it and I don't expect other problems. Cheers Jochen Ben file: title = "poco"; is_affected = .depends ~ /\b(libpococrypto62|libpocodata62|libpocodatamysql62|libpocodataodbc62|libpocodatasqlite62|libpocoencodings62|libpocofoundation62|libpocojson62|libpocomongodb62|libpoconet62|libpoconetssl62|libpocoredis62|libpocoutil62|libpocoxml62|libpocozip62)\b/ | .depends ~ /\b(libpococrypto70|libpocodata70|libpocodatamysql70|libpocodataodbc70|libpocodatapostgresql70|libpocodatasqlite70|libpocoencodings70|libpocofoundation70|libpocojson70|libpocojwt70|libpocomongodb70|libpoconet70|libpoconetssl70|libpocoredis70|libpocoutil70|libpocoxml70|libpocozip70)\b/; is_good = .depends ~ /\b(libpococrypto70|libpocodata70|libpocodatamysql70|libpocodataodbc70|libpocodatapostgresql70|libpocodatasqlite70|libpocoencodings70|libpocofoundation70|libpocojson70|libpocojwt70|libpocomongodb70|libpoconet70|libpoconetssl70|libpocoredis70|libpocoutil70|libpocoxml70|libpocozip70)\b/; is_bad = .depends ~ /\b(libpococrypto62|libpocodata62|libpocodatamysql62|libpocodataodbc62|libpocodatasqlite62|libpocoencodings62|libpocofoundation62|libpocojson62|libpocomongodb62|libpoconet62|libpoconetssl62|libpocoredis62|libpocoutil62|libpocoxml62|libpocozip62)\b/; -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.5.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#961275: buster-pu: package jameica/2.8.4+dfsg-1
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi SRMs, I would like to update jameica in buster to allow use of SynTax, a jameica plugin not packaged in Debian. The attached patch adds mckoisqldb.jar to the classpath, as done by upstream and was only removed in debian/patches by accident. The dependency to libmckoisqldb-java is already fulfilled through jameica -> libjameica-datasource-java -> libmckoisqldb-java and only added to make it explicit. Due to the dependency already present and just adding an extra jar, I don't expect side effects. This has also been tested in unstable and testing. The original problem was reported by a PureOS user via mail, so there is no corresponding bug in the BTS, but I can create one if you want me to. Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.6.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled >From 36a0e90c15bef9fa07e7b6e35c73a3c7d32b5352 Mon Sep 17 00:00:00 2001 From: Jochen Sprickerhof Date: Thu, 14 May 2020 14:09:40 +0200 Subject: [PATCH] Add mckoisqldb to classpath This is needed for SynTAX and was accidentally removed in debian/patches/0001-*.patch. --- debian/changelog | 8 debian/control| 1 + ...0005-Add-mckoisqldb.jar-to-classpath.patch | 20 +++ debian/patches/series | 1 + 4 files changed, 30 insertions(+) create mode 100644 debian/patches/0005-Add-mckoisqldb.jar-to-classpath.patch diff --git a/debian/changelog b/debian/changelog index 6835661..95cb534 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +jameica (2.8.4+dfsg-1+deb10u1) buster; urgency=medium + + * Add mckoisqldb to classpath. +This is needed for SynTAX and was accidentally removed in +debian/patches/0001-*.patch. + + -- Jochen Sprickerhof Thu, 14 May 2020 14:18:17 +0200 + jameica (2.8.4+dfsg-1) unstable; urgency=medium * New upstream version 2.8.4+dfsg diff --git a/debian/control b/debian/control index 6a719de..9919475 100644 --- a/debian/control +++ b/debian/control @@ -48,6 +48,7 @@ Depends: libjameica-util-java, libjaxb-api-java, libjaxb-java, + libmckoisqldb-java, libmariadb-java, libnanoxml2-java, libpaperclips-java, diff --git a/debian/patches/0005-Add-mckoisqldb.jar-to-classpath.patch b/debian/patches/0005-Add-mckoisqldb.jar-to-classpath.patch new file mode 100644 index 000..5628849 --- /dev/null +++ b/debian/patches/0005-Add-mckoisqldb.jar-to-classpath.patch @@ -0,0 +1,20 @@ +From: Jochen Sprickerhof +Date: Thu, 14 May 2020 14:04:46 +0200 +Subject: Add mckoisqldb.jar to classpath + +--- + build/build.properties | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/build/build.properties b/build/build.properties +index 27ed9b5..4383191 100644 +--- a/build/build.properties b/build/build.properties +@@ -43,6 +43,7 @@ define.commonlibs = /usr/share/java/bcpkix.jar \ + /usr/share/java/velocity.jar \ + /usr/share/java/oro.jar \ + /usr/share/java/h2.jar \ ++ /usr/share/java/mckoisqldb.jar \ + /usr/share/java/mariadb-java-client.jar \ + img \ + lang \ diff --git a/debian/patches/series b/debian/patches/series index 6fc9ea3..d628900 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -2,3 +2,4 @@ 0002-Adopt-build.xml.patch 0003-Adopt-jameica-executable.patch 0004-mariadb.patch +0005-Add-mckoisqldb.jar-to-classpath.patch -- 2.27.0.rc0
Bug#970098: buster-pu: package orocos-kdl/1.4.0-7+deb10u1
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu [ Reason ] orocos-kdl ships KDLConfig.cmake providing a cmake variable with the location of the header files. For Debian this is /usr/include, but it's written as ${CMAKE_CURRENT_LIST_DIR}/../../../include. This breaks with gcc > 5 and cmake < 3.16 if the path is added as -isystem to the compiler. This is the case for the ROS packages using orocos-kdl, as discussed in https://github.com/ros/rosdistro/issues/26526. [ Impact ] If this is not approve the downstream users would need to add a workaround to make use of the development package. [ Tests ] There is an autopkgtest in place, making sure that the headers are still found. Also this was tested manually. [ Risks ] I think the change is trivial and I don't see a risk. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in (old)stable [X] the issue is verified as fixed in unstable [ Changes ] As /usr/include is a default include path, the patch simply removes the extra path. -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 5.8.0-1-amd64 (SMP w/8 CPU threads) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled diff --git a/debian/changelog b/debian/changelog index 9dc72bf..91e8724 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,15 @@ +orocos-kdl (1.4.0-7+deb10u2) buster; urgency=medium + + * Add patch for include path +KDLConfig.cmake exports ${CMAKE_CURRENT_LIST_DIR}/../../../include as an +include path, which resolves to /usr/include. This breaks with gcc > 5 and +cmake < 3.16 as discussed in +https://github.com/ros/rosdistro/issues/26526. +As /usr/include is a default include path, the patch simply removes the +extra path. + + -- Jochen Sprickerhof Fri, 11 Sep 2020 18:15:58 +0200 + orocos-kdl (1.4.0-7+deb10u1) buster; urgency=medium * Add patch for python3 std string conversion (Closes: #956254) diff --git a/debian/patches/0007-Don-t-export-usr-include-as-include-path.patch b/debian/patches/0007-Don-t-export-usr-include-as-include-path.patch new file mode 100644 index 000..017e061 --- /dev/null +++ b/debian/patches/0007-Don-t-export-usr-include-as-include-path.patch @@ -0,0 +1,24 @@ +From: Jochen Sprickerhof +Date: Fri, 11 Sep 2020 09:06:41 +0200 +Subject: Don't export /usr/include as include path + +It's not needed and breaks cmake < 3.16. + +cf. https://github.com/ros/rosdistro/issues/26526 +--- + orocos_kdl/KDLConfig.cmake.in | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/orocos_kdl/KDLConfig.cmake.in b/orocos_kdl/KDLConfig.cmake.in +index a099c19..3a9b738 100644 +--- a/orocos_kdl/KDLConfig.cmake.in b/orocos_kdl/KDLConfig.cmake.in +@@ -5,7 +5,7 @@ + # orocos_kdl_PKGCONFIG_DIR - directory containing the .pc pkgconfig files + + # Compute paths +-set(orocos_kdl_INCLUDE_DIRS "${CMAKE_CURRENT_LIST_DIR}/../../../include;@Boost_INCLUDE_DIRS@;@Eigen_INCLUDE_DIR@") ++set(orocos_kdl_INCLUDE_DIRS "@Boost_INCLUDE_DIRS@;@Eigen_INCLUDE_DIR@") + + set(orocos_kdl_LIBRARIES orocos-kdl) + diff --git a/debian/patches/series b/debian/patches/series index da119f6..2c9 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -2,3 +2,4 @@ 0002-Support-in-tree-compilation.patch 0003-Don-t-install-OrocosKDLTargets.patch 0005-Fixed-python3-std-string-conversion-issue.patch +0007-Don-t-export-usr-include-as-include-path.patch
Bug#972351: buster-pu: package ros-ros-comm/1.14.3+ds1-5+deb10u1
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu [ Reason ] CVE-2020-16124 was published with a number of integer overflow in the XML RPC layer of ros-ros-comm. [ Impact ] The impact is rather low as the ROS middleware has no authentication nor security features implemented and should only be used behind a firewall. Still would be good to get it fixed in stable. [ Tests ] The patch adds a unit test and I ran manual tests using the relay command from the topic-tools package. [ Risks ] I see the code as rather trivial, and the risk as low. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in (old)stable [X] the issue is verified as fixed in unstable [ Changes ] The patch adds size checks and unit tests. [ Other info ] I left the patches as they where merged upstream but can squash them if that would be easier for you. diff --git a/debian/changelog b/debian/changelog index 2f80bb1..420c997 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-ros-comm (1.14.3+ds1-5+deb10u2) buster; urgency=high + + * Add https://github.com/ros/ros_comm/pull/2065 (Fix CVE-2020-16124) + + -- Jochen Sprickerhof Fri, 16 Oct 2020 17:48:57 +0200 + ros-ros-comm (1.14.3+ds1-5+deb10u1) stable; urgency=high * Add https://github.com/ros/ros_comm/pull/1771 (Fix CVE-2019-13566, CVE-2019-13465) diff --git a/debian/patches/0007-Build-Python-3-version-of-roslz4.patch b/debian/patches/0007-Build-Python-3-version-of-roslz4.patch index 9487775..ab177c6 100644 --- a/debian/patches/0007-Build-Python-3-version-of-roslz4.patch +++ b/debian/patches/0007-Build-Python-3-version-of-roslz4.patch @@ -6,6 +6,8 @@ Subject: Build Python 3 version of roslz4 CMakeLists.txt | 9 + 1 file changed, 9 insertions(+) +diff --git a/CMakeLists.txt b/CMakeLists.txt +index 169420f..eb45865 100644 --- a/CMakeLists.txt +++ b/CMakeLists.txt @@ -20,3 +20,12 @@ add_subdirectory(tools/rosout) diff --git a/debian/patches/0010-Trap-for-overly-large-input-to-XmlRPCPP-which-could-.patch b/debian/patches/0010-Trap-for-overly-large-input-to-XmlRPCPP-which-could-.patch new file mode 100644 index 000..e26a0d1 --- /dev/null +++ b/debian/patches/0010-Trap-for-overly-large-input-to-XmlRPCPP-which-could-.patch @@ -0,0 +1,351 @@ +From: Sid Faber +Date: Tue, 15 Sep 2020 19:48:40 + +Subject: Trap for overly large input to XmlRPCPP which could cause problems + with int <-> size_t conversions. + + - In XmlRpcClient, XmlRpcServerConnection and XmlRpcSocket, recognize when incoming or outgoing data is too large, generate an error and discard the data when practical. + - Use the safe strtol() rather than atoi() to decode an incoming content-length header, and generate an error if the length is invalid or too large. + - In XmlRpcUtil, prevent attempts to parse overly large XML input. + - Add tests where they can reasonably be inserted into existing test routines. + +Although this fix could be cleaner the update is written to make the update ABI compatible. + +This fix addresses CVE-2020-16124 / Integer overflow in ros_comm. + +Signed-off-by: Sid Faber +--- + utilities/xmlrpcpp/src/XmlRpcClient.cpp | 25 +++-- + utilities/xmlrpcpp/src/XmlRpcServerConnection.cpp | 28 -- + utilities/xmlrpcpp/src/XmlRpcSocket.cpp | 13 + + utilities/xmlrpcpp/src/XmlRpcUtil.cpp | 5 ++ + utilities/xmlrpcpp/test/TestValues.cpp| 27 +- + utilities/xmlrpcpp/test/test_client.cpp | 65 +++ + 6 files changed, 153 insertions(+), 10 deletions(-) + +diff --git a/utilities/xmlrpcpp/src/XmlRpcClient.cpp b/utilities/xmlrpcpp/src/XmlRpcClient.cpp +index 2d42bb8..d53214e 100644 +--- a/utilities/xmlrpcpp/src/XmlRpcClient.cpp b/utilities/xmlrpcpp/src/XmlRpcClient.cpp +@@ -312,6 +312,13 @@ XmlRpcClient::generateRequest(const char* methodName, XmlRpcValue const& params) + header.length(), body.length()); + + _request = header + body; ++ // Limit the size of the request to avoid integer overruns ++ if (_request.length() > size_t(__INT_MAX__)) { ++XmlRpcUtil::error("XmlRpcClient::generateRequest: request length (%u) exceeds maximum allowed size (%u).", ++ _request.length(), __INT_MAX__); ++_request.clear(); ++return false; ++ } + return true; + } + +@@ -431,13 +438,16 @@ XmlRpcClient::readHeader() + return false; // We could try to figure it out by parsing as we read, but for now... + } + +- _contentLength = atoi(lp); +- if (_contentLength <= 0) { +-XmlRpcUtil::error("Error in XmlRpcClient::readHeader: Invalid Content-length specified (%d).", _contentLength); ++ // avoid overly large or improperly formatted content-length ++ long int clength = 0; ++ clength = strtol(lp,
Bug#968846: buster-pu: package ros-actionlib/1.11.15-1
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi release team, [ Reason ] The ros-actionlib version in buster is affected affected by CVE-2020-10289 which was flagged no-dsa by the security team. [ Impact ] I assume it's low because the code is only used in two debug tools. [ Tests ] None. [ Risks ] The fix is trivial (yaml.load -> yaml.safe_load) and the risk is low as the yaml is generated from a string in the same process. There is no use of the extended functionality provided by yaml.load in this scripts. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in (old)stable [X] the issue is verified as fixed in unstable [ Changes ] Use yaml.safe_load instead of yaml.load as promoted by upstream: https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation Cheers Jochen diff --git a/debian/changelog b/debian/changelog index 4864907..987959b 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-actionlib (1.11.15-1+deb10u1) buster; urgency=high + + * Add https://github.com/ros/actionlib/pull/171 (Fix CVE-2020-10289) + + -- Jochen Sprickerhof Sat, 22 Aug 2020 10:53:23 +0200 + ros-actionlib (1.11.15-1) unstable; urgency=medium * New upstream version 1.11.15 diff --git a/debian/patches/0003-Address-RVD-2401.patch b/debian/patches/0003-Address-RVD-2401.patch new file mode 100644 index 000..efe9455 --- /dev/null +++ b/debian/patches/0003-Address-RVD-2401.patch @@ -0,0 +1,44 @@ +From: =?utf-8?q?V=C3=ADctor_Mayoral_Vilches?= +Date: Thu, 20 Aug 2020 09:41:56 +0200 +Subject: Address RVD#2401 + +Our team at @AliasRobotics identified and reported in RVD#2401 the use of +unsafe yaml load (https://github.com/aliasrobotics/RVD/issues/2401). + +After triaging the flaw we detected that it was exploitable and could lead to +local (or remote, based on certain common user interaction) code execution. + +Specifically, the flaw itself is caused by an unsafe parsing of YAML values which +happens whenever an action message is processed to be sent, and allows for the +creation of Python objects. Through this flaw in ROS, an attacker could build a +malicious payload and execute arbitrary code in Python. A PoC is available but +have decided not to disclose it for now and until this is mitigated and debs are +available. + +Peer-researched and coded with @ibaiape. +--- + tools/library.py | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/tools/library.py b/tools/library.py +index 6d344e2..f97074e 100644 +--- a/tools/library.py b/tools/library.py +@@ -96,7 +96,7 @@ def yaml_msg_str(type_, yaml_str, filename=None): + if yaml_str.strip() == '': + msg_dict = {} + else: +-msg_dict = yaml.load(yaml_str) ++msg_dict = yaml.safe_load(yaml_str) + if not isinstance(msg_dict, dict): + if filename: + raise ValueError("yaml file [%s] does not contain a dictionary" % filename) +@@ -130,7 +130,7 @@ def yaml_msgs_str(type_, yaml_str, filename=None): + @type filename: str + """ + import yaml +-yaml_doc = yaml.load(yaml_str) ++yaml_doc = yaml.safe_load(yaml_str) + msgs = [] + for msg_dict in yaml_doc: + if not isinstance(msg_dict, dict): diff --git a/debian/patches/series b/debian/patches/series index aed59c0..6f975c6 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1,2 +1,3 @@ 0001-Add-Debian-specific-SONAME.patch 0002-Add-shebang.patch +0003-Address-RVD-2401.patch
Bug#963792: transition: ros-*
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition these packages to unstable: ros-roscpp-core ros-ros-comm ros-geometric-shapes ros-urdf ros-interactive-markers ros-actionlib ros-geometry2 ros-vision-opencv Would you be ok with doing all of them at the same time? (Otherwise I would start with ros-roscpp-core.) The generated Ben files are ok. Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.7.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#963792: transition: ros-*
Hi Sebastian, * Sebastian Ramacher [2020-06-28 22:58]: I would like to transition these packages to unstable: ros-roscpp-core ros-ros-comm ros-geometric-shapes ros-urdf ros-interactive-markers ros-actionlib ros-geometry2 ros-vision-opencv Would you be ok with doing all of them at the same time? (Otherwise I would start with ros-roscpp-core.) Do all reverse dependencies build fine against the new versions? Yes all build fine (sorry for not writing it in the first mail). Cheers Jochen signature.asc Description: PGP signature
Bug#962660: nmu: ros-geometry2_0.6.6-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, Due to a mistake, librostime0d was uploaded with a new ABI without bumping the Soname. This is fixed in librostime0d 0.7.2-2, but ros-geometry2 on the buildds was built against 0.7.2-1. Please rebuild ros-geometry2 against librostime0d 0.7.2-2. As librostime0d has not been built yet on mips64el and alpha, you may want to consider adding a dep-wait. nmu ros-geometry2_0.6.6-2 . ANY . unstable . -m "Rebuild against fixed ABI of librostime0d" dw ros-geometry2_0.6.6-2 . mips64el alpha . -m 'librostime0d (>= 0.7.2-2)' -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.6.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#965124: transition: pcl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi Release team, I would like to transition pcl to unstable. The Ben file is fine, ros-perception-pcl compiles against the new version and I will upload a fixed python-pcl version during the transition. Cheers Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 5.7.0-1-amd64 (SMP w/8 CPU threads) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#965134: nmu: gazebo_11.0.0+dfsg1-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, as discussed in #963247 I've changed the provided shlibs of ignition-msgs to include the protobuf version. Can you please binNMU the reverse dependencies so they pick it up? nmu gazebo_11.0.0+dfsg1-4 . ANY . unstable . -m "rebuild to pick up libignition-msgs5-5-protobuf23 dependency" nmu ignition-fuel-tools_4.1.0+dfsg-5 . ANY . unstable . -m "rebuild to pick up libignition-msgs5-5-protobuf23 dependency" nmu ignition-transport_8.0.0+dfsg-3 . ANY . unstable . -m "rebuild to pick up libignition-msgs5-5-protobuf23 dependency" As ignition-msgs 5.1.0+dfsg-5 has not been built yet on mips64el, alpha, hppa, hurd-i386, ia64, and sh4 you may want to consider adding dep-waits. mips64el alpha hppa hurd-i386 ia64 sh4 dw foo_4.3-3 . mips mipsel . -m 'libbar1 (>= 1.2-2)' dw gazebo_11.0.0+dfsg1-4 . mips64el alpha hppa hurd-i386 ia64 sh4 . -m 'libignition-msgs5-5 (>= 5.1.0+dfsg-5)' dw ignition-fuel-tools_4.1.0+dfsg-5 . mips64el alpha hppa hurd-i386 ia64 sh4 . -m 'libignition-msgs5-5 (>= 5.1.0+dfsg-5)' dw ignition-transport_8.0.0+dfsg-3 . mips64el alpha hppa hurd-i386 ia64 sh4 . -m 'libignition-msgs5-5 (>= 5.1.0+dfsg-5)' Thanks Jochen -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 5.7.0-1-amd64 (SMP w/8 CPU threads) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
Bug#979043: transition: dart
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Dear release team, I would like to transition the dart library. I've successfully rebuild and tested it's only reverse build dependency: gazebo. The automatically generated ben file looks fine. Cheers Jochen
Bug#989946: [pre-approval] unblock: opencv/4.5.1+dfsg-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package opencv [ Reason ] OpenCV specified dependencies between its library packages manually in addition to ${shlibs:Depends}. According to the git history was introduced ~10 years ago (no explanation in the commit) and was not really kept up to date over the years. This resulted in circular dependencies between the packages as reported in #979809. [ Impact ] Quoting from the bug: | Circular dependencies involving shared libraries are known to cause problems | during upgrade between stable releases, so we should try to avoid them. Though I have not seen related problems on real systems. [ Tests ] I have compared the package dependencies before and after the patch. For packages where the manually specified library match, ${shlibs:Depends} defines them as (>= 4.5.1+dfsg), instead of the manually specified (= 4.5.1+dfsg-4), which I think is more correct. For packages where additional library dependencies where specified, I used readelf -d to make sure that those are actually not needed. [ Risks ] I think the risk is pretty low, ${shlibs:Depends} works well to the best of my knowledge. On the other hand I can see that the consequences may not be completely obvious. Given that the bugs are not release critical, I'm fine with postponing this to bookworm as well. This is why I ask for a pre-approval first. I could also upload to experimental and provide some script to compare the packages if that helps. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock opencv/4.5.1+dfsg-5 diff --git a/debian/changelog b/debian/changelog index a680a4890..645901c47 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +opencv (4.5.1+dfsg-5) unstable; urgency=medium + + * Team upload. + * Drop depends between library packages (Closes: #979809) + * Drop ${java:Depends}/${java:Recommends} (undefined) + * Update libgdcm-dev arch list (Closes: #987621) + + -- Jochen Sprickerhof Wed, 16 Jun 2021 14:09:47 +0200 + opencv (4.5.1+dfsg-4) unstable; urgency=medium * Team upload. diff --git a/debian/control b/debian/control index bc9ffbedf..7dbe1c235 100644 --- a/debian/control +++ b/debian/control @@ -213,8 +213,7 @@ Package: libopencv-ml4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-core4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depends}, ${shlibs:Depends} Pre-Depends: ${misc:Pre-Depends} Description: computer vision Machine Learning library @@ -256,8 +255,7 @@ Package: libopencv-imgproc4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-core4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depends}, ${shlibs:Depends} Pre-Depends: ${misc:Pre-Depends} Description: computer vision Image Processing library @@ -278,7 +276,7 @@ Package: libopencv-imgcodecs-dev Architecture: any Multi-Arch: same Section: libdevel -Depends: libgdcm-dev [!hppa !m68k !powerpcspe !riscv64 !sh4], +Depends: libgdcm-dev [!alpha !hppa !ia64 !kfreebsd-amd64 !kfreebsd-i386 !m68k !powerpcspe !sh4 !x32], libopencv-imgcodecs4.5 (= ${binary:Version}), libopencv-imgproc-dev (= ${binary:Version}), ${misc:Depends} @@ -300,8 +298,7 @@ Package: libopencv-imgcodecs4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-imgproc4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depends}, ${shlibs:Depends} Pre-Depends: ${misc:Pre-Depends} Description: computer vision Image Codecs library @@ -343,8 +340,7 @@ Package: libopencv-video4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-imgproc4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depends}, ${shlibs:Depends} Pre-Depends: ${misc:Pre-Depends} Description: computer vision Video analysis library @@ -388,8 +384,7 @@ Package: libopencv-videoio4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-imgcodecs4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depends}, ${shlibs:Depends} Pre-Depends: ${misc:Pre-Depends} Description: computer vision Video I/O library @@ -432,9 +427,7 @@ Package: libopencv-objdetect4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-highgui4.5 (= ${binary:Version}), - libopencv-ml4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depends}, ${shlibs:Depends} Pre-Depends: ${misc:Pre-Depends} Description: computer vision Object Detection library @@ -488,8 +481,7 @@ Package: libopencv-highgui4.5 Architecture: any Multi-Arch: same Section: libs -Depends: libopencv-videoio4.5 (= ${binary:Version}), - ${misc:Depends}, +Depends: ${misc:Depe
Bug#989357: nmu: ros-rviz_1.14.4+dfsg-3
* Sebastian Ramacher [2021-06-12 15:59]: Control: block -1 by 989344 On 2021-06-01 20:56:36 +0200, Jochen Sprickerhof wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi release team, libogre-1.12 bumped it's soname and library names without changing the package name, breaking rviz (#989344). As rviz is the only dependency, would you be ok with a binNMU, let it into bullseye and ignore the bug for bullseye? nmu ros-rviz_1.14.4+dfsg-3 . ANY . unstable . -m "rebuild against new libogre-1.12 soname" Please get libogre fixed first. Marking as blocked by #989344. I've just uploaded ogre-1.12_1.12.10+dfsg2-1.2 as source only, fixing #989344. Could you take care of the rebuild/unblock or do you want extra bugs for that? Cheers Jochen signature.asc Description: PGP signature
Bug#989883: unblock: ogre-1.12/1.12.10+dfsg2-1.2 ros-rviz/1.14.4+dfsg-3+b1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package ogre-1.12 and ros-rviz [ Reason ] libogre-1.12 bumped it's soname and library names without changing the package name, breaking rviz (#989344). [ Impact ] ogre-1.12 and ros-rviz would be removed from testing. [ Tests ] I tested rviz manually and it is working again. [ Risks ] For ogre-1.12 this only changes the package name and for ros-rviz this is a binary rebuild only. I don't see a risk by this change. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing [ Other info ] I'm not sure if ros-rviz would transition automatically, so I add it here just for completeness. unblock ogre-1.12/1.12.10+dfsg2-1.2 unblock ros-rviz/1.14.4+dfsg-3+b1 diff --git a/debian/changelog b/debian/changelog index 07b1065a..a3d59c83 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,17 @@ +ogre-1.12 (1.12.10+dfsg2-1.2) unstable; urgency=medium + + * Non-maintainer upload. + * Source only upload + + -- Jochen Sprickerhof Mon, 14 Jun 2021 21:39:29 +0200 + +ogre-1.12 (1.12.10+dfsg2-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Rename library package to match Soname (Closes: #989344) + + -- Jochen Sprickerhof Sat, 12 Jun 2021 16:37:07 +0200 + ogre-1.12 (1.12.10+dfsg2-1) unstable; urgency=medium [ Simon Schmeisser ] diff --git a/debian/control b/debian/control index faf0e3ab..b094898a 100644 --- a/debian/control +++ b/debian/control @@ -39,7 +39,7 @@ Package: libogre-1.12-dev Section: libdevel Architecture: any Depends: ${misc:Depends}, - libogre-1.12 (= ${binary:Version}) + libogre1.12.10 (= ${binary:Version}) Conflicts: libogre-dev, libogre-1.8-dev, libogre-1.9-dev Suggests: ogre-1.12-doc Description: 3D Object-Oriented Graphics Rendering Engine (development files) @@ -52,12 +52,14 @@ Description: 3D Object-Oriented Graphics Rendering Engine (development files) . This package contains the headers needed to develop with OGRE. -Package: libogre-1.12 +Package: libogre1.12.10 Architecture: any Multi-Arch: same Pre-Depends: ${misc:Pre-Depends} Depends: ${misc:Depends}, ${shlibs:Depends} +Breaks: libogre-1.12 (<<1.12.10+dfsg2-1.1) +Replaces: libogre-1.12 (<<1.12.10+dfsg2-1.1) Description: 3D Object-Oriented Graphics Rendering Engine (libraries) OGRE (Object-Oriented Graphics Rendering Engine) is a scene-oriented, flexible 3D engine written in C++ designed to make it easier and more intuitive for diff --git a/debian/libogre-VERSION.install b/debian/libogreVERSION.install similarity index 100% rename from debian/libogre-VERSION.install rename to debian/libogreVERSION.install diff --git a/debian/libogre-VERSION.lintian-overrides b/debian/libogreVERSION.lintian-overrides similarity index 100% rename from debian/libogre-VERSION.lintian-overrides rename to debian/libogreVERSION.lintian-overrides diff --git a/debian/rules b/debian/rules index 040b664c..a8dce01a 100755 --- a/debian/rules +++ b/debian/rules @@ -25,8 +25,7 @@ DEB_HOST_MULTIARCH ?= $(shell dpkg-architecture -qDEB_HOST_MULTIARCH) # Use this variable to define the particular version of OGRE that we're building -OGRE_VERSION=1.12 -OGRE_VERSION_ABI_CHANGE=$(OGRE_VERSION) +OGRE_SOVERSION=1.12.10 OGRE_CHANGELOG = Docs/ChangeLog.md @@ -67,8 +66,8 @@ override_dh_auto_build-indep: override_dh_install-arch: # Copy files from template for this particular version - cp -f debian/libogre-VERSION.install debian/libogre-$(OGRE_VERSION_ABI_CHANGE).install - cp -f debian/libogre-VERSION.lintian-overrides debian/libogre-$(OGRE_VERSION_ABI_CHANGE).lintian-overrides + cp -f debian/libogreVERSION.install debian/libogre$(OGRE_SOVERSION).install + cp -f debian/libogreVERSION.lintian-overrides debian/libogre$(OGRE_SOVERSION).lintian-overrides # docs installed in other way #rm -rfv debian/tmp/usr/share/OGRE/docs @@ -101,11 +100,11 @@ override_dh_clean: dh_clean # Remove files from template - rm -rf debian/libogre-$(OGRE_VERSION).* + rm -rf debian/libogre$(OGRE_SOVERSION).* # For new symbols when compiled with GCC 7 override_dh_makeshlibs: - dh_makeshlibs -V"libogre-1.12 (>= 1.12.10+dfsg1-1~)" + dh_makeshlibs -V"libogre1.12.10 (>= 1.12.10+dfsg1-1~)" override_dh_shlibdeps:
Bug#989482: unblock: htmlmin/0.1.12-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package htmlmin [ Reason ] htmlmin/0.1.12-2 was build with an old toolchain using pkg_resources instead of importlib. [ Impact ] htmlmin does not work with python3-pkg-resources not installed (#959508). [ Tests ] I made sure that htmlmin now works without python3-pkg-resources installed. [ Risks ] This is a no change rebuild of an arch all package, I only left some metadata changes from git in there. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock htmlmin/0.1.12-3 diff -Nru htmlmin-0.1.12/debian/changelog htmlmin-0.1.12/debian/changelog --- htmlmin-0.1.12/debian/changelog 2019-08-10 20:37:03.0 +0200 +++ htmlmin-0.1.12/debian/changelog 2021-06-04 23:58:00.0 +0200 @@ -1,3 +1,22 @@ +htmlmin (0.1.12-3) unstable; urgency=medium + + * Team upload. + + [ Debian Janitor ] + * Set upstream metadata fields: Bug-Database. + * Set upstream metadata fields: Bug-Submit. + + [ Ondřej Nový ] + * d/control: Update Maintainer field with new Debian Python Team +contact address. + * d/control: Update Vcs-* fields with new Debian Python Team Salsa +layout. + + [ Jochen Sprickerhof ] + * No changes rebuild to use importlib instead of pkg_resources (Closes: #959508) + + -- Jochen Sprickerhof Fri, 04 Jun 2021 23:58:00 +0200 + htmlmin (0.1.12-2) unstable; urgency=medium * Team upload. diff -Nru htmlmin-0.1.12/debian/control htmlmin-0.1.12/debian/control --- htmlmin-0.1.12/debian/control 2019-08-10 20:37:03.0 +0200 +++ htmlmin-0.1.12/debian/control 2021-06-04 23:56:54.0 +0200 @@ -1,5 +1,5 @@ Source: htmlmin -Maintainer: Debian Python Modules Team +Maintainer: Debian Python Team Uploaders: Adrian Vondendriesch , Section: python @@ -7,8 +7,8 @@ Build-Depends: dh-python, python3-setuptools, python3-all, debhelper-compat (= 9), help2man Standards-Version: 4.1.2 Homepage: https://htmlmin.readthedocs.org/en/latest/ -Vcs-Git: https://salsa.debian.org/python-team/modules/htmlmin.git -Vcs-Browser: https://salsa.debian.org/python-team/modules/htmlmin +Vcs-Git: https://salsa.debian.org/python-team/packages/htmlmin.git +Vcs-Browser: https://salsa.debian.org/python-team/packages/htmlmin Package: python3-htmlmin Architecture: all diff -Nru htmlmin-0.1.12/debian/upstream/metadata htmlmin-0.1.12/debian/upstream/metadata --- htmlmin-0.1.12/debian/upstream/metadata 1970-01-01 01:00:00.0 +0100 +++ htmlmin-0.1.12/debian/upstream/metadata 2021-06-04 23:45:32.0 +0200 @@ -0,0 +1,2 @@ +Bug-Database: https://github.com/mankyd/htmlmin/issues +Bug-Submit: https://github.com/mankyd/htmlmin/issues/new
Bug#989522: unblock: trscripts/1.18+nmu2 xfonts-bolkhov/1.1.20001007-8.2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package trscripts and xfonts-bolkhov [ Reason ] The awk script generated by trscripts used a non deterministic for-in loop resulting in the russian letter 'у' displayed as latin u with the xfonts-bolkhov-misc font. This was reported as #979599 and #979710. [ Impact ] Font rendering would be wrong without the patch. [ Tests ] run: xfontsel -sampleUCS у -pattern "-rfx-*" and look at the displayed symbol. [ Risks ] The change in trscripts is minimal, just using a different for loop style. xfonts-bolkhov is a no change rebuild, just bumping the dependency on trscripts. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock trscripts/1.18+nmu2 unblock xfonts-bolkhov/1.1.20001007-8.2 diff -Nru trscripts-1.18+nmu1/debian/changelog trscripts-1.18+nmu2/debian/changelog --- trscripts-1.18+nmu1/debian/changelog2021-01-07 15:01:30.0 +0100 +++ trscripts-1.18+nmu2/debian/changelog2021-06-05 20:08:15.0 +0200 @@ -1,3 +1,12 @@ +trscripts (1.18+nmu2) unstable; urgency=medium + + * Non-maintainer upload. + * Make trbdf awk script portable (Closes: #979599). +POSIX awk does not specify the order in a for(i in array) loop, so +switching to a for loop with an increment. + + -- Jochen Sprickerhof Sat, 05 Jun 2021 20:08:15 +0200 + trscripts (1.18+nmu1) unstable; urgency=medium * Non maintainer upload by the Reproducible Builds team. diff -Nru trscripts-1.18+nmu1/gen_trbdf trscripts-1.18+nmu2/gen_trbdf --- trscripts-1.18+nmu1/gen_trbdf 2009-05-02 12:43:11.0 +0200 +++ trscripts-1.18+nmu2/gen_trbdf 2021-06-05 20:08:15.0 +0200 @@ -312,15 +312,15 @@ EOF if [ "$usefb" = yes ]; then -printf " split(tu[i] \" \" alt1[tu[i]] \" \" alt2[tu[i]], a);\n" +printf " an = split(tu[i] \" \" alt1[tu[i]] \" \" alt2[tu[i]], a);\n" printf " split(0 \" \" weight1[tu[i]] \" \" weight2[tu[i]], w);\n" else -printf " split(tu[i] \" \" alt1[tu[i]], a);\n" +printf " an = split(tu[i] \" \" alt1[tu[i]], a);\n" printf " split(0 \" \" weight1[tu[i]], w);\n" fi cat <<"EOF" - for(j in a) + for(j=1; j <= an; ++j) { if(ut[a[j]]!="") { @@ -339,7 +339,7 @@ } } k=0; - for(j in a) + for(j=1; j <= an; ++j) { if(ut[a[j]]!="") { @@ -356,7 +356,7 @@ printf "\";\n"; } k=0; - for(j in a) + for(j=1; j <= an; ++j) { if(ut[a[j]]!="") { diff -u xfonts-bolkhov-1.1.20001007/debian/changelog xfonts-bolkhov-1.1.20001007/debian/changelog --- xfonts-bolkhov-1.1.20001007/debian/changelog +++ xfonts-bolkhov-1.1.20001007/debian/changelog @@ -1,3 +1,11 @@ +xfonts-bolkhov (1.1.20001007-8.2) unstable; urgency=medium + + * Non-maintainer upload. + * Bump dependency on trscripts to fix generated fonts when using mawk, cf. +#979599. + + -- Jochen Sprickerhof Sat, 05 Jun 2021 23:47:31 +0200 + xfonts-bolkhov (1.1.20001007-8.1) unstable; urgency=medium * Non maintainer upload by the Reproducible Builds team. diff -u xfonts-bolkhov-1.1.20001007/debian/control xfonts-bolkhov-1.1.20001007/debian/control --- xfonts-bolkhov-1.1.20001007/debian/control +++ xfonts-bolkhov-1.1.20001007/debian/control @@ -3,7 +3,7 @@ Section: fonts Priority: optional Standards-Version: 3.6.2 -Build-Depends: debhelper (>=9~), trscripts (>= 1.13), xfonts-utils +Build-Depends: debhelper (>=9~), trscripts (>= 1.18+nmu2), xfonts-utils Package: xfonts-bolkhov-75dpi Architecture: all
Bug#989357: nmu: ros-rviz_1.14.4+dfsg-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi release team, libogre-1.12 bumped it's soname and library names without changing the package name, breaking rviz (#989344). As rviz is the only dependency, would you be ok with a binNMU, let it into bullseye and ignore the bug for bullseye? nmu ros-rviz_1.14.4+dfsg-3 . ANY . unstable . -m "rebuild against new libogre-1.12 soname" Thanks! Jochen
Bug#990632: unblock: fdroidserver/2.0.3-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package fdroidserver [ Reason ] fdroidserver has successful autopkgtests but fails on ppc64el due to zipalign not being available on that platform (Not a regression). I believe that is #980087. For the patch itself, it fixes two warnings in the linting part of fdroidserver. ruamel deprecated one function and a restriction for the Version field in the F-Droid metadata was lifted. Note that I opted for a new upstream version cause adding those two change would have resulted in basically the same patch plus/minus the version noise. Hope that is fine. [ Impact ] bullseye users would would get a lot of false warnings when linting a metadata file. [ Tests ] I tested the new version manually. Also upstream is using it in production. [ Risks ] The code change for the Version field is only changing a regex so it seems trivial to me. For ruamel the deprecated function was replaced by it's content. [ Checklist ] [X] all changes are documented in the d/changelog (through upstream changelog) [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock fdroidserver/2.0.3-1 diff --git a/CHANGELOG.md b/CHANGELOG.md index 99a5f430..945e237c 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -4,7 +4,21 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) -## [2.0.1] - 2020-03-09 +## [2.0.3] - 2021-07-01 + +### Fixed + +* Support AutoUpdateMode: Version without pattern + [931](https://gitlab.com/fdroid/fdroidserver/-/merge_requests/931) + +## [2.0.2] - 2021-06-01 + +### Fixed + +* fix "ruamel round_trip_dump will be removed" + [932](https://gitlab.com/fdroid/fdroidserver/-/merge_requests/932) + +## [2.0.1] - 2021-03-09 ### Fixed @@ -18,7 +32,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/) * checkupdates: set User-Agent to make gitlab.com happy * Run push_binary_transparency only once -## [2.0] - 2020-01-31 +## [2.0] - 2021-01-31 For a more complete overview, see the [2.0 milestone](https://gitlab.com/fdroid/fdroidserver/-/milestones/10) diff --git a/PKG-INFO b/PKG-INFO index 1c5616cd..3188aba8 100644 --- a/PKG-INFO +++ b/PKG-INFO @@ -1,6 +1,6 @@ Metadata-Version: 2.1 Name: fdroidserver -Version: 2.0.1 +Version: 2.0.3 Summary: F-Droid Server Tools Home-page: https://f-droid.org Author: The F-Droid Project diff --git a/debian/changelog b/debian/changelog index 59e519f1..d45c4c20 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +fdroidserver (2.0.3-1) unstable; urgency=medium + + * Team upload. + * New upstream version 2.0.3 + + -- Jochen Sprickerhof Thu, 01 Jul 2021 14:48:57 +0200 + fdroidserver (2.0.1-1) unstable; urgency=medium * New upstream version 2.0.1 diff --git a/fdroidserver.egg-info/PKG-INFO b/fdroidserver.egg-info/PKG-INFO index 1c5616cd..3188aba8 100644 --- a/fdroidserver.egg-info/PKG-INFO +++ b/fdroidserver.egg-info/PKG-INFO @@ -1,6 +1,6 @@ Metadata-Version: 2.1 Name: fdroidserver -Version: 2.0.1 +Version: 2.0.3 Summary: F-Droid Server Tools Home-page: https://f-droid.org Author: The F-Droid Project diff --git a/fdroidserver/checkupdates.py b/fdroidserver/checkupdates.py index f5d0d450..b9e723df 100644 --- a/fdroidserver/checkupdates.py +++ b/fdroidserver/checkupdates.py @@ -492,7 +492,7 @@ def checkupdates_app(app): logging.warning("Can't auto-update app with no CurrentVersionCode: " + app.id) elif mode in ('None', 'Static'): pass -elif mode.startswith('Version '): +elif mode.startswith('Version'): pattern = mode[8:] suffix = '' if pattern.startswith('+'): diff --git a/fdroidserver/metadata.py b/fdroidserver/metadata.py index 6c3c4815..8b27c991 100644 --- a/fdroidserver/metadata.py +++ b/fdroidserver/metadata.py @@ -448,7 +448,7 @@ valuetypes = { ["AntiFeatures"]), FieldValidator("Auto Update Mode", - r"^(Version .+|None)$", + r"^(Version.*|None)$", ["AutoUpdateMode"]), FieldValidator("Update Check Mode", @@ -964,7 +964,9 @@ def write_yaml(mf, app): return builds yaml_app = _app_to_yaml(app) -ruamel.yaml.round_trip_dump(yaml_app, mf, indent=4, block_seq_indent=2) +yaml = ruamel.yaml.YAML() +yaml.indent(mapping=4, sequence=4, offset=2) +yaml.dump(yaml_app, stream=mf) build_line_sep = re.compile(r'(?
Bug#987429: unblock: fdroidcl/0.5.0-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package fdroidcl [ Reason ] The F-Droid metadata json format changed slightly moving the App name to the localized part. The update adds a upstream accepted patch to prefer that over the general field in case that is empty. It is basically a copy and paste of what is already done for the summary and description fields in the lines below the patch. [ Impact ] The name of an app is not shown: $ fdroidcl show org.fdroid.fdroid | grep "^Name" Name : [ Tests ] I tested the change manually. [ Risks ] Code change is trivial and popcon is low. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock fdroidcl/0.5.0-3 diff --git a/debian/changelog b/debian/changelog index a061ba6..d52170b 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +fdroidcl (0.5.0-3) unstable; urgency=medium + + * Add patch in case the app name is empty + + -- Jochen Sprickerhof Fri, 23 Apr 2021 18:42:52 +0200 + fdroidcl (0.5.0-2) unstable; urgency=medium * bump policy and debhelper versions diff --git a/debian/patches/0002-Use-English-app-name-if-the-other-is-empty.patch b/debian/patches/0002-Use-English-app-name-if-the-other-is-empty.patch new file mode 100644 index 000..2dc860a --- /dev/null +++ b/debian/patches/0002-Use-English-app-name-if-the-other-is-empty.patch @@ -0,0 +1,30 @@ +From: Jochen Sprickerhof +Date: Fri, 23 Apr 2021 18:34:00 +0200 +Subject: Use English app name if the other is empty + +--- + fdroid/index.go | 4 + 1 file changed, 4 insertions(+) + +diff --git a/fdroid/index.go b/fdroid/index.go +index 1716c19..119ea7e 100644 +--- a/fdroid/index.go b/fdroid/index.go +@@ -59,6 +59,7 @@ type App struct { + } + + type Localization struct { ++ Namestring `json:"name"` + Summary string `json:"summary"` + Description string `json:"description"` + } +@@ -274,6 +275,9 @@ func LoadIndexJSON(r io.Reader) (*Index, error) { + english, enOK = app.Localized["en-US"] + } + ++ if app.Name == "" && enOK { ++ app.Name = english.Name ++ } + // TODO: why does the json index contain html escapes? + app.Name = html.UnescapeString(app.Name) + diff --git a/debian/patches/series b/debian/patches/series index 0890fce..08f194a 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1 +1,2 @@ 0001-Drop-main_test.go.patch +0002-Use-English-app-name-if-the-other-is-empty.patch
Bug#988088: unblock: libica/3.2.0-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package libica [ Reason ] The package fails to build with GCC 10 due to multiple definitions of variables in the test suite (#987614). [ Impact ] libica is a transitive build dependency of simple-tpm-pk11 on s390x. [ Tests ] I successfully tested the build and test suite on zelenka. [ Risks ] As the changes are only in the test suite and rather simple I don't see a risk. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing [ Other info ] The upstream website moved to Github, so I updated the homepage filed, hope that's fine. unblock libica/3.2.0-4 diff -Nru libica-3.2.0/debian/changelog libica-3.2.0/debian/changelog --- libica-3.2.0/debian/changelog 2019-03-12 05:04:53.0 +0100 +++ libica-3.2.0/debian/changelog 2021-05-05 09:27:48.0 +0200 @@ -1,3 +1,11 @@ +libica (3.2.0-4) unstable; urgency=medium + + * QA upload. + * Add multiple_defines.patch, fixes a FTBFS with gcc 10 (Closes: 987614). + * Update homepage field. + + -- Jochen Sprickerhof Wed, 05 May 2021 09:27:48 +0200 + libica (3.2.0-3) unstable; urgency=medium * QA upload. diff -Nru libica-3.2.0/debian/control libica-3.2.0/debian/control --- libica-3.2.0/debian/control 2019-03-12 05:04:50.0 +0100 +++ libica-3.2.0/debian/control 2021-05-05 09:27:48.0 +0200 @@ -4,7 +4,7 @@ Build-Depends: debhelper (>= 10), dh-autoreconf, libssl-dev, autoconf-archive Standards-Version: 4.1.0 Section: libs -Homepage: http://sourceforge.net/projects/opencryptoki/files/libica/ +Homepage: https://github.com/opencryptoki/libica Package: libica-dev Section: libdevel diff -Nru libica-3.2.0/debian/patches/multiple_defines.patch libica-3.2.0/debian/patches/multiple_defines.patch --- libica-3.2.0/debian/patches/multiple_defines.patch 1970-01-01 01:00:00.0 +0100 +++ libica-3.2.0/debian/patches/multiple_defines.patch 2021-05-05 09:27:48.0 +0200 @@ -0,0 +1,29 @@ +Description: Remove multiple definitions in the test suite + Fixes the build with gcc 10. +Author: Jochen Sprickerhof +Bug-Debian: https://bugs.debian.org/987614 +Forwarded: not-needed +Last-Update: 2021-05-05 + +--- libica-3.2.0.orig/src/tests/libica_sha_test/include/sha_tests.h libica-3.2.0/src/tests/libica_sha_test/include/sha_tests.h +@@ -23,5 +23,4 @@ int sha3_256_api_test(test_t * test); + int sha3_384_api_test(test_t * test); + int sha3_512_api_test(test_t * test); + +-int silent; + #endif +--- libica-3.2.0.orig/src/tests/libica_sha_test/sha_tests.c libica-3.2.0/src/tests/libica_sha_test/sha_tests.c +@@ -8,9 +8,9 @@ + #include "queue_t.h" + #include "sha_tests.h" + #include "critical_error.h" +-#define VERBOSE_EXTERN ++#define VERBOSITY_EXTERN + #include "../testcase.h" +-#undef VERBOSE_EXTERN ++#undef VERBOSITY_EXTERN + + #define SHA1_BLOCK_SIZE (512 / 8) + #define SHA224_BLOCK_SIZE (512 / 8) diff -Nru libica-3.2.0/debian/patches/series libica-3.2.0/debian/patches/series --- libica-3.2.0/debian/patches/series 2017-10-04 11:28:19.0 +0200 +++ libica-3.2.0/debian/patches/series 2021-05-05 09:27:48.0 +0200 @@ -1 +1,2 @@ test-suite.patch +multiple_defines.patch
Bug#985750: unblock: gazebo/11.1.0+dfsg-6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gazebo [ Reason ] The version in testing was build with an old version of protobuf so software using libgazebo-dev and the current protobuf version in testing fail to build, like gazebo_ros (not in Debian). The fix is to rebuild against the current protobuf API version and to depend on that to make sure it is rebuild automatically in future. The gazebo package only builds on amd64 and i386 and was blocked from migration due to britney not being smarter. Discussing this in #debian-devel, elbrus proposed to mark the only autopkgtest as superficial as it not really testing enough of the package. So the diff includes this as well. [ Impact ] The protobuf headers in libgazebo-dev would not be usable. [ Tests ] There are no automated tests, compiling gazebo_ros manually works after the rebuild. [ Risks ] There is no risk, as the libgazebo-dev already depends on libprotobuf-dev which provides the protobufapi package. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock gazebo/11.1.0+dfsg-6 diff --git a/debian/changelog b/debian/changelog index 6ee8a113..7e75fc8b 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,17 @@ +gazebo (11.1.0+dfsg-6) unstable; urgency=medium + + * Team upload. + * Mark test superficial + + -- Jochen Sprickerhof Mon, 22 Mar 2021 22:21:38 +0100 + +gazebo (11.1.0+dfsg-5) unstable; urgency=medium + + * Team upload. + * libgazebo-dev Depends on Protobuf API version (Closes: #985660) + + -- Jochen Sprickerhof Sun, 21 Mar 2021 22:21:29 +0100 + gazebo (11.1.0+dfsg-4) unstable; urgency=medium * Team upload. diff --git a/debian/control b/debian/control index 161cefd4..5ac5de9b 100644 --- a/debian/control +++ b/debian/control @@ -172,7 +172,8 @@ Depends: libtbb-dev, libgazebo11 (= ${binary:Version}), gazebo-common (= ${source:Version}), gazebo-plugin-base (= ${binary:Version}), - ${misc:Depends} + ${misc:Depends}, + ${protobuf:API}, Breaks: libgazebo7-dev, libgazebo9-dev (<< 11.0.0+dfsg-1~) Replaces: libgazebo7-dev, libgazebo9-dev (<< 11.0.0+dfsg-1~) Description: Open Source Robotics Simulator - Development Files diff --git a/debian/rules b/debian/rules index c5b852a6..7268f462 100755 --- a/debian/rules +++ b/debian/rules @@ -2,6 +2,11 @@ export DEB_BUILD_MAINT_OPTIONS = hardening=+all +# see #985660 +# extract the protobuf API version package and add it to d/control +# Needed because protobuf generated headers are only compatible with that version +protobufapi := $(shell dpkg-query -W -f '$${Provides}' libprotobuf-dev | grep -o 'protobuf-api-[^ ]*') + override_dh_auto_configure: dh_auto_configure -- \ -DUSE_HOST_CFLAGS:BOOL=False \ @@ -18,6 +23,9 @@ override_dh_install: # Remove old script rm -f debian/gazebo/usr/bin/gzprop +execute_before_dh_gencontrol: + echo 'protobuf:API=$(protobufapi)' >> debian/libgazebo-dev.substvars + # Tests needs an X server running and GPU acceleration override_dh_auto_test: diff --git a/debian/tests/control b/debian/tests/control index 3a872e84..9de62eb0 100644 --- a/debian/tests/control +++ b/debian/tests/control @@ -1,2 +1,3 @@ Tests: build Depends: @, pkg-config, build-essential +Restrictions: superficial
Bug#986115: unblock: java3d/1.5.2+dfsg-17
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package java3d (Please provide enough (but not too much) information to help the release team to judge the request efficiently. E.g. by filling in the sections below.) [ Reason ] java3d FTBFS on i386 due to conflicting typedefs. [ Impact ] A number of packages are removed from testing. [ Tests ] Only type checking carried out by the compiler. [ Risks ] I assume it is low as the type was just wrong before. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock java3d/1.5.2+dfsg-17 diff --git a/debian/changelog b/debian/changelog index dfd20e2..2430b73 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +java3d (1.5.2+dfsg-17) unstable; urgency=medium + + * Team upload. + * Update patch for GLsizeiptr typedef (Closes: #983760) + * Update homepage (Closes: #911055) + + -- Jochen Sprickerhof Mon, 29 Mar 2021 20:11:36 +0200 + java3d (1.5.2+dfsg-16) unstable; urgency=medium * No longer build the applet to fix the build failure with Java 11 diff --git a/debian/control b/debian/control index 8285988..b0804c8 100644 --- a/debian/control +++ b/debian/control @@ -19,7 +19,7 @@ Build-Depends: Standards-Version: 4.2.1 Vcs-Git: https://salsa.debian.org/java-team/java3d.git Vcs-Browser: https://salsa.debian.org/java-team/java3d -Homepage: http://java3d.java.net +Homepage: https://www.oracle.com/java/technologies/javase/java-3d.html Package: libjava3d-java Architecture: all diff --git a/debian/patches/0011-Fix-definition-of-GLsizeiptr.patch b/debian/patches/0011-Fix-definition-of-GLsizeiptr.patch new file mode 100644 index 000..e9f384d --- /dev/null +++ b/debian/patches/0011-Fix-definition-of-GLsizeiptr.patch @@ -0,0 +1,40 @@ +From: Jochen Sprickerhof +Date: Mon, 29 Mar 2021 19:48:13 +0200 +Subject: Fix definition of GLsizeiptr + +--- + j3d-core/src/native/ogl/glext.h | 10 ++ + 1 file changed, 6 insertions(+), 4 deletions(-) + +diff --git a/j3d-core/src/native/ogl/glext.h b/j3d-core/src/native/ogl/glext.h +index 2519a6c..71ff798 100644 +--- a/j3d-core/src/native/ogl/glext.h b/j3d-core/src/native/ogl/glext.h +@@ -43,6 +43,8 @@ extern "C" { + #define GLAPI extern + #endif + ++#include ++ + /*/ + + /* Header file version number, required by OpenGL ABI for Linux */ +@@ -3390,14 +3392,14 @@ typedef char GLchar; /* native character */ + + #ifndef GL_VERSION_1_5 + /* GL types for handling large vertex buffer objects */ +-typedef ptrdiff_t GLintptr; +-typedef ptrdiff_t GLsizeiptr; ++typedef khronos_intptr_t GLintptr; ++typedef khronos_ssize_t GLsizeiptr; + #endif + + #ifndef GL_ARB_vertex_buffer_object + /* GL types for handling large vertex buffer objects */ +-typedef ptrdiff_t GLintptrARB; +-typedef ptrdiff_t GLsizeiptrARB; ++typedef khronos_intptr_t GLintptrARB; ++typedef khronos_ssize_t GLsizeiptrARB; + #endif + + #ifndef GL_ARB_shader_objects diff --git a/debian/patches/series b/debian/patches/series index 4ceba7b..f6a7960 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -5,6 +5,6 @@ 05_pic_amd64.patch 05_pic_i586.patch 06_java-compat.patch -typedef.patch 07_java9_compatibility.patch 08_java10_compatibility.patch +0011-Fix-definition-of-GLsizeiptr.patch diff --git a/debian/patches/typedef.patch b/debian/patches/typedef.patch deleted file mode 100644 index 942057e..000 --- a/debian/patches/typedef.patch +++ /dev/null @@ -1,27 +0,0 @@ -From: Markus Koschany -Date: Sat, 22 Nov 2014 23:54:59 +0100 -Subject: typedef - -Define GLsizeiptr and GLintptr explicitly to prevent a FTBFS. -This patch may be removed in the future when -https://bugs.debian.org/765933 gets fixed. - -Bug: https://bugs.debian.org/769301 -Forwarded: no - j3d-core/src/native/ogl/gldefs.h | 2 ++ - 1 file changed, 2 insertions(+) - -diff --git a/j3d-core/src/native/ogl/gldefs.h b/j3d-core/src/native/ogl/gldefs.h -index bf4434f..d20de17 100644 a/j3d-core/src/native/ogl/gldefs.h -+++ b/j3d-core/src/native/ogl/gldefs.h -@@ -65,6 +65,8 @@ - #include - #include - -+typedef ptrdiff_t GLsizeiptr; -+typedef ptrdiff_t GLintptr; - #include - #include - #ifdef Java3D_undef__glext_h_
Bug#987186: unblock: imagemagick/8:6.9.11.60+dfsg-1.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package imagemagick [ Reason ] imagemagick creates wrong images making gscan2pdf FTBFS. [ Impact ] gscan2pdf would FTBFS in bullseye and imagemagick be broken. [ Tests ] I checked that the correct image is generated again and also gscan2pdf builds successfully and autopkgtests work. [ Risks ] The code change is rather minimal, just sanitizing a size of 0, so the risk is low. Also there are a lot of tests and autopkgtest in other packages, which all pass and the diff is taken from upstream. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock imagemagick/8:6.9.11.60+dfsg-1.1 diff -Nru imagemagick-6.9.11.60+dfsg/debian/changelog imagemagick-6.9.11.60+dfsg/debian/changelog --- imagemagick-6.9.11.60+dfsg/debian/changelog 2021-02-01 17:22:02.0 +0100 +++ imagemagick-6.9.11.60+dfsg/debian/changelog 2021-04-13 20:58:45.0 +0200 @@ -1,3 +1,10 @@ +imagemagick (8:6.9.11.60+dfsg-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Import upstream patch to fix font size (Closes: #980202). + + -- Jochen Sprickerhof Tue, 13 Apr 2021 20:58:45 +0200 + imagemagick (8:6.9.11.60+dfsg-1) unstable; urgency=high * New upstream version diff -Nru imagemagick-6.9.11.60+dfsg/debian/patches/0001-https-github.com-ImageMagick-ImageMagick6-issues-145.patch imagemagick-6.9.11.60+dfsg/debian/patches/0001-https-github.com-ImageMagick-ImageMagick6-issues-145.patch --- imagemagick-6.9.11.60+dfsg/debian/patches/0001-https-github.com-ImageMagick-ImageMagick6-issues-145.patch 1970-01-01 01:00:00.0 +0100 +++ imagemagick-6.9.11.60+dfsg/debian/patches/0001-https-github.com-ImageMagick-ImageMagick6-issues-145.patch 2021-04-13 20:58:25.0 +0200 @@ -0,0 +1,32 @@ +From 650f0f7ecfaee42b3da89a04b92b05f27fe786e9 Mon Sep 17 00:00:00 2001 +From: Cristy +Date: Sat, 10 Apr 2021 12:15:54 -0400 +Subject: [PATCH] https://github.com/ImageMagick/ImageMagick6/issues/145 + +--- + magick/annotate.c | 9 + + 1 file changed, 9 insertions(+) + +diff --git a/magick/annotate.c b/magick/annotate.c +index 29c8bbe74..20fbf7bb1 100644 +--- a/magick/annotate.c b/magick/annotate.c +@@ -1484,6 +1484,15 @@ static MagickBooleanType RenderFreetype(Image *image,const DrawInfo *draw_info, + metrics->pixels_per_em.y=face->size->metrics.y_ppem; + metrics->ascent=(double) face->size->metrics.ascender/64.0; + metrics->descent=(double) face->size->metrics.descender/64.0; ++ if (face->size->metrics.ascender == 0) ++{ ++ /* ++Sanitize buggy ascender and descender values. ++ */ ++ metrics->ascent=face->size->metrics.y_ppem; ++ if (face->size->metrics.descender == 0) ++metrics->descent=face->size->metrics.y_ppem/-3.5; ++} + metrics->width=0; + metrics->origin.x=0; + metrics->origin.y=0; +-- +2.31.0 + diff -Nru imagemagick-6.9.11.60+dfsg/debian/patches/series imagemagick-6.9.11.60+dfsg/debian/patches/series --- imagemagick-6.9.11.60+dfsg/debian/patches/series2021-02-01 17:20:25.0 +0100 +++ imagemagick-6.9.11.60+dfsg/debian/patches/series2021-04-13 20:58:35.0 +0200 @@ -20,3 +20,4 @@ 0020-Fix-a-typo-in-manpage.patch 0021-Finalize-fixing-error-in-html.patch 0022-FIx-error-in-new-upstream-html.patch +0001-https-github.com-ImageMagick-ImageMagick6-issues-145.patch
Bug#991724: unblock: python-fakeredis/1.4.5-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package python-fakeredis [ Reason ] The last upstream release of Redis (with security updates) changed the semantics of the SINTER[STORE] commands. This broke the autopkgtests of python-fakeredis which compared the results against the real Redis. [ Impact ] Currently the security update of Redis is blocked from migrating to testing and would need help.. [ Tests ] fakeredis has a big test suite and I did some manual tests as well. [ Risks ] The change is a behaviour change but Redis upstream considers it more correct: https://github.com/redis/redis/issues/9273 Given that fakeredis tries to mimic the Redis behaviour and the change is pretty minimal, I think the risk is rather small. I've tested the only reverse build dependency in the archive (cachy) to build fine with the new fakeredis version. Also fakeredis upstream acknowledged the patch: https://github.com/jamesls/fakeredis/pull/303 [ Checklist ] [X] all changes are documented in the d/changelog and in the patch [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing unblock python-fakeredis/1.4.5-4 diff --git a/debian/changelog b/debian/changelog index 820c656..0aad551 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,17 @@ +python-fakeredis (1.4.5-4) unstable; urgency=medium + + * Team upload. + * Bump tests dependency for new Redis behaviour + + -- Jochen Sprickerhof Fri, 30 Jul 2021 22:40:47 +0200 + +python-fakeredis (1.4.5-3) unstable; urgency=medium + + * Team upload. + * Add patch for new Redis 6.0.15 SINTER behaviour (Closes: #991451) + + -- Jochen Sprickerhof Fri, 30 Jul 2021 14:32:28 +0200 + python-fakeredis (1.4.5-2) unstable; urgency=medium * Lift pytest version cap. diff --git a/debian/patches/0002-SINTER-STORE-requires-keys-to-be-sets.patch b/debian/patches/0002-SINTER-STORE-requires-keys-to-be-sets.patch new file mode 100644 index 000..0e3fccb --- /dev/null +++ b/debian/patches/0002-SINTER-STORE-requires-keys-to-be-sets.patch @@ -0,0 +1,56 @@ +From: Jochen Sprickerhof +Date: Fri, 30 Jul 2021 13:50:25 +0200 +Subject: SINTER[STORE] requires keys to be sets + +Starting with Redis 6.0.15 this behaviour changed. +The definition of SINTER[STORE] states: + +"Keys that do not exist are considered to be empty sets." + +At the same time SINTER only accepts set: + +"intersection of all the given sets" + +Both quotes from: https://redis.io/commands/sinter. + +The behaviour of Redis 6.0.14 was that it ignored the type of later keys +if it found an empty set and returned that. Radis 6.0.15 changed this +behaviour to return a WRONGTYPE if it finds a non set key in the +arguments. + +Example to reproduce: + +127.0.0.1:6379> FLUSHALL +OK +127.0.0.1:6379> SINTER a b +(empty array) +127.0.0.1:6379> SET b something +OK +127.0.0.1:6379> SINTER a b +(error) WRONGTYPE Operation against a key holding the wrong kind of value + +Cf. https://github.com/redis/redis/issues/9273. +--- + fakeredis/_server.py | 6 ++ + 1 file changed, 2 insertions(+), 4 deletions(-) + +diff --git a/fakeredis/_server.py b/fakeredis/_server.py +index f408ab7..a4f8599 100644 +--- a/fakeredis/_server.py b/fakeredis/_server.py +@@ -1866,13 +1866,11 @@ class FakeSocket: + def sdiffstore(self, dst, *keys): + return self._setop(lambda a, b: a - b, False, dst, *keys) + +-# The following keys can't be marked as sets because of the +-# stop_if_empty early-out. +-@command((Key(set),), (Key(),)) ++@command((Key(set),), (Key(set),)) + def sinter(self, *keys): + return self._setop(lambda a, b: a & b, True, None, *keys) + +-@command((Key(), Key(set)), (Key(),)) ++@command((Key(), Key(set)), (Key(set),)) + def sinterstore(self, dst, *keys): + return self._setop(lambda a, b: a & b, True, dst, *keys) + diff --git a/debian/patches/series b/debian/patches/series index d448f15..87b0361 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1 +1,2 @@ skip-flaky-test.patch +0002-SINTER-STORE-requires-keys-to-be-sets.patch diff --git a/debian/tests/control b/debian/tests/control index 91f1d97..9e7c574 100644 --- a/debian/tests/control +++ b/debian/tests/control @@ -12,6 +12,6 @@ Depends: python3-setuptools, python3-six, python3-sortedcontainers, - redis-server, + redis-server (>= 5:6.0.15), Restrictions: allow-stderr, isolation-container Test-Command: set -e; for py in $(py3versions -i); do echo "[*] testing on $py:"; $py -Wd -m pytest -v -x --ignore=test/test_aioredis.py 2>&1; done
Bug#996013: transition: poco
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition the new POCO version. The auto generated ben file looks fine and I have rebuild all reverse dependencies successfully. Cheers Jochen
Bug#996014: transition: orocos-kdl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition orocos-kdl. The auto generated ben file looks fine and I've rebuild all reverse dependencies successfully. Cheers Jochen
Bug#996080: transition: pcl
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition pcl. The autogenerated ben file looks fine and ros-perception-pcl builds against the new version. For python-pcl I will upload a fixed version myself. Cheers Jochen
Bug#996615: transition: ros-geometric-shapes
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition Hi release team, I would like to transition ros-geometric-shapes. The autogenerated Ben file is ok and I've tested the downstream dependency successfully. Cheers Jochen
Bug#996619: transition: ros-ros-comm
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition X-Debbugs-Cc: jspri...@debian.org Hi release team, I would like to transition ros-ros-comm. The auto generated ben file is ok and I've rebuild all reverse dependencies successfully. Cheers Jochen
Bug#1000736: bullseye-pu: package poco/1.10.0-6
Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: jspri...@debian.org [ Reason ] Compared to old-stable, libpoco-dev installs the cmake modules into multi arch directories but I introduced a bug with it by installing them into /usr/lib//cmake/cmake/Poco, i.e. with a second cmake in the path and cmake can't find them there. This is reported in #1000656. [ Impact ] Poco is not found by cmake. [ Tests ] I tested it manually with: find_package(Poco COMPONENTS Foundation REQUIRED) [ Risks ] I see the risk as low as the cmake modules are currently not usable because the are at the wrong place. Even more, even if made available to cmake manually, say by extending CMAKE_MODULE_PATH, they are not usable cause the exported paths to the shared objects are wrong and they depend on a missing FindPCRE.cmake. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in stable [X] the issue is verified as fixed in unstable [ Changes ] The changes are twofold: 1. The install path of the cmake modules is corrected in the cmake source, using GNUInstallDirs. This fixes the exported paths to the shared objects as well. 2. d/libpoco-dev.install is adopted to the new cmake modules location and to install the FindPCRE.cmake as well. >From 0b20519c8c4df22c6f5fffac9d977c8eea4799c5 Mon Sep 17 00:00:00 2001 From: Jochen Sprickerhof Date: Sun, 28 Nov 2021 08:25:35 +0100 Subject: [PATCH] Fix cmake files --- debian/changelog | 9 +++ debian/libpoco-dev.install| 3 +- ...tall-cmake-files-into-multiarch-dirs.patch | 62 +++ debian/patches/series | 1 + 4 files changed, 74 insertions(+), 1 deletion(-) create mode 100644 debian/patches/0013-Install-cmake-files-into-multiarch-dirs.patch diff --git a/debian/changelog b/debian/changelog index f055dcf1..d9068772 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +poco (1.10.0-6+deb11u1) bullseye; urgency=medium + + * Fix cmake files (Closes: #1000656). + - Drop duplicated cmake/ in path so they are discoverable by cmake. + - Fix cmake logic to export correct paths of shared objects. + - Install FindPCRE.cmake, needed by PocoFoundationConfig.cmake. + + -- Jochen Sprickerhof Sun, 28 Nov 2021 08:18:29 +0100 + poco (1.10.0-6) unstable; urgency=medium [ Debian Janitor ] diff --git a/debian/libpoco-dev.install b/debian/libpoco-dev.install index 2ab89382..68f197b8 100644 --- a/debian/libpoco-dev.install +++ b/debian/libpoco-dev.install @@ -1,3 +1,4 @@ usr/include/* usr/lib/*/lib*.so -usr/lib/cmake usr/lib/${DEB_HOST_MULTIARCH}/cmake +usr/lib/*/cmake +cmake/FindPCRE.cmake usr/lib/${DEB_HOST_MULTIARCH}/cmake/Poco/ diff --git a/debian/patches/0013-Install-cmake-files-into-multiarch-dirs.patch b/debian/patches/0013-Install-cmake-files-into-multiarch-dirs.patch new file mode 100644 index ..afe6c036 --- /dev/null +++ b/debian/patches/0013-Install-cmake-files-into-multiarch-dirs.patch @@ -0,0 +1,62 @@ +From: Jochen Sprickerhof +Date: Sun, 28 Nov 2021 08:16:05 +0100 +Subject: Install cmake files into multiarch dirs + +--- + CMakeLists.txt | 3 ++- + cmake/PocoMacros.cmake | 6 +++--- + 2 files changed, 5 insertions(+), 4 deletions(-) + +diff --git a/CMakeLists.txt b/CMakeLists.txt +index e9d144e..2c4b716 100644 +--- a/CMakeLists.txt b/CMakeLists.txt +@@ -438,12 +438,13 @@ write_basic_package_version_file( + ) + + configure_file(cmake/${PROJECT_NAME}Config.cmake.in "${CMAKE_CURRENT_BINARY_DIR}/${PROJECT_NAME}/${PROJECT_NAME}Config.cmake" @ONLY) ++include(GNUInstallDirs) + install( + FILES + ${CMAKE_CURRENT_BINARY_DIR}/${PROJECT_NAME}/${PROJECT_NAME}Config.cmake + ${CMAKE_CURRENT_BINARY_DIR}/${PROJECT_NAME}/${PROJECT_NAME}ConfigVersion.cmake + DESTINATION +-"lib${LIB_SUFFIX}/cmake/${PROJECT_NAME}" ++"${CMAKE_INSTALL_LIBDIR}/cmake/${PROJECT_NAME}" + COMPONENT + Devel + ) +diff --git a/cmake/PocoMacros.cmake b/cmake/PocoMacros.cmake +index 652fc7d..7070f9c 100644 +--- a/cmake/PocoMacros.cmake b/cmake/PocoMacros.cmake +@@ -235,18 +235,19 @@ configure_file("cmake/Poco${target_name}Config.cmake" + + set(ConfigPackageLocation "lib/cmake/${PROJECT_NAME}") + ++include(GNUInstallDirs) + install( + EXPORT "${target_name}Targets" + FILE "${PROJECT_NAME}${target_name}Targets.cmake" + NAMESPACE "${PROJECT_NAME}::" +-DESTINATION "lib${LIB_SUFFIX}/cmake/${PROJECT_NAME}" ++DESTINATION "${CMAKE_INSTALL_LIBDIR}/cmake/${PROJECT_NAME}" + ) + + install( + FILES + "${CMAKE_BINARY_DIR}/${PROJECT_NAME}/${PROJECT_NAME}${target_name}Config.cmake" + "${CMAKE_B
Bug#1000607: bullseye-pu: package ros-ros-comm/1.15.9-ds1-7
Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: jspri...@debian.org [ Reason ] CVE-2021-37146 was published with a denial of service against ros-ros-comm. [ Impact ] The impact is rather low as the ROS middleware has no authentication nor security features implemented and should only be used behind a firewall. Still would be good to get it fixed in stable. [ Tests ] The patch adds a unit test and I ran manual tests using the relay command from the topic-tools package. [ Risks ] Except for one new method (nextTagData) I see the code as rather simple, and the risk as low. For nextTagData the difference is that it is more strict in parsing only the next xml tag which should be fine in the defined domain. Also this is part of the upstream releases and also in unstable since some time. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in (old)stable [X] the issue is verified as fixed in unstable [ Changes ] The patches add three things: - Null pointer checks in XmlRpc. - Add and update unit tests for the new changes. - A new nextTagData method. This is an improved version of the old parseTag version. Both methods extract the data inside of a given xml tag in a string. The old parseTag used find to search for the requested tag. The new nextTagData only allows space characters in front of the expected xml tag. [ Other info ] I kept the individual patches as upstream merged them, hope that is fine. >From 5f40cf6d70e063b1684651794cfb75aaca68bee3 Mon Sep 17 00:00:00 2001 From: Jochen Sprickerhof Date: Wed, 20 Oct 2021 21:27:15 +0200 Subject: [PATCH] 1.15.9+ds1-7+deb11u1 (CVE-2021-37146) --- debian/changelog | 6 + .../0010-Fix-oversize-string-test.patch | 25 + ...fensive-checks-for-offset-being-NULL.patch | 45 ++ ...-tests-for-XML-tag-utility-functions.patch | 653 ++ ...13-Add-implementation-of-nextTagData.patch | 167 + ...h-structFromXml-to-using-nextTagData.patch | 31 + debian/patches/series | 5 + 7 files changed, 932 insertions(+) create mode 100644 debian/patches/0010-Fix-oversize-string-test.patch create mode 100644 debian/patches/0011-Add-defensive-checks-for-offset-being-NULL.patch create mode 100644 debian/patches/0012-Add-unit-tests-for-XML-tag-utility-functions.patch create mode 100644 debian/patches/0013-Add-implementation-of-nextTagData.patch create mode 100644 debian/patches/0014-Switch-structFromXml-to-using-nextTagData.patch diff --git a/debian/changelog b/debian/changelog index 057deda..a4d8cf2 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-ros-comm (1.15.9+ds1-7+deb11u1) bullseye; urgency=medium + + * Add https://github.com/ros/ros_comm/pull/2185 (Fix CVE-2021-37146) + + -- Jochen Sprickerhof Wed, 20 Oct 2021 21:28:10 +0200 + ros-ros-comm (1.15.9+ds1-7) unstable; urgency=medium * Fix Breaks+Replace diff --git a/debian/patches/0010-Fix-oversize-string-test.patch b/debian/patches/0010-Fix-oversize-string-test.patch new file mode 100644 index 000..2c4d781 --- /dev/null +++ b/debian/patches/0010-Fix-oversize-string-test.patch @@ -0,0 +1,25 @@ +From: Chris Lalancette +Date: Wed, 7 Jul 2021 14:34:14 + +Subject: Fix oversize string test. + +It claims to be "well-formed", but the closing tag was wrong. +Fix that here. + +Signed-off-by: Chris Lalancette +--- + utilities/xmlrpcpp/test/TestValues.cpp | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/utilities/xmlrpcpp/test/TestValues.cpp b/utilities/xmlrpcpp/test/TestValues.cpp +index ce51bce..3cd0ade 100644 +--- a/utilities/xmlrpcpp/test/TestValues.cpp b/utilities/xmlrpcpp/test/TestValues.cpp +@@ -214,7 +214,7 @@ TEST(XmlRpc, testOversizeString) { + try { + std::string xml = ""; + xml += std::string(__INT_MAX__, 'a'); +-xml += "a"; ++xml += "a"; + int offset; + + offset = 0; diff --git a/debian/patches/0011-Add-defensive-checks-for-offset-being-NULL.patch b/debian/patches/0011-Add-defensive-checks-for-offset-being-NULL.patch new file mode 100644 index 000..6426089 --- /dev/null +++ b/debian/patches/0011-Add-defensive-checks-for-offset-being-NULL.patch @@ -0,0 +1,45 @@ +From: Chris Lalancette +Date: Wed, 7 Jul 2021 17:23:39 + +Subject: Add defensive checks for offset being NULL. + +Signed-off-by: Chris Lalancette +--- + utilities/xmlrpcpp/src/XmlRpcUtil.cpp | 4 + 1 file changed, 4 insertions(+) + +diff --git a/utilities/xmlrpcpp/src/XmlRpcUtil.cpp b/utilities/xmlrpcpp/src/XmlRpcUtil.cpp +index 111737a..c203a91 100644 +--- a/utilities/xmlrpcpp/src/XmlRpcUtil.cpp b/utilities/xmlrpcpp/src/XmlRpcUtil.cpp +@@ -108,6 +108,7 @@ void XmlRpcUtil::error(const char* fmt, ...) + std::string + XmlRpc
Bug#1000608: buster-pu: package ros-ros-comm/1.14.3+ds1-5+deb10u2
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: jspri...@debian.org [ Reason ] CVE-2021-37146 was published with a denial of service against ros-ros-comm. [ Impact ] The impact is rather low as the ROS middleware has no authentication nor security features implemented and should only be used behind a firewall. Still would be good to get it fixed in old-stable. [ Tests ] The patch adds a unit test and I ran manual tests using the relay command from the topic-tools package. [ Risks ] Except for one new method (nextTagData) I see the code as rather simple, and the risk as low. For nextTagData the difference is that it is more strict in parsing only the next xml tag which should be fine in the defined domain. Also this is part of the upstream releases and also in unstable since some time. [ Checklist ] [X] *all* changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in (old)stable [X] the issue is verified as fixed in unstable [ Changes ] The patches add three things: - Null pointer checks in XmlRpc. - Add and update unit tests for the new changes. - A new nextTagData method. This is an improved version of the old parseTag version. Both methods extract the data inside of a given xml tag in a string. The old parseTag used find to search for the requested tag. The new nextTagData only allows space characters in front of the expected xml tag. [ Other info ] I kept the individual patches as upstream merged them, hope that is fine. >From 1e0c5a384e036b2b4ee513c3f8514de3a8f77c9f Mon Sep 17 00:00:00 2001 From: Jochen Sprickerhof Date: Wed, 20 Oct 2021 21:44:38 +0200 Subject: [PATCH] 1.14.3+ds1-5+deb10u3 (CVE-2021-37146) --- debian/changelog | 6 + .../0015-Fix-oversize-string-test.patch | 25 + ...fensive-checks-for-offset-being-NULL.patch | 45 ++ ...-tests-for-XML-tag-utility-functions.patch | 653 ++ ...18-Add-implementation-of-nextTagData.patch | 167 + ...h-structFromXml-to-using-nextTagData.patch | 22 + debian/patches/series | 5 + 7 files changed, 923 insertions(+) create mode 100644 debian/patches/0015-Fix-oversize-string-test.patch create mode 100644 debian/patches/0016-Add-defensive-checks-for-offset-being-NULL.patch create mode 100644 debian/patches/0017-Add-unit-tests-for-XML-tag-utility-functions.patch create mode 100644 debian/patches/0018-Add-implementation-of-nextTagData.patch create mode 100644 debian/patches/0019-Switch-structFromXml-to-using-nextTagData.patch diff --git a/debian/changelog b/debian/changelog index 420c997..c3cc30a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +ros-ros-comm (1.14.3+ds1-5+deb10u3) buster; urgency=medium + + * Add https://github.com/ros/ros_comm/pull/2186 (Fix CVE-2021-37146) + + -- Jochen Sprickerhof Wed, 20 Oct 2021 21:43:47 +0200 + ros-ros-comm (1.14.3+ds1-5+deb10u2) buster; urgency=high * Add https://github.com/ros/ros_comm/pull/2065 (Fix CVE-2020-16124) diff --git a/debian/patches/0015-Fix-oversize-string-test.patch b/debian/patches/0015-Fix-oversize-string-test.patch new file mode 100644 index 000..489b651 --- /dev/null +++ b/debian/patches/0015-Fix-oversize-string-test.patch @@ -0,0 +1,25 @@ +From: Chris Lalancette +Date: Wed, 7 Jul 2021 14:34:14 + +Subject: Fix oversize string test. + +It claims to be "well-formed", but the closing tag was wrong. +Fix that here. + +Signed-off-by: Chris Lalancette +--- + utilities/xmlrpcpp/test/TestValues.cpp | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/utilities/xmlrpcpp/test/TestValues.cpp b/utilities/xmlrpcpp/test/TestValues.cpp +index acd79c2..48730fd 100644 +--- a/utilities/xmlrpcpp/test/TestValues.cpp b/utilities/xmlrpcpp/test/TestValues.cpp +@@ -180,7 +180,7 @@ TEST(XmlRpc, testOversizeString) { + try { + std::string xml = ""; + xml += std::string(__INT_MAX__, 'a'); +-xml += "a"; ++xml += "a"; + int offset; + + offset = 0; diff --git a/debian/patches/0016-Add-defensive-checks-for-offset-being-NULL.patch b/debian/patches/0016-Add-defensive-checks-for-offset-being-NULL.patch new file mode 100644 index 000..b0e024b --- /dev/null +++ b/debian/patches/0016-Add-defensive-checks-for-offset-being-NULL.patch @@ -0,0 +1,45 @@ +From: Chris Lalancette +Date: Wed, 7 Jul 2021 17:23:39 + +Subject: Add defensive checks for offset being NULL. + +Signed-off-by: Chris Lalancette +--- + utilities/xmlrpcpp/src/XmlRpcUtil.cpp | 4 + 1 file changed, 4 insertions(+) + +diff --git a/utilities/xmlrpcpp/src/XmlRpcUtil.cpp b/utilities/xmlrpcpp/src/XmlRpcUtil.cpp +index ab0991d..a964b94 100644 +--- a/utilities/xmlrpcpp/src/XmlRpcUtil.cpp b/utilities/xmlrpcpp/src/XmlRpcUtil.cpp +@@ -108,6 +108,7 @@ void XmlRpcUtil
Bug#991407: unblock: pppoeconf/1.21+nmu2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package pppoeconf [ Reason ] pppoe-discovery from the ppp package dropped the -A option in a recent version. As the option had no function in old version, I dropped it from the pppoeconf call to pppoe-discovery (#990978). [ Impact ] Without this change pppoeconf in bullseye is broken as it will not find any modem. [ Tests ] I was able to reproduce the bug and also that it does not happen anymore with the new version. [ Risks ] The patch only removes an old noop option in a shell script. I don't see a risk. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing [ Other info ] I've added a patch with two typo fixes for the man page which I found in the BTS. unblock pppoeconf/1.21+nmu2 diff -Nru pppoeconf-1.21+nmu1/debian/changelog pppoeconf-1.21+nmu2/debian/changelog --- pppoeconf-1.21+nmu1/debian/changelog2021-01-01 16:42:10.0 +0100 +++ pppoeconf-1.21+nmu2/debian/changelog2021-07-22 20:51:01.0 +0200 @@ -1,3 +1,14 @@ +pppoeconf (1.21+nmu2) unstable; urgency=medium + + * Non-maintainer upload. + * Remove -A option from pppoe-discovery (Closes: #990978). +It had no function anymore and was removed in new versions. +Thanks: Michael Prokop + * Apply two manpage corrections (Closes: #814354). +Thanks: Christoph Biedl + + -- Jochen Sprickerhof Thu, 22 Jul 2021 20:51:01 +0200 + pppoeconf (1.21+nmu1) unstable; urgency=medium * Non maintainer upload by the Reproducible Builds team. diff -Nru pppoeconf-1.21+nmu1/pppoeconf pppoeconf-1.21+nmu2/pppoeconf --- pppoeconf-1.21+nmu1/pppoeconf 2013-12-27 03:07:24.0 +0100 +++ pppoeconf-1.21+nmu2/pppoeconf 2021-07-22 20:49:37.0 +0200 @@ -190,7 +190,7 @@ touch $TMP/pppoe.scan ip link set $iface up -($DISCOVERY_PROGRAM $mmm -A -I $iface > $TMP/$iface.pppoe ; rm $TMP/pppoe.scan) & +($DISCOVERY_PROGRAM $mmm -I $iface > $TMP/$iface.pppoe ; rm $TMP/pppoe.scan) & ( time=0 ; while test -f $TMP/pppoe.scan ; do time=`expr $time + 6`; echo $time; sleep 1; done ) | $DIALOG --title "$title" --gauge "$text $mmode" 10 60 0 diff -Nru pppoeconf-1.21+nmu1/pppoeconf.8.sgml pppoeconf-1.21+nmu2/pppoeconf.8.sgml --- pppoeconf-1.21+nmu1/pppoeconf.8.sgml2013-12-27 03:07:24.0 +0100 +++ pppoeconf-1.21+nmu2/pppoeconf.8.sgml2021-07-22 20:50:22.0 +0200 @@ -70,12 +70,12 @@ DESCRIPTION The program is user-friendly dialog - based setup tool for pppd (and pppoe - if needed). It will look for existing ethernet cards and look for ADSL + based setup tool for pppd (and pppoe if + needed). It will look for existing ethernet cards and look for ADSL hardware connected to one of them. You can add an interface name iface to force to use it. Then it will get some login info and do some minor modifications to make working - settings. Note that you can use ESC key to exit program when you wan. + settings. Note that you can use ESC key to exit program when you want.
Bug#991432: unblock: freeradius/3.0.21+dfsg-2.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package freeradius [ Reason ] Misleading comment in systemd service file about how to get capabilities for privileged ports: #985967. [ Impact ] Users could have a hard time how to use freeradius. [ Tests ] To test manually: $ sudo apt install freeradius-dhcp $ sed 's/port = 6700/port = 67/' /etc/freeradius/3.0/sites-available/dhcp > /etc/freeradius/3.0/sites-enabled/dhcp $ systemctl restart freeradius [ Risks ] This only changes a commented line in a service file, I don't see a risk. [ Checklist ] [X] all changes are documented in the d/changelog [X] I reviewed all changes and I approve them [X] attach debdiff against the package in testing [ Other info ] Send upstream as https://github.com/FreeRADIUS/freeradius-server/pull/4150 unblock freeradius/3.0.21+dfsg-2.1 diff -Nru freeradius-3.0.21+dfsg/debian/changelog freeradius-3.0.21+dfsg/debian/changelog --- freeradius-3.0.21+dfsg/debian/changelog 2020-08-24 10:46:49.0 +0200 +++ freeradius-3.0.21+dfsg/debian/changelog 2021-07-23 13:19:03.0 +0200 @@ -1,3 +1,13 @@ +freeradius (3.0.21+dfsg-2.1) unstable; urgency=medium + + * Non-maintainer upload. + * Fix capabilities in service file. +As freeradius is not run as root we need to request extra capabilities +wiht AmbientCapabilities instead of limiting the set with +CapabilityBoundingSet. (Closes: #985967) + + -- Jochen Sprickerhof Fri, 23 Jul 2021 13:19:03 +0200 + freeradius (3.0.21+dfsg-2) unstable; urgency=medium * Cherry-Pick upstream fixes to build with Python3.8 (Closes: #966860) diff -Nru freeradius-3.0.21+dfsg/debian/freeradius.service freeradius-3.0.21+dfsg/debian/freeradius.service --- freeradius-3.0.21+dfsg/debian/freeradius.service2020-08-24 10:46:49.0 +0200 +++ freeradius-3.0.21+dfsg/debian/freeradius.service2021-07-23 13:13:11.0 +0200 @@ -41,7 +41,7 @@ NoNewPrivileges=true # Allow binding to secure ports, broadcast addresses, and raw interfaces. -#CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SETUID CAP_SETGID CAP_CHOWN CAP_DAC_OVERRIDE +#AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SETUID CAP_SETGID CAP_CHOWN CAP_DAC_OVERRIDE # Private /tmp that isn't shared by other processes PrivateTmp=true