Bug#1028752: marked as done (openid4java: FTBFS due to missing log4j dependency)

2023-01-30 Thread Debian Bug Tracking System 
Your message dated Tue, 31 Jan 2023 04:55:22 +
with message-id 
and subject line Bug#1028752: fixed in openid4java 1.0.0-2
has caused the Debian Bug report #1028752,
regarding openid4java: FTBFS due to missing log4j dependency
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1028752: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1028752
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: openid4java
Version: 1.0.0-1
Severity: serious
Justification: FTBFS
Tags: bookworm sid ftbfs
User: lu...@debian.org
Usertags: ftbfs-20230113 ftbfs-bookworm

Hi,

During a rebuild of all packages in sid, your package failed to build
on amd64.


Relevant part (hopefully):
>  debian/rules build
> dh build --buildsystem=maven --with javahelper
>dh_update_autotools_config -O--buildsystem=maven
>dh_autoreconf -O--buildsystem=maven
>dh_auto_configure -O--buildsystem=maven
>   mh_patchpoms -plibopenid4java-java --debian-build --keep-pom-version 
> --maven-repo=/<>/debian/maven-repo
>jh_linkjars -O--buildsystem=maven
>dh_auto_build -O--buildsystem=maven
>   /usr/lib/jvm/default-java/bin/java -noverify -cp 
> /usr/share/maven/boot/plexus-classworlds-2.x.jar 
> -Dmaven.home=/usr/share/maven 
> -Dmaven.multiModuleProjectDirectory=/<> 
> -Dclassworlds.conf=/etc/maven/m2-debian.conf 
> -Dproperties.file.manual=/<>/debian/maven.properties 
> org.codehaus.plexus.classworlds.launcher.Launcher 
> -s/etc/maven/settings-debian.xml -Ddebian.dir=/<>/debian 
> -Dmaven.repo.local=/<>/debian/maven-repo --batch-mode package 
> -DskipTests -Dnotimestamp=true -Dlocale=en_US
> OpenJDK 64-Bit Server VM warning: Options -Xverify:none and -noverify were 
> deprecated in JDK 13 and will likely be removed in a future release.
> [INFO] Scanning for projects...
> [WARNING] The project org.openid4java:openid4java:jar:1.0.0 uses 
> prerequisites which is only intended for maven-plugin projects but not for 
> non maven-plugin projects. For such purposes you should use the 
> maven-enforcer-plugin. See 
> https://maven.apache.org/enforcer/enforcer-rules/requireMavenVersion.html
> [INFO] 
> [INFO] < org.openid4java:openid4java 
> >-
> [INFO] Building OpenID4Java 1.0.0
> [INFO] [ jar 
> ]-
> [WARNING] The POM for log4j:log4j:jar:debian is missing, no dependency 
> information available
> [WARNING] The artifact org.springframework:spring-jdbc:jar:3.x has been 
> relocated to org.springframework:spring-jdbc:jar:debian
> [INFO] 
> 
> [INFO] BUILD FAILURE
> [INFO] 
> 
> [INFO] Total time:  0.216 s
> [INFO] Finished at: 2023-01-13T20:22:15Z
> [INFO] 
> 
> [ERROR] Failed to execute goal on project openid4java: Could not resolve 
> dependencies for project org.openid4java:openid4java:jar:1.0.0: Cannot access 
> openid4java-snapshots 
> (https://oss.sonatype.org/content/repositories/openid4java-snapshots/) in 
> offline mode and the artifact log4j:log4j:jar:debian has not been downloaded 
> from it before. -> [Help 1]
> [ERROR] 
> [ERROR] To see the full stack trace of the errors, re-run Maven with the -e 
> switch.
> [ERROR] Re-run Maven using the -X switch to enable full debug logging.
> [ERROR] 
> [ERROR] For more information about the errors and possible solutions, please 
> read the following articles:
> [ERROR] [Help 1] 
> http://cwiki.apache.org/confluence/display/MAVEN/DependencyResolutionException
> dh_auto_build: error: /usr/lib/jvm/default-java/bin/java -noverify 
> -cp /usr/share/maven/boot/plexus-classworlds-2.x.jar 
> -Dmaven.home=/usr/share/maven 
> -Dmaven.multiModuleProjectDirectory=/<> 
> -Dclassworlds.conf=/etc/maven/m2-debian.conf 
> -Dproperties.file.manual=/<>/debian/maven.properties 
> org.codehaus.plexus.classworlds.launcher.Launcher 
> -s/etc/maven/settings-debian.xml -Ddebian.dir=/<>/debian 
> -Dmaven.repo.local=/<>/debian/maven-repo --batch-mode package 
> -DskipTests -Dnotimestamp=true -Dlocale=en_US returned exit code 1
> make: *** [debian/rules:6: build] Error 25


The full build log is available from:
http://qa-logs.debian.net/2023/01/13/openid4java_1.0.0-1_unstable.log

All bugs filed during this archive rebuild are listed at:
https://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=ftbfs-20230113;users=lu...@debian.org
or:

openid4java_1.0.0-2_source.changes ACCEPTED into unstable

2023-01-30 Thread Debian FTP Masters 
Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 30 Jan 2023 20:21:21 -0800
Source: openid4java
Architecture: source
Version: 1.0.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: tony mancill 
Closes: 1028752
Changes:
 openid4java (1.0.0-2) unstable; urgency=medium
 .
   * Team upload.
   * Add build-dep on liblog4j1.2-java (Closes: #1028752)
   * Update Vcs URLs to point to Salsa
   * Replace libservlet3.1-java with libservlet-api-java
   * Use debhelper-compat 13
   * Remove get-orig-source target from debian/rules
   * Bump Standards-Version to 4.6.2
   * Set Rules-Requires-Root: no in debian/control
   * Add lintian-overrides for upstream HTML
Checksums-Sha1:
 841734038e2ce768ee6e0f474e45d742bde34e8e 2329 openid4java_1.0.0-2.dsc
 ae5ed527891b795d6d0e8371ceb1c120f9781a4e 4808 openid4java_1.0.0-2.debian.tar.xz
 76ee2659d426726f4c6c2c9d11105503700de65f 16530 
openid4java_1.0.0-2_amd64.buildinfo
Checksums-Sha256:
 38c081d6dc4d8ed7125d3796a0a5beb63abef7d685174ef4b0221ec34b7dd558 2329 
openid4java_1.0.0-2.dsc
 636ea22e5942325a0d96938bd021b60ff55f4d4b7e7a863394c71eaafed26a92 4808 
openid4java_1.0.0-2.debian.tar.xz
 400e6779a1576412428b9d06cf997f5852816aa46f322329b0f71c30747790e6 16530 
openid4java_1.0.0-2_amd64.buildinfo
Files:
 9bf838b6d018be6e47989a0d5c88f467 2329 java optional openid4java_1.0.0-2.dsc
 54c783f8b54b80fc7b23da9cbda9c7eb 4808 java optional 
openid4java_1.0.0-2.debian.tar.xz
 6b5d452e8c31adafb94730c720235928 16530 java optional 
openid4java_1.0.0-2_amd64.buildinfo

-BEGIN PGP SIGNATURE-
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=+HPt
-END PGP SIGNATURE-


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

libjna-java 5.13.0-2 MIGRATED to testing

2023-01-30 Thread Debian testing watch 
FYI: The status of the libjna-java source package
in Debian's testing distribution has changed.

  Previous version: 5.12.1-1
  Current version:  5.13.0-2

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

hibiscus 2.10.10+dfsg-1 MIGRATED to testing

2023-01-30 Thread Debian testing watch 
FYI: The status of the hibiscus source package
in Debian's testing distribution has changed.

  Previous version: 2.10.9+dfsg-2
  Current version:  2.10.10+dfsg-1

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processing of openid4java_1.0.0-2_source.changes

2023-01-30 Thread Debian FTP Masters 
openid4java_1.0.0-2_source.changes uploaded successfully to localhost
along with the files:
  openid4java_1.0.0-2.dsc
  openid4java_1.0.0-2.debian.tar.xz
  openid4java_1.0.0-2_amd64.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

jameica 2.10.3+dfsg-1 MIGRATED to testing

2023-01-30 Thread Debian testing watch 
FYI: The status of the jameica source package
in Debian's testing distribution has changed.

  Previous version: 2.10.2+dfsg-2
  Current version:  2.10.3+dfsg-1

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: Bug#1028752 marked as pending in openid4java

2023-01-30 Thread Debian Bug Tracking System 
Processing control commands:

> tag -1 pending
Bug #1028752 [src:openid4java] openid4java: FTBFS due to missing log4j 
dependency
Added tag(s) pending.

-- 
1028752: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1028752
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

gradle-kotlin-dsl_0.13.2-3_source.changes ACCEPTED into unstable

2023-01-30 Thread Debian FTP Masters 
Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Tue, 31 Jan 2023 01:02:13 +0100
Source: gradle-kotlin-dsl
Architecture: source
Version: 0.13.2-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: Emmanuel Bourg 
Changes:
 gradle-kotlin-dsl (0.13.2-3) unstable; urgency=medium
 .
   * Build the tooling-builders module
   * Fixed the .kt files included in gradle-kotlin-dsl-tooling-models.jar
   * Fixed the classpath.properties files of gradle-kotlin-dsl.jar
Checksums-Sha1:
 b20ddace8320edd964387c09f6fa55ccc53f62c7 2097 gradle-kotlin-dsl_0.13.2-3.dsc
 cad187745fff0178bfddc3f45a984891556ddad8 3808 
gradle-kotlin-dsl_0.13.2-3.debian.tar.xz
 c4254eafe65a56a65ab47f1117eb342f3fbb31f9 18912 
gradle-kotlin-dsl_0.13.2-3_source.buildinfo
Checksums-Sha256:
 de740ec9a222bf67ecf45b023a86df0455aa19d00104b44f2b89d1559def252e 2097 
gradle-kotlin-dsl_0.13.2-3.dsc
 cfbe5379b3d55bfc6660dda4f2f8ad8f3fe19e5acf5aca1f0c7a5a1db2760ba5 3808 
gradle-kotlin-dsl_0.13.2-3.debian.tar.xz
 6e85d252af1fb23b137e6b4cf68bb6dc235cae4c0251dd7e2ef0d3338730129b 18912 
gradle-kotlin-dsl_0.13.2-3_source.buildinfo
Files:
 a9756b152b9fc3fdbdc3d95a08f83048 2097 java optional 
gradle-kotlin-dsl_0.13.2-3.dsc
 b7a690efd70364acb8c25eea74299d24 3808 java optional 
gradle-kotlin-dsl_0.13.2-3.debian.tar.xz
 0623936b1d79d7df91353f1f16aa6f03 18912 java optional 
gradle-kotlin-dsl_0.13.2-3_source.buildinfo

-BEGIN PGP SIGNATURE-
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=yRkY
-END PGP SIGNATURE-


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processing of gradle-kotlin-dsl_0.13.2-3_source.changes

2023-01-30 Thread Debian FTP Masters 
gradle-kotlin-dsl_0.13.2-3_source.changes uploaded successfully to localhost
along with the files:
  gradle-kotlin-dsl_0.13.2-3.dsc
  gradle-kotlin-dsl_0.13.2-3.debian.tar.xz
  gradle-kotlin-dsl_0.13.2-3_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: retitle 1028752 to openid4java: FTBFS due to missing log4j dependency

2023-01-30 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> retitle 1028752 openid4java: FTBFS due to missing log4j dependency
Bug #1028752 [src:openid4java] openid4java: FTBFS: [ERROR] Failed to execute 
goal on project openid4java: Could not resolve dependencies for project 
org.openid4java:openid4java:jar:1.0.0: Cannot access openid4java-snapshots 
(https://oss.sonatype.org/content/repositories/openid4java-snapshots/) in 
offline mode and the artifact log4j:log4j:jar:debian has not been downloaded 
from it before. -> [Help 1]
Changed Bug title to 'openid4java: FTBFS due to missing log4j dependency' from 
'openid4java: FTBFS: [ERROR] Failed to execute goal on project openid4java: 
Could not resolve dependencies for project 
org.openid4java:openid4java:jar:1.0.0: Cannot access openid4java-snapshots 
(https://oss.sonatype.org/content/repositories/openid4java-snapshots/) in 
offline mode and the artifact log4j:log4j:jar:debian has not been downloaded 
from it before. -> [Help 1]'.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
1028752: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1028752
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

libquartz-java: status change on tests.reproducible-builds.org/debian

2023-01-30 Thread Reproducible Builds folks 
Dear maintainer,

The reproducibility status of the package libquartz-java changed during the
continuous testing.
See the following notes for more details:

2023-01-30 18:25 
https://tests.reproducible-builds.org/debian/unstable/amd64/libquartz-java 
changed from FTBFS -> reproducible

Feel free to reply to this email if you have questions regarding
this automatic notification.

-- 
The Reproducible Builds folks

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#1030046: Document snakeyaml security expectations

2023-01-30 Thread Markus Koschany 
Hi,

Am Montag, dem 30.01.2023 um 18:44 +0100 schrieb Moritz Muehlenhoff:
> 
> Could we please add a README.Debian.security with something like the
> following
> to make this also visible to users?
> 
> 
> Note that snakeyaml isn't designed to operate on YAML data coming from
> untrusted
> sources, in such cases you need to apply sanitising/exception handling
> yourself.
> 
> Please see https://bitbucket.org/snakeyaml/snakeyaml/wiki/CVE%20&%20NIST.md
> for additional information.
> 

Sure, that's doable. But how do we treat the current and new CVE in stable and
oldstable releases? no-dsa, ignored or keep them open until upstream eventually
fixes them?

Cheers,

Markus


signature.asc
Description: This is a digitally signed message part
__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#1030046: Document snakeyaml security expectations

2023-01-30 Thread Moritz Muehlenhoff 
Source: snakeyaml
Version: 1.33-1
Severity: important

Google's oss-fuzz found various cases where snakeyaml triggers an exception
on malformed YAML input. These end up blindly being picked by various
security web sites (since CVE IDs) were assigned.

This is causing lots of overhead/annoyance for the upstream developers
(as voiced in 
https://bitbucket.org/snakeyaml/snakeyaml/issues/551/snakeyaml-cves-from-oss-fuzz)
and they released 
https://bitbucket.org/snakeyaml/snakeyaml/wiki/CVE%20&%20NIST.md
to document expectations.

Could we please add a README.Debian.security with something like the following
to make this also visible to users?


Note that snakeyaml isn't designed to operate on YAML data coming from untrusted
sources, in such cases you need to apply sanitising/exception handling yourself.

Please see https://bitbucket.org/snakeyaml/snakeyaml/wiki/CVE%20&%20NIST.md
for additional information.


Cheers,
Moritz


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

gradle-kotlin-dsl_0.13.2-2_source.changes ACCEPTED into unstable

2023-01-30 Thread Debian FTP Masters 
Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 30 Jan 2023 17:38:26 +0100
Source: gradle-kotlin-dsl
Architecture: source
Version: 0.13.2-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: Emmanuel Bourg 
Changes:
 gradle-kotlin-dsl (0.13.2-2) unstable; urgency=medium
 .
   * Build with Java 17
Checksums-Sha1:
 86b4652b3e0e240600b4dbac78cd8b54fd072c7a 2097 gradle-kotlin-dsl_0.13.2-2.dsc
 e4c40659afef0b8b462e03e6273daaf19ce89abd 3620 
gradle-kotlin-dsl_0.13.2-2.debian.tar.xz
 c65448da4e555372e6e64248bc64eb72bd794161 18912 
gradle-kotlin-dsl_0.13.2-2_source.buildinfo
Checksums-Sha256:
 36b325c7c08f146093aa1dd8690e5550b0aa877a0109cab8bc67a4009f8f472d 2097 
gradle-kotlin-dsl_0.13.2-2.dsc
 3e51ac791770ec0d17d108747273b24f2fb653814d11b0395f280e2760c866b1 3620 
gradle-kotlin-dsl_0.13.2-2.debian.tar.xz
 19ac64cfc755e25a6aa67bd8c63a37808eb2ed5d95799924ea38ad51b86c8b87 18912 
gradle-kotlin-dsl_0.13.2-2_source.buildinfo
Files:
 0884c981921fe0bae84c049bf66bc219 2097 java optional 
gradle-kotlin-dsl_0.13.2-2.dsc
 b66cad1aadae5cf4e643de29a44f6f47 3620 java optional 
gradle-kotlin-dsl_0.13.2-2.debian.tar.xz
 4c5b66431ba2874880dcd8750b81826b 18912 java optional 
gradle-kotlin-dsl_0.13.2-2_source.buildinfo

-BEGIN PGP SIGNATURE-
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=Kec1
-END PGP SIGNATURE-


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processing of gradle-kotlin-dsl_0.13.2-2_source.changes

2023-01-30 Thread Debian FTP Masters 
gradle-kotlin-dsl_0.13.2-2_source.changes uploaded successfully to localhost
along with the files:
  gradle-kotlin-dsl_0.13.2-2.dsc
  gradle-kotlin-dsl_0.13.2-2.debian.tar.xz
  gradle-kotlin-dsl_0.13.2-2_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

gradle-kotlin-dsl_0.13.2-1_amd64.changes ACCEPTED into unstable

2023-01-30 Thread Debian FTP Masters 
Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 20 Jan 2023 12:04:37 +0100
Source: gradle-kotlin-dsl
Binary: libgradle-kotlin-dsl-java
Architecture: source all
Version: 0.13.2-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: Emmanuel Bourg 
Description:
 libgradle-kotlin-dsl-java - Gradle Kotlin DSL
Closes: 1029240
Changes:
 gradle-kotlin-dsl (0.13.2-1) unstable; urgency=medium
 .
   * Initial release. (Closes: #1029240)
Checksums-Sha1:
 ee14aabd11bde03d1239610fc3f49cc64975b417 2096 gradle-kotlin-dsl_0.13.2-1.dsc
 b1843272e4a5fbd4c6e60e1acd39bf7b5c2bce99 90324 
gradle-kotlin-dsl_0.13.2.orig.tar.xz
 7d4ca59e0b11ce15e223b397a909ca16bf213959 3620 
gradle-kotlin-dsl_0.13.2-1.debian.tar.xz
 e72a0e63cd5438debb5eb13d04f9f5123f5c3f73 17240 
gradle-kotlin-dsl_0.13.2-1_amd64.buildinfo
 ccb990e1543fb85e8158621ef5f34db6e62eb4c7 518484 
libgradle-kotlin-dsl-java_0.13.2-1_all.deb
Checksums-Sha256:
 791328c5192cb522f9d8677a4c16c7209d574e0f9756624aa4f8fb15c5f3de53 2096 
gradle-kotlin-dsl_0.13.2-1.dsc
 78f95160c8f5c0d85a676aa28170d23f5d7def6c16c41cd080987f06bc8439f4 90324 
gradle-kotlin-dsl_0.13.2.orig.tar.xz
 870e68eafa7243fea1e203994b79ce3cf664b3f144e5e03bae606c7ec3e6ab6c 3620 
gradle-kotlin-dsl_0.13.2-1.debian.tar.xz
 4378240c52377189e4faa9968475bd505313399dfd7b643c3802cdf4b40d3283 17240 
gradle-kotlin-dsl_0.13.2-1_amd64.buildinfo
 f18ca823a37af06e9d155ef10eb998e435d4c706994d66c166e7dba508f6db23 518484 
libgradle-kotlin-dsl-java_0.13.2-1_all.deb
Files:
 84a350f49811ff9775e275592c47bc50 2096 java optional 
gradle-kotlin-dsl_0.13.2-1.dsc
 2266a95d1a88370f521b35ec5e7d2851 90324 java optional 
gradle-kotlin-dsl_0.13.2.orig.tar.xz
 984c3e3fb8aded6adb310dad806023cd 3620 java optional 
gradle-kotlin-dsl_0.13.2-1.debian.tar.xz
 a3217e825ae2e1a8ee15d196b7453293 17240 java optional 
gradle-kotlin-dsl_0.13.2-1_amd64.buildinfo
 16fd0e3b93b5d111c396a18613a3e668 518484 java optional 
libgradle-kotlin-dsl-java_0.13.2-1_all.deb

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEuM5N4hCA3PkD4WxA9RPEGeS50KwFAmPKezAACgkQ9RPEGeS5
0Kzjeg//eD0SvxjC0WX5CarJn0KKovSPZcHABsWt2sXUvJHKRIJonPd4e+5tMCiJ
ZHcU+rDPTKCD36Md+oW/Z8QbfzNs7Id8SSCoWmSDwgtv6lZX3zGSUUdPXqiX5qPV
o1DxPHy8wikGwhmDy1yAKPVFjTrv+LvfpsyskoM6PJ/HSUP/11LbVUhK6g9tOQgC
73KZEEGDtKZ32NHVjcIcAif16U916S4aiGDPZDgbNfIHnQcCyoYcxKymWf0QN/bq
BjfnoP5HSBW0U0DZ3DSZzgC9BqGBBjQwTacsr0eTX4AeiqN12PRMjYcAu9yKdVAG
ygS4HbaK/XiyKnIFkhEcaJaKx/mcig48ZUQwsRCntgCcCPhFWLG4U5YfMHgZd5la
aAgvUeFFdh4JJnE3z8b6UioyYvGl4feNQAyRrt2XtnWdITQPRwXGgEWEMJS4OkqM
eBpZ+c21U/ad6AMtMpJhiSbGTdaVJ8GXaEurPq4L5rfD7sNAF/THVK410j2za9QT
XJSLcf22o3WGbKcEw3H6n6PULUE8rLVKB/m1ga564I/YOpPEdgVV9oKd03AQ3dcu
M705urnkAFpRYh9NfIe4whmCTBZQx6VCD7RFQYzKxa/9Rg5hFjWfsM33nyFpcRXu
2KSADEyre8c5rrRpSQp3umjN8OYiKZhqNyEzrTKvAKH9k4BhpL4=
=KpVq
-END PGP SIGNATURE-


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#1028374: libjna-java: JNA HelloWorld fails on aarch64

2023-01-30 Thread Alexandre Rossi 
Hi,

> > Thanks a lot but looks like the fix was not complete.
> > 
> > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029908
> > 
> > Can you upload a version with the fix available in the bug report?
> 
> Done.  This time I merged the commit from your repo on Salsa, and also
> ran the autopkgtest on armhf.

Thanks a lot. I also had ran the autopkgtest on armhf. It seems all is good now.

FYI, the fix has been submitted upstream:
https://github.com/java-native-access/jna/pull/1499

Many Thanks,

Alexandre

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

proguard_6.2.2-3_source.changes ACCEPTED into unstable

2023-01-30 Thread Debian FTP Masters 
Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 30 Jan 2023 12:35:38 +0100
Source: proguard
Architecture: source
Version: 6.2.2-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: Emmanuel Bourg 
Changes:
 proguard (6.2.2-3) unstable; urgency=medium
 .
   * Team upload.
   * Restored the Gradle task
Checksums-Sha1:
 915fee94226c808528f2f7abfae879bf645245a5 2224 proguard_6.2.2-3.dsc
 8a205ce6c22e7a1f084fb8ad64bf54cf8fd18894 6132 proguard_6.2.2-3.debian.tar.xz
 26aff23467f86db6b866737ff862167929602d7b 14522 
proguard_6.2.2-3_source.buildinfo
Checksums-Sha256:
 be211693424c717e1cec869aefe8baf8defc4f964a10f3b95531c5906e3bf8ba 2224 
proguard_6.2.2-3.dsc
 3314832cdafd5806fe0e689baeddb0cbe926416d7315b54afcad0dad38aa4321 6132 
proguard_6.2.2-3.debian.tar.xz
 4298ba42dc0c168ad4481df9a5fe5a771088314619ab270dfc35126e1e7d2114 14522 
proguard_6.2.2-3_source.buildinfo
Files:
 2ffbf2d515bc556c2b1fdde57622db59 2224 devel optional proguard_6.2.2-3.dsc
 b95842685f784ae238869dac1e73ce4e 6132 devel optional 
proguard_6.2.2-3.debian.tar.xz
 3a55545a3f729b812f5f3af47b19b8fe 14522 devel optional 
proguard_6.2.2-3_source.buildinfo

-BEGIN PGP SIGNATURE-
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=ib0f
-END PGP SIGNATURE-


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processing of proguard_6.2.2-3_source.changes

2023-01-30 Thread Debian FTP Masters 
proguard_6.2.2-3_source.changes uploaded successfully to localhost
along with the files:
  proguard_6.2.2-3.dsc
  proguard_6.2.2-3.debian.tar.xz
  proguard_6.2.2-3_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

zip4j_2.11.3-1_source.changes ACCEPTED into unstable

2023-01-30 Thread Debian FTP Masters 
Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 30 Jan 2023 02:59:02 -0500
Source: zip4j
Architecture: source
Version: 2.11.3-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 

Changed-By: Andrius Merkys 
Changes:
 zip4j (2.11.3-1) unstable; urgency=medium
 .
   * New upstream version 2.11.3
   * Drop CVE-2023-22899.patch: fix adopted upstream.
Checksums-Sha1:
 c08020abab05a9495f98155ebaf85f82fafc4e28 1987 zip4j_2.11.3-1.dsc
 c989b252c516f46aa5da26b05163532fb24bfbeb 4467450 zip4j_2.11.3.orig.tar.gz
 11ada8ae58d26d9ad24ebeb53701196626b354ad 3684 zip4j_2.11.3-1.debian.tar.xz
 2deb6630415d0fa372a4c88c574e9c8281c926cc 16375 zip4j_2.11.3-1_source.buildinfo
Checksums-Sha256:
 c81fbdd509ce51cc226f08f7d7e3eef35bc082bdf9e930e0bbff1719b400a327 1987 
zip4j_2.11.3-1.dsc
 9206785e28fbd74fd67daedbfdc22f62d01f91d28fc280d6dade577378dd68e3 4467450 
zip4j_2.11.3.orig.tar.gz
 f8b388810b013e2a1fd9e533899a68dedb81f34f19418eebee5f0652b430f7cf 3684 
zip4j_2.11.3-1.debian.tar.xz
 a3616df0f36a33e999e3e992bd38721f80bd5e968b84fb10e96664f58d9d9db5 16375 
zip4j_2.11.3-1_source.buildinfo
Files:
 2567b948fcc74d978c37a08eef17a139 1987 java optional zip4j_2.11.3-1.dsc
 1a64e1f4f4d7a58647283943e39bf6d6 4467450 java optional zip4j_2.11.3.orig.tar.gz
 e67019e93e47124ea2125749302a23dd 3684 java optional 
zip4j_2.11.3-1.debian.tar.xz
 893dd669a0231b61996d41623c17d106 16375 java optional 
zip4j_2.11.3-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=aqiP
-END PGP SIGNATURE-


__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.

Processing of zip4j_2.11.3-1_source.changes

2023-01-30 Thread Debian FTP Masters 
zip4j_2.11.3-1_source.changes uploaded successfully to localhost
along with the files:
  zip4j_2.11.3-1.dsc
  zip4j_2.11.3.orig.tar.gz
  zip4j_2.11.3-1.debian.tar.xz
  zip4j_2.11.3-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

__
This is the maintainer address of Debian's Java team
.
 Please use
debian-j...@lists.debian.org for discussions and questions.