Bug#849602: Bug#881299: thunderbird: Please install EmojiOneMozilla.ttf in /usr/lib/thunderbird/fonts/

[Carsten Schoenert]

Hello Laurent,

On Thu, Nov 09, 2017 at 10:52:09PM +0100, Laurent Bigonville wrote:
> On Thu, 09 Nov 2017 22:04:39 +0100 Laurent Bigonville 
> wrote:
> >
> > Hi,
> >
> > Could you please install the EmojiOneMozilla.ttf font in
> > /usr/lib/thunderbird/fonts/
> >
> > Currently emoji are not diplayed properly, I just tried on my system and
> > add the file in that location fixed it.
> >
> > Firefox is doing the same by installing that font in
> > /usr/lib/firefox/fonts
> >
> 
> Well actually no
> 
> This seems to be against the debian policy, see bug #849602
> 
> IMHO, firefox should create a package with that font and thunderbird should
> depends on that package

this is a bit overkill in my eyes. Why should thunderbird depend on the
big package of firefox only to get a font? That's currently not the we
should go.

I believe it's better to live here if both packages ship this font
within their packages as long some one is packaging emojione-colr.

So I'd suggest to move this report over to a RFP for emojione-colr and
keep the reports within firefox and thunderbird open with a blocks on
the RFP bug report.

But I wont have time to do such a packaging nor have I a real good
knowledge about font packaging. OTOH emojione-colr hasn't changed
internals for over a year now.

[1] https://github.com/mozilla/emojione-colr

Regards
Carsten

Bug#878498: snakemake FTBFS with Python 3.6 as default

[Andreas Tille]

Hi Chrysn,

since nobody raised any veto and we finally will follow upstream anyway:
Could you please push your changes to latest upstream version and than
we try to work together from there?  For instance it will help to contact
upstream when refering to the latest upstream version.

Kind regards

 Andreas.

-- 
http://fam-tille.de

Bug#881390: CVE-2017-16711: SWFTools: NULL pointer dereference

[Henri Salo]

Package: swftools
Version: 0.9.2+git20130725-4.1
Severity: important
Tags: security, upstream

Upstream bug report: https://github.com/matthiaskramm/swftools/issues/46

CVE description: The swf_DefineLosslessBitsTagToImage function in
lib/modules/swfbits.c in SWFTools 0.9.2 mishandles an uncompress failure, which
allows remote attackers to cause a denial of service (NULL pointer dereference
and application crash) because of extractDefinitions in lib/readers/swf.c and
fill_line_bitmap in lib/devices/render.c, as demonstrated by swfrender.

-- 
Henri Salo


signature.asc
Description: PGP signature

Bug#881391: graphicsmagick: CVE-2017-16669: Heap buffer over-write in AcquireCacheNexus function in magick/pixel_cache.c

[Salvatore Bonaccorso]

Source: graphicsmagick
Version: 1.3.26-18
Severity: important
Tags: security upstream
Forwarded: https://sourceforge.net/p/graphicsmagick/bugs/450/

Hi,

the following vulnerability was published for graphicsmagick.

CVE-2017-16669[0]:
| coders/wpg.c in GraphicsMagick 1.3.26 allows remote attackers to cause
| a denial of service (heap-based buffer overflow and application crash)
| or possibly have unspecified other impact via a crafted file, related
| to the AcquireCacheNexus function in magick/pixel_cache.c.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-16669
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16669
[1] https://sourceforge.net/p/graphicsmagick/bugs/450/

Please adjust the affected versions in the BTS as needed. LTS team has
released a DLA for this issue, so I guess (but have not checked!)
every older version is affected as well from the issue.

Regards,
Salvatore

Bug#881392: imagemagick: CVE-2017-16546

[Salvatore Bonaccorso]

Source: imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: patch security upstream
Forwarded: https://github.com/ImageMagick/ImageMagick/issues/851

Hi,

the following vulnerability was published for imagemagick.

CVE-2017-16546[0]:
| The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does
| not properly validate the colormap index in a WPG palette, which allows
| remote attackers to cause a denial of service (use of uninitialized
| data or invalid memory allocation) or possibly have unspecified other
| impact via a malformed WPG file.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-16546
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16546
[1] https://github.com/ImageMagick/ImageMagick/issues/851
[2] 
https://github.com/ImageMagick/ImageMagick/commit/e04cf3e9524f50ca336253513d977224e083b816

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#881389: lintian: Incomplete solution to whitespace errors in file-contains-trailing-whitespace

[Chris Lamb]

tags 881389 + pending
thanks

Stuart Prescott wrote:

> However, that only removes trailing spaces, while trailing tabs will also
> trigger the warning

… but not in debian/rules as leaving trailing tabs is quite common, hence
the safer and less-exhaustive sed.

I've updated the description to match, which — I think! — should please both
of us:

  
https://anonscm.debian.org/git/lintian/lintian.git/commit/?id=45632b0eee8967eb155fddd093c7761c12bc1980


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#881393: gnupg: danish translation says compressed (not compromised)

[Jonas Smedegaard]

Package: gnupg
Version: 2.2.2-1
Severity: normal
Tags: l10n

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Editing a key and requesting to revoke a subkey, in da_DK locale,
results in the following message:

gpg> revkey
Vil du virkelig tilbagekalde denne undernøgle? (j/N) j
Vælg venligst årsagen for tilbagekaldet:
  0 = Ingen årsag angivet
  1 = Nøglen er blevet komprimeret
  2 = Nøglen er blevet afløst
  3 = Nøglen bruges ikke længere
  Q = Afbryd

In option number 1, the word "komprimeret" means "compressed".

I am pretty sure it should say "kompromitteret" instead, which means
"compromised".


 - Jonas

-BEGIN PGP SIGNATURE-
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=ctkw
-END PGP SIGNATURE-

Bug#881394: dh-autoreconf: Please optimize out dh_autoreconf_clean when it is not necessary

[Niels Thykier]

Package: dh-autoreconf
Version: 14
Severity: wishlist
Tags: patch

Hi,

The dh_autoreconf_clean helper is only necessary when dh_autoreconf
has been run AND created the "autoreconf.{before,after}" files.  In
the initial "clean" prior to a build plus in packages without
autotools, these files will never exist.  Accordingly, we can save the
call to dh_autoreconf_clean in all of these cases by simply adding a
"NOOP" promise (as done in the 0001 patch).

I have also attached a second (unrelated) patch to declare that
dh-autoreconf can be built without (fake)root (by setting R³=no).  I
have made it a habit to attempt this whenever I work on packages to
avoid installing fakeroot.  Feel free ignore this patch; it has no
practical consequences for this bug and is just a little "bonus".

Thanks,
~Niels
>From 4f5505c0eaeb85c28dffc037fcb8d35dfdbb9cf5 Mon Sep 17 00:00:00 2001
From: Niels Thykier 
Date: Sat, 11 Nov 2017 09:00:05 +
Subject: [PATCH 1/2] dh_autoreconf_clean: Add a NOOP promise

Signed-off-by: Niels Thykier 
---
 dh_autoreconf_clean | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/dh_autoreconf_clean b/dh_autoreconf_clean
index 01b489c..62af818 100755
--- a/dh_autoreconf_clean
+++ b/dh_autoreconf_clean
@@ -23,6 +23,8 @@ any ltmain.sh patch applied by dh_autoreconf.
 
 init();
 
+# PROMISE: DH NOOP WITHOUT autoreconf.before autoreconf.after
+
 # autoreconf failed, just remove the 'before' file.
 if (-r 'debian/autoreconf.before' && ! -r 'debian/autoreconf.after') {
 doit("rm", "debian/autoreconf.before");
-- 
2.15.0

>From be5294c85a803c77e2cdc70782da7cec38d75dbb Mon Sep 17 00:00:00 2001
From: Niels Thykier 
Date: Sat, 11 Nov 2017 09:08:29 +
Subject: [PATCH 2/2] dh-autoreconf can build without (fake)root

Signed-off-by: Niels Thykier 
---
 debian/control | 1 +
 1 file changed, 1 insertion(+)

diff --git a/debian/control b/debian/control
index 0404295..d79651f 100644
--- a/debian/control
+++ b/debian/control
@@ -4,6 +4,7 @@ Priority: optional
 Maintainer: Julian Andres Klode 
 Build-Depends: debhelper (>= 9)
 Standards-Version: 3.9.8
+Rules-Requires-Root: no
 Vcs-Git: https://anonscm.debian.org/git/collab-maint/dh-autoreconf.git
 Vcs-Browser: https://anonscm.debian.org/git/collab-maint/dh-autoreconf.git
 
-- 
2.15.0

Bug#876937: missing build dependency

[Ross Gammon]

Control: tags -1 pending

Hi Petter,

I have just tested, and yes - adding node-mkdirp as a build dependency
fixes it.

Unfortunately I have to go out, but expect a team upload with the fix
from me later today.

Regards,

Ross



signature.asc
Description: OpenPGP digital signature

Bug#881385: RFS: cligh/0.3-1.1 [ITA] -- Command-line interface to GitHub

[Andrey Rahmatullin]

Control: tags -1 + moreinfo

On Sat, Nov 11, 2017 at 03:17:19AM +, eamanu15 . wrote:
> Package: sponsorship-requests
> Severity: normal
> 
> Dear mentors,
> 
> I am looking for a sponsor for my package "cligh"
> 
>  * Package name: cligh
>Version : 0.3-1.1
This is a NMU version and the changelog says "Non-maintainer upload.".
This is wrong as you are making a maintainer upload. lintian even tells
you that.
Also, it seems (from the changelog) that changing the maintainer field is
the only change you did in the package, while it has things to improve
(even obvious ones like the policy version and the debhelper compat
level). You should do that.

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Bug#881395: gedit-plugin-dashboard: traceback when opening new tabs: AttributeError: 'Image' object has no attribute 'get_children'

[Paul Wise]

Package: gedit-plugin-dashboard
Version: 3.22.0-3
Severity: serious
File: /usr/lib/x86_64-linux-gnu/gedit/plugins/dashboard/__init__.py
Usertags: crash

When I open a new tab in gedit, I get this traceback on the terminal
where I ran gedit. Filing at serious because I guess this means the
plugin package is broken, please downgrade the severity if the
traceback is not problematic.

Traceback (most recent call last):
  File "/usr/lib/x86_64-linux-gnu/gedit/plugins/dashboard/__init__.py", line 
58, in _add_tab
[0].get_children()[0].get_children()[1].hide()
AttributeError: 'Image' object has no attribute 'get_children'

-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (900, 'testing-debug'), (900, 'testing'), (800, 
'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 
'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), 
LANGUAGE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gedit-plugin-dashboard depends on:
ii  gedit 3.22.1-1+b1
ii  gedit-plugins-common  3.22.0-3
ii  gir1.2-gdkpixbuf-2.0  2.36.11-1
ii  gir1.2-glib-2.0   1.54.1-1
ii  gir1.2-gtk-3.03.22.24-3
ii  gir1.2-gtksource-3.0  3.24.5-1
ii  gir1.2-zeitgeist-2.0  1.0-0.1
ii  python3   3.6.3-2
ii  python3-dbus  1.2.4-1+b3
ii  python3-gi3.24.1-3

gedit-plugin-dashboard recommends no packages.

Versions of packages gedit-plugin-dashboard suggests:
pn  zeitgeist-datahub  

-- no debconf information

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#828522: qt4-x11: FTBFS with openssl 1.1.0

[Dmitry Eremin-Solenikov]

2017-11-07 21:23 GMT+03:00 Lisandro Damián Nicanor Pérez Meyer
:
> Hi Dmitry!
>
> On 13 October 2017 at 21:43, Dmitry Eremin-Solenikov
>> Also please note, that I had to apply two more fixes to build Qt4
>> properly (see second attachment):
>>
>> - In debian/rules define DEB_HOST_ARCH
>>
>> - In qt4-x11-4.8.7+dfsg/config.tests/unix/alsa/alsatest.cpp support
>>   libasound2 >= 1.1.0
>
> I haven't seen the need for this (maybe because the last time I've
> built qt4 this was not a problem). Did you try your builds on a clen
> chroot?

I don't remember about DEB_HOST_ARCH at this moment.
alsatest.cpp fix is required, because original test validated that
ALSA version is 1.0.x, which is no longer the case.

-- 
With best wishes
Dmitry

Bug#881391: graphicsmagick: CVE-2017-16669: Heap buffer over-write in AcquireCacheNexus function in magick/pixel_cache.c

[GCS]

Control: tags -1 +pending

On Sat, Nov 11, 2017 at 9:56 AM, Salvatore Bonaccorso  wrote:
> Source: graphicsmagick
> Version: 1.3.26-18
> Severity: important
> Tags: security upstream
> Forwarded: https://sourceforge.net/p/graphicsmagick/bugs/450/
>
[...]
> CVE-2017-16669[0]:
[...]
> Please adjust the affected versions in the BTS as needed. LTS team has
> released a DLA for this issue, so I guess (but have not checked!)
> every older version is affected as well from the issue.
 I'm going to check it. Seems to be a chained vulnerability, at least
I see eight fixing commit is needed for the 1.3.26 version.

Regards,
Laszlo/GCS

Bug#881015: Massive memory leak in ksmserver

[Julien Aubin]

Hi,

Not related to skype. It started again. 13 GB of memory.

Looks like at the same time a process named tracker-extract was eating 12
GB memory. Comes from tracker-extract package, used for some indexation.

2017-11-07 19:24 GMT+01:00 Julien Aubin :

> Hi,
>
> No I don't.
>
> However I saw today a Skype update which could be related to the issue.
> Cannot recall exactly whether the issue came with Skype update or with 9.2
> release.
>
> I'll keep you updated with this issue.
>
> 2017-11-07 19:22 GMT+01:00 Lisandro Damián Nicanor Pérez Meyer <
> perezme...@gmail.com>:
>
>> Hi! Do you have the wallpaper images changing from time to time?
>> Because there is an upstream bug for that and it could not be solved
>> so far (to the best of my knowledge).
>>
>
>

Bug#881396: fig2dev: buffer overflow in note_pattern()

[Jakub Wilk]

Package: fig2dev
Version: 1:3.2.6a-5

fig2dev crashes on the attached file:

  $ fig2dev -L epic overflow.fig
  Segmentation fault

GDB says it's a buffer overflow:

  Program received signal SIGSEGV, Segmentation fault.
  0x56563a0d in note_pattern (fill_style=123456789) at read.c:1450
  warning: Source file is more recent than executable.
  1450pattern_used[fill_style-NUMSHADES-NUMTINTS] = true;
  (gdb) bt
  #0  0x56563a0d in note_pattern (fill_style=123456789) at read.c:1450
  #1  read_splineobject (fp=0x56618838, fp@entry=0x0) at read.c:1054
  #2  0x5656522e in read_objects (obj=0x56618838, fp=) at 
read.c:380
  #3  readfp_fig (fp=, obj=) at read.c:183
  #4  0x5655aa47 in main (argc=4, argv=0xd744) at fig2dev.c:412


Found using American Fuzzy Lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Architecture: i386

Versions of packages fig2dev depends on:
ii  gawk 1:4.1.4+dfsg-1
ii  x11-common   1:7.7+19
ii  libc62.24-17
ii  libpng16-16  1.6.34-1
ii  libxpm4  1:3.5.12-1

--
Jakub Wilk


overflow.fig
Description: application/xfig

Bug#881397: libpsl: missing build dependency on autoconf-archive

[Adrian Bunk]

Source: libpsl
Version: 0.19.1-1
Severity: serious

https://buildd.debian.org/status/package.php?p=libpsl&suite=sid

...
checking for pkg-config... (cached) /usr/bin/pkg-config
checking pkg-config is at least version 0.9.0... yes
./configure: line 15429: syntax error near unexpected token 
`-fsanitize-address-use-after-scope,'
./configure: line 15429: `  
AX_CHECK_COMPILE_FLAG(-fsanitize-address-use-after-scope, CFLAGS="$CFLAGS 
-fsanitize-address-use-after-scope")'

Bug#881398: gstreamer1.0-x: Unable to play anything with Parole, Totem, etc.

[jEsuSdA]

Package: gstreamer1.0-x
Version: 1.12.3-1
Severity: important

Dear Maintainer,

I've just reinstall my PC and it was unable to play anything with Parole WITH
ANY USER BUT ROOT.


I have all the gstreamer packages installed, the codecs, etc. in fact, as I
said before, I can play anything as ROOT, but it is impossible to play with any
other users.

I tried a lot of internet forum tricks, but nothing works.



There is a video group and my user is in it:

jesusda@lucas in ~
$ → cat /etc/group | grep video
video:x:44:jesusda



Here the groups I'm member:

cat /etc/group | grep jesusda
cdrom:x:24:jesusda
floppy:x:25:jesusda
audio:x:29:pulse,jesusda
dip:x:30:jesusda
video:x:44:jesusda
plugdev:x:46:jesusda
games:x:60:jesusda
users:x:100:jesusda
input:x:106:jesusda
netdev:x:108:jesusda
lpadmin:x:113:jesusda
scanner:x:114:saned,jesusda
pulse:x:118:jesusda
jesusda:x:1000:
vboxusers:x:122:jesusda


I compared the groups I'm member in the pc with problems with another laptop
where parole and totem works fine, and are the same. WTF!!

It is really extrange.

Thanks a lot for your help and time. ;)



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-11.1-liquorix-amd64 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=es_ES.utf8, LC_CTYPE=es_ES.utf8 (charmap=UTF-8), 
LANGUAGE=es_ES.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)

Versions of packages gstreamer1.0-x depends on:
ii  libc6   2.24-17
ii  libcairo2   1.15.8-2
ii  libglib2.0-02.54.1-1
ii  libgstreamer-plugins-base1.0-0  1.12.3-1
ii  libgstreamer1.0-0   1.12.3-1
ii  libpango-1.0-0  1.40.12-1
ii  libpangocairo-1.0-0 1.40.12-1
ii  libx11-62:1.6.4-3
ii  libxext62:1.3.3-1+b2
ii  libxv1  2:1.0.11-1

gstreamer1.0-x recommends no packages.

gstreamer1.0-x suggests no packages.

-- no debconf information

Bug#881389: lintian: Incomplete solution to whitespace errors in file-contains-trailing-whitespace

[Stuart Prescott]

Hi Chris,

> > However, that only removes trailing spaces, while trailing tabs will also
> > trigger the warning
> 
> … but not in debian/rules as leaving trailing tabs is quite common,
> hence the safer and less-exhaustive sed.

I think I missed something. Why is it good to keep trailing tabs in a 
Makefile?

> I've updated the description to match, which — I think! — should please both
> of us:
> 
> https://anonscm.debian.org/git/lintian/lintian.git/commit/?id=45632b0eee896
> 7eb155fddd093c7761c12bc1980

it probably shouldn't say debian/control in the sample command but otherwise, 
that at least tells the maintainer how to fix the warning rather than giving 
an instruction that does not.

cheers
Stuart

-- 
Stuart Prescotthttp://www.nanonanonano.net/   stu...@nanonanonano.net
Debian Developer   http://www.debian.org/ stu...@debian.org
GPG fingerprint90E2 D2C1 AD14 6A1B 7EBB 891D BBC1 7EBB 1396 F2F7

Bug#881399: wdm: [INTL:nl] Dutch translation of debconf messages

[Frans Spiesschaert]

 
 
Package: wdm 
Severity: wishlist 
Tags: l10n patch 
 
 
 
Dear Maintainer, 
 
 
Please find attached the updated Dutch translation of wdm debconf
messages. 
It has been submitted for review to the debian-l10n-dutch mailing
list. 
Please add it to your next package revision. 
It should be put as debian/po/nl.po in your package build tree. 
 

-- 
Regards,
Frans Spiesschaert


nl.po.gz
Description: application/gzip


signature.asc
Description: This is a digitally signed message part

Bug#881400: expeyes: [INTL:nl] Dutch translation of debconf messages

[Frans Spiesschaert]

 
 
Package: expeyes 
Severity: wishlist 
Tags: l10n patch 
 
 
 
Dear Maintainer, 
 
 
Please find attached the Dutch translation of expeyes debconf
messages. 
It has been submitted for review to the debian-l10n-dutch mailing
list. 
Please add it to your next package revision. 
It should be put as debian/po/nl.po in your package build tree. 
 

-- 
Met vriendelijke groet,
Frans Spiesschaert


nl.po.gz
Description: application/gzip


signature.asc
Description: This is a digitally signed message part

Bug#881401: dpkg: [INTL:nl] Dutch po file for the dpkg package

[Frans Spiesschaert]

 
 
Package: dpkg 
Severity: wishlist 
Tags: l10n patch 
 
 
 
Dear Maintainer, 
 
 
Please find attached the updated Dutch po file for the dpkg package. 
It has been submitted for review to the debian-l10n-dutch mailing
list. 
Please add it to your next package revision. 
It should be put as "po/nl.po" in your package build tree. 
 

-- 
Regards,
Frans Spiesschaert


nl.po.gz
Description: application/gzip


signature.asc
Description: This is a digitally signed message part

Bug#880471: Touchpad doesn't work anymore

[Chris Boot]

On 31 Oct 2017, at 22:29, Daniel Leidert  wrote:
> With linux kernel linux-image-4.12.0-2-amd64 4.12.13-1 I have this output.
> 
> hwinfo --short:
> 
>  /dev/input/mice  SynPS/2 Synaptics TouchPad
>  /dev/input/mice  ATML1000:00 03EB:8C1F
> 
> syslog:
> 
>  kernel: [3.520469] input: SynPS/2 Synaptics TouchPad as 
> /devices/platform/i8042/serio1/input/input2
> 
> There seems to be a major difference between kernels 4.12 and 4.13.

I wonder if this is somehow related to #875621 where I asked for some 
additional options to be enabled. Daniel, could you please include a full dmesg 
output from the 4.13 kernel? In particular I’m looking for lines containing 
“psmouse” or “rmi4”.

Cheers,
Chris

-- 
Chris Boot
bo...@debian.org

Bug#881404: unison: has stopped working altogether: ‘Fatal error: End_of_file exception raised in loading archive (this indicates a bug!)’

[Axel Stammler]

Package: unison
Version: 2.48.3-1
Severity: important

Dear Maintainer,

That is what happens now whenever I try to use Unison with any profile. It 
started
suddenly — everything worked perfectly until a few hours ago.

-- System Information:
Debian Release: 9.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_IE:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages unison depends on:
ii  libc6  2.24-11+deb9u1

Versions of packages unison recommends:
ii  openssh-client [ssh-client]  1:7.4p1-10+deb9u1

Versions of packages unison suggests:
pn  unison-all  

-- debconf-show failed

Bug#837898: Please remove icu-config as it is no longer used by libicu-dev's reverse dependencies

[Manuel A. Fernandez Montecelo]

Hi Laszlo,

2017-08-27 23:24 László Böszörményi (GCS):

Hi Hugh,

On Thu, Aug 10, 2017 at 10:52 AM, Hugh McMaster
 wrote:

I have checked all 19 reverse dependencies of libicu-dev. Only one
package (fis-gtm-6.3-000a) uses icu-config, and even then, it
is only used if detected during configure. If not present, the
configure script works around this, so it could be easily adjusted
to use pkgconfig instead.

I've checked more packages as ICU 59.1 is ready to be uploaded now.
It seems several needs patching, some due to the missing icu-config
file.


Taking this into consideration, it is now safe (and reasonable)
to remove icu-config from the package and restore
multi-arch support.

Indeed, to date all package can be updated not to use that file.


This, in turn, allows libxml2-dev to be installed for multiple
architectures simultaneously and greatly benefits the
Wine project.

Are you involved with these projects, I mean can you do deep testing
with new ICU if I make it available to you?


Do you have any plans yet to start the transition to move this to
unstable?

If you're waiting on a rebuild of the packages that depend on this one
to see if any breaks, perhaps I can give it a try in a week or so.


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#881385: RFS: cligh/0.3-1.1 [ITA] -- Command-line interface to GitHub

[Andrey Rahmatullin]

On Sat, Nov 11, 2017 at 10:43:53AM +, eamanu15 . wrote:
> So, I have to erase the line "Non-maintainer upload" from *debian/changelog
> *file.
Yes.

> And then,  make some change in the code before change the Maintainer field
> from *debian/control* file.
Not "make some change in the code" but "improve the package in the ways it
can be improved".

-- 
WBR, wRAR


signature.asc
Description: PGP signature

Bug#881385: RFS: cligh/0.3-1.1 [ITA] -- Command-line interface to GitHub

[eamanu15 .]

Hello Andrey,

Thank for you response!

OK. I understand.

So, I have to erase the line "Non-maintainer upload" from *debian/changelog
*file.

And then,  make some change in the code before change the Maintainer field
from *debian/control* file.

That is right?

Regards

El sáb., 11 de nov. de 2017 a la(s) 06:32, Andrey Rahmatullin <
w...@debian.org> escribió:

> Control: tags -1 + moreinfo
>
> On Sat, Nov 11, 2017 at 03:17:19AM +, eamanu15 . wrote:
> > Package: sponsorship-requests
> > Severity: normal
> >
> > Dear mentors,
> >
> > I am looking for a sponsor for my package "cligh"
> >
> >  * Package name: cligh
> >Version : 0.3-1.1
> This is a NMU version and the changelog says "Non-maintainer upload.".
> This is wrong as you are making a maintainer upload. lintian even tells
> you that.
> Also, it seems (from the changelog) that changing the maintainer field is
> the only change you did in the package, while it has things to improve
> (even obvious ones like the policy version and the debhelper compat
> level). You should do that.
>
> --
> WBR, wRAR
>
-- 
Arias Emmanuel
http://eamanu.com

Bug#881055: qtwebkit-opensource-src: FTBFS on x32: seems to use amd64-specific MacroAssembler code

[Dmitry Shachnev]

Control: tags -1 +pending

On Fri, Nov 10, 2017 at 05:57:48PM +0100, Thorsten Glaser wrote:
> The change is semantically different because it also disables the JIT
> on kfreebsd-{i386,amd64} and hurd-i386, on which it previously was
> enabled, AFAICT.

You are right, fixed.

> > Can you please try removing -DUSE_LD_GOLD=OFF from debian/rules?
>
> That’s it! The build succeeded, debdiff and full build log attached.
> I’ll now build the source and arch:all part (in an amd64 cowbuilder,
> for simplicity) and upload to debian-ports “unreleased”, to get the
> current Qt transition on the way (my main desktop at work runs x32,
> so I’m currently in “cannot dist-upgrade” hell), and your next upload
> with these changes will supercede it eventually.

Thanks for testing! I have now committed the remaining changes, so the
fix will be in the next upload.

You mentioned m68k in the previous mail, I am currently waiting for
Adrian to forward his patch upstream. Hope it will be done soon.

--
Dmitry Shachnev


signature.asc
Description: PGP signature

Bug#879600: calamaris: "Negative repeat count does nothing" warnings in cron daily report

[Cord Beermann]

Package: calamaris
Version: 2.99.4.5-2
Followup-For: Bug #879600

an additional fix:

--- a/trunk/calamaris
+++ b/trunk/calamaris
@@ -3953,8 +3953,8 @@ sub outheader {
   $out_body{$index} .=
substr( $p, 0, 7 ) . ' ' x ( ( (7 - length($p)) > 0) ? (7 - length($p)) 
: 0 ) . ' ';
 } else {
-  $out_body{$index} .= sprintf( substr( $p, 0, $format[$no] )
- . ' ' x ( $format[$no] - length($p) ) . ' ' );
+  $out_body{$index} .=
+substr( $p, 0, $format[$no] ) . ' ' x ( ( ($format[$no] - length($p)) 
> 0) ? ($format[$no] - length($p)) : 0 ) . ' ';
 }
 $no++;
   }

Cord

Bug#881405: reprepro: drop "FILE LOCATION" headers from Contents files

[Paul Wise]

Package: reprepro
Version: 5.1.1-1
Severity: wishlist

The Debian and Ubuntu archives have dropped their headers from their
Contents files, it would be great if reprepro could also do this so
that apt-file can drop the workaround added in #676642 for how the
headers affect Contents parsing.

https://bugs.debian.org/676642
https://bugs.debian.org/841997
https://bugs.launchpad.net/bugs/1638219

-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (900, 'testing-debug'), (900, 'testing'), (800, 
'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 
'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), 
LANGUAGE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages reprepro depends on:
ii  libarchive13   3.2.2-3.1
ii  libbz2-1.0 1.0.6-8.1
ii  libc6  2.24-17
ii  libdb5.3   5.3.28-13.1
ii  libgpg-error0  1.27-4
ii  libgpgme11 1.9.0-6
ii  liblzma5   5.2.2-1.3
ii  zlib1g 1:1.2.8.dfsg-5

Versions of packages reprepro recommends:
ii  apt  1.5

Versions of packages reprepro suggests:
ii  gnupg-agent  2.2.1-5
ii  gpg-agent [gnupg-agent]  2.2.1-5
pn  inoticoming  
ii  lzip 1.19-3
ii  pinentry-curses  1.0.0-3

-- no debconf information

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#881407: cltl: [INTL:nl] Dutch translation of debconf messages

[Frans Spiesschaert]

 
 
Package: cltl 
Severity: wishlist 
Tags: l10n patch 
 
 
 
Dear Maintainer, 
 
 
Please find attached the updated Dutch translation of cltl debconf
messages. 
It has been submitted for review to the debian-l10n-dutch mailing
list. 
Please add it to your next package revision. 
It should be put as debian/po/nl.po in your package build tree. 
 

-- 
Regards,
Frans Spiesschaert


nl.po.gz
Description: application/gzip


signature.asc
Description: This is a digitally signed message part

Bug#881406: apt-file: drop Contents header removal?

[Paul Wise]

Package: apt-file
Version: 3.1.5
Severity: wishlist

In #676642 we added a workaround for the Contents file having a header
breaking some lookups. The Debian (#841997) and Ubuntu (LP#1638219)
archives have now removed this header but unfortunately I noticed that
reprepro (#881405) still has a header. Unfortunately the reprepro header is not 
compatible with the current workaround in apt-file. We could fix that by 
replacing the first match with line 1. Alternatively we could just drop the 
workaround, removing it should speed up apt-file by not invoking sed. I guess 
most apt-file users aren't using reprepro 
generated repositories that also have Contents files available. Also,
the header from reprepro doesn't cause quite as bad issues as the dak
and launchpad header, it just means that there is a package called FILE
with a single file in it called LOCATION.

https://bugs.debian.org/676642
https://bugs.debian.org/841997
https://bugs.launchpad.net/bugs/1638219

-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (900, 'testing-debug'), (900, 'testing'), (800, 
'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 
'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), 
LANGUAGE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages apt-file depends on:
ii  apt  1.5
ii  libapt-pkg-perl  0.1.33
ii  liblist-moreutils-perl   0.416-1+b3
ii  libregexp-assemble-perl  0.36-1
ii  perl 5.26.0-8

apt-file recommends no packages.

apt-file suggests no packages.

-- no debconf information

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#881385: RFS: cligh/0.3-1.1 [ITA] -- Command-line interface to GitHub

[eamanu15 .]

Ok. Thanks!

El sáb., 11 de nov. de 2017 a la(s) 07:46, Andrey Rahmatullin <
w...@debian.org> escribió:

> On Sat, Nov 11, 2017 at 10:43:53AM +, eamanu15 . wrote:
> > So, I have to erase the line "Non-maintainer upload" from
> *debian/changelog
> > *file.
> Yes.
>
> > And then,  make some change in the code before change the Maintainer
> field
> > from *debian/control* file.
> Not "make some change in the code" but "improve the package in the ways it
> can be improved".
>
> --
> WBR, wRAR
>
-- 
Arias Emmanuel
http://eamanu.com

Bug#881015: Massive memory leak in ksmserver

[Julien Aubin]

The leak continues - 200 MB memory / hour.

2017-11-11 10:57 GMT+01:00 Julien Aubin :

> Hi,
>
> Not related to skype. It started again. 13 GB of memory.
>
> Looks like at the same time a process named tracker-extract was eating 12
> GB memory. Comes from tracker-extract package, used for some indexation.
>
> 2017-11-07 19:24 GMT+01:00 Julien Aubin :
>
>> Hi,
>>
>> No I don't.
>>
>> However I saw today a Skype update which could be related to the issue.
>> Cannot recall exactly whether the issue came with Skype update or with 9.2
>> release.
>>
>> I'll keep you updated with this issue.
>>
>> 2017-11-07 19:22 GMT+01:00 Lisandro Damián Nicanor Pérez Meyer <
>> perezme...@gmail.com>:
>>
>>> Hi! Do you have the wallpaper images changing from time to time?
>>> Because there is an upstream bug for that and it could not be solved
>>> so far (to the best of my knowledge).
>>>
>>
>>
>

Bug#862264: libvisual-0.4-dev is not Multi-Arch compatible

[Manuel A. Fernandez Montecelo]

Oi Eriberto (and François),

2017-05-10 13:39 Francois Gouget:

Package: libvisual-0.4-dev
Version: 0.4.0-10
Severity: normal

Dear Maintainer,

The amd64 version conflicts with the i386 one which makes it impossible
to install both. As a result one is forced to chose between developing
32 bit or 64 bit applications.


As far as I can tell, the only missing bit is to add "Multi-Arch: same"
to the section of the -dev package in debian/control.

Do you have any plans to address this soon?

If not, do you mind if I NMU the package and push to the repo in
collab-maint?


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#849602: Bug#881299: thunderbird: Please install EmojiOneMozilla.ttf in /usr/lib/thunderbird/fonts/

[Laurent Bigonville]

Le 11/11/17 à 08:47, Carsten Schoenert a écrit :

Hello Laurent,

On Thu, Nov 09, 2017 at 10:52:09PM +0100, Laurent Bigonville wrote:

On Thu, 09 Nov 2017 22:04:39 +0100 Laurent Bigonville 
wrote:

Hi,

Could you please install the EmojiOneMozilla.ttf font in
/usr/lib/thunderbird/fonts/

Currently emoji are not diplayed properly, I just tried on my system and
add the file in that location fixed it.

Firefox is doing the same by installing that font in
/usr/lib/firefox/fonts


Well actually no

This seems to be against the debian policy, see bug #849602

IMHO, firefox should create a package with that font and thunderbird should
depends on that package

this is a bit overkill in my eyes. Why should thunderbird depend on the
big package of firefox only to get a font? That's currently not the we
should go.


Well I was talking about creating an other binary package built fron 
firefore(-esr?) source package



I believe it's better to live here if both packages ship this font
within their packages as long some one is packaging emojione-colr.


Good for me.

Note that with fonts-noto-color-emoji and the newer version of 
fontconfig arriving in unstable, the emoji displayed by thunderbird are 
oversized now.


The good workaround is to install that EmojiOneMozilla.ttf in 
/usr/lib/thunderbird/fonts/.


This will become a more pressing problem in a few days (fontconfig is 
waiting in the deferred queue)



So I'd suggest to move this report over to a RFP for emojione-colr and
keep the reports within firefox and thunderbird open with a blocks on
the RFP bug report.

But I wont have time to do such a packaging nor have I a real good
knowledge about font packaging. OTOH emojione-colr hasn't changed
internals for over a year now.



[1] https://github.com/mozilla/emojione-colr

Regards
Carsten

Bug#881409: libpsl b-d on python3, but builds with python2

[Matthias Klose]

Package: src:libpsl
Version: 0.19.1-2

The package libpsl b-d on python3, but builds with python2 according to the
build log. Please fix the build so that it's using python3.

Please also address the Multi-Arch hints.

Bug#881408: comerr-dev: Please mark the package Multi-Arch: same

[Hugh McMaster]

Package: comerr-dev
Version: 2.1-1.43.7-1
Severity: normal
Tags: patch

Dear Maintainer,

The package comerr-dev is not currently multi-arch compatible.

A diff of the i386 and amd64 variants shows no file conflicts
that would prevent this package from being marked Multi-Arch: same.

Multi-arch compatibility would greatly benefit other projects,
which need multi-arch support from this package.

Thank you



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_AU:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages comerr-dev depends on:
ii  libc6-dev [libc-dev]  2.24-17
ii  libcomerr21.43.7-1

comerr-dev recommends no packages.

Versions of packages comerr-dev suggests:
ii  doc-base  0.10.7

-- no debconf information
--- debian/control  2017-10-16 16:20:54.0 +1100
+++ debian/control  2017-11-11 22:19:36.056191271 +1100
@@ -65,6 +65,7 @@
 Suggests: doc-base
 Replaces: e2fslibs-dev (<< 1.33-2), libkrb5-dev (<< 1.3)
 Architecture: any
+Multi-Arch: same
 Description: common error description library - headers and static libraries
  libcom_err is an attempt to present a common error-handling mechanism to
  manipulate the most common form of error code in a fashion that does not
--- debian/control  2017-10-16 16:20:54.0 +1100
+++ debian/control  2017-11-11 22:19:36.056191271 +1100
@@ -65,6 +65,7 @@
 Suggests: doc-base
 Replaces: e2fslibs-dev (<< 1.33-2), libkrb5-dev (<< 1.3)
 Architecture: any
+Multi-Arch: same
 Description: common error description library - headers and static libraries
  libcom_err is an attempt to present a common error-handling mechanism to
  manipulate the most common form of error code in a fashion that does not
--- debian/control  2017-10-16 16:20:54.0 +1100
+++ debian/control  2017-11-11 22:19:36.056191271 +1100
@@ -65,6 +65,7 @@
 Suggests: doc-base
 Replaces: e2fslibs-dev (<< 1.33-2), libkrb5-dev (<< 1.3)
 Architecture: any
+Multi-Arch: same
 Description: common error description library - headers and static libraries
  libcom_err is an attempt to present a common error-handling mechanism to
  manipulate the most common form of error code in a fashion that does not

Bug#859224: netkit-ftp-ssl: Please migrate to openssl1.1 in Buster

[Sebastian Andrzej Siewior]

control: tags - patch

On 2017-11-10 14:45:52 [+0100], To Mats Erik Andersson wrote:
> On 2017-11-09 18:54:42 [+0100], Mats Erik Andersson wrote:
> > than a few kilobytes. Netkit-ftl-ssl achieves this by
> > use of the function SSL_copy_seesion_id(). This presumably
> > is a legacy function from the time of SSLeay.
> 
> I can't find this in SSL_copy_seesion_id() in the source in
> 0.17.34+0.2-4. What could I do wrong.

so you had a typo and I did copy/paste and did not notice it.

> > With the advent of libssl1.1 the behaviour of SSL_copy_session_id()
> > has changed without any mention in the published changelog as far
> > as I have been able to determine. In effect, SSL_copy_session_id()
> > is able to arrange reuse of the session identity exactly once --
> > I repeat to make the point -- exactly ONCE, where libssl1.0 is
> > able to continually renew the identity for the entire session.
> > Thus libssl1.1 prevents transmission of files in excess of 3 kB!

So the problem was that you never shutdown the connection. You can blame
libssl that it behaves differently or you can apply the first patch
attached.
The second one replaces SSL_copy_session_id() with something maybe more
obvious and with more documentation.

> > M E Andersson, maintainer of netkit-ftp-ssl

Sebastian

Bug#881393: [pkg-gnupg-maint] Bug#881393: gnupg: danish translation says compressed (not compromised)

[Daniel Kahn Gillmor]

Control: tags 881393 + upstream
Control: forwarded 881393 
https://dev.gnupg.org/rG2cdc37834261142504de5ea9f8aff51428b423f3

On Sat 2017-11-11 10:09:18 +0100, Jonas Smedegaard wrote:
> In option number 1, the word "komprimeret" means "compressed".
>
> I am pretty sure it should say "kompromitteret" instead, which means
> "compromised".

Thanks for the report.  This is a problem with the upstream l10n, and
i've pushed a fix upstream (on master, and also on the 2.2 and 1.4
branches).

It should show up in the next release of GnuPG.

All the best,

--dkg


signature.asc
Description: PGP signature

Bug#859224: netkit-ftp-ssl: Please migrate to openssl1.1 in Buster

[Sebastian Andrzej Siewior]

On 2017-11-11 12:37:15 [+0100], To Mats Erik Andersson wrote:
> So the problem was that you never shutdown the connection. You can blame
> libssl that it behaves differently or you can apply the first patch
> attached.
> The second one replaces SSL_copy_session_id() with something maybe more
> obvious and with more documentation.

okay. This time with the patch attached…

> > > M E Andersson, maintainer of netkit-ftp-ssl
 
Sebastian
>From 48939773820c9fb2c48ec444b156099d1bae Mon Sep 17 00:00:00 2001
From: Sebastian Andrzej Siewior 
Date: Sat, 11 Nov 2017 11:10:07 +
Subject: [PATCH 1/2] ftp-ssl: shutdown the session properly

If the SSL session is not shutdown properly, the following SSL_free will
free all SSL related structs including the session making it impossible
to be reused in a later connection.

Signed-off-by: Sebastian Andrzej Siewior 
---
 ftp/ftp.c | 5 +
 1 file changed, 5 insertions(+)

diff --git a/ftp/ftp.c b/ftp/ftp.c
index 81d38b5f9087..24c8ce956d14 100644
--- a/ftp/ftp.c
+++ b/ftp/ftp.c
@@ -951,6 +951,7 @@ sendrequest(const char *cmd, char *local, char *remote, int printnames)
 
 #ifdef USE_SSL
 	if (ssl_data_active_flag && (ssl_data_con!=NULL)) {
+	SSL_shutdown(ssl_data_con);
 	SSL_free(ssl_data_con);
 	ssl_data_active_flag=0;
 	ssl_data_con=NULL;
@@ -989,6 +990,7 @@ sendrequest(const char *cmd, char *local, char *remote, int printnames)
 
 #ifdef USE_SSL
 	if (ssl_data_active_flag && (ssl_data_con!=NULL)) {
+	SSL_shutdown(ssl_data_con);
 	SSL_free(ssl_data_con);
 	ssl_data_active_flag=0;
 	ssl_data_con=NULL;
@@ -1373,6 +1375,7 @@ recvrequest(const char *cmd,
 
 #ifdef USE_SSL
 	if (ssl_data_active_flag && (ssl_data_con!=NULL)) {
+	SSL_shutdown(ssl_data_con);
 	SSL_free(ssl_data_con);
 	ssl_data_active_flag=0;
 	ssl_data_con=NULL;
@@ -1420,6 +1423,7 @@ recvrequest(const char *cmd,
 
 #ifdef USE_SSL
 	if (ssl_data_active_flag && (ssl_data_con!=NULL)) {
+	SSL_shutdown(ssl_data_con);
 	SSL_free(ssl_data_con);
 	ssl_data_active_flag=0;
 	ssl_data_con=NULL;
@@ -1654,6 +1658,7 @@ dataconn(const char *lmode)
 	if (ssl_active_flag && ssl_encrypt_data) {
 	/* do SSL */
 	if (ssl_data_con!=NULL) {
+	  SSL_shutdown(ssl_data_con);
 	  SSL_free(ssl_data_con);
 	  ssl_data_con=NULL;
 	}
-- 
2.15.0

>From d228c9e24e78047afdd04fcc9e335551fea87251 Mon Sep 17 00:00:00 2001
From: Sebastian Andrzej Siewior 
Date: Sat, 11 Nov 2017 11:11:55 +
Subject: [PATCH 2/2] ftp-ssl: use get+set session instead of copy id

This does mostly the same thing but may be more obvious, maybe not.

Signed-off-by: Sebastian Andrzej Siewior 
---
 ftp/ftp.c | 9 -
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/ftp/ftp.c b/ftp/ftp.c
index 24c8ce956d14..53fc34f1ac2b 100644
--- a/ftp/ftp.c
+++ b/ftp/ftp.c
@@ -94,6 +94,7 @@ static struct sockaddr_storage myctladdr;
 static int ptflag = 0;
 static int ptabflg = 0;
 #ifdef USE_SSL
+static SSL_SESSION *ssl_data_session;
 int ssl_available=1;
 static int	pdata = -1;
 static int
@@ -1677,7 +1678,8 @@ dataconn(const char *lmode)
 	 * this quick assuming Eric has this going
 	 * okay! ;-)
 	 */
-	SSL_copy_session_id(ssl_data_con,ssl_con);
+	if (ssl_data_session)
+		SSL_set_session(ssl_data_con, ssl_data_session);
 
 	/* we are doing I/O and not using select so 
 	 * it is "safe" to read ahead
@@ -2279,6 +2281,11 @@ ssl_init(void)
 		fprintf(stderr, "Data connection security level refused.\n");
 		return ERROR;
 		}
+		if (ssl_encrypt_data) {
+			SSL_SESSION_free(ssl_data_session);
+			ssl_data_session = SSL_get1_session(ssl_con);
+		}
+
 		if (verbose && use_tls && ssl_encrypt_data)
 		fprintf(stderr, "[Encrypted data transfer.]\n");
 	}
-- 
2.15.0

Bug#881310: systemd-container: systemd-nspawn containers get non-functioning /etc/resolv.conf

[Michael Biebl]

Hi Alex

Am 11.11.2017 um 00:33 schrieb Alex King:
> looks like everything that should be in /lib/systemd and
> /usr/lib/systemd is duplicated in both places?!  I guess that is most
> likely a sysadmin typo, although the system was reloaded relatively
> recently and I have no idea how this could have happened.

That sounds like you might have usrmerge enabled, i.e. /lib is a symlink
to /usr/lib etc. This would explain the resolv.conf in both locations.

Can you post the output of "ls -la /"

Such a system can be created by using debootstrap's --merged-usr or
installing the usrmerge package in the final system.

Michael

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#881351: ldtp: Please depend on python-pyatspi instead of python-pyatspi2

[Jeremy Bicha]

Control: severity -1 serious
Control: tags -1 +patch +sid +buster

I'm bumping the severity since the transitional package has already
been removed in unstable.

Thanks,
Jeremy Bicha

Bug#873356: gnome-todo: Don't split into separate binaries

[Jeremy Bicha]

forwarded -1 https://gitlab.gnome.org/GNOME/gnome-todo/issues/92

The upstream developer says that this is not meant to be a public
library. Therefore, I don't think it's useful to split this into
separate binaries. Please undo the split.

Thanks,
Jeremy Bicha

Bug#849602: Bug#881299: thunderbird: Please install EmojiOneMozilla.ttf in /usr/lib/thunderbird/fonts/

[Carsten Schoenert]

On Sat, Nov 11, 2017 at 12:18:55PM +0100, Laurent Bigonville wrote:
> > this is a bit overkill in my eyes. Why should thunderbird depend on the
> > big package of firefox only to get a font? That's currently not the we
> > should go.
> 
> Well I was talking about creating an other binary package built fron
> firefore(-esr?) source package

O.k. then it was a bit misleading.

> > I believe it's better to live here if both packages ship this font
> > within their packages as long some one is packaging emojione-colr.
> 
> Good for me.
> 
> Note that with fonts-noto-color-emoji and the newer version of fontconfig
> arriving in unstable, the emoji displayed by thunderbird are oversized now.
> 
> The good workaround is to install that EmojiOneMozilla.ttf in
> /usr/lib/thunderbird/fonts/.

we can add the font to the next Thunderbird version of course. 52.5.0 is
targeted for Monday 13th November 2017, this is right next week. A bit
depending on how fast the Mozilla people can make the release happen we
quite near this upstream release.
I'm trying also to prepare some changes into a upload for experimental,
so it's likely happen at all in the next days.

> This will become a more pressing problem in a few days (fontconfig is
> waiting in the deferred queue)

Good to know, we will see what wil happen first.

Regards
Carsten

Bug#849602: firefox: font EmojiOne must be installed below /usr/share/fonts

[Julien Cristau]

Control: severity -1 wishlist

On Thu, Dec 29, 2016 at 03:44:07 +0100, Jonas Smedegaard wrote:

> Package: firefox
> Version: 50.1.0-1
> Severity: serious
> Justification: Policy 11.8.5
> 
> Firefox 50 and newer ships with the font EmojiOne.
> 
> According to Debian Policy, fonts must be made generally available, by
> installing it below /usr/share/fonts and then (if needed) symlinking to
> the custom location expected by the application.
> 
Policy 11.8.5 is regarding packages providing fonts for general usage,
and in particular was written for a time where fonts had to be made
available to the X server or font server, see footnote [1] in that
section.  The same reasoning does not apply to this case.

Cheers,
Julien

Bug#881410: virtualbox-dkms: Error! Bad return status for module build on kernel: 4.14.0-rc7-amd64 (x86_64)

[Soukaku]

Package: virtualbox-dkms
Version: 5.2.0-dfsg-4
Severity: normal

Dear Maintainer,

When trying to start a virtual machine on Virtualbox, a message urging the 
execution of "modprobe vobxdrv" is displayed as follo
ws.

-- Virtualbox Dialog
The VirtualBox Linux kernel driver (vboxdrv) is either not loaded or there is a 
permission problem with /dev/vboxdrv. Please rei
nstall virtualbox-dkms package a
nd load the kernel module by executing

'modprobe vboxdrv'

as root.
--

However, even if "modprobe vboxdrv" is executed, if there is no module, an 
error will be displayed.
So I'm trying to reinstall virtualbox-dkms, but because I failed to build 
virtualbox-dkms, I can not reinstall it.

When "aptitude reinstall virtualbox-dkms" is executed, the following message 
will be displayed.

-- aptitude message
Preparing to unpack .../virtualbox-dkms_5.2.0-dfsg-4_all.deb ...

--
Deleting module version: 5.2.0
completely from the DKMS tree.
--
Done.
Unpacking virtualbox-dkms (5.2.0-dfsg-4) over (5.2.0-dfsg-4) ...
Setting up virtualbox-dkms (5.2.0-dfsg-4) ...
Loading new virtualbox-5.2.0 DKMS files...
Building for 4.14.0-rc7-amd64
Building initial module for 4.14.0-rc7-amd64
Error! Bad return status for module build on kernel: 4.14.0-rc7-amd64 (x86_64)
Consult /var/lib/dkms/virtualbox/5.2.0/build/make.log for more information.
Job for virtualbox.service failed because the control process exited with error 
code.
See "systemctl  status virtualbox.service" and "journalctl  -xe" for details.
invoke-rc.d: initscript virtualbox, action "restart" failed.
* virtualbox.service - LSB: VirtualBox Linux kernel module
   Loaded: loaded (/etc/init.d/virtualbox; generated; vendor preset: enabled)
   Active: failed (Result: exit-code) since Sat 2017-11-11 20:14:42 JST; 60ms 
ago
 Docs: man:systemd-sysv-generator(8)
  Process: 13388 ExecStart=/etc/init.d/virtualbox start (code=exited, 
status=1/FAILURE)

Nov 11 20:14:42 vhost01 systemd[1]: Starting LSB: VirtualBox Linux kernel 
module...
Nov 11 20:14:42 vhost01 virtualbox[13388]: Loading VirtualBox kernel 
modules...No suitable module for running kernel found ... f
ailed!
Nov 11 20:14:42 vhost01 virtualbox[13388]:  failed!
Nov 11 20:14:42 vhost01 systemd[1]: virtualbox.service: Control process exited, 
code=exited status=1
Nov 11 20:14:42 vhost01 systemd[1]: virtualbox.service: Failed with result 
'exit-code'.
Nov 11 20:14:42 vhost01 systemd[1]: Failed to start LSB: VirtualBox Linux 
kernel module.


-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.14.0-rc7-amd64 (SMP w/8 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8), 
LANGUAGE=ja_JP.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages virtualbox-dkms depends on:
ii  dkms  2.3-3

Versions of packages virtualbox-dkms recommends:
ii  virtualbox  5.2.0-dfsg-4

virtualbox-dkms suggests no packages.

-- no debconf information
DKMS make.log for virtualbox-5.2.0 for kernel 4.14.0-rc7-amd64 (x86_64)
Sat Nov 11 20:14:23 JST 2017
make: Entering directory '/usr/src/linux-headers-4.14.0-rc7-amd64'
  AR  /var/lib/dkms/virtualbox/5.2.0/build/built-in.o
  AR  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/built-in.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/linux/SUPDrv-linux.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/SUPDrv.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/SUPDrvGip.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/SUPDrvTracer.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/SUPLibAll.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/alloc-r0drv.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/initterm-r0drv.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/SUPDrvSem.o
  CC [M]  /var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/memobj-r0drv.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/mpnotification-r0drv.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/powernotification-r0drv.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/assert-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/initterm-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/alloc-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/memobj-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/memuserkernel-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/mp-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/mpnotification-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtualbox/5.2.0/build/vboxdrv/r0drv/linux/process-r0drv-linux.o
  CC [M]  
/var/lib/dkms/virtual

Bug#881411: quantlib-examples cannot be installed

[Adrian Bunk]

Package: quantlib-examples
Version: 1.11-3
Severity: serious

The following packages have unmet dependencies:
 quantlib-examples : Depends: libquantlib0v5 (= 1.11-3) but it is not going to 
be installed


Package: quantlib-examples
Version: 1.11-3
Replaces: libquantlib0v5
Depends: libc6 (>= 2.14), libgcc1 (>= 1:3.0), libquantlib0v5 (= 1.11-3), 
libstdc++6 (>= 5.2)
Breaks: libquantlib0v5


libquantlib0v5  both installed and not installed cannot be fulfilled.


The Replaces+Breaks need a version, see policy for an example:
https://www.debian.org/doc/debian-policy/#overwriting-files-in-other-packages

Bug#776986: libsane-hpaio: after update hpaio driver causes scanimage segmentation fault

[Brian Potkin]

tags 776986 moreinfo
thanks



On Tue 03 Feb 2015 at 20:57:06 +0100, Bernd Krumböck wrote:

> Package: libsane-hpaio
> Version: 3.14.6-1+b2
> Severity: normal
> 
> After upgrade I believe libsane-hpaio causes scanimage segmentation fault.
> 
> 
> Action:
> export SANE_DEBUG_DLL=128
> scanimage --help -d hpaio:/net/HP_LaserJet_M1522n_MFP?zc=NPI188989

[Snip]

Bernd - is this still an issue on the present unstable distribution?

Regards,

Brian.

Bug#877075: sikulix: hard coded dependency on libopencv2.4-java

[Mattia Rizzolo]

On Mon, Oct 30, 2017 at 10:32:55PM +0100, Gilles Filippini wrote:
> Yes, it works.

That's great!
So I've now also uploaded that to the unstable branch as well.
Please do whatever you need to do to make that dependency automatic :)

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
more about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#881412: ITP: modulator -- Java light shim library that wraps Java 9 APIs and expose them to recent JDKs

[Miguel Landaeta]

Package: wnpp
Severity: wishlist
Owner: Miguel Landaeta 

* Package name: modulator
  Version : 1.0
  Upstream Author : Charles Oliver Nutter 
* URL : https://github.com/headius/modulator
* License : Apache-2.0
  Programming Lang: Java
  Description : Java light shim library that wraps Java 9 APIs and exposes 
them to recent JDKs

 Modulator is just a very lightweight shim library that wraps
 Java 9 and previous reflection APIs to allow a uniform API
 into "module"-like behaviors on all recent JDKs.

Its main use case in Debian at the present time is as a JRuby
dependency and it will be maintained under Debian Java Team umbrella.
However, it could be useful to other projects that need to be built
and run with JDK9 and previous versions.

-- 
Miguel Landaeta, nomadium at debian.org
secure email with PGP 0x6E608B637D8967E9 available at http://miguel.cc/key.
"Faith means not wanting to know what is true." -- Nietzsche


signature.asc
Description: PGP signature

Bug#881413: Wrong deb-systemd-invoke invocations in postinst and prerm

[Andrey Rahmatullin]

Package: lvm2
Version: 2.02.176-4
Severity: normal

The maintainer scripts contain these lines:

/var/lib/dpkg/info/lvm2.postinst:   deb-systemd-invoke $_dh_action
>/dev/null || true
/var/lib/dpkg/info/lvm2.prerm:  deb-systemd-invoke stop  >/dev/null

This gives the following message on install and, I suppose the same one on
remove:

Syntax: /usr/bin/deb-systemd-invoke   [ ...]

I don't understand why are these wrong lines generated though, can it be a bug
in dh_installsystemd?



-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'unstable'), (500, 'testing'), (101, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages lvm2 depends on:
ii  dmeventd  2:1.02.145-4
ii  dmsetup   2:1.02.145-4
ii  libblkid1 2.30.2-0.1
ii  libc6 2.24-17
ii  libdevmapper-event1.02.1  2:1.02.145-4
ii  libdevmapper1.02.12:1.02.145-4
ii  liblvm2app2.2 2.02.176-4
ii  libreadline5  5.2+dfsg-3+b1
ii  libsystemd0   235-2
ii  libudev1  235-2
ii  lsb-base  9.20170808

Versions of packages lvm2 recommends:
pn  thin-provisioning-tools  

lvm2 suggests no packages.

-- Configuration Files:
/etc/lvm/lvm.conf changed [not included]

-- debconf-show failed

Bug#849602: firefox: font EmojiOne must be installed below /usr/share/fonts

[Jonas Smedegaard]

Quoting Julien Cristau (2017-11-11 13:22:39)
> Control: severity -1 wishlist
> 
> On Thu, Dec 29, 2016 at 03:44:07 +0100, Jonas Smedegaard wrote:
> 
> > Package: firefox
> > Version: 50.1.0-1
> > Severity: serious
> > Justification: Policy 11.8.5
> > 
> > Firefox 50 and newer ships with the font EmojiOne.
> > 
> > According to Debian Policy, fonts must be made generally available, by
> > installing it below /usr/share/fonts and then (if needed) symlinking to
> > the custom location expected by the application.
> > 
> Policy 11.8.5 is regarding packages providing fonts for general usage,
> and in particular was written for a time where fonts had to be made
> available to the X server or font server, see footnote [1] in that
> section.  The same reasoning does not apply to this case.

I thought that Policy section was regarding packages providing fonts 
_usable_ generally, which I believe applies in this case: Emoji fonts is 
not specific to Firefox, nor is e.g. the encoding of this specific font.


 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/

 [x] quote me freely  [ ] ask before reusing  [ ] keep private

Bug#881415: stretch-pu: python2.7/2.7.13-2+deb9u1

[Kurt Roeckx]

Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

Hi,

I would like to upload python2.7 to fix a problem that it can't
talk to SSL/TLS sites that use an ECDSA certificate different than
P256, like a P384 certificate.

Here is the debdiff:
diff -u python2.7-2.7.13/debian/changelog python2.7-2.7.13/debian/changelog
--- python2.7-2.7.13/debian/changelog
+++ python2.7-2.7.13/debian/changelog
@@ -1,3 +1,10 @@
+python2.7 (2.7.13-2+deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload with maintainer's permission
+  * Support all groups in TLS communication (Closes: #868143)
+
+ -- Kurt Roeckx   Thu, 09 Nov 2017 21:58:19 +0100
+
 python2.7 (2.7.13-2) unstable; urgency=medium
 
   * Lower priority of interpreter packages to optional.
diff -u python2.7-2.7.13/debian/patches/series.in 
python2.7-2.7.13/debian/patches/series.in
--- python2.7-2.7.13/debian/patches/series.in
+++ python2.7-2.7.13/debian/patches/series.in
@@ -71,0 +72 @@
+Dont_use_OpenSSL_1.0.2_fallback_on_1.1.diff
only in patch2:
unchanged:
--- 
python2.7-2.7.13.orig/debian/patches/Dont_use_OpenSSL_1.0.2_fallback_on_1.1.diff
+++ python2.7-2.7.13/debian/patches/Dont_use_OpenSSL_1.0.2_fallback_on_1.1.diff
@@ -0,0 +1,28 @@
+From 97a145398ce7e36eb355f1fd75011ddbcb37d1b3 Mon Sep 17 00:00:00 2001
+From: Donald Stufft 
+Date: Thu, 2 Mar 2017 11:24:50 -0500
+Subject: [PATCH] bpo-29697: Don't use OpenSSL <1.0.2 fallback on 1.1+
+
+---
+ Modules/_ssl.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+Index: python2.7-2.7.13/Modules/_ssl.c
+===
+--- python2.7-2.7.13.orig/Modules/_ssl.c
 python2.7-2.7.13/Modules/_ssl.c
+@@ -2166,12 +2166,12 @@ context_new(PyTypeObject *type, PyObject
+ options |= SSL_OP_NO_SSLv3;
+ SSL_CTX_set_options(self->ctx, options);
+ 
+-#ifndef OPENSSL_NO_ECDH
++#if !defined(OPENSSL_NO_ECDH) && !defined(OPENSSL_VERSION_1_1)
+ /* Allow automatic ECDH curve selection (on OpenSSL 1.0.2+), or use
+prime256v1 by default.  This is Apache mod_ssl's initialization
+policy, so we should be safe. OpenSSL 1.1 has it enabled by default.
+  */
+-#if defined(SSL_CTX_set_ecdh_auto) && !defined(OPENSSL_VERSION_1_1)
++#if defined(SSL_CTX_set_ecdh_auto)
+ SSL_CTX_set_ecdh_auto(self->ctx, 1);
+ #else
+ {

Bug#881414: ITP prochunter -- find hidden processes on Linux

[Samuel Henrique]

Package: wnpp
Owner: "Samuel Henrique" 
Severity: wishlist

​* Package name: prochunter
  Upstream Author : nowayout 
* URL : https://gitlab.com/nowayout/prochunter

* License : GPLv2
  Programming Lang: Python, C
  Description : Find hidden process with all userspace and most of the
kernelspace rootkits

​Prochunter aims to find hidden process with all userspace and most of the
kernelspace rootkits.
This tool is composed of a kernel module that prints out all running
processes walking the task_struct list and creates
/sys/kernel/proc_hunter/set entry. A python script that
invokes
the kernel function and diffs the module output with processes list
collected from userspace (/proc walking).​

​I intend to maintain this package under the pkg-security team.​


-- 
Samuel Henrique 

Bug#881416: Please also depend on php7.1-dev

[Mathieu Parent]

Package: php-all-dev
Version: 1:54
Severity: wishlist

Hi Ondrej,

I want to fix #879475, #879476, #879477 by a simple rebuild of those packages.

Maybe a regeneration on debian/control is needed?

Regards

Mathieu Parent

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.13.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8), 
LANGUAGE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages php-all-dev depends on:
ii  php7.0-dev   7.0.22-3
ii  php7.0-json  7.0.22-3

php-all-dev recommends no packages.

php-all-dev suggests no packages.

Bug#842569: mark autoconf2.13 Multi-Arch: foreign

[Manuel A. Fernandez Montecelo]

Hi Ben,

2016-10-30 13:48 Helmut Grohne:

Package: autoconf2.13
Version: 2.13-67
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
Control: affects -1 + src:firefox src:firefox-esr src:gcc-3.3 src:gcc-m68hc1x 
src:grass src:icedove src:postgis src:vflib3

The affected packages fail to satisfy their cross Build-Depends, because
their dependency on autoconf2.13 is not satisfiable. In general,
Architecture: all packages cannot satisfy cross build dependencies
unless marked Multi-Arch: foreign.


The patch is simple enough and affects important packages.

Would it be possible to apply it in your next uploads?


Cheers.
--
Manuel A. Fernandez Montecelo 

Bug#881418: claws-mail-gdata-plugin: Keeps asking for authorization code

[Alexander Nagel]

Package: claws-mail-gdata-plugin
Version: 3.14.1-3+b1
Severity: normal



-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8), 
LANGUAGE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages claws-mail-gdata-plugin depends on:
ii  claws-mail   3.14.1-3+b1
ii  libatk1.0-0  2.22.0-1
ii  libc62.24-11+deb9u1
ii  libcairo21.14.8-1
ii  libdb5.3 5.3.28-12+deb9u1
ii  libetpan17   1.6-3
ii  libfontconfig1   2.11.0-6.7+b1
ii  libfreetype6 2.6.3-3.2
ii  libgdata22   0.17.6-2
ii  libgdk-pixbuf2.0-0   2.36.5-2+deb9u1
ii  libglib2.0-0 2.50.3-2
ii  libgnutls30  3.5.8-5+deb9u3
ii  libgtk2.0-0  2.24.31-2
ii  libjson-glib-1.0-0   1.2.6-1
ii  liblockfile1 1.14-1+b1
ii  libpango-1.0-0   1.40.5-1
ii  libpangocairo-1.0-0  1.40.5-1
ii  libpangoft2-1.0-01.40.5-1
ii  libsasl2-2   2.1.27~101-g0780600+dfsg-3
ii  libsoup2.4-1 2.56.0-2+deb9u1
ii  libxml2  2.9.4+dfsg1-2.2+deb9u1
ii  zlib1g   1:1.2.8.dfsg-5

claws-mail-gdata-plugin recommends no packages.

claws-mail-gdata-plugin suggests no packages.

-- no debconf information

I did an initial Authorization procedure and the plugin itself is working fine.
But after a restart of Claws-Mail the plugin is asking again. It seems that the 
code isn't saved.

Bug#881417: wavemon F2 option

[Gilson A. Alencar]

Package: wavemon
Version: 0.8.1-1
Severity: normal

Dear Mainteiner,

The wavemon version 0.8.1-1 in Debian strech does not show the signal strength
correctly when F2 option is selected.
Strange characters are show instead of lines to represent the signal strength.

With best regards,
Gilson A. Alencar



-- System Information:
Debian Release: 9.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8), 
LANGUAGE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages wavemon depends on:
ii  libc6 2.24-11+deb9u1
ii  libncurses5   6.0+20161126-1+deb9u1
ii  libnl-3-200   3.2.27-2
ii  libnl-genl-3-200  3.2.27-2
ii  libtinfo5 6.0+20161126-1+deb9u1

wavemon recommends no packages.

wavemon suggests no packages.

-- no debconf information

Bug#881419: O: json-schema-validator

[Neil Williams]

Package: wnpp
Severity: normal

With the removal of the V1 code from lava-dispatcher and lava-server,
I will no longer be using this package, so it should be orphaned.

The package description is:
This package provides a JSON Schema validator conforming to a subset of second 
draft of the specification.

JSON files can be verified against a schema expressed in the python source 
code, producing either a SchemaError exception or ValidationError exception.

However, other schema validators exist which are not tied to
a specific text format, e.g. voluptuous.

Bug#881410: virtualbox-dkms: Error! Bad return status for module build on kernel: 4.14.0-rc7-amd64 (x86_64)

[Dio Putra]

Tags: patch

I can reproducible this issue and same error log on my Debian Sid via 
Bare Metal VM, quite frankly
I even don't know everything about C or C++. However because your 
make.log is readable for me, so

here the patch I created.

But, I don't believe this patch's quite realiable. So try yourself with 
risk.


Cheers.

On Sat, 11 Nov 2017 21:15:29 +0900 Soukaku  wrote:
> Package: virtualbox-dkms
> Version: 5.2.0-dfsg-4
> Severity: normal
>
> Dear Maintainer,
>
> When trying to start a virtual machine on Virtualbox, a message 
urging the execution of "modprobe vobxdrv" is displayed as follo

> ws.
>
> -- Virtualbox Dialog
> The VirtualBox Linux kernel driver (vboxdrv) is either not loaded or 
there is a permission problem with /dev/vboxdrv. Please rei

> nstall virtualbox-dkms package a
> nd load the kernel module by executing
>
> 'modprobe vboxdrv'
>
> as root.
> --
>
> However, even if "modprobe vboxdrv" is executed, if there is no 
module, an error will be displayed.
> So I'm trying to reinstall virtualbox-dkms, but because I failed to 
build virtualbox-dkms, I can not reinstall it.

>
> When "aptitude reinstall virtualbox-dkms" is executed, the following 
message will be displayed.

>
> -- aptitude message
> Preparing to unpack .../virtualbox-dkms_5.2.0-dfsg-4_all.deb ...
>
> --
> Deleting module version: 5.2.0
> completely from the DKMS tree.
> --
> Done.
> Unpacking virtualbox-dkms (5.2.0-dfsg-4) over (5.2.0-dfsg-4) ...
> Setting up virtualbox-dkms (5.2.0-dfsg-4) ...
> Loading new virtualbox-5.2.0 DKMS files...
> Building for 4.14.0-rc7-amd64
> Building initial module for 4.14.0-rc7-amd64
> Error! Bad return status for module build on kernel: 4.14.0-rc7-amd64 
(x86_64)
> Consult /var/lib/dkms/virtualbox/5.2.0/build/make.log for more 
information.
> Job for virtualbox.service failed because the control process exited 
with error code.
> See "systemctl status virtualbox.service" and "journalctl -xe" for 
details.

> invoke-rc.d: initscript virtualbox, action "restart" failed.
> * virtualbox.service - LSB: VirtualBox Linux kernel module
> Loaded: loaded (/etc/init.d/virtualbox; generated; vendor preset: 
enabled)
> Active: failed (Result: exit-code) since Sat 2017-11-11 20:14:42 JST; 
60ms ago

> Docs: man:systemd-sysv-generator(8)
> Process: 13388 ExecStart=/etc/init.d/virtualbox start (code=exited, 
status=1/FAILURE)

>
> Nov 11 20:14:42 vhost01 systemd[1]: Starting LSB: VirtualBox Linux 
kernel module...
> Nov 11 20:14:42 vhost01 virtualbox[13388]: Loading VirtualBox kernel 
modules...No suitable module for running kernel found ... f

> ailed!
> Nov 11 20:14:42 vhost01 virtualbox[13388]: failed!
> Nov 11 20:14:42 vhost01 systemd[1]: virtualbox.service: Control 
process exited, code=exited status=1
> Nov 11 20:14:42 vhost01 systemd[1]: virtualbox.service: Failed with 
result 'exit-code'.
> Nov 11 20:14:42 vhost01 systemd[1]: Failed to start LSB: VirtualBox 
Linux kernel module.

>
>
> -- System Information:
> Debian Release: buster/sid
> APT prefers unstable

--- VBoxNetFlt-linux.c.orig	2017-10-18 14:12:45.0 +0700
+++ VBoxNetFlt-linux.c	2017-11-11 21:23:47.282210329 +0700
@@ -737,8 +737,8 @@
 case PDMNETWORKGSOTYPE_IPV4_TCP:
 fGsoType = SKB_GSO_TCPV4;
 break;
-case PDMNETWORKGSOTYPE_IPV4_UDP:
-fGsoType = SKB_GSO_UDP;
+case PDMNETWORKGSOTYPE_IPV4_ESP:
+fGsoType = SKB_GSO_ESP;
 break;
 case PDMNETWORKGSOTYPE_IPV6_TCP:
 fGsoType = SKB_GSO_TCPV6;
@@ -1273,7 +1273,7 @@
  * Check the GSO properties of the socket buffer and make sure it fits.
  */
 /** @todo Figure out how to handle SKB_GSO_TCP_ECN! */
-if (RT_UNLIKELY( skb_shinfo(pSkb)->gso_type & ~(SKB_GSO_UDP | SKB_GSO_DODGY | SKB_GSO_TCPV6 | SKB_GSO_TCPV4) ))
+if (RT_UNLIKELY( skb_shinfo(pSkb)->gso_type & ~(SKB_GSO_ESP | SKB_GSO_DODGY | SKB_GSO_TCPV6 | SKB_GSO_TCPV4) ))
 {
 Log5(("vboxNetFltLinuxCanForwardAsGso: gso_type=%#x\n", skb_shinfo(pSkb)->gso_type));
 return false;
@@ -1523,7 +1523,7 @@
 }
 #endif /* !VBOXNETFLT_SG_SUPPORT */
 # ifdef VBOXNETFLT_WITH_GSO_RECV
-if (   (skb_shinfo(pBuf)->gso_type & (SKB_GSO_UDP | SKB_GSO_TCPV6 | SKB_GSO_TCPV4))
+if (   (skb_shinfo(pBuf)->gso_type & (SKB_GSO_ESP | SKB_GSO_TCPV6 | SKB_GSO_TCPV4))
 && vboxNetFltLinuxCanForwardAsGso(pThis, pBuf, fSrc, &GsoCtx) )
 vboxNetFltLinuxForwardAsGso(pThis, pBuf, fSrc, &GsoCtx);
 else

Bug#881411: quantlib-examples cannot be installed

[Dirk Eddelbuettel]

On 11 November 2017 at 14:54, Adrian Bunk wrote:
| Package: quantlib-examples
| Version: 1.11-3
| Severity: serious
| 
| The following packages have unmet dependencies:
|  quantlib-examples : Depends: libquantlib0v5 (= 1.11-3) but it is not going 
to be installed
| 
| 
| Package: quantlib-examples
| Version: 1.11-3
| Replaces: libquantlib0v5
| Depends: libc6 (>= 2.14), libgcc1 (>= 1:3.0), libquantlib0v5 (= 1.11-3), 
libstdc++6 (>= 5.2)
| Breaks: libquantlib0v5
| 
| 
| libquantlib0v5  both installed and not installed cannot be fulfilled.
| 
| 
| The Replaces+Breaks need a version, see policy for an example:
| https://www.debian.org/doc/debian-policy/#overwriting-files-in-other-packages

Thanks, will do.

Dirk

-- 
http://dirk.eddelbuettel.com | @eddelbuettel | e...@debian.org

Bug#881420: python-twisted: Doesn't talk to some SSL sites

[Kurt Roeckx]

Package: python-twisted
Version: 16.6.0-2
Severity: imported
Control: forward -1 https://twistedmatrix.com/trac/ticket/9210

Hi,

It seems that twisted tells OpenSSL to only support the P-256
curve with means that it can't talk to sites that want to use a
different curve.

If you fix this, please also fix this in stable.


Kurt

Bug#878121: OpenBLAS flavors

[Sébastien Villemot]

Dear Frédéric,

On Tue, Oct 10, 2017 at 10:06:55AM +0200, Frédéric Bonnard wrote:

> at the moment there is only one flavor of openblas library package.
> Fedora/RedHat provide several other flavors that are compiled differently :
> 
> RHEL 7.3 :
> $ rpm -qa | grep -i openblas
> openblas-threads-0.2.19-4.el7.ppc64le
> openblas-serial64-0.2.19-4.el7.ppc64le
> openblas-threads64_-0.2.19-4.el7.ppc64le
> openblas-openmp64-0.2.19-4.el7.ppc64le
> openblas-openmp64_-0.2.19-4.el7.ppc64le
> openblas-devel-0.2.19-4.el7.ppc64le
> openblas-threads64-0.2.19-4.el7.ppc64le
> openblas-openmp-0.2.19-4.el7.ppc64le
> openblas-0.2.19-4.el7.ppc64le
> openblas-serial64_-0.2.19-4.el7.ppc64le
> 
> Fedora : https://koji.fedoraproject.org/koji/buildinfo?buildID=970656
> 
> Spec file :
> https://src.fedoraproject.org/cgit/rpms/openblas.git/tree/openblas.spec
> 
> It would be nice if the functionality available across the distros were 
> closer for
> users.
> Especially, in HPC, the greatest need is for (i) reentrant serial version; 
> (ii) OpenMP
> version. There is also need for 32-bit and 64-bit integer arguments.

I think you are conflating two different things here:

- serial vs threads vs OpenMP flavors: it looks to me that those could be
  provided using the existing alternatives mechanism, since they provide the
  same ABI; this issue concerns only OpenBLAS

- 32-bit vs 64-bit: this means providing a different ABI, so it cannot go
  through the existing alternatives system. This is not specific to OpenBLAS,
  since other BLAS/LAPACK implementations could also provide the 64-bit
  integers ABI (at least the reference implem, I'm not sure for ATLAS).

I think both ideas are legitimate and useful, but should clearly be dealt with
separately.

I hope to implement them in a future upload (the first one being easier), but I
don't have an ETA. Of course patches are also welcome.

Best,

-- 
⢀⣴⠾⠻⢶⣦⠀  Sébastien Villemot
⣾⠁⢠⠒⠀⣿⡁  Debian Developer
⢿⡄⠘⠷⠚⠋⠀  http://sebastien.villemot.name
⠈⠳⣄  http://www.debian.org


signature.asc
Description: PGP signature

Bug#881421: dh-buildinfo: incompatible with Rules-Requires-Root: no

[Clint Adams]

Package: dh-buildinfo
Version: 0.11+nmu1

dh_buildinfo passes -g 0 and -o 0 to install, which breaks under
Rules-Requires-Root: no

Bug#881422: aptitude changelog hangs waiting on futex

[Dominique Brazziel]

Package: aptitude
Version: 0.8.9-1
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   aptitude changelog [ package name ]
   
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
  
   * What was the outcome of this action?
   Command hangs, no data download or extracted that I could see
   
   * What outcome did you expect instead?
   Changelog shown

*** End of the template - remove these template lines ***

strace attached to the hung aptitude process shows:

strace -p 31494
strace: Process 31494 attached
futex(0x860d18, FUTEX_WAIT_PRIVATE, 3, NULL

Workaround is to run 'apt-get changelog [ package name ], which works fine
and shows the complete changelog in PAGER (less in my case).

-- Package-specific info:
Terminal: xterm-256color
$DISPLAY is set.
which aptitude: /usr/bin/aptitude

aptitude version information:
aptitude 0.8.9
Compiler: g++ 7.1.0
Compiled against:
  apt version 5.0.2
  NCurses version 6.0
  libsigc++ version: 2.10.0
  Gtk+ support disabled.
  Qt support disabled.

Current library versions:
  NCurses version: ncurses 6.0.20170902
  cwidget version: 0.5.17
  Apt version: 5.0.2

aptitude linkage:
linux-gate.so.1 (0xb7f87000)
libapt-pkg.so.5.0 => /usr/lib/i386-linux-gnu/libapt-pkg.so.5.0 
(0xb7977000)
libncursesw.so.5 => /lib/i386-linux-gnu/libncursesw.so.5 (0xb7941000)
libtinfo.so.5 => /lib/i386-linux-gnu/libtinfo.so.5 (0xb791d000)
libsigc-2.0.so.0 => /usr/lib/i386-linux-gnu/libsigc-2.0.so.0 
(0xb7915000)
libcwidget.so.3 => /usr/lib/i386-linux-gnu/libcwidget.so.3 (0xb7808000)
libsqlite3.so.0 => /usr/lib/i386-linux-gnu/libsqlite3.so.0 (0xb76ec000)
libboost_iostreams.so.1.62.0 => 
/usr/lib/i386-linux-gnu/libboost_iostreams.so.1.62.0 (0xb76d4000)
libboost_filesystem.so.1.62.0 => 
/usr/lib/i386-linux-gnu/libboost_filesystem.so.1.62.0 (0xb76b9000)
libboost_system.so.1.62.0 => 
/usr/lib/i386-linux-gnu/libboost_system.so.1.62.0 (0xb76b2000)
libxapian.so.30 => /usr/lib/i386-linux-gnu/sse2/libxapian.so.30 
(0xb748f000)
libpthread.so.0 => /lib/i386-linux-gnu/libpthread.so.0 (0xb7472000)
libstdc++.so.6 => /usr/lib/i386-linux-gnu/libstdc++.so.6 (0xb72f6000)
libm.so.6 => /lib/i386-linux-gnu/libm.so.6 (0xb72a1000)
libgcc_s.so.1 => /lib/i386-linux-gnu/libgcc_s.so.1 (0xb7284000)
libc.so.6 => /lib/i386-linux-gnu/libc.so.6 (0xb70cd000)
libresolv.so.2 => /lib/i386-linux-gnu/libresolv.so.2 (0xb70b5000)
libz.so.1 => /lib/i386-linux-gnu/libz.so.1 (0xb709a000)
libbz2.so.1.0 => /lib/i386-linux-gnu/libbz2.so.1.0 (0xb7088000)
liblzma.so.5 => /lib/i386-linux-gnu/liblzma.so.5 (0xb705c000)
liblz4.so.1 => /usr/lib/i386-linux-gnu/liblz4.so.1 (0xb7047000)
libudev.so.1 => /lib/i386-linux-gnu/libudev.so.1 (0xb7027000)
/lib/ld-linux.so.2 (0xb7f89000)
libdl.so.2 => /lib/i386-linux-gnu/libdl.so.2 (0xb7022000)
librt.so.1 => /lib/i386-linux-gnu/librt.so.1 (0xb7019000)
libuuid.so.1 => /lib/i386-linux-gnu/libuuid.so.1 (0xb7013000)

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 4.13.0-1-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_US.UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set 
to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages aptitude depends on:
ii  aptitude-common0.8.9-1
ii  libapt-pkg5.0  1.6~alpha4
ii  libboost-filesystem1.62.0  1.62.0+dfsg-4+b2
ii  libboost-iostreams1.62.0   1.62.0+dfsg-4+b2
ii  libboost-system1.62.0  1.62.0+dfsg-4+b2
ii  libc6  2.24-17
ii  libcwidget3v5  0.5.17-6
ii  libgcc11:7.2.0-12
ii  libncursesw5   6.0+20170902-1
ii  libsigc++-2.0-0v5  2.10.0-1
ii  libsqlite3-0   3.21.0-1
ii  libstdc++6 7.2.0-12
ii  libtinfo5  6.0+20170902-1
ii  libxapian301.4.5-1

Versions of packages aptitude recommends:
ii  libparse-debianchangelog-perl  1.2.0-12
ii  sensible-utils 0.0.10

Versions of packages aptitude suggests:
pn  apt-xapian-index
pn  aptitude-doc-en | aptitude-doc  
pn  debtags 
ii  tasksel 3.42

-- no debconf information

Bug#881423: ITP: node-qw -- Quoted word literals

[Suman]

Package: wnpp
Severity: wishlist
Owner: suman 
X-Debbugs-CC: debian-de...@lists.debian.org

* Package name: node-qw
  Version : 1.0.1
  Upstream Author : Rebecca Turner  (http://re-becca.org/)
* URL : https://github.com/iarna/node-qw#readme
* License : ISC
  Programming Lang: JavaScript
  Description : Quoted word literals
Qw can be used to create quoted word literals
.
Node.js is an event-based server-side JavaScript engine.

Praveen agreed to sponser this package.

Bug#881422: [Aptitude-devel] Bug#881422: aptitude changelog hangs waiting on futex

[Axel Beckert]

Control: tag -1 + confirmed

Hi Dominique,

Dominique Brazziel wrote:
> aptitude changelog hangs waiting on futex

Indeed, I can reproduce the issue here.

Thanks for the bug report!

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE

Bug#881421: dh-buildinfo: incompatible with Rules-Requires-Root: no

[Niels Thykier]

Clint Adams:
> Package: dh-buildinfo
> Version: 0.11+nmu1
> 
> dh_buildinfo passes -g 0 and -o 0 to install, which breaks under
> Rules-Requires-Root: no
> 

The two uses (that I noticed) look like they could be replaced by
"install_dir" and "install_file" from Dh_Lib.  Both functions are
available in stretch and automatically handles Rules-Requires-Root.

Thanks,
~Niels

Bug#881424: RFP: ausweisapp2 -- online authentication using German identity document

[W. Martin Borgert]

Package: wnpp
Severity: wishlist
Owner: "W. Martin Borgert" 

* Package name: ausweisapp2
  Version : 1.12.4
  Upstream Author : Governikus GmbH & Co. KG
* URL : https://github.com/Governikus/AusweisApp2
* License : EUPL-1.2
  Programming Lang: C++
  Description : online authentication using German identity document

This application is needed to authenticate e.g. at online services using
a German identity document.

See here for details:

https://www.ausweisapp.bund.de/en/questions-and-answers/frequently-asked-questions/
https://en.wikipedia.org/wiki/European_Union_Public_Licence

It seems, that all dependencies are already in Debian. master does not
compile, but I did not investigate further after first error (‘class
QSslConfiguration’ has no member named ‘setSignatureAndHashAlgorithms’).

Bug#873356: gnome-todo: Don't split into separate binaries

[Michael Biebl]

Am 11.11.2017 um 13:12 schrieb Jeremy Bicha:
> forwarded -1 https://gitlab.gnome.org/GNOME/gnome-todo/issues/92
> 
> The upstream developer says that this is not meant to be a public
> library. Therefore, I don't think it's useful to split this into
> separate binaries. Please undo the split.

In that case upstream should not install those files:

usr/lib/x86_64-linux-gnu/pkgconfig/gnome-todo.pc

usr/include/gnome-todo/gnome-todo.h
usr/include/gnome-todo/gtd-window.h
usr/include/gnome-todo/gtd-types.h
usr/include/gnome-todo/gtd-timer.h
usr/include/gnome-todo/gtd-task-list-view.h
usr/include/gnome-todo/gtd-task-list.h
usr/include/gnome-todo/gtd-task.h
usr/include/gnome-todo/gtd-object.h
usr/include/gnome-todo/gtd-notification.h
usr/include/gnome-todo/gtd-provider.h
usr/include/gnome-todo/gtd-panel.h
usr/include/gnome-todo/gtd-activatable.h
usr/include/gnome-todo/gtd-manager.h
usr/include/gnome-todo/gtd-enums.h

usr/share/gir-1.0/Gtd-1.0.gir
usr/lib/x86_64-linux-gnu/girepository-1.0/Gtd-1.0.typelib

If the typelib is used by gnome-todo (only), then it should be moved
into a pkg-private directory.

This needs to be sorted out upstream first.


-- 
-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#881425: linux-image-4.13.0-1-amd64: "rm -rf " fails with ENOTEMPTY (Directory not empty)

[Philipp Marek]

Package: src:linux
Version: 4.13.4-2
Severity: normal

My root FS is an

/dev/mapper/n555--vg-root / ext4 rw,relatime,errors=remount-ro,data=ordered 
0 0

Due to a programming error I filled one directory with many files; the
"rm /*" I did previously couldn't copy anymore, so I ran "rm
-rf ", but that failed with "directory not empty".


I did an strace; this showed

ioctl(0, TCGETS, {B38400 opost isig icanon echo ...}) = 0
lstat("/", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
newfstatat(AT_FDCWD, "..//", 
{st_mode=S_IFDIR|0755, st_size=13131776, ...}, AT_SYMLINK_NOFOLLOW) = 0
openat(AT_FDCWD, "..//", 
O_RDONLY|O_NOCTTY|O_NONBLOCK|O_DIRECTORY|O_NOFOLLOW) = 3
fstat(3, {st_mode=S_IFDIR|0755, st_size=13131776, ...}) = 0
fcntl(3, F_GETFL) = 0x38800 (flags 
O_RDONLY|O_NONBLOCK|O_LARGEFILE|O_DIRECTORY|O_NOFOLLOW)
fcntl(3, F_SETFD, FD_CLOEXEC) = 0
getdents(3, /* 513 entries */, 32768) = 32752
close(3)  = 0
openat(AT_FDCWD, "..//", 
O_RDONLY|O_NOCTTY|O_NONBLOCK|O_DIRECTORY|O_NOFOLLOW|O_CLOEXEC) = 3
fstat(3, {st_mode=S_IFDIR|0755, st_size=13131776, ...}) = 0
fcntl(3, F_GETFL) = 0x38800 (flags 
O_RDONLY|O_NONBLOCK|O_LARGEFILE|O_DIRECTORY|O_NOFOLLOW)
fcntl(3, F_SETFD, FD_CLOEXEC) = 0
fstatfs(-100, 0x7ffd05b2b490) = -1 EBADF (Bad file descriptor)
fcntl(3, F_DUPFD_CLOEXEC, 3) = 4
getdents(3, /* 513 entries */, 32768) = 32752
brk(0x55f85aa65000) = 0x55f85aa65000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85aa86000) = 0x55f85aa86000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85aaa7000) = 0x55f85aaa7000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85aac8000) = 0x55f85aac8000
brk(0x55f85aae9000) = 0x55f85aae9000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85ab0a000) = 0x55f85ab0a000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85ab2b000) = 0x55f85ab2b000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85ab4c000) = 0x55f85ab4c000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85ab6d000) = 0x55f85ab6d000
brk(0x55f85ab8e000) = 0x55f85ab8e000
getdents(3, /* 512 entries */, 32768) = 32768
brk(0x55f85abaf000) = 0x55f85abaf000
getdents(3, /* 19 entries */, 32768) = 1216
getdents(3, /* 0 entries */, 32768) = 0
close(3)  = 0

followed by 4627 calls of

unlinkat(4, "filename...", 0) = 0
unlinkat(4, "filename...", 0) = 0
unlinkat(4, "filename...", 0) = 0
...
unlinkat(4, "filename...", 0) = 0

(Each of these filenames is 42 bytes long, BTW) and then

brk(0x55f85aa4e000) = 0x55f85aa4e000
close(4)  = 0
unlinkat(AT_FDCWD, "../redrum-replacements/", AT_REMOVEDIR) = -1 
ENOTEMPTY (Directory not empty)

A few more invocations of "rm -rf " didn't help.


Doing "ls" at that time gave me 17016 files left; I could clean up
manually via "rm *a" "rm *b" etc., and then a "rmdir "
worked normally.


So,
  * either the getdents() calls didn't return all the files,
  * "rm -rf" has a bug where not all files are deleted, or
  * the kernel didn't really delete the referenced files.

I know that there's a newer version of 4.13 available - just wanted to
report that in case it's not been seen yet.


-- Package-specific info:
** Version:
Linux version 4.13.0-1-amd64 (debian-ker...@lists.debian.org) (gcc version 
6.4.0 20171010 (Debian 6.4.0-8)) #1 SMP Debian 4.13.4-2 (2017-10-15)

** Command line:
BOOT_IMAGE=/vmlinuz-4.13.0-1-amd64 root=/dev/mapper/n555--vg-root ro 
initrd=/install/initrd.gz quiet

** Tainted: WO (4608)
 * Taint on warning.
 * Out-of-tree module has been loaded.

** Kernel log:
[112079.787511] ACPI: Low-level resume complete
[112079.787553] ACPI: EC: EC started
[112079.787554] PM: Restoring platform NVS memory
[112079.787834] Suspended for 1295.691 seconds
[112079.789751] Enabling non-boot CPUs ...
[112079.789822] x86: Booting SMP configuration:
[112079.789823] smpboot: Booting Node 0 Processor 1 APIC 0x1
[112079.869862]  cache: parent cpu1 should not be sleeping
[112079.870059] CPU1 is up
[112079.870106] smpboot: Booting Node 0 Processor 2 APIC 0x2
[112079.953862]  cache: parent cpu2 should not be sleeping
[112079.954066] CPU2 is up
[112079.954114] smpboot: Booting Node 0 Processor 3 APIC 0x3
[112080.057861]  cache: parent cpu3 should not be sleeping
[112080.058072] CPU3 is up
[112080.058117] smpboot: Booting Node 0 Processor 4 APIC 0x4
[112080.153864]  cache: parent cpu4 should not be sleeping
[112080.154095] CPU4 is up
[112080.154139] smpboot: Booting Node 0 Processor 5 APIC 0x5
[112080.249860]  cache: parent cpu5 should not be sleeping
[112080.250108] CPU5 is up
[112080.250153] smpboot: Booting Node 0 Processor 6 APIC 0x6
[112080.345861]  cache: parent cpu6 should not be sl

Bug#849017: Gist dependency

[Leonardo Taglialegne]

As a bonus, making the dependency on gist optional would mean that one can
install cinnamon without installing ruby.

Bug#881425: linux-image-4.13.0-1-amd64: "rm -rf " fails with ENOTEMPTY (Directory not empty)

[Philipp Marek]

I forgot to mention that I interrupted one of the earlier "rm /*"
calls with Ctrl-C and, when that didn't react, I did Ctrl-Z a few times
and then (on the shell) a "bg" - but that was too late, "rm" had already
quit.

But I interrupted only one "rm"; not later ones, and surely not the
"rm -rf "); another "rm -rf " with 117963 files in there just
worked normally right now.


Seems that the interrupted unlinkat() call did something unusual?!

Bug#881358: nvidia_drv_video.so has no function __vaDriverInit_1_0

[Sebastian Ramacher]

Version: 0.7.4-7

On 2017-11-10 13:57:38, Anthony DeRobertis wrote:
> Package: vdpau-va-driver
> Version: 0.7.4-6
> Severity: grave
> 
> anthony@Zia:~ [$?=3]$ vainfo 
> libva info: VA-API version 1.0.0
> libva info: va_getDriverName() returns 0
> libva info: Trying to open /usr/lib/x86_64-linux-gnu/dri/nvidia_drv_video.so
> libva error: /usr/lib/x86_64-linux-gnu/dri/nvidia_drv_video.so has no 
> function __vaDriverInit_1_0
> libva info: va_openDriver() returns -1
> vaInitialize failed with error code -1 (unknown libva error),exit
> 
> And indeed, it does not:
> 
> anthony@Zia:~$ nm --demangle -D 
> /usr/lib/x86_64-linux-gnu/dri/nvidia_drv_video.so  | grep vaDriverInit
> 6320 T __vaDriverInit_0_31
> 6d40 T __vaDriverInit_0_39

vdpau-va-driver was rebuilt against libva2 in 0.7.4-7. Closing.

Cheers
-- 
Sebastian Ramacher


signature.asc
Description: PGP signature

Bug#881426: gcc-mingw-w64: Please update to GCC 7

[Beat Bolli]

Package: gcc-mingw-w64-i686
Version: 6.3.0-18+19.3+b3
Severity: wishlist
File: gcc-mingw-w64

Dear Maintainer,

any chance that we'll have MinGW GCC 7 soon?

Thanks!
Beat Bolli

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.11.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=de_CH.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages gcc-mingw-w64-i686 depends on:
ii  binutils-mingw-w64-i686  2.28-5+7.4+b4
ii  gcc-mingw-w64-base   6.3.0-18+19.3+b3
ii  libc62.24-17
ii  libgcc1  1:7.2.0-12
ii  libgmp10 2:6.1.2+dfsg-1.1
ii  libisl15 0.18-1
ii  libmpc3  1.0.3-2
ii  libmpfr4 3.1.6-1
ii  libstdc++6   7.2.0-12
ii  mingw-w64-i686-dev   5.0.2-2
ii  zlib1g   1:1.2.8.dfsg-5

gcc-mingw-w64-i686 recommends no packages.

Versions of packages gcc-mingw-w64-i686 suggests:
pn  gcc-6-locales  

-- no debconf information

Bug#876934: openorienteering-mapper FTBFS: test failures

[Adrian Bunk]

Control: tags -1 buster

On Tue, Oct 17, 2017 at 03:47:37PM +0200, Graham Inggs wrote:
> Hi Adrian
> 
> binNMU against libpolyclipping22 is successful too:
> https://buildd.debian.org/status/package.php?p=openorienteering-mapper&suite=unstable
> 
> Should this report be reassigned to reproducible builds?

I found what causes the problem:

The failing tests use the following for finding the path to test files:
QDir::addSearchPath(prefix, 
QFileInfo(QString::fromUtf8(__FILE__)).dir().absoluteFilePath(prefix));

In unstable reproducible builds the build path is varied,
and gcc patched to accept setting __FILE__ to a fixed
(reproducible) location.

In other words, when Debian will start changing __FILE__ also on the 
buildds this will become a FTBFS also there.

> Regards
> Graham

cu
Adrian

-- 

   "Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
   "Only a promise," Lao Er said.
   Pearl S. Buck - Dragon Seed

Bug#862373: Unconditionally instantiates objects from yaml data

[Dominique Dumont]

On Fri, 12 May 2017 08:03:12 +0200 Dominique Dumont  wrote:
> > As previously mentioned in debian-perl@, there is no easy solution,

I've prepared a patch to provide a SafeLoad method. This avoids breaking 
application that need to create Perl class from YAML.

On the downside:
- application using YAML may need to be updated
- there's no similar method (yet ?) in other YAML implementations.

This is not an ideal solution, but is better than nothing...

Thoughts ?

HTH

-- 
 https://github.com/dod38fr/   -o- http://search.cpan.org/~ddumont/
http://ddumont.wordpress.com/  -o-   irc: dod at irc.debian.org

Bug#840778: fprintd: Please announce supported hardware using AppStream

[Petter Reinholdtsen]

[Laurent Bigonville]
> The problem here is that fprintd uses the libfprint library and it's 
> that library which is implementing the real support of the fingerprint 
> readers.
>
> How are you seeing this then? Shouldn't the metadata file be added in 
> the library instead?

The normal use case is 'user insert hardware' and 'something propose
with package to install'.  If the user should be recommended to install
the library instead of fprintd, then the metadata belong to the library.
In this case, I suspect users should be recommended to install fprintd?

-- 
Happy hacking
Petter Reinholdtsen

Bug#881330: transition: poco

[Jochen Sprickerhof]

* Emilio Pozuelo Monfort  [2017-11-10 08:19]:

I would like to transition the new poco release to unstable. I
recompiled the reverse dependencies and found no problems. Note that
the last upload to experimental failed to build on s390x because of a
wonky unit test (it was compiling fine before). I will disable the test
before uploading to unstable.


Go ahead.


And just now there is a new upstream release fixing #856192, but would 
need to go through new again. I'm working on the packing it and will 
upload it to new (and experimental) soon. As nothing was rebuild till 
now, we could put this on hold, or do an other transition soon, whatever 
you prefer.


Cheers Jochen


signature.asc
Description: PGP signature

Bug#881426: gcc-mingw-w64: Please update to GCC 7

[Stephen Kitt]

Hi Beat,

On Sat, 11 Nov 2017 17:08:32 +0100, Beat Bolli  wrote:
> any chance that we'll have MinGW GCC 7 soon?

I’m working on it ;-). There are still some issues to sort out, but it will
be in Buster...

Regards,

Stephen


pgpPKdJocwOtx.pgp
Description: OpenPGP digital signature

Bug#881427: debhelper: dh_builddep fails, causing FTBFS: undefined value as an ARRAY reference

[Hilko Bengen]

Package: debhelper
Version: 10.10.6
Severity: grave

Dear Maintainer,

my recent upload of yara/3.7.0-3, using debhelper/10.10.6, failed in the
autobuilders[1], here are the last few lines before the failure:

,
| make[1]: Leaving directory '/<>'
|dh_installman -a
|dh_lintian -a
|dh_perl -a
|dh_link -a
|dh_strip_nondeterminism -a
|dh_compress -a
|dh_fixperms -a
|dh_missing -a
|dh_strip -a
|dh_makeshlibs -a
|dh_shlibdeps -a
|dh_installdeb -a
|dh_gencontrol -a
|dh_md5sums -a
|dh_builddeb -a
| Can't use an undefined value as an ARRAY reference at /usr/bin/dh_builddeb 
line 134.
| dpkg-deb: building package 'libyara3' in '../libyara3_3.7.0-3_amd64.deb'.
| dpkg-deb: building package 'yara' in '../yara_3.7.0-3_amd64.deb'.
| dpkg-deb: building package 'libyara-dev' in 
'../libyara-dev_3.7.0-3_amd64.deb'.
| dh_builddeb: Aborting due to earlier error
| debian/rules:5: recipe for target 'binary-arch' failed
| make: *** [binary-arch] Error 2
| dpkg-buildpackage: error: fakeroot debian/rules binary-arch subprocess 
returned exit status 2
`

Previous builds using debhelper/10.10.5, had gone fine. I have taken the
following steps to narrow the problem down to the 10.10.6 upgrade:

1. Build yara/3.7.0-3 on a not-quite-up-to-date Debian/unstable amd64
   environment, including debhelper/10.10.5. This works fine.

2. Upgrade debhelper to 10.10.6.

3. Rebuild yara/3.7.0-3. This reproduces the failure from the build log
   above.

Cheers,
-Hilko

[1] 
https://buildd.debian.org/status/fetch.php?pkg=yara&arch=amd64&ver=3.7.0-3&stamp=1510407411&file=log

Bug#881427: [debhelper-devel] Bug#881427: debhelper: dh_builddep fails, causing FTBFS: undefined value as an ARRAY reference

[Axel Beckert]

Control: tag -1 + moreinfo

Hi Hilko,

Hilko Bengen wrote:
> my recent upload of yara/3.7.0-3, using debhelper/10.10.6, failed in the
> autobuilders[1], here are the last few lines before the failure:
[...]
> |dh_builddeb -a
> | Can't use an undefined value as an ARRAY reference at /usr/bin/dh_builddeb 
> line 134.

This should be fixed with the just uploaded 10.10.7:

https://anonscm.debian.org/git/debhelper/debhelper.git/commit/?id=1d0a3cd604ce374c30e1ed52f15aabbca50d80cb

You can fetch version 10.10.7 already here:
https://incoming.debian.org/debian-buildd/pool/main/d/debhelper/

Can you check if 10.10.7 already fixes your issue?

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE

Bug#881410: virtualbox-dkms: Error! Bad return status for module build on kernel: 4.14.0-rc7-amd64 (x86_64)

[Dio Putra]

Sorry, unfortunately my patch is very bad. Just reviewed the latest 
virtualbox amd64-testbuild and

the SKB_GSO_UDP function is removed.

@@ -737,9 +746,6 @@
 case PDMNETWORKGSOTYPE_IPV4_TCP:
 fGsoType = SKB_GSO_TCPV4;
 break;
-    case PDMNETWORKGSOTYPE_IPV4_UDP:
-    fGsoType = SKB_GSO_UDP;
-    break;
 case PDMNETWORKGSOTYPE_IPV6_TCP:
 fGsoType = SKB_GSO_TCPV6;
 break;
@@ -1273,7 +1279,7 @@
  * Check the GSO properties of the socket buffer and make sure it 
fits.

  */
 /** @todo Figure out how to handle SKB_GSO_TCP_ECN! */
-    if (RT_UNLIKELY( skb_shinfo(pSkb)->gso_type & ~(SKB_GSO_UDP | 
SKB_GSO_DODGY | SKB_GSO_TCPV6 | SKB_GSO_TCPV4) ))
+    if (RT_UNLIKELY( skb_shinfo(pSkb)->gso_type & ~(SKB_GSO_DODGY | 
SKB_GSO_TCPV6 | SKB_GSO_TCPV4) ))

 {
 Log5(("vboxNetFltLinuxCanForwardAsGso: gso_type=%#x\n", 
skb_shinfo(pSkb)->gso_type));

 return false;
@@ -1523,7 +1529,7 @@
 }
 #endif /* !VBOXNETFLT_SG_SUPPORT */
 # ifdef VBOXNETFLT_WITH_GSO_RECV
-    if (   (skb_shinfo(pBuf)->gso_type & (SKB_GSO_UDP | 
SKB_GSO_TCPV6 | SKB_GSO_TCPV4))
+    if (   (skb_shinfo(pBuf)->gso_type & (SKB_GSO_TCPV6 | 
SKB_GSO_TCPV4))
 && vboxNetFltLinuxCanForwardAsGso(pThis, pBuf, fSrc, 
&GsoCtx) )

 vboxNetFltLinuxForwardAsGso(pThis, pBuf, fSrc, &GsoCtx);
 else

On Sat, 11 Nov 2017 21:36:44 +0700 Dio Putra  wrote:
> Tags: patch
>
> I can reproducible this issue and same error log on my Debian Sid via
> Bare Metal VM, quite frankly
> I even don't know everything about C or C++. However because your
> make.log is readable for me, so
> here the patch I created.
>
> But, I don't believe this patch's quite realiable. So try yourself with
> risk.
>
> Cheers.
>
@@ -737,9 +746,6 @@
 case PDMNETWORKGSOTYPE_IPV4_TCP:
 fGsoType = SKB_GSO_TCPV4;
 break;
-case PDMNETWORKGSOTYPE_IPV4_UDP:
-fGsoType = SKB_GSO_UDP;
-break;
 case PDMNETWORKGSOTYPE_IPV6_TCP:
 fGsoType = SKB_GSO_TCPV6;
 break;
@@ -1273,7 +1279,7 @@
  * Check the GSO properties of the socket buffer and make sure it fits.
  */
 /** @todo Figure out how to handle SKB_GSO_TCP_ECN! */
-if (RT_UNLIKELY( skb_shinfo(pSkb)->gso_type & ~(SKB_GSO_UDP | SKB_GSO_DODGY | SKB_GSO_TCPV6 | SKB_GSO_TCPV4) ))
+if (RT_UNLIKELY( skb_shinfo(pSkb)->gso_type & ~(SKB_GSO_DODGY | SKB_GSO_TCPV6 | SKB_GSO_TCPV4) ))
 {
 Log5(("vboxNetFltLinuxCanForwardAsGso: gso_type=%#x\n", skb_shinfo(pSkb)->gso_type));
 return false;
@@ -1523,7 +1529,7 @@
 }
 #endif /* !VBOXNETFLT_SG_SUPPORT */
 # ifdef VBOXNETFLT_WITH_GSO_RECV
-if (   (skb_shinfo(pBuf)->gso_type & (SKB_GSO_UDP | SKB_GSO_TCPV6 | SKB_GSO_TCPV4))
+if (   (skb_shinfo(pBuf)->gso_type & (SKB_GSO_TCPV6 | SKB_GSO_TCPV4))
 && vboxNetFltLinuxCanForwardAsGso(pThis, pBuf, fSrc, &GsoCtx) )
 vboxNetFltLinuxForwardAsGso(pThis, pBuf, fSrc, &GsoCtx);
 else

Bug#881428: geany: There is not a registered custom mime type for Geany project files (*.geany).

[Warlock]

Package: geany
Version: 1.29-1
Severity: wishlist

Dear Maintainer,

The 'geany' package does not provide custom mime type (such as 
"application/x-geany") for Geany project files (*.geany).

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages geany depends on:
ii  geany-common 1.29-1
ii  libatk1.0-0  2.22.0-1
ii  libc62.24-11+deb9u1
ii  libcairo21.14.8-1
ii  libfontconfig1   2.11.0-6.7+b1
ii  libfreetype6 2.6.3-3.2
ii  libgcc1  1:6.3.0-18
ii  libgdk-pixbuf2.0-0   2.36.5-2+deb9u1
ii  libglib2.0-0 2.50.3-2
ii  libgtk2.0-0  2.24.31-2
ii  libpango-1.0-0   1.40.5-1
ii  libpangocairo-1.0-0  1.40.5-1
ii  libpangoft2-1.0-01.40.5-1
ii  libstdc++6   6.3.0-18

geany recommends no packages.

Versions of packages geany suggests:
pn  doc-base  
ii  libvte9   1:0.28.2-5+b2

-- no debconf information

Bug#879146: Bumping severity to serious for swt-gtk reverse depends

[Alexandre Rossi]

Hi,

> Because this is in a way blocking the removal of the unmaintained
> webkitgtk from Debian Testing, I am bumping the severity.
>
> See https://bugs.debian.org/880470

FYI, I would be happy to move on with this but I'm stuck with the
program segfaulting when used with the proposed patch. It works
correctly if launched like this :
SWT_GTK3=0 davmail

I'm still investigating as to why.

Alex

--
(SWT:24928): GLib-GObject-WARNING **: cannot register existing type
'GdkDisplayManager'

(SWT:24928): GLib-CRITICAL **: g_once_init_leave: assertion 'result != 0' failed

(SWT:24928): GLib-GObject-CRITICAL **: g_object_new_with_properties:
assertion 'G_TYPE_IS_OBJECT (object_type)' failed

(SWT:24928): GLib-GObject-WARNING **: invalid (NULL) pointer instance

(SWT:24928): GLib-GObject-CRITICAL **: g_signal_connect_data:
assertion 'G_TYPE_CHECK_INSTANCE (instance)' failed

(SWT:24928): GLib-GObject-WARNING **: invalid (NULL) pointer instance

(SWT:24928): GLib-GObject-CRITICAL **: g_signal_connect_data:
assertion 'G_TYPE_CHECK_INSTANCE (instance)' failed

(SWT:24928): GLib-GObject-WARNING **: cannot register existing type 'GdkDisplay'

(SWT:24928): GLib-CRITICAL **: g_once_init_leave: assertion 'result != 0' failed

(SWT:24928): GLib-GObject-CRITICAL **: g_type_register_static:
assertion 'parent_type > 0' failed

(SWT:24928): GLib-CRITICAL **: g_once_init_leave: assertion 'result != 0' failed

(SWT:24928): GLib-GObject-CRITICAL **: g_object_new_with_properties:
assertion 'G_TYPE_IS_OBJECT (object_type)' failed
#
# A fatal error has been detected by the Java Runtime Environment:
#
#  SIGSEGV (0xb) at pc=0x7fe3e9b1437c, pid=24928, tid=0x7fe3a8131700
#
# JRE version: OpenJDK Runtime Environment (8.0_151-b12) (build
1.8.0_151-8u151-b12-1-b12)
# Java VM: OpenJDK 64-Bit Server VM (25.151-b12 mixed mode linux-amd64
compressed oops)
# Problematic frame:
# C  [libgdk-x11-2.0.so.0+0x4e37c]  gdk_display_open+0x5c

Bug#881427: [debhelper-devel] Bug#881427: debhelper: dh_builddep fails, causing FTBFS: undefined value as an ARRAY reference

[Hilko Bengen]

control: fixed -1 10.10.7
control: tag -1 - moreinfo

> This should be fixed with the just uploaded 10.10.7:

It is. I have tried a rebuild using debhelper/10.10.7 built from git and
everything is fine.

Cheers,
-Hilko

Bug#881429: time: new version upstream

[Jeffrey Cliff]

package: time
version: 1.7-25.1
severity: normal

Dear Maintainer,
According to
https://www.phoronix.com/scan.php?page=news_item&px=GNU-Time-1.8 GNU time
1.8 has been released and is available (this is the first minor version
upgrade since 1997).

according to the debian PTS http://ftp.gnu.org/gnu/time/time-1.8.tar.gz is
the new upstream version

Jeff Cliff

--
GENERATION 26: The first time you see this, copy it into your sig on any
forum and add 1 to the generation

Bug#881124: shadow.ind.ntou.edu.tw: request name change, and add as candidate of ftp.tw

[Bastian Blank]

On Wed, Nov 08, 2017 at 02:08:38PM +0100, Bastian Blank wrote:
> On Wed, Nov 08, 2017 at 10:24:51AM +0800, Yao Wei wrote:
> > I would like to change the name of the server shadow.ind.ntou.edu.tw to
> > ftp.ntou.edu.tw,
> Okay.

Looks not too bad.

> > also set up as a ftp.tw.d.o candidate if possible.
> Let's see.

You still have a cron job running, please loose that.

Bastian

-- 
We Klingons believe as you do -- the sick should die.  Only the strong
should live.
-- Kras, "Friday's Child", stardate 3497.2

Bug#862373: Unconditionally instantiates objects from yaml data

[Dominique Dumont]

On Saturday, 11 November 2017 17:17:28 CET Dominique Dumont wrote:
> This is not an ideal solution, but is better than nothing...

Got good reasons [1], upstream is not thrilled about the idea of adding
SafeLoad to YAML::XS API. So I've disabled the patch.

TINITA suggests [2] to use unbless from Data::Structure::Util to sanitize a 
data 
structure coming from untrusted source. 

This solution is probably easier than replacing YAML::XS with YAML::TIny (which 
is 
not always possible and behave differently with utf8)

All the best

[1] 
https://github.com/ingydotnet/yaml-libyaml-pm/issues/45#issuecomment-343678829
[2] 
https://github.com/ingydotnet/yaml-libyaml-pm/issues/45#issuecomment-343679429
-- 
 https://github.com/dod38fr/   -o- http://search.cpan.org/~ddumont/
http://ddumont.wordpress.com/  -o-   irc: dod at irc.debian.org

Bug#871987: This bug appears to be fixed as of 1.1.0g-2

[James Bottomley]

I can confirm that all the previously failing tools (dovecot, stunnel
etc) are working again with 1.1.0g-2

Presumably this also fixes 

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=875423

James

Bug#881124: shadow.ind.ntou.edu.tw: request name change, and add as candidate of ftp.tw

[Bastian Blank]

On Wed, Nov 08, 2017 at 02:08:38PM +0100, Bastian Blank wrote:
> On Wed, Nov 08, 2017 at 10:24:51AM +0800, Yao Wei wrote:
> > I would like to change the name of the server shadow.ind.ntou.edu.tw to
> > ftp.ntou.edu.tw,
> Okay.

I see some weird behaviour.  At 2017-11-09 21:25:03 we picked up a
Archive-Update-in-Progress file with timestamp 2017-11-09 21:24:58.
It disappeared, but the trace file was updated _five hours_ later at
2017-11-10 02:40:00.

Please show the ftpsync log for this mirror sync run, as this timestamps
do not add up.

Bastian

-- 
There is a multi-legged creature crawling on your shoulder.
-- Spock, "A Taste of Armageddon", stardate 3193.9

Bug#881430: vim is destroyed when using gpm

[vimuser]

Package: vim
Version: 2:8.0.0197-4+deb9u1
Severity: important

Dear Maintainer,

vim is not usable on virtual console or X-window

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***


-- Package-specific info:

--- real paths of main Vim binaries ---
/usr/bin/vi is /usr/bin/vim.gtk3
/usr/bin/vim is /usr/bin/vim.gtk3
/usr/bin/gvim is /usr/bin/vim.gtk3

-- System Information:
Debian Release: 9.2
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages vim depends on:
ii  libacl1  2.2.52-3+b1
ii  libc62.24-11+deb9u1
ii  libgpm2  1.20.4-6.2+b1
ii  libselinux1  2.6-3+b3
ii  libtinfo56.0+20161126-1+deb9u1
ii  vim-common   2:8.0.0197-4+deb9u1
ii  vim-runtime  2:8.0.0197-4+deb9u1

vim recommends no packages.

Versions of packages vim suggests:
pn  ctags
pn  vim-doc  
ii  vim-scripts  20130814

-- no debconf information

Bug#881427: [debhelper-devel] Bug#881427: Bug#881427: debhelper: dh_builddep fails, causing FTBFS: undefined value as an ARRAY reference

[Axel Beckert]

Control: close -1

Hi Hilko,

Hilko Bengen wrote:
> > This should be fixed with the just uploaded 10.10.7:
> 
> It is. I have tried a rebuild using debhelper/10.10.7 built from git and
> everything is fine.

Thanks for the feedback. I'm hence closing the bug report as fixed
with 10.10.7 (as you already set).

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , https://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE

Bug#881432: debian-policy: Please clarify postinst invocation upon first installation

[Christoph Biedl]

Package: debian-policy
Version: 4.1.1.1
Severity: wishlist

Hello,

the question of how to tell in postinst whether this is an upgrade or a
first installation comes up every now and then. Again yesterday in
#debian-mentors. Therefore I'm asking for a clarifcation in

6.5. Summary of ways maintainer scripts are called

in the paragraph after

"postinst configure most-recently-configured-version"

Suggested wording:

| If this package was prevously uninstalled, the
| "most-recently-configured-version" string is empty.

Reading src/configure.c in dpkg, this should be technically correct.

Also testing for an empty $2 in postinst is common according to
codesearch[1].

Regards,
Christoph

[1] 
https://codesearch.debian.net/search?q=-z+%22%5C%242%22+path%3Adebian%2F*.postinst


signature.asc
Description: Digital signature

Bug#881431: debian-policy: Clarify a version number is unique field

[Christoph Biedl]

Package: debian-policy
Version: 4.1.1.1
Severity: wishlist

Hello,

this is in the category of "It should be obvious to anybody but I'd
prefer things are well-defined in case anybody wishes to start an
argument over that". So rather nitpicking.

Version number re-usage happens, probably always by accident. In the
past, before the advent of slugs to mark security uploads and the like,
this was more likely to happen, and a long time ago my src:file package
was affected by that as well[1]. Unfortunately, there was such an event
even in 2017, see #876633.

Such re-usage is fairly annoying:

* It breaks a reasonable assumption about the features provided by
  a package installed in a given version.

* It breaks caching proxies that rely on the uniqueness for performance
  i.e. no re-validation with upstream required. Also, proxies might
  retain packages for longer than they exist on a mirror.

So I'd like to suggest an addition to "3.2. The version of a package",
for clarification, wording in the simplest form:

| For any package, a version number must never be re-used.

What I'd like to express but I guess is a bit too long:

| Unless bitwise identical, no two files that share the base name and
| have a version number in it may exist anywhere in the archives, ever.

Also, this is rather file-system based. But it should serve the first
purpose as well: If a package in a given version is installed on two
systems, the same feature set is provided on both without a doubt.

A few explanations:

* As it says, it's about *all* files that have a version number in
  the name, source and binary packages, upstream tarballs, *.dsc,
  *.diff.*, *.debian.tar.* and anything else.
* Files without a version number in the name like package indexes and
  documentation are considered volatile anyway.
* Moving files around without modification is acceptable and also daily
  routine: Between the queues, also from security to -proposed-updates
* By archive I think about the Debian files served by ftp.debian.org,
  security.debian.org, ftp.ports.debian.org and probably a few,
  rather semi-official more. Perhaps "archive" isn't the best word
  for this.

As always about policy, I'm interested about the idea but don't stick
to a particular wording. Feel free to improve as I'm also not a native
speaker.

Also I feel a temptation to implement an according check in the
auto-reject machinery at ftp-master. But that's for another day.

Regards,
Christoph

[1] Examples:
* Completely different
  http://snapshot.debian.org/package/file/4.17-5etch2/
* Duplicate on .dsc only (different signature, how did *that*
  ever happen?):
  http://snapshot.debian.org/package/file/5.04-5%2Bsqueeze2/

PS: Aside, I like the new presentation format of the policy document as
seen in . Improved visual,
policy version number at the very beginning, maintainer script
flowcharts, upgrading checklist included, but no additional and
dangerous requirements for using the document (i.e. works fine without
JavaScript). Much appreciated.


signature.asc
Description: Digital signature

Bug#880921: libopencv-dev: removal of libopencv-dev makes files disappear from libhighgui-dev

[Andreas Beckmann]

On 11/08/2017 04:08 PM, Mattia Rizzolo wrote:
> libhighgui-dev has been removed altogether.  Therefore, I wonder if an
> acceptable solution would be to remove the version restriction in the
> Conflicts.
> Seemingly, I'd remove the version from the libcv-dev, libcvaux-dev
> Conflicts as well

Sounds like a sensible approach to get cruft deinstalled.

> (they are in the same situation, probably if you test
> them you will find the same bug).
> Are the other binaries that are affected by a similar situation?

Didn't see similar problems in other packages, but if the dependency
chain is not trivial, it may take more crafting to get a reproducible
buggy path ...

Andreas

Bug#881433: maven: /usr/share/maven/boot/plexus-classworlds-2.x.jar should point to /usr/share/java/plexus-classworlds.jar

[Miguel Landaeta]

Package: maven
Version: 3.3.9-4
Severity: normal
Tags: patch

As title says.

/usr/share/maven/boot/plexus-classworlds-2.x.jar is currently pointing
to /usr/share/java/plexus-classworlds2.jar that is provided by
transitional package libplexus-classworlds2-java.

However, maven switched its dependency to libplexus-classworlds-java,
so this causes a dangling pointer and breaks maven unless you have
installed both libplexus-classworlds-java packages.

Anyway, the fix should be trivial and I pushed it to the repo.
Feel free to revert if there is a better alternative or I'm wrong
about this.

Cheers,
Miguel.


diff --git a/debian/maven.links b/debian/maven.links
index 8a017ef..5a7cec0 100644
--- a/debian/maven.links
+++ b/debian/maven.links
@@ -2,7 +2,7 @@
 
 /etc/maven/m2.conf /usr/share/maven/bin/m2.conf
 
-/usr/share/java/plexus-classworlds2.jar 
/usr/share/maven/boot/plexus-classworlds-2.x.jar
+/usr/share/java/plexus-classworlds.jar 
/usr/share/maven/boot/plexus-classworlds-2.x.jar
 
 /usr/share/java/aopalliance.jar  
/usr/share/maven/lib/aopalliance.jar
 /usr/share/java/cdi-api.jar  
/usr/share/maven/lib/cdi-api.jar

``
-- System Information:
Debian Release: 9.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=UTF-8 (charmap=UTF-8) (ignored: LC_ALL set 
to en_US.UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) (ignored: LC_ALL set to 
en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages maven depends on:
ii  default-jre-headless [java7-runtime-headless]2:1.8-58
ii  libmaven3-core-java  3.3.9-4
ii  openjdk-8-jre-headless [java7-runtime-headless]  8u141-b15-1~deb9u1

maven recommends no packages.

maven suggests no packages.

-- no debconf information

-- 
Miguel Landaeta, nomadium at debian.org
secure email with PGP 0x6E608B637D8967E9 available at http://miguel.cc/key.
"Faith means not wanting to know what is true." -- Nietzsche


signature.asc
Description: PGP signature

Bug#881434: darkradiant: Please move the build-depends on ftgl-dev to libftgl-dev

[Manuel A. Fernandez Montecelo]

Source: darkradiant
Version: 2.1.0-1
Severity: wishlist
Control: block 878529 by -1

Hello,

In order to be possible to drop the transitional package ftgl-dev, the packages
depending on it have to migrate first.

Please move the build-depends on ftgl-dev to libftgl-dev.

Cheers.

Bug#881435: vtk6: Please move the build-depends on ftgl-dev to libftgl-dev

[Manuel A. Fernandez Montecelo]

Source: vtk6
Version: 6.3.0+dfsg1-10
Severity: wishlist
Control: block 878529 by -1

Hello,

In order to be possible to drop the transitional package ftgl-dev, the packages
depending on it have to migrate first.

Please move the build-depends on ftgl-dev to libftgl-dev.

Additionally, as per #750186, it seems that the build-dependency it's not even
needed because the system-provided ftgl is not used, so maybe it can be dropped
entirely.


Cheers.

Bug#880404: quantlib-examples: fails to upgrade from 'stretch' - trying to overwrite /usr/bin/CVAIRS

[Andreas Beckmann]

On 11/10/2017 02:04 PM, Dirk Eddelbuettel wrote:
> Slight problem. When I add 
> 
>   Breaks: libquantlib0v5
>   Replaces: libquantlib0v5
> 
> I run into
> 
>   E: quantlib-examples: conflicts-with-dependency depends libquantlib0v5
> 
> as it also has
> 
>   Depends: ${shlibs:Depends}, ${misc:Depends}, libc6-dev, libboost-test-dev, 
> libquantlib0v5 (= ${binary:Version})
> 
> Ideas?

Breaks+Replaces should be versioned (<< 1.11-2), since that was the
versioned that moved around the files.

Andreas