Re: usrmerge in bookworm

[Sven Joachim]

On 2023-10-06 22:32 +, Andy Smith wrote:

> On Fri, Oct 06, 2023 at 04:42:56PM +0200, Urs Thuermann wrote:
>> Greg Wooledge  writes:
>>
>> > Yeah, usrmerge is a bit wonky in these early stages.
>>
>> $ apt-get changelog usrmerge | tail -n2
>>  -- Marco d'Itri   Tue, 04 Nov 2014 22:42:44 +0100
>> Fetched 11.0 kB in 0s (58.9 kB/s)
>>
>> Not what I'd call 'early' stages.
>
> It is for Debian, when the maintainer of dpkg is strongly opposed
> to, and refuses to co-operate with, anything related to usrmerge.
>
> It got done years ago in Ubuntu, and their dpkg doesn't have this
> issue, as they've carried patches for that for all those years.

Ubuntu may have patched out the dpkg complaints about usrmerge, but they
have _not_ added proper support for it.  For instance, the problem
mentioned by the OP is present in Ubuntu's dpkg.

Cheers,
   Sven

Re: Intermittent WiFi on Network Manager

[gene heskett]

On 10/7/23 05:17, Ottavio Caruso wrote:

Am 05/10/2023 um 09:41 schrieb Timothy M Butterworth:

Hello,

I am running Debian 12.  I have noticed for a little while now that 
WiFi is

intermittent. It goes through cycles of deactivation and activation. It
does this on multiple WiFi networks so I know it is not an AP problem.

I have network-manager/stable,now 1.42.4-1 amd64 installed.

Has anyone else noticed this?

Thanks

Tim



I am on Debian 11 but I have a similar problem.

Have you tried adding:

options iwlwifi bt_coex_active=0 swcrypto=1 11n_disable=8

to

/etc/modprobe.d/iwlwifi.conf

and reboot?

Fingers crossed, it seems to improve my situation a bit.


Another possibility is a leaky microwave oven in the vicinity. As 
broadcasters, we are required to show that our transmitters are safe for 
the operating personnel and are required to survey the area around the 
transmitter as safe for people to be in for extended periods of time, so 
we have to measure the leakage with a calibrated meter at license 
renewal every 5 years.  So I rented the metering device and when I was 
done was instructed to ship it to another instate station which I did. 
He got it, unpacked it and carried it to the break room to study the 
instructions. Someone came in to warm up a cuppa and the microwave 10 
feet away set it off well beyond the alarm trigger level. The door 
hinges were worn so the door was about 1/16" from properly closing. A 
rental oven, it was replaced by lunch time, with one that didn't leak.



Cheers, Gene Heskett.
--
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: Git for backup storage

[gene heskett]

On 10/7/23 01:51, to...@tuxteam.de wrote:

On Fri, Oct 06, 2023 at 01:44:34PM -0700, Mike Castle wrote:

Something I played with recently was
https://packages.debian.org/stable/vcs/git-filter-repo


Yes, it does work. My typical use case is when someone has put a
password in the repo you don't even want to have in the history.

But you aren't going to use that in a Git backup with gigabytes
of data, believe me :-)


But you definitely want to run tests on real data before you decide
that deleting old data saves your anything, particularly with respect
to time.

If git is so efficient at storing this kind of data, then what do you
expect to gain by deleting old stuff, outside of a smaller log to go
through?


The backup idea is a good one for medium amounts of smallish files
(/etc comes to mind). Once big hunks like videos are involved, things
get sluggish.

Try doing "time sha1sum foo" where foo is an 1.2G video file to see
what I mean.

Cheers


I have a now old Sony Handicam, about halfway between never twice same 
color and modern hidef, its mpeg output is quite compressed, but a 22 
minute wedding is 30 G's of raw video. I had to use kino and edit pretty 
heavily to make it fit on a single layer dvd. An sha1sum would have been 
around 35 minutes on this machine but that was nearly 20 years ago on a 
500 meg K-III cpu.


Cheers, Gene Heskett.
--
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Understanding package dependencies

[Steve Keller]

I've always thought, that a package's dependencies must be full-filled
to install that package and that apt-get automatically manages these
dependencies.  And also, that if I remove a package, that all other
packages are removed, that depend on it.  Like this:

# aptitude purge bind9-libs
The following packages will be REMOVED:
  bind9-libs{p} libjemalloc2{u}
0 packages upgraded, 0 newly installed, 2 to remove and 0 not upgraded.
Need to get 0 B of archives. After unpacking 4668 kB will be freed.
The following packages have unmet dependencies:
 bind9-host : Depends: bind9-libs (= 1:9.18.19-1~deb12u1) but it is not 
going to be installed
 bind9 : Depends: bind9-libs (= 1:9.18.19-1~deb12u1) but it is not going to 
be installed
 bind9-dnsutils : Depends: bind9-libs (= 1:9.18.19-1~deb12u1) but it is not 
going to be installed
 bind9-utils : Depends: bind9-libs (= 1:9.18.19-1~deb12u1) but it is not 
going to be installed
The following actions will resolve these dependencies:

 Remove the following packages:
1) bind9 [1:9.18.19-1~deb12u1 (now, stable-security)]
2) bind9-dnsutils [1:9.18.19-1~deb12u1 (now, stable-security)]
3) bind9-host [1:9.18.19-1~deb12u1 (now, stable-security)]
4) bind9-utils [1:9.18.19-1~deb12u1 (now, stable-security)]


But how can this then be explained?

# aptitude why lsb-base
i   ntpsec Depends lsb-base
# aptitude show ntpsec | grep ^Depends
Depends: adduser, lsb-base, netbase, python3, python3-ntp (= 
1.2.2+dfsg1-1+deb12u1), tzdata, libbsd0 (>= 0.0), libc6 (>= 2.34), libcap2 (>= 
1:2.10), libssl3 (>= 3.0.0)
# aptitude purge lsb-base
The following packages will be REMOVED:
  lsb-base{p}
0 packages upgraded, 0 newly installed, 1 to remove and 0 not upgraded.
Need to get 0 B of archives. After unpacking 12.3 kB will be freed.
Do you want to continue? [Y/n/?]

Won't continuing here leave ntpsec with an unresolved package dependency?

Steve

Re: Understanding package dependencies

[Michael Kjörling]

On 7 Oct 2023 13:47 +0200, from keller.st...@gmx.de (Steve Keller):
> But how can this then be explained?
> 
> # aptitude why lsb-base
> i   ntpsec Depends lsb-base
> # aptitude show ntpsec | grep ^Depends
> Depends: adduser, lsb-base, netbase, python3, python3-ntp (= 
> 1.2.2+dfsg1-1+deb12u1), tzdata, libbsd0 (>= 0.0), libc6 (>= 2.34), libcap2 
> (>= 1:2.10), libssl3 (>= 3.0.0)
> # aptitude purge lsb-base
> The following packages will be REMOVED:
>   lsb-base{p}
> 0 packages upgraded, 0 newly installed, 1 to remove and 0 not upgraded.
> Need to get 0 B of archives. After unpacking 12.3 kB will be freed.
> Do you want to continue? [Y/n/?]
> 
> Won't continuing here leave ntpsec with an unresolved package dependency?

I'm not sure if that's it, and I'm pretty sure I've never seen a `{p}`
(is that aptitude's way of indicating that a package will be purged
rather than just uninstalled; that which apt-get shows as `*`?), but
might at least a partial explanation be that lsb-base in Bookworm is
an empty transitional package?

On a freshly installed and up-to-date Bookworm VM, installing ntpsec
doesn't pull in lsb-base (the only additional package pulled in by
`apt-get install ntpsec` is python3-ntp), nor is lsb-base installed
after installation.

-- 
Michael Kjörling 🔗 https://michael.kjorling.se
“Remember when, on the Internet, nobody cared that you were a dog?”

Re: Understanding package dependencies

[Greg Wooledge]

On Sat, Oct 07, 2023 at 01:04:56PM +, Michael Kjörling wrote:
> On 7 Oct 2023 13:47 +0200, from keller.st...@gmx.de (Steve Keller):
> > # aptitude purge lsb-base
> > The following packages will be REMOVED:
> >   lsb-base{p}
> > 0 packages upgraded, 0 newly installed, 1 to remove and 0 not upgraded.
> > Need to get 0 B of archives. After unpacking 12.3 kB will be freed.
> > Do you want to continue? [Y/n/?]
> > 
> > Won't continuing here leave ntpsec with an unresolved package dependency?

> I'm not sure if that's it, and I'm pretty sure I've never seen a `{p}`
> (is that aptitude's way of indicating that a package will be purged
> rather than just uninstalled; that which apt-get shows as `*`?), but
> might at least a partial explanation be that lsb-base in Bookworm is
> an empty transitional package?

That's definitely part of the whole picture, yes.

Package: sysvinit-utils
[...]
Provides: lsb-base (= 11.1.0)

When you remove the physical lsb-base package, the virtual package
provided by sysvinit-utils remains, to satisfy the dependencies of
ntpsec, rsync, etc.

Re: Intermittent WiFi on Network Manager

[gene heskett]

On 10/7/23 09:08, Ottavio Caruso wrote:

Am 07/10/2023 um 11:11 schrieb gene heskett:

Another possibility is a leaky microwave oven in the vicinity


This is an urban legend and an excuse I was using when I was in tech 
support.


Wireless cards w/o good pre-selectivity, which is all the ones we can 
get these days because of the pricing, WILL be interfered with by a 
leaky microwave, they are only about 5% different in operating 
frequency. Figuraively speaking, that microwave is 80 to 100 db louder 
than the wifi radio.  To design a wifi radio front end that would 
reliably reject the much "louder" microwave, would occupy 20x the cubic 
volume of todays wifi insert card that plugs into wannabe versions of 
the pi, or any number of 3d printer controllers and would likely cost 
close to 20x the cost of that postage stamp sized card.


And you are arguing with a broadcast engineer whose 1st phone dates from 
63 years ago.  Yes, I've been there, and done that.


Cheers, Gene Heskett.
--
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Re: Does the debian kernel sends the gratuitous arp ?

[Jeffrey Walton]

On Sat, Oct 7, 2023 at 1:38 AM  wrote:
>
> On Fri, Oct 06, 2023 at 05:20:22PM -0400, Jeffrey Walton wrote:
> > On Fri, Oct 6, 2023 at 2:04 PM Balaji G  wrote:
> > >
> > > Hi,
> > > I am using "Debian GNU/Linux 11 (bullseye)" with kernel version 
> > > 5.16.12.
> > > When i do a link up/down i don't see any Gratuitous ARP being sent.
> > >
> > > # echo 1 > /proc/sys/net/ipv4/conf/eno5np0/arp_notify
> > > # ip link set down dev eno5np0
> > > # ip link set up dev eno5np0
> > >
> > > Captured all the packets via tcpdump & the tcpdump is not showing any 
> > > Gratuitous ARP packets.
> > >
> > > But, with the same commands i could see the Gratuitous ARP being sent in 
> > > Red hat.9.0 (Plow).
> > > So, please let me know if this is a specific scenario in Debian 11 ??
> >
> > I think that's now Poettering:
> > https://github.com/systemd/systemd/blob/main/src/libsystemd-network/sd-ipv4acd.c#L302
>
> As  Geert says, probably it needs an ip address to be able to send
> an ARP. Perhaps the Redhat box has one set by default?

OP asked if this was specific to Red Hat. The answer is No, it is
baked into Systemd nowadays.

> What does "ip addr show dev " say?

I have no idea.

Jeff

Re: Intermittent WiFi on Network Manager

[Max Nikulin]

On 07/10/2023 18:11, gene heskett wrote:

On 10/7/23 05:17, Ottavio Caruso wrote:

options iwlwifi bt_coex_active=0 swcrypto=1 11n_disable=8

to

/etc/modprobe.d/iwlwifi.conf


Another possibility is a leaky microwave oven in the vicinity.


I consider buggy firmware as a more plausible cause of crashes when 
Intel WiFi card wakes up.

Re: Understanding package dependencies

[Steve Keller]

Greg Wooledge  writes:

> Package: sysvinit-utils
> [...]
> Provides: lsb-base (= 11.1.0)
>
> When you remove the physical lsb-base package, the virtual package
> provided by sysvinit-utils remains, to satisfy the dependencies of
> ntpsec, rsync, etc.

OK, that explains, why lsb-base can be removed without ntpsec. Is there
a way to search for "Provides" in packages? I.e. show me all packages
(installed or all) that provide some feature "foobar"?

Steve

Re: Understanding package dependencies

[Greg Wooledge]

On Sat, Oct 07, 2023 at 07:24:24PM +0200, Steve Keller wrote:
> Greg Wooledge  writes:
> 
> > Package: sysvinit-utils
> > [...]
> > Provides: lsb-base (= 11.1.0)
> >
> > When you remove the physical lsb-base package, the virtual package
> > provided by sysvinit-utils remains, to satisfy the dependencies of
> > ntpsec, rsync, etc.
> 
> OK, that explains, why lsb-base can be removed without ntpsec. Is there
> a way to search for "Provides" in packages? I.e. show me all packages
> (installed or all) that provide some feature "foobar"?

I couldn't find one within a minute or so of looking, so I simply
searched for "Provides:.*lsb-base" in /var/lib/dpkg/status.

Now that I've had a bit more time to ponder it, I recall that there's
"apt-cache showpkg".  It's not intuitive or easy to remember, but

unicorn:~$ apt-cache showpkg lsb-base
Package: lsb-base
[... LOTS of useless info ...]
Dependencies: 
11.6 - sysvinit-utils (2 3.05-4~) 
Provides: 
11.6 - lsb-base:i386 (= 11.6) 
Reverse Provides: 
sysvinit-utils:i386 3.06-4 (= 11.1.0)
sysvinit-utils 3.06-4 (= 11.1.0)

Re: Understanding package dependencies

[Sven Joachim]

On 2023-10-07 19:24 +0200, Steve Keller wrote:

> Greg Wooledge  writes:
>
>> Package: sysvinit-utils
>> [...]
>> Provides: lsb-base (= 11.1.0)
>>
>> When you remove the physical lsb-base package, the virtual package
>> provided by sysvinit-utils remains, to satisfy the dependencies of
>> ntpsec, rsync, etc.
>
> OK, that explains, why lsb-base can be removed without ntpsec. Is there
> a way to search for "Provides" in packages? I.e. show me all packages
> (installed or all) that provide some feature "foobar"?

Yes, aptitude can do that.   Quoting the manual[1]:

,
| ?provides(pattern), ~Ppattern
| 
| Matches package versions which provide a package that matches the
| pattern. For instance, “?provides(mail-transport-agent)” will match
| all the packages that provide “mail-transport-agent”.
`

In the current case, "aptitude search '~Plsb-base'" does the trick.

Cheers,
   Sven


1. https://www.debian.org/doc/manuals/aptitude/ch02s04s05.en.html#searchProvides

Re: Understanding package dependencies

[Greg Wooledge]

On Sat, Oct 07, 2023 at 08:27:11PM +0200, Sven Joachim wrote:
> Yes, aptitude can do that.   Quoting the manual[1]:
> 
> ,
> | ?provides(pattern), ~Ppattern
> | 
> | Matches package versions which provide a package that matches the
> | pattern. For instance, “?provides(mail-transport-agent)” will match
> | all the packages that provide “mail-transport-agent”.
> `
> 
> In the current case, "aptitude search '~Plsb-base'" does the trick.

Why on EARTH was this not ported to apt-patterns(7)?

unicorn:~$ apt list '?conflicts(~nlsb-base)'
Listing... Done
sysvinit-utils/stable,now 3.06-4 amd64 [installed]
sysvinit-utils/stable 3.06-4 i386
unicorn:~$ apt list '?provides(~nlsb-base)'
Listing... Error!
E: input:0-21: error: Unrecognized pattern '?provides'
   ?provides(~nlsb-base)
   ^

Re: usrmerge in bookworm

[Andy Smith]

Hi Sven,

On Sat, Oct 07, 2023 at 09:09:27AM +0200, Sven Joachim wrote:
> On 2023-10-06 22:32 +, Andy Smith wrote:
> > It got done years ago in Ubuntu, and their dpkg doesn't have this
> > issue, as they've carried patches for that for all those years.
> 
> Ubuntu may have patched out the dpkg complaints about usrmerge, but they
> have _not_ added proper support for it.  For instance, the problem
> mentioned by the OP is present in Ubuntu's dpkg.

I'm sorry, I was not aware of that and I stand corrected.

Thanks!
Andy

-- 
https://bitfolk.com/ -- No-nonsense VPS hosting

Re: Intermittent WiFi on Network Manager

[gene heskett]

On 10/7/23 11:42, Ottavio Caruso wrote:

Am 07/10/2023 um 15:21 schrieb gene heskett:

On 10/7/23 09:08, Ottavio Caruso wrote:

Am 07/10/2023 um 11:11 schrieb gene heskett:

Another possibility is a leaky microwave oven in the vicinity


This is an urban legend and an excuse I was using when I was in tech 
support.


Wireless cards w/o good pre-selectivity, which is all the ones we can 
get these days because of the pricing, WILL be interfered with by a 
leaky microwave, they are only about 5% different in operating 
frequency. Figuraively speaking, that microwave is 80 to 100 db louder 
than the wifi radio.  To design a wifi radio front end that would 
reliably reject the much "louder" microwave, would occupy 20x the 
cubic volume of todays wifi insert card that plugs into wannabe 
versions of the pi, or any number of 3d printer controllers and would 
likely cost close to 20x the cost of that postage stamp sized card.


And you are arguing with a broadcast engineer whose 1st phone dates 
from 63 years ago.  Yes, I've been there, and done that.


Cheers, Gene Heskett.


We have color tv and stereo FM nowadays. And fax machines.

AS if you think I don't know that. I've converted several tv 
transmitters to work in this new thing called hidef. Do you have a 
C.E.T. to go with your know it all certificate?  I am also a Certified 
Electronics Technician. We teach EE's what they didn't learn in school. 
Getting our hands dirty fixing their mistakes.


I never claimed that /was/ the OP's problem, just suggesting a 
possibility to be investigated.   Its called thinking outside the box. 
Apparently something you rarely do.

Cheers, Gene Heskett.
--
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author, 1940)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Need help with PGP signature verification

[Tom Browder]

I'm willing to trust published PGP key fingerprints for signers of Rakudo
downloadable files.

Question:  How can I get the fingerprint from the downloads?

The products I download are (1) the file of interest, (2) a PGP signed
checksums file with various shaX hashes for the file, and (3) a separate
file containing a PGP signature.

Thanks so much.

-Tom

Re: Need help with PGP signature verification

[DdB]

Am 08.10.2023 um 01:16 schrieb Tom Browder:
> I'm willing to trust published PGP key fingerprints for signers of
> Rakudo downloadable files.
> 
> Question:  How can I get the fingerprint from the downloads? 
> 
> The products I download are (1) the file of interest, (2) a PGP signed
> checksums file with various shaX hashes for the file, and (3) a separate
> file containing a PGP signature.
> 
> Thanks so much.
> 
> -Tom
> 
> 
> 
There is more than just one way to archieve this, first result from
G**-search returns:
https://superuser.com/questions/1297670/how-do-i-check-gpg-signature-given-only-the-fingerprint-and-key-id
which also contains security related warnings and hints.
HTH, DdB

Re: Does the debian kernel sends the gratuitous arp ?

[Balaji G]

Hi Jeff,
   Do you mean this is a known issue & will be fixed in the future
releases ?




Thanks,
Balaji

On Sat, 7 Oct 2023 at 02:50, Jeffrey Walton  wrote:

> On Fri, Oct 6, 2023 at 2:04 PM Balaji G  wrote:
> >
> > Hi,
> > I am using "Debian GNU/Linux 11 (bullseye)" with kernel version
> 5.16.12.
> > When i do a link up/down i don't see any Gratuitous ARP being sent.
> >
> > # echo 1 > /proc/sys/net/ipv4/conf/eno5np0/arp_notify
> > # ip link set down dev eno5np0
> > # ip link set up dev eno5np0
> >
> > Captured all the packets via tcpdump & the tcpdump is not showing any
> Gratuitous ARP packets.
> >
> > But, with the same commands i could see the Gratuitous ARP being sent in
> Red hat.9.0 (Plow).
> > So, please let me know if this is a specific scenario in Debian 11 ??
>
> I think that's now Poettering:
>
> https://github.com/systemd/systemd/blob/main/src/libsystemd-network/sd-ipv4acd.c#L302
>
> Jeff
>