Hi Simon--
It's pretty clear from the discussion on debian-devel that we disagree
on the merits of injecting non-consensus LibrePGP artifacts into the
existing OpenPGP ecosystem, so i'm not going to discuss that directly in
this ticket.
I also don't think having three different versions of GnuPG
Control: forwarded 1079696 https://dev.gnupg.org/T7478
Control: reassign 1079696 libgpg-error0 1.51-3
Hi Russell--
On Mon 2024-08-26 22:48:02 +1000, Russell Coker wrote:
> openat(AT_FDCWD, "/proc/self/fd", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY)
> = -1 ENOENT (No such file or directory)
> prl
On Sat 2025-01-04 11:46:00 +0200, Martin-Éric Racine wrote:
> I really don't have any opinion on which GPG implementation should get
> selected. My key point is to pick one and apply it across the board
> for dpkg, apt and devscripts. Until recently, it meant gpg/gpgv across
> the board. I also don
On Wed 2024-12-25 16:20:24 +0200, Martin-Éric Racine wrote:
> ke 25.12.2024 klo 16.00 Holger Levsen (hol...@layer-acht.org) kirjoitti:
>>
>> On Wed, Dec 25, 2024 at 03:15:04PM +0200, Martin-Éric Racine wrote:
>> > We still have this:
>> > Depends: gnupg | gnupg2, sopv | gpgv
>> > i.e. how do the d
v]0.6.4-2
ii librust-syn-1-dev [librust-syn-1+default-dev]1.0.109-3
librust-signature-dev recommends no packages.
librust-signature-dev suggests no packages.
-- no debconf information
From ba31591c3c9bd8aa872aaf96c7b76edd31d43894 Mon Sep 17 00:00:00 2001
From: Daniel Kahn G
Control: reassign 1055534 ftp.debian.org
Control: retitle 1055534 RM: sq-wot -- ROM; no longer built
Control: affects 1055534 + src:rust-sequoia-wot
Control: user ftp.debian@packages.debian.org
Control: usertag 1055534 + remove
On Tue 2023-11-07 22:03:40 +, Peter Green wrote:
> While check
Package: gpg
Version: 2.4.6-1
Severity: normal
Control: forwarded -1 https://dev.gnupg.org/T7403
the version of gpg in experimental (2.4.6-1) currently rewrites OpenPGP
signature packets if they're made with Ed25519, and they have less than
256 bits in either R or S. It rewrites them to a form tha
Package: dupload
Version: 2.11.2
Severity: normal
I use dupload from bash. The dupload bash tab completion doesn't behave
as expected. In the terminal transcript below, indicates that
i've pressed the tab button
```
0 dkg@bob:/tmp/cdtemp.jhxXbG$ find
.
./build
./build/bar_1.2.3-1_source.change
Control: clone 1087540 -1
Control: retitle -1 gosop does not accept more than one OpenPGP certificate per
file
Control: block 1087540 by -1
Control: forwarded -1 https://github.com/ProtonMail/gosop/issues/25
Hi Guillem, Martin--
On Sun, 2024-11-17 at 21:27:06 +, Martin Dosch wrote:
> thank y
Package: gosop
Version: 1.0.0-1
Severity: wishlist
"gosop version --sopv" indicates that gosop now supports the
verification-only subset of the stateless openpgp interface.
Some baseline testing confirms that this is the case.
It would be great if the debian packaging could add a line to the
deb
Package: python3-argcomplete
Version: 3.5.1-1
Severity: important
Control: affects -1 + mailscripts sopv-gpgv
Several command line tools depend on python3-argcomplete for tab
completion in bash, including imap-dl and email-print-mime-structure
from mailscripts and sopv-gpgv.
At some point in the
On Thu 2024-10-31 09:50:09 -0400, Jérôme Charaoui wrote:
> From version 1.7.x on, PGPainless was rewritten using Kotlin, so
> packaging this branch isn't possible currently. There was some work on
> Kotlin in Debian some months ago, but it doesn't look like it's been
> sustained.
Is that Kotli
Control: reassign 1084495 debcargo
Control: retitle 1084495 debcargo: Populate Homepage from `repository` if no
`homepage` exists in Cargo.toml
Control: forwarded 1084495
https://salsa.debian.org/rust-team/debcargo/-/issues/69
Control: affects 1084495 + rsop
On Mon 2024-10-07 13:51:58 +0200, Gui
Source: pgpainless
Version: 1.6.7-2
Severity: normal
https://github.com/pgpainless/pgpainless/tags suggests that version
1.7.1 is availble. it would be great to have this in Debian.
Thanks for your work on PGPainless!
--dkg
signature.asc
Description: PGP signature
Control: severity 1057096 important
Hi Salvatore--
On Sat 2024-10-26 09:12:47 +0200, Salvatore Bonaccorso wrote:
> On Sat, Oct 26, 2024 at 02:05:22AM -0400, Daniel Kahn Gillmor wrote:
>> Control: affects 1057096 + rsopv
[…]
>> For example, this severity means that rsopv (a Rust
Control: affects 1057096 + rsopv
On Wed 2023-11-29 17:27:15 +0100, Salvatore Bonaccorso wrote:
> The following vulnerability was published for rust-rsa.
>
> CVE-2023-49092[0]:
My understanding is that we have other instances of the MARVIN attack
available in debian which have not yet been solved.
Package: wnpp
Severity: wishlist
* Package name: libalt-crypt-rsa-bigint-perl
Version : 0.06
Upstream Author : Dana Jacobsen
* URL or Web page : https://metacpan.org/pod/Alt::Crypt::RSA::BigInt
* License : Perl
Programming lang: Perl
Description : Alt::Crypt::RSA::
Control: close 1081342 0.13.1-2
I added gpg-agent to the Build-Depends and impass seems to build without
error on the buildd network:
https://buildd.debian.org/status/fetch.php?pkg=impass&arch=all&ver=0.13.1-2&stamp=1728413568&raw=0
If it continues to FTBFS using debusine or some other rebu
On Fri 2024-10-04 06:06:42 +0200, Guillem Jover wrote:
> Just restarted with the new chromium version just uploaded, w/o the
> --disable-gpu-memory-buffer-video-frames option, played a video, and
> it no longer show those log messages! So, it looks confirmed. :)
I can confirm the same results on m
On Sat 2024-09-28 23:12:36 -0400, Andres Salomon wrote:
> This upstream bug (just like
> https://issues.chromium.org/issues/329678163 before it) is exactly why I
> haven't enabled wayland by default. Upstream just doesn't seem to care
> about fixing wayland bugs in a timely fashion yet.
>
> If w
Package: gnome-keyring
Version: 46.2-1
Severity: normal
I don't expect "gnome-keyring import /dev/null" to succeed (there's
nothing to import in /dev/null) but i am surprised to see that it
appears to cause a double free:
```
0 dkg@bob:~$ gnome-keyring import /dev/null
gnome-keyring: couldn't pa
459ce4 Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor
Date: Sat, 14 Sep 2024 08:30:18 -0400
Subject: [PATCH] Avoid SyntaxWarning with python 3.12 on raw regex strings.
Without this change, we see the following warnings with python 3.12:
scan.py:44: SyntaxWarning: invalid escape se
Control: affects 1080430 + gpg-from-sq
On Tue 2024-09-03 16:22:14 -0400, Daniel Kahn Gillmor wrote:
> https://dev.gnupg.org/T6907
>
> gpg is supposed to take a command argument to indicate what operation is
> being done. if the argument list does not contain a command, it tries to
>
Package: libgpgme11t64
Version: 1.23.2-1
Severity: normal
Control: forwarded -1 https://dev.gnupg.org/T6907
gpg is supposed to take a command argument to indicate what operation is
being done. if the argument list does not contain a command, it tries to
guess what to do based on the contents of th
ocale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
commit 06ec119ca90cbe6340fbc44fed9a666e68550192
Author: Daniel Kahn Gillmor
Date: Thu Aug 29 22:40:35 2024 -0400
On Tue 2024-08-20 12:18:07 +0200, Julian Andres Klode wrote:
> Sorry I am slow with replying
no worries, i'm also slow in replying. thanks for getting back to this
discussion, Julian!
> I think we have a fundamental issue here that we are conflating
> different contexts of signing, it doesn't ma
On Thu 2024-08-08 20:49:42 +0200, Sébastien Noel wrote:
> Mailvelope has 2 "backends", one is OpenPGP.js, where it works without
> interacting with the local GnuPG install and the keys are stored in the
> browser's local folder. This just works, today, without change in any
> gnupg component.
t
Hi Sébastien--
On Thu 2024-08-08 00:53:04 +0200, Sébastien Noel wrote:
> Thank you very much again for taking the time to respond to my offensive
> email that i'm not proud of :/
I appreciate your retraction of the offensive parts of your message. I
understand the frustration (i've been in you
Hi Sébastien--
On Tue 2024-08-06 23:53:21 +0200, Sébastien Noel wrote:
> I acknowledge that the last 5 years have been "bumpy" in the gnupg
> community (omg the certificates flooding incident was that long ago ??
> time flies) and that working with an increasingly hostile upstream
> must be diffic
Control: forwarded 1068416 https://github.com/openssh/openssh-portable/pull/502
On Thu 2024-04-04 15:28:34 -0400, Daniel Kahn Gillmor wrote:
> ssh-agent is a critical piece of infrastructure for my workflow, and i
> want it better integrated with my user session, which is managed by
>
On Tue 2024-07-30 06:16:00 -0400, Daniel Kahn Gillmor wrote:
>> What's missing from sopv are mechanisms for specifying crypto
>> policies, such as allowed hashes, allowed crypto algorithms, and
>> allowed key sizes. I'm not sure if there's stuff I'm missin
Hi Sébastian--
I understand your frustration -- it's a frustrating situation.
I've been the only one stepping up to make policy-style changes in the
past several years, and i'm overwhelmed by several things related to the
json interface:
- the technical complexity of the GnuPG architecture,
-
Package: apt
Severity: wishlist
Hi Julian, all--
We had some discussion over on
https://gitlab.com/sequoia-pgp/sequoia-chameleon-gnupg/-/issues/84
about how apt might use sopv instead of gpgv to validate OpenPGP
signatures. I thought i'd move the discussion to an apt-specific forum,
here in the
Hi Thomas--
thanks for the suggestions! some comments below:
On Sat 2024-07-27 03:49:49 +0200, Thomas Lange wrote:
> Using lsinitrd /boot/initramfs you can check which dracut modules
> are available in the initrd.
> Following modules are available for crypt stuff:
>
> crypt
> systemd-cryptse
Package: chromium
Version: 126.0.6478.126-1~deb13u1
Severity: normal
Hi there!
When i use chromium to watch a video, using sway and wayland (no X11 or
XWayland on this system), i get very noisy messages to stderr,
apparently about one message per frame of video.
I typically use set --ozone-platf
Package: foot
Version: 1.17.2-2
Severity: normal
I launch foot from a keybinding from sway, or from another foot
instance.
When i close a foot window (e.g. by exiting from the running shell), the
following warning shows up in the system journal:
```
utempter[10509]: [ppid=10472] usage error
```
Hi Andreas--
On Fri 2023-02-10 15:31:27 +0100, Andreas Metzler wrote:
> According to both manpage and "sqop help verify" sqop verify accepts
> exactly to args (sig and cert) plus two options
> (--not-after/--not-before).
>
> However this command simply hangs:
> sqop verify gnutls28_3.7.8.orig.tar.
Hi Andreas--
On Fri 2023-02-10 15:38:21 +0100, Andreas Metzler wrote:
> I thought this should work, but it does not:
> sqop verify gnutls28_3.7.8.orig.tar.xz.asc
> gnutls-3.7.8/debian/upstream/signing-key.asc < gnutls28_3.7.8.orig.tar.xz.asc
>No acceptable signatures found
>
> One of
Package: wnpp
Severity: wishlist
Owner: Daniel Kahn Gillmor
X-Debbugs-Cc: debian-de...@lists.debian.org
* Package name: sopv-gpgv
Version : 0.1
Upstream Contact: Daniel Kahn Gillmor
* URL : https://gitlab.com/dkg/sopv-gpgv
* License : MIT
Programming Lang
Package: rustc
Version: 1.79.0+dfsg1-2
X-Debbugs-Cc: mips6...@buildd.debian.org, rust-sequoia-...@packages.debian.org
Control: affects -1 src:rust-sequoia-sop
Hey mips64el builders--
https://buildd.debian.org/status/fetch.php?pkg=rust-sequoia-sop&arch=mips64el&ver=0.35.0-3&stamp=1721479018&raw=0
Package: chromium
Version: 125.0.6422.60-1
Severity: wishlist
https://chromium.googlesource.com/chromium/src/+/HEAD/docs/ozone_overview.md
says:
> It is also possible to choose an Ozone backend via the
> chrome://flags/#ozone-platform-hint. The following options are
> available - Default, X11, Wa
Package: dracut
Version: 102-3
Severity: important
This system has been booting with a dracut-generated initramfs for
several years. i ran into some trouble with the systemd 256 transition,
but that was resolved. today, i tried to reboot and found that the
dracut-generated initramfs was unable t
ginally common case for using --link-from-system, maybe
debcargo should grow an configuration choice that those crates that do
need it can just set directly.
--dkg
On Wed 2024-04-17 22:33:54 -0400, Daniel Kahn Gillmor wrote:
> Source: librust-sequoia-openpgp-dev
> Severity: normal
&
Package: systemd
Version: 256-1
Severity: normal
/usr/lib/tmpfiles.d/legacy.conf:13: Duplicate line for path "/run/lock",
ignoring.
/usr/lib/tmpfiles.d/debian.conf:d /run/lock1777 root root - -
/usr/lib/tmpfiles.d/legacy.conf:d /run/lock 0755 root root -
systemd: /usr/lib/tmpfiles.d/debian
pg: encrypted with 255-bit ECDH key, ID 38024D718ABA3F3B, created 2023-12-06
"Daniel Kahn Gillmor"
gpg: encrypted with 255-bit ECDH key, ID 38024D718ABA3F3B, created 2023-12-06
"Daniel Kahn Gillmor"
--- /dev/fd/63 2024-05-31 17:08:37.339457042 -0400
+++ /dev/f
Control: affects 1071552 + emacs-el
Control: retitle 1071552 GnuPG 2.2.42+ breaks emacs' EasyPG
On Tue 2024-05-21 13:05:02 +0900, Youhei SASAKI wrote:
> Package: gnupg
> Version: 2.2.43-6
> Severity: critical
I see that Andreas has reduced the severity of 1071552 from 'critical'
to 'important'.
Package: libgnupg-interface-perl
Version: 1.04-1
Severity: important
X-Debbugs-Cc: Daniel Kahn Gillmor
Control: forwarded -1 https://github.com/bestpractical/gnupg-interface/pull/14
Control: tags -1 + patch
Control: affects -1 + src:gnupg2
The GnuPG::Interface test suite fails with GnuPG 2.2.43
On Sun 2024-05-19 20:43:58 +0200, Guido Günther wrote:
> But you'd break that when filtering out files? I think what keeps me
> confused: the tarball uploaded to Debian is the filtered one and hence
> has a different checksum, no?
hm, i don't think so, because we use
import-orig.filter-pristine-t
Hi gniibe--
Thanks for this additional info!
On Fri 2024-05-17 09:02:40 +0900, NIIBE Yutaka wrote:
> The regexp subdirectory was introduced to support POSIX regexp functions
> on Windows. The intention is providing same behavior among GnuPG on
> different Operating Systems. Historically, regexp
Hi Julian--
On Fri 2024-02-16 10:42:35 +0100, Julian Andres Klode wrote:
> gnupg is a big meta package pulling in all sorts of weird stuff
> people don't want by default on their machine, like a wks server.
I agree with this generally, but upstream seems to generally want all
packages available i
Hi Guido--
On Thu 2024-05-16 08:39:27 +0200, Guido Günther wrote:
> Great! This matches my preferred way too.
☺ Thanks for walking through the options here with me!
> Wouldn't d/copyright's `Files-Excluded:` work here too? I'm using that
> for similar purposes as it even allows to use `gbp impo
Source: gnupg2
Severity: minor
X-Debbugs-Cc: Daniel Kahn Gillmor
The gnupg2 package is built from source based on the upstream released
tarball. Upstream also uses git for revision control, and we track
upstream git as well as the released tarballs. upstream uses OpenPGP to
sign both git tags
Package: git-buildpackage
Version: 0.9.33
Severity: wishlist
X-Debbugs-Cc: Daniel Kahn Gillmor , Andreas Metzler
Control: affects -1 src:gnupg2
I'd like to have "git import-orig" filter out all the files that are
listed in debian/clean, without having to keep the lists synchron
Hi Farblos--
On Tue 2024-05-14 21:28:05 +0200, Farblos wrote:
> Should I open another issue about PINENTRY_USER_DATA not being
> forwarded to the pinentry when using the gpg from package gpg-sq/
> gpg-from-sq? If yes, on what repository exactly?
I would report it at
https://gitlab.com/sequoia-pg
Package: thunderbird
Version: 1:115.10.1-1
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
Thunderbird was (understandably) using an internal copy of librnp
because upstream hadn't releasd a version with
`rnp_signature_get_features`
Now that 0.17.1-1 is in debian/unstable, please re
ually
pruning for things that include either my name or e-mail address):
```
DEBFULLNAME=Daniel Kahn Gillmor
DEBEMAIL=d...@fifthhorseman.net
DEBSIGN_MAINT=Daniel Kahn Gillmor
EMAIL=d...@fifthhorseman.net
```
None of this seems wrong to me; or even if it does, it still ought to be
able to be c
Package: gpg-from-sq
Version: 0.8.0-5
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
Control: affects -1 + src:rnp
With gpg-from-sq installed, trying to build rnp 0.17.1-1 results in
these test failures:
---
96% tests passed, 10 tests failed out of 263
Total Test time (real) = 273.53
Control: affects 1070688 + gpg-from-sq apt
Hi Farblos, all--
Thanks for this detailed bug report (https://bugs.debian.org/1070688).
I'm a bit confused about the following:
On Wed 2024-05-08 11:07:28 +0200, Farblos wrote:
> Never mind. During one of the last t64 upgrade orgies package gpg-sq got
Package: ruby-kramdown-rfc2629
Version: 1.7.1-1~exp1
Severity: wishlist
X-Debbugs-Cc: Daniel Kahn Gillmor
Dear Maintainer,
kramdown-rfc 1.7.11 is available upstream -- it would be great to have
this in debian, because it offers a feature that i hope to use for
draft-ietf-lamps-header-protection
Package: gpgv-from-sq
Version: 0.8.0-5
Control: affects -1 + apt
Control: forwarded -1 +
https://gitlab.com/sequoia-pgp/sequoia-chameleon-gnupg/-/issues/68
As of 50e3fee26ae843a812b1c9ec8531946931773fd3, apt 2.7.13 started
trying to use --assert-pubkey-algo, which appears to have been hastily
add
Hi Guillem--
On Sat 2024-04-27 23:13:13 +0200, Guillem Jover wrote:
> I was just modifying this code for another report I'm about to file,
> and instead wondered why have it at all! I'm proposing simply removing
> the backwards compat code given that even in oldstable gnugp1 is
> already at veriso
Package: elpa-debian-el
Version: 37.11
Severity: normal
X-Debbugs-Cc: none, d...@fifthhorseman.net, Daniel Kahn Gillmor
When i do "M-x debian-bug P elpa-debian-el RET" i get the template you
see here.
Weirdly, X-Debbugs-Cc is pre-populated in this way.
There are at least two things
Package: debian-keyring
Version: 2024.03.24
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor ,
ftpmas...@ftp-master.debian.org, ftpmas...@debian.org
I receive e-mail messages from the debian FTP archive-processing
software are signed with F38AA24EB85F09F9923CA4949BF6A82061CCB921, and
labeled
Hi László--
Thanks for sorting out the 3.3-1 upload for tcplay, multiarch-ifying
library along the way, and updating the packaging history in Salsa, too!
With much appreciation,
--dkg
signature.asc
Description: PGP signature
Package: gpg-sq-dbgsym
Version: 0.8.0-4
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
I am trying to debug a performance issue with gpg-sq upstream
(https://gitlab.com/sequoia-pgp/sequoia-chameleon-gnupg/-/issues/72) and
i attached gdb to a running gpg-sq process.
As soon as it was
On Mon 2024-04-22 20:17:54 +, Holger Levsen wrote:
> fixed in git.
thanks! I've just uninstalled the octopus, but i'll consider
reinstalling it later if this and some of the performance issues can be
ironed out (or maybe to help iron out the performance issues, visible
upstream at
https://git
Package: libsequoia-octopus-librnp
Severity: wishlist
X-Debbugs-Cc: Daniel Kahn Gillmor
the octopus has a simple, superficial autopkgtest, which just confirms
that the library has the expected symbols.
It would be great to have an autopkgtest that confirms that it actually
interoperates with
Package: libsequoia-octopus-librnp
Version: 1.8.1-3
Severity: grave
X-Debbugs-Cc: Daniel Kahn Gillmor
Trying to install libsequoia-octopus-librnp:
/var/lib/dpkg/tmp.ci/preinst: 12: Syntax error: "fi" unexpected (expecting
"then")
dpkg: error processing archive
/tmp/apt-d
On Sun 2024-04-21 15:44:12 +0200, László Böszörményi (GCS) wrote:
> I prefer communication first. :) Currently I'm travelling so I can
> only check it on Tuesday.
That's why i uploaded to DELAYED/15 :) thanks for offering to take a
look at it later this week, László!
> There were some license
Package: libsequoia-octopus-librnp
Version: 1.8.1-2
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
Control: affects -1 thunderbird gpg-from-sq gpgv-from-sq
When i try to install thunderbird 1:115.10.1-1, i get this error:
```
Unpacking thunderbird (1:115.10.1-1) over (1:115.9.0-1+b1
Package: libsequoia-octopus-librnp
Version: 1.8.1-2
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
/var/lib/dpkg/info/libsequoia-octopus-librnp.preinst contains:
#!/bin/sh
set -e
add_diversion() {
dpkg-divert --package libsequoia-octopus-librnp --add --rename \
--divert &qu
Control: retitle 979617 tcplay: new upstream version 3.3 (includes VeraCrypt
support)
I've just confirmed what Johannes said about tcplay 3.3 building easily
on debian. I uploaded 3.3-0.1 to unstable as an NMU to DELAYED/15,
after cleaning up the packaging a little bit.
I've imported all the hi
Source: tcplay
Version: 1.1-6
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
In looking at cleaning up the tcplay package in debian, i noticed that
the libtcplay package name doesn't match the SONAME of libtcplay.so.1.1
It looks like upstream hasn't actually been doing normal
Source: tcplay
Version: 1.1-6
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
libtcplay gets installed directly in /usr/lib, and tcplay.pc gets placed
in /usr/lib/pkgconfig. For modern, multiarch systems, these should
probably be placed in a different location.
We're also currently pat
Retitle: 979617 tcplay: new upstream version 3.3 (includes VeraCrypt support)
On Thu 2023-02-16 15:07:10 +0100, Johannes Truschnigg wrote:
> tc-play 3.3 seems to build fairly cleanly on bullseye from its tag/release
> tarball [0]. It'd be *really* nice to have in Debian to be able to handle
> Vera
Control: reopen 1069202
Control: found 1069202 0.8.0-3
The symlinks in the gpg-from-sq and gpgv-from-sq packages appear to
point in the wrong direction. That is, gpg-from-sq installs a symlink
at /usr/bin/gpg-sq, which refers to gpg. Instead, gpg-from-sq should
install a symlink at /usr/bin/gpg,
Package: elpa-rust-mode
Version: 0.4.0-2
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
File: /usr/share/emacs/site-lisp/elpa-src/rust-mode-0.4.0/rust-mode.el
When i enter rust-mode on a file that has no problems, i see the
following warnings in the emacs *Warning* buffer:
⛔ Warning (comp
Source: librust-sequoia-openpgp-dev
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
Hi all--
If i try building rust-sequoia-openpgp (e.g. using debuild -uc -us) as a
non-privileged user on a system that has some unnecessary dependencies
installed, i will sometimes get a failure during
Source: rust-base64
Version: 0.21.7-1
Severity: wishlist
X-Debbugs-Cc: Daniel Kahn Gillmor
rust-base64 has a new upstream version 0.22.0 available, with the
following subtle changes to the API since 0.21.7:
- `DecodeSliceError::OutputSliceTooSmall` is now conservative rather
than precise
Package: gpg-from-sq
Version: 0.8.0-1
Severity: wishlist
X-Debbugs-Cc: Daniel Kahn Gillmor
If i install gpg-from-sq, i'd expect it to satisfy any dependency that
exists for gpg. That means it should probably have a Provides: header.
Given that the current chameleon sources infer the beh
Package: gpgv-from-sq
Version: 0.8.0-1
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
If i install gpgv-from-sq, i'd expect it to satisfy any dependency that
exists for gpgv. That means it should probably have a Provides: header.
Given that the current chameleon sources infer the beh
Package: gpg-from-sq
Version: 0.8.0-1
Severity: grave
X-Debbugs-Cc: Daniel Kahn Gillmor
I did:
apt install gpg-from-sq
and i expected to run `gpg --version` and see the resultant info from
the chameleon.
Instead, i see:
bash: gpg: command not found
I'm seeing the same issue
Source: rust-sequoia-chameleon-gnupg
Version: 0.8.0-1
Severity: grave
X-Debbugs-Cc: Daniel Kahn Gillmor
trying to upgrade from sequoia-chameleon-gnupg 0.5.1-1 to
sequoia-chameleon-gnupg 0.8.0-1, i see this:
```
Selecting previously unselected package gpg-sq.
Preparing to unpack .../gpg
On Sat 2024-04-06 16:20:33 +0800, Sean Whitton wrote:
> Thanks! Just to note that I also had to add python3-gssapi as a b-d.
That sounds reasonable. thanks for taking care of that, Sean!
--dkg
signature.asc
Description: PGP signature
On Sat 2024-04-06 11:40:14 +0800, Sean Whitton wrote:
> On Thu 04 Apr 2024 at 06:37pm -04, Daniel Kahn Gillmor wrote:
>
>> On Wed 2024-04-03 13:03:19 +0800, Sean Whitton wrote:
>>> Thanks, but can you sign this off? Ty!
>>
>> Sure, attached. Let me know if you ne
On Thu 2024-04-04 15:28:34 -0400, Daniel Kahn Gillmor wrote:
> ssh-agent is a critical piece of infrastructure for my workflow, and i
> want it better integrated with my user session, which is managed by
> systemd's per-user login manager (`systemd --user`).
I'm attachin
Package: dunst
Version: 1.9.2-1
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
the dunst system --user service works well whenever i'm in a graphical
environment, but it produces a lot of noisy warnings, errors, and
complaints, especially when i log in from a tty instead of a grap
On Wed 2024-04-03 13:03:19 +0800, Sean Whitton wrote:
> Thanks, but can you sign this off? Ty!
Sure, attached. Let me know if you need anything different.
--dkg
From b522c1cc6201f75ab6103954016bbb719d4dd2fa Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor
Date: Tue, 30 Jan 2024 15
Package: kanshi
Version: 1.5.1-2
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
I'm using sway 1.9-1 with kanshi. When i plug in an external monitor,
kanshi matches it appropriately against my configuration, and it
configures the monitor appropriately.
However, when i do `swaymsg r
Package: openssh-client
Version: 1:9.7p1-4
Severity: wishlist
X-Debbugs-Cc: Daniel Kahn Gillmor
Tags: patch
Hi Debian OpenSSH maintainers!
ssh-agent is a critical piece of infrastructure for my workflow, and i
want it better integrated with my user session, which is managed by
systemd'
Package: openssh-client
Version: 1:9.7p1-4
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
Forwarded: https://github.com/openssh/openssh-portable/pull/479
Tags: patch
On a pure wayland system, without X11, openssh-askpass-gnome works just
fine.
But ssh-agent won't use it when passed t
tch is worth applying generally, but given the flux around mypy
typing, i would also be fine with just recording the output of mypy
--strict instead of failing hard on it.
--dkg
From b522c1cc6201f75ab6103954016bbb719d4dd2fa Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor
Date: Tue, 30
Package: chromium
Version: 122.0.6261.57-1
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
I regularly launch chromimum with --temp-profile to have a completely
isolated, throwaway browsing session.
I am experimenting with switching to wayland. To use chromium with
wayland, i need to launch
Package: openssh-client
Version: 1:9.7p1-2+b1
Severity: normal
Tags: patch
Forwarded: https://github.com/openssh/openssh-portable/pull/479
X-Debbugs-Cc: Daniel Kahn Gillmor
When using a wayland graphical environment without xwayland, at least
two different parts of OpenSSH decline to prompt the
Package: elpa-magit-forge
Version: 0.3.2-1
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
I'm trying to do some work on impass, which is publicly hosted on
salsa.debian.org.
From emacs, i'm using forge in my working copy of the impass git repo,
and i've configured ~/.gi
Package: wireplumber
Version: 0.4.17-1+b1
Severity: normal
X-Debbugs-Cc: Daniel Kahn Gillmor
I am trying to use wireplumber from the command line (or as a backend to
another controlling tool). the wireplumber package includes `wpctl`,
which appears to be the thing that i want to use, but there
Package: elpa-magit
Version: 3.3.0-3
Severity: normal
X-Debbugs-Cc: d...@fifthhorseman.net
Dear Maintainer,
I'm using emacs-pgtk 29.2+1-2, with magit.
I opened a revision controlled file in magit, and got the following
warnings in my *Messages* buffer:
⛔ Warning (comp): magit-utils.el:571:33: W
Package: kanshi
Version: 1.5.1-1
Severity: minor
X-Debbugs-Cc: d...@fifthhorseman.net
Dear Maintainer,
Reading the manual page for kanshi(1), i note that it has a SEE ALSO
reference to kanshictl(1). no such manual page or binary is shipped.
Looking at the upstream source, it appears to only be
Thanks for maintaining devscripts!
--dkg
From 6bed35a535962534883a5aa233cbbcbfc7b15624 Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor
Date: Thu, 14 Mar 2024 14:10:59 -0400
Subject: [PATCH] debsign: check gpg version with machine-parseable format
debsign currently tries to determine the vers
ebian/changelog
index f2851b483e..c51e93d091 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+libreswan (4.10-2+deb12u3) bookworm-security; urgency=medium
+
+ * Fix CVE 2024-2357 (Closes: #1066059)
+
+ -- Daniel Kahn Gillmor Tue, 12 Mar 2024 00:14:33 -0400
+
+libreswan (4
1 - 100 of 2408 matches
Mail list logo
