Package: gnome-shell
Version: 48~beta-4
Severity: important
Dear Maintainer,
gnome-shell 48~beta-4 cannot work properly on GM45 platforms (e.g. Thinkpad
X200) on either wayland or x11 mode, with "Failed to setup: Unable to create a
suitable EGL context", but works fine on Ivy Bridge platforms.
U
This issue should already be fixed on psi-plus 1.4.1456-2.1, which could run
well atop wayland without unsetting WAYLAND_DISPLAY.
Package: gnat
Severity: normal
Dear Maintainer,
gnat-14 is already available for trixie/sid, but package gnat remains depending
on gnat-13 and is conflict with gnat-14.
Is it possible to update package gnat to be compatible with gnat-14 on
trixie/sid?
-- System Information:
Debian Release: trix
Confirmed: after granting cap_net_raw=ep to /usr/bin/netselect , netselect-apt
with root checking commented out works well.
I wish this could be implemented in the next release.
Package: ecryptfs-utils
Version: 111-6
Severity: wishlist
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
* What exactly did you do (or not do) that was effective (or
ineffective)?
* What was the outcome of this acti
Confirmed on openssh-client 1:9.4p1-1, ssh-agent seems not going to pick its
dead children processes with wait(), no matter how they die. For example,
running `ssh-add -s /usr/lib/x86_64-linux-gnu/opensc-pkcs11.so` with a smart
card present will make ssh-agent spawn a ssh-pkcs11-helper to handle
Package: gdm3
Version: 45~beta-1
Severity: normal
Dear Maintainer,
As suggested in https://gitlab.gnome.org/GNOME/gnome-control-center/-/issues/22
I have been setting /org/gnome/settings-daemon/plugins/power/sleep-inactive-
ac-timeout to 0 for gdm3 to prevent it from suspending the computer when
The fix
https://patchwork.freedesktop.org/patch/msgid/20230804084600.1005818-1-jani.nik...@intel.com
has been merged to upstream and backported to 6.4.13, so it is available in
linux-image-6.4.0-4-amd64_6.4.13-1, and I have confirmed that this bug is fixed
on this version.
> Control: tags -1 + moreinfo
>
> Hi
>
> On Wed, Aug 09, 2023 at 11:26:01AM +0800, Mad Horse wrote:
>> The bug has been reported to upstream (
>> https://gitlab.freedesktop.org/drm/intel/-/issues/8991 ), and a fix
>> is available there, though it may need backport
The bug has been reported to upstream (
https://gitlab.freedesktop.org/drm/intel/-/issues/8991 ), and a fix is
available there, though it may need backport.
Further inspection shows that this oops is caused by
intel_display_device_probe() returning NULL in
intel_device_info_driver_create() when Intel HD Graphics P4000
(PCI:8086:016a) is probed, which is further caused by
INTEL_IVB_Q_IDS(NULL) (struct { u32 devid; const struct
intel_display_device_
The kernel log in the first report seems to be truncated. Here is a full log:
[ 0.00] Linux version 6.4.0-1-amd64 (debian-ker...@lists.debian.org)
(gcc-13 (Debian 13.1.0-9) 13.1.0, GNU ld (GNU Binutils for Debian)
2.40.90.20230720) #1 SMP PREEMPT_DYNAMIC Debian 6.4.4-1 (2023-07-23)
[
Package: src:linux
Version: 6.4.4-1
Severity: important
Dear Maintainer,
i915 used to work well on my Intel HD Graphics P4000 in an Intel(R) Xeon(R) CPU
E3-1225 V2 when running Linux kernel 6.3.0-1 (6.3.7-1) and older, but on
6.4.4-1, it will oops for NULL pointer dereference as the attached kern
This issue seems to only occur when running psi-plus under wayland. It will not
occur when only X (either Xorg, Xwayland by running `WAYLAND_DISPLAY=""
psi-plus` or ssh-forwarded X) is available.
Package: firejail-profiles
Version: 0.9.70-1
Severity: normal
Dear Maintainer,
Debian have patched the current transmission to fit OpenSSL 3.0, but in
order
to use the legacy RC4 algorithm, ossl-modules/legacy.so should be able
to load
at runtime, otherwise Debian-patched transmission programs
This bug should have been fixed in pidgin 2.14.10-1 since it should
contain https://keep.imfreedom.org/pidgin/pidgin/rev/ea52fcc50e50 , as
shown in https://keep.imfreedom.org/pidgin/pidgin/graph/594d72369304 .
This bug has been forwarded to mozilla as
https://bugzilla.mozilla.org/show_bug.cgi?id=1772976 , which needs
approval to be publicly accessible.
Package: firefox-esr
Version: 91.10.0esr-1
Severity: normal
Dear Maintainer,
Although permanent certificate exceptions cannot be added from private
windows,
existing permanent certificate exceptions once added from normal mode
used to
be effective in private windows under the same profile in p
There is already a fix (
https://keep.imfreedom.org/pidgin/pidgin/rev/ea52fcc50e50 ) on pidgin's
repository, although the approach is different.
The temporary walkaround could be using "old-ssl" or bosh on XMPP accounts,
because their early error-handlings avoid (js->srv_rec).
This issue should occur when jabber_login_connect() fails and calls
jabber_login_callback() with an error.
在 2022/5/23 16:00, Mad Horse 写道:
This is because in jabber_login_callback(), when an error occurs
(source < 0),
if (js->srv_rec != NULL), it will report the error an
Package: pidgin
Version: 2.14.9-2
Severity: normal
Dear Maintainer,
The current pidgin cannot resume interrupted XMPP connection if no srv_rec
available (e.g. when using tor as proxy so no srv_rec will be obtained
from DNS
in the first place).
This is because in jabber_login_callback(), when
Currently I walk around this issue by adding "whitelist
/run/avahi-daemon/" to my ~/.config/firejail/whitelist-run-common.local,
but I doubt whether it is appropriate to fix this issue by adding a
similar rule to /etc/firejail/whitelist-run-common.inc
Package: firejail-profiles
Version: 0.9.68-3
Severity: normal
Dear Maintainer,
I find that I cannot access a web server running in my local lan with its
mDNS domain name with firefox-esr running inside firejail while I can with
firefox-esr running without firejail. This problem also applies to f
Upstream issue
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/907
is related to this bug, and it is fixed with
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/5402a7217964205aa6041324fa0fd393bfbb4838
A patch like the attached one should be able to fix this problem.diff -Nrup src/core/dhcp/nm-dhcp-utils.c.orig src/core/dhcp/nm-dhcp-utils.c
--- "src/core/dhcp/nm-dhcp-utils.c.orig" 2022-03-03 13:44:26
+++ "src/core/dhcp/nm-dhcp-utils.c" 2022-03-03 13:44:56
@@ -876,7 +876,7 @@ nm_dhcp_utils_merge_
Package: network-manager
Version: 1.35.91-1
Severity: important
Dear Maintainer,
network-manager 1.35.91-1 and 1.35.92-1 will abort if DHCPv6 server sends
multiple IPv6 addresses,( as under a default-configured openwrt router )
because
in this case, nm_dhcp_utils_merge_new_dhcp6_lease() would
Package: .
Version: 1.35.91-1
Severity: important
Dear Maintainer,
network-manager 1.35.91-1 and 1.35.92-1 will abort if DHCPv6 server sends
multiple IPv6 addresses,( as under a default-configured openwrt router )
because
in this case, nm_dhcp_utils_merge_new_dhcp6_lease() would call
nm_l3_con
you have any idea about these?
Kind regards,
Mad Horse
On 2022/1/15 04:47, Reiner Herrmann wrote:
Hi Mad Horse,
On Thu, Jan 13, 2022 at 05:07:38PM +0800, Mad Horse wrote:
After upgraded to 97.0.4692.71-0.1, Chromium running inside firejail can no
longer play sound (e.g. when playing an online
Package: firejail-profiles
Version: 0.9.66-2
Severity: normal
Dear Maintainer,
After upgraded to 97.0.4692.71-0.1, Chromium running inside firejail can no
longer play sound (e.g. when playing an online video), while bare Chromium
can. It is shown with PulseAudio Manager that the Chromium running
On 2021/12/14 21:28, Guillem Jover wrote:
Hi!
On Tue, 2021-12-14 at 21:00:40 +0800, Mad Horse wrote:
Package: dpkg
Version: 1.21.1
Severity: important
On my system, /var/lib/dpkg is an dedicated file system mounted there, so
there
is an directory /var/lib/dpkg/lost+found, and
Package: dpkg
Version: 1.21.1
Severity: important
Dear Maintainer,
On my system, /var/lib/dpkg is an dedicated file system mounted there,
so there
is an directory /var/lib/dpkg/lost+found, and fixup_misplaced_alternatives()
within dpkg.postinst will try to "fix" it up, causing upgrade from dpk
Package: pidgin
Followup-For: Bug #995370
Dear Maintainer,
This bug may be due to another related issue which need to be fixed in
the same
time but not. The way to fix it is attached.
With the old logic prior to
https://keep.imfreedom.org/pidgin/pidgin/rev/f25ce9376564 ,
the bug may not break ou
Currently transmission-gtk could be run with firejail, and I can use
transmission-gtk's profile to run transmission-daemon, customized with
such transmission-gtk.local:
private-bin transmission-daemon
noblacklist ${HOME}/.config/transmission-daemon
whitelist ${HOME}/.config/transmission-daemon
Package: firejail
Version: 0.9.64-1
Severity: normal
Dear Maintainer,
Executing transmission-cli or transmission-daemon with firejail results
following error:
/run/firejail/lib/fcopy: error while loading shared libraries:
libpcre2-8.so.0:
cannot open shared object file: No such file or direct
These defunct gdm-session-worker processes are in fact for
[pam/gdm-launch-environment].
Package: ncat
Version: 7.80+dfsg1-5
Severity: normal
Dear Maintainer,
When using ncat to connect a target server via an intermediate SOCKS server
(either 4 or 5), If the initial replies from the target server (e.g. the
banner
line sent by an ssh server) is occasionally attached after the response
Package: ecryptfs-utils
Version: 111-5
Severity: important
Dear Maintainer,
0) Use ecryptfs-setup-private to setup a Private directory in a user
account.
1) After a fresh boot, the first login authenticated with the password
to that
user account (either via gdm3, via console, or via ssh), increm
Package: gdm3
Version: 3.36.2-1
Severity: normal
Dear Maintainer,
Sometimes defunct gdm-session-worker processes may appear after logging out
from a gnome session, which usually lasts several hours, but sometimes
logging
out from a gnome session lasting only one minute can trigger this
phenomenon
Package: fcitx-rime
Version: 0.3.2-7
Severity: important
Dear Maintainer,
When switching to fcitx-rime, fcitx crashes.
Trace can be retrieved by running with $ fcitx -D:
(ERROR-2559744 ime.c:432) fcitx-keyboard-in-tel-kagapa already exists
(ERROR-2559744 ime.c:432) fcitx-keyboard-cm-mmuock alre
Package: rkhunter
Version: 1.4.6-7
Severity: important
Tags: upstream
For two weeks now rkhunter is reporting an installed rootkit on my machines. It
started with the desktop computer, now also the "desktop" VM. The reports are
the same:
Warning: The following processes are using suspicious files
Furthermore, with --private=/foo/bar, how can I access the encrypted directories
under the real ${HOME}, which is even not introduced into jail anymore with
--private=/foo/bar ?
在 2020/1/31 下午2:08, Mad Horse 写道:
> With --private=/foo/bar, configurations store under real ${HOME} beco
Sorry, it is --whitelist which also conflict with --allusers that appears
in most shipped profiles.
在 2020/1/25 下午10:39, Reiner Herrmann 写道:
> On Sat, Jan 25, 2020 at 10:30:50PM +0800, Mad Horse wrote:
>>> Warning: allusers option disabled by private or whitelist option
>> Becau
efault profile).
Besides, although /home/.fscrypt appears inside jail, a tmpfs is mounted
atop it, and --whitelist cannot be used to mount the real /home/.fscrypt
there, for /home is
not permitted top directory.
在 2020/1/31 上午7:55, Reiner Herrmann 写道:
> On Sat, Jan 25, 2020 at 10:45:08PM +
so widely in
officially shipped profiles, so I have to inspect them with command like
> $ firejail --profile=/etc/firejail/firefox.profile /bin/bash
在 2020/1/25 下午10:39, Reiner Herrmann 写道:
> On Sat, Jan 25, 2020 at 10:30:50PM +0800, Mad Horse wrote:
>>> Warning: allusers op
5:11PM +0800, Mad Horse wrote:
>> Sadly they have no effect, because a tmpfs is mounted on /home, masked
>> over /home/.fscrypt .
>> A case like this can usually be resolved by adding
>>> mkdir
>>> whitelist
>> in profiles, but unfortunately, "mkdir&
le under current version of firejail.
在 2020/1/25 下午7:48, Reiner Herrmann 写道:
> Hi,
>
> On Tue, Jan 21, 2020 at 04:42:16PM +0800, Mad Horse wrote:
>> In order to access unlocked files and directories encrypted with
>> fscrypt, their
>> protectors. which lies under /.fs
Package: firejail
Version: 0.9.62-2
Severity: normal
Dear Maintainer,
In order to access unlocked files and directories encrypted with
fscrypt, their
protectors. which lies under /.fscrypt of root and each FS with this feature
deployed, should also be accessible.
Inside firejail, /.fscrypt could
Package: firejail-profiles
Version: 0.9.62-2
Severity: normal
Dear Maintainer,
On Debian GNU/Linux, the configuration of transmission-daemon lies in
~/.config/transmission-daemon instead of ~/.config/transmission, which means
~/.config/transmission-daemon should be whitelisted in the profile for
Package: firejail-profiles
Version: 0.9.62-2
Severity: normal
Dear Maintainer,
In current profiles for firefox (maybe for other browsers, too),
/usr/share/webext/ is not whitelisted,
causing system-wide add-ons installed via apt and dpkg cannot get loaded by
firefox running under firejail.
A 'wh
Package: systemd
Version: 243-5
Severity: important
Dear Maintainer,
The traditional way to change the default umask (change /etc/login.defs with
pam_umask enabled in /etc/pam.d/... ) is broken,
for on my does not honor it in user units.
This is a bug known by the upstream (
https://github.com/s
Package: xserver-xorg-input-evdev
Version: 1:2.10.6-1
Severity: important
Since today the USB keyboard and mouse no longer work as soon as X starts.
Magic SysRq still works, but any other input is ignored. This is the same
either if I use a login manager or start X from the command line (no differ
Source: linux
Version: 5.3.0-1
Severity: wishlist
Dear Maintainer,
A lot of device drivers introduced after Linux 5 is not built even in
5.3.7-1,
including
> # CONFIG_MISC_ALCOR_PCI is not set
> # CONFIG_USB_NET_AQC111 is not set
I wish much newly introduced drivers could be built along with th
unt directly.
Best regard,
Mad Horse
This issue is confirmed to exist in the testing weekly build generated
on Sep. 2nd 2019.
Package: debian-installer
Severity: important
Dear Maintainer,
The package "cryptsetup-initramfs" will not be installed even root file
system
is configured to be on a logical volume on an LVM PV inside a LUKS,
making the
installed system stuck in initramfs, unless we manually install cryptsetup-
Package: debian-installer
Severity: important
Dear Maintainer,
The package "fuse" installation failed on postinst when installing with the
weekly build testing installer generated on Aug. 26th, after the "tasksel"
step, and installation can hardly continue, unless we fix it manually, by
chrooting
Package: php5-intl
Version: 5.3.3-7+squeeze3
Severity: important
After installing php5-intl Apache2 will no longer start but crashes with a seg
fault.
[notice] seg fault or similar nasty error detected in the parent process
I do not get any useful information from the core dump.
-- System Inf
58 matches
Mail list logo
