Bug#797623: opensaml2: transition needed for g++-5 ABIs

Russ Allbery writes: > Ferenc Wagner writes: > >> Thanks. Regarding xmltooling, We could as well do a regular upload >> replacing the liblog4cpp5-dev dependency of libxmltooling-dev with >> liblog4shib-dev. I only noticed this yesterday when building opensaml >

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Russ Allbery writes: > Ferenc Wagner writes: > >> That's great! Let's start with log4shib, another immediate BD of >> OpenSAML2, which also has a not-yet-packaged upstream release. I >> applied the DEP-14 transformation (branch renaming) to the Alioth

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Ferenc Wagner writes: > I'm doing OpenSAML itself tomorrow. I converted the Alioth repository to DEP-14 and pushed all my changes. Please review and upload if it's suitable. Preferably after log4shib_1.0.9-1 is in, I guess, so that it builds against that version. -- Thanks, Feri.

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Russ Allbery writes: > Ferenc Wagner writes: > >> Please wait a little, I'm packaging the new upstream anyway and will >> introduce this change soon (I'll need a sponsor, though). > > I should be able to help with sponsorship. That's great! Let's

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Luca BRUNO writes: >> On Tue, 01 Sep 2015 10:48:28 +0200 Ferenc Wagner wrote: >> >>> I'll package new upstream versions of the whole Shibboleth stack to >>> fix the outstanding OpenSAML security bug in unstable. >>> This will change the SO version

Bug#809764: [Debian-ha-maintainers] Bug#809764: Bug#809764: libqb6-dev and libqb-dev: error when trying to install together

Herbert Fortes (hpfn) writes: > "In case several development versions of a library exist, you may need > to use dpkg's Conflicts mechanism" I think the Policy means this between versions of the same library (eg. your libqb6-dev and a later libqb7-dev). But anyway, this is a more broader problem

Bug#804590: [Debian-ha-maintainers] Bug#804590: redhat-cluster: build-depends on libcorosync-dev which is no longer built

Jonathan Wiltshire writes: > On Mon, Dec 14, 2015 at 02:22:54AM +0100, Ferenc Wagner wrote: > >> The redhat-cluster package will be removed from the archive, we don't >> intend to fix it. > > Here's the hit list then: [gfs2-utils, lvm2, ocfs2-tools] That

Bug#804590: [Debian-ha-maintainers] Bug#804590: redhat-cluster: build-depends on libcorosync-dev which is no longer built

gregor herrmann writes: > On Mon, 09 Nov 2015 20:39:32 +0100, Emilio Pozuelo Monfort wrote: > >> Your package build-depends on libcorosync-dev which is no longer >> built by corosync. Please switch to the appropriate packages to >> build against the new version. > > Afer replacing libcorosync-dev

Bug#802410: [Debian-ha-maintainers] Bug#802410: openais: FTBFS: error: corosync/coroipc_types.h: No such file or directory

Fernando Seiti Furusato writes: > It also fails on ppc64el and other architectures Hi Fernando, We're planning to drop the openais package altogether, replacing it by Corosync 2. The new HA stack builds DLM, cLVM and GFS directly on Corosync. -- Regards, Feri.

Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851)

Salvatore Bonaccorso writes: > On Thu, Sep 24, 2015 at 08:54:08AM +0200, Ferenc Wagner wrote: > >> Salvatore Bonaccorso writes: >> >>> Any news for the fix to unstable for CVE-2015-0851? >> >> Sorry, I got bogged down in another department. It isn'

Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851)

Salvatore Bonaccorso writes: > Any news for the fix to unstable for CVE-2015-0851? Sorry, I got bogged down in another department. It isn't forgotten, though, I expect to tend to it in a couple of days. -- Regards, Feri.

Bug#797623: Bug#797625: xmltooling: transition needed for g++-5 ABIs

Hi, Thanks for the detailed report. Right now I'm doing urgent work on HA packages, but once that's done, I'll package new upstream versions of the whole Shibboleth stack to fix the outstanding OpenSAML security bug in unstable. This will change the SO version of xml-security-c and probably all

Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851)

We're already working on this with the Security Team. I wonder if I should prepare new packages (for {wheezy,jessie}-security) with the changelogs closing this bug. Or should it be closed by the unstable upload of 1.5.5? The proposed security uploads can be found at http://apt.niif.hu/CVE-2015-0

Bug#768922: [Debian-ha-maintainers] pacemaker in jessie

franz schaefer writes: >> As many of us, see >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768922. > > thanks for the link. so from the discussion there the only reason that > libqb0 is not newer is that it did not work on kfreebsd which is no longer > important as this is droped from bee

Bug#768618: [Debian-ha-maintainers] Bug#768922: Bug#768618: pacemaker: FTBFS in jessie: build-dependency not installable: libqb-dev (>= 0.16.0.real)

Simon Horman writes: > On Mon, Jan 19, 2015 at 09:26:36AM +0900, Christian Balzer wrote: > >> Meanwhile, here in what it what we tenuously call reality one can observe >> the following things: >> >> 1. Pacemaker broken in Jessie for more than 2 months now. >> 2. Silence on this bug for more tha

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

Thanks much. Unblock request filed as #768610. -- Feri. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

Andreas Beckmann and Bernd Zeimetz writes: > Breaks: python-pywbem (<< 0.8.0~dev650-1~) > Replaces: python-pywbem (<< 0.8.0~dev650-1~) OK. Footnote 53 brought up an example with a file being moved between related packages, which made me read more into Breaks+Replaces than there is. Thanks for

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

the only scenario I can think of which exhibits this problem. > On 2014-11-06 11:00, Ferenc Wagner wrote: > >> Of course the above problem could be declared in the metadata of >> sblim-wbemcli, though 7.6 does not seem to apply here. 7.4 (Conflicts) >> seems more appropr

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

Andreas Beckmann writes: > during a test with piuparts I noticed your package fails to upgrade from > 'wheezy'. Hi, Something is strange here, as sblim-wbemcli was never part of wheezy, thus it is not supposed to be upgraded from there. > It installed fine in 'wheezy', then the upgrade to 'jes

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner writes: > Ferenc Wagner writes: > >> Ferenc Wagner writes: >> >>> Bernd Zeimetz writes: >>> >>>>> I'm preparing a new upload of sblim-wbemcli. Shall I rename the >>>>> contained wbemcli binary, or do you st

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner writes: > Ferenc Wagner writes: > >> Bernd Zeimetz writes: >> >>>> I'm preparing a new upload of sblim-wbemcli. Shall I rename the >>>> contained wbemcli binary, or do you still plan letting me use that >>>> name? >

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner writes: > Bernd Zeimetz writes: > >>> I'm preparing a new upload of sblim-wbemcli. Shall I rename the >>> contained wbemcli binary, or do you still plan letting me use that >>> name? >> >> given the low popcon and pywebem not

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Bernd Zeimetz writes: >> I'm preparing a new upload of sblim-wbemcli. Shall I rename the >> contained wbemcli binary, or do you still plan letting me use that >> name? > > given the low popcon and pywebem not being devleoped by upstream > anymore, I think it would be okay for you to take the nam

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Hi Bernd, I'm preparing a new upload of sblim-wbemcli. Shall I rename the contained wbemcli binary, or do you still plan letting me use that name? -- Regards, Feri. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...

Bug#697676: lvm2: cLVM binary package is missing

Julien Cristau writes: > Somebody would have to properly maintain its dependencies in debian > (redhat-cluster, and by extension gfs2-utils, corosync, ...). They're > the reason the clvm package had to go. Hi Julien, We're running clvm over Corosync in wheezy (were using redhat-cluster earlier

Bug#691439: [Pkg-freeipmi-devel] Bug#691439: Acknowledgement (libfreeipmi12: copyright file missing after upgrade (policy 12.5))

Andreas Beckmann writes: > That happens during the sid -> experimental upgrade, not squeeze->wheezy. > Same problem with libipmidetect0. As downloaded from packages.debian.org, libfreeipmi12_1.1.5-4_amd64.deb and libipmidetect0_1.1.5-4_amd64.deb contain symlinks, not directories under usr/share/

Bug#691439: [Pkg-freeipmi-devel] Bug#691439: Acknowledgement (libfreeipmi12: copyright file missing after upgrade (policy 12.5))

Ferenc Wagner writes: > Andreas Beckmann writes: > >> That happens during the sid -> experimental upgrade, not squeeze->wheezy. >> Same problem with libipmidetect0. > > As downloaded from packages.debian.org, libfreeipmi12_1.1.5-4_amd64.deb > and libipmi

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Hi Bernd, Although I've already lost any hope of getting sblim-wbemcli into wheezy due to this bug (I didn't know its freeze exception would expire), I'd still appreciate your feedback on the matter, if you can spare the time. -- Thanks, Feri. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Bernd Zeimetz writes: > Could you summarize the advantages/disadvantages of sblim-wbemcli over > the python version? Is there a common interface? Hi, I can't say much about the Python version, because it refuses to work with our storage: $ wbemcli.distrib our.storage.niif.hu -n /root/hpq --no-

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner writes: > Ralf Treinen writes: > >> Here is a list of files that are known to be shared by both packages >> >> /usr/bin/wbemcli >> /usr/share/man/man1/wbemcli.1.gz > > Hi, > > While in my opinion sblim-wbemcli ships the more genuine wb

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ralf Treinen writes: > Here is a list of files that are known to be shared by both packages > > /usr/bin/wbemcli > /usr/share/man/man1/wbemcli.1.gz Hi, While in my opinion sblim-wbemcli ships the more genuine wbemcli binary (leading the search results, packaged similarly by other distros),

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

"Scott Cantor" writes: >> Note that we can't just use umask 177 in the Debian version of this script >> since Debian runs shibd as a non-root user and then won't be able to read >> the certificate. For Debian, we should set the group ownership to the >> shibd user we create and make the file gro

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

Ferenc Wagner writes: > Upstream fixed this by using umask 177. Russ, How should we proceed with this bug? I'm not sure it warrants a security update, so I didn't want to push this patch. Thanks, Feri. >From 8012fbf3cfb48df91ff26dc30cda23fb739386e7 Mon Sep 17 00:00:00 2

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

Upstream fixed this (with amazing speed -- thanks, Scott!) by using umask 177. This is stricter than requested, as it affects the certificate as well, not only the key. Dominic, is this acceptable for you? (Btw. I recommend using the backported packages, they are more mature in several respects

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

forwarded 571631 https://bugs.internet2.edu/jira/browse/SSPCPP-106 thanks Dominic Hargreaves writes: > # ls -l sp* > ls: cannot access sp*: No such file or directory > # shib-keygen > [...] > # ls -l sp* > -rw-r--r-- 1 root root 1164 Feb 26 15:39 sp-cert.pem > -rw-r--r-- 1 root root 1675 Feb 26

Bug#499922: Even more broken, unfortunately

Hi, Here's what happens on a freshly installed Squeeze system: nfs:/etc/network# dpkg --status ifenslave-2.6 Package: ifenslave-2.6 Status: unknown ok not-installed Priority: optional Section: net nfs:/etc/network# find -name "ifenslave*" nfs:/etc/network# aptitude install ifenslave-2.6 Reading p

Bug#562636: libshibsp4: shibd wont start

Jason Cormie writes: > uadsmc11:~# /etc/init.d/shibd restart > shibd error: unable to run config check as user > Restarting Shibboleth 2 daemon: /usr/sbin/shibd: symbol lookup error: > /usr/lib/libshibsp.so.4: undefined symbol: > _ZNK10xmltooling27AbstractDOMCachingXMLObject6setDOMEPN11xercesc

Bug#549936: breaks Shibboleth SPs: IdPs with KeyDescriptor use="signing" are broken

Faidon Liambotis writes: > Russ Allbery wrote: > >> Unfortunately, I'm both sick at the moment and my main computer is >> dead with hardware failure, so I can't easily pursue it at the moment. >> If someone else could, that would be great. I had proposed the needed >> changes for opensaml2 for t

Bug#508434: Fixed bugs

Matthew Johnson writes: > Hi, I have just uploaded 1.8.9-2 which I hope fixes these bugs. Please > could you check the package ASAP to ensure that it does. Hi, I confirm that 1.8.9-2 fixes this bug. Thank you very much for the quick response! -- Cheers, Feri. -- To UNSUBSCRIBE, email to d

Bug#508434: ipmitool: Several init script problems due to wrong pidfile name

Package: ipmitool Version: 1.8.9-1 Severity: serious Tags: patch Justification: Policy 9.3.2 Hi, According to man ipmievd: pidfile= Save process ID to this file when in daemon mode. Defaults to /var/run/ipmievd.pidN (where N is the ipmi device n

Bug#504721: Possible reason for serial console misdetection

Jérémy Bobbio <[EMAIL PROTECTED]> writes: > On Tue, Dec 02, 2008 at 10:50:26PM +0100, Frans Pop wrote: > > As we are not interested in the settings of the serial line or by the > state of the VT, we can just omit the struct declarations and be fine > with a dummy buffer. Don't you risk overflowin

Bug#505237: Fixed in Lenny

found 505237 5.4.1~dfsg-11 thanks Hi, yes, apparently this bug is present in Lenny,too . On a clean install: [EMAIL PROTECTED]:~# aptitude install snmpd [...] Setting up snmpd (5.4.1~dfsg-11) ... Starting network management services: snmpd. [...] [EMAIL PROTECTED]:~# ps $(pgrep snmpd) PID TTY

Bug#505237: Possible patch

Patrick Matthäi <[EMAIL PROTECTED]> writes: > Ferenc Wagner schrieb: >> Patrick Matthäi <[EMAIL PROTECTED]> writes: >> >>> I attached a diff which might fix it, could you please test it? >> >> Yes, this is what I use since the last upgrade. H

Bug#505237: Possible patch

Patrick Matthäi <[EMAIL PROTECTED]> writes: > I attached a diff which might fix it, could you please test it? Yes, this is what I use since the last upgrade. However, I don't think it's a good idea to use --oknodo on restart and reload. The missing process is a genuine error in those cases, isn

Bug#505237: /etc/init.d/snmpd start reports error if already running

Package: snmpd Version: 5.2.3-7etch4 Severity: serious Justification: Policy 9.3.2 Hi, The start action shouldn't fail if the service is already running: # invoke-rc.d snmpd start Starting network management services:invoke-rc.d: initscript snmpd, action "start" failed. This happens with TRAPD

Bug#453123: [Pkg-net-snmp-devel] Bug#453123: debconf interaction not closed

>> Of course not leaking file descriptors is a good practice, but it >> isn't the responsibility of all the daemons of the world to close all >> possible file descriptors their parent might have leaked to them (see >> for example http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486826#37). > > I do

Bug#503070: open-iscsi: init script not idempotent

Package: open-iscsi Version: 2.0.870~rc3-0.2 Severity: serious Justification: Policy 9.3.2 Hi, It is debatable what "must behave sensibly" mean, but in case of open-iscsi repeated start shouldn't result in error in my opinion: [EMAIL PROTECTED]:~$ sudo /etc/init.d/open-iscsi start Starting iSCSI

Bug#496810: nsca bugs

Alexander Wirt <[EMAIL PROTECTED]> writes: > Thomas Viehmann schrieb am Wednesday, den 10. September 2008: > >> thanks for looking into a fix for #496810. >> Regarding #466261: If it's a patch of only a couple of lines and >> low-risk, I'd think it'd be well worth it (though the release-team in CC

Bug#496810: simple patch proposal

tag 496810 +patch thanks Hi, I think simply including --oknodo like below fixes this problem: --- debian/nsca.init.orig 2008-09-07 15:44:19.280906007 +0200 +++ debian/nsca.init 2008-09-07 16:00:39.378879122 +0200 @@ -55,12 +55,12 @@ if [ ! -d "/var/run/nagios" ]; then

Bug#493899: what about splashy and directvnc and Lenny now?

Hi, I'm just curious: does this fix mean that #462626 should be reopened, that is, splashy is broken again? And do you expect to ship the fixed version (1.0.1-11) in Lenny? The same problem affects directvnc, so I'm forced to run it under strace now... -- Thanks, Feri. -- To UNSUBSCRIBE, em

Bug#495954: struggling to reproduce

Hi, I installed a new machine very similar to the original one. I couldn't install exactly the same packages, a couple of locally installed ones aren't available anymore. But the diff of the /var/lib/dpkg/status files were really small. Then I replaced /var/lib/dpkg/status and /var/lib/apt/pkgs

Bug#495954: slapd: Upgrade to Lenny failed: libldap_r-2.3.so.0 missing

Daniel Burrows <[EMAIL PROTECTED]> writes: > On Sat, Aug 23, 2008 at 08:30:14PM +0200, Ferenc Wagner <[EMAIL PROTECTED]> > was heard to say: >> Daniel Burrows <[EMAIL PROTECTED]> writes: >>> 2. A typescript of the upgrade with "-o Debug::pkgDpk

Bug#495954: slapd: Upgrade to Lenny failed: libldap_r-2.3.so.0 missing

Daniel Burrows <[EMAIL PROTECTED]> writes: > On Fri, Aug 22, 2008 at 06:28:05PM +0200, Ferenc Wagner <[EMAIL PROTECTED]> > was heard to say: >> severity 495954 critical >> thanks >> >> This bug "makes unrelated software on the system break".

Bug#411787: Any update on this?

Hi, can anybody provide me with some information on the status of this bug? GFS is unusable in Etch because of this. Will the attached patch be included? -- Regards, Feri. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]