Your message dated Thu, 29 Feb 2024 22:03:18 +0000
with message-id <e1rfouo-00dbjm...@fasolo.debian.org>
and subject line Bug#1063258: fixed in pkcs11-helper 1.29.0-2.1
has caused the Debian Bug report #1063258,
regarding pkcs11-helper: NMU diff for 64-bit time_t transition
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1063258: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063258
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: pkcs11-helper
Version: 1.29.0-2
Severity: serious
Tags: patch pending sid trixie
Justification: library ABI skew on upgrade
User: debian-...@lists.debian.org
Usertags: time-t
NOTICE: these changes must not be uploaded to unstable yet!
Dear maintainer,
As part of the 64-bit time_t transition required to support 32-bit
architectures in 2038 and beyond
(https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified
pkcs11-helper as a source package shipping runtime libraries whose ABI
either is affected by the change in size of time_t, or could not be
analyzed via abi-compliance-checker (and therefore to be on the safe
side we assume is affected).
To ensure that inconsistent combinations of libraries with their
reverse-dependencies are never installed together, it is necessary to
have a library transition, which is most easily done by renaming the
runtime library package.
Since turning on 64-bit time_t is being handled centrally through a change
to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is
important that libraries affected by this ABI change all be uploaded close
together in time. Therefore I have prepared a 0-day NMU for pkcs11-helper
which will initially be uploaded to experimental if possible, then to
unstable after packages have cleared binary NEW.
Please find the patch for this NMU attached.
If you have any concerns about this patch, please reach out ASAP. Although
this package will be uploaded to experimental immediately, there will be a
period of several days before we begin uploads to unstable; so if information
becomes available that your package should not be included in the transition,
there is time for us to amend the planned uploads.
-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.2.0-39-generic (SMP w/32 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE,
TAINT_UNSIGNED_MODULE
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru pkcs11-helper-1.29.0/debian/changelog
pkcs11-helper-1.29.0/debian/changelog
--- pkcs11-helper-1.29.0/debian/changelog 2023-08-21 10:11:30.000000000
-0300
+++ pkcs11-helper-1.29.0/debian/changelog 2024-02-05 18:47:42.000000000
-0300
@@ -1,3 +1,10 @@
+pkcs11-helper (1.29.0-2.1) experimental; urgency=medium
+
+ * Non-maintainer upload.
+ * Rename libraries for 64-bit time_t transition.
+
+ -- Lucas Kanashiro <kanash...@debian.org> Mon, 05 Feb 2024 18:47:42 -0300
+
pkcs11-helper (1.29.0-2) unstable; urgency=medium
* Team upload
diff -Nru pkcs11-helper-1.29.0/debian/control
pkcs11-helper-1.29.0/debian/control
--- pkcs11-helper-1.29.0/debian/control 2023-08-21 10:08:48.000000000 -0300
+++ pkcs11-helper-1.29.0/debian/control 2024-02-05 18:47:42.000000000 -0300
@@ -20,7 +20,7 @@
Provides: libpkcs11-helper-dev
Conflicts: libpkcs11-helper-dev
Depends: libjs-jquery,
- libpkcs11-helper1 (= ${binary:Version}),
+ libpkcs11-helper1t64 (= ${binary:Version}),
libssl-dev,
${misc:Depends}
Description: library that simplifies the interaction with PKCS#11
@@ -37,7 +37,10 @@
attributes are usually vendor specific, and 99% of application need to
access existing objects in order to perform signature and decryption.
-Package: libpkcs11-helper1
+Package: libpkcs11-helper1t64
+Provides: ${t64:Provides}
+Replaces: libpkcs11-helper1
+Breaks: libpkcs11-helper1 (<< ${source:Version})
Architecture: any
Multi-Arch: same
Pre-Depends: ${misc:Pre-Depends}
diff -Nru pkcs11-helper-1.29.0/debian/libpkcs11-helper1.install
pkcs11-helper-1.29.0/debian/libpkcs11-helper1.install
--- pkcs11-helper-1.29.0/debian/libpkcs11-helper1.install 2023-08-21
10:08:48.000000000 -0300
+++ pkcs11-helper-1.29.0/debian/libpkcs11-helper1.install 1969-12-31
21:00:00.000000000 -0300
@@ -1,2 +0,0 @@
-usr/lib/*/lib*.so.*
-usr/share/man
diff -Nru pkcs11-helper-1.29.0/debian/libpkcs11-helper1.symbols
pkcs11-helper-1.29.0/debian/libpkcs11-helper1.symbols
--- pkcs11-helper-1.29.0/debian/libpkcs11-helper1.symbols 2023-08-21
10:08:48.000000000 -0300
+++ pkcs11-helper-1.29.0/debian/libpkcs11-helper1.symbols 1969-12-31
21:00:00.000000000 -0300
@@ -1,85 +0,0 @@
-libpkcs11-helper.so.1 libpkcs11-helper1 #MINVER#
-* Build-Depends-Package: libpkcs11-helper1-dev
- pkcs11h_addProvider@Base 1.05
- pkcs11h_certificate_create@Base 1.05
- pkcs11h_certificate_decrypt@Base 1.05
- pkcs11h_certificate_decryptAny@Base 1.05
- pkcs11h_certificate_decryptAny_ex@Base 1.28
- pkcs11h_certificate_decrypt_ex@Base 1.28
- pkcs11h_certificate_deserializeCertificateId@Base 1.05
- pkcs11h_certificate_duplicateCertificateId@Base 1.05
- pkcs11h_certificate_ensureCertificateAccess@Base 1.05
- pkcs11h_certificate_ensureKeyAccess@Base 1.05
- pkcs11h_certificate_enumCertificateIds@Base 1.05
- pkcs11h_certificate_enumTokenCertificateIds@Base 1.05
- pkcs11h_certificate_freeCertificate@Base 1.05
- pkcs11h_certificate_freeCertificateId@Base 1.05
- pkcs11h_certificate_freeCertificateIdList@Base 1.05
- pkcs11h_certificate_getCertificateBlob@Base 1.05
- pkcs11h_certificate_getCertificateId@Base 1.05
- pkcs11h_certificate_getPromptMask@Base 1.05
- pkcs11h_certificate_getUserData@Base 1.05
- pkcs11h_certificate_lockSession@Base 1.05
- pkcs11h_certificate_releaseSession@Base 1.05
- pkcs11h_certificate_serializeCertificateId@Base 1.05
- pkcs11h_certificate_setCertificateIdCertificateBlob@Base 1.05
- pkcs11h_certificate_setPromptMask@Base 1.05
- pkcs11h_certificate_setUserData@Base 1.05
- pkcs11h_certificate_sign@Base 1.05
- pkcs11h_certificate_signAny@Base 1.05
- pkcs11h_certificate_signAny_ex@Base 1.28
- pkcs11h_certificate_signRecover@Base 1.05
- pkcs11h_certificate_signRecover_ex@Base 1.28
- pkcs11h_certificate_sign_ex@Base 1.28
- pkcs11h_certificate_unwrap@Base 1.05
- pkcs11h_certificate_unwrap_ex@Base 1.28
- pkcs11h_data_del@Base 1.05
- pkcs11h_data_enumDataObjects@Base 1.05
- pkcs11h_data_freeDataIdList@Base 1.05
- pkcs11h_data_get@Base 1.05
- pkcs11h_data_put@Base 1.05
- pkcs11h_engine_setCrypto@Base 1.05
- pkcs11h_engine_setSystem@Base 1.05
- pkcs11h_forkFixup@Base 1.05
- pkcs11h_getFeatures@Base 1.05
- pkcs11h_getLogLevel@Base 1.05
- pkcs11h_getMessage@Base 1.05
- pkcs11h_getProperty@Base 1.28
- pkcs11h_getVersion@Base 1.05
- pkcs11h_initialize@Base 1.05
- pkcs11h_initializeProvider@Base 1.28
- pkcs11h_logout@Base 1.05
- pkcs11h_openssl_createSession@Base 1.05
- pkcs11h_openssl_freeSession@Base 1.05
- pkcs11h_openssl_getCleanupHook@Base 1.05
- pkcs11h_openssl_getX509@Base 1.05
- pkcs11h_openssl_session_getEVP@Base 1.11
- pkcs11h_openssl_session_getRSA@Base 1.05
- pkcs11h_openssl_session_getX509@Base 1.05
- pkcs11h_openssl_setCleanupHook@Base 1.05
- pkcs11h_plugAndPlay@Base 1.05
- pkcs11h_registerProvider@Base 1.28
- pkcs11h_removeProvider@Base 1.05
- pkcs11h_setForkMode@Base 1.05
- pkcs11h_setLogHook@Base 1.05
- pkcs11h_setLogLevel@Base 1.05
- pkcs11h_setMaxLoginRetries@Base 1.05
- pkcs11h_setPINCachePeriod@Base 1.05
- pkcs11h_setPINPromptHook@Base 1.05
- pkcs11h_setProperty@Base 1.28
- pkcs11h_setProtectedAuthentication@Base 1.05
- pkcs11h_setProviderProperty@Base 1.28
- pkcs11h_setProviderPropertyByName@Base 1.28
- pkcs11h_setSlotEventHook@Base 1.05
- pkcs11h_setTokenPromptHook@Base 1.05
- pkcs11h_terminate@Base 1.05
- pkcs11h_token_deserializeTokenId@Base 1.05
- pkcs11h_token_duplicateTokenId@Base 1.05
- pkcs11h_token_ensureAccess@Base 1.05
- pkcs11h_token_enumTokenIds@Base 1.05
- pkcs11h_token_freeTokenId@Base 1.05
- pkcs11h_token_freeTokenIdList@Base 1.05
- pkcs11h_token_login@Base 1.05
- pkcs11h_token_logout@Base 1.10-2~
- pkcs11h_token_sameTokenId@Base 1.05
- pkcs11h_token_serializeTokenId@Base 1.05
diff -Nru pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.install
pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.install
--- pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.install 1969-12-31
21:00:00.000000000 -0300
+++ pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.install 2023-08-21
10:08:48.000000000 -0300
@@ -0,0 +1,2 @@
+usr/lib/*/lib*.so.*
+usr/share/man
diff -Nru pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.lintian-overrides
pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.lintian-overrides
--- pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.lintian-overrides
1969-12-31 21:00:00.000000000 -0300
+++ pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.lintian-overrides
2024-02-05 18:47:42.000000000 -0300
@@ -0,0 +1 @@
+libpkcs11-helper1t64: package-name-doesnt-match-sonames libpkcs11-helper1
diff -Nru pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.symbols
pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.symbols
--- pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.symbols 1969-12-31
21:00:00.000000000 -0300
+++ pkcs11-helper-1.29.0/debian/libpkcs11-helper1t64.symbols 2024-02-05
18:47:42.000000000 -0300
@@ -0,0 +1,85 @@
+libpkcs11-helper.so.1 libpkcs11-helper1t64 #MINVER#
+* Build-Depends-Package: libpkcs11-helper1-dev
+ pkcs11h_addProvider@Base 1.05
+ pkcs11h_certificate_create@Base 1.05
+ pkcs11h_certificate_decrypt@Base 1.05
+ pkcs11h_certificate_decryptAny@Base 1.05
+ pkcs11h_certificate_decryptAny_ex@Base 1.28
+ pkcs11h_certificate_decrypt_ex@Base 1.28
+ pkcs11h_certificate_deserializeCertificateId@Base 1.05
+ pkcs11h_certificate_duplicateCertificateId@Base 1.05
+ pkcs11h_certificate_ensureCertificateAccess@Base 1.05
+ pkcs11h_certificate_ensureKeyAccess@Base 1.05
+ pkcs11h_certificate_enumCertificateIds@Base 1.05
+ pkcs11h_certificate_enumTokenCertificateIds@Base 1.05
+ pkcs11h_certificate_freeCertificate@Base 1.05
+ pkcs11h_certificate_freeCertificateId@Base 1.05
+ pkcs11h_certificate_freeCertificateIdList@Base 1.05
+ pkcs11h_certificate_getCertificateBlob@Base 1.05
+ pkcs11h_certificate_getCertificateId@Base 1.05
+ pkcs11h_certificate_getPromptMask@Base 1.05
+ pkcs11h_certificate_getUserData@Base 1.05
+ pkcs11h_certificate_lockSession@Base 1.05
+ pkcs11h_certificate_releaseSession@Base 1.05
+ pkcs11h_certificate_serializeCertificateId@Base 1.05
+ pkcs11h_certificate_setCertificateIdCertificateBlob@Base 1.05
+ pkcs11h_certificate_setPromptMask@Base 1.05
+ pkcs11h_certificate_setUserData@Base 1.05
+ pkcs11h_certificate_sign@Base 1.05
+ pkcs11h_certificate_signAny@Base 1.05
+ pkcs11h_certificate_signAny_ex@Base 1.28
+ pkcs11h_certificate_signRecover@Base 1.05
+ pkcs11h_certificate_signRecover_ex@Base 1.28
+ pkcs11h_certificate_sign_ex@Base 1.28
+ pkcs11h_certificate_unwrap@Base 1.05
+ pkcs11h_certificate_unwrap_ex@Base 1.28
+ pkcs11h_data_del@Base 1.05
+ pkcs11h_data_enumDataObjects@Base 1.05
+ pkcs11h_data_freeDataIdList@Base 1.05
+ pkcs11h_data_get@Base 1.05
+ pkcs11h_data_put@Base 1.05
+ pkcs11h_engine_setCrypto@Base 1.05
+ pkcs11h_engine_setSystem@Base 1.05
+ pkcs11h_forkFixup@Base 1.05
+ pkcs11h_getFeatures@Base 1.05
+ pkcs11h_getLogLevel@Base 1.05
+ pkcs11h_getMessage@Base 1.05
+ pkcs11h_getProperty@Base 1.28
+ pkcs11h_getVersion@Base 1.05
+ pkcs11h_initialize@Base 1.05
+ pkcs11h_initializeProvider@Base 1.28
+ pkcs11h_logout@Base 1.05
+ pkcs11h_openssl_createSession@Base 1.05
+ pkcs11h_openssl_freeSession@Base 1.05
+ pkcs11h_openssl_getCleanupHook@Base 1.05
+ pkcs11h_openssl_getX509@Base 1.05
+ pkcs11h_openssl_session_getEVP@Base 1.11
+ pkcs11h_openssl_session_getRSA@Base 1.05
+ pkcs11h_openssl_session_getX509@Base 1.05
+ pkcs11h_openssl_setCleanupHook@Base 1.05
+ pkcs11h_plugAndPlay@Base 1.05
+ pkcs11h_registerProvider@Base 1.28
+ pkcs11h_removeProvider@Base 1.05
+ pkcs11h_setForkMode@Base 1.05
+ pkcs11h_setLogHook@Base 1.05
+ pkcs11h_setLogLevel@Base 1.05
+ pkcs11h_setMaxLoginRetries@Base 1.05
+ pkcs11h_setPINCachePeriod@Base 1.05
+ pkcs11h_setPINPromptHook@Base 1.05
+ pkcs11h_setProperty@Base 1.28
+ pkcs11h_setProtectedAuthentication@Base 1.05
+ pkcs11h_setProviderProperty@Base 1.28
+ pkcs11h_setProviderPropertyByName@Base 1.28
+ pkcs11h_setSlotEventHook@Base 1.05
+ pkcs11h_setTokenPromptHook@Base 1.05
+ pkcs11h_terminate@Base 1.05
+ pkcs11h_token_deserializeTokenId@Base 1.05
+ pkcs11h_token_duplicateTokenId@Base 1.05
+ pkcs11h_token_ensureAccess@Base 1.05
+ pkcs11h_token_enumTokenIds@Base 1.05
+ pkcs11h_token_freeTokenId@Base 1.05
+ pkcs11h_token_freeTokenIdList@Base 1.05
+ pkcs11h_token_login@Base 1.05
+ pkcs11h_token_logout@Base 1.10-2~
+ pkcs11h_token_sameTokenId@Base 1.05
+ pkcs11h_token_serializeTokenId@Base 1.05
--- End Message ---
--- Begin Message ---
Source: pkcs11-helper
Source-Version: 1.29.0-2.1
Done: Benjamin Drung <bdr...@debian.org>
We believe that the bug you reported is fixed in the latest version of
pkcs11-helper, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1063...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Benjamin Drung <bdr...@debian.org> (supplier of updated pkcs11-helper package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 29 Feb 2024 20:52:48 +0000
Source: pkcs11-helper
Architecture: source
Version: 1.29.0-2.1
Distribution: unstable
Urgency: medium
Maintainer: Debian OpenSC Maintainers <pkg-opensc-ma...@lists.alioth.debian.org>
Changed-By: Benjamin Drung <bdr...@debian.org>
Closes: 1063258
Changes:
pkcs11-helper (1.29.0-2.1) unstable; urgency=medium
.
* Non-maintainer upload.
* Rename libraries for 64-bit time_t transition. Closes: #1063258
Checksums-Sha1:
ea1eaaf3d674fc40a71535947ed1ebb6f6e1104c 2132 pkcs11-helper_1.29.0-2.1.dsc
4590d22c12704d448609227e7fa26a3c5e678857 5872
pkcs11-helper_1.29.0-2.1.debian.tar.xz
73bfced883b9fa7b9554570c7e3f683a4e5b005c 7468
pkcs11-helper_1.29.0-2.1_source.buildinfo
Checksums-Sha256:
594c4a69cd81ae00b7744aa9d4ae60263e2eb68e7ebf7683f2e5c446b8b1c11b 2132
pkcs11-helper_1.29.0-2.1.dsc
079181db2a616178bfb2ed8ad2195296e8787a99bb3fafd6454528e83006ddd6 5872
pkcs11-helper_1.29.0-2.1.debian.tar.xz
db5a6b6724dd9ab13e275aaa68b5b5f7e02de2e3d2f442d5273cc134c4524ff8 7468
pkcs11-helper_1.29.0-2.1_source.buildinfo
Files:
a4c2ffbcbaef69a695325fe3ac685a5a 2132 libs optional
pkcs11-helper_1.29.0-2.1.dsc
bf30ed251d680c8100e98c8df47e7414 5872 libs optional
pkcs11-helper_1.29.0-2.1.debian.tar.xz
18f9fd2fe17dbd13181e894ceed1a740 7468 libs optional
pkcs11-helper_1.29.0-2.1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEpi0s+9ULm1vzYNVLFZ61xO/Id0wFAmXg7rMACgkQFZ61xO/I
d0yjQhAAr1e0b5ep0P3/XWG1yl1jAmjOZea464Q77zp9eRz7pyU2X+GFkThlbeQW
HYqaMrmGDgCrwaSLEWly2OhP98+SdOv8VXlNd424+HsV3lRy1bkyvzlvmKB6PZUY
KXPpKlVm0nTxODSukJfClK8D9YLRpVb1DyB8F5i2Y8GgNMcnnCQPfetI5U7XwMp6
ks2lxJ20N6x4mBeu+4mlWRm+FgOzEcZNYV6QrsnXBJKdd0AEn5SdUCeOuqJyBkeF
6ItSopjczerYDJdOHT3KaubvGt+eehW5GYIvprgghrRhq+bHJuru7/2Mhd3dfOnu
gT6N9BfAlhlwfgiTKOrbti+Pwy0h9RVieJIlKvhQKRBI+aPMosay+zQVM8LAdUhA
cx8AtXp847vTE4tPr8+7e27VV/iIMJTrgK6jtxHES49kCg4NFTw4ZgLaJxJaFSqD
65QadyYIjrVeYEpCz2QTFw2h88hjDBU1FVV+iMgJ48+oK/XC5IrCbOwXWRfbJTHm
fn/yg6gEuJ3kMppfLy2ls5Ejyhj1UKAte0Oz/M0FIQ0n6Vh5UEJD8OiqE3FTRcQN
zkw1ONAgV3NQQBBDY+jGr/CwNkdK7f+O/Cij1prGL8MI4U1iX55dHugjoDL0HUyh
0qcPEEcM5uRpfudvHRZDBYtuG3QAR3uWnR137VEYdzrmKF9Ilrk=
=2eXz
-----END PGP SIGNATURE-----
pgp7kTzaSz0dS.pgp
Description: PGP signature
--- End Message ---
