Bug#1103902: austin: Vcs-* fields incorrectly refer to upstream

thon-team/packages/ and set the Debian Python Team as Maintainer? Of course I can give you commit access if you have a salsa account and tell me its username - I'm not trying to take it away from you, just to make sure that we can keep it up to date in Debian cooperatively. All the best, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103979: bookworm-pu: package openssh/1:9.2p1-2+deb12u6

+openssh (1:9.2p1-2+deb12u6) UNRELEASED; urgency=medium + + * CVE-2025-32728: sshd(8): fix the DisableForwarding directive, which was +failing to disable X11 forwarding and agent forwarding as documented + (closes: #1102603). + + -- Colin Watson Tue, 15 Apr 2025 12:07:53 +0100 + opens

Bug#1102603: openssh: CVE-2025-32728

On Tue, Apr 15, 2025 at 09:38:21PM +0200, Salvatore Bonaccorso wrote: On Tue, Apr 15, 2025 at 02:36:09PM +0100, Colin Watson wrote: On Thu, Apr 10, 2025 at 10:20:44PM +0200, Salvatore Bonaccorso wrote: > The following vulnerability was published for openssh. > > CVE-2025-32728[0]: &g

Bug#1103977: ITP: python-django-hashids -- Model ID hashing for Django

Package: wnpp Severity: wishlist Owner: Colin Watson X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: python-django-hashids Version : 0.7.0 Upstream Contact: Shen Li * URL : https://github.com/ericls/django-hashids * License : Expat Programming

Bug#1103902: austin: Vcs-* fields incorrectly refer to upstream

ion control. Please could you push a suitable packaging repository to salsa.debian.org and point Vcs-* to that instead? (I think we would welcome having this package under the Debian Python Team's namespace in salsa, if you'd be willing to have it be team-maintained.) Tha

Bug#983160: dput-ng: --override doesn't override profile parameters

equests/39 -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103140: python-momepy test failures

. Anyway, I already sent a patch, which hopefully you can apply. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103880: ITP: python-django-pgbulk -- Django functions for doing native PostgreSQL bulk upserts

Package: wnpp Severity: wishlist Owner: Colin Watson X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: python-django-pgbulk Version : 3.2.2 Upstream Contact: Wes Kendall * URL : https://github.com/AmbitionEng/django-pgbulk * License : BSD-3-clause

Bug#1103140: python-momepy test failures

tests, and https://salsa.debian.org/openstack-team/third-party/python-momepy/-/merge_requests/1 to cherry-pick that patch into Debian and to skip the third test. Thomas, could you have a look, please? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103140: python-momepy test failures

output by gdf_to_nx has (x: float, y: float) node keys, so rounding issues can potentially break retrieving individual nodes/edges) to remove this package on i386. It can't really be removed on i386, since it's Architecture: all. -- Colin Watson (he/him)

Bug#1103773: openssh-server: systemd unit to After=network-online.target

On Mon, Apr 21, 2025 at 07:16:46PM +0200, Chris Hofstaedtler wrote: * Colin Watson [250421 19:09]: I'd be happy to add additional advice about this to README.Debian if somebody else writes it. But ideally it'd be more fine-grained than just whacking in a dependency on network-onl

Bug#1103522: openssh-client: ssh-agent socket created in an unpredictable path

/openssh_agent and sets SSH_AUTH_SOCK in the systemd environment. Daniel, could you please have a look at this, since it was your change? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103773: openssh-server: systemd unit to After=network-online.target

d be more fine-grained than just whacking in a dependency on network-online.target; perhaps we can advise people how to configure their system so that ssh.service waits for a particular interface to come up. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103720: ssh-askpass-gnome prompts for confirmation, but the connection is always allowed

authentication; but perhaps some other authentication method is being used instead. Hopefully the -vvv debugging output will make it clear. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103418: openssh-server irregularly crashing since 10.0p1 upgrade

On Sat, Apr 19, 2025 at 03:25:17AM -0600, Liam Stitt wrote: On Fri, 18 Apr 2025, Colin Watson wrote: valid. Therefore I think we must be dealing with action at a distance from some previous memory corruption, which is going to be a pain to track down. It might be in openssh-server, and the

Bug#1103418: openssh-server irregularly crashing since 10.0p1 upgrade

run in this phase. My guess is that this probably won't help me, but it's easy to capture and it stands some chance of letting me reproduce this locally, which would be a big help. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103392: incorrect signature when ssh'ing to an AIX server (Big Endian) from X86 (Little endian)

s release? If so, what was the last version that worked? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103454: libparted detects ext4 without journal as ext2

eview this without a fair bit of research that I don't really have time for. Please send it upstream first. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1103418: openssh-server irregularly crashing since 10.0p1 upgrade

crashed * press "y" at the "Enable debuginfod for this session?" prompt * type "bt" at the "(gdb)" prompt * reply to this email with the output There are other options if you aren't running systemd, but this is probably the easiest to set up on a stock Debian system. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1072184: openssh-server: Please stop writing /var/log/btmp

lient-only. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1102643: libpam-wtmpdb: Coordinating openssh wtmpdb support

On Fri, Apr 11, 2025 at 11:05:00PM +0100, Andrew Bower wrote: On Fri, Apr 11, 2025 at 01:06:00PM +0100, Colin Watson wrote: I'd like to arrange for the less-informative "ssh" one to be skipped. This can be done by adding "skip_if=sshd" to libpam_wtmpdb's options,

Bug#1103050: fonts-culmus: Upgrade from bookworm fails: file conflict on /etc/fonts/conf.avail/65-culmus.conf

I forgot to mention that this was based on a report that I happened to see on Reddit: https://www.reddit.com/r/debian/comments/1jymdlr/failed_upgrade_from_stable_to_trixie/ -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1102603: openssh: CVE-2025-32728

the added patch is the only effective change in both cases. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org] diff -Nru openssh-9.2p1/debian/.git-dpm openssh-9.2p1/debian/.git-dpm --- openssh-9.2p1/debian/.git-dpm 2025-02-14 13:06:46.0 + +++ ope

Bug#1103050: fonts-culmus: Upgrade from bookworm fails: file conflict on /etc/fonts/conf.avail/65-culmus.conf

On Mon, Apr 14, 2025 at 10:49:10AM +0100, Colin Watson wrote: I see that you already have the appropriate Breaks/Replaces, but I vaguely recall that moving a dpkg-managed conffile from one package to another requires a bit more than that. I'm afraid I've forgotten the details, tho

Bug#1103050: fonts-culmus: Upgrade from bookworm fails: file conflict on /etc/fonts/conf.avail/65-culmus.conf

also in package culmus (0.140-2.1) dpkg-deb: error: paste subprocess was killed by signal (Broken pipe) I see that you already have the appropriate Breaks/Replaces, but I vaguely recall that moving a dpkg-managed conffile from one package to another requires a bit more than that. I'

Bug#1102658: diffoscope: Tests fail with OpenSSH 10.0p1

ot;, "copyright", "credits" or "license" for more information. >>> from tests.utils.versions import Version >>> Version('10.0p1') < Version('9.7p1') False >>> Version('10.0p1') > Version('9.7p1

Bug#1102643: libpam-wtmpdb: Coordinating openssh wtmpdb support

t). Should we do the same in Debian's libpam-wtmpdb package, or is there a way to do it entirely in openssh-server somehow? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org] -- System Information: Debian Release: trixie/sid APT prefers testing AP

Bug#1097559: Possibly removal past Trixi release makes sense (Was: pccts: ftbfs with GCC-15)

sense to remove this package from unstable/testing once Trixi is released. This would affect the package (Colin in CC) which Build-Depends from pccts. It would make me sad, but I suppose I can't stop you. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1102391: ITP: python-typing-inspection -- Tools to inspect Python type annotations at runtime

Package: wnpp Severity: wishlist Owner: Colin Watson X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: python-typing-inspection Version : 0.4.0 Upstream Contact: Victorien Plot * URL : https://github.com/pydantic/typing-inspection * License : MIT

Bug#1102526: python-aiohttp-security: Drop stale python3-aioredis build dependency that keeps the package out of trixie

On Thu, Apr 10, 2025 at 01:36:23AM +0300, Adrian Bunk wrote: Source: python-aiohttp-security Version: 0.5.0-2 Severity: serious Tags: patch X-Debbugs-Cc: Colin Watson https://tracker.debian.org/pkg/python-aiohttp-security Migration status for python-aiohttp-security (- to 0.5.0-2): BLOCKED

Bug#1102453: [Pkg-openssl-devel] Bug#1102453: libssl-doc: error when regenerating man pages

that point in the NAME might not show up in apropos, although it's possible the symlinks might be enough to cause that to happen anyway. I do think we need some kind of limit here, but you can reassign to man-db if you want me to investigate raising it. -- Colin Watson (h

Bug#1102380: led-ble: FTBFS: E ModuleNotFoundError: No module named 'bleak'

leak-retry-connector, so reassigning there. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101671: python-ytmusicapi: FTBFS: ModuleNotFoundError: No module named 'pytest'

son for this to be in trixie either, so I didn't really give this a priority. I can look into it if you'd want it to be in trixie, but I'm 100% fine if it will remain left out. No great rush specifically for trixie; I just try to stay on top of th

Bug#1101675: [Pkg-zsh-devel] Bug#1101675: Bug#1101675: zsh: completion suddenly broken

ut not zsh, or should be made non-default again across the board, or something else. To deal with the remainder of this bug, I'll upgrade to 3.6.2, which should at least be fairly non-controversial. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101671: python-ytmusicapi: FTBFS: ModuleNotFoundError: No module named 'pytest'

the obvious missing build-dependencies, the tests seem to require a test.cfg with YouTube account credentials (judging by .github/workflows/coverage.yml, anyway). Salvo, should we just disable the tests? It's not clear to me that there are many other options here. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101417: pydantic-core - upcoming rust-idna update

that britney knows to migrate them together. (Although this is in pydantic-core >= 2.30.0, I deliberately haven't upgraded to that yet because I'm waiting for a compatible pydantic release.) -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101140: blurhash-python: upstream metadata is wrong and confusing

ds-1 or similar. (Keeping the current source package name doesn't seem too unreasonable, since it matches upstream's GitHub repository name even if it doesn't match the PyPI package name.) But I don't know if this was originally packaged for the benefit of python-mastodon, or for some other reason. CCing Edward in case he remembers. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1098586: orange-canvas-core: FTBFS: Segmentation fault

d you retest? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101618: bluetooth-data-tools: FTBFS: build-dependency not installable: python3-setuptools (>= 77)

be better to wait for a new upstream release. So maybe the best approach is just to leave bluetooth-data-tools in an RC-buggy state in unstable until we can get the new setuptools in post-trixie? I'm not sure. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1090282: legacycrypt as an alternative, but it's the only option

ing level, I think the dependencies are correct. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101675: [Pkg-zsh-devel] Bug#1101675: Bug#1101675: zsh: completion suddenly broken

ficates in /etc/ssl/certs... 0 added, 0 removed; done. Running hooks in /etc/ca-certificates/update.d... done. root@sacred-mosquito:~# adduser cjwatson New password: Retype new password: passwd: password updated successfully Changing the user information for cjwatson Enter

Bug#1063447: reassign 1063447 to python3-launchpadlib

here. Given the current packaging layout, lptools should probably add a manual Depends: python3-launchpadlib-desktop. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1095175: quodlibet: Crashes on start if libmodplug1 is not installed

ug1 is not supposed to be strictly required. There is an upstream commit [3] which fixes this so that libmodplug1 once again becomes optional. Thanks for tracking this down. I'll cherry-pick that patch. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1100798: src:python-marshmallow: fails to migrate to testing for too long

? It seems there's a new timestamp-related test that can't pass on i386 (https://ci.debian.net/packages/p/python-marshmallow/testing/i386/). Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1099935: dnspython: autopkgtest regression on s390x: bad request

On Thu, Mar 20, 2025 at 06:18:53PM +, Pranav P wrote: I raised the PR in ls-qpack's repo at https://github.com/litespeedtech/ls-qpack/pull/76 Thanks! I'll get that into unstable now. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101179: rpmlint: Please drop build-dependency on python3-pytest-flake8

t it still builds and autopkgtests cleanly if I remove those. Patch attached. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org] diff -Nru rpmlint-2.6.1/debian/changelog rpmlint-2.6.1/debian/changelog --- rpmlint-2.6.1/debian/changelog 2025-01-21

Bug#1068502: Dead upstream and broken, remove or switch to a fork?

those bugs are fixed, we should be able to remove this package. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1101178: eccodes-python: Please drop build-dependency on python3-pytest-flake8

dency on it in 2:2.39.1-1 on the basis that this allowed enabling tests, but it's actually unnecessary; it only needs a build-dependency on python3-pytest. Patch attached. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org] diff -Nru eccodes-python-2.3

Bug#1101140: blurhash-python: upstream metadata is wrong and confusing

On Sun, Mar 23, 2025 at 05:24:04PM +, Colin Watson wrote: Given that the only reverse-dependency (actually a reverse-recommends) on python3-blurhash in Debian is python3-mastodon, [...] The "slidge" source package also Build-Depends on it. In this case, that used to actually w

Bug#1098627: marked as pending in scriv

, but hasn't been uploaded. Did something go wrong with your upload? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1100948: dropbear 2025.87 changes break OpenSSH's regression test suite

er) didn't foresee breakage in other packages, apologies for that. Thanks for the heads-up. I'll get that into unstable. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1099935: dnspython: autopkgtest regression on s390x: bad request

r attachment as an actual email attachment, and then I can get it into the Debian pylsqpack package? Alternatively, pointing me at your ls-qpack PR once it exists would be fine too - I don't see anything there yet. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1099935: dnspython: autopkgtest regression on s390x: bad request

ng purposes? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1099935: dnspython: autopkgtest regression on s390x: bad request

Control: reassign -1 python3-pylsqpack 0.3.18-1 Control: affects -1 src:dnspython On Mon, Mar 17, 2025 at 05:03:56PM +, Colin Watson wrote: On Sun, Mar 16, 2025 at 12:12:08PM +, Pranav P wrote: I am still continuing my search on the issue. It seems that the issue is rising from

Bug#1099935: dnspython: autopkgtest regression on s390x: bad request

t;>> encoder = pylsqpack.Encoder() >>> decoder = pylsqpack.Decoder(4096, 16) >>> _, frame = encoder.encode(0, [(b':path', b'/dns-query?dns=AAABAAABAAABAAABA2RucwZnb29nbGUAAAEAAQ')]) >>> decoder.feed_header(0, frame) (b'', [(b':path', b'd/snq-euyrd?snA=AAABAAABAAABAAABR2cuZwbn92bnUGAAAEAAQ')]) -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1100340: ITP: zope.sqlalchemy -- Minimal Zope/SQLAlchemy transaction integration

much trouble to maintain). Send me a message once you're ready and I can sponsor you. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1099277: python-urllib3: FTBFS: E urllib3.exceptions.ProxySchemeUnsupported: TLS in TLS requires SSLContext.wrap_bio() which isn't available on non-native SSLContext

x27;d checked upstream a couple of times but somehow managed to miss that! I'll upload this to unstable. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1100049: gnome-shell-extensions-extra: "No overview at start-up" extension incompatible with GNOME Shell 48

/36f1f8a88fe09e4a7c23ba24d06293482f05e215); could you please update the package to include that change? Thanks, -- Colin Watson (he/him) [cjwat...@debian.org] -- System Information: Debian Release: trixie/sid APT prefers testing APT policy: (500, 'testing') Architect

Bug#1061480: debconf should automatically be noninteractive if input is /dev/null

On Sun, Mar 09, 2025 at 09:39:29PM -0700, Josh Triplett wrote: On Sun, 9 Mar 2025 12:34:17 + Colin Watson wrote: I'm more inclined to do something like the attached patch; my feeling is that it was probably a mistake that we put the `-t STDIN` check in Readline rather than in Teletype

Bug#1100031: python-omegaconf: Incompatible with ANTLR >= 4.10; do we still need it in Debian?

gaconf/issues/1200 doesn't paint a very rosy picture of its upstream maintenance. Given that there seem to be no reverse-dependencies in Debian, would it be better to just remove this and simplify a future python3-antlr4 upgrade? Thanks, -- Colin Watson (he/him)

Bug#1061480: debconf should automatically be noninteractive if input is /dev/null

Noninteractive. -- Colin Watson (he/him) [cjwat...@debian.org] diff --git a/Debconf/FrontEnd/Readline.pm b/Debconf/FrontEnd/Readline.pm index 48eff168..e7c3f5ab 100644 --- a/Debconf/FrontEnd/Readline.pm +++ b/Debconf/FrontEnd/Readline.pm @@ -44,9 +44,6 @@ sub init { $thi

Bug#1061480: debconf should automatically be noninteractive if input is /dev/null

On Sun, Dec 29, 2024 at 01:25:38PM -0800, Josh Triplett wrote: Colin Watson wrote: It would be helpful for me to have a reproducer for this. If I just try `env -u TERM apt install tzdata I'll follow up with the right transcript. Ping - I can't seem to find anything from you with

Bug#1099091: Bug#1098272: openssh-server: Security update 1:9.2p1-2+deb12u5 depends on libssl3 (>= 3.0.15), but that is not in debian security

odename=${distro_codename}-security,label=Debian-Security" is present then "origin=Debian,codename=${distro_codename},label=Debian" must also be present; because otherwise you're bound to run into problems like this one at some point due to how the autobuilders are configured fo

Bug#1098575: magic-wormhole: FTBFS: twisted.trial.unittest.FailTest: 'Cannot specify a code' not in ''

ep this open in Debian any longer. However, I've also sent https://github.com/magic-wormhole/magic-wormhole/pull/584 upstream so that they're better-prepared for the click 8.2.0 release once it happens properly. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1098507: python-click: Please revert the upload of the unreleased 8.2 version to unstable

On Mon, Feb 24, 2025 at 12:58:16AM +, Colin Watson wrote: > On Fri, Feb 21, 2025 at 02:34:12PM -0700, Soren Stoutner wrote: > > Just to add a bit of additional information, 8.2.0 has been tagged but not > > released, which > > was probably the confusion that caused

Bug#1098674: debusine: autopkgtests fail with util-linux 2.41

380s E: Error running debootstrap at /usr/bin/sbuild-createchroot line 448. This will be fixed by our next release, which removes schroot support from debusine. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1098507: python-click: Please revert the upload of the unreleased 8.2 version to unstable

I see that #1098595 (python-click-plugins) and #1098629 (sphinx-theme-builder) were fixed more directly. But with this many failures, I tend to agree with Soren that it would make sense to revert and wait for a proper upstream release so that it's more likely that upstreams will

Bug#1098760: openssh: remove /bin/slogin

rid of it - I had a look through https://codesearch.debian.net/search?q=%5Cbslogin%5Cb&literal=0&perpkg=1 and didn't find anything too concerning. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1098602: python-persistent: FTBFS: error: 'cPersistentObject' has no member named 'ob_refcnt'

probably be worked around in python-persistent by just doing something like `export DEB_CFLAGS_MAINT_APPEND := -DNDEBUG`, but I'd rather leave it alone for now until I get advice from distutils upstream. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1040417: docker-compose V1 is depreciated

On Tue, Feb 18, 2025 at 01:44:35PM +0100, Nicolas Peugnet wrote: > On 16/02/2025 11:17, Nicolas Peugnet wrote: > > On Sun, 19 Jan 2025 23:57:11 +0000 Colin Watson > > wrote: > > > I uploaded docker-compose 1.29.2-6.4 earlier today to fix that.  (I > > > can&

Bug#1091503: requests: will FTBFS during trixie support period

/6896. I'm awaiting upstream feedback on that. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1095922: openssh-server: sshd -T still show a deprecated alias: without-password

man.openbsd.org/sshd_config#PermitRootLogin, the default is: > prohibit-password > and not its deprecated alias: > without-password > > Could this be an oversight? Thanks for the report. I forwarded this upstream as https://bugzilla.mindrot.org/show_bug.cgi?id=3788, includi

Bug#1095890: manpath.5: Some remarks and a patch with editorial changes for this man page

emphasis (markup), > for example as an argument to a macro. > > 13:.TH MANPATH 5 "2024-08-29" "2.13.0" "/etc/manpath.config" The quotes are harmless, and given that what's inside them is substituted at build time, I prefer to keep them. https://gitlab.com/man-db/man-db/-/commit/2607d203472efb036d888e9e7997724a41a53876 Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1095686: openssh-server: Restore sshd_config(5) documentation about rdomain

that doesn't exist on Debian. Or is there some other suitable cross-reference that we could substitute instead? ip-vrf(8) looks potentially relevant. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1095084: cython: autopkgtests fail with numpy 2.x

On Wed, Feb 05, 2025 at 04:31:03PM +0100, s3v wrote: > After applying this commit [1], I was able to build your package in a sid > chroot > environment (amd64 arch) and all autopkgtests pass as well. Thanks for identifying this! I'll apply it. -- Colin

Bug#1094107: pytrainer: FTBFS: dh_auto_test: error: pybuild --test --test-tox -i python{version} -p 3.13 returned exit code 13

gt; > ERROR: No matching distribution found for pillow>=8 [...] > The full build log is available from: > http://qa-logs.debian.net/2025/01/24/pytrainer_2.2.1-5_unstable.log This is another instance of #1094040. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1094040: pystray: FTBFS: distutils.errors.DistutilsError: Command '['/usr/bin/python3.12', '-m', 'pip', '--disable-pip-version-check', 'wheel', '--no-deps', '-w', '/tmp/tmpx5sdn4zk', '--quiet', 'P

python3-trove-classifiers installed. Building the package with sbuild instead should avoid the problem. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1094040: pystray: FTBFS: distutils.errors.DistutilsError: Command '['/usr/bin/python3.12', '-m', 'pip', '--disable-pip-version-check', 'wheel', '--no-deps', '-w', '/tmp/tmpx5sdn4zk', '--quiet', 'P

alidate-pyproject.readthedocs.io/en/latest/api/validate_pyproject.formats.html refers to https://pypi.org/classifiers/, and "License :: OSI Approved :: CMU License (MIT-CMU)" is listed there, so I don't see what the problem would be ... it feels more like a bug in your installed setuptools version. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1094040: pystray: FTBFS: distutils.errors.DistutilsError: Command '['/usr/bin/python3.12', '-m', 'pip', '--disable-pip-version-check', 'wheel', '--no-deps', '-w', '/tmp/tmpx5sdn4zk', '--quiet', 'P

ble metadata again, and pystray builds. diff -Nru pillow-11.1.0/debian/rules pillow-11.1.0/debian/rules --- pillow-11.1.0/debian/rules 2025-01-23 10:30:44.0 + +++ pillow-11.1.0/debian/rules 2025-02-05 15:53:51.0 + @@ -34,7 +34,6 @@ build-stamp: $(PY3VERS:%=build-sta

Bug#1095019: dask: autopkgtest failures with numpy 2.x

gacy DataFrame implementation, but it looks as though the new implementation depends on pyarrow more strictly than before, and that isn't yet in Debian. I guess I'll do something more surgical. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1087334: python3-urllib3: Breaks build of vcr.py and pytest-httpbin on some systems

ng with httpbin instances that aren't running via gunicorn (in particular pytest-httpbin), treating the tests as flaky and disabling them in the Debian packaging seems reasonable to me for now. I think I've got as far as I can with debugging this. Santiago, thanks for the test VM; you can shut it down now. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1094246: openssh-server: postinst: please implement ssh-audit recommended keygen options

On Sun, Jan 26, 2025 at 09:01:35PM +, Colin Watson wrote: > On Sun, Jan 26, 2025 at 08:20:56PM +0200, Martin-Éric Racine wrote: > > No, I just directly e-mailed Damien asking him whether he agreed with > > the recommendations 'ssh-audit' makes. He wasn't aware of

Bug#1094246: openssh-server: postinst: please implement ssh-audit recommended keygen options

On Sun, Jan 26, 2025 at 08:20:56PM +0200, Martin-Éric Racine wrote: > su 26.1.2025 klo 20.09 Colin Watson (cjwat...@debian.org) kirjoitti: > > That's about DH moduli rather than host key sizes, right? That feels > > somewhat different, because we just ship upstream's modu

Bug#1094246: openssh-server: postinst: please implement ssh-audit recommended keygen options

On Sun, Jan 26, 2025 at 06:09:25PM +, Colin Watson wrote: > On Sun, Jan 26, 2025 at 07:53:26PM +0200, Martin-Éric Racine wrote: > > I have noticed this as well e.g. whenever Debian ships a new > > openssh-server package, I've had to manually run the command shown on > &

Bug#1094246: openssh-server: postinst: please implement ssh-audit recommended keygen options

On Sun, Jan 26, 2025 at 07:53:26PM +0200, Martin-Éric Racine wrote: > su 26.1.2025 klo 19.35 Daniel Baumann (dan...@debian.org) kirjoitti: > > On 1/26/25 16:21, Colin Watson wrote: > > > 3072-bit RSA seems like a fine default at the moment, > > > and I expect that Debian

Bug#1094246: openssh-server: postinst: please implement ssh-audit recommended keygen options

nions from cryptographers. The current upstream defaults and things like NIST standards are my best available proxy for that. For all these reasons, I'm disinclined to say that I know better than upstream here. 3072-bit RSA seems like a fine default at the moment, and I expect that Debian will follow future changes made upstream. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1090225: freezegun: diff for NMU version 1.5.1-1.2

https://salsa.debian.org/debian/python-freezegun. This is essentially just Adrien's patch, but I preferred to strip out the .github/ noise for NMU purposes. Thanks, -- Colin Watson (he/him) [cjwat...@debian.org] diff -Nru freezegun-1.5.1/debian/changelog freez

Bug#1092867: pyglet: Autopkgtests uses timing tests that fails on s390x (flaky?)

ng was already trying to skip that test (#929697), but the test was renamed upstream some time ago and so the exclusion was no longer effective. I'll update it. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1040417: docker-compose V1 is depreciated

On Sat, Jan 18, 2025 at 05:16:57AM +0900, Kenichiro Matohara wrote: > In Debian sid, Python 3.13 has been updated and docker-compose no longer > works. I uploaded docker-compose 1.29.2-6.4 earlier today to fix that. (I can't help with packaging 2.x, though.) -- Colin Wat

Bug#1093562: O: pam-session-timelimit -- PAM module to permit configuring time limits for user sessions

on-md5: 39775631c5363f66bf340e37d974d210 Section: admin Priority: optional Filename: pool/main/p/pam-session-timelimit/pam-session-timelimit_0.7-2+b1_amd64.deb Size: 11392 MD5sum: cbe81202557105466043858e96b494a9 SHA256: 0f4c655793dc403c3506e7ae4a2cea97d3e82e46262e918f052388a426439609 -- Colin Watson (

Bug#1093560: O: golang-github-gosexy-gettext -- Gettext support for the Go language

7bf6acaf SHA256: 50f63b5d457f0b6541f816a55a750adb0cc565085755eb7ab08cac33a6bb95b8 -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1093561: O: libdbd-sybase-perl -- Sybase/MS SQL database driver for the DBI module

.deb Size: 116804 MD5sum: 3444cc8440bc3dd01cfba0d7f359255a SHA256: 182554574f604a49cd5e8e3d8b3dcecee762a37de2c9a7810f7d2d653a09c88e -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1084703: docker-compose: diff for NMU version 1.29.2-6.4

n-nmu. Regards, -- Colin Watson (he/him) [cjwat...@debian.org] diff -Nru docker-compose-1.29.2/debian/changelog docker-compose-1.29.2/debian/changelog --- docker-compose-1.29.2/debian/changelog 2024-08-09 09:28:27.0 +0100 +++ docker-compose-1.29.2/debian/chan

Bug#1093240: python3-pdbfixer: please upload a new version to untangle "numpy" migration

t; 623s /usr/lib/python3/dist-packages/openmm/app/gromacstopfile.py:45: in > > 623s import distutils.spawn > 623s E ModuleNotFoundError: No module named 'distutils' My point was that this already seems to have been fixed in openmm some time ago, though. -- Colin Wat

Bug#1093240: python3-pdbfixer: please upload a new version to untangle "numpy" migration

missing Depends: python3-pkg-resources, and upload that as 1.9-5. Does that sound right to you? Maybe also file a wishlist bug on openmm to upgrade to the new upstream version. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1093431: input: First line with "'\" t" causes "man" NOT to use "tbl" as a preprocessor

(TE macro called with TW > register undefined) This isn't exactly well-specified, but I agree it would be less confusing to tolerate extra spaces anyway. Fixed for the next upstream release: https://gitlab.com/man-db/man-db/-/commit/d8237df6fff1c1d4925491d1870387d326d55d6d

Bug#1093430: man-db: man falsifies output by squeezing multiple empty lines to one

rather than as a correction. -- Colin Watson (he/him) [cjwat...@debian.org]

Bug#1093278: paraview needs a stricter python dependency

k: Do not rename libraries from e.g. vtkClientServerPython.so to vtkClientServerPython.cpython-38-x86_64-linux-gnu.so! + dh_python3 -V $(PY3RANGE) --no-ext-rename # Hack: Do not rename libraries from e.g. vtkClientServerPython.so to vtkClientServerPython.cpython-38-x86_64-linux-gnu.so! ove

Bug#1092532: terminator: FTBFS: SystemError: returned a result with an exception set

Control: affects -1 - src:terminator Control: reassign -1 src:terminator 2.1.4-3 Control: forwarded -1 https://github.com/gnome-terminator/terminator/issues/984 On Mon, Jan 13, 2025 at 05:24:38PM +, Colin Watson wrote: > I believe the bug is in vte::platform::Widget::~Widget: it's p

Bug#1092532: terminator: FTBFS: SystemError: returned a result with an exception set

+ 0, 0, NULL, NULL, + this); +} if (m_vadjustment) { g_signal_handlers_disconnect_by_func(m_vadjustment.get(), I haven't contributed this upstream yet because my gitlab.gnome.org account was deactivated a couple of years ago and I need to figure out how to get it reactivated, but once that's done I'm happy to send it upstream. -- Colin Watson (he/him) [cjwat...@debian.org]

  1   2   3   4   5   6   7   8   9   10   >