Re: popularity-contest and gpg

On Thu, Mar 27, 2025 at 07:45:12PM +0100, Bill Allombert wrote: > Dear Debian developpers, > > popularity-contest relies on /usr/bin/gpg for encrypting files. > (it cannot use gpgv which does not provide encryption). > > By design popularity-contest needs to have as few non-essential > dependenci

Bug#1093128: ITP: rust-cargo-vendor-filterer -- `cargo vendor`, but with filtering for platforms and more

Package: wnpp Severity: wishlist Owner: Julian Andres Klode X-Debbugs-Cc: debian-devel@lists.debian.org,debian-r...@lists.debian.org * Package name: rust-cargo-vendor-filterer Version : 0.5.16 Upstream Contact: GitHub issue tracker lol * URL : https://github.com

Re: GnuPG 2.4 before Trixie freeze

On Thu, Jan 09, 2025 at 07:55:36AM +0100, Stephan Verbücheln wrote: > GnuPG 2.4 was released in 2022, long before the LibrePGP schism. It is > generally not clear to me how the divergence from upstream is a reason > to favor 2.2 over 2.4, except that patches have to be ported (once?). > > I also d

Re: A 2025 NewYear present: make dpkg --force-unsafe-io the default?

On Tue, Dec 24, 2024 at 11:10:27PM +0900, Simon Richter wrote: > Hi, > > On 12/24/24 18:54, Michael Tokarev wrote: > > > The no-unsafe-io workaround in dpkg was needed for 2005-era ext2fs > > issues, where a power-cut in the middle of filesystem metadata > > operation (which dpkg does a lot) migh

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Mon, Dec 23, 2024 at 01:57:42PM +0100, Guillem Jover wrote: > Hi! > > On Mon, 2024-12-23 at 13:20:39 +0100, Chris Hofstaedtler wrote: > > * Julian Andres Klode [241223 12:49]: > > > Something still pulls in gpgv there > > > which is unfortunate, we lack a 5MB

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Mon, Dec 23, 2024 at 12:29:09PM +0100, Julian Andres Klode wrote: > On Wed, Dec 18, 2024 at 12:02:18AM +0100, Julian Andres Klode wrote: > > On Tue, Dec 03, 2024 at 04:34:52PM +0100, Julian Andres Klode wrote: > > > On Thu, Nov 21, 2024 at 09:16:20PM +0100, Julian

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Wed, Dec 18, 2024 at 12:02:18AM +0100, Julian Andres Klode wrote: > On Tue, Dec 03, 2024 at 04:34:52PM +0100, Julian Andres Klode wrote: > > On Thu, Nov 21, 2024 at 09:16:20PM +0100, Julian Andres Klode wrote: > > > I've just finished more or less, adjusting the APT t

norust profile, and setting it by default on alpha, hppa, m68k, sh4, x32 port buildds

(CC me, I'm not subscribed to debian-devel or maintain ports :D) Hi, # norust build profile I propose we add a `norust` build profile such that packages building Rust parts or integrating with Rust parts can disable those parts. For example, if apt gains sqv support, we can define a pkg.apt.nos

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Tue, Dec 03, 2024 at 04:34:52PM +0100, Julian Andres Klode wrote: > On Thu, Nov 21, 2024 at 09:16:20PM +0100, Julian Andres Klode wrote: > > I've just finished more or less, adjusting the APT test suite > > to test gpgv-sq. I plan to upload APT that tests gpgv-sq > > t

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Thu, Nov 21, 2024 at 09:16:20PM +0100, Julian Andres Klode wrote: > I've just finished more or less, adjusting the APT test suite > to test gpgv-sq. I plan to upload APT that tests gpgv-sq > tomorrow. This ensures full compatibility between apt and > gpgv-sq going forward

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Fri, Nov 22, 2024 at 01:53:11PM +0100, Julian Andres Klode wrote: > On Thu, Nov 21, 2024 at 11:52:38PM +0100, Marco d'Itri wrote: > > On Nov 21, Julian Andres Klode wrote: > > > > > I've just finished more or less, adjusting the APT test suite > > >

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Thu, Nov 21, 2024 at 09:16:20PM +0100, Julian Andres Klode wrote: > I've just finished more or less, adjusting the APT test suite > to test gpgv-sq. I plan to upload APT that tests gpgv-sq > tomorrow. This ensures full compatibility between apt and > gpgv-sq going forward. 2

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Fri, Nov 22, 2024 at 04:14:59PM +, Sune Vuorela wrote: > On 2024-11-21, Julian Andres Klode wrote: > > As for ports without gpgv-sq, this does not affect them, > > they can be served by the gpgv alternative. Once a gpgv-sq > > is available, it's important to note

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Thu, Nov 21, 2024 at 09:16:20PM +0100, Julian Andres Klode wrote: > I've just finished more or less, adjusting the APT test suite > to test gpgv-sq. I plan to upload APT that tests gpgv-sq > tomorrow. This ensures full compatibility between apt and > gpgv-sq going forward

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Thu, Nov 21, 2024 at 11:52:38PM +0100, Marco d'Itri wrote: > On Nov 21, Julian Andres Klode wrote: > > > I've just finished more or less, adjusting the APT test suite > > to test gpgv-sq. I plan to upload APT that tests gpgv-sq > > tomorrow. This ensures

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Thu, Nov 21, 2024 at 06:25:11PM -0700, Antonio Russo wrote: > On 11/21/24 15:19, Iustin Pop wrote: > > I'm not happy with the heavyness that one gets via gpg just for > > verifying signatures, so I'd be all for a lighter-weight solution. > > gpgv is lighter weight than gpgv-sq. Surprisingly, i

Re: Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

On Fri, Nov 22, 2024 at 11:55:10AM +0100, Andreas Metzler wrote: > On 2024-11-21 Julian Andres Klode wrote: > [...] > >An optimal mechanism would instea > [...] > > Something seems to be missing here. > > cu Andreas Apologies, I started that thought and didn'

Moving apt (and hence bootstraps) from GnuPG to Sequioa (via gpgv-sq)

I've just finished more or less, adjusting the APT test suite to test gpgv-sq. I plan to upload APT that tests gpgv-sq tomorrow. This ensures full compatibility between apt and gpgv-sq going forward. After that migrates to testing next week, I want to make the switch: APT by default should use gpg

Re: 64-bit time_t transition in progress in unstable

On Fri, Mar 08, 2024 at 07:38:01AM +0100, Rene Engelhard wrote: > Hi, > > Am 08.03.24 um 00:12 schrieb Eric Valette: > > On 07/03/2024 21:16, Rene Engelhard wrote: > > ct more people. > > > > > > But not so much for dependency issues like this. Which is my sole > > > point. In 99,9% of cases this

Re: New requirements for APT repository signing

On Thu, Feb 29, 2024 at 12:29:40AM +, Phil Wyett wrote: > On Wed, 2024-02-28 at 20:20 +0100, Julian Andres Klode wrote: > > APT 2.7.13 just landed in unstable and with GnuPG 2.4.5 installed, > > or 2.4.4 with a backport from the 2.4 branch, requires repositories > > to b

Re: New requirements for APT repository signing

On Fri, Mar 01, 2024 at 01:02:38AM +0100, Salvo Tomaselli wrote: > > Any other keys will cause warnings. These warnings will become > > errors in March as we harden it up for the Ubuntu 24.04 release > > Perhaps the announcement should have been sent earlier than 28th Feb then. Or > is there a mi

Re: Bug#1036884: 64-bit time_t: updated archive analysis, proposed transition plan with timeline

Hey Steve, On Sat, Jan 06, 2024 at 07:38:42PM -0800, Steve Langasek wrote: > On Sat, Jan 06, 2024 at 09:25:52AM +0100, Rene Engelhard wrote: > > Hi, > > > Am 06.01.24 um 06:51 schrieb Steve Langasek: > > > > > - dpkg will be uploaded to experimental with 64-bit time_t in the > > > > > default >

Re: Linking coreutils against OpenSSL

On Sat, Nov 11, 2023 at 06:52:50AM +0100, Emanuele Rocca wrote: > Hi, > > On 2023-11-09 07:31, Theodore Ts'o wrote: > > If you can get upstream a patch so that coreutils could try to dlopen > > OpenSSL and use it if it is available, but skip it if it is not, that > > might be one way to avoid Open

Re: Linking coreutils against OpenSSL

On Sat, Nov 11, 2023 at 12:55:16AM +0900, Simon Richter wrote: > Hi, > > On 11/10/23 21:07, Stephan Verbücheln wrote: > > > In my opinion, this is yet another reason to use a proper cryptography > > library (openssl, gnutls or gcrypt) instead of a custom implementation > > for this kind of algori

Re: Linking coreutils against OpenSSL

On Thu, Nov 09, 2023 at 05:38:05PM -0500, Benjamin Barenblat wrote: > Dear Debian folks, > > coreutils can link against OpenSSL, yielding a substantial speed boost > in sha256sum etc. For many years, this was inadvisable due to license > conflicts. However, as of bookworm, coreutils requires GPL-3

Re: Linking coreutils against OpenSSL

On Fri, Nov 10, 2023 at 11:25:34AM +0900, Simon Richter wrote: > Hi, > > > What would you think about having coreutils Depend on libssl3? This > > would make the libssl3 package essential, which is potentially > > undesirable, but it also has the potential for serious user time savings > > (on rec

Re: Do not plan to support /usr/lib/pam.d for Debian pam

On Fri, Sep 15, 2023 at 04:05:50PM -0700, Steve Langasek wrote: > On Fri, Sep 15, 2023 at 09:53:24PM +0100, Luca Boccassi wrote: > > With the provision that I know next to nothing about pam - if I > > understood correctly how it works, why not simply do both? Ship the > > default file in the packag

Re: Firmware GR result - what happens next?

On Sun, Oct 02, 2022 at 12:26:29PM -0700, Steve Langasek wrote: > On Sun, Oct 02, 2022 at 03:53:00PM +0100, Steve McIntyre wrote: > > >What's the plan for upgraded systems with an existing > > >/etc/apt/sources.list. > > >Will the new n-f-f section added on upgrades automatically(if non-free was >

Re: Firmware GR result - what happens next?

On Sun, Oct 02, 2022 at 11:47:42PM +0200, Thomas Goirand wrote: > On 10/2/22 22:02, Russ Allbery wrote: > > Michael Biebl writes: > > > > > The main difference is, that the renaming caused an error message by > > > apt, so you knew something needed to be fixed. > > > > One could argue that havin

Re: deb822 sources by default for bookworm

On Thu, Nov 04, 2021 at 12:13:48AM +0800, Shengjing Zhu wrote: > On Wed, Nov 3, 2021 at 11:45 PM Julian Andres Klode wrote: > > > > Hi all, > > > > I'd like us to move from > > > > /etc/apt/sources.list > > > > to > > /etc/

Re: deb822 sources by default for bookworm

On Fri, Nov 05, 2021 at 05:31:49PM +0100, David Kalnischkies wrote: > On Wed, Nov 03, 2021 at 08:53:15PM +0100, Paul Gevers wrote: > > On 03-11-2021 16:45, Julian Andres Klode wrote: > > > There is some software "parsing" sources.list on its own, most of that > &

Re: deb822 sources by default for bookworm

On Wed, Nov 03, 2021 at 08:53:15PM +0100, Paul Gevers wrote: > Hi Julian, > > On 03-11-2021 16:45, Julian Andres Klode wrote: > > There is some software "parsing" sources.list on its own, most of that > > is better served by `apt-get indextargets` (and for download

Re: deb822 sources by default for bookworm

On Wed, Nov 03, 2021 at 04:23:52PM +, Holger Levsen wrote: > Hi Julian, > > this sounds like a nice and useful plan and feature(s), thank you! > just one question: > > On Wed, Nov 03, 2021 at 04:45:15PM +0100, Julian Andres Klode wrote: > > I'd like us

deb822 sources by default for bookworm

Hi all, I'd like us to move from /etc/apt/sources.list to /etc/apt/sources.list.d/debian.sources in bookworm. # deb822 intro The deb822 format can be shorter and easier to read, to quote the sources.list manual page: As an example, the sources for your distribution could look

Re: Bug#969631: can base-passwd provide the user _apt?

On Sun, Aug 29, 2021 at 11:30:41PM +0100, Colin Watson wrote: > On Sun, Aug 29, 2021 at 11:31:05AM -0700, Russ Allbery wrote: > > Colin Watson writes: > > > I think it's an interesting idea and worth pursuing, but on the face of > > > it it seems that this would end up violating policy 9.2.2: > >

Re: Bug#990521: I wonder whether bug #990521 "apt-secure points to apt-key which is deprecated" should get a higher severity

On Thu, Jul 01, 2021 at 02:18:17PM +0200, Andreas Tille wrote: > Hi Julian, > > On Thu, Jul 01, 2021 at 02:02:43PM +0200, Julian Andres Klode wrote: > > Control: severity -1 minor > > > > On Thu, Jul 01, 2021 at 01:51:22PM +0200, Andreas Tille wrote: > > > I

Re: Bug#990521: I wonder whether bug #990521 "apt-secure points to apt-key which is deprecated" should get a higher severity

Control: severity -1 minor On Thu, Jul 01, 2021 at 01:51:22PM +0200, Andreas Tille wrote: > Hi, > > I'm running a (quite) up to date testing and recently I stumbled upon > > $ sudo apt update > ... > Err:8 http://fam-tille.de/debian local InRelease > The following signatures couldn't be

Relicensing APT's methods/rsh.cc from GPL-2 to GPL-2+

Hi folks, I noticed today that methods/rsh.cc was GPL-2 only, which is an outlier in the licensing that should be fixed, as it prevents GPL-3 components from making it into apt-pkg. Apart from DonKult and me, we have the following contributors who we need permission for relicensing from: * Ben C

Notice: apt 2.3.y (next cycle) to refuse downloading packages without a Size field

Hi all, the discussion in https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1921626 showed us that some repositories have no Size field for their packages, including all repositoires generated by pulp. This is not a tested configuration, as we can see from the bug ;) I'll be fixing this bug in

RFC: switching apt tls to openssl (>= 3) | GPL-3+ /usr/lib/apt/methods/http concerns

Hi folks, it is our plan to switch apt from GnuTLS to OpenSSL once OpenSSL 3.0 is out, making /usr/lib/apt/methods/http effectively a GPL-3+ licensed binary. Or earlier, in case ftp masters decide that the system library exception applies to OpenSSL. I heard some concerns about such a change maki

Re: apt 2.0 release notes

On Tue, Mar 10, 2020 at 08:36:25AM -0400, The Wanderer wrote: > On 2020-03-10 at 06:58, Julian Andres Klode wrote: > > > On Sat, Mar 07, 2020 at 09:41:44PM +0100, Julian Andres Klode wrote: > > > >> ### Incompatibilities > >> > >> * The apt(8) com

Re: apt 2.0 release notes

On Sat, Mar 07, 2020 at 09:41:44PM +0100, Julian Andres Klode wrote: > ### Incompatibilities > > * The apt(8) command no longer accepts regular expressions or wildcards as > package arguments, use patterns (see New Features). Correction - regular expressions starting in ^ or endin

Re: RFC: Standardizing source package artifacts build paths

On Mon, Mar 09, 2020 at 10:09:46AM +0100, Guillem Jover wrote: > We'd like to standardize on a new set of artifact build pathnames > for our deb toolchain. [...] [...] > The use of a hidden directory is to reduce clutter and stomping over any Love the hidden directory. -- debian developer - deb

Re: apt 2.0 release notes

On Sun, Mar 08, 2020 at 02:40:56PM -0400, Boyuan Yang wrote: > Hi, > > 在 2020-03-07六的 21:41 +0100，Julian Andres Klode写道： > > # APT 2.0 > > ### Incompatibilities > > > > * The apt(8) command no longer accepts regular expressions or wildcards as > > p

Re: apt 2.0 release notes

On Sun, Mar 08, 2020 at 07:10:49PM +0100, Jonas Smedegaard wrote: > Quoting Matthias Klose (2020-03-08 18:40:34) > > On 3/7/20 9:41 PM, Julian Andres Klode wrote: > > > # APT 2.0 > > > > > > After brewing in experimental for a while, and getting a first outi

apt 2.0 release notes

# APT 2.0 After brewing in experimental for a while, and getting a first outing in the Ubuntu 19.10 release; both as 1.9, APT 2.0 is now landing in unstable. 1.10 would be a boring, weird number, eh? Compared to the 1.8 series, the APT 2.0 series features several new features, as well as improvem

Re: Deprecating regex/fnmatch fallback for package arguments, and 1.9.6 highlights

On Thu, Jan 16, 2020 at 05:46:56PM +0100, Enrico Zini wrote: > On Thu, Jan 16, 2020 at 01:15:29PM +, Paul Wise wrote: > > > > No, did I give that impression? Sorry, search is going to stay > > > with regex on (I think it's) package names and descriptions. > > > > Speaking of search, are the a

Re: Deprecating regex/fnmatch fallback for package arguments, and 1.9.6 highlights

On Thu, Jan 16, 2020 at 07:01:25AM -0500, Sam Hartman wrote: > Does it really make sense to deprecate regexps for apt-cache search? > In that case, I think you're very unlikely to want a literal match. No, did I give that impression? Sorry, search is going to stay with regex on (I think it's) pack

Re: Deprecating regex/fnmatch fallback for package arguments, and 1.9.6 highlights

On Wed, Jan 15, 2020 at 11:11:38PM +0100, Julian Andres Klode wrote: > Starting with APT 2.0 (1.9.6 in experimental), the apt(8) binary will > not try to interpret package names passed on the command-line as regular > expressions or fnmatch() style patterns. Future versions of apt-get

Re: Deprecating regex/fnmatch fallback for package arguments, and 1.9.6 highlights

On Thu, Jan 16, 2020 at 01:49:55AM +, Paul Wise wrote: > On Wed, Jan 15, 2020 at 10:12 PM Julian Andres Klode wrote: > > > # The solution > > I would have thought the way to go would be to introduce explicit > --raw --fnmatch --regex --pattern options for each dif

Deprecating regex/fnmatch fallback for package arguments, and 1.9.6 highlights

Starting with APT 2.0 (1.9.6 in experimental), the apt(8) binary will not try to interpret package names passed on the command-line as regular expressions or fnmatch() style patterns. Future versions of apt-get(8) and apt-cache(8) will follow that change, following the release of bullseye. # The

Re: Sorce only uploads with sbuild (was: Bits from the Release Team)

On Tue, Jul 23, 2019 at 08:18:05AM -0700, Sean Whitton wrote: > Hello, > > On Tue 23 Jul 2019 at 03:53pm +02, Mathias Behrle wrote: > > > Thanks a lot, could have found myself...:( > > TBH I didn't assume that such a bug could exist when we make source-only > > uploads manadatory. > > I find it

Re: Detecting (upcoming) problems using automatic tests

On Thu, Jul 11, 2019 at 10:23:59PM -0300, Chris Lamb wrote: > Hi Julian, > > > I was just thinking that adding deprecation warnings and stuff > > to software is "nice", but the problem with warnings is that they > > tend to not break tests. > > I'm guessing you have a particular package or use-ca

unsigned repositories (was: Re: Dropping Release and Release.gpg support from APT)

On Tue, Jul 09, 2019 at 08:53:04PM +0200, Julian Andres Klode wrote: > So, > > we currently have code dealing with falling back from InRelease > to Release{,.gpg} and it's all a bit much IMO. Now that buster > has been released with an InRelease file, the time has IMO c

Detecting (upcoming) problems using automatic tests

Dear fellow developers, I was just thinking that adding deprecation warnings and stuff to software is "nice", but the problem with warnings is that they tend to not break tests. I feel like it would be nice to come up with a standard environment variable to turn warnings into errors, so we can en

Re: Dropping Release and Release.gpg support from APT

On Wed, Jul 10, 2019 at 10:10:41AM +0200, Philipp Kern wrote: > On 2019-07-10 10:04, Julian Andres Klode wrote: > > On Wed, Jul 10, 2019 at 10:35:25AM +0800, Paul Wise wrote: > > > On Wed, Jul 10, 2019 at 2:53 AM Julian Andres Klode wrote: > > >

Re: Dropping Release and Release.gpg support from APT

On Wed, Jul 10, 2019 at 10:35:25AM +0800, Paul Wise wrote: > On Wed, Jul 10, 2019 at 2:53 AM Julian Andres Klode wrote: > > > Timeline suggestion > > --- > > now add a warning to apt 1.9.x for repositories w/o InRelease, but > > Release{,

Dropping Release and Release.gpg support from APT

So, we currently have code dealing with falling back from InRelease to Release{,.gpg} and it's all a bit much IMO. Now that buster has been released with an InRelease file, the time has IMO come for us to drop support for the old stuff from APT! Timeline suggestion --- now

Bug#930722: arc, arcanist: Both ship arc binary

Package: arc,arcanist Severity: serious arc: /usr/bin/arc arcanist: /usr/bin/arc One of them needs to be renamed, or both. -- System Information: Debian Release: buster/sid APT prefers eoan APT policy: (991, 'eoan'), (500, 'eoan'), (500, 'cosmic-security') Architecture: amd64 (x86_64) Foreig

Re: Removing bzip2 support from apt due to rustification

On Fri, Jun 07, 2019 at 03:36:08PM -0500, Federico Mena Quintero wrote: > On Fri, 2019-06-07 at 11:48 +0800, Julian Andres Klode wrote: > > Why am I getting BCCed on this? Is this low-key unsolicited > complaining like in https://mastodon.social/@juliank/102226793499538013 I did

Re: Removing bzip2 support from apt due to rustification

On Thu, Jun 06, 2019 at 05:44:27PM -0400, Boyuan Yang wrote: > 在 2019-06-06四的 23:35 +0200，Julian Andres Klode写道： > > Hi folks, > > > > seeing that Federico Mena Quintero has taken over bzip2 development > > and is in the process of porting it to Rust[1], we should

Removing bzip2 support from apt due to rustification

Hi folks, seeing that Federico Mena Quintero has taken over bzip2 development and is in the process of porting it to Rust[1], we should consider removing bzip2 support from apt, dpkg, etc. following the release of buster. My understanding is that having APT depend on a library written in Rust sev

Re: merged-/usr-via-symlinks damage control (was Re: usrmerge -- plan B?)

On Tue, Feb 19, 2019 at 05:49:24AM +0100, Guillem Jover wrote: > Hi! > > On Tue, 2018-11-20 at 22:16:17 +0100, Adam Borowski wrote: > > Thus, it seems to me that the plan A for usrmerge has serious downsides for > > dubious benefits. What about the plan B I described above? > > So, people still

Bug#921372: ITP: triehash -- generator for perfect hash functions as C code

Package: wnpp Severity: wishlist Owner: Julian Andres Klode * Package name: triehash Version : 0.3 Upstream Author : Julian Andres Klode * URL : http://github.com/julian-klode/triehash/ * License : MIT Programming Lang: Perl Description : generator

Re: Bug#911090: libapt-pkg5.0: incompatible with apt/stretch

On Mon, Oct 15, 2018 at 05:12:10PM +0200, Andreas Beckmann wrote: > Package: libapt-pkg5.0 > Version: 1.7.0 > Severity: serious > > Hi, > > I just did a partial upgrade on a stretch+buster+sid development > system resulting in apt-get erroring out with > > apt-get: relocation error: /usr/lib/x8

Bug#901844: ITP: networkd-dispatcher -- Dispatcher service for systemd-networkd connection status changes

Package: wnpp Severity: wishlist Owner: Julian Andres Klode * Package name: networkd-dispatcher Version : 1.7 Upstream Author : craftyguy "Clayton Craft" * URL : https://gitlab.com/craftyguy/networkd-dispatcher * License : GPL-3+ Programming La

Bug#901001: python3-minimal should Pre-Depend on python3.N-minimal

Package: python3-default Severity: serious When python3 default version changes, and a new python3-minimal is unpacked before its python3.N-minimal, we end up with a system without a working python3 symlink. This breaks upgrades because prerm scripts of python3 packages use: if which py3clean >

Re: RFC: Support for zstd in .deb packages?

On Tue, May 01, 2018 at 10:36:34AM +0200, Marco d'Itri wrote: > On Apr 27, Julian Andres Klode wrote: > > > Our major use case is cloud initial setup, image building, CI, buildds, all > > of which do not require any syncs, and can safely use eatmydata, for > > ex

Re: RFC: Support for zstd in .deb packages?

On Fri, Apr 27, 2018 at 01:45:07PM +0200, Adam Borowski wrote: > (ZSTD) > > On Fri, Apr 27, 2018 at 07:02:12AM +0200, Guillem Jover wrote: > > Recently Julian mentioned it again on IRC, and we each started > > implementing support in dpkg and apt respectively, to allow easier > > evaluation. I sto

Re: RFC: Support for zstd in .deb packages?

On Fri, Apr 27, 2018 at 02:01:44PM +0200, Adam Borowski wrote: > On Fri, Apr 27, 2018 at 01:45:07PM +0200, Adam Borowski wrote: > > Don't. For .debs, that is. > > Scratch that. > > apt Depends: libapt-pkg5.0 Depends: libzstd1 > > While apt is "merely" priority:required rather than fully essenti

Re: Bug#882723: src:keepassxc: Generated file without preferred form of source: src/zxcvbn/dict-src.h

On Sun, Nov 26, 2017 at 07:45:13AM +0100, Paul Gevers wrote: > Hi Julian, > > On 26-11-17 01:29, Julian Andres Klode wrote: > > The file src/zxcvbn/dict-src.h is an autogenerated dictionary file, > > generated from smaller files. The directory is removed during build. >

Bug#882723: src:keepassxc: Generated file without preferred form of source: src/zxcvbn/dict-src.h

Package: src:keepassxc Severity: serious The file src/zxcvbn/dict-src.h is an autogenerated dictionary file, generated from smaller files. The directory is removed during build. I'm not entirely sure if I need to repackage the source tarball or not, given that the file is removed during clean, he

Re: allowed uses of non-baseline CPU extensions

On Sun, Oct 22, 2017 at 12:33:02PM +0300, Adrian Bunk wrote: > On Thu, Oct 05, 2017 at 03:52:56AM +0200, Adam Borowski wrote: > >... > > But, Adrian Bunk warned that this makes violating the baseline too easy. > > And indeed, I just noticed an attempt to use an extension in a way I don't > > consid

Re: Compressed apt index files by default?

On Sat, Sep 09, 2017 at 04:48:29PM +0200, Julian Andres Klode wrote: > Hi, > > I'd like us to try out using LZ4 compressed index files in > /var/lib/apt/lists for the next APT release series, starting > in October, after the release of Ubuntu 17.10 "artful". It tu

Re: Compressed apt index files by default?

On Sat, Sep 09, 2017 at 04:48:29PM +0200, Julian Andres Klode wrote: > Hi, > > I'd like us to try out using LZ4 compressed index files in > /var/lib/apt/lists for the next APT release series, starting > in October, after the release of Ubuntu 17.10 "artful". >

Re: Compressed apt index files by default?

On Sat, Sep 09, 2017 at 04:48:29PM +0200, Julian Andres Klode wrote: > Hi, > > I'd like us to try out using LZ4 compressed index files in > /var/lib/apt/lists for the next APT release series, starting > in October, after the release of Ubuntu 17.10 "artful". I

Re: Bug#876899: apt: Log to the systemd journal

On Tue, Sep 26, 2017 at 02:46:55PM -0400, Jeremy Bicha wrote: > Source: apt > Version: 1.5 > Severity: wishlist > > Ubuntu 17.10 has switched from the unmaintained gnome-system-log app > to gnome-logs by default. While gnome-system-log is a traditional log > viewer, gnome-logs only displays logs f

Compressed apt index files by default?

Hi, I'd like us to try out using LZ4 compressed index files in /var/lib/apt/lists for the next APT release series, starting in October, after the release of Ubuntu 17.10 "artful". This is done by swapping the default for Acquire::gzipIndexes from false to true. On my system, this compresses /var

Re: MBF: (Incorrect) use of /var/lib/apt/lists/

On Mon, Jan 11, 2016 at 05:25:40PM +0100, Julian Andres Klode wrote: > Hi everyone, > > the following packages contain lines matching the > expression: > /var/lib/apt/lists/.*(Packages|Sources) > > Those files may be compressed by any compressor > supported by APT

Re: Evaluation (Re: Proposal: A new approach to differential debs)

On Tue, Aug 22, 2017 at 10:53:47PM +0200, Sebastian Andrzej Siewior wrote: > On 2017-08-16 00:21:09 [+0200], Julian Andres Klode wrote: > > libreoffice-core (size only): > > > > -rw-r--r-- 1 jak jak 29M Jul 22 20:02 > > libreoffice-core_5.3.5~rc1-3_amd64.deb > &g

Re: fdisk becoming non-essential, dependencies needed.

On Fri, Aug 18, 2017 at 11:59:13AM +0200, Bastien ROUCARIES wrote: > On Thu, Aug 10, 2017 at 5:11 PM, Andreas Henriksson wrote: > > Hello, > > > > A new version 2.29.2-3 of src:util-linux was recently uploaded to > > experimental[1]. The plan is to ship those changes in Buster. > > > > In this ver

Re: Evaluation (Re: Proposal: A new approach to differential debs)

On Wed, Aug 16, 2017 at 12:21:09AM +0200, Julian Andres Klode wrote: > firefox (size & performance): > > -rw-r--r-- 1 jak jak 2.3M Aug 15 20:59 firefox_55.0-1_55.0-2_amd64.debdelta > -rw-r--r-- 1 jak jak 2.4M Aug 15 22:13 firefox_55.0-1_55.0-2_amd64.pdeb > -rw-r--r-- 1 jak

Re: A radically different proposal for differential updates

On Tue, Aug 15, 2017 at 08:51:23PM +0200, Julian Andres Klode wrote: > On Tue, Aug 15, 2017 at 09:26:24AM +0200, Christian Seiler wrote: > > Hi there, > > > > I've come to believe that binary diff packages are not the best way of > > solving this issue. Intea

Re: Proposal: A new approach to differential debs

On Sun, Aug 13, 2017 at 12:38:56PM +0300, Adrian Bunk wrote: > On Sat, Aug 12, 2017 at 02:16:21PM -0400, Julian Andres Klode wrote: > >... > > I think delta debs are generally a thing we should aim to have, > >... > > It sounds like something that would have been a

Re: Proposal: A new approach to differential debs

On Sun, Aug 13, 2017 at 10:53:16AM -0400, Peter Silva wrote: > You are assuming the savings are substantial. That's not clear. When > files are compressed, if you then start doing binary diffs, well it > isn't clear that they will consistently be much smaller than plain new > files. it also isn'

Evaluation (Re: Proposal: A new approach to differential debs)

On Sat, Aug 12, 2017 at 02:16:21PM -0400, Julian Andres Klode wrote: > Hi everyone, > > (I CCed -devel and deity, but we probably should just discuss > that on -dpkg) > > while breakfast here at DebConf, the topic of delta upgrades > came up. I think delta debs are genera

Re: A radically different proposal for differential updates

On Tue, Aug 15, 2017 at 09:26:24AM +0200, Christian Seiler wrote: > Hi there, > > I've come to believe that binary diff packages are not the best way of > solving this issue. Intead I'd like to propse a radically different > solution to this issue. > > The gist of it: instead of adding a format f

Re: Proposal: A new approach to differential debs

On Sun, Aug 13, 2017 at 08:24:27PM -0400, Peter Silva wrote: > o in spite of being the *default*, it isn't that universal, and in > any event, we can just decide to change the default, no? One can say > to people with bandwidth limitations, that their apt settings should > not delete packages after

Re: Proposal: A new approach to differential debs

On Sun, Aug 13, 2017 at 10:53:16AM -0400, Peter Silva wrote: > You are assuming the savings are substantial. That's not clear. When > files are compressed, if you then start doing binary diffs, well it > isn't clear that they will consistently be much smaller than plain new > files. it also isn'

Proposal: A new approach to differential debs

Hi everyone, (I CCed -devel and deity, but we probably should just discuss that on -dpkg) while breakfast here at DebConf, the topic of delta upgrades came up. I think delta debs are generally a thing we should aim to have, but debdelta is not the implementation we want: * It is not integrated

Re: Call for testing: APT 1.5~alpha1/experimental

On Thu, Jun 29, 2017 at 06:04:58PM +0200, Julian Andres Klode wrote: > On Thu, Jun 29, 2017 at 09:38:31AM +0200, Julian Andres Klode wrote: > > APT 1.5~alpha1 landed in experimental today(ish). It includes three > > big changes (one of which, the new https support, is opt-in).

Re: Call for testing: APT 1.5~alpha1/experimental

On Thu, Jun 29, 2017 at 09:38:31AM +0200, Julian Andres Klode wrote: > APT 1.5~alpha1 landed in experimental today(ish). It includes three > big changes (one of which, the new https support, is opt-in). 1.5~alpha2 fixes a critical security issue for people that set a custom CaInfo option: A

Call for testing: APT 1.5~alpha1/experimental

APT 1.5~alpha1 landed in experimental today(ish). It includes three big changes (one of which, the new https support, is opt-in). [ Changes to unauthenticated repositories ] The security exception for apt-get to only raise warnings if it encounters unauthenticated repositories in the "update

Re: Replacing apt's http method (dropping curl)

On Wed, Jun 28, 2017 at 02:56:50PM +0200, Tim Rühsen wrote: > Hi, > > I just want to mention that libwget[1] already has all the code you need > plus lot's of other fancy TLS stuff (session resumption, false start, > tcp fast open, OCSP). It is part of GNU Wget2, which is not released > yet, mainl

Re: Replacing apt's http method (dropping curl)

On Wed, Jun 28, 2017 at 12:40:16PM +0800, YunQiang Su wrote: > I'd guess you have to help process the bootstrap process. > The TLS stuff is a quilt big trouble when bootstrap Debian for new > architecture. > So, I prefer the current schema, aka split https stuff to itself's > source package. It's

Re: Replacing apt's http method (dropping curl)

On Wed, Jun 28, 2017 at 03:42:14AM +0800, Aron Xu wrote: > On Wed, Jun 28, 2017 at 2:00 AM, Julian Andres Klode wrote: > > Hi everyone, > > > > as we discussed before in IRC, we plan to eventually replace > > our existing curl-based https method with our http method, &

Replacing apt's http method (dropping curl)

Hi everyone, as we discussed before in IRC, we plan to eventually replace our existing curl-based https method with our http method, by adding TLS support to it. This will move HTTPS support into apt proper, removing the apt-transport-https package. I'm not sure how long this will take, I hope we

Re: "Ask HN: What do you want to see in Ubuntu 17.10?"

On Fri, Jun 09, 2017 at 01:25:33AM +0100, Ben Hutchings wrote: > On Thu, 2017-06-08 at 19:52 +0100, Steven Chamberlain wrote: > > I would certainly reiterate this: > > https://news.ycombinator.com/item?id=14003253 > > > > Some versions of Ubuntu (at least trusty, xenial) have the added > > "featur

Re: Too many Recommends (in particular on mail-transport-agent)

On Tue, May 30, 2017 at 01:57:03PM +0200, Ansgar Burchardt wrote: > Hi, > > my impression is that too many packages use Recommends that should > really be Suggests. As a random example: installing dracut as a > initramfs provider will pull in exim4... (dracut-core Recommends: mdadm > which Recomm

Bug#863863: ITP: gmailieer -- Fast fetch and two-way tag synchronization between notmuch and GMail

Package: wnpp Severity: wishlist Owner: Julian Andres Klode (gauteh: this is a Debian packaging intent) * Package name: gmailieer Version : 0.1+git Upstream Author : Gaute Hope * URL : https://github.com/gauteh/gmailieer * License : GPL-3+ Programming Lang

  1   2   3   >