My Debian Activities in August 2019

FTP master

This month the numbers went up again and I accepted 389 packages and rejected 43. The overall number of packages that got accepted was 460.

Debian LTS

This was my sixty second month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 21.75h. During that time I did LTS uploads of:

  • [DLA 1887-1] freetype security update for one CVE
  • [DLA 1889-1] python3.4 security update for one CVE
  • [DLA 1893-1] cups security update for two CVEs
  • [DLA 1895-1] libmspack security update for one CVE
  • [DLA 1894-1] libapache2-mod-auth-openidc security update for one CVE
  • [DLA 1897-1] tiff security update for one CVE
  • [DLA 1902-1] djvulibre security update for four CVEs
  • [DLA 1904-1] libextractor security update for one CVE
  • [DLA 1906-1] python2.7 security update for one CVE

Last but not least I did some days of frontdesk duties.

Debian ELTS

This month was the fifteenth ELTS month.

During my allocated time I uploaded:

  • ELA-155-1 of cups
  • ELA-157-1 of djvulibre
  • ELA-158-1 of python2.7

I spent some time to work on tiff3 only to find that the affected features are not yet available.

I also did some days of frontdesk duties.

Other stuff

This month I uploaded new packages of …

I also uploaded new upstream versions of …

I improved packaging of …

On my Go challenge I uploaded golang-github-gin-contrib-static, golang-github-gin-contrib-cors, golang-github-yourbasic-graph, golang-github-cnf-structhash, golang-github-deanthompson-ginpprof, golang-github-jarcoal-httpmock, golang-github-gin-contrib-gzip, golang-github-mcuadros-go-gin-prometheus, golang-github-abdullin-seq, golang-github-centurylinkcloud-clc-sdk, golang-github-ziutek-mymysql, golang-github-terra-farm-udnssdk, golang-github-ensighten-udnssdk, golang-github-sethvargo-go-fastly.

I again reuploaded some go packages (golang-github-go-xorm-core, golang-github-jarcoal-httpmock, golang-github-mcuadros-go-gin-prometheus, golang-github-deanthompson-ginpprof, golang-github-gin-contrib-cors, golang-github-gin-contrib-gzip, golang-github-gin-contrib-static, golang-github-cyberdelia-heroku-go, golang-github-corpix-uarand, golang-github-cnf-structhash, golang-github-rs-zerolog, golang-gopkg-ldap.v3, golang-github-yourbasic-graph, golang-github-ovh-go-ovh, , that would not migrate due to being binary uploads before.

I also sponsored the following packages: golang-github-jesseduffield-gocui, printrun, cura-engine, theme-d, theme-d-gnome.

The DOPOM package for this month was gengetopt.

My Debian Activities in July 2019

FTP master

After the release of Buster I could start with real work in NEW again. Even the temperature could not hinder me to reject something. So this month I accepted 279 packages and rejected 15. The overall number of packages that got accepted was 308.

Debian LTS

This was my sixty first month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 18.5h. During that time I did LTS uploads of:

  • [DLA 1849-1] zeromq3 security update for one CVE
  • [DLA 1833-2] bzip2 regression update for one patch
  • [DLA 1856-1] patch security update for one CVE
  • [DLA 1859-1] bind9 security update for one CVE
  • [DLA 1864-1] patch security update for one CVE

I am glad that I could finish the bind9 upload this month.
I also started to work on ruby-mini-magick and python2.7. Unfortunatley when building both packages (even without new patches), the test suite fails. So I first have to fix that as well.

Last but not least I did ten days of frontdesk duties. This was more than a week as everybody was at DebConf and I seemed to be the only one at home …

Debian ELTS

This month was the fourteenth ELTS month.

During my allocated time I uploaded:

  • ELA-132-2 of bzip2 for an upstream regression
  • ELA-144-1 of patch for one CVE
  • ELA-147-1 of patch for one CVE
  • ELA-148-1 of bind9 for one CVE

I also did some days of frontdesk duties.

Other stuff

This month I reuploaded some go packages, that would not migrate due to being binary uploads.

I also filed rm bugs to remove all alljoyn packages. Upstream is dead, no one is using this software anymore and bugs won’t be fixed.

What to do next?

After Buster has been released now, I am thinking about what to do next for Bullseye. In order to build up some mildly pressure, I publish my goals here. Some of them might be obvious but nevertheless I will mention them for the sake of completeness:

  1. get rid of all Lintian errors in my packages
  2. get rid of all Lintian warnings in my packages
  3. get rid of all VCS problems with my packages
  4. get rid of all watch file problems with my packages
  5. make my packages reproducible build
  6. make my packages available on all architectures
  7. add tests to my packages
  8. update my packages to the newest version
  9. create Debian Pure Blends in all appropriate groups where I am a member of
  10. make my packages availabe in backports as well
  11. add grafana again to Debian
  12. add all software from the Osmocom project to Debian
  13. make home automation available in Debian
  14. make a voice assistant available in Debian
  15. taking care of no-dsa
  16. reducing NEW to <10

My Debian Activities in June 2019

FTP master

As you might have noticed as well, this month has been a month with the highest average temperature of all June so far. So I spent more time in the lake than in NEW. I only accepted 12 packages and rejected 1 upload. The rest of the team probably did the same because the overall number of packages that got accepted was only 22. Let’s see whether July will be the same …

Debian LTS

This was my sixtieth month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 17h. During that time I did LTS uploads or prepared security uploads of:

  • [DLA 1830-1] znc security update for one CVE
  • [DLA 1833-1] bzip2 security update for two CVEs
  • [DLA 1841-1] gpac security update for three CVEs

I also prepared bzip2 debdiffs for Buster and Stretch and sent them to the maintainer and security team.
Further I created new packages for testing the patches of bind9 and wpa. I would be more confident to upload those if more people could give it a try. Especially after the python issue, I would really like to have some more people to do smoke tests …

Last but not least I did some days of frontdesk duties.

Debian ELTS

This month was the thirteenth ELTS month.

During my allocated time I uploaded:

  • ELA-132-1 of bzip2 for two CVEs
  • ELA-138-1 of ntfs-3g for one CVE

As like LTS, I am a bit hesitant to upload bind9

I also did some days of frontdesk duties.

Other stuff

As already written above, I did not do much work in front of a computer, so there is nothing to report here.
Ok, maybe I can mention this email here instead of the LTS section above. This is a script to obtain the correct build order of Go packages in case of security patches. As well as mentioned in the other paragraphs I would like more people to have a look at it, but please be kind :-).

My Debian Activities in May 2019

FTP master

Nothing changed compared to last month, so this was again a quiet month. I only accepted 126 packages and rejected 15 uploads. The overall number of packages that got accepted was 156.

Debian LTS

This was my fifty ninth month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 18h. During that time I did LTS uploads or prepared security uploads of:

  • [DLA 1783-1] atftp security update for two CVEs
  • [DLA 1803-1] php5 security update for three CVEs
  • [DLA 1807-1] vcftools security update for three CVEs
  • [DLA 1811-1] miniupnpd security update for six CVEs

I also helped the maintainer of lemonldap-ng to create his DLA 1791-1. Further I created a package for testing bind9 and wpa, but both failed miserably in the wild, so I have to start from scratch here.

Last but not least I did some days of frontdesk duties.

Debian ELTS

This month was the twelfth ELTS month.

During my allocated time I uploaded:

  • ELA-120-1 of php5 for one CVE
  • ELA-122-1 of curl for one CVE

As like LTS, the bind9 package did not really work, thanks to Roberto C. Sánchez for telling me this.

I also did some days of frontdesk duties.

Other stuff

I uploaded a new upstream version of …

I uploaded a new package for …

On my Go challenge I uploaded golang-github-joyent-gosign, golang-golang-x-xerrors, golang-gopkg-ldap.v3, golang-github-ovh-go-ovh

My Debian Activities in April 2019

FTP master

This was again a quiet month and I only accepted 70 packages and rejected 11 uploads. The overall number of packages that got accepted was 102. As with every release, people still upload new versions of packages to unstable during the full freeze. I always wonder why they do this?

Debian LTS

This was my fifty eighth month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 17.25h. During that time I did LTS uploads or prepared security uploads of:

  • [DLA 1760-1] wget security update for one CVE
  • [DLA 1763-1] putty security update for three CVEs
  • [DLA 1765-1] gpac security update for two CVEs
  • [DLA 1767-1] monit security update for two CVEs
  • [DLA 1769-1] gst-plugins-base0.10 security update for one CVE
  • [DLA 1770-1] gst-plugins-base1.0 security update for one CVE

I also started to work on CVEs for bind.

Last but not least I did some days of frontdesk duties and tried to add my DLAs to the Debian Website.

Debian ELTS

This month was the eleventh ELTS month.

During my allocated time I uploaded:

  • ELA-99-2 of libssh2 for an upstream regression of CVE-2019-3859
  • ELA-112-1 of wget for one CVE
  • ELA-113-1 of monit for two CVEs
  • ELA-114-1 of ruby1.9.1 for four CVES

As like in LTS, I also did some days of frontdesk duties.

Other stuff

I uploaded a new upstream version of …

On my grafana challenge I uploaded golang-github-apparentlymart-go-cidr, golang-github-apparentlymart-go-rundeck-api, golang- github-corpix-uarand, golang-github-cyberdelia-heroku-go, golang-github-facebookgo-inject, golang-github-hmrc-vmware-govcd, golang-github-icrowley-fake, golang-github-michaeltjones-walk, golang-github-willf-bloom. There is still more to come and thank you ever so much, Chris, for marking all those for ACCEPT.

I also sponsored the following packages for other members of the Go team: easygen, golang-github-anmitsu-go-shlex, golang-github-emirpasic-gods, golang-github-fzambia-sentinel, golang-github-gliderlabs-ssh, golang-github-hashicorp-go-safetemp, golang-github-jesseduffield-gocui, golang-github-jesseduffield-termbox-go, golang-github-jesseduffield-pty, golang-github-kevinburke-ssh-config, golang-github-mgutz-str, golang-github-mgutz-to, golang-github-nozzle-throttler, golang-github-src-d-gcfg, golang-github-stvp-roll, golang-gopkg-src-d-go-billy.v4

My Debian Activities in March 2019

FTP master

The was again a rather quiet month and I only accepted 25 packages and rejected 2 uploads. The overall number of packages that got accepted was 60. But this month also several new trainees started to work and already left a bunch of notes. They are new and want to reject everything :-).

Debian LTS

This was my fifty seventh month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 29.5h. During that time I did LTS uploads or prepared security uploads of:

  • [DLA 1725-1] rsync security update for five CVE
  • [DLA 1729-1] wireshark security update for three CVEs
  • [DLA 1734-1] libraw security update for seven CVEs
  • [DLA 1741-1] php5 security update for six CVEs

I also started to work on CVEs for putty.

Last but not least I did some days of frontdesk duties and tried to add my DLAs to the Debian Website. This is a new and yet unfamiliar part of the LTS workflow and, yeah, I am a webmaster now 🙂

Debian ELTS

This month was the tenth ELTS month.

During my allocated time I uploaded:

  • ELA-95-1 of rsync for three CVEs
  • ELA-97-1 of wireshark for three CVEs
  • ELA-99-1 of libssh2 for nine CVEs

As like in LTS, I also did some days of frontdesk duties.

Other stuff

I improved packaging of …

On my grafana challenge I uploaded golang-github-facebookgo-structtag, golang-gopkg-stretchr-testify.v1, golang-github-rs-zerolog. There is still more to come and aleady thanks a lot to Chris for marking all those for ACCEPT.

Related to the new LTS workflow, I answered the RFA for the merchandise website and handle all requests regarding its contents now.

My Debian Activities in February 2019

FTP master

The freeze is approaching, so I only accepted 149 packages and rejected 5 uploads. The overall number of packages that got accepted this month was 229.

Debian LTS

This was my fifty sixth month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 19.5h. During that time I did LTS uploads or prepared security uploads of:

  • [DLA 1682-1] uriparser security update for one CVE
  • [DLA 1689-1] elfutils security update for 12 CVEs
  • [DLA 1691-1] exiv2 security update for five CVEs
  • [DLA 1693-1] gpac security update for five CVEs
  • [DLA 1697-1] bind9 security update two CVEs

I started to work on another round of wireshark CVEs and php5 and libraw.

Last but not least I did some days of frontdesk duties.

Debian ELTS

This month was the ninth ELTS month.

During my allocated time I uploaded:

  • ELA-85-1 of elfutils for 12 CVEs
  • ELA-86-1 of php5 for three CVEs
  • ELA-87-1 of bind9 for two CVEs

As like in LTS, I also did some days of frontdesk duties.

Other stuff

I improved packaging of …

I uploaded new upstream versions of …

Thanks a lot to Andreas Beckmann for patiently filing new bugs after I broke things.

I uploaded new packages …

  • cpptest, which is a unit testing framework for C++
  • pollen, which is a Entropy-as-a-Service web server
  • pollinate, can seed the pseudo random number generator

Recently I had a look at prometheus but was not really pleased about the graphs it can create. So I decided to bring back a more recent version of grafana into Debian and entered a dependency hell. Up to now I uploaded the following golang modules:
golang-github-cactus-go-statsd-client, golang-github-codahale-hdrhistogram, golang-github-crossdock-crossdock-go, golang-github-facebookgo-structtag, golang-github-go-xorm-core, golang-github-rs-zerolog, golang-github-teris-io-shortid, golang-github-thcyron-uiprogress, golang-github-uber-go-atomic, golang-github-vividcortex-mysqlerr, golang-github-yudai-golcs, golang-gopkg-stretchr-testify.v1
There is more to come and thanks a lot to Chris for marking all those for ACCEPT.

Last but not least I sponsored uploads of …

My Debian Activities in January 2019

FTP master

This month I accepted 363 packages, which is again more than last month. On the other side I rejected 68 uploads, which is almost twice as last month. The overall number of packages that got accepted this month was 494.

Debian LTS

This was my fifty fifth month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 20.5h. During that time I did LTS uploads or prepared security uploads of:

    [DLA 1634-1] wireshark security update for 41 CVEs
    [DLA 1643-1] krb5 security update for three CVEs
    [DLA 1645-1] wireshark security update for three CVEs
    [DLA 1647-1] apache2 security update for one CVE
    [DLA 1651-1] libgd2 security update for four CVEs

I continued to work on CVEs of exiv2.

Last but not least I did some days of frontdesk duties.

Debian ELTS

This month was the eight ELTS month.

During my allocated time I uploaded:

  • ELA-75-1 of wireshark for 26 CVEs
  • ELA-77-1 of krb5 for four CVEs
  • ELA-78-1 of wireshark for three CVEs

As like in LTS, I also did some days of frontdesk duties.

Other stuff

I improved packaging of …

I uploaded new upstream versions of …

I uploaded new packages …

  • ptunnel-ng, which is a fork of ptunnel with ongoing development

Last but not least I sponsored uploads of …

My Debian Activities in December 2018

FTP master

This month I accepted 276 packages, which is bit more than two months before. On the other side I rejected 34 uploads, which is the same as last month. The overall number of packages that got accepted this month was 442.

Debian LTS

This was my fifty fourth month that I did some work for the Debian LTS initiative, started by Raphael Hertzog at Freexian.

This month my all in all workload has been 30h. This was the first month were I did not upload any package, but only prepared a wireshark package for testing. It is available at people.d.o and contains patches for 31 CVEs. As lots of dissectors are affected, I would be very glad if others could have a look at it.

I also started to work on CVEs of exiv2 and krb5.

Last but not least I did some days of frontdesk duties.

Debian ELTS

This month was the seventh ELTS month.

During my allocated time I prepared a wireshark package for testing. It is also available at people.d.o and contains patches for 26 CVEs. As with the LTS version I would be very glad if others could have a look at it.

I also started to work on CVEs of krb5.

As like in LTS, I also did some days of frontdesk duties.

Other stuff

I improved packaging of …

I uploaded new upstream versions of …

Thanks to all the people that tested the meep and mpb packages and filed bugs. I am now trying to clean up the mess :-). At least my packages no longer depend on guile-2.0!

I didn’t have to sponsor package for Nicolas Mora anymore. He finally became a DM and I gave him upload rights for his packages. So now he can take care of his stuff on his own :-).
The next sponsee is Tommi Höynälänmaa. Initially he wanted to have theme-d and theme-d-gnome in Debian. Due to dependencies being orphaned and RC buggy he now has to take care of …

He is really doing a nice job.

The Debian Med Advent Calendar was again really successful this year. There was no new record, but with 81, a fair number of bugs could have been closed.

year number of bugs closed
2011 63
2012 28
2013 73
2014 5
2015 150
2016 95
2017 105
2018 81

Well done everybody who participated, especially Andreas Tille who closed by far the most bugs!