[SCM] Debian package checker annotated tag, 2.5.13, created. 2.5.13
The annotated tag, 2.5.13 has been created
at 14d224fe6fbf447192bc1ea917074e8f0ac2cd28 (tag)
tagging bdf99d655e54c9966c0926681deec251510f5b86 (commit)
replaces 2.5.12
tagged by Niels Thykier
on Thu May 30 09:34:38 2013 +0200
- Shortlog ------------------------------------------------------------
Release lintian/2.5.13 into unstable
Format: 1.8
Date: Thu, 30 May 2013 08:53:02 +0200
Source: lintian
Binary: lintian
Architecture: source all
Version: 2.5.13
Distribution: unstable
Urgency: low
Maintainer: Debian Lintian Maintainers <lintian-maint@debian.org>
Changed-By: Niels Thykier <niels@thykier.net>
Description:
lintian - Debian package checker
Closes: 670092 697164 705170 705197 705441 705835 706166 706241 706242 706827 707400 707742 708178 708755 708881 708943 708957 709041 709121 709379 709415 709455 709615 709886 710086
Changes:
lintian (2.5.13) unstable; urgency=low
.
Upload to unstable.
.
* Summary of tag changes:
+ Added:
- conffile-is-not-in-package
- debconf-translation-using-general-list
- dh_pysupport-is-obsolete
- init.d-script-call-internal-API
+ Removed:
- debhelper-maintscript-needs-versioned-build-depends
- debhelper-script-needs-versioned-build-depends
- missing-pre-dependency-on-multiarch-support
.
* checks/*:
+ [NT] Use Lintian::Path objects as arguments to unpacked
and control where these objects are available.
* checks/binaries:
+ [RA] Do not complain about kernel modules with no shared
library dependency information. Patch from Guillem Jover.
(Closes: #706242)
+ [NT] Demote the certainty of hardening-no-fortify-functions
to "wild-guess". (Closes: #709415)
* checks/changes:
+ [NT] Recognise "<dist>-backports-sloppy" as a valid
distribution. Thanks to Romain Francoise for the
report and the patch. (Closes: #705170)
* checks/conffiles:
+ [NT] Strip whitespace from conffiles similar to how dpkg
does it.
+ [NT] When emitting duplicate-conffile, avoid repeating
other tags related to that conffile. The exception to
this is relative-conffile where the original file might
not have triggered that tag.
+ [NT] Test that all paths listed in the "conffiles" control
file is actually in the package being tested.
* checks/cruft{,.desc}:
+ [JW] Correct the name of the architecture listed in
description of the tag outdated-autotools-helper-file.
(Closes: #706166)
+ [NT] Flag all absolute symlinks in source packages as
"unsafe". (Closes: #697164)
+ [NT] Fix false-positive source-contains-unsafe-symlink
for symlinks ascending one or more levels without escaping
the package root. Thanks to Michael Schutte for the
report and the patch. (Closes: #707742)
+ [NT] Add a series of patches from Bastien Roucariès to
reduce the number of false positives and negatives in the
GDFL related checks. (Closes: #708957, #708881, #709379,
#709886)
* checks/debhelper{,.desc}:
+ [NT] Retire some tags that are no longer relevant in the
Jessie development cycle.
+ [NT] Apply patch from Luca Falavigna to detect uses of the
deprecated tool, dh_pysupport. (Closes: #709615)
* checks/description:
+ [NT] Skip extended-description-is-probably-too-short
for -dbg packages. Thanks to Paul Wise for the suggestion.
(Closes: #705441)
* checks/fields.desc:
+ [NT] Clarify that the "canonical URI" for Vcs fields is
based on an announcement from the Alioth admins. Thanks
to Torquil Sørensen for the report. (Closes: #705835)
+ [NT] Clarify in the tag description of some tags related
to "Vcs-*" fields that the tags are based on a data list
(and is not a result of a HTTP request while checking the
package).
* checks/files{,.desc}:
+ [JW,NT] Drop missing-pre-dependency-on-multiarch-support
now that multiarch-support is in stable. (Closes: #709121)
+ [JW] Fix typo in a tag description. (Closes: #709455)
+ [NT] Change the "ancient-file" cut-off date to 1975 from
1984. Thanks to Ole Streicher and Ansgar Burchardt for the
report. (Closes: #710086)
* checks/group-checks.desc:
+ [NT] Add missing semi-colon in tag description. Thanks to
Andrey Rahmatullin for the report. (Closes: #706827)
* checks/init.d{,.desc}:
+ [NT] Add missing import of utility function that could cause
Lintian to crash in some cases.
+ [NT] Add check for uses of /lib/init in maintainer scripts.
Thanks to Josh Triplett for the report and to Bastien
Roucariès for the patch. (Closes: #670092)
* checks/menu-format:
+ [NT] Fix use of uninitialized variable when menu file uses a
section of "/". (Closes: #708755)
* checks/po-debconf{,.desc}:
+ [NT] Remove tests for commands that are provided by
Lintian's dependencies.
+ [RA] Add new check for a Language-Team field in a translation
pointing to the debian-i18n mailing list. Based on work by
victory. (Closes: #705197)
* checks/rules:
+ [NT] Remove check for "dpkg-dev (>= 1.16.1~)" build-dependency,
since this is trivially satisfied in Wheezy and Jessie.
.
* collection/*-helper:
+ [NT] Move all collection helpers to helpers/coll.
* collection/debfiles:
+ [NT] Replace makeshift "is_ancestor_of" check with the
one from L::Util.
* collection/java-info:
+ [NT] Update a regex to cope with file(1) now calling JAR files
for "Java Jar file" rather than "Zip archive".
(Closes: #707400)
.
* data/changes-file/known-dists:
+ [NT] Add jessie and remove lenny.
* data/debhelper/dh_{addons,commands}-manual:
+ [NT] Remove entries/versions that are no longer relevant.
* data/fields/perl-provides:
+ [NT] Refresh against sid. (Closes: #708178)
* data/spelling/corrections:
+ [NT] Add correction for unnecessarily. Thanks to Guillem
Jover for the suggestion. (Closes: #706241)
.
* debian/control:
+ [NT] Remove irrelevant (versioned) dependencies that are now
trivially satisfied in stable.
+ [NT] Recommend libautodie-perl (>= 2.18) and libperlio-gzip-perl
as these can greatly effect performance of Lintian.
* debian/lintian.install:
+ [NT] Install "helpers" as /usr/share/lintian/helpers
* debian/{postinst,prerm}:
+ [NT] Remove unused maintainer scripts now that stable's
libc-bin provides a C.UTF-8.
* debian/triggers:
+ [NT] Remove unused trigger now that stable's libc-bin
provides a C.UTF-8.
.
* doc/tutorial/**/*.pod:
+ [NT] Fix a number of spelling mistakes in the POD.
* doc/tutorial/Lintian/Tutorial/WritingChecks.pod:
+ [NT] Add a section about how to avoid some common ways
of introducing security issues.
.
* frontend/lintian:
+ [NT] Ignore LINTIAN_ROOT/locale and /var/lib/lintian/locale.
+ [NT] Export LINTIAN_INCLUDE_DIRS and LINTIAN_HELPERS_DIR to
subprocesses. These are ":"-separated lists of dirs used by
Lintian. The first being a list of raw include dirs and the
second being a list of helpers dirs in these include dirs.
+ [NT] Fix a bug where the exit code from lintian would
sometimes be an undocumented value (>= 3).
.
* helpers/coll:
+ [NT] New directory containing some helpers that used to be in
directly collection.
.
* lib/*:
+ [NT] Fix a number of spelling mistakes in the POD.
* lib/Lintian/Collect/{Package,Binary}.pm:
+ [NT] Accept Lintian::Path objects to unpacked and control.
* lib/Lintian/Collect/Source.pm:
+ [NT] Provide a "source" specific is_non_free method that reads
the "Section"-field from d/control instead of the .dsc. This
fixes false-positives "problematic licenses" for non-free
packages. Thanks to Bastien Roucariès for the report.
(Closes: #709041)
* lib/Lintian/Path.pm:
+ [NT] Rename link_resolved to link_normalized.
* lib/Lintian/Unpacker.pm:
+ [NT] On platform that support it, change the "name" of the
process running the collection. This makes it easier to
see what collections are currently being run (like in the
versions prior to 2.5.12). For platforms, where it is
not possible to change the name of a running process, the
unpack jobs will simply be named "lintian" like its parent.
* lib/Lintian/Util.pm:
+ [NT] Fix a race condition in touch_file.
+ [NT] Add sanity check in perm2oct for bad permission
strings and throw errors when they are seen (instead
of returning 0).
+ [NT] Require that the input file is present for
read_dpkg_control and get_deb_control.
+ [NT] In copy_dir, pass --reflink=auto to cp.
+ [NT] Replace resolve_pkg_path with to normalize_pkg_path.
The latter has slightly different return values in some
cases.
+ [NT] Avoid the LOCPATH dance to find the path to an UTF-8
locale now that stable's libc-bin provides C.UTF-8 for us.
+ [NT] Add new function, locate_helper_tool, to find helper
tools.
.
* private/refresh-perl-provides:
+ [NT] Apply patch from Niko Tyni to improve Lintian's
data file about Perl modules provided by perl-base.
.
* profiles/debian/extra-apache2.profile:
+ [NT] Removed, merged into debian/main.profile.
* profiles/debian/ftp-master-auto-reject.profile:
+ [NT] Include md5sums-mismatch and non-standard-toplevel-dir
as an overridable tag.
* profiles/debian/main.profile:
+ [NT] Include the apache2 check. Thanks to Arno Töll for
the report. (Closes: #708943)
.
* reporting/harness:
+ [NT] Stop exporting ENV variables that lintian no longer
cares about.
.
* vendors/ubuntu/main/data/changes-file/known-dists:
+ [NT] Add "saucy" as known Ubuntu distribution. Thanks to
Iain Lane for the report.
Checksums-Sha1:
b5b937a5586188a1583467b4693ebf1af798dd22 1638 lintian_2.5.13.dsc
2cc3eefe538af49ee56c75628dd75b85f56c45fb 1218930 lintian_2.5.13.tar.gz
b3609f81c5bcff4751b4a0810eb4e0c9b49f3cdb 768798 lintian_2.5.13_all.deb
Checksums-Sha256:
28a3a39f4a0d8981fbc0ad86d981f5b17b5adaeff33eeb6b76e67ffc13821770 1638 lintian_2.5.13.dsc
68f3a5b5351acc68b2891c6bfd84d092161c2ee047eab2b4b0894ad995452071 1218930 lintian_2.5.13.tar.gz
1b16956a4e0b10563ded87b9e82da73e013b88aadbe51e21ffca04cf93ddce4d 768798 lintian_2.5.13_all.deb
Files:
751c3a5bbd847d7d835540310aba9563 1638 devel optional lintian_2.5.13.dsc
39d74abe4ddd2bc741ec74ab299fe4fc 1218930 devel optional lintian_2.5.13.tar.gz
d3dc3cad82baaaa35a66157e5e184f17 768798 devel optional lintian_2.5.13_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=tykN
-----END PGP SIGNATURE-----
Andrey Rahmatullin (1):
c/group-checks.desc: Add missing semi-colon
Bastien ROUCARIÈS (21):
Be more liberal for zero is plural case for matching gfdl
Allow patch symbols as space for gfdl detection
Allow <br> and <br/> as space for gfdl license check
Be more liberal about gfdl on linking words
Allow man comments for gfdl invariants
Allow C comments continuation
Add variant for dict-fold package
Fix a false positive for the gfdl check in case of GNU with under <span> tags
Fix false positive for detection of gfdl license problem
Allow break at hyphen for detection of gfdl
Allow font change after GNU for matching the GFDL licence
Move old false postive test case to their own subdirectory
Allow indenting text with pipe
Allow verbatim \n in C strings
Allow (*note ) from info file
Fix false positive in xml file due to <link.*> </link>
Allow <a> </a> tag for html
Fix #708957 when GFDL is used in template
c/cruft: Fix a GDFL false negative
c/cruft: Do not warn for license string in debian changelog
Warn about any reference to /lib/init in init.d scripts
Guillem Jover (2):
c/binaries: Ignore kernel modules for shared-lib-without-dependency-information
spelling: Add correction for unnecessarily
Jakub Wilk (4):
doc: Correct another typo
c/cruft: outdated-autotools-helper affects ARM64
c/files.desc: Fix typo in tag description
d/changelog: Fix typo
Luca Falavigna (1):
c/debhelper: Detect and tag dh_python as obsolete
Michael Schutte (1):
c/cruft: Don't consider all ../../** symlinks unsafe
Nicolas Dandrimont (1):
d/changelog: Replace incorrect use of "is" with "are"
Niels Thykier (100):
L::Util::touch_file: Pass the filehandle to utime
L::Util: Avoid "garbage-in, garbage-out" in perm2oct
L::Util: Require input files to exists
coll/debfiles: Use is_ancestor_of from L::Util
L::Util: Use autodie where applicable
checks/*: Remove unused arguments for "file is utf8"
checks/po-debconf: Remove test for msgcmp and intltool-update
L::Util: Pass --reflink=auto to cp
Apply PerlCritic to reporting as well
r/harness: Avoid exporting some unused ENV variables
lib,doc: Fix a number of spelling mistakes
t/scripts/pod.t: Also check the pod files in doc/
L::Collect::*: Allow L::Path objects as arg to unpacked/control
checks/*: Pass Lintian::Path objects to unpacked/control
c/testsuite: Remove (now unused) arguments "File is utf8" sub
WritingChecks: Add section on how to avoid security issues
WritingChecks: Update the code style of the examples
L::C::*: unpacked/control + L::Path requires >= 2.5.13~
L::Util: Rename resolve_pkg_path to normalize_pkg_path
L::Path: Rename link_resolved to link_normalized
L::Util: Alter the return value of normalize_pkg_path
L::Lab: Fix typo of whitespace
c/fields.desc: Clarify some vcs-* related tags
WritingChecks: Fix typo and rewrite two sentences
c/fields.desc: canonical URIs are based on announcement
c/testsuite: Use the new code style
c/conffiles: Use the new code style
c/conffiles: strip whitespace like dpkg
c/conffiles: On duplicate-conffile skip further tests
c/conffiles: Add check for conffiles not being in the pkg
auto-reject.profile: Add md5sums-mismatch
lib+t: Convert a couple of modules to use autodie
c/description: Allow -dbg pkgs to have short descriptions
c/cruft: Flag all absolute symlinks in source pkgs as unsafe
c/cruft: Correct bug in is_ancestor_of usage
t: Replace bareword filehandles and use autodie
ubuntu/.../known-dists: Add "saucy"
t/.../strict.t: Test collection and reporting as well
t/.../min-version.t: Include private and reporting
r/html_reports: Use autodie and replace bareword handles
r/harness: Remove bareword file handle
private/*: Use autodie and replace bareword file handles
coll: use autodie and replace barewords file handles
coll/scripts: Use autodie completely
coll/scripts: Refactor and reuse shebang line extraction
coll/scripts: Replace bareword file handles
t/.../critic.t: Fix typo in path name
checks/*: use autodie + replace bareword file handles
checks/*: Replace all remaining bareword file handles
c/shared-libs: Remove call to close on unopened handle
coll/*: Use autodie and check calls to touch_file
r/harness: Check calls to {unlink,rename,symlink}
checks/*: Use autodie in all checks
c/debhelper: Retire some tags for debhelper (<< 9~)
c/rules: Remove check for dpkg-dev >= 1.16.1~ B-D
data/.../dh_*-manual: Remove some redundant entries
t/scripts/*: Set $ENV{LINTIAN_ROOT} if needed
t/scripts/*: Remove the "use lib"
t/scripts/strict.t: Test our checks + missing "use warnings"
.perlcriticrc: Extend "RequireCheckedSyscalls" policy
data/.../known-dists: Add Jessie and remove Lenny
t: Don't assume debian/<pkg> exists
L::Util: Make touch_file and open_gz exception-based
Use q{} instead of "" for strings with a single quote in it
testset: Use a slightly larger size for "largefile"
c/debian-source-dir: Replace a bareword dir handle
p/tag-stats: Fix use of uninitialized variable
c/init.d: Add missing "use L::Util qw(...)"
L::Unpacker: Try to rename the child processes
L::Unpacker: Add "no critic" marker
coll/java-info: file(1) now uses "Java Jar file"
d/main.profile: Include the apache2 check
c/menu-format: Fix use of uninitialized warning
c/standards-version: Bump ANCIENT_DATE
d/changelog: Add changelog entry for Bastian's patches
d/changelog: Add changelog entry for Niko Tyni's patches
d/changelog: Add missing colon
c/cruft: Use "return" instead of "next" to exit sub
L::C::Source: Add source specific "is_non_free" method
c/files: Drop check for pre-dep on multiarch-support
c/cruft: Strip common pod2man formatting
c/binaries: demote hardening-no-fortify-functions to wild-guess
t: Add update to test missing in the last commit
d/{postinst,prerm,triggers}: Drop unused files
Remove the code for setting/updating LOCPATH
d/control: Remove dependencies satisfied in stable
d/control: Recommend autodie 2.18 and perlio-gzip
minimum-version.t: Allow Perl 5.14.2 features
L::Util: Add locate_helper_tool
coll: Move coll helpers to helpers/coll
d/changelog: Add new tag to the tag summary
lintian: Use autodie for checking open/close etc.
lintian: Bounds check the exit code in END
data/.../interpreters: Add /bin/false as interpreter
Revert "data/.../interpreters: Add /bin/false as interpreter"
c/files: Change ancient files date to 1975 from 1984
Sync ftp-master auto-reject data
d/rules: Remove left-over reference to a profile
refresh-perl-provides: Special case autodie
Release lintian/2.5.13 into unstable
Niko Tyni (4):
Update the test suite to reflect libfile-temp-perl removal
Improve the version information of packages bundled with the Perl core
Refreshed perl-provides with the improved versioning logic
Augment the test suite for the improved perl-provides logic
Romain Francoise (1):
c/changes-file: Accept "<dist>-backports-sloppy" as valid dist
Russ Allbery (5):
Check for a translation Language-Team pointing to debian-i18n
Remove some left-over po-debconf language team code
Clean up more unneeded code in po-debconf check
Add =encoding to the POD in Lintian::Collect
Changelog for ignoring kernel modules without dependency info
-----------------------------------------------------------------------
--
Debian package checker
Reply to: