Re: binNMUs for dpkg-buildflags / -fstack-protector-strong
On Sat, Sep 20, 2014 at 02:18:34PM +0200, Julien Cristau wrote:
> On Sat, Sep 20, 2014 at 12:53:54 +0200, Moritz Muehlenhoff wrote:
>
> > On Sat, Sep 20, 2014 at 10:45:00AM +0200, Julien Cristau wrote:
> > > On Wed, Sep 17, 2014 at 22:29:10 +0200, Moritz Muehlenhoff wrote:
> > >
> > > > Hi release team,
> > > > dpkg-buildflags was switched to the strong stack protector on
> > > > the 10th of August. Many security-sensitive packages have already
> > > > been uploaded to unstable since then and I'm tracking which are
> > > > missing.
> > > >
> > > > For the remaining ones I'd like to request binNMUs. Is that
> > > > ok with and when's the best time? Probably not to early before
> > > > the freeze since some maintainer uploads will follow anyway,
> > > > but also not to close to the freeze. Maybe mid-October?
> > > >
> > > I think if you have a list now, that would be fine. We can always give
> > > them low build priority to not monopolize the buildds.
> >
> > Ok, will send the latest list in a few days. Is a list of source
> > packages enough or do you need to current version in unstable as well?
> >
> A version would allow us to not do unnecessary rebuilds if there's been
> a new upload after you generated the list. But if it's painful for you
> to generate, it's not actually mandatory.
ATM I only have a list of source packages, see below. I can whip up a script
to generate versions over the weekend, but since these packages haven't seen
an upload since August 10th, there's probably little overhead if one or two
would be built twice.
afuse
alsaplayer
antiword
apr-util
aptitude
aria2
arpwatch
audiofile
avahi
barnowl
bip
bogofilter
bsdmainutils
bzip2
cabextract
chmlib
chrony
citadel
clamav
collectd
courier
courier-authlib
cpio
cron
cups-pk-helper
cvs
cwidget
dash
debianutils
diffutils
dvipng
ecryptfs-utils
ekg
elinks
enscript
exiftags
expat
fbi
fetchmail
findutils
firebird2.5
flac
flex
fontforge
freeradius
fuse
gdbm
gmime
gnash
gnumeric
gzip
heimdal
hplip
httrack
hylafax
icinga
icu
id3lib3.8.3
ifupdown
imlib2
inetutils
inotify-tools
inspircd
iptables
iputils
ircd-ratbox
iscsitarget
jasper
kaffeine
ktorrent
kvirc
l2tpns
lcms2
libapache-mod-auth-kerb
libapache-mod-jk
libapache2-mod-auth-pgsql
libapache2-mod-authnz-external
libapache2-mod-fcgid
libapache2-mod-rpaf
libcdaudio
libcgroup
libdmx
libdumb
libextractor
libfishsound
libfs
libgd2
libgdata
libgsf
libgtop2
libhtml-parser-perl
libmodplug
libnss-ldap
libotr
libpam-krb5
libpam-ldap
libpipeline
libpng
libproxy
libsigc++-2.0
libsmi
libsndfile
libspf2
libtar
libtheora
libtk-img
libupnp
libupnp4
libusb
libvorbis
libwmf
libwpd
libxcb
libxcursor
libxext
libxfixes
libxfont
libxi
libxinerama
libxml2
libxrandr
libxrender
libxres
libxslt
libxt
libxtst
libxv
libxvmc
libxxf86dga
libxxf86vm
libyaml-libyaml-perl
links2
linux-ftpd
logrotate
lurker
lynx-cur
maildrop
mailman
mapserver
maradns
memcached
mimetex
mlmmj
modsecurity-apache
mon
mono
mtr
nas
nbd
ncompress
ndiswrapper
net-tools
netrik
newt
notmuch
nss-pam-ldapd
ntp
nut
openarena
openconnect
openjpeg
opensaml2
opensc
openssh
pam-pgsql
pcsc-lite
pdns
pimd
pmount
postgresql-9.4
pound
ppp
pptpd
procps
proftpd-dfsg
psi
pstotext
pulseaudio
pymongo
python-crypto
quagga
radsecproxy
raptor
readline6
rssh
rsync
ruby-gnome2
samba
screen
sdl-image1.2
sed
shadow
slang2
slurm-llnl
snmptrapfmt
socat
spamass-milter
spamassassin
splitvt
stunnel4
super
sympa
systemtap
tar
tcpreen
telepathy-gabble
texinfo
tiff
tinc
tinyproxy
traceroute
unalz
unzip
util-linux
uw-imap
varnish
vino
vsftpd
wget
wireshark
wpa
x11-xserver-utils
xapian-omega
xfce4-terminal
xml-security-c
xmlsec1
xz-utils
zoo
Cheers,
Moritz
Reply to: