Most of my Debian contributions this month were
sponsored by
Freexian, as well as one direct donation via
Liberapay (thanks!).
OpenSSH
I issued a
bookworm
update
with a number of fixes that had accumulated over the last year, especially
fixing
GSS-
API key exchange which
was
quite
broken in bookworm.
base-passwd
A few months ago, the adduser maintainer started a discussion with me (as
the base-passwd maintainer) and the shadow maintainer about bringing all
three source packages under one team, since they often need to cooperate on
things like user and group names. I agreed, but hadn t got round to doing
anything about it until recently. I ve now officially moved it under team maintenance.
debconf
Gioele Barabucci has been working on eliminating duplicated code between
debconf and cdebconf, ultimately with the goal of migrating to cdebconf
(which I m not sure I m convinced of as a goal, but if we can make
improvements to both packages as part of working towards it then there s no
harm in that). I finally got round to reviewing and merging confmodule
changes in each of
debconf
and
cdebconf.
This caused an
installer regression due
to a weirdness in cdebconf-udeb s packaging, which I fixed - sorry about that!
I ve also been dealing with a few patch submissions that had been in my
queue for a long time, but more on that next month if all goes well.
CI issues
I noticed and fixed a
problem with Restrictions:
needs-sudo
in autopkgtest.
I fixed
broken aptly
images
in the Salsa
CI pipeline.
Python team
Last month, I mentioned some progress on
sorting out the multipart vs. python-multipart name conflict in Debian
(
#1085728), and said that I thought we d
be able to finish it soon. I was right! We got it all done this month:
The Python 3.13 transition continues, and last month we were able to add it
to the supported Python versions in testing. (The next step will be to make
it the default.) I fixed lots of problems in aid of this, including:
Sphinx 8.0
removed some old intersphinx_mapping
syntax which turned out to
still be in use by many packages in Debian. The fixes for this were
individually trivial, but there were a lot of them:
I found that twisted 24.11.0 broke tests in
buildbot
and
wokkel,
and fixed those.
I packaged
python-flatdict, needed for a
new upstream version of python-semantic-release.
I tracked down a
test failure in
vdirsyncer (which
I ve been using for some
years, but had never previously needed to
modify) and
contributed a fix
upstream.
I fixed some packages to tolerate future versions of dh-python that will
drop their dependency on python3-setuptools:
I fixed
django-cte to remove a
build-dependency on the obsolete python3-nose package.
I added Django 5.1 support to django-polymorphic. (There are a number of
other packages that still need work here.)
I fixed various other build/test failures:
I upgraded these packages to new upstream versions:
- aioftp
- alot
- astroid
- buildbot
- cloudpickle (fixing a Python 3.13
failure)
- django-countries
- django-sass-processor
- djoser (fixing CVE-2024-21543)
- ipython
- jsonpickle
- lazr.delegates
- loguru (fixing a Python 3.13 failure)
- netmiko
- pydantic
- pydantic-core
- pydantic-settings
- pydoctor
- pygresql
- pylint (fixing Python 3.13 failures
#1089758 and
#1091029)
- pypandoc (fixing a Python 3.12 warning)
- python-aiohttp (fixing CVE-2024-52303
and CVE-2024-52304
- python-aiohttp-security
- python-argcomplete
- python-asyncssh
- python-click
- python-cytoolz
- python-jira (fixing a Python 3.13
failure)
- python-limits
- python-line-profiler
- python-mkdocs
- python-model-bakery
- python-pgspecial
- python-pyramid (fixing CVE-2023-40587)
- python-pythonjsonlogger
- python-semantic-release
- python-utils
- python-venusian
- pyupgrade
- pyzmq
- quart
- six
- sqlparse
- twisted
- vcr.py
- vulture
- yoyo
- zope.configuration
- zope.testrunner
I updated the team s
library style
guide to remove material
related to Python 2 and early versions of Python 3, which is no longer
relevant to any current Python packaging work.
Other Python upstream work
I happened to notice a
Twisted upstream
issue requesting the
removal of the deprecated
twisted.internet.defer.returnValue
, realized it
was still used in many places in Debian, and went on a
PR-filing spree
informed by
codesearch to try to reduce
the future impact of such a change on Debian:
Other small fixes
Santiago Vila has been
building the archive with make
--shuffle
(also see
its
author s
explanation).
I fixed associated bugs in cccc (
contributed
upstream), groff, and spectemu.
I backported an upstream patch to putty to fix
undefined behaviour that
affected use of the small keypad .
I removed groff s
Recommends: libpaper1
(
#1091375,
#1091376), since it isn t currently all
that useful and was getting in the way of a transition to libpaper2. I
filed an
upstream bug suggesting
better integration in this area.