Ubuntu
zeromq3 package

Merge ~ahasenack/ubuntu/+source/zeromq3:eoan-zeromq3-merge into ubuntu/+source/zeromq3:debian/sid

  1. Git
  2. lp:~ahasenack/ubuntu/+source/zeromq3
  3. eoan-zeromq3-merge
  4. Merge into debian/sid
Proposed by Andreas Hasenack
Status: Merged
Approved by: Andreas Hasenack
Approved revision: b02bd8a0db5c155fab37869a12842ba7e6a1f37c
Merge reported by: Andreas Hasenack
Merged at revision: b02bd8a0db5c155fab37869a12842ba7e6a1f37c
Proposed branch: ~ahasenack/ubuntu/+source/zeromq3:eoan-zeromq3-merge
Merge into: ubuntu/+source/zeromq3:debian/sid
Diff against target: 111 lines (+70/-1)
4 files modified
debian/changelog (+25/-0)
debian/control (+2/-1)
debian/patches/series (+1/-0)
debian/patches/validate-group-before-using.patch (+42/-0)
Reviewer Review Type Date Requested Status
Canonical Server Pending
Christian Ehrhardt  Pending
Review via email: mp+370002@code.launchpad.net

This proposal supersedes a proposal from 2019-07-10.

Description of the change

PPA: https://launchpad.net/~ahasenack/+archive/ubuntu/zeromq3-merge
sudo add-apt-repository ppa:ahasenack/zeromq3-merge -y

There are no DEP8 tests for this package.

Merge from debian. Some notes:
- I collapsed our delta, since 4.3.1-3ubuntu2 reverted the symbols change from 4.3.1-3ubuntu1. Only the patch validate-group-before-using.patch remains
- that patch was merged upstream, so I updated its DEP3 header to reflect that. Debian should pick it up the next time upstream releases, and then this package can become a sync
- we are also affected by this debian bug, so this merge is beneficial to us:
  * Fix GSSAPI support build (closes: #925914).
- and this fixes a security issue that our security team has already SRUed:
  * Fix CVE-2019-13132: application metadata not parsed correctly when using
    CURVE.

To post a comment you must log in.
Revision history for this message
Christian Ehrhardt  (paelzer) wrote : Posted in a previous version of this proposal

Taking this review as part of my inbox cleanup ....

Revision history for this message
Christian Ehrhardt  (paelzer) wrote : Posted in a previous version of this proposal

- found all the tags
- ack to only "validate-group-before-using.patch" is remaining
- ack on Debians GSSAPI+CVE fixes
- ack to header update
- the build in the PPA LGTM
- all self tests passed or skipped
- no rebuild of dependencies needed for this upload
- tested with some examples from http://zguide.zeromq.org/php:all

All working fine +1 on this MP

review: Approve
Revision history for this message
Christian Ehrhardt  (paelzer) wrote : Posted in a previous version of this proposal

The merge target should be d/sid but that wasn't important for the review since I check things out anyway (but it breaks the LP view).

Revision history for this message
Andreas Hasenack (ahasenack) wrote : Posted in a previous version of this proposal

Oopsie on the merge target... Thanks for the +1, I'll resubmit to the right target before tagging and uploading.

Revision history for this message
Andreas Hasenack (ahasenack) wrote :

Tagged and uploaded:
$ git push pkg upload/4.3.1-5ubuntu1
Enumerating objects: 25, done.
Counting objects: 100% (25/25), done.
Delta compression using up to 2 threads
Compressing objects: 100% (19/19), done.
Writing objects: 100% (19/19), 3.11 KiB | 636.00 KiB/s, done.
Total 19 (delta 13), reused 0 (delta 0)
To ssh://git.launchpad.net/~usd-import-team/ubuntu/+source/zeromq3
 * [new tag] upload/4.3.1-5ubuntu1 -> upload/4.3.1-5ubuntu1

$ dput ubuntu ../zeromq3_4.3.1-5ubuntu1_source.changes
Checking signature on .changes
gpg: ../zeromq3_4.3.1-5ubuntu1_source.changes: Valid signature from AC983EB5BF6BCBA9
Checking signature on .dsc
gpg: ../zeromq3_4.3.1-5ubuntu1.dsc: Valid signature from AC983EB5BF6BCBA9
Package includes an .orig.tar.gz file although the debian revision suggests
that it might not be required. Multiple uploads of the .orig.tar.gz may be
rejected by the upload queue management software.
Uploading to ubuntu (via ftp to upload.ubuntu.com):
  Uploading zeromq3_4.3.1-5ubuntu1.dsc: done.
  Uploading zeromq3_4.3.1.orig.tar.gz: done.
  Uploading zeromq3_4.3.1-5ubuntu1.debian.tar.xz: done.
  Uploading zeromq3_4.3.1-5ubuntu1_source.buildinfo: hdone.
  Uploading zeromq3_4.3.1-5ubuntu1_source.changes: done.
Successfully uploaded packages.

Revision history for this message
Andreas Hasenack (ahasenack) wrote :

This migrated finally.

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/debian/changelog b/debian/changelog
2index 7aa9248..8ed6210 100644
3--- a/debian/changelog
4+++ b/debian/changelog
5@@ -1,3 +1,12 @@
6+zeromq3 (4.3.1-5ubuntu1) eoan; urgency=medium
7+
8+ * Merge with Debian unstable. Remaining changes:
9+ - d/p/validate-group-before-using.patch: validate the supplementary
10+ group used in the filter_ipc test before using it. (LP #1820282)
11+ [Updated DEP3 header with Applied-Upstream information]
12+
13+ -- Andreas Hasenack <andreas@canonical.com> Wed, 10 Jul 2019 10:13:50 -0300
14+
15 zeromq3 (4.3.1-5) unstable; urgency=high
16
17 [ Luca Boccassi <bluca@debian.org> ]
18@@ -13,6 +22,22 @@ zeromq3 (4.3.1-4) unstable; urgency=medium
19
20 -- Laszlo Boszormenyi (GCS) <gcs@debian.org> Thu, 28 Mar 2019 16:37:09 +0000
21
22+zeromq3 (4.3.1-3ubuntu2) disco; urgency=medium
23+
24+ * d/libzmq5.symbols: revert previous symbols update, as that came from a
25+ draft API that was mistakenly enabled in a local build when a .git
26+ directory was detected.
27+
28+ -- Andreas Hasenack <andreas@canonical.com> Tue, 19 Mar 2019 17:01:01 +0000
29+
30+zeromq3 (4.3.1-3ubuntu1) disco; urgency=medium
31+
32+ * d/libzmq5.symbols: updated symbols
33+ * d/p/validate-group-before-using.patch: validate the supplementary
34+ group used in the filter_ipc test before using it. (LP: #1820282)
35+
36+ -- Andreas Hasenack <andreas@canonical.com> Mon, 18 Mar 2019 16:36:40 +0000
37+
38 zeromq3 (4.3.1-3) unstable; urgency=medium
39
40 [ Luca Boccassi <bluca@debian.org> ]
41diff --git a/debian/control b/debian/control
42index 1647021..6b35a84 100644
43--- a/debian/control
44+++ b/debian/control
45@@ -1,7 +1,8 @@
46 Source: zeromq3
47 Section: libs
48 Priority: optional
49-Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
50+Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
51+XSBC-Original-Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
52 Build-Depends: debhelper (>= 11),
53 libpgm-dev (>= 5.2.122~dfsg),
54 libsodium-dev,
55diff --git a/debian/patches/series b/debian/patches/series
56index 2bbccff..8906cf8 100644
57--- a/debian/patches/series
58+++ b/debian/patches/series
59@@ -5,3 +5,4 @@ ppc64_atomic_intrinsics.patch
60 test_pair_ipc_hurd.patch
61 gssapi_pkgconfig.patch
62 CVE-2019-13132.patch
63+validate-group-before-using.patch
64diff --git a/debian/patches/validate-group-before-using.patch b/debian/patches/validate-group-before-using.patch
65new file mode 100644
66index 0000000..09330ec
67--- /dev/null
68+++ b/debian/patches/validate-group-before-using.patch
69@@ -0,0 +1,42 @@
70+Description: validate the group before using it
71+ This makes the test a bit more robust in scenarios where, probably due
72+ to a misconfiguration in the environment, a group present in the list
73+ of supplementary groups is not really a valid choice. This was seen in
74+ the Launchpad builders (see #1820348), and possibly elsewhere (see
75+ https://github.com/habitat-sh/core-plans/blob/master/zeromq/plan.sh#L22-L25)
76+Author: Andreas Hasenack <andreas@canonical.com>
77+Bug: https://github.com/zeromq/libzmq/issues/1462
78+Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/zeromq3/+bug/1820282
79+Forwarded: https://github.com/zeromq/libzmq/pull/3453
80+Applied-Upstream: https://github.com/zeromq/libzmq/commit/168aa83d089425d4be5a34911c37c6f58eed2b9b
81+Last-Update: 2019-07-10
82+---
83+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
84+--- a/tests/test_filter_ipc.cpp
85++++ b/tests/test_filter_ipc.cpp
86+@@ -122,8 +122,10 @@
87+ supgroup = group;
88+ notgroup = group + 1;
89+ for (int i = 0; i < ngroups; i++) {
90+- if (supgroup == group && group != groups[i])
91+- supgroup = groups[i];
92++ if (supgroup == group && group != groups[i]) {
93++ if (getgrgid (groups[i]))
94++ supgroup = groups[i];
95++ }
96+ if (notgroup <= groups[i])
97+ notgroup = groups[i] + 1;
98+ }
99+--- a/tests/testutil.hpp
100++++ b/tests/testutil.hpp
101+@@ -76,8 +76,10 @@
102+ #include <unistd.h>
103+ #include <signal.h>
104+ #include <stdlib.h>
105++#include <grp.h>
106+ #include <sys/wait.h>
107+ #include <sys/socket.h>
108++#include <sys/types.h>
109+ #include <netinet/in.h>
110+ #include <arpa/inet.h>
111+ #include <net/if.h>

Subscribers

People subscribed via source and target branches