aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2019-07-16T11:25:06Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10552[3.10] heimdal: man-in-the-middle attack in function krb5_init_creds_step in ...2019-07-16T11:25:06ZAlicha CH[3.10] heimdal: man-in-the-middle attack in function krb5_init_creds_step in lib/krb5/init_creds_pw.c (CVE-2019-12098)In the client side of Heimdal before 7.6.0, failure to verify anonymous
PKINIT PA-PKINIT-KX key exchange permits a
man-in-the-middle attack. This issue is in krb5\_init\_creds\_step in
lib/krb5/init\_creds\_pw.c.
### References:
http...In the client side of Heimdal before 7.6.0, failure to verify anonymous
PKINIT PA-PKINIT-KX key exchange permits a
man-in-the-middle attack. This issue is in krb5\_init\_creds\_step in
lib/krb5/init\_creds\_pw.c.
### References:
http://www.h5l.org/pipermail/heimdal-announce/2019-May/000009.html
https://nvd.nist.gov/vuln/detail/CVE-2019-12098
### Patch:
Fixed by:
https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf
(7.6.0)
Introduced by:
https://github.com/heimdal/heimdal/commit/a1ef548600c5bb51cf52a9a9ea12676506ede19f
(1.4.0)
*(from redmine: issue id 10552, created on 2019-06-12)*
* Relations:
* parent #10551
* Changesets:
* Revision 7f6e6b03d2536a389bb79a29915bd3a8fe881517 by Natanael Copa on 2019-07-11T16:02:02Z:
```
main/heimdal: security fix for CVE-2019-12098
fixes #10552
```3.10.1Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10551heimdal: man-in-the-middle attack in function krb5_init_creds_step in lib/krb...2019-07-23T10:35:39ZAlicha CHheimdal: man-in-the-middle attack in function krb5_init_creds_step in lib/krb5/init_creds_pw.c (CVE-2019-12098)In the client side of Heimdal before 7.6.0, failure to verify anonymous
PKINIT PA-PKINIT-KX key exchange permits a
man-in-the-middle attack. This issue is in krb5\_init\_creds\_step in
lib/krb5/init\_creds\_pw.c.
### References:
http...In the client side of Heimdal before 7.6.0, failure to verify anonymous
PKINIT PA-PKINIT-KX key exchange permits a
man-in-the-middle attack. This issue is in krb5\_init\_creds\_step in
lib/krb5/init\_creds\_pw.c.
### References:
http://www.h5l.org/pipermail/heimdal-announce/2019-May/000009.html
https://nvd.nist.gov/vuln/detail/CVE-2019-12098
### Patch:
Fixed by:
https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf
(7.6.0)
Introduced by:
https://github.com/heimdal/heimdal/commit/a1ef548600c5bb51cf52a9a9ea12676506ede19f
(1.4.0)
*(from redmine: issue id 10551, created on 2019-06-12)*
* Relations:
* child #10552
* child #10553
* child #10554
* child #10555Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10549testing/emscripten: upgrade to 1.38.342019-10-31T12:37:51ZLucas Ramagetesting/emscripten: upgrade to 1.38.34Currently available version is from 2017.
Also, the homepage has changed to https://emscripten.org, and the source
has also moved to https://github.com/emscripten-core/emscripten.
I reached out to the maintainer, but I never received a...Currently available version is from 2017.
Also, the homepage has changed to https://emscripten.org, and the source
has also moved to https://github.com/emscripten-core/emscripten.
I reached out to the maintainer, but I never received a response.
I would be willing to submit a patch, I just don’t want to duplicate
effort.
*(from redmine: issue id 10549, created on 2019-06-10)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10546syslinux hdt.c32 (Hardware Detection Tool) is broken since AlpineLinux v3.92019-07-23T11:07:14ZAleksey Msyslinux hdt.c32 (Hardware Detection Tool) is broken since AlpineLinux v3.9hdt.c32 (part of syslinux package) fails with following diagnostics:
Undef symbol FAIL: exp
Failed to load libgpl.c32
Failed to load COM32 file hdt.c32
This is known issue with gcc8, Debian patch exists.
Seems like it’...hdt.c32 (part of syslinux package) fails with following diagnostics:
Undef symbol FAIL: exp
Failed to load libgpl.c32
Failed to load COM32 file hdt.c32
This is known issue with gcc8, Debian patch exists.
Seems like it’s still not fixed upstream.
AlpineLinux prior to v3.9 is unaffected AFAIK.
Debian bug: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=918915
Debian patch:
https://sources.debian.org/patches/syslinux/3:6.04~git20190206.bf6db5b4+dfsg1-1/0018-prevent-pow-optimization.patch/
ArchLinux bug: https://bugs.archlinux.org/task/59987
*(from redmine: issue id 10546, created on 2019-06-08, closed on 2019-06-19)*
* Changesets:
* Revision 0ab839af36e71914fb2da45786aa2d88fbe033cf by Daniel Isaksen on 2019-06-10T09:21:58Z:
```
main/syslinux: Apply Debian's patch to fix HDT.
With the current GCC 8.2.0 from Debian, a section of code calling pow() in
zzjson_parse.c is turned into a sequence calling exp(). Since no exp()
implementation is available in syslinux those optimizations need to be
disabled.
Closes #10546
```https://gitlab.alpinelinux.org/alpine/aports/-/issues/10545linux-virt kernel doesn't support Virtualbox webcam2019-07-23T11:07:14ZJack Lovelllinux-virt kernel doesn't support Virtualbox webcamAttaching a host’s webcam to a Virtualbox VM requires the uvcvideo
driver. This is supported in the linux-vanilla kernel, but not in
linux-virt. Since the latter is designed for use with VMs, it should
support the Virtualbox webcam out o...Attaching a host’s webcam to a Virtualbox VM requires the uvcvideo
driver. This is supported in the linux-vanilla kernel, but not in
linux-virt. Since the latter is designed for use with VMs, it should
support the Virtualbox webcam out of the box.
Here’s a diff of \`lsmod\` before and after the webcam was attached to
an Apline VM running kernel 4.19.41-0-vanilla:
—- withoutwebcam
<span class="underline"></span>+ withwebcam
@@ –1,4 +1,11 @@
Module Size Used by
+uvcvideo 94208 0
+videobuf2\_vmalloc 16384 1 uvcvideo
+videobuf2\_memops 16384 1 videobuf2\_vmalloc
+videobuf2\_v4l2 28672 1 uvcvideo
+videobuf2\_common 40960 2 videobuf2\_v4l2,uvcvideo
+videodev 192512 3 videobuf2\_v4l2,uvcvideo,videobuf2\_common
+media 36864 2 videodev,uvcvideo
vmwgfx 290816 1
snd\_intel8x0 36864 0
ttm 102400 1 vmwgfx
@@ –26,7 +33,7 @@
sysimgblt 16384 1 drm\_kms\_helper
intel\_gtt 20480 1 intel\_agp
soundcore 16384 1 snd
-i2c\_core 65536 4 drm\_kms\_helper,psmouse,i2c\_piix4,drm
+i2c\_core 65536 5 videodev,drm\_kms\_helper,psmouse,i2c\_piix4,drm
ac97\_bus 16384 1 snd\_ac97\_codec
agpgart 45056 4 intel\_agp,intel\_gtt,ttm,drm
battery 20480 0
@@ –55,6 +62,6 @@
mbcache 16384 1 ext4
jbd2 106496 1 ext4
usb\_storage 61440 0
-usbcore 217088 6
ohci\_hcd,ehci\_pci,usbhid,usb\_storage,ehci\_hcd,ohci\_pci
+usbcore 217088 7
ohci\_hcd,ehci\_pci,usbhid,usb\_storage,uvcvideo,ehci\_hcd,ohci\_pci
sd\_mod 45056 4
scsi\_mod 176128 4 sd\_mod,usb\_storage,libata,sr\_mod intel\_gtt 20480
1 intel\_agp
soundcore 16384 1 snd
-i2c\_core 65536 4 drm\_kms\_helper,psmouse,i2c\_piix4,drm
+i2c\_core 65536 5 videodev,drm\_kms\_helper,psmouse,i2c\_piix4,drm
ac97\_bus 16384 1 snd\_ac97\_codec
agpgart 45056 4 intel\_agp,intel\_gtt,ttm,drm
battery 20480 0
@@ –55,6 +62,6 @@
*(from redmine: issue id 10545, created on 2019-06-08, closed on 2019-06-19)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10543scripts/mkimage.sh doesn't build uboot profile2021-08-19T18:31:31ZMilan P. Stanićscripts/mkimage.sh doesn't build uboot profileruning
./mkimage.sh —arch armv7 —hostkeys —profile uboot —outdir out —workdir
workdir —repository http://dl-cdn.alpinelinux.org/alpine/edge/main
gives next:
fetch
http://dl-cdn.alpinelinux.org/alpine/edge/main/armv7/APKINDEX.tar.gz ...runing
./mkimage.sh —arch armv7 —hostkeys —profile uboot —outdir out —workdir
workdir —repository http://dl-cdn.alpinelinux.org/alpine/edge/main
gives next:
fetch
http://dl-cdn.alpinelinux.org/alpine/edge/main/armv7/APKINDEX.tar.gz
v3.10.0\_rc1-574-ged8584b7cb
\[http://dl-cdn.alpinelinux.org/alpine/edge/main\]
OK: 5632 distinct packages available
>>>mkimage-armv7: Building uboot
>>>mkimage-armv7: —>kernel armv7 vanilla
70780944a96e84dd29767d38f44330605b4b98ec linux-vanilla linux-firmware
ERROR: unsatisfiable constraints:
alpine-base (missing):
required by: world\[alpine-base\]
linux-firmware (missing):
required by: world\[linux-firmware\]
linux-vanilla (missing):
required by: world\[linux-vanilla\]
it doesn’t make tarball
*(from redmine: issue id 10543, created on 2019-06-07)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10542Missing fractional seconds in struct stat2019-07-23T10:34:57ZRoman PerepelitsaMissing fractional seconds in struct statI’m new to Alpine Linux so it’s likely I’m doing something wrong. For
context, I’m running Alpine in Docker on Ubuntu:
docker run —cap-add SYS\_PTRACE -e LANG=C.UTF-8 -e LC\_ALL=C.UTF-8 -e
TERM=$TERM -it —rm alpine /bin/sh
Once prompt ...I’m new to Alpine Linux so it’s likely I’m doing something wrong. For
context, I’m running Alpine in Docker on Ubuntu:
docker run —cap-add SYS\_PTRACE -e LANG=C.UTF-8 -e LC\_ALL=C.UTF-8 -e
TERM=$TERM -it —rm alpine /bin/sh
Once prompt appeared, I typed the following commands:
touch /tmp/test
stat /tmp/test
Output:
File: /tmp/test
Size: 0 Blocks: 0 IO Block: 4096 regular empty file
Device: 7ah/122d Inode: 2909137 Links: 1
Access: (0644/-rw-r—r—) Uid: ( 0/ root) Gid: ( 0/ root)
Access: 2019-06-07 12:14:02.000000000
Modify: 2019-06-07 12:14:02.000000000
Change: 2019-06-07 12:14:02.000000000
The unexpected thing in the output is that all timestamps have zero
fractional seconds. I used strace to get details.
apk add strace
strace -v stat /tmp/test 2>&1 | grep lstat
The output indicates that fractional seconds are there (\*\_nsec
fields).
lstat(“/tmp/test”, {st\_dev=makedev(0, 122), st\_ino=2909137,
st\_mode=S\_IFREG|0644, st\_nlink=1, st\_uid=0, st\_gid=0,
st\_blksize=4096, st\_blocks=0, st\_size=0, st\_atime=1559909642 /\*
2019-06-07T12:14:02.906502175+0000 **/, st\_atime\_nsec=906502175,
st\_mtime=1559909642 /** 2019-06-07T12:14:02.906502175+0000 **/,
st\_mtime\_nsec=906502175, st\_ctime=1559909642 /**
2019-06-07T12:14:02.906502175+0000 \*/, st\_ctime\_nsec=906502175}) = 0
Then I compiled my own little program that calls lstat() and prints
mtime.
apk add gcc musl-dev
cat >/tmp/mystat.c <<END
\#include <stdio.h>
\#include <sys/types.h>
\#include <sys/stat.h>
\#include <fcntl.h>
int main() {
struct stat stat = {};
if (lstat(“/tmp/test”, &stat)) return 1;
printf(“%d\\n”, (int)stat.st\_mtim.tv\_nsec);
}
END
gcc -o /tmp/mystat /tmp/mystat.c
/tmp/mystat
Output:
906502175
Note that it matches st\_mtime\_nsec in the output of strace.
I then installed coreutils and ran stat again.
apk add coreutils
stat /tmp/test
This time the output contains fractional seconds.
File: /tmp/test
Size: 0 Blocks: 0 IO Block: 4096 regular empty file
Device: 7ah/122d Inode: 2909137 Links: 1
Access: (0644/-rw-r—r—) Uid: ( 0/ root) Gid: ( 0/ root)
Access: 2019-06-07 12:14:02.906502175 +0000
Modify: 2019-06-07 12:14:02.906502175 +0000
Change: 2019-06-07 12:14:02.906502175 +0000
Birth: -
Unfortunately, the reason reason I started poking stat in the first
place is that git malfunctions and installing coreutils doesn’t fix it.
apk add git
mkdir /tmp/repo
cd /tmp/repo
git init
touch x
git add x
git ls-files —debug — x
The output of the last command:
x
ctime: 1559910752:0
mtime: 1559910752:0
dev: 122 ino: 3043460
uid: 0 gid: 0
size: 0 flags: 0
Once again all timestamps have zero fractional seconds. If I build git
myself, it behaves as expected.
apk add autoconf zlib-dev libintl make binutils
cd /tmp
git clone —depth=1 https://github.com/git/git.git
cd git
make configure
./configure
make -j 20 git
cd /tmp/repo
touch y
/tmp/git/git add y
git ls-files —debug — x y
The output of the last command shows that the file added to the git
index by /tmp/git/git has fractional seconds while the file added with
the stock git doesn’t.
x
ctime: 1559910752:0
mtime: 1559910752:0
dev: 122 ino: 3043460
uid: 0 gid: 0
size: 0 flags: 0
y
ctime: 1559911277:273776861
mtime: 1559911277:273776861
dev: 122 ino: 3048048
uid: 0 gid: 0
size: 0 flags: 0
What am I doing wrong? How can I make git write fractional seconds to
the index?
*(from redmine: issue id 10542, created on 2019-06-07)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10541[3.9] exim: Remote command execution in deliver_message() function in /src/de...2019-07-23T11:07:15ZAlicha CH[3.9] exim: Remote command execution in deliver_message() function in /src/deliver.c (CVE-2019-10149)A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper
validation of recipient address in
deliver\_message() function in /src/deliver.c may lead to remote command
execution.
### Fixed In Version:
exim 4.92
### Referenc...A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper
validation of recipient address in
deliver\_message() function in /src/deliver.c may lead to remote command
execution.
### Fixed In Version:
exim 4.92
### References:
https://www.openwall.com/lists/oss-security/2019/06/04/1
https://exim.org/static/doc/security/CVE-2019-10149.txt
*(from redmine: issue id 10541, created on 2019-06-06, closed on 2019-06-12)*
* Changesets:
* Revision 65097c9cdc4dc822b2fd204057a17312ed7a6b06 by Mike Sullivan on 2019-06-10T15:37:56Z:
```
community/exim: fix broken link with upgrade to 4.92
fixes #10541 (CVE-2019-10149)
(cherry picked from commit a6e92b2adbed5e2905258a37f8b1980700612929)
```3.9.5https://gitlab.alpinelinux.org/alpine/aports/-/issues/10540[3.7] sqlite: Multiple vulnerabilities (CVE-2019-5018, CVE-2019-8457)2019-07-24T10:29:43ZAlicha CH[3.7] sqlite: Multiple vulnerabilities (CVE-2019-5018, CVE-2019-8457)CVE-2019-5018: use-after-free in window function leading to remote code execution
---------------------------------------------------------------------------------
An exploitable use after free vulnerability exists in the window
functio...CVE-2019-5018: use-after-free in window function leading to remote code execution
---------------------------------------------------------------------------------
An exploitable use after free vulnerability exists in the window
function functionality of Sqlite3 3.26.0. A specially crafted SQL
command can cause a use
after free vulnerability, potentially resulting in remote code
execution. An attacker can send a malicious SQL command to trigger this
vulnerability.
### References:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2019-0777
https://nvd.nist.gov/vuln/detail/CVE-2019-5018
CVE-2019-8457: heap out-of-bound read in function rtreenode()
-------------------------------------------------------------
SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap
out-of-bound
read in the rtreenode() function when handling invalid rtree tables.
### References:
https://www.sqlite.org/releaselog/3\_28\_0.html
https://nvd.nist.gov/vuln/detail/CVE-2019-8457
### Patch:
https://www.sqlite.org/src/info/90acdbfce9c08858
*(from redmine: issue id 10540, created on 2019-06-05)*
* Relations:
* parent #105373.7.4LeoLeohttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10539[3.8] sqlite: Multiple vulnerabilities (CVE-2019-5018, CVE-2019-8457)2019-07-24T06:57:17ZAlicha CH[3.8] sqlite: Multiple vulnerabilities (CVE-2019-5018, CVE-2019-8457)CVE-2019-5018: use-after-free in window function leading to remote code execution
---------------------------------------------------------------------------------
An exploitable use after free vulnerability exists in the window
functio...CVE-2019-5018: use-after-free in window function leading to remote code execution
---------------------------------------------------------------------------------
An exploitable use after free vulnerability exists in the window
function functionality of Sqlite3 3.26.0. A specially crafted SQL
command can cause a use
after free vulnerability, potentially resulting in remote code
execution. An attacker can send a malicious SQL command to trigger this
vulnerability.
### References:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2019-0777
https://nvd.nist.gov/vuln/detail/CVE-2019-5018
CVE-2019-8457: heap out-of-bound read in function rtreenode()
-------------------------------------------------------------
SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap
out-of-bound
read in the rtreenode() function when handling invalid rtree tables.
### References:
https://www.sqlite.org/releaselog/3\_28\_0.html
https://nvd.nist.gov/vuln/detail/CVE-2019-8457
### Patch:
https://www.sqlite.org/src/info/90acdbfce9c08858
*(from redmine: issue id 10539, created on 2019-06-05)*
* Relations:
* parent #105373.8.5LeoLeohttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10536pdns, pdns-recursor and dnsdist: incorrect license2019-07-23T11:07:16ZJames Taylorpdns, pdns-recursor and dnsdist: incorrect licensepdns, pdns-recursor and dnsdist should have the licence specified as
GPL-2.0-only as per the NOTICE file distributed with the packages, and
<s>NOT</s> GPL-2.0-or-later.
For convenience, the full text of the NOTICE file can be viewed at
...pdns, pdns-recursor and dnsdist should have the licence specified as
GPL-2.0-only as per the NOTICE file distributed with the packages, and
<s>NOT</s> GPL-2.0-or-later.
For convenience, the full text of the NOTICE file can be viewed at
https://github.com/PowerDNS/pdns/blob/master/NOTICE
*(from redmine: issue id 10536, created on 2019-06-05, closed on 2019-06-19)*
* Changesets:
* Revision 69c916568a6dcb3c3440c60350528ebdf3da0b78 by prs pkt on 2019-06-08T13:39:21Z:
```
community/dnsdist: clarify license
Fixes #10536
```
* Revision beaddd050e58ead0397f66e0f411c1cc4be40279 by prs pkt on 2019-06-08T13:39:49Z:
```
community/pdns: clarify license
Fixes #10536
```
* Revision 956c729a70e904f4956741e9edabceac4f2e4089 by prs pkt on 2019-06-08T13:40:19Z:
```
community/pdns-recursor: clarify license
Fixes #10536
```https://gitlab.alpinelinux.org/alpine/aports/-/issues/10535quassel-core from edge fails to start2019-07-23T11:07:17Zalgitbotquassel-core from edge fails to startIt broke after the qt5 update to 5.12.3
\[FATAL\] Cannot mix incompatible Qt library (version 0x50c01) with
this
library (version 0x50c03)
*(from redmine: issue id 10535, created on 2019-06-03, closed on 2019-06-03)*It broke after the qt5 update to 5.12.3
\[FATAL\] Cannot mix incompatible Qt library (version 0x50c01) with
this
library (version 0x50c03)
*(from redmine: issue id 10535, created on 2019-06-03, closed on 2019-06-03)*algitbotalgitbothttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10534List of PRs wrongly close by stale bot2019-07-23T10:35:03ZalgitbotList of PRs wrongly close by stale botI have noticed lots of PRs where the submitter was waiting for
review/merge/action from developers (he had done what he needed so
far) but the PR was closed by a bot instead.
This can be frustrating.
Examples-
https://github.com/a...I have noticed lots of PRs where the submitter was waiting for
review/merge/action from developers (he had done what he needed so
far) but the PR was closed by a bot instead.
This can be frustrating.
Examples-
https://github.com/alpinelinux/aports/pull/5918
https://github.com/alpinelinux/aports/pull/5860
https://github.com/alpinelinux/aports/pull/4528
https://github.com/alpinelinux/aports/pull/5472
https://github.com/alpinelinux/aports/pull/4113
https://github.com/alpinelinux/aports/pull/4233
https://github.com/alpinelinux/aports/pull/5363
https://github.com/alpinelinux/aports/pull/5299
https://github.com/alpinelinux/aports/pull/5168
https://github.com/alpinelinux/aports/pull/5033
https://github.com/alpinelinux/aports/pull/4949
https://github.com/alpinelinux/aports/pull/5860
https://github.com/alpinelinux/aports/pull/5547
https://github.com/alpinelinux/aports/pull/4272
*(from redmine: issue id 10534, created on 2019-06-02)*https://gitlab.alpinelinux.org/alpine/aports/-/issues/10532apk doesn't handle upgrades correctly when old dep versions are still availab...2019-07-23T10:34:22ZA. Wilcoxapk doesn't handle upgrades correctly when old dep versions are still available in repositoryWe’ve just released Adélie 1.0-BETA3, and due to that, we have lots of
people upgrading their computers… we’ve had at least three cases so far
today where there’s been the same error:
ERROR: unsatisfiable constraints:
harfbuzz...We’ve just released Adélie 1.0-BETA3, and due to that, we have lots of
people upgrading their computers… we’ve had at least three cases so far
today where there’s been the same error:
ERROR: unsatisfiable constraints:
harfbuzz-icu-1.8.8-r1:
breaks: harfbuzz-dev-2.4.0-r0[harfbuzz-icu=2.4.0-r0]
libpcrecpp-8.42-r1:
breaks: pcre-dev-8.43-r0[libpcrecpp=8.43-r0]
All of these cases are when qt5-qtbase-dev (or another Qt 5 development
package) is installed. This helpfully included our primary web server,
which has only adelie-base, apache-httpd, and qt5-qtbase-dev installed.
I enabled DEBUG\_PRINT in apk/solver.c, rebuilt, and tried again with
this custom apk-tools build. Output is included in the attached 1.33 MB
log file.
In the middle you find this chunk:
select_package: harfbuzz-icu (requirers=1, iif=0)
consider harfbuzz-icu-1.8.8-r1 iif_triggered=0, tag_ok=1, selectable=1, provider_priority=0, installed=1
consider harfbuzz-icu-2.3.1-r0 iif_triggered=0, tag_ok=1, selectable=1, provider_priority=0, installed=0
consider harfbuzz-icu-2.4.0-r0 iif_triggered=0, tag_ok=1, selectable=1, provider_priority=0, installed=0
selecting: harfbuzz-icu-1.8.8-r1, available: 1
assign harfbuzz-icu to harfbuzz-icu-1.8.8-r1
disqualify_package: harfbuzz-icu-2.3.1-r0 (conflicting provides)
queue_dirty: pc:harfbuzz
disqualify_package: harfbuzz-icu-2.4.0-r0 (conflicting provides)
assign so:libharfbuzz-icu.so.0 to harfbuzz-icu-1.8.8-r1
This seems to be a small issue in the solver:
https://git.alpinelinux.org/apk-tools/tree/src/solver.c\#n514 - it
“Prefer\[s\] existing package\[s\]”, even during a system upgrade.
Anything in world is considered for upgrade, but **dependencies** of
world are only considered for upgrade if the existing package versions
are no longer present/available. I’m aware that the Alpine policy is to
run the equivalent of cleanoldpkg on every build, but it isn’t our
policy at Adélie - once a package is published to our mirrors, it is
never removed for any reason other than if there is a license error
My personal opinion is that there should perhaps be another flag to
upgrade, maybe -d/—deep for “deep upgrades” which will upgrade **every**
package, not just world.
*(from redmine: issue id 10532, created on 2019-06-01)*Timo TeräsTimo Teräshttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10531soxr-dev is missing static files2019-07-23T11:07:18ZMattias Wadmansoxr-dev is missing static filessoxr-dev is missing .a files or maybe there should be a soxr-static
package?
*(from redmine: issue id 10531, created on 2019-05-31, closed on 2019-06-19)*
* Changesets:
* Revision 7dab0ff3a5399a14593df477754e67bd9e4a7a1a by Rasmus T...soxr-dev is missing .a files or maybe there should be a soxr-static
package?
*(from redmine: issue id 10531, created on 2019-05-31, closed on 2019-06-19)*
* Changesets:
* Revision 7dab0ff3a5399a14593df477754e67bd9e4a7a1a by Rasmus Thomsen on 2019-06-05T07:49:45Z:
```
main/soxr: add -static subpackages
fixes #10531
```https://gitlab.alpinelinux.org/alpine/aports/-/issues/10530fribidi-dev is missing static files2019-07-23T11:07:19ZMattias Wadmanfribidi-dev is missing static filesfribidi-dev is missing .a files or maybe there should be a
fribidi-static package? missing in 3.9 and edge.
*(from redmine: issue id 10530, created on 2019-05-31, closed on 2019-06-19)*
* Changesets:
* Revision 10eae1348ae2afb7b1f97...fribidi-dev is missing .a files or maybe there should be a
fribidi-static package? missing in 3.9 and edge.
*(from redmine: issue id 10530, created on 2019-05-31, closed on 2019-06-19)*
* Changesets:
* Revision 10eae1348ae2afb7b1f97e4902e4c82f0213a0ce by Rasmus Thomsen on 2019-06-05T07:48:45Z:
```
main/fribidi: add -static subpackage
fixes #10530
```https://gitlab.alpinelinux.org/alpine/aports/-/issues/10529py-sip has broken API2019-07-23T10:35:22ZRich Felkerpy-sip has broken APIThe APKBUILD for py-sip builds/installs it with the old module name:
$python configure.py --sip-module PyQt5.sip
This breaks any software expecting to find it with the modern name
“sip”. It should be installed with both names f...The APKBUILD for py-sip builds/installs it with the old module name:
$python configure.py --sip-module PyQt5.sip
This breaks any software expecting to find it with the modern name
“sip”. It should be installed with both names for compatibility with old
and new applications.
*(from redmine: issue id 10529, created on 2019-05-31)*LeoLeohttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10528publish proj4 version 5.2.0 to main channel2019-11-24T20:08:12ZJonas Liljestrandpublish proj4 version 5.2.0 to main channelHi,
We have been fetching proj4 version 5.2.0 from the testing channel.
This version was removed by this commit
https://git.alpinelinux.org/aports/commit/?id=86d8d20e2565125c3ddce628f3dedd7c5aa5dfda
I’m wondering if it’s possible to ...Hi,
We have been fetching proj4 version 5.2.0 from the testing channel.
This version was removed by this commit
https://git.alpinelinux.org/aports/commit/?id=86d8d20e2565125c3ddce628f3dedd7c5aa5dfda
I’m wondering if it’s possible to publish version 5.2.0 in the main
channel? And can I help to make that happen?
*(from redmine: issue id 10528, created on 2019-05-31)*3.8.5https://gitlab.alpinelinux.org/alpine/aports/-/issues/10526update-kernel script prints warning even if extra firmware doesn't exist2022-02-27T02:25:16ZLubos Dolezalupdate-kernel script prints warning even if extra firmware doesn't exist# update-kernel
Warning: extra firmware "" not found!
%<...
Install extra firmware only if *modloopfw* variable is not empty:
--- /sbin/update-kernel
+++ /tmp/update-kernel.new
@@ -293,14 +293,16 @@
fi
# ...# update-kernel
Warning: extra firmware "" not found!
%<...
Install extra firmware only if *modloopfw* variable is not empty:
--- /sbin/update-kernel
+++ /tmp/update-kernel.new
@@ -293,14 +293,16 @@
fi
# install extra firmware files in modloop (i.e. not detected by modinfo)
-for _xfw in "$modloopfw"; do
- if [ -f "$ROOT/lib/firmware/$_xfw" ]; then
- install -pD "$ROOT/lib/firmware/$_xfw" \
- "$MODLOOP"/modules/firmware/"$_xfw"
- else
- echo "Warning: extra firmware \"$_xfw\" not found!"
- fi
-done
+if [ -n "$modloopfw" ]; then
+ for _xfw in "$modloopfw"; do
+ if [ -f "$ROOT/lib/firmware/$_xfw" ]; then
+ install -pD "$ROOT/lib/firmware/$_xfw" \
+ "$MODLOOP"/modules/firmware/"$_xfw"
+ else
+ echo "Warning: extra firmware \"$_xfw\" not found!"
+ fi
+ done
+fi
# include bluetooth firmware in modloop
if [ -e "$ROOT"/lib/modules/*/kernel/drivers/bluetooth/btbcm.ko ]; then
*(from redmine: issue id 10526, created on 2019-05-31)*3.14.0Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/10525Unmounting /media/usb fails during shutdown if udev is running2023-06-30T07:30:11ZLubos DolezalUnmounting /media/usb fails during shutdown if udev is runningAttachments show two cases:
*unmounting\_with-udev*: udev (and udev-trigger) was previously started
in the sysinit runlevel.
*unmounting\_without-udev*: udev (and udev-trigger) was stopped before
shutdown.
Installed udev packages:
u...Attachments show two cases:
*unmounting\_with-udev*: udev (and udev-trigger) was previously started
in the sysinit runlevel.
*unmounting\_without-udev*: udev (and udev-trigger) was stopped before
shutdown.
Installed udev packages:
udev-init-scripts-32-r2
udev-init-scripts-openrc-32-r2
eudev-libs-3.2.7-r0
eudev-3.2.7-r0
/proc/mounts: https://pastebin.com/hzvQirkg
*(from redmine: issue id 10525, created on 2019-05-31)*
* Uploads:
* ![unmounting_with-udev](/uploads/b31f0ed8a657e91eba51b03d46bc9339/unmounting_with-udev.png)
* ![unmounting_without-udev](/uploads/64ce364123ae64e23a15f08eab02fe36/unmounting_without-udev.png)3.12.1Sören TempelSören Tempel