Paul's Blog Entries for April 2009

Thursday 2nd April 2009

Local Packages

  • Updated dovecot to 1.2.beta4, and dovecot-managesieve to 0.11.3 as per Rawhide

  • Updated libssh2 to 1.1

  • Updated perl-IO-Socket-SSL to 1.24


I've been invited by my ISP to take part in their ADSL2+ 21CN trial. Given this this is likely to improve the upload speed from my server, I'm going to accept, though I'll need to replace my ancient but trusty SpeedTouch Pro router that I've had for about 8 years now.

Friday 3rd April 2009

Fedora Project

  • Updated perl-IO-Socket-SSL to 1.24 in Rawhide

  • Built updated spamass-milter packages for Fedora 9, 10, and Rawhide that are basically cumulative bugfix updates (mainly SELinux)

Monday 6th April 2009

Fedora Project

  • Updated bittorrent to patch some long-standing KeyError issues (Bug #451496); having had great difficulty reproducing this bug, I finally managed to do it today and this update will need some testing to verify that the patch works as intended

Local Packages

  • Updated bittorrent (4.4.0) as per Fedora

  • Updated getmail to 4.9.0

  • Updated libidn to 1.14

  • Updated perl-Perl-MinimumVersion to 1.20

  • Updated python-zope-interface to 3.5.1

  • Rebuilt mod_fcgid without the SELinux subpackage for RHEL 5, as RHEL 5.3 includes the merged fastcgi policy

  • Rebuilt perl-version with Epoch set to 3 as per the Fedora version

Tuesday 7th April 2009

Fedora Project

  • Updated mod_fcgid in Rawhide and EPEL-5 to not include the SELinux policy subpackage for EL-5 builds, as per yesterday's update to the local package

Tuesday 14th April 2009

Fedora Project

  • Issued an update for smbldap-tools that fixes a race condition that may cause nscd to be killed if multiple smbldap-tools processes are run in parallel (Bug #476504) and also fixes some incorrect dependencies. I'd originally tried to do this over a week ago but the Fedora 10 build failed due to the builder trying to upgrade openssl.i586 to openssl.i686. I raised Infrastructure ticket #1272 about this but there's been no response so far.

Local Packages

  • Updated gtkwave to 3.2.1

  • Updated perl-File-Find-Rule-Perl to 1.06

New ADSL Router

I bought a SpeedTouch 546v6 router to replace my ancient SpeedTouch Pro router that won't support ADSL2+ as I'll be going on PlusNet's 21CN trial soon.

After doing the standard "easy" setup to change the LAN address to suit my home network, I needed to configure the router to do PPTP-to-PPPoA bridging so that I could do the authentication from my Linux firewall/router box and, more importantly, have the WAN IP address on a local interface on that box. Whilst this could be configured using the GUI on the SpeedTouch Pro, the CLI is required on the SpeedTouch 546v6. Setup was as follows, using telnet to log in to the router.

Firstly, clear the standard configuration out of the way:

:ppp relay flush
:eth flush
:ppp flush
:atm flush

Then create a suitable phonebook entry for a UK ADSL connection (VPI 0, VCI 38) and enable the PPTP service:

:atm phonebook add name=ADSL_PlusNet addr=0.38
:service system modify name=PPTP state=enabled

On the Linux box, I used my existing configuration based on my pptp-plusnet package, and just changed the PPTP server's IP address to that of the new router, restarted the plusnet service and it all sprang into life.

Wednesday 15th April 2009

Local Packages

  • Updated curl to fix a memory leak in the NSS code, as per Rawhide

  • Updated proftpd to silence the "using sendfile capability for transmitting data" messages in /var/log/secure that bloat the logwatch reports every day

Friday 17th April 2009

Local Packages

  • Updated bluefish-unstable to 1.3.4

Monday 20th April 2009

Local Packages

  • Updated perl-Test-MinimumVersion to 0.009

  • Updated perl-Test-SubCalls to 1.09

Tuesday 21st April 2009

Fedora Project

Started updating the Gnome-1 stack (libxml, glib, gtk+, ORBit, imlib, gnome-libs, libglade) to fix up a bunch of minor niggles:

  • Libraries not linked against all of their requirements, leading to "undefined non-weak symbol" issues
  • Libraries unnecessarily linked against other libraries, leading to "unused direct shared library dependency" issues
  • Rebuilds needed to add %{_isa} provides

  • Missing libXt-devel dependency in imlib-devel (Bug #478357)

I'd updated and built all of the packages locally and didn't envisage any problems.

Firstly, I updated all packages in Rawhide, which went OK until I got to gnome-libs, where the ppc64 build failed. This turned out to be because of the old config.sub and config.guess files shipped in that release, a problem I'd come across earlier when updating libxml. After adding an almost identical patch to the one for libxml, gnome-libs built successfully, as did libglade (which didn't need patching).

Next up were the updates for Fedora 10 and 11. These couldn't be done as regular builds because updated packages don't automatically get pulled into the buildroots, and I wanted the lower level packages to be used in the rebuilds of the upper level packages for consistency, and also because some of the upper level packages require the new %{name}%{_isa} provides from the rebuilt lower level packages. So I built the leaf packages libxml and glib and raised an infrastructure ticket to get them added into the buildroots. It turned out that the ticket needed to be raised in the separate rel-eng trac instance, which I did. After quite a bit of discussion on the merits of these updates I managed to get libxml and glib tagged for override and built gtk+ and ORBit.

The imlib dependency bug I was fixing had been raised for EPEL-5, so I also started updating the packages there, by building glib, gtk+, and imlib. However, it turned out that glib and gtk+ are in RHEL 5 and should never have been branched for EPEL-5 (it wasn't me that did that - I just recently took over maintenance of the packages) so the new builds for those packages were removed and I marked those branches "dead" in CVS to prevent a repeat of that incident.

Thursday 23rd April 2009

Local Packages

  • Updated curl to fix debuginfo generation (Bug #496778) but without committing the heinous crime of running autotools during the build process like the Fedora version does

  • Updated perl-Class-Inspector to 1.24

Friday 24th April 2009

Fedora Project

  • Updated spamass-milter to incorporate patches from Habeeb J. Dihu, mainly relating to the use of the milter by authenticated users:

  • Bug #496763 (spamass-milter generates a broken received header)

  • Bug #496767 (add option to allow authenticated users to bypass the milter)

  • Bug #496769 (add authentication information to Received header in spamass-milter)

The addition of the option to allow authenticated users to bypass the milter had been requested before (in Bug #437506 and private mail), and I'd previously held off doing it because:

  1. I thought this should go upstream first, and
  2. there is I think a better way of achieving the same result, namely run the milter on the MTA port only and have authenticating clients use the submission port (587) instead, where their mail will never even be seen by the milter (this is the approach I use myself).

However, it seems that there's no activity at all upstream and I imagine some users might have difficulty getting their users to use the submission port (even though it's certainly the "right thing to do" as it also avoids outbound smtp blocking that travelling users might come up against when using hotel etc. networks). So I finally gave in and applied the patch.

Tuesday 28th April 2009


My DSL line has now been migrated to ADSL2+ on the 21CN trial. Didn't really notice much and speeds haven't changed much but at least it's working and it hasn't got slower :-)

Wednesday 29th April 2009

Local Packages

  • Updated moin to 1.8.3

Thursday 30th April 2009

Fedora Project

I was CC-ed on Bug #497679 (SElinux prevents sendmail from reading /var/run/milter-greylist/milter-greylist.sock) by Dan, and there wasn't really a nice, clean, simple fix for it so I installed the milter on my own mail server and wrote policy for it. This turned out to be quite easy as a result of the earlier work I'd done on the SELinux milter module for spamass-milter and milter-regex. Dan has now merged my policy in Rawhide and we await other testers' results.

Previous Month: March 2009
Next Month: May 2009