golang-1.22 (1.22.12-3~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
* Revert adding binutils-gold to {Build-,}Depends on arm64
-- Shengjing Zhu <zhsj@debian.org> Thu, 13 Feb 2025 17:13:01 +0800
golang-1.22 (1.22.12-3) unstable; urgency=medium
* Team upload
* binutils-gold is only used on arm64
* Add binutils-gold to Depends for golang-X.Y-go on arm64
-- Shengjing Zhu <zhsj@debian.org> Tue, 11 Feb 2025 18:51:22 +0800
golang-1.22 (1.22.12-2) unstable; urgency=medium
* Team upload
* Add binutils-gold to Build-Depends.
-- Shengjing Zhu <zhsj@debian.org> Mon, 10 Feb 2025 18:33:04 +0800
golang-1.22 (1.22.12-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.12
+ CVE-2025-22866: crypto/elliptic: timing sidechannel for P-256 on ppc64le
-- Shengjing Zhu <zhsj@debian.org> Fri, 07 Feb 2025 20:59:10 +0800
golang-1.22 (1.22.11-1~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
-- Shengjing Zhu <zhsj@debian.org> Tue, 21 Jan 2025 12:31:54 +0800
golang-1.22 (1.22.11-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.11
+ CVE-2024-45341: crypto/x509: usage of IPv6 zone IDs can bypass URI name
constraints
+ CVE-2024-45336: net/http: sensitive headers incorrectly sent after
cross-domain redirect
+ Fix tests using expired certificates (Closes: #1078616)
-- Shengjing Zhu <zhsj@debian.org> Fri, 17 Jan 2025 07:25:16 +0800
golang-1.22 (1.22.10-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.10
-- Shengjing Zhu <zhsj@debian.org> Wed, 04 Dec 2024 08:31:31 +0800
golang-1.22 (1.22.9-2~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
-- Shengjing Zhu <zhsj@debian.org> Thu, 14 Nov 2024 17:23:58 +0800
golang-1.22 (1.22.9-2) unstable; urgency=medium
* Team upload
* Running regression autopkgtest with root
* Increase timeout in regression autopkgtest
-- Shengjing Zhu <zhsj@debian.org> Tue, 12 Nov 2024 17:18:05 +0800
golang-1.22 (1.22.9-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.9
* Switch to versioned golang-1.XX-go packages for building.
Break circular loop with golang-defaults metapackage (Closes: #1081647)
-- Shengjing Zhu <zhsj@debian.org> Thu, 07 Nov 2024 15:31:50 +0800
golang-1.22 (1.22.8-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.8
-- Shengjing Zhu <zhsj@debian.org> Thu, 03 Oct 2024 14:39:25 +0800
golang-1.22 (1.22.7-1~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
-- Shengjing Zhu <zhsj@debian.org> Mon, 09 Sep 2024 17:31:59 +0800
golang-1.22 (1.22.7-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.7
+ CVE-2024-34155: go/parser: stack exhaustion in all Parse* functions
+ CVE-2024-34156: encoding/gob: stack exhaustion in Decoder.Decode
+ CVE-2024-34158: go/build/constraint: stack exhaustion in Parse
-- Shengjing Zhu <zhsj@debian.org> Mon, 09 Sep 2024 16:31:19 +0800
golang-1.22 (1.22.6-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.6
-- Shengjing Zhu <zhsj@debian.org> Wed, 07 Aug 2024 11:58:08 +0800
golang-1.22 (1.22.5-1) unstable; urgency=medium
* Team upload.
[ Dr. Tobias Quathamer ]
* Remove myself from Uploaders
[ Shengjing Zhu ]
* New upstream version 1.22.5
+ CVE-2024-24791: net/http: denial of service due to improper 100-continue
handling
-- Shengjing Zhu <zhsj@debian.org> Wed, 03 Jul 2024 16:05:25 +0800
golang-1.22 (1.22.4-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.4
+ CVE-2024-24789: archive/zip: mishandling of corrupt central directory
record
+ CVE-2024-24790: net/netip: unexpected behavior from Is methods for
IPv4-mapped IPv6 addresses
-- Shengjing Zhu <zhsj@debian.org> Wed, 05 Jun 2024 07:31:05 +0800
golang-1.22 (1.22.3-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.3
+ CVE-2024-24788: net: malformed DNS message can cause infinite loop
-- Shengjing Zhu <zhsj@debian.org> Wed, 08 May 2024 17:11:30 +0800
golang-1.22 (1.22.2-2) unstable; urgency=medium
* Team upload
* Skip flaky TestCrashDumpsAllThreads on s390x (LP: #2061742)
https://github.com/golang/go/issues/64650
-- Shengjing Zhu <zhsj@debian.org> Tue, 16 Apr 2024 16:13:31 +0800
golang-1.22 (1.22.2-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.2
+ CVE-2023-45288: http2: close connections when receiving too many headers
* Revert "Backport patch to fix external link on riscv64" (applied in 1.22.2)
-- Shengjing Zhu <zhsj@debian.org> Thu, 04 Apr 2024 04:23:15 +0800
golang-1.22 (1.22.1-1~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
-- Anthony Fok <foka@debian.org> Fri, 15 Mar 2024 02:44:22 -0600
golang-1.22 (1.22.1-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.1
+ CVE-2024-24783: crypto/x509: Verify panics on certificates with an
unknown public key algorithm
+ CVE-2023-45290: net/http: memory exhaustion in Request.ParseMultipartForm
+ CVE-2023-45289: net/http, net/http/cookiejar: incorrect forwarding of
sensitive headers and cookies on HTTP redirect
+ CVE-2024-24785: html/template: errors returned from MarshalJSON methods
may break template escaping
+ CVE-2024-24784: net/mail: comments in display names are incorrectly
handled
* Update upstream signing key
* Backport patch to fix external link on riscv64 (Closes: #1065368)
-- Shengjing Zhu <zhsj@debian.org> Wed, 06 Mar 2024 15:09:10 +0800
golang-1.22 (1.22.0-2~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
-- Shengjing Zhu <zhsj@debian.org> Wed, 28 Feb 2024 16:24:18 +0800
golang-1.22 (1.22.0-2) unstable; urgency=medium
* Team upload
* Skip flaky TestCrashDumpsAllThreads on mips64le
-- Shengjing Zhu <zhsj@debian.org> Mon, 26 Feb 2024 17:08:17 +0800
golang-1.22 (1.22.0-1~bpo12+1) bookworm-backports; urgency=medium
* Rebuild for bookworm-backports.
-- Anthony Fok <foka@debian.org> Wed, 21 Feb 2024 09:42:40 -0700
golang-1.22 (1.22.0-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22.0
-- Shengjing Zhu <zhsj@debian.org> Wed, 21 Feb 2024 16:57:04 +0800
golang-1.22 (1.22~rc2-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22~rc2
* Bump bootstrap Go to 1.20.
See https://github.com/golang/go/issues/54265
gccgo only implements Go 1.18 and can't bootstrap Go 1.22 now.
* Revert "Skip TestUser{Cache,Config}Dir when HOME is not writable"
This reverts commit 5e8f93837a5d73a391fbbc278a34e5a89f84ca9b.
Fixed by upstream https://github.com/golang/go/issues/64990
-- Shengjing Zhu <zhsj@debian.org> Tue, 30 Jan 2024 17:15:39 +0800
golang-1.22 (1.22~rc1-2~bpo12+1) bookworm-backports; urgency=medium
[ Shengjing Zhu ]
* Bump bootstrap Go to 1.20.
See https://github.com/golang/go/issues/54265
gccgo only implements Go 1.18 and can't bootstrap Go 1.22 now.
[ Anthony Fok ]
* Rebuild for bookworm-backports.
-- Anthony Fok <foka@debian.org> Fri, 12 Jan 2024 19:48:11 -0700
golang-1.22 (1.22~rc1-2) unstable; urgency=medium
* Skip TestUser{Cache,Config}Dir when HOME is not writable
-- Shengjing Zhu <zhsj@debian.org> Sat, 06 Jan 2024 21:26:23 +0800
golang-1.22 (1.22~rc1-1) unstable; urgency=medium
* Team upload
* New upstream version 1.22rc1
* Build loong64 binaries (Closes: #1055087)
* Avoid downloading a newer toolchain when bootstrap
-- Shengjing Zhu <zhsj@debian.org> Thu, 04 Jan 2024 17:22:48 +0800
golang-1.21 (1.21.5-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.5
+ CVE-2023-39326: net/http: limit chunked data overhead
+ CVE-2023-45285: cmd/go: go get may unexpectedly fallback to insecure git
+ CVE-2023-45283: path/filepath: retain trailing \ when cleaning paths
like \\?\c:\
-- Shengjing Zhu <zhsj@debian.org> Wed, 06 Dec 2023 15:32:23 +0800
golang-1.21 (1.21.4-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.4
+ CVE-2023-45283: path/filepath: recognize \??\ as a Root Local Device
path prefix.
+ CVE-2023-45284: path/filepath: recognize device names with trailing
spaces and superscripts.
-- Shengjing Zhu <zhsj@debian.org> Wed, 08 Nov 2023 03:40:30 +0800
golang-1.21 (1.21.3-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.3
+ CVE-2023-44487/CVE-2023-39325: net/http: rapid stream resets can cause
excessive work
-- Shengjing Zhu <zhsj@debian.org> Wed, 11 Oct 2023 14:53:53 +0800
golang-1.21 (1.21.2-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.2
+ CVE-2023-39323: cmd/go: line directives allows arbitrary execution during
build
-- Shengjing Zhu <zhsj@debian.org> Fri, 06 Oct 2023 19:35:37 +0800
golang-1.21 (1.21.1-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.1
+ CVE-2023-39320: cmd/go: go.mod toolchain directive allows arbitrary
execution
+ CVE-2023-39318: html/template: improper handling of HTML-like comments
within script contexts
+ CVE-2023-39319: html/template: improper handling of special tags within
script contexts
+ CVE-2023-39321/CVE-2023-39322: crypto/tls: panic when processing
post-handshake message on QUIC connections
-- Shengjing Zhu <zhsj@debian.org> Thu, 07 Sep 2023 11:51:55 +0800
golang-1.21 (1.21.0-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21.0
-- Shengjing Zhu <zhsj@debian.org> Wed, 09 Aug 2023 14:40:00 +0800
golang-1.21 (1.21~rc4-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21~rc4
-- Shengjing Zhu <zhsj@debian.org> Thu, 03 Aug 2023 15:15:53 +0800
golang-1.21 (1.21~rc3-2) unstable; urgency=medium
* Team upload
* Add Breaks+Replaces golang-1.21-go (<< 1.21~rc3) on golang-1.21-src
src/internal/platform/zosarch.go move from golang-1.21-go to
golang-1.21-src (Closes: #1041412)
-- Shengjing Zhu <zhsj@debian.org> Wed, 19 Jul 2023 16:12:19 +0800
golang-1.21 (1.21~rc3-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21~rc3
-- Shengjing Zhu <zhsj@debian.org> Mon, 17 Jul 2023 15:20:39 +0800
golang-1.21 (1.21~rc2-2) unstable; urgency=medium
* Team upload
* Add autopkgtest
-- Shengjing Zhu <zhsj@debian.org> Thu, 29 Jun 2023 16:33:35 +0800
golang-1.21 (1.21~rc2-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21~rc2
-- Shengjing Zhu <zhsj@debian.org> Thu, 22 Jun 2023 14:53:06 +0800
golang-1.21 (1.21~rc1-1) unstable; urgency=medium
* Team upload
* New upstream version 1.21rc1
* Install go.env in GOROOT
* Drop patches
+ 0001-Disable-test-for-UserHomeDir.patch.
Now the test doesn't fail if HOME dir doesn't exist
See https://github.com/golang/go/commit/bb4ea80b
+ 0002-Fix-Lintian-warnings-about-wrong-interpreter-path.patch.
We don't run these scripts, just leave them as is.
+ 0003-cmd-dist-increase-default-timeout-scale-for-arm.patch.
Upstream has removed arch-specific timeout scale heuristics.
See https://github.com/golang/go/issues/57117
We can move the setting to dh-golang.
+ 0004-skip-userns-test-in-schroot-as-well.patch.
Now the tests doesn't hardcode chroot types.
See https://github.com/golang/go/commit/09267142
-- Shengjing Zhu <zhsj@debian.org> Tue, 20 Jun 2023 17:39:49 +0800
golang-1.20 (1.20.5-1) unstable; urgency=medium
* Team upload
* New upstream version 1.20.5
+ CVE-2023-29402: cmd/go: cgo code injection
+ CVE-2023-29403: runtime: unexpected behavior of setuid/setgid binaries
+ CVE-2023-29404/CVE-2023-29405: cmd/go: improper sanitization of LDFLAGS
-- Shengjing Zhu <zhsj@debian.org> Wed, 07 Jun 2023 12:05:11 +0800
golang-1.20 (1.20.4-1) unstable; urgency=medium
* Team upload
* New upstream version 1.20.4
+ CVE-2023-24539: html/template: improper sanitization of CSS values
+ CVE-2023-24540: html/template: improper handling of JavaScript whitespace
+ CVE-2023-29400: html/template: improper handling of empty HTML attributes
-- Shengjing Zhu <zhsj@debian.org> Wed, 03 May 2023 14:56:49 +0800
golang-1.20 (1.20.3-1) unstable; urgency=medium
* Team upload
* New upstream version 1.20.3
+ CVE-2023-24537: go/parser: infinite loop in parsing
+ CVE-2023-24538: html/template: backticks not treated as string delimiters
+ CVE-2023-24534: net/http, net/textproto: denial of service from excessive
memory allocation
+ CVE-2023-24536: net/http, net/textproto, mime/multipart: denial of
service from excessive resource consumption
-- Shengjing Zhu <zhsj@debian.org> Wed, 05 Apr 2023 02:04:08 +0800
golang-1.20 (1.20.2-1) unstable; urgency=medium
* Team upload
* New upstream version 1.20.2
+ CVE-2023-24532: crypto/elliptic: incorrect P-256 ScalarMult and
ScalarBaseMult results
-- Shengjing Zhu <zhsj@debian.org> Wed, 08 Mar 2023 13:57:35 +0800
golang-1.20 (1.20.1-1) unstable; urgency=medium
* Team upload
* New upstream version 1.20.1
+ CVE-2022-41722: path/filepath: path traversal in filepath.Clean on
Windows
+ CVE-2022-41725: net/http, mime/multipart: denial of service from
excessive resource consumption
+ CVE-2022-41724: crypto/tls: large handshake records may cause panics
+ CVE-2022-41723: net/http: avoid quadratic complexity in HPACK decoding
-- Shengjing Zhu <zhsj@debian.org> Wed, 15 Feb 2023 09:53:55 +0800
golang-1.20 (1.20-1) unstable; urgency=medium
* Team upload
* New upstream release 1.20
* Remove patches applied upstream:
- d/patches/0005-Revert-internal-fsys-follow-root-symlink-in-fsys.Wal.patch
- d/patches/0006-time-revert-strict-parsing-of-RFC-3339.patch
-- Michael Hudson-Doyle <mwhudson@debian.org> Thu, 02 Feb 2023 13:54:15 +1300
golang-1.20 (1.20~rc3-2) unstable; urgency=medium
* Team upload
* Revert strict parsing of RFC 3339.
See https://github.com/golang/go/issues/54580
-- Shengjing Zhu <zhsj@debian.org> Thu, 19 Jan 2023 16:45:22 +0800
golang-1.20 (1.20~rc3-1) unstable; urgency=medium
[ William 'jawn-smith' Wilson ]
* New upstream version 1.20 rc3
[ Shengjing Zhu ]
* Drop 0005-syscall-skip-TestUseCgroupFD-if-cgroupfs-not-mounted.patch,
merged in new version.
-- Shengjing Zhu <zhsj@debian.org> Fri, 13 Jan 2023 09:51:55 +0800
golang-1.20 (1.20~rc2-2) unstable; urgency=medium
* Team upload
* Add NO_PNG_PKG_MANGLE to prevent mangling testdata.
This is Ubuntu specific behaviour so they can sync the package without
vendor patch.
* Revert "internal/fsys: follow root symlink in fsys.Walk"
Fix https://github.com/golang/go/issues/57754
-- Shengjing Zhu <zhsj@debian.org> Thu, 12 Jan 2023 22:27:08 +0800
golang-1.20 (1.20~rc2-1) unstable; urgency=medium
* Team upload
* New upstream version 1.20~rc2
* Bump bootstrap Go to 1.17.
See https://github.com/golang/go/issues/44505
* Drop i386 bootstrap workaround with Go < 1.16
* Add patch to skip TestUseCgroupFD for schroot
* Update Standards-Version to 4.6.2 (no changes)
* $GOROOT/pkg no longer stores pre-compiled package archives for the
standard library
* Make all scripts in src directory executable. To silence lintian.
* Refresh lintian overrides
-- Shengjing Zhu <zhsj@debian.org> Thu, 05 Jan 2023 16:01:28 +0800
golang-1.19 (1.19.4-1) unstable; urgency=medium
* New upstream version 1.19.4
+ CVE-2022-41720: os, net/http: avoid escapes from os.DirFS and http.Dir
on Windows
+ CVE-2022-41717: net/http: limit canonical header cache by bytes, not
entries
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Tue, 06 Dec 2022 16:10:54 -0600
golang-1.19 (1.19.3-1) unstable; urgency=medium
* New upstream version 1.19.3
+ CVE-2022-41716: syscall, os/exec: unsanitized NUL in environment variables
On Windows, syscall.StartProcess and os/exec.Cmd did not properly check
for invalid environment variable values. A malicious environment variable
value could exploit this behavior to set a value for a different
environment variable.
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Thu, 03 Nov 2022 08:39:47 -0500
golang-1.19 (1.19.2-1) unstable; urgency=medium
* New upstream version 1.19.2
+ CVE-2022-2879: archive/tar: unbounded memory consumption when reading
headers
+ CVE-2022-2880: net/http/httputil: ReverseProxy should not forward
unparseable query parameters
+ CVE-2022-41715: regexp/syntax: limit memory used by parsing regexps
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Tue, 04 Oct 2022 15:23:25 -0500
golang-1.19 (1.19.1-1) unstable; urgency=medium
* New upstream version 1.19.1
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Tue, 06 Sep 2022 14:58:49 -0500
golang-1.19 (1.19-1) unstable; urgency=medium
* New upstream version 1.19
* Update d/docs to reflect upstream removal of AUTHORS and CONTRIBUTORS
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Tue, 02 Aug 2022 15:35:20 -0500
golang-1.19 (1.19~rc2-1) unstable; urgency=medium
* New upstream version 1.19 rc2
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Tue, 12 Jul 2022 18:32:28 -0500
golang-1.19 (1.19~rc1-1) unstable; urgency=medium
* Team upload.
* Update upstream signing key.
Download from https://dl.google.com/dl/linux/linux_signing_key.pub
* New upstream version 1.19~rc1
+ Fix boostrap with gccgo (Closes: #1014238)
* Update Standards-Version to 4.6.1 (no changes)
-- Shengjing Zhu <zhsj@debian.org> Thu, 07 Jul 2022 23:42:03 +0800
golang-1.19 (1.19~beta1-2) unstable; urgency=medium
* Team upload.
* Source-only upload for migration to testing
-- Shengjing Zhu <zhsj@debian.org> Sat, 02 Jul 2022 03:11:52 +0800
golang-1.19 (1.19~beta1-1) unstable; urgency=medium
* New upstream version 1.19 beta1
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Fri, 10 Jun 2022 13:52:13 -0500
golang-1.18 (1.18.3-1) unstable; urgency=medium
* New upstream version 1.18.3
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Wed, 01 Jun 2022 17:23:29 -0500
golang-1.18 (1.18.2-2) unstable; urgency=medium
* d/p/0007-cmd-link-use-TOC-relative-trampolines-on-PPC64-when-.patch:
Remove patch. It's causing the build on ppc64el to FTBFS during link
time.
-- Sergio Durigan Junior <sergiodj@debian.org> Sat, 14 May 2022 15:22:04 -0400
golang-1.18 (1.18.2-1) unstable; urgency=medium
* New upstream version 1.18.2
* d/p/0007-cmd-link-use-TOC-relative-trampolines-on-PPC64-when-.patch:
Use TOC-relative trampolines on ppc64el when needed. Fix link error
when building PIE binaries. (Closes: #1010942)
-- Sergio Durigan Junior <sergiodj@debian.org> Fri, 13 May 2022 14:07:03 -0400
golang-1.18 (1.18.1-1) unstable; urgency=medium
* New upstream version 1.18.1
+ CVE-2022-24675: encoding/pem: fix stack overflow in Decode
+ CVE-2022-28327: crypto/elliptic: tolerate all oversized scalars
in generic P-256
+ CVE-2022-27536: crypto/x509: non-compliant certificates can
cause a panic in Verify on macOS in Go 1.18
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Wed, 13 Apr 2022 12:54:36 -0500
golang-1.18 (1.18-1) unstable; urgency=medium
* New upstream version 1.18
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Tue, 15 Mar 2022 14:59:19 -0500
golang-1.18 (1.18~rc1-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.18~rc1
-- Shengjing Zhu <zhsj@debian.org> Fri, 18 Feb 2022 01:31:48 +0800
golang-1.18 (1.18~beta2-1) unstable; urgency=medium
* New upstream version 1.18 beta2
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Mon, 31 Jan 2022 16:53:48 -0600
golang-1.18 (1.18~beta1-2) unstable; urgency=medium
* Source-only upload for migration to testing
-- Anthony Fok <foka@debian.org> Thu, 13 Jan 2022 14:01:05 -0700
golang-1.18 (1.18~beta1-1) unstable; urgency=medium
* New upstream version 1.18 beta1
-- William 'jawn-smith' Wilson <jawn-smith@ubuntu.com> Wed, 15 Dec 2021 16:07:48 -0600
golang-1.17 (1.17.5-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.17.5
+ CVE-2021-44716: net/http: limit growth of header canonicalization cache
+ CVE-2021-44717: syscall: don’t close fd 0 on ForkExec error
-- Shengjing Zhu <zhsj@debian.org> Thu, 09 Dec 2021 23:22:36 +0800
golang-1.17 (1.17.4-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.17.4
-- Shengjing Zhu <zhsj@debian.org> Sat, 04 Dec 2021 01:32:29 +0800
golang-1.17 (1.17.3-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.17.3
+ CVE-2021-41771: debug/macho: invalid dynamic symbol table command
can cause panic
+ CVE-2021-41772: archive/zip: Reader.Open panics on empty string
-- Shengjing Zhu <zhsj@debian.org> Sun, 07 Nov 2021 22:33:32 +0800
golang-1.17 (1.17.2-1) unstable; urgency=medium
* Team upload.
[ Anthony Fok ]
* Fix Lintian warning: tab-in-license-text
debian/copyright (starting at line 366)
[ Shengjing Zhu ]
* Ensure GOROOT_BOOTSTRAP is valid
* Set GOPATH in d/rules.
Seems the go command needs GOPATH env
* New upstream version 1.17.2
+ CVE-2021-38297: When invoking functions from WASM modules, built using
GOARCH=wasm GOOS=js, passing very large arguments can cause portions of
the module to be overwritten with data from the arguments
-- Shengjing Zhu <zhsj@debian.org> Sat, 09 Oct 2021 01:23:05 +0800
golang-1.17 (1.17.1-1) unstable; urgency=high
* New upstream version 1.17.1
+ CVE-2021-39293: security fix to the archive/zip package
The fix for CVE-2021-33196 can be bypassed by crafted inputs.
As a result, the NewReader and OpenReader functions in archive/zip
can still cause a panic or an unrecoverable fatal error when reading
an archive that claims to contain a large number of files,
regardless of its actual size.
Thanks to the OSS-Fuzz project for discovering this issue
and to Emmanuel Odeke for reporting it.
+ bug fixes to the archive/zip, go/internal/gccgoimporter,
html/template, net/http, and runtime/pprof packages
* Re-add "Multi-Arch: foreign" hint
* Rename Maintainer from "Go Compiler Team" to "Debian Go Compiler Team"
* Bump Standards-Version to 4.6.0 (no change)
-- Anthony Fok <foka@debian.org> Fri, 10 Sep 2021 18:01:21 -0600
golang-1.17 (1.17-3) unstable; urgency=medium
* Team upload.
* Add missing generated buildcfg file (Closes: #993450)
-- Shengjing Zhu <zhsj@debian.org> Thu, 02 Sep 2021 00:08:21 +0800
golang-1.17 (1.17-2) unstable; urgency=medium
* Team upload.
* Fix extracting go version for gccgo
-- Shengjing Zhu <zhsj@debian.org> Sun, 29 Aug 2021 01:16:12 +0800
golang-1.17 (1.17-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.17
* Refresh patches, dropping
0003-cmd-go-cmd-cgo-pass-mfp32-and-mhard-soft-float-to-MI.patch which was
merged upstream.
* Do not include the now-deleted favicon.ico in golang-1.17-doc.
* Add one more arch-independent-package-contains-binary-or-object lintian
suppression.
-- Michael Hudson-Doyle <mwhudson@debian.org> Tue, 17 Aug 2021 13:03:28 +1200
golang-1.16 (1.16.7-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.16.7
+ CVE-2021-36221: net/http: panic due to racy read of persistConn after
handler panic
-- Shengjing Zhu <zhsj@debian.org> Fri, 06 Aug 2021 02:38:44 +0800
golang-1.16 (1.16.6-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.16.6
+ CVE-2021-34558: crypto/tls: clients can panic when provided a certificate
of the wrong type for the negotiated parameters
-- Shengjing Zhu <zhsj@debian.org> Tue, 13 Jul 2021 13:11:46 +0800
golang-1.16 (1.16.5-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.16.5
+ CVE-2021-33195: net: Lookup functions may return invalid host names
+ CVE-2021-33196: archive/zip: malformed archive may cause panic or memory
exhaustion (Closes: #989492)
+ CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection
headers if first one is empty
+ CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001"
crashes with "makeslice: len out of range"
-- Shengjing Zhu <zhsj@debian.org> Sat, 05 Jun 2021 19:03:59 +0800
golang-1.16 (1.16.4-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.16.4
Fix CVE-2021-31525 net/http: ReadRequest can stack overflow due to
recursion with very large headers
-- Shengjing Zhu <zhsj@debian.org> Sat, 08 May 2021 02:27:38 +0800
golang-1.16 (1.16.3-4) unstable; urgency=medium
* Team upload.
* Remove bootstrap dir after build. Otherwise tests fail
-- Shengjing Zhu <zhsj@debian.org> Tue, 20 Apr 2021 02:05:56 +0800
golang-1.16 (1.16.3-3) unstable; urgency=medium
* Team upload.
* Drop mtime hack in postinst and d/rules
https://github.com/golang/go/issues/3506#issuecomment-341310161
> Essentially everything involved in this report has been rewritten.
> The go command no longer cares about mtimes.
* No need to remove src dir in golang-$(GOVER)-go package.
It's not installed by golang-X.Y-go.dirs now
* Update description and recommended way to use specified version (Closes: #985542)
* Rebuild with go1.16.
To build with GO386=softfloat, https://github.com/golang/go/issues/44500
* Add Multi-Arch hint
* Only build in -arch target again.
Move generated source files to golang-1.16-go package
* Not force gencontrol in dh_clean.
Not needed after the new branch is created. And we need to add some
Breaks/Replaces to d/control which should not be in next version
* Remove GOCACHE before dh_install.
So it is executed when build with nocheck as well
-- Shengjing Zhu <zhsj@debian.org> Tue, 20 Apr 2021 00:46:07 +0800
golang-1.16 (1.16.3-2) unstable; urgency=medium
* Team upload.
* Also build package in indep target (Closes: #987126)
As the -src package moved to arch all,
* Build with empty GO386 env on i386 for now.
It's no possible to build go1.16 with go1.15 with either
GO386=softfloat or GO386=387.
We can rebuild go1.16 with go1.16 and GO386=softfloat later.
-- Shengjing Zhu <zhsj@debian.org> Sun, 18 Apr 2021 17:27:43 +0800
golang-1.16 (1.16.3-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.16.3
Fix CVE-2021-27918 CVE-2021-27919
* Move golang-X.Y-src to arch all.
The package doesn't contain arch specific source now.
* Update golang-X.Y-doc package description.
Most contents are removed by upstream in 1.16, which is moved to
x/website repository. And the godoc binary is also shipped in
golang-golang-x-tools now. So no longer recommend users to read doc
with godoc. These html files can also be read in plain browsers.
* Replace dpkg-parsechangelog with dpkg pkg-info.mk
* Try to enable tests on armel and ppc64.
No comments say why it doesn't work
* Remove nocheck detection as debhelper respects it since compat 13
* Remove override_dh_missing as fail-missing is default in compat 13
-- Shengjing Zhu <zhsj@debian.org> Sun, 18 Apr 2021 03:56:41 +0800
golang-1.16 (1.16-1) unstable; urgency=medium
* New upstream version 1.16
* debian/control{.in,}: Change Section from devel to golang
* Add myself to Uploaders
-- Anthony Fok <foka@debian.org> Thu, 18 Feb 2021 00:02:53 -0700
golang-1.16 (1.16~rc1-1) unstable; urgency=medium
* Team upload.
* New upstream major version.
- Drop 0004-cmd-dist-fix-build-failure-of-misc-cgo-test-on-arm64.patch
which was replaced by https://go-review.googlesource.com/c/go/+/262357/
and cherry-picked as b3f7f60 for go1.16 upstream
- Refresh remaining patches
* Update Standards-Version to 4.5.1, no changes needed
-- Anthony Fok <foka@debian.org> Mon, 08 Feb 2021 17:43:41 -0700
golang-1.15 (1.15.8-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.15.8
* Skip userns tests in schroot.
When schroot is using overlayfs, it fails to detect it as chroot.
-- Shengjing Zhu <zhsj@debian.org> Fri, 05 Feb 2021 20:51:44 +0800
golang-1.15 (1.15.7-1) unstable; urgency=medium
* Team upload.
* New upstream version 1.15.7
+ crypto/elliptic: incorrect operations on the P-224 curve
CVE-2021-3114
-- Shengjing Zhu <zhsj@debian.org> Sat, 23 Jan 2021 01:59:14 +0800
golang-1.15 (1.15.6-1) unstable; urgency=medium
* Team upload.
[ Balint Reczey ]
* cmd/dist: increase default timeout scale for arm (LP: #1893640)
[ Shengjing Zhu ]
* New upstream version 1.15.6
* Drop CGO_LDFLAGS patch, fixed in go1.15.6
-- Shengjing Zhu <zhsj@debian.org> Sun, 13 Dec 2020 18:27:59 +0800
golang-1.15 (1.15.5-2) unstable; urgency=medium
* Team upload.
* Backport patch to fix usability regression in go1.15.5
cmd/go: allow flags in CGO_LDFLAGS environment variable not in security allowlist
https://github.com/golang/go/issues/42567
-- Shengjing Zhu <zhsj@debian.org> Wed, 18 Nov 2020 00:46:08 +0800
golang-1.15 (1.15.5-1) unstable; urgency=medium
* New upstream version 1.15.5.
-- Michael Hudson-Doyle <mwhudson@debian.org> Fri, 13 Nov 2020 09:40:16 +1300
golang-1.15 (1.15.4-1) unstable; urgency=medium
* New upstream version 1.15.4.
-- Michael Hudson-Doyle <mwhudson@debian.org> Tue, 10 Nov 2020 10:48:51 +1300
golang-1.15 (1.15.2-1) unstable; urgency=medium
* New upstream version 1.15.2.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Tue, 15 Sep 2020 09:51:42 +1200
golang-1.15 (1.15-2) unstable; urgency=medium
* Team upload.
* Backport fix for arm64 cgo test
https://go-review.googlesource.com/c/go/+/237858
-- Shengjing Zhu <zhsj@debian.org> Thu, 27 Aug 2020 13:44:43 +0800
golang-1.15 (1.15-1) unstable; urgency=medium
* New upstream version 1.15
-- Dr. Tobias Quathamer <toddy@debian.org> Tue, 25 Aug 2020 19:59:24 +0200
golang-1.15 (1.15~rc2-1) unstable; urgency=medium
* New upstream version 1.15~rc2
- encoding/binary: ReadUvarint and ReadVarint can read an unlimited
number of bytes from invalid inputs. CVE-2020-16845
-- Dr. Tobias Quathamer <toddy@debian.org> Sun, 09 Aug 2020 16:12:45 +0200
golang-1.15 (1.15~rc1-1) unstable; urgency=medium
[ Shengjing Zhu ]
* Backport patches to fix the FPU ABI problems for mips32
https://go-review.googlesource.com/c/go/+/237058/
[ Dr. Tobias Quathamer ]
* New upstream version 1.15~rc1
- Refresh patches
- net/http: Expect 100-continue panics in httputil.ReverseProxy.
See https://github.com/golang/go/issues/34902, fixes CVE-2020-15586
-- Dr. Tobias Quathamer <toddy@debian.org> Mon, 03 Aug 2020 21:22:44 +0200
golang-1.15 (1.15~beta1-2) unstable; urgency=medium
* Source-only upload.
-- Dr. Tobias Quathamer <toddy@debian.org> Wed, 17 Jun 2020 17:17:08 +0200
golang-1.15 (1.15~beta1-1) unstable; urgency=medium
* New upstream major version.
- Drop patch to fix FTBFS on $HOME managed with git, has been
applied upstream.
- Refresh remaining patches
-- Dr. Tobias Quathamer <toddy@debian.org> Mon, 15 Jun 2020 21:40:49 +0200
golang-1.14 (1.14.4-1) unstable; urgency=medium
* New upstream version 1.14.4
- Refresh patches
-- Dr. Tobias Quathamer <toddy@debian.org> Mon, 15 Jun 2020 21:19:41 +0200
golang-1.14 (1.14.3-2) unstable; urgency=medium
* Increase the test timeout that made some builds succeed
there on slow hardware (such as emulated riscv64).
Thanks to Gianfranco Costamagna (Closes: #960759)
-- Dr. Tobias Quathamer <toddy@debian.org> Sat, 16 May 2020 14:32:28 +0200
golang-1.14 (1.14.3-1) unstable; urgency=medium
* New upstream version 1.14.3
* Use debhelper v13
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 15 May 2020 15:24:43 +0200
golang-1.14 (1.14.2-1) unstable; urgency=medium
* New upstream version 1.14.2
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 10 Apr 2020 14:34:21 +0200
golang-1.14 (1.14.1-1) unstable; urgency=medium
* New upstream version 1.14.1
- Add new patch to fix FTBFS on $HOME managed with git.
Thanks to Guillem Jover <gjover@sipwise.com> (Closes: #953276)
-- Dr. Tobias Quathamer <toddy@debian.org> Sat, 21 Mar 2020 14:01:31 +0100
golang-1.14 (1.14-2) unstable; urgency=medium
* Fix FTBFS if built twice in a row.
Some paths of autogenerated files have been changed upstream,
so that the removal of those files after the build did no
longer succeed.
Thanks to Guillem Jover (Closes: #953277)
* Update Standards-Version to 4.5.0, no changes needed
-- Dr. Tobias Quathamer <toddy@debian.org> Mon, 09 Mar 2020 14:00:39 +0100
golang-1.14 (1.14-1) unstable; urgency=medium
* New upstream version 1.14
-- Dr. Tobias Quathamer <toddy@debian.org> Tue, 25 Feb 2020 21:33:50 +0100
golang-1.14 (1.14~rc1-1) unstable; urgency=medium
* New upstream version 1.14~rc1
- Fixes CVE-2020-7919
* Add Breaks: dh-golang (<< 1.43~) to golang-go.
Thanks to Pirate Praveen <praveen@onenetbeyond.org>
* Update upstream's signing key
* Add support for riscv64.
Thanks to Aurelien Jarno <aurel32@debian.org> (Closes: #950517)
-- Dr. Tobias Quathamer <toddy@debian.org> Wed, 05 Feb 2020 23:54:28 +0100
golang-1.14 (1.14~beta1-2) unstable; urgency=medium
* Source-only upload.
* Add two more lintian overrides for testdata
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 26 Dec 2019 20:11:44 +0100
golang-1.14 (1.14~beta1-1) unstable; urgency=medium
* New upstream major version.
-- Dr. Tobias Quathamer <toddy@debian.org> Wed, 25 Dec 2019 21:27:46 +0100
golang-1.13 (1.13.5-1) unstable; urgency=medium
* New upstream version 1.13.5
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 05 Dec 2019 12:27:21 +0100
golang-1.13 (1.13.4-1) unstable; urgency=medium
* New upstream version 1.13.4
- Refresh patches
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 01 Nov 2019 21:07:16 +0100
golang-1.13 (1.13.3-1) unstable; urgency=medium
* New upstream version 1.13.3
- Refresh patch
- crypto/dsa: invalid public key causes panic in dsa.Verify.
Fixes CVE-2019-17596. Closes: #942628
* Update Standards-Version to 4.4.1, no changes needed
-- Dr. Tobias Quathamer <toddy@debian.org> Sat, 19 Oct 2019 13:30:36 +0200
golang-1.13 (1.13.1-1) unstable; urgency=medium
* New upstream version 1.13.1
- net/textproto: don't normalize headers with spaces before the colon.
Fixes CVE-2019-16276. See https://github.com/golang/go/issues/34541
and Debian bug #941173
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 26 Sep 2019 11:32:14 +0200
golang-1.13 (1.13-1) unstable; urgency=medium
* New upstream version 1.13
- Refresh patch
* Set pristine-tar for gbp to False
-- Dr. Tobias Quathamer <toddy@debian.org> Wed, 04 Sep 2019 11:28:07 +0200
golang-1.13 (1.13~rc2-1) unstable; urgency=medium
* New upstream version 1.13~rc2
- Remove patch for CVE-2019-9512 and CVE-2019-9514,
has been applied upstream
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 30 Aug 2019 13:29:21 +0200
golang-1.13 (1.13~rc1-2) unstable; urgency=medium
* Exclude testdata from dh_makeshlibs.
Otherwise, the build fails at least on armel and armhf.
* Apply changes from cme fix dpkg
* Set Rules-Requires-Root: no
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 22 Aug 2019 15:21:10 +0200
golang-1.13 (1.13~rc1-1) unstable; urgency=medium
* New upstream version 1.13~rc1
- Remove patch for CVE-2019-14809, has been applied upstream
* Use dh_missing instead of deprecated dh_install --fail-missing
* Do not run dh_dwz, there is no debugging information
* Use debhelper-compat (= 12)
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 22 Aug 2019 12:48:15 +0200
golang-1.13 (1.13~beta1-3) unstable; urgency=high
* Fix Denial of Service vulnerabilities in the HTTP/2 implementation.
https://github.com/golang/go/issues/33631
CVE-2019-9512, CVE-2019-9514. Closes: #934955
* Fix multiple Parsing Issues in URL.Parse
https://github.com/golang/go/issues/29098
CVE-2019-14809. Closes: #934954
-- Dr. Tobias Quathamer <toddy@debian.org> Sat, 17 Aug 2019 23:47:53 +0200
golang-1.13 (1.13~beta1-2) unstable; urgency=medium
* Set GOCACHE to fix a FTBFS. (See bug #933958)
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 09 Aug 2019 16:40:13 +0200
golang-1.13 (1.13~beta1-1) unstable; urgency=medium
* New upstream major version.
- Remove Reproducible-BUILD_PATH_PREFIX_MAP.patch.
This patch is finally no longer needed with Go 1.13.
Upstream has implemented a new flag "-trimpath" for the
command "go build" which either strips the path or
replaces it in the resulting binaries.
References:
https://github.com/golang/go/issues/16860
https://go-review.googlesource.com/c/go/+/173345/
https://go-review.googlesource.com/c/go/+/173344/
- Remove arm64-arm64asm-recognise-new-ssbb-pssbb-mnemonics-fr.patch.
This patch has been cherry-picked from upstream and is now included.
- Refresh remaining patches
- Fix lintian warning: make scripts executable
* Switch to debhelper-compat, but stay at v11 for now
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 01 Aug 2019 14:21:51 +0200
golang-1.12 (1.12.7-1) unstable; urgency=medium
* New upstream version 1.12.7
- Refresh patches
* Update Standards-Version to 4.4.0, no changes needed
-- Dr. Tobias Quathamer <toddy@debian.org> Tue, 09 Jul 2019 14:19:07 +0200
golang-1.12 (1.12.5-1) unstable; urgency=medium
* New upstream version 1.12.5
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 09 May 2019 22:34:40 +0200
golang-1.12 (1.12.4-1) unstable; urgency=medium
[ Anthony Fok ]
* Add /usr/lib/go-X.Y/{api,misc} symlinks.
For example, programs such as https://github.com/vugu/vugu and
documentation such as https://github.com/golang/go/wiki/WebAssembly
expect to find wasm_exec.js at "$(go env GOROOT)/misc/wasm/wasm_exec.js".
[ Dr. Tobias Quathamer ]
* New upstream version 1.12.4
* Add five lintian overrides for false positives
-- Dr. Tobias Quathamer <toddy@debian.org> Sat, 13 Apr 2019 14:09:40 +0200
golang-1.12 (1.12.1-1) unstable; urgency=medium
* New upstream version 1.12.1
* Use upstream signing key for tarball verification
-- Dr. Tobias Quathamer <toddy@debian.org> Sun, 17 Mar 2019 21:56:32 +0100
golang-1.12 (1.12-1) unstable; urgency=medium
* New upstream version 1.12
- Remove patch 0005-Fix-CVE-2019-6486, applied upstream
-- Dr. Tobias Quathamer <toddy@debian.org> Tue, 26 Feb 2019 21:31:48 +0100
golang-1.12 (1.12~beta2-2) unstable; urgency=medium
* Refresh patch Reproducible BUILD_PATH_PREFIX_MAP.
Thanks to Michael Stapelberg!
* Add patch to fix CVE-2019-6486. (Closes: #920548)
-- Dr. Tobias Quathamer <toddy@debian.org> Sun, 27 Jan 2019 20:05:59 +0100
golang-1.12 (1.12~beta2-1) unstable; urgency=medium
* New upstream version 1.12~beta2
- Remove two patches, applied upstream. Refresh remaining patch.
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 11 Jan 2019 17:14:43 +0100
golang-1.12 (1.12~beta1-4) unstable; urgency=medium
* Switch watch file to version 4
* Update d/copyright
-- Dr. Tobias Quathamer <toddy@debian.org> Mon, 07 Jan 2019 23:06:22 +0100
golang-1.12 (1.12~beta1-3) unstable; urgency=medium
[ Anthony Fok ]
* Add patch "unix: fix Fstatat by using fillStat_t on linux/mips64x"
This fixes the "Fstatat: returned stat does not match Stat/Lstat"
errors detected by TestFstatat.
See https://go-review.googlesource.com/c/sys/+/155747
[ Dr. Tobias Quathamer ]
* Add another lintian override
-- Dr. Tobias Quathamer <toddy@debian.org> Fri, 28 Dec 2018 23:06:20 +0100
golang-1.12 (1.12~beta1-2) unstable; urgency=medium
[ Anthony Fok ]
* Add patch "cmd/compile: fix MIPS SGTconst-with-shift rules"
by Cherry Zhang. This fixes the root problem behind the
"slice bounds out of range" build error seen in 1.11.4
on mips and mipsel architectures.
See https://go-review.googlesource.com/c/go/+/155798
* Bump Standards-Version to 4.3.0 (no change)
[ Dr. Tobias Quathamer ]
* Do not compress favicon.ico.
Thanks to Dato Simó <dato@debian.org> (Closes: #917132)
-- Dr. Tobias Quathamer <toddy@debian.org> Wed, 26 Dec 2018 23:20:03 +0100
golang-1.12 (1.12~beta1-1) unstable; urgency=medium
* New upstream major version.
- Refresh patches
- Add new patch to disable test for UserHomeDir
* Switch team address to tracker.d.o
* Add another lintian override for a false positive
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 20 Dec 2018 12:51:49 +0100
golang-1.11 (1.11.4-1) unstable; urgency=medium
* New upstream version 1.11.4
* Make lintian override agnostic of golang version
-- Dr. Tobias Quathamer <toddy@debian.org> Sun, 16 Dec 2018 13:48:52 +0100
golang-1.11 (1.11.3-1) unstable; urgency=medium
* New upstream version 1.11.3
- Refresh patches
* Update gbp.conf to new style syntax
* Suggest brz as alternative to bzr; it provides the same command-line API.
* Add myself to Uploaders
-- Dr. Tobias Quathamer <toddy@debian.org> Thu, 13 Dec 2018 23:23:40 +0100
golang-1.11 (1.11.2-2) unstable; urgency=medium
* d/patches/arm64-arm64asm-recognise-new-ssbb-pssbb-mnemonics-fr.patch:
backport workaround for objdump's support of newer mnemonics on arm64.
-- Michael Hudson-Doyle <mwhudson@debian.org> Mon, 26 Nov 2018 13:24:37 +1300
golang-1.11 (1.11.2-1) unstable; urgency=medium
* Team upload.
[ Michael Hudson-Doyle ]
* New upstream major version.
* Update debhelper compat level to 11.
* Remove GOCACHE files after running tests.
* Stop dh_strip_nondeterminism from looking at testdata directories.
[ Dr. Tobias Quathamer ]
* Build-Depend on debhelper v11
* Override two false positive Lintian errors (missing depends
on sensible-utils)
* Add Lintian overrides for testdata
* Include /usr/share/dpkg/architecture.mk for DEB_HOST_ARCH
* Refresh patch for new upstream version
* Fix Lintian warnings about wrong interpreter path
* Make two scripts executable which have been missed by upstream
* Remove three unneeded lintian overrides
* Use HTTPS URL for d/watch
* Update to Standards-Version 4.2.1
- Use HTTPS for d/copyright
* Update d/copyright
-- Dr. Tobias Quathamer <toddy@debian.org> Tue, 20 Nov 2018 22:51:44 +0100
golang-1.10 (1.10.3-1) unstable; urgency=medium
* New upstream version 1.10.3
* Restore changelog entry for 1.10.1-3, and fix that for 1.10.2-1, oops.
-- Michael Hudson-Doyle <mwhudson@debian.org> Thu, 14 Jun 2018 14:55:58 +1200
golang-1.10 (1.10.2-1) unstable; urgency=medium
* New upstream version 1.10.2.
- d/patches/0003-Backport_nopie_fix.patch: removed, now included upstream.
- d/patches/0004-Backport_mips_octeon3_fp_fix.patch: removed, also included
upstream.
-- Michael Hudson-Doyle <mwhudson@debian.org> Wed, 23 May 2018 15:24:03 +1200
golang-1.10 (1.10.1-3) unstable; urgency=high
* Team upload.
[ Michael Hudson-Doyle ]
* Install the 'misc' and 'api' directories as part of the golang-1.10-src
package as some tools (vgo, go tool trace) expect them to be there.
(Closes: 894992¸ LP: #1743598)
[ Martín Ferrari ]
* Backport fix for FP bug in mips/Octeon III. Closes: #892088. Raising
severity.
-- Martín Ferrari <tincho@debian.org> Sun, 22 Apr 2018 21:21:05 +0000
golang-1.10 (1.10.1-2) unstable; urgency=medium
* Team upload.
* Backport patch that fixes FTBFS in arm64.
* debian/copyright: Update attribution.
* debian/source: Update lintian-overrides.
-- Martín Ferrari <tincho@debian.org> Wed, 18 Apr 2018 15:38:49 +0000
golang-1.10 (1.10.1-1) unstable; urgency=medium
* New upstream version 1.10.1.
* d/patches/0002-reproducible-BUILD_PATH_PREFIX_MAP.patch: update patch tags
to reference upstream discussion of this topic.
* d/control, d/control.in: Update Vcs-* to point to salsa.
-- Michael Hudson-Doyle <mwhudson@debian.org> Tue, 03 Apr 2018 15:34:12 +1200
golang-1.10 (1.10-1) unstable; urgency=medium
* New upstream version 1.10
-- Michael Stapelberg <stapelberg@debian.org> Sat, 17 Feb 2018 12:57:14 +0100
golang-1.10 (1.10~rc2-1) unstable; urgency=medium
* New upstream version, fixing CVE-2018-6574.
* d/patches/0001-os-signal-skip-TestTerminalSignal-if-posix_openpt-fa.patch,
d/patches/0003-cmd-vendor-github.com-google-pprof-cherry-pick-fix-t.patch,
d/patches/0004-cmd-link-internal-loadelf-fix-logic-for-computing-EL.patch:
removed, now included upstream.
-- Michael Hudson-Doyle <mwhudson@debian.org> Thu, 08 Feb 2018 10:46:52 +1300
golang-1.10 (1.10~rc1-2) unstable; urgency=medium
* d/patches/0004-cmd-link-internal-loadelf-fix-logic-for-computing-EL.patch:
Backport from upstream to fix build issues on armhf (causes ftbfs on
Ubuntu but not Debian for some reason, but could produce broken binaries
on Debian too).
-- Michael Hudson-Doyle <mwhudson@debian.org> Wed, 07 Feb 2018 22:10:22 +1300
golang-1.10 (1.10~rc1-1) unstable; urgency=medium
* New upstream version 1.10~rc1.
* d/patches/0004-cmd-dist-use-buildmode-pie-for-pie-testing.patch,
d/patches/0006-misc-cgo-testcarchive-use-no-pie-where-needed.patch,
d/patches/0003-Do-not-use-SP-as-index-reg.patch: removed, included upstream.
* d/patches/0002-reproducible-BUILD_PATH_PREFIX_MAP.patch: refreshed.
* d/patches/0001-os-signal-skip-TestTerminalSignal-if-posix_openpt-fa.patch:
Add to fix test failure in chroot.
* d/patches/0003-cmd-vendor-github.com-google-pprof-cherry-pick-fix-t.patch:
Add to fix test failure when $HOME is not writable.
* d/rules: Set GOCACHE to "off" during build to avoid shipping cache files.
-- Michael Hudson-Doyle <mwhudson@debian.org> Wed, 31 Jan 2018 14:46:12 +1300
golang-1.9 (1.9.2-4) unstable; urgency=medium
* Enable building on mips, mipsel and mips64. (Closes: 879764)
-- Michael Hudson-Doyle <mwhudson@debian.org> Fri, 08 Dec 2017 14:09:24 +1300
golang-1.9 (1.9.2-3) unstable; urgency=medium
* Remove workaround for now fixed debhelper bug #879762
* Backport three patches from upstream to fix ftbfs on ppc64el with new kernel.
-- Michael Hudson-Doyle <mwhudson@debian.org> Tue, 31 Oct 2017 12:16:17 +1300
golang-1.9 (1.9.2-2) unstable; urgency=medium
[ Martín Ferrari ]
* Add debian/patches/0003-Do-not-use-SP-as-index-reg.patch (Closes: #877541)
-- Michael Stapelberg <stapelberg@debian.org> Fri, 27 Oct 2017 08:55:32 +0200
golang-1.9 (1.9.2-1) unstable; urgency=medium
* New upstream version 1.9.2
* Work around debhelper bug #879762
-- Michael Hudson-Doyle <mwhudson@debian.org> Thu, 26 Oct 2017 13:46:40 +1300
golang-1.9 (1.9.1-2) unstable; urgency=medium
* Update debian/copyright (Closes: #873740)
-- Michael Stapelberg <stapelberg@debian.org> Mon, 09 Oct 2017 18:03:49 +0200
golang-1.9 (1.9.1-1) unstable; urgency=medium
* New upstream release.
* Use my @debian.org address in Uploaders.
-- Michael Hudson-Doyle <mwhudson@debian.org> Fri, 06 Oct 2017 13:04:46 +1300
golang-1.9 (1.9-1) unstable; urgency=medium
[ Michael Hudson-Doyle ]
* New upstream release.
* Suppress some new lintian errors in golang-1.9-src.
[ Michael Stapelberg ]
* Add debian/patches/0002-reproducible-BUILD_PATH_PREFIX_MAP.patch
-- Michael Hudson-Doyle <mwhudson@debian.org> Wed, 30 Aug 2017 16:31:09 +1200
golang-1.8 (1.8.3-1) unstable; urgency=medium
* New upstream release. (Closes: 863292, 863307)
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Thu, 01 Jun 2017 21:06:00 +1200
golang-1.8 (1.8.1-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Mon, 10 Apr 2017 13:29:28 +1200
golang-1.8 (1.8-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Thu, 02 Mar 2017 10:11:55 +1300
golang-1.8 (1.8~rc3-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Fri, 27 Jan 2017 10:23:56 +1300
golang-1.8 (1.8~rc2-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Fri, 20 Jan 2017 12:15:27 +1300
golang-1.8 (1.8~rc1-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Mon, 16 Jan 2017 15:51:54 +1300
golang-1.8 (1.8~beta2-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Tue, 20 Dec 2016 14:19:55 +1300
golang-1.8 (1.8~beta1-1) unstable; urgency=medium
* New upstream release.
* Remove d/patches/cl-29995--tzdata-2016g.patch, included upstream.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Wed, 07 Dec 2016 17:38:57 -0800
golang-1.7 (1.7.4-1) unstable; urgency=medium
* Update to 1.7.4 upstream release (Closes: #846545)
- https://groups.google.com/d/topic/golang-announce/2lP5z9i9ySY/discussion
- https://golang.org/issue/17965 (potential DoS vector in net/http)
- https://github.com/golang/go/compare/go1.7.3...go1.7.4
-- Tianon Gravi <tianon@debian.org> Fri, 02 Dec 2016 13:30:36 -0800
golang-1.7 (1.7.3-1) unstable; urgency=medium
* New upstream release.
* Delete d/patches/cl-28850.patch, applied upstream.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Thu, 20 Oct 2016 09:10:47 +1300
golang-1.7 (1.7.1-3) unstable; urgency=medium
* Backport CL 29995 for tzdata 2016g changes (Closes: #839317)
-- Tianon Gravi <tianon@debian.org> Mon, 03 Oct 2016 15:12:28 -0700
golang-1.7 (1.7.1-2) unstable; urgency=medium
* Add upstream patch for s390x FTBFS
-- Tianon Gravi <tianon@debian.org> Mon, 12 Sep 2016 09:32:10 -0700
golang-1.7 (1.7.1-1) unstable; urgency=medium
* New upstream release.
* Re-enable tests on s390x now that gcc-6 has been fixed in unstable.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Thu, 08 Sep 2016 13:04:33 +1200
golang-1.7 (1.7-3) unstable; urgency=medium
* Add "s390x" to Architectures
-- Tianon Gravi <tianon@debian.org> Tue, 23 Aug 2016 07:35:16 -0700
golang-1.7 (1.7-2) unstable; urgency=medium
* Disable tests on armel.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Tue, 16 Aug 2016 15:18:07 +1200
golang-1.7 (1.7-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Tue, 16 Aug 2016 11:37:34 +1200
golang-1.7 (1.7~rc4-1) unstable; urgency=medium
* New upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Tue, 02 Aug 2016 15:10:22 +1200
golang-1.7 (1.7~rc3-1) unstable; urgency=medium
[ Tianon Gravi ]
* Remove outdated README files (README.source and README.Debian)
[ Michael Hudson-Doyle ]
* New upstream release.
* Suppress inaccurate source-is-missing lintian warnings.
* Update Standards-Version to 3.9.8 (no changes required).
-- Tianon Gravi <tianon@debian.org> Mon, 11 Jul 2016 18:31:57 -0700
golang-1.7 (1.7~rc2-1) unstable; urgency=medium
* Update to 1.7rc2 upstream release.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Tue, 19 Jul 2016 14:40:14 +1200
golang-1.7 (1.7~rc1-1) unstable; urgency=medium
[ Paul Tagliamonte ]
* Use a secure transport for the Vcs-Git and Vcs-Browser URL
[ Tianon Gravi ]
* Update to 1.7rc1 upstream release (new packages, not used by default; see
also src:golang-defaults)
* Update Vcs-Git to reference a particular branch
-- Tianon Gravi <tianon@debian.org> Mon, 11 Jul 2016 16:10:12 -0700
golang-1.6 (1.6.2-2) unstable; urgency=medium
* Update "golang-any" in "Build-Depends" to fallback to "golang-go | gccgo"
(will help with backporting)
-- Tianon Gravi <tianon@debian.org> Thu, 23 Jun 2016 20:01:00 -0700
golang-1.6 (1.6.2-1) unstable; urgency=medium
* Update to 1.6.2 upstream release (Closes: #825696)
* Build-Depend on golang-any instead of golang-go (Closes: #824421)
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Fri, 03 Jun 2016 07:50:44 -0700
golang-1.6 (1.6.1-1) unstable; urgency=medium
* Build golang version-specific packages (Closes: #818415)
* Things that (conceptually at least) move to new golang version independent
golang-defaults source package:
- Man pages.
- Suggesting golang-golang-x-tools.
- Breaks/Replace-ing of old golang-go-$GOOS-$GOARCH packages.
* Stop using alternatives to manage /usr/bin/go.
* sed trickery in debian/rules to support easy changes to new golang versions.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Wed, 01 Jun 2016 10:04:53 -0700
golang (2:1.6.1-2) unstable; urgency=medium
* Don't strip testdata files, causes build failures on some platforms.
-- Michael Hudson-Doyle <michael.hudson@ubuntu.com> Wed, 13 Apr 2016 15:47:46 -0700
golang (2:1.6.1-1) unstable; urgency=medium
[ Michael Hudson-Doyle ]
* Breaks/Replaces: older golang-golang-x-tools, not Conflicts, to ensure
smooth upgrades.
* Strip the binaries as it has worked for the last five years or so and
upstream sees no reason to disable it.
[ Tianon Gravi ]
* Update to 1.6.1 upstream release (Closes: #820369)
- Fix CVE-2016-3959: infinite loop in several big integer routines
-- Tianon Gravi <tianon@debian.org> Tue, 12 Apr 2016 23:06:43 -0700
golang (2:1.6-1) unstable; urgency=medium
* Update to 1.6 upstream release (thanks Hilko!)
- change "ar" arguments to quiet spurious warnings while using gccgo
(Closes: #807138)
- skip multicast listen test (Closes: #814849)
- skip userns tests when chrooted (Closes: #807303)
- use correct ELF header for armhf binaries (Closes: #734357)
- Update debian/rules clean for new location of generated file.
[ Michael Hudson-Doyle ]
* Respect "nocheck" in DEB_BUILD_OPTIONS while building to skip tests
(Closes: #807290)
* Trim Build-Depends (Closes: #807299)
* Fix several minor debian/copyright issues (Closes: #807304)
* Remove inconsistently included race-built packages (Closes: #807294)
[ Tianon Gravi ]
* Add "-k" to "run.bash" invocation so that we do a full test run every time
-- Tianon Gravi <tianon@debian.org> Mon, 29 Feb 2016 16:10:32 -0800
golang (2:1.5.3-1) unstable; urgency=high
* Update to 1.5.3 upstream release
- Fix CVE-2015-8618: Carry propagation in Int.Exp Montgomery code in
math/big library (Closes: #809168)
* Add "Breaks" to properly complement our "Replaces" (Closes: #810595)
-- Tianon Gravi <tianon@debian.org> Thu, 14 Jan 2016 07:41:44 -0800
golang (2:1.5.2-1) unstable; urgency=medium
* Update to 1.5.2 upstream release (Closes: #807136)
-- Tianon Gravi <tianon@debian.org> Tue, 05 Jan 2016 19:59:22 -0800
golang (2:1.5.1-4) unstable; urgency=medium
* Add Conflicts to force newer golang-go.tools too (Closes: #803559)
-- Tianon Gravi <tianon@debian.org> Tue, 03 Nov 2015 21:57:54 -0800
golang (2:1.5.1-3) unstable; urgency=medium
* Remove architecture qualification on golang-go Build-Depend now that
golang-go is available for more architectures.
-- Tianon Gravi <tianon@debian.org> Thu, 29 Oct 2015 07:40:38 -0700
golang (2:1.5.1-2) unstable; urgency=medium
* Add Conflicts to force newer golang-golang-x-tools (Closes: #802945).
-- Tianon Gravi <tianon@debian.org> Tue, 27 Oct 2015 13:28:56 -0700
golang (2:1.5.1-1) unstable; urgency=medium
* Upload to unstable.
* Update to 1.5.1 upstream release (see notes from experimental uploads for
what's changed).
* Skip tests on architectures where the tests fail.
-- Tianon Gravi <tianon@debian.org> Sat, 24 Oct 2015 10:22:02 -0700
golang (2:1.4.3-3) unstable; urgency=medium
* Fix FTBFS for non-amd64 architectures due to handling of "-race".
-- Tianon Gravi <tianon@debian.org> Mon, 05 Oct 2015 02:04:07 -0700
golang (2:1.5.1-1~exp2) experimental; urgency=medium
* Upload to experimental.
* Add arch-qualifiers to "golang-go" build-depends to unblock the buildds
(Closes: #800479); thanks Tim!
-- Tianon Gravi <tianon@debian.org> Wed, 30 Sep 2015 11:19:26 -0700
golang (2:1.4.3-2) unstable; urgency=medium
* Update Recommends/Suggests, especially to add gcc, etc.
* Refactor "debian/rules" to utilize debhelper more effectively, especially
for arch vs indep building (mostly backported from the 1.5+ changes), which
fixes the "arch:all" FTBFS.
-- Tianon Gravi <tianon@debian.org> Sun, 27 Sep 2015 22:06:07 -0700
golang (2:1.5.1-1~exp1) experimental; urgency=low
* Upload to experimental.
* Update to 1.5.1 upstream release (Closes: #796150).
- Compiler and runtime written entirely in Go.
- Concurrent garbage collector.
- GOMAXPROCS=runtime.NumCPU() by default.
- "internal" packages for all, not just core.
- Experimental "vendoring" support.
- Cross-compilation no longer requires a complete rebuild of the stdlib in
GOROOT, and thus the golang-go-GOHOST-GOARCH packages are removed.
* Sync debian/copyright with the Ubuntu delta. (thanks doko!)
* Remove patches that no longer apply.
* Add more supported arches to "debian/rules" code for detecting
appropriate GOARCH/GOHOSTARCH values; thanks mwhudson and tpot!
(Closes: #799907)
* Refactor "debian/rules" to utilize debhelper more effectively, especially
for arch vs indep building.
* Move "dpkg-architecture" to "GOOS"/"GOARCH" code into a simple shell script
for easier maintenance.
-- Tianon Gravi <tianon@debian.org> Fri, 25 Sep 2015 14:36:53 -0700
golang (2:1.4.3-1) unstable; urgency=medium
* New upstream version (https://golang.org/doc/devel/release.html#go1.4.minor)
- includes previous CVE and non-CVE security fixes, especially
TEMP-0000000-1C4729
-- Tianon Gravi <tianon@debian.org> Fri, 25 Sep 2015 00:02:31 -0700
golang (2:1.4.2-4) unstable; urgency=high
* Apply backported CVE fixes (Closes: #795106).
- CVE-2015-5739: Invalid headers are parsed as valid headers
- CVE-2015-5740: RFC 7230 3.3.3 4 violation
- CVE-2015-5741: other discoveries of security-relevant RFC 7230 violations
-- Tianon Gravi <tianon@debian.org> Mon, 14 Sep 2015 12:27:57 -0700
golang (2:1.4.2-3) unstable; urgency=medium
* Add missing "prerm" for our new alternatives (thanks piuparts).
-- Tianon Gravi <admwiggin@gmail.com> Tue, 05 May 2015 17:38:37 -0600
golang (2:1.4.2-2) unstable; urgency=medium
* Move "go" and "gofmt" into "/usr/lib/go" and use alternatives to provide
appropriate symlinks (Closes: #779503, #782301).
* Relax "golang-go.tools" relationship to Suggests (from Recommends).
* Add "go get" VCS options to Suggests for golang-go (bzr, git, mercurial,
subversion).
-- Tianon Gravi <admwiggin@gmail.com> Tue, 05 May 2015 00:37:53 -0600
golang (2:1.4.2-1) unstable; urgency=medium
* New upstream version
(https://golang.org/doc/devel/release.html#go1.4.minor)
-- Tianon Gravi <admwiggin@gmail.com> Sat, 02 May 2015 10:06:34 -0600
golang (2:1.4.1-1~exp1) experimental; urgency=low
* New upstream version (https://golang.org/doc/go1.4)
- all editor support files have been removed from misc/ upstream upstream,
so golang-mode, kate-syntax-go, and vim-syntax-go can no longer be
provided; see https://github.com/golang/go/wiki/IDEsAndTextEditorPlugins
for an upstream-maintained list of potential replacements
-- Tianon Gravi <admwiggin@gmail.com> Fri, 16 Jan 2015 00:52:10 -0500
golang (2:1.3.3-1) unstable; urgency=medium
* New upstream version (https://code.google.com/p/go/source/list?name=go1.3.3)
- time: removed from tests now obsolete assumption about Australian tz
abbreviations
- net: temporarily skip TestAcceptIgnoreSomeErrors
- runtime: hide cgocallback_gofunc calling cgocallbackg from linker
- runtime: fix GOTRACEBACK reading on Windows, Plan 9
- nacltest.bash: unset GOROOT
- cmd/5l, cmd/6l, cmd/8l: fix nacl binary corruption bug
* Add Paul and myself as uploaders. Many, many thanks to Michael for his work
so far on this package (and hopefully more to come).
-- Tianon Gravi <admwiggin@gmail.com> Fri, 12 Dec 2014 16:11:02 -0500
golang (2:1.3.2-1) unstable; urgency=medium
* New upstream version
-- Michael Stapelberg <stapelberg@debian.org> Fri, 26 Sep 2014 23:21:45 +0200
golang (2:1.3.1-1) unstable; urgency=medium
* New upstream version
-- Michael Stapelberg <stapelberg@debian.org> Wed, 13 Aug 2014 09:15:58 +0200
golang (2:1.3-4) unstable; urgency=medium
[ Tianon Gravi ]
* update debian/watch for upstream's latest move (Closes: #756415)
* backport archive/tar patch to fix PAX headers (Closes: #756416)
-- Michael Stapelberg <stapelberg@debian.org> Sat, 02 Aug 2014 21:02:24 +0200
golang (2:1.3-3) unstable; urgency=medium
* don’t depend on emacs23, depend on emacs instead (Closes: #754013)
* install include/ in golang-src, VERSION in golang-go (Closes: #693186)
-- Michael Stapelberg <stapelberg@debian.org> Mon, 07 Jul 2014 08:30:50 +0200
golang (2:1.3-2) unstable; urgency=medium
* Add /usr/lib/go/test symlink
* Build with GO386=387 to favor the 387 floating point unit over sse2
instructions (Closes: #753160)
* Add debian/patches/0001-backport-delete-whole-line.patch to fix a
deprecation warning about flet in the emacs part of golang-mode
(Closes: #753607)
* Migrate to emacsen >2 (Closes: #753607)
* Backport two patches to improve archive/tar performance (for docker):
debian/patches/0002-archive-tar-reuse-temporary-buffer-in-writeHeader.patch
debian/patches/0003-archive-tar-reuse-temporary-buffer-in-readHeader.patch
-- Michael Stapelberg <stapelberg@debian.org> Thu, 03 Jul 2014 23:33:46 +0200
golang (2:1.3-1) unstable; urgency=medium
* New upstream version.
* Drop patches merged upstream:
- debian/patches/add-tar-xattr-support.patch
- debian/patches/add-tar-xattr-support.patch
* Fix debian/watch (Thanks Tianon) (Closes: #748290)
* Remove dangling symlink /usr/lib/go/lib/godoc (Closes: #747968)
-- Michael Stapelberg <stapelberg@debian.org> Thu, 19 Jun 2014 09:23:36 +0200
golang (2:1.2.1-2) unstable; urgency=low
* Re-apply debian/patches/add-tar-xattr-support.patch which got lost when
uploading 1.2.1-1; sorry about that.
-- Michael Stapelberg <stapelberg@debian.org> Sat, 08 Mar 2014 20:01:12 +0100
golang (2:1.2.1-1) unstable; urgency=low
* New upstream release.
-- Michael Stapelberg <stapelberg@debian.org> Mon, 03 Mar 2014 17:40:57 +0100
golang (2:1.2-3) unstable; urgency=low
* add debian/patches/add-tar-xattr-support.patch to have xattr support in
tar (cherry-picked from upstream) (Thanks proppy) (Closes: #739586)
-- Michael Stapelberg <stapelberg@debian.org> Mon, 24 Feb 2014 19:34:16 +0100
golang (2:1.2-2) unstable; urgency=low
* add patches/add-src-pkg-debug-elf-testdata-hello.patch to provide source
for the testdata/ ELF binaries (Closes: #716853)
-- Michael Stapelberg <stapelberg@debian.org> Tue, 31 Dec 2013 18:28:29 +0100
golang (2:1.2-1) unstable; urgency=low
* New upstream release.
* drop patches/archive-tar-fix-links-and-pax.patch, it is merged upstream
* godoc(1) is now in the Debian package golang-go.tools, it was moved into a
separate repository by upstream.
* move patches/godoc-symlinks.diff to golang-go.tools
-- Michael Stapelberg <stapelberg@debian.org> Mon, 02 Dec 2013 23:57:24 +0100
golang (2:1.1.2-3) unstable; urgency=low
* cherry-pick upstream commit: archive-tar-fix-links-and-pax.patch
(Closes: #730566)
-- Michael Stapelberg <stapelberg@debian.org> Tue, 26 Nov 2013 18:59:27 +0100
golang (2:1.1.2-2) unstable; urgency=low
* Build golang-go-linux-* for each architecture (Thanks James Page)
(Closes: #719611)
* Update lintian-overrides to override statically-linked-binary and
unstripped-binary-or-object for all of golang-go
-- Michael Stapelberg <stapelberg@debian.org> Tue, 20 Aug 2013 08:13:40 +0200
golang (2:1.1.2-1) unstable; urgency=low
* New upstream release.
* Relicense debian/ under the Go license to match upstream. All copyright
holders agreed to this. (Closes: #716907)
* golang-mode: don’t install for a number of emacs versions which are not
supported upstream (Thanks Kevin Ryde) (Closes: #702511, #717521)
-- Michael Stapelberg <stapelberg@debian.org> Tue, 13 Aug 2013 13:47:58 +0200
golang (2:1.1.1-4) unstable; urgency=low
* Disable stripping, it breaks go binaries on some architectures. This drops
the golang-dbg package which would be empty now. (Thanks Robie Basak)
(Closes: #717172)
-- Michael Stapelberg <stapelberg@debian.org> Wed, 17 Jul 2013 19:15:18 +0200
golang (2:1.1.1-3) unstable; urgency=low
* Ship */runtime/cgo.a in golang-go to ensure it is present. It can only be
used on the native architecture anyway (cannot be used when
cross-compiling), so having it in golang-go-$GOOS-$GOARCH is not
necessary. Even worse, since these packages are arch: all, they will be
built precisely once, and only the runtime/cgo.a for the buildd’s native
arch will be present. (Closes: #715025)
-- Michael Stapelberg <stapelberg@debian.org> Thu, 11 Jul 2013 20:25:52 +0200
golang (2:1.1.1-2) unstable; urgency=low
[ James Page ]
* Ensure smooth upgrade path from << 2:1.1-2 (Closes: #714838)
-- Michael Stapelberg <stapelberg@debian.org> Wed, 03 Jul 2013 18:05:58 +0200
golang (2:1.1.1-1) unstable; urgency=low
* Imported Upstream version 1.1.1
-- Ingo Oeser <nightlyone@googlemail.com> Fri, 14 Jun 2013 23:25:44 +0200
golang (2:1.1-2) unstable; urgency=low
[ Ondřej Surý ]
* Promote Michael to Maintainer
[ Michael Stapelberg ]
* Build golang-go-$GOOS-$GOARCH packages for cross-compiling (Closes: #710090)
* Build race detector on linux/amd64 (only supported arch) (Closes: #710691)
* Switch compression to xz (50% smaller binaries)
-- Michael Stapelberg <stapelberg@debian.org> Fri, 07 Jun 2013 23:18:09 +0200
golang (2:1.1-1) unstable; urgency=low
* New upstream release: Go 1.1!
* Remove the long obsolete goinstall debconf question and config file.
goinstall does not exist anymore since a long time.
This also obsoletes the need for any translations
(Closes: #685923, #692478)
* Emacs go-mode auto-mode-alist entry was fixed upstream (Closes: #670371)
-- Michael Stapelberg <stapelberg@debian.org> Tue, 14 May 2013 19:36:04 +0200
golang (2:1.1~hg20130405-1) experimental; urgency=low
* Provide a new hg tip snapshot. This includes what was recently released as
Go 1.1 beta.
-- Michael Stapelberg <stapelberg@debian.org> Fri, 05 Apr 2013 18:24:36 +0200
golang (2:1.1~hg20130323-1) experimental; urgency=low
* Provide a new hg tip snapshot.
* Add debian/watch (Closes: #699698)
-- Michael Stapelberg <stapelberg@debian.org> Sat, 23 Mar 2013 11:31:26 +0100
golang (2:1.1~hg20130304-2) experimental; urgency=low
* Fix FTBFS of binary-arch only builds (as performed by buildds)
caused by 'rm' not finding jquery.js in golang-doc
(Thanks Peter Green)
-- Michael Stapelberg <stapelberg@debian.org> Tue, 05 Mar 2013 00:49:27 +0100
golang (2:1.1~hg20130304-1) experimental; urgency=low
* Provide a hg tip snapshot (2013-03-04) in Debian experimental.
Current hg tip is a good approximation to Go 1.1 and should get
some testing within Debian in order to package Go 1.1 well when
it is released. Thanks to Andrew Gerrand.
-- Michael Stapelberg <stapelberg@debian.org> Mon, 04 Mar 2013 21:28:58 +0100
golang (2:1.0.2-2) unstable; urgency=low
* Add myself to uploaders, as discussed in #683421.
* cherry-pick r820ffde8c396 (net/http: non-keepalive connections close
successfully) (Closes: #683421)
-- Michael Stapelberg <stapelberg@debian.org> Thu, 02 Aug 2012 14:25:58 +0200
golang (2:1.0.2-1.1) unstable; urgency=low
* Non-maintainer upload. (as discussed with Ondřej in #679692)
* Fix godoc-symlinks.diff (godoc didn’t find docs) (Closes: #679692)
-- Michael Stapelberg <stapelberg@debian.org> Fri, 20 Jul 2012 17:59:38 +0200
golang (2:1.0.2-1) unstable; urgency=low
[ Ondřej Surý ]
* Imported Upstream version 1.0.2
* Update Vcs fields to reflect new git repository location
* Kill get-orig-source, since 1.0.0, the tarballs can be downloaded from
webpage
[ Michael Stapelberg ]
* golang-mode: use debian-pkg-add-load-path-item (Closes: #664802)
* add manpages (Closes: #632964)
* Use updated pt.po from Pedro Ribeiro (Closes: #674958)
-- Ondřej Surý <ondrej@sury.org> Thu, 28 Jun 2012 12:14:15 +0200
golang (2:1.0.1-1) unstable; urgency=low
* Imported Upstream version 1.0.1
* Apply godoc patch to display package list correctly (Closes: #669354)
-- Ondřej Surý <ondrej@debian.org> Wed, 02 May 2012 15:44:59 +0200
golang (2:1-6) unstable; urgency=low
* Merge upstream patch to fix homedir issue
(http://code.google.com/p/go/source/detail?r=709120aecee0)
* Disable GNU/KFreeBSD build (Closes: #668794)
-- Ondřej Surý <ondrej@debian.org> Wed, 18 Apr 2012 09:53:30 +0200
golang (2:1-5) unstable; urgency=low
* Rewrite test conditions to make them more readable
(and fix the debian/rules to really not check on armel+kfreebsd)
* Patch upstream test to not fail on missing home directory
-- Ondřej Surý <ondrej@debian.org> Sun, 15 Apr 2012 12:35:53 +0200
golang (2:1-4) unstable; urgency=low
* Disable tests on Debian GNU/KFreeBSD, they just hang now (Closes: #668794)
* Disable tests on armel, but the invalid instruction needs fixing in
upstream
* Create fake home directory to pass the os/user test
-- Ondřej Surý <ondrej@debian.org> Sun, 15 Apr 2012 10:49:09 +0200
golang (2:1-3) unstable; urgency=high
* Use VERSION provided by upstream for packaging purposes
* Run tests as a part of a build process
* Install full src tree (except pkg/debug) because go command depend
on sources available
* Install sources without testdata and *_test.go
* Remove circular dependency golang-go->golang-doc->golang-go
* Make sure that timestamp on installed binaries and libraries is same
because go build/install recompiles everything if the go binary has
more recent timestamp than libraries (Closes: #668235)
+ Need to update timestamps at postinst time because already created
directories can have time in the past
* Fix couple of lintian errors and warnings
-- Ondřej Surý <ondrej@debian.org> Wed, 11 Apr 2012 23:21:47 +0200
golang (2:1-2) unstable; urgency=low
* Remove preserving of old -tools settings, there are too many options
now anyway (Closes: #666007)
-- Ondřej Surý <ondrej@debian.org> Fri, 06 Apr 2012 16:52:13 +0200
golang (2:1-1) unstable; urgency=low
* New major upstream release Go 1 (Closes: #666942)
* Bumb epoch to 2, since 1 < 60 < 2011 (I wonder if next version will be 0 :)
* Debconf templates and debian/control reviewed by the debian-l10n-
english team as part of the Smith review project. (Closes: #663181)
* [Debconf translation updates]
+ Pick existing translations from golang-weekly and do appropriate
sed magic to fit golang templates. (Closes: #666884, #666880, #666881)
+ Dutch; (Jeroen Schot). (Closes: #664598)
+ Czech (Michal Simunek). (Closes: #665385)
+ Spanish; (Camaleón). (Closes: #666177)
+ Danish (Joe Hansen). (Closes: #666526)
-- Ondřej Surý <ondrej@debian.org> Fri, 06 Apr 2012 16:04:17 +0200
golang (1:60.3-2) unstable; urgency=low
* debconf-gettextize package templates
-- Ondřej Surý <ondrej@debian.org> Mon, 20 Feb 2012 22:01:10 +0100
golang (1:60.3-1) unstable; urgency=low
* Imported Upstream version 60.3
-- Ondřej Surý <ondrej@debian.org> Mon, 28 Nov 2011 08:46:18 +0100
golang (1:60.2-1) unstable; urgency=low
* Imported Upstream version 60.2
-- Ondřej Surý <ondrej@debian.org> Thu, 06 Oct 2011 08:57:00 +0200
golang (1:60.1-1) unstable; urgency=low
* Imported Upstream version 60.1
-- Ondřej Surý <ondrej@debian.org> Mon, 19 Sep 2011 10:18:12 +0200
golang (1:60-1) unstable; urgency=low
* Imported Upstream version 60
* Save upstream VERSION to the archive
* Use GOVERSION as generated by src/version.bash on hg archive time
* Add support for goinstall dashboard debconf question in the Debian
packaging
* Read goinstall dashboard option from debian configuration file
* Remove 005-goinstall_dont_call_home_by_default.patch; replaced by
configuration option
* Fix directory name for upstream archive checkout
-- Ondřej Surý <ondrej@debian.org> Tue, 13 Sep 2011 13:13:59 +0200
golang (1:59-1) unstable; urgency=low
* Imported Upstream version 59
* Refresh patches to a new release
* Fix FTBFS on ARM (Closes: #634270)
* Update version.bash to work with Debian packaging and not hg
repository
-- Ondřej Surý <ondrej@debian.org> Wed, 03 Aug 2011 17:04:59 +0200
golang (1:58.1-2) unstable; urgency=low
* Install golang-doc package by default (Recommends from golang-tools,
Depends from golang)
-- Ondřej Surý <ondrej@debian.org> Mon, 18 Jul 2011 09:13:43 +0200
golang (1:58.1-1) unstable; urgency=low
* Imported Upstream version 58.1
-- Ondřej Surý <ondrej@debian.org> Wed, 13 Jul 2011 08:39:04 +0200
golang (1:58-1) unstable; urgency=low
* Imported Upstream version 58
+ Add NEWS file with upstream API changes
* Remove patch to not update standard package, fixed in upstream
-- Ondřej Surý <ondrej@debian.org> Thu, 30 Jun 2011 15:36:35 +0200
golang (1:57.2-1) unstable; urgency=low
* Imported Upstream version 57.2
* More spelling fixes (Closes: #630660)
-- Ondřej Surý <ondrej@debian.org> Thu, 16 Jun 2011 11:10:58 +0200
golang (1:57.1-4) unstable; urgency=low
* Description update to have proper articles and capitalization
(Closes: #630189)
* Add extended description about Go being experimental and that the
languager can change between releases
-- Ondřej Surý <ondrej@debian.org> Tue, 14 Jun 2011 21:38:11 +0200
golang (1:57.1-3) unstable; urgency=low
* Fix "the Google's Go implementation" in extended description
(Closes: #627814)
* Update Vcs-* links
* Install vim ftplugin files into correct directory (Closes: #629844)
-- Ondřej Surý <ondrej@debian.org> Thu, 09 Jun 2011 10:10:41 +0200
golang (1:57.1-2) unstable; urgency=low
* Bump standards version to 3.9.2
* Capitalize Kate (Closes: #627036)
* Import slightly modified patch to be more clear about $GOPATH
installs for non-root users
* Remove don't install deps patch from goinstall; deprecated by
$GOPATH installs
-- Ondřej Surý <ondrej@debian.org> Mon, 23 May 2011 11:07:11 +0200
golang (1:57.1-1) unstable; urgency=low
* Add support for dot-minor releases
* Imported Upstream version 57.1
-- Ondřej Surý <ondrej@debian.org> Mon, 16 May 2011 11:45:53 +0200
golang (1:57-3) unstable; urgency=low
[ Florian Weimer ]
* golang-tools: install gofix binary
[ Ondřej Surý ]
* Add lintian-overrides for gofix binary
-- Ondřej Surý <ondrej@debian.org> Sat, 07 May 2011 20:41:58 +0200
golang (1:57-2) unstable; urgency=low
* Remove weekly code from debian/rules
* Add golang meta-package
* Don't create tool chain symlinks twice
* Make debian/rules more generic for simpler sync between weekly
and release branches
-- Ondřej Surý <ondrej@debian.org> Wed, 04 May 2011 16:48:24 +0200
golang (1:57-1) unstable; urgency=low
* Imported Upstream version r57
* Bumped epoch version to 1, to convert from date based versions
to release number based version
* Allow release to migrate to testing (Closes: #624408)
* Add kate and vim syntax highlighting (Closes: #624544)
* Add -dbg package with debugging symbols
-- Ondřej Surý <ondrej@debian.org> Wed, 04 May 2011 01:20:07 +0200
golang (2011.04.27-2) unstable; urgency=low
* Fix yet another build failure on kfreebsd (use linux userspace)
-- Ondřej Surý <ondrej@debian.org> Fri, 29 Apr 2011 16:22:47 +0200
golang (2011.04.27-1) unstable; urgency=low
* Imported Upstream version 2011.04.27
* Update debian/rules to allow pulling weekly upstream releases
* Don't remove RUNPATH from binaries; fixed upstream (golang#1527)
* Set GOHOSTOS and GOHOSTARCH to match dpkg-architecture variables
* Add support for kfreebsd-i386, kfreebsd-amd64, armel and armhf
architectures
+ 006-fix_kfreebsd_build.patch:
- Add GNU/KFreeBSD support by replacing all uname calls by $(GOOS)
+ 007-use_native_dynamic_linker_on_kfreebsd.patch:
- Use native kfreebsd dynamic linker (/lib/ld-*.so.1)
* Add information about available architectures (Closes: #623877)
* Don't strip gotest
* Add Depends: golang-go to golang-tools
* Add better support for armhf
-- Ondřej Surý <ondrej@debian.org> Thu, 28 Apr 2011 16:14:39 +0200
golang (2011.04.13-1) unstable; urgency=low
[ Florian Weimer ]
* Delete bin directory in clean target
* Enable parallel build
* golang-src: install source files directly
* Use proper symlink targets for architecture-independent toolchain
names
* Emacs mode: indent keys in struct literals properly
[ Ondřej Surý ]
* Imported Upstream weekly version 2011.04.13
* Update patches to new weekly release
* Add lintian-override for gotest binary
-- Ondřej Surý <ondrej@debian.org> Tue, 26 Apr 2011 09:59:28 +0200
golang (2011.03.07.1-1) unstable; urgency=low
* Imported Upstream version 2011.03.07.1
* Install to /usr/lib/go
* Remove xkcd strip to get rid of CC-NC-BY
* Update golang-src.install to new upstream
* Remove 002-use_GOROOT_FINAL_in_generated_binaries.patch; merged
upstream
* Make all .go files no-executable
* Update lintian-overrides to include both types of syntax
-- Ondřej Surý <ondrej@debian.org> Wed, 20 Apr 2011 17:36:48 +0200
golang (2011.02.15-2) unstable; urgency=low
[ Ondřej Surý ]
* Add ${misc:Depends} to golang-mode to shutup lintian
* Rehaul build system and add golang-src package with .go source files
* goinstall: do not automatically install prerequisities
* goinstall: don't report to dashboard by default
* Add a README.Debian about local modifications to goinstall
* Add warning about local modifications also directly to goinstall command
[ Florian Weimer ]
* Fix syntax error in 004-
dont_reinstall_dependencies_in_goinstall.patch
-- Ondřej Surý <ondrej@debian.org> Fri, 18 Feb 2011 16:02:09 +0100
golang (2011.02.15-1) unstable; urgency=low
[ Obey Arthur Liu ]
* Added pkg-google git repo to control file
[ Florian Weimer ]
* Build golang-mode package
[ Ondřej Surý ]
* Imported Upstream version 2011.02.15
* Don't compress godoc documentation
* Correctly use $GOROOT_FINAL in the build chain
* Remove RPATH/RUNPATH from go binaries
-- Ondřej Surý <ondrej@debian.org> Fri, 18 Feb 2011 11:39:10 +0100
golang (2011.02.01.1-1) unstable; urgency=low
[ Ivan Wong ]
* Initial release (Closes: #574371)
[ Jonathan Nieder ]
* Fill out copyright file
* Rewrite debian/rules using dh driver
* debian: fix get-orig-source rule
* debian: do not install extra files on repeated build
* debian: fix reversed ‘if’
* debian: do not leave around stale debian/env.sh+ file
* debian: Build-Depends on awk instead of gawk
* debian: add run-time dependency on perl
* debian: add build-time dependency on perl
* debian: fix setting of GOARM on arm
* debian: do not compress files in web page
* debian: install favicon
[ Ondřej Surý ]
* Make myself a maintainer
* Add patch to allow IPv4 on IPv6 sockets (Courtesy of Florian Weimer)
* Use GOROOT_FINAL and change GOBIN to /usr/bin
* Get rid of env.sh and wrappers
* Add support for building in i386 pbuilder on amd64 architecture
* Rename source package to golang to match upstream repository name
* Add golang-doc package
* Split package into compiler, docs and tools
* Don't install quietgcc and hgpatch
* Don't generate fake gomake
* Update golang-doc package
* Export GOHOSTARCH and GOHOSTOS
* Disable build time checks
* Fail on missed installed files
* Revert s{tmp{golang-go{ change in DESTDIR
* Relicence debian/ files from versionless GPL to GPL-3
* Move golang-doc to doc section
* Add more lintian overrides for Go binaries
* Install all 6,8,5 variants of commands
* Install golang-* symlinks for 6,8,5* commands
* Don't strip govet as well
* Remove ${shlibs:Depends} where it doesn't belong
* Move more html files to golang-doc package
* Remove codereview directory - some python code to deal with mercurial
-- Ondřej Surý <ondrej@debian.org> Mon, 14 Feb 2011 17:42:39 +0100