1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.DIST

  • Bug#1109884: unblock: sogo/5.12.1-3 (1/2)

    From Jordi Mallach@21:1/5 to All on Fri Jul 25 14:20:01 2025
    XPost: linux.debian.devel.release

    This is a multi-part MIME message sent by reportbug.


    Package: release.debian.org
    Severity: normal
    X-Debbugs-Cc: [email protected]
    Control: affects -1 + src:sogo
    User: [email protected]
    Usertags: unblock

    Please unblock package sogo

    This update adds a couple additional fixes from upstream git
    for two parts of the code:

    - OpenId authentication using an unreliable HTTP implementation
    - Calendar freebusy information miscalculations

    [ Reason ]

    To improve setups using OpenId, the internal HTTP lib was replaced
    with cURL, as the other one was causing request errors and was in
    general unreliable.

    Additionally, a high impact bug for the calendar module is included,
    to fix freebusy calculation.

    [ Impact ]

    OpenId setups might see issues when contacting the configured IdP for
    the authentication flow.

    Additionally, the calendar module will not calculate the freebusy
    information reliably in some conditions.

    [ Tests ]

    No automated tests, but extensive local testing, specially for the
    HTTP change.

    [ Risks ]

    The freebusy code is not trivial, and in fact the initial fix introduced another issue (a fix included in our patch.

    Similarly, the change to libcurl is not small, but we swap some custom code with a widely tested implementation from libcurl.

    [ Checklist ]
    [x] all changes are documented in the d/changelog
    [x] I reviewed all changes and I approve them
    [x] attach debdiff against the package in testing

    unblock sogo/5.12.1-3

    diff -Nru sogo-5.12.1/debian/changelog sogo-5.12.1/debian/changelog
    --- sogo-5.12.1/debian/changelog 2025-06-06 11:37:50.000000000 +0200
    +++ sogo-5.12.1/debian/changelog 2025-07-25 11:26:33.000000000 +0200
    @@ -1,3 +1,10 @@
    +sogo (5.12.1-3) unstable; urgency=medium
    +
    + * Add upstream patch to fix freebusy calculation.
    + * Add upstream patch to use libcurl for OpenId HTTP requests.
    +
    + -- Jordi Mallach <[email protected]> Fri, 25 Jul 2025 11:26:33 +0200
    +
    sogo (5.12.1-2) unstable; urgency=medium

    * Replace vendoring of lodash, FileSaver and angularjs with packaged versions.
    diff -Nru sogo-5.12.1/debian/patches/series sogo-5.12.1/debian/patches/series --- sogo-5.12.1/debian/patches/series 2025-06-06 09:45:21.000000000 +0200
    +++ sogo-5.12.1/debian/patches/series 2025-07-25 11:24:14.000000000 +0200
    @@ -13,3 +13,5 @@
    cross.patch
    upstream_openid_fixes.patch
    upstream_password_regex.patch
    +upstream_fix_evaluation_freebusy.patch
    +upstream_use_openid_libcurl.patch
    diff -Nru sogo-5.12.1/debian/patches/upstream_fix_evaluation_freebusy.patch sogo-5.12.1/debia