Debian Bug report logs - #1011470
libapache2-mod-authz-unixgroup: reproducible-builds: embedded build paths in mod_authz_unixgroup.so

version graph

Package: src:libapache2-mod-authz-unixgroup; Maintainer for src:libapache2-mod-authz-unixgroup is Debian QA Group <packages@qa.debian.org>;

Reported by: Vagrant Cascadian <vagrant@reproducible-builds.org>

Date: Mon, 23 May 2022 16:57:02 UTC

Severity: normal

Tags: patch

Fixed in version libapache2-mod-authz-unixgroup/1.1.0-2

Done: Philip Rinn <rinni@debian.org>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, reproducible-bugs@lists.alioth.debian.org, Debian QA Group <packages@qa.debian.org>:
Bug#1011470; Package src:libapache2-mod-authz-unixgroup. (Mon, 23 May 2022 16:57:04 GMT) (full text, mbox, link).

Acknowledgement sent to Vagrant Cascadian <vagrant@reproducible-builds.org>:
New Bug report received and forwarded. Copy sent to reproducible-bugs@lists.alioth.debian.org, Debian QA Group <packages@qa.debian.org>. (Mon, 23 May 2022 16:57:04 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Vagrant Cascadian <vagrant@reproducible-builds.org>
To: submit@bugs.debian.org
Subject: libapache2-mod-authz-unixgroup: reproducible-builds: embedded build paths in mod_authz_unixgroup.so
Date: Mon, 23 May 2022 09:52:48 -0700
[Message part 1 (text/plain, inline)]
Source: libapache2-mod-authz-unixgroup
Severity: normal
Tags: patch
User: reproducible-builds@lists.alioth.debian.org
Usertags: buildpath
X-Debbugs-Cc: reproducible-bugs@lists.alioth.debian.org

The build path is embedded in
/usr/lib/apache2/modules/mod_authz_unixgroup.so:

  https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/diffoscope-results/libapache2-mod-authz-unixgroup.html

  /build/1st/libapache2-mod-authz-unixgroup-1.1.0/mod_authz_unixgroup.c:174
  vs.
  /build/2/libapache2-mod-authz-unixgroup-1.1.0/2nd/mod_authz_unixgroup.c:174


The attached patch fixes this by passing -ffile-prefix-map to axps2 in
debian/rules, which avoids embedding the build path in compiled files.


With this patch applied, libapache2-mod-authz-unixgroup should build
reproducibly on tests.reproducible-builds.org!


live well,
  vagrant

[0001-debian-rules-Pass-ffile-prefix-map-to-apxs2.patch (text/x-diff, inline)]
From 62a59b080b5a4cd133e1c712630de73bdbb695eb Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian <vagrant@reproducible-builds.org>
Date: Mon, 23 May 2022 16:47:14 +0000
Subject: [PATCH] debian/rules: Pass -ffile-prefix-map to apxs2.

---
 debian/rules | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian/rules b/debian/rules
index 2871a43..10368c9 100755
--- a/debian/rules
+++ b/debian/rules
@@ -1,7 +1,7 @@
 #!/usr/bin/make -f
 
 override_dh_auto_build:
-	apxs2 -c -Wc,-fno-strict-aliasing mod_authz_unixgroup.c
+	apxs2 -c -Wc,-fno-strict-aliasing -Wc,-ffile-prefix-map=$(CURDIR)=. mod_authz_unixgroup.c
 
 %:
 	dh $@ --with=apache2
-- 
2.36.1


[signature.asc (application/pgp-signature, inline)]

Reply sent to Philip Rinn <rinni@debian.org>:
You have taken responsibility. (Fri, 11 Nov 2022 21:54:05 GMT) (full text, mbox, link).

Notification sent to Vagrant Cascadian <vagrant@reproducible-builds.org>:
Bug acknowledged by developer. (Fri, 11 Nov 2022 21:54:05 GMT) (full text, mbox, link).

Message #10 received at 1011470-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: 1011470-close@bugs.debian.org
Subject: Bug#1011470: fixed in libapache2-mod-authz-unixgroup 1.1.0-2
Date: Fri, 11 Nov 2022 21:50:04 +0000
Source: libapache2-mod-authz-unixgroup
Source-Version: 1.1.0-2
Done: Philip Rinn <rinni@debian.org>

We believe that the bug you reported is fixed in the latest version of
libapache2-mod-authz-unixgroup, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1011470@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Philip Rinn <rinni@debian.org> (supplier of updated libapache2-mod-authz-unixgroup package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 11 Nov 2022 22:35:56 +0100
Source: libapache2-mod-authz-unixgroup
Architecture: source
Version: 1.1.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian QA Group <packages@qa.debian.org>
Changed-By: Philip Rinn <rinni@debian.org>
Closes: 1007568 1011470
Changes:
 libapache2-mod-authz-unixgroup (1.1.0-2) unstable; urgency=medium
 .
   * QA upload.
   * Make package reproducible by stop embedding the build path in
     compiled files. Thanks Vagrant Cascadian! (Closes: #1011470)
   * Install NOTICE file.
   * Convert package to source format "3.0 (quilt)". (Closes: #1007568)
   * Bump Standards-Version to 4.6.1.
Checksums-Sha1:
 4febe60f49f9167da72e84baae3076a8cb627453 1956 libapache2-mod-authz-unixgroup_1.1.0-2.dsc
 f0b32ac39d2349f476a53b587c4e6faf2e4cfb5c 2676 libapache2-mod-authz-unixgroup_1.1.0-2.debian.tar.xz
 569a235d81151a363cee7a525e6c76c9c5240743 6683 libapache2-mod-authz-unixgroup_1.1.0-2_source.buildinfo
Checksums-Sha256:
 c4f8ceaefecba827697c065efa1b7ad1e2261a71253a74a308a35938deae9715 1956 libapache2-mod-authz-unixgroup_1.1.0-2.dsc
 0f94b142ce8308913d8fe5708a33c644c93d9e195d9a2c0fb842cbaffc181090 2676 libapache2-mod-authz-unixgroup_1.1.0-2.debian.tar.xz
 25dee59a527bf5bea5ada69a3a7b6aa68799c1e95add8ffe56387a2652a171ab 6683 libapache2-mod-authz-unixgroup_1.1.0-2_source.buildinfo
Files:
 f8be872d878cd318c577f23cbf5d4452 1956 web optional libapache2-mod-authz-unixgroup_1.1.0-2.dsc
 c0a6ddc40afef2d534fd4d2a7bf8c7d4 2676 web optional libapache2-mod-authz-unixgroup_1.1.0-2.debian.tar.xz
 1bb4c67bef7fc640e845e6dd8d815247 6683 web optional libapache2-mod-authz-unixgroup_1.1.0-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEK9jU45eVX3dG2zuJrWkWlnOTmCsFAmNuwLUACgkQrWkWlnOT
mCtwdQ/+O415PvDnwvM0AWFvOi/XkNj5fVnYa+oaVvWLGfmjLptdhb/UQC3U2DnP
V0lHIsX7N3hLp7as2rpyEv/TqK0VnVhyXvLqnmmeKM+ea5JycJd3bS2ovJYlzTqR
Sk5qXDFbxstOry6uHbHX0+RccP3nBtGifcWy7YTKI+sPe0t5mNEQgu+yTY5UojFd
TtMNVcHwUinIpwDFPou3Z3IlzukMyQFauRia4UwtVEp52Rv+v3/SUuLwdCqXyuwq
WcHLYy0ZDTdVnsIou54wUz/QSY/T90I6LPhI7kiL0GO1QE3DOAD3AORbInbdJwmE
BydV7YUO3ngCAvQZZ5ItWfcPMr+2sTg4de9m14AjtouPqD5n3Yoru41abnNzWDK+
r+4Xp5lOZKxvx2USKY+Q31sD7VzL1P2ZMqgHd/pOpd23cvn9Zh5jhGZyN3YtFso1
QP7Rh2OhIFpN3/JGyTiR9PXcR4Qp/+V6nhxnN2zp4+xO2eMaczMxrJbfWxpFZG9x
MPlsjbNGNDLIoefv7g/8Sjcjo0T6cGTdM+QIXyHXfbBfIyjmkPSxxjMdIdyQUWcW
Xe3mtOCVYYxVK1ugbi1Ue0g3qejVf/ne++dK+5LZY4w4xLkMNdd36XBSBbyueTtU
oZzPEzqzJKCfjnxJ6bpwkPMmdvsfEWGE3S1xgeamv4O0H70pQgA=
=AKsX
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Thu, 15 Dec 2022 07:28:48 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed May 17 12:39:27 2023; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.