Debian Bug report logs - #1011501
libapache2-mod-authn-yubikey: reproducible-builds: embedded build paths in mod_authn_yubikey.so

version graph

Package: src:libapache2-mod-authn-yubikey; Maintainer for src:libapache2-mod-authn-yubikey is Debian QA Group <packages@qa.debian.org>;

Reported by: Vagrant Cascadian <vagrant@reproducible-builds.org>

Date: Tue, 24 May 2022 01:03:02 UTC

Severity: normal

Tags: patch

Fixed in version libapache2-mod-authn-yubikey/1.0-3

Done: Philip Rinn <rinni@debian.org>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, reproducible-bugs@lists.alioth.debian.org, Debian QA Group <packages@qa.debian.org>:
Bug#1011501; Package src:libapache2-mod-authn-yubikey. (Tue, 24 May 2022 01:03:04 GMT) (full text, mbox, link).

Acknowledgement sent to Vagrant Cascadian <vagrant@reproducible-builds.org>:
New Bug report received and forwarded. Copy sent to reproducible-bugs@lists.alioth.debian.org, Debian QA Group <packages@qa.debian.org>. (Tue, 24 May 2022 01:03:04 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Vagrant Cascadian <vagrant@reproducible-builds.org>
To: submit@bugs.debian.org
Subject: libapache2-mod-authn-yubikey: reproducible-builds: embedded build paths in mod_authn_yubikey.so
Date: Mon, 23 May 2022 17:59:50 -0700
[Message part 1 (text/plain, inline)]
Source: libapache2-mod-authn-yubikey
Severity: normal
Tags: patch
User: reproducible-builds@lists.alioth.debian.org
Usertags: buildpath
X-Debbugs-Cc: reproducible-bugs@lists.alioth.debian.org

The build path is embedded in
/usr/lib/apache2/modules/mod_authn_yubikey.so:

  https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/diffoscope-results/libapache2-mod-authn-yubikey.html

  /build/1st/libapache2-mod-authn-yubikey-1.0/libykclient.c:181
  vs.
  /build/2/libapache2-mod-authn-yubikey-1.0/2nd/libykclient.c:181

The attached patch fixes this by passing -ffile-prefix-map to axps2 in
debian/rules, which avoids embedding the build path in compiled files.


With this patch applied, libapache2-mod-authn-yubikey should build
reproducibly on tests.reproducible-builds.org!


live well,
  vagrant

[0001-debian-rules-Pass-ffile-prefix-map-to-apxs2.patch (text/x-diff, inline)]
From a8ba18601d147f1b4e374e2b483561f95373b561 Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian <vagrant@reproducible-builds.org>
Date: Tue, 24 May 2022 00:55:12 +0000
Subject: [PATCH] debian/rules: Pass -ffile-prefix-map to apxs2.

---
 debian/rules | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian/rules b/debian/rules
index 1e96143..cab1069 100755
--- a/debian/rules
+++ b/debian/rules
@@ -4,6 +4,6 @@
 
 override_dh_auto_build:
 	apxs2 -DYK_PACKAGE=\\\"libapache2_mod_authn_yubikey\\\" \
-		-DYK_PACKAGE_VERSION=\\\"0.1\\\" -I. -Wc -c -lcurl \
+		-DYK_PACKAGE_VERSION=\\\"0.1\\\" -I. -Wc,-ffile-prefix-map=$(CURDIR)=. -Wc -c -lcurl \
 		mod_authn_yubikey.c libykclient.c libykclient.slo mod_authn_yubikey.slo
 
-- 
2.36.1


[signature.asc (application/pgp-signature, inline)]

Reply sent to Philip Rinn <rinni@debian.org>:
You have taken responsibility. (Fri, 11 Nov 2022 22:39:03 GMT) (full text, mbox, link).

Notification sent to Vagrant Cascadian <vagrant@reproducible-builds.org>:
Bug acknowledged by developer. (Fri, 11 Nov 2022 22:39:03 GMT) (full text, mbox, link).

Message #10 received at 1011501-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: 1011501-close@bugs.debian.org
Subject: Bug#1011501: fixed in libapache2-mod-authn-yubikey 1.0-3
Date: Fri, 11 Nov 2022 22:34:44 +0000
Source: libapache2-mod-authn-yubikey
Source-Version: 1.0-3
Done: Philip Rinn <rinni@debian.org>

We believe that the bug you reported is fixed in the latest version of
libapache2-mod-authn-yubikey, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1011501@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Philip Rinn <rinni@debian.org> (supplier of updated libapache2-mod-authn-yubikey package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 11 Nov 2022 23:11:35 +0100
Source: libapache2-mod-authn-yubikey
Architecture: source
Version: 1.0-3
Distribution: unstable
Urgency: medium
Maintainer: Debian QA Group <packages@qa.debian.org>
Changed-By: Philip Rinn <rinni@debian.org>
Closes: 974673 1011501
Changes:
 libapache2-mod-authn-yubikey (1.0-3) unstable; urgency=medium
 .
   * QA upload.
   * Make package reproducible by stop embedding the build path in
     compiled files. Thanks Vagrant Cascadian! (Closes: #1011501)
   * Update homepage. (Closes: #974673)
   * Bump debhelper compat level to 13.
   * Bump Standards-Version to 4.6.1.
   * Remove obsolete Lintian override.
Checksums-Sha1:
 381655282ade21f7049548576ada3b9077e44db5 1916 libapache2-mod-authn-yubikey_1.0-3.dsc
 c5c59e914d0d439111b1df49d27fbb7005e03287 7800 libapache2-mod-authn-yubikey_1.0-3.debian.tar.xz
 681e2de497fe59fd0b34695595c5a157ba3e3a26 6886 libapache2-mod-authn-yubikey_1.0-3_source.buildinfo
Checksums-Sha256:
 fbc696e4059eb7b80947149e50c180d90e5796be158df345d9d74922577824c2 1916 libapache2-mod-authn-yubikey_1.0-3.dsc
 7da0e4864b361a8e38bf96c1c599e0a9fb981fcef6aa956d4d0a825dbd06bf7c 7800 libapache2-mod-authn-yubikey_1.0-3.debian.tar.xz
 424bda69c4cfdada544a0a3b454412ec28d591198e1f70a3ec2461e55f7e47a6 6886 libapache2-mod-authn-yubikey_1.0-3_source.buildinfo
Files:
 cd4a04d353cd2609f1080c08792464e7 1916 web optional libapache2-mod-authn-yubikey_1.0-3.dsc
 c7e105017c6e84256031016b33747233 7800 web optional libapache2-mod-authn-yubikey_1.0-3.debian.tar.xz
 bef87c39191adca2cba1c48d93a0a6dc 6886 web optional libapache2-mod-authn-yubikey_1.0-3_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=pQ1q
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Thu, 15 Dec 2022 07:24:37 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed May 17 12:38:46 2023; Machine Name: bembo

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.