Debian Bug report logs - #829261
passwordsafe: please make the build reproducible

version graph

Package: src:passwordsafe; Maintainer for src:passwordsafe is William Blough <bblough@debian.org>;

Reported by: Reiner Herrmann <reiner@reiner-h.de>

Date: Fri, 1 Jul 2016 19:18:02 UTC

Severity: wishlist

Tags: patch

Found in version passwordsafe/0.98.1+dfsg-3

Fixed in version passwordsafe/0.99+dfsg-1

Done: William Blough <devel@blough.us>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, reproducible-builds@lists.alioth.debian.org, William Blough <devel@blough.us>:
Bug#829261; Package src:passwordsafe. (Fri, 01 Jul 2016 19:18:05 GMT) (full text, mbox, link).

Acknowledgement sent to Reiner Herrmann <reiner@reiner-h.de>:
New Bug report received and forwarded. Copy sent to reproducible-builds@lists.alioth.debian.org, William Blough <devel@blough.us>. (Fri, 01 Jul 2016 19:18:05 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Reiner Herrmann <reiner@reiner-h.de>
To: submit@bugs.debian.org
Subject: passwordsafe: please make the build reproducible
Date: Fri, 1 Jul 2016 21:14:45 +0200
[Message part 1 (text/plain, inline)]
Source: passwordsafe
Version: 0.98.1+dfsg-3
Severity: wishlist
Tags: patch
User: reproducible-builds@lists.alioth.debian.org
Usertags: locale timestamps
X-Debbugs-Cc: reproducible-builds@lists.alioth.debian.org

Hi!

While working on the "reproducible builds" effort [1], we have noticed
that passwordsafe could not be built reproducibly.
It embeds information from the build process into extra fields of help
zip files and writes C++ files in a locale-dependent way.

The attached patch fixes that by preventing extra fields be stored in
zip files and by using the default Perl-behavior for sorting keys.

Regards,
 Reiner

[1]: https://wiki.debian.org/ReproducibleBuilds

[passwordsafe.patch (text/x-diff, attachment)]
[signature.asc (application/pgp-signature, inline)]

Added tag(s) pending. Request was from William Blough <devel@blough.us> to control@bugs.debian.org. (Mon, 25 Jul 2016 19:33:09 GMT) (full text, mbox, link).

Reply sent to William Blough <devel@blough.us>:
You have taken responsibility. (Tue, 26 Jul 2016 16:30:05 GMT) (full text, mbox, link).

Notification sent to Reiner Herrmann <reiner@reiner-h.de>:
Bug acknowledged by developer. (Tue, 26 Jul 2016 16:30:05 GMT) (full text, mbox, link).

Message #12 received at 829261-close@bugs.debian.org (full text, mbox, reply):

From: William Blough <devel@blough.us>
To: 829261-close@bugs.debian.org
Subject: Bug#829261: fixed in passwordsafe 0.99+dfsg-1
Date: Tue, 26 Jul 2016 16:27:10 +0000
Source: passwordsafe
Source-Version: 0.99+dfsg-1

We believe that the bug you reported is fixed in the latest version of
passwordsafe, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 829261@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
William Blough <devel@blough.us> (supplier of updated passwordsafe package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 25 Jul 2016 13:36:41 -0400
Source: passwordsafe
Binary: passwordsafe passwordsafe-common
Architecture: source
Version: 0.99+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: William Blough <devel@blough.us>
Changed-By: William Blough <devel@blough.us>
Description:
 passwordsafe - Simple & Secure Password Management
 passwordsafe-common - architecture independent files for Password Safe
Closes: 829261 829406 832381
Changes:
 passwordsafe (0.99+dfsg-1) unstable; urgency=medium
 .
   * New upstream version.  Closes: 832381
   * Recommend xvkbd package.  Closes: 829406
   * Add patch from Reiner Herrmann for reproducible builds. Closes: 829261
   * Update standards version to 3.9.8 (no changes needed)
   * Remove unneeded patches and refresh remaining patches
Checksums-Sha1:
 baf736e6454dedf4b51ff4c4413a728e21b8664b 2097 passwordsafe_0.99+dfsg-1.dsc
 c1db780223e88c3b080741f59074efa49245e028 10135170 passwordsafe_0.99+dfsg.orig.tar.gz
 4669c61a7aa707ab258e23d45d8d0fb15533dcea 9960 passwordsafe_0.99+dfsg-1.debian.tar.xz
Checksums-Sha256:
 637060a7b28ed5670cfa4ba129b99f37be6c1ba0499d23a9f8d3cd3f9f4d782c 2097 passwordsafe_0.99+dfsg-1.dsc
 528db9bfc4c3ffc372967c1107ef87a3c514e2c2d9240e4ccb9c351159babd7f 10135170 passwordsafe_0.99+dfsg.orig.tar.gz
 c413e6773251ea26cb3794beba7179ca702d28334dc64fae0bf947442a8992bb 9960 passwordsafe_0.99+dfsg-1.debian.tar.xz
Files:
 965a0a9cfb4ba3cb26b90d5229d467a3 2097 utils optional passwordsafe_0.99+dfsg-1.dsc
 a8b93d2287055c958c6b59f8bb354008 10135170 utils optional passwordsafe_0.99+dfsg.orig.tar.gz
 5bd21742b3fd551dce9b8166dfc49e8a 9960 utils optional passwordsafe_0.99+dfsg-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=+r0b
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Mon, 29 Aug 2016 07:33:25 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed May 17 13:50:42 2023; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.