Source: libreswan Version: 4.6-1 Severity: normal Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: hostname X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org
Ever since version 4.6-1, libreswan has been embedding the hostname in various binaries: https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/amd64/diffoscope-results/libreswan.html /usr/libexec/ipsec/_import_crl ./lib/libipsecconf/../../OBJ.linux.amd64.ionos5-amd64/lib/libipsecconf/lex.yy.c.tmp:1806 vs. ./lib/libipsecconf/../../OBJ.linux.amd64.i-capture-the-hostname/lib/libipsecconf/lex.yy.c.tmp:1806 The attached patch fixes this by setting OBJDIR from debian/rules. I am not positive there are not other outstanding issue, but this *might* be enough to make libreswan build reproducibly again. Thanks for maintaining libreswan! live well, vagrant
From c68ea5c4e44bf175b1223e7bb3f3f7516a602f22 Mon Sep 17 00:00:00 2001
From: Vagrant Cascadian <vagr...@reproducible-builds.org>
Date: Sun, 25 Sep 2022 20:50:29 +0000
Subject: [PATCH] debian/rules: Pass OBJDIR to avoid embedding hostname.
By default, OBJDIR is defined in mk/objdir.mk, which includes the
system hostname, and this value gets embedded in the generated
binaries.
---
debian/rules | 1 +
1 file changed, 1 insertion(+)
diff --git a/debian/rules b/debian/rules
index 5491fbf..b7dd981 100755
--- a/debian/rules
+++ b/debian/rules
@@ -31,6 +31,7 @@ NSS_AVA_MISSING=$(shell if printf '#include <cert.h>\nint main() { return CERT_C
DEBIAN_LIBRESWAN_BUILD_FLAGS = \
ARCH=$(DEB_HOST_ARCH) \
+ OBJDIR=OBJ.$(DEB_HOST_ARCH_OS).$(DEB_HOST_ARCH) \
IPSECVERSION=$(DEB_VERSION_UPSTREAM) \
PREFIX=/usr \
FINALLIBEXECDIR=/usr/libexec/ipsec \
--
2.37.2
signature.asc
Description: PGP signature
