Bug#1062929: stoken: NMU diff for 64-bit time_t transition

Sat, 03 Feb 2024 16:51:15 -0800 

Source: stoken
Version: 0.92-1
Severity: serious
Tags: patch pending sid trixie
Justification: library ABI skew on upgrade
User: debian-...@lists.debian.org
Usertags: time-t

NOTICE: these changes must not be uploaded to unstable yet!

Dear maintainer,

As part of the 64-bit time_t transition required to support 32-bit
architectures in 2038 and beyond
(https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified
stoken as a source package shipping runtime libraries whose ABI
either is affected by the change in size of time_t, or could not be
analyzed via abi-compliance-checker (and therefore to be on the safe
side we assume is affected).

To ensure that inconsistent combinations of libraries with their
reverse-dependencies are never installed together, it is necessary to
have a library transition, which is most easily done by renaming the
runtime library package.

Since turning on 64-bit time_t is being handled centrally through a change
to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is
important that libraries affected by this ABI change all be uploaded close
together in time.  Therefore I have prepared a 0-day NMU for stoken
which will initially be uploaded to experimental if possible, then to
unstable after packages have cleared binary NEW.

Please find the patch for this NMU attached.

If you have any concerns about this patch, please reach out ASAP.  Although
this package will be uploaded to experimental immediately, there will be a
period of several days before we begin uploads to unstable; so if information
becomes available that your package should not be included in the transition,
there is time for us to amend the planned uploads.



-- System Information:
Debian Release: trixie/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

diff -Nru stoken-0.92/debian/changelog stoken-0.92/debian/changelog
--- stoken-0.92/debian/changelog        2017-11-12 16:45:20.000000000 +0000
+++ stoken-0.92/debian/changelog        2024-02-04 00:44:22.000000000 +0000
@@ -1,3 +1,10 @@
+stoken (0.92-1.1) experimental; urgency=medium
+
+  * Non-maintainer upload.
+  * Rename libraries for 64-bit time_t transition.
+
+ -- Steve Langasek <vor...@debian.org>  Sun, 04 Feb 2024 00:44:22 +0000
+
 stoken (0.92-1) unstable; urgency=medium
 
   * Imported Upstream version 0.92 (Closes: #878883)
diff -Nru stoken-0.92/debian/control stoken-0.92/debian/control
--- stoken-0.92/debian/control  2017-11-12 16:45:20.000000000 +0000
+++ stoken-0.92/debian/control  2024-02-04 00:44:21.000000000 +0000
@@ -10,7 +10,7 @@
 
 Package: stoken
 Architecture: any
-Depends: libstoken1 (= ${binary:Version}), ${misc:Depends}, ${shlibs:Depends}
+Depends: libstoken1t64 (= ${binary:Version}), ${misc:Depends}, 
${shlibs:Depends}
 Suggests: imagemagick, qrencode, zbar-tools
 Description: Software Token for cryptographic authentication
  stoken is a software token which generates one-time passwords compatible
@@ -26,13 +26,15 @@
  allow for importing token seeds, generating tokencodes, and various
  utility/testing functions.
 
-Package: libstoken1
+Package: libstoken1t64
+Provides: ${t64:Provides}
+Replaces: libstoken1
 Architecture: any
 Multi-Arch: same
 Section: libs
 Depends: ${misc:Depends}, ${shlibs:Depends}
 Pre-Depends: ${misc:Pre-Depends}
-Breaks: stoken (<< 0.5)
+Breaks: libstoken1 (<< ${source:Version}), stoken (<< 0.5)
 Description: Software Token for cryptographic authentication - shared library
  stoken is a software token which generates one-time passwords compatible
  with RSA SecurID 128-bit (AES) tokens.  SecurID tokens are commonly
@@ -52,7 +54,7 @@
 Architecture: any
 Multi-Arch: same
 Section: libdevel
-Depends: libstoken1 (= ${binary:Version}), libtomcrypt-dev, ${misc:Depends}
+Depends: libstoken1t64 (= ${binary:Version}), libtomcrypt-dev, ${misc:Depends}
 Description: Software Token for cryptographic authentication - development 
files
  stoken is a software token which generates one-time passwords compatible
  with RSA SecurID 128-bit (AES) tokens.  SecurID tokens are commonly
diff -Nru stoken-0.92/debian/libstoken1.install 
stoken-0.92/debian/libstoken1.install
--- stoken-0.92/debian/libstoken1.install       2017-11-12 16:45:20.000000000 
+0000
+++ stoken-0.92/debian/libstoken1.install       1970-01-01 00:00:00.000000000 
+0000
@@ -1 +0,0 @@
-usr/lib/*/libstoken.so.*
diff -Nru stoken-0.92/debian/libstoken1.symbols 
stoken-0.92/debian/libstoken1.symbols
--- stoken-0.92/debian/libstoken1.symbols       2017-11-12 16:45:20.000000000 
+0000
+++ stoken-0.92/debian/libstoken1.symbols       1970-01-01 00:00:00.000000000 
+0000
@@ -1,48 +0,0 @@
-libstoken.so.1 libstoken1 #MINVER#
- STOKEN_1.0@STOKEN_1.0 0.1
- STOKEN_1.1@STOKEN_1.1 0.5
- STOKEN_1.2@STOKEN_1.2 0.6
- STOKEN_1.3@STOKEN_1.3 0.8
- STOKEN_PRIVATE@STOKEN_PRIVATE 0.1
- __stoken_parse_and_decode_token@STOKEN_PRIVATE 0.1
- __stoken_read_rcfile@STOKEN_PRIVATE 0.1
- __stoken_write_rcfile@STOKEN_PRIVATE 0.1
- __stoken_zap_rcfile_data@STOKEN_PRIVATE 0.1
- sdtid_decode@STOKEN_PRIVATE 0.5
- sdtid_decrypt@STOKEN_PRIVATE 0.5
- sdtid_export@STOKEN_PRIVATE 0.5
- sdtid_free@STOKEN_PRIVATE 0.5
- sdtid_issue@STOKEN_PRIVATE 0.5
- securid_check_devid@STOKEN_PRIVATE 0.8
- securid_check_exp@STOKEN_PRIVATE 0.1
- securid_compute_tokencode@STOKEN_PRIVATE 0.1
- securid_decode_token@STOKEN_PRIVATE 0.1
- securid_decrypt_pin@STOKEN_PRIVATE 0.1
- securid_decrypt_seed@STOKEN_PRIVATE 0.1
- securid_devid_required@STOKEN_PRIVATE 0.1
- securid_encode_token@STOKEN_PRIVATE 0.1
- securid_encrypt_pin@STOKEN_PRIVATE 0.1
- securid_pass_required@STOKEN_PRIVATE 0.1
- securid_pin_format_ok@STOKEN_PRIVATE 0.1
- securid_pin_required@STOKEN_PRIVATE 0.1
- securid_random_token@STOKEN_PRIVATE 0.1
- securid_token_info@STOKEN_PRIVATE 0.1
- securid_token_interval@STOKEN_PRIVATE 0.6
- securid_unix_exp_date@STOKEN_PRIVATE 0.8
- stc_standalone_init@STOKEN_PRIVATE 0.8
- stoken_check_devid@STOKEN_1.1 0.5
- stoken_check_pin@STOKEN_1.0 0.1
- stoken_compute_tokencode@STOKEN_1.0 0.1
- stoken_decrypt_seed@STOKEN_1.0 0.1
- stoken_destroy@STOKEN_1.0 0.1
- stoken_devid_required@STOKEN_1.0 0.1
- stoken_encrypt_seed@STOKEN_1.1 0.5
- stoken_format_tokencode@STOKEN_1.3 0.8
- stoken_get_guid_list@STOKEN_1.3 0.8
- stoken_get_info@STOKEN_1.2 0.6
- stoken_import_rcfile@STOKEN_1.0 0.1
- stoken_import_string@STOKEN_1.0 0.1
- stoken_new@STOKEN_1.0 0.1
- stoken_pass_required@STOKEN_1.0 0.1
- stoken_pin_range@STOKEN_1.0 0.1
- stoken_pin_required@STOKEN_1.0 0.1
diff -Nru stoken-0.92/debian/libstoken1t64.install 
stoken-0.92/debian/libstoken1t64.install
--- stoken-0.92/debian/libstoken1t64.install    1970-01-01 00:00:00.000000000 
+0000
+++ stoken-0.92/debian/libstoken1t64.install    2017-11-12 16:45:20.000000000 
+0000
@@ -0,0 +1 @@
+usr/lib/*/libstoken.so.*
diff -Nru stoken-0.92/debian/libstoken1t64.lintian-overrides 
stoken-0.92/debian/libstoken1t64.lintian-overrides
--- stoken-0.92/debian/libstoken1t64.lintian-overrides  1970-01-01 
00:00:00.000000000 +0000
+++ stoken-0.92/debian/libstoken1t64.lintian-overrides  2024-02-04 
00:44:22.000000000 +0000
@@ -0,0 +1 @@
+libstoken1t64: package-name-doesnt-match-sonames libstoken1
diff -Nru stoken-0.92/debian/libstoken1t64.symbols 
stoken-0.92/debian/libstoken1t64.symbols
--- stoken-0.92/debian/libstoken1t64.symbols    1970-01-01 00:00:00.000000000 
+0000
+++ stoken-0.92/debian/libstoken1t64.symbols    2024-02-04 00:44:22.000000000 
+0000
@@ -0,0 +1,48 @@
+libstoken.so.1 libstoken1t64 #MINVER#
+ STOKEN_1.0@STOKEN_1.0 0.1
+ STOKEN_1.1@STOKEN_1.1 0.5
+ STOKEN_1.2@STOKEN_1.2 0.6
+ STOKEN_1.3@STOKEN_1.3 0.8
+ STOKEN_PRIVATE@STOKEN_PRIVATE 0.1
+ __stoken_parse_and_decode_token@STOKEN_PRIVATE 0.1
+ __stoken_read_rcfile@STOKEN_PRIVATE 0.1
+ __stoken_write_rcfile@STOKEN_PRIVATE 0.1
+ __stoken_zap_rcfile_data@STOKEN_PRIVATE 0.1
+ sdtid_decode@STOKEN_PRIVATE 0.5
+ sdtid_decrypt@STOKEN_PRIVATE 0.5
+ sdtid_export@STOKEN_PRIVATE 0.5
+ sdtid_free@STOKEN_PRIVATE 0.5
+ sdtid_issue@STOKEN_PRIVATE 0.5
+ securid_check_devid@STOKEN_PRIVATE 0.8
+ securid_check_exp@STOKEN_PRIVATE 0.1
+ securid_compute_tokencode@STOKEN_PRIVATE 0.1
+ securid_decode_token@STOKEN_PRIVATE 0.1
+ securid_decrypt_pin@STOKEN_PRIVATE 0.1
+ securid_decrypt_seed@STOKEN_PRIVATE 0.1
+ securid_devid_required@STOKEN_PRIVATE 0.1
+ securid_encode_token@STOKEN_PRIVATE 0.1
+ securid_encrypt_pin@STOKEN_PRIVATE 0.1
+ securid_pass_required@STOKEN_PRIVATE 0.1
+ securid_pin_format_ok@STOKEN_PRIVATE 0.1
+ securid_pin_required@STOKEN_PRIVATE 0.1
+ securid_random_token@STOKEN_PRIVATE 0.1
+ securid_token_info@STOKEN_PRIVATE 0.1
+ securid_token_interval@STOKEN_PRIVATE 0.6
+ securid_unix_exp_date@STOKEN_PRIVATE 0.8
+ stc_standalone_init@STOKEN_PRIVATE 0.8
+ stoken_check_devid@STOKEN_1.1 0.5
+ stoken_check_pin@STOKEN_1.0 0.1
+ stoken_compute_tokencode@STOKEN_1.0 0.1
+ stoken_decrypt_seed@STOKEN_1.0 0.1
+ stoken_destroy@STOKEN_1.0 0.1
+ stoken_devid_required@STOKEN_1.0 0.1
+ stoken_encrypt_seed@STOKEN_1.1 0.5
+ stoken_format_tokencode@STOKEN_1.3 0.8
+ stoken_get_guid_list@STOKEN_1.3 0.8
+ stoken_get_info@STOKEN_1.2 0.6
+ stoken_import_rcfile@STOKEN_1.0 0.1
+ stoken_import_string@STOKEN_1.0 0.1
+ stoken_new@STOKEN_1.0 0.1
+ stoken_pass_required@STOKEN_1.0 0.1
+ stoken_pin_range@STOKEN_1.0 0.1
+ stoken_pin_required@STOKEN_1.0 0.1

Reply via email to