Hi Stephen, The package builds successfully, but there are a few errors and warnings from Lintian that need to be dealt with. At least one of them (embedded-library pcre2) can be overridden since you have your reasoning in debian/README.source. You can find more info about the Lintian output here: https://debusine.debian.net/debian/developers/work-request/127816/ Or the whole build: https://debusine.debian.net/debian/developers/work-request/127799/ Lintian output is also included below. -- Maytham Running lintian... N: E: tinymux: embedded-library pcre3 [usr/lib/tinymux/game/bin/netmux] N: N: The given ELF object appears to have been statically linked to a library. N: Doing this is strongly discouraged due to the extra work needed by the N: security team to fix all the extra embedded copies or trigger the package N: rebuilds, as appropriate. N: N: If the package uses a modified version of the given library it is highly N: recommended to coordinate with the library's maintainer to include the N: changes on the system version of the library. N: N: Please refer to Embedded code copies (Section 4.13) in the Debian Policy N: Manual for details. N: N: Visibility: error N: Show-Always: no N: Check: libraries/embedded N: N: E: tinymux: library-not-linked-against-libc [usr/lib/tinymux/game/bin/sample.so] N: N: The package installs a library which is not dynamically linked against N: libc. N: N: It is theoretically possible to have a library which doesn't use any N: symbols from libc, but it is far more likely that this is a violation of N: the requirement that "shared libraries must be linked against all N: libraries that they use symbols from in the same way that binaries are". N: N: Please refer to Libraries (Section 10.2) in the Debian Policy Manual and N: Bug#698720 for details. N: N: Visibility: error N: Show-Always: no N: Check: binaries/prerequisites N: N: E: tinymux: library-not-linked-against-libc [usr/lib/tinymux/game/bin/sqlslave.so] N: E: tinymux: library-not-linked-against-libc [usr/lib/tinymux/game/bin/sum.so] N: W: tinymux-dbgsym: debug-file-with-no-debug-symbols [usr/lib/debug/.build-id/08/bb3126f93fd067d1075ce60fa527702bca5259.debug] N: N: The binary is installed as a detached "debug symbols" ELF file, but it N: does not appear to have debug information associated with it. N: N: A common cause is not passing -g to GCC when compiling. N: N: Implementation detail: Lintian checks for the ".debug_line" and the N: ".debug_str" sections. If either of these are present, the binary is N: assumed to contain debug information. N: N: Please refer to Bug#668437 for details. N: N: Visibility: warning N: Show-Always: no N: Check: binaries/debug-symbols/detached N: N: W: tinymux-dbgsym: debug-file-with-no-debug-symbols [usr/lib/debug/.build-id/2f/1fca8077b8db09e057afeba538ace48112c8a2.debug] N: W: tinymux-dbgsym: debug-file-with-no-debug-symbols [usr/lib/debug/.build-id/7b/cfc8af7c82ff5cacabb469b8e9858447b1426f.debug] N: W: tinymux-dbgsym: debug-file-with-no-debug-symbols [usr/lib/debug/.build-id/f9/2763ef83210db3e52dec37206973e94e97ac07.debug] N: I: tinymux source: debian-watch-uses-insecure-uri ftp://ftp.tinymux.org/tinymux-2.12/([\d\.]+)/mux-@ANY_VERSION@.unix@ARCHIVE_EXT@ [debian/watch:2] N: N: The watch file uses an unencrypted transport protocol for the URI such as N: http:// or ftp://. It is recommended to use a secure transport such as N: HTTPS for anonymous read-only access. N: N: Upstream may already provide a HTTPS variant of the URI. If not, please N: contact them and ask them to consider adding one. N: N: Visibility: info N: Show-Always: no N: Check: debian/watch N: N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/libmux.so] N: N: This package provides an ELF binary that lacks the "bindnow" linker flag. N: N: This is needed (together with "relro") to make the "Global Offset Table" N: (GOT) fully read-only. The bindnow feature trades startup time for N: improved security. Please consider enabling this feature or consider N: overriding the tag (possibly with a comment about why). N: N: If you use dpkg-buildflags, you may have to add hardening=+bindnow or N: hardening=+all to DEB_BUILD_MAINT_OPTIONS. N: N: The relevant compiler flags are set in LDFLAGS. N: N: Please refer to https://wiki.debian.org/Hardening for details. N: N: Visibility: info N: Show-Always: no N: Check: binaries/hardening N: N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/netmux] N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/sample.so] N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/slave] N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/sqlproxy.so] N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/sqlslave.so] N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/stubslave] N: I: tinymux: hardening-no-bindnow [usr/lib/tinymux/game/bin/sum.so] N: I: tinymux: hardening-no-fortify-functions [usr/lib/tinymux/game/bin/netmux] N: N: This package provides an ELF binary that lacks the use of fortified libc N: functions. Either there are no potentially unfortified functions called by N: any routines, all unfortified calls have already been fully validated at N: compile-time, or the package was not built with the default Debian N: compiler flags defined by dpkg-buildflags. If built using dpkg-buildflags N: directly, be sure to import CPPFLAGS. N: N: NB: Due to false-positives, Lintian ignores some unprotected functions N: (e.g. memcpy). N: N: Please refer to https://wiki.debian.org/Hardening and Bug#673112 for N: details. N: N: Visibility: info N: Show-Always: no N: Check: binaries/hardening N: N: I: tinymux: hardening-no-fortify-functions [usr/lib/tinymux/game/bin/slave] N: I: tinymux: hardening-no-fortify-functions [usr/lib/tinymux/game/bin/stubslave] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/badsite.txt] N: N: This package ships a documentation file outside /usr/share/doc N: Documentation files are normally installed inside /usr/share/doc. N: N: If this file doesn't describe the contents or purpose of the directory it N: is in, please consider moving this file to /usr/share/doc/ or maybe even N: removing it. If this file does describe the contents or purpose of the N: directory it is in, please add a lintian override. N: N: Visibility: info N: Show-Always: no N: Check: documentation N: N: Screen: python/egg/metadata N: Advocates: "Scott Kitterman" <debian@kitterman.com> N: Reason: The folders XXX.dist-info/ and XXX.egg-info/ hold metadata for N: Python modules. Those files are not documentation even though N: some of their names carry the .txt file extension. N: N: Python modules can be both public and private. N: N: Read more in N: https://www.python.org/dev/peps/pep-0427/#the-dist-info-directory, N: https://www.python.org/dev/peps/pep-0376/#id16, N: https://www.python.org/dev/peps/pep-0610/, N: https://www.python.org/dev/peps/pep-0639/, N: https://setuptools.pypa.io/en/latest/deprecated/python_eggs.html, N: and Bug#1003913. N: N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/connect.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/create_reg.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/down.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/full.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/guest.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/help.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/motd.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/news.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/newuser.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/plushelp.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/quit.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/register.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/staffhelp.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/wizhelp.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/wizmotd.txt] N: I: tinymux: package-contains-documentation-outside-usr-share-doc [usr/share/tinymux/game/text/wiznews.txt] E: Lintian run failed (policy violation)
Attachment:
signature.asc
Description: This is a digitally signed message part