-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 20 Feb 2017 19:45:26 +0100 Source: diffoscope Binary: diffoscope Architecture: source all Version: 77~bpo8+1 Distribution: jessie-backports Urgency: medium Maintainer: Reproducible builds folks <reproducible-builds@lists.alioth.debian.org> Changed-By: Mattia Rizzolo <mattia@debian.org> Description: diffoscope - in-depth comparison of files, archives, and directories Closes: 820427 835641 848141 849395 850055 850485 850501 850502 850730 850791 850807 850850 851147 851588 852013 852015 852926 854593 854655 854670 854723 854745 854783 855233 855239 Changes: diffoscope (77~bpo8+1) jessie-backports; urgency=medium . [ Mattia Rizzolo ] * Rebuild for jessie-backports. * d/control: drop build-deps on apktool, not available in jessie-backports. . [ Brett Smith ] * comparators.json: Catch bad JSON errors on Python pre-3.5. Closes: #855233 json.JSONDecodeError was introduced in Python 3.5. Earlier versions raised ValueError, which is the base class of JSONDecodeError. Catch that instead. . [ Chris Lamb ] * tests: Move normalize_zeros to more generic `utils.data` module. * Fix tests that call xxd fail on jessie due to output change. Closes: #855239 . diffoscope (77) unstable; urgency=medium . [ Chris Lamb ] * tests/comparators/utils: + Correct logic of module_exists, ensuring we correctly skip in case of modules containing a dot in their name. Closes: #854745 * comparators/utils/libarchive: + No need to track archive directory locations. * Add --exclude option. Closes: #854783 * Add PyPI badge to README.rst. * Update .travis.yml from http://travis.debian.net. . [ Mattia Rizzolo ] * Add CVE reference to the changelog of v76. * Add my key to debian/upstream/signing-key.asc. . [ Ximin Luo ] * comparators/utils/libarchive: + When extracting archives, try to keep directory sizes small. . diffoscope (76) unstable; urgency=medium . [ Chris Lamb ] * Extract archive members using an auto-incrementing integer, avoiding the need to sanitise filenames and avoiding writes to arbitrary locations. (Closes: #854723 - CVE-2017-0359) . [ Ximin Luo ] * Simplify call to subprocess.Popen . diffoscope (75) unstable; urgency=medium . [ Chris Lamb ] * Fix ImportError in Debian comparator tests. This was caused by not handling the case where ``importlib.find_spec`` was testing for a submodule (ie. ``debian.Deb822``) where it will attempt to import the ``debian`` module and raise an exception if it does not exist. Thanks to Iain Lane for initial patches. (Closes: #854670) . [ Ximin Luo ] * Remove pointless use of a thread . diffoscope (74) unstable; urgency=medium . * Add missing Recommends for comparators. This was a regression introduced in version 71 due to lazily-importing them; they were then not available when we called "--list-tools=debian" during package build. (Closes: #854655) . diffoscope (73) unstable; urgency=medium . * debian/tests/pytest: Remove spurious clipboard contents. . diffoscope (72) unstable; urgency=medium . * Fix autopkgtest failures when Recommends are not installed. (Closes: #854593) * Specify <html lang="en"> in HTML output. (re. #849411) * Tests: - Add a "@skip_unless_module_exists" decorator. - Show local variables in tracebacks. . diffoscope (71) unstable; urgency=medium . [ Chris Lamb ] * New features: - Add a machine-readable JSON output format. (Closes: #850791) - Show results from debugging packages last. (Closes: #820427) - Add a --max-text-report-size option. (Closes: #851147) * Bug fixes: - Clean all temp files in signal handler thread instead of attempting to bubble exception back to the main thread. (Closes: #852013) - Prevent FTBFS by loading fixtures as UTF-8 in case surrounding terminal is not Unicode-aware. (Closes: #852926) - Fix errors when comparing directories with non-directories. (Closes: #835641) - Fix behaviour of setting report maximums to zero (ie. no limits) * Tests: - Test the RPM "fallback" comparison. - Test the Deb{Changes,Buildinfo,Dsc} fallback comparisons. - Test --progress and --status-fd output. - Add tests for symlinks differing in destination. - When comparing two empty directories, ensure that the mtime of the directory is consistent to avoid non-deterministic failures. - Smoke test profiling output. - Ensure we ignore invalid JSON files correctly. - Ensure 2nd source of a Difference is a string, not just the 1st. - Don't report on test coverage for some internal error messages. * Misc: - Add docs about releasing signed tarballs. - Drop the incomplete list of external tools from README.rst. - Add debian/watch file with cryptographic signature verification. - Drop CpioContent command now that we use libarchive. - Use a singleton to manage our Comparator classes. - Many small optimisations and code cleanups. . [ Brett Smith ] * diffoscope.diff: Improve FIFO writing robustness. . [ Ximin Luo ] * Fix bug introduced in commit 36d1c964 that only worked "accidentally". * Fix lazy expression; filter is lazy in Python 3. . [ Mattia Rizzolo ] * Override the debian-watch-file-in-native-package lintian tag. . [ anthraxx ] * Arch package changed from cdrkit to cdrtools. . [ Holger Levsen ] * Restore history section in README, explaining this was started in Debian. . diffoscope (70) unstable; urgency=medium . [ Mattia Rizzolo ] * comparators + haskell: add a comment describing the file header. Thanks to James Clarke <jrtc27@debian.org> for all the investigation done. * tests: + Skip two more tests requiring a x86-64-capable binutils. This fixes the tests on ppc64el. * CONTRIBUTING: misc updates, clearer info about how to submit a Debian bug. . [ James Clarke ] * comparators: + haskell: Properly extract version from interface files. What the code did before was just totally wrong, and worked only by chance (and only on little endian systems). This also fixes the test suite when run on big endian systems. . [ Chris Lamb ] * comparators: + haskell: Also catch CalledProcessError, not just OSError. * presenters: + Move text presenter to use Visitor pattern. + Add markdown output support. Closes: #848141 + Add RestructuredText output format. + Instantiate our presenter classes directly instead of wrapping a method. + Use an optimised indentation routine throughout all text presenters. + text: Remove superfluous empty newlines from diff. * tests: + Split main and presenter tests. + Actually compare the output of text/ReST/markdown formats to fixtures. + Drop output_* calls that are inconsistently applied to differences. + Add tests for HTML output. + Add a test comparing two empty directories. + Test --text-color output format. + Test that no arguments (beyond the filenames) prints the text output. + Don't warn about coverage lines that raise NotImplementedError. + Increase coverage by adding "# noqa" in relevant parts. * Add build status to README.rst. . [ Brett Smith ] * diffoscope: + Specify choices for --list-tools switch. + Improve --help output. Closes: #852015 * CONTRIBUTING: Refresh instructions for contributing to diffoscope. . [ anthraxx ] * tools: switch Arch Linux dependency for pedump to mono. . diffoscope (69) unstable; urgency=medium . [ Chris Lamb ] * Skip tests if binutils can't handle the object file format. Based on a patch by Mattia Rizzolo. (Closes: #851588) * Move external tool definitions out of misleading "exceptions" module. * Save some complicated logic by setting default RE_FILE_{EXTENSION,TYPE} * Test --html-dir option. * Misc: * Add missing `data` imports. - Inherit GzipFile from File, not object. - Remove unused imports in comparator tests. - Consistently space out environment exports in debian/rules. . [ Mattia Rizzolo ] * If both RE_FILE_TYPE and RE_FILE_EXTENSION are defined, AND them * Use the path attribute of the specialized file instead of the original name in tests. * tests/main: * Shorten argument lists by unpacking common arguments. * Disable jQuery while testing --htmldir so tests can run without it. * tests/comparators: * Refactor into packages with smaller modules. * Rename load_fixture() to init_fixture(). * Add a load_fixture() function wrapping both init_fixture() and data(). . diffoscope (68) unstable; urgency=medium . [ Chris Lamb ] . * Don't blow up if directory containing ELF debug symbols already exists. (Closes: #850807) * Fix .APK extration when provided with absolute filenames. (Closes: #850485) * Support comparing .ico files using img2txt. (Closes: #850730) * comparators.utils.file: If we don't have an archive-extraction tool (eg. apktool), don't blow up when attempting to unpack it. * Include magic file type when we know the file format but can't find file-specific details. (Closes: #850850) * Ensure fake "APK metadata" file appears first, fixing non-deterministic tests/output. * Correctly escape value of href="" elements (re. #849411) . * Optimisations: - Disable profiling entirely (unless enabled) for a 2%+ optimisation - Compile APK filename regex instead of generating it each loop. . * Logging: - Log tempfile cleanup process - Log when we add a progress observer. - Drop milliseconds from log output . * Misc: - Many unused import removals, indentation changes, etc. - Fix duplicated word and long line errors in debian/changelog. - Suggest some promotion in post-release documentation. . [ Maria Glukhova ] * comparators/device: don't crash when comparing a non-device against a device (Closes: #850055) * Remove archive name from apktool.yml and rename it. (Closes: #850501) * Zipinfo included in APK files comparison. (Closes: #850502) - Add some tests for APK comparator. * Add image metadata comparison. (Closes: #849395) * Ensure imagemagick version is new enough for image metadata tests. . [ Mattia Rizzolo ] * Skip the openssh_pub_key test if the version of ssh is < 6.9. * comparators/icc: rename RE_FILE_EXTENSION to RE_FILE_TYPE, as that's what the regular expression is looking for. * Make use of a new mechanism to remove a bunch of recognizes() methods dealing with simple RE_FILE_TYPE matching. Checksums-Sha1: d1dfe3f8af7b1e716ef66109a55396c6ac4e6a80 2945 diffoscope_77~bpo8+1.dsc 8e576925c619254a44ca2bdf5747b1eca850859a 351640 diffoscope_77~bpo8+1.tar.xz 354fea1160d6a218de852ff7f9eb802c2e041684 85804 diffoscope_77~bpo8+1_all.deb Checksums-Sha256: 1c152ee286f013edcb4a1c26c0e9d6de32faceddf7447dbd4f18ad905fa66228 2945 diffoscope_77~bpo8+1.dsc 38fa606c9917d43b4ac68b7f208f1c2ed24cb1cb0f183a3cef2ee78a4c86504a 351640 diffoscope_77~bpo8+1.tar.xz 74a39ff16bbb0a72bc407b23ab3d5b8684d14314a0ac83d5942451aec5fba6fa 85804 diffoscope_77~bpo8+1_all.deb Files: b9ba850f9802cf8165e146667503bbfe 2945 devel optional diffoscope_77~bpo8+1.dsc c8077b1016a500f16af58cf58d3b58f8 351640 devel optional diffoscope_77~bpo8+1.tar.xz 743f91c12d42f5403d8d8d046e050510 85804 devel optional diffoscope_77~bpo8+1_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEi3hoeGwz5cZMTQpICBa54Yx2K60FAlirOvgACgkQCBa54Yx2 K62kAA/+Pj4OKig3m4U+gmcQCab0fLMZWZzVZI1RZ80PoiEurVhxHLE2p9XrxWAi r9N85qChUxAF0mceVTj9YVYjQB5ZPTT2YQPFMhK3OmKsT+Pp1i6nGxEIbhlkBuqB CXWK+WIua3s9t0jNXC1DCT4ivTWsh4AIIz6XWGZCb6d1qSsopzu5rVC5cSer7SVG lPE405BAQ3lcNi0qEbolwUyaxtK28ZaMyRzNlxZtt5yWq30YCCVGaP5806erusOI GeGjAZIQBZ6cPUTagaG6xoNNf6nneCOYXBR4o7YbJzbByNkH3ZdqJbgSBvhGtuJN EhF96ctOgVcNf25xIzcGJu1l8QcY4BUfYPzALuGs7p2XrLYi3/UTlTRzLo5Hb3qW bVkp68ZP4UE7w5bF8y/Bsi2p0Tx4wFOfqxpL7UQNMwnvxTyb6AaBZ9OYmQA+IzWH tkGTI2queIAVF+5fzahexOXRUyASHce2Th0/76gjEH9J4Fdx3gQlWpK4Dg3eqfzQ 6Uaf63RK9e0tBTgUglOdPduiNm/r7G3Ikk7LabPFJEeDlSUY70ShuB5yg2//sSNL YnXm5sTQyPteN7TapqZXNQxCSDVWph+u0EUnvKNjvd9nTGDVUUz3545V7icZG+uh V0g6qDfXMxIGVFsrmSzmjUVG1aAn1fdLdiShUqy7UzFfQEMUWdA= =4TCi -----END PGP SIGNATURE-----