Bug#963518: source-highlight: Embeds user shell in scripts
Vagrant Cascadian
vagrant at reproducible-builds.org
Mon Jun 22 21:43:53 BST 2020
Source: source-highlight
Version: 3.1.9-1.2
Severity: normal
Tags: patch
User: reproducible-builds at lists.alioth.debian.org
Usertags: shell
X-Debbugs-Cc: reproducible-bugs at lists.alioth.debian.org
When CONFIG_SHELL is not set during configure, configure attempts
various methods to detect a valid shell, including using the build
user's shell, which may vary from user to user.
This then gets embedded into scripts shipped in the
libsource-highlight-common package, breaking reproducibility:
./usr/share/source-highlight/source-highlight-esc.sh
Offset 1, 8 lines modified Offset 1, 8 lines modified
1 #!/bin/bash 1 #!/bin/sh
./usr/share/source-highlight/src-hilite-lesspipe.sh
Offset 1, 8 lines modified Offset 1, 8 lines modified
1 #!·/bin/bash 1 #!·/bin/sh
The attached patch works around this by setting CONFIG_SHELL=/bin/sh in
debian/rules during configure.
Thanks for maintaining source-highlight!
live well,
vagrant
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-debian-rules-Set-CONFIG_SHELL-to-bin-sh-during-confi.patch
Type: text/x-diff
Size: 753 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/reproducible-bugs/attachments/20200622/6da33cec/attachment.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/reproducible-bugs/attachments/20200622/6da33cec/attachment.sig>
More information about the Reproducible-bugs
mailing list