[Pkg-privacy-maintainers] Bug#1078766: bullseye-pu: package onionshare/2.2-3+deb11u2

Clément Hermann nodens at debian.org
Thu Aug 15 19:45:54 BST 2024 

Package: release.debian.org
Severity: normal
Tags: bullseye
X-Debbugs-Cc: onionshare at packages.debian.org
Control: affects -1 + src:onionshare
User: release.debian.org at packages.debian.org
Usertags: pu

Hi,

in order to allow removal of obfs4proxy, this update demotes
obfs4proxy dependency to a recommends (as discussed in #1008164)

I tested the behaviour of onionshare 2.2 without obfs4proxy in Bullseye.
It runs fine, the obfs4proxy related options are greyed out in the
settings, but the rest works as intended.

[ Risks ]
None that I can think of. The only difference is the change in control
(and changelog). I'll attach a debdiff once I know the bug number and
can close it

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
-------------- next part --------------
diff -Nru onionshare-2.2/debian/changelog onionshare-2.2/debian/changelog
--- onionshare-2.2/debian/changelog	2022-11-12 17:23:52.000000000 +0100
+++ onionshare-2.2/debian/changelog	2024-08-14 08:40:03.000000000 +0200
@@ -1,3 +1,9 @@
+onionshare (2.2-3+deb11u2) bullseye; urgency=medium
+
+  * Demote obfs4proxy dependency to Recommends, to allow removal of obfs4proxy - See #1008164
+
+ -- Cl?ment Hermann <nodens at debian.org>  Wed, 14 Aug 2024 08:40:03 +0200
+
 onionshare (2.2-3+deb11u1) bullseye; urgency=medium
 
   * Backport upstream fix for CVE-2022-21690
diff -Nru onionshare-2.2/debian/control onionshare-2.2/debian/control
--- onionshare-2.2/debian/control	2022-11-12 17:23:52.000000000 +0100
+++ onionshare-2.2/debian/control	2024-08-14 08:36:43.000000000 +0200
@@ -31,7 +31,6 @@
 Package: onionshare
 Architecture: all
 Depends:
- obfs4proxy,
  python3-pycryptodome,
  python3-flask,
  python3-flask-httpauth,
@@ -41,6 +40,8 @@
  tor,
  ${misc:Depends},
  ${python3:Depends},
+Recommends:
+ obfs4proxy
 Description: Share a file over Tor Hidden Services anonymously and securely
  OnionShare lets you securely and anonymously share a file of any size with
  someone. It works by starting a web server, making it accessible as a Tor
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 14 Aug 2024 21:37:36 CEST
Source: onionshare
Binary: 
Architecture: source
Version: 2.2-3+deb11u2
Distribution: bullseye
Urgency: medium
Maintainer: Debian Privacy Tools Maintainers <pkg-privacy-maintainers at lists.alioth.debian.org>
Changed-By: Cl?ment Hermann <nodens at debian.org>
Description: 
Changes:
 onionshare (2.2-3+deb11u2) bullseye; urgency=medium
 .
   * Demote obfs4proxy dependency to Recommends, to allow removal of obfs4proxy - See #1008164
Checksums-Sha256: 
 922cebde2a08bbd8703daa401d07edf3330b8e93644f1d1033b87d16ce2ce584 2286 onionshare_2.2-3+deb11u2.dsc
 276fed24ad1ee612d695481f3765a093da41022dc7402afbbbbdbfff5187d73d 79284 onionshare_2.2-3+deb11u2.debian.tar.xz
 1163e554dc190bfc9a7ceb336e2c247694861c998b6c637662ae06dfefb91dea 14613 onionshare_2.2-3+deb11u2_sourceonly.buildinfo
Checksums-Sha1: 
 81a4460dd9f09dbf6a4bd2acbd555b66d2f9d7b8 2286 onionshare_2.2-3+deb11u2.dsc
 8cb9f3f8897efd6c6481716771b97db5a725f0bc 79284 onionshare_2.2-3+deb11u2.debian.tar.xz
 5d18adb260dfb2554cf03c0413678bb372e135c2 14613 onionshare_2.2-3+deb11u2_sourceonly.buildinfo
Files: 
 27dcf8557ddaf9b4f4c02102555f8793 2286 net optional onionshare_2.2-3+deb11u2.dsc
 e2a52cc05818889f7e02dd04d8041970 79284 net optional onionshare_2.2-3+deb11u2.debian.tar.xz
 48f18cc06ca4f7f979d1d28647e30393 14613 - - onionshare_2.2-3+deb11u2_sourceonly.buildinfo

-----BEGIN PGP SIGNATURE-----
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=oE4K
-----END PGP SIGNATURE-----

More information about the Pkg-privacy-maintainers mailing list