[Pkg-privacy-maintainers] Bug#1125775: Bug#1125775: torsocks: library not in search path, leaks user IP to endpoint
Hefee
hefee at debian.org
Tue Jan 27 15:38:41 GMT 2026
Hey,
> It looks that in debian/rules the call for dh_makeshlibs is explicitly
> overriden, otherwise a trigger for registering 'activate-nowait
> ldconfig' would be generated. This should resolve the issue, but then
> one needs to explicitly override both
>
> E: libtorsocks: package-modifies-ld.so-search-path
> [etc/ld.so.conf.d/torsocks-x86_64-linux-gnu.conf] W: libtorsocks:
> package-has-unnecessary-activation-of-ldconfig-trigger
>
> because then this would be actually intended? intrigeri is this
> correct?
The explicit override of dh_makeshlibs was done in 2012 by intrigeri. And I
never thought, that a ldconfig trigger is needed for a private library. But
okay I learnt I needs that. Now I understand more why Helumt was telling in
#902792, why libtorsocks need to be treated like a public library.
Can someone have a look at salsa if my changes makes sense?
https://salsa.debian.org/pkg-privacy-team/torsocks
I'm a little bit unsure about the move libtorsocks from subdir to normal
libdir (that was discussed https://bugs.debian.org/cgi-bin/bugreport.cgi?
bug=902792,#41)
Regards,
hefee
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part.
URL: <http://alioth-lists.debian.net/pipermail/pkg-privacy-maintainers/attachments/20260127/cdff657d/attachment.sig>
More information about the Pkg-privacy-maintainers
mailing list