Bug#930426: gokey: Output of gokey is not deterministic any more

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Bug#930426: gokey: Output of gokey is not deterministic any more

Benjamin Drung-6
Package: gokey
Version: 0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-1
Severity: grave
Tags: upstream
Justification: renders package unusable

Hi,

Currently the output of gokey is not deterministic any more and
therefore renders it completely useless. This was fixed in gokey
0.0~git20190103.40eba7e-1 by upstream:

  - Import deterministic RSA key generation code from Go 1.10
    crypto/rsa package

Please either upgrade to 0.0~git20190103.40eba7e or cherry-pick the
relevant change.

--
Benjamin Drung
System Developer
Debian & Ubuntu Developer

1&1 IONOS Cloud GmbH | Greifswalder Str. 207 | 10405 Berlin | Germany
E-mail: [hidden email] | Web: www.ionos.de

Head Office: Berlin, Germany
District Court Berlin Charlottenburg, Registration number: HRB 125506 B
Executive Management: Christoph Steffens, Matthias Steinberg, Achim
Weiss

Member of United Internet

Reply | Threaded
Open this post in threaded view
|

Bug#930426: marked as done (gokey: Output of gokey is not deterministic any more)

Debian Bug Tracking System
Your message dated Thu, 13 Jun 2019 14:35:02 +0000
with message-id <[hidden email]>
and subject line Bug#930426: fixed in gokey 0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2
has caused the Debian Bug report #930426,
regarding gokey: Output of gokey is not deterministic any more
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [hidden email]
immediately.)


--
930426: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930426
Debian Bug Tracking System
Contact [hidden email] with problems

Package: gokey
Version: 0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-1
Severity: grave
Tags: upstream
Justification: renders package unusable

Hi,

Currently the output of gokey is not deterministic any more and
therefore renders it completely useless. This was fixed in gokey
0.0~git20190103.40eba7e-1 by upstream:

  - Import deterministic RSA key generation code from Go 1.10
    crypto/rsa package

Please either upgrade to 0.0~git20190103.40eba7e or cherry-pick the
relevant change.

--
Benjamin Drung
System Developer
Debian & Ubuntu Developer

1&1 IONOS Cloud GmbH | Greifswalder Str. 207 | 10405 Berlin | Germany
E-mail: [hidden email] | Web: www.ionos.de

Head Office: Berlin, Germany
District Court Berlin Charlottenburg, Registration number: HRB 125506 B
Executive Management: Christoph Steffens, Matthias Steinberg, Achim
Weiss

Member of United Internet

Source: gokey
Source-Version: 0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2

We believe that the bug you reported is fixed in the latest version of
gokey, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [hidden email],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Benjamin Drung <[hidden email]> (supplier of updated gokey package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [hidden email])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 13 Jun 2019 15:51:37 +0200
Source: gokey
Architecture: source
Version: 0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Go Packaging Team <[hidden email]>
Changed-By: Benjamin Drung <[hidden email]>
Closes: 930426
Changes:
 gokey (0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2) unstable; urgency=medium
 .
   * Cherry-pick patch from upstream to import deterministic RSA key generation
     code from Go 1.10 crypto/rsa package (Closes: #930426)
Checksums-Sha1:
 f4d4c4e5a6ace88b5c3bbd5dc55c3850da2e9491 2488 gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2.dsc
 23a1128b25f58aea4d5a3352ea9ee9107ed3c16a 10192 gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2.debian.tar.xz
 2288f3a294663bed35e0c7fd60223ecacf3c3080 6721 gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2_source.buildinfo
Checksums-Sha256:
 1e247f3a43fa788ef2f29ed5b8f000aca4a5a188e75c12eeed0b45607e580976 2488 gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2.dsc
 0a85d7b7853edd4a9d51607fddb8b35a5d1b6ac2837cca3c42d7ba5ddd45ceac 10192 gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2.debian.tar.xz
 8c8513ec8a23d45ea0f2def89cbede871078854de97002441772ed8c18014397 6721 gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2_source.buildinfo
Files:
 123478f4bfa3d16cbaa8a87a1db07275 2488 utils optional gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2.dsc
 9c8c9c00f69af0625b95ca1d92272b12 10192 utils optional gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2.debian.tar.xz
 3220ea492abd8bb0181d1fe23ec841be 6721 utils optional gokey_0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=nVVs
-----END PGP SIGNATURE-----