Your message dated Wed, 06 Jul 2016 10:06:13 +0000
with message-id <[email protected]>
and subject line Bug#829478: fixed in shadowsocks-libev 2.4.7+20160630+ds-2
has caused the Debian Bug report #829478,
regarding shadowsocks-libev: modifies conffiles (policy 10.7.3):
/etc/shadowsocks-libev/config.json
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
829478: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829478
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: shadowsocks-libev
Version: 2.4.7+20160630+ds-1
Severity: serious
User: [email protected]
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package modifies conffiles.
This is forbidden by the policy, see
https://www.debian.org/doc/debian-policy/ch-files.html#s-config-files
10.7.3: "[...] The easy way to achieve this behavior is to make the
configuration file a conffile. [...] This implies that the default
version will be part of the package distribution, and must not be
modified by the maintainer scripts during installation (or at any
other time)."
Note that once a package ships a modified version of that conffile,
dpkg will prompt the user for an action how to handle the upgrade of
this modified conffile (that was not modified by the user).
Further in 10.7.3: "[...] must not ask unnecessary questions
(particularly during upgrades) [...]"
If a configuration file is customized by a maintainer script after
having asked some debconf questions, it may not be marked as a
conffile. Instead a template could be installed in /usr/share and used
by the postinst script to fill in the custom values and create (or
update) the configuration file (preserving any user modifications!).
This file must be removed during postrm purge.
ucf(1) may help with these tasks.
See also https://wiki.debian.org/DpkgConffileHandling
In https://lists.debian.org/debian-devel/2012/09/msg00412.html and
followups it has been agreed that these bugs are to be filed with
severity serious.
debsums reports modification of the following files,
from the attached log (scroll to the bottom...):
/etc/shadowsocks-libev/config.json
cheers,
Andreas
shadowsocks-libev_2.4.7+20160630+ds-1.log.gz
Description: application/gzip
--- End Message ---
--- Begin Message ---
Source: shadowsocks-libev
Source-Version: 2.4.7+20160630+ds-2
We believe that the bug you reported is fixed in the latest version of
shadowsocks-libev, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Roger Shimizu <[email protected]> (supplier of updated shadowsocks-libev
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 06 Jul 2016 01:49:40 +0200
Source: shadowsocks-libev
Binary: shadowsocks-libev libshadowsocks-libev1 libshadowsocks-libev-dev
Architecture: source
Version: 2.4.7+20160630+ds-2
Distribution: unstable
Urgency: medium
Maintainer: Roger Shimizu <[email protected]>
Changed-By: Roger Shimizu <[email protected]>
Description:
libshadowsocks-libev-dev - lightweight and secure socks5 proxy (development
files)
libshadowsocks-libev1 - lightweight and secure socks5 proxy (shared library)
shadowsocks-libev - lightweight and secure socks5 proxy
Closes: 829478
Changes:
shadowsocks-libev (2.4.7+20160630+ds-2) unstable; urgency=medium
.
* debian/control
- Move to git repo to collab-maint on alioth
* Change way to handle config file
Install config.json file to /usr/share/<pkg>, instead of /etc, and then
generate a config file under /etc, because conffile (under /etc) cannot
be modified by maintainer script according to Debian Policy.
Thanks help from Andreas Beckmann. (Closes: #829478)
Checksums-Sha1:
85cf9996f65e88e391a791dfa67cae53a38a856b 2347
shadowsocks-libev_2.4.7+20160630+ds-2.dsc
a7d56e3cf333527c37ddc268c76333977dce21e4 7596
shadowsocks-libev_2.4.7+20160630+ds-2.debian.tar.xz
Checksums-Sha256:
13c1691e944f7cf5b60151f2c57cd5a0d91f8d8258e596e31db76105df976015 2347
shadowsocks-libev_2.4.7+20160630+ds-2.dsc
f01ea40b9595d46a761210524e263ac17767666d8315189780e3e00931ba8131 7596
shadowsocks-libev_2.4.7+20160630+ds-2.debian.tar.xz
Files:
8b1ce37ca4edef7765362714879a7bae 2347 net extra
shadowsocks-libev_2.4.7+20160630+ds-2.dsc
1cce55733a7b9495235b13b9320de7dc 7596 net extra
shadowsocks-libev_2.4.7+20160630+ds-2.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=ojUj
-----END PGP SIGNATURE-----
--- End Message ---
