Package: dpkg
Version: 1.18.1
Severity: wishlist
Tags: patch
Usertags: umask toolchain


As part of the “reproducible builds” effort, we are curretly trying
to have Debian package build identically despite being built under
different umasks.

dpkg creates the control.tar member of .deb files using GNU Tar. It will
thus pick up the permissions of the files on the filesystem. For the
specific case of control files, there is a very limited set of
acceptable permissions. It seems desirable to enforce this by
normalizing the recorded permissions by giving the
`--mode=go=rX,u+rw,a-s` option to tar.

The attached patch is based on the available master branch. The change
is also part of the `pu/reproducible_builds` branch available at:

Lunar                                .''`.                    : :Ⓐ  :  # apt-get install anarchism
                                    `. `'` 

Attachment: signature.asc
Description: Digital signature

Reproducible-builds mailing list

Reply via email to