Diff of the two buildlogs: -- --- b1/build.log 2024-12-23 18:00:50.427441139 +0000 +++ b2/build.log 2024-12-23 18:02:28.671000163 +0000 @@ -1,6 +1,6 @@ I: pbuilder: network access will be disabled during build -I: Current time: Mon Dec 23 05:59:55 -12 2024 -I: pbuilder-time-stamp: 1734976795 +I: Current time: Mon Jan 26 14:23:53 +14 2026 +I: pbuilder-time-stamp: 1769387033 I: Building the build Environment I: extracting base tarball [/var/cache/pbuilder/unstable-reproducible-base.tgz] I: copying local configuration @@ -23,51 +23,83 @@ dpkg-source: info: unpacking debsig-verify_0.31.tar.xz I: Not using root during the build. I: Installing the build-deps -I: user script /srv/workspace/pbuilder/3485810/tmp/hooks/D02_print_environment starting +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/D01_modify_environment starting +debug: Running on infom02-amd64. +I: Changing host+domainname to test build reproducibility +I: Adding a custom variable just for the fun of it... +I: Changing /bin/sh to bash +'/bin/sh' -> '/bin/bash' +lrwxrwxrwx 1 root root 9 Jan 26 00:24 /bin/sh -> /bin/bash +I: Setting pbuilder2's login shell to /bin/bash +I: Setting pbuilder2's GECOS to second user,second room,second work-phone,second home-phone,second other +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/D01_modify_environment finished +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/D02_print_environment starting I: set - BUILDDIR='/build/reproducible-path' - BUILDUSERGECOS='first user,first room,first work-phone,first home-phone,first other' - BUILDUSERNAME='pbuilder1' - BUILD_ARCH='amd64' - DEBIAN_FRONTEND='noninteractive' + BASH=/bin/sh + BASHOPTS=checkwinsize:cmdhist:complete_fullquote:extquote:force_fignore:globasciiranges:globskipdots:hostcomplete:interactive_comments:patsub_replacement:progcomp:promptvars:sourcepath + BASH_ALIASES=() + BASH_ARGC=() + BASH_ARGV=() + BASH_CMDS=() + BASH_LINENO=([0]="12" [1]="0") + BASH_LOADABLES_PATH=/usr/local/lib/bash:/usr/lib/bash:/opt/local/lib/bash:/usr/pkg/lib/bash:/opt/pkg/lib/bash:. + BASH_SOURCE=([0]="/tmp/hooks/D02_print_environment" [1]="/tmp/hooks/D02_print_environment") + BASH_VERSINFO=([0]="5" [1]="2" [2]="37" [3]="1" [4]="release" [5]="x86_64-pc-linux-gnu") + BASH_VERSION='5.2.37(1)-release' + BUILDDIR=/build/reproducible-path + BUILDUSERGECOS='second user,second room,second work-phone,second home-phone,second other' + BUILDUSERNAME=pbuilder2 + BUILD_ARCH=amd64 + DEBIAN_FRONTEND=noninteractive DEB_BUILD_OPTIONS='buildinfo=+all reproducible=+all parallel=12 ' - DISTRIBUTION='unstable' - HOME='/root' - HOST_ARCH='amd64' + DIRSTACK=() + DISTRIBUTION=unstable + EUID=0 + FUNCNAME=([0]="Echo" [1]="main") + GROUPS=() + HOME=/root + HOSTNAME=i-capture-the-hostname + HOSTTYPE=x86_64 + HOST_ARCH=amd64 IFS=' ' - INVOCATION_ID='5e031dd1755345b888f07f908b73d23d' - LANG='C' - LANGUAGE='en_US:en' - LC_ALL='C' - MAIL='/var/mail/root' - OPTIND='1' - PATH='/usr/sbin:/usr/bin:/sbin:/bin:/usr/games' - PBCURRENTCOMMANDLINEOPERATION='build' - PBUILDER_OPERATION='build' - PBUILDER_PKGDATADIR='/usr/share/pbuilder' - PBUILDER_PKGLIBDIR='/usr/lib/pbuilder' - PBUILDER_SYSCONFDIR='/etc' - PPID='3485810' - PS1='# ' - PS2='> ' + INVOCATION_ID=0f8d6f3403c24865a31adda0982c884d + LANG=C + LANGUAGE=et_EE:et + LC_ALL=C + MACHTYPE=x86_64-pc-linux-gnu + MAIL=/var/mail/root + OPTERR=1 + OPTIND=1 + OSTYPE=linux-gnu + PATH=/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path + PBCURRENTCOMMANDLINEOPERATION=build + PBUILDER_OPERATION=build + PBUILDER_PKGDATADIR=/usr/share/pbuilder + PBUILDER_PKGLIBDIR=/usr/lib/pbuilder + PBUILDER_SYSCONFDIR=/etc + PIPESTATUS=([0]="0") + POSIXLY_CORRECT=y + PPID=3020602 PS4='+ ' - PWD='/' - SHELL='/bin/bash' - SHLVL='2' - SUDO_COMMAND='/usr/bin/timeout -k 18.1h 18h /usr/bin/ionice -c 3 /usr/bin/nice /usr/sbin/pbuilder --build --configfile /srv/reproducible-results/rbuild-debian/r-b-build.3rKBsrj5/pbuilderrc_e9TO --distribution unstable --hookdir /etc/pbuilder/first-build-hooks --debbuildopts -b --basetgz /var/cache/pbuilder/unstable-reproducible-base.tgz --buildresult /srv/reproducible-results/rbuild-debian/r-b-build.3rKBsrj5/b1 --logfile b1/build.log debsig-verify_0.31.dsc' - SUDO_GID='109' - SUDO_UID='104' - SUDO_USER='jenkins' - TERM='unknown' - TZ='/usr/share/zoneinfo/Etc/GMT+12' - USER='root' - _='/usr/bin/systemd-run' + PWD=/ + SHELL=/bin/bash + SHELLOPTS=braceexpand:errexit:hashall:interactive-comments:posix + SHLVL=3 + SUDO_COMMAND='/usr/bin/timeout -k 24.1h 24h /usr/bin/ionice -c 3 /usr/bin/nice -n 11 /usr/bin/unshare --uts -- /usr/sbin/pbuilder --build --configfile /srv/reproducible-results/rbuild-debian/r-b-build.3rKBsrj5/pbuilderrc_G5DC --distribution unstable --hookdir /etc/pbuilder/rebuild-hooks --debbuildopts -b --basetgz /var/cache/pbuilder/unstable-reproducible-base.tgz --buildresult /srv/reproducible-results/rbuild-debian/r-b-build.3rKBsrj5/b2 --logfile b2/build.log debsig-verify_0.31.dsc' + SUDO_GID=109 + SUDO_UID=104 + SUDO_USER=jenkins + TERM=unknown + TZ=/usr/share/zoneinfo/Etc/GMT-14 + UID=0 + USER=root + _='I: set' I: uname -a - Linux infom01-amd64 6.1.0-28-cloud-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.119-1 (2024-11-22) x86_64 GNU/Linux + Linux i-capture-the-hostname 6.11.10+bpo-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.11.10-1~bpo12+1 (2024-12-19) x86_64 GNU/Linux I: ls -l /bin - lrwxrwxrwx 1 root root 7 Nov 22 14:40 /bin -> usr/bin -I: user script /srv/workspace/pbuilder/3485810/tmp/hooks/D02_print_environment finished + lrwxrwxrwx 1 root root 7 Nov 22 2024 /bin -> usr/bin +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/D02_print_environment finished -> Attempting to satisfy build-dependencies -> Creating pbuilder-satisfydepends-dummy package Package: pbuilder-satisfydepends-dummy @@ -174,7 +206,7 @@ Get: 46 http://deb.debian.org/debian unstable/main amd64 libpkgconf3 amd64 1.8.1-4 [36.4 kB] Get: 47 http://deb.debian.org/debian unstable/main amd64 pkgconf-bin amd64 1.8.1-4 [30.2 kB] Get: 48 http://deb.debian.org/debian unstable/main amd64 pkgconf amd64 1.8.1-4 [26.2 kB] -Fetched 23.6 MB in 0s (80.0 MB/s) +Fetched 23.6 MB in 2s (13.7 MB/s) debconf: delaying package configuration, since apt-utils is not installed Selecting previously unselected package readline-common. (Reading database ... (Reading database ... 5% (Reading database ... 10% (Reading database ... 15% (Reading database ... 20% (Reading database ... 25% (Reading database ... 30% (Reading database ... 35% (Reading database ... 40% (Reading database ... 45% (Reading database ... 50% (Reading database ... 55% (Reading database ... 60% (Reading database ... 65% (Reading database ... 70% (Reading database ... 75% (Reading database ... 80% (Reading database ... 85% (Reading database ... 90% (Reading database ... 95% (Reading database ... 100% (Reading database ... 19967 files and directories currently installed.) @@ -385,7 +417,11 @@ Building tag database... -> Finished parsing the build-deps I: Building the package -I: Running cd /build/reproducible-path/debsig-verify-0.31/ && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games" HOME="/nonexistent/first-build" dpkg-buildpackage -us -uc -b && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games" HOME="/nonexistent/first-build" dpkg-genchanges -S > ../debsig-verify_0.31_source.changes +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/A99_set_merged_usr starting +Not re-configuring usrmerge for unstable +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/A99_set_merged_usr finished +hostname: Name or service not known +I: Running cd /build/reproducible-path/debsig-verify-0.31/ && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path" HOME="/nonexistent/second-build" dpkg-buildpackage -us -uc -b && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path" HOME="/nonexistent/second-build" dpkg-genchanges -S > ../debsig-verify_0.31_source.changes dpkg-buildpackage: info: source package debsig-verify dpkg-buildpackage: info: source version 0.31 dpkg-buildpackage: info: source distribution unstable @@ -435,8 +471,8 @@ checking whether make sets $(MAKE)... yes checking whether make supports the include directive... yes (GNU style) checking whether make supports nested variables... yes -checking whether UID '1111' is supported by ustar format... yes -checking whether GID '1111' is supported by ustar format... yes +checking whether UID '2222' is supported by ustar format... yes +checking whether GID '2222' is supported by ustar format... yes checking how to create a ustar tar archive... gnutar checking dependency style of gcc... none checking whether make supports nested variables... (cached) yes @@ -522,7 +558,7 @@ make[2]: Entering directory '/build/reproducible-path/debsig-verify-0.31/build-tree/test' make check-local make[3]: Entering directory '/build/reproducible-path/debsig-verify-0.31/build-tree/test' -/bin/bash ../../test/testsuite -j12 --verbose +/bin/sh ../../test/testsuite -j12 --verbose ## ------------------------------ ## ## debsig-verify 0.31 test suite. ## ## ------------------------------ ## @@ -538,20 +574,18 @@ -5. debsig-sig.at:16: testing deb no validates, good sig, no policy dir ... +3. debsig-sig.at:3: testing deb no validates, no sig ... 6. debsig-sig.at:23: testing deb no validates, good sig, no policy (fprid) ... 8. debsig-sig.at:39: testing deb validates with fprid, fprid db ... -10. debsig-sig.at:53: testing deb validates with nameid, fprid db ... -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +4. debsig-sig.at:9: testing deb no validates, bad sig ... +1. debsig-cmd.at:3: testing debsig-verify --version ... +../../test/debsig-cmd.at:5: debsig-verify --version 2. debsig-cmd.at:8: testing debsig-verify --help ... ../../test/debsig-cmd.at:10: debsig-verify --help -9. debsig-sig.at:46: testing deb validates with keyid, fprid db ... -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. stdout: -1. debsig-cmd.at:3: testing debsig-verify --version ... -../../test/debsig-cmd.at:5: debsig-verify --version +5. debsig-sig.at:16: testing deb no validates, good sig, no policy dir ... stdout: +9. debsig-sig.at:46: testing deb validates with keyid, fprid db ... Debsig Program Version - 0.31 Signature Version - 1.0 Signature Namespace - https://www.debian.org/debsig/1.0/ @@ -571,16 +605,17 @@ --root Use an alternative root directory for policy lookup. --help Output usage info, and exit. --version Output version info, and exit. -2. debsig-cmd.at:8: ok -1. debsig-cmd.at:3: ok -12. debsig-sig.at:69: testing deb validates with keyid, keyid db ... 11. debsig-sig.at:60: testing deb validates with fprid, keyid db ... -4. debsig-sig.at:9: testing deb no validates, bad sig ... -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +1. debsig-cmd.at:3: 10. debsig-sig.at:53: testing deb validates with nameid, fprid db ... + ok 7. debsig-sig.at:31: testing deb no validates, good sig, no policy (keyid) ... -3. debsig-sig.at:3: testing deb no validates, no sig ... - +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +12. debsig-sig.at:69: testing deb validates with keyid, keyid db ... +2. debsig-cmd.at:8: ok dpkg-deb: building package 'debraw' in 'debraw_1.0.deb'. dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. @@ -588,48 +623,23 @@ dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. 13. debsig-sig.at:78: testing deb validates with nameid, keyid db ... -14. debsig-sig.at:87: testing deb validates with subkey, fprid, fprid db ... -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. + ../../test/debsig-sig.at:6: $DEBSIG debraw_1.0.deb +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. stdout: +14. debsig-sig.at:87: testing deb validates with subkey, fprid, fprid db ... debsig: Starting verification for: debraw_1.0.deb debsig: Origin Signature check failed. This deb might not be signed. 3. debsig-sig.at:3: ok - -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -15. debsig-sig.at:95: testing deb validates with subkey, keyid, fprid db ... -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: keybox '/tmp/debsig-test-tmp.Tv4foFv3t0/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.jVtEgiTInm/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.nrZZf4DkzN/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.bwZDPnXIqD/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.41yiA09ncN/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.jw0wDvksZm/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.cVGgvR6UxX/pubring.kbx' created + +gpg: keybox '/tmp/debsig-test-tmp.uY4uR5jGkV/pubring.kbx' created gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.LmV6s3RtlW/pubring.kbx' created +gpg: enabled compatibility flags: +gpg: keybox '/tmp/debsig-test-tmp.iAgBJm6smI/pubring.kbx' created gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported gpg: Total number processed: 1 @@ -639,213 +649,265 @@ gpg: enabled compatibility flags: gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: Total number processed: 1 -gpg: imported: 1 +15. debsig-sig.at:95: testing deb validates with subkey, keyid, fprid db ... gpg: enabled compatibility flags: -gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: Total number processed: 1 -gpg: imported: 1 -gpg: Total number processed: 1 -gpg: imported: 1 +gpg: enabled compatibility flags: +gpg: keybox '/tmp/debsig-test-tmp.1ieNx7gbZa/pubring.kbx' created +gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: enabled compatibility flags: +gpg: keybox '/tmp/debsig-test-tmp.7CyCifXpbN/pubring.kbx' created +gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: enabled compatibility flags: gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported +gpg: enabled compatibility flags:gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -gpg: enabled compatibility flags: -gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: Total number processed: 1 -gpg: imported: 1 -gpg: enabled compatibility flags: -gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported +gpg: keybox '/tmp/debsig-test-tmp.GuT5D3T1oA/pubring.kbx' created gpg: Total number processed: 1 gpg: imported: 1 + +gpg: keybox '/tmp/debsig-test-tmp.mSZkCTSZXA/pubring.kbxgpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported gpg: Total number processed: 1 gpg: imported: 1 +' created +gpg: Total number processed: 1gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: imported: 1 + +gpg: enabled compatibility flags: gpg: enabled compatibility flags: +gpg: enabled compatibility flags: +gpg: keybox '/tmp/debsig-test-tmp.8tYr7XF2xs/pubring.kbx' created +gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed +gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: Total number processed: 1 +gpg: imported: 1 +gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed +gpg: enabled compatibility flags:gpg: enabled compatibility flags:gpg: enabled compatibility flags: +gpg: Total number processed: 1 +gpg: imported: 1 + + gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -gpg: enabled compatibility flags: gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: enabled compatibility flags: -gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed +gpg: enabled compatibility flags: +gpg: enabled compatibility flags: +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +gpg: keybox '/tmp/debsig-test-tmp.4eIEHAF4sr/pubring.kbx' created +gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: keybox '/tmp/debsig-test-tmp.rOL2IdmULv/pubring.kbx' created +gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key + gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 -gpg: unchanged: 1 +gpg: unchanged: 1gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported + gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: Total number processed: 1 +gpg: imported: 1 +gpg: enabled compatibility flags: +gpg: keybox '/tmp/debsig-test-tmp.kpgCHmU4Xq/pubring.kbx' created +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: enabled compatibility flags:gpg: Total number processed: 1 +gpg: imported: 1 +gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported + +gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -../../test/debsig-sig.at:13: $DEBSIG debsig_1.0.deb -../../test/debsig-sig.at:57: $DEBSIG --use-policy nameid.pol debsig_1.0.deb -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: keybox '/tmp/debsig-test-tmp.1hj9BE9XFx/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.Ftd6Zhbna2/pubring.kbx' created -gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.0SabGQIUj2/pubring.kbx' created -gpg: pub rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.lLHuU0EvJI/pubring.kbx' created -gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported gpg: Total number processed: 1 gpg: imported: 1 +gpg: enabled compatibility flags:gpg: enabled compatibility flags: + +gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key +gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed gpg: enabled compatibility flags: -gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed -gpg: Total number processed: 1 -gpg: imported: 1 +gpg: keybox '/tmp/debsig-test-tmp.ataLsUmY0B/pubring.kbx' created +gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported +gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed gpg: Total number processed: 1 gpg: imported: 1 -gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported -gpg: enabled compatibility flags: -gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed -gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported -gpg: key 4832DEA0A066232B: secret key imported +gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported +gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported +gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 -gpg: imported: 1 -../../test/debsig-sig.at:43: $DEBSIG debsig_1.0.deb +gpg: unchanged: 1 +gpg: secret keys read: 1 +gpg: secret keys imported: 1 gpg: enabled compatibility flags: -gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported -../../test/debsig-sig.at:27: mkdir -p policies/$TESTFPRID -$DEBSIG --policies-dir "policies" debsig_1.0.deb +../../test/debsig-sig.at:20: $DEBSIG --policies-dir "nonexistent" debsig_1.0.deb ../../test/debsig-sig.at:64: mkdir -p policies/$TESTKEYID cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID $DEBSIG --policies-dir policies debsig_1.0.deb +gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed +gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported gpg: key 4832DEA0A066232B: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -../../test/debsig-sig.at:20: $DEBSIG --policies-dir "nonexistent" debsig_1.0.deb -../../test/debsig-sig.at:50: $DEBSIG --use-policy keyid.pol debsig_1.0.deb +stdout: +../../test/debsig-sig.at:35: mkdir -p policies/$TESTKEYID +$DEBSIG --policies-dir "policies" debsig_1.0.deb +debsig: Starting verification for: debsig_1.0.deb +debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key +debsig: Could not find Origin directory for B2551A215CE5C74584C6AE0DE9F3837DB59CDACD + +5. debsig-sig.at:16: ok +../../test/debsig-sig.at:13: $DEBSIG debsig_1.0.deb +../../test/debsig-sig.at:43: $DEBSIG debsig_1.0.deb +stdout: +gpg: enabled compatibility flags:debsig: Starting verification for: debsig_1.0.deb +debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key +debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring +debsig: Using policy directory: policies/E9F3837DB59CDACD +debsig: No applicable policy found. + +gpg: keybox '/tmp/debsig-test-tmp.CtB9Wp9UMI/pubring.kbx../../test/debsig-sig.at:82: mkdir -p policies/$TESTKEYID +cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID +$DEBSIG --policies-dir policies --use-policy nameid.pol debsig_1.0.deb +7. debsig-sig.at:31: ok +' created +gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported ../../test/debsig-sig.at:73: mkdir -p policies/$TESTKEYID cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID $DEBSIG --policies-dir policies --use-policy keyid.pol debsig_1.0.deb -gpg: enabled compatibility flags: -gpg: sec rsa4096/E9F3837DB59CDACD 2022-07-18 Debsig Origin Test Key -gpg: key E9F3837DB59CDACD: "Debsig Origin Test Key " not changed -gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported -gpg: key E9F3837DB59CDACD: secret key imported gpg: Total number processed: 1 -gpg: unchanged: 1 -gpg: secret keys read: 1 -gpg: secret keys imported: 1 -gpg: key E9F3837DB59CDACD/E9F3837DB59CDACD: secret key imported -gpg: key E9F3837DB59CDACD: secret key imported +gpg: imported: 1 + +../../test/debsig-sig.at:57: $DEBSIG --use-policy nameid.pol debsig_1.0.deb +../../test/debsig-sig.at:92: $DEBSIG debsig_1.0.deb +../../test/debsig-sig.at:50: $DEBSIG --use-policy keyid.pol debsig_1.0.deb +gpg: enabled compatibility flags:../../test/debsig-sig.at:27: mkdir -p policies/$TESTFPRID +$DEBSIG --policies-dir "policies" debsig_1.0.deb +stderr: + +gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed +16. debsig-sig.at:103: testing deb validates with subkey, subid, fprid db ... +gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC +gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +gpg: Good signature from "Debsig Origin Test Key " [unknown] +gpg: WARNING: This key is not certified with a trusted signature! +gpg: There is no indication that the signature belongs to the owner. +Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD +gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported +gpg: key 4832DEA0A066232B: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -stderr: -stdout: -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC -gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -gpg: BAD signature from "Debsig Origin Test Key " [unknown] -stdout: stdout: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: Could not find Origin directory for B2551A215CE5C74584C6AE0DE9F3837DB59CDACD - -stderr: -debsig: Starting verification for: debsig_1.0.deb -debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring -debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/nameid.pol -debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/nameid.pol' +debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring +debsig: Using policy directory: policies/E9F3837DB59CDACD +debsig: Parsing policy file: policies/E9F3837DB59CDACD/keyid.pol +debsig: parsePolicyFile: parsing 'policies/E9F3837DB59CDACD/keyid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring -debsig: getKeyID: mapped Debsig Origin Test Key -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/nameid.pol +debsig: Using policy file: policies/E9F3837DB59CDACD/keyid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring -debsig: getKeyID: mapped B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: sigVerify: gpg exited abnormally or with non-zero exit status -debsig: verifyGroupRules: failed for origin -debsig: Verification group failed checks. -debsig: Failed verification for debsig_1.0.deb. -4. debsig-sig.at:9: ok -5. debsig-sig.at:16: ok +debsig: Verification group(s) passed, deb is validated. +debsig: Verified package from 'Debsig testing' (Debsig) +11. debsig-sig.at:60: ok + +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +stdout: +17. debsig-sig.at:111: testing deb validates with subkey, nameid, fprid db ... debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: getDbPathname: using policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring debsig: Using policy directory: policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: No applicable policy found. -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC +6. debsig-sig.at:23: ok + +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +18. debsig-sig.at:119: testing deb validates with subkey, fprid, keyid db ... +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. + +19. debsig-sig.at:129: testing deb validates with subkey, keyid, keyid db ... +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +stderr: +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD stdout: -6. debsig-sig.at:23: ok - +stderr: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring @@ -867,17 +929,19 @@ debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -10. debsig-sig.at:53: ok - -stderr: stderr: -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC +gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +gpg: BAD signature from "Debsig Origin Test Key " [unknown] +stdout: +10. debsig-sig.at:53: gpg: Signature made Mon Jan 26 00:25:19 2026 UTC gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD stdout: + ok debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring @@ -897,18 +961,10 @@ debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: Verification group(s) passed, deb is validated. -debsig: Verified package from 'Debsig testing' (Debsig) -16. debsig-sig.at:103: testing deb validates with subkey, subid, fprid db ... -9. debsig-sig.at:46: ok - -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC -gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -gpg: Good signature from "Debsig Origin Test Key " [unknown] -gpg: WARNING: This key is not certified with a trusted signature! -gpg: There is no indication that the signature belongs to the owner. -Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD -stdout: +debsig: sigVerify: gpg exited abnormally or with non-zero exit status +debsig: verifyGroupRules: failed for origin +debsig: Verification group failed checks. +debsig: Failed verification for debsig_1.0.deb. debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring @@ -930,68 +986,51 @@ debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -11. debsig-sig.at:60: ok - +13. debsig-sig.at:78: ok +4. debsig-sig.at:9: ok +stderr: stderr: -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD stdout: +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC +gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +gpg: Good signature from "Debsig Origin Test Key " [unknown] +gpg: WARNING: This key is not certified with a trusted signature! +gpg: There is no indication that the signature belongs to the owner. +Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring -debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/nameid.pol -debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/nameid.pol' +debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring +debsig: Using policy directory: policies/E9F3837DB59CDACD +debsig: Parsing policy file: policies/E9F3837DB59CDACD/keyid.pol +debsig: parsePolicyFile: parsing 'policies/E9F3837DB59CDACD/keyid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring -debsig: getKeyID: mapped Debsig Origin Test Key -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/nameid.pol +debsig: Using policy file: policies/E9F3837DB59CDACD/keyid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring -debsig: getKeyID: mapped B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -18. debsig-sig.at:119: testing deb validates with subkey, fprid, keyid db ... - -8. debsig-sig.at:39: ok -17. debsig-sig.at:111: testing deb validates with subkey, nameid, fprid db ... - -21. debsig-sig.at:149: testing deb validates with subkey, nameid, keyid db ... -19. debsig-sig.at:129: testing deb validates with subkey, keyid, keyid db ... -20. debsig-sig.at:139: testing deb validates with subkey, subid, keyid db ... -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -../../test/debsig-sig.at:100: $DEBSIG --use-policy keyid.pol debsig_1.0.deb -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -../../test/debsig-sig.at:35: mkdir -p policies/$TESTKEYID -$DEBSIG --policies-dir "policies" debsig_1.0.deb -dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. -stderr: -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC -gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -gpg: Good signature from "Debsig Origin Test Key " [unknown] -gpg: WARNING: This key is not certified with a trusted signature! -gpg: There is no indication that the signature belongs to the owner. -Primary key fingerprint: B255 1A21 5CE5 C745 84C6 AE0D E9F3 837D B59C DACD stdout: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring -debsig: Using policy directory: policies/E9F3837DB59CDACD -debsig: Parsing policy file: policies/E9F3837DB59CDACD/keyid.pol -debsig: parsePolicyFile: parsing 'policies/E9F3837DB59CDACD/keyid.pol' +debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring +debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/keyid.pol +debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/keyid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... @@ -999,7 +1038,7 @@ debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: policies/E9F3837DB59CDACD/keyid.pol +debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/keyid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring @@ -1008,18 +1047,15 @@ debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) 12. debsig-sig.at:69: ok -../../test/debsig-sig.at:82: mkdir -p policies/$TESTKEYID -cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID -$DEBSIG --policies-dir policies --use-policy nameid.pol debsig_1.0.deb +8. debsig-sig.at:39: ok + + +20. debsig-sig.at:139: testing deb validates with subkey, subid, keyid db ... +21. debsig-sig.at:149: testing deb validates with subkey, nameid, keyid db ... +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. +dpkg-deb: building package 'debsig' in 'debsig_1.0.deb'. stderr: -stdout: -debsig: Starting verification for: debsig_1.0.deb -debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring -debsig: Using policy directory: policies/E9F3837DB59CDACD -debsig: No applicable policy found. -7. debsig-sig.at:31: ok -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1048,9 +1084,9 @@ debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -15. debsig-sig.at:95: ok +14. debsig-sig.at:87: ok stderr: -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC gpg: using RSA key B2551A215CE5C74584C6AE0DE9F3837DB59CDACD gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1059,33 +1095,30 @@ stdout: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key -debsig: getDbPathname: using policies/E9F3837DB59CDACD keyring -debsig: Using policy directory: policies/E9F3837DB59CDACD -debsig: Parsing policy file: policies/E9F3837DB59CDACD/nameid.pol -debsig: parsePolicyFile: parsing 'policies/E9F3837DB59CDACD/nameid.pol' +debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD keyring +debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/keyid.pol +debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/keyid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring -debsig: getKeyID: mapped Debsig Origin Test Key -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: policies/E9F3837DB59CDACD/nameid.pol +debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/keyid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/B2551A215CE5C74584C6AE0DE9F3837DB59CDACD/pubring.pgp keyring -debsig: getKeyID: mapped B2551A215CE5C74584C6AE0DE9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD +debsig: getKeyID: mapped E9F3837DB59CDACD -> B2551A215CE5C74584C6AE0DE9F3837DB59CDACD debsig: getSigKeyID: got B2551A215CE5C74584C6AE0DE9F3837DB59CDACD for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -13. debsig-sig.at:78: ok -../../test/debsig-sig.at:92: $DEBSIG debsig_1.0.deb -gpg: enabled compatibility flags: -gpg: keybox '/tmp/debsig-test-tmp.cUrmrx54r8/pubring.kbx' created -gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported +../../test/debsig-sig.at:100: $DEBSIG --use-policy keyid.pol debsig_1.0.deb +9. debsig-sig.at:46: ok stderr: -gpg: Signature made Mon Dec 23 18:00:43 2024 UTC +gpg: enabled compatibility flags: +gpg: Signature made Mon Jan 26 00:25:19 2026 UTC gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1093,29 +1126,33 @@ Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 stdout: -gpg: Total number processed: 1 -gpg: imported: 1 debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 keyring debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol -debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol' +debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/keyid.pol +debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/keyid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped 4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol +debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/keyid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped 4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) +15. debsig-sig.at:95: ok +gpg: keybox '/tmp/debsig-test-tmp.BPBdI6zvMP/pubring.kbx' created +gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported +gpg: Total number processed: 1 +gpg: imported: 1 gpg: enabled compatibility flags: gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed @@ -1126,48 +1163,31 @@ gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -14. debsig-sig.at:87: ok -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: -gpg: enabled compatibility flags: +../../test/debsig-sig.at:108: $DEBSIG --use-policy subid.pol debsig_1.0.deb gpg: enabled compatibility flags: -gpg: keybox '/tmp/debsig-test-tmp.bOUPTxNqi8/pubring.kbx' created +gpg: keybox '/tmp/debsig-test-tmp.C7BkTns5NN/pubring.kbx' created gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.vEOTSRWYO2/pubring.kbx' created -gpg: enabled compatibility flags: -gpg: keybox '/tmp/debsig-test-tmp.fUR3WVq8sT/pubring.kbx' created +gpg: enabled compatibility flags:gpg: enabled compatibility flags: +gpg: keybox '/tmp/debsig-test-tmp.yBVlk2XsCZ/pubring.kbx' created gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key + +gpg: keybox '/tmp/debsig-test-tmp.VQmHgdSt2T/pubring.kbx' created gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported -gpg: Total number processed: 1 -gpg: imported: 1 -gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported -gpg: keybox '/tmp/debsig-test-tmp.ZIZF6VmLmE/pubring.kbx' created -gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: enabled compatibility flags: gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported gpg: Total number processed: 1 gpg: imported: 1 +gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported gpg: enabled compatibility flags: -gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed gpg: Total number processed: 1 gpg: imported: 1 -gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported gpg: Total number processed: 1 gpg: imported: 1 -gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported -gpg: key 4832DEA0A066232B: secret key imported -gpg: Total number processed: 1 -gpg: unchanged: 1 -gpg: secret keys read: 1 -gpg: secret keys imported: 1 gpg: enabled compatibility flags: gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed gpg: enabled compatibility flags: -gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key -gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed gpg: enabled compatibility flags: gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported @@ -1177,22 +1197,25 @@ gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported +gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported gpg: key 4832DEA0A066232B: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported gpg: key 4832DEA0A066232B: secret key imported gpg: Total number processed: 1 gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 -gpg: keybox '/tmp/debsig-test-tmp.bvaLJCbuQL/pubring.kbx' created +gpg: keybox '/tmp/debsig-test-tmp.CXgSihTSME/pubring.kbx' created +gpg: keybox '/tmp/debsig-test-tmp.tvzUSXzCRT/pubring.kbx' created gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported gpg: Total number processed: 1 @@ -1200,7 +1223,14 @@ gpg: enabled compatibility flags: gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed -../../test/debsig-sig.at:116: $DEBSIG --use-policy nameid.pol debsig_1.0.deb +gpg: pub rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: public key "Debsig Origin Test Key " imported +gpg: Total number processed: 1 +gpg: imported: 1 +gpg: enabled compatibility flags: +gpg: sec rsa4096/4832DEA0A066232B 2023-12-20 Debsig Origin Test Key +gpg: key 4832DEA0A066232B: "Debsig Origin Test Key " not changed +gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported gpg: key 4832DEA0A066232B/4832DEA0A066232B: secret key imported gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported gpg: key 4832DEA0A066232B: secret key imported @@ -1208,8 +1238,15 @@ gpg: unchanged: 1 gpg: secret keys read: 1 gpg: secret keys imported: 1 +gpg: key 4832DEA0A066232B/4C2E30ED5C790356: secret key imported +gpg: key 4832DEA0A066232B: secret key imported +gpg: Total number processed: 1 +gpg: unchanged: 1 +gpg: secret keys read: 1 +gpg: secret keys imported: 1 +../../test/debsig-sig.at:116: $DEBSIG --use-policy nameid.pol debsig_1.0.deb stderr: -gpg: Signature made Mon Dec 23 18:00:44 2024 UTC +gpg: Signature made Mon Jan 26 00:25:20 2026 UTC gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1221,16 +1258,16 @@ debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 keyring debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/nameid.pol -debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/nameid.pol' +debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol +debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped Debsig Origin Test Key -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/nameid.pol +debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring @@ -1238,22 +1275,21 @@ debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -17. debsig-sig.at:111: ok +16. debsig-sig.at:103: ok ../../test/debsig-sig.at:144: mkdir -p policies/$TESTKEYID cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID $DEBSIG --policies-dir policies --use-policy subid.pol debsig_1.0.deb +../../test/debsig-sig.at:154: mkdir -p policies/$TESTKEYID +cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID +$DEBSIG --policies-dir policies --use-policy nameid.pol debsig_1.0.deb ../../test/debsig-sig.at:124: mkdir -p policies/$TESTKEYID cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID $DEBSIG --policies-dir policies debsig_1.0.deb ../../test/debsig-sig.at:134: mkdir -p policies/$TESTKEYID cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID $DEBSIG --policies-dir policies --use-policy keyid.pol debsig_1.0.deb -../../test/debsig-sig.at:108: $DEBSIG --use-policy subid.pol debsig_1.0.deb stderr: -../../test/debsig-sig.at:154: mkdir -p policies/$TESTKEYID -cp -a $TESTPOLICIES/$TESTFPRID/* policies/$TESTKEYID -$DEBSIG --policies-dir policies --use-policy nameid.pol debsig_1.0.deb -gpg: Signature made Mon Dec 23 18:00:44 2024 UTC +gpg: Signature made Mon Jan 26 00:25:20 2026 UTC gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1261,21 +1297,20 @@ Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 stdout: -stderr: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key -debsig: getDbPathname: using policies/4C2E30ED5C790356 keyring -debsig: Using policy directory: policies/4C2E30ED5C790356 -debsig: Parsing policy file: policies/4C2E30ED5C790356/subid.pol -debsig: parsePolicyFile: parsing 'policies/4C2E30ED5C790356/subid.pol' +debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 keyring +debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/nameid.pol +debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/nameid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped Debsig Origin Test Key -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: policies/4C2E30ED5C790356/subid.pol +debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/nameid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring @@ -1283,18 +1318,9 @@ debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -20. debsig-sig.at:139: ok -stderr: -gpg: Signature made Mon Dec 23 18:00:44 2024 UTC -gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -gpg: Good signature from "Debsig Origin Test Key " [unknown] -gpg: WARNING: This key is not certified with a trusted signature! -gpg: There is no indication that the signature belongs to the owner. -Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B - Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 -stdout: +17. debsig-sig.at:111: ok stderr: -gpg: Signature made Mon Dec 23 18:00:44 2024 UTC +gpg: Signature made Mon Jan 26 00:25:20 2026 UTC gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1304,10 +1330,10 @@ stdout: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key -debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 keyring -debsig: Using policy directory: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -debsig: Parsing policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol -debsig: parsePolicyFile: parsing '/build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol' +debsig: getDbPathname: using policies/4C2E30ED5C790356 keyring +debsig: Using policy directory: policies/4C2E30ED5C790356 +debsig: Parsing policy file: policies/4C2E30ED5C790356/subid.pol +debsig: parsePolicyFile: parsing 'policies/4C2E30ED5C790356/subid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... @@ -1315,7 +1341,7 @@ debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: /build/reproducible-path/debsig-verify-0.31/build-tree/../test/policies/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/subid.pol +debsig: Using policy file: policies/4C2E30ED5C790356/subid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring @@ -1323,7 +1349,9 @@ debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -gpg: Signature made Mon Dec 23 18:00:44 2024 UTC +20. debsig-sig.at:139: ok +stderr: +gpg: Signature made Mon Jan 26 00:25:20 2026 UTC gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 gpg: Good signature from "Debsig Origin Test Key " [unknown] gpg: WARNING: This key is not certified with a trusted signature! @@ -1331,7 +1359,6 @@ Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 stdout: -16. debsig-sig.at:103: ok debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: getDbPathname: using policies/4C2E30ED5C790356 keyring @@ -1354,20 +1381,37 @@ debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) 19. debsig-sig.at:129: ok +stderr: +stderr: +gpg: Signature made Mon Jan 26 00:25:20 2026 UTC +gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +gpg: Good signature from "Debsig Origin Test Key " [unknown] +gpg: WARNING: This key is not certified with a trusted signature! +gpg: There is no indication that the signature belongs to the owner. +Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B + Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 +stdout: +gpg: Signature made Mon Jan 26 00:25:20 2026 UTC +gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +gpg: Good signature from "Debsig Origin Test Key " [unknown] +gpg: WARNING: This key is not certified with a trusted signature! +gpg: There is no indication that the signature belongs to the owner. +Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B + Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: getDbPathname: using policies/4C2E30ED5C790356 keyring debsig: Using policy directory: policies/4C2E30ED5C790356 -debsig: Parsing policy file: policies/4C2E30ED5C790356/subid.pol -debsig: parsePolicyFile: parsing 'policies/4C2E30ED5C790356/subid.pol' +debsig: Parsing policy file: policies/4C2E30ED5C790356/nameid.pol +debsig: parsePolicyFile: parsing 'policies/4C2E30ED5C790356/nameid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped Debsig Origin Test Key -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: policies/4C2E30ED5C790356/subid.pol +debsig: Using policy file: policies/4C2E30ED5C790356/nameid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring @@ -1375,38 +1419,30 @@ debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) -18. debsig-sig.at:119: ok -stderr: -gpg: Signature made Mon Dec 23 18:00:44 2024 UTC -gpg: using RSA key 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -gpg: Good signature from "Debsig Origin Test Key " [unknown] -gpg: WARNING: This key is not certified with a trusted signature! -gpg: There is no indication that the signature belongs to the owner. -Primary key fingerprint: 900A C211 3233 F5DF 47C0 B665 4832 DEA0 A066 232B - Subkey fingerprint: 0DB5 9D1F 9C5B 1C3A 4504 175B 4C2E 30ED 5C79 0356 stdout: debsig: Starting verification for: debsig_1.0.deb debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: getDbPathname: using policies/4C2E30ED5C790356 keyring debsig: Using policy directory: policies/4C2E30ED5C790356 -debsig: Parsing policy file: policies/4C2E30ED5C790356/nameid.pol -debsig: parsePolicyFile: parsing 'policies/4C2E30ED5C790356/nameid.pol' +debsig: Parsing policy file: policies/4C2E30ED5C790356/keyid.pol +debsig: parsePolicyFile: parsing 'policies/4C2E30ED5C790356/keyid.pol' debsig: parsePolicyFile: completed debsig: Checking Selection group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped Debsig Origin Test Key -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped 4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Selection group(s) passed, policy is usable. -debsig: Using policy file: policies/4C2E30ED5C790356/nameid.pol +debsig: Using policy file: policies/4C2E30ED5C790356/keyid.pol debsig: Checking Verification group(s). debsig: Processing 'origin' key... debsig: getDbPathname: using /build/reproducible-path/debsig-verify-0.31/build-tree/../test/keyrings/0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356/pubring.pgp keyring -debsig: getKeyID: mapped 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 +debsig: getKeyID: mapped 4C2E30ED5C790356 -> 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 debsig: getSigKeyID: got 0DB59D1F9C5B1C3A4504175B4C2E30ED5C790356 for origin key debsig: Verification group(s) passed, deb is validated. debsig: Verified package from 'Debsig testing' (Debsig) 21. debsig-sig.at:149: ok +18. debsig-sig.at:119: ok ## ------------- ## ## Test results. ## @@ -1425,8 +1461,8 @@ Making install in . make[2]: Entering directory '/build/reproducible-path/debsig-verify-0.31/build-tree' make[3]: Entering directory '/build/reproducible-path/debsig-verify-0.31/build-tree' - /usr/bin/mkdir -p '/build/reproducible-path/debsig-verify-0.31/debian/debsig-verify/usr/bin' /usr/bin/mkdir -p /build/reproducible-path/debsig-verify-0.31/debian/debsig-verify/etc/debsig/policies + /usr/bin/mkdir -p '/build/reproducible-path/debsig-verify-0.31/debian/debsig-verify/usr/bin' /usr/bin/mkdir -p /build/reproducible-path/debsig-verify-0.31/debian/debsig-verify/usr/share/debsig/keyrings /usr/bin/mkdir -p '/build/reproducible-path/debsig-verify-0.31/debian/debsig-verify/usr/share/man/man1' /usr/bin/install -c src/debsig-verify '/build/reproducible-path/debsig-verify-0.31/debian/debsig-verify/usr/bin' @@ -1467,8 +1503,8 @@ make[1]: Leaving directory '/build/reproducible-path/debsig-verify-0.31' dh_md5sums -O--builddir=build-tree dh_builddeb -O--builddir=build-tree -dpkg-deb: building package 'debsig-verify-dbgsym' in '../debsig-verify-dbgsym_0.31_amd64.deb'. dpkg-deb: building package 'debsig-verify' in '../debsig-verify_0.31_amd64.deb'. +dpkg-deb: building package 'debsig-verify-dbgsym' in '../debsig-verify-dbgsym_0.31_amd64.deb'. dpkg-genbuildinfo --build=binary -O../debsig-verify_0.31_amd64.buildinfo dpkg-genchanges --build=binary -O../debsig-verify_0.31_amd64.changes dpkg-genchanges: info: binary-only upload (no source code included) @@ -1476,12 +1512,14 @@ dpkg-buildpackage: info: binary-only upload (no source included) dpkg-genchanges: info: including full source code in upload I: copying local configuration +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/B01_cleanup starting +I: user script /srv/workspace/pbuilder/3020602/tmp/hooks/B01_cleanup finished I: unmounting dev/ptmx filesystem I: unmounting dev/pts filesystem I: unmounting dev/shm filesystem I: unmounting proc filesystem I: unmounting sys filesystem I: cleaning the build env -I: removing directory /srv/workspace/pbuilder/3485810 and its subdirectories -I: Current time: Mon Dec 23 06:00:49 -12 2024 -I: pbuilder-time-stamp: 1734976849 +I: removing directory /srv/workspace/pbuilder/3020602 and its subdirectories +I: Current time: Mon Jan 26 14:25:27 +14 2026 +I: pbuilder-time-stamp: 1769387127