* Sun Dec 22 2024 Sebastian Wagner <sebix@sebix.at>
- update to version 284:
- Simplify tests_quines.py::test_{differences,differences_deb} to use
assert_diff and not mangle the expected test output.
- Update some tests to support file(1) version 5.46.
(Closes: reproducible-builds/diffoscope#395)
- update test skips, remove test_diff, add test_obj_identification
* Mon Dec 02 2024 Sebastian Wagner <sebix@sebix.at>
- update to version 283:
- Fix crash when objdump is missing when checking .EFI files.
- update to version 282:
- Ignore errors when listing .ar archives. (Closes: #1085257)
- Update copyright years.
- update to version 281:
- Don't try and test with systemd-ukify within Debian stable.
- Add support for UKI files.
- update to version 280:
- Drop Depends on deprecated python3-pkg-resources. (Closes: #1083362)
- update to version 279:
- Drop removal of calculated basename from readelf output.
(Closes: reproducible-builds/diffoscope#394)
- update to version 278:
- Temporarily remove procyon-decompiler from Build-Depends as it was removed
from testing (#1057532). (Closes: #1082636)
- Add a helpful contextual message to the output if comparing Debian .orig
tarballs within .dsc files without the ability to "fuzzy-match" away the
leading directory. (Closes: reproducible-builds/diffoscope#386)
- Correctly invert "X% similar" value and do not emit "100% similar".
(Closes: reproducible-builds/diffoscope#391)
- Update copyright years.
- update to version 277:
- Don't crash when attempting to hashing symlinks with targets that point to
a directory.
- update to version 276:
- Also catch RuntimeError when importing PyPDF so that PyPDF or, crucially,
its transitive dependencies do not cause diffoscope to traceback at runtime
and build time. (Closes: #1078944, reproducible-builds/diffoscope#389)
- Factor out a method for stripping ANSI escapes.
- Strip ANSI escapes from the output of Procyon. Thanks, Aman Sharma!
- Update copyright years.
- update to version 275:
- Update the test_zip.py text fixtures and definitions to support new changes
to IO::Compress. (Closes: #1078050)
- Do not call marshal.loads(...) of precompiled Python bytecode as it is
inherently unsafe. Replace, at least for now, with a brief summary of the
code section of .pyc files. (Re: reproducible-builds/diffoscope#371)
- Don't bother to check the Python version number in test_python.py: the
fixture for this test is deterministic/fixed.
- Update copyright years.
- update to version 274:
- Add support for IO::Compress::Zip >= 2.212. (Closes: #1078050)
- Don't include debug output when calling dumppdf(1).
- Append output from dumppdf(1) in more cases.
(Closes: reproducible-builds/diffoscope#387)
- Update copyright years.
- Update the available architectures for test dependencies.
- update to version 273:
- Factor out version detection in test_jpeg_image. (Re:
reproducible-builds/diffoscope#384)
- Ensure that 'convert' is from Imagemagick 6.x; we will need to update a
few things with IM7. (Closes: reproducible-builds/diffoscope#384)
- Correct import of identify_version after refactoring change in 037bdcbb0.
- tests:
+ Add OpenSSH key test with a ed25519 key.
+ Skip the OpenSSH test with DSA key if openssh is >> 9.7
+ Support ffmpeg >= 7 that adds some extra context to the diff
- Do not ignore testing in gitlab-ci.
* Tue Jul 09 2024 Dirk Müller <dmueller@suse.com>
- update to 272:
* Move away from using DSA OpenSSH keys in tests; support has
been removed in OpenSSH 9.8p1.
* Move to assert_diff helper in test_openssh_pub_key.py
* Update tests to support zipdetails version 4.004 shipped with
Perl 5.40.
* Drop apktool from Build-Depends; we can still test our APK
code via autopkgtests. (Closes: #1071410)
* Fix tests for 7zip version 24.05.
* Add a versioned dependency for at least version 5.4.5 for the
xz tests; they fail under (at least xz 5.2.8).
* Relax Chris' versioned xz test dependency (5.4.5) to also
allow version 5.4.1.
* Include "xz --verbose --verbose" (ie. double --verbose)
output, not just the single --verbose. (Closes: #1069329)
* Only include "xz --list" output if the xz has no other
differences.
* Use "xz --list" to supplement the output when comparing .xz
archives; essential when some underlying metadata differs.
* Actually append the xz --list after the container
differences, as it simplifies tests and the output.
* Maintain an in-header boolean state to determine whether to
drop from-file/to-file lines. This fixes an issue where HTML
differences were being inadvertendly neglected.
* Mon Apr 22 2024 Joshua Smith <smolsheep@opensuse.org>
- Update to 265:
* Ensure that tests with ">=" version constraints actually print
the corresponding tool name.
(Closes: reproducible-builds/diffoscope#370)
* Prevent odt2txt tests from always being skipped due to an
impossibly new version requirement.
(Closes: reproducible-builds/diffoscope#369)
* Avoid nested parens-in-parens when printing "skipping…"
messages in the testsuite.
- Update to 264:
* Don't crash on invalid zipfiles, even if we encounter 'badness'
halfway through the file. (Re: #1068705)
* Add note when there are duplicate entries in ZIP files.
(Closes: reproducible-builds/diffoscope!140)
* Add an external tool reference for GNU Guix for zipdetails.
- Update to 263:
* Add support for the zipdetails(1) tool included in the Perl
distribution.
* Don't use parenthesis within test "skipping…" messages; PyTest
adds its own parenthesis, so we were ending up with double
nested parens.
* Fix the .epub tests after supporting zipdetails(1).
* Update copyright years and debian/tests/control.
* Fix MozillaZipContainer's monkeypatch after Python's zipfile
module changed to detect potentially insecure overlapping
entries within .zip files.
(Closes: reproducible-builds/diffoscope#362)
- Update to 262:
* Factor out Python version checking in test_zip.py. (Re: #362)
* Also skip some zip tests under 3.10.14 as well; a potential
regression may have been backported to the 3.10.x series. The
underlying cause is still to be investigated. (Re: #362)
* Sun Mar 24 2024 Dirk Müller <dmueller@suse.com>
- update to 261 (bsc#1220157, CVE-2024-25711):
* Don't crash if we encounter an .rdb file without an
equivalent .rdx file.
* Actually test 7z support in the test_7z set of tests, not the
lz4 functionality.
* In addition, correctly check for the 7z binary being
available (and not lz4) when testing 7z.
* Prevent a traceback when comparing a contentful .pyc file
with an empty one. (Re: Debian:#1064973)
* Don't error-out with a traceback if we encounter
"struct.unpack"-related errors when parsing .pyc files.
* Fix compatibility with PyTest 8.0.
* Don't try and compare rdb_expected_diff on non-GNU systems as
%p formatting can vary.
* Use the 7zip package (over p7zip-full) after package
transition.
* Parse the header and hunksize of diffs strictly before
parsing the context below.
* Reformat code to comply with the latest version of Black
(24.1.1).
* Expand the previous changelog entry to include the CVE number
that was subsequently assigned.
* Bump the miniumum Black requirement to run the "Black clean"
test and make test_zip.py Black clean.
* CVE-2024-25711: Use a determistic name when extracting
content from GPG artifacts instead of trusting the value of
gpg's --use- embedded-filenames.
* Temporarily fix support for Python 3.11.8 re. a potential
regression with the handling of ZIP files.
* Add/fix compatibility for Python progressbar 2.5 & 3.0 etc.
* Add external tool on GNU Guix for 7z.
* Improve DOS/MBR extraction by adding support for 7z.
* Process objdump symbol comment filter inputs as the Python
"bytes" type (and not str). (Closes: reproducible-
builds/diffoscope#358)
* Add a missing RequiredToolNotFound import.
* Update copyright years.
* As UI/UX improvement, try and avoid printing an extended
traceback if diffoscope runs out of memory. This may not
always be possible to detect.
* Mark diffoscope as stable in setup.py (for PyPI.org).
Whatever diffoscope is, at least, not "alpha" anymore.
* Wed Nov 01 2023 Andrea Manzini <andrea.manzini@suse.com>
- removed patch fix-file-5.45.patch as included in upstream
- Update to version 251:
* If the equivalent of `file -i` returns text/plain, fallback to comparing
this file as a text file. This especially helps when file(1) miscategorises
text files as some esoteric type.
- Update to version 250:
* Fix compatibility with file 5.45.
* Add external tool references for GNU Guix (for html2text and ttx).
- Update to version 249:
* Add specialize_as() method, and use it to speed up .smali comparison in APKs.
* Add documentation for the new specialize_as, and expand the documentation
of `specialize` too.
* Correct typos in diffoscope/presenters/utils.py.
- Update to version 246:
* Add support for LLVM 16.
- Update to version 244:
* Address compatibility with python-libarchive-c version 5.
* Testsuite changes
- Update to version 243:
* Improve the documentation on to produce that binary blob that in the arsc comparator.
* Sat Aug 05 2023 Sebastian Wagner <sebix@sebix.at>
- Add fix-file-5.45.patch to fix compatibility with file version 5.45
https://salsa.debian.org/reproducible-builds/diffoscope/-/issues/346
- update to version 242:
- If the binwalk Python module is not available, ensure the user knows they
may be missing more differences in, for example, concatenated .cpio
archives.
- Factor out routine to generate a human-readable comments when
Python modules are missing.
* Wed May 03 2023 Dirk Müller <dmueller@suse.com>
- update to 241:
* Add a missing 'raise' statement
* document sending out an email upon release
* Drop the use of include_package_data=True in setup.py.
* Fix compatibility with pypdf 3.x, and correctly restore test
data.
* Rework PDF annotations processing into a separate method.
* Fri Mar 03 2023 Dirk Müller <dmueller@suse.com>
- update to 238:
* autopkgtest: fix tool name in the skippable list.
* autopkgtest: only install aapt and dexdump on architectures
where they are available.
* Drop backward compatibility assignment.
* Fix flake warnings, potentially reinstating PyPDF 1.x
support (untested).
* Update code to match latest version of Black.
* Require at least Black version 23.1.0 to run the internal
Black tests.
* Update copyright years.
* Fix compatibility with PyPDF2.
* Fix compatibility with ImageMagick 7.1.
* Update from PyPDF2 to pypdf.
* Add support for Android resources.arsc files.
* Add support for dexdump.
* Improve DexFile's FILE_TYPE_RE and add
FILE_TYPE_HEADER_PREFIX, and remove
"Dalvik dex file" from ApkFile's FILE_TYPE_RE as well.
* Update external tool for isoinfo on guix.
* Sat Jan 21 2023 Dirk Müller <dmueller@suse.com>
- update to 233:
* Split packaging metadata into an extras_require.json file instead of using
the pep517 and the pip modules directly. This was causing build failures if
not using a virtualenv and/or building without internet access.
* Add an external tool reference for GNU Guix (lzip).
* Drop an external tool reference for GNU Guix (pedump).
* Split inline Python code in shell script to generate test dependencies to a
separate Python script.
* No need for "from __future__ import print_function" import in setup.py
anymore.
* Comment and tidy the new extras_require.json handling.