Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#76031 - [perl-crypt-random-seed] drop perl-crypt-random-tesha2 dependency
Attached to Project:
Arch Linux
Opened by Jelle van der Waa (jelly) - Tuesday, 27 September 2022, 11:48 GMT
Opened by Jelle van der Waa (jelly) - Tuesday, 27 September 2022, 11:48 GMT
|
DetailsDescription:
perl-crypt-random-seed currently depends on perl-crypt-random-tesha2, this package is not reproducible which I was investigating. The output looks like this: https://reproducible.archlinux.org/api/v0/builds/343124/diffoscope Which raises a question if it should even be packaged with a random builders entropy instead of the default "1.0" value. After a longer investigation I found, that this package is likely useless on Arch Linux as it tries to act like `haveged` for which Linux has /dev/random and /dev/urandom. Looking at perl-crypt-random-seed it does not really seem to require perl-crypto-random-tesha2 as on Linux /dev/random or /dev/urandom should be picked first. [1] It also seems that it can skip tesha2 safely if it's not installed. This leads me to think that this package should be dropped as dependency as we rather have users rely on a well known random source instead of tesha2. [1] https://metacpan.org/dist/Crypt-Random-Seed/source/lib/Crypt/Random/Seed.pm#L60 [2] https://metacpan.org/dist/Crypt-Random-Seed/source/lib/Crypt/Random/Seed.pm#L144 |
This task depends upon