[tor-bugs] #28697 [Applications/Tor Browser]: Our QA and testing .apks are signed with a key per build
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Dec 6 20:54:24 UTC 2018
#28697: Our QA and testing .apks are signed with a key per build
-----------------------------------------------+--------------------------
Reporter: gk | Owner: tbb-team
Type: defect | Status: closed
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution: fixed
Keywords: tbb-mobile, TorBrowserTeam201812R | Actual Points:
Parent ID: #25164 | Points:
Reviewer: | Sponsor:
-----------------------------------------------+--------------------------
Changes (by gk):
* status: needs_review => closed
* resolution: => fixed
Comment:
Okay, I tested a bunch of things. The problem goes away with Debian Jessie
and `openjdk-7` or Debian Buster. I don't know why (yet) but opted for the
latter to get our build going and get the .apk reproducible.
I picked sisbell's patch and applied it to `master` (commit
ea1d0b24448f0365b9c8ff60a6ab2c4a130ec279)and made an additional commit
switching to Buster for the tor-browser step. This seems like low risk as
I doubt the `jarsigner` tool is changing behavior here drastically in case
newer packages arrive in Buster.
boklm: let me know whether you think we should change anything of my
commit (commit 60163914e4f9418709bfe5b8fdc946fb56ca6e07). (I know I messed
up the bug number which is highly annoying, but a thing we can't change
anymore).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28697#comment:14>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list