debusine - trinity-sb - lintian: smartcardauth

analysis.json
1{"tags": [{"severity": "error", "package": "smartcardauth", "tag": "no-copyright-file", "explanation": "Each binary package has to include a plain file\n/usr/share/doc/*pkg*/copyright\n\nRefer to Debian Policy Manual section 12.5 (Copyright information) for\ndetails.\n\nSeverity: error\n\nCheck: debian/copyright", "comment": "", "note": "", "pointer": ""}, {"severity": "error", "package": "smartcardauth", "tag": "unstripped-binary-or-object", "explanation": "The package installs an unstripped binary or object file.\n\nPlease note, that shared libraries have to be stripped with the\n--strip-unneeded option.\n\nRefer to Debian Policy Manual section 10.1 (Binaries) and Debian\nPolicy Manual section 10.2 (Libraries) for details.\n\nSeverity: error\n\nCheck: binaries", "comment": "", "note": "usr/bin/cardpincheck", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "extended-description-line-too-long", "explanation": "One or more lines in the extended part of the \"Description:\" field\nhave been found to contain more than 80 characters. For the benefit of\nusers of 80x25 terminals, it is recommended that the lines do not\nexceed 80 characters.\n\nRefer to Debian Policy Manual section 3.4.1 (The single line synopsis)\nfor details.\n\nSeverity: warning\n\nCheck: fields/description", "comment": "", "note": "line 1", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "extended-description-line-too-long", "explanation": "", "comment": "", "note": "line 4", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "hardening-no-pie", "explanation": "This package provides an ELF executable that was not compiled as a\nposition independent executable (PIE).\n\nIn Debian, since version 6.2.0-7 of the gcc-6 package GCC will compile\nELF binaries with PIE by default. In most cases a simple rebuild will\nbe sufficient to remove this tag.\n\nPIE is required for fully enabling Address Space Layout Randomization\n(ASLR), which makes \"Return-oriented\" attacks more difficult.\n\nHistorically, PIE has been associated with noticeable performance\noverhead on i386. However, GCC >= 5 has implemented an optimization\nthat can reduce the overhead significantly.\n\nIf you use dpkg-buildflags with hardening=+all,-pie in\nDEB_BUILD_MAINT_OPTIONS, remove the -pie.\n\nRefer to https://wiki.debian.org/Hardening,\nhttps://gcc.gnu.org/gcc-5/changes.html, and\nhttps://software.intel.com/en-us/blogs/2014/12/26/new-optimizations-for-x86-in-upcoming-gcc-50-32bit-pic-mode\nfor details.\n\nSeverity: warning\n\nCheck: binaries", "comment": "", "note": "usr/bin/cardpincheck", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "no-manual-page", "explanation": "Each binary in /usr/bin, /usr/sbin, /bin, /sbin or /usr/games should\nhave a manual page\n\nNote that though the man program has the capability to check for\nseveral program names in the NAMES section, each of these programs\nshould have its own manual page (a symbolic link to the appropriate\nmanual page is sufficient) because other manual page viewers such as\nxman or tkman don't support this.\n\nIf the name of the manual page differs from the binary by case, man\nmay be able to find it anyway; however, it is still best practice to\nmatch the exact capitalization of the executable in the manual page.\n\nIf the manual pages are provided by another package on which this\npackage depends, Lintian may not be able to determine that manual\npages are available. In this case, after confirming that all binaries\ndo have manual pages after this package and its dependencies are\ninstalled, please add a Lintian override.\n\nRefer to Debian Policy Manual section 12.1 (Manual pages) for details.\n\nSeverity: warning\n\nCheck: documentation/manual\n\nRenamed from: binary-without-manpage", "comment": "", "note": "usr/bin/cardpincheck", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "no-manual-page", "explanation": "", "comment": "", "note": "usr/bin/cryptosmartcard.sh", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "package-relation-with-self", "explanation": "The package declares a relationship with itself. This is not very\nuseful except in the case of a package Conflicting with itself if its\npackage name doubles as a virtual package.\n\nSeverity: warning\n\nCheck: fields/package-relations", "comment": "", "note": "Breaks: smartcardauth (<< 4:14.0.0~)", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "possible-unindented-list-in-extended-description", "explanation": "The package \"Description:\" contains an unindented line which starts\nwith a dash (-) or asterisk (*). If this was meant to be a list of\nitems these lines need to be indented (dselect would word-wrap these\nlines otherwise).\n\nRefer to Debian Policy Manual section 5.6.13 (Description) for\ndetails.\n\nSeverity: warning\n\nCheck: fields/description", "comment": "", "note": "", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "priority-extra-is-replaced-by-priority-optional", "explanation": "Since Debian Policy version 4.0.1, the priority extra has been\ndeprecated.\n\nPlease update debian/control and replace all instances of Priority:\nextra with Priority: optional.\n\nRefer to Debian Policy Manual section 2.5 (Priorities) for details.\n\nSeverity: warning\n\nCheck: fields/priority", "comment": "", "note": "", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "script-with-language-extension", "explanation": "When scripts are installed into a directory in the system PATH, the\nscript name should not include an extension such as .sh or .pl that\ndenotes the scripting language currently used to implement it. The\nimplementation language may change; if it does, leaving the name the\nsame would be confusing and changing it would be disruptive.\n\nRefer to Debian Policy Manual section 10.4 (Scripts) for details.\n\nSeverity: warning\n\nCheck: files/scripts", "comment": "", "note": "usr/bin/cryptosmartcard.sh", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "unknown-section", "explanation": "The \"Section:\" field in this package's control file is not one of the\nsections in use on the ftp archive. Valid sections are currently\nadmin, comm, cli-mono, database, debug, devel, doc, editors,\nelectronics, embedded, fonts, games, gnome, gnu-r, gnustep, graphics,\nhamradio, haskell, httpd, interpreters, java, javascript, kde,\nlibdevel, libs, lisp, localization, kernel, mail, math, misc, net,\nnews, ocaml, oldlibs, otherosfs, perl, php, python, ruby, rust,\nscience, shells, sound, tex, text, utils, vcs, video, web, x11, xfce,\nzope.\n\nThe section name should be preceded by \"non-free/\" if the package is\nin the non-free archive area, and by \"contrib/\" if the package is in\nthe contrib archive area.\n\nRefer to Debian Policy Manual section 2.4 (Sections) for details.\n\nSeverity: warning\n\nCheck: fields/section", "comment": "", "note": "tde", "pointer": ""}, {"severity": "warning", "package": "smartcardauth", "tag": "uses-implicit-await-trigger", "explanation": "The listed trigger is present in the control file of the package. The\ntrigger is an await trigger, which may not be obvious from its name.\n\nAwait triggers place rather strong requirements on dpkg that often\nlead to trigger cycles due to changes in other packages.\n\nIf the package does not need the guarantees that dpkg provides to\nawait triggers, please use the \"-noawait\" variant of the trigger. This\nis often the case for packages that use the trigger to compile a form\nof cache.\n\nIf the package does need the guarantees provided by dpkg, then please\ndocument the rationale in a comment above the trigger and use the\n\"-await\" variant of the trigger to avoid this warning.\n\nRefer to the deb-triggers(5) manual page and Bug#774559 for details.\n\nSeverity: warning\n\nCheck: triggers", "comment": "", "note": "activate update-initramfs (line 1)", "pointer": ""}, {"severity": "info", "package": "smartcardauth", "tag": "hardening-no-bindnow", "explanation": "This package provides an ELF binary that lacks the \"bindnow\" linker\nflag.\n\nThis is needed (together with \"relro\") to make the \"Global Offset\nTable\" (GOT) fully read-only. The bindnow feature trades startup time\nfor improved security. Please consider enabling this feature or\nconsider overriding the tag (possibly with a comment about why).\n\nIf you use dpkg-buildflags, you may have to add hardening=+bindnow or\nhardening=+all to DEB_BUILD_MAINT_OPTIONS.\n\nThe relevant compiler flags are set in LDFLAGS.\n\nRefer to https://wiki.debian.org/Hardening for details.\n\nSeverity: info\n\nCheck: binaries", "comment": "", "note": "usr/bin/cardpincheck", "pointer": ""}, {"severity": "info", "package": "smartcardauth", "tag": "spelling-error-in-description", "explanation": "Lintian found a spelling error in the package description. Lintian has\na list of common misspellings that it looks for. It does not have a\ndictionary like a spelling checker does. It is particularly picky\nabout spelling and capitalization in package descriptions since\nthey're very visible to end users.\n\nSeverity: info\n\nCheck: fields/description", "comment": "", "note": "ISO ISO (duplicate word) ISO", "pointer": ""}, {"severity": "pedantic", "package": "smartcardauth", "tag": "odd-mark-in-description", "explanation": "A punction mark was placed oddly in the description.\n\nThis tag is currently only issued for a comma that is not followed by\na whitespace character or a number (eg. for \"300,000\").\n\nRefer to Bug#591665 and Bug#591664 for details.\n\nSeverity: pedantic\n\nCheck: fields/description", "comment": "", "note": "comma not followed by whitespace", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "control-tarball-compression-format", "explanation": "This is the compressor format used for the control.tar tarball.\n\nSeverity: classification\n\nCheck: deb-format\n\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "xz", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "data-tarball-compression-format", "explanation": "This is the compressor format used for the data.tar tarball.\n\nSeverity: classification\n\nCheck: deb-format\n\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "xz", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "mail-contact", "explanation": "", "comment": "", "note": "Maintainer \"TDE Debian Team\" <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "no-ctrl-scripts", "explanation": "The package does not rely on any maintainer scripts (or other\nexecutable control files).\n\nSeverity: classification\n\nCheck: control-files\n\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  644 usr/share/doc/smartcardauth/README.md", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  644 usr/share/doc/smartcardauth/changelog.Debian.gz", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/bin/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/bin/cardpincheck", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/bin/cryptosmartcard.sh", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/share/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/share/doc/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/share/doc/smartcardauth/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/share/initramfs-tools/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/share/initramfs-tools/hooks/", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "octal-permissions", "explanation": "", "comment": "", "note": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb  755 usr/share/initramfs-tools/hooks/cryptlukssc", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "package-is-maintained-by-individual", "explanation": "", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Architecture armhf", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Breaks smartcardauth (<< 4:14.0.0~)", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Conflicts openct", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Depends libc6 (>= 2.4), libpkcs11-helper1 (>= 1.05), libssl1.1 (>= 1.1.0), pcsc-tools, pcscd (>= 1.7~), initramfs-tools, libpcsc-perl, libpcsclite1, libccid, opensc, libpam-heimdal, psmisc, xxd", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Description SmartCard Login and LUKS Decrypt, Setup Utility\\n This utility will allow you to set up your computer to accept a SmartCard as an authentication source for:\\n - Your encrypted LUKS partition\\n - TDE R14.x, including automatic login, lock, and unlock features\\n It is designed to work with any OpenSC-supported, ISO 7816-4,-8 compliant, PKCS#11 enabled smartcard\\n Examples of such cards are:\\n - The OpenPGP card (ISO ISO 7816-4,-8 compliant)", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Installed-Size 65", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Maintainer TDE Debian Team <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Package smartcardauth", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Priority extra", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Recommends libpam-ccreds, libpam-ck-connector, libpam-pkcs11, libpam-mount", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Replaces smartcardauth (<< 4:14.0.0~)", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Section tde", "pointer": ""}, {"severity": "classification", "package": "smartcardauth", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Version 4:14.1.6~pre1-0raspbian11.0.0+1", "pointer": ""}], "summary": {"tags_count_by_severity": {"error": 2, "warning": 11, "info": 2, "pedantic": 1, "experimental": 0, "overridden": 0, "classification": 30}, "package_filename": {"smartcardauth": "smartcardauth_14.1.6~pre1-0raspbian11.0.0+1_armhf.deb"}, "tags_found": ["control-tarball-compression-format", "data-tarball-compression-format", "extended-description-line-too-long", "hardening-no-bindnow", "hardening-no-pie", "mail-contact", "no-copyright-file", "no-ctrl-scripts", "no-manual-page", "octal-permissions", "odd-mark-in-description", "package-is-maintained-by-individual", "package-relation-with-self", "possible-unindented-list-in-extended-description", "priority-extra-is-replaced-by-priority-optional", "script-with-language-extension", "spelling-error-in-description", "trimmed-field", "unknown-section", "unstripped-binary-or-object", "uses-implicit-await-trigger"], "overridden_tags_found": [], "lintian_version": "2.104.0", "distribution": "debian:raspbian-bullseye"}, "version": 1}