rolandvanipenburg / Geo-Metar-Deduced / issues / #10 - Match content between SIGNATURE and distribution files — Bitbucket

Issue #10 resolved

Roland van Ipenburg created an issue 2021-04-11

The MANIFEST is somehow changed after signing?

Comments (5)

Roland van Ipenburg reporter
The MANIFEST we create and ship has SIGNATURE added by Module::Build at the end of the file. In the downloaded package that is the same when we run cpansign, so that verifies OK. But when we run “./Build test” something is reordering the lines in the MANIFEST file, messing up the signature.
- 2021-04-11T09:00:15+00:00
Roland van Ipenburg reporter
So why is Test::Signature reordering the SIGNATURE file? “./Build test --test_files t/00_signature.t”
- 2021-04-11T09:15:03+00:00
Roland van Ipenburg reporter
This is caused by making “test” depend on “manifest” in Build.PL, so when the test is started the MANIFEST is recreated before the tests are run. And while the entries are the same the order is then changed so the signature is invalidated.
- 2021-04-11T10:13:00+00:00
Roland van Ipenburg reporter
- changed status to open
- 2021-04-11T10:53:34+00:00
Roland van Ipenburg reporter
- changed status to resolved
- 2021-04-11T15:29:47+00:00
Log in to comment

Assignee: Roland van Ipenburg

Type: bug

Priority: major

Status: resolved

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!