[Pkg-clamav-devel] Processing of clamav_0.98.4+dfsg-1_i386.changes

Sebastian Andrzej Siewior sebastian at breakpoint.cc
Thu Jul 3 17:10:26 UTC 2014


On 2014-07-03 17:37:58 [+0200], Andreas Cadhalpun wrote:
> Hi,
Hi,

> >>>Maybe they can manage to sign their tags.
> >>
> >>That would be good, although I don't know if uscan can verify signed tags.
> >>Or would there be detached signatures on the download page?
> >
> >Argh, right. No, it would be part of the tag. So it wouldn't be of any
> >use for use then :P
> 
> Except if uscan can be thought to verify signed tags...

Those tags are a little different. This tag signes the commit and not
something that we download. I don't see how uscan could verify those
apart from a git tree.

> I see you backported a patch to expose cl_initialize_crypto in clamav.h.
> Have you already tested/patched the reverse dependencies?

- havp: #753530
  doesn't look very well maintained. For that reason we might want to
  bump the so number of the version to make sure the "old" version works
  even if nobody updates the packages.
  Besides that, it is only on unstable so we don't have to worry about
  stable :)

- dansguardian: #753533
  I opened that bug against stable. Which remainds, shouldn't oldstable
  be gone by now?

- c-icap-modules: started yesterday, should be finished by tonight :)

- python-pyclamav: haven't look at it yet.

> Best regards,
> Andreas

Sebastian



More information about the Pkg-clamav-devel mailing list