[SCM] WebKit Debian packaging branch, debian/unstable, updated. debian/1.2.1-2-3-g1fe4d84
Mike Hommey
mh at glandium.org
Tue Jun 29 07:30:42 UTC 2010
On Mon, Jun 28, 2010 at 08:03:35PM -0400, Michael Gilbert wrote:
> On Mon, 28 Jun 2010 19:47:20 -0400 Michael Gilbert wrote:
>
> > On Mon, 28 Jun 2010 17:48:03 +0200 Mike Hommey wrote:
> >
> > > On Sun, Jun 27, 2010 at 01:43:30PM +0000, Michael Gilbert wrote:
> > > > The following commit has been merged in the debian/unstable branch:
> > > > commit 1fe4d849b45c080739c685336b18c820cc15c6a8
> > > > Author: Michael Gilbert <michael.s.gilbert at gmail.com>
> > > > Date: Sun Jun 27 09:44:28 2010 -0400
> > > >
> > > > add libtool patch
> > > >
> > > (snip)
> > > > + * Use system libtool.
> > >
> > > Why?
> >
> > using embedded tools is considered poor practice. the version included
> > may not be very up to date, and won't be in sync with the version used
> > in the rest of the os. also security updates won't propagate to the
> > embedded version. of course, the consequences here are rather small
> > since webkit only uses libtool's build time features, so any window for
> > attack is small.
There is no security benefit using system libtool, but there are
possible drawbacks by the non reproduceability of the build.
> > my basic argument is that its "the right thing to do", but if there is a
> > good argument "why not?", i'll be happy to revert the changes.
>
> oh, and there were some weird hacks in the rules file to workaround
> an issue in the embedded version.
Do you mean system libtool doesn't reorder arguments? I'd really be
surprised.
Mike
More information about the Pkg-webkit-maintainers
mailing list