package uploaded to our repo
Mattia Rizzolo
mattia at debian.org
Wed Sep 21 13:35:27 UTC 2016
On Wed, Sep 21, 2016 at 01:24:46PM +0000, Jérémy Bobbio wrote:
> Mattia Rizzolo:
> > Next steps:
> > it would be great if somebody could figure what's the real gain of
> > having .dsc in Checksums-Sha256.
>
> This is how .buildinfo files have linked a source package in an
> unambiguous manner to the resulting binaries. I see how the current
> specification is giving you trouble, but it's kinda their “raison d'être”.
well, why, considering a single-archive world, is Source+Version fields
in .buildinfo not enough to link the binaries to the source?
I concur the assumptions of it are not that easy to live with, but it's
not so needed for e.g. the limited use case of recording the env a build
is made within Debian.
--
regards,
Mattia Rizzolo
GPG Key: 66AE 2B4A FCCF 3F52 DA18 4D18 4B04 3FCD B944 4540 .''`.
more about me: https://mapreri.org : :' :
Launchpad user: https://launchpad.net/~mapreri `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia `-
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/reproducible-builds/attachments/20160921/3b94310a/attachment.sig>
More information about the Reproducible-builds
mailing list