Re: Storing build profiles in binary packages

To: debian-devel@lists.debian.org
Subject: Re: Storing build profiles in binary packages
From: Philipp Kern <pkern@debian.org>
Date: Thu, 11 Jan 2018 10:56:09 +0100
Message-id: <[🔎] 1931a0c59be908beb37376599dab3ea7@debian.org>
In-reply-to: <[🔎] 20180111004626.GA12715@thunder.hadrons.org>
References: <[🔎] 20180103133055.GB5875@perpetual.pseudorandom.co.uk> <[🔎] CAAB-KckdnL09x+DXjEq6jhsBhWaHK4BU3SXC7aCL4GOn3Q4Y-w@mail.gmail.com> <[🔎] 20180108183711.2vrs643yrokpapuq@mail.wookware.org> <[🔎] CAAB-KckdnL09x+DXjEq6jhsBhWaHK4BU3SXC7aCL4GOn3Q4Y-w@mail.gmail.com> <[🔎] 20180108200909.7o6ovj2ajzseik2m@virgil.dodds.net> <[🔎] CAAB-KckdnL09x+DXjEq6jhsBhWaHK4BU3SXC7aCL4GOn3Q4Y-w@mail.gmail.com> <[🔎] 4de2303e-f4dd-11e7-9b6a-00163eeb5320@msgid.mathom.us> <[🔎] CAAB-KckdnL09x+DXjEq6jhsBhWaHK4BU3SXC7aCL4GOn3Q4Y-w@mail.gmail.com> <[🔎] 20180110204902.m7woymenuifcxkh7@virgil.dodds.net> <[🔎] 151562804856.1442.14683052322745301095@localhost> <[🔎] 20180111004626.GA12715@thunder.hadrons.org>

On 2018-01-11 01:46, Guillem Jover wrote:

[ Just few comments to complement josch's veyr nice reply, with which I
  completely agree with. ]

On Thu, 2018-01-11 at 00:47:28 +0100, Johannes Schauer wrote:

Quoting Steve Langasek (2018-01-10 21:49:02)
> As a policy, I think it's clear that packages built with non-default profiles
> should never be included in the Debian archive;
Why? By enforcing (via a policy and checkable via reproducible builds)that thebinary packages that are being built with one (possibly empty) set ofbuildprofiles active are bit-by-bit identical to those built with adifferent set ofbuild profiles active, it doesn't matter whether a given binarypackage was
built with either set.


Yes, and in addition this information is recorded in both .changes
and .buildinfo files. I was initially among the ones wanting this
information in the .debs to be able to trace it, but the need
disappeared when we introduced .buildinfo files, because then we've
got the upload specific recording for the archive processor (.changes),
and the supposedly public facing record of what was done during the
build (.buildinfo), although the later can never be fully trusted
anyway. :)

Fair enough. I guess at which point it boils down to archivedeficiencies within dak in particular that buildinfo and changes contentare not easily accessible, because they are not kept as part of archivemetadata that can be synced.


Kind regards and thanks
Philipp Kern

Reply to:

References:
- Bug#886238: Please introduce official nosystemd build profile
  - From: Simon McVittie <smcv@debian.org>
- Bug#886238: Please introduce official nosystemd build profile
  - From: Hleb Valoshka <375gnu@gmail.com>
- Bug#886238: Please introduce official nosystemd build profile
  - From: Wookey <wookey@wookware.org>
- Bug#886238: Please introduce official nosystemd build profile
  - From: Steve Langasek <vorlon@debian.org>
- Bug#886238: Please introduce official nosystemd build profile
  - From: Michael Stone <mstone@debian.org>
- Bug#886238: Please introduce official nosystemd build profile
  - From: Steve Langasek <vorlon@debian.org>
- Storing build profiles in binary packages (was: Re: Bug#886238: Please introduce official nosystemd build profile)
  - From: Johannes Schauer <josch@debian.org>
- Re: Storing build profiles in binary packages (was: Re: Bug#886238: Please introduce official nosystemd build profile)
  - From: Guillem Jover <guillem@debian.org>

Prev by Date: Re: enforcing an UTF8 locale while building a package
Next by Date: Re: ITP: debos -- Debian OS builder
Previous by thread: Re: Storing build profiles in binary packages (was: Re: Bug#886238: Please introduce official nosystemd build profile)
Next by thread: Bug#886238: Build-Profiles purpose, mechanism vs policy (was Re: Bug#886238: Please introduce official nosystemd build profile)
Index(es):
- Date
- Thread