Are circular dependencies problematic?

To: debian-go@lists.debian.org
Subject: Are circular dependencies problematic?
From: Richard Hansen <rhansen@rhansen.org>
Date: Tue, 3 Mar 2026 01:47:05 -0500
Message-id: <[🔎] 2be855ac-5b72-4278-afeb-4e187a856f6b@rhansen.org>

Hi all,

Is it a problem to have a Depends cycle among the golang-*-dev packages?

golang.org/x/net and golang.org/x/crypto require each other in theirgo.mod files, but I noticed that the golang-golang-x-crypto-dev Debianpackage contains a copy of the golang.org/x/net/idna Go package to breakthat dependency cycle:<https://salsa.debian.org/go-team/packages/golang-go.crypto/-/blob/debian/latest/debian/README.source>.

I thought dpkg could handle circular dependencies. Would a cycle causeFTBFS? Can an older version of the package being built be installed tosatisfy the circular dependency while building the newer version of thepackage?


Thanks,
Richard

Reply to:

Follow-Ups:
- Re: Are circular dependencies problematic?
  - From: Simon Josefsson <simon@josefsson.org>
- Re: Are circular dependencies problematic?
  - From: Arnaud Rebillout <arnaudr@debian.org>

Prev by Date: Re: seeking review of golang-github-hashicorp-go-version v1.8.0
Next by Date: Re: Are circular dependencies problematic?
Previous by thread: Re: seeking review of golang-github-hashicorp-go-version v1.8.0
Next by thread: Re: Are circular dependencies problematic?
Index(es):
- Date
- Thread