Problems with core review
Christopher Ailllon
caillon at redhat.com
Thu Feb 8 19:22:48 UTC 2007
John Dennis wrote:
> Let me give a further example, I'll call it "source collision". There is
> nothing which prevents two independent packages from using a source file
> with the same name. The basic default rpm macros do not enforce per
> package source dirs, by default all packages share a common source dir.
> One source rpm is capable of overwriting another source rpm's files if
> they share a common name. There are only three ways to prevent this:
>
> 1) establish a rule which says every source file must be prepended with
> a unique string (i.e. the package name).
And even this would not be foolproof: a package called foo includes a
source of 'bar-blah' that gets changed to 'foo-bar-blah' and then
someone adds a foo-bar package with a source of 'blah'...
More information about the Fedora-maintainers
mailing list