[Bug 509619] Review Request: srtp - Secure Real-Time Transport Protocol (SRTP) Library
bugzilla at redhat.com
bugzilla at redhat.com
Sat Jul 11 05:54:35 UTC 2009
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=509619
--- Comment #1 from Jason Tibbitts <tibbs at math.uh.edu> 2009-07-11 01:54:34 EDT ---
It really helps if you could run rpmlint on your packages and address the
output before you submit them for review.
srtp-debuginfo.x86_64: E: empty-debuginfo-package
You should disable the debuginfo package if you don't create a main package.
srtp-devel.x86_64: W: wrong-file-end-of-line-encoding
/usr/share/doc/srtp-devel-1.4.2/draft-irtf-cfrg-icm-00.txt
This needs to be run through tr -d \\r or dos2unix to fix up the line endings.
In addition, I feel significant unease at a security sensitive network protocol
being available only as a static library. If a security issue is found,
everything that linked against it will need to be rebuilt. At least one distro
seems to build this as a shared library:
http://www.mail-archive.com/pld-cvs-commit@lists.pld-linux.org/msg58219.html
Also, version 1.4.4 seems to be current, while you've packaged 1.4.2.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the Fedora-package-review
mailing list