Le vendredi 07 septembre 2007 à 22:53 +0200, Stefano Canepa a écrit : > do you mean using setuptools upstream is bad for the resulting debian > package? Could you explain why?
Setuptools was designed by developers, for developers, and not much for users. More specifically, it was designed for developers working on a certain operating system which doesn't have a decent packaging infrastructure. The most obnoxious things in setuptools, like automatic downloading of dependencies at runtime and shipping everything in egg files that have to be all decompressed on-the-fly by any python application being run, were deactivated in Debian. (I can't imagine an operating system where these would be good ideas, but well... not our problem.) What remains, still, is a system that tries to duplicate the functionality of a packaging system, and fails miserably doing so, by remaining centered on a single programming language and with zero correlation to the dpkg database. It allows to ship several versions of the same package and will select them at runtime - something good for developers, but a nightmare to support in the long term for users. Even worse, it is intrusive as it requires adding support for this functionality in packages that used to not have this crap inside. Besides the blatant FHS violations, useless complexity and new packaging problems that this creates, you can easily imagine the problems this kind of stuff creates - things that happen every time someone tries to make run-time dependencies independent from the packaging system. Let's say for example a bug in module foo was fixed in a certain development version. This bug makes application bar crash, and bar's developers add a dependency on that development version. The Debian maintainer of python-foo doesn't want to package a development version, so he just backports the fix on his package. With distutils, things would end up here. With setuptools, though, application bar will refuse to run, as the detected version for module foo is not enough. If bar is packaged for Debian, the maintainer will have to patch it to remove or downgrade the egg dependency. If it is not, users will just be screwed. -- .''`. Josselin Mouette /\./\ : :' : [EMAIL PROTECTED] `. `' [EMAIL PROTECTED] `- Debian GNU/Linux -- The power of freedom
signature.asc
Description: Ceci est une partie de message numériquement signée