Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [orbit-dev] qualifiers and signing changes

> Discussion topic: In either case, it seems the binary content of
> the Orbit bundles has changed but the qualifiers have remained the
> same. Should all the orbit cvs bundles be tagged with new versions
> to change the qualifiers to notify consuming clients that there is
> new content? Otherwise, there isn't a way to signify to the
> community that the content of the jars in the two builds are not
> identical. I would propose that this should be done for the next
> milestone, not M5.

Offhand, I think there'd be no need to do this, since the _executable_ code is not changed.

For example, in the case of install, if someone had the old one installed,
there really is no need for them to download and install a new one, just because the new one is signed
with a different certificate.

We went through a similar discussion long ago when the issue was "signed" vs. "not signed", and
concluded there was no reason to change the qualifier even in that case.

I am, of course, open to discussion and counter arguments.

Back to the top