On Mon, Feb 27, 2017 at 7:04 PM, Ralph Giles <gi...@mozilla.com> wrote: > On Mon, Feb 27, 2017 at 4:03 AM, Henri Sivonen <hsivo...@hsivonen.fi> wrote: > >> I find this level of difficulty (self-inflicted quasi-Tivoization >> practically) an unreasonable impediment to practicing trivial Software >> Freedom with respect to the vendored crates. > > I agree we need to fix the ergonomics here, but I don't think you > should be so hard on cargo.
Sorry about the tone. I'm rather frustrated at how hard it is to do something that should be absolutely trivial (adding a local diagnostic panic!()/println!()). > The hash checking is designed to make > builds more reproducible, so that unless we make an explicit diversion > we know we're building with the same source as every other use of that > same package version. This has benefits for security, debugging, and > change control. We don't seem to need such change control beyond hg logs for e.g. the in-tree ICU or Skia, though. -- Henri Sivonen hsivo...@hsivonen.fi https://hsivonen.fi/ _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
