Hi, Quoting Mathias Behrle (2021-01-27 11:57:04) > > This code was introduced in devscripts back in 2017, so you can see that I > > was correct when I said that the sbuild codepath of combining > > --source-only-changes with --keyid is indeed seldom used. > > Yes, the real use case appeared with mandatory source only uploads. > > On one side I need the source only changes for uploads to ftp.debian.org, on > the other side I need binaries with according changes files suitable for > testing and upload to the backports reprepro.
I think what most sbuild users do, is to run sbuild without --keyid and then let dput do the signing. Myself, I'm using "dgit push-source" to do my source-only uploads. I never run sbuild with --source-only-changes because dgit will take care of doing all of that for me. Clearly, this bug has to be fixed. I just wanted to suggest some workaround for you and explanations why this was only found so late. Thanks! cheers, josch
signature.asc
Description: signature
