Which testament to choose?

James Westby jw+debian at jameswestby.net
Mon Nov 3 15:44:44 GMT 2008


It's time for my weekly bzr API question.

To allow us to audit branches for tampering I am storing a mapping of
tags->revision-ids for each branch (the location of tags is critically
important for the use we put them to).

However, due to revision ids being arbitrary strings this does little
to prevent attacks.

I would therefore like to also store something that will give some
assurances about the data. I would like something similar to storing
the sha name that git would give to the revision.

The obvious choice in the bzr world would be the testament, but I
am confused by the different types of testament, and don't want
to make the wrong choice.

It seems like I should use a StrictTestament, but I am not sure which,
and I am not sure why there is even a non-strict Testament.

Also, will storing the short form be any worse than storing the full



More information about the bazaar mailing list