weak-library-dev-dependency

The given package appears to be a shared library -dev package, but the dependency on what seems to be a corresponding shared library package does not force the same package version. To ensure that compiling and linking works properly, and that the symlinks in the -dev package point to the correct files in the shared library package, a -dev package should normally use (= ${binary:Version}) for the dependency on the shared library package.

Sometimes, such as for -dev packages that are architecture-independent to not break binNMUs or when one doesn't want to force a tight dependency, a weaker dependency is warranted. Something like (>= ${source:Upstream-Version}), (<< ${source:Upstream-Version}+1~), possibly using ${source:Version} instead, is the right approach. The goal is to ensure that a new upstream version of the library package doesn't satisfy the -dev package dependency, since the minor version of the shared library may have changed, breaking the *.so links.

For more information please consult:

Debian Policy Manual section 8.5

The tag is present in Lintian version 2.114.163. That is the most recent version we know about.

We use semantic versions. The patch number is a commit step indicator relative to the 2.108.0 release tag in our Git repository.

You can find the detection logic for this version at commit a1e47cb. For merge requests, please use the latest version in the Lintian check debian/control.

Visibility: error

The following 6 source packages in the archive triggered the tag 7 times (in any Lintian version).

We found 2 overrides. The tag performed 71% of the time.

e2fsprogs

(in section for comerr-dev) Depends libcom-err2 (= ${mainBinary}) [debian/control:85]
(in section for ss-dev) Depends libss2 (= ${mainBinary}) [debian/control:115]

firebird3.0

- # our -dev package contains a symlink to the soname, i.e. .so -> .so.2 the .so.2 -> .so.2.whatever symlink is provided by the libfbclient2 package so we are guaranteed not to ship broken symlinks
(in section for firebird-dev) Depends libfbclient2 (>= ${source:Version}) [debian/control:148]

libcompface

(in section for libcompfaceg1-dev) Depends libcompfaceg1 [debian/control:12]

libibtk

(in section for libibtk-dev) Depends libibtk0 [debian/control:11]

libuninum

(in section for libuninum-dev) Depends libuninum5 (>= ${binary:Version}) [debian/control:12]

tpm2-tss-engine

- # This package is arch: all as it contains only a header and documentation, so it cannot have = binary:Version. It's OK as it does not include a static library or an unversioned symlink to the corresponding library package.
(in section for tpm2-tss-engine-dev) Depends libengine-tpm2-tss-openssl (>= ${source:Version}) [debian/control:33]