diff options
author | Andreas Rammhold <andreas@rammhold.de> | 2020-11-18 15:51:51 +0100 |
---|---|---|
committer | Andreas Rammhold <andreas@rammhold.de> | 2020-11-18 20:13:22 +0100 |
commit | 94448baf6d53714b249e91c150e8a7121508bf52 (patch) | |
tree | 55e536fe599e4ab406e8c77cfcc62a122d5ed8e0 /pkgs/development/libraries/nss | |
parent | ad0958bf7df05b97d3d09e802e3698076afa95fa (diff) | |
download | nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.tar nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.tar.gz nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.tar.bz2 nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.tar.lz nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.tar.xz nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.tar.zst nixpkgs-94448baf6d53714b249e91c150e8a7121508bf52.zip |
cacert: decouple from NSS to reduce rebuild amount
In [#100765] @vcunat pointed out that we could decouple cacert from the NSS package to make it more rebuild friendly. Just rebuilding packages that depend on NSS seems to be about ~100. Rebuilding all the packages that depend on cacert is >9k as of this writing. This makes it much more feasible to upgrade high-profile packages that are (rightfully) pedantic on their NSS version like firefox and thunderbird. [#100765]: https://github.com/NixOS/nixpkgs/pull/100765
Diffstat (limited to 'pkgs/development/libraries/nss')
-rw-r--r-- | pkgs/development/libraries/nss/default.nix | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/pkgs/development/libraries/nss/default.nix b/pkgs/development/libraries/nss/default.nix index cc9ad333d82..9153ff77616 100644 --- a/pkgs/development/libraries/nss/default.nix +++ b/pkgs/development/libraries/nss/default.nix @@ -9,6 +9,12 @@ let url = "http://dev.gentoo.org/~polynomial-c/mozilla/nss-3.15.4-pem-support-20140109.patch.xz"; sha256 = "10ibz6y0hknac15zr6dw4gv9nb5r5z9ym6gq18j3xqx7v7n3vpdw"; }; + + # NOTE: Whenever you updated this version check if the `cacert` package also + # needs an update. You can run the regular updater script for cacerts. + # It will rebuild itself using the version of this package (NSS) and if + # an update is required do the required changes to the expression. + # Example: nix-shell ./maintainers/scripts/update.nix --argstr package cacert version = "3.57"; underscoreVersion = builtins.replaceStrings ["."] ["_"] version; |