From nix-dev  Fri Nov 18 15:55:59 2016
From: Arnold Krille <arnold () arnoldarts ! de>
Date: Fri, 18 Nov 2016 15:55:59 +0000
To: nix-dev
Subject: Re: [Nix-dev] Proposal: adding fetchapt support to nixpkgs
Message-Id: <20161118165559.1348fae5 () xingu ! arnoldarts ! de>
X-MARC-Message: https://marc.info/?l=nix-dev&m=147948460805153
MIME-Version: 1
Content-Type: multipart/mixed; boundary="--===============4813010204298295243=="

--===============4813010204298295243==
Content-Type: multipart/signed; micalg=pgp-sha256;
 boundary="Sig_/.Zuc_Y+37Fwq7D1xmC3jp1i"; protocol="application/pgp-signature"

--Sig_/.Zuc_Y+37Fwq7D1xmC3jp1i
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

On Tue, 25 Oct 2016 04:42:28 +0000 Chuan-kai Lin <chklin@gmail.com>
wrote:
> I have been thinking about adding Debian-package-fetching
> functionality (tentatively named fetchapt) into nixpkgs, and I'd like
> to hear your thoughts.
>=20
> First, why would anyone want such a thing?
>=20
> Nixpkgs retrieves some unfree software (e.g., google-chrome) through
> binary packages in Debian packaging format, through vendor
> repositories (e.g., dl.google.com).  Currently, retrieving the binary
> packages involves manually specifying package version number and hash
> value in a nixpkg. This approach has a few advantages; for example,
> users can look at nixpkg and determine exactly which version of the
> software is being installed.

This is _the_ argument for nix. I think its even the reason why nix was
invented. It gives you reproducible builds, generations, deployments,
machines. All from one git-revision. If you take that away by fetching
the actual software version each time the expression is evaluated, you
loose that. The builds will not be deterministic anymore. So on your
test-system the new chrome release will be stable. But when you finally
approve it for the production environment, the upstream/debian package
will already have changed=E2=80=A6

- Arnold

--Sig_/.Zuc_Y+37Fwq7D1xmC3jp1i
Content-Type: application/pgp-signature; name=signature.asc
Content-Disposition: attachment; filename=signature.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)

iF4EAREIAAYFAlgvJJIACgkQtuvagsE+DE6sVgEA8Rm33FK5fgnElWQUO7ZXO4C4
bZbQlOSEgeAixicdzYYA/RJed2jZjG8qsE52f6Nub85cGtyL3ikBg+1uKbmxMugW
=617P
-----END PGP SIGNATURE-----

--Sig_/.Zuc_Y+37Fwq7D1xmC3jp1i--

--===============4813010204298295243==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
nix-dev mailing list
nix-dev@lists.science.uu.nl
http://lists.science.uu.nl/mailman/listinfo/nix-dev

--===============4813010204298295243==--