[Pkg-javascript-devel] Bug#841981: nodejs should recommend ca-certificates
Jonas Smedegaard
jonas at jones.dk
Tue Oct 25 08:14:12 UTC 2016
Quoting Jérémy Lal (2016-10-25 01:49:01)
> 2016-10-25 1:43 GMT+02:00 Daniel Lo Nigro <lists at dan.cx>:
>
> > Apart from that, is there a good reason to use Recommend instead of Depend
> >> ?
> > I'm not sure. wget and libcurl3-gnutls both "Recommend" rather than
> > "Depend" on ca-certificates. I think it's because wget still mostly
> > works without it, it's just TLS/SSL connections that fail. Node.js
> > behaves the same way, all of Node.js works without ca-certificates
> > except for TLS connections.
> >
> >
> I'm leaning toward Depend, because upstream bundles certificates (and
> the nodejs debian package patches upstream to use ca-certificates
> instead), users expect the usual certificates independently of how
> they installed nodejs.
Some use-cases of nodejs does not involve network access, and therefore
not TLS either. Example build environment. Bootstrapping a chroot with
ca-certificates takes more time and diskspace than without it.
The correct package relation to use if there are corner cases without
need is Recommends:.
- Jonsa
--
* Jonas Smedegaard - idealist & Internet-arkitekt
* Tlf.: +45 40843136 Website: http://dr.jones.dk/
[x] quote me freely [ ] ask before reusing [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-javascript-devel/attachments/20161025/6d856f35/attachment.sig>
More information about the Pkg-javascript-devel
mailing list