[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst.
From: |
ng0 |
Subject: |
Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst. |
Date: |
Sun, 28 Aug 2016 21:34:08 +0000 |
Hi,
Ludovic Courtès <address@hidden> writes:
> ng0 <address@hidden> skribis:
>
>> First things first: Corrections will happen, this is not what I ask
>> for. I need help with getting pbpst (which just uses curl for this) to
>> learn about the certificates on the system.
>
> [...]
>
>> + (modify-phases %standard-phases
>> + (replace 'configure
>> + (lambda _
>> + (substitute* "Makefile"
>> + (("@./make.sh") "")
>> + ;; XXX: Because this is a drop-in replacement build
>> system, there are
>> + ;; some unexplainable special behaviors introduced. One of
>> them is that
>> + ;; building pbpst binary out to ../dist/pbpst fails, but
>> inside cwd
>> + ;; "src/" succeeds. I blame dark matter. Fix this if you
>> feel the
>> + ;; desire for a headache.
>> + (("dist/\\$\\(PROGNM\\)") "src/$(PROGNM)")
>> + (("src/\\$\\(PROGNM\\)\\.1") "dist/$(PROGNM).1"))
>> + (substitute* "Tuprules.tup"
>> + (("`git describe --long --tags`") ,version))))
>> + ;;(setenv "SSL_CERT_FILE" "/dev/null"))) ; I have no idea.
>> + ;;(setenv "SSL_CERT_DIR" "/etc/ssl/certs")
>> + ;;(setenv "SSL_CERT_FILE"
>> "/etc/ssl/certs/ca-certificates.crt")))
>
> I’m not sure what problem you’re experiencing here.
A build environment + log can be viewed at https://dl.n0.is/debug/ or
https://tor.n0.is for the onion (we are working on getting a .gnu for
gnunet access).
> However, note that the build environment lacks /etc/ssl as discussed here:
>
>
> https://www.gnu.org/software/guix/manual/html_node/Build-Environment-Setup.html#index-chroot
That is the build environment, the problem appears after the build.
The application itselfs just uses curl and the abilities of curl I was
assured by the developer, so there has to be something, but as I never
encountered this before on Guix I don't know where to start.
strace wasn't insightful either, neither gdb.
> The ‘nss-certs’ package provides X.509 certificates:
>
>
> https://www.gnu.org/software/guix/manual/html_node/X_002e509-Certificates.html
I commented nss-certs, enabled or disabled it made no difference to the
resulting binary.
> HTH!
>
> Ludo’.
Thanks for the feedback,
--
ng0
For non-prism friendly talk find me on http://www.psyced.org