Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst.

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst.

From:	ng0
Subject:	Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst.
Date:	Sun, 28 Aug 2016 21:34:08 +0000

Hi,

Ludovic Courtès <address@hidden> writes:

> ng0 <address@hidden> skribis:
>
>> First things first: Corrections will happen, this is not what I ask
>> for. I need help with getting pbpst (which just uses curl for this) to
>> learn about the certificates on the system.
>
> [...]
>
>> +         (modify-phases %standard-phases
>> +           (replace 'configure
>> +             (lambda _
>> +               (substitute* "Makefile"
>> +                 (("@./make.sh") "")
>> +                 ;; XXX: Because this is a drop-in replacement build 
>> system, there are
>> +                 ;; some unexplainable special behaviors introduced. One of 
>> them is that
>> +                 ;; building pbpst binary out to ../dist/pbpst fails, but 
>> inside cwd
>> +                 ;; "src/" succeeds. I blame dark matter. Fix this if you 
>> feel the
>> +                 ;; desire for a headache.
>> +                 (("dist/\\$\\(PROGNM\\)") "src/$(PROGNM)")
>> +                 (("src/\\$\\(PROGNM\\)\\.1") "dist/$(PROGNM).1"))
>> +               (substitute* "Tuprules.tup"
>> +                 (("`git describe --long --tags`") ,version))))
>> +               ;;(setenv "SSL_CERT_FILE" "/dev/null"))) ; I have no idea.
>> +               ;;(setenv "SSL_CERT_DIR" "/etc/ssl/certs")
>> +               ;;(setenv "SSL_CERT_FILE" 
>> "/etc/ssl/certs/ca-certificates.crt")))
>
> I’m not sure what problem you’re experiencing here.

A build environment + log can be viewed at https://dl.n0.is/debug/ or
https://tor.n0.is for the onion (we are working on getting a .gnu for
gnunet access).

> However, note that the build environment lacks /etc/ssl as discussed here:
>
>   
> https://www.gnu.org/software/guix/manual/html_node/Build-Environment-Setup.html#index-chroot

That is the build environment, the problem appears after the build.
The application itselfs just uses curl and the abilities of curl I was
assured by the developer, so there has to be something, but as I never
encountered this before on Guix I don't know where to start.
strace wasn't insightful either, neither gdb.

> The ‘nss-certs’ package provides X.509 certificates:
>
>   
> https://www.gnu.org/software/guix/manual/html_node/X_002e509-Certificates.html

I commented nss-certs, enabled or disabled it made no difference to the
resulting binary.

> HTH!
>
> Ludo’.

Thanks for the feedback,
-- 
ng0
For non-prism friendly talk find me on http://www.psyced.org

[Prev in Thread]

Current Thread

[Next in Thread]

HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst., ng0, 2016/08/25
- Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst., Ludovic Courtès, 2016/08/28
  - Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst., ng0 <=
    - Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst., Ludovic Courtès, 2016/08/31

Prev by Date: Re: [PATCH] doc: The description should not be used as an introduction to generics.
Next by Date: Re: /var/guix/gcroot/profiles points to non-existing /mnt subdirectory
Previous by thread: Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst.
Next by thread: Re: HELP needed with CA certificates! [PATCH] gnu: Add tup, Add pbpst.
Index(es):
- Date
- Thread