Re: [PATCH] gnu: curl: Add ca-bundle to config.

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] gnu: curl: Add ca-bundle to config.

From:	ng0
Subject:	Re: [PATCH] gnu: curl: Add ca-bundle to config.
Date:	Wed, 04 Jan 2017 17:07:07 +0000

Marius Bakke <address@hidden> writes:

> Marius Bakke <address@hidden> writes:
>
>> ng0 <address@hidden> writes:
>>
>>> * gnu/packages/curl.scm (curl)[arguments]: Add "--with-ca-bundle" configure 
>>> flag.
>>> [arguments]: Disable failing test number 324.
>>> ---
>>>  gnu/packages/curl.scm | 13 ++++++++++++-
>>>  1 file changed, 12 insertions(+), 1 deletion(-)
>>>
>>> diff --git a/gnu/packages/curl.scm b/gnu/packages/curl.scm
>>> index 7329d870d..3473055b8 100644
>>> --- a/gnu/packages/curl.scm
>>> +++ b/gnu/packages/curl.scm
>>> @@ -4,6 +4,7 @@
>>>  ;;; Copyright © 2015 Tomáš Čech <address@hidden>
>>>  ;;; Copyright © 2015 Ludovic Courtès <address@hidden>
>>>  ;;; Copyright © 2016 Leo Famulari <address@hidden>
>>> +;;; Copyright © 2017 ng0 <address@hidden>
>>>  ;;;
>>>  ;;; This file is part of GNU Guix.
>>>  ;;;
>>> @@ -65,7 +66,8 @@
>>>         ("pkg-config" ,pkg-config)
>>>         ("python" ,python-2)))
>>>     (arguments
>>> -    `(#:configure-flags '("--with-gnutls" "--with-gssapi")
>>> +    `(#:configure-flags '("--with-gnutls" "--with-gssapi"
>>> +                          
>>> "--with-ca-bundle=/etc/ssl/certs/ca-certificates.crt")
>>
>> This may not work on all distros, and is "impure" since this path is not
>> managed by Guix. If we are doing this, it should be referring to
>> (string-append (assoc-ref %build-inputs "nss-certs") "/etc/ssl/...").
>> That will likely fix the test as well.
>
> I realized shortly after posting why this wasn't done already. Curl has
> 1403 dependent packages, which would apply for "nss-certs" as well if
> that is added as input. Obviously we want to be able to update TLS
> certificates quickly without rebuilding ~1/4 of the tree.
>
> Perhaps it could be added as a separate package, or by e.g. renaming the
> current curl package to "curl-minimal".

Okay, I will wait for more people to comment on the best route to
follow here for curl.

For gnurl:
As right now gnurl is only required by gnunet and related
packages, I will send in a patch for this in advance for gnurl.
-- 
♥Ⓐ  ng0
PGP keys and more: https://n0is.noblogs.org/ http://ng0.chaosnet.org

[Prev in Thread]

Current Thread

[Next in Thread]

PATCH as first attempt to fix the sad curl situation, ng0, 2017/01/04
- [PATCH] gnu: curl: Add ca-bundle to config., ng0, 2017/01/04
  - Re: [PATCH] gnu: curl: Add ca-bundle to config., Marius Bakke, 2017/01/04
    - Re: [PATCH] gnu: curl: Add ca-bundle to config., Marius Bakke, 2017/01/04
    - Re: [PATCH] gnu: curl: Add ca-bundle to config., ng0 <=
    - Re: [PATCH] gnu: curl: Add ca-bundle to config., ng0, 2017/01/04
    - Re: [PATCH] gnu: curl: Add ca-bundle to config., ng0, 2017/01/04
    - Re: [PATCH] gnu: curl: Add ca-bundle to config., Ricardo Wurmus, 2017/01/05
    - GnuTLS and the “trust store”, Ludovic Courtès, 2017/01/04
    - Re: GnuTLS and the “trust store”, ng0, 2017/01/04
    - Re: GnuTLS and the “trust store”, Ludovic Courtès, 2017/01/05
    - Re: GnuTLS and the “trust store”, Ricardo Wurmus, 2017/01/05
    - Re: GnuTLS and the “trust store”, Marius Bakke, 2017/01/05
    - Re: GnuTLS and the “trust store”, Ricardo Wurmus, 2017/01/05
    - Re: GnuTLS and the “trust store”, Ludovic Courtès, 2017/01/05

Prev by Date: Re: [PATCH] gnu: Add ldc-1.1.0-beta4
Next by Date: Re: [PATCH] gnu: curl: Add ca-bundle to config.
Previous by thread: Re: [PATCH] gnu: curl: Add ca-bundle to config.
Next by thread: Re: [PATCH] gnu: curl: Add ca-bundle to config.
Index(es):
- Date
- Thread