GNU bug report logs -
#31303
substitute: guix substitute: error: TLS error in procedure 'handshake'
Previous Next
To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 31303 in the body.
You can then email your comments to 31303 AT debbugs.gnu.org in the normal way.
Toggle the display of automated, internal messages from the tracker.
Report forwarded
to
bug-guix <at> gnu.org:
bug#31303; Package
guix.
(Sat, 28 Apr 2018 19:17:02 GMT)
Full text and
rfc822 format available.
Acknowledgement sent
to
George myglc2 Clemmer <myglc2 <at> gmail.com>:
New bug report received and forwarded. Copy sent to
bug-guix <at> gnu.org.
(Sat, 28 Apr 2018 19:17:02 GMT)
Full text and
rfc822 format available.
Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):
I am attempting to supply substitutes from a GuixSD install (g1) to a
'guix system vm-image' (sysi17.local). I did this on g1 ...
g1 <at> g1 ~$ sudo guix publish
guix publish: warning: server running as root; consider using the '--user' option!
publishing /gnu/store on 0.0.0.0, port 8080
... and I get this error on sysi17 ...
g1 <at> sysi17 ~ [env]$ guix environment --substitute-urls=https://g1.local:8080
substitute: guix substitute: error: TLS error in procedure 'handshake': An unexpected TLS packet was received.
guix environment: error: corrupt input while restoring archive from #<closed: file 32da4d0>
... which looks like this on g1 ...
In ice-9/boot-9.scm:
841:4 4 (with-throw-handler _ _ _)
In web/server/http.scm:
127:28 3 (_)
In web/request.scm:
205:31 2 (read-request #<closed: file 292dcb0> _)
In web/http.scm:
1141:6 1 (read-request-line _)
In ice-9/boot-9.scm:
752:25 0 (dispatch-exception _ _ _)
Bad request: Bad Request-Line:
"\x16\x03\x01\x00ò\x01\x00\x00î\x03\x03Zäº\x17<À\x9aËù»ò\x8c\x12n8y:\x16¸q\x0fá\x87Gtéc´8¿±<\x00\x00rÀ,À\x87Ì©À\xadÀ"
The keys are setup this way ...
g1 <at> g1 ~$ cat /etc/guix/signing-key.pub
(public-key
(ecc
(curve Ed25519)
(q #C38DCF2B0EBE663B9450BEFB0E77DFAF6643E8E971318F7002721076ED9C9788#)
)
)
g1 <at> sysi17 ~ [env]$ sudo cat /etc/guix/acl
Password:
(acl
(entry
(public-key
(ecc
(curve Ed25519)
(q #C38DCF2B0EBE663B9450BEFB0E77DFAF6643E8E971318F7002721076ED9C9788#)
)
)
(tag
(guix import)
)
)
[...]
)
sysi17 has no trouble reaching hydra ...
g1 <at> sysi17 ~ [env]$ guix environment
--substitute-urls=https://mirror.hydra.gnu.org --dry-run hello
substitute: updating list of substitutes from
'https://mirror.hydra.gnu.org'... 100.0%
[...]
or pinging g1...
g1 <at> sysi17 ~ [env]$ ping g1.local
PING g1.local (192.168.1.7): 56 data bytes
64 bytes from 192.168.1.7: icmp_seq=0 ttl=64
[...]
Both systems were configured using ...
guix (GNU Guix) 0.14.0.4439-eb88e
... which was built from ...
5b862761f2a60af79b4c16851454a5e792ef4f56 gnu: guix: Update to ab85cf7.
... with 4.16.4 reverted ...
ba39d3280759fb20a4ff0092a5afac721a5fa769 "gnu: linux-libre: Update to 4.16.4."
TIA - George
Information forwarded
to
bug-guix <at> gnu.org:
bug#31303; Package
guix.
(Sat, 28 Apr 2018 19:31:01 GMT)
Full text and
rfc822 format available.
Message #8 received at 31303 <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
On 04/28/2018 at 15:16 George myglc2 Clemmer writes:
> I am attempting to supply substitutes from a GuixSD install (g1) to a
> 'guix system vm-image' (sysi17.local). I did this on g1 ...
Oops, here are configs (sys.scm was used for g1)...
[sys.scm (application/octet-stream, attachment)]
[sysi17.scm (application/octet-stream, attachment)]
Information forwarded
to
bug-guix <at> gnu.org:
bug#31303; Package
guix.
(Sun, 29 Apr 2018 00:20:01 GMT)
Full text and
rfc822 format available.
Message #11 received at 31303 <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
Hey George,
On Sat, Apr 28 2018, George myglc2 Clemmer wrote:
> g1 <at> sysi17 ~ [env]$ guix environment
> --substitute-urls=https://g1.local:8080
The guix substitute command only runs a normal http server, so you
have to use http://, not https://. I think the other servers you
mention are behind proxies which handle the SSL part and forward
the requests on to the substitute process.
Does it work if you run this instead?
guix environment --substitute-urls=http://g1.local:8080
Carlo
[signature.asc (application/pgp-signature, inline)]
Information forwarded
to
bug-guix <at> gnu.org:
bug#31303; Package
guix.
(Sun, 29 Apr 2018 01:28:01 GMT)
Full text and
rfc822 format available.
Message #14 received at 31303 <at> debbugs.gnu.org (full text, mbox):
On 04/29/2018 at 10:19 Carlo Zancanaro writes:
> Hey George,
>
> On Sat, Apr 28 2018, George myglc2 Clemmer wrote:
>> g1 <at> sysi17 ~ [env]$ guix environment
>> --substitute-urls=https://g1.local:8080
>
> The guix substitute command only runs a normal http server, so you
> have to use http://, not https://. I think the other servers you
> mention are behind proxies which handle the SSL part and forward the
> requests on to the substitute process.
>
> Does it work if you run this instead?
>
> guix environment --substitute-urls=http://g1.local:8080
>
> Carlo
LOL, yes it does!
Duh, I guess I was so impressed by all the HTTPS's in "3.3.3 Substitute
Authentication" that I couldn't see the HTTP's in "5.11 Invoking ‘guix
publish’" ;-)
Many thanks - George
Reply sent
to
George myglc2 Clemmer <myglc2 <at> gmail.com>:
You have taken responsibility.
(Sun, 29 Apr 2018 01:31:01 GMT)
Full text and
rfc822 format available.
Notification sent
to
George myglc2 Clemmer <myglc2 <at> gmail.com>:
bug acknowledged by developer.
(Sun, 29 Apr 2018 01:31:01 GMT)
Full text and
rfc822 format available.
Message #19 received at 31303-done <at> debbugs.gnu.org (full text, mbox):
bug archived.
Request was from
Debbugs Internal Request <help-debbugs <at> gnu.org>
to
internal_control <at> debbugs.gnu.org.
(Sun, 27 May 2018 11:24:05 GMT)
Full text and
rfc822 format available.
This bug report was last modified 7 years and 28 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.