GNU bug report logs -
#75026
[PATCH core-updates 0/7] Update gnutls and curl.
Previous Next
Full log
Message #43 received at 75026-done <at> debbugs.gnu.org (full text, mbox):
Hi Ludovic,
Ludovic Courtès <ludo <at> gnu.org> writes:
[...]
>> + #~(list (string-append
>> + "XFAIL_TESTS="
>> + ;; This test checks that the default trust store is
>> + ;; readable; expect it to fail since the trust store
>> + ;; doesn't exist in the build environment.
>> + "trust-store "
>
> This suggests that the patch above was still useful, after all? (The
> patch still applies apparently:
> <https://ci.guix.gnu.org/build/6753571/log>.)
There was an issue where the certificates added were not trusted by
p11-kit, despite being added to something called the 'trust_paths',
haha! The trick was to expose them via an 'anchors/' subdirectory.
p11-kit special-case this for trusted .pem certificates made available
via a directory.
> Also, lack of the patch might trigger failures in the test suites of
> dependents. What does ‘guix build -P1 gnutls’ say?
>
>> + ;; This one fails only inside the build environment, for
>> + ;; reasons unknown (see:
>> + ;; <https://gitlab.com/gnutls/gnutls/-/issues/1634>).
>> + "tls13/compress-cert-neg2 "))
>
> This is weird, would be interesting to investigate, maybe stracing the
> test to see why it would fail in the build environment and not outside
> of it?
That's been resolved via the '--with-zlib=link configuration flag.
I'll close this series and submit a fresh one, since the curl updates
has been moved to another series.
--
Thanks,
Maxim
This bug report was last modified 23 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.