Message ID | 5aad463476cac88db3561a8c6026659d25329852.camel@gmail.com |
---|---|
State | Accepted |
Headers | show |
Series | [bug#54627] gnu: libressl: Update to 3.3.6. | expand |
On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler wrote: > * gnu/packages/tls.scm (libressl): Update to 3.3.6. > --- > Hi Guix, > > In light of lfam's comment over at guix-devel, I tried updating libressl. > Version 3.3.6 is currently the latest in the 3.3 tree, so it ought to be save > to bump, but I didn't verify that with all packages yet. Bumping to 3.5 won't > be possible without addressing a failing test case. Thanks! Will you be able to test the build of the packages that depend on libressl?
Am Dienstag, dem 29.03.2022 um 18:11 -0400 schrieb Leo Famulari: > On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler > wrote: > > * gnu/packages/tls.scm (libressl): Update to 3.3.6. > > --- > > Hi Guix, > > > > In light of lfam's comment over at guix-devel, I tried updating > > libressl. > > Version 3.3.6 is currently the latest in the 3.3 tree, so it ought > > to be save > > to bump, but I didn't verify that with all packages yet. Bumping > > to 3.5 won't > > be possible without addressing a failing test case. > > Thanks! > > Will you be able to test the build of the packages that depend on > libressl? I'm currently testing the builds. The first one to fail among the list returned by `guix refresh' was epic5, which is a leaf package and also fails for me outside the pre-inst-env. We might want to investigate that separately.
Am Mittwoch, dem 30.03.2022 um 20:33 +0200 schrieb Liliana Marie Prikler: > Am Dienstag, dem 29.03.2022 um 18:11 -0400 schrieb Leo Famulari: > > On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler > > wrote: > > > * gnu/packages/tls.scm (libressl): Update to 3.3.6. > > > --- > > > Hi Guix, > > > > > > In light of lfam's comment over at guix-devel, I tried updating > > > libressl. Version 3.3.6 is currently the latest in the 3.3 tree, > > > so it ought to be save to bump, but I didn't verify that with all > > > packages yet. Bumping to 3.5 won't be possible without > > > addressing a failing test case. > > > > Thanks! > > > > Will you be able to test the build of the packages that depend on > > libressl? > I'm currently testing the builds. The first one to fail among the > list returned by `guix refresh' was epic5, which is a leaf package > and also fails for me outside the pre-inst-env. We might want to > investigate that separately. Two other failures: clamav fails because llvm can't be built (same on master), and acme-client fails due to missing certs (same on master). Note: "master" here means my latest guix pull, which might be lagging behind some bit, but other than that returns the same errors. Cheers
Why is clamav built with libressl? If libressl cannot be updated in a timely manner it is better to switch clamav and all other packages that don't strictly require libressl to openssl. The cookback example to build packages with libressl instead of openssl will help users who would rather use libressl.
Am Dienstag, dem 29.03.2022 um 18:11 -0400 schrieb Leo Famulari: > On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler > wrote: > > * gnu/packages/tls.scm (libressl): Update to 3.3.6. > > --- > > Hi Guix, > > > > In light of lfam's comment over at guix-devel, I tried updating > > libressl. > > Version 3.3.6 is currently the latest in the 3.3 tree, so it ought > > to be save to bump, but I didn't verify that with all packages > > yet. Bumping to 3.5 won't be possible without addressing a failing > > test case. > > Thanks! > > Will you be able to test the build of the packages that depend on > libressl? Since this didn't fail any package that isn't currently failing (at the very least clamav has its own bug report by now), I've pushed this now. Let me know if that was a mistake. Cheers :)
On Tue, Apr 12, 2022 at 08:46:01PM +0200, Liliana Marie Prikler wrote: > Since this didn't fail any package that isn't currently failing (at the > very least clamav has its own bug report by now), I've pushed this now. > Let me know if that was a mistake. I think that's the right choice, thank you!
diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm index c776085cad..99e9b429ce 100644 --- a/gnu/packages/tls.scm +++ b/gnu/packages/tls.scm @@ -610,14 +610,14 @@ (define-public bearssl (define-public libressl (package (name "libressl") - (version "3.3.3") + (version "3.3.6") (source (origin (method url-fetch) (uri (string-append "mirror://openbsd/LibreSSL/" "libressl-" version ".tar.gz")) (sha256 (base32 - "0rihprcgxsydsbcqgd1952k2cfn4jmp7rlyp1c6sglfc6rdmcwd4")))) + "16jbzqj9wy2z10x8ppx63idw44k0d3wly0grpar0s6g1cn9q8a1z")))) (build-system gnu-build-system) (arguments `(#:configure-flags