Received: (at 33253) by debbugs.gnu.org; 4 Nov 2018 16:30:19 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Sun Nov 04 11:30:18 2018
Received: from localhost ([127.0.0.1]:34181 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1gJLI2-00023Q-Nu
for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 11:30:18 -0500
Received: from m4s11.vlinux.de ([83.151.27.109]:34188 helo=bjoernhoefling.de)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <bjoern.hoefling@HIDDEN>)
id 1gJLI1-00023I-16
for 33253 <at> debbugs.gnu.org; Sun, 04 Nov 2018 11:30:17 -0500
Received: from alma-ubu (aftr-185-17-204-48.dynamic.mnet-online.de
[185.17.204.48])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by bjoernhoefling.de (Postfix) with ESMTPSA id 7D9AC40A4B;
Sun, 4 Nov 2018 17:30:15 +0100 (CET)
Date: Sun, 4 Nov 2018 17:30:14 +0100
From: =?UTF-8?B?QmrDtnJuIEjDtmZsaW5n?= <bjoern.hoefling@HIDDEN>
To: Gnu =?UTF-8?B?UsO2b3R5?= <walidslack@HIDDEN>
Subject: Re: bug#33253: nss cannot build
Message-ID: <20181104173014.0a56d2dd@alma-ubu>
In-Reply-To: <CAOWR9dsydTMsydzA3UdSeHoYe1etdBZYK4_Jfk1pMpkbF8o8Gg@HIDDEN>
References: <CAOWR9dsydTMsydzA3UdSeHoYe1etdBZYK4_Jfk1pMpkbF8o8Gg@HIDDEN>
X-Mailer: Claws Mail 3.13.2 (GTK+ 2.24.30; x86_64-pc-linux-gnu)
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
boundary="Sig_/tpLCyC=R2s8Q6l4hSFkhvBG"; protocol="application/pgp-signature"
X-Spam-Score: 0.1 (/)
X-Debbugs-Envelope-To: 33253
Cc: 33253 <at> debbugs.gnu.org
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -0.9 (/)
--Sig_/tpLCyC=R2s8Q6l4hSFkhvBG
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
On Sun, 4 Nov 2018 09:52:44 +0000
Gnu R=C3=B6oty <walidslack@HIDDEN> wrote:
> HI from 2 days I build the installation of guixSD to
> berlin.guixsd.org and nss-3.36.6 cant build.
This was also reported on guix-help by Brian Woodcox.
Here is some analysis I reported to that thread:
This package does not build reproducibly. At least in the long term:
There are tests that check certificates on temporal validity and that
depends on the system time.
I can reproduce your result with the 3.39 version. It looks like one
certificate is expired. All 6 failing tests look about like this one:
s -d AllDB -pp - PASSED
chains.sh: Verifying certificate(s) PayPalEE.cert with flags -d AllDB -pp =
=20
-o OID.2.16.840.1.114412.1.1=20
vfychain -d AllDB -pp -vv -o OID.2.16.840.1.114412.1.1 /tmp/guix-buil=
d-nss
-3.39.drv-0/nss-3.39/nss/tests/libpkix/certs/PayPalEE.cert=20
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. PayPalEE :
ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is pass
chains.sh: #1555: RealCerts: Verifying certificate(s) PayPalEE.cert with f=
lags -d AllDB -pp -o OID.2.16.840.1.114412.1.1 - FAILED
I don't know how to check the expiration date of PayPalEE.cert.
It looks like upstream has not yet worked on it, as the file was lastly
modified two years ago:
https://hg.mozilla.org/projects/nss/log/tip/tests/libpkix/certs/PayPalEE.ce=
rt
Cmp also this bug that demands non-expiration certificates:
https://bugzilla.mozilla.org/show_bug.cgi?id=3D1330010
Building 3.40 does not work with just updating version/hashsum.
A quick solution would be to build nss from a Guix git-checkout and
disable tests. But it has many dependencies, so you more or less rebuild th=
e world.
Bj=C3=B6rn
--Sig_/tpLCyC=R2s8Q6l4hSFkhvBG
Content-Type: application/pgp-signature
Content-Description: OpenPGP digital signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iEYEARECAAYFAlvfHpYACgkQvyhstlk+X/2UGgCeNOjEgts62kBSjaZU8RFSLLj9
KB0An0bAlIcLxQzTvq4fzO6yz+kekcBo
=6Iju
-----END PGP SIGNATURE-----
--Sig_/tpLCyC=R2s8Q6l4hSFkhvBG--
bug-guix@HIDDEN:bug#33253; Package guix.
Full text available.Received: (at submit) by debbugs.gnu.org; 4 Nov 2018 12:52:56 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Sun Nov 04 07:52:56 2018 Received: from localhost ([127.0.0.1]:33428 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1gJHtf-0003DY-UN for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 07:52:56 -0500 Received: from eggs.gnu.org ([208.118.235.92]:48873) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <quiliro@HIDDEN>) id 1gJHte-0003DN-I0 for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 07:52:54 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from <quiliro@HIDDEN>) id 1gJHtV-0006fi-BD for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 07:52:49 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=disabled version=3.3.2 Received: from lists.gnu.org ([2001:4830:134:3::11]:43973) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from <quiliro@HIDDEN>) id 1gJHtT-0006co-2T for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 07:52:45 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:58468) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from <quiliro@HIDDEN>) id 1gJHtR-0007M5-29 for bug-guix@HIDDEN; Sun, 04 Nov 2018 07:52:42 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from <quiliro@HIDDEN>) id 1gJHtK-0006QR-Fu for bug-guix@HIDDEN; Sun, 04 Nov 2018 07:52:38 -0500 Received: from mx1.riseup.net ([198.252.153.129]:49289) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from <quiliro@HIDDEN>) id 1gJHtJ-0006Li-GV for bug-guix@HIDDEN; Sun, 04 Nov 2018 07:52:33 -0500 Received: from piha.riseup.net (piha-pn.riseup.net [10.0.1.163]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.riseup.net", Issuer "COMODO RSA Domain Validation Secure Server CA" (verified OK)) by mx1.riseup.net (Postfix) with ESMTPS id 7ED781A01F4 for <bug-guix@HIDDEN>; Sun, 4 Nov 2018 04:52:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1541335950; bh=b8OFbSDQd7QjahkYFsuaOm5bD+pE7XMocHohWr9NXdA=; h=Date:From:To:Subject:Reply-To:In-Reply-To:References:From; b=YXvHujietx9mSj9YHJZH5v+WYf4ZZzu4hOAZlJ7CjkGBu9i2nAejBSNMSMPGr2seG x18EMQ4SKts8Qdr/NOt/R2FHmHYwoTkjwdJcnqWlSFtSRYSCrbuRzSwVD1/noXJFE0 LB4VJ2hoEGsMCqGyW3NEehJvSjJcjvGxqbIm4+sM= X-Riseup-User-ID: CB5AA8AB644E5DB231710DF2D2B2F10A4D8AE2E3DB91CB017C942FD1288B5907 Received: from [127.0.0.1] (localhost [127.0.0.1]) by piha.riseup.net with ESMTPSA id 50B82645DB for <bug-guix@HIDDEN>; Sun, 4 Nov 2018 04:52:30 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Date: Sun, 04 Nov 2018 04:52:29 -0800 From: Quiliro Ordonez <quiliro@HIDDEN> To: bug-guix@HIDDEN Subject: Re: bug#33253: nss cannot build Mail-Reply-To: quiliro@HIDDEN In-Reply-To: <CAOWR9dsydTMsydzA3UdSeHoYe1etdBZYK4_Jfk1pMpkbF8o8Gg@HIDDEN> References: <CAOWR9dsydTMsydzA3UdSeHoYe1etdBZYK4_Jfk1pMpkbF8o8Gg@HIDDEN> Message-ID: <075f2744c3f4eb6df7d0baaf57e4a2e7@HIDDEN> Content-Transfer-Encoding: quoted-printable X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-Received-From: 2001:4830:134:3::11 X-Spam-Score: -4.1 (----) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Reply-To: quiliro@HIDDEN Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -5.1 (-----) El 2018-11-04 04:52, Gnu R=C3=B6oty escribi=C3=B3: > HI from 2 days I build the installation of guixSD to berlin.guixsd.org = and nss-3.36.6 cant build. Errors? Tested solutions? Understandings about Guix? Please provide information so that helping is not so difficult.
bug-guix@HIDDEN:bug#33253; Package guix.
Full text available.Received: (at submit) by debbugs.gnu.org; 4 Nov 2018 09:53:11 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Sun Nov 04 04:53:11 2018 Received: from localhost ([127.0.0.1]:33329 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1gJF5j-000347-J2 for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 04:53:11 -0500 Received: from eggs.gnu.org ([208.118.235.92]:37769) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <walidslack@HIDDEN>) id 1gJF5h-00033u-Qt for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 04:53:10 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from <walidslack@HIDDEN>) id 1gJF5b-0001Kz-Tb for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 04:53:04 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-0.5 required=5.0 tests=BAYES_05,FREEMAIL_FROM, HTML_MESSAGE autolearn=disabled version=3.3.2 Received: from lists.gnu.org ([2001:4830:134:3::11]:59815) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from <walidslack@HIDDEN>) id 1gJF5b-0001JO-Oe for submit <at> debbugs.gnu.org; Sun, 04 Nov 2018 04:53:03 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:47370) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from <walidslack@HIDDEN>) id 1gJF5a-00083J-O6 for bug-guix@HIDDEN; Sun, 04 Nov 2018 04:53:03 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from <walidslack@HIDDEN>) id 1gJF5Y-00010B-QI for bug-guix@HIDDEN; Sun, 04 Nov 2018 04:53:02 -0500 Received: from mail-io1-xd36.google.com ([2607:f8b0:4864:20::d36]:33586) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from <walidslack@HIDDEN>) id 1gJF5Y-0000fx-Kw for bug-guix@HIDDEN; Sun, 04 Nov 2018 04:53:00 -0500 Received: by mail-io1-xd36.google.com with SMTP id f12-v6so4424450iog.0 for <bug-guix@HIDDEN>; Sun, 04 Nov 2018 01:52:56 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=+l5qHO6W5Y1tqMhUKAflDn0Dp5gR9j+mB0b3fnCMrFc=; b=J34VUbYsFJd4rG6YDRZgQwGTliDXG31TFX2K+eDRleXn7Ar6P0Ql6hlIQXWPNN9zvR LgdARrptx/f6Fjn2XXbbVZXSD9jNi5OE/WUb83a9/GZZckyodeNQ8O+tr0FS3STzHgYX wXWUdURSUe709QwmCArCmhjZDUXBzLK9RJo38kwUhw/nZbD4ubssSlNIniVoaXYKLnnn lzOhma9Uf0vUMQX7ZNqdKUwunCKpmRdL0cV2Cn7luaUMySz1KGZWh8WzjIzNVLNDJhss iPxy6F58qr3WmjbQhTFYo2KmgyF8t0+lwJCRiDzpB6DldM5RFEfxIPZ9pE/TiZpOdZTC DTdg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=+l5qHO6W5Y1tqMhUKAflDn0Dp5gR9j+mB0b3fnCMrFc=; b=e1aNsUkCvQeaHlXRt4pUaJ2l+VWRW1CHTqXfZYLXpqZ6OS42rAGOvdvLHEBn3rxLM7 PyDen13GyGyo5PK5TphLiIPOiXxOV2koUaDgM7rTgPS8d/OneOljDrFkDeD3/tLslTRX nQO7+mWY1ftBE9Dr5CCp9HVbkIlXjGdKzuwsAf8rhv14ACVymdRTZ7vvucAHKkU6067K /bRpnf1rONH5PuEropum2EcmZX5zIIuXwZKiGcIgAphgBFpvhJwonlGosxWN4w+Nc6fh xD89F+eL3kek7Iv6WY/bEcR1d/YqJIktvzXdOOo65fa5U65FXJENwvs4H7oEib5fhALZ aG8A== X-Gm-Message-State: AGRZ1gKxB2fuosf7ZhuTG3UHbwR2m2ec30kHQfCEfSSSX25lFn9U2gNc hgVHo8PliyANGbuZDaigaWa75fDnPjVRVI+W2Lbn7Q== X-Google-Smtp-Source: AJdET5ft8UwwZHMmd3RlsyO9swqlru3b2DLagA+kyC8SmL3w+6MyCBqcVRu+ERNSnyAQ6FZJza1S+7DKBb/mBDngubk= X-Received: by 2002:a5e:d717:: with SMTP id v23-v6mr14756636iom.54.1541325176126; Sun, 04 Nov 2018 01:52:56 -0800 (PST) MIME-Version: 1.0 From: =?UTF-8?Q?Gnu_R=C3=B6oty?= <walidslack@HIDDEN> Date: Sun, 4 Nov 2018 09:52:44 +0000 Message-ID: <CAOWR9dsydTMsydzA3UdSeHoYe1etdBZYK4_Jfk1pMpkbF8o8Gg@HIDDEN> Subject: nss cannot build To: bug-guix@HIDDEN Content-Type: multipart/alternative; boundary="0000000000009b44a00579d3bb68" X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-Received-From: 2001:4830:134:3::11 X-Spam-Score: -4.0 (----) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -5.0 (-----) --0000000000009b44a00579d3bb68 Content-Type: text/plain; charset="UTF-8" HI from 2 days I build the installation of guixSD to berlin.guixsd.org and nss-3.36.6 cant build. --0000000000009b44a00579d3bb68 Content-Type: text/html; charset="UTF-8" <div dir="ltr">HI from 2 days I build the installation of guixSD to <a href="http://berlin.guixsd.org">berlin.guixsd.org</a> and nss-3.36.6 cant build.<br></div> --0000000000009b44a00579d3bb68--
Gnu Röoty <walidslack@HIDDEN>:bug-guix@HIDDEN.
Full text available.bug-guix@HIDDEN:bug#33253; Package guix.
Full text available.
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997 nCipher Corporation Ltd,
1994-97 Ian Jackson.