Fresh install of 1.2.0 can't guix pull
(address . bug-guix@gnu.org)
I believe there's TLS issues with pulling for the current 1.2.0 release.
root@horna ~# guix pull
substitute: updating substitutes from 'https://guix.cbaines.net'... 100.0%
0.0 MB will be downloaded
downloading from https://guix.cbaines.net/nar/lzip/zg72c146skpca45ijvjigqhqgx0mwiny-le-certs-0...
le-certs-0 4KiB 1.8MiB/s 00:00 [##################] 100.0%
Updating channel 'guix' from Git repository at 'https://git.savannah.gnu.org/git/guix.git'...
guix pull: error: Git error: the SSL certificate is invalid
root@horna ~# wget https://git.savannah.gnu.org/git/guix.git
--2021-02-28 11:22:49-- https://git.savannah.gnu.org/git/guix.git
Resolving git.savannah.gnu.org (git.savannah.gnu.org)... 209.51.188.201, 2001:470:142:5::201
Connecting to git.savannah.gnu.org (git.savannah.gnu.org)|209.51.188.201|:443... connected.
ERROR: The certificate of ‘git.savannah.gnu.org’ is not trusted.
ERROR: The certificate of ‘git.savannah.gnu.org’ doesn't have a known issuer.
This is probably possible to work around by doing:
guix pull --url=http://git.savannah.gnu.org/git/guix.git
As the commit signatures are checked, the risk of not using HTTPS should
be reduced.
-----BEGIN PGP SIGNATURE-----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=8Wb6
-----END PGP SIGNATURE-----