[PATCH] gnu: libressl: Update to 3.3.6.

Done

Details

3 participants

kiasoc5
Leo Famulari
Liliana Marie Prikler

Owner: unassigned

Submitted by: Liliana Marie Prikler

Severity: normal

Liliana Marie Prikler wrote on 29 Mar 2022 21:52

Recipients:(address . guix-patches@gnu.org)

Message-ID:5aad463476cac88db3561a8c6026659d25329852.camel@gmail.com

* gnu/packages/tls.scm (libressl): Update to 3.3.6.

---

Hi Guix,

In light of lfam's comment over at guix-devel, I tried updating libressl.

Version 3.3.6 is currently the latest in the 3.3 tree, so it ought to be save

to bump, but I didn't verify that with all packages yet. Bumping to 3.5 won't

be possible without addressing a failing test case.

Cheers

gnu/packages/tls.scm | 4 ++--

1 file changed, 2 insertions(+), 2 deletions(-)

Toggle diff (23 lines)diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm
index c776085cad..99e9b429ce 100644
--- a/gnu/packages/tls.scm
+++ b/gnu/packages/tls.scm
@@ -610,14 +610,14 @@ (define-public bearssl
 (define-public libressl
   (package
     (name "libressl")
-    (version "3.3.3")
+    (version "3.3.6")
     (source (origin
               (method url-fetch)
               (uri (string-append "mirror://openbsd/LibreSSL/"
                                   "libressl-" version ".tar.gz"))
               (sha256
                (base32
-                "0rihprcgxsydsbcqgd1952k2cfn4jmp7rlyp1c6sglfc6rdmcwd4"))))
+                "16jbzqj9wy2z10x8ppx63idw44k0d3wly0grpar0s6g1cn9q8a1z"))))
     (build-system gnu-build-system)
     (arguments
      `(#:configure-flags
-- 
2.34.0

Leo Famulari wrote on 30 Mar 2022 00:11

Recipients:(name . Liliana Marie Prikler)(address . liliana.prikler@gmail.com)(address . 54627@debbugs.gnu.org)

Message-ID:YkOEG1dC3K/tCm2J@jasmine.lan

On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler wrote:

Toggle quote (9 lines)

> * gnu/packages/tls.scm (libressl): Update to 3.3.6.

> ---

> Hi Guix,

> In light of lfam's comment over at guix-devel, I tried updating libressl.

> Version 3.3.6 is currently the latest in the 3.3 tree, so it ought to be save

> to bump, but I didn't verify that with all packages yet. Bumping to 3.5 won't

> be possible without addressing a failing test case.

Thanks!

Will you be able to test the build of the packages that depend on

libressl?

Liliana Marie Prikler wrote on 30 Mar 2022 20:33

Recipients:(name . Leo Famulari)(address . leo@famulari.name)(address . 54627@debbugs.gnu.org)

Message-ID:387826c2ba196edd1f53a7492aba32b96d3deb80.camel@gmail.com

Am Dienstag, dem 29.03.2022 um 18:11 -0400 schrieb Leo Famulari:

Toggle quote (18 lines)> On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler
> wrote:
> > * gnu/packages/tls.scm (libressl): Update to 3.3.6.
> > ---
> > Hi Guix,
> > 
> > In light of lfam's comment over at guix-devel, I tried updating
> > libressl.
> > Version 3.3.6 is currently the latest in the 3.3 tree, so it ought
> > to be save
> > to bump, but I didn't verify that with all packages yet.� Bumping
> > to 3.5 won't 
> > be possible without addressing a failing test case.
> 
> Thanks!
> 
> Will you be able to test the build of the packages that depend on
> libressl?

I'm currently testing the builds.  The first one to fail among the list
returned by `guix refresh' was epic5, which is a leaf package and also
fails for me outside the pre-inst-env.  We might want to investigate
that separately.

Liliana Marie Prikler wrote on 31 Mar 2022 06:24

Recipients:(name . Leo Famulari)(address . leo@famulari.name)(address . 54627@debbugs.gnu.org)

Message-ID:d178198ce12e439136c15395552fef1705f5692b.camel@gmail.com

Am Mittwoch, dem 30.03.2022 um 20:33 +0200 schrieb Liliana Marie

Prikler:

Toggle quote (21 lines)> Am Dienstag, dem 29.03.2022 um 18:11 -0400 schrieb Leo Famulari:
> > On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler
> > wrote:
> > > * gnu/packages/tls.scm (libressl): Update to 3.3.6.
> > > ---
> > > Hi Guix,
> > > 
> > > In light of lfam's comment over at guix-devel, I tried updating
> > > libressl.  Version 3.3.6 is currently the latest in the 3.3 tree,
> > > so it ought to be save to bump, but I didn't verify that with all
> > > packages yet.� Bumping to 3.5 won't be possible without
> > > addressing a failing test case.
> > 
> > Thanks!
> > 
> > Will you be able to test the build of the packages that depend on
> > libressl?
> I'm currently testing the builds.� The first one to fail among the
> list returned by `guix refresh' was epic5, which is a leaf package
> and also fails for me outside the pre-inst-env.� We might want to
> investigate that separately.

Two other failures: clamav fails because llvm can't be built (same on

master), and acme-client fails due to missing certs (same on master). �

Note: "master" here means my latest guix pull, which might be lagging

behind some bit, but other than that returns the same errors.

Cheers

kiasoc5 wrote on 11 Apr 2022 21:51

Recipients:(address . 54627@debbugs.gnu.org)

Message-ID:N-PAUaX--3-2@tutanota.com

Why is clamav built with libressl? If libressl cannot be updated in a timely manner it is better to switch clamav and all other packages that don't strictly require libressl to openssl. The cookback example to build packages with libressl instead of openssl will help users who would rather use libressl.

Liliana Marie Prikler wrote on 12 Apr 2022 20:46

Recipients:(name . Leo Famulari)(address . leo@famulari.name)(address . 54627-done@debbugs.gnu.org)

Message-ID:5a32fbb2bccb07116b0011bac4b0291fc7bbefed.camel@gmail.com

Am Dienstag, dem 29.03.2022 um 18:11 -0400 schrieb Leo Famulari:

Toggle quote (17 lines)> On Tue, Mar 29, 2022 at 09:52:43PM +0200, Liliana Marie Prikler
> wrote:
> > * gnu/packages/tls.scm (libressl): Update to 3.3.6.
> > ---
> > Hi Guix,
> > 
> > In light of lfam's comment over at guix-devel, I tried updating
> > libressl.
> > Version 3.3.6 is currently the latest in the 3.3 tree, so it ought
> > to be save to bump, but I didn't verify that with all packages
> > yet.� Bumping to 3.5 won't be possible without addressing a failing
> > test case.
> 
> Thanks!
> 
> Will you be able to test the build of the packages that depend on
> libressl?

Since this didn't fail any package that isn't currently failing (at the

very least clamav has its own bug report by now), I've pushed this now.

Let me know if that was a mistake.

Cheers :)

Closed

Leo Famulari wrote on 28 Apr 2022 00:58

Recipients:(name . Liliana Marie Prikler)(address . liliana.prikler@gmail.com)(address . 54627-done@debbugs.gnu.org)

Message-ID:YmnKsIqkVAewyQCq@jasmine.lan

On Tue, Apr 12, 2022 at 08:46:01PM +0200, Liliana Marie Prikler wrote:

Toggle quote (4 lines)

> Since this didn't fail any package that isn't currently failing (at the

> very least clamav has its own bug report by now), I've pushed this now.

> Let me know if that was a mistake.

I think that's the right choice, thank you!

Closed

Your comment

This issue is archived.

To comment on this conversation send an email to 54627@debbugs.gnu.org

is:open	open issues
is:done	closed issues
submitter:<who>	search issue submitter
author:<who>	search by message author
date:yesterday..now	search by issue date
mdate:3m..2d	search by message date