Mark H Weaver <m...@netris.org> skribis:
> Due to a grave certificate verification flaw, it is quite important that
> we upgrade to GnuTLS 3.2.12 ASAP, but two of the tests in guile/tests
> are failing:
>
> FAIL: x509-auth.scm
> FAIL: openpgp-auth.scm
>
> For both of the failing tests, the error is the same:
>
> /nix/store/lvfp4x9fwsrv158yzag6qf54q262mgzz-guile-2.0.9/bin/guile: symbol
> lookup error:
> /tmp/nix-build-gnutls-3.2.12.drv-0/gnutls-3.2.12/guile/src/.libs/guile-gnutls-v-2.so.0:
> undefined symbol: gnutls_rsa_params_init
This is because:
1. the --disable-rsa-export configure option disappeared (it’s been
reinstated in GnuTLS commit a1c626e), and so ENABLE_RSA_EXPORT was
left undefined, meaning gnutls_rsa_export.c code was not compiled
(it’s actually a backward-compatibility interface.)
2. the Guile bindings still use and expose that interface (I’ll ask
for advice on what to do here.)
I’ll push the upgrade shortly; thanks!
Ludo’.
