Mark H Weaver <m...@netris.org> skribis: > Due to a grave certificate verification flaw, it is quite important that > we upgrade to GnuTLS 3.2.12 ASAP, but two of the tests in guile/tests > are failing: > > FAIL: x509-auth.scm > FAIL: openpgp-auth.scm > > For both of the failing tests, the error is the same: > > /nix/store/lvfp4x9fwsrv158yzag6qf54q262mgzz-guile-2.0.9/bin/guile: symbol > lookup error: > /tmp/nix-build-gnutls-3.2.12.drv-0/gnutls-3.2.12/guile/src/.libs/guile-gnutls-v-2.so.0: > undefined symbol: gnutls_rsa_params_init
This is because: 1. the --disable-rsa-export configure option disappeared (it’s been reinstated in GnuTLS commit a1c626e), and so ENABLE_RSA_EXPORT was left undefined, meaning gnutls_rsa_export.c code was not compiled (it’s actually a backward-compatibility interface.) 2. the Guile bindings still use and expose that interface (I’ll ask for advice on what to do here.) I’ll push the upgrade shortly; thanks! Ludo’.