[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
05/10: gnu: p11-kit@0.24.0: Use certificates from /etc/ssl/certs.
From: |
guix-commits |
Subject: |
05/10: gnu: p11-kit@0.24.0: Use certificates from /etc/ssl/certs. |
Date: |
Mon, 25 Oct 2021 15:11:04 -0400 (EDT) |
civodul pushed a commit to branch master
in repository guix.
commit b4d29851e412c6f4fea5b2d98160258b9768dee3
Author: Ludovic Courtès <ludo@gnu.org>
AuthorDate: Mon Oct 25 20:57:15 2021 +0200
gnu: p11-kit@0.24.0: Use certificates from /etc/ssl/certs.
Fixes <https://issues.guix.gnu.org/49957>.
Flatpak has a soft dependency on p11-kit, which was configured without
knowledge of the system-wide CA certificate store. This caused some
flatpak apps to fail with ERR_CERT_AUTHORITY_INVALID errors.
Reported by Andrew Whatson <whatson@gmail.com>.
* gnu/packages/tls.scm (p11-kit-next)[arguments]: New field.
Co-authored-by: Andrew Whatson <whatson@gmail.com>
Co-authored-by: John Kehayias <john.kehayias@protonmail.com>
---
gnu/packages/tls.scm | 8 +++++++-
1 file changed, 7 insertions(+), 1 deletion(-)
diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm
index 2534d28..700897a 100644
--- a/gnu/packages/tls.scm
+++ b/gnu/packages/tls.scm
@@ -176,7 +176,13 @@ living in the same process.")
(uri (string-append "https://github.com/p11-glue/p11-kit/releases/"
"download/" version "/p11-kit-" version ".tar.xz"))
(sha256
- (base32 "11f6saclxsclc1f3lbavzw8kikws4cr3mfd1avly8dgnhh2i9rl1"))))))
+ (base32 "11f6saclxsclc1f3lbavzw8kikws4cr3mfd1avly8dgnhh2i9rl1"))))
+ (arguments
+ ;; Use the default certificates so that users such as flatpak find them.
+ ;; See <https://issues.guix.gnu.org/49957>.
+ (substitute-keyword-arguments (package-arguments p11-kit)
+ ((#:configure-flags flags ''())
+ ''("--with-trust-paths=/etc/ssl/certs/ca-certificates.crt"))))))
(define-public gnutls
(package
- branch master updated (4aa41a3 -> b0735c7), guix-commits, 2021/10/25
- 02/10: gnu: xdg-desktop-portal: Update to 1.10.1., guix-commits, 2021/10/25
- 01/10: gnu: libportal: Update to 0.4., guix-commits, 2021/10/25
- 04/10: gnu: Add p11-kit 0.24.0., guix-commits, 2021/10/25
- 03/10: gnu: xdg-desktop-portal-gtk: Update to 1.10.0., guix-commits, 2021/10/25
- 07/10: gnu: flatpak: Fix certificate error from p11-kit., guix-commits, 2021/10/25
- 09/10: gnu: xdg-desktop-portal-gtk: Propagate xdg-desktop-portal., guix-commits, 2021/10/25
- 08/10: gnu: flatpak: Add patch to fix paths., guix-commits, 2021/10/25
- 06/10: gnu: flatpak: Update to 1.12.1., guix-commits, 2021/10/25
- 05/10: gnu: p11-kit@0.24.0: Use certificates from /etc/ssl/certs.,
guix-commits <=
- 10/10: gnu: p11-kit: Update home page., guix-commits, 2021/10/25