Ludovic Courtès transcribed 911 bytes: > ng0 <n...@n0.is> skribis: > > > Ludovic Courtès transcribed 2.7K bytes: > >> Hello, > >> > >> ng0 <n...@n0.is> skribis: > >> > >> > on commit 72406062b9c3cdb6e9e30266f3cc31d0b2116b68 pypi import has > >> > issues: > >> > > >> > user@abyayala ~$ guix package -l | grep "nss-certs" > >> > user@abyayala ~$ env | grep "SSL_" > >> > GIT_SSL_CAINFO=/etc/ssl/certs/ca-certificates.crt > >> > SSL_CERT_FILE=/etc/ssl/certs/ca-certificates.crt > >> > SSL_CERT_DIR=/home/user/.guix-profile/etc/ssl/certs:/etc/ssl/certs > > [...] > > >> > guix/build/download.scm:296:6: In procedure tls-wrap: > >> > X.509 certificate of 'pypi.python.org' could not be verified: > >> > insecure-algorithm > >> > signer-not-found > >> > invalid > >> > >> I don’t see that. Could it be that the certs you have in /etc/ssl are > >> too old, or something along these lines? > > What if you do: > > export SSL_CERT_DIR=/etc/ssl/certs > > ? > > Ludo’.
Okay, that worked. So why is the .guix-profile/etc/ssl/certs not updated? I don't even have nss-certs in my user profile, it is global. Continuing thought: Why is ~/.guix-profile/etc/ssl/certs/ empty? I assume it is just for user-space (space=profile in my line of thought here) certificates which are not global? Thanks -- A88C8ADD129828D7EAC02E52E22F9BBFEE348588 https://n0.is
