From mboxrd@z Thu Jan  1 00:00:00 1970
From: Leo Famulari <leo@famulari.name>
Subject: bug#22876: Python can't use https with recent grafts
Date: Tue, 1 Mar 2016 19:13:37 -0500
Message-ID: <20160302001337.GA18681@jasmine>
References: <87povdsqar.fsf@dustycloud.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Return-path: <bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:4830:134:3::10]:52290)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1aauQZ-0004KH-Bh
	for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:08 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1aauQU-00014R-C9
	for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:07 -0500
Received: from debbugs.gnu.org ([208.118.235.43]:59676)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1aauQU-00013j-3v
	for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:02 -0500
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1aauQT-0004dn-S9
	for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:01 -0500
Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-Message-ID: <handler.22876.B22876.145687761917791@debbugs.gnu.org>
Content-Disposition: inline
In-Reply-To: <87povdsqar.fsf@dustycloud.org>
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
	<mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
	<mailto:bug-guix-request@gnu.org?subject=subscribe>
Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org
Sender: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org
To: Christopher Allan Webber <cwebber@dustycloud.org>
Cc: 22876@debbugs.gnu.org

On Tue, Mar 01, 2016 at 03:59:24PM -0800, Christopher Allan Webber wrote:
> Most of Guix seems to be working just fine with the grafts support and
> grafting of openssl.  However, unlike most grafts that will be done
> probably, this one removes a feature, and that seems to be creating
> problems in Python land.
> 
>   >>> from urllib.request import HTTPSHandler
>   Traceback (most recent call last):
>     File "<stdin>", line 1, in <module>
>   ImportError: cannot import name 'HTTPSHandler'

I suspect this has to do with the error message Mark shared on #guix:
ImportError: /gnu/store/f0jzhl04iyaqv56yj92cd9bk57p3inqx-python-2.7.10/lib/python2.7/lib-dynload/_ssl.so:
undefined symbol: SSLv2_method

[,,,]

> I'm not really sure this is a problem with the new grafts system.  It
> might just be that a "fix" which tears parts of a library is going to
> cause unexpected problems in some places for ABI incompatibility
> reasons.

Yeah, I'm not surprised other packages are breaking as a result of this.

Can you give me a method to reproduce this bug? I can try building
Python against the new OpenSSL directly and see if the problem persists.

> 
> Not sure if we should just wait for the world-rebuild or what right
> now...!

I guess that grafts of compatible updates can persist for a while but in
cases like this we should probably start rebuilding...