From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:53798) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dyGoP-0002jn-9b for guix-patches@gnu.org; Sat, 30 Sep 2017 08:24:06 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1dyGoM-0006dc-3P for guix-patches@gnu.org; Sat, 30 Sep 2017 08:24:05 -0400 Received: from debbugs.gnu.org ([208.118.235.43]:59658) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1dyGoL-0006dL-W5 for guix-patches@gnu.org; Sat, 30 Sep 2017 08:24:02 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1dyGoL-0001jN-N4 for guix-patches@gnu.org; Sat, 30 Sep 2017 08:24:01 -0400 Subject: [bug#28170] Add gnutls/dane + use it where its needed (gnurl, libmicrohttpd, gnunet) Resent-Message-ID: Date: Sat, 30 Sep 2017 12:23:09 +0000 From: ng0 Message-ID: <20170930122309.akl2dxa46eru36pb@abyayala> References: <20170821095726.qtf2ko526nup4yba@abyayala> <20170930122616.17079913@cbaines.net> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="wwcrlnd2wehzw6gf" Content-Disposition: inline In-Reply-To: <20170930122616.17079913@cbaines.net> List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org Sender: "Guix-patches" To: Christopher Baines Cc: 28170@debbugs.gnu.org --wwcrlnd2wehzw6gf Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Christopher Baines transcribed 2.1K bytes: > On Mon, 21 Aug 2017 09:57:26 +0000 > ng0 wrote: >=20 > > The dependency chain of GNUnet demands GnuTLS with DANE support. > > You can use it without DANE, but there are certain parts which > > will not work. DANE is recommended. (ports of FREEBSD uses > > gnutls-dane for libmicrohttpd aswell for example). >=20 > > From c9dedfd1a6f91d557006b00505a428be84102b1e Mon Sep 17 00:00:00 2001 > > From: ng0 > > Date: Mon, 21 Aug 2017 09:28:51 +0000 > > Subject: [PATCH 1/4] gnu: gnutls: Add 'gnutls-dane'. > >=20 > > * gnu/packages/tls.scm (gnutls/dane): New variable. >=20 > Hey, so I'm trying to do some reviewing. >=20 > What was your reasoning for creating a new gnutls/dane package, rather > than adding unbound to the existing gnutls package? >=20 > I don't know much about GnuTLS, but it would be good to make it clear > why this approach was taken, especially in the commit message and by > the gnutls/dane package definition. Honestly, I did not want to touch the gnutls package for this. I wanted to leave the option open to have gnutls without dane. Sure, it's a useful feature. If you think I should apply it directly to gnutls, tell me and I'll send a new patch. --=20 ng0 GnuPG: A88C8ADD129828D7EAC02E52E22F9BBFEE348588 GnuPG: https://krosos.org/dist/keys/ https://www.infotropique.org https://krosos.org --wwcrlnd2wehzw6gf Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEqIyK3RKYKNfqwC5S4i+bv+40hYgFAlnPjK0ACgkQ4i+bv+40 hYgo4A/+J9c17uFRjXIKvCVWP7sJQ1INv5on6oWAjlqFjV328PF2/1nXXFKTrT3T cnSzJTq4w38Sh84HZb6aJlbdbfGn/DltNAtvUfjTJadOgfnDLFd7FoRuecRpFr7k DQS/XKHDY2gQMWqRBtVAuxQ4AItQnpFT0wjAMoyyN+mb0T4wWs0CAUlEMT4HY8T+ B6UM3NUi9Pt6/yRSfoJnxW2MPedorRL+HRIwpFGD/6zRR3gJRzFTtFIU3iwvr9dZ pzTvR2SzMKDkcnPXd/K0KCYZ+HKflDNSLdP6kq9ccnjSWK+oEgLwAbLztcWVFNdv 3yViaLH+1FagPu2GceedBxJJakaYybGkAe7zxA2r1Cp6dNQp/BpCq8m5Y4ZMCUQA 5LD83SNCaw0UL0zsvlFU9kPbCOSYWLtdslmjBWnJvWYYx9YbFbMlfbsR2eCsgwfb A/Apuq7BGbq7OTEd0BKA8pTuyiz0/sEtVDsJhZw8rWEKoy+D89gi63f8uNrNKBQ/ fOiexMhdaBXmR3otlasu1YSEmJXrsMeWcRL7HGORCQ5Q9Hng1FPDHEw9v/vd3rGa 1KZYA+prB5LgdYiV0pgZ8VyVBkmqWRu4MT3wrBqZ08y7lMH6cLPJRzs24jYpuO15 ukKr2VY/lL1IRtW55Rv+fNChzUenJHMhiiZyYaZrCLx6u6N2/S4= =CAqk -----END PGP SIGNATURE----- --wwcrlnd2wehzw6gf--