From mboxrd@z Thu Jan 1 00:00:00 1970 From: Christopher Allan Webber Subject: bug#22876: Python can't use https with recent grafts Date: Tue, 01 Mar 2016 16:13:41 -0800 Message-ID: <87oaaxspmy.fsf@dustycloud.org> References: <87povdsqar.fsf@dustycloud.org> Mime-Version: 1.0 Content-Type: text/plain Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:52293) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aauQZ-0004KI-Gf for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:08 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aauQU-00014f-Ge for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:07 -0500 Received: from debbugs.gnu.org ([208.118.235.43]:59677) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aauQU-00014X-Dv for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:02 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84) (envelope-from ) id 1aauQU-0004dv-AX for bug-guix@gnu.org; Tue, 01 Mar 2016 19:14:02 -0500 Sender: "Debbugs-submit" Resent-Message-ID: In-reply-to: <87povdsqar.fsf@dustycloud.org> List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org Sender: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org To: 22876@debbugs.gnu.org Christopher Allan Webber writes: > Most of Guix seems to be working just fine with the grafts support and > grafting of openssl. However, unlike most grafts that will be done > probably, this one removes a feature, and that seems to be creating > problems in Python land. > > >>> from urllib.request import HTTPSHandler > Traceback (most recent call last): > File "", line 1, in > ImportError: cannot import name 'HTTPSHandler' As expected, this is for the same reasons offlineimap seemed to have problems: cwebber@oolong:~/devel/mediagoblin$ python3 Python 3.4.3 (default, Jan 1 1970, 00:00:01) [GCC 4.9.3] on linux Type "help", "copyright", "credits" or "license" for more information. >>> import ssl Traceback (most recent call last): File "", line 1, in File "/gnu/store/1spkp48cbbzg6ic5qkv3qpm3mvsgwkys-python-3.4.3/lib/python3.4/ssl.py", line 97, in import _ssl # if we can't import it, let the error propagate ImportError: /gnu/store/1spkp48cbbzg6ic5qkv3qpm3mvsgwkys-python-3.4.3/lib/python3.4/lib-dynload/_ssl.cpython-34m.so: undefined symbol: SSLv2_method This leads to my suspicion that it's not really grafting's fault here, it's the *removal* of a piece of code, thus making things abi-incompatible with the system we built. Hopefully most grafting situations won't require this. I think that's right? :) Unfortunately, I'd say that ssl and python isn't really optional! Is it possible to graft on top of a graft? Could we rebuild Python based on the grafted openssl, and then graft things on top of the grafted Python? :)