Hi Guix, our current IcedTea packages don't have TLS/SSL support as they don't come with a certificate store. In the Java world we need to import certificates into a keystore. (This is, unfortunately, not reproducible.)
These there patches add a build phase to icedtea-6 to generate a keystore from the certificates in the nss-certs package. I've tested this with the Java bindings for git and an HTTPS URL of a repository. For some reason generating a keystore fails with icedtea-8, so I'm explicitly deleting the build phase there. I'm not sure why this happens. Overall I think this is an improvement, but more work is needed here. What do you think? ~~ Ricardo Ricardo Wurmus (3): gnu: nss-certs: Stop inheriting from nss package. gnu: icedtea-6: Use modify-phases syntax. gnu: icedtea-6: Generate keystore. gnu/packages/certs.scm | 22 ++- gnu/packages/java.scm | 492 +++++++++++++++++++++++++++---------------------- 2 files changed, 289 insertions(+), 225 deletions(-) -- 2.9.0
