Ricardo Wurmus writes: > Hi Guix, > > our current IcedTea packages don't have TLS/SSL support as they don't come > with a certificate store. In the Java world we need to import certificates > into a keystore. (This is, unfortunately, not reproducible.) > > These there patches add a build phase to icedtea-6 to generate a keystore from > the certificates in the nss-certs package. I've tested this with the Java > bindings for git and an HTTPS URL of a repository. > > For some reason generating a keystore fails with icedtea-8, so I'm explicitly > deleting the build phase there. I'm not sure why this happens. > > Overall I think this is an improvement, but more work is needed here. > > What do you think?
I haven't looked at the patches, but I would like to say that I have run into the missing certificates with Java. I haven't looked at whether this resolves the problem either, but I would like to thank you for your work in this area. I really appreciate your work on IcedTea and Java packages. Thanks, Roel
