| 23 Mar 2026 |
 nasso | hey so for the past 2 days ive been having this error when trying to use crane to build a crate in a workspace:
> +++ command cargo check --release --locked --all-targets
> Updating crates.io index
> error: failed to get `async-trait` as a dependency of package `libkypc v0.1.0 (/nix/var/nix/builds/nix-72346-1214498785/source/crates/libkypc)`
>
> Caused by:
> download of config.json failed
>
> Caused by:
> failed to download from `https://index.crates.io/config.json`
>
> Caused by:
> [60] SSL peer certificate or SSH remote key was not OK (SSL certificate OpenSSL verify result: unable to get local issuer certificate (20))
im not sure whats causing this. i can wget https://index.crates.io/config.json just fine
this is what my derivation looks like btw:
{ pkgs, libiconv, lib, stdenv, crane }:
let
craneLib = crane.mkLib pkgs;
src = craneLib.cleanCargoSource ./.;
commonArgs = {
inherit src;
strictDeps = true;
buildInputs = lib.optionals stdenv.isDarwin [ libiconv ];
};
cargoArtifacts = craneLib.buildDepsOnly commonArgs;
in {
kypc = craneLib.buildPackage {
inherit cargoArtifacts;
pname = "libkypc";
version = "0.1.0";
cargoExtraArgs = "-p libkypc";
doCheck = false;
src = lib.fileset.toSource {
root = ./.;
fileset = lib.fileset.unions [
./Cargo.toml
./Cargo.lock
(craneLib.fileset.commonCargoSources ./crates/libkypc)
];
};
};
}
i think im going crazy??? could it be that my Cargo.lock is outdated?? how could i update it without nix develop (which i can't even run!) i dont even have cargo installed globally! | 23:45:26 |
| 24 Mar 2026 |
|  @theo-paris:matrix.org left the room. | 04:05:58 |
|  @zaphar_ps:matrix.org left the room. | 15:11:47 |
| 25 Mar 2026 |
|  @manman1010:matrix.org joined the room. | 07:26:37 |
| @manman1010:matrix.org left the room. | 07:27:24 |
| nasso | ok guys so i think i figured it out
behold, my Cargo.lock:
# This file is automatically @generated by Cargo.
# It is not intended for manual editing.
version = 3
[[package]]
name = "quick-start"
version = "0.1.0"
| 18:21:49 |
| nasso | (yes thats the entirety of it) | 18:21:59 |
| nasso | so i just added a devShell so i could nix develop into it and run a cargo check to update it, and now it builds! | 18:22:45 |
| nasso | the error did NOT help at all lmao | 18:23:01 |
| 26 Mar 2026 |
|  @tuisto:matrix.org left the room. | 12:56:39 |
 K900 | https://blog.rust-lang.org/2026/03/26/1.94.1-release/ | 13:25:33 |
| K900 | 1.94.1 is security | 13:25:35 |
 Winter | can grab in a few hours if nobody else does | 13:26:28 |
 emily | (thanks xokdvium) | 14:08:54 |
|  Vika (she/her) changed their profile picture. | 18:36:25 |
| K900 | This is the Rust room | 19:12:12 |
| K900 | ? | 19:12:13 |
| K900 | Oh | 19:12:15 |
| K900 | Holy federation lag lmao | 19:12:20 |
| emily | see https://blog.rust-lang.org/2026/03/21/cve-2026-33056/ | 19:13:44 |
| 27 Mar 2026 |
|  Pratham Patel joined the room. | 01:03:55 |
| Pratham Patel | Would anyone from the Rust team mind reviewing https://github.com/NixOS/nixpkgs/pull/501979? | 01:05:42 |
| Winter | i feel like this is a dupe of another PR | 03:02:14 |
| Winter | just based off memory | 03:02:19 |
| Winter | i’ll need to prof further tho | 03:02:24 |
| Winter | prod | 03:02:26 |
 niklaskorz | @tomasajt:matrix.org already reviewed it as the author of fetchCargoVendor and stated:
I'll look into whether your approach could be improved.
In the meantime you could patch out one of the revisions in the lockfile over to the other revision. It's not guaranteed to be correct, but it might be fine as a hotfix.
| 12:22:29 |
| niklaskorz | Or more importantly, the concerns directly above that:
I really don't see a pretty way of solving this.
Your fix seems to do its job in this case.
However, if we had both a duplicate package and a duplicate selector, even your fix wouldn't work, because we'd be back to the situation that #387337 aimed to solve.
| 12:24:10 |
| 29 Oct 2021 |
|  @grahamc:nixos.org set the history visibility to "world_readable". | 19:57:43 |
| @grahamc:nixos.org changed the room name to "" from "". | 19:57:43 |
