Description of problem: qemu-img-6.1.0-2.fc36 seems to be compiled without TLS (gnutls) support. Simple qemu-nbd commands fail with errors like: qemu-nbd: TLS credentials support requires GNUTLS Also inspecting the build log shows gnutls-devel was not installed at build time and --disable-gnutls is passed to configure. Version-Release number of selected component (if applicable): qemu-img-6.1.0-2.fc36 How reproducible: 100% Steps to Reproduce: 1. In libnbd: make -C interop check qemu last root.log: https://kojipkgs.fedoraproject.org//packages/qemu/6.1.0/2.fc36/data/logs/s390x/root.log and build.log: https://kojipkgs.fedoraproject.org//packages/qemu/6.1.0/2.fc36/data/logs/x86_64/build.log libnbd build failure showing the error: https://kojipkgs.fedoraproject.org//work/tasks/828/74610828/build.log
I would guess it's something to do with this commit which I don't understand: https://src.fedoraproject.org/rpms/qemu/c/a06059bd4d3b89e46c0c155c8430a7a13bd128f4?branch=rawhide I'm going to revert it and see if that fixes the problem.
Yes, that commit is totally bogus and doesn't match the $subject. It needs to disable *gcrypt* not gnutls.
I'm doing builds of qemu with the commit reverted: https://koji.fedoraproject.org/koji/taskinfo?taskID=74613023 rawhide https://koji.fedoraproject.org/koji/taskinfo?taskID=74613145 f35 However that's just to get libnbd working again. Those builds don't fix the problem completely because as Dan says we need to still disable gcrypt.
This (should be) a scratch build of qemu with gcrypt disabled for real: https://koji.fedoraproject.org/koji/taskinfo?taskID=74620666 If it works I will test it locally first and then push this change.
The scratch build has: Crypto TLS priority : "@QEMU,SYSTEM" GNUTLS support : YES GNUTLS crypto : YES libgcrypt : NO nettle : NO crypto afalg : NO rng-none : NO Linux keyring : YES I believe from reading https://www.gnutls.org/manual/html_node/Cryptographic-Backend.html that this means we're using only the internal "default crypto provider – a software crypto library". I don't know if that's what we're intending but that's likely what we're going to get.
FEDORA-2021-23daee315d has been submitted as an update to Fedora 35. https://bodhi.fedoraproject.org/updates/FEDORA-2021-23daee315d
FEDORA-2021-23daee315d has been pushed to the Fedora 35 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2021-23daee315d` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2021-23daee315d See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-2021-23daee315d has been pushed to the Fedora 35 stable repository. If problem still persists, please make note of it in this bug report.