summaryrefslogtreecommitdiff
path: root/gnu/packages/tls.scm
AgeCommit message (Collapse)Author
2021-06-19Merge branch 'master' into core-updatesMarius Bakke
Note: this merge actually changes the 'curl' and 'python-attrs' derivations, as part of solving caf4a7a2770ef4d05a6e18f40d602e51da749ddc and 12964df69a99de6190422c752fef65ef813f3b6b respectively. 4604d43c0e (gnu: gnutls@3.6.16: Fix cross-compilation.) was ignored because it cannot currently be tested. Conflicts: gnu/local.mk gnu/packages/aidc.scm gnu/packages/boost.scm gnu/packages/curl.scm gnu/packages/nettle.scm gnu/packages/networking.scm gnu/packages/python-xyz.scm gnu/packages/tls.scm
2021-06-17gnu: libressl: Remove search paths.Brice Waegeneire
Unlike OpenSSL, LibreSSL hardcode it's certificate bundle and doesn't allow to specify it through a environment variable. * gnu/packages/tls.scm (libressl)[configure-flags]: Specify OpenSSL configuration directory. [native-search-paths]: Remove it. * gnu/packages/ntp.scm (openntpd)[configure-flags]: Adjust CAcert location.
2021-06-13gnu: OpenSSL: Remove replacement.Marius Bakke
* gnu/packages/tls.scm (openssl): Update to 1.1.1k. [replacement]: Remove. (openssl-1.1.1k): Remove variable.
2021-06-12gnu: libressl: Update to 3.3.3.Brice Waegeneire
* gnu/packages/tls.scm (libressl): Update to 3.3.3.
2021-06-06gnu: gnutls@3.6.16: Fix cross-compilation.Ludovic Courtès
Fixes <https://bugs.gnu.org/48771>. Reported by Eric Brown <ecbrown@ericcbrown.com>. * gnu/packages/tls.scm (gnutls-3.6.16)[arguments]: New field.
2021-06-06Merge branch 'master' into core-updatesMarius Bakke
Conflicts: gnu/local.mk gnu/packages/algebra.scm gnu/packages/bioinformatics.scm gnu/packages/curl.scm gnu/packages/docbook.scm gnu/packages/emacs-xyz.scm gnu/packages/maths.scm gnu/packages/plotutils.scm gnu/packages/python-web.scm gnu/packages/python-xyz.scm gnu/packages/radio.scm gnu/packages/readline.scm gnu/packages/tls.scm gnu/packages/xml.scm gnu/packages/xorg.scm
2021-06-06gnu: gnutls: Update to 3.7.2.Maxim Cournoyer
The 3.7 branch, while not considered the "stable" branch upstream, has been adopted by most major GNU/Linux distributions such as Debian, Arch, openSUSE, etc. It has the benefit of receiving all the security fixes. * gnu/packages/tls.scm (gnutls): Update to 3.7.2. Remove trailing #t. [source]: Remove the gnutls-CVE-2021-20231.patch and gnutls-CVE-2021-20232.patch patches, now incorporated in the source. * gnu/packages/patches/gnutls-CVE-2021-20231.patch: Delete file. * gnu/packages/patches/gnutls-CVE-2021-20232.patch: Likewise. * gnu/local.mk (dist_patch_DATA): De-register them.
2021-05-28gnu: gnutls: Replace with 3.6.16 [fixes CVE-2021-20305].Solene Rapenne
* gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls-3.6.16): New variable. Signed-off-by: Leo Famulari <leo@famulari.name>
2021-05-23gnu: OpenSSL: Replace with 1.1.1k [fixes CVE-2021-3449 and CVE-2021-3450].Marius Bakke
* gnu/packages/tls.scm (openssl-1.1.1k): New variable. (openssl)[replacement]: New field.
2021-05-13gnu: libtasn1: Update to 4.17.0.Efraim Flashner
* gnu/packages/tls.scm (libtasn1): Update to 4.17.0.
2021-05-09Merge branch 'master' into core-updatesMarius Bakke
Conflicts: gnu/local.mk gnu/packages/bioinformatics.scm gnu/packages/django.scm gnu/packages/gtk.scm gnu/packages/llvm.scm gnu/packages/python-web.scm gnu/packages/python.scm gnu/packages/tex.scm guix/build-system/asdf.scm guix/build/emacs-build-system.scm guix/profiles.scm
2021-05-09gnu: certbot, python-acme: Update to 1.15.0.Leo Famulari
* gnu/packages/tls.scm (python-acme, certbot): Update to 1.15.0.
2021-04-16gnu: GnuTLS: Absorb grafted replacement.Leo Famulari
* gnu/packages/tls.scm (gnutls)[source]: Add 'gnutls-CVE-2021-20231.patch' and 'gnutls-CVE-2021-20232.patch'. [replacement]: Remove field. (gnutls/fixed): Remove variable.
2021-04-16gnu: OpenSSL: Absorb grafted replacement.Leo Famulari
* gnu/packages/tls.scm (openssl): Update to 1.1.1j. [replacement]: Remove field. (openssl/fixed): Remove variable.
2021-04-16gnu: certbot, python-acme: Update to 1.14.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.14.0.
2021-04-16Merge remote-tracking branch 'origin/master' into core-updatesEfraim Flashner
Conflicts: gnu/local.mk gnu/packages/boost.scm gnu/packages/chez.scm gnu/packages/compression.scm gnu/packages/crates-io.scm gnu/packages/docbook.scm gnu/packages/engineering.scm gnu/packages/gcc.scm gnu/packages/gl.scm gnu/packages/gtk.scm gnu/packages/nettle.scm gnu/packages/python-check.scm gnu/packages/python-xyz.scm gnu/packages/radio.scm gnu/packages/rust.scm gnu/packages/sqlite.scm guix/build-system/node.scm
2021-03-28gnu: gnutls: Fix typos in description.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (gnutls)[description]: Fix typos. Reported by genr8 on #guix.
2021-03-25gnu: openssl: Update to 1.1.1k [security fixes].Léo Le Bouter
Fixes CVE-2021-3450 and CVE-2021-3449. * gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1k.
2021-03-24Merge remote-tracking branch 'origin/master' into core-updatesEfraim Flashner
2021-03-14gnu: OpenSSL: Refer to the version number in a more robust way.Leo Famulari
* gnu/packages/tls.scm (openssl)[arguments]: Replace use of VERSION with (PACKAGE-VERSION THIS-PACKAGE). (openssl/fixed): Adjust accordingly.
2021-03-13gnu: gnutls: Fix CVE-2021-20231 and CVE-2021-20232.Mark H Weaver
* gnu/packages/patches/gnutls-CVE-2021-20231.patch, gnu/packages/patches/gnutls-CVE-2021-20232.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls/fixed): New variable. (guile2.2-gnutls): Use package/inherit.
2021-03-12gnu: Add s2n.Greg Hogan
* gnu/packages/tls.scm (s2n): New variable. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-12gnu: OpenSSL: Fix version number in build configuration.Leo Famulari
Fixes <https://bugs.gnu.org/47108>. This is a followup to commit 4a8b529ce15ddc69a9dd701e450fc85a0ed65910. * gnu/packages/tls.scm (openssl/fixed)[arguments]: New field.
2021-03-11gnu: certbot, python-acme: Update to 1.13.0.Leo Famulari
* gnu/packages/tls.scm (python-acme): Update to 1.13.0. [native-inputs]: Remove python-mock. [propagated-inputs]: Remove python-six. (certbot): Update to 1.13.0. [propagated-inputs]: Remove python-six. [arguments]: Remove 'build-documentation' phase.
2021-03-11gnu: openssl: Update to 1.1.1j [security fixes].Léo Le Bouter
* gnu/packages/tls.scm (openssl/fixed): New variable. (openssl)[replacement]: Graft.
2021-03-06Merge branch 'master' into core-updatesChristopher Baines
2021-03-03gnu: certbot, python-acme: Update to 1.12.0.Leo Famulari
* gnu/packages/tls.scm (python-acme): Update to 1.12.0. (certbot): Update to 1.12.0. [arguments]: Replace the 'build-documentation' phase.
2021-01-13Merge branch 'staging' into 'core-updates'.Maxim Cournoyer
Conflicts: gnu/local.mk gnu/packages/cmake.scm gnu/packages/curl.scm gnu/packages/gl.scm gnu/packages/glib.scm gnu/packages/guile.scm gnu/packages/node.scm gnu/packages/openldap.scm gnu/packages/package-management.scm gnu/packages/python-xyz.scm gnu/packages/python.scm gnu/packages/tls.scm gnu/packages/vpn.scm gnu/packages/xorg.scm
2021-01-10Merge branch 'master' into stagingEfraim Flashner
2021-01-03gnu: libressl: Update to 3.1.5 [security fix].Tobias Geerinckx-Rice
* gnu/packages/tls.scm (libressl): Update to 3.1.5.
2020-12-29Merge branch 'master' into ungraftingMarius Bakke
2020-12-21gnu: certbot, python-acme: Update to 1.10.1.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.10.1.
2020-12-21Merge branch 'master' into ungraftingMarius Bakke
2020-12-20gnu: p11-kit: Fix source hash.Tobias Geerinckx-Rice
(Obviously) the tarball wasn't updated in place, and the .sig did check out, but I forgot to commit it because I'm a bit of an idiot. * gnu/packages/tls.scm (p11-kit)[source]: Update hash.
2020-12-20gnu: p11-kit: Update to 0.23.22.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (p11-kit): Update to 0.23.22.
2020-12-19gnu: dehydrated: Update to 0.7.0.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (dehydrated): Update to 0.7.0.
2020-12-08gnu: OpenSSL: Update to 1.1.1i [fixes CVE-2020-1971].Leo Famulari
* gnu/packages/tls.scm (openssl)[replacement]: Update replacement to 1.1.1i (openssl-1.1.1g): Replace with ... (openssl-1.1.1i): ... new variable.
2020-12-08gnu: OpenSSL: Update to 1.1.1i [fixes CVE-2020-1971].Marius Bakke
* gnu/packages/tls.scm (openssl): Update to 1.1.1i.
2020-12-08gnu: openssl: Update to 1.1.1g and remove replacement.Ludovic Courtès
* gnu/packages/tls.scm (openssl): Update to 1.1.1g. [replacement]: Remove. (openssl-1.1.1g): Remove.
2020-12-08gnu: gnutls: Update to 3.6.15 and remove replacement.Ludovic Courtès
* gnu/packages/tls.scm (gnutls): Update to 3.6.15. [source]: Add "gnutls-cross.patch". [replacement]: Remove. [native-inputs]: Add GUILE-3.0 when (%current-target-system) is true. (gnutls/fixed): Remove. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Remove reference to 'gnutls/fixed'. * gnu/packages/tls.scm (gnutls/dane): Inherit from gnutls. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Remove gnutls/fixed, add gnutls. Co-authored-by: Efraim Flashner <efraim@flashner.co.il>
2020-12-03gnu: gnutls-dane: Inherit from newer GnuTLS.Marius Bakke
Fixes <https://bugs.gnu.org/44914>. * gnu/packages/tls.scm (gnutls/dane): Inherit from GNUTLS/FIXED instead of GNUTLS.
2020-12-03gnu: GnuTLS: Update replacement to 3.6.15 [fixes CVE-2020-24659].Marius Bakke
* gnu/packages/tls.scm (gnutls-3.6.14): Rename to ... (gnutls/fixed): ... this. Update to 3.6.15. (gnutls): Adjust for renamed replacement. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Likewise. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Likewise.
2020-11-29Merge remote-tracking branch 'origin/master' into core-updatesChristopher Baines
2020-11-21gnu: openssl: Fix cross compiling for powerpc targets.Efraim Flashner
* gnu/packages/tls.scm (openssl)[arguments]: Add cross compile target cases for powerpc64le-linux, powerpc64-linux and powerpc-linux.
2020-11-17gnu: gnutls: Make p11-kit a propagated input.Christopher Baines
Because p11-kit appears in the gnutls.pc file, it needs to be a propagated input. This was a regression introduced in 28a13226fd5cd08b3eb090151c0753424c3f6eb4 which broke things like HTTPS support in curl, which then broke Git clones from repositories using HTTPS. * gnu/packages/tls.scm (gnutls)[inputs]: Move p11-kit from here. [propagated-inputs]: To here.
2020-11-08gnu: openssl: Fix indentation.Efraim Flashner
* gnu/packages/tls.scm (openssl): Fix indentation of package definition.
2020-11-08gnu: openssl: Fix cross compiling for mips64el-linux.Efraim Flashner
* gnu/packages/tls.scm (openssl)[arguments]: When cross compiling add case for mips64el-linux.
2020-10-21gnu: certbot, python-acme: Update to 1.8.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update 1.8.0.
2020-10-21gnu: gnutls: Enable p11-kit.Christopher Baines
Everywhere except mips64el, where a comment says it doesn't work. I can't test as I can't build this on mips64el anyway. This change will enable running the tests for libcacard. * gnu/packages/tls.scm (gnutls)[arguments]: Only specify --without-p11-kit on mips64el. [inputs]: Include the p11-kit for all systems except mips64el.
2020-10-19Merge branch 'staging'Maxim Cournoyer
Conflicts: gnu/packages/admin.scm gnu/packages/commencement.scm gnu/packages/gdb.scm gnu/packages/llvm.scm gnu/packages/package-management.scm gnu/packages/tls.scm
generated by cgit v1.2.3 (git 2.45.2) at 2024-07-28 17:20:39 +0000