summaryrefslogtreecommitdiff
path: root/gnu/packages/tls.scm
AgeCommit message (Collapse)Author
2021-03-13gnu: gnutls: Fix CVE-2021-20231 and CVE-2021-20232.Mark H Weaver
* gnu/packages/patches/gnutls-CVE-2021-20231.patch, gnu/packages/patches/gnutls-CVE-2021-20232.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls/fixed): New variable. (guile2.2-gnutls): Use package/inherit.
2021-03-12gnu: Add s2n.Greg Hogan
* gnu/packages/tls.scm (s2n): New variable. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-12gnu: OpenSSL: Fix version number in build configuration.Leo Famulari
Fixes <https://bugs.gnu.org/47108>. This is a followup to commit 4a8b529ce15ddc69a9dd701e450fc85a0ed65910. * gnu/packages/tls.scm (openssl/fixed)[arguments]: New field.
2021-03-11gnu: certbot, python-acme: Update to 1.13.0.Leo Famulari
* gnu/packages/tls.scm (python-acme): Update to 1.13.0. [native-inputs]: Remove python-mock. [propagated-inputs]: Remove python-six. (certbot): Update to 1.13.0. [propagated-inputs]: Remove python-six. [arguments]: Remove 'build-documentation' phase.
2021-03-11gnu: openssl: Update to 1.1.1j [security fixes].Léo Le Bouter
* gnu/packages/tls.scm (openssl/fixed): New variable. (openssl)[replacement]: Graft.
2021-03-03gnu: certbot, python-acme: Update to 1.12.0.Leo Famulari
* gnu/packages/tls.scm (python-acme): Update to 1.12.0. (certbot): Update to 1.12.0. [arguments]: Replace the 'build-documentation' phase.
2021-01-10Merge branch 'master' into stagingEfraim Flashner
2021-01-03gnu: libressl: Update to 3.1.5 [security fix].Tobias Geerinckx-Rice
* gnu/packages/tls.scm (libressl): Update to 3.1.5.
2020-12-29Merge branch 'master' into ungraftingMarius Bakke
2020-12-21gnu: certbot, python-acme: Update to 1.10.1.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.10.1.
2020-12-21Merge branch 'master' into ungraftingMarius Bakke
2020-12-20gnu: p11-kit: Fix source hash.Tobias Geerinckx-Rice
(Obviously) the tarball wasn't updated in place, and the .sig did check out, but I forgot to commit it because I'm a bit of an idiot. * gnu/packages/tls.scm (p11-kit)[source]: Update hash.
2020-12-20gnu: p11-kit: Update to 0.23.22.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (p11-kit): Update to 0.23.22.
2020-12-19gnu: dehydrated: Update to 0.7.0.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (dehydrated): Update to 0.7.0.
2020-12-08gnu: OpenSSL: Update to 1.1.1i [fixes CVE-2020-1971].Leo Famulari
* gnu/packages/tls.scm (openssl)[replacement]: Update replacement to 1.1.1i (openssl-1.1.1g): Replace with ... (openssl-1.1.1i): ... new variable.
2020-12-08gnu: OpenSSL: Update to 1.1.1i [fixes CVE-2020-1971].Marius Bakke
* gnu/packages/tls.scm (openssl): Update to 1.1.1i.
2020-12-08gnu: openssl: Update to 1.1.1g and remove replacement.Ludovic Courtès
* gnu/packages/tls.scm (openssl): Update to 1.1.1g. [replacement]: Remove. (openssl-1.1.1g): Remove.
2020-12-08gnu: gnutls: Update to 3.6.15 and remove replacement.Ludovic Courtès
* gnu/packages/tls.scm (gnutls): Update to 3.6.15. [source]: Add "gnutls-cross.patch". [replacement]: Remove. [native-inputs]: Add GUILE-3.0 when (%current-target-system) is true. (gnutls/fixed): Remove. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Remove reference to 'gnutls/fixed'. * gnu/packages/tls.scm (gnutls/dane): Inherit from gnutls. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Remove gnutls/fixed, add gnutls. Co-authored-by: Efraim Flashner <efraim@flashner.co.il>
2020-12-03gnu: gnutls-dane: Inherit from newer GnuTLS.Marius Bakke
Fixes <https://bugs.gnu.org/44914>. * gnu/packages/tls.scm (gnutls/dane): Inherit from GNUTLS/FIXED instead of GNUTLS.
2020-12-03gnu: GnuTLS: Update replacement to 3.6.15 [fixes CVE-2020-24659].Marius Bakke
* gnu/packages/tls.scm (gnutls-3.6.14): Rename to ... (gnutls/fixed): ... this. Update to 3.6.15. (gnutls): Adjust for renamed replacement. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Likewise. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Likewise.
2020-11-21gnu: openssl: Fix cross compiling for powerpc targets.Efraim Flashner
* gnu/packages/tls.scm (openssl)[arguments]: Add cross compile target cases for powerpc64le-linux, powerpc64-linux and powerpc-linux.
2020-11-08gnu: openssl: Fix indentation.Efraim Flashner
* gnu/packages/tls.scm (openssl): Fix indentation of package definition.
2020-11-08gnu: openssl: Fix cross compiling for mips64el-linux.Efraim Flashner
* gnu/packages/tls.scm (openssl)[arguments]: When cross compiling add case for mips64el-linux.
2020-10-21gnu: certbot, python-acme: Update to 1.8.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update 1.8.0.
2020-10-16gnu: libressl: Update to 3.1.4.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (libressl): Update to 3.1.4.
2020-10-05gnu: gnutls: Fix cross-compilation.Mathieu Othacehe
* gnu/packages/tls.scm (gnutls)[arguments]: Disable tests when cross-compiling.
2020-08-20gnu: p11-kit: Update to 0.23.21.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (p11-kit): Update to 0.23.21.
2020-07-14gnu: mbedtls-apache-for-hiawatha: Fix.Tobias Geerinckx-Rice
There's already a custom embedtls-apache variant for Hiawatha. Fix it instead of enabling threading for embedtls-apache. * gnu/packages/tls.scm (embedtls-for-hiawatha): Fix usage of SUBSTITUTE-KEYWORD-ARGUMENTS. Disable -Wformat-signedness. (embedtls-for-hiawatha): Remove ‘enable-features’ phase.
2020-07-14gnu: mbedtls-apache: Update to 2.23.0 [security fixes].Tobias Geerinckx-Rice
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.23.0. [source]: Use GIT-FETCH and GIT-FILE-NAME. [arguments]: Make source files writable. Enable threading.
2020-06-20gnu: gnutls: Pass #:tests? unconditionally.Ludovic Courtès
* gnu/packages/tls.scm (gnutls)[arguments]: Add #:tests? unconditionally.
2020-06-20gnu: gnutls: Leave #:disallowed-references empty for GNU/Hurd.Ludovic Courtès
Partly fixes <https://bugs.gnu.org/41775>. This is a followup to a9bcc6474667d6699500f03d69f9c8212a50d711. * gnu/packages/tls.scm (gnutls)[arguments]: Let #:disallowed-references empty when 'hurd-target?' returns true.
2020-06-06gnu: GnuTLS: Update replacement to 3.6.14 [fixes CVE-2020-13777].Marius Bakke
* gnu/packages/tls.scm (gnutls-3.6.13): Rename to ... (gnutls-3.6.14): ... this. Update to 3.6.14. (gnutls)[replacement]: Adjust accordingly. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Likewise. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Likewise.
2020-06-06gnu: openconnect: Add a comment about the gnutls version.Tobias Geerinckx-Rice
* gnu/packages/vpn.scm (openconnect): Add said comment. * gnu/packages/tls.scm (gnutls): Add backlink to optimise SEO.
2020-05-27Revert some Go package updates.Leo Famulari
This reverts commit 5f833e0495f00a72f8d34a63e8afbc531afdd22d through 681ac9a66c26d2c739e41f03228f8c63fc0df482. It's not idiomatic to update Go packages independently of their users. This reversion was approved by Efraim on #guix: http://logs.guix.gnu.org/guix/2020-05-26.log * gnu/packages/golang.scm, gnu/packages/syncthing.scm, gnu/packages/tls.scm: Revert.
2020-05-26gnu: go-github-com-certifi-gocertifi: Update to 2020.02.11.Efraim Flashner
* gnu/packages/tls.scm (go-github-com-certifi-gocertifi): Update to 2020.02.11.
2020-05-13mailmap: Update entries for Nikita.nikita
* .mailmap: change email and name for Nikita. * Makefile.am, doc/guix.texi, etc/completion/fish/guix.fish, gnu/packages/accessibility.scm, gnu/packages/admin.scm, gnu/packages/audio.scm, gnu/packages/autotools.scm, gnu/packages/cdrom.scm, gnu/packages/check.scm, gnu/packages/cinnamon.scm, gnu/packages/compression.scm, gnu/packages/crypto.scm, gnu/packages/databases.scm, gnu/packages/django.scm, gnu/packages/dns.scm, gnu/packages/elixir.scm, gnu/packages/emacs-xyz.scm, gnu/packages/emacs.scm, gnu/packages/enlightenment.scm, gnu/packages/erlang.scm, gnu/packages/fonts.scm, gnu/packages/fontutils.scm, gnu/packages/forth.scm, gnu/packages/fvwm.scm, gnu/packages/games.scm, gnu/packages/gl.scm, gnu/packages/gnome.scm, gnu/packages/gnunet.scm, gnu/packages/gnupg.scm, gnu/packages/gtk.scm, gnu/packages/guile-wm.scm, gnu/packages/guile-xyz.scm, gnu/packages/haskell-apps.scm, gnu/packages/haskell-check.scm, gnu/packages/haskell-crypto.scm, gnu/packages/haskell-xyz.scm, gnu/packages/haskell.scm, gnu/packages/image-viewers.scm, gnu/packages/image.scm, gnu/packages/irc.scm, gnu/packages/language.scm, gnu/packages/libcanberra.scm, gnu/packages/linux.scm, gnu/packages/lisp-xyz.scm, gnu/packages/lisp.scm, gnu/packages/lolcode.scm, gnu/packages/lxde.scm, gnu/packages/lxqt.scm, gnu/packages/mail.scm, gnu/packages/markup.scm, gnu/packages/mate.scm, gnu/packages/maths.scm, gnu/packages/mc.scm, gnu/packages/messaging.scm, gnu/packages/music.scm, gnu/packages/ncurses.scm, gnu/packages/networking.scm, gnu/packages/nickle.scm, gnu/packages/openbox.scm, gnu/packages/pdf.scm, gnu/packages/perl-check.scm, gnu/packages/perl.scm, gnu/packages/python-compression.scm, gnu/packages/python-crypto.scm, gnu/packages/python-web.scm, gnu/packages/python-xyz.scm, gnu/packages/python.scm, gnu/packages/qt.scm, gnu/packages/ruby.scm, gnu/packages/rust.scm, gnu/packages/scheme.scm, gnu/packages/serialization.scm, gnu/packages/shells.scm, gnu/packages/ssh.scm, gnu/packages/suckless.scm, gnu/packages/tbb.scm, gnu/packages/telephony.scm, gnu/packages/text-editors.scm, gnu/packages/textutils.scm, gnu/packages/time.scm, gnu/packages/tls.scm, gnu/packages/tor.scm, gnu/packages/version-control.scm, gnu/packages/video.scm, gnu/packages/vim.scm, gnu/packages/web.scm, gnu/packages/wm.scm, gnu/packages/xdisorg.scm, gnu/packages/xfce.scm, gnu/packages/xml.scm, gnu/packages/xorg.scm, gnu/services/certbot.scm, gnu/services/desktop.scm, gnu/services/version-control.scm, gnu/services/web.scm, guix/import/hackage.scm, guix/licenses.scm: Likewise. Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2020-05-09gnu: mbedtls-apache: Update to 2.16.6.Marius Bakke
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.16.6.
2020-04-23Merge branch 'master' into core-updatesMarius Bakke
Conflicts: etc/news.scm gnu/local.mk gnu/packages/bootloaders.scm gnu/packages/linphone.scm gnu/packages/linux.scm gnu/packages/tls.scm gnu/system.scm
2020-04-21gnu: OpenSSL: Update to 1.1.1g [fixes CVE-2020-1967].Leo Famulari
* gnu/packages/tls.scm (openssl)[replacement]: Replace with openssl-1.1.1g. (openssl-1.1.1e): Replace variable with ... (openssl-1.1.1g): ... this.
2020-04-20gnu: tls: Remove datefudge and disable tests on the Hurd.Jan (janneke) Nieuwenhuizen
* gnu/packages/tls.scm (gnutls)[arguments]: When compiling for the Hurd, disable tests. [native-inputs]: When compiling for the Hurd, do not include datefudge.
2020-04-11gnu: gnutls-3.6.13: Cross-build fix.Jan (janneke) Nieuwenhuizen
* gnu/packages/patches/gnutls-cross.patch: New file. * gnu/packages/tls.scm (gnutls-3.6.13)[source]: Use it. [native-inputs]: If cross-compiling, add native guile-3.0. This actually cross compiles .go modules.
2020-04-11gnu: openssl: Support cross-compilation to the Hurd.Jan (janneke) Nieuwenhuizen
* gnu/packages/tls.scm (openssl)[arguments]: Add `i586' => hurd-x86 platform setting.
2020-04-11Merge branch 'master' into core-updatesMarius Bakke
2020-04-11gnu: openconnect: Update to 8.08.Tobias Geerinckx-Rice
* gnu/packages/vpn.scm (openconnect): Update to 8.08. [propagated-inputs]: Use gnutls-3.6.13. * gnu/packages/tls.scm (gnutls-3.6.13): Export it.
2020-04-08Merge branch 'master' into core-updatesMarius Bakke
Conflicts: etc/news.scm gnu/local.mk gnu/packages/check.scm gnu/packages/cross-base.scm gnu/packages/gimp.scm gnu/packages/java.scm gnu/packages/mail.scm gnu/packages/sdl.scm gnu/packages/texinfo.scm gnu/packages/tls.scm gnu/packages/version-control.scm
2020-04-06gnu: GnuTLS: Fix CVE-2020-11501.Leo Famulari
* gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls-3.6.13): New variable. (gnutls/guile-2.0, gnutls/dane, gnutls-3.6.10, gnutls3.0-gnutls): Use PACKAGE/INHERIT.
2020-03-31gnu: OpenSSL: Update to 1.1.1f.Marius Bakke
* gnu/packages/patches/openssl-1.1.1e-revert-detect-eof.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Adjust accordingly. * gnu/packages/tls.scm (openssl): Update to 1.1.1f. [source](patches): Remove obsolete patch.
2020-03-29gnu: gnutls: Remove net-tools for the Hurd.Jan Nieuwenhuizen
* gnu/packages/tls.scm (gnutls)[inputs]: Remove net-tools for the Hurd.
2020-03-26gnu: OpenSSL: Add upstream patch to preserve compatibility in EOF handling.Marius Bakke
This is a follow-up to ad8254c23a86c3ca4ca32bc68fc8d76954aa80fd, which unexpectedly caused a test failure in the Python test suite. * gnu/packages/patches/openssl-1.1.1e-revert-detect-eof.patch: New file. * gnu/local.mk (dist_patch_DATA): Adjust accordingly. * gnu/packages/tls.scm (openssl)[source](patches): Add it.
2020-03-26gnu: OpenSSL: Remove replacement package.Marius Bakke
* gnu/packages/tls.scm (openssl): Update to 1.1.1e. [replacement]: Remove. (openssl-1.1.1e): Remove variable.