aboutsummaryrefslogtreecommitdiff
path: root/gnu/packages/tls.scm
Commit message (Collapse)AuthorAge
* gnu: openssl@1.1: Update to 1.1.0g [fixes CVE-2017-3735, CVE-2017-2736].Marius Bakke2017-11-02
| | | | | * gnu/packages/tls.scm (openssl-next): Update to 1.1.0g. [source]: Add HTTPS mirror.
* gnu: openssl@1.0: Replace with 1.0.2m [fixes CVE-2017-3735, CVE-2017-2736].Marius Bakke2017-11-02
| | | | | * gnu/packages/tls.scm (openssl)[replacement]: New field. (openssl-1.0.2m): New public variable.
* gnu: certbot, python-acme: Update to 0.19.0.Leo Famulari2017-10-05
| | | | * gnu/packages/tls.scm (certbot, python-acme): Update to 0.19.0.
* gnu: p11-kit: Update to 0.23.9.Marius Bakke2017-10-03
| | | | * gnu/packages/tls.scm (p11-kit): Update to 0.23.9.
* gnu: gnutls: Add 'gnutls-dane'.ng02017-10-01
| | | | | | * gnu/packages/tls.scm (gnutls/dane): New variable. Signed-off-by: Christopher Baines <mail@cbaines.net>
* gnu: certbot, python-acme: Update to 0.18.2.Leo Famulari2017-09-25
| | | | | | * gnu/packages/tls.scm (certbot, python-acme): Update to 0.18.2. * gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
* gnu: certbot: Fix build with python-pyopenssl >= 17.3.0.Marius Bakke2017-09-17
| | | | | | * gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/tls.scm (python-acme)[source]: Use it.
* gnu: python2-acme: Remove package.Leo Famulari2017-09-08
| | | | | | | This package has not built successfully for a long time. Since it appears to have no users, we remove it for now. * gnu/packages/tls.scm (python2-acme): Remove variable.
* gnu: certbot, python-acme: Update to 0.18.1.Leo Famulari2017-09-08
| | | | * gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.1.
* gnu: certbot, python-acme: Update to 0.18.0.Leo Famulari2017-09-07
| | | | * gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.0.
* gnu: mbedtls-apache: Update to 2.6.0 [fixes CVE-2017-14032].Marius Bakke2017-08-30
| | | | * gnu/packages/tls.scm (mbedtls-apache): Update to 2.6.0.
* Merge branch 'master' into core-updatesMarius Bakke2017-08-21
|\
| * gnu: perl-crypt-openssl-bignum: Update to 0.08.Tobias Geerinckx-Rice2017-08-18
| | | | | | | | * gnu/packages/tls.scm (perl-crypt-openssl-bignum): Update to 0.08.
| * gnu: p11-kit: Update to 0.23.8.Marius Bakke2017-08-15
| | | | | | | | * gnu/packages/tls.scm (p11-kit): Update to 0.23.8.
* | Merge branch 'master' into core-updatesMark H Weaver2017-08-06
|\|
| * gnu: libtasn1: Fix CVE-2017-10790.Leo Famulari2017-08-05
| | | | | | | | | | | | * gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/tls.scm (libtasn1/fixed)[source]: Use it.
| * gnu: certbot, python-acme: Update to 0.17.0.Tobias Geerinckx-Rice2017-08-04
| | | | | | | | * gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.17.0.
* | gnu: libtasn1: Add replacement to fix CVE-2017-10790.Mark H Weaver2017-08-06
| | | | | | | | | | | | | | | | | | | | Based on commit 01a61d7040b1794f36547b107abce6e967d59f21 by Leo Famulari <leo@famulari.name>. * gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/tls.scm (libtasn1)[replacement]: New field. (libtasn1/fixed): New variable.
* | Merge branch 'master' into core-updatesMarius Bakke2017-07-28
|\|
| * gnu: net-tools: Add a test-only variant and use it for GnuTLS.Leo Famulari2017-07-26
| | | | | | | | | | | | * gnu/packages/linux.scm (net-tools-for-tests): Add hidden net-tools variant. * gnu/packages/tls.scm (gnutls)[native-inputs]: Use net-tools-for-tests instead of net-tools.
* | Merge branch 'master' into core-updatesLeo Famulari2017-07-23
|\|
| * download: Add OpenBSD mirrors.Tobias Geerinckx-Rice2017-07-19
| | | | | | | | | | | | | | * guix/download.scm (%mirrors) <openbsd>: Add HTTPS OpenBSD mirrors. * gnu/packages/ntp.scm (openntpd)[source]: Use them. * gnu/packages/ssh.scm (openssh)[source]: Likewise. * gnu/packages/tls.scm (libressl)[source]: Likewise.
| * gnu: certbot, python-acme: Update to 0.16.0.Leo Famulari2017-07-14
| | | | | | | | * gnu/pckages/tls.scm (certbot, python-acme, python2-acme): Update to 0.16.0.
| * gnu: libressl: Provide a TLS-enabled implementation of netcat.Leo Famulari2017-07-13
| | | | | | | | | | * gnu/packages/tls.scm (libressl)[arguments]: Pass '--enable-nc' to #:configure-flags.
| * gnu: libressl: Update to 2.5.5.Leo Famulari2017-07-13
| | | | | | | | | | * gnu/packages/tls.scm (libressl): Update to 2.5.5. [source]: Use HTTPS URL.
| * packages: Mark 'replacement' as an "innate" field.Ludovic Courtès2017-07-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Suggested by Mark H Weaver at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>. * guix/packages.scm (<package>)[replacement]: Mark as "innate". * gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24) (glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove 'replacement' field, which was set to #f. * gnu/packages/commencement.scm (perl-boot0): Likewise. * gnu/packages/fontutils.scm (graphite2/fixed): Likewise. * gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise. * gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise. * gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise. * gnu/packages/icu4c.scm (icu4c/fixed): Likewise. * gnu/packages/image.scm (libpng-apng): Likewise. * gnu/packages/make-bootstrap.scm (%guile-static): Likewise. * gnu/packages/pcre.scm (pcre/fixed): Likewise. * gnu/packages/perl.scm (perl/fixed): Likewise. * gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1) (ruby-1.8): Likewise. * gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise. * gnu/packages/xml.scm (expat-2.2.1): Likewise.
* | Merge branch 'master' into core-updatesMark H Weaver2017-06-26
|\|
| * gnu: mbedtls-apache: Update to 2.5.1.Leo Famulari2017-06-22
| | | | | | | | * gnu/packages/tls.scm (mbedtls-apache): Update to 2.5.1.
* | Merge branch 'master' into core-updatesMark H Weaver2017-06-20
|\|
| * gnu: certbot: Build with Python 3.Leo Famulari2017-06-19
| | | | | | | | | | | | * gnu/packages/tls.scm (certbot): Use python-3 to build. [native-inputs, propagated-inputs]: Use Python 3 variants of dependencies. Use python-mock-2.
* | gnu: perl-net-ssleay: Update to 1.81.Leo Famulari2017-06-14
| | | | | | | | | | | | | | | | * gnu/packages/tls.scm (perl-net-ssleay): Update to 1.81. [native-inputs]: Remove 'perl-net-ssleay-disable-ede-test.patch'. [arguments]: Remove 'apply-patch' phase. * gnu/packages/patches/perl-net-ssleay-disable-ede-test.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
* | Merge branch 'master' into core-updatesMarius Bakke2017-06-11
|\| | | | | | | | | Conflicts: * gnu/packages/tls.scm (gnutls): Incorporated 3.5.13 graft (88e2511e217f2).
| * gnu: gnutls: Replace with 3.5.13.Marius Bakke2017-06-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This update addresses the following security advisories: GNUTLS-SA-2017-3 (aka CVE-2017-7869) and GNUTLS-SA-2017-4. See <https://gnutls.org/security.html> and <https://gnutls.org/news.html>. * gnu/packages/patches/gnutls-skip-pkgconfig-test.patch, gnu/packages/patches/gnutls-skip-trust-store-test.patch: New files. * gnu/local.mk (dist_patch_DATA): Register patches. * gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls-3.5.13): New variable. (gnutls/guile-2.2)[replacement]: New field. Set #f. [source]: Inherit from GNUTLS-3.5.13.
* | Merge branch 'master' into core-updatesMarius Bakke2017-06-10
|\|
| * gnu: p11-kit: Update to 0.23.7.Marius Bakke2017-06-09
| | | | | | | | | | | | | | | | Newer releases are only available on GitHub. See release announcements: https://lists.freedesktop.org/archives/p11-glue/2017-June/000661.html * gnu/packages/tls.scm (p11-kit): Update to 0.23.7. [source]: Remove obsolete substitution.
| * gnu: certbot, python-acme: Update to 0.15.0.Leo Famulari2017-06-08
| | | | | | | | | | | | | | * gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.15.0. (python-acme, python2-acme)[arguments]: Remove 'patch-dependency' phase. This issue was fixed upstream: https://github.com/certbot/certbot/commit/d0e471dc8093bd0d08c5a739e5cf9677240d9c0e
* | Merge branch 'master' into core-updatesMarius Bakke2017-06-03
|\| | | | | | | | | | | Conflicts: gnu/packages/image.scm (incorporated libtiff graft)
| * gnu: certbot, python-acme: Update to 0.14.2.Leo Famulari2017-05-28
| | | | | | | | * gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.2.
* | gnu: libtasn1: Update to 4.12.Ricardo Wurmus2017-05-30
| | | | | | | | * gnu/packages/tls.scm (libtasn1): Update to 4.12.
* | gnu: openssl: Delete ELF files from tarball.Sergei Trofimovich2017-05-30
| | | | | | | | | | | | | | | | | | | | | | | | Otherwise building openssl fails: substitute can't decode binary ELF file: ice-9/boot-9.scm:760:25: In procedure dispatch-exception: ice-9/boot-9.scm:760:25: Throw to key `decoding-error' with args `("peek-char" "input decoding error" 84 #<input: test/ssltest_old 15>)'. * gnu/packages/tls.scm (openssl)[source]: Add 'snippet'. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
* | gnu: libtasn1: Remove obsolete patch.Marius Bakke2017-05-28
| | | | | | | | | | | | | | | | | | This is a followup to 6a09628cb1147481131e582c1711edeb0db81944. (picked from the wrong branch, sorry!) * gnu/packages/tls.scm (libtasn1)[source]: Remove upstreamed patch. * gnu/packages/patches/libtasn1-CVE-2017-6891.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
* | gnu: libtasn1: Update to 4.11.Marius Bakke2017-05-28
| | | | | | | | * gnu/packages/tls.scm (libtasn1): Update to 4.11.
* | Merge branch 'master' into core-updatesMark H Weaver2017-05-27
|\|
| * gnu: openssl@1.1.0: Update to 1.1.0f.Leo Famulari2017-05-25
| | | | | | | | * gnu/packages/tls.scm (openssl-next): Update to 1.1.0f.
* | gnu: openssl: Update to 1.0.2l.Leo Famulari2017-05-25
| | | | | | | | * gnu/packages/tls.scm (openssl): Update to 1.0.2l.
* | gnu: gnutls: Default to Guile 2.2.Ludovic Courtès2017-05-25
| | | | | | | | | | | | | | | | * gnu/packages/tls.scm (gnutls)[arguments]: Remove '--with-guile-site-dir' configure flag. [inputs]: Use GUILE-2.2 instead of GUILE-2.0. (gnutls/guile-2.2): Redefine using 'deprecated-package'. (gnutls/guile-2.0): New variable.
* | gnu: libtasn1: Incorporate grafted changes.Leo Famulari2017-05-24
| | | | | | | | | | | | * gnu/packages/tls.scm (libtasn1)[replacement]: Remove field. [source]: Use "libtasn1-CVE-2017-6891.patch". (libtasn1/fixed): Remove variable.
* | Merge branch 'master' into core-updatesLeo Famulari2017-05-24
|\|
| * gnu: libtasn1: Fix CVE-2017-6891.Leo Famulari2017-05-24
| | | | | | | | | | | | | | * gnu/packages/patches/libtasn1-CVE-2017-6891.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/tls.scm (libtasn1)[replacement]: New field. (libtasn1/fixed): New variable.
| * gnu: asn1c: Update to 0.9.28.Leo Famulari2017-05-24
| | | | | | | | * gnu/packages/tls.scm (asn1c): Update to 0.9.28.