Age | Commit message (Collapse) | Author |
|
* gnu/packages/tls.scm (p11-kit)[home-page]: Update.
|
|
Fixes <https://issues.guix.gnu.org/49957>.
Flatpak has a soft dependency on p11-kit, which was configured without
knowledge of the system-wide CA certificate store. This caused some
flatpak apps to fail with ERR_CERT_AUTHORITY_INVALID errors.
Reported by Andrew Whatson <whatson@gmail.com>.
* gnu/packages/tls.scm (p11-kit-next)[arguments]: New field.
Co-authored-by: Andrew Whatson <whatson@gmail.com>
Co-authored-by: John Kehayias <john.kehayias@protonmail.com>
|
|
* gnu/packages/tls.scm (p11-kit-next): New variable.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
* gnu/packages/tls.scm (aws-lc): New variable.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
* gnu/packages/tls.scm (s2n): Update to 1.0.10-7f43b102.
[source, home-page]: Remove URL redirect.
[arguments]: Enable testing.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
* gnu/packages/tls.scm (wolfssl): Update to 4.8.1.
|
|
* gnu/packages/tls.scm (dehydrated)[synopsis, description]:
Let's Encrypt hasn't been the only game in ACME town in ages.
|
|
* gnu/packages/tls.scm (openssl)[replacement]: Replace with 1.1.1l.
(openssl-1.1.1k): Remove variable.
(openssl-1.1.1l): Add variable.
|
|
* gnu/packages/tls.scm (openssl-1.0): Wrap in 'hidden-package'.
|
|
* gnu/packages/tls.scm (wolfssl): New variable.
|
|
* gnu/packages/tls.scm (dehydrated): Remove bogus, nested native-search-paths.
|
|
* gnu/packages/tls.scm (dehydrated)[native-search-paths]: Use curl's.
Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
|
|
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.17.0.
Signed-off-by: Leo Famulari <leo@famulari.name>
|
|
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.26.0.
[source]: Add snippet.
Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
|
|
* gnu/packages/tls.scm (mbedtls-apache)[home-page]: Update.
Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>
|
|
* gnu/packages/tls.scm (s2n)[synopsis, description]: Add some more
upstream words.
|
|
* gnu/packages/tls.scm (s2n): Update to 1.0.10.
|
|
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.16.0.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
Unlike OpenSSL, LibreSSL hardcode it's certificate bundle and doesn't
allow to specify it through a environment variable.
* gnu/packages/tls.scm (libressl)[configure-flags]: Specify OpenSSL
configuration directory.
[native-search-paths]: Remove it.
* gnu/packages/ntp.scm (openntpd)[configure-flags]: Adjust CAcert
location.
|
|
* gnu/packages/tls.scm (libressl): Update to 3.3.3.
|
|
Fixes <https://bugs.gnu.org/48771>.
Reported by Eric Brown <ecbrown@ericcbrown.com>.
* gnu/packages/tls.scm (gnutls-3.6.16)[arguments]: New field.
|
|
* gnu/packages/tls.scm (gnutls)[replacement]: New field.
(gnutls-3.6.16): New variable.
Signed-off-by: Leo Famulari <leo@famulari.name>
|
|
* gnu/packages/tls.scm (openssl-1.1.1k): New variable.
(openssl)[replacement]: New field.
|
|
* gnu/packages/tls.scm (python-acme, certbot): Update to 1.15.0.
|
|
* gnu/packages/tls.scm (gnutls)[source]: Add 'gnutls-CVE-2021-20231.patch' and
'gnutls-CVE-2021-20232.patch'.
[replacement]: Remove field.
(gnutls/fixed): Remove variable.
|
|
* gnu/packages/tls.scm (openssl): Update to 1.1.1j.
[replacement]: Remove field.
(openssl/fixed): Remove variable.
|
|
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.14.0.
|
|
* gnu/packages/tls.scm (gnutls)[description]: Fix typos.
Reported by genr8 on #guix.
|
|
Fixes CVE-2021-3450 and CVE-2021-3449.
* gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1k.
|
|
* gnu/packages/tls.scm (openssl)[arguments]: Replace use of VERSION with
(PACKAGE-VERSION THIS-PACKAGE).
(openssl/fixed): Adjust accordingly.
|
|
* gnu/packages/patches/gnutls-CVE-2021-20231.patch,
gnu/packages/patches/gnutls-CVE-2021-20232.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/tls.scm (gnutls)[replacement]: New field.
(gnutls/fixed): New variable.
(guile2.2-gnutls): Use package/inherit.
|
|
* gnu/packages/tls.scm (s2n): New variable.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
Fixes <https://bugs.gnu.org/47108>.
This is a followup to commit 4a8b529ce15ddc69a9dd701e450fc85a0ed65910.
* gnu/packages/tls.scm (openssl/fixed)[arguments]: New field.
|
|
* gnu/packages/tls.scm (python-acme): Update to 1.13.0.
[native-inputs]: Remove python-mock.
[propagated-inputs]: Remove python-six.
(certbot): Update to 1.13.0.
[propagated-inputs]: Remove python-six.
[arguments]: Remove 'build-documentation' phase.
|
|
* gnu/packages/tls.scm (openssl/fixed): New variable.
(openssl)[replacement]: Graft.
|
|
* gnu/packages/tls.scm (python-acme): Update to 1.12.0.
(certbot): Update to 1.12.0.
[arguments]: Replace the 'build-documentation' phase.
|
|
|
|
* gnu/packages/tls.scm (libressl): Update to 3.1.5.
|
|
|
|
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.10.1.
|
|
|
|
(Obviously) the tarball wasn't updated in place, and the .sig did check
out, but I forgot to commit it because I'm a bit of an idiot.
* gnu/packages/tls.scm (p11-kit)[source]: Update hash.
|
|
* gnu/packages/tls.scm (p11-kit): Update to 0.23.22.
|
|
* gnu/packages/tls.scm (dehydrated): Update to 0.7.0.
|
|
* gnu/packages/tls.scm (openssl)[replacement]: Update replacement to 1.1.1i
(openssl-1.1.1g): Replace with ...
(openssl-1.1.1i): ... new variable.
|
|
* gnu/packages/tls.scm (openssl): Update to 1.1.1i.
|
|
* gnu/packages/tls.scm (openssl): Update to 1.1.1g.
[replacement]: Remove.
(openssl-1.1.1g): Remove.
|
|
* gnu/packages/tls.scm (gnutls): Update to 3.6.15.
[source]: Add "gnutls-cross.patch".
[replacement]: Remove.
[native-inputs]: Add GUILE-3.0 when (%current-target-system) is true.
(gnutls/fixed): Remove.
* gnu/packages/package-management.scm (guix)[propagated-inputs]: Remove
reference to 'gnutls/fixed'.
* gnu/packages/tls.scm (gnutls/dane): Inherit from gnutls.
* gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Remove
gnutls/fixed, add gnutls.
Co-authored-by: Efraim Flashner <efraim@flashner.co.il>
|
|
Fixes <https://bugs.gnu.org/44914>.
* gnu/packages/tls.scm (gnutls/dane): Inherit from GNUTLS/FIXED instead of
GNUTLS.
|
|
* gnu/packages/tls.scm (gnutls-3.6.14): Rename to ...
(gnutls/fixed): ... this. Update to 3.6.15.
(gnutls): Adjust for renamed replacement.
* gnu/packages/package-management.scm (guix)[propagated-inputs]: Likewise.
* gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Likewise.
|