summary refs log tree commit diff
path: root/gnu/packages/tls.scm
AgeCommit message (Collapse)Author
2021-10-25gnu: p11-kit: Update home page.Ludovic Courtès
* gnu/packages/tls.scm (p11-kit)[home-page]: Update.
2021-10-25gnu: p11-kit@0.24.0: Use certificates from /etc/ssl/certs.Ludovic Courtès
Fixes <https://issues.guix.gnu.org/49957>. Flatpak has a soft dependency on p11-kit, which was configured without knowledge of the system-wide CA certificate store. This caused some flatpak apps to fail with ERR_CERT_AUTHORITY_INVALID errors. Reported by Andrew Whatson <whatson@gmail.com>. * gnu/packages/tls.scm (p11-kit-next)[arguments]: New field. Co-authored-by: Andrew Whatson <whatson@gmail.com> Co-authored-by: John Kehayias <john.kehayias@protonmail.com>
2021-10-25gnu: Add p11-kit 0.24.0.John Kehayias
* gnu/packages/tls.scm (p11-kit-next): New variable. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-10-16gnu: Add aws-lc.Greg Hogan
* gnu/packages/tls.scm (aws-lc): New variable. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-10-16gnu: s2n: Update to 1.0.10-7f43b102.Greg Hogan
* gnu/packages/tls.scm (s2n): Update to 1.0.10-7f43b102. [source, home-page]: Remove URL redirect. [arguments]: Enable testing. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-10-04gnu: wolfssl: Update to 4.8.1.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (wolfssl): Update to 4.8.1.
2021-09-29gnu: dehydrated: Update description.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (dehydrated)[synopsis, description]: Let's Encrypt hasn't been the only game in ACME town in ages.
2021-08-24gnu: openssl: Update replacement to 1.1.1l [security fixes].Efraim Flashner
* gnu/packages/tls.scm (openssl)[replacement]: Replace with 1.1.1l. (openssl-1.1.1k): Remove variable. (openssl-1.1.1l): Add variable.
2021-07-27gnu: OpenSSL 1.0.2: Hide this package.Leo Famulari
* gnu/packages/tls.scm (openssl-1.0): Wrap in 'hidden-package'.
2021-07-27gnu: Add wolfSSL.Leo Famulari
* gnu/packages/tls.scm (wolfssl): New variable.
2021-08-03gnu: dehydrated: Follow up commit to 77e2df870b.Maxim Cournoyer
* gnu/packages/tls.scm (dehydrated): Remove bogus, nested native-search-paths.
2021-08-03gnu: dehydrated: Declare cURL's native search paths.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (dehydrated)[native-search-paths]: Use curl's. Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
2021-07-27gnu: certbot, python-acme: Update to 1.17.0.Matthew James Kraai
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.17.0. Signed-off-by: Leo Famulari <leo@famulari.name>
2021-07-05gnu: mbedtls-apache: Update to 2.26.0.Matthew James Kraai
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.26.0. [source]: Add snippet. Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2021-07-03gnu: mbedtls-apache: Update home page.Matthew James Kraai
* gnu/packages/tls.scm (mbedtls-apache)[home-page]: Update. Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>
2021-06-24gnu: s2n: Expand description.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (s2n)[synopsis, description]: Add some more upstream words.
2021-06-24gnu: s2n: Update to 1.0.10.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (s2n): Update to 1.0.10.
2021-06-23gnu: certbot, python-acme: Update to 1.16.0.Matthew James Kraai
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.16.0. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-06-17gnu: libressl: Remove search paths.Brice Waegeneire
Unlike OpenSSL, LibreSSL hardcode it's certificate bundle and doesn't allow to specify it through a environment variable. * gnu/packages/tls.scm (libressl)[configure-flags]: Specify OpenSSL configuration directory. [native-search-paths]: Remove it. * gnu/packages/ntp.scm (openntpd)[configure-flags]: Adjust CAcert location.
2021-06-12gnu: libressl: Update to 3.3.3.Brice Waegeneire
* gnu/packages/tls.scm (libressl): Update to 3.3.3.
2021-06-06gnu: gnutls@3.6.16: Fix cross-compilation.Ludovic Courtès
Fixes <https://bugs.gnu.org/48771>. Reported by Eric Brown <ecbrown@ericcbrown.com>. * gnu/packages/tls.scm (gnutls-3.6.16)[arguments]: New field.
2021-05-28gnu: gnutls: Replace with 3.6.16 [fixes CVE-2021-20305].Solene Rapenne
* gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls-3.6.16): New variable. Signed-off-by: Leo Famulari <leo@famulari.name>
2021-05-23gnu: OpenSSL: Replace with 1.1.1k [fixes CVE-2021-3449 and CVE-2021-3450].Marius Bakke
* gnu/packages/tls.scm (openssl-1.1.1k): New variable. (openssl)[replacement]: New field.
2021-05-09gnu: certbot, python-acme: Update to 1.15.0.Leo Famulari
* gnu/packages/tls.scm (python-acme, certbot): Update to 1.15.0.
2021-04-16gnu: GnuTLS: Absorb grafted replacement.Leo Famulari
* gnu/packages/tls.scm (gnutls)[source]: Add 'gnutls-CVE-2021-20231.patch' and 'gnutls-CVE-2021-20232.patch'. [replacement]: Remove field. (gnutls/fixed): Remove variable.
2021-04-16gnu: OpenSSL: Absorb grafted replacement.Leo Famulari
* gnu/packages/tls.scm (openssl): Update to 1.1.1j. [replacement]: Remove field. (openssl/fixed): Remove variable.
2021-04-16gnu: certbot, python-acme: Update to 1.14.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.14.0.
2021-03-28gnu: gnutls: Fix typos in description.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (gnutls)[description]: Fix typos. Reported by genr8 on #guix.
2021-03-25gnu: openssl: Update to 1.1.1k [security fixes].Léo Le Bouter
Fixes CVE-2021-3450 and CVE-2021-3449. * gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1k.
2021-03-14gnu: OpenSSL: Refer to the version number in a more robust way.Leo Famulari
* gnu/packages/tls.scm (openssl)[arguments]: Replace use of VERSION with (PACKAGE-VERSION THIS-PACKAGE). (openssl/fixed): Adjust accordingly.
2021-03-13gnu: gnutls: Fix CVE-2021-20231 and CVE-2021-20232.Mark H Weaver
* gnu/packages/patches/gnutls-CVE-2021-20231.patch, gnu/packages/patches/gnutls-CVE-2021-20232.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls/fixed): New variable. (guile2.2-gnutls): Use package/inherit.
2021-03-12gnu: Add s2n.Greg Hogan
* gnu/packages/tls.scm (s2n): New variable. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2021-03-12gnu: OpenSSL: Fix version number in build configuration.Leo Famulari
Fixes <https://bugs.gnu.org/47108>. This is a followup to commit 4a8b529ce15ddc69a9dd701e450fc85a0ed65910. * gnu/packages/tls.scm (openssl/fixed)[arguments]: New field.
2021-03-11gnu: certbot, python-acme: Update to 1.13.0.Leo Famulari
* gnu/packages/tls.scm (python-acme): Update to 1.13.0. [native-inputs]: Remove python-mock. [propagated-inputs]: Remove python-six. (certbot): Update to 1.13.0. [propagated-inputs]: Remove python-six. [arguments]: Remove 'build-documentation' phase.
2021-03-11gnu: openssl: Update to 1.1.1j [security fixes].Léo Le Bouter
* gnu/packages/tls.scm (openssl/fixed): New variable. (openssl)[replacement]: Graft.
2021-03-03gnu: certbot, python-acme: Update to 1.12.0.Leo Famulari
* gnu/packages/tls.scm (python-acme): Update to 1.12.0. (certbot): Update to 1.12.0. [arguments]: Replace the 'build-documentation' phase.
2021-01-10Merge branch 'master' into stagingEfraim Flashner
2021-01-03gnu: libressl: Update to 3.1.5 [security fix].Tobias Geerinckx-Rice
* gnu/packages/tls.scm (libressl): Update to 3.1.5.
2020-12-29Merge branch 'master' into ungraftingMarius Bakke
2020-12-21gnu: certbot, python-acme: Update to 1.10.1.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 1.10.1.
2020-12-21Merge branch 'master' into ungraftingMarius Bakke
2020-12-20gnu: p11-kit: Fix source hash.Tobias Geerinckx-Rice
(Obviously) the tarball wasn't updated in place, and the .sig did check out, but I forgot to commit it because I'm a bit of an idiot. * gnu/packages/tls.scm (p11-kit)[source]: Update hash.
2020-12-20gnu: p11-kit: Update to 0.23.22.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (p11-kit): Update to 0.23.22.
2020-12-19gnu: dehydrated: Update to 0.7.0.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (dehydrated): Update to 0.7.0.
2020-12-08gnu: OpenSSL: Update to 1.1.1i [fixes CVE-2020-1971].Leo Famulari
* gnu/packages/tls.scm (openssl)[replacement]: Update replacement to 1.1.1i (openssl-1.1.1g): Replace with ... (openssl-1.1.1i): ... new variable.
2020-12-08gnu: OpenSSL: Update to 1.1.1i [fixes CVE-2020-1971].Marius Bakke
* gnu/packages/tls.scm (openssl): Update to 1.1.1i.
2020-12-08gnu: openssl: Update to 1.1.1g and remove replacement.Ludovic Courtès
* gnu/packages/tls.scm (openssl): Update to 1.1.1g. [replacement]: Remove. (openssl-1.1.1g): Remove.
2020-12-08gnu: gnutls: Update to 3.6.15 and remove replacement.Ludovic Courtès
* gnu/packages/tls.scm (gnutls): Update to 3.6.15. [source]: Add "gnutls-cross.patch". [replacement]: Remove. [native-inputs]: Add GUILE-3.0 when (%current-target-system) is true. (gnutls/fixed): Remove. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Remove reference to 'gnutls/fixed'. * gnu/packages/tls.scm (gnutls/dane): Inherit from gnutls. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Remove gnutls/fixed, add gnutls. Co-authored-by: Efraim Flashner <efraim@flashner.co.il>
2020-12-03gnu: gnutls-dane: Inherit from newer GnuTLS.Marius Bakke
Fixes <https://bugs.gnu.org/44914>. * gnu/packages/tls.scm (gnutls/dane): Inherit from GNUTLS/FIXED instead of GNUTLS.
2020-12-03gnu: GnuTLS: Update replacement to 3.6.15 [fixes CVE-2020-24659].Marius Bakke
* gnu/packages/tls.scm (gnutls-3.6.14): Rename to ... (gnutls/fixed): ... this. Update to 3.6.15. (gnutls): Adjust for renamed replacement. * gnu/packages/package-management.scm (guix)[propagated-inputs]: Likewise. * gnu/packages/vpn.scm (openconnect)[propagated-inputs]: Likewise.