summary refs log tree commit diff
path: root/gnu/packages/tls.scm
AgeCommit message (Collapse)Author
2017-11-02gnu: openssl@1.1: Update to 1.1.0g [fixes CVE-2017-3735, CVE-2017-2736].Marius Bakke
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0g. [source]: Add HTTPS mirror.
2017-11-02gnu: openssl@1.0: Replace with 1.0.2m [fixes CVE-2017-3735, CVE-2017-2736].Marius Bakke
* gnu/packages/tls.scm (openssl)[replacement]: New field. (openssl-1.0.2m): New public variable.
2017-10-05gnu: certbot, python-acme: Update to 0.19.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.19.0.
2017-10-03gnu: p11-kit: Update to 0.23.9.Marius Bakke
* gnu/packages/tls.scm (p11-kit): Update to 0.23.9.
2017-10-01gnu: gnutls: Add 'gnutls-dane'.ng0
* gnu/packages/tls.scm (gnutls/dane): New variable. Signed-off-by: Christopher Baines <mail@cbaines.net>
2017-09-25gnu: certbot, python-acme: Update to 0.18.2.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.18.2. * gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-17gnu: certbot: Fix build with python-pyopenssl >= 17.3.0.Marius Bakke
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/tls.scm (python-acme)[source]: Use it.
2017-09-08gnu: python2-acme: Remove package.Leo Famulari
This package has not built successfully for a long time. Since it appears to have no users, we remove it for now. * gnu/packages/tls.scm (python2-acme): Remove variable.
2017-09-08gnu: certbot, python-acme: Update to 0.18.1.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.1.
2017-09-07gnu: certbot, python-acme: Update to 0.18.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.0.
2017-08-30gnu: mbedtls-apache: Update to 2.6.0 [fixes CVE-2017-14032].Marius Bakke
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.6.0.
2017-08-21Merge branch 'master' into core-updatesMarius Bakke
2017-08-18gnu: perl-crypt-openssl-bignum: Update to 0.08.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (perl-crypt-openssl-bignum): Update to 0.08.
2017-08-15gnu: p11-kit: Update to 0.23.8.Marius Bakke
* gnu/packages/tls.scm (p11-kit): Update to 0.23.8.
2017-08-06Merge branch 'master' into core-updatesMark H Weaver
2017-08-06gnu: libtasn1: Add replacement to fix CVE-2017-10790.Mark H Weaver
Based on commit 01a61d7040b1794f36547b107abce6e967d59f21 by Leo Famulari <leo@famulari.name>. * gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/tls.scm (libtasn1)[replacement]: New field. (libtasn1/fixed): New variable.
2017-08-05gnu: libtasn1: Fix CVE-2017-10790.Leo Famulari
* gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/tls.scm (libtasn1/fixed)[source]: Use it.
2017-08-04gnu: certbot, python-acme: Update to 0.17.0.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.17.0.
2017-07-28Merge branch 'master' into core-updatesMarius Bakke
2017-07-26gnu: net-tools: Add a test-only variant and use it for GnuTLS.Leo Famulari
* gnu/packages/linux.scm (net-tools-for-tests): Add hidden net-tools variant. * gnu/packages/tls.scm (gnutls)[native-inputs]: Use net-tools-for-tests instead of net-tools.
2017-07-23Merge branch 'master' into core-updatesLeo Famulari
2017-07-19download: Add OpenBSD mirrors.Tobias Geerinckx-Rice
* guix/download.scm (%mirrors) <openbsd>: Add HTTPS OpenBSD mirrors. * gnu/packages/ntp.scm (openntpd)[source]: Use them. * gnu/packages/ssh.scm (openssh)[source]: Likewise. * gnu/packages/tls.scm (libressl)[source]: Likewise.
2017-07-14gnu: certbot, python-acme: Update to 0.16.0.Leo Famulari
* gnu/pckages/tls.scm (certbot, python-acme, python2-acme): Update to 0.16.0.
2017-07-13gnu: libressl: Provide a TLS-enabled implementation of netcat.Leo Famulari
* gnu/packages/tls.scm (libressl)[arguments]: Pass '--enable-nc' to #:configure-flags.
2017-07-13gnu: libressl: Update to 2.5.5.Leo Famulari
* gnu/packages/tls.scm (libressl): Update to 2.5.5. [source]: Use HTTPS URL.
2017-07-03packages: Mark 'replacement' as an "innate" field.Ludovic Courtès
Suggested by Mark H Weaver at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>. * guix/packages.scm (<package>)[replacement]: Mark as "innate". * gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24) (glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove 'replacement' field, which was set to #f. * gnu/packages/commencement.scm (perl-boot0): Likewise. * gnu/packages/fontutils.scm (graphite2/fixed): Likewise. * gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise. * gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise. * gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise. * gnu/packages/icu4c.scm (icu4c/fixed): Likewise. * gnu/packages/image.scm (libpng-apng): Likewise. * gnu/packages/make-bootstrap.scm (%guile-static): Likewise. * gnu/packages/pcre.scm (pcre/fixed): Likewise. * gnu/packages/perl.scm (perl/fixed): Likewise. * gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1) (ruby-1.8): Likewise. * gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise. * gnu/packages/xml.scm (expat-2.2.1): Likewise.
2017-06-26Merge branch 'master' into core-updatesMark H Weaver
2017-06-22gnu: mbedtls-apache: Update to 2.5.1.Leo Famulari
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.5.1.
2017-06-20Merge branch 'master' into core-updatesMark H Weaver
2017-06-19gnu: certbot: Build with Python 3.Leo Famulari
* gnu/packages/tls.scm (certbot): Use python-3 to build. [native-inputs, propagated-inputs]: Use Python 3 variants of dependencies. Use python-mock-2.
2017-06-14gnu: perl-net-ssleay: Update to 1.81.Leo Famulari
* gnu/packages/tls.scm (perl-net-ssleay): Update to 1.81. [native-inputs]: Remove 'perl-net-ssleay-disable-ede-test.patch'. [arguments]: Remove 'apply-patch' phase. * gnu/packages/patches/perl-net-ssleay-disable-ede-test.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-06-11Merge branch 'master' into core-updatesMarius Bakke
Conflicts: * gnu/packages/tls.scm (gnutls): Incorporated 3.5.13 graft (88e2511e217f2).
2017-06-11gnu: gnutls: Replace with 3.5.13.Marius Bakke
This update addresses the following security advisories: GNUTLS-SA-2017-3 (aka CVE-2017-7869) and GNUTLS-SA-2017-4. See <https://gnutls.org/security.html> and <https://gnutls.org/news.html>. * gnu/packages/patches/gnutls-skip-pkgconfig-test.patch, gnu/packages/patches/gnutls-skip-trust-store-test.patch: New files. * gnu/local.mk (dist_patch_DATA): Register patches. * gnu/packages/tls.scm (gnutls)[replacement]: New field. (gnutls-3.5.13): New variable. (gnutls/guile-2.2)[replacement]: New field. Set #f. [source]: Inherit from GNUTLS-3.5.13.
2017-06-10Merge branch 'master' into core-updatesMarius Bakke
2017-06-09gnu: p11-kit: Update to 0.23.7.Marius Bakke
Newer releases are only available on GitHub. See release announcements: https://lists.freedesktop.org/archives/p11-glue/2017-June/000661.html * gnu/packages/tls.scm (p11-kit): Update to 0.23.7. [source]: Remove obsolete substitution.
2017-06-08gnu: certbot, python-acme: Update to 0.15.0.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.15.0. (python-acme, python2-acme)[arguments]: Remove 'patch-dependency' phase. This issue was fixed upstream: https://github.com/certbot/certbot/commit/d0e471dc8093bd0d08c5a739e5cf9677240d9c0e
2017-06-03Merge branch 'master' into core-updatesMarius Bakke
Conflicts: gnu/packages/image.scm (incorporated libtiff graft)
2017-05-30gnu: libtasn1: Update to 4.12.Ricardo Wurmus
* gnu/packages/tls.scm (libtasn1): Update to 4.12.
2017-05-30gnu: openssl: Delete ELF files from tarball.Sergei Trofimovich
Otherwise building openssl fails: substitute can't decode binary ELF file: ice-9/boot-9.scm:760:25: In procedure dispatch-exception: ice-9/boot-9.scm:760:25: Throw to key `decoding-error' with args `("peek-char" "input decoding error" 84 #<input: test/ssltest_old 15>)'. * gnu/packages/tls.scm (openssl)[source]: Add 'snippet'. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-05-28gnu: certbot, python-acme: Update to 0.14.2.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.2.
2017-05-28gnu: libtasn1: Remove obsolete patch.Marius Bakke
This is a followup to 6a09628cb1147481131e582c1711edeb0db81944. (picked from the wrong branch, sorry!) * gnu/packages/tls.scm (libtasn1)[source]: Remove upstreamed patch. * gnu/packages/patches/libtasn1-CVE-2017-6891.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-05-28gnu: libtasn1: Update to 4.11.Marius Bakke
* gnu/packages/tls.scm (libtasn1): Update to 4.11.
2017-05-27Merge branch 'master' into core-updatesMark H Weaver
2017-05-25gnu: openssl: Update to 1.0.2l.Leo Famulari
* gnu/packages/tls.scm (openssl): Update to 1.0.2l.
2017-05-25gnu: openssl@1.1.0: Update to 1.1.0f.Leo Famulari
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0f.
2017-05-25gnu: gnutls: Default to Guile 2.2.Ludovic Courtès
* gnu/packages/tls.scm (gnutls)[arguments]: Remove '--with-guile-site-dir' configure flag. [inputs]: Use GUILE-2.2 instead of GUILE-2.0. (gnutls/guile-2.2): Redefine using 'deprecated-package'. (gnutls/guile-2.0): New variable.
2017-05-24gnu: libtasn1: Incorporate grafted changes.Leo Famulari
* gnu/packages/tls.scm (libtasn1)[replacement]: Remove field. [source]: Use "libtasn1-CVE-2017-6891.patch". (libtasn1/fixed): Remove variable.
2017-05-24Merge branch 'master' into core-updatesLeo Famulari
2017-05-24gnu: libtasn1: Fix CVE-2017-6891.Leo Famulari
* gnu/packages/patches/libtasn1-CVE-2017-6891.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/tls.scm (libtasn1)[replacement]: New field. (libtasn1/fixed): New variable.
2017-05-24gnu: asn1c: Update to 0.9.28.Leo Famulari
* gnu/packages/tls.scm (asn1c): Update to 0.9.28.