summary refs log tree commit diff
path: root/gnu/packages/tls.scm
AgeCommit message (Collapse)Author
2024-02-05gnu: Add mbedtls, version 3.5.2.Hilton Chain
* gnu/packages/tls.scm (mbedtls): New variable. Change-Id: I09c86ce04734bd5b44441d7749688a5c39389ece
2024-02-05gnu: mbedtls-apache: Rename to mbedtls-lts.Hilton Chain
* gnu/packages/tls.scm (mbedtls-apache): Rename package to "mbedtls". Rename variable to… (mbedtls-lts): …this. (mbedtls-apache): Define as deprecated by mbedtls-lts. (mbedtls-for-hiawatha): Adjust accordingly. * doc/guix.texi: Likewise. * gnu/packages/emulators.scm (dolphin-emu,retroarch)[inputs]: Likewise. * gnu/packages/game-development.scm (godot-lts,godot)[inputs]: Likewise. * gnu/packages/hardware.scm (hueplusplus,openrgb)[inputs]: Likewise. * gnu/packages/haxe.scm (neko,haxe,hashlink)[inputs]: Likewise. * gnu/packages/irc.scm (inspircd)[inputs]: Likewise. * gnu/packages/julia-jll.scm (julia-mbedtls-jll)[arguments]<#:phases>,[inputs]: Likewise. * gnu/packages/julia.scm (julia)[arguments]<#:phases>,[inputs]: Likewise. * gnu/packages/linphone.scm (bctoolbox)[inputs]: Likewise. * gnu/packages/linux.scm (dislocker)[inputs]: Likewise. * gnu/packages/networking.scm (nng)[inputs]: Likewise. * gnu/packages/search.scm (dataparksearch)[inputs]: Likewise. * gnu/packages/video.scm (obs)[inputs]: Likewise. * gnu/packages/web.scm (hiawatha)[arguments]<#:phases>: Likewise. Change-Id: I0c58b3cd0bcf6e44e7b16a69f6d2739aa3c1545b
2024-02-05gnu: mbedtls-apache: Use gexps.Hilton Chain
* gnu/packages/tls.scm (mbedtls-apache)[arguments]: Use gexps. Change-Id: Idefca03b8eea0d3f18497afccc4a3a081caac87e
2024-02-05gnu: mbedtls-apache: Update to 2.28.7.Hilton Chain
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.28.7. [license]: Add gpl2+. Change-Id: I946aa1436214a11ab3faa08b3ddf9c937a0462a9
2024-02-05gnu: mbedtls-for-hiawatha: Update package style.Hilton Chain
* gnu/packages/tls.scm (mbedtls-for-hiawatha)[arguments]: Use gexps. Remove trailing #t. Change-Id: I0af54b6fb7319bc811ce38c001b47686fb45b1bd
2024-02-05gnu: mbedtls-for-hiawatha: Use inherited source.Hilton Chain
* gnu/packages/tls.scm (mbedtls-for-hiawatha): Use inherited source. [arguments]<#:phases>: Keep "-Wformat-signedness". Change-Id: I562ae6533b518a853b9b59f8fb69c0135364277f
2024-01-20gnu: gnutls: Update to 3.8.3 [security-fixes].Jack Hill
Fixes CVE-2024-0553 and CVE-2024-0567. gnu/packages/tls.scm (gnutls-3.8.2): Rename to ... (gnutls/fixed): ... this. Update to 3.8.3. (gnutls): Rename replacement to gnutls/fixed. Change-Id: Ic44b3b0481ffd51cdc42a2d71a598f001b43c6f7 Signed-off-by: John Kehayias <john.kehayias@protonmail.com> Co-authored-by: John Kehayias <john.kehayias@protonmail.com>
2024-01-11gnu: Update guile-gnutls to 3.7.14.David Thompson
* gnu/packages/tls.scm (guile-gnutls): Update to 3.7.14. Change-Id: I851cb3554f1dcf5c286c345634ea71c5a7bbd973
2024-01-05gnutls: Update to 3.8.2 (fixes CVE-2023-5981).Maxim Cournoyer
* gnu/packages/tls.scm (gnutls): Graft with gnutls-3.8.2. (gnutls-3.8.1): Replace with... (gnutls-3.8.2): ... this. Remove obsolete set-path-max phase, and make the variable private. Change-Id: Ib5cd276c9ecc87d1adc2f4f9633d49676cfe856d
2024-01-04gnu: openssl: Fix building on x86_64-linux-gnux32.Efraim Flashner
* gnu/packages/tls.scm (target->openssl-target): Add entry for x86_64-linux-gnux32. Change-Id: Icbbdb76134da0811b8493c55ca2d3acdb77c5883 Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2023-12-12Revert "gnu: openssl: Don't error when targeting avr."Efraim Flashner
This reverts commit baeff7f546d700ae4f0c873bd0fce0ca84bebd21.
2023-12-12gnu: openssl: Don't error when targeting avr.Efraim Flashner
* gnu/packages/tls.scm (target->openssl-target): Add case for avr. Change-Id: I1cfc8b50fa4b2b864f8f8aa8898cc405ffc02580
2023-11-07gnu: mbedtls-apache: Update to 2.28.5.John Kehayias
This fixes mbedtls-apache failing some tests for unknown reasons after recent updates and ungrafting to other packages. This should soon be renamed to mbedtls-apache-lts and a newer version added; see <https://issues.guix.gnu.org/66718>. * gnu/packages/tls.scm (mbedtls-apache): Update to 2.28.5. Change-Id: Ie513c11cb60262be9865ebbd1f6238d39f299c42
2023-10-24gnu: gnutls@3.8: Do not rely expect ‘PATH_MAX’ definition on GNU/Hurd.Ludovic Courtès
Fixes <https://issues.guix.gnu.org/66691>. * gnu/packages/tls.scm (gnutls-3.8.1)[arguments]: New field. Change-Id: If208591d78d5d023220bd3a7e3841af172c605ff
2023-10-20gnu: gnutls: Replace with 3.8.1.Christopher Baines
The recommended way to address GNUTLS-SA-2020-07-14 / CVE-2023-0361 is to upgrade to 3.8.0 or later. * gnu/packages/tls.scm (gnutls-3.8.1): New variable. (gnutls)[replacement]: Use it. Signed-off-by: Christopher Baines <mail@cbaines.net>
2023-09-28gnu: openssl@1.1: Upgrade replacement to 1.1.1u.Ludovic Courtès
Includes fixes for CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-2650, CVE-2022-4304, CVE-2022-4450. * gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1u. Co-authored-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
2023-09-28gnu: openssl@1.1: Really replace with fixed version.Ludovic Courtès
The ‘replacement’ field of ‘openssl-1.1’ was apparently lost in a previous merge commit ca. Jan. 2023; consequently, ‘openssl/fixed’ was unused. * gnu/packages/tls.scm (openssl-1.1)[replacement]: New field.
2023-08-13gnu: libressl: Update to 3.7.3 [fixes CVE-2023-35784].Tobias Geerinckx-Rice
Thanks to Dennis 'GNUtoo' Carikli for <https://issues.guix.gnu.org/64982>, but upgrading to 3.8.0 breaks (at least) OpenSMTPd. * gnu/packages/tls.scm (libressl): Update to 3.7.3.
2023-07-20gnu: openssl-1.1: Fix shared build for the Hurd.Janneke Nieuwenhuizen
* gnu/packages/tls.scm (openssl-1.1)[arguments]: When building for the Hurd, add phase 'patch-configure'. (openssl)[arguments]: And delete it again.
2023-07-20gnu: openssl: Build fix for the Hurd.Janneke Nieuwenhuizen
* gnu/packages/tls.scm (openssl-3.0)[arguments]: When building on the Hurd, add "hurd-x86" to #:configure-flags.
2023-06-25gnu: aws-lc: Fix tests.Greg Hogan
* gnu/packages/tls.scm (aws-lc)[native-inputs]: Add libfaketime. [arguments]<#:phases>: Replace and wrap 'check with faketime due to certificate expiration. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2023-06-17gnu: Use target-hurd?, system-hurd? instead of hurd-target?, hurd-system?.Janneke Nieuwenhuizen
* gnu/packages/hurd.scm (hurd-target?): Remove. (hurd-system?): Move to... * guix/utils.scm (system-hurd?): ...here. * gnu/packages/*: Update all users, removing (gnu packages hurd) include where now unused.
2023-05-11gnu: guile-gnutls: Fix cross-compilation.Ludovic Courtès
The patch was inadvertently removed in 5e1e67442188ccca8db8c1dd092efbc6fc2c33dc. * gnu/packages/tls.scm (guile-gnutls)[source]: Re-add 'gnutls-cross.patch'.
2023-05-10gnu: guile-gnutls: Update to 3.7.12.Christopher Baines
* gnu/packages/tls.scm (guile-gnutls): Update to 3.7.12. [source]: Switch to a tarball, to avoid a circular dependency if guile-gnutls is used in git-download. [arguments]: Remove phase changes for building from Git. [native-inputs]: Remove autoconf and automake as they're now unnecessary. Signed-off-by: Christopher Baines <mail@cbaines.net>
2023-04-25gnu: gnutls: Don't embed a phase inside another phase.Efraim Flashner
* gnu/packages/tls.scm (gnutls)[arguments]: Adjust powerpc-linux phase 'increase-test-timeout to not be embedded inside another phase.
2023-04-25gnu: perl-crypt-openssl-rsa: Update to 0.33.Efraim Flashner
* gnu/packages/tls.scm (perl-crypt-openssl-rsa): Update to 0.33.
2023-04-19gnu: gnutls: Extend test timeout on powerpc-linux.Efraim Flashner
* gnu/packages/tls.scm (gnutls)[arguments]: When building for powerpc-linux add a phase to extend the test timeout.
2023-04-18gnu: openssl: Update cross-configure target for riscv64-linux .Efraim Flashner
* gnu/packages/tls.scm (target->openssl-target): When building for riscv64-linux use architecture specific configurations.
2023-03-20Merge remote-tracking branch 'origin/master' into core-updatesAndreas Enge
2023-03-17gnu: guile-gnutls: Do not expect gnulib shebangs to work.Vivien Kraus
* gnu/packages/tls.scm (guile-gnutls) [phase patch-more-shebangs]: Fix how autogen.sh invokes gnulib-tool, and how configure.ac invokes git-version-gen, so as not to rely on shebangs. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2023-03-02Merge remote-tracking branch 'savannah/master' into core-updatesChristopher Baines
Conflicts: gnu/local.mk gnu/packages/autotools.scm gnu/packages/cmake.scm gnu/packages/gnuzilla.scm gnu/packages/haskell.scm gnu/packages/pdf.scm gnu/packages/python-xyz.scm gnu/packages/samba.scm gnu/packages/tex.scm gnu/packages/tls.scm gnu/packages/wxwidgets.scm
2023-02-26gnu: openssl-1.1: Specify TESTS Make variable via #:make-flags.Maxim Cournoyer
* gnu/packages/tls.scm (openssl-1.1) [make-flags]: New field. [phases] {check}: Remove phase override.
2023-02-26gnu: openssl-1.1: Clean-up definition.Maxim Cournoyer
* gnu/packages/tls.scm (openssl-1.1): Do not quasiquote arguments. Remove extraneous let-bound variables and use more gexp variables.
2023-02-26gnu: gnutls: Deprecate 'gnutls-latest'.Ludovic Courtès
* gnu/packages/tls.scm (gnutls-latest): Define as a deprecated alias for 'gnutls'. (guile-gnutls)[inputs, native-inputs]: Replace 'gnutls-latest' with 'gnutls'.
2023-02-26gnu: gnutls: Remove Guile dependency.Ludovic Courtès
* gnu/packages/tls.scm (gnutls)[arguments]: Remove --with-guile-* configure flags. [native-inputs]: Remove GUILE-3.0. [inputs]: Likewise, and add LIBUNISTRING. (gnutls-latest)[inputs, native-inputs]: Remove. (guile2.2-gnutls): Rewrite as a variant of GUILE-GNUTLS.
2023-03-02gnu: python-acme, certbot: Update to 2.3.0.Jack Hill
* gnu/packages/tls.scm (python-acme): Update to 2.3.0. (certbot)[source]: Update hash. [propagated-inputs]: Remove python-zope-interface and python-zope-component. Signed-off-by: Leo Famulari <leo@famulari.name>
2023-02-17gnu: p11-kit-next: Switch to meson-build-system.Vivien Kraus
README.md says to use meson to build. * gnu/packages/tls.scm (p11-kit-next)[build-system]: Use meson-build-system. [arguments]: Adjust accordingly. Signed-off-by: Christopher Baines <mail@cbaines.net>
2023-02-11gnu: OpenSSL 3: Update to 3.0.8 [security fixes].Leo Famulari
Fixes CVE-2023-0215, CVE-2023-0216, CVE-2023-0217, CVE-2023-0286, CVE-2023-0401, CVE-2022-4203, CVE-2022-4304, and CVE-2022-4450. https://www.openssl.org/news/secadv/20230207.txt gnu/packages/tls.scm (openssl-3.0): Update to 3.0.8.
2023-02-11gnu: OpenSSL: Update to 1.1.1t [security fixes].Leo Famulari
Fixes CVE-2023-0215, CVE-2023-0286, CVE-2022-4304, CVE-2022-4450. https://www.openssl.org/news/secadv/20230207.txt * gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1t.
2023-01-30Merge remote-tracking branch 'origin/master' into core-updatesEfraim Flashner
Conflicts: doc/guix.texi gnu/local.mk gnu/packages/admin.scm gnu/packages/base.scm gnu/packages/chromium.scm gnu/packages/compression.scm gnu/packages/databases.scm gnu/packages/diffoscope.scm gnu/packages/freedesktop.scm gnu/packages/gnome.scm gnu/packages/gnupg.scm gnu/packages/guile.scm gnu/packages/inkscape.scm gnu/packages/llvm.scm gnu/packages/openldap.scm gnu/packages/pciutils.scm gnu/packages/ruby.scm gnu/packages/samba.scm gnu/packages/sqlite.scm gnu/packages/statistics.scm gnu/packages/syndication.scm gnu/packages/tex.scm gnu/packages/tls.scm gnu/packages/version-control.scm gnu/packages/xml.scm guix/build-system/copy.scm guix/scripts/home.scm
2023-01-22gnu: guile-gnutls: Use gnutls-latest consistently.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (guile-gnutls)[native-inputs]: Substitute gnutls-latest for gnutls. Reported by jackhill in #guix.
2023-01-15gnu: guile-gnutls: Update to 3.7.11.Vivien Kraus
* gnu/packages/tls.scm (guile-gnutls) [phases]: Patch-shebang autopull.sh and autogen.sh. [native-inupts]: Add gnulib and git. Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
2022-12-13gnu: guile-gnutls: Add properties for the 'generic-git' updater.Ludovic Courtès
* gnu/packages/tls.scm (guile-gnutls)[properties]: New field.
2022-12-08gnu: julia: Update to 1.8.3.Efraim Flashner
* gnu/packages/julia.scm (julia): Update to 1.8.3. [source]: Remove one patch. [arguments]: Adjust 'prepare-deps phase to changes in inputs. Remove custom 'use-system-libwhich, 'change-number-of-precompiled-statements, 'symlink-libraries phases. In 'fix-include-and-link-paths phase remove substitution for utf8proc linking and adjust libuv linking. Fix reference to shell in 'replace-default-shell phase. Adjust the 'shared-objects-path phase to changes in the source. Change the 'enable-parallel-tests phase for upstream changes. Adjust the 'adjust-test-suite phase to be more robust. Change the 'disable-broken-tests phase to help the test suite pass. Rename 'symlink-llvm-utf8proc phase to 'symlink-missing-libraries and add two more. Adjust make-flags for changes in shared system libraries. Reorder make-flags to changes in the source. Except for aarch64, use the defaults for choosing to use 64-bit blas. [inputs]: Add libblastrampoline. Replace libgit-1.1 with libgit-1.3, utf8proc-2.7.1 with utf8proc-2.8.0. [native-inputs]: Replace python-2 with python. (libunwind-julia): Update to 1.5.0. [source]: Update patches. * gnu/packages/libevent.scm (libuv-julia): Update to 2.0.0-4.e6f0e49. [arguments]: Also build static library, build position-independent-code. * gnu/packages/llvm.scm (llvm-julia): Update to llvm-13, following upstream's build instructions. * gnu/packages/maths.scm (openlibm): Update to 0.8.1. * gnu/packages/textutils.scm (utf8proc-2.7.1): Update and rename to utf8proc-2.8.0. [native-inputs]: Update unicode to 14.0.0. * gnu/packages/tls.scm (mbedtls-apache): Update to 2.28.0. [source]: Remove snippet. [arguments]: Remove trailing #t from phases. * gnu/packages/patches/julia-allow-parallel-build.patch, (julia-patch): Update version string to 1.8.2. gnu/packages/patches/libunwind-julia-fix-GCC10-fno-common.patch: Remove files. * gnu/local.mk (dist_patch_DATA): Remove them. Co-authored-by: Akira Kyle <akira@akirakyle.com>
2022-11-22gnu: Remove acme-client.Marius Bakke
This package does not build and has been unmaintained since 2018: https://github.com/kristapsdz/acme-client-portable/commit/ba153daacb62d8a24fef6d6a5a737d2eff607509 * gnu/packages/tls.scm (acme-client): Remove variable.
2022-11-09gnu: libressl: Update to 3.6.1.Efraim Flashner
* gnu/packages/tls.scm (libressl): Update to 3.6.1.
2022-10-30gnu: openssl: Update to 1.1.1s.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (openssl): Update to 1.1.1s.
2022-10-30gnu: openssl: Update to 3.0.7 [fixes CVE-2022-3786, CVE-2022-3602].Tobias Geerinckx-Rice
* gnu/packages/tls.scm (openssl): Update to 3.0.7.
2022-10-30gnu: dehydrated: Don't rely on implicit input labels.Tobias Geerinckx-Rice
* gnu/packages/tls.scm (dehydrated)[arguments]: Use SEARCH-INPUT-FILE instead of ASSOC-REF.
2022-10-30gnu: dehydrated: Update to 0.7.1.Tobias Geerinckx-Rice
It's a Halloween miracle. * gnu/packages/tls.scm (dehydrated): Update to 0.7.1. [inputs]: Add util-linux+udev.