Commit Graph

229 Commits

Author SHA1 Message Date
Mark H Weaver 87dbb634a9
gnu: openssl: Update replacement to 1.0.2n [fixes CVE-2017-{3737,3738}].
* gnu/packages/tls.scm (openssl)[replacement]: Use openssl-1.0.2n.
(openssl-1.0.2m): Replace with ...
(openssl-1.0.2n): ... this updated version.  Update comment.
2017-12-17 21:10:45 -05:00
Tobias Geerinckx-Rice 7e8aac188f
gnu: perl-crypt-openssl-bignum: Update to 0.09.
* gnu/packages/tls.scm (perl-crypt-openssl-bignum): Update to 0.09
2017-12-16 02:57:46 +01:00
Marius Bakke cf69135d5e
gnu: certbot: Update to 0.20.0.
* gnu/packages/tls.scm (python-acme, certbot): Update to 0.20.0.
2017-12-07 17:36:17 +01:00
Ricardo Wurmus a64d9d56a3
gnu: mbedtls-apache: Build shared library.
* gnu/packages/tls.scm (mbedtls-apache)[arguments]: Enable building of shared
library.
2017-12-04 20:54:37 +01:00
Rutger Helling fbf5ca3c5e
gnu: libressl: Update to 2.6.3.
* gnu/packages/tls.scm (libressl): Update to 2.6.3.
2017-11-28 13:50:04 -05:00
Ricardo Wurmus 33dc54b08c
gnu: Move date/time packages from python.scm to time.scm.
* gnu/packages/python.scm (python-pytz, python2-pytz, python-dateutil,
python2-dateutil, python-parsedatetime, python2-parsedatetime,
python-tzlocal, python-isodate, python2-isodate, python-iso8601,
python2-iso8601, python-monotonic, python2-monotonic, python-pyrfc3339,
python2-pyrfc3339, python-arrow, python2-arrow, python-aniso8601,
python2-aniso8601): Move from here...
* gnu/packages/time.scm: ...to here.
* gnu/packages/calendar.scm,
gnu/packages/check.scm,
gnu/packages/django.scm,
gnu/packages/ebook.scm,
gnu/packages/gnome.scm,
gnu/packages/irc.scm,
gnu/packages/jrnl.scm,
gnu/packages/mail.scm,
gnu/packages/openstack.scm,
gnu/packages/package-management.scm,
gnu/packages/python-crypto.scm,
gnu/packages/python-web.scm,
gnu/packages/rdf.scm,
gnu/packages/statistics.scm,
gnu/packages/tls.scm,
gnu/packages/tryton.scm,
gnu/packages/version-control.scm: Adjust accordingly.
2017-11-18 12:45:19 +01:00
Ricardo Wurmus ac257f127a
gnu: Move testing packages from python.scm to check.scm.
* gnu/packages/python.scm (python-behave-web-api, python2-behave-web-api,
python-mock, python2-mock, python-mock-2, python-nose, python2-nose,
python-nose2, python2-nose2, python-unittest2, python2-unittest2,
python-pytest, python2-pytest, python-pytest-3.0, python2-pytest-3.0,
python-pytest-cov, python2-pytest-cov, python-pytest-runner,
python2-pytest-runner, python-pytest-mock, python2-pytest-mock,
python-pytest-xdist, python2-pytest-xdist, python-scripttest,
python2-scripttest, python-testtools, python2-testtools, python-testscenarios,
python2-testscenarios, python-testresources, python2-testresources,
python-subunit, python2-subunit, python-fixtures, python2-fixtures,
python-testrepository, python2-testrepository, python-coverage,
python2-coverage, python-cov-core, python2-cov-core, python-testpath,
python2-testpath, python-testlib, python2-testlib, python-pytest-cache,
python2-pytest-cache, python-pytest-localserver, python-pytest-xprocess,
python-pytest-subtesthack, python2-pytest-subtesthack, python-hypothesis,
python2-hypothesis, python-lit, python2-lit, python-pytest-pep8,
python2-pytest-pep8, python-pytest-flakes, python2-pytest-flakes,
python2-coverage-test-runner, python-pylint, python2-pylint,
python-paramunittest, python2-python-paramunittest, python-pytest-warnings,
python2-pytest-warnings, python-pytest-capturelog, python2-pytest-capturelog,
python-pytest-catchlog, python2-pytest-catchlog, python-nosexcover,
python2-nosexcover, python-discover, python2-discover, behave, python-rednose,
python2-rednose, python-nose-randomly, python2-nose-randomly,
python-nose-timer, python2-nose-timer): Move from here...
* gnu/packages/check.scm: ...to here.
* gnu/packages/admin.scm,
gnu/packages/android.scm,
gnu/packages/backup.scm,
gnu/packages/bioinformatics.scm,
gnu/packages/calendar.scm,
gnu/packages/dav.scm,
gnu/packages/django.scm,
gnu/packages/freedesktop.scm,
gnu/packages/haskell.scm,
gnu/packages/image.scm,
gnu/packages/irc.scm,
gnu/packages/jrnl.scm,
gnu/packages/ldc.scm,
gnu/packages/libffi.scm,
gnu/packages/mail.scm,
gnu/packages/mpd.scm,
gnu/packages/openstack.scm,
gnu/packages/package-management.scm,
gnu/packages/password-utils.scm,
gnu/packages/python-crypto.scm,
gnu/packages/python-web.scm,
gnu/packages/rdf.scm,
gnu/packages/statistics.scm,
gnu/packages/storage.scm,
gnu/packages/time.scm,
gnu/packages/tls.scm,
gnu/packages/tor.scm,
gnu/packages/tryton.scm: Adjust accordingly.
2017-11-17 22:36:26 +01:00
Ludovic Courtès cc6f49121b
gnu: Move crypto packages from python to python-crypto.
* gnu/packages/python.scm (python-passlib, python2-passlib)
(python-py-bcrypt, python2-py-bcrypt)
(python-paramiko, python2-paramiko, python-ecdsa, python2-ecdsa)
(python-pycrypto, python2-pycrypto, python-keyring, python2-keyring)
(python-certifi, python2-certifi)
(python-cryptography-vectors, python2-cryptography-vectors)
(python-cryptography, python2-cryptography)
(python-pyopenssl, python2-pyopenssl)
(python-axolotl-curve25519, python2-axolotl-curve25519)
(python-axolotl, python2-axolotl, python2-slowaes)
(python-pyaes, python2-pyaes): Move to...
* gnu/packages/python-crypto.scm: ... here.  New file.
* gnu/local.mk (GNU_SYSTEM_MODULES): Add it.
* gnu/packages/admin.scm, gnu/packages/backup.scm,
gnu/packages/crypto.scm, gnu/packages/finance.scm,
gnu/packages/irc.scm, gnu/packages/jrnl.scm,
gnu/packages/messaging.scm, gnu/packages/openstack.scm,
gnu/packages/python-web.scm, gnu/packages/tls.scm,
gnu/packages/xorg.scm: Adjust accordingly.
2017-11-16 08:45:15 +01:00
Ludovic Courtès 1b2f753d9c
gnu: Move web packages from python to python-web.
This is in part to address <https://bugs.gnu.org/27284>.

* gnu/packages/python.scm (python-httplib2, python2-httplib2)
(python-sockjs-tornado, python2-sockjs-tornado)
(python-flask-babel, python2-flask-babel)
(python-html5lib, python2-html5lib)
(python-html5lib-0.9, python2-html5lib-0.9)
(python-html5-parser, python2-html5-parser)
(python-webencodings, python2-webencodings)
(python-openid, python2-openid, python-cssutils, python2-cssutils)
(python-cssselect, python2-cssutils)
(python-openid-cla, python2-openid-cla)
(python-openid-teams, python2-openid-teams)
(python-tornado, python2-tornado)
(python-tornado-http-auth, python-terminado, python2-terminado)
(python-webob, python2-webob, python-zope-event, python2-zope-event)
(python-zope-interface, python2-zope-interface)
(python-zope-exceptions, python2-zope-exceptions)
(python-zope-testing, python2-zope-testing)
(python-zope-testrunner, python2-zope-testrunner)
(python-zope-i18nmessageid, python2-zope-i18nmessageid)
(python-zope-schema, python2-zope-schema)
(python-zope-configuration, python2-zope-configuration)
(python-zope-proxy, python2-zope-proxy)
(python-zope-location, python2-zope-location)
(python-zope-security, python2-zope-security)
(python-zope-component, python2-zope-component)
(python-ndg-httpsclient, python2-ndg-httpsclient)
(python-websocket-client, python2-websocket-client)
(python-requests-toolbelt, python2-requests-toolbelt)
(python-rauth, python2-rauth, python-urllib3, python2-urllib3)
(awscli, python-wsgiproxy2, python2-wsgiproxy2)
(python-pastedeploy, python2-pastedeploy)
(python-webtest, python2-webtest, python-flask, python2-flask)
(python-flast-wtf, python2-flask-wtf)
(python-flask-multistatic, python2-flask-multistatic)
(python-cookies, python2-cookies)
(python-responses, python2-responses)
(python-geventhttpclient, python2-geventhttpclient)
(python-requests-oauthlib, python2-requests-oauthlib)
(python-url, python2-url, python-cachecontrol, python2-cachecontrol)
(python-betamax, python2-betamax)
(python-betamax-matchers, python2-betamax-matchers)
(python-s3transfer, python2-s3transfer)
(python-flask-restful, python-flask-basicauth)
(python-flask-sqlalchemy, python-flask-restplus)
(python-flask-restful-swagger, python-htmlmin, python2-htmlmin)
(python-flask-htmlmin, python2-flask-htmlmin)
(python-flask-login, python2-flask-login)
(python-oauth2client, python-flask-oidc)
(python-webassets, python-cssmin, python2-cssmin)
(python-elasticsearch, python2-elasticsearch)
(python-flask-script, python2-flask-script)
(python-flask-migrate, python2-flask-migrate)
(python-genshi, python2-genshi)
(python-flask-principal, python2-flask-principal)
(python-flask-httpauth, python2-flask-httpauth)
(python-uritemplate, python2-uritemplate): Move to...
* gnu/packages/python-web.scm: ... here.  New file.
* gnu/local.mk (GNU_SYSTEM_MODULES): Add it.
* gnu/packages/admin.scm, gnu/packages/backup.scm,
gnu/packages/dav.scm, gnu/packages/django.scm,
gnu/packages/docker.scm, gnu/packages/ebook.scm,
gnu/packages/logging.scm, gnu/packages/mail.scm,
gnu/packages/music.scm, gnu/packages/openstack.scm,
gnu/packages/package-management.scm, gnu/packages/rdf.scm,
gnu/packages/tls.scm, gnu/packages/tor.scm,
gnu/packages/tryton.scm, gnu/packages/version-control.scm,
gnu/packages/web-browsers.scm,
gnu/packages/web.scm: Adjust accordingly.
2017-11-13 23:41:01 +01:00
Ricardo Wurmus 587d175266
gnu: ghc-tls: Move to (gnu packages tls).
* gnu/packages/haskell.scm (ghc-tls): Move from here...
* gnu/packages/tls.scm (ghc-tls): ...to here.
* gnu/packages/haskell-web.scm: Use (gnu packages tls).
2017-11-13 18:40:55 +01:00
Marius Bakke 77576be41f
gnu: openssl@1.1: Update to 1.1.0g [fixes CVE-2017-3735, CVE-2017-2736].
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0g.
[source]: Add HTTPS mirror.
2017-11-02 22:21:59 +01:00
Marius Bakke 1df4f5c919
gnu: openssl@1.0: Replace with 1.0.2m [fixes CVE-2017-3735, CVE-2017-2736].
* gnu/packages/tls.scm (openssl)[replacement]: New field.
(openssl-1.0.2m): New public variable.
2017-11-02 22:21:59 +01:00
Leo Famulari eb93f1c9c4
gnu: certbot, python-acme: Update to 0.19.0.
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.19.0.
2017-10-05 10:38:52 -04:00
Marius Bakke 2a6e049a2f
gnu: p11-kit: Update to 0.23.9.
* gnu/packages/tls.scm (p11-kit): Update to 0.23.9.
2017-10-03 23:22:54 +02:00
ng0 5b9aa107d2
gnu: gnutls: Add 'gnutls-dane'.
* gnu/packages/tls.scm (gnutls/dane): New variable.

Signed-off-by: Christopher Baines <mail@cbaines.net>
2017-10-01 10:50:36 +01:00
Leo Famulari 66660960ba
gnu: certbot, python-acme: Update to 0.18.2.
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.18.2.
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-25 03:27:24 -04:00
Marius Bakke 881006b65c
gnu: certbot: Fix build with python-pyopenssl >= 17.3.0.
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/tls.scm (python-acme)[source]: Use it.
2017-09-17 18:50:00 +02:00
Leo Famulari 45bed1d3ea
gnu: python2-acme: Remove package.
This package has not built successfully for a long time. Since it
appears to have no users, we remove it for now.

* gnu/packages/tls.scm (python2-acme): Remove variable.
2017-09-08 19:55:34 -04:00
Leo Famulari 72fe8956f5
gnu: certbot, python-acme: Update to 0.18.1.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.1.
2017-09-08 19:26:55 -04:00
Leo Famulari 3b2802f8c4
gnu: certbot, python-acme: Update to 0.18.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.0.
2017-09-07 15:47:01 -04:00
Marius Bakke 9749746544
gnu: mbedtls-apache: Update to 2.6.0 [fixes CVE-2017-14032].
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.6.0.
2017-08-30 22:41:40 +02:00
Marius Bakke 2718a9cd09
Merge branch 'master' into core-updates 2017-08-21 02:40:37 +02:00
Tobias Geerinckx-Rice 94793c1d0a
gnu: perl-crypt-openssl-bignum: Update to 0.08.
* gnu/packages/tls.scm (perl-crypt-openssl-bignum): Update to 0.08.
2017-08-18 14:54:59 +02:00
Marius Bakke dca82aefbc
gnu: p11-kit: Update to 0.23.8.
* gnu/packages/tls.scm (p11-kit): Update to 0.23.8.
2017-08-15 20:38:02 +02:00
Mark H Weaver f167595ba1
Merge branch 'master' into core-updates 2017-08-06 00:23:20 -04:00
Mark H Weaver e3df6938ac
gnu: libtasn1: Add replacement to fix CVE-2017-10790.
Based on commit 01a61d7040
by Leo Famulari <leo@famulari.name>.

* gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
2017-08-06 00:21:09 -04:00
Leo Famulari 01a61d7040
gnu: libtasn1: Fix CVE-2017-10790.
* gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1/fixed)[source]: Use it.
2017-08-05 20:17:53 -04:00
Tobias Geerinckx-Rice 19dd5097d9
gnu: certbot, python-acme: Update to 0.17.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.17.0.
2017-08-04 02:32:53 +02:00
Marius Bakke e0b9e377f1
Merge branch 'master' into core-updates 2017-07-28 00:34:13 +02:00
Leo Famulari f96dbf6b70
gnu: net-tools: Add a test-only variant and use it for GnuTLS.
* gnu/packages/linux.scm (net-tools-for-tests): Add hidden net-tools variant.
* gnu/packages/tls.scm (gnutls)[native-inputs]: Use net-tools-for-tests instead
of net-tools.
2017-07-26 12:06:52 -04:00
Leo Famulari 6c1a317e29
Merge branch 'master' into core-updates 2017-07-23 03:42:12 -04:00
Tobias Geerinckx-Rice 644e5f17df
download: Add OpenBSD mirrors.
* guix/download.scm (%mirrors) <openbsd>: Add HTTPS OpenBSD mirrors.
* gnu/packages/ntp.scm (openntpd)[source]: Use them.
* gnu/packages/ssh.scm (openssh)[source]: Likewise.
* gnu/packages/tls.scm (libressl)[source]: Likewise.
2017-07-19 01:42:08 +02:00
Leo Famulari a08a9b8c38
gnu: certbot, python-acme: Update to 0.16.0.
* gnu/pckages/tls.scm (certbot, python-acme, python2-acme): Update to 0.16.0.
2017-07-14 10:47:50 -04:00
Leo Famulari df08f38570
gnu: libressl: Provide a TLS-enabled implementation of netcat.
* gnu/packages/tls.scm (libressl)[arguments]: Pass '--enable-nc'
to #:configure-flags.
2017-07-13 00:42:28 -04:00
Leo Famulari 1d919d32d7
gnu: libressl: Update to 2.5.5.
* gnu/packages/tls.scm (libressl): Update to 2.5.5.
[source]: Use HTTPS URL.
2017-07-13 00:42:27 -04:00
Ludovic Courtès d5ec5ed719
packages: Mark 'replacement' as an "innate" field.
Suggested by Mark H Weaver
at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>.

* guix/packages.scm (<package>)[replacement]: Mark as "innate".
* gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24)
(glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove
'replacement' field, which was set to #f.
* gnu/packages/commencement.scm (perl-boot0): Likewise.
* gnu/packages/fontutils.scm (graphite2/fixed): Likewise.
* gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise.
* gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise.
* gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise.
* gnu/packages/icu4c.scm (icu4c/fixed): Likewise.
* gnu/packages/image.scm (libpng-apng): Likewise.
* gnu/packages/make-bootstrap.scm (%guile-static): Likewise.
* gnu/packages/pcre.scm (pcre/fixed): Likewise.
* gnu/packages/perl.scm (perl/fixed): Likewise.
* gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1)
(ruby-1.8): Likewise.
* gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise.
* gnu/packages/xml.scm (expat-2.2.1): Likewise.
2017-07-03 23:51:22 +02:00
Mark H Weaver ed068b960e
Merge branch 'master' into core-updates 2017-06-26 00:00:58 -04:00
Leo Famulari d9f806710f
gnu: mbedtls-apache: Update to 2.5.1.
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.5.1.
2017-06-22 02:00:12 -04:00
Mark H Weaver 9815739e9b
Merge branch 'master' into core-updates 2017-06-20 00:25:59 -04:00
Leo Famulari fed1898d4e
gnu: certbot: Build with Python 3.
* gnu/packages/tls.scm (certbot): Use python-3 to build.
[native-inputs, propagated-inputs]: Use Python 3 variants of dependencies. Use
python-mock-2.
2017-06-19 13:07:20 -04:00
Leo Famulari 76cb906083
gnu: perl-net-ssleay: Update to 1.81.
* gnu/packages/tls.scm (perl-net-ssleay): Update to 1.81.
[native-inputs]: Remove 'perl-net-ssleay-disable-ede-test.patch'.
[arguments]: Remove 'apply-patch' phase.
* gnu/packages/patches/perl-net-ssleay-disable-ede-test.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-06-14 11:30:08 -04:00
Marius Bakke 5bace4c8ad
Merge branch 'master' into core-updates
Conflicts:
* gnu/packages/tls.scm (gnutls): Incorporated 3.5.13 graft (88e2511e21).
2017-06-11 02:07:06 +02:00
Marius Bakke 88e2511e21
gnu: gnutls: Replace with 3.5.13.
This update addresses the following security advisories:

GNUTLS-SA-2017-3 (aka CVE-2017-7869) and GNUTLS-SA-2017-4.

See <https://gnutls.org/security.html> and <https://gnutls.org/news.html>.

* gnu/packages/patches/gnutls-skip-pkgconfig-test.patch,
gnu/packages/patches/gnutls-skip-trust-store-test.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register patches.
* gnu/packages/tls.scm (gnutls)[replacement]: New field.
(gnutls-3.5.13): New variable.
(gnutls/guile-2.2)[replacement]: New field. Set #f.
[source]: Inherit from GNUTLS-3.5.13.
2017-06-11 01:08:58 +02:00
Marius Bakke ea45e2c500
Merge branch 'master' into core-updates 2017-06-10 02:57:50 +02:00
Marius Bakke e6ad9bda49
gnu: p11-kit: Update to 0.23.7.
Newer releases are only available on GitHub. See release announcements:
https://lists.freedesktop.org/archives/p11-glue/2017-June/000661.html

* gnu/packages/tls.scm (p11-kit): Update to 0.23.7.
[source]: Remove obsolete substitution.
2017-06-09 23:26:48 +02:00
Leo Famulari 6175937011
gnu: certbot, python-acme: Update to 0.15.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.15.0.
(python-acme, python2-acme)[arguments]: Remove 'patch-dependency' phase.
This issue was fixed upstream:
d0e471dc80
2017-06-08 15:53:49 -04:00
Marius Bakke d0c45d2d82
Merge branch 'master' into core-updates
Conflicts:
	gnu/packages/image.scm
        (incorporated libtiff graft)
2017-06-03 17:51:21 +02:00
Ricardo Wurmus ee33f9a742
gnu: libtasn1: Update to 4.12.
* gnu/packages/tls.scm (libtasn1): Update to 4.12.
2017-05-30 20:30:35 +02:00
Sergei Trofimovich 8a9b08b503
gnu: openssl: Delete ELF files from tarball.
Otherwise building openssl fails: substitute can't decode binary ELF file:

  ice-9/boot-9.scm:760:25: In procedure dispatch-exception:
  ice-9/boot-9.scm:760:25: Throw to key `decoding-error' with args
  `("peek-char" "input decoding error" 84 #<input: test/ssltest_old 15>)'.

* gnu/packages/tls.scm (openssl)[source]: Add 'snippet'.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-05-30 10:09:03 +02:00
Leo Famulari 2b95f24721
gnu: certbot, python-acme: Update to 0.14.2.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.2.
2017-05-28 15:33:08 -04:00