Commit Graph

215 Commits

Author SHA1 Message Date
ng0 5b9aa107d2
gnu: gnutls: Add 'gnutls-dane'.
* gnu/packages/tls.scm (gnutls/dane): New variable.

Signed-off-by: Christopher Baines <mail@cbaines.net>
2017-10-01 10:50:36 +01:00
Leo Famulari 66660960ba
gnu: certbot, python-acme: Update to 0.18.2.
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.18.2.
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-25 03:27:24 -04:00
Marius Bakke 881006b65c
gnu: certbot: Fix build with python-pyopenssl >= 17.3.0.
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/tls.scm (python-acme)[source]: Use it.
2017-09-17 18:50:00 +02:00
Leo Famulari 45bed1d3ea
gnu: python2-acme: Remove package.
This package has not built successfully for a long time. Since it
appears to have no users, we remove it for now.

* gnu/packages/tls.scm (python2-acme): Remove variable.
2017-09-08 19:55:34 -04:00
Leo Famulari 72fe8956f5
gnu: certbot, python-acme: Update to 0.18.1.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.1.
2017-09-08 19:26:55 -04:00
Leo Famulari 3b2802f8c4
gnu: certbot, python-acme: Update to 0.18.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.18.0.
2017-09-07 15:47:01 -04:00
Marius Bakke 9749746544
gnu: mbedtls-apache: Update to 2.6.0 [fixes CVE-2017-14032].
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.6.0.
2017-08-30 22:41:40 +02:00
Marius Bakke 2718a9cd09
Merge branch 'master' into core-updates 2017-08-21 02:40:37 +02:00
Tobias Geerinckx-Rice 94793c1d0a
gnu: perl-crypt-openssl-bignum: Update to 0.08.
* gnu/packages/tls.scm (perl-crypt-openssl-bignum): Update to 0.08.
2017-08-18 14:54:59 +02:00
Marius Bakke dca82aefbc
gnu: p11-kit: Update to 0.23.8.
* gnu/packages/tls.scm (p11-kit): Update to 0.23.8.
2017-08-15 20:38:02 +02:00
Mark H Weaver f167595ba1
Merge branch 'master' into core-updates 2017-08-06 00:23:20 -04:00
Mark H Weaver e3df6938ac
gnu: libtasn1: Add replacement to fix CVE-2017-10790.
Based on commit 01a61d7040
by Leo Famulari <leo@famulari.name>.

* gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
2017-08-06 00:21:09 -04:00
Leo Famulari 01a61d7040
gnu: libtasn1: Fix CVE-2017-10790.
* gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1/fixed)[source]: Use it.
2017-08-05 20:17:53 -04:00
Tobias Geerinckx-Rice 19dd5097d9
gnu: certbot, python-acme: Update to 0.17.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.17.0.
2017-08-04 02:32:53 +02:00
Marius Bakke e0b9e377f1
Merge branch 'master' into core-updates 2017-07-28 00:34:13 +02:00
Leo Famulari f96dbf6b70
gnu: net-tools: Add a test-only variant and use it for GnuTLS.
* gnu/packages/linux.scm (net-tools-for-tests): Add hidden net-tools variant.
* gnu/packages/tls.scm (gnutls)[native-inputs]: Use net-tools-for-tests instead
of net-tools.
2017-07-26 12:06:52 -04:00
Leo Famulari 6c1a317e29
Merge branch 'master' into core-updates 2017-07-23 03:42:12 -04:00
Tobias Geerinckx-Rice 644e5f17df
download: Add OpenBSD mirrors.
* guix/download.scm (%mirrors) <openbsd>: Add HTTPS OpenBSD mirrors.
* gnu/packages/ntp.scm (openntpd)[source]: Use them.
* gnu/packages/ssh.scm (openssh)[source]: Likewise.
* gnu/packages/tls.scm (libressl)[source]: Likewise.
2017-07-19 01:42:08 +02:00
Leo Famulari a08a9b8c38
gnu: certbot, python-acme: Update to 0.16.0.
* gnu/pckages/tls.scm (certbot, python-acme, python2-acme): Update to 0.16.0.
2017-07-14 10:47:50 -04:00
Leo Famulari df08f38570
gnu: libressl: Provide a TLS-enabled implementation of netcat.
* gnu/packages/tls.scm (libressl)[arguments]: Pass '--enable-nc'
to #:configure-flags.
2017-07-13 00:42:28 -04:00
Leo Famulari 1d919d32d7
gnu: libressl: Update to 2.5.5.
* gnu/packages/tls.scm (libressl): Update to 2.5.5.
[source]: Use HTTPS URL.
2017-07-13 00:42:27 -04:00
Ludovic Courtès d5ec5ed719
packages: Mark 'replacement' as an "innate" field.
Suggested by Mark H Weaver
at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>.

* guix/packages.scm (<package>)[replacement]: Mark as "innate".
* gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24)
(glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove
'replacement' field, which was set to #f.
* gnu/packages/commencement.scm (perl-boot0): Likewise.
* gnu/packages/fontutils.scm (graphite2/fixed): Likewise.
* gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise.
* gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise.
* gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise.
* gnu/packages/icu4c.scm (icu4c/fixed): Likewise.
* gnu/packages/image.scm (libpng-apng): Likewise.
* gnu/packages/make-bootstrap.scm (%guile-static): Likewise.
* gnu/packages/pcre.scm (pcre/fixed): Likewise.
* gnu/packages/perl.scm (perl/fixed): Likewise.
* gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1)
(ruby-1.8): Likewise.
* gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise.
* gnu/packages/xml.scm (expat-2.2.1): Likewise.
2017-07-03 23:51:22 +02:00
Mark H Weaver ed068b960e
Merge branch 'master' into core-updates 2017-06-26 00:00:58 -04:00
Leo Famulari d9f806710f
gnu: mbedtls-apache: Update to 2.5.1.
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.5.1.
2017-06-22 02:00:12 -04:00
Mark H Weaver 9815739e9b
Merge branch 'master' into core-updates 2017-06-20 00:25:59 -04:00
Leo Famulari fed1898d4e
gnu: certbot: Build with Python 3.
* gnu/packages/tls.scm (certbot): Use python-3 to build.
[native-inputs, propagated-inputs]: Use Python 3 variants of dependencies. Use
python-mock-2.
2017-06-19 13:07:20 -04:00
Leo Famulari 76cb906083
gnu: perl-net-ssleay: Update to 1.81.
* gnu/packages/tls.scm (perl-net-ssleay): Update to 1.81.
[native-inputs]: Remove 'perl-net-ssleay-disable-ede-test.patch'.
[arguments]: Remove 'apply-patch' phase.
* gnu/packages/patches/perl-net-ssleay-disable-ede-test.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-06-14 11:30:08 -04:00
Marius Bakke 5bace4c8ad
Merge branch 'master' into core-updates
Conflicts:
* gnu/packages/tls.scm (gnutls): Incorporated 3.5.13 graft (88e2511e21).
2017-06-11 02:07:06 +02:00
Marius Bakke 88e2511e21
gnu: gnutls: Replace with 3.5.13.
This update addresses the following security advisories:

GNUTLS-SA-2017-3 (aka CVE-2017-7869) and GNUTLS-SA-2017-4.

See <https://gnutls.org/security.html> and <https://gnutls.org/news.html>.

* gnu/packages/patches/gnutls-skip-pkgconfig-test.patch,
gnu/packages/patches/gnutls-skip-trust-store-test.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register patches.
* gnu/packages/tls.scm (gnutls)[replacement]: New field.
(gnutls-3.5.13): New variable.
(gnutls/guile-2.2)[replacement]: New field. Set #f.
[source]: Inherit from GNUTLS-3.5.13.
2017-06-11 01:08:58 +02:00
Marius Bakke ea45e2c500
Merge branch 'master' into core-updates 2017-06-10 02:57:50 +02:00
Marius Bakke e6ad9bda49
gnu: p11-kit: Update to 0.23.7.
Newer releases are only available on GitHub. See release announcements:
https://lists.freedesktop.org/archives/p11-glue/2017-June/000661.html

* gnu/packages/tls.scm (p11-kit): Update to 0.23.7.
[source]: Remove obsolete substitution.
2017-06-09 23:26:48 +02:00
Leo Famulari 6175937011
gnu: certbot, python-acme: Update to 0.15.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.15.0.
(python-acme, python2-acme)[arguments]: Remove 'patch-dependency' phase.
This issue was fixed upstream:
d0e471dc80
2017-06-08 15:53:49 -04:00
Marius Bakke d0c45d2d82
Merge branch 'master' into core-updates
Conflicts:
	gnu/packages/image.scm
        (incorporated libtiff graft)
2017-06-03 17:51:21 +02:00
Ricardo Wurmus ee33f9a742
gnu: libtasn1: Update to 4.12.
* gnu/packages/tls.scm (libtasn1): Update to 4.12.
2017-05-30 20:30:35 +02:00
Sergei Trofimovich 8a9b08b503
gnu: openssl: Delete ELF files from tarball.
Otherwise building openssl fails: substitute can't decode binary ELF file:

  ice-9/boot-9.scm:760:25: In procedure dispatch-exception:
  ice-9/boot-9.scm:760:25: Throw to key `decoding-error' with args
  `("peek-char" "input decoding error" 84 #<input: test/ssltest_old 15>)'.

* gnu/packages/tls.scm (openssl)[source]: Add 'snippet'.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-05-30 10:09:03 +02:00
Leo Famulari 2b95f24721
gnu: certbot, python-acme: Update to 0.14.2.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.2.
2017-05-28 15:33:08 -04:00
Marius Bakke 4953c33316
gnu: libtasn1: Remove obsolete patch.
This is a followup to 6a09628cb1.
(picked from the wrong branch, sorry!)

* gnu/packages/tls.scm (libtasn1)[source]: Remove upstreamed patch.
* gnu/packages/patches/libtasn1-CVE-2017-6891.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-05-28 19:16:43 +02:00
Marius Bakke 6a09628cb1
gnu: libtasn1: Update to 4.11.
* gnu/packages/tls.scm (libtasn1): Update to 4.11.
2017-05-28 19:08:47 +02:00
Mark H Weaver 54d9479d8a
Merge branch 'master' into core-updates 2017-05-27 03:39:12 -04:00
Leo Famulari 811e10281f
gnu: openssl: Update to 1.0.2l.
* gnu/packages/tls.scm (openssl): Update to 1.0.2l.
2017-05-25 15:12:47 -04:00
Leo Famulari fc3a041674
gnu: openssl@1.1.0: Update to 1.1.0f.
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0f.
2017-05-25 14:43:31 -04:00
Ludovic Courtès a07007876a
gnu: gnutls: Default to Guile 2.2.
* gnu/packages/tls.scm (gnutls)[arguments]: Remove
'--with-guile-site-dir' configure flag.
[inputs]: Use GUILE-2.2 instead of GUILE-2.0.
(gnutls/guile-2.2): Redefine using 'deprecated-package'.
(gnutls/guile-2.0): New variable.
2017-05-25 14:40:00 +02:00
Leo Famulari 596649313c
gnu: libtasn1: Incorporate grafted changes.
* gnu/packages/tls.scm (libtasn1)[replacement]: Remove field.
[source]: Use "libtasn1-CVE-2017-6891.patch".
(libtasn1/fixed): Remove variable.
2017-05-24 18:15:05 -04:00
Leo Famulari 38f1163c95
Merge branch 'master' into core-updates 2017-05-24 18:02:27 -04:00
Leo Famulari ff51a87cae
gnu: libtasn1: Fix CVE-2017-6891.
* gnu/packages/patches/libtasn1-CVE-2017-6891.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
2017-05-24 16:57:40 -04:00
Leo Famulari ff7da7e04d
gnu: asn1c: Update to 0.9.28.
* gnu/packages/tls.scm (asn1c): Update to 0.9.28.
2017-05-24 16:35:49 -04:00
Ricardo Wurmus d1a914082b
Merge branch 'master' into core-updates 2017-05-24 12:05:47 +02:00
Leo Famulari 44a0591b2b
gnu: certbot, python-acme: Update to 0.14.1.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.1.
2017-05-16 22:51:25 -04:00
Leo Famulari 17139eff16
gnu: certbot, python-acme: Update to 0.14.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.0.
2017-05-06 14:58:13 -04:00
Efraim Flashner 2ed12d3fb0
gnu: libressl: Update to 2.5.4.
* gnu/packages/tls.scm (libressl): Update to 2.5.4.
[home-page]: Use https.
2017-05-03 21:58:02 +03:00