Commit graph

174 commits

Author SHA1 Message Date
Marius Bakke
88e2511e21
gnu: gnutls: Replace with 3.5.13.
This update addresses the following security advisories:

GNUTLS-SA-2017-3 (aka CVE-2017-7869) and GNUTLS-SA-2017-4.

See <https://gnutls.org/security.html> and <https://gnutls.org/news.html>.

* gnu/packages/patches/gnutls-skip-pkgconfig-test.patch,
gnu/packages/patches/gnutls-skip-trust-store-test.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register patches.
* gnu/packages/tls.scm (gnutls)[replacement]: New field.
(gnutls-3.5.13): New variable.
(gnutls/guile-2.2)[replacement]: New field. Set #f.
[source]: Inherit from GNUTLS-3.5.13.
2017-06-11 01:08:58 +02:00
Marius Bakke
e6ad9bda49
gnu: p11-kit: Update to 0.23.7.
Newer releases are only available on GitHub. See release announcements:
https://lists.freedesktop.org/archives/p11-glue/2017-June/000661.html

* gnu/packages/tls.scm (p11-kit): Update to 0.23.7.
[source]: Remove obsolete substitution.
2017-06-09 23:26:48 +02:00
Leo Famulari
6175937011
gnu: certbot, python-acme: Update to 0.15.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.15.0.
(python-acme, python2-acme)[arguments]: Remove 'patch-dependency' phase.
This issue was fixed upstream:
d0e471dc80
2017-06-08 15:53:49 -04:00
Leo Famulari
2b95f24721
gnu: certbot, python-acme: Update to 0.14.2.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.2.
2017-05-28 15:33:08 -04:00
Leo Famulari
fc3a041674
gnu: openssl@1.1.0: Update to 1.1.0f.
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0f.
2017-05-25 14:43:31 -04:00
Leo Famulari
ff51a87cae
gnu: libtasn1: Fix CVE-2017-6891.
* gnu/packages/patches/libtasn1-CVE-2017-6891.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
2017-05-24 16:57:40 -04:00
Leo Famulari
ff7da7e04d
gnu: asn1c: Update to 0.9.28.
* gnu/packages/tls.scm (asn1c): Update to 0.9.28.
2017-05-24 16:35:49 -04:00
Leo Famulari
44a0591b2b
gnu: certbot, python-acme: Update to 0.14.1.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.1.
2017-05-16 22:51:25 -04:00
Leo Famulari
17139eff16
gnu: certbot, python-acme: Update to 0.14.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.0.
2017-05-06 14:58:13 -04:00
Efraim Flashner
2ed12d3fb0
gnu: libressl: Update to 2.5.4.
* gnu/packages/tls.scm (libressl): Update to 2.5.4.
[home-page]: Use https.
2017-05-03 21:58:02 +03:00
Petter
2f3108ad03
gnu: Avoid circular dependencies by Perl license.
* guix/licenses.scm (perl-license): New variable.
* gnu/packages/bioinformatics.scm: Change (package-license perl) to perl-license.
* gnu/packages/compression.scm: Same.
* gnu/packages/databases.scm: Same.
* gnu/packages/gd.scm: Same.
* gnu/packages/language.scm: Same.
* gnu/packages/libevent.scm: Same.
* gnu/packages/mail.scm: Same.
* gnu/packages/messaging.scm: Same.
* gnu/packages/ncurses.scm: Same.
* gnu/packages/networking.scm: Same.
* gnu/packages/photo.scm: Same.
* gnu/packages/tcl.scm: Same.
* gnu/packages/tex.scm: Same.
* gnu/packages/tls.scm: Same.
* gnu/packages/web.scm: Same.
* gnu/packages/wm.scm: Same.
* gnu/packages/xml.scm: Same.
* gnu/packages/xorg.scm: Same.
* gnu/packages/zip.scm: Same.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-05-02 23:41:14 +02:00
Ludovic Courtès
a2d648992a
gnu: libressl: Do not use 'getentropy'.
* gnu/packages/tls.scm (libressl)[arguments]: New field.
2017-04-18 23:45:11 +02:00
Leo Famulari
012863081d
gnu: certbot: Remove unused dependency.
This dependency was removed in certbot@0.10.0:

d54cb76432

* gnu/packages/tls.scm (certbot)[propagated-inputs]: Remove
python2-pythondialog.
2017-04-12 17:03:51 -04:00
Leo Famulari
57fe07dbc0
gnu: python-acme: Remove unused dependencies.
Removed in python-acme@0.10.0 and 0.4.1, respectively:

edbb3a73c6
df383ee6e4

* gnu/packages/tls.scm (python-acme, python2-acme)[propagated-inputs]:
Remove python-ndg-httpsclient and python-werkzeug.
2017-04-12 17:03:50 -04:00
Marius Bakke
1fc8476d36
gnu: certbot, python-acme: Build documentation in separate phase.
* gnu/packages/tls.scm (python-acme)[arguments]<:phases>: Add
'build-documentation' phase. Rename 'docs' phase to 'install-documentation'.
(certbot)[arguments]<:phases>: Adjust accordingly.
2017-04-12 18:29:00 +02:00
Leo Famulari
69121e95cd
gnu: libressl: Update to 2.5.3.
* gnu/packages/tls.scm (libressl): Update to 2.5.3.
2017-04-11 20:35:25 -04:00
Leo Famulari
f26d6e4e9c
gnu: certbot: Share python-acme's arguments.
* gnu/packages/tls.scm (certbot)[arguments]: Use substitute-keyword-arguments to
inherit from python-acme.
2017-04-08 13:24:36 -04:00
Leo Famulari
f0e9fda6be
gnu: certbot, python-acme: Update to 0.13.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.13.0.
[arguments]: Add 'patch-dependency' phase.
2017-04-08 13:24:31 -04:00
Marius Bakke
84157bb8bf
Merge branch 'master' into core-updates
Most conflicts are from 6fd52309b8.
2017-03-30 22:59:53 +02:00
Leo Famulari
16ab9824b2
gnu: mbedtls-apache: Update to 2.4.2 [fixes CVE-2017-2784, SLOTH and others].
See 'ChangeLog' in the source code distribution for more information about
security-related bug fixes.

* gnu/packages/tls.scm (mbedtls-apache): Update to 2.4.2.
2017-03-30 14:35:41 -04:00
Tobias Geerinckx-Rice
6fd52309b8
gnu: Use HTTPS for almost all gnu.org HOME-PAGEs.
All HTTP gnu.org (and supported subdomain) HOME-PAGEs changed to HTTPS.
2017-03-30 01:30:16 +02:00
Leo Famulari
7bde7273c3
gnu: libressl: Update to 2.5.2.
* gnu/packages/tls.scm (libressl): Update to 2.5.2.
2017-03-28 22:05:55 -04:00
Mark H Weaver
f67337e23e
Merge branch 'master' into core-updates 2017-03-19 18:52:12 -04:00
Ludovic Courtès
f6396d862f
gnu: Rename "guile-next" to "guile".
* gnu/packages/guile.scm (guile-next): Rename to...
(guile-2.2): ... this.  Update users.
[name]: Change to "guile".
[synopsis]: Remove.
[properties]: Remove 'upstream-name', 'ftp-server', and
'ftp-directory'.
* gnu/packages/bioinformatics.scm (rcas-web): Update accordingly.
* gnu/packages/tls.scm (gnutls/guile-2.2): Likewise.
* tests/guix-build.sh: Use 'guile@2.2' instead of 'guile-next'.
* doc/guix.texi (Package Transformation Options): Update examples that
referred to "guile-next".
2017-03-19 18:14:22 +01:00
Ludovic Courtès
e90e0fad1b
Merge branch 'master' into core-updates 2017-03-09 16:35:41 +01:00
Leo Famulari
e2948ef5c1
gnu: libressl: Update to 2.5.1.
* gnu/packages/tls.scm (libressl): Update to 2.5.1.
2017-03-06 16:31:29 -05:00
ng0
8852273868
gnu: Add mbedtls-apache.
* gnu/packages/tls.scm (mbedtls-apache): New variable.

Signed-off-by: Kei Kebreau <kei@openmailbox.org>
2017-03-04 14:18:24 -05:00
Leo Famulari
89d42ac17c
gnu: certbot, python-acme: Update to 0.12.0.
* gnu/packages/tls.scm (python-acme, python2-acme): Update to 0.12.0.
(certbot): Update to 0.12.0.
2017-03-03 04:29:55 -05:00
Leo Famulari
55e61c4db8
gnu: gnutls: Support internationalized domain names.
* gnu/packages/tls.scm (gnutls)[propagated-inputs]: Replace libidn with
libidn2.
2017-02-24 14:03:16 -05:00
Efraim Flashner
3853bf2542
gnu: libtasn1: Update to 4.10.
* gnu/packages/tls.scm (libtasn1): Update to 4.10.
2017-02-21 20:27:47 +02:00
Efraim Flashner
0b86650650
gnu: gnutls: Update to 3.5.9.
* gnu/packages/tls.scm (gnutls): Update to 3.5.9.
2017-02-21 20:15:44 +02:00
Marius Bakke
4c145d21d1
gnu: openssl: Incorporate grafted changes.
This un-grafts 544db93caf.

* gnu/packages/tls.scm (openssl): Update to 1.0.2k.
[replacement]: Remove field.
(openssl-1.0.2k): Remove variable.
(openssl-next)[replacement]: Remove field.
2017-02-21 15:08:02 +01:00
Efraim Flashner
d15432ca9e
Merge remote-tracking branch 'origin/master' into core-updates 2017-02-20 12:56:14 +02:00
Leo Famulari
c85016adcc
gnu: openssl-next: Update to 1.1.0e [fixes CVE-2017-3733].
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0e.
2017-02-16 11:42:36 -05:00
Ludovic Courtès
768f0ac9dd
Merge branch 'master' into core-updates 2017-02-10 17:40:25 +01:00
David Craven
59e0bd7154
gnu: gnutls: Remove perl dependency.
* gnu/packages/tls.scm (gnutls)[inputs]: Remove perl.
2017-02-10 13:04:20 +01:00
Leo Famulari
686d425904
gnu: certbot, python-acme: Update to 0.11.1.
* gnu/packages/tls.scm (python-acme, python2-acme): Update to 0.11.1.
(certbot): Update to 0.11.1.
[version]: Use python-acme's version.
2017-02-06 13:46:45 +01:00
Leo Famulari
e8c83d04e1
Merge branch 'master' into core-updates 2017-02-02 10:52:24 -05:00
Leo Famulari
4a6b2a21bf
gnu: acme-client: Update to 0.1.16.
* gnu/packages/tls.scm (acme-client): Update to 0.1.16.
2017-02-01 18:05:01 -05:00
Leo Famulari
70852355e6
gnu: openssl-next: Update to 1.1.0d [fixes CVE-2017-{3730, 3731, 3732}].
* gnu/packages/tls.scm (openssl-next): Update to 1.1.0d.

Signed-off-by: Marius Bakke <mbakke@fastmail.com>
2017-01-26 22:26:20 +01:00
Leo Famulari
544db93caf
gnu: openssl: Replace with openssl-1.0.2k [security fixes].
Fix CVE-2016-7055 and CVE-2017-{3731,3732}.

* gnu/packages/tls.scm (openssl)[replacement]: New field.
(openssl-1.0.2k): New variable.
(openssl-next)[replacement]: New field.

Signed-off-by: Marius Bakke <mbakke@fastmail.com>
2017-01-26 22:26:12 +01:00
Tobias Geerinckx-Rice
d338ff580d
gnu: python-acme: Update to 0.10.2.
* gnu/packages/tls.scm (python-acme): Update to 0.10.2.
2017-01-26 21:05:05 +01:00
Tobias Geerinckx-Rice
80968df0d0
gnu: certbot: Update to 0.10.2.
* gnu/packages/tls.scm (certbot): Update to 0.10.2.
[description]: Use present tense; expand acronyms.
2017-01-26 21:05:04 +01:00
Leo Famulari
9b9e147117
gnu: gnutls: Update to 3.5.8.
* gnu/packages/tls.scm (gnutls): Update to 3.5.8.
2017-01-26 00:28:43 -05:00
Ludovic Courtès
58ea4d407c
Merge branch 'master' into core-updates 2017-01-23 22:33:10 +01:00
Leo Famulari
08a78c2fde
gnu: openssl: Don't replace 'sh' reference with 'bash'.
* gnu/packages/tls.scm (openssl)[arguments]: Use /bin/sh instead of /bin/bash in
'patch-tests' phase.
2017-01-23 16:02:25 -05:00
Ludovic Courtès
079f013be2
gnu: gnutls: Add 'guile2.2-gnutls'.
Suggested by Chris Webber.

* gnu/packages/tls.scm (gnutls/guile-2.2): New variable.
2017-01-20 21:39:17 +01:00
Leo Famulari
df0625ab73
gnu: certbot, python-acme: Update to 0.10.1.
These packages should be updated together.

* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.10.1.
2017-01-14 15:04:55 -05:00
Ludovic Courtès
3c0f7910e4
gnu: gnutls: Replace with 3.5.8 [fixes GNUTLS-SA-2017-{1,2}].
* gnu/packages/tls.scm (gnutls-3.5.8): New variable.
(gnutls)[replacement]: New field.
2017-01-10 23:40:33 +01:00
Leo Famulari
74288230ea
Merge branch 'master' into core-updates 2017-01-06 17:14:41 -05:00