| Age | Commit message (Collapse) | Author |
|---|
|
Rationale: the version 1.1.1u was captured in the phase gexp and carried over
in the inherited openssl 3.0.8 package.
* gnu/packages/tls.scm (openssl-1.1) [#:phases] <configure>: Remove version
from openssldir value.
<remove-miscellany>: Adjust accordingly.
Change-Id: I2795f0b57b8b8382b14e313e3741d0f1c22939ae
|
|
* gnu/packages/tls.scm (openssl-1.1) [arguments]
<#:parallel-tests?>: Delete argument.
Change-Id: Id6372c6634672f7949fb06a6086174b200e61188
|
|
This makes it so that GnuTLS always knows to locate the nss-certs without
users having to do anything. This default behavior can be modified by users
via the p11-kit configuration mechanism, which can be be done per-user.
* gnu/packages/patches/gnutls-skip-trust-store-test.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): De-register it.
* gnu/packages/tls.scm (gnutls) [source]: Remove
'gnutls-skip-trust-store-test.patch' patch.
[#:configure-flags]: Delete "--with-default-trust-store-dir=/etc/ssl/certs".
Add "--with-default-trust-store-pkcs11=pkcs11:". Update comment.
Fixes: <https://issues.guix.gnu.org/75902>
Fixes: <https://issues.guix.gnu.org/46779>
Change-Id: Ie45bfe8c2884c1ab277b0fba6135a5af3a9b6a3d
|
|
* gnu/packages/tls.scm [arguments] <#:configure-flags>: Add --with-zstd=link.
[propagated-inputs]: Add zstd:lib.
Change-Id: I7cfce764181eebe12a32019107061c88edaa877a
|
|
* gnu/packages/tls.scm (gnutls)[source] <patches>: Add gnutls-no-which.patch.
[arguments] <#:configure-flags>: Do not build without p11-kit on
mips64el (debian has a package for it, it ought to work). Add
--with-zlib=link flag.
<#:phases>: Delete disable-failing-tests phase.
[native-inputs]: Remove which.
[propagated-inputs]: Do not avoid p11-kit on mips64el architecture.
* gnu/packages/patches/gnutls-no-which.patch: Add file.
* gnu/local.mk (dist_patch_DATA): Register it.
Change-Id: I6519b789896dba00de6a1af7a6f772906ce660c1
|
|
* gnu/packages/tls.scm (p11-kit) [native-search-paths]: New field.
Change-Id: I10b2420340aa42dd1e91d41030b1fa44b549f631
|
|
* gnu/packages/tls.scm (p11-kit): [native-inputs]: Add nss-certs.
[arguments] <#:configure-flags>: Expose its certs via an 'anchors'
subdirectory to the trust paths.
Change-Id: Iee727edb1f51f8503fcbdd4ec1dee0d47a6bba39
|
|
* gnu/packages/tls.scm (p11-kit): Update to 0.25.5.
[source]: Drop hurd patch.
[arguments]: Delete #:phases.
<#:configure-flags>: Add more trust paths, for better compatibility with foreign distributions.
[native-inputs]: Add python-minimal. Remove autoconf, automake,
gettext-minimal and libtool when targeting the Hurd.
Change-Id: I3d52b681c580ddcf10646411b07f7f86541ba163
|
|
* gnu/packages/tls.scm (gnutls): Update to 3.8.9.
[arguments]: Add ‘gnutls_cv_soname_z’ to #:configure-flags.
[inputs]: Add ‘zlib’.
Change-Id: Ia0e22f82199e67dafbb2283401fe168499c134b7
|
|
* gnu/packages/tls.scm (libressl): Update to 4.2.1.
Closes guix/guix#4009
Change-Id: I5e7f2746e98dcf19416abcf1eeab948750c732fc
Signed-off-by: Cayetano Santos <csantosb@inventati.org>
Signed-off-by: Rutherther <rutherther@ditigal.xyz>
|
|
* gnu/packages/tls.scm (wolfssl-for-rpcs3): New variable.
Change-Id: I10f9eca82ae8774f401dfe4fb85816f524eb6482
Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
|
|
This allows ‘package-input-rewriting’ to operate as expected on these
packages. Failing that, rewritten packages would still carry references to
non-rewritten packages in #:disallowed-references.
* gnu/packages/admin.scm (wpa-supplicant-gui): Use ‘this-package-native-input’
for #:disallowed-references.
* gnu/packages/fontutils.scm (freetype): Likewise.
* gnu/packages/glib.scm (glib-minimal): Likewise.
* gnu/packages/gnome.scm (cogl, gnome-shell): Likewise.
* gnu/packages/groff.scm (groff-minimal): Likewise.
* gnu/packages/gstreamer.scm (gstreamer): Likewise.
* gnu/packages/gtk.scm (gtk+): Likewise.
* gnu/packages/inkscape.scm (inkscape/pinned): Likewise.
* gnu/packages/java.scm (icedtea-8, openjdk9, openjdk10)
(openjdk11): Likewise.
* gnu/packages/linux.scm (f2fs-tools/static): Likewise.
* gnu/packages/man.scm (man-db): Likewise.
* gnu/packages/openldap.scm (389-ds-base): Likewise.
* gnu/packages/qt.scm (qtbase-5): Likewise.
* gnu/packages/rrdtool.scm (rrdtool): Likewise.
* gnu/packages/rust.scm (rust-bootstrapped-package): Likewise.
* gnu/packages/statistics.scm (r-with-tests): Likewise.
(r-minimal): Likewise.
* gnu/packages/texinfo.scm (info-reader): Likewise.
* gnu/packages/tls.scm (gnutls): Likewise.
(openssl-1.1): Likewise.
* gnu/packages/version-control.scm (git-minimal): Likewise.
(git): Likewise.
(gource): Likewise.
* gnu/packages/web.scm (mod-wsgi): Likewise.
* gnu/packages/xfce.scm (xfdesktop): Likewise.
* gnu/packages/perl.scm (perl-libtime-parsedate): Update comment.
* gnu/packages/video.scm (v4l-utils-minimal): Add FIXME comment.
Change-Id: I118ecd5894c24c53ec52c9208b0025ccfa3dd68a
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
Fixes CVE-2025-9230.
* gnu/packages/tls.scm (libressl): Update to 4.2.0
Change-Id: I8fd2786d29be4084f7d6588eae805ad4714c25a0
Signed-off-by: Andreas Enge <andreas@enge.fr>
|
|
This reverts commit 3e90591c3cd9d15fbebc3c782df7da6e7ac36fdb.
The package libp11 is already available in gnu/packages/security-token.scm.
|
|
* gnu/packages/tls.scm (libp11): New variable.
Change-Id: I663b8a769887e66e6b5c4920ec67df94d9df1997
|
|
This is a variant, and should get the same graft treatment as the parent
package.
* gnu/packages/tls.scm (mbedtls-for-hiawatha): Use package/inherit.
Change-Id: I570db81d5a6d703ade47b160fbdf0eb5d655b0fc
|
|
* gnu/packages/tls.scm (mbedtls-apache): Delete variable.
Change-Id: I606a45f29e6212f259159a9d2f2d2edc9a42b7b5
|
|
* gnu/packages/tls.scm (mbedtls): Update to 3.5.2.
[source]: Switch to url-fetch (otherwise there are git submodules to pull).
Change-Id: I8e7402fd24049defb922a4ceae64d099abbf5bfb
|
|
This reverts commit a7db92d9b389cbe565395523882c34c6eff2c21a, this time with
the more careful command, to avoid a world rebuild:
grep -rl --exclude-dir=build --exclude-dir=patches --exclude=ld-wrapper.in \
--exclude=sitecustomize.py --exclude=guix-emacs.el maxim.cournoyer@gmail.com |
xargs sed -i 's/maxim.cournoyer@gmail.com/maxim@guixotic.coop/g'
Change-Id: I0871f5cf9ace79e34e78e24154d0da6ea95a3a91
|
|
This reverts commit d0d87a744d724b7e7d5ac013c586039652087bb3. Oops! This
caused a world rebuild.
Change-Id: I25fff644b2b61d0ee93d69b457b04c72b5b74d15
|
|
The change was automated via:
git grep -l maxim.cournoyer@gmail.com |
xargs sed -i 's/maxim.cournoyer@gmail.com/maxim@guixotic.coop/g'
* .mailmap: New entry.
Change-Id: Iaa88b1e51c94159c49138fb43910badb990eb169
|
|
* gnu/packages/tls.scm (guile-gnutls): Update tarball URL. Add autoconf/automake.
Signed-off-by: Simon Josefsson <simon@josefsson.org>
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
* gnu/packages/tls.scm (go-github-com-certifi-gocertifi): Delete variable.
Fixes: guix/guix#1601
Change-Id: Ieddb4fb8a864c6543f1ee28c834e649e5834430b
|
|
This is made so that the source can be shared without introducing module
circular dependencies.
* gnu/packages/certs.scm (nss-certs)
(nss-certs-for-test): Move to...
* gnu/packages/nss.scm: ... here.
Adjust the module imports via:
git grep -l '(gnu packages certs)' |
xargs sed 's/(gnu packages certs)/(gnu packages nss)/' -i
Change-Id: I56d7bc52ddcdffbced8a162e8db8ea5071b0cb0f
|
|
* gnu/packages/tls.scm (certbot): Update to 4.2.0.
[source, arguments, description]: Improve style.
Change-Id: I7b3380c4f04b5c07239f68e7c4fcd96e3c14ea08
Signed-off-by: Sharlatan Hellseher <sharlatanus@gmail.com>
|
|
* gnu/packages/tls.scm (python-acme): Update to 4.2.0.
[build-system]: Switch to pyproject-build-system.
[arguments]<#:phases>: Improve style. Add phase 'relax-requirements.
[native-inputs]: Add python-pytest-xdist, python-setuptools,
python-typing-extensions, python-wheel.
[propagated-inputs]: Remove python-chardet, python-requests-toolbelt,
python-pytz, python-pyasn1.
Change-Id: Iaae770b8076da9eef11197354a75a5af44f98496
Signed-off-by: Sharlatan Hellseher <sharlatanus@gmail.com>
|
|
* gnu/packages/astronomy.scm (libsep),
* gnu/packages/bioinformatics.scm (megahit),
* gnu/packages/bittorrent.scm (qbittorrent),
* gnu/packages/calendar.scm (date),
* gnu/packages/check.scm (klee, trompeloeil),
* gnu/packages/compression.scm (zziplib),
* gnu/packages/cpp.scm (immer, lager, zug),
* gnu/packages/databases.scm (timescaledb),
* gnu/packages/emulators.scm (dolphin-emu),
* gnu/packages/fpga.scm (systemc),
* gnu/packages/game-development.scm (box2d),
* gnu/packages/games.scm (megaglest, openclonk, teeworld),
* gnu/packages/glib.scm (sdbus-c++),
* gnu/packages/gnucash.scm (gnucash),
* gnu/packages/graph.scm (igraph),
* gnu/packages/image.scm (exiv2),
* gnu/packages/inkscape.scm (inkscape),
* gnu/packages/instrumentation.scm (yactfr),
* gnu/packages/kde-multimedia.scm (elisa),
* gnu/packages/linux.scm (falcosecurity-libs),
* gnu/packages/llvm.scm (libcxx, libomp-15),
* gnu/packages/machine-learning.scm (ctranslate2, tvm),
* gnu/packages/maths.scm (blitz),
* gnu/packages/messaging.scm (libphonenumber),
* gnu/packages/music.scm (clementine, libdiscid, opustags, strawberry),
* gnu/packages/opencog.scm (atomspace, attention, cogserver, cogutil,
opencog),
* gnu/packages/python-xyz.scm (pybind11)
* gnu/packages/radio.scm (libfec, libcorrect),
* gnu/packages/serialization.scm (qtcsv),
* gnu/packages/shells.scm (fish),
* gnu/packages/tls.scm (aws-lc),
* gnu/packages/web.scm (wabt),
* gnu/packages/vulkan.com (spirv-llvm-translator)
[arguments]: Move #:test-target to ...
<#:phases>: ... 'check phase.
* gnu/packages/algebra.scm (xtensor),
* gnu/packages/astronomy (stellarium),
* gnu/packages/bioinformatics.scm (libsbml),
* gnu/packages/chemistry.scm (openbabel),
* gnu/packages/cpp.scm (xsimd, xtl),
* gnu/packages/documentation.scm (doxygen),
* gnu/packages/lua.scm (selene),
* gnu/packages/libftdi.scm (libftdi),
* gnu/packages/llvm.scm (cling, libomp@12, libomp@13),
* gnu/packages/hyperledger.scm (hyperledger-iroha),
* gnu/packages/markup.scm (cmark, cmark-gfm),
* gnu/packages/maths.scm (cryptominisat, double-conversion),
* gnu/packages/mp3.scm (chromaprint),
* gnu/packages/qt.scm (qtpromise)
* gnu/packages/rdf.scm (clucene),
* gnu/packages/sync.scm (lsyncd)
[arguments}: Remove #:test-target.
* gnu/packages/engineering.scm (libfive),
* gnu/packages/game-development.scm (box2d-3)
[arguments]: Remove #:test-target and disable tests.
Change-Id: I0a82091df1789980bbbac0c334b6f993c36f412a
|
|
* gnu/packages/aidc.scm (zint),
* gnu/packages/calendar.scm (libical),
* gnu/packages/compression.scm (c-blosc2, minizip-ng),
* gnu/packages/cpp.scm (cpp-httplib),
* gnu/packages/engineering.scm (libmedfile),
* gnu/packages/gnome.scm (evolution-data-server),
* gnu/packages/image-processing.scm (opencv),
* gnu/packages/kde-frameworks.scm (kservice),
* gnu/packages/maths.scm (scotch),
* gnu/packages/networking.scm (restbed, restinio, srt),
* gnu/packages/tbb.scm (tbb),
* gnu/packages/tls.scm (mbedtls-lts),
* gnu/packages/vulkan.scm (vulkan-loader),
* gnu/packages/web.scm (websocketpp)
[arguments]<#:parallel-tests?>: Disable.
Change-Id: I88334deb4afc29ab84b279e9d1759a777ddd49dd
|
|
* gnu/packages/tls.scm (guile-gnutls): Update to 5.0.1.
[home-page]: Change to new repository url.
[source]: Change download url to gnu mirrors.
[#:make-flags] Remove XFAIL_TESTS
Change-Id: Ie4253ecdd1de6497e09f5262c14a396b03d076f9
Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
|
|
* gnu/packages/patches/perl-net-ssleay-colon-parsing.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/base.scm (perl-net-ssleay): Update to 1.94.
[source](origin): Add patch.
Change-Id: Ie4b8bc713618fb72e86c07860fab30e47b96dc76
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
* gnu/packages/tls.scm (libtasn1): Update to 4.20.0.
Change-Id: Icc1a1950d0e0d9ac769529dd91970eff6122d2eb
|
|
* gnu/packages/tls.scm (mbedtls-lts): Update to 2.28.9.
[arguments]: Extend #:configure-flags to relax gcc-14's strictness.
Change-Id: I928b2c9b76966f830ff8c953d8978518f9e2993b
|
|
* gnu/packages/web.scm (hiawatha): Update to 11.2.
[source]: Remove snippet.
* gnu/packages/tls.scm (mbedtls-for-hiawatha): Inherit from
mbedtls@3 instead of mbedtls-lts@2.
Co-authored-by: Gabriel Wicky <gabriel@erlikon.ch>
Change-Id: Id1b67ffb91f60df2fad2020a1b752452b364eede
|
|
* gnu/packages/tls.scm (libressl): Update to 4.1.0.
Change-Id: Ib16271ecf43c3a3f375a4e037ab05539c588345e
Signed-off-by: Hilton Chain <hako@ultrarare.space>
|
|
* gnu/packages/tls.scm (aws-lc): Downgrade to 1.48.5.
Change-Id: I9cab7dad39759de7f7aed983fcef1dd5d19e45f3
|
|
* gnu/packages/tls.scm (libressl) [outputs]: New field.
Change-Id: Ie4949d46d3b9f403b4c87e4f3ae876c40c3032a6
|
|
All of our kernels are now on the 5.x series, and other systems using 3.x
kernels are EOL.
* gnu/packages/tls.scm (libressl) [#:configure-flags]: Use gexps, and remove
the 'ac_cv_func_getentropy=no' flag.
Change-Id: If82e89d471adf3f6ea5983fa042f03dc5350c0d8
|
|
* gnu/packages/tls.scm (s2n): Update to 1.5.15.
Change-Id: I9d3285c2b58ee789b15a875f9cca3649a4451c67
Signed-off-by: Christopher Baines <mail@cbaines.net>
|
|
* gnu/packages/tls.scm (aws-lc): Update to 1.49.1.
[native-inputs]: Add perl.
Signed-off-by: Christopher Baines <mail@cbaines.net>
|
|
So that debug symbols are available for debugging segfaults involving
guile-gnutls.
* gnu/packages/tls.scm (guile-gnutls)[outputs]: Add debug.
Change-Id: Id447147b37ec0af76d0fcd568850d8f45fffa88d
|
|
* gnu/packages/tls.scm (target->openssl-target, target->openssl-target): Add
loongarch64 case.
Change-Id: Ie85b4e1f39650f6134c9b5c4c81e0d5f83068558
|
|
gnu/packages/tls.scm (wolfssl): Use G-expressions.
Change-Id: I56d995360b50a614a405c4377f0c7714c2522508
|
|
* gnu/packages/tls.scm (wolfssl): Update to 5.7.6.
Change-Id: Ibe9274f032bc4e5757534e01b7d8d1603f69efdc
Signed-off-by: Zheng Junjie <zhengjunjie@iscas.ac.cn>
|
|
Test certificate is updated upstream, so no need for a hack anymore.
* gnu/packages/tls.scm (libressl): Update to 4.0.0.
[native-inputs]: Remove. [arguments]<phases>: Remove.
Change-Id: Ib22aae8e48af4b4f9b5039283e563b419e629cf0
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
|
|
* gnu/packages/patches/openssl-hurd64.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/tls.scm (openssl-3.0)[arguments]: When building for the 64bit
Hurd, use it in new "apply-hurd-patch" phase. In #:configure-flags use
"hurd-x86_64" for the 64bit Hurd.
Change-Id: I8936377da726681b748cc010e1fbae3fb19dee05
|
|
* gnu/packages/tls.scm (gnutls)[properties]: Change release monitoring
URL. Add ‘upstream-name’.
Change-Id: If6ee941246b130914ddf7ca11c074a9547b9d739
|
|
* gnu/packages/tls.scm (wolfssl): Update to 5.7.4.
Change-Id: I1438599e3febd71e50ae690f168b7bf12896223a
Signed-off-by: Zheng Junjie <zhengjunjie@iscas.ac.cn>
|
|
* gnu/packages/tls.scm (s2n)[supported-systems]: Expand to all 64-bit
systems supported in Guix.
Change-Id: Ide97bf8e5ec5090c4fb740c90cf0ec2aee4a3771
|
|
This fixes CVE-2022-42905, CVE-2023-3724, CVE-2024-1543, CVE-2024-5991.
* gnu/packages/tls.scm (wolfssl): Update to 5.7.2.
Signed-off-by: Sharlatan Hellseher <sharlatanus@gmail.com>
|
|
* gnu/packages/tls.scm (s2n): Update to 1.5.1.
[arguments]: Re-enable warnings as errors.
[supported-systems]: Restrict to 64-bit systems.
Change-Id: I09d690c96789961473c846eb8174ddc8a2b1ad4e
|
