687 Commits

Author SHA1 Message Date
Hilton Chain
06331aec11
gnu: Add mbedtls, version 3.5.2.
* gnu/packages/tls.scm (mbedtls): New variable.

Change-Id: I09c86ce04734bd5b44441d7749688a5c39389ece
2024-02-05 13:56:37 +08:00
Hilton Chain
2b296427d7
gnu: mbedtls-apache: Rename to mbedtls-lts.
* gnu/packages/tls.scm (mbedtls-apache): Rename package to "mbedtls".
Rename variable to…
(mbedtls-lts): …this.
(mbedtls-apache): Define as deprecated by mbedtls-lts.
(mbedtls-for-hiawatha): Adjust accordingly.
* doc/guix.texi: Likewise.
* gnu/packages/emulators.scm (dolphin-emu,retroarch)[inputs]: Likewise.
* gnu/packages/game-development.scm (godot-lts,godot)[inputs]: Likewise.
* gnu/packages/hardware.scm (hueplusplus,openrgb)[inputs]: Likewise.
* gnu/packages/haxe.scm (neko,haxe,hashlink)[inputs]: Likewise.
* gnu/packages/irc.scm (inspircd)[inputs]: Likewise.
* gnu/packages/julia-jll.scm (julia-mbedtls-jll)[arguments]<#:phases>,[inputs]:
Likewise.
* gnu/packages/julia.scm (julia)[arguments]<#:phases>,[inputs]: Likewise.
* gnu/packages/linphone.scm (bctoolbox)[inputs]: Likewise.
* gnu/packages/linux.scm (dislocker)[inputs]: Likewise.
* gnu/packages/networking.scm (nng)[inputs]: Likewise.
* gnu/packages/search.scm (dataparksearch)[inputs]: Likewise.
* gnu/packages/video.scm (obs)[inputs]: Likewise.
* gnu/packages/web.scm (hiawatha)[arguments]<#:phases>: Likewise.

Change-Id: I0c58b3cd0bcf6e44e7b16a69f6d2739aa3c1545b
2024-02-05 13:56:31 +08:00
Hilton Chain
0f86c1c6f8
gnu: mbedtls-apache: Use gexps.
* gnu/packages/tls.scm (mbedtls-apache)[arguments]: Use gexps.

Change-Id: Idefca03b8eea0d3f18497afccc4a3a081caac87e
2024-02-05 13:56:26 +08:00
Hilton Chain
585d71ce96
gnu: mbedtls-apache: Update to 2.28.7.
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.28.7.
[license]: Add gpl2+.

Change-Id: I946aa1436214a11ab3faa08b3ddf9c937a0462a9
2024-02-05 13:56:20 +08:00
Hilton Chain
a13a0e00ea
gnu: mbedtls-for-hiawatha: Update package style.
* gnu/packages/tls.scm (mbedtls-for-hiawatha)[arguments]: Use gexps.
Remove trailing #t.

Change-Id: I0af54b6fb7319bc811ce38c001b47686fb45b1bd
2024-02-05 13:56:14 +08:00
Hilton Chain
8dfaf461b4
gnu: mbedtls-for-hiawatha: Use inherited source.
* gnu/packages/tls.scm (mbedtls-for-hiawatha): Use inherited source.
[arguments]<#:phases>: Keep "-Wformat-signedness".

Change-Id: I562ae6533b518a853b9b59f8fb69c0135364277f
2024-02-05 13:56:08 +08:00
Jack Hill
856b4a603a
gnu: gnutls: Update to 3.8.3 [security-fixes].
Fixes CVE-2024-0553 and CVE-2024-0567.

gnu/packages/tls.scm (gnutls-3.8.2): Rename to ...
(gnutls/fixed): ... this.  Update to 3.8.3.
(gnutls): Rename replacement to gnutls/fixed.

Change-Id: Ic44b3b0481ffd51cdc42a2d71a598f001b43c6f7
Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
Co-authored-by: John Kehayias <john.kehayias@protonmail.com>
2024-01-20 16:52:05 -05:00
David Thompson
8cc0687778
gnu: Update guile-gnutls to 3.7.14.
* gnu/packages/tls.scm (guile-gnutls): Update to 3.7.14.

Change-Id: I851cb3554f1dcf5c286c345634ea71c5a7bbd973
2024-01-11 11:22:36 -05:00
Maxim Cournoyer
deeb7d1f53
gnutls: Update to 3.8.2 (fixes CVE-2023-5981).
* gnu/packages/tls.scm (gnutls): Graft with gnutls-3.8.2.
(gnutls-3.8.1): Replace with...
(gnutls-3.8.2): ... this.  Remove obsolete set-path-max phase, and make the
variable private.

Change-Id: Ib5cd276c9ecc87d1adc2f4f9633d49676cfe856d
2024-01-05 13:48:37 -05:00
Efraim Flashner
568c12d726
gnu: openssl: Fix building on x86_64-linux-gnux32.
* gnu/packages/tls.scm (target->openssl-target): Add entry for
x86_64-linux-gnux32.

Change-Id: Icbbdb76134da0811b8493c55ca2d3acdb77c5883
Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
2024-01-04 21:48:17 +02:00
Efraim Flashner
c7215819e1
Revert "gnu: openssl: Don't error when targeting avr."
This reverts commit baeff7f546d700ae4f0c873bd0fce0ca84bebd21.
2023-12-12 13:58:16 +02:00
Efraim Flashner
baeff7f546
gnu: openssl: Don't error when targeting avr.
* gnu/packages/tls.scm (target->openssl-target): Add case for avr.

Change-Id: I1cfc8b50fa4b2b864f8f8aa8898cc405ffc02580
2023-12-12 09:32:10 +02:00
John Kehayias
e452227a51
gnu: mbedtls-apache: Update to 2.28.5.
This fixes mbedtls-apache failing some tests for unknown reasons after recent
updates and ungrafting to other packages.  This should soon be renamed to
mbedtls-apache-lts and a newer version added; see
<https://issues.guix.gnu.org/66718>.

* gnu/packages/tls.scm (mbedtls-apache): Update to 2.28.5.

Change-Id: Ie513c11cb60262be9865ebbd1f6238d39f299c42
2023-11-07 15:12:06 -05:00
Ludovic Courtès
a1ac534f8a
gnu: gnutls@3.8: Do not rely expect ‘PATH_MAX’ definition on GNU/Hurd.
Fixes <https://issues.guix.gnu.org/66691>.

* gnu/packages/tls.scm (gnutls-3.8.1)[arguments]: New field.

Change-Id: If208591d78d5d023220bd3a7e3841af172c605ff
2023-10-24 00:02:14 +02:00
Christopher Baines
5015491378
gnu: gnutls: Replace with 3.8.1.
The recommended way to address GNUTLS-SA-2020-07-14 / CVE-2023-0361 is to
upgrade to 3.8.0 or later.

* gnu/packages/tls.scm (gnutls-3.8.1): New variable.
(gnutls)[replacement]: Use it.

Signed-off-by: Christopher Baines <mail@cbaines.net>
2023-10-20 11:38:00 +01:00
Ludovic Courtès
51e1df07b1
gnu: openssl@1.1: Upgrade replacement to 1.1.1u.
Includes fixes for CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465,
CVE-2023-0466, CVE-2023-2650, CVE-2022-4304, CVE-2022-4450.

* gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1u.

Co-authored-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
2023-09-28 11:44:08 +02:00
Ludovic Courtès
e67cb380f7
gnu: openssl@1.1: Really replace with fixed version.
The ‘replacement’ field of ‘openssl-1.1’ was apparently lost in a
previous merge commit ca. Jan. 2023; consequently, ‘openssl/fixed’ was
unused.

* gnu/packages/tls.scm (openssl-1.1)[replacement]: New field.
2023-09-28 11:44:08 +02:00
Tobias Geerinckx-Rice
310b0f72d8
gnu: libressl: Update to 3.7.3 [fixes CVE-2023-35784].
Thanks to Dennis 'GNUtoo' Carikli for <https://issues.guix.gnu.org/64982>,
but upgrading to 3.8.0 breaks (at least) OpenSMTPd.

* gnu/packages/tls.scm (libressl): Update to 3.7.3.
2023-08-13 02:00:00 +02:00
Janneke Nieuwenhuizen
fb6f94864d
gnu: openssl-1.1: Fix shared build for the Hurd.
* gnu/packages/tls.scm (openssl-1.1)[arguments]: When building for the Hurd,
add phase 'patch-configure'.
(openssl)[arguments]: And delete it again.
2023-07-20 10:11:35 +02:00
Janneke Nieuwenhuizen
378766dd2e
gnu: openssl: Build fix for the Hurd.
* gnu/packages/tls.scm (openssl-3.0)[arguments]: When building on the Hurd,
add "hurd-x86" to #:configure-flags.
2023-07-20 10:11:33 +02:00
Greg Hogan
7e60061da3
gnu: aws-lc: Fix tests.
* gnu/packages/tls.scm (aws-lc)[native-inputs]: Add libfaketime.
[arguments]<#:phases>: Replace and wrap 'check with faketime due to
certificate expiration.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2023-06-25 23:46:04 +02:00
Janneke Nieuwenhuizen
ff690faf66
gnu: Use target-hurd?, system-hurd? instead of hurd-target?, hurd-system?.
* gnu/packages/hurd.scm (hurd-target?): Remove.
(hurd-system?): Move to...
* guix/utils.scm (system-hurd?): ...here.
* gnu/packages/*: Update all users, removing (gnu packages hurd) include where
now unused.
2023-06-17 14:38:32 +02:00
Ludovic Courtès
468b5d9548
gnu: guile-gnutls: Fix cross-compilation.
The patch was inadvertently removed in
5e1e67442188ccca8db8c1dd092efbc6fc2c33dc.

* gnu/packages/tls.scm (guile-gnutls)[source]: Re-add 'gnutls-cross.patch'.
2023-05-11 13:21:45 +02:00
Christopher Baines
5e1e674421
gnu: guile-gnutls: Update to 3.7.12.
* gnu/packages/tls.scm (guile-gnutls): Update to 3.7.12.
[source]: Switch to a tarball, to avoid a circular dependency if guile-gnutls
is used in git-download.
[arguments]: Remove phase changes for building from Git.
[native-inputs]: Remove autoconf and automake as they're now unnecessary.

Signed-off-by: Christopher Baines <mail@cbaines.net>
2023-05-10 10:41:03 +01:00
Efraim Flashner
e287a0e402
gnu: gnutls: Don't embed a phase inside another phase.
* gnu/packages/tls.scm (gnutls)[arguments]: Adjust powerpc-linux phase
'increase-test-timeout to not be embedded inside another phase.
2023-04-25 23:32:17 +03:00
Efraim Flashner
52f6ccef82
gnu: perl-crypt-openssl-rsa: Update to 0.33.
* gnu/packages/tls.scm (perl-crypt-openssl-rsa): Update to 0.33.
2023-04-25 20:42:22 +03:00
Efraim Flashner
f2107eb221
gnu: gnutls: Extend test timeout on powerpc-linux.
* gnu/packages/tls.scm (gnutls)[arguments]: When building for
powerpc-linux add a phase to extend the test timeout.
2023-04-19 20:24:29 -04:00
Efraim Flashner
39ec7b86c0
gnu: openssl: Update cross-configure target for riscv64-linux .
* gnu/packages/tls.scm (target->openssl-target): When building for
riscv64-linux use architecture specific configurations.
2023-04-18 11:53:16 +03:00
Andreas Enge
ccb62d8feb
Merge remote-tracking branch 'origin/master' into core-updates 2023-03-20 18:49:06 +01:00
Vivien Kraus
97a759769d
gnu: guile-gnutls: Do not expect gnulib shebangs to work.
* gnu/packages/tls.scm (guile-gnutls) [phase patch-more-shebangs]: Fix how
autogen.sh invokes gnulib-tool, and how configure.ac invokes git-version-gen,
so as not to rely on shebangs.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2023-03-17 23:20:35 +01:00
Christopher Baines
7df09ee0ab
Merge remote-tracking branch 'savannah/master' into core-updates
Conflicts:
	gnu/local.mk
	gnu/packages/autotools.scm
	gnu/packages/cmake.scm
	gnu/packages/gnuzilla.scm
	gnu/packages/haskell.scm
	gnu/packages/pdf.scm
	gnu/packages/python-xyz.scm
	gnu/packages/samba.scm
	gnu/packages/tex.scm
	gnu/packages/tls.scm
	gnu/packages/wxwidgets.scm
2023-03-02 10:55:08 +00:00
Maxim Cournoyer
41da613ba3
gnu: openssl-1.1: Specify TESTS Make variable via #:make-flags.
* gnu/packages/tls.scm (openssl-1.1) [make-flags]: New field.
[phases] {check}: Remove phase override.
2023-02-26 23:41:37 -05:00
Maxim Cournoyer
732105ef7e
gnu: openssl-1.1: Clean-up definition.
* gnu/packages/tls.scm (openssl-1.1): Do not quasiquote arguments.  Remove
extraneous let-bound variables and use more gexp variables.
2023-02-26 23:38:27 -05:00
Ludovic Courtès
6c96b30b2e
gnu: gnutls: Deprecate 'gnutls-latest'.
* gnu/packages/tls.scm (gnutls-latest): Define as a deprecated alias for
'gnutls'.
(guile-gnutls)[inputs, native-inputs]: Replace 'gnutls-latest' with 'gnutls'.
2023-02-26 22:42:49 +01:00
Ludovic Courtès
305794762c
gnu: gnutls: Remove Guile dependency.
* gnu/packages/tls.scm (gnutls)[arguments]: Remove --with-guile-*
configure flags.
[native-inputs]: Remove GUILE-3.0.
[inputs]: Likewise, and add LIBUNISTRING.
(gnutls-latest)[inputs, native-inputs]: Remove.
(guile2.2-gnutls): Rewrite as a variant of GUILE-GNUTLS.
2023-02-26 22:42:49 +01:00
Jack Hill
ffb756e8c0
gnu: python-acme, certbot: Update to 2.3.0.
* gnu/packages/tls.scm (python-acme): Update to 2.3.0.
(certbot)[source]: Update hash.
[propagated-inputs]: Remove python-zope-interface and
python-zope-component.

Signed-off-by: Leo Famulari <leo@famulari.name>
2023-03-02 13:49:46 -05:00
Vivien Kraus
95f481b331
gnu: p11-kit-next: Switch to meson-build-system.
README.md says to use meson to build.

* gnu/packages/tls.scm (p11-kit-next)[build-system]: Use meson-build-system.
[arguments]: Adjust accordingly.

Signed-off-by: Christopher Baines <mail@cbaines.net>
2023-02-17 15:44:58 +00:00
Leo Famulari
f844deb7ac
gnu: OpenSSL 3: Update to 3.0.8 [security fixes].
Fixes CVE-2023-0215, CVE-2023-0216, CVE-2023-0217, CVE-2023-0286, CVE-2023-0401,
CVE-2022-4203, CVE-2022-4304, and CVE-2022-4450.

https://www.openssl.org/news/secadv/20230207.txt

gnu/packages/tls.scm (openssl-3.0): Update to 3.0.8.
2023-02-11 23:17:31 +01:00
Leo Famulari
df163df830
gnu: OpenSSL: Update to 1.1.1t [security fixes].
Fixes CVE-2023-0215, CVE-2023-0286, CVE-2022-4304, CVE-2022-4450.

https://www.openssl.org/news/secadv/20230207.txt

* gnu/packages/tls.scm (openssl/fixed): Update to 1.1.1t.
2023-02-11 23:12:51 +01:00
Efraim Flashner
4cf1acc7f3
Merge remote-tracking branch 'origin/master' into core-updates
Conflicts:
	doc/guix.texi
	gnu/local.mk
	gnu/packages/admin.scm
	gnu/packages/base.scm
	gnu/packages/chromium.scm
	gnu/packages/compression.scm
	gnu/packages/databases.scm
	gnu/packages/diffoscope.scm
	gnu/packages/freedesktop.scm
	gnu/packages/gnome.scm
	gnu/packages/gnupg.scm
	gnu/packages/guile.scm
	gnu/packages/inkscape.scm
	gnu/packages/llvm.scm
	gnu/packages/openldap.scm
	gnu/packages/pciutils.scm
	gnu/packages/ruby.scm
	gnu/packages/samba.scm
	gnu/packages/sqlite.scm
	gnu/packages/statistics.scm
	gnu/packages/syndication.scm
	gnu/packages/tex.scm
	gnu/packages/tls.scm
	gnu/packages/version-control.scm
	gnu/packages/xml.scm
	guix/build-system/copy.scm
	guix/scripts/home.scm
2023-01-30 12:39:40 +02:00
Tobias Geerinckx-Rice
7794eeac76
gnu: guile-gnutls: Use gnutls-latest consistently.
* gnu/packages/tls.scm (guile-gnutls)[native-inputs]: Substitute
gnutls-latest for gnutls.

Reported by jackhill in #guix.
2023-01-22 01:00:00 +01:00
Vivien Kraus
96cb7b06bd
gnu: guile-gnutls: Update to 3.7.11.
* gnu/packages/tls.scm (guile-gnutls) [phases]: Patch-shebang autopull.sh and
autogen.sh.
[native-inupts]: Add gnulib and git.

Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
2023-01-15 07:50:16 +01:00
Ludovic Courtès
a2f0297af0
gnu: guile-gnutls: Add properties for the 'generic-git' updater.
* gnu/packages/tls.scm (guile-gnutls)[properties]: New field.
2022-12-13 17:46:39 +01:00
Efraim Flashner
02d5912062
gnu: julia: Update to 1.8.3.
* gnu/packages/julia.scm (julia): Update to 1.8.3.
[source]: Remove one patch.
[arguments]: Adjust 'prepare-deps phase to changes in inputs. Remove
custom 'use-system-libwhich, 'change-number-of-precompiled-statements,
'symlink-libraries phases. In 'fix-include-and-link-paths phase remove
substitution for utf8proc linking and adjust libuv linking. Fix
reference to shell in 'replace-default-shell phase. Adjust the
'shared-objects-path phase to changes in the source. Change the
'enable-parallel-tests phase for upstream changes. Adjust the
'adjust-test-suite phase to be more robust. Change the
'disable-broken-tests phase to help the test suite pass. Rename
'symlink-llvm-utf8proc phase to 'symlink-missing-libraries and add two
more. Adjust make-flags for changes in shared system libraries. Reorder
make-flags to changes in the source. Except for aarch64, use the
defaults for choosing to use 64-bit blas.
[inputs]: Add libblastrampoline. Replace libgit-1.1 with libgit-1.3,
utf8proc-2.7.1 with utf8proc-2.8.0.
[native-inputs]: Replace python-2 with python.
(libunwind-julia): Update to 1.5.0.
[source]: Update patches.
* gnu/packages/libevent.scm (libuv-julia): Update to 2.0.0-4.e6f0e49.
[arguments]: Also build static library, build position-independent-code.
* gnu/packages/llvm.scm (llvm-julia): Update to llvm-13, following
upstream's build instructions.
* gnu/packages/maths.scm (openlibm): Update to 0.8.1.
* gnu/packages/textutils.scm (utf8proc-2.7.1): Update and rename to
utf8proc-2.8.0.
[native-inputs]: Update unicode to 14.0.0.
* gnu/packages/tls.scm (mbedtls-apache): Update to 2.28.0.
[source]: Remove snippet.
[arguments]: Remove trailing #t from phases.
* gnu/packages/patches/julia-allow-parallel-build.patch,
(julia-patch): Update version string to 1.8.2.
gnu/packages/patches/libunwind-julia-fix-GCC10-fno-common.patch: Remove
files.
* gnu/local.mk (dist_patch_DATA): Remove them.

Co-authored-by: Akira Kyle <akira@akirakyle.com>
2022-12-08 19:53:16 +02:00
Marius Bakke
628afdc392
gnu: Remove acme-client.
This package does not build and has been unmaintained since 2018:

  ba153daacb

* gnu/packages/tls.scm (acme-client): Remove variable.
2022-11-22 08:37:23 +01:00
Efraim Flashner
70f43c0c2e
gnu: libressl: Update to 3.6.1.
* gnu/packages/tls.scm (libressl): Update to 3.6.1.
2022-11-09 16:29:15 +02:00
Tobias Geerinckx-Rice
24f0c34ccb
gnu: openssl: Update to 1.1.1s.
* gnu/packages/tls.scm (openssl): Update to 1.1.1s.
2022-10-30 02:00:00 +01:00
Tobias Geerinckx-Rice
e0b9cd7cc1
gnu: openssl: Update to 3.0.7 [fixes CVE-2022-3786, CVE-2022-3602].
* gnu/packages/tls.scm (openssl): Update to 3.0.7.
2022-10-30 02:00:00 +01:00
Tobias Geerinckx-Rice
08d60c8691
gnu: dehydrated: Don't rely on implicit input labels.
* gnu/packages/tls.scm (dehydrated)[arguments]:
Use SEARCH-INPUT-FILE instead of ASSOC-REF.
2022-10-30 02:00:01 +01:00
Tobias Geerinckx-Rice
c744992715
gnu: dehydrated: Update to 0.7.1.
It's a Halloween miracle.

* gnu/packages/tls.scm (dehydrated): Update to 0.7.1.
[inputs]: Add util-linux+udev.
2022-10-30 02:00:01 +01:00