Commit Graph

196 Commits

Author SHA1 Message Date
Franz Pletz
0e963d2563
gnutls33: 3.3.25 -> 3.3.26
Fixes the following security issues:

  * CVE-2017-5334
  * CVE-2017-5335
  * CVE-2017-5336
  * CVE-2017-5337

See https://www.gnutls.org/news.html#2017-01-09 for more information.
2017-01-11 06:47:35 +01:00
Franz Pletz
cc40fadf62
gnutls: 3.4.16 -> 3.4.17 2017-01-11 06:44:00 +01:00
Tim Steinbach
4db8ca39cf gnutls: 3.5.4 -> 3.5.5 2016-10-25 22:52:07 +02:00
Tim Steinbach
cfbcc0805e gnutls: 3.4.15 -> 3.4.16 2016-10-25 22:51:55 +02:00
Tim Steinbach
e99a81060f gnutls: 3.3.24 -> 3.3.25 2016-10-25 22:34:06 +02:00
Will Dietz
f2fdd1a813 gnutls: Build in parallel, cited problems were fixed upstream.
The systemkey problem was fixed in 3.4.15 [1].

The guileBindings issue was fixed 3 years ago, and is included
in all versions of gnutls we use today [2].

[1] 25d2f643c0
[2] 0d34b03f0e
2016-10-24 13:49:11 -05:00
Franz Pletz
e3107dc45d
gnutls: 3.5.3 -> 3.5.4 2016-09-19 00:58:53 +02:00
Franz Pletz
501f9096f6
gnutls: 3.4.14 -> 3.4.15 2016-09-19 00:58:53 +02:00
Eelco Dolstra
8172cd734c docdev -> devdoc
It's "developer documentation", not "documentation developer" after
all.
2016-09-01 11:07:23 +02:00
Tuomas Tynkkynen
a17216af4c treewide: Shuffle outputs
Make either 'bin' or 'out' the first output.
2016-08-29 14:49:51 +03:00
Vladimír Čunát
6d75fd1476 gnutls*: drop the parallel-build hack
... as it didn't work, apparently: 024cb9ee
2016-08-19 16:37:11 +02:00
Vladimír Čunát
c69e2d5763 gnutls35: maintenance 3.5.1 -> 3.5.3 2016-08-19 16:36:52 +02:00
Vladimír Čunát
1441366fdd gnutls33: maintenance 3.3.18 -> 3.3.24 2016-08-19 16:36:10 +02:00
Vladimír Čunát
cd07a6b4dd gnutls: security 3.4.13 -> 3.4.14
http://gnutls.org/security.html#GNUTLS-SA-2016-2
(no CVE seems assigned ATM)
2016-08-19 16:08:52 +02:00
Vladimír Čunát
46134cbca5 gnutls-3.3: make it build again
At least without tests. We only have two packages using it ATM.
2016-07-30 12:30:23 +02:00
Eelco Dolstra
024cb9eecd gnutls: Disable parallel building
This can fail randomly with

    CC       systemkey.o
  In file included from systemkey.c:47:0:
  systemkey-args.h:1:1: error: unterminated comment
   /*   -*- buffer-read-only: t -*- vi: set ro:

which is presumably caused by a race with the generation step above:

  autogen systemkey-args.def

http://hydra.nixos.org/build/37878764#tabs-buildsteps
2016-07-20 11:55:46 +02:00
Vladimír Čunát
19a4935c55 gnutls: fix up yet again
Noticed on: https://github.com/NixOS/nixpkgs/commit/7d94f57309a4#commitcomment-18221038
Hopefully OK finally, evaluation tested on x86_64-{linux,darwin}.
Apparently I'm trying to contribute in situations I'd better be relaxing
already.
2016-07-13 22:39:30 +02:00
Vladimír Čunát
7d94f57309 gnutls: fixup evaluation after 5148c6c5c0
Noticed on: https://github.com/NixOS/nixpkgs/commit/5148c6c5c0#commitcomment-18184261
2016-07-09 15:15:42 +02:00
Vladimír Čunát
5148c6c5c0 gnutls: fix on Darwin
nettools is only used during checkPhase, and we don't do that on Darwin
anyway. Close #16783; we don't change hashes on Linux contrary to the PR.
2016-07-09 11:34:02 +02:00
Vladimír Čunát
17faf910b7 gnutls: fixup various problems
- disable a test that started failing due to date expiration, see #16610
- bash doesn't need adding
- defining patchPhase was overriding passed postPatch and patches
2016-06-30 11:06:34 +02:00
Michiel Leenaars
2cf31a1840 gnutls35: init at 3.5.1 2016-06-21 09:28:51 +02:00
Michiel Leenaars
325dafe82b gnutls: 3.4.11 -> 3.4.13 2016-06-21 09:28:51 +02:00
Michiel Leenaars
4ea23ca277 gnutls: 3.4.6 -> 3.4.11 2016-04-20 22:44:39 +02:00
Vladimír Čunát
09af15654f Merge master into closure-size
The kde-5 stuff still didn't merge well.
I hand-fixed what I saw, but there may be more problems.
2016-03-08 09:58:19 +01:00
Guillaume Maudoux
9f358f809d Configure a default trust store for openssl 2016-02-03 12:42:01 +01:00
Vladimír Čunát
716aac2519 Merge branch 'staging' into closure-size 2016-01-19 09:55:31 +01:00
janus
a472d836f6 FreeBSD: apr-util, cyrus-sasl, berkeley db, glib, gnutls, kerberos, libelf-freebsd, openldap, serf, guile, tet, shishi, gawk, gnugrep 2016-01-01 17:01:13 +00:00
Vladimír Čunát
333d69a5f0 Merge staging into closure-size
The most complex problems were from dealing with switches reverted in
the meantime (gcc5, gmp6, ncurses6).
It's likely that darwin is (still) broken nontrivially.
2015-11-20 14:32:58 +01:00
Stéphane Jourdois
d2452d1951 darwin: gnutls: add missing libiconv dep 2015-11-08 19:02:43 +01:00
Tuomas Tynkkynen
fb4c2eb438 gnutls: More hacks to .la files
Some .la files contain '-lgmp' without a corresponding -L entry,
breaking e.g. glib-networking and NetworkManager.
2015-10-28 10:17:10 +01:00
Vladimír Čunát
148e03b2f1 gmp: split into multiple outputs 2015-10-28 10:15:49 +01:00
William A. Kennington III
71effd873a gnutls: 3.4.5 -> 3.4.6 2015-10-21 21:48:57 -07:00
Vladimír Čunát
328eafa885 gnutls: split into multiple outputs
Fixed all 'gnutls}' references, too.
2015-10-05 11:07:54 +02:00
Vladimír Čunát
5227fb1dd5 Merge commit staging+systemd into closure-size
Many non-conflict problems weren't (fully) resolved in this commit yet.
2015-10-03 13:33:37 +02:00
William A. Kennington III
0310a61e66 gnutls: 3.4.4 -> 3.4.5 2015-09-13 19:51:52 -07:00
William A. Kennington III
0ba0368a89 gnutls33: 3.3.17 -> 3.3.18 2015-09-13 19:51:52 -07:00
William A. Kennington III
91da606101 gnutls: Fix parallel build issue introduced in 3.4.x 2015-09-10 13:42:44 -07:00
William A. Kennington III
952def0e3c Merge branch 'master.upstream' into staging.upstream 2015-08-13 11:55:02 -07:00
William A. Kennington III
31a128b32b gnutls: Security Fixes
3.3.16 -> 3.3.17
3.4.3 -> 3.4.4
2015-08-12 17:02:14 -07:00
William A. Kennington III
bd5f2c9638 Merge branch 'master.upstream' into staging.upstream 2015-07-27 08:17:19 -07:00
Eelco Dolstra
e1f78bf677 More docs/manpages in separate outputs 2015-07-27 00:27:54 +02:00
Eelco Dolstra
ecae014ddb gnutls: Don't depend on trousers by default
Let's keep the base system free of "trusted" computing crap...
2015-07-26 22:46:23 +02:00
Vladimír Čunát
9f37e91ec5 Merge master into staging
There are larger-rebuild changes: gnutls and samba.
2015-07-17 06:38:04 +02:00
William A. Kennington III
08ef62c100 gnutls: 3.4.2 -> 3.4.3 2015-07-15 12:48:02 -07:00
William A. Kennington III
b48e49ddc3 gnutls: 3.3.15 -> 3.3.16 2015-07-15 12:42:40 -07:00
Vladimír Čunát
61596bf405 Merge #8363: pure-darwin stdenv 2015-06-18 22:38:08 +02:00
William A. Kennington III
2ae75f3a85 gnutls: 3.4.1 -> 3.4.2 2015-06-17 18:33:10 -07:00
Vladimír Čunát
2b99951f99 gnutls: don't set cert location except on Linux
Also refactor lib.optional*. Preserves .drv hashes on Linux.
2015-06-11 09:02:56 +02:00
Vladimír Čunát
651e83ac10 gnutls: set certificate location (close #8121)
This is a fast fix; it might be best to use $SSL_CERT_FILE.
Tested on vlc with youtube https URLs.
Discussed also on #8118. Feel free to discuss further improvements on #8247.
2015-06-09 16:43:58 +02:00
Eric Seidel
be03eefc9c gnutls: only demand trousers on linux 2015-05-14 21:53:56 -07:00
William A. Kennington III
861e5e7573 gnutls: Remove potentially insecure 3.2 2015-05-10 13:45:59 +02:00
William A. Kennington III
916b95b829 gnutls: 3.4.0 -> 3.4.1 2015-05-08 06:05:43 -07:00
William A. Kennington III
c9395e1e92 Merge branch 'master' into staging 2015-05-08 05:59:50 -07:00
William A. Kennington III
3a07187003 gnutls: 3.3.14 -> 3.3.15 2015-05-08 05:54:12 -07:00
Vladimír Čunát
f0746b846c gnutls: fixup 6b6183125 with multiple-output changes 2015-05-05 11:56:29 +02:00
Luca Bruno
6b6183125e gnutls, trousers: fix .la and .pc files, remove propagated build inputs
cc @vcunat @wkennington
2015-04-25 11:43:08 +02:00
William A. Kennington III
cebe937b1e gnutls: Fix propagated inputs 2015-04-22 14:23:08 -07:00
William A. Kennington III
775c412e57 gnutls: Add 3.4 2015-04-20 21:34:48 -07:00
William A. Kennington III
dc5872e79f gnutls: Add version 3.3.14 2015-04-03 19:17:28 -07:00
William A. Kennington III
23ed4c2157 gnutls: Make generic and upgrade to 3.2.21 2015-04-03 19:16:33 -07:00
Vladimír Čunát
074af2ac1c gnutls-3.1: remove unused version
The upstream doesn't maintain these well, as they even fail to build now.
2014-11-17 11:28:31 +01:00
Vladimír Čunát
581721887d gnutls-3.2: maintenance+security update
CVE-2014-8564 seems only DOS, so relatively non-critical.
2014-11-17 11:23:21 +01:00
Rüdiger Sonderfeld
b8a546a13a gnutls: Update to 3.1.26 and 3.2.17. 2014-08-29 11:32:16 +02:00
Mateusz Kowalczyk
7a45996233 Turn some license strings into lib.licenses values 2014-07-28 11:31:14 +02:00
Vladimír Čunát
191dbc234f gnutls: security + maintenance update for both branches
Fixes #2813 CVE-2014-3466. No API/ABI changes in the updates.

Tests start to fail for gnutls31, so they get disabled,
but the 3.1 branch is already unused on master.
2014-06-03 10:39:48 +02:00
Vladimír Čunát
44e604a421 gnutls: minor update to fix API+ABI breakage
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7343
http://osdir.com/ml/gnutls-devel-gnu/2014-03/msg00007.html

Guile tests work fine again, but I guess we still don't need
guile bindings by default.
2014-03-21 07:02:56 +01:00
Domen Kožar
eb6a290f5e bittorrentSync: 1.2.82 -> 1.2.91 2014-03-07 15:12:45 +01:00
Vladimír Čunát
c2cd9852ac gnutls on darwin: drop patch that is integrated now 2014-03-05 21:33:56 +01:00
Eelco Dolstra
c824acb84c Rename misleadingly named gnutls/default.nix (it's not the default) 2014-03-04 22:33:20 +01:00
Eelco Dolstra
738a5321bc gnutls: Update to 3.2.12, 3.1.22
CVE-2014-0092

Unfortunately, 3.2.12 doesn't pass the tests with Guile bindings
enabled, so I've turned them off in the default build.
2014-03-04 22:31:02 +01:00
Vladimír Čunát
048a85f952 gnutls: add platforms for the default version 2014-02-19 20:42:51 +01:00
Badi' Abdul-Wahid
68f9e60435 gnutls: fix linking on Darwin (close #1779) 2014-02-19 20:40:04 +01:00
Vladimír Čunát
6fa5612a46 gnutls2: fix build in chroot (/usr/bin/perl doc script)
I've got no idea how this could get triggered on Hydra, 97e7ce2 ?
2014-02-07 09:50:27 +01:00
Vladimír Čunát
1c3950dc9d gnutls31: update 3.1.12 -> .20, including CVE fixes
Also make gnutls32 the default gnutls.
CVE-2013-{4466,4487}
2014-02-06 20:49:23 +01:00
Vladimír Čunát
cb605c92d2 gnutls32: update 3.2.4 -> .10, including CVE fixes
Also make gnutls32 the default gnutls.
CVE-2013-{4466,4487}
2014-02-06 20:45:14 +01:00
Vladimír Čunát
97e7ce2344 gnutls2: fix CVE-2013-2116 by Debian patch 2014-02-06 20:34:55 +01:00
Moritz Ulrich
3ee5c50cda Add gnutls 3.2.4 (as pkgs.gnutls32) & make weechat use it.
Signed-off-by: Moritz Ulrich <moritz@tarn-vedra.de>
2013-10-07 13:44:19 +02:00
Ludovic Courtès
2e937c437a unmaintain several packages 2013-08-16 23:45:01 +02:00
Domen Kozar
d4a2a56f3e gnutls: use lzma version of tarball 2013-06-07 13:39:49 +02:00
Lluís Batlle i Rossell
3e070f105d gnutls: updating the url.
It was outdated (from times when gnutls was at gnupg repository)
2013-06-03 16:19:26 +02:00
Lluís Batlle i Rossell
8e023d1751 gnutls: downgrading to the latest in 3.1 series
A test was failing on i686 (not on x86_64):
http://hydra.nixos.org/build/5222124/nixlog/1/tail-reload
2013-06-03 14:54:13 +02:00
Lluís Batlle i Rossell
5324db88ec gnutls: update to 3.2.1
Required also: nettle: update to 2.7.1

I tested that wget works.
2013-06-03 12:19:02 +02:00
Lluís Batlle i Rossell
6c961181c2 Revert "gnutls: update to 3.2.0"
Hydra found that the i686 tests fail. I'll work on this later.
  http://hydra.nixos.org/build/4980459

This reverts commit c1708440bd.
2013-05-17 23:40:37 +02:00
Lluís Batlle i Rossell
c1708440bd gnutls: update to 3.2.0
It required a nettle update to 2.7 too.
2013-05-17 22:57:19 +02:00
James Cook
0703250f64 Update gnutls to 3.1.10. 2013-04-21 20:47:43 -07:00
Vladimír Čunát
40b7ecf930 gnutls2: fix via a minor update 2013-02-23 13:25:48 +01:00
Eelco Dolstra
0a47a28f1d Merge remote-tracking branch 'origin/master' into stdenv-updates 2013-01-22 23:23:53 +01:00
Aristid Breitkreuz
352c0067e6 some tests for nettle and gnutls donot seem to work on OS X 2013-01-21 10:57:10 +01:00
Eelco Dolstra
ab3eeabfed Rename buildNativeInputs -> nativeBuildInputs
Likewise for propagatedBuildNativeInputs, etc.  "buildNativeInputs"
sounds like an imperative rather than a noun phrase.
2012-12-28 19:20:09 +01:00
Ludovic Courtès
366689a448 gnutls: disable parallel builds 2012-12-01 15:18:24 +01:00
Ludovic Courtès
6f21c88ffc gnutls: update to 3.1.3 2012-10-19 14:10:24 +02:00
Ludovic Courtès
953eadbfc3 gnutls: Pass CPPFLAGS to help find GMP on OpenIndiana.
Suggested by Mats Erik Andersson <gnu@gisladisker.se>.
2012-08-30 22:54:18 +02:00
Ludovic Courtès
96f76db396 gnutls: Pass `--with-libnettle-prefix' on OpenIndiana.
Suggested by Mats Erik Andersson <gnu@gisladisker.se>.
2012-08-30 18:07:11 +02:00
Ludovic Courtès
a167fadc07 gnutls: Disable tests on FreeBSD. 2012-08-23 00:37:29 +02:00
Ludovic Courtès
0dea12ff8d gnutls: FreeBSD: patch Makefile.in, not Makefile.am 2012-08-11 21:57:17 +02:00
Ludovic Courtès
aa5220c701 gnutls: fix FreeBSD builds 2012-08-10 23:28:23 +02:00
Ludovic Courtès
a9764e7599 gnutls: update to 3.0.22 2012-08-10 17:17:32 +02:00
Ludovic Courtès
72ed868803 GnuTLS: Allow builds on non-Linux-based OSes.
svn path=/nixpkgs/trunk/; revision=33876
2012-04-22 10:44:53 +00:00
Ludovic Courtès
7e5a8c93d6 GnuTLS 3.0.18.
svn path=/nixpkgs/trunk/; revision=33705
2012-04-09 20:51:36 +00:00
Yury G. Kudryashov
84c0185038 svn merge ^/nixpkgs/trunk, one simple conflict in jruby
svn path=/nixpkgs/branches/stdenv-updates/; revision=31721
2012-01-19 21:31:51 +00:00