Commit Graph

214 Commits

Author SHA1 Message Date
Daiderd Jordan
7960bbff14
gnutls: fix darwin build 2017-08-06 13:07:52 +02:00
Franz Pletz
3bb9954a6b
dns-root-data: init at 2017-06-16 2017-07-12 09:45:25 +02:00
Vladimír Čunát
febadbce3f
gnutls: bugfix 3.5.13 -> 3.5.14 2017-07-05 09:09:12 +02:00
Franz Pletz
cb59381eee
gnutls: remove dependency on unbound
Unbound is used for DANE support but this requires the unbound trust
anchor in /etc/unbound/root.key which we don't create in any NixOS
module.
2017-06-15 13:43:01 +02:00
Robin Gloster
4268eb5145
gnutls: remove unused parameter 2017-06-12 17:44:43 +02:00
Vladimír Čunát
9135c9f73a
gnutls: maintenance 3.5.12 -> 3.5.13
It contains a fix for DOS possibility in servers.
http://gnutls.org/security.html#GNUTLS-SA-2017-4
2017-06-07 08:56:05 +02:00
mimadrid
c68a241208
gnutls: 3.5.11 -> 3.5.12 2017-05-15 19:32:35 +02:00
Vladimír Čunát
42fd72091e
gnutls: use 3.5.10 on Darwin for now
This contains a revert of d6454e6a1.
2017-04-13 09:39:02 +02:00
Vladimír Čunát
d6454e6a15
gnutls: try to fix build on Darwin, after update 2017-04-11 03:39:47 +02:00
Vladimír Čunát
6d1374238f
gnutls: bugfix 3.5.10 -> 3.5.11 2017-04-10 17:53:54 +02:00
Vladimír Čunát
b264486cf1
gnutls: bugfix+security 3.5.9 -> 3.5.10
http://gnutls.org/security.html#GNUTLS-SA-2017-3
2017-03-13 10:28:53 +01:00
Vladimír Čunát
d6cff5783e
gnutls: drop -lunistring on Darwin as well
I didn't intend this substitution to be conditional; I looked wrong.
2017-02-22 17:44:06 +01:00
Vladimír Čunát
b17eb34203
gnutls: don't propagate -lunistring
This fixes systemd build.  Also put it into the generic expression,
as there's only one version in nixpkgs ATM.
2017-02-20 23:21:28 +01:00
Vladimír Čunát
0ff2179e0f
gnutls: use 3.5 and remove 3.4
3.4 branch detects support for getrandom() call during configure-time,
which gets picked up since glibc-2.25, and consequently it will fail
with older kernels during rutime.
2017-02-20 21:07:35 +01:00
Franz Pletz
1e65d0b9e9
gnutls: 3.5.8 -> 3.5.9
Bugfix release.
2017-02-15 09:35:28 +01:00
Lengyel Balázs
372cb3760e
Merge #17694: curl: add gnutlsSupport ? false
(incl. a nitpick change from vcunat)
2017-02-05 13:37:16 +01:00
Robin Gloster
aa686fe5c3
gnutls33: remove 2017-01-27 18:37:24 +01:00
Franz Pletz
85ac790666
gnutls35: 3.5.5 -> 3.5.8
Fixes the following security issues:

  * CVE-2017-5334
  * CVE-2017-5335
  * CVE-2017-5336
  * CVE-2017-5337

See https://www.gnutls.org/news.html#2017-01-09 for more information.
2017-01-11 06:47:36 +01:00
Franz Pletz
0e963d2563
gnutls33: 3.3.25 -> 3.3.26
Fixes the following security issues:

  * CVE-2017-5334
  * CVE-2017-5335
  * CVE-2017-5336
  * CVE-2017-5337

See https://www.gnutls.org/news.html#2017-01-09 for more information.
2017-01-11 06:47:35 +01:00
Franz Pletz
cc40fadf62
gnutls: 3.4.16 -> 3.4.17 2017-01-11 06:44:00 +01:00
Tim Steinbach
4db8ca39cf gnutls: 3.5.4 -> 3.5.5 2016-10-25 22:52:07 +02:00
Tim Steinbach
cfbcc0805e gnutls: 3.4.15 -> 3.4.16 2016-10-25 22:51:55 +02:00
Tim Steinbach
e99a81060f gnutls: 3.3.24 -> 3.3.25 2016-10-25 22:34:06 +02:00
Will Dietz
f2fdd1a813 gnutls: Build in parallel, cited problems were fixed upstream.
The systemkey problem was fixed in 3.4.15 [1].

The guileBindings issue was fixed 3 years ago, and is included
in all versions of gnutls we use today [2].

[1] 25d2f643c0
[2] 0d34b03f0e
2016-10-24 13:49:11 -05:00
Franz Pletz
e3107dc45d
gnutls: 3.5.3 -> 3.5.4 2016-09-19 00:58:53 +02:00
Franz Pletz
501f9096f6
gnutls: 3.4.14 -> 3.4.15 2016-09-19 00:58:53 +02:00
Eelco Dolstra
8172cd734c docdev -> devdoc
It's "developer documentation", not "documentation developer" after
all.
2016-09-01 11:07:23 +02:00
Tuomas Tynkkynen
a17216af4c treewide: Shuffle outputs
Make either 'bin' or 'out' the first output.
2016-08-29 14:49:51 +03:00
Vladimír Čunát
6d75fd1476 gnutls*: drop the parallel-build hack
... as it didn't work, apparently: 024cb9ee
2016-08-19 16:37:11 +02:00
Vladimír Čunát
c69e2d5763 gnutls35: maintenance 3.5.1 -> 3.5.3 2016-08-19 16:36:52 +02:00
Vladimír Čunát
1441366fdd gnutls33: maintenance 3.3.18 -> 3.3.24 2016-08-19 16:36:10 +02:00
Vladimír Čunát
cd07a6b4dd gnutls: security 3.4.13 -> 3.4.14
http://gnutls.org/security.html#GNUTLS-SA-2016-2
(no CVE seems assigned ATM)
2016-08-19 16:08:52 +02:00
Vladimír Čunát
46134cbca5 gnutls-3.3: make it build again
At least without tests. We only have two packages using it ATM.
2016-07-30 12:30:23 +02:00
Eelco Dolstra
024cb9eecd gnutls: Disable parallel building
This can fail randomly with

    CC       systemkey.o
  In file included from systemkey.c:47:0:
  systemkey-args.h:1:1: error: unterminated comment
   /*   -*- buffer-read-only: t -*- vi: set ro:

which is presumably caused by a race with the generation step above:

  autogen systemkey-args.def

http://hydra.nixos.org/build/37878764#tabs-buildsteps
2016-07-20 11:55:46 +02:00
Vladimír Čunát
19a4935c55 gnutls: fix up yet again
Noticed on: https://github.com/NixOS/nixpkgs/commit/7d94f57309a4#commitcomment-18221038
Hopefully OK finally, evaluation tested on x86_64-{linux,darwin}.
Apparently I'm trying to contribute in situations I'd better be relaxing
already.
2016-07-13 22:39:30 +02:00
Vladimír Čunát
7d94f57309 gnutls: fixup evaluation after 5148c6c5c0
Noticed on: https://github.com/NixOS/nixpkgs/commit/5148c6c5c0#commitcomment-18184261
2016-07-09 15:15:42 +02:00
Vladimír Čunát
5148c6c5c0 gnutls: fix on Darwin
nettools is only used during checkPhase, and we don't do that on Darwin
anyway. Close #16783; we don't change hashes on Linux contrary to the PR.
2016-07-09 11:34:02 +02:00
Vladimír Čunát
17faf910b7 gnutls: fixup various problems
- disable a test that started failing due to date expiration, see #16610
- bash doesn't need adding
- defining patchPhase was overriding passed postPatch and patches
2016-06-30 11:06:34 +02:00
Michiel Leenaars
2cf31a1840 gnutls35: init at 3.5.1 2016-06-21 09:28:51 +02:00
Michiel Leenaars
325dafe82b gnutls: 3.4.11 -> 3.4.13 2016-06-21 09:28:51 +02:00
Michiel Leenaars
4ea23ca277 gnutls: 3.4.6 -> 3.4.11 2016-04-20 22:44:39 +02:00
Vladimír Čunát
09af15654f Merge master into closure-size
The kde-5 stuff still didn't merge well.
I hand-fixed what I saw, but there may be more problems.
2016-03-08 09:58:19 +01:00
Guillaume Maudoux
9f358f809d Configure a default trust store for openssl 2016-02-03 12:42:01 +01:00
Vladimír Čunát
716aac2519 Merge branch 'staging' into closure-size 2016-01-19 09:55:31 +01:00
janus
a472d836f6 FreeBSD: apr-util, cyrus-sasl, berkeley db, glib, gnutls, kerberos, libelf-freebsd, openldap, serf, guile, tet, shishi, gawk, gnugrep 2016-01-01 17:01:13 +00:00
Vladimír Čunát
333d69a5f0 Merge staging into closure-size
The most complex problems were from dealing with switches reverted in
the meantime (gcc5, gmp6, ncurses6).
It's likely that darwin is (still) broken nontrivially.
2015-11-20 14:32:58 +01:00
Stéphane Jourdois
d2452d1951 darwin: gnutls: add missing libiconv dep 2015-11-08 19:02:43 +01:00
Tuomas Tynkkynen
fb4c2eb438 gnutls: More hacks to .la files
Some .la files contain '-lgmp' without a corresponding -L entry,
breaking e.g. glib-networking and NetworkManager.
2015-10-28 10:17:10 +01:00
Vladimír Čunát
148e03b2f1 gmp: split into multiple outputs 2015-10-28 10:15:49 +01:00
William A. Kennington III
71effd873a gnutls: 3.4.5 -> 3.4.6 2015-10-21 21:48:57 -07:00
Vladimír Čunát
328eafa885 gnutls: split into multiple outputs
Fixed all 'gnutls}' references, too.
2015-10-05 11:07:54 +02:00
Vladimír Čunát
5227fb1dd5 Merge commit staging+systemd into closure-size
Many non-conflict problems weren't (fully) resolved in this commit yet.
2015-10-03 13:33:37 +02:00
William A. Kennington III
0310a61e66 gnutls: 3.4.4 -> 3.4.5 2015-09-13 19:51:52 -07:00
William A. Kennington III
0ba0368a89 gnutls33: 3.3.17 -> 3.3.18 2015-09-13 19:51:52 -07:00
William A. Kennington III
91da606101 gnutls: Fix parallel build issue introduced in 3.4.x 2015-09-10 13:42:44 -07:00
William A. Kennington III
952def0e3c Merge branch 'master.upstream' into staging.upstream 2015-08-13 11:55:02 -07:00
William A. Kennington III
31a128b32b gnutls: Security Fixes
3.3.16 -> 3.3.17
3.4.3 -> 3.4.4
2015-08-12 17:02:14 -07:00
William A. Kennington III
bd5f2c9638 Merge branch 'master.upstream' into staging.upstream 2015-07-27 08:17:19 -07:00
Eelco Dolstra
e1f78bf677 More docs/manpages in separate outputs 2015-07-27 00:27:54 +02:00
Eelco Dolstra
ecae014ddb gnutls: Don't depend on trousers by default
Let's keep the base system free of "trusted" computing crap...
2015-07-26 22:46:23 +02:00
Vladimír Čunát
9f37e91ec5 Merge master into staging
There are larger-rebuild changes: gnutls and samba.
2015-07-17 06:38:04 +02:00
William A. Kennington III
08ef62c100 gnutls: 3.4.2 -> 3.4.3 2015-07-15 12:48:02 -07:00
William A. Kennington III
b48e49ddc3 gnutls: 3.3.15 -> 3.3.16 2015-07-15 12:42:40 -07:00
Vladimír Čunát
61596bf405 Merge #8363: pure-darwin stdenv 2015-06-18 22:38:08 +02:00
William A. Kennington III
2ae75f3a85 gnutls: 3.4.1 -> 3.4.2 2015-06-17 18:33:10 -07:00
Vladimír Čunát
2b99951f99 gnutls: don't set cert location except on Linux
Also refactor lib.optional*. Preserves .drv hashes on Linux.
2015-06-11 09:02:56 +02:00
Vladimír Čunát
651e83ac10 gnutls: set certificate location (close #8121)
This is a fast fix; it might be best to use $SSL_CERT_FILE.
Tested on vlc with youtube https URLs.
Discussed also on #8118. Feel free to discuss further improvements on #8247.
2015-06-09 16:43:58 +02:00
Eric Seidel
be03eefc9c gnutls: only demand trousers on linux 2015-05-14 21:53:56 -07:00
William A. Kennington III
861e5e7573 gnutls: Remove potentially insecure 3.2 2015-05-10 13:45:59 +02:00
William A. Kennington III
916b95b829 gnutls: 3.4.0 -> 3.4.1 2015-05-08 06:05:43 -07:00
William A. Kennington III
c9395e1e92 Merge branch 'master' into staging 2015-05-08 05:59:50 -07:00
William A. Kennington III
3a07187003 gnutls: 3.3.14 -> 3.3.15 2015-05-08 05:54:12 -07:00
Vladimír Čunát
f0746b846c gnutls: fixup 6b6183125 with multiple-output changes 2015-05-05 11:56:29 +02:00
Luca Bruno
6b6183125e gnutls, trousers: fix .la and .pc files, remove propagated build inputs
cc @vcunat @wkennington
2015-04-25 11:43:08 +02:00
William A. Kennington III
cebe937b1e gnutls: Fix propagated inputs 2015-04-22 14:23:08 -07:00
William A. Kennington III
775c412e57 gnutls: Add 3.4 2015-04-20 21:34:48 -07:00
William A. Kennington III
dc5872e79f gnutls: Add version 3.3.14 2015-04-03 19:17:28 -07:00
William A. Kennington III
23ed4c2157 gnutls: Make generic and upgrade to 3.2.21 2015-04-03 19:16:33 -07:00
Vladimír Čunát
074af2ac1c gnutls-3.1: remove unused version
The upstream doesn't maintain these well, as they even fail to build now.
2014-11-17 11:28:31 +01:00
Vladimír Čunát
581721887d gnutls-3.2: maintenance+security update
CVE-2014-8564 seems only DOS, so relatively non-critical.
2014-11-17 11:23:21 +01:00
Rüdiger Sonderfeld
b8a546a13a gnutls: Update to 3.1.26 and 3.2.17. 2014-08-29 11:32:16 +02:00
Mateusz Kowalczyk
7a45996233 Turn some license strings into lib.licenses values 2014-07-28 11:31:14 +02:00
Vladimír Čunát
191dbc234f gnutls: security + maintenance update for both branches
Fixes #2813 CVE-2014-3466. No API/ABI changes in the updates.

Tests start to fail for gnutls31, so they get disabled,
but the 3.1 branch is already unused on master.
2014-06-03 10:39:48 +02:00
Vladimír Čunát
44e604a421 gnutls: minor update to fix API+ABI breakage
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7343
http://osdir.com/ml/gnutls-devel-gnu/2014-03/msg00007.html

Guile tests work fine again, but I guess we still don't need
guile bindings by default.
2014-03-21 07:02:56 +01:00
Domen Kožar
eb6a290f5e bittorrentSync: 1.2.82 -> 1.2.91 2014-03-07 15:12:45 +01:00
Vladimír Čunát
c2cd9852ac gnutls on darwin: drop patch that is integrated now 2014-03-05 21:33:56 +01:00
Eelco Dolstra
c824acb84c Rename misleadingly named gnutls/default.nix (it's not the default) 2014-03-04 22:33:20 +01:00
Eelco Dolstra
738a5321bc gnutls: Update to 3.2.12, 3.1.22
CVE-2014-0092

Unfortunately, 3.2.12 doesn't pass the tests with Guile bindings
enabled, so I've turned them off in the default build.
2014-03-04 22:31:02 +01:00
Vladimír Čunát
048a85f952 gnutls: add platforms for the default version 2014-02-19 20:42:51 +01:00
Badi' Abdul-Wahid
68f9e60435 gnutls: fix linking on Darwin (close #1779) 2014-02-19 20:40:04 +01:00
Vladimír Čunát
6fa5612a46 gnutls2: fix build in chroot (/usr/bin/perl doc script)
I've got no idea how this could get triggered on Hydra, 97e7ce2 ?
2014-02-07 09:50:27 +01:00
Vladimír Čunát
1c3950dc9d gnutls31: update 3.1.12 -> .20, including CVE fixes
Also make gnutls32 the default gnutls.
CVE-2013-{4466,4487}
2014-02-06 20:49:23 +01:00
Vladimír Čunát
cb605c92d2 gnutls32: update 3.2.4 -> .10, including CVE fixes
Also make gnutls32 the default gnutls.
CVE-2013-{4466,4487}
2014-02-06 20:45:14 +01:00
Vladimír Čunát
97e7ce2344 gnutls2: fix CVE-2013-2116 by Debian patch 2014-02-06 20:34:55 +01:00
Moritz Ulrich
3ee5c50cda Add gnutls 3.2.4 (as pkgs.gnutls32) & make weechat use it.
Signed-off-by: Moritz Ulrich <moritz@tarn-vedra.de>
2013-10-07 13:44:19 +02:00
Ludovic Courtès
2e937c437a unmaintain several packages 2013-08-16 23:45:01 +02:00
Domen Kozar
d4a2a56f3e gnutls: use lzma version of tarball 2013-06-07 13:39:49 +02:00
Lluís Batlle i Rossell
3e070f105d gnutls: updating the url.
It was outdated (from times when gnutls was at gnupg repository)
2013-06-03 16:19:26 +02:00
Lluís Batlle i Rossell
8e023d1751 gnutls: downgrading to the latest in 3.1 series
A test was failing on i686 (not on x86_64):
http://hydra.nixos.org/build/5222124/nixlog/1/tail-reload
2013-06-03 14:54:13 +02:00
Lluís Batlle i Rossell
5324db88ec gnutls: update to 3.2.1
Required also: nettle: update to 2.7.1

I tested that wget works.
2013-06-03 12:19:02 +02:00