Commit graph

147 commits

Author SHA1 Message Date
Franz Pletz
85ac790666
gnutls35: 3.5.5 -> 3.5.8
Fixes the following security issues:

  * CVE-2017-5334
  * CVE-2017-5335
  * CVE-2017-5336
  * CVE-2017-5337

See https://www.gnutls.org/news.html#2017-01-09 for more information.
2017-01-11 06:47:36 +01:00
Franz Pletz
0e963d2563
gnutls33: 3.3.25 -> 3.3.26
Fixes the following security issues:

  * CVE-2017-5334
  * CVE-2017-5335
  * CVE-2017-5336
  * CVE-2017-5337

See https://www.gnutls.org/news.html#2017-01-09 for more information.
2017-01-11 06:47:35 +01:00
Franz Pletz
cc40fadf62
gnutls: 3.4.16 -> 3.4.17 2017-01-11 06:44:00 +01:00
Tim Steinbach
4db8ca39cf gnutls: 3.5.4 -> 3.5.5 2016-10-25 22:52:07 +02:00
Tim Steinbach
cfbcc0805e gnutls: 3.4.15 -> 3.4.16 2016-10-25 22:51:55 +02:00
Tim Steinbach
e99a81060f gnutls: 3.3.24 -> 3.3.25 2016-10-25 22:34:06 +02:00
Will Dietz
f2fdd1a813 gnutls: Build in parallel, cited problems were fixed upstream.
The systemkey problem was fixed in 3.4.15 [1].

The guileBindings issue was fixed 3 years ago, and is included
in all versions of gnutls we use today [2].

[1] 25d2f643c0
[2] 0d34b03f0e
2016-10-24 13:49:11 -05:00
Franz Pletz
e3107dc45d
gnutls: 3.5.3 -> 3.5.4 2016-09-19 00:58:53 +02:00
Franz Pletz
501f9096f6
gnutls: 3.4.14 -> 3.4.15 2016-09-19 00:58:53 +02:00
Eelco Dolstra
8172cd734c docdev -> devdoc
It's "developer documentation", not "documentation developer" after
all.
2016-09-01 11:07:23 +02:00
Tuomas Tynkkynen
a17216af4c treewide: Shuffle outputs
Make either 'bin' or 'out' the first output.
2016-08-29 14:49:51 +03:00
Vladimír Čunát
6d75fd1476 gnutls*: drop the parallel-build hack
... as it didn't work, apparently: 024cb9ee
2016-08-19 16:37:11 +02:00
Vladimír Čunát
c69e2d5763 gnutls35: maintenance 3.5.1 -> 3.5.3 2016-08-19 16:36:52 +02:00
Vladimír Čunát
1441366fdd gnutls33: maintenance 3.3.18 -> 3.3.24 2016-08-19 16:36:10 +02:00
Vladimír Čunát
cd07a6b4dd gnutls: security 3.4.13 -> 3.4.14
http://gnutls.org/security.html#GNUTLS-SA-2016-2
(no CVE seems assigned ATM)
2016-08-19 16:08:52 +02:00
Vladimír Čunát
46134cbca5 gnutls-3.3: make it build again
At least without tests. We only have two packages using it ATM.
2016-07-30 12:30:23 +02:00
Eelco Dolstra
024cb9eecd gnutls: Disable parallel building
This can fail randomly with

    CC       systemkey.o
  In file included from systemkey.c:47:0:
  systemkey-args.h:1:1: error: unterminated comment
   /*   -*- buffer-read-only: t -*- vi: set ro:

which is presumably caused by a race with the generation step above:

  autogen systemkey-args.def

http://hydra.nixos.org/build/37878764#tabs-buildsteps
2016-07-20 11:55:46 +02:00
Vladimír Čunát
19a4935c55 gnutls: fix up yet again
Noticed on: https://github.com/NixOS/nixpkgs/commit/7d94f57309a4#commitcomment-18221038
Hopefully OK finally, evaluation tested on x86_64-{linux,darwin}.
Apparently I'm trying to contribute in situations I'd better be relaxing
already.
2016-07-13 22:39:30 +02:00
Vladimír Čunát
7d94f57309 gnutls: fixup evaluation after 5148c6c5c0
Noticed on: https://github.com/NixOS/nixpkgs/commit/5148c6c5c0#commitcomment-18184261
2016-07-09 15:15:42 +02:00
Vladimír Čunát
5148c6c5c0 gnutls: fix on Darwin
nettools is only used during checkPhase, and we don't do that on Darwin
anyway. Close #16783; we don't change hashes on Linux contrary to the PR.
2016-07-09 11:34:02 +02:00
Vladimír Čunát
17faf910b7 gnutls: fixup various problems
- disable a test that started failing due to date expiration, see #16610
- bash doesn't need adding
- defining patchPhase was overriding passed postPatch and patches
2016-06-30 11:06:34 +02:00
Michiel Leenaars
2cf31a1840 gnutls35: init at 3.5.1 2016-06-21 09:28:51 +02:00
Michiel Leenaars
325dafe82b gnutls: 3.4.11 -> 3.4.13 2016-06-21 09:28:51 +02:00
Michiel Leenaars
4ea23ca277 gnutls: 3.4.6 -> 3.4.11 2016-04-20 22:44:39 +02:00
Vladimír Čunát
09af15654f Merge master into closure-size
The kde-5 stuff still didn't merge well.
I hand-fixed what I saw, but there may be more problems.
2016-03-08 09:58:19 +01:00
Guillaume Maudoux
9f358f809d Configure a default trust store for openssl 2016-02-03 12:42:01 +01:00
Vladimír Čunát
716aac2519 Merge branch 'staging' into closure-size 2016-01-19 09:55:31 +01:00
janus
a472d836f6 FreeBSD: apr-util, cyrus-sasl, berkeley db, glib, gnutls, kerberos, libelf-freebsd, openldap, serf, guile, tet, shishi, gawk, gnugrep 2016-01-01 17:01:13 +00:00
Vladimír Čunát
333d69a5f0 Merge staging into closure-size
The most complex problems were from dealing with switches reverted in
the meantime (gcc5, gmp6, ncurses6).
It's likely that darwin is (still) broken nontrivially.
2015-11-20 14:32:58 +01:00
Stéphane Jourdois
d2452d1951 darwin: gnutls: add missing libiconv dep 2015-11-08 19:02:43 +01:00
Tuomas Tynkkynen
fb4c2eb438 gnutls: More hacks to .la files
Some .la files contain '-lgmp' without a corresponding -L entry,
breaking e.g. glib-networking and NetworkManager.
2015-10-28 10:17:10 +01:00
Vladimír Čunát
148e03b2f1 gmp: split into multiple outputs 2015-10-28 10:15:49 +01:00
William A. Kennington III
71effd873a gnutls: 3.4.5 -> 3.4.6 2015-10-21 21:48:57 -07:00
Vladimír Čunát
328eafa885 gnutls: split into multiple outputs
Fixed all 'gnutls}' references, too.
2015-10-05 11:07:54 +02:00
Vladimír Čunát
5227fb1dd5 Merge commit staging+systemd into closure-size
Many non-conflict problems weren't (fully) resolved in this commit yet.
2015-10-03 13:33:37 +02:00
William A. Kennington III
0310a61e66 gnutls: 3.4.4 -> 3.4.5 2015-09-13 19:51:52 -07:00
William A. Kennington III
0ba0368a89 gnutls33: 3.3.17 -> 3.3.18 2015-09-13 19:51:52 -07:00
William A. Kennington III
91da606101 gnutls: Fix parallel build issue introduced in 3.4.x 2015-09-10 13:42:44 -07:00
William A. Kennington III
952def0e3c Merge branch 'master.upstream' into staging.upstream 2015-08-13 11:55:02 -07:00
William A. Kennington III
31a128b32b gnutls: Security Fixes
3.3.16 -> 3.3.17
3.4.3 -> 3.4.4
2015-08-12 17:02:14 -07:00
William A. Kennington III
bd5f2c9638 Merge branch 'master.upstream' into staging.upstream 2015-07-27 08:17:19 -07:00
Eelco Dolstra
e1f78bf677 More docs/manpages in separate outputs 2015-07-27 00:27:54 +02:00
Eelco Dolstra
ecae014ddb gnutls: Don't depend on trousers by default
Let's keep the base system free of "trusted" computing crap...
2015-07-26 22:46:23 +02:00
Vladimír Čunát
9f37e91ec5 Merge master into staging
There are larger-rebuild changes: gnutls and samba.
2015-07-17 06:38:04 +02:00
William A. Kennington III
08ef62c100 gnutls: 3.4.2 -> 3.4.3 2015-07-15 12:48:02 -07:00
William A. Kennington III
b48e49ddc3 gnutls: 3.3.15 -> 3.3.16 2015-07-15 12:42:40 -07:00
Vladimír Čunát
61596bf405 Merge #8363: pure-darwin stdenv 2015-06-18 22:38:08 +02:00
William A. Kennington III
2ae75f3a85 gnutls: 3.4.1 -> 3.4.2 2015-06-17 18:33:10 -07:00
Vladimír Čunát
2b99951f99 gnutls: don't set cert location except on Linux
Also refactor lib.optional*. Preserves .drv hashes on Linux.
2015-06-11 09:02:56 +02:00
Vladimír Čunát
651e83ac10 gnutls: set certificate location (close #8121)
This is a fast fix; it might be best to use $SSL_CERT_FILE.
Tested on vlc with youtube https URLs.
Discussed also on #8118. Feel free to discuss further improvements on #8247.
2015-06-09 16:43:58 +02:00