Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | openssl: fix cross, ensure 'Configure' has shebang patched | Will Dietz | 2018-02-13 |
| | |||
* | openssl 1.1.0: disable 'async' bits relating to setcontext/etc on musl | Will Dietz | 2018-02-13 |
| | |||
* | lib, openssl: Get rid of openssl.system | John Ericson | 2018-01-26 |
| | | | | We compute it on the fly, careful to avoid any mass rebuilds for now. | ||
* | openssl_1_1_0: Fix CVE-2017-3738 | adisbladis | 2018-01-07 |
| | |||
* | openssl_1_0_2: 1.0.2m -> 1.0.2n (CVE-2017-3737, CVE-2017-3738) | Andreas Rammhold | 2017-12-09 |
| | | | | | | See [1] for more details [1] https://www.openssl.org/news/secadv/20171207.txt | ||
* | openssl_1_1_0: 1.1.0f -> 1.1.0g | Graham Christensen | 2017-11-02 |
| | |||
* | openssl_1_0_2: 1.0.2l -> 1.0.2m | Graham Christensen | 2017-11-02 |
| | |||
* | openssl: use https for homepage | Matthew Bauer | 2017-08-17 |
| | |||
* | openssl 1_1_0: fix build on aarch64 | georgewhewell | 2017-08-06 |
| | |||
* | Enable some more debug info | Eelco Dolstra | 2017-07-05 |
| | |||
* | Merge accepted cross compilation PRs into staging | John Ericson | 2017-06-28 |
|\ | |||
| * | openssl: cc-wrapper can be relied on to export these env vars | John Ericson | 2017-06-28 |
| | | |||
* | | openssl: fix cygwin build | David McFarland | 2017-06-26 |
|/ | |||
* | Merge branch 'master' into staging | Vladimír Čunát | 2017-06-07 |
|\ | |||
| * | openssl: 1.1.0e -> 1.1.0f | Tim Steinbach | 2017-06-06 |
| | | |||
* | | openssl: 1.0.2k -> 1.0.2l | Tim Steinbach | 2017-06-07 |
|/ | | | | cc #26435 | ||
* | Revert "openssl: add custom build of 1.0.2 for steam" | David McFarland | 2017-04-03 |
| | | | | | | No longer necessary. See https://github.com/NixOS/nixpkgs/pull/23034#issuecomment-291005754 This reverts commit a50784b34e771aa4a6c5f4eeb8c25295c15e4ed4. | ||
* | openssl: default to default profile CA on darwin | Guillaume Maudoux | 2017-03-22 |
| | |||
* | git, openssl, curl: Respect $NIX_SSL_CERT_FILE | Domen Kožar | 2017-03-20 |
| | | | | Slightly modified version of 942dbf89c6120cb5b52fb2ab456855d1fbf2994e | ||
* | openssl: 1.1.0d -> 1.1.0e for High severity CVE-2017-3733 | Matthew Maurer | 2017-02-16 |
| | |||
* | openssl_1_0_1: remove | Robin Gloster | 2017-01-27 |
| | |||
* | openssl_1_0_1: not maintained anymore, rename as -vulnerable | Franz Pletz | 2017-01-26 |
| | | | | | | This is not maintained anymore upstream but is still used by sslscan. Until this package is updated or fixed, we'll keep it around under the unambiguous name openssl_1_0_1-vulnerable. | ||
* | openssl_1_1_0: 1.1.0c -> 1.1.0d for multiple CVEs | Franz Pletz | 2017-01-26 |
| | | | | | | | | | Fixes: * CVE-2017-3731 * CVE-2017-3730 * CVE-2017-3732 * CVE-2016-7055 | ||
* | openssl_1_0_2: 1.0.2j -> 1.0.2k for multiple CVEs | Franz Pletz | 2017-01-26 |
| | | | | | | | | | Fixes: * CVE-2017-3731 * CVE-2017-3730 * CVE-2017-3732 * CVE-2016-7055 | ||
* | openssl: Output-santizing hack properly uses native perl again | John Ericson | 2017-01-24 |
| | |||
* | openssl_1_1_0: 1.1.0b -> 1.1.0c | Graham Christensen | 2016-11-11 |
| | |||
* | openssl: add custom build of 1.0.2 for steam | David McFarland | 2016-11-09 |
| | |||
* | Revert "openssl, curl, git: Respect $NIX_SSL_CERT_FILE" | Eelco Dolstra | 2016-10-14 |
| | | | | | This reverts commit 942dbf89c6120cb5b52fb2ab456855d1fbf2994e. Sorry, this was supposed to go to staging instead of master... | ||
* | openssl, curl, git: Respect $NIX_SSL_CERT_FILE | Eelco Dolstra | 2016-10-14 |
| | | | | | | | | | $NIX_SSL_CERT_FILE overrides $SSL_CERT_FILE, which in turn overrides the default CA path (/etc/ssl/certs/ca-certificates.crt). This allows Nix to set a CA path without interfering with other packages (such as Homebrew). See https://github.com/NixOS/nix/issues/921. | ||
* | sslscan: enable ssl2 checking | Robin Gloster | 2016-10-12 |
| | |||
* | openssl: 1.0.2i -> 1.0.2j, 1.1.0a -> 1.1.0b | Franz Pletz | 2016-09-26 |
| | | | | https://www.openssl.org/news/secadv/20160926.txt | ||
* | openssl: 1.0.1t -> 1.0.1u, 1.0.2h -> 1.0.2i, 1.1.0 -> 1.1.0a | Eelco Dolstra | 2016-09-22 |
| | | | | https://www.openssl.org/news/secadv/20160922.txt | ||
* | treewide: Shuffle outputs | Tuomas Tynkkynen | 2016-08-29 |
| | | | | Make either 'bin' or 'out' the first output. | ||
* | openssl: fix merge conflict between b6dabe3 and 6e7ca92 | obadz | 2016-08-28 |
| | |||
* | Merge branch 'master' into staging | obadz | 2016-08-27 |
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: pkgs/applications/misc/navit/default.nix pkgs/applications/networking/mailreaders/alpine/default.nix pkgs/applications/networking/mailreaders/realpine/default.nix pkgs/development/compilers/ghc/head.nix pkgs/development/libraries/openssl/default.nix pkgs/games/liquidwar/default.nix pkgs/games/spring/springlobby.nix pkgs/os-specific/linux/kernel/perf.nix pkgs/servers/sip/freeswitch/default.nix pkgs/tools/archivers/cromfs/default.nix pkgs/tools/graphics/plotutils/default.nix | ||
| * | openssl_1_1_0: init at 1.1.0 | Robin Gloster | 2016-08-26 |
| | | |||
* | | openssl: fix CVE-2016-2177 | Alexey Shmalko | 2016-08-23 |
|/ | |||
* | Bring my stdenv.lib.maintainers user name in line with my github nick. | Peter Simons | 2016-05-16 |
| | |||
* | Merge remote-tracking branch 'upstream/master' into staging | Tuomas Tynkkynen | 2016-05-03 |
|\ | | | | | | | | | | | Conflicts: pkgs/applications/networking/browsers/vivaldi/default.nix pkgs/misc/emulators/wine/base.nix | ||
| * | openssl: 1.0.1s -> 1.0.1t, 1.0.2g -> 1.0.2h | Nathan Zadoks | 2016-05-03 |
| | | | | | | | | | | | | | | | | | | CVE-2016-2108, high severity: Memory corruption in the ASN.1 encoder CVE-2016-2107, high severity: Padding oracle in AES-NI CBC MAC check CVE-2016-2105, low severity: EVP_EncodeUpdate overflow CVE-2016-2106, low severity: EVP_EncryptUpdate overflow CVE-2016-2109, low severity: ASN.1 BIO excessive memory allocation CVE-2016-2176, low severity: EBCDIC overread | ||
* | | openssl: fix indentation | Tuomas Tynkkynen | 2016-04-25 |
|/ | |||
* | Merge branch 'master' into closure-size | Vladimír Čunát | 2016-04-01 |
|\ | | | | | | | | | Beware that stdenv doesn't build. It seems something more will be needed than just resolution of merge conflicts. | ||
| * | openssl: Use 1.0.2 by default | Eelco Dolstra | 2016-03-01 |
| | | | | | | | | | | | | Provided that not too much breaks, we should probably cherry-pick this to 16.03, since the end of the 1.0.1 support window is a bit too close to the expected lifetime of 16.0.3. @domenkozar | ||
| * | openssl: 1.0.1r -> 1.0.1s, 1.0.2f -> 1.0.2g | Eelco Dolstra | 2016-03-01 |
| | | | | | | | | CVE-2016-0800 | ||
* | | Merge master into closure-size | Vladimír Čunát | 2016-03-08 |
|\| | | | | | | | | | The kde-5 stuff still didn't merge well. I hand-fixed what I saw, but there may be more problems. | ||
| * | Untested fix for #13401 | Eelco Dolstra | 2016-02-24 |
| | | |||
| * | Move setting $SSL_CERT_FILE to stdenv | Eelco Dolstra | 2016-02-03 |
| | | | | | | | | | | | | Doing it in an openssl setup hook only works if packages have openssl as a build input - it doesn't work if they're using a program linked against openssl. | ||
| * | openssl: Unify 1.0.1 and 1.0.2 expressions | Eelco Dolstra | 2016-02-03 |
| | | |||
| * | openssl: Compile in /etc/ssl/certs/ca-certificates.crt | Eelco Dolstra | 2016-02-03 |
| | | |||
| * | Configure a default trust store for openssl | Guillaume Maudoux | 2016-02-03 |
| | |