[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
181/285: download: Enable TLS 1.3.
|
From: |
guix-commits |
|
Subject: |
181/285: download: Enable TLS 1.3. |
|
Date: |
Sun, 29 Dec 2019 20:44:25 -0500 (EST) |
kkebreau pushed a commit to branch wip-gnome3.34
in repository guix.
commit fc8cd665db485e0b16aec8f579a507a5f5bd0809
Author: Marius Bakke <address@hidden>
Date: Thu Dec 19 00:32:11 2019 +0100
download: Enable TLS 1.3.
This reverts commit e4ee84202633636b4c8cef4a332f0c74912a3b23.
* guix/build/download.scm (tls-wrap): Dot not disable TLS 1.3.
---
guix/build/download.scm | 15 ++-------------
1 file changed, 2 insertions(+), 13 deletions(-)
diff --git a/guix/build/download.scm b/guix/build/download.scm
index 141ef40..53a144f 100644
--- a/guix/build/download.scm
+++ b/guix/build/download.scm
@@ -158,7 +158,7 @@ out if the connection could not be established in less than
TIMEOUT seconds."
;; See <http://bugs.gnu.org/12202>.
(module-autoload! (current-module)
'(gnutls)
- '(gnutls-version make-session connection-end/client))
+ '(make-session connection-end/client))
(define %tls-ports
;; Mapping of session record ports to the underlying file port.
@@ -273,18 +273,7 @@ host name without trailing dot."
;; "(gnutls) Priority Strings"); see <http://bugs.gnu.org/23311>.
;; Explicitly disable SSLv3, which is insecure:
;; <https://tools.ietf.org/html/rfc7568>.
- ;;
- ;; FIXME: Since we currently fail to handle TLS 1.3 (with GnuTLS 3.6.5),
- ;; remove it; see <https://bugs.gnu.org/34102>.
- (set-session-priorities! session
- (string-append
- "NORMAL:%COMPAT:-VERS-SSL3.0"
-
- ;; The "VERS-TLS1.3" priority string is not
- ;; supported by GnuTLS 3.5.
- (if (string-prefix? "3.5." (gnutls-version))
- ""
- ":-VERS-TLS1.3")))
+ (set-session-priorities! session "NORMAL:%COMPAT:-VERS-SSL3.0")
(set-session-credentials! session
(if (and verify-certificate? ca-certs)
- 169/285: gnu: Remove squashfs-tools-next., (continued)
- 169/285: gnu: Remove squashfs-tools-next., guix-commits, 2019/12/29
- 176/285: gnu: libspatialindex: Update to 1.9.3., guix-commits, 2019/12/29
- 190/285: gnu: Add kmix., guix-commits, 2019/12/29
- 192/285: gnu: Add kwave., guix-commits, 2019/12/29
- 203/285: git-authenticate: Keep a local cache of previously-authenticated commits., guix-commits, 2019/12/29
- 155/285: gnu: nethack: Update to 3.6.4., guix-commits, 2019/12/29
- 163/285: gnu: Add zfs., guix-commits, 2019/12/29
- 160/285: gnu: python-pathos: Run test suite., guix-commits, 2019/12/29
- 167/285: gnu: guix-data-service: Update to 0.0.1-11.7342280., guix-commits, 2019/12/29
- 171/285: gnu: geos: Update to 3.8.0., guix-commits, 2019/12/29
- 181/285: download: Enable TLS 1.3.,
guix-commits <=
- 144/285: gnu: libdvbpsi: Update to 1.3.3., guix-commits, 2019/12/29
- 172/285: gnu: Add proj., guix-commits, 2019/12/29
- 179/285: gnu: gdal: Enable netCDF format driver., guix-commits, 2019/12/29
- 177/285: gnu: gdal: Enable ODS format driver., guix-commits, 2019/12/29
- 202/285: git: 'commit-difference' takes a list of excluded commits., guix-commits, 2019/12/29
- 184/285: gnu: Add audiofile., guix-commits, 2019/12/29
- 200/285: gnu: emacs-org-contrib: Update to 20191226., guix-commits, 2019/12/29
- 225/285: gnu: emacs-doom-themes: Only disable breaking compilations., guix-commits, 2019/12/29
- 223/285: gnu: r-inspect: Update to 1.16.1., guix-commits, 2019/12/29
- 183/285: gnu: python-fonttools: Update home-page., guix-commits, 2019/12/29