nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-30 19:02:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
544,797 Commits 267 Branches 125 Tags 5.7 GiB
9489fc779e
Commit Graph

1701 Commits

Author SHA1 Message Date
Silvan Mosberger
390a4247e0
Merge pull request #255512 from nbraud/sha512-to-hash 
treewide: sha512 → hash
 2023-09-24 00:03:31 +02:00
Thomas Gerbet
b91d9a2f0b jetty: 11.0.15 -> 11.0.16 
Includes fixes for CVE-2023-40167, CVE-2023-36479, CVE-2023-41900 and GHSA-58qw-p7qm-5rvh.

Changelog:
https://github.com/eclipse/jetty.project/releases/tag/jetty-11.0.16
 2023-09-23 21:15:02 +02:00
nicoo
fab52fca51 treewide: sha512 → hash 2023-09-22 18:37:42 +02:00
Aaron Jheng
7735659333
treewide: use sri hash (#256481) 2023-09-21 16:23:40 +02:00
Weijia Wang
90f54ba99f
Merge pull request #255423 from r-ryantm/auto-update/unit 
unit: 1.30.0 -> 1.31.0
 2023-09-20 18:30:06 +02:00
Fabián Heredia Montiel
25cdde0e59
Merge pull request #255716 from risicle/ris-trafficserver-9.2.2 
trafficserver: 9.2.1 -> 9.2.2
 2023-09-19 15:32:04 -06:00
WilliButz
d49a4c10ce
nginxModules.njs: 0.7.10 -> 0.8.1 2023-09-19 14:37:19 +02:00
Morgan Helton
1547629c6e pomerium: 0.22.2 -> 0.23.0 2023-09-18 06:18:52 -05:00
Robert Scott
fa25e84147 trafficserver: 9.2.1 -> 9.2.2 2023-09-17 18:42:33 +01:00
R. Ryantm
ae5dcd6ce1 unit: 1.30.0 -> 1.31.0 2023-09-16 04:40:43 +00:00
Adam Stephens
05c19a34df
envoy: fix another hash invalidator in fetcher 2023-09-15 14:41:44 -04:00
Luke Granger-Brown
f278432412
Merge pull request #254750 from adamcstephens/envoy/update-hashes 
envoy: update broken deps hashes
 2023-09-13 16:06:09 +01:00
Fabián Heredia Montiel
ff323ed355 treewide: vendorSha256 → vendorHash 
via: `find pkgs/ -type f -exec sed -i 's/vendorSha256 = "sha256/vendorHash = "sha256/' {};`
 2023-09-13 01:03:44 -06:00
Adam Stephens
6df0facb7f
envoy: update broken deps hashes 2023-09-12 12:24:54 -04:00
Stig Palmquist
b90ab315c1 unit: remove withPerldevel option 2023-09-08 14:22:00 +00:00
Robert Scott
571ed5c7a1 envoy: 1.26.3 -> 1.26.4 2023-09-04 23:36:16 +01:00
Thomas Gerbet
e39d579918 lib/licenses: add Elastic License 2.0, drop Elastic License 
This license was introduced in the Elastic search repository by this
commit: a92a647b9f

It appears that all the the packages in nixpkgs using the Elastic License are using the v2.0.
 2023-08-27 18:29:26 +02:00
figsoda
86f63af30a dufs: 0.35.0 -> 0.36.0 
Diff: https://github.com/sigoden/dufs/compare/v0.35.0...v0.36.0

Changelog: https://github.com/sigoden/dufs/blob/v0.36.0/CHANGELOG.md
 2023-08-24 09:29:28 -04:00
Stéphan Kochen
2d25262a15 couchdb3: fix jiffy NIF on darwin 2023-08-21 19:56:42 +02:00
Franz Pletz
835975d37c
Merge pull request #249536 from Izorkin/update-nginx 
nginxMainline: 1.25.1 -> 1.25.2
 2023-08-20 00:38:59 +02:00
Uri Baghin
9eb0911040
Merge pull request #249613 from jacobfoard/bazel_6-6.3.2 
bazel_6: 6.2.0 -> 6.3.2
 2023-08-19 11:26:07 +10:00
Jacob Foard
2d9342b9be
fixup bazel_6 buildBazelPackage references 2023-08-18 11:07:52 -04:00
Izorkin
f4e49466ef
nginxMainline: 1.25.1 -> 1.25.2 2023-08-16 16:09:52 +03:00
figsoda
dd2ba7159e dufs: 0.34.2 -> 0.35.0 
Diff: https://github.com/sigoden/dufs/compare/v0.34.2...v0.35.0

Changelog: https://github.com/sigoden/dufs/blob/v0.35.0/CHANGELOG.md
 2023-08-14 19:50:51 -04:00
R. Ryantm
7ddf588700 go-camo: 2.4.3 -> 2.4.4 2023-08-10 01:39:01 +00:00
Vladimír Čunát
41c7605718
Merge #245935: staging-next 2023-07-28 2023-08-08 07:33:42 +02:00
squalus
d29b49f39b nginxModules.set-misc: 0.32 -> 0.33 2023-08-07 11:12:59 -07:00
Martin Weinelt
167f6dfee4
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/libraries/science/astronomy/cfitsio/default.nix
 2023-07-30 03:54:27 +02:00
Luke Granger-Brown
3731abdb8b
Merge pull request #246068 from LeSuisse/envoy-1.26.3 
envoy: 1.26.1 -> 1.26.3
 2023-07-29 23:31:11 +01:00
Thomas Gerbet
60d546a96d envoy: 1.26.1 -> 1.26.3 
Fixes CVE-2023-35945.

Changelog:
https://github.com/envoyproxy/envoy/releases/tag/v1.26.3
https://github.com/envoyproxy/envoy/releases/tag/v1.26.2
 2023-07-29 22:12:03 +02:00
h7x4
ecb40c69d8
nixos/nginx: sort test include order alphabetically 2023-07-28 20:30:43 +02:00
h7x4
25b7b82ee0
nixos/nginx: add test for status page 2023-07-28 20:29:09 +02:00
github-actions[bot]
824f21d748
Merge staging-next into staging 2023-07-27 18:01:53 +00:00
Janik
018e7bbe2c
Merge pull request #245119 from r-ryantm/auto-update/tengine 2023-07-27 16:34:13 +02:00
Martin Weinelt
fd5d0300b4
Merge pull request #241848 from stigtsp/perl/5.38.0 
[staging] perl: 5.36.0 -> 5.38.0
 2023-07-27 02:05:42 +02:00
R. Ryantm
29d916a0d0 tengine: 2.4.1 -> 3.0.0 2023-07-24 00:11:59 +00:00
Ryan Lahfa
bba6788b37
Merge pull request #244702 from RaitoBezarius/nginx-maintenance 2023-07-23 23:53:17 +02:00
Thomas Gerbet
5ef477010a trafficserver: 9.1.4 -> 9.2.1 
Fixes CVE-2022-47184, CVE-2023-30631 and CVE-2023-33933.

Changelogs:
https://raw.githubusercontent.com/apache/trafficserver/9.2.x/CHANGELOG-9.2.1
https://raw.githubusercontent.com/apache/trafficserver/9.2.x/CHANGELOG-9.2.0
 2023-07-22 12:12:16 +02:00
Raito Bezarius
6d563b70b4 nginx: remove unactive maintainers and add raitobezarius as a maintainer 
Removed maintainers which does not maintain NGINX anymore for the last year at least.
Added myself as I use it actively.
 2023-07-21 21:12:21 +02:00
Thomas Gerbet
abdd388fa8 rustls-ffi: 0.9.2 -> 0.10.0 
Changelog:
https://github.com/rustls/rustls-ffi/releases/tag/v0.10.0
 2023-07-13 22:39:54 +02:00
Janik
c3e258d519
Merge pull request #236171 from hummeltech/patch-1 2023-07-09 20:51:10 +02:00
Stig Palmquist
5173b569f5
unit: add perl538 as default, remove perl534 2023-07-06 14:14:30 +02:00
R. Ryantm
fd9f4d86fe tengine: 2.4.0 -> 2.4.1 2023-06-25 17:43:56 +00:00
R. Ryantm
9d228d71b5 dufs: 0.34.1 -> 0.34.2 2023-06-24 19:37:53 +00:00
Franz Pletz
6a4b949a95
nginxMainline: 1.25.0 -> 1.25.1 2023-06-21 13:47:28 +02:00
Hummeltech
a7fc0b6e70
mod_tile: testing enabled 
It looks like the commit used to build `mapnik` was just missing some additional variable definitions in `libmapnik.pc` which are relied upon by the commit used to build `mod_tile`
 2023-06-05 16:18:21 -07:00
R. Ryantm
45cb7359f8 dufs: 0.33.0 -> 0.34.1 2023-06-05 00:25:15 +00:00
R. Ryantm
1b4bcd4d8a jetty: 11.0.14 -> 11.0.15 2023-06-04 13:20:44 +00:00
Bjørn Forsman
14fdabbb7b lighttpd: 1.4.69 -> 1.4.71 
Changelogs:
https://www.lighttpd.net/2023/5/27/1.4.71/
https://www.lighttpd.net/2023/5/10/1.4.70/

Update the patch that disables legacy crypt tests, because it doesn't
apply anymore.
 2023-06-01 17:08:02 +02:00
Weijia Wang
99060dee6f
Merge pull request #234552 from r-ryantm/auto-update/router 
router: 1.18.1 -> 1.19.0
 2023-05-30 12:22:04 +03:00
R. Ryantm
c9b945e0f8 webhook: 2.8.0 -> 2.8.1 2023-05-30 02:04:29 +00:00
Sandro Jäckel
819289b1e5
nginxModules.zstd: add SuperSandro2000 as maintainer 2023-05-29 20:41:08 +02:00
Sandro Jäckel
0000007dcc
nginxModules.vts: 0.2.1 -> 0.2.2, add SuperSandro2000 as maintainer 2023-05-29 20:40:50 +02:00
R. Ryantm
cc62398c92 pomerium: 0.22.1 -> 0.22.2 2023-05-29 08:39:07 +00:00
R. Ryantm
6a35ff3d8a router: 1.18.1 -> 1.19.0 2023-05-28 03:48:55 +00:00
Raito Bezarius
69bb0f94de nixos/nginx: first-class PROXY protocol support 
PROXY protocol is a convenient way to carry information about the
originating address/port of a TCP connection across multiple layers of
proxies/NAT, etc.

Currently, it is possible to make use of it in NGINX's NixOS module, but
is painful when we want to enable it "globally".
Technically, this is achieved by reworking the defaultListen options and
the objective is to have a coherent way to specify default listeners in
the current API design.
See `mkDefaultListenVhost` and `defaultListen` for the details.

It adds a safeguard against running a NGINX with no HTTP listeners (e.g.
only PROXY listeners) while asking for ACME certificates over HTTP-01.

An interesting usecase of PROXY protocol is to enable seamless IPv4 to
IPv6 proxy with origin IPv4 address for IPv6-only NGINX servers, it is
demonstrated how to achieve this in the tests, using sniproxy.

Finally, the tests covers:

- NGINX `defaultListen` mechanisms are not broken by these changes;
- NGINX PROXY protocol listeners are working in a final usecase
  (sniproxy);
- uses snakeoil TLS certs from ACME setup with wildcard certificates;

In the future, it is desirable to spoof-attack NGINX in this scenario to
ascertain that `set_real_ip_from` and all the layers are working as
intended and preventing any user from setting their origin IP address to
any arbitrary, opening up the NixOS module to bad™ vulnerabilities.

For now, it is quite hard to achieve while being minimalistic about the
tests dependencies.
 2023-05-26 19:48:26 +02:00
figsoda
22ec7aebbc treewide/servers: use top-level fetchPypi 2023-05-25 12:06:38 -04:00
Weijia Wang
7ef1ddae9e
Merge pull request #233854 from chkno/hook-spelling 
Fix phase name typos in 5 packages' runHook invocations
 2023-05-24 23:40:57 +03:00
Sandro
c898813431
Merge pull request #233029 from jlamur/nginx-spnego-build-fix 
nginx: fix build of module spnego-http-auth
 2023-05-24 21:54:24 +02:00
Scott Worley
f34465fea5 pomerium: Spell "postBuild" correctly 2023-05-24 09:21:51 -07:00
ajs124
27d53b81cc nginxQuic: share src and version with nginxMainline 
quic support was merged
still a separate package, because it uses quictls
and sets configureFlags
 2023-05-23 18:37:54 +02:00
ajs124
91ecb7d7ff nginxMainline: 1.24.0 -> 1.25.0 2023-05-23 18:28:04 +02:00
Martin Weinelt
9d0bbc2c12
nginxModules.secure-token: 2020-08-28 -> 1.5 2023-05-22 16:29:55 +02:00
Martin Weinelt
2c1cc78307
nginxModules.vod: 1.29 -> 1.31 2023-05-22 16:29:55 +02:00
Robert Scott
6ace7552e3
Merge pull request #233002 from LeSuisse/tomcat9-9.0.75 
tomcat9: 9.0.68 -> 9.0.75
 2023-05-20 19:07:43 +01:00
Jules Lamur
dcb2cc849e
nginx: fix build of module spnego-http-auth 2023-05-20 16:12:04 +02:00
Robert Scott
ca7f83f6df tomcat*: add sourceProvenance binaryBytecode 2023-05-20 13:03:13 +01:00
Thomas Gerbet
0749e39f64 tomcat9: 9.0.68 -> 9.0.75 
Fixes CVE-2022-45143 and CVE-2023-28708.

https://tomcat.apache.org/tomcat-9.0-doc/changelog.html
 2023-05-20 13:09:20 +02:00
R. Ryantm
17db7c08d8 pomerium: 0.21.3 -> 0.22.1 2023-05-19 10:22:11 +00:00
R. Ryantm
b166262b1b router: 1.18.0 -> 1.18.1 2023-05-17 00:05:19 +00:00
Izorkin
e5aa2e3b30
unit: add ruby 3.2 2023-05-13 16:55:50 +03:00
Izorkin
ba455450b1
unit: remove ruby_2_7 2023-05-13 16:55:50 +03:00
Izorkin
baa5550162
unit: 1.29.1 -> 1.30.0 2023-05-13 16:55:47 +03:00
divanorama
4d494b82de
Update pkgs/servers/http/envoy/default.nix 2023-05-12 22:04:55 +02:00
Dmitry Ivankov
5a14400712 bazel_6: 6.1.2 -> 6.2.0 
https://github.com/bazelbuild/bazel/releases/tag/6.2.0
 2023-05-12 15:33:48 +02:00
Luke Granger-Brown
23cd27508f envoy: 1.25.1 -> 1.26.1 2023-05-12 07:54:56 +00:00
Martin Weinelt
4579dfb9ce
Merge pull request #231193 from mweinelt/couchdb-3.3.2 
couchdb3: 3.3.1 -> 3.3.2
 2023-05-11 16:03:28 +02:00
Martin Weinelt
34ba6c7e16
couchdb3: 3.3.1 -> 3.3.2 
https://docs.couchdb.org/en/latest/whatsnew/3.3.html#version-3-3-2
https://docs.couchdb.org/en/latest/cve/2023-26268.html

Fixes: CVE-2023-26268
 2023-05-11 02:41:41 +02:00
Dmitry Ivankov
e0d1e77c23 bazel_5: 5.4.0->5.4.1 
Also update the updater script.

https://github.com/bazelbuild/bazel/releases/tag/5.4.1

- [X] recalculate fetchAttrs digest for packages built with bazel_5
 2023-05-10 16:09:19 +02:00
Sandro
9757bdca3b
Merge pull request #229911 from bbigras/router 
router: 1.15.1 -> 1.18.0
 2023-05-07 15:42:40 +02:00
Bruno Bigras
5cee3aa13f router: 1.15.1 -> 1.18.0 2023-05-07 01:59:17 -04:00
Thomas Gerbet
62b0017f86 envoy: mark with knownVulnerabilities 
Attempts to update `envoy` have not been successful.
Nobody with enough Bazel skills has step up to untangle
the build issues with the latest version.
 2023-05-04 23:10:57 +02:00
zowoq
9f8b8befcf nginxModules.zstd: add missing meta 2023-05-04 20:21:37 +10:00
Sandro
7a4d8131fa
Merge pull request #208161 from SuperSandro2000/nginx-modules-meta 
nginx: add meta section to modules
 2023-05-04 00:59:20 +02:00
Alyssa Ross
2d8c06b637 bozohttpd: 20210227 -> 20220517 2023-05-03 09:38:12 +00:00
R. Ryantm
342ff3209c apacheHttpd: 2.4.56 -> 2.4.57 2023-04-29 07:43:39 +00:00
Sandro Jäckel
50b8c237b7
nginx: move aliases behind config.allowAliases 2023-04-28 21:38:43 +02:00
Sandro Jäckel
0d58522055
nginx: add meta section to modules 
Also resolve one github redirect.
 2023-04-28 21:38:43 +02:00
R. Ryantm
b94c7f3acc jetty: 11.0.13 -> 11.0.14 2023-04-27 07:14:15 +00:00
Weijia Wang
da3414f938
Merge pull request #227314 from r-ryantm/auto-update/apacheHttpdPackages.mod_auth_mellon 
apacheHttpdPackages.mod_auth_mellon: 0.18.0 -> 0.18.1
 2023-04-22 22:42:05 +03:00
Ryan Lahfa
1bcb219bd5
Merge pull request #227026 from LeSuisse/unit-drop-php80 
unit: drop PHP 8.0 support, add PHP 8.2 support
 2023-04-21 15:21:21 +02:00
R. Ryantm
d0070ed03d apacheHttpdPackages.mod_auth_mellon: 0.18.0 -> 0.18.1 2023-04-20 18:47:44 +00:00
Thomas Gerbet
9817e6af85 unit: add PHP 8.2 support 2023-04-19 10:36:33 +02:00
Thomas Gerbet
4855a6f817 unit: drop PHP 8.0 support 
PHP 8.0 will be end-of-life before the end of life of the next stable
version of NixOS. Related to #224505.
 2023-04-19 10:24:02 +02:00
Bruno Bigras
18a0deb942 router: 1.15.0 -> 1.15.1 2023-04-18 16:14:50 -04:00
Bruno Bigras
2f81686ec8 router: init at 1.15.0 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2023-04-17 20:39:47 -04:00
ajs124
68c39e6f41 nginxMainline: 1.23.4 -> 1.24.0 2023-04-11 22:12:12 +02:00
ajs124
58cb284c0e nginxStable: 1.22.1 -> 1.24.0 2023-04-11 22:11:07 +02:00
Franz Pletz
a50962e4c4
Merge pull request #224458 from helsinki-systems/upd/nginx 
nginxMainline: 1.23.3 -> 1.23.4
 2023-04-08 11:49:55 +02:00
Uri Baghin
f8ee061247 buildBazelPackage: fix difference between linux and darwin deps 2023-04-06 11:42:46 +10:00