Commit Graph

97 Commits

Author SHA1 Message Date
Aleksana
38aad8a814
cassandra: fix cqlsh not working (#335084) 2024-09-16 22:07:12 +08:00
Pierre Allix
ed4a1c2451 cassandra: try using python311 packages to fix failing tests 2024-09-16 13:37:26 +02:00
Pierre Allix
3876bf529f cassandra: fix cqlsh not working
Fixes #329864
2024-08-16 13:11:15 +02:00
Robert Scott
46c3afb271 cassandra: add meta.sourceProvenance information 2024-08-12 19:48:45 +01:00
Alexis Hildebrandt
755b915a15 treewide: Remove indefinite article from meta.description
nix run nixpkgs#silver-searcher -- -G '\.nix$' -0l 'description.*"[Aa]n?' pkgs \
  | xargs -0 nix run nixpkgs#gnused -- -i '' -Ee 's/(description.*")[Aa]n? (.)/\1\U\2/'
2024-06-09 23:07:45 +02:00
Thomas Gerbet
ec238a4f39 cassandra_4: 4.1.0 -> 4.1.2
Fixes CVE-2023-30601.

https://lists.apache.org/thread/f74p9jdhmmp7vtrqd8lgm8bq3dhxl8vn

Changelog:
https://github.com/apache/cassandra/blob/cassandra-4.1.2/CHANGES.txt
2023-06-12 23:27:15 +02:00
Sandro Jäckel
00000001b4
treewide: switch builtins.fromJSON(builtins.readFile ./file.json) to lib.importJSON ./file.json #2 2023-05-06 16:20:13 +02:00
Aaron Jheng
c12ccc8c2b
cassandra_4: 4.0.7 -> 4.1.0 2023-01-26 11:19:21 +00:00
R. Ryantm
526db10b59 cassandra_3_0: 3.0.26 -> 3.0.28 2022-12-29 18:34:01 +00:00
Robert Hensing
e38a9584fd cassandra_4: 4.0.3 -> 4.0.7 2022-12-06 14:42:07 +01:00
Robert Hensing
ab823e3a11 cassandra_4: init 2022-12-06 14:09:38 +01:00
Thomas Gerbet
c7c4f66546 cassandra_2_1, cassandra_2_2: drop
Cassandra 2.x is no more supported upstream and is affected by some vulnerabilities
(CVE-2020-13946, CVE-2020-17516).
2022-10-29 17:49:57 +02:00
Ben Siraphob
259fa13d53 treewide: remove nativeBuildInputs that are in stdenv 2022-04-16 21:46:46 +03:00
Robert Hensing
22c4920c80 cassandra.updateScript: Add signature check 2022-04-11 17:25:10 +02:00
Robert Hensing
d0dec918b5 cassandra*: Refactor: store versions in JSON 2022-04-11 17:25:10 +02:00
Robert Hensing
efd55dbef4 cassandra.updateScript: Generate JSON 2022-04-11 17:25:10 +02:00
Robert Hensing
0038244d60 cassandra: Make updateScript update individual version 2022-04-11 17:25:10 +02:00
Robert Hensing
ab55499253 cassandra: Add updateScript 2022-04-11 17:25:10 +02:00
Robert Hensing
d806547deb cassandra_3_11: 3.11.10 -> 3.11.12 2022-02-23 15:23:19 +01:00
Robert Hensing
313acb6cc2 cassandra_3_0: 3.0.24 -> 3.0.26 2022-02-23 15:23:18 +01:00
Robert Hensing
72ddd738f4 cassandra: Remove javadoc which is not shipped in new versions 2022-02-23 15:23:18 +01:00
Renaud
944a2dc835
Treewide: fix some permanent redirects on homepages
(#153213)
Issue #60004
2022-01-03 16:53:12 +01:00
Frederik Rietdijk
e029eba1ca cassandra: stay with python2
Did not test with python3.
2021-07-27 20:37:04 +02:00
Robert Hensing
726669ace8 cassandra: use Nix scope checking 2021-04-29 08:40:12 +02:00
Robert Hensing
19ba3d97d2 cassandra: format 2021-04-29 08:40:12 +02:00
Robert Hensing
d18e47b760 cassandra: Invoke install hooks
Thanks @r-rmcgibbo for pointing that out
2021-02-18 12:17:30 +01:00
Robert Hensing
da3bd95ffe cassandra: 3.11.9 -> 3.11.10 2021-02-18 11:50:19 +01:00
Robert Hensing
ac852f63d3 cassandra_3_0: 3.0.23 -> 3.0.24 2021-02-18 11:50:14 +01:00
Robert Hensing
4ca1c4bcd5 cassandra_2*: mark as insecure 2021-02-18 11:50:14 +01:00
Ben Siraphob
872973d7d1 pkgs/servers: stdenv.lib -> lib 2021-01-15 14:24:03 +07:00
Profpatsch
4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
Robert Hensing
ccdfb9c6ea cassandra: Add myself as maintainer 2020-12-14 15:37:46 +01:00
Robert Hensing
a298710dd1 cassandra: Add passthru.tests 2020-12-09 13:24:48 +01:00
Robert Hensing
48929049d7
Merge pull request #104838 from redvers/update_cassandra_2.1.20_to_2.1.22_cve-2020-13946
cassandra_2_1: 2.1.20 -> 2.1.22
2020-12-09 13:21:04 +01:00
Robert Hensing
ed03f1a594
Merge pull request #104840 from redvers/update_cassandra_2.2.14_to_2.2.19_cve-2020-13946
cassandra_2_2: 2.2.14 -> 2.2.19
2020-12-09 13:20:34 +01:00
Robert Hensing
f41b7f6153
Merge pull request #104835 from redvers/update_cassandra_3.11.4_3.11.9_cve-2020-13946
cassandra: 3.11.4 -> 3.11.9
2020-12-09 13:19:53 +01:00
Casey Ransom
f6e974e701 cassandra: remove maintainer cransom
I've been disconnected from Cassandra for years now, I wouldn't be an
appropriate maintainer.
2020-12-02 11:01:14 -05:00
Red Davies
1431c3cc60 cassandra_3_0: 3.0.17 -> 3.0.23
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

3.0.x users should upgrade to 3.0.22
2020-11-24 21:21:56 -05:00
Red Davies
ee1b13dd13 cassandra_2_2: 2.2.14 -> 2.2.19
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

2.2.x users should upgrade to 2.2.18
2020-11-24 20:58:37 -05:00
Red Davies
b0f1fea52f cassandra_2_1: 2.1.20 -> 2.1.22
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

2.1.x users should upgrade to 2.1.22
2020-11-24 20:42:29 -05:00
Red Davies
90d2986368 cassandra: 3.11.4 -> 3.11.9
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

3.11.x users should upgrade to 3.11.8
2020-11-24 20:24:32 -05:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Jonathan Ringer
954f52d690 cassandra_2_2: 2.2.13 -> 2.2.14 2019-08-06 02:18:31 -07:00
B YI
d737cf3cbf cassandra 3.11.3 -> 3.11.4
also add test to all-test.nix
2019-07-14 22:22:04 +08:00
Daniel Schaefer
d8ad5ad2a2 cassandra: Properly wrap all binaries
Would previously overwrite the binary with the wrapper and thus wrap
itself (resulting in an infinite recursion on execution) for the
binaries in /bin.t
2019-06-13 04:36:41 +02:00
Daniel Schaefer
2e6b8ae970 cassandra: Wrap new binaries (#59090)
The new releases of cassandra added some binaries that the install
script didn't wrap and thus were unusable.
2019-04-07 15:53:57 +02:00
xeji
1924e14d2e
Merge pull request #44615 from fuzzy-id/cassandra-version-bumps
Cassandra version bumps
2018-08-07 18:21:53 +02:00
Thomas Bach
31e11bdd60 cassandra: rewrote service from scratch
Adds a replacement for the previously broken
`services.database.cassandra` with tests for a multi-node setup.
2018-08-07 14:48:43 +00:00
Thomas Bach
2fb2c856a1 cassandra: 3.11.2 -> 3.11.3 2018-08-07 16:21:53 +02:00