nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-27 17:33:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
646,577 Commits 244 Branches 124 Tags 7.8 GiB
bd4241bcc8
Commit Graph

1922 Commits

Author SHA1 Message Date
Anthony Roussel
e5ae8202f7
tomcat{9,10}: add anthonyroussel to maintainers 2023-11-07 11:38:55 +01:00
Anthony Roussel
9489fc779e
axis2: add anthonyroussel to maintainers 2023-11-07 11:38:34 +01:00
Anthony Roussel
a4f37c8896
tomcat{9,10}: add passthru.tests.version 2023-11-07 11:35:45 +01:00
Anthony Roussel
0031faaeca
tomcat10: 10.0.27 -> 10.1.15 
https://tomcat.apache.org/tomcat-10.1-doc/changelog.html
 2023-11-07 11:35:45 +01:00
Anthony Roussel
3655470d18
tomcat9: 9.0.75 -> 9.0.82 
https://tomcat.apache.org/tomcat-9.0-doc/changelog.html
 2023-11-07 11:35:39 +01:00
Anthony Roussel
6b6bc55a6f
nixosTests.tomcat: test Apache Axis2 container integration 2023-11-07 11:35:38 +01:00
Anthony Roussel
789fe864db
axis2: add meta.changelog 2023-11-07 11:35:37 +01:00
Anthony Roussel
5b146274ae
axis2: 1.7.9 -> 1.8.2 
https://github.com/apache/axis-axis2-java-core/compare/v1.7.9...v1.8.2
 2023-11-07 11:35:37 +01:00
Yongun Seong
dda958b638
apt-cacher-ng: fix build for glibc >= 2.38 2023-11-07 18:42:23 +09:00
Weijia Wang
9627659c22 Merge branch 'master' into staging-next 2023-11-04 17:27:09 +01:00
R. Ryantm
09575c6c9c tengine: 3.0.0 -> 3.1.0 2023-11-04 08:54:34 -07:00
github-actions[bot]
677e25fcd2
Merge master into staging-next 2023-11-02 12:01:08 +00:00
R. Ryantm
686a5fca36 lighttpd: 1.4.72 -> 1.4.73 2023-11-02 07:13:40 +01:00
github-actions[bot]
81270bbdcf
Merge master into staging-next 2023-10-31 18:01:02 +00:00
Artturi
2d3a5c7ddb
Merge pull request #262254 from Artturin/nginxsandboxrem 2023-10-31 18:39:55 +02:00
github-actions[bot]
571f1df5e4
Merge master into staging-next 2023-10-29 12:00:57 +00:00
Uri Baghin
48da240fc5
Merge pull request #262238 from avdv/bazel-6.4 
bazel_6: 6.3.2 -> 6.4.0
 2023-10-29 17:39:50 +08:00
Claudio Bley
7fa6816c0c envoy: Update hash after bazel_6 upgrade 2023-10-29 08:30:50 +01:00
github-actions[bot]
52b6b90243
Merge master into staging-next 2023-10-28 18:00:57 +00:00
Martin Weinelt
e4f4ef7ce8
Merge pull request #263793 from fleaz/update_nginx-videothumb 
nginxModules.videothumb-extractor: unstable -> 1.0.0 and switch to ffmpeg-headless
 2023-10-28 17:46:01 +02:00
Martin Weinelt
7286245d4a
Merge pull request #263644 from fleaz/update_nginx-vod 
nginxModules.vod: 1.31 -> 1.32 and patch MAX_CLIPS
 2023-10-28 17:45:37 +02:00
Robert Scott
8beb9b5a60
Merge pull request #262736 from LeSuisse/jetty-12.0.2 
jetty: 12.0.1 -> 12.0.2
 2023-10-28 13:31:45 +01:00
fleaz
55e29313dc
nginxModules: Switch from ffmpeg to ffmpeg-headless 2023-10-27 16:05:30 +02:00
fleaz
87338f90d4
nginxModules.video-thumbextractor: 92b8064 -> 1.0.0 
Diff:
92b8064...e81f850
 2023-10-27 16:05:29 +02:00
fleaz
f2efd2e9bc
nginxModules.vod: Patch MAX_CLIPS variable 
The old limit was only 128 and this breaks some applications like e.g.
Frigate where playlists become bigger than that. According to upstream
you should just change the variable yourself if needed.

See this issue: https://github.com/kaltura/nginx-vod-module/issues/238
 2023-10-26 23:21:32 +02:00
fleaz
30c49cdd91
nginxModules.vod: 1.31 -> 1.32 
Changelog: https://github.com/kaltura/nginx-vod-module/compare/1.31...1.32
 2023-10-26 23:20:08 +02:00
Vladimír Čunát
d811555465
Merge branch 'staging' into staging-next 2023-10-26 10:36:50 +02:00
poscat
0c50d6ec92
nginxModules.{lua,lua-upstream}: switch to luajit_openresty 2023-10-26 10:12:37 +08:00
Robert Scott
28a94c48ed
Merge pull request #262718 from LeSuisse/trafficserver-9.2.3 
trafficserver: 9.2.2 -> 9.2.3
 2023-10-25 19:24:21 +01:00
Maximilian Bosch
4df6cc87b5
Merge pull request #263304 from trofi/nginxMainline-update 
nginxMainline: 1.25.2 -> 1.25.3
 2023-10-25 19:15:31 +02:00
Sergei Trofimovich
4ca546d75e nginxMainline: 1.25.2 -> 1.25.3 
Changes: https://nginx.org/en/CHANGES
 2023-10-25 09:58:14 +01:00
Mario Rodas
10fad9387a
Merge pull request #257336 from trofi/nginxModules.http_proxy_connect_module-update 
nginxModules.http_proxy_connect_module_v{24,25}: new modules for up t…
 2023-10-23 18:35:50 -05:00
github-actions[bot]
9f5438ccdf
Merge staging-next into staging 2023-10-23 06:01:38 +00:00
Artturin
d3234553aa nixosTests.nginx-sandbox: remove broken test and move the sandboxing test to the openresty test 
nginx lua needs resty

the enableSandbox option of nginx was removed in 535896671b

the test fails with

```
vm-test-run-nginx-sandbox> machine # [   47.753580] nginx[1142]: nginx: [alert] detected a LuaJIT version which is not OpenResty's; many optimizations will be disabled and performance will be compromised (see https://github.com/openresty/luajit2 for OpenResty's LuaJIT or, even better, consider using the OpenResty releases from https://openresty.org/en/download.html)
vm-test-run-nginx-sandbox> machine # [   47.756064] nginx[1142]: nginx: [alert] failed to load the 'resty.core' module (https://github.com/openresty/lua-resty-core); ensure you are using an OpenResty release from https://openresty.org/en/download.html (reason: module 'resty.core' not found:
vm-test-run-nginx-sandbox> machine # [   57.911766] systemd[1]: Failed to start Nginx Web Server.
```
 2023-10-23 06:09:45 +03:00
OTABI Tomoya
6c09e05bef
Merge pull request #262613 from r-ryantm/auto-update/unit 
unit: 1.31.0 -> 1.31.1
 2023-10-23 11:03:26 +09:00
Thomas Gerbet
1fd6d6120b jetty: 12.0.1 -> 12.0.2 
Fixes CVE-2023-44487.

https://github.com/jetty/jetty.project/releases/tag/jetty-12.0.2
 2023-10-22 14:33:45 +02:00
Thomas Gerbet
a37eccb3fe trafficserver: 9.2.2 -> 9.2.3 
Fixes CVE-2023-39456, CVE-2023-41752 and CVE-2023-44487.

Changelog:
https://raw.githubusercontent.com/apache/trafficserver/9.2.x/CHANGELOG-9.2.3
 2023-10-22 12:51:30 +02:00
github-actions[bot]
09fabcdc4e
Merge staging-next into staging 2023-10-22 00:03:08 +00:00
Ryan Lahfa
76d4d2e76b
Merge pull request #262329 from SuperSandro2000/nginx-zstd-0-1-0 2023-10-22 00:59:19 +01:00
R. Ryantm
17e227a87d unit: 1.31.0 -> 1.31.1 2023-10-21 21:21:57 +00:00
github-actions[bot]
f4afba2014
Merge staging-next into staging 2023-10-21 18:01:53 +00:00
Ryan Lahfa
c5442c247f
Merge pull request #257262 from dongcarl/2023-09-nginx-fixes 
nixos/nginx: Allow empty port for listen directive (for unix socket)
 2023-10-21 17:26:57 +01:00
R. Ryantm
faa428aa71 tomcat-native: 2.0.5 -> 2.0.6 2023-10-21 03:05:46 +00:00
github-actions[bot]
613d60266a
Merge staging-next into staging 2023-10-21 00:02:49 +00:00
Bjørn Forsman
57f0dd3a2f lighttpd: re-enable remaining disabled tests 
All tests work now.
 2023-10-20 23:45:29 +02:00
Bjørn Forsman
c531697bc3 lighttpd: 1.4.71 -> 1.4.72 
The patch to disable legacy crypt tests (which were broken for us) isn't
needed anymore, so remove it.
 2023-10-20 23:45:29 +02:00
Aaron Andersen
c0d5048961
Merge pull request #262075 from ivan/apachehttpd-2.4.58 
apacheHttpd: 2.4.57 -> 2.4.58
 2023-10-20 17:33:01 -04:00
Sandro Jäckel
479739b03e
nginxModules.zstd: 25d88c262be47462cf90015ee7ebf6317b6848f9 -> 0.1.0 2023-10-20 18:03:37 +02:00
github-actions[bot]
b0ec8bbe1d
Merge staging-next into staging 2023-10-20 12:01:55 +00:00
Artturi
9c30003e04
Merge pull request #258652 from trofi/nginx-install-manpages 2023-10-20 12:37:26 +03:00
Ivan Kozik
f2254da826 apacheHttpd: 2.4.57 -> 2.4.58 2023-10-19 14:11:56 +00:00
github-actions[bot]
97d0182583
Merge staging-next into staging 2023-10-17 06:01:51 +00:00
Stanisław Pitucha
b48bbeab52 go-camo: migrate to by-name 2023-10-17 14:56:01 +11:00
github-actions[bot]
fbd39f6b6b
Merge staging-next into staging 2023-10-14 06:01:29 +00:00
Luke Granger-Brown
732fd4e0dd envoy: 1.26.4 -> 1.27.1 2023-10-13 23:17:11 +00:00
github-actions[bot]
0cf0d9af7e
Merge staging-next into staging 2023-10-10 18:01:26 +00:00
R. Ryantm
7e549d52e4 jetty: 11.0.16 -> 12.0.1 2023-10-10 10:58:55 +00:00
Carl Dong
e5c2c71280 nixos/nginx: Allow empty port for listen directive 
When listening on unix sockets, it doesn't make sense to specify a port
for nginx's listen directive.

Since nginx defaults to port 80 when the port isn't specified (but the
address is), we can change the default for the option to null as well
without changing any behaviour.
 2023-10-09 21:16:03 -04:00
Sergei Trofimovich
c814bbda40 nginx: add missing nginx.8 manpage 
Without the change "man nginx" does not render any synopsis.

Closes: https://github.com/NixOS/nixpkgs/issues/258658
 2023-10-08 08:07:19 +01:00
github-actions[bot]
ebeb6fb7f6
Merge staging-next into staging 2023-10-06 18:01:42 +00:00
ajs124
0b48455b2d
Merge pull request #256103 from WilliButz/update/nginxModules.njs/0.8.1 
nginxModules.njs: 0.7.10 -> 0.8.1
 2023-10-06 14:01:50 +02:00
github-actions[bot]
7017e013bf
Merge staging-next into staging 2023-10-05 12:02:16 +00:00
Anderson Torres
492414af5f treewide: remove cstrahan from meta.maintainers - part 1 
All the packages here are now orphaned.
 2023-10-04 22:20:58 -03:00
Maximilian Bosch
8bc5104a6e
treewide: refactor .attrs.sh detection 
When specifying the `builder` attribute in `stdenv.mkDerivation`, this
will be effectively transformed into

    builtins.derivation {
      builder = stdenv.shell;
      args = [ "-e" builder ];
    }

This also means that `default-builder.sh` is never sourced and as a
result it's not guaranteed that `$NIX_ATTRS_SH_FILE` is set to a correct
location[1].

Also, we need to source `.attrs.sh` to source `$stdenv`. So, the
following is done now:

* If `$NIX_ATTRS_SH_FILE` points to a correct location, then use it.
  Directly using `.attrs.sh` is problematic for `nix-shell(1)` usage
  (see previous commit for more context), so prefer the environment
  variable if possible.

* Otherwise, if `.attrs.sh` exists, then use it. See [1] for when this
  can happen.

* If neither applies, it can be assumed that `__structuredAttrs` is
  turned off and thus nothing needs to be done.

[1] It's possible that it doesn't exist at all - in case of Nix 2.3 or
    it can point to a wrong location on older Nix versions with a bug in
    `__structuredAttrs`.
 2023-10-04 18:36:57 +02:00
Fabian Affolter
4984613adb
Merge pull request #251812 from LeSuisse/licenses-elv2 
lib/licenses: add Elastic License 2.0, drop Elastic License
 2023-10-02 22:11:16 +02:00
Mario Rodas
a26f11d236 dufs: install completions 2023-10-01 04:20:00 +00:00
R. Ryantm
ef3e6b6e87 tomcat-native: 1.2.31 -> 2.0.5 2023-09-28 21:35:37 +00:00
Sergei Trofimovich
c8a23dd807 nginxModules.http_proxy_connect_module_v{18,19}: drop old broken modules 
THe modules are failing assertions when are built against `nginx`
versions in `nixpkgs`.
 2023-09-27 18:56:06 +01:00
Kelton Bassingthwaite
33c7a78ce7
router: 1.19.0 -> 1.30.1 
router v1.19.0 fails to build on Rust 1.72^ (unstable is on 1.72.0).
See https://github.com/apollographql/router/issues/3684
 2023-09-26 19:58:21 -07:00
Fabián Heredia Montiel
85522a098a
Merge pull request #256954 from LeSuisse/jetty-11.0.16 
jetty: 11.0.15 -> 11.0.16
 2023-09-25 21:09:37 -06:00
Sergei Trofimovich
1b95937767 nginxModules.http_proxy_connect_module_v{24,25}: new modules for up to date nginx 2023-09-25 22:03:02 +01:00
Silvan Mosberger
390a4247e0
Merge pull request #255512 from nbraud/sha512-to-hash 
treewide: sha512 → hash
 2023-09-24 00:03:31 +02:00
Thomas Gerbet
b91d9a2f0b jetty: 11.0.15 -> 11.0.16 
Includes fixes for CVE-2023-40167, CVE-2023-36479, CVE-2023-41900 and GHSA-58qw-p7qm-5rvh.

Changelog:
https://github.com/eclipse/jetty.project/releases/tag/jetty-11.0.16
 2023-09-23 21:15:02 +02:00
nicoo
fab52fca51 treewide: sha512 → hash 2023-09-22 18:37:42 +02:00
Aaron Jheng
7735659333
treewide: use sri hash (#256481) 2023-09-21 16:23:40 +02:00
Weijia Wang
90f54ba99f
Merge pull request #255423 from r-ryantm/auto-update/unit 
unit: 1.30.0 -> 1.31.0
 2023-09-20 18:30:06 +02:00
Fabián Heredia Montiel
25cdde0e59
Merge pull request #255716 from risicle/ris-trafficserver-9.2.2 
trafficserver: 9.2.1 -> 9.2.2
 2023-09-19 15:32:04 -06:00
WilliButz
d49a4c10ce
nginxModules.njs: 0.7.10 -> 0.8.1 2023-09-19 14:37:19 +02:00
Morgan Helton
1547629c6e pomerium: 0.22.2 -> 0.23.0 2023-09-18 06:18:52 -05:00
Robert Scott
fa25e84147 trafficserver: 9.2.1 -> 9.2.2 2023-09-17 18:42:33 +01:00
R. Ryantm
ae5dcd6ce1 unit: 1.30.0 -> 1.31.0 2023-09-16 04:40:43 +00:00
Adam Stephens
05c19a34df
envoy: fix another hash invalidator in fetcher 2023-09-15 14:41:44 -04:00
Luke Granger-Brown
f278432412
Merge pull request #254750 from adamcstephens/envoy/update-hashes 
envoy: update broken deps hashes
 2023-09-13 16:06:09 +01:00
Fabián Heredia Montiel
ff323ed355 treewide: vendorSha256 → vendorHash 
via: `find pkgs/ -type f -exec sed -i 's/vendorSha256 = "sha256/vendorHash = "sha256/' {};`
 2023-09-13 01:03:44 -06:00
Adam Stephens
6df0facb7f
envoy: update broken deps hashes 2023-09-12 12:24:54 -04:00
Stig Palmquist
b90ab315c1 unit: remove withPerldevel option 2023-09-08 14:22:00 +00:00
Robert Scott
571ed5c7a1 envoy: 1.26.3 -> 1.26.4 2023-09-04 23:36:16 +01:00
Thomas Gerbet
e39d579918 lib/licenses: add Elastic License 2.0, drop Elastic License 
This license was introduced in the Elastic search repository by this
commit: a92a647b9f

It appears that all the the packages in nixpkgs using the Elastic License are using the v2.0.
 2023-08-27 18:29:26 +02:00
figsoda
86f63af30a dufs: 0.35.0 -> 0.36.0 
Diff: https://github.com/sigoden/dufs/compare/v0.35.0...v0.36.0

Changelog: https://github.com/sigoden/dufs/blob/v0.36.0/CHANGELOG.md
 2023-08-24 09:29:28 -04:00
Stéphan Kochen
2d25262a15 couchdb3: fix jiffy NIF on darwin 2023-08-21 19:56:42 +02:00
Franz Pletz
835975d37c
Merge pull request #249536 from Izorkin/update-nginx 
nginxMainline: 1.25.1 -> 1.25.2
 2023-08-20 00:38:59 +02:00
Uri Baghin
9eb0911040
Merge pull request #249613 from jacobfoard/bazel_6-6.3.2 
bazel_6: 6.2.0 -> 6.3.2
 2023-08-19 11:26:07 +10:00
Jacob Foard
2d9342b9be
fixup bazel_6 buildBazelPackage references 2023-08-18 11:07:52 -04:00
Izorkin
f4e49466ef
nginxMainline: 1.25.1 -> 1.25.2 2023-08-16 16:09:52 +03:00
figsoda
dd2ba7159e dufs: 0.34.2 -> 0.35.0 
Diff: https://github.com/sigoden/dufs/compare/v0.34.2...v0.35.0

Changelog: https://github.com/sigoden/dufs/blob/v0.35.0/CHANGELOG.md
 2023-08-14 19:50:51 -04:00
R. Ryantm
7ddf588700 go-camo: 2.4.3 -> 2.4.4 2023-08-10 01:39:01 +00:00
Vladimír Čunát
41c7605718
Merge #245935: staging-next 2023-07-28 2023-08-08 07:33:42 +02:00
squalus
d29b49f39b nginxModules.set-misc: 0.32 -> 0.33 2023-08-07 11:12:59 -07:00
Martin Weinelt
167f6dfee4
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/libraries/science/astronomy/cfitsio/default.nix
 2023-07-30 03:54:27 +02:00
Luke Granger-Brown
3731abdb8b
Merge pull request #246068 from LeSuisse/envoy-1.26.3 
envoy: 1.26.1 -> 1.26.3
 2023-07-29 23:31:11 +01:00
Thomas Gerbet
60d546a96d envoy: 1.26.1 -> 1.26.3 
Fixes CVE-2023-35945.

Changelog:
https://github.com/envoyproxy/envoy/releases/tag/v1.26.3
https://github.com/envoyproxy/envoy/releases/tag/v1.26.2
 2023-07-29 22:12:03 +02:00
h7x4
ecb40c69d8
nixos/nginx: sort test include order alphabetically 2023-07-28 20:30:43 +02:00
h7x4
25b7b82ee0
nixos/nginx: add test for status page 2023-07-28 20:29:09 +02:00
github-actions[bot]
824f21d748
Merge staging-next into staging 2023-07-27 18:01:53 +00:00
Janik
018e7bbe2c
Merge pull request #245119 from r-ryantm/auto-update/tengine 2023-07-27 16:34:13 +02:00
Martin Weinelt
fd5d0300b4
Merge pull request #241848 from stigtsp/perl/5.38.0 
[staging] perl: 5.36.0 -> 5.38.0
 2023-07-27 02:05:42 +02:00
R. Ryantm
29d916a0d0 tengine: 2.4.1 -> 3.0.0 2023-07-24 00:11:59 +00:00
Ryan Lahfa
bba6788b37
Merge pull request #244702 from RaitoBezarius/nginx-maintenance 2023-07-23 23:53:17 +02:00
Thomas Gerbet
5ef477010a trafficserver: 9.1.4 -> 9.2.1 
Fixes CVE-2022-47184, CVE-2023-30631 and CVE-2023-33933.

Changelogs:
https://raw.githubusercontent.com/apache/trafficserver/9.2.x/CHANGELOG-9.2.1
https://raw.githubusercontent.com/apache/trafficserver/9.2.x/CHANGELOG-9.2.0
 2023-07-22 12:12:16 +02:00
Raito Bezarius
6d563b70b4 nginx: remove unactive maintainers and add raitobezarius as a maintainer 
Removed maintainers which does not maintain NGINX anymore for the last year at least.
Added myself as I use it actively.
 2023-07-21 21:12:21 +02:00
Thomas Gerbet
abdd388fa8 rustls-ffi: 0.9.2 -> 0.10.0 
Changelog:
https://github.com/rustls/rustls-ffi/releases/tag/v0.10.0
 2023-07-13 22:39:54 +02:00
Janik
c3e258d519
Merge pull request #236171 from hummeltech/patch-1 2023-07-09 20:51:10 +02:00
Stig Palmquist
5173b569f5
unit: add perl538 as default, remove perl534 2023-07-06 14:14:30 +02:00
R. Ryantm
fd9f4d86fe tengine: 2.4.0 -> 2.4.1 2023-06-25 17:43:56 +00:00
R. Ryantm
9d228d71b5 dufs: 0.34.1 -> 0.34.2 2023-06-24 19:37:53 +00:00
Franz Pletz
6a4b949a95
nginxMainline: 1.25.0 -> 1.25.1 2023-06-21 13:47:28 +02:00
Hummeltech
a7fc0b6e70
mod_tile: testing enabled 
It looks like the commit used to build `mapnik` was just missing some additional variable definitions in `libmapnik.pc` which are relied upon by the commit used to build `mod_tile`
 2023-06-05 16:18:21 -07:00
R. Ryantm
45cb7359f8 dufs: 0.33.0 -> 0.34.1 2023-06-05 00:25:15 +00:00
R. Ryantm
1b4bcd4d8a jetty: 11.0.14 -> 11.0.15 2023-06-04 13:20:44 +00:00
Bjørn Forsman
14fdabbb7b lighttpd: 1.4.69 -> 1.4.71 
Changelogs:
https://www.lighttpd.net/2023/5/27/1.4.71/
https://www.lighttpd.net/2023/5/10/1.4.70/

Update the patch that disables legacy crypt tests, because it doesn't
apply anymore.
 2023-06-01 17:08:02 +02:00
Weijia Wang
99060dee6f
Merge pull request #234552 from r-ryantm/auto-update/router 
router: 1.18.1 -> 1.19.0
 2023-05-30 12:22:04 +03:00
R. Ryantm
c9b945e0f8 webhook: 2.8.0 -> 2.8.1 2023-05-30 02:04:29 +00:00
Sandro Jäckel
819289b1e5
nginxModules.zstd: add SuperSandro2000 as maintainer 2023-05-29 20:41:08 +02:00
Sandro Jäckel
0000007dcc
nginxModules.vts: 0.2.1 -> 0.2.2, add SuperSandro2000 as maintainer 2023-05-29 20:40:50 +02:00
R. Ryantm
cc62398c92 pomerium: 0.22.1 -> 0.22.2 2023-05-29 08:39:07 +00:00
R. Ryantm
6a35ff3d8a router: 1.18.1 -> 1.19.0 2023-05-28 03:48:55 +00:00
Raito Bezarius
69bb0f94de nixos/nginx: first-class PROXY protocol support 
PROXY protocol is a convenient way to carry information about the
originating address/port of a TCP connection across multiple layers of
proxies/NAT, etc.

Currently, it is possible to make use of it in NGINX's NixOS module, but
is painful when we want to enable it "globally".
Technically, this is achieved by reworking the defaultListen options and
the objective is to have a coherent way to specify default listeners in
the current API design.
See `mkDefaultListenVhost` and `defaultListen` for the details.

It adds a safeguard against running a NGINX with no HTTP listeners (e.g.
only PROXY listeners) while asking for ACME certificates over HTTP-01.

An interesting usecase of PROXY protocol is to enable seamless IPv4 to
IPv6 proxy with origin IPv4 address for IPv6-only NGINX servers, it is
demonstrated how to achieve this in the tests, using sniproxy.

Finally, the tests covers:

- NGINX `defaultListen` mechanisms are not broken by these changes;
- NGINX PROXY protocol listeners are working in a final usecase
  (sniproxy);
- uses snakeoil TLS certs from ACME setup with wildcard certificates;

In the future, it is desirable to spoof-attack NGINX in this scenario to
ascertain that `set_real_ip_from` and all the layers are working as
intended and preventing any user from setting their origin IP address to
any arbitrary, opening up the NixOS module to bad™ vulnerabilities.

For now, it is quite hard to achieve while being minimalistic about the
tests dependencies.
 2023-05-26 19:48:26 +02:00
figsoda
22ec7aebbc treewide/servers: use top-level fetchPypi 2023-05-25 12:06:38 -04:00
Weijia Wang
7ef1ddae9e
Merge pull request #233854 from chkno/hook-spelling 
Fix phase name typos in 5 packages' runHook invocations
 2023-05-24 23:40:57 +03:00
Sandro
c898813431
Merge pull request #233029 from jlamur/nginx-spnego-build-fix 
nginx: fix build of module spnego-http-auth
 2023-05-24 21:54:24 +02:00
Scott Worley
f34465fea5 pomerium: Spell "postBuild" correctly 2023-05-24 09:21:51 -07:00
ajs124
27d53b81cc nginxQuic: share src and version with nginxMainline 
quic support was merged
still a separate package, because it uses quictls
and sets configureFlags
 2023-05-23 18:37:54 +02:00
ajs124
91ecb7d7ff nginxMainline: 1.24.0 -> 1.25.0 2023-05-23 18:28:04 +02:00
Martin Weinelt
9d0bbc2c12
nginxModules.secure-token: 2020-08-28 -> 1.5 2023-05-22 16:29:55 +02:00
Martin Weinelt
2c1cc78307
nginxModules.vod: 1.29 -> 1.31 2023-05-22 16:29:55 +02:00
Robert Scott
6ace7552e3
Merge pull request #233002 from LeSuisse/tomcat9-9.0.75 
tomcat9: 9.0.68 -> 9.0.75
 2023-05-20 19:07:43 +01:00
Jules Lamur
dcb2cc849e
nginx: fix build of module spnego-http-auth 2023-05-20 16:12:04 +02:00
Robert Scott
ca7f83f6df tomcat*: add sourceProvenance binaryBytecode 2023-05-20 13:03:13 +01:00
Thomas Gerbet
0749e39f64 tomcat9: 9.0.68 -> 9.0.75 
Fixes CVE-2022-45143 and CVE-2023-28708.

https://tomcat.apache.org/tomcat-9.0-doc/changelog.html
 2023-05-20 13:09:20 +02:00
R. Ryantm
17db7c08d8 pomerium: 0.21.3 -> 0.22.1 2023-05-19 10:22:11 +00:00
R. Ryantm
b166262b1b router: 1.18.0 -> 1.18.1 2023-05-17 00:05:19 +00:00
Izorkin
e5aa2e3b30
unit: add ruby 3.2 2023-05-13 16:55:50 +03:00
Izorkin
ba455450b1
unit: remove ruby_2_7 2023-05-13 16:55:50 +03:00
Izorkin
baa5550162
unit: 1.29.1 -> 1.30.0 2023-05-13 16:55:47 +03:00
divanorama
4d494b82de
Update pkgs/servers/http/envoy/default.nix 2023-05-12 22:04:55 +02:00
Dmitry Ivankov
5a14400712 bazel_6: 6.1.2 -> 6.2.0 
https://github.com/bazelbuild/bazel/releases/tag/6.2.0
 2023-05-12 15:33:48 +02:00
Luke Granger-Brown
23cd27508f envoy: 1.25.1 -> 1.26.1 2023-05-12 07:54:56 +00:00
Martin Weinelt
4579dfb9ce
Merge pull request #231193 from mweinelt/couchdb-3.3.2 
couchdb3: 3.3.1 -> 3.3.2
 2023-05-11 16:03:28 +02:00
Martin Weinelt
34ba6c7e16
couchdb3: 3.3.1 -> 3.3.2 
https://docs.couchdb.org/en/latest/whatsnew/3.3.html#version-3-3-2
https://docs.couchdb.org/en/latest/cve/2023-26268.html

Fixes: CVE-2023-26268
 2023-05-11 02:41:41 +02:00
Dmitry Ivankov
e0d1e77c23 bazel_5: 5.4.0->5.4.1 
Also update the updater script.

https://github.com/bazelbuild/bazel/releases/tag/5.4.1

- [X] recalculate fetchAttrs digest for packages built with bazel_5
 2023-05-10 16:09:19 +02:00
Sandro
9757bdca3b
Merge pull request #229911 from bbigras/router 
router: 1.15.1 -> 1.18.0
 2023-05-07 15:42:40 +02:00
Bruno Bigras
5cee3aa13f router: 1.15.1 -> 1.18.0 2023-05-07 01:59:17 -04:00
Thomas Gerbet
62b0017f86 envoy: mark with knownVulnerabilities 
Attempts to update `envoy` have not been successful.
Nobody with enough Bazel skills has step up to untangle
the build issues with the latest version.
 2023-05-04 23:10:57 +02:00
zowoq
9f8b8befcf nginxModules.zstd: add missing meta 2023-05-04 20:21:37 +10:00
Sandro
7a4d8131fa
Merge pull request #208161 from SuperSandro2000/nginx-modules-meta 
nginx: add meta section to modules
 2023-05-04 00:59:20 +02:00
Alyssa Ross
2d8c06b637 bozohttpd: 20210227 -> 20220517 2023-05-03 09:38:12 +00:00
R. Ryantm
342ff3209c apacheHttpd: 2.4.56 -> 2.4.57 2023-04-29 07:43:39 +00:00
Sandro Jäckel
50b8c237b7
nginx: move aliases behind config.allowAliases 2023-04-28 21:38:43 +02:00
Sandro Jäckel
0d58522055
nginx: add meta section to modules 
Also resolve one github redirect.
 2023-04-28 21:38:43 +02:00
R. Ryantm
b94c7f3acc jetty: 11.0.13 -> 11.0.14 2023-04-27 07:14:15 +00:00
Weijia Wang
da3414f938
Merge pull request #227314 from r-ryantm/auto-update/apacheHttpdPackages.mod_auth_mellon 
apacheHttpdPackages.mod_auth_mellon: 0.18.0 -> 0.18.1
 2023-04-22 22:42:05 +03:00
Ryan Lahfa
1bcb219bd5
Merge pull request #227026 from LeSuisse/unit-drop-php80 
unit: drop PHP 8.0 support, add PHP 8.2 support
 2023-04-21 15:21:21 +02:00
R. Ryantm
d0070ed03d apacheHttpdPackages.mod_auth_mellon: 0.18.0 -> 0.18.1 2023-04-20 18:47:44 +00:00
Thomas Gerbet
9817e6af85 unit: add PHP 8.2 support 2023-04-19 10:36:33 +02:00
Thomas Gerbet
4855a6f817 unit: drop PHP 8.0 support 
PHP 8.0 will be end-of-life before the end of life of the next stable
version of NixOS. Related to #224505.
 2023-04-19 10:24:02 +02:00
Bruno Bigras
18a0deb942 router: 1.15.0 -> 1.15.1 2023-04-18 16:14:50 -04:00
Bruno Bigras
2f81686ec8 router: init at 1.15.0 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2023-04-17 20:39:47 -04:00
ajs124
68c39e6f41 nginxMainline: 1.23.4 -> 1.24.0 2023-04-11 22:12:12 +02:00
ajs124
58cb284c0e nginxStable: 1.22.1 -> 1.24.0 2023-04-11 22:11:07 +02:00
Franz Pletz
a50962e4c4
Merge pull request #224458 from helsinki-systems/upd/nginx 
nginxMainline: 1.23.3 -> 1.23.4
 2023-04-08 11:49:55 +02:00
Uri Baghin
f8ee061247 buildBazelPackage: fix difference between linux and darwin deps 2023-04-06 11:42:46 +10:00
Uri Baghin
440b4de588 buildBazelPackage: support multiple targets 2023-04-05 12:59:54 +10:00
ajs124
8be794b197 nginx: sha256 -> hash 2023-04-03 12:40:49 +02:00
ajs124
9554582b34 nginxMainline: 1.23.3 -> 1.23.4 2023-04-03 12:29:54 +02:00
Izorkin
9f2a1d98aa
nginxQuic: 3be953161026 -> 0af598651e33 2023-04-01 13:09:48 +03:00
Sandro
5332b2b4d3
Merge pull request #213168 from LeSuisse/rustls-ffi-init 
rustls-ffi: init at 0.9.2 and make possible to build Apache mod_tls with it
 2023-03-31 11:25:24 +02:00
R. Ryantm
aa6fd7cb06 pomerium: 0.21.2 -> 0.21.3 2023-03-29 02:57:27 +00:00
Martin Weinelt
e911a4d6cd
Merge pull request #223055 from LeSuisse/apache-2.4.56 
apacheHttpd: 2.4.55 -> 2.4.56
 2023-03-29 01:14:27 +02:00
Thomas Gerbet
ce5b2e3773 apacheHttpd: add option to build experimental mod_tls 
https://httpd.apache.org/docs/2.4/mod/mod_tls.html

Note: the attribute has been named `modTlsSupport` instead of
`tlsSupport` to try to limit the confusion with the existing
`sslSupport` attribute.
 2023-03-28 18:00:35 +02:00
Martin Weinelt
8c4c762da2
lighttpd: Disable tests for DES and MD5 
These are legacy ciphers, which we don't support any longer.
 2023-03-26 15:58:08 +02:00
Thomas Gerbet
5475dfc18d apacheHttpd: 2.4.55 -> 2.4.56 
Fixes CVE-2023-27522 and CVE-2023-25690.

https://downloads.apache.org/httpd/CHANGES_2.4.56
 2023-03-25 11:55:59 +01:00
Weijia Wang
dedf17650f
Merge pull request #222562 from r-ryantm/auto-update/dufs 
dufs: 0.32.0 -> 0.33.0
 2023-03-24 21:34:49 +02:00
Sandro
995f9d1c95
Merge pull request #213874 from SuperSandro2000/nginx-zstd 
nixos/nginx: add recommendedZstdSettings
 2023-03-23 14:11:35 +01:00
R. Ryantm
2a345b3b6d dufs: 0.32.0 -> 0.33.0 2023-03-22 16:35:10 +00:00
Morgan Helton
c1bfba963d pomerium: 0.20.0 -> 0.21.2 2023-03-18 06:49:42 -05:00
Morgan Helton
d76601d559 pomerium: add update script 2023-03-18 06:48:41 -05:00
Sergei Trofimovich
fce04e0bca
Merge pull request #221357 from tfc/mod_tile-cmake 
apacheHttpdPackages.mod_tile: Update and use cmake to build mod_tile.so and renderd
 2023-03-16 15:50:26 +00:00
R. Ryantm
95cb05fe7f lighttpd: 1.4.68 -> 1.4.69 2023-03-16 14:11:07 +01:00
Jacek Galowicz
40fa259b7e apacheHttpdPackages.mod_tile: Update and use cmake to build mod_tile.so and renderd 2023-03-16 10:40:43 +01:00
Yureka
7efee351ec
Merge branch 'gitlab-pages' of github.com:talyz/nixpkgs into HEAD 2023-03-10 14:36:25 +01:00
R. Ryantm
f5fe3e69a1 unit: 1.29.0 -> 1.29.1 2023-03-02 16:01:31 +00:00
Weijia Wang
b454ccfa61
Merge pull request #217973 from r-ryantm/auto-update/dufs 
dufs: 0.31.0 -> 0.32.0
 2023-02-27 21:57:11 +02:00
Weijia Wang
3710ff90fd
Merge pull request #212196 from r-ryantm/auto-update/gitlab-pages 
gitlab-pages: 1.62.0 -> 15.7.3
 2023-02-26 00:13:59 +02:00
R. Ryantm
02b0106dd6 dufs: 0.31.0 -> 0.32.0 2023-02-24 05:55:49 +00:00
Artturin
f9fdf2d402 treewide: move NIX_CFLAGS_COMPILE to the env attrset 
with structuredAttrs lists will be bash arrays which cannot be exported
which will be a issue with some patches and some wrappers like cc-wrapper

this makes it clearer that NIX_CFLAGS_COMPILE must be a string as lists
in env cause a eval failure
 2023-02-22 21:23:04 +02:00
Artturin
6f6cc4a22d treewide: use toString on list NIX_CFLAGS_COMPILE 
with structuredAttrs lists will be bash arrays which cannot be exported
which will be a issue with some patches and some wrappers like cc-wrapper
 2023-02-22 21:23:04 +02:00
Sandro Jäckel
e31461fff1
nginx.modules.zstd: init 2023-02-22 13:59:55 +01:00
R. Ryantm
2a54120d5a go-camo: 2.4.2 -> 2.4.3 2023-02-21 03:48:05 +00:00
Mario Rodas
aad47a0188
Merge pull request #215914 from marsam/update-tengine 
tengine: 2.3.4 -> 2.4.0
 2023-02-19 18:37:05 -05:00
Weijia Wang
e446e05077
Merge pull request #217094 from r-ryantm/auto-update/go-camo 
go-camo: 2.4.1 -> 2.4.2
 2023-02-20 00:30:51 +02:00
Luke Granger-Brown
22d9547ce3 envoy: 1.23.3 -> 1.25.1 2023-02-19 18:56:55 +00:00
R. Ryantm
17ce1cc30c go-camo: 2.4.1 -> 2.4.2 2023-02-19 06:09:42 +00:00
Sandro
a68a88698f
Merge pull request #215150 from SuperSandro2000/nginx-with-lib 
nginx: remove with lib over entire file
 2023-02-15 16:22:35 +01:00
Sandro
14b15a92dc
Merge pull request #206368 from hmenke/njs 2023-02-13 00:10:02 +01:00
Mario Rodas
37e3c5d085 tengine: 2.3.4 -> 2.4.0 
https://github.com/alibaba/tengine/releases/tag/2.4.0
 2023-02-11 04:20:00 +00:00
Henri Menke
2fb3714761 nginxModules.njs: 0.7.9 -> 0.7.10 2023-02-10 09:57:49 +01:00
Henri Menke
160472e179 nginxModules.njs: 0.7.8 -> 0.7.9 2023-02-10 09:52:56 +01:00
Andreas Stührk
304c84ff10 envoy: build with noexecstack 2023-02-09 12:07:03 +01:00
Sandro Jäckel
79a301305b
nginx: remove with lib over entire file 2023-02-07 17:25:15 +01:00
Aaron Jheng
fa62da13c2
dave: use buildGoModule 2023-01-27 01:45:35 +00:00
Thomas Gerbet
3470711e51 apacheHttpd: 2.4.54 -> 2.4.55 
Fixes CVE-2022-37436, CVE-2022-36766 and CVE-2006-20001

https://downloads.apache.org/httpd/CHANGES_2.4.55
 2023-01-24 23:39:56 +01:00
R. Ryantm
525e514bfb gitlab-pages: 1.62.0 -> 15.7.3 2023-01-23 01:26:13 +00:00
Weijia Wang
218c4c526e
Merge pull request #212002 from mothsART/feature/replace_http_by_https 
treewide: replace http by https when https is a permanent redirection
 2023-01-22 03:26:02 +01:00
Ferry Jérémie
65d7e87fdb treewide: replace http by https when https is a permanent redirection 2023-01-22 02:46:49 +01:00
Guillaume Girol
33afbf39f6 treewide: switch to nativeCheckInputs 
checkInputs used to be added to nativeBuildInputs. Now we have
nativeCheckInputs to do that instead. Doing this treewide change allows
to keep hashes identical to before the introduction of
nativeCheckInputs.
 2023-01-21 12:00:00 +00:00
superherointj
c9e983314c couchdb: 3.2.2 -> 3.3.1 2023-01-16 14:46:32 -03:00
Martin Weinelt
5342b695b1 Merge remote-tracking branch 'origin/master' into staging-next 2023-01-12 23:07:01 +01:00
Uri Baghin
5fe2aa39de
envoy: fix deps hashes 2023-01-12 11:15:49 +11:00
Martin Weinelt
c1e6c6af69 Merge remote-tracking branch 'origin/master' into staging-next 2023-01-11 03:51:33 +01:00
Dmitry Ivankov
c8bc2f2c0d bazel_5: 5.3.2 -> 5.4.0 2023-01-10 16:04:00 +01:00
Uri Baghin
b2d9a04cfd
Merge pull request #200033 from divanorama/bazel_5.3.2_2 
bazel_5: 5.2.0 -> 5.3.2
 2023-01-10 16:40:17 +11:00
talyz
e7383a32e3
gitlab-pages: Maintain together with the rest of GitLab + add to... 
...update.py
 2023-01-09 18:08:25 +01:00
Martin Weinelt
4d65509504 Merge remote-tracking branch 'origin/master' into staging-next 2023-01-08 16:34:30 +01:00
R. Ryantm
356f88f801 lighttpd: 1.4.67 -> 1.4.68 2023-01-08 15:09:15 +01:00
github-actions[bot]
60c812cecd
Merge master into staging-next 2023-01-06 12:01:11 +00:00
MayNiklas
3f4bbaee84 nginxModules.geoip2: 3.3 -> 3.4 2023-01-06 11:11:30 +01:00
github-actions[bot]
d8b859a780
Merge staging-next into staging 2023-01-02 18:01:43 +00:00
R. Ryantm
501848c755 unit: 1.28.0 -> 1.29.0 2023-01-02 23:30:18 +08:00
R. Ryantm
409c646eeb jetty: 11.0.12 -> 11.0.13 2023-01-02 20:05:06 +08:00
Jan Tojnar
5810109b42 Merge branch 'staging-next' into staging 
- readline6 attribute removed from all-packages.nix in d879125d61
- readline attribute was bumped to readline82 in 50adabdd60
 2023-01-02 03:04:32 +01:00
figsoda
3485460c0e
Merge pull request #206203 from holymonson/dufs 
dufs: skip checkPhase on darwin
 2023-01-01 10:05:46 -05:00
Ryan Lahfa
06542b21a0
Merge pull request #205636 from LoveIsGrief/webhook-module 
nixos/webhook: add support for a webhook service option
 2022-12-31 22:31:38 +01:00
Izorkin
f3e20dbfb0
nginxModules.brotli: unstable-2020-04-23 -> unstable-2022-04-29 2022-12-29 18:14:29 +03:00
Lucas Franceschino
e8e932bc80
nixos/webhook: init 2022-12-29 01:24:46 +01:00
github-actions[bot]
aaaeebad7a
Merge staging-next into staging 2022-12-28 18:01:50 +00:00
Sergei Trofimovich
092d57c076 Merge remote-tracking branch 'origin/staging-next' into staging 
Conflicts:
    pkgs/development/tools/language-servers/ansible-language-server/default.nix
 2022-12-28 09:35:37 +00:00
Thomas Gerbet
ede90bb8e1 trafficserver: 9.1.3 -> 9.1.4 
Fixes CVE-2022-32749 and CVE-2022-40743.

https://raw.githubusercontent.com/apache/trafficserver/9.1.x/CHANGELOG-9.1.4
 2022-12-27 21:15:43 +01:00
Sandro
83d9cef104
Merge pull request #206814 from SuperSandro2000/nginxModules 2022-12-25 20:08:14 +01:00
Sandro
58abb21bbe
nginxModules.lua: replace all occurences 
Co-authored-by: Naïm Favier <n@monade.li>
 2022-12-25 20:08:01 +01:00
github-actions[bot]
583c7499e5
Merge staging-next into staging 2022-12-25 18:01:38 +00:00
Dmitry Ivankov
9a82a9b524 bazel: 5.2.0 -> 5.3.2 
https://blog.bazel.build/2022/08/23/bazel-5.3.html

to supersede https://github.com/NixOS/nixpkgs/pull/187943

re-reverts https://github.com/NixOS/nixpkgs/pull/199458 with more hash updates
 2022-12-25 16:47:03 +01:00
Jan Tojnar
72c37eddec Merge branch 'staging-next' into staging 2022-12-25 01:30:47 +01:00
Thiago Kenji Okada
b8230ffa2e mod_wsgi3: refactor derivation 2022-12-24 11:09:19 +00:00
Thiago Kenji Okada
48ba7f97df mod_python: 3.5.0 -> unstable-2022-10-18 2022-12-23 22:28:11 +00:00
Ryan Lahfa
0ed43cb857
Merge pull request #201789 from RaitoBezarius/nginx-with-slice 
nginx: expose ngx_http_slice_module through "withSlice"
 2022-12-23 00:47:30 +01:00
Sandro
90cf235d3b
Merge pull request #206811 from SuperSandro2000/openresty 2022-12-22 03:08:45 +01:00
Peter Woodman
44b25a639f envoy: 1.23.1 -> 1.23.3 2022-12-20 15:00:02 -05:00
Sandro Jäckel
0e25cc73c8
nginxModules.lua: 0.10.15 -> 0.10.22 2022-12-19 08:46:48 +01:00
Sandro Jäckel
c2b2f29d2b
nginxModules.pagespeed: cleanup 2022-12-19 08:46:11 +01:00
Sandro Jäckel
a7f34992d5
nginxModules: make single packages overridable 2022-12-19 08:45:48 +01:00