alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
400640 commits 217 branches 121 tags 4.5 GiB
Commit graph

135 commits

Author SHA1 Message Date
R. Ryantm 79d65a8851 bind: 9.18.4 -> 9.18.5 2022-07-30 14:30:51 +00:00
Arnout Engelen c52f737f27
Merge pull request #173904 from risicle/ris-bind-extra-passthru-tests 
bind: add some more nixosTests to `passthru.tests`
 2022-07-29 16:58:09 +02:00
github-actions[bot] 86c34bf774
Merge master into staging-next 2022-06-27 12:01:26 +00:00
Robert Schütz 2847e6e691 bind: 9.18.3 -> 9.18.4 
https://downloads.isc.org/isc/bind9/9.18.4/doc/arm/html/notes.html
 2022-06-27 04:45:49 +00:00
ajs124 6a803b01ae bind: remove broken configure flags 
configure: WARNING: unrecognized options: --without-atf, --without-docbook-xsl, --without-idn, --without-idnlib, --with-randomdev, --with-ecdsa, --with-gost, --without-eddsa, --with-aes, --with-libcap
 2022-05-30 15:32:17 +02:00
Robert Scott 2830a7976f bind: add some more nixosTests to passthru.tests 2022-05-21 15:43:47 +01:00
Martin Weinelt f33b07e728
bind: 9.18.1 -> 9.18.3 
> An assertion failure can be triggered if a TLS connection to a
> configured http TLS listener with a defined endpoint is destroyed too
> early.

https://kb.isc.org/v1/docs/cve-2022-1183

Fixes: CVE-2022-1183
 2022-05-20 01:20:16 +02:00
7c6f434c 8188f10752
Merge pull request #166430 from alyssais/openssl-static-retry 
treewide: use lib.getLib for OpenSSL libraries
 2022-04-02 12:59:55 +00:00
Alyssa Ross fd78240ac8
treewide: use lib.getLib for OpenSSL libraries 
At some point, I'd like to make another attempt at
71f1f4884b ("openssl: stop static binaries referencing libs"), which
was reverted in 195c7da07d.  One problem with my previous attempt is
that I moved OpenSSL's libraries to a lib output, but many dependent
packages were hardcoding the out output as the location of the
libraries.  This patch fixes every such case I could find in the tree.
It won't have any effect immediately, but will mean these packages
will automatically use an OpenSSL lib output if it is reintroduced in
future.

This patch should cause very few rebuilds, because it shouldn't make
any change at all to most packages I'm touching.  The few rebuilds
that are introduced come from when I've changed a package builder not
to use variable names like openssl.out in scripts / substitution
patterns, which would be confusing since they don't hardcode the
output any more.

I started by making the following global replacements:

    ${pkgs.openssl.out}/lib -> ${lib.getLib pkgs.openssl}/lib
    ${openssl.out}/lib -> ${lib.getLib openssl}/lib

Then I removed the ".out" suffix when part of the argument to
lib.makeLibraryPath, since that function uses lib.getLib internally.

Then I fixed up cases where openssl was part of the -L flag to the
compiler/linker, since that unambigously is referring to libraries.

Then I manually investigated and fixed the following packages:

 - pycurl
 - citrix-workspace
 - ppp
 - wraith
 - unbound
 - gambit
 - acl2

I'm reasonably confindent in my fixes for all of them.

For acl2, since the openssl library paths are manually provided above
anyway, I don't think openssl is required separately as a build input
at all.  Removing it doesn't make a difference to the output size, the
file list, or the closure.

I've tested evaluation with the OfBorg meta checks, to protect against
introducing evaluation failures.
 2022-03-30 15:10:00 +00:00
Sandro b53ee0c6eb
bind: add meta.changelog 2022-03-27 17:48:45 +02:00
Martin Weinelt 8c2ee334e5
bind: 9.18.0 -> 9.18.1 
https://downloads.isc.org/isc/bind9/9.18.1/RELEASE-NOTES-bind-9.18.1.html

Fixes: CVE-2021-25220, CVE-2022-0396, CVE-2022-0635, CVE-2022-0667
 2022-03-17 13:16:02 +01:00
Luflosi 65b2a74267
bind: 9.16.25 -> 9.18.0 (#161427) 2022-03-07 12:54:11 +01:00
Thomas Gerbet 4cfcbac24a bind: 9.16.16 -> 9.16.25 
Fixes CVE-2021-25219.
https://downloads.isc.org/isc/bind9/9.16.25/doc/arm/html/notes.html
 2022-01-28 13:28:20 +01:00
illustris 185e6a477a sssd: 1.16.5 -> 2.6.0, fix broken build 2021-10-30 09:48:28 -07:00
Peter Simons 476635afe1 Drop myself from meta.maintainers for most packages. 
I'd like to reduce the number of Github notifications and
review requests I receive.
 2021-10-14 11:01:27 +02:00
R. RyanTM d0335f16b5 bind: 9.16.15 -> 9.16.16 2021-05-20 10:21:52 +00:00
Martin Weinelt 84b6596098
bind: 9.16.13 -> 9.16.15 
https://kb.isc.org/docs/cve-2021-25214

https://kb.isc.org/docs/cve-2021-25215

https://kb.isc.org/docs/cve-2021-25216

Fixes: CVE-2021-25214, CVE-2021-25215, CVE-2021-25216
 2021-04-29 03:39:40 +02:00
R. RyanTM 602499378d bind: 9.16.12 -> 9.16.13 2021-03-20 01:51:13 +00:00
R. RyanTM 9b2e8cac52 bind: 9.16.11 -> 9.16.12 2021-02-22 02:17:24 -05:00
R. RyanTM 5854a34ede bind: 9.16.10 -> 9.16.11 2021-01-28 10:07:22 -05:00
Profpatsch 4a7f99d55d treewide: with stdenv.lib; in meta -> with lib; 
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
 2021-01-11 10:38:22 +01:00
Tim Steinbach 87e7d8b371
bind: 9.16.8 -> 9.16.10 2020-12-23 10:15:35 -05:00
Ben Wolsieffer 82a9f2331c bind: fix cross-compilation 
Upstream accidently broke cross-compilation. It has been fixed but not released
yet, so we temporarily add the patch here.
 2020-11-19 21:49:19 +01:00
Pierre Bourdon 02796d77f8
bind: 9.16.7 -> 9.16.8 
https://bind9.readthedocs.io/en/v9_16_8/notes.html#notes-for-bind-9-16-8
 2020-10-27 08:48:19 +01:00
Pierre Bourdon 2a4e6a93b9
bind: add nixosTests.bind to passthru.tests 2020-09-24 18:23:30 +02:00
Pierre Bourdon c27c9bd380
bind: 9.14.12 -> 9.16.7 2020-09-24 18:10:16 +02:00
Justin Humm 6cdbb1fb1f
bind: set BUILD_CC for cross compilation 
This is due to a hint by @Ericson2314 in
https://github.com/NixOS/nixpkgs/pull/86166#issuecomment-633153996
 2020-06-15 21:03:03 +02:00
Vladimír Čunát 13c485d63d
bind: 9.14.11 -> 9.14.12 (security) 
https://www.isc.org/blogs/bind9-vulnerabilities-2020-05/
$ nix build -f nixos/release.nix tests.bind.x86_64-linux
 2020-05-19 11:21:25 +02:00
Michael Reilly 84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
Vladimír Čunát 47f61c9d7f
bind: 9.14.10 -> 9.14.11 (small bugfix) 
I see just a single small bugfix in the news:
https://downloads.isc.org/isc/bind9/9.14.11/RELEASE-NOTES-bind-9.14.11.html
 2020-03-15 09:15:41 +01:00
R. RyanTM 0c59818ce7 bind: 9.14.9 -> 9.14.10 2020-01-26 15:58:22 +00:00
R. RyanTM 603e3b1345 bind: 9.14.8 -> 9.14.9 2019-12-22 20:05:23 -08:00
R. RyanTM b470220a0b bind: 9.14.7 -> 9.14.8 2019-11-25 00:18:59 -08:00
R. RyanTM 0060782d8e bind: 9.14.6 -> 9.14.7 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/bind/versions
 2019-10-20 21:13:12 -07:00
Kai Wohlfahrt 8a293b42de dnsutils: remove obsolete config flag 2019-10-16 13:48:51 +01:00
Kai Wohlfahrt 39afb94585 dnsutils: add delv tool 
delv is provided as a replacement for dig with better DNSSEC support.
 2019-10-16 13:40:44 +01:00
Will Dietz 88aaa57296
bind: 9.14.4 -> 9.14.6 
9.14.5: https://gitlab.isc.org/isc-projects/bind9/blob/v9_14_5/CHANGES
9.14.6: https://gitlab.isc.org/isc-projects/bind9/blob/v9_14/CHANGES

9.14.6 above links to the 9.14 branch CHANGES, no tag yet.
ISC's website has 9.14.6, which is the authoritative source.
 2019-09-18 20:44:18 -05:00
Vladimír Čunát 2e6bf42a22
Merge branch 'master' into staging-next 
There ver very many conflicts, basically all due to
name -> pname+version.  Fortunately, almost everything was auto-resolved
by kdiff3, and for now I just fixed up a couple evaluation problems,
as verified by the tarball job.  There might be some fallback to these
conflicts, but I believe it should be minimal.

Hydra nixpkgs: ?compare=1538299
 2019-08-24 08:55:37 +02:00
Robin Gloster 4e60b0efae
treewide: update globin's maintained drvs 2019-08-20 19:36:05 +02:00
volth c814d72b51 treewide: name -> pname 2019-08-17 10:54:38 +00:00
R. RyanTM dc55912d73 bind: 9.14.3 -> 9.14.4 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/bind/versions
 2019-08-03 14:35:28 -07:00
Alyssa Ross 5284663c50
bind: 9.14.2 -> 9.14.3 
CVE-2019-6471
 2019-06-20 17:44:06 +00:00
Vladimír Čunát a1bb64e792
Merge #62873: bind: fix build on some ARMs 2019-06-09 10:02:10 +02:00
Vladimír Čunát c5c366156c
bind: drop a darwin-specific patch (#62882) 
The patch didn't apply since 9.12 -> 9.14 (26026c3e1a).
I'll hope it's not needed anymore (and let Borg verify that).
It was reportedly just a configure-time error: e4602677.
 2019-06-09 09:44:00 +02:00
Ben Wolsieffer b473f17e40 bind: fix build on armv6l 2019-06-08 19:02:43 -04:00
Will Dietz ee4fc39aa7
bind: 9.12.4-P1 -> 9.14.2 
9.12 is EOL as of May 2019.

9.14.2 release notes (which appear to extend those for 9.14.1):

https://ftp.isc.org/isc/bind9/9.14.2/RELEASE-NOTES-bind-9.14.2.html

Please check the security fixes and prioritize this as appropriate.
 2019-05-17 03:36:59 -05:00
Andreas Rammhold 37dd347cd3
bind: apply atomics to refcount patch 
Upstream added a commit [1] right after the release that fixes the
aarch64 atomic operation linker issue we have been seeing [2].

[1] d72f436b7d
[2] https://github.com/NixOS/nixpkgs/issues/60301#issue-437896459
 2019-04-27 17:51:43 +02:00
Will Dietz f0f081d3b4 bind: 9.12.3-P4 -> 9.12.4-P1 
https://www.openwall.com/lists/oss-security/2019/04/25/1

CVE-2018-5743, CVE-2019-6467, and CVE-2019-6468
 2019-04-26 02:08:44 -05:00
Matthew Bauer 290a5d916e treewide: update homepages to https where available 
Based on "problems" from repology:

https://repology.org/repository/nix_unstable/problems

Mostly simple changes to reflect redirects.
 2019-04-15 10:10:05 -04:00
R. RyanTM e08f01f4e7 bind: 9.12.3-P1 -> 9.12.3-P4 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/bind/versions
 2019-03-01 13:47:33 -08:00