diff options
| author | Alyssa Ross <hi@alyssa.is> | 2021-06-09 11:14:34 +0000 |
|---|---|---|
| committer | Alyssa Ross <hi@alyssa.is> | 2021-06-09 18:29:07 +0000 |
| commit | cd92f32734cf1a73d66fdcc064561f0398c7fa15 (patch) | |
| tree | 5f9d343902ea0fab3ef5dd8b105beae33ff04029 /pkgs/os-specific/linux/busybox | |
| parent | 29536e96508f57aaf0b5aaba59abc6ef2880ab6f (diff) | |
| download | nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.tar nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.tar.gz nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.tar.bz2 nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.tar.lz nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.tar.xz nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.tar.zst nixpkgs-cd92f32734cf1a73d66fdcc064561f0398c7fa15.zip | |
busybox: 1.32.1 -> 1.33.1; clarify license
The patch for CVE-2021-28831 is included in this release.
Diffstat (limited to 'pkgs/os-specific/linux/busybox')
| -rw-r--r-- | pkgs/os-specific/linux/busybox/default.nix | 18 |
1 files changed, 5 insertions, 13 deletions
diff --git a/pkgs/os-specific/linux/busybox/default.nix b/pkgs/os-specific/linux/busybox/default.nix index 63435e09168..4949cd7c14a 100644 --- a/pkgs/os-specific/linux/busybox/default.nix +++ b/pkgs/os-specific/linux/busybox/default.nix @@ -1,4 +1,4 @@ -{ stdenv, lib, buildPackages, fetchurl, fetchFromGitLab, fetchpatch +{ stdenv, lib, buildPackages, fetchurl, fetchFromGitLab , enableStatic ? stdenv.hostPlatform.isStatic , enableMinimal ? false # Allow forcing musl without switching stdenv itself, e.g. for our bootstrapping: @@ -32,7 +32,7 @@ let CONFIG_FEATURE_WTMP n ''; - # The debian version lacks behind the upstream version and also contains + # The debian version lags behind the upstream version and also contains # a debian-specific suffix. We only fetch the debian repository to get the # default.script debianVersion = "1.30.1-6"; @@ -49,17 +49,14 @@ in stdenv.mkDerivation rec { pname = "busybox"; - # TODO: When bumping to next version, remove the patch - # for CVE-2021-28831 (assuming the patch was included in - # the next upstream release) - version = "1.32.1"; + version = "1.33.1"; # Note to whoever is updating busybox: please verify that: # nix-build pkgs/stdenv/linux/make-bootstrap-tools.nix -A test # still builds after the update. src = fetchurl { url = "https://busybox.net/downloads/${pname}-${version}.tar.bz2"; - sha256 = "1vhd59qmrdyrr1q7rvxmyl96z192mxl089hi87yl0hcp6fyw8mwx"; + sha256 = "0a0dcvsh7nxnhxc5y73fky0z30i9p7r30qfidm2akn0n5fywdkhj"; }; hardeningDisable = [ "format" "pie" ] @@ -67,11 +64,6 @@ stdenv.mkDerivation rec { patches = [ ./busybox-in-store.patch - (fetchpatch { - name = "CVE-2021-28831.patch"; - url = "https://git.busybox.net/busybox/patch/?id=f25d254dfd4243698c31a4f3153d4ac72aa9e9bd"; - sha256 = "0y79flfbk45krwn963nnbqc21a88bsz4k4asqwvcnfk2lkciadxm"; - }) # TODO: Removing when bumping the version ] ++ lib.optional (stdenv.hostPlatform != stdenv.buildPlatform) ./clang-cross.patch; postPatch = "patchShebangs ."; @@ -142,7 +134,7 @@ stdenv.mkDerivation rec { meta = with lib; { description = "Tiny versions of common UNIX utilities in a single small executable"; homepage = "https://busybox.net/"; - license = licenses.gpl2; + license = licenses.gpl2Only; maintainers = with maintainers; [ TethysSvensson ]; platforms = platforms.linux; priority = 10; |