| Commit message (Collapse) | Author | Age |
|---|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Part of: https://github.com/NixOS/nixpkgs/issues/108938
meta = with stdenv.lib;
is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.
This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.
The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
|
| |
|
|
|
|
|
|
|
| |
We can use use `stdenv.hostPlatform.isStatic` instead, and move the
logic per package. The least opionated benefit of this is that it makes
it much easier to replace packages with modified ones, as there is no
longer any issue of overlay order.
CC @FRidh @matthewbauer
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Related:
- 9fc5e7e473874762fdb1b49d17dcf703d48352c3
- 593e11fd944ce961ecf5425c3540df09e4f52265
- 508ae42a0f64c350036d722b84c2e2905bbc5418
Since the last time I ran this script, the Repology API changed, so I had to
adapt the script used in the previous PR. The new API should be more robust, so
overall this is a positive (no more grepping the error messages for our relevant
data but just a nice json structure).
Here's the new script I used:
```sh
curl https://repology.org/api/v1/repository/nix_unstable/problems \
| jq -r '.[] | select(.type == "homepage_permanent_https_redirect") | .data | "s@\(.url)@\(.target)@"' \
| sort | uniq | tee script.sed
find -name '*.nix' | xargs -P4 -- sed -f script.sed -i
```
I will also add this script to `maintainers/scripts`.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dropbear/versions
|
| |
|
|
|
|
|
|
|
|
|
| |
HTTP -> HTTPS for :
- http://gnu.org/
- http://www.gnu.org/
- http://elpa.gnu.org/
- http://lists.gnu.org/
- http://gcc.gnu.org/
- http://ftp.gnu.org/ (except in fetchurl mirrors)
- http://bugs.gnu.org/
|
| |
|
|
|
|
|
|
|
| |
* treewide: http -> https sources
This updates the source urls of all top-level packages from http to
https where possible.
* buildtorrent: fix url and tab -> spaces
|
| |
|
|
|
|
| |
This was for local testing, never meant to commit it...
This reverts commit 4953a006f56f26cdd1b9889cf91d52356dd1320e.
|
| |
|
|
| |
This reverts commit db913f844539b1769c305a9a5cffd4fe0c1f350a.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* pkgs: refactor needless quoting of homepage meta attribute
A lot of packages are needlessly quoting the homepage meta attribute
(about 1400, 22%), this commit refactors all of those instances.
* pkgs: Fixing some links that were wrongfully unquoted in the previous
commit
* Fixed some instances
|
| | |
|
| | |
|
| |
|
|
| |
Fixes #24839. Also change default sftp-server path to a more canonical.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Security fixes:
- Message printout was vulnerable to format string injection
- dropbearconvert import of OpenSSH keys could run arbitrary code
as the local dropbearconvert user when parsing malicious key
files
- dbclient could run arbitrary code as the local dbclient user if
particular -m or -c arguments are provided
- dbclient or dropbear server could expose process memory to the
running user if compiled with DEBUG_TRACE and running with -v
Fixes:
- Fix port forwarding failure when connecting to domains that have
both IPv4 and IPv6 addresses. The bug was introduced in 2015.68
- Fix 100% CPU use while waiting for rekey to complete
|
| | |
|
| | |
|
| |
|
|
| |
Changes: https://matt.ucc.asn.au/dropbear/CHANGES.
|
| |
|
|
|
|
| |
Bugfix release:
- Validate X11 forwarding input. Could allow bypass of
authorized_keys command= restrictions.
|
| | |
|
| |
|
|
| |
Another bugfix release.
|
| |
|
|
| |
Fix server password authentication on Linux, broken in 2015.69.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Known changes:
- Fix crash when forwarded TCP connections fail to connect
(bug introduced in 2015.68)
- Avoid hang on session close when multiple sessions are started,
affects Qt Creator
- Reduce per-channel memory consumption in common case, increase default
channel limit from 100 to 1000 which should improve SOCKS forwarding
for modern webpages
- Handle multiple command line arguments in a single flag
- Manpage improvements
- Build fixes for Android
- Don't display the MOTD when an explicit command is run
- Check curve25519 shared secret isn't zero
|
| | |
|
| | |
|
| |
|
|
| |
Changes: https://matt.ucc.asn.au/dropbear/CHANGES
|
| | |
|
| |
|
|
|
| |
This is done for the sake of Yosemite, which does not have gcc, and yet
this change is also compatible with Linux.
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
CVE-2013-4434
|
| | |
|
| |
|
|
| |
I had to do a trick with GNU make, to allow it to find libs.
|
| |
|
|
| |
svn path=/nixpkgs/trunk/; revision=26970
|
| |
|
|
| |
svn path=/nixpkgs/trunk/; revision=26969
|
| |
|
|
| |
svn path=/nixpkgs/trunk/; revision=26968
|
| |
|
|
| |
svn path=/nixpkgs/trunk/; revision=26967
|
|
|
I made it statically build by default
I had to fix the zlib static cross-build, because the native stripping corrupted the target
static library. It is not the first time I see this.
I add drobear to the cross-built packages for hydra.
svn path=/nixpkgs/trunk/; revision=20518
|