Commit graph

229 commits

Author SHA1 Message Date
Domen Kožar
85f2a13ee3
check that password is not blank
Co-authored-by: Robert Hensing <roberth@users.noreply.github.com>
2022-06-09 16:18:35 +01:00
Domen Kožar
7434c16611 nix: patch curl netrc regression
https://github.com/curl/curl/issues/8653
2022-06-09 01:28:26 +01:00
Robert Scott
e9a0f109e5 curl: deduplicate definition of passthru.tests 2022-05-27 00:04:56 +01:00
Pavol Rusnak
c571a647c1
curl: fix curl-gnutls build on darwin 2022-05-25 18:48:22 +02:00
Izorkin
6e8e1faabe
nixos/tests: add nginx-http3 test 2022-05-22 19:29:12 +03:00
Robert Scott
954efdfff3 curl: disable test 1086 on darwin
failures seem common on aarch64, disabling on darwin out of caution
as it may be more a matter of newer macos releases having issues
with it
2022-05-12 22:04:21 +01:00
Izorkin
c5edd9926d
curl: 7.83.0 -> 7.83.1 2022-05-11 21:22:04 +03:00
github-actions[bot]
1a3de31faa
Merge staging-next into staging 2022-05-10 12:11:45 +00:00
Rick van Schijndel
12e43250db curlcpp: drop
Maintainers in nixpkgs are not active anymore.
No active user within nixpkgs.
Upstream doesn't see much activity.
2022-05-10 07:02:11 +02:00
Robert Scott
87ac2775d8 curl: enable tests
some tests still skipped due to missing dependencies, but it's
unlikely we want to add these build-time dependencies to such
an early-stage package
2022-05-10 06:54:35 +02:00
Sandro
d59a6c1264
Merge pull request #171957 from risicle/ris-curl-passthru-tests
curl: add some key reverse-dependencies to passthru.tests
2022-05-09 16:04:44 +02:00
Robert Scott
924ebf6556 curl: add some key reverse-dependencies to passthru.tests 2022-05-07 15:54:47 +01:00
Martin Weinelt
85f5539c4b
curl: 7.82.0 -> 7.83.0
https://curl.se/changes.html#7_83_0
https://curl.se/docs/CVE-2022-22576.html
https://curl.se/docs/CVE-2022-27774.html
https://curl.se/docs/CVE-2022-27775.html
https://curl.se/docs/CVE-2022-27776.html

Fixes: CVE-2022-22576, CVE-2022-27774, CVE-2022-27775, CVE-2022-27776
2022-04-27 19:56:47 +02:00
Sandro Jäckel
febceef078
curl: gate darwin workarounds behind stdenv.isDarwin to make life on linux easier
Closes #3382
2022-04-19 15:20:41 +02:00
Izorkin
a6a8731dc7
curl: enable ca-bundle if activated http3 protocol 2022-04-17 20:12:06 +03:00
Paul Grandperrin
0fad2b34c4 Patch curl certificate CN verification
From 911714d617
Fixes https://github.com/NixOS/nixpkgs/issues/167971
2022-04-09 14:50:18 +02:00
R. Ryantm
a4bb1d210d curl: 7.81.0 -> 7.82.0 2022-03-16 20:00:30 +10:00
Bernardo Meurer
336b2c85c0
Merge pull request #145610 from Izorkin/update-curl
curl: update build configuration
2022-01-10 16:22:03 +00:00
zowoq
20b0e16c32 curl: 7.80.0 -> 7.81.0
https://curl.se/changes.html#7_81_0
2022-01-06 09:03:18 +10:00
Izorkin
507301b357
curl: add support http3 protocol 2021-12-03 23:26:44 +03:00
Izorkin
851b12b691
curl: cleanup build configuration 2021-12-03 23:26:44 +03:00
Izorkin
1e4864e295
curl: add psl support 2021-12-03 23:26:43 +03:00
Izorkin
da30a0cfb8
curl: add support rtmp protocol 2021-12-03 23:26:43 +03:00
Izorkin
bc721b462b
curl: add support sasl authentication 2021-12-03 23:26:43 +03:00
Izorkin
7497778795
curl: add support zstd compression 2021-12-03 23:26:42 +03:00
Izorkin
29526bc2eb
curl: IDN support requires libidn2 package 2021-12-03 23:26:42 +03:00
Izorkin
0bac59f8e8 curl: 7.79.1 -> 7.80.0 2021-12-02 18:11:22 +10:00
Ivan Babrou
0b91881457 curl: use lib.getDev to allow building with boringssl
As suggested here: https://github.com/NixOS/nixpkgs/pull/143477#issuecomment-974180167
2021-11-24 13:51:03 -08:00
Martin Weinelt
f651d617a6 curl: use --with/without-openssl instead of --with/without-ssl
This also migrates sslSupport to opensslSupport, which affects packages
overriding the curl package in that regard.
2021-10-16 11:35:18 +01:00
Robert Scott
106e944e19 curl: 7.76.1 -> 7.79.1
patching out SystemConfiguration requirement on darwin as we
can't use it from within the curl bootstrap loop
2021-10-16 11:35:18 +01:00
Robert Scott
13f8720032 curl: add patch for CVE-2021-22945
included as all curl patches need to be in-repo due to
bootstrapping issues
2021-09-28 18:23:01 +01:00
Ryan Burns
42155910a0 pkgsStatic.curl: fix build
904625852d removed the overlay which
disables gss and brotli for static curl. Although we can now build them
statically, attempting to build curl against them results in 'undefined
reference' linker errors.
2021-09-07 16:48:03 +09:00
Luke Granger-Brown
4e1b102af6 curl: reenable ca-fallback when not using wolfsslSupport
904625852d accidentally swapped the
behaviour, and enabled ca-fallback when using wolfssl and disabled it
without. This effectively disables curl's ability to use the built in CA
stack.
2021-09-07 01:10:33 +00:00
John Ericson
904625852d pkgsStatic: Inline more of static overlay 2021-08-19 21:55:06 +00:00
Guillaume Girol
81d185ad5d curl: add strictDeps = true 2021-08-19 09:30:47 +02:00
Guillaume Girol
cd97a3d62e curl: fix static build by disabling gssSupport 2021-08-19 09:30:46 +02:00
Robert Scott
742c60f6f8 curl: add patches for CVE-2021-22897, CVE-2021-22898 & CVE-2021-22901 2021-05-30 18:19:19 +01:00
Andrew Childs
314c92c542 curl: disable gssSupport for Apple Silicon 2021-05-17 00:27:00 +09:00
Martin Weinelt
61c9c7888f curl: 7.74.0 -> 7.76.1 2021-04-14 17:06:07 +02:00
Robert Scott
6808269554 curl: add patches for CVE-2021-22876, CVE-2021-22890
hand-backported from upstream fixes
2021-04-02 18:13:36 +01:00
Jonathan Ringer
9bb3fccb5b treewide: pkgs.pkgconfig -> pkgs.pkg-config, move pkgconfig to alias.nix
continuation of #109595

pkgconfig was aliased in 2018, however, it remained in
all-packages.nix due to its wide usage. This cleans
up the remaining references to pkgs.pkgsconfig and
moves the entry to aliases.nix.

python3Packages.pkgconfig remained unchanged because
it's the canonical name of the upstream package
on pypi.
2021-01-19 01:16:25 -08:00
Ben Siraphob
8c5d37129f pkgs/tools: stdenv.lib -> lib 2021-01-15 17:12:36 +07:00
Profpatsch
4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
John Ericson
5c2965145f treewide: Inline more of the static overlay
Picking up where #107238 left off. I think I'll have gotten all the easy
stuff with this.
2021-01-03 21:46:14 +00:00
Martin Weinelt
5ba727781f
curl: 7.73.0 -> 7.74.0
https://curl.se/docs/CVE-2020-8284.html
https://curl.se/docs/CVE-2020-8285.html
https://curl.se/docs/CVE-2020-8286.html

Fixes: CVE-2020-8284, CVE-2020-8285, CVE-2020-8286
2020-12-09 15:25:33 +01:00
Vladimír Čunát
336bc8283b
Re-Revert "Merge #101508: libraw: 0.20.0 -> 0.20.2"
This reverts commit c778945806.

I believe this is exactly what brings the staging branch into
the right shape after the last merge from master (through staging-next);
otherwise part of staging changes would be lost
(due to being already reachable from master but reverted).
2020-10-26 08:19:17 +01:00
Vladimír Čunát
c778945806
Revert "Merge #101508: libraw: 0.20.0 -> 0.20.2"
I'm sorry; I didn't notice it contained staging commits.

This reverts commit 17f5305b6c, reversing
changes made to a8a018ddc0.
2020-10-25 09:41:51 +01:00
Tim Steinbach
4df8aa7b00
curl: 7.72.0 -> 7.73.0 2020-10-17 16:43:01 -04:00
Stig Palmquist
157645ae0f curl: 7.71.1 -> 7.72.0
https://curl.haxx.se/changes.html#7_72_0
https://curl.haxx.se/docs/CVE-2020-8231.html
2020-08-20 09:12:06 +00:00
Matthew Bauer
d0677e6d45 treewide: add warning comment to “boot” packages
This adds a warning to the top of each “boot” package that reads:

  Note: this package is used for bootstrapping fetchurl, and thus cannot
  use fetchpatch! All mutable patches (generated by GitHub or cgit) that
  are needed here should be included directly in Nixpkgs as files.

This makes it clear to maintainer that they may need to treat this
package a little differently than others. Importantly, we can’t use
fetchpatch here due to using <nix/fetchurl.nix>. To avoid having stale
hashes, we need to include patches that are subject to changing
overtime (for instance, gitweb’s patches contain a version number at
the bottom).
2020-07-31 08:56:53 +02:00