Spencer Baugh
75353853fc
curl: use the "kerberos" package rather than specifically GNU gss
...
This allows a policy decision about which Kerberos to use.
2017-10-08 20:45:58 +00:00
Daiderd Jordan
514593ea31
curl: fix clang build
2017-10-04 23:08:30 +02:00
Franz Pletz
a98b96824d
curl: 7.55.1 -> 7.56.0 for CVE-2017-1000254
...
https://curl.haxx.se/docs/adv_20171004.html
2017-10-04 08:17:46 +02:00
Tim Steinbach
135a841d91
curl: 7.55.0 -> 7.55.1
2017-08-14 19:21:47 +02:00
Frederik Rietdijk
13bbaee21d
Merge pull request #27881 from mimadrid/fix/http-https
...
Update homepage attributes: http -> https
2017-08-13 21:53:20 +02:00
Franz Pletz
b44bed5568
curl: 7.54.1 -> 7.55.0
...
Fixes #28073 .
Fixes CVE-2017-1000101, CVE-2017-1000100, CVE-2017-1000099.
2017-08-10 16:22:56 +02:00
mimadrid
09e0cc7cc7
Update homepage attributes: http -> https
...
Homepage link "http://.../ " is a permanent redirect to "https://.../ " and should be updated
https://repology.org/repository/nix_stable/problems
2017-08-03 11:56:15 +02:00
Eelco Dolstra
c23dcd72a0
Enable some more debug info
2017-07-05 16:04:54 +02:00
Tim Steinbach
9560fcbadf
curl: 7.54.0 -> 7.54.1
2017-06-16 08:16:30 -04:00
Tim Steinbach
55e334e62a
curl: 7.53.1 -> 7.54.0
2017-04-19 11:31:09 -04:00
Guillaume Maudoux
8ecb94bb97
curl: Use default trust store of TLS backend
...
Having curl fall back to openssl's CA means that we need not patch curl
to respect NIX_SSL_CERT_FILE. It will work in all the cases.
This reverts commit fb4c43dd8a
"curl: Use CA bundle in nix default profile by default"
If we want to reintroduce that feature, this needs to go inside openssl
2017-03-22 11:54:20 +01:00
Guillaume Maudoux
525a663174
curl, git: Fix curl default CA, let git use it
...
Improve patching of curl to use NIX_SSL_CERT_FILE as default CA
Remove patches from git, as git uses curl and passes its environment
variables to curl.
2017-03-22 11:22:53 +01:00
Domen Kožar
c3c9412c7d
git, openssl, curl: Respect $NIX_SSL_CERT_FILE
...
Slightly modified version of 942dbf89c6
2017-03-20 14:11:20 +01:00
Shea Levy
fb4c43dd8a
curl: Use CA bundle in nix default profile by default
2017-03-10 14:56:22 -05:00
Tim Steinbach
6988d2d456
curl: 7.53.0 -> 7.53.1
2017-02-25 09:03:22 -05:00
Tim Steinbach
b1c6a9bfcc
curl: 7.52.1 -> 7.53.0
2017-02-21 18:47:33 -05:00
Lengyel Balázs
372cb3760e
Merge #17694 : curl: add gnutlsSupport ? false
...
(incl. a nitpick change from vcunat)
2017-02-05 13:37:16 +01:00
Eelco Dolstra
7bc801e282
curl: Apply upstream patch to fix https hangs
...
https://github.com/curl/curl/issues/1174
Fixes https://github.com/NixOS/nix/issues/1181 .
2017-01-24 13:51:30 +01:00
Tim Steinbach
125fa1520d
curl: 7.51.1 -> 7.52.1
2017-01-03 08:42:59 -05:00
Franz Pletz
9007303001
curl: add upstream patch to fix HTTP2 performance issues
...
See #20639 . Patch has to be in nixpkgs because fetchurl depends on curl.
2016-11-26 14:48:05 +01:00
Eelco Dolstra
1e1609da6a
curl: 7.50.3 -> 7.51.0
...
Fixes 11 CVEs:
https://curl.haxx.se/changes.html#7_51_0
2016-11-02 10:38:17 +01:00
Eelco Dolstra
811b876fab
Revert "openssl, curl, git: Respect $NIX_SSL_CERT_FILE"
...
This reverts commit 942dbf89c6
. Sorry,
this was supposed to go to staging instead of master...
2016-10-14 16:01:54 +02:00
Eelco Dolstra
942dbf89c6
openssl, curl, git: Respect $NIX_SSL_CERT_FILE
...
$NIX_SSL_CERT_FILE overrides $SSL_CERT_FILE, which in turn overrides
the default CA path (/etc/ssl/certs/ca-certificates.crt). This allows
Nix to set a CA path without interfering with other packages (such as
Homebrew).
See https://github.com/NixOS/nix/issues/921 .
2016-10-14 12:06:10 +02:00
Tim Steinbach
cda53e434e
curl: 7.50.1 -> 7.50.3
2016-09-23 09:59:14 -04:00
Franz Pletz
ee4c4768a4
curl3: remove vulnerable curl version
2016-09-14 09:03:23 +02:00
Eelco Dolstra
8172cd734c
docdev -> devdoc
...
It's "developer documentation", not "documentation developer" after
all.
2016-09-01 11:07:23 +02:00
Tuomas Tynkkynen
a17216af4c
treewide: Shuffle outputs
...
Make either 'bin' or 'out' the first output.
2016-08-29 14:49:51 +03:00
Kranium Gikos Mendoza
3c1b7efaa8
curl: 7.50.0 -> 7.50.1 ( #17486 ) ( #17527 )
2016-08-05 15:52:58 +02:00
Miguel Madrid
fa03b541b2
curl: 7.47.1 -> 7.50.0 ( #17152 )
2016-07-30 21:38:06 +01:00
Tuomas Tynkkynen
2a73de6e6c
treewide: Make explicit that 'dev' output of openssl is used
2016-05-19 10:02:23 +02:00
Tuomas Tynkkynen
d7071caba5
treewide: Make explicit that 'dev' output of libssh2 is used
2016-05-19 10:00:45 +02:00
Tuomas Tynkkynen
62479404ea
treewide: Make explicit that 'dev' output of libidn is used
2016-05-19 10:00:42 +02:00
Eelco Dolstra
b4bf432709
nghttp2: 1.8.0 -> 1.9.2, unify with libnghttp2, and use multiple outputs
...
Note: I ignored the C++ libraries, but it appears we're not currently
using them. Once we do, we'll probably want to put them in a separate
output as well (to prevent non-C++ users from depending on Boost).
2016-04-18 21:13:18 +02:00
Vladimír Čunát
ab15a62c68
Merge branch 'master' into closure-size
...
Beware that stdenv doesn't build. It seems something more will be needed
than just resolution of merge conflicts.
2016-04-01 10:06:01 +02:00
Domen Kožar
b07e7bfc7b
Merge remote-tracking branch 'origin/staging'
2016-03-27 13:19:04 +01:00
Joachim Fasting
1f78d14028
curl3: mark as broken
...
This is an ancient version of curl, that currently has 19 known vulnerabilities.
It is used by and was added to support only one package.
2016-03-26 13:18:48 +01:00
Vladimír Čunát
09af15654f
Merge master into closure-size
...
The kde-5 stuff still didn't merge well.
I hand-fixed what I saw, but there may be more problems.
2016-03-08 09:58:19 +01:00
Vladimír Čunát
a458a9f78f
curl: use an official download link
...
It works now that we have e6f61b4cf3
.
2016-03-06 11:12:23 +01:00
Eelco Dolstra
389d04cbe7
curl: 7.47.0 -> 7.47.1
2016-02-22 11:41:34 +01:00
zimbatm
6908e75441
curl: fixes installation of 7.15
...
It was trying to install /etc/ssl/cert/ca-certificates.pem
See https://hydra.nixos.org/build/32167398/nixlog/1
2016-02-21 23:57:20 +00:00
Vladimír Čunát
ee994dfae6
bootstrap tools: have curl without http2 support
...
I assume there's not much use for it during bootstrapping.
This fixes them as well, as curl was compiled against libnghttp2 but the
lib wasn't copied to the bootstrap tools.
2016-02-17 10:04:32 +01:00
Vladimír Čunát
d039c87984
Merge branch 'master' into closure-size
2016-02-14 08:33:51 +01:00
Vladimír Čunát
a115bff08c
Merge branch 'master' into staging
2016-02-07 13:52:42 +01:00
Tony White
98ffc61e2f
curl: Change default src url ( close #12851 )
...
- Changes the default src url away from http://curl.haxx.se
to an official mirror because haxx.se resolves to https and
bootstrap curl doesn't have https support.
Please see https://github.com/NixOS/nixpkgs/issues/12816
for more info.
2016-02-07 13:39:45 +01:00
Guillaume Maudoux
9f358f809d
Configure a default trust store for openssl
2016-02-03 12:42:01 +01:00
Robin Gloster
0876a44169
curl: 7.45 -> 7.47 and enable HTTP/2 ( close #12723 )
...
This fixes CVE-2016-0755:
https://curl.haxx.se/docs/adv_20160127A.html
vcunat removed *propagation* of pkgconfig and perl.
2016-02-03 10:50:24 +01:00
Luca Bruno
5b0352a6a4
Merge branch 'master' into closure-size
2015-12-11 18:31:00 +01:00
Luca Bruno
e289717414
rename moveToOutput and propagatedBuildInputs
2015-12-02 10:05:36 +01:00
Vladimír Čunát
333d69a5f0
Merge staging into closure-size
...
The most complex problems were from dealing with switches reverted in
the meantime (gcc5, gmp6, ncurses6).
It's likely that darwin is (still) broken nontrivially.
2015-11-20 14:32:58 +01:00
Danny Wilson
e9d6da77cd
Fix non-chrooted (stdenv-native) builds that have man
on path enabling
...
building of built-in manual, while chrooted builds (hydra) will not…
2015-11-16 17:20:13 +01:00