4b66107509
Fixes CVE-2021-28116, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-28652, CVE-2021-28662 and CVE-2021-28651. https://github.com/squid-cache/squid/security/advisories/GHSA-pxwq-f3qr-w2xf https://github.com/squid-cache/squid/security/advisories/GHSA-m47m-9hvw-7447 https://github.com/squid-cache/squid/security/advisories/GHSA-jjq6-mh2h-g39h https://github.com/squid-cache/squid/security/advisories/GHSA-572g-rvwr-6c7f https://github.com/squid-cache/squid/security/advisories/GHSA-ch36-9jhx-phm4
38 lines
1.2 KiB
Nix
38 lines
1.2 KiB
Nix
{ lib, stdenv, fetchurl, perl, openldap, pam, db, cyrus_sasl, libcap
|
|
, expat, libxml2, openssl, pkg-config
|
|
}:
|
|
|
|
stdenv.mkDerivation rec {
|
|
pname = "squid";
|
|
version = "4.15";
|
|
|
|
src = fetchurl {
|
|
url = "http://www.squid-cache.org/Versions/v4/${pname}-${version}.tar.xz";
|
|
sha256 = "sha256-tpOk5asoEaioVPYN4KYq+786lSux0EeVLJrgEyH4SiU=";
|
|
};
|
|
|
|
nativeBuildInputs = [ pkg-config ];
|
|
buildInputs = [
|
|
perl openldap db cyrus_sasl expat libxml2 openssl
|
|
] ++ lib.optionals stdenv.isLinux [ libcap pam ];
|
|
|
|
configureFlags = [
|
|
"--enable-ipv6"
|
|
"--disable-strict-error-checking"
|
|
"--disable-arch-native"
|
|
"--with-openssl"
|
|
"--enable-ssl-crtd"
|
|
"--enable-storeio=ufs,aufs,diskd,rock"
|
|
"--enable-removal-policies=lru,heap"
|
|
"--enable-delay-pools"
|
|
"--enable-x-accelerator-vary"
|
|
] ++ lib.optional (stdenv.isLinux && !stdenv.hostPlatform.isMusl) "--enable-linux-netfilter";
|
|
|
|
meta = with lib; {
|
|
description = "A caching proxy for the Web supporting HTTP, HTTPS, FTP, and more";
|
|
homepage = "http://www.squid-cache.org";
|
|
license = licenses.gpl2Plus;
|
|
platforms = platforms.linux;
|
|
maintainers = with maintainers; [ fpletz raskin ];
|
|
};
|
|
}
|