commit 15494ec8f1d113d3d6dfc4d3eaddc7fa52635b6c · pyrox.dev/nixpkgs

+6

maintainers/maintainer-list.nix

··· 119 119 githubId = 241628; 120 120 name = "Adam Russell"; 121 121 }; 122 + aadibajpai = { 123 + email = "hello@aadibajpai.com"; 124 + github = "aadibajpai"; 125 + githubId = 27063113; 126 + name = "Aadi Bajpai"; 127 + }; 122 128 aanderse = { 123 129 email = "aaron@fosslib.net"; 124 130 matrix = "@aanderse:nixos.dev";

+8

nixos/doc/manual/from_md/release-notes/rl-2205.section.xml

··· 190 190 usage in non-X11 environments, e.g. Wayland. 191 191 </para> 192 192 </listitem> 193 + <listitem> 194 + <para> 195 + The <literal>services.stubby</literal> module was converted to 196 + a 197 + <link xlink:href="https://github.com/NixOS/rfcs/blob/master/rfcs/0042-config-option.md">settings-style</link> 198 + configuration. 199 + </para> 200 + </listitem> 193 201 </itemizedlist> 194 202 </section> 195 203 </section>

+2

nixos/doc/manual/release-notes/rl-2205.section.md

··· 78 78 added, decoupling the setting of `SSH_ASKPASS` from 79 79 `services.xserver.enable`. This allows easy usage in non-X11 environments, 80 80 e.g. Wayland. 81 + 82 + - The `services.stubby` module was converted to a [settings-style](https://github.com/NixOS/rfcs/blob/master/rfcs/0042-config-option.md) configuration.

+46 -174

nixos/modules/services/networking/stubby.nix

··· 1 - { config, lib, pkgs, ...}: 1 + { config, lib, pkgs, ... }: 2 2 3 3 with lib; 4 4 5 5 let 6 6 cfg = config.services.stubby; 7 - 8 - fallbacks = concatMapStringsSep "\n " (x: "- ${x}") cfg.fallbackProtocols; 9 - listeners = concatMapStringsSep "\n " (x: "- ${x}") cfg.listenAddresses; 10 - 11 - # By default, the recursive resolvers maintained by the getdns 12 - # project itself are enabled. More information about both getdns's servers, 13 - # as well as third party options for upstream resolvers, can be found here: 14 - # https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Test+Servers 15 - # 16 - # You can override these values by supplying a yaml-formatted array of your 17 - # preferred upstream resolvers in the following format: 18 - # 19 - # 106 # - address_data: IPv4 or IPv6 address of the upstream 20 - # port: Port for UDP/TCP (default is 53) 21 - # tls_auth_name: Authentication domain name checked against the server 22 - # certificate 23 - # tls_pubkey_pinset: An SPKI pinset verified against the keys in the server 24 - # certificate 25 - # - digest: Only "sha256" is currently supported 26 - # value: Base64 encoded value of the sha256 fingerprint of the public 27 - # key 28 - # tls_port: Port for TLS (default is 853) 29 - 30 - defaultUpstream = '' 31 - - address_data: 145.100.185.15 32 - tls_auth_name: "dnsovertls.sinodun.com" 33 - tls_pubkey_pinset: 34 - - digest: "sha256" 35 - value: 62lKu9HsDVbyiPenApnc4sfmSYTHOVfFgL3pyB+cBL4= 36 - - address_data: 145.100.185.16 37 - tls_auth_name: "dnsovertls1.sinodun.com" 38 - tls_pubkey_pinset: 39 - - digest: "sha256" 40 - value: cE2ecALeE5B+urJhDrJlVFmf38cJLAvqekONvjvpqUA= 41 - - address_data: 185.49.141.37 42 - tls_auth_name: "getdnsapi.net" 43 - tls_pubkey_pinset: 44 - - digest: "sha256" 45 - value: foxZRnIh9gZpWnl+zEiKa0EJ2rdCGroMWm02gaxSc9Q= 46 - - address_data: 2001:610:1:40ba:145:100:185:15 47 - tls_auth_name: "dnsovertls.sinodun.com" 48 - tls_pubkey_pinset: 49 - - digest: "sha256" 50 - value: 62lKu9HsDVbyiPenApnc4sfmSYTHOVfFgL3pyB+cBL4= 51 - - address_data: 2001:610:1:40ba:145:100:185:16 52 - tls_auth_name: "dnsovertls1.sinodun.com" 53 - tls_pubkey_pinset: 54 - - digest: "sha256" 55 - value: cE2ecALeE5B+urJhDrJlVFmf38cJLAvqekONvjvpqUA= 56 - - address_data: 2a04:b900:0:100::38 57 - tls_auth_name: "getdnsapi.net" 58 - tls_pubkey_pinset: 59 - - digest: "sha256" 60 - value: foxZRnIh9gZpWnl+zEiKa0EJ2rdCGroMWm02gaxSc9Q= 61 - ''; 62 - 63 - # Resolution type is not changeable here because it is required per the 64 - # stubby documentation: 65 - # 66 - # "resolution_type: Work in stub mode only (not recursive mode) - required for Stubby 67 - # operation." 68 - # 69 - # https://dnsprivacy.org/wiki/display/DP/Configuring+Stubby 7 + settingsFormat = pkgs.formats.yaml { }; 8 + confFile = settingsFormat.generate "stubby.yml" cfg.settings; 9 + in { 10 + imports = map (x: 11 + (mkRemovedOptionModule [ "services" "stubby" x ] 12 + "Stubby configuration moved to services.stubby.settings.")) [ 13 + "authenticationMode" 14 + "fallbackProtocols" 15 + "idleTimeout" 16 + "listenAddresses" 17 + "queryPaddingBlocksize" 18 + "roundRobinUpstreams" 19 + "subnetPrivate" 20 + "upstreamServers" 21 + ]; 70 22 71 - confFile = pkgs.writeText "stubby.yml" '' 72 - resolution_type: GETDNS_RESOLUTION_STUB 73 - dns_transport_list: 74 - ${fallbacks} 75 - appdata_dir: "/var/cache/stubby" 76 - tls_authentication: ${cfg.authenticationMode} 77 - tls_query_padding_blocksize: ${toString cfg.queryPaddingBlocksize} 78 - edns_client_subnet_private: ${if cfg.subnetPrivate then "1" else "0"} 79 - idle_timeout: ${toString cfg.idleTimeout} 80 - listen_addresses: 81 - ${listeners} 82 - round_robin_upstreams: ${if cfg.roundRobinUpstreams then "1" else "0"} 83 - ${cfg.extraConfig} 84 - upstream_recursive_servers: 85 - ${cfg.upstreamServers} 86 - ''; 87 - in 88 - 89 - { 90 23 options = { 91 24 services.stubby = { 92 25 93 26 enable = mkEnableOption "Stubby DNS resolver"; 94 27 95 - fallbackProtocols = mkOption { 96 - default = [ "GETDNS_TRANSPORT_TLS" ]; 97 - type = with types; listOf (enum [ 98 - "GETDNS_TRANSPORT_TLS" 99 - "GETDNS_TRANSPORT_TCP" 100 - "GETDNS_TRANSPORT_UDP" 101 - ]); 102 - description = '' 103 - Ordered list composed of one or more transport protocols. 104 - Strict mode should only use <literal>GETDNS_TRANSPORT_TLS</literal>. 105 - Other options are <literal>GETDNS_TRANSPORT_UDP</literal> and 106 - <literal>GETDNS_TRANSPORT_TCP</literal>. 107 - ''; 108 - }; 109 - 110 - authenticationMode = mkOption { 111 - default = "GETDNS_AUTHENTICATION_REQUIRED"; 112 - type = types.enum [ 113 - "GETDNS_AUTHENTICATION_REQUIRED" 114 - "GETDNS_AUTHENTICATION_NONE" 115 - ]; 116 - description = '' 117 - Selects the Strict or Opportunistic usage profile. 118 - For strict, set to <literal>GETDNS_AUTHENTICATION_REQUIRED</literal>. 119 - for opportunistic, use <literal>GETDNS_AUTHENTICATION_NONE</literal>. 120 - ''; 121 - }; 122 - 123 - queryPaddingBlocksize = mkOption { 124 - default = 128; 125 - type = types.int; 126 - description = '' 127 - EDNS0 option to pad the size of the DNS query to the given blocksize. 128 - ''; 129 - }; 130 - 131 - subnetPrivate = mkOption { 132 - default = true; 133 - type = types.bool; 134 - description = '' 135 - EDNS0 option for ECS client privacy. Default is 136 - <literal>true</literal>. If set, this option prevents the client 137 - subnet from being sent to authoritative nameservers. 138 - ''; 139 - }; 140 - 141 - idleTimeout = mkOption { 142 - default = 10000; 143 - type = types.int; 144 - description = "EDNS0 option for keepalive idle timeout expressed in 145 - milliseconds."; 146 - }; 147 - 148 - listenAddresses = mkOption { 149 - default = [ "127.0.0.1" "0::1" ]; 150 - type = with types; listOf str; 151 - description = '' 152 - Sets the listen address for the stubby daemon. 153 - Uses port 53 by default. 154 - Ise IP@port to specify a different port. 155 - ''; 156 - }; 157 - 158 - roundRobinUpstreams = mkOption { 159 - default = true; 160 - type = types.bool; 161 - description = '' 162 - Instructs stubby to distribute queries across all available name 163 - servers. Default is <literal>true</literal>. Set to 164 - <literal>false</literal> in order to use the first available. 28 + settings = mkOption { 29 + type = types.attrsOf settingsFormat.type; 30 + example = lib.literalExpression '' 31 + pkgs.stubby.passthru.settingsExample // { 32 + upstream_recursive_servers = [{ 33 + address_data = "158.64.1.29"; 34 + tls_auth_name = "kaitain.restena.lu"; 35 + tls_pubkey_pinset = [{ 36 + digest = "sha256"; 37 + value = "7ftvIkA+UeN/ktVkovd/7rPZ6mbkhVI7/8HnFJIiLa4="; 38 + }]; 39 + }]; 40 + }; 165 41 ''; 166 - }; 167 - 168 - upstreamServers = mkOption { 169 - default = defaultUpstream; 170 - type = types.lines; 171 42 description = '' 172 - Replace default upstreams. See <citerefentry><refentrytitle>stubby 173 - </refentrytitle><manvolnum>1</manvolnum></citerefentry> for an 174 - example of the entry formatting. In Strict mode, at least one of the 175 - following settings must be supplied for each nameserver: 176 - <literal>tls_auth_name</literal> or 177 - <literal>tls_pubkey_pinset</literal>. 43 + Content of the Stubby configuration file. All Stubby settings may be set or queried 44 + here. The default settings are available at 45 + <literal>pkgs.stubby.passthru.settingsExample</literal>. See 46 + <link xlink:href="https://dnsprivacy.org/wiki/display/DP/Configuring+Stubby"/>. 47 + A list of the public recursive servers can be found here: 48 + <link xlink:href="https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Test+Servers"/>. 178 49 ''; 179 50 }; 180 51 ··· 184 55 description = "Enable or disable debug level logging."; 185 56 }; 186 57 187 - extraConfig = mkOption { 188 - default = ""; 189 - type = types.lines; 190 - description = '' 191 - Add additional configuration options. see <citerefentry> 192 - <refentrytitle>stubby</refentrytitle><manvolnum>1</manvolnum> 193 - </citerefentry>for more options. 194 - ''; 195 - }; 196 58 }; 197 59 }; 198 60 199 61 config = mkIf cfg.enable { 200 - environment.systemPackages = [ pkgs.stubby ]; 62 + assertions = [{ 63 + assertion = 64 + (cfg.settings.resolution_type or "") == "GETDNS_RESOLUTION_STUB"; 65 + message = '' 66 + services.stubby.settings.resolution_type must be set to "GETDNS_RESOLUTION_STUB". 67 + Is services.stubby.settings unset? 68 + ''; 69 + }]; 70 + 71 + services.stubby.settings.appdata_dir = "/var/cache/stubby"; 72 + 201 73 systemd.services.stubby = { 202 74 description = "Stubby local DNS resolver"; 203 75 after = [ "network.target" ];

+2 -2

pkgs/applications/misc/binance/default.nix

··· 3 3 4 4 stdenv.mkDerivation rec { 5 5 pname = "binance"; 6 - version = "1.28.0"; 6 + version = "1.29.0"; 7 7 8 8 src = fetchurl { 9 9 url = "https://github.com/binance/desktop/releases/download/v${version}/${pname}-${version}-amd64-linux.deb"; 10 - sha256 = "sha256-qJuD+O4M9U8P6JhFUFc92yllX1vgZZvTlTd0bph3Vo4="; 10 + sha256 = "sha256-LQX5RUTVm6lBdRzCFMBq1NLGGiLBVyykJ1LY9FqINnY="; 11 11 }; 12 12 13 13 nativeBuildInputs = [

+3 -3

pkgs/applications/misc/joplin-desktop/default.nix

··· 2 2 3 3 let 4 4 pname = "joplin-desktop"; 5 - version = "2.5.12"; 5 + version = "2.6.10"; 6 6 name = "${pname}-${version}"; 7 7 8 8 inherit (stdenv.hostPlatform) system; ··· 16 16 src = fetchurl { 17 17 url = "https://github.com/laurent22/joplin/releases/download/v${version}/Joplin-${version}.${suffix}"; 18 18 sha256 = { 19 - x86_64-linux = "sha256-/S/paqMKVerSQFjA4wQ9fLV0WaqKm4CzQfy+0OdH7c8="; 20 - x86_64-darwin = "sha256-5eKTfZRpW7IYwFt8TeJiytrwEpiHBgN4k9kth+Lh0Bo="; 19 + x86_64-linux = "sha256-2/QYEzQjB9n/4k5I/fry3ol8Fpsb5+tc1ttVdf2ID+4="; 20 + x86_64-darwin = "sha256-BwBpq78hYJVUItUgs9lonBTV4YWJ+qvML6VTj5M4BQ4="; 21 21 }.${system} or throwSystem; 22 22 }; 23 23

+2 -2

pkgs/applications/misc/obsidian/default.nix

··· 31 31 32 32 in stdenv.mkDerivation rec { 33 33 pname = "obsidian"; 34 - version = "0.12.19"; 34 + version = "0.13.14"; 35 35 36 36 src = fetchurl { 37 37 url = "https://github.com/obsidianmd/obsidian-releases/releases/download/v${version}/obsidian-${version}.tar.gz"; 38 - sha256 = "sha256-M9U67+mCL/CziTprCAhfrZTWl6i7HRfH24l/xqUqkIg="; 38 + sha256 = "0d55lk643yqjz4s6j5lbrdkf9f7wmwlz9ahjx760rzqpzy5190nr"; 39 39 }; 40 40 41 41 nativeBuildInputs = [ makeWrapper graphicsmagick ];

+8 -6

pkgs/applications/misc/pwsafe/default.nix

··· 1 - { lib, stdenv, fetchFromGitHub, cmake, pkg-config, zip, gettext, perl 1 + { lib, stdenv, fetchFromGitHub 2 + , cmake, pkg-config, zip, gettext, perl 2 3 , wxGTK30, libXext, libXi, libXt, libXtst, xercesc 3 4 , qrencode, libuuid, libyubikey, yubikey-personalization 4 5 , curl, openssl, file ··· 6 7 7 8 stdenv.mkDerivation rec { 8 9 pname = "pwsafe"; 9 - version = "3.56.0"; 10 + version = "1.14.0"; # do NOT update to 3.x Windows releases 11 + # nixpkgs-update: no auto update 10 12 11 13 src = fetchFromGitHub { 12 14 owner = pname; 13 15 repo = pname; 14 16 rev = version; 15 - sha256 = "sha256-ZLX/3cs1cdia5+32QEwE6q3V0uFNkkmiIGboKW6Xej8="; 17 + hash = "sha256-s3IXe4gTwUOzQslNfWrcN/srrG9Jv02zfkGgiZN3C1s="; 16 18 }; 17 19 18 20 nativeBuildInputs = [ ··· 32 34 33 35 postPatch = '' 34 36 # Fix perl scripts used during the build. 35 - for f in `find . -type f -name '*.pl'`; do 37 + for f in $(find . -type f -name '*.pl') ; do 36 38 patchShebangs $f 37 39 done 38 40 39 41 # Fix hard coded paths. 40 - for f in `grep -Rl /usr/share/ src`; do 42 + for f in $(grep -Rl /usr/share/ src) ; do 41 43 substituteInPlace $f --replace /usr/share/ $out/share/ 42 44 done 43 45 44 46 # Fix hard coded zip path. 45 47 substituteInPlace help/Makefile.linux --replace /usr/bin/zip ${zip}/bin/zip 46 48 47 - for f in `grep -Rl /usr/bin/ .`; do 49 + for f in $(grep -Rl /usr/bin/ .) ; do 48 50 substituteInPlace $f --replace /usr/bin/ "" 49 51 done 50 52 '';

+5 -12

pkgs/applications/window-managers/i3/status.nix

··· 1 - { fetchurl, lib, stdenv, libconfuse, yajl, alsa-lib, libpulseaudio, libnl, pkg-config, asciidoc, xmlto, docbook_xml_dtd_45, docbook_xsl }: 1 + { fetchurl, lib, stdenv, libconfuse, yajl, alsa-lib, libpulseaudio, libnl, meson, ninja, perl, pkg-config, asciidoc, xmlto, docbook_xml_dtd_45, docbook_xsl }: 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "i3status"; 5 - version = "2.13"; 5 + version = "2.14"; 6 6 7 7 src = fetchurl { 8 - url = "https://i3wm.org/i3status/i3status-${version}.tar.bz2"; 9 - sha256 = "0rhlzb96mw64z2jnhwz9nibc7pxg549626lz5642xxk5hpzwk2ff"; 8 + url = "https://i3wm.org/i3status/i3status-${version}.tar.xz"; 9 + sha256 = "0929chhvyq9hg4scpcz8r9zn3s9jvbg6a86k3wqa77qg85rh4kaw"; 10 10 }; 11 11 12 - nativeBuildInputs = [ pkg-config asciidoc xmlto docbook_xml_dtd_45 docbook_xsl ]; 12 + nativeBuildInputs = [ meson ninja perl pkg-config asciidoc xmlto docbook_xml_dtd_45 docbook_xsl ]; 13 13 buildInputs = [ libconfuse yajl alsa-lib libpulseaudio libnl ]; 14 - 15 - makeFlags = [ "all" "PREFIX=$(out)" ]; 16 - 17 - # This hack is needed because for unknown reasons configure generates a broken makefile on the 2.13 release under nixos 18 - preBuild = '' 19 - sed -i -e 's/\$(TEST_LOGS) \$(TEST_LOGS/\$(TEST_LOGS)/g' Makefile 20 - ''; 21 14 22 15 meta = { 23 16 description = "Generates a status line for i3bar, dzen2, xmobar or lemonbar";

+2 -2

pkgs/data/documentation/stdman/default.nix

··· 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "stdman"; 5 - version = "2020.11.17"; 5 + version = "2021.12.21"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "jeaye"; 9 9 repo = "stdman"; 10 10 rev = version; 11 - sha256 = "sha256-pzAVuXSuUfwI7gQpFqmH/+klSUH3KipZup2TgZs8XsY="; 11 + sha256 = "sha256-wOMQzC5w8aDmxNxQ5HK8jMgoow1wXBfHGUwFBw2WiPA="; 12 12 }; 13 13 14 14 outputDevdoc = "out";

+1

pkgs/development/interpreters/dzaima-apl/default.nix

··· 64 64 license = licenses.mit; 65 65 maintainers = with maintainers; [ AndersonTorres ]; 66 66 inherit (jdk.meta) platforms; 67 + broken = stdenv.isDarwin; # never built on Hydra https://hydra.nixos.org/job/nixpkgs/staging-next/dapl-native.x86_64-darwin 67 68 }; 68 69 } 69 70 # TODO: Processing app

+78 -28

pkgs/development/libraries/getdns/default.nix

··· 1 - { lib, stdenv, fetchurl, unbound, libidn2, openssl, doxygen, cmake }: 1 + # Getdns and Stubby are released together, see https://getdnsapi.net/releases/ 2 + 3 + { lib, stdenv, fetchurl, cmake, darwin, doxygen, libidn2, libyaml, openssl 4 + , systemd, unbound, yq }: 5 + let 6 + metaCommon = with lib; { 7 + maintainers = with maintainers; [ leenaars ehmry ]; 8 + license = licenses.bsd3; 9 + platforms = platforms.all; 10 + }; 11 + in rec { 12 + 13 + getdns = stdenv.mkDerivation rec { 14 + pname = "getdns"; 15 + version = "1.7.0"; 16 + outputs = [ "out" "dev" "lib" "man" ]; 17 + 18 + src = fetchurl { 19 + url = "https://getdnsapi.net/releases/${pname}-${ 20 + with builtins; 21 + concatStringsSep "-" (splitVersion version) 22 + }/${pname}-${version}.tar.gz"; 23 + sha256 = "sha256-6ocTzl4HesdrFBjOtq/SXm1OOelgD29egdOjoTpg9lI="; 24 + }; 25 + 26 + nativeBuildInputs = [ cmake doxygen ]; 27 + 28 + buildInputs = [ libidn2 openssl unbound ]; 2 29 3 - stdenv.mkDerivation rec { 4 - pname = "getdns"; 5 - version = "1.6.0"; 6 - versionRewrite = builtins.splitVersion version; 30 + postInstall = "rm -r $out/share/doc"; 7 31 8 - src = fetchurl { 9 - url = "https://getdnsapi.net/releases/${pname}-${ 10 - builtins.concatStringsSep "-" versionRewrite 11 - }/${pname}-${version}.tar.gz"; 12 - sha256 = "0jhg7258wz287kjymimvdvv04n69lwxdc3sb62l2p453f5s77ra0"; 32 + meta = with lib; 33 + metaCommon // { 34 + description = "A modern asynchronous DNS API"; 35 + longDescription = '' 36 + getdns is an implementation of a modern asynchronous DNS API; the 37 + specification was originally edited by Paul Hoffman. It is intended to make all 38 + types of DNS information easily available to application developers and non-DNS 39 + experts. DNSSEC offers a unique global infrastructure for establishing and 40 + enhancing cryptographic trust relations. With the development of this API the 41 + developers intend to offer application developers a modern and flexible 42 + interface that enables end-to-end trust in the DNS architecture, and which will 43 + inspire application developers to implement innovative security solutions in 44 + their applications. 45 + ''; 46 + homepage = "https://getdnsapi.net"; 47 + }; 13 48 }; 14 49 15 - nativeBuildInputs = [ cmake ]; 50 + stubby = stdenv.mkDerivation rec { 51 + pname = "stubby"; 52 + version = "0.4.0"; 53 + outputs = [ "out" "man" "stubbyExampleJson" ]; 16 54 17 - buildInputs = [ unbound libidn2 openssl doxygen ]; 55 + inherit (getdns) src; 56 + sourceRoot = "${getdns.name}/stubby"; 57 + 58 + nativeBuildInputs = [ cmake doxygen yq ]; 59 + 60 + buildInputs = [ getdns libyaml openssl systemd ] 61 + ++ lib.optionals stdenv.isDarwin [ darwin.Security ]; 18 62 19 - meta = with lib; { 20 - description = "A modern asynchronous DNS API"; 21 - longDescription = '' 22 - getdns is an implementation of a modern asynchronous DNS API; the 23 - specification was originally edited by Paul Hoffman. It is intended to make all 24 - types of DNS information easily available to application developers and non-DNS 25 - experts. DNSSEC offers a unique global infrastructure for establishing and 26 - enhancing cryptographic trust relations. With the development of this API the 27 - developers intend to offer application developers a modern and flexible 28 - interface that enables end-to-end trust in the DNS architecture, and which will 29 - inspire application developers to implement innovative security solutions in 30 - their applications. 63 + postInstall = '' 64 + rm -r $out/share/doc 65 + yq \ 66 + < $NIX_BUILD_TOP/$sourceRoot/stubby.yml.example \ 67 + > $stubbyExampleJson 31 68 ''; 32 - homepage = "https://getdnsapi.net"; 33 - maintainers = with maintainers; [ leenaars ehmry ]; 34 - license = licenses.bsd3; 35 - platforms = platforms.all; 69 + 70 + passthru.settingsExample = with builtins; 71 + fromJSON (readFile stubby.stubbyExampleJson); 72 + 73 + meta = with lib; 74 + metaCommon // { 75 + description = "A local DNS Privacy stub resolver (using DNS-over-TLS)"; 76 + longDescription = '' 77 + Stubby is an application that acts as a local DNS Privacy stub 78 + resolver (using RFC 7858, aka DNS-over-TLS). Stubby encrypts DNS 79 + queries sent from a client machine (desktop or laptop) to a DNS 80 + Privacy resolver increasing end user privacy. Stubby is developed by 81 + the getdns team. 82 + ''; 83 + homepage = "https://dnsprivacy.org/wiki/x/JYAT"; 84 + }; 36 85 }; 86 + 37 87 }

+25 -21

pkgs/development/libraries/libvncserver/default.nix

··· 1 - { lib, stdenv, fetchzip, fetchpatch, cmake 2 - , libjpeg, openssl, zlib, libgcrypt, libpng 3 - , systemd, Carbon 1 + { lib 2 + , stdenv 3 + , fetchFromGitHub 4 + , fetchpatch 5 + , cmake 6 + , libjpeg 7 + , openssl 8 + , zlib 9 + , libgcrypt 10 + , libpng 11 + , systemd 12 + , Carbon 4 13 }: 5 14 6 - let 7 - s = # Generated upstream information 8 - rec { 9 - pname = "libvncserver"; 10 - version = "0.9.13"; 11 - url = "https://github.com/LibVNC/libvncserver/archive/LibVNCServer-${version}.tar.gz"; 12 - sha256 = "0zz0hslw8b1p3crnfy3xnmrljik359h83dpk64s697dqdcrzy141"; # unpacked archive checksum 13 - }; 14 - in 15 - stdenv.mkDerivation { 16 - inherit (s) pname version; 17 - src = fetchzip { 18 - inherit (s) url sha256; 15 + stdenv.mkDerivation rec { 16 + pname = "libvncserver"; 17 + version = "0.9.13"; 18 + 19 + src = fetchFromGitHub { 20 + owner = "LibVNC"; 21 + repo = "libvncserver"; 22 + rev = "LibVNCServer-${version}"; 23 + sha256 = "sha256-gQT/M2u4nWQ0MfO2gWAqY0ZJc7V9eGczGzcsxKmG4H8="; 19 24 }; 20 25 21 26 nativeBuildInputs = [ cmake ]; ··· 24 29 ++ lib.optional stdenv.isDarwin Carbon; 25 30 propagatedBuildInputs = [ zlib ]; 26 31 27 - meta = { 28 - inherit (s) version; 32 + meta = with lib; { 29 33 description = "VNC server library"; 30 34 homepage = "https://libvnc.github.io/"; 31 - license = lib.licenses.gpl2Plus ; 32 - maintainers = [lib.maintainers.raskin]; 33 - platforms = lib.platforms.unix; 35 + license = licenses.gpl2Plus; 36 + maintainers = with maintainers; [ raskin ]; 37 + platforms = platforms.unix; 34 38 }; 35 39 }

+4 -4

pkgs/development/libraries/simpleitk/default.nix

··· 1 - { lib, stdenv, fetchFromGitHub, cmake, swig, lua, itk }: 1 + { lib, stdenv, fetchFromGitHub, cmake, swig4, lua, itk }: 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "simpleitk"; 5 - version = "2.0.2"; 5 + version = "2.1.1"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "SimpleITK"; 9 9 repo = "SimpleITK"; 10 10 rev = "v${version}"; 11 - sha256 = "1q51jmd6skrr31avxlrxx433lawc838ilzrj5vvv38a9f4gl45v8"; 11 + sha256 = "0ShUo9UVkliROIIR5bJtqlzESByfq9SQ1+Hy/40vJ50="; 12 12 }; 13 13 14 - nativeBuildInputs = [ cmake swig ]; 14 + nativeBuildInputs = [ cmake swig4 ]; 15 15 buildInputs = [ lua itk ]; 16 16 17 17 # 2.0.0: linker error building examples

+58

pkgs/development/python-modules/aocd/default.nix

··· 1 + { lib, stdenv, buildPythonPackage, fetchFromGitHub, requests 2 + , pytestCheckHook, tzlocal, pytest-mock, pytest-freezegun, pytest-raisin 3 + , pytest-socket, requests-mock, pebble, python-dateutil, termcolor 4 + , beautifulsoup4, setuptools 5 + }: 6 + 7 + buildPythonPackage rec { 8 + pname = "aocd"; 9 + version = "1.1.1"; 10 + 11 + src = fetchFromGitHub { 12 + owner = "wimglenn"; 13 + repo = "advent-of-code-data"; 14 + rev = "v${version}"; 15 + sha256 = "sha256-wdg6XUkjnAc9yAP7DP0UT6SlQHfj/ymhqzIGNM3fco4="; 16 + }; 17 + 18 + propagatedBuildInputs = [ 19 + python-dateutil 20 + requests 21 + termcolor 22 + beautifulsoup4 23 + pebble 24 + tzlocal 25 + setuptools 26 + ]; 27 + 28 + # Too many failing tests 29 + preCheck = "rm pytest.ini"; 30 + 31 + disabledTests = [ 32 + "test_results" 33 + "test_results_xmas" 34 + "test_run_error" 35 + "test_run_and_autosubmit" 36 + "test_run_and_no_autosubmit" 37 + "test_load_input_from_file" 38 + ]; 39 + 40 + checkInputs = [ 41 + pytestCheckHook 42 + pytest-mock 43 + pytest-freezegun 44 + pytest-raisin 45 + pytest-socket 46 + requests-mock 47 + ]; 48 + 49 + pythonImportsCheck = [ "aocd" ]; 50 + 51 + meta = with lib; { 52 + homepage = "https://github.com/wimglenn/advent-of-code-data"; 53 + description = "Get your Advent of Code data with a single import statement"; 54 + license = licenses.mit; 55 + maintainers = with maintainers; [ aadibajpai ]; 56 + platforms = platforms.unix; 57 + }; 58 + }

+2 -2

pkgs/development/python-modules/dbutils/default.nix

··· 5 5 }: 6 6 7 7 buildPythonPackage rec { 8 - version = "3.0.0"; 8 + version = "3.0.1"; 9 9 pname = "dbutils"; 10 10 11 11 src = fetchPypi { 12 12 inherit version; 13 13 pname = "DBUtils"; 14 - sha256 = "549d472197b3eef27e7bb2dd2246b28e880ac0ae9fdf63aadfd3b7def153db0c"; 14 + sha256 = "6ec83f4d75d7a7b42a92e86b775f251e2671639b3b2123fe13a5d8d8fe7c5643"; 15 15 }; 16 16 17 17 checkInputs = [ pytestCheckHook ];

+2 -2

pkgs/development/python-modules/deezer-py/default.nix

··· 7 7 8 8 buildPythonPackage rec { 9 9 pname = "deezer-py"; 10 - version = "1.2.9"; 10 + version = "1.3.0"; 11 11 disabled = pythonOlder "3.6"; 12 12 13 13 src = fetchPypi { 14 14 inherit pname version; 15 - sha256 = "16eacdc9c53f55d2130891c6335e88046afa0601184fd5197fee35a09e99d9cf"; 15 + sha256 = "2e38f02b6b8809907d3fb419d54c040bd176ec921b2b226a716fe7ebb456bde4"; 16 16 }; 17 17 18 18 propagatedBuildInputs = [ requests ];

+12 -6

pkgs/development/python-modules/grammalecte/default.nix

··· 7 7 8 8 buildPythonPackage rec { 9 9 pname = "grammalecte"; 10 - version = "0.6.5"; 10 + version = "2.1.1"; 11 11 12 12 src = fetchurl { 13 - url = "http://www.dicollecte.org/grammalecte/zip/Grammalecte-fr-v${version}.zip"; 14 - sha256 = "11byjs3ggdhia5f4vyfqfvbbczsfqimll98h98g7hlsrm7vrifb0"; 13 + url = "https://grammalecte.net/grammalecte/zip/Grammalecte-fr-v${version}.zip"; 14 + sha256 = "076jv3ywdgqqzg92bfbagc7ypy08xjq5zn4vgna6j9350fkfqhzn"; 15 15 }; 16 16 17 + patchPhase = '' 18 + runHook prePatch 19 + substituteInPlace grammalecte-server.py --replace sys.version_info.major sys.version_info 20 + runHook postPatch 21 + ''; 22 + 17 23 propagatedBuildInputs = [ bottle ]; 18 24 19 - preBuild = "cd .."; 25 + sourceRoot = "."; 20 26 21 27 disabled = !isPy3k; 22 28 23 29 meta = { 24 - description = "Grammalecte is an open source grammar checker for the French language"; 30 + description = "An open source grammar and typographic corrector for the French language"; 25 31 homepage = "https://grammalecte.net"; 26 - license = with lib.licenses; [ gpl3 ]; 32 + license = lib.licenses.gpl3Only; 27 33 maintainers = with lib.maintainers; [ apeyroux ]; 28 34 }; 29 35 }

+2 -2

pkgs/development/python-modules/jc/default.nix

··· 10 10 11 11 buildPythonPackage rec { 12 12 pname = "jc"; 13 - version = "1.17.4"; 13 + version = "1.17.5"; 14 14 disabled = pythonOlder "3.6"; 15 15 16 16 src = fetchFromGitHub { 17 17 owner = "kellyjonbrazil"; 18 18 repo = pname; 19 19 rev = "v${version}"; 20 - sha256 = "sha256-Dtyf7T34g2sD86cipKsOwfcCXet6u6f5oHVaHCBEbUA="; 20 + sha256 = "004773a1wsip1gnqvas78k0snv7yq83qv1spir891sz4mmg7fyin"; 21 21 }; 22 22 23 23 propagatedBuildInputs = [ ruamel-yaml xmltodict pygments ];

+3 -1

pkgs/development/python-modules/pebble/default.nix

··· 1 - { lib, buildPythonPackage, isPy27, fetchPypi, pytestCheckHook }: 1 + { lib, stdenv, buildPythonPackage, isPy27, fetchPypi, pytestCheckHook }: 2 2 3 3 buildPythonPackage rec { 4 4 pname = "pebble"; ··· 10 10 inherit version; 11 11 sha256 = "0a595f7mrf89xlck9b2x83bqybc9zd9jxkl0sa5cf19vax18rg8h"; 12 12 }; 13 + 14 + doCheck = !stdenv.isDarwin; 13 15 14 16 checkInputs = [ 15 17 pytestCheckHook

+2 -2

pkgs/development/python-modules/pybase64/default.nix

··· 7 7 8 8 buildPythonPackage rec { 9 9 pname = "pybase64"; 10 - version = "1.2.0"; 10 + version = "1.2.1"; 11 11 12 12 disabled = pythonOlder "3.6"; 13 13 14 14 src = fetchPypi { 15 15 inherit pname version; 16 - sha256 = "9e310fcf5cfa2cbf7d1d7eb503b6066bec785216bcd1d8c0a736f59d5ec21b0b"; 16 + sha256 = "d2016a3a487d3d4501d8281f61ee54c25efd65e37a4c7dce8011e0de7183c956"; 17 17 }; 18 18 19 19 checkInputs = [ pytestCheckHook ];

+37

pkgs/development/python-modules/pytest-raisin/default.nix

··· 1 + { lib 2 + , buildPythonPackage 3 + , fetchFromGitHub 4 + , flit-core 5 + , pytest 6 + }: 7 + 8 + buildPythonPackage rec { 9 + pname = "pytest-raisin"; 10 + version = "0.3"; 11 + format = "flit"; 12 + 13 + src = fetchFromGitHub { 14 + owner = "wimglenn"; 15 + repo = "pytest-raisin"; 16 + rev = "v${version}"; 17 + sha256 = "73cOrsqlE04m6X3a6VwtRzfi24oqkdO3HjKQH61bU88="; 18 + }; 19 + 20 + nativeBuildInputs = [ 21 + flit-core 22 + ]; 23 + 24 + propagatedBuildInputs = [ 25 + pytest 26 + ]; 27 + 28 + # tests cause circular pytest-raisin already registered with pytest error 29 + doCheck = false; 30 + 31 + meta = with lib; { 32 + description = "Plugin enabling the use of exception instances with pytest.raises context"; 33 + homepage = "https://github.com/wimglenn/pytest-raisin"; 34 + license = licenses.mit; 35 + maintainers = with maintainers; [ aadibajpai ]; 36 + }; 37 + }

+2 -2

pkgs/development/python-modules/vehicle/default.nix

··· 13 13 14 14 buildPythonPackage rec { 15 15 pname = "vehicle"; 16 - version = "0.3.0"; 16 + version = "0.3.1"; 17 17 format = "pyproject"; 18 18 19 19 disabled = pythonOlder "3.8"; ··· 22 22 owner = "frenck"; 23 23 repo = "python-vehicle"; 24 24 rev = "v${version}"; 25 - sha256 = "0blpyh246l16bn6jy8ifym2br13k8qxagggbwpzwrwfxkb3kdz5x"; 25 + sha256 = "04xcs5bfjd49j870gyyznc8hkaadsa9gm9pz0w9qvzlphnxvv5h4"; 26 26 }; 27 27 28 28 nativeBuildInputs = [

+3 -3

pkgs/development/tools/datree/default.nix

··· 2 2 3 3 buildGoModule rec { 4 4 pname = "datree"; 5 - version = "0.14.49"; 5 + version = "0.14.62"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "datreeio"; 9 9 repo = "datree"; 10 10 rev = version; 11 - sha256 = "0m126jjklkwiwzg44xkii9gx0pmhqm7xdj0hblsrp09jnym7rjns"; 11 + sha256 = "sha256-yNq3GRovFm0OlYNJJGjTe5AqKG9J4I+igJ/WVNLWdKI="; 12 12 }; 13 13 14 - vendorSha256 = "0msgq7bmy424bcyx23srjs7w2bck4b7zad8mi8l3j20ajya3amaa"; 14 + vendorSha256 = "sha256-SlU1lJcKCDkoihU19c8iky3Bj5ZZD9E9W0QQX9fBT1c="; 15 15 16 16 ldflags = [ 17 17 "-s"

+2 -2

pkgs/os-specific/linux/alsa-project/alsa-utils/default.nix

··· 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "alsa-utils"; 5 - version = "1.2.5.1"; 5 + version = "1.2.6"; 6 6 7 7 src = fetchurl { 8 8 url = "mirror://alsa/utils/${pname}-${version}.tar.bz2"; 9 - sha256 = "sha256-nBaa43pJKV+bl7kqzncoA9r2tlEKGVdOC3j4flYhGNA="; 9 + sha256 = "sha256-ah79ih8dnTjkiWM+rsH/+lwxVmOzFsq4BL5IaIfmFF0="; 10 10 }; 11 11 12 12 nativeBuildInputs = [ gettext makeWrapper ];

+2 -2

pkgs/os-specific/linux/kernel/linux-4.14.nix

··· 3 3 with lib; 4 4 5 5 buildLinux (args // rec { 6 - version = "4.14.258"; 6 + version = "4.14.259"; 7 7 8 8 # modDirVersion needs to be x.y.z, will automatically add .0 if needed 9 9 modDirVersion = if (modDirVersionArg == null) then concatStringsSep "." (take 3 (splitVersion "${version}.0")) else modDirVersionArg; ··· 13 13 14 14 src = fetchurl { 15 15 url = "mirror://kernel/linux/kernel/v4.x/linux-${version}.tar.xz"; 16 - sha256 = "162bzhm0k8kipgk0ma745rjcl33rqhpwxdfdz3q6rkp48b82kbvi"; 16 + sha256 = "0s23iq89xdgckzyh8xv7p7wx0agjpj8ac2p42jpx6yzp3xa89qi6"; 17 17 }; 18 18 } // (args.argsOverride or {}))

+2 -2

pkgs/os-specific/linux/kernel/linux-4.19.nix

··· 3 3 with lib; 4 4 5 5 buildLinux (args // rec { 6 - version = "4.19.221"; 6 + version = "4.19.222"; 7 7 8 8 # modDirVersion needs to be x.y.z, will automatically add .0 if needed 9 9 modDirVersion = if (modDirVersionArg == null) then concatStringsSep "." (take 3 (splitVersion "${version}.0")) else modDirVersionArg; ··· 13 13 14 14 src = fetchurl { 15 15 url = "mirror://kernel/linux/kernel/v4.x/linux-${version}.tar.xz"; 16 - sha256 = "1yg1cibyn53gpjnxfgj2qxxi8k3l7gv1ri6kywvp6sk5bygx8jd3"; 16 + sha256 = "0f48c6lv0nqggn5rn1wfnlf3xjz6ckmzvjqbhpyar43x7l687c4p"; 17 17 }; 18 18 } // (args.argsOverride or {}))

+2 -2

pkgs/os-specific/linux/kernel/linux-4.4.nix

··· 1 1 { buildPackages, fetchurl, perl, buildLinux, nixosTests, stdenv, ... } @ args: 2 2 3 3 buildLinux (args // rec { 4 - version = "4.4.295"; 4 + version = "4.4.296"; 5 5 extraMeta.branch = "4.4"; 6 6 extraMeta.broken = stdenv.isAarch64; 7 7 8 8 src = fetchurl { 9 9 url = "mirror://kernel/linux/kernel/v4.x/linux-${version}.tar.xz"; 10 - sha256 = "1h3i2lgm2sy325f58jildip7m6sb4hr2n9pm3gc3h2gash65kc2r"; 10 + sha256 = "1ydh6qiib6anxv5kxd13d9p2hjh3ni7r3whxazlzvckijmzqd5nb"; 11 11 }; 12 12 } // (args.argsOverride or {}))

+2 -2

pkgs/os-specific/linux/kernel/linux-4.9.nix

··· 1 1 { buildPackages, fetchurl, perl, buildLinux, nixosTests, stdenv, ... } @ args: 2 2 3 3 buildLinux (args // rec { 4 - version = "4.9.293"; 4 + version = "4.9.294"; 5 5 extraMeta.branch = "4.9"; 6 6 extraMeta.broken = stdenv.isAarch64; 7 7 8 8 src = fetchurl { 9 9 url = "mirror://kernel/linux/kernel/v4.x/linux-${version}.tar.xz"; 10 - sha256 = "0l64rz6ly5ls23lqq0cv98xb4z2mimp2jrsjrs6kq3zm4k2mm4gs"; 10 + sha256 = "0s527wr1zngyfz4p7nss1id14amc448g19i1wy20s13n43gm1jii"; 11 11 }; 12 12 } // (args.argsOverride or {}))

+2 -2

pkgs/os-specific/linux/kernel/linux-5.10.nix

··· 3 3 with lib; 4 4 5 5 buildLinux (args // rec { 6 - version = "5.10.87"; 6 + version = "5.10.88"; 7 7 8 8 # modDirVersion needs to be x.y.z, will automatically add .0 if needed 9 9 modDirVersion = if (modDirVersionArg == null) then concatStringsSep "." (take 3 (splitVersion "${version}.0")) else modDirVersionArg; ··· 13 13 14 14 src = fetchurl { 15 15 url = "mirror://kernel/linux/kernel/v5.x/linux-${version}.tar.xz"; 16 - sha256 = "0jz6xhph7x0x11cjmypaw5gh8z4d53dcgx2gmg7k6d06ydq8n4h3"; 16 + sha256 = "1sv8j34k75xpbdgyddhlszlgn74fbj0girgixz7v18l2qfv331kg"; 17 17 }; 18 18 } // (args.argsOverride or {}))

+2 -2

pkgs/os-specific/linux/kernel/linux-5.15.nix

··· 3 3 with lib; 4 4 5 5 buildLinux (args // rec { 6 - version = "5.15.10"; 6 + version = "5.15.11"; 7 7 8 8 # modDirVersion needs to be x.y.z, will automatically add .0 if needed 9 9 modDirVersion = if (modDirVersionArg == null) then concatStringsSep "." (take 3 (splitVersion "${version}.0")) else modDirVersionArg; ··· 13 13 14 14 src = fetchurl { 15 15 url = "mirror://kernel/linux/kernel/v5.x/linux-${version}.tar.xz"; 16 - sha256 = "0jsv8lialjwp91qg9c9rh8rhn49a70ryyhzl19bxq3fhz1fwyks8"; 16 + sha256 = "1km1fglpg1a67vsfx6gqz9ikb6pywdl146bhws915n8jgrz8n5y1"; 17 17 }; 18 18 } // (args.argsOverride or { }))

+2 -2

pkgs/os-specific/linux/kernel/linux-5.4.nix

··· 3 3 with lib; 4 4 5 5 buildLinux (args // rec { 6 - version = "5.4.167"; 6 + version = "5.4.168"; 7 7 8 8 # modDirVersion needs to be x.y.z, will automatically add .0 if needed 9 9 modDirVersion = if (modDirVersionArg == null) then concatStringsSep "." (take 3 (splitVersion "${version}.0")) else modDirVersionArg; ··· 13 13 14 14 src = fetchurl { 15 15 url = "mirror://kernel/linux/kernel/v5.x/linux-${version}.tar.xz"; 16 - sha256 = "19x5f3s5f4nqzjb61g22rs0hnmk43q4b7sm7mc4j1q3y44b33r5l"; 16 + sha256 = "108i35bnfhv7cpq8ifp915ybngygl2qf6cfslrh3aqk5sk29mdzc"; 17 17 }; 18 18 } // (args.argsOverride or {}))

+2 -2

pkgs/os-specific/linux/kernel/linux-libre.nix

··· 1 1 { stdenv, lib, fetchsvn, linux 2 2 , scripts ? fetchsvn { 3 3 url = "https://www.fsfla.org/svn/fsfla/software/linux-libre/releases/branches/"; 4 - rev = "18484"; 5 - sha256 = "0wyxpfzkpjwxsp4pqfjrpdr9vqgszsa31g1a5f9r7d1rkkw94f3s"; 4 + rev = "18517"; 5 + sha256 = "1i4gppn3lyi3aqzscrdhm2dsvfa84xqhymcc468sakn9in3g85gg"; 6 6 } 7 7 , ... 8 8 }:

+3 -3

pkgs/os-specific/linux/kernel/linux-rt-5.10.nix

··· 6 6 , ... } @ args: 7 7 8 8 let 9 - version = "5.10.83-rt58"; # updated by ./update-rt.sh 9 + version = "5.10.87-rt59"; # updated by ./update-rt.sh 10 10 branch = lib.versions.majorMinor version; 11 11 kversion = builtins.elemAt (lib.splitString "-" version) 0; 12 12 in buildLinux (args // { ··· 18 18 19 19 src = fetchurl { 20 20 url = "mirror://kernel/linux/kernel/v5.x/linux-${kversion}.tar.xz"; 21 - sha256 = "0w4vq8wby3m9f5ryssh6z948m6zj1bjz9x432805dnrxyd1rl9gg"; 21 + sha256 = "0jz6xhph7x0x11cjmypaw5gh8z4d53dcgx2gmg7k6d06ydq8n4h3"; 22 22 }; 23 23 24 24 kernelPatches = let rt-patch = { 25 25 name = "rt"; 26 26 patch = fetchurl { 27 27 url = "mirror://kernel/linux/kernel/projects/rt/${branch}/older/patch-${version}.patch.xz"; 28 - sha256 = "1n1jj7zyhnk4d5imf5v0cblqxv7q0ybc3i17yd224qmkj3bmly9w"; 28 + sha256 = "04sr3n3ilvqq0dl59l92qmn3p7fjlsxxvbs3qls7b4pncb2xyyj3"; 29 29 }; 30 30 }; in [ rt-patch ] ++ kernelPatches; 31 31

+2 -2

pkgs/tools/admin/chamber/default.nix

··· 2 2 3 3 buildGoModule rec { 4 4 pname = "chamber"; 5 - version = "2.10.6"; 5 + version = "2.10.7"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "segmentio"; 9 9 repo = pname; 10 10 rev = "v${version}"; 11 - sha256 = "sha256-8VnFpzm5St0AYFzups2ILQ/MrQRZLQ1xY9JjlGVBmZk="; 11 + sha256 = "sha256-HpxHGbgPdu92ha0QO15x1rrJikDmpSA8E8YdgjzQ/Mw="; 12 12 }; 13 13 14 14 CGO_ENABLED = 0;

+3 -3

pkgs/tools/misc/fend/default.nix

··· 2 2 3 3 rustPlatform.buildRustPackage rec { 4 4 pname = "fend"; 5 - version = "0.1.26"; 5 + version = "0.1.27"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "printfn"; 9 9 repo = pname; 10 10 rev = "v${version}"; 11 - sha256 = "sha256-U5LYjoq11qZYus/McDbtVljj2RSP9MCXXDvOWgbXerk="; 11 + sha256 = "sha256-4Zn42GXtX1UZYa8m3Ig90xDkmwDG7egPE5fRzPYj9sw="; 12 12 }; 13 13 14 - cargoSha256 = "sha256-E7by7FJfmOBqDoZLA9s/bj/EHaZ4IsHYTHWcvIuaMNg="; 14 + cargoSha256 = "sha256-brk6hpBq/wyt0TWQGojTk+bz3/2Jvwx7MoVSkTEq0hU="; 15 15 16 16 doInstallCheck = true; 17 17

-33

pkgs/tools/networking/stubby/default.nix

··· 1 - { lib, stdenv, fetchFromGitHub, getdns, doxygen, libyaml, darwin, cmake, systemd }: 2 - 3 - stdenv.mkDerivation rec { 4 - pname = "stubby"; 5 - version = "0.3.0"; 6 - 7 - src = fetchFromGitHub { 8 - owner = "getdnsapi"; 9 - repo = pname; 10 - rev = "v${version}"; 11 - sha256 = "04izd1v4fv9l7r75aafkrp6svczbx4cvv1vnfyx5n9105pin11mx"; 12 - }; 13 - 14 - nativeBuildInputs = [ cmake libyaml ]; 15 - 16 - buildInputs = [ doxygen getdns systemd ] 17 - ++ lib.optionals stdenv.isDarwin [ darwin.Security ]; 18 - 19 - meta = with lib; { 20 - description = "A local DNS Privacy stub resolver (using DNS-over-TLS)"; 21 - longDescription = '' 22 - Stubby is an application that acts as a local DNS Privacy stub 23 - resolver (using RFC 7858, aka DNS-over-TLS). Stubby encrypts DNS 24 - queries sent from a client machine (desktop or laptop) to a DNS 25 - Privacy resolver increasing end user privacy. Stubby is developed by 26 - the getdns team. 27 - ''; 28 - homepage = "https://dnsprivacy.org/wiki/x/JYAT"; 29 - downloadPage = "https://github.com/getdnsapi/stubby"; 30 - maintainers = with maintainers; [ leenaars ehmry ]; 31 - license = licenses.bsd3; platforms = platforms.all; 32 - }; 33 - }

+4 -3

pkgs/tools/security/passff-host/default.nix

··· 2 2 3 3 stdenv.mkDerivation rec { 4 4 pname = "passff-host"; 5 - version = "1.2.2"; 5 + version = "1.2.3"; 6 6 7 7 src = fetchFromGitHub { 8 8 owner = "passff"; 9 9 repo = pname; 10 10 rev = version; 11 - sha256 = "sha256-9q4onU/e/pzLp5lGQjf/ScOOCVMiMQRaLGEm8K8flX4="; 11 + sha256 = "sha256-1JPToJF/ruu69TEZAAvV3Zl0qcTpEyMb2qQDAWWgKNw="; 12 12 }; 13 13 14 14 buildInputs = [ python3 ]; ··· 30 30 /etc/opt/chrome/native-messaging-hosts 31 31 /etc/chromium/native-messaging-hosts 32 32 /etc/vivaldi/native-messaging-hosts 33 + /lib/librewolf/native-messaging-hosts 33 34 ) 34 35 35 36 for manifestDir in "''${nativeMessagingPaths[@]}"; do ··· 42 43 description = "Host app for the WebExtension PassFF"; 43 44 homepage = "https://github.com/passff/passff-host"; 44 45 license = licenses.gpl2; 45 - maintainers = with maintainers; [ nadrieril ]; 46 + maintainers = with maintainers; [ ]; 46 47 }; 47 48 }

+10 -13

pkgs/tools/security/qdigidoc/default.nix

··· 1 - { lib, mkDerivation, fetchgit, fetchurl, cmake, darkhttpd, gettext, makeWrapper, pkg-config 2 - , libdigidocpp, opensc, openldap, openssl, pcsclite, qtbase, qttranslations, qtsvg }: 1 + { lib, mkDerivation, fetchurl, cmake, darkhttpd, gettext, makeWrapper 2 + , pkg-config, libdigidocpp, opensc, openldap, openssl, pcsclite, qtbase 3 + , qttranslations, qtsvg }: 3 4 4 5 mkDerivation rec { 5 6 pname = "qdigidoc"; 6 - version = "4.2.8"; 7 + version = "4.2.9"; 7 8 8 - src = fetchgit { 9 - url = "https://github.com/open-eid/DigiDoc4-Client"; 10 - rev = "v${version}"; 11 - sha256 = "02k2s6l79ssvrksa0midm7bq856llrmq0n40yxwm3j011nvc8vsm"; 12 - fetchSubmodules = true; 9 + src = fetchurl { 10 + url = 11 + "https://github.com/open-eid/DigiDoc4-Client/releases/download/v${version}/qdigidoc4-${version}.tar.gz"; 12 + sha256 = "1rhd3mvj6ld16zgfscj81f1vhs2nvifsizky509l1av7dsjfbbzr"; 13 13 }; 14 14 15 15 tsl = fetchurl { 16 - url = "https://ec.europa.eu/information_society/policy/esignature/trusted-list/tl-mp.xml"; 17 - sha256 = "0klz9blrp0jjhlr9k1i266afp44pqmii1x0y8prk0417ia3fxpli"; 16 + url = "https://ec.europa.eu/tools/lotl/eu-lotl-pivot-300.xml"; 17 + sha256 = "1cikz36w9phgczcqnwk4k3mx3kk919wy2327jksmfa4cjfjq4a8d"; 18 18 }; 19 - 20 - # Adds explicit imports for QPainterPath, fixed in upstream (https://github.com/open-eid/DigiDoc4-Client/pull/914) 21 - patches = [ ./qt5.15.patch ]; 22 19 23 20 nativeBuildInputs = [ cmake darkhttpd gettext makeWrapper pkg-config ]; 24 21

-39

pkgs/tools/security/qdigidoc/qt5.15.patch

··· 1 - From 1aa314f5433b9b3e89a1c05b5c465fb477435e23 Mon Sep 17 00:00:00 2001 2 - From: Dmitri Smirnov <dmitri@smirnov.ee> 3 - Date: Mon, 8 Mar 2021 14:15:27 +0100 4 - Subject: [PATCH] =?UTF-8?q?Added=20explicit=20imports=20for=20QPainterPath?= 5 - =?UTF-8?q?=20to=20fix=20builds=20with=20Qt=20=E2=89=A5=205.15?= 6 - MIME-Version: 1.0 7 - Content-Type: text/plain; charset=UTF-8 8 - Content-Transfer-Encoding: 8bit 9 - 10 - Signed-off-by: Dmitri Smirnov <dmitri@smirnov.ee> 11 - --- 12 - client/widgets/CheckBox.cpp | 1 + 13 - client/widgets/MainAction.cpp | 1 + 14 - 2 files changed, 2 insertions(+) 15 - 16 - diff --git a/client/widgets/CheckBox.cpp b/client/widgets/CheckBox.cpp 17 - index a03b56e5d..725d585b7 100644 18 - --- a/client/widgets/CheckBox.cpp 19 - +++ b/client/widgets/CheckBox.cpp 20 - @@ -22,6 +22,7 @@ 21 - #include <QBrush> 22 - #include <QPaintEvent> 23 - #include <QPainter> 24 - +#include <QPainterPath> 25 - #include <QStyleOptionButton> 26 - 27 - CheckBox::CheckBox(QWidget *parent) 28 - diff --git a/client/widgets/MainAction.cpp b/client/widgets/MainAction.cpp 29 - index 4cf4bb1cf..a46c193e3 100644 30 - --- a/client/widgets/MainAction.cpp 31 - +++ b/client/widgets/MainAction.cpp 32 - @@ -24,6 +24,7 @@ 33 - 34 - #include <QtCore/QSettings> 35 - #include <QtGui/QPainter> 36 - +#include <QtGui/QPainterPath> 37 - #include <QtGui/QPaintEvent> 38 - 39 - using namespace ria::qdigidoc4;

+5 -4

pkgs/top-level/all-packages.nix

··· 186 186 187 187 antsimulator = callPackage ../games/antsimulator { }; 188 188 189 + aocd = with pythonPackages; toPythonApplication aocd; 190 + 189 191 astrolog = callPackage ../applications/science/astronomy/astrolog { }; 190 192 191 193 atkinson-hyperlegible = callPackage ../data/fonts/atkinson-hyperlegible { }; ··· 9789 9791 9790 9792 stremio = qt5.callPackage ../applications/video/stremio { }; 9791 9793 9792 - stubby = callPackage ../tools/networking/stubby { }; 9793 - 9794 9794 sunwait = callPackage ../applications/misc/sunwait { }; 9795 9795 9796 9796 surface-control = callPackage ../applications/misc/surface-control { }; ··· 16514 16514 16515 16515 getdata = callPackage ../development/libraries/getdata { }; 16516 16516 16517 - getdns = callPackage ../development/libraries/getdns { }; 16517 + inherit (callPackages ../development/libraries/getdns { }) 16518 + getdns stubby; 16518 16519 16519 16520 gettext = callPackage ../development/libraries/gettext { }; 16520 16521 ··· 19733 19734 19734 19735 simp_le = callPackage ../tools/admin/simp_le { }; 19735 19736 19736 - simpleitk = callPackage ../development/libraries/simpleitk { }; 19737 + simpleitk = callPackage ../development/libraries/simpleitk { lua = lua5_3; }; 19737 19738 19738 19739 sfml = callPackage ../development/libraries/sfml { 19739 19740 inherit (darwin.apple_sdk.frameworks) IOKit Foundation AppKit OpenAL;

+4

pkgs/top-level/python-packages.nix

··· 540 540 inherit (pkgs) graphviz; 541 541 }; 542 542 543 + aocd = callPackage ../development/python-modules/aocd { }; 544 + 543 545 apache-airflow = callPackage ../development/python-modules/apache-airflow { }; 544 546 545 547 apcaccess = callPackage ../development/python-modules/apcaccess { }; ··· 7622 7624 pytest-raises = callPackage ../development/python-modules/pytest-raises { }; 7623 7625 7624 7626 pytest-raisesregexp = callPackage ../development/python-modules/pytest-raisesregexp { }; 7627 + 7628 + pytest-raisin = callPackage ../development/python-modules/pytest-raisin { }; 7625 7629 7626 7630 pytest-randomly = callPackage ../development/python-modules/pytest-randomly { }; 7627 7631