Commit Graph

66 Commits

Author SHA1 Message Date
Robert Hensing
ccdfb9c6ea cassandra: Add myself as maintainer 2020-12-14 15:37:46 +01:00
Robert Hensing
a298710dd1 cassandra: Add passthru.tests 2020-12-09 13:24:48 +01:00
Robert Hensing
48929049d7
Merge pull request #104838 from redvers/update_cassandra_2.1.20_to_2.1.22_cve-2020-13946
cassandra_2_1: 2.1.20 -> 2.1.22
2020-12-09 13:21:04 +01:00
Robert Hensing
ed03f1a594
Merge pull request #104840 from redvers/update_cassandra_2.2.14_to_2.2.19_cve-2020-13946
cassandra_2_2: 2.2.14 -> 2.2.19
2020-12-09 13:20:34 +01:00
Robert Hensing
f41b7f6153
Merge pull request #104835 from redvers/update_cassandra_3.11.4_3.11.9_cve-2020-13946
cassandra: 3.11.4 -> 3.11.9
2020-12-09 13:19:53 +01:00
Casey Ransom
f6e974e701 cassandra: remove maintainer cransom
I've been disconnected from Cassandra for years now, I wouldn't be an
appropriate maintainer.
2020-12-02 11:01:14 -05:00
Red Davies
1431c3cc60 cassandra_3_0: 3.0.17 -> 3.0.23
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

3.0.x users should upgrade to 3.0.22
2020-11-24 21:21:56 -05:00
Red Davies
ee1b13dd13 cassandra_2_2: 2.2.14 -> 2.2.19
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

2.2.x users should upgrade to 2.2.18
2020-11-24 20:58:37 -05:00
Red Davies
b0f1fea52f cassandra_2_1: 2.1.20 -> 2.1.22
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

2.1.x users should upgrade to 2.1.22
2020-11-24 20:42:29 -05:00
Red Davies
90d2986368 cassandra: 3.11.4 -> 3.11.9
Reason: Fixes CVE-2020-13946 Apache Cassandra RMI Rebind Vulnerability

Description:
It is possible for a local attacker without access to the Apache Cassandra
process or configuration files to manipulate the RMI registry to perform a
man-in-the-middle attack and capture user names and passwords used to access
the JMX interface. The attacker can then use these credentials to access
the JMX interface and perform unauthorised operations.

Users should also be aware of CVE-2019-2684, a JRE vulnerability that enables
this issue to be exploited remotely.

3.11.x users should upgrade to 3.11.8
2020-11-24 20:24:32 -05:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Jonathan Ringer
954f52d690 cassandra_2_2: 2.2.13 -> 2.2.14 2019-08-06 02:18:31 -07:00
B YI
d737cf3cbf cassandra 3.11.3 -> 3.11.4
also add test to all-test.nix
2019-07-14 22:22:04 +08:00
Daniel Schaefer
d8ad5ad2a2 cassandra: Properly wrap all binaries
Would previously overwrite the binary with the wrapper and thus wrap
itself (resulting in an infinite recursion on execution) for the
binaries in /bin.t
2019-06-13 04:36:41 +02:00
Daniel Schaefer
2e6b8ae970 cassandra: Wrap new binaries (#59090)
The new releases of cassandra added some binaries that the install
script didn't wrap and thus were unusable.
2019-04-07 15:53:57 +02:00
xeji
1924e14d2e
Merge pull request #44615 from fuzzy-id/cassandra-version-bumps
Cassandra version bumps
2018-08-07 18:21:53 +02:00
Thomas Bach
31e11bdd60 cassandra: rewrote service from scratch
Adds a replacement for the previously broken
`services.database.cassandra` with tests for a multi-node setup.
2018-08-07 14:48:43 +00:00
Thomas Bach
2fb2c856a1 cassandra: 3.11.2 -> 3.11.3 2018-08-07 16:21:53 +02:00
Thomas Bach
4ad52535b3 cassandra: 3.0.15 -> 3.0.17 2018-08-07 16:21:52 +02:00
Thomas Bach
145b026fb4 cassandra: 2.2.11 -> 2.2.13 2018-08-07 16:21:51 +02:00
Thomas Bach
d3661c678e cassandra: 2.1.19 -> 2.1.20 2018-08-07 16:21:51 +02:00
Thomas Bach
53e3aa1539 cassandra: 3.11.1 -> 3.11.2 2018-04-27 10:07:37 +02:00
Matthew Bauer
ce8ce600ae unix-tools: introduce unix-tools.nix
unix-tools.nix has a collection of tools that are commonly installed
by default in Unix derivatives. This is intended to provide
compatibility between macOS and Linux users. Three Linux-only
derivations are provided for compatbility:

- procps
- utillinux
- nettools

More tools are also provided.

Also: treewide: use unixtools

Non-comprehensive replace of Linux-only procps and util-linux with
'unixtools'.
2018-03-26 17:40:55 -05:00
Thomas Bach
30c71376c9
cassandra: 3.0.9 -> 3.0.15 2018-02-07 09:09:04 +08:00
Thomas Bach
798c6cdaca
cassandra: 2.2.9 -> 2.2.11 2018-02-07 09:08:41 +08:00
Thomas Bach
a9264dbeab
cassandra: 2.1.15 -> 2.1.19 2018-02-07 09:08:17 +08:00
Tobias Geerinckx-Rice
0f84673f3d
Remove nckx as a maintainer for all packages
Goodbye, and thanks for all the Nix...
2018-01-16 23:00:49 +01:00
Antoine Eiche
df40f4371d cassandra: 3.0.9 -> 3.11.1 release
We still keep the 3.0.9 attribute to have a stable 3.x release.
2017-12-15 11:28:12 +01:00
rushmorem
51d138f401 cassandra: remove myself from maintainers 2017-08-29 20:28:57 +02:00
Robert Helgesson
4d192a3522
cassandra: clean up installed documentation
Fixes #28281.
2017-08-21 19:41:59 +02:00
Robert Helgesson
e965d8aa1c
cassandra: remove old branches 1.2 and 2.0
These are no longer supported upstream.
2017-03-07 21:54:13 +01:00
Robert Helgesson
ac0021ce53
cassandra_2_2: init at 2.2.9 2017-03-07 21:46:50 +01:00
Tim Steinbach
9489efd672
cassandra: 3.0.8 -> 3.0.9 2016-10-22 13:50:00 -04:00
Joris Guyonvarch
f038ea0fae Cassandra: add procps dep only on linux (#19299) 2016-10-06 21:45:11 +02:00
Casey Ransom
6ce28ca5c0 cassandra: refactor versioning
This change:
- refactors the packages so it is easier to create and update new versions of
  cassandra.
- fixes a bug where Cassandra will not connect to another member unless
  LD_PRELOADing libstdc++.so. Without that change, it generates a stack trace
  and dies with exceptions regarding org.xerial.snappy.
- restricts platform to linux as procps is also linux only.
2016-08-02 20:58:35 -04:00
Tobias Geerinckx-Rice
d391db8c01
cassandra_2_1: 2.1.14 -> 2.1.15 2016-07-06 15:56:33 +02:00
Tobias Geerinckx-Rice
c70db3456f
cassandra_3_0: 3.0.7 -> 3.0.8 2016-07-06 15:56:33 +02:00
Tim Steinbach
f4ca43dc5f cassandra: Add 3.0 2016-06-16 21:12:26 +00:00
Tobias Geerinckx-Rice
298d47ba01
cassandra: 2.1.13 -> 2.1.14 2016-04-28 14:17:24 +02:00
Tobias Geerinckx-Rice
ccf73a5f67 cassandra: 2.1.12 -> 2.1.13 2016-02-12 00:17:39 +01:00
Tobias Geerinckx-Rice
dfb31c3262 cassandra 2.1.11 -> 2.1.12 2015-12-08 03:04:31 +01:00
Pascal Wittmann
7fd2796e99 Replace 'with plaforms; platform' with 'platforms.platform' 2015-11-17 21:30:43 +01:00
Tobias Geerinckx-Rice
e07faf00f0 cassandra 2.1.10 -> 2.1.11 2015-10-19 18:19:00 +02:00
Tobias Geerinckx-Rice
65bb240357 cassandra 2.1.9 -> 2.1.10 2015-10-08 01:42:46 +02:00
Tobias Geerinckx-Rice
5385a0a82a cassandra: use mirrors
Upstream likes to move "old" releases to an archive mirror as soon as a
new one is released. This is now handled for free by mirrors.nix.

(No idea why cs.utah.edu was used to begin with; it's now added to
mirrors.nix. Note that it doesn't support SSL, but that applies to
several others so I don't see the harm.)
2015-09-02 20:04:11 +02:00
Tobias Geerinckx-Rice
6c377c864a cassandra: 2.1.8 -> 2.1.9
The 2.1.8 sources have been removed upstream.
2015-09-02 16:01:09 +02:00
Bjørn Forsman
5079b4f27b cassandra: 2.1.7 -> 2.1.8
Version 2.1.7 is not available anymore from current mirror. This is a
stable update.
2015-08-16 19:30:05 +02:00
Brandon Carrell
4f4fa58199 cassandra-1.2: Add package.
- Add myself to maintainers.
- Add package to all-packages.nix.
2015-07-14 19:35:16 -04:00
Russell O'Connor
946a6823b2 cassandra: add procps depencency, closes #8512
${cassandra}/conf/cassandra-env.sh calls free program on Linux systems in
calculate_heap_sizes().

Adding procps to the path makes the free program available.
2015-06-26 18:03:54 +02:00