Conversation
|
Oop, didn't mark as draft before opening. |
|
The |
|
Could you also mark as vulnerable all the vulnerable java versions of adoptopenjdk, temurin, semeru...? |
Done
Noted, I was wondering why that was :) |
|
JDK builds in Nixpkgs definitely need better infrastructure. Needing to set things in a number of different places to mark a version as EOL, and update so many different packages, is likely what has led to the state of the JDK in Nixpkgs. |
thiagokokada
left a comment
There was a problem hiding this comment.
Great work, but will probably need to target staging (or staging-next considering the security issue?) since there will be lots of rebuilds here.
|
Went ahead and switched to target staging for now |
|
The PR to fix the |
|
Can you fix eval here? |
|
This eval issue really is more annoying than expected... The issue is that in some cases, not all of the variants exist, so it fails to evaluate. However things like the package itself, |
|
Just to update everyone on this, I've worked a bit on the eval issue, and it is a bit of a mess because of how the package assumes all of the variants will exist. (Thus it requires a fair amount of reworking to not make that assumption.) Midterms and a family emergency has eaten up all of my free time recently, which is why I haven't made progress. Spring break is starting soon though, so I should be able to finish this up then.
|
52ca445 to
2d1d234
Compare
|
OH HECK |
|
NOT AGAIN |
|
It looks like you accidentally mass-pinged a bunch of people, which are now subscribed Please create a new pull request, link back to this one and ping the In order to avoid this in the future, there are instructions for how to properly |
Description of changes
Bumps all of the OpenJDK packages to the latest versions, with the exception of
oraclejdk, as that requires an Oracle account to properly bump.I have built all of the normal OpenJDK versions personally, but will let ofborg check the others.
Notes:
-gain order to let it build. Let me know if this should be changed.all-package.nixbindings yet. Let me know if I should. I'll double check for usages first.This PR, in conjunction with #273811, addresses concerns raised by #280901.
Things done
nix.conf? (See Nix manual)sandbox = relaxedsandbox = truenix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage./result/bin/)Add a 👍 reaction to pull requests you find important.