Skip to content

ciscoPacketTracer{7,8}: use libxml2_13 that has patches for CVEs, fix desktop icons, refactor#426866

Merged
fabianhjr merged 7 commits intoNixOS:staging-nextfrom
gepbird:packet-tracer-refactor
Aug 15, 2025
Merged

ciscoPacketTracer{7,8}: use libxml2_13 that has patches for CVEs, fix desktop icons, refactor#426866
fabianhjr merged 7 commits intoNixOS:staging-nextfrom
gepbird:packet-tracer-refactor

Conversation

@gepbird
Copy link
Contributor

@gepbird gepbird commented Jul 20, 2025
edited
Loading

This fixes the security warning, as libxml2_13 includes CVE patches. I also made some other refactoring changes and smaller fixes.

Things done

  • Built on platform:
    • x86_64-linux
    • aarch64-linux
    • x86_64-darwin
    • aarch64-darwin
  • Tested, as applicable:
  • Ran nixpkgs-review on this PR. See nixpkgs-review usage.
  • Tested basic functionality of all binary files, usually in ./result/bin/.
  • Nixpkgs Release Notes
    • Package update: when the change is major or breaking.
  • NixOS Release Notes
    • Module addition: when adding a new NixOS module.
    • Module update: when the change is significant.
  • Fits CONTRIBUTING.md, pkgs/README.md, maintainers/README.md and others READMEs.

Add a 👍 reaction to pull requests you find important.

@nixpkgs-ci nixpkgs-ci bot added 10.rebuild-linux: 1-10 This PR causes between 1 and 10 packages to rebuild on Linux. 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 11.by: package-maintainer This PR was created by a maintainer of all the package it changes. 2.status: merge conflict This PR has merge conflicts with the target branch labels Jul 20, 2025
@gepbird
Copy link
Contributor Author

gepbird commented Jul 27, 2025

I'm wondering when #421740 will be merged from staging to staging-next or where can I track this, recently a PR was merged from staging-next to master.

@Lokito23
Copy link

Lokito23 commented Aug 6, 2025

I'm wondering when #421740 will be merged from staging to staging-next or where can I track this, recently a PR was merged from staging-next to master.

It can be tracked with nixpk.gs, when specifying the PR number.

@gepbird gepbird force-pushed the packet-tracer-refactor branch from c8e8c46 to 29fa099 Compare August 14, 2025 09:52
@nixpkgs-ci nixpkgs-ci bot removed the 2.status: merge conflict This PR has merge conflicts with the target branch label Aug 14, 2025
@gepbird gepbird force-pushed the packet-tracer-refactor branch 2 times, most recently from 5a2ac99 to 98e95ab Compare August 14, 2025 11:03
@gepbird gepbird changed the title ciscoPacketTracer{7,8}: use libxml2_13 ciscoPacketTracer{7,8}: use libxml2_13 that has patches for CVEs, fix desktop icons, refactor Aug 14, 2025
@gepbird
Copy link
Contributor Author

gepbird commented Aug 14, 2025

I'm not sure why eval fails and what can we do about it, it should be unrelated to the PR

@gepbird gepbird marked this pull request as ready for review August 14, 2025 11:15
@gepbird gepbird added the 1.severity: security Issues which raise a security issue, or PRs that fix one label Aug 14, 2025
@gepbird
Copy link
Contributor Author

gepbird commented Aug 14, 2025

cc previous reviewers and mergers: @jopejoe1 @griffi-gh @khaneliman @ryand56

@ryand56
Copy link
Member

ryand56 commented Aug 14, 2025
edited
Loading

Eval failure looks to be #432489 (comment)
Looks like it was fixed, rebase once staging-next is merged into staging

@fabianhjr
Copy link
Member

fabianhjr commented Aug 14, 2025

I think it would be better to rebase into staging-next, it is acceptable to merge into staging-next non-mass rebuilds that depend on something already on staging-next

@gepbird gepbird marked this pull request as draft August 14, 2025 21:31
@gepbird gepbird force-pushed the packet-tracer-refactor branch from 98e95ab to 0088256 Compare August 14, 2025 21:32
@gepbird gepbird changed the base branch from staging to staging-next August 14, 2025 21:32
@nixpkgs-ci nixpkgs-ci bot closed this Aug 14, 2025
@nixpkgs-ci nixpkgs-ci bot reopened this Aug 14, 2025
@gepbird gepbird marked this pull request as ready for review August 14, 2025 21:33
@nixpkgs-ci nixpkgs-ci bot added the 9.needs: reviewer This PR currently has no reviewers requested and needs attention. label Aug 14, 2025
@fabianhjr

This comment was marked as outdated.

Sign in to view
2 similar comments
@fabianhjr

This comment was marked as outdated.

Sign in to view
@fabianhjr
Copy link
Member

fabianhjr commented Aug 14, 2025

nixpkgs-review result

Generated using nixpkgs-review.

Command: nixpkgs-review pr 426866
Commit: 0088256fe3b0237bb3e2b8e4a0616f45d8f59d2c

x86_64-linux

❌ 2 packages failed to build:
  • ciscoPacketTracer7
  • ciscoPacketTracer8

@fabianhjr
Copy link
Member

fabianhjr commented Aug 14, 2025

Unable to build following instructions but nix-prefetch-url --type sha256 file:///path/to/CiscoPacketTracer822_amd64_signed.deb did match the expected hash.

Getting the message:

       > ***
       > Unfortunately, we cannot download file CiscoPacketTracer822_amd64_signed.deb automatically.
       > Please go to https://www.netacad.com to download it yourself, and add it to the Nix store
       > using either
       >   nix-store --add-fixed sha256 CiscoPacketTracer822_amd64_signed.deb
       > or
       >   nix-prefetch-url --type sha256 file:///path/to/CiscoPacketTracer822_amd64_signed.deb
       >
       > ***

fabianhjr
fabianhjr approved these changes Aug 14, 2025
View reviewed changes
Copy link
Member

@fabianhjr fabianhjr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@fabianhjr
Copy link
Member

fabianhjr commented Aug 14, 2025

Thanks for volunteering as a maintainer

@nixpkgs-ci nixpkgs-ci bot added 12.approvals: 1 This PR was reviewed and approved by one person. and removed 9.needs: reviewer This PR currently has no reviewers requested and needs attention. labels Aug 14, 2025
@gepbird
Copy link
Contributor Author

gepbird commented Aug 14, 2025

Unable to build following instructions but nix-prefetch-url --type sha256 file:///path/to/CiscoPacketTracer822_amd64_signed.deb did match the expected hash.

Getting the message:

       > ***
       > Unfortunately, we cannot download file CiscoPacketTracer822_amd64_signed.deb automatically.
       > Please go to https://www.netacad.com to download it yourself, and add it to the Nix store
       > using either
       >   nix-store --add-fixed sha256 CiscoPacketTracer822_amd64_signed.deb
       > or
       >   nix-prefetch-url --type sha256 file:///path/to/CiscoPacketTracer822_amd64_signed.deb
       >
       > ***

When I last tried it, going to https://netacad.com was like navigating a maze, but I think for legal reasons we should still keep that.

To easily download it, you can find the .deb file for the version you see in the error message on this site: https://www.computernetworkingnotes.com/ccna-study-guide/download-packet-tracer-for-windows-and-linux.html
Then run the nix-store --add-fixed ... command from the error message, then build it again :)

@fabianhjr
Copy link
Member

fabianhjr commented Aug 15, 2025

No yeah I did that, got the correct hash but for some reason nixpkgs-review wasn't picking it up :c

@fabianhjr fabianhjr merged commit 5942725 into NixOS:staging-next Aug 15, 2025
37 of 45 checks passed
@gepbird gepbird deleted the packet-tracer-refactor branch August 15, 2025 07:29
@gepbird gepbird mentioned this pull request Aug 17, 2025
Closed
15 tasks
@mdaniels5757 mdaniels5757 mentioned this pull request Nov 26, 2025
Closed
13 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fabianhjr fabianhjr fabianhjr approved these changes

@Stunkymonkey Stunkymonkey Awaiting requested review from Stunkymonkey

@alyssais alyssais Awaiting requested review from alyssais

@jopejoe1 jopejoe1 Awaiting requested review from jopejoe1

Assignees

No one assigned

Labels

1.severity: security Issues which raise a security issue, or PRs that fix one 10.rebuild-darwin: 0 This PR does not cause any packages to rebuild on Darwin. 10.rebuild-linux: 1-10 This PR causes between 1 and 10 packages to rebuild on Linux. 11.by: package-maintainer This PR was created by a maintainer of all the package it changes. 12.approvals: 1 This PR was reviewed and approved by one person.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@gepbird @Lokito23 @ryand56 @fabianhjr