3
0
Fork 0
forked from mirrors/nixpkgs
Commit graph

49 commits

Author SHA1 Message Date
Alexander V. Nikolaev 5a59d5e131 heimdal: simplify build, keep bin/ in $out 2018-08-08 13:38:40 +03:00
Alexander V. Nikolaev 0a72127d57 heimdal: move "info" to own output 2018-08-08 13:38:40 +03:00
Alexander V. Nikolaev cb1e30f84b heimdal: refactor lib-prefixed packages to multi-output 2018-08-08 13:38:40 +03:00
Josef Kemetmüller 020957716e heimdal: Fix darwin build 2018-05-22 18:19:28 +03:00
Josef Kemetmüller 9a100e3e31 heimdal: Fix db include
[dezgeg squashed in to fit the changes introduced in "db: Use more
conventional outputs, also split bin"]
2018-05-22 18:19:28 +03:00
Edward Tjörnhammar 5566bf97e5
libheimdal: 7.4.0 -> 7.5.0
In Heimdal 7.1 through 7.4, remote unauthenticated attackers are able to
crash the KDC by sending a crafted UDP packet containing empty data
fields for client name or realm.

Security: CVE-2017-17439
2018-03-21 21:17:50 +01:00
Franz Pletz a957761abd
libheimdal: 2015-09-13 -> 7.4.0 for CVE-2017-11103
The git snapshot was based on 7.0 which is vulnerable.
2017-08-01 10:26:19 +02:00
Frederik Rietdijk db0df92bbf heimdal: use python2
because of print statement
2016-10-18 23:16:06 +02:00
Tuomas Tynkkynen e80e4ba2bb treewide: Make explicit that 'dev' output of sqlite is used 2016-05-19 10:04:34 +02:00
Tuomas Tynkkynen 2a73de6e6c treewide: Make explicit that 'dev' output of openssl is used 2016-05-19 10:02:23 +02:00
Tuomas Tynkkynen 5eb01cd0ad treewide: Make explicit that 'dev' output of openldap is used 2016-05-19 10:00:50 +02:00
Vladimír Čunát 1878ac9335 tree-wide: various cleanups
It's mainly refactoring and mass-rebuild simplifications without any
real impact (besides better readability).
2016-01-02 11:29:45 +01:00
janus cbcab5521b FreeBSD: re-add heimdal 2016-01-01 17:01:13 +00:00
janus 55aa9163cc FreeBSD: minor fixes, add notes and make stdenv more robust 2016-01-01 17:01:13 +00:00
janus a472d836f6 FreeBSD: apr-util, cyrus-sasl, berkeley db, glib, gnutls, kerberos, libelf-freebsd, openldap, serf, guile, tet, shishi, gawk, gnugrep 2016-01-01 17:01:13 +00:00
Luca Bruno 51512d4c8f heimdal: try disabling parallel builds due to hydra issues
cc @wkennington
2015-09-29 10:49:33 +02:00
William A. Kennington III 5a0759971f heimdal: 2015-06-17 -> 2015-09-13 2015-09-16 13:14:23 -07:00
Eelco Dolstra f41201ef97 heimdal: Fix description 2015-07-27 00:27:19 +02:00
William A. Kennington III 943b282800 heimdal: Always install hcrypto 2015-06-26 22:45:20 -07:00
William A. Kennington III 769ea09360 heimdal: Use the git version and breakout into a library 2015-06-26 22:41:25 -07:00
Bjørn Forsman 52184b53c0 Revert "Revert "Explicitly pass -pthread flag to fix the build after some updates""
This reverts commit 6cfea50ad1.

I think the reason for the revert was because of patch dependencies. We really
need this patch to fix heimdal build.

Or else:

  $ nix-build -A heimdal
  ...
  /tmp/nix-build-heimdal-1.5.3.drv-0/heimdal-1.5.3/base/.libs/libheimbase.so: undefined reference to `pthread_getspecific'
  /tmp/nix-build-heimdal-1.5.3.drv-0/heimdal-1.5.3/base/.libs/libheimbase.so: undefined reference to `pthread_key_create'
  /tmp/nix-build-heimdal-1.5.3.drv-0/heimdal-1.5.3/base/.libs/libheimbase.so: undefined reference to `pthread_setspecific'
  collect2: error: ld returned 1 exit status
  Makefile:509: recipe for target 'tc' failed
  make[2]: *** [tc] Error 1
2015-06-06 09:23:33 +02:00
Eelco Dolstra 020cb43f55 Revert "kerberos: Modernize build"
This reverts commit 9740b0d12d.
2015-06-04 14:54:52 +02:00
Eelco Dolstra 056e2c8d6a Revert "heimdal: Disable DCE as it was breaking the build"
This reverts commit 0f2de4c64e.
2015-06-04 14:54:52 +02:00
Eelco Dolstra 6cfea50ad1 Revert "Explicitly pass -pthread flag to fix the build after some updates"
This reverts commit ed38a2d32b.
2015-06-04 14:54:52 +02:00
Eelco Dolstra 3096d03435 Revert "Refactor mkFlag / shouldUsePkg into the nixpkgs libraries"
This reverts commit 25a148fa19.
2015-06-04 14:54:48 +02:00
William A. Kennington III 25a148fa19 Refactor mkFlag / shouldUsePkg into the nixpkgs libraries 2015-05-22 13:26:55 -07:00
Michael Raskin ed38a2d32b Explicitly pass -pthread flag to fix the build after some updates 2015-05-10 13:46:31 +02:00
William A. Kennington III 0f2de4c64e heimdal: Disable DCE as it was breaking the build 2015-05-05 13:56:44 -07:00
William A. Kennington III 9740b0d12d kerberos: Modernize build 2015-05-03 20:30:09 -07:00
William A. Kennington III e15cd2375e kerberos: Add development string 2015-03-04 16:48:52 -08:00
William A. Kennington III 942e179974 heimdal: Correct the openssl dependency 2015-01-09 09:01:46 -08:00
aszlig e957d71680
heimdal: Move openssh to propagatedBuildInputs.
A few more libraries were switched to using the kerberos attribute
instead of krb5 in 5fe7439. So those libraries are now built against
heimbal instead of MIT kerberos.

One of those libraries is libtirpc, which results in the following build
output:

http://hydra.nixos.org/build/18423661/nixlog/1/raw

The reason for this is, that "pkgconfig --libs" of heimdal lists
-lcrypto (which is part of OpenSSL), which is not propagated to
libtirpc.

See here (lines wrapped with backslash at the end of line):

$ nix-shell -p heimdal pkgconfig --command 'pkg-config --libs heimdal-gssapi'
-L/nix/store/cxjkl33j0mb4ilffaijl7gschbjzfv35-heimdal-1.5.3/lib -lgssapi \
-lheimntlm -lkrb5 -lhx509 -lcom_err -lcrypto -lasn1 -lwind -lroken -lcrypt \
-ldl -lresolv -pthread

Versus using MIT kerberos:

$ nix-shell -p krb5 pkgconfig --command 'pkg-config --libs krb5'
-L/nix/store/91vyw8yn89qnv8m8b35kgc4c4v7zp9as-krb5-1.13/lib -lkrb5 \
-lk5crypto -lcom_err

So the latter only lists libraries that are part of krb5 itself.

By adding openssh to propagatedBuildInputs, we should be able to build
any package that depends on either krb5/heimdal without any missing
dependencies.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2015-01-06 17:11:16 +01:00
William A. Kennington III bd0567ecd4 heimdal: Build hcrypto for depdendant applications 2015-01-02 17:22:37 -08:00
William A. Kennington III c66cc0719f heimdal: Fix spacing 2015-01-02 00:24:49 -08:00
William A. Kennington III 0566d647e8 heimdal: Update build 2014-12-30 01:02:41 -08:00
Eelco Dolstra 8a7f3c3618 Mark a bunch of packages as broken or not supported on Darwin 2014-08-08 17:59:02 +02:00
William A. Kennington III bdb842d5eb Move all db4 packages to the default db5 2014-02-15 12:03:02 +01:00
Nixpkgs Monitor ed616385cf heimdal: update from 1.5.2 to 1.5.3 2013-12-04 15:17:42 +02:00
Peter Simons 243a51b82d heimdal: cosmetic to make syntax highlightig happy 2013-06-06 10:48:58 +02:00
Peter Simons c65a3e198c heimdal: remove obsolete 1.3.x version 2013-06-06 10:48:58 +02:00
David Guibert accda9616f heimdal: add sqlite support and install server executables to $out/sbin
svn path=/nixpkgs/trunk/; revision=22988
2010-08-06 08:52:47 +00:00
Eelco Dolstra fbf2ed6067 * Remove MD2 support from Heimdal because OpenSSL 1.0.0 no longer has
it.  See also
  2a842e90d3

svn path=/nixpkgs/branches/x-updates/; revision=22657
2010-07-19 08:39:02 +00:00
Yury G. Kudryashov 0089b865e9 Upgrade to heimdal-1.3.2
svn path=/nixpkgs/trunk/; revision=21396
2010-04-28 09:38:55 +00:00
Eelco Dolstra 94d7d1fdbb * Got rid of all --disable-static flags; they're redundant now.
* Also a bunch of style cleanups (tabs, with args, ...).

svn path=/nixpkgs/branches/stdenv-updates/; revision=15235
2009-04-21 23:18:09 +00:00
Marc Weber 31ff337203 doh, I comitted the wrong heimdal hash. this fixes it
svn path=/nixpkgs/trunk/; revision=13671
2008-12-23 23:51:29 +00:00
Marc Weber a8e0eae74b added second mirror to heimdal
suggested by Karl Trygve Kalleberg

svn path=/nixpkgs/trunk/; revision=13668
2008-12-21 19:34:45 +00:00
Armijn Hemel 73051b79b7 force a build without X for now. This should be made an option...soon.
svn path=/nixpkgs/trunk/; revision=10921
2008-03-02 22:12:27 +00:00
Yury G. Kudryashov 6417110fb5 Propagating inputs of heimdal
svn path=/nixpkgs/trunk/; revision=10339
2008-01-28 19:42:33 +00:00
Yury G. Kudryashov b40d1ace2e Heimdal Kerberos added
svn path=/nixpkgs/trunk/; revision=10336
2008-01-28 19:41:25 +00:00