alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
347531 commits 217 branches 121 tags 4.5 GiB
Commit graph

16409 commits

Author SHA1 Message Date
Sandro d0169cc94c
Merge pull request #155567 from wentasah/kernelshark-2.1 2022-01-20 03:16:01 +01:00
Andreas Rammhold 31e5b8dc21
Remove myself from maintainers 
I don't have time and energy to deal with all of this anymore.
 2022-01-20 00:24:52 +01:00
7c6f434c ddf6a38b15
Merge pull request #155704 from reedriley/firejail 
firejail: minor improvements and apparmor support
 2022-01-19 22:30:34 +00:00
Reed Riley b2445ca613 firejail: add apparmor support 2022-01-19 13:35:19 -05:00
Reed Riley e0bc22ad7b firejail: improve local profile customization support 2022-01-19 11:14:28 -05:00
Reed Riley 881972bfa6 firejail: remove deprecated flag, see: 4909fa7efc 2022-01-19 10:56:39 -05:00
Sandro c392f1e9cb
Merge pull request #155606 from SuperSandro2000/Lunarequest/master 2022-01-19 12:37:32 +01:00
nullrequest eff260aaf2
linux config: enable Landlock LSM 2022-01-19 12:12:03 +01:00
Michal Sojka 73aaf861da kernelshark: 2.0.2 -> 2.1.0 2022-01-19 08:29:25 +01:00
TredwellGit 7c410af47e linux/hardened/patches/5.4: 5.4.171-hardened1 -> 5.4.172-hardened1 2022-01-19 01:35:46 +00:00
TredwellGit 632c0297ce linux/hardened/patches/5.15: 5.15.14-hardened1 -> 5.15.15-hardened1 2022-01-19 01:35:37 +00:00
TredwellGit 7bc3a9ee46 linux/hardened/patches/5.10: 5.10.91-hardened1 -> 5.10.92-hardened1 2022-01-19 01:35:28 +00:00
TredwellGit 3aec9d28ba linux: 5.4.171 -> 5.4.172 2022-01-19 01:34:30 +00:00
TredwellGit ea3bccf3b8 linux: 5.16 -> 5.16.1 2022-01-19 01:34:23 +00:00
TredwellGit 05ad09bd54 linux: 5.15.14 -> 5.15.15 2022-01-19 01:34:15 +00:00
TredwellGit 0b04210a04 linux: 5.10.91 -> 5.10.92 2022-01-19 01:34:07 +00:00
Pavol Rusnak 6c18c013f4
Merge pull request #154348 from Stunkymonkey/treewide-pname-version-5 
treewide: rename name to pname&version
 2022-01-17 21:05:32 +01:00
Felix Buehler 6cbf83ba01 treewide: rename name to pname&version 2022-01-17 20:52:59 +01:00
Martin Weinelt 738ff6b30c
wpa_supplicant: 2.9 -> 2.10 2022-01-17 13:42:09 +01:00
Martin Weinelt 90482284fa
hostapd: 2.9 -> 2.10 2022-01-17 13:42:09 +01:00
Renaud 0448ee08a4
Merge pull request #153260 from r-ryantm/auto-update/klibc 
klibc: 2.0.9 -> 2.0.10
 2022-01-17 11:02:38 +01:00
Frederik Rietdijk afef6d0e81
Merge pull request #154687 from dotlambda/python-alias 
python,pythonPackages: make aliases
 2022-01-17 09:37:49 +01:00
Bobby Rong 9e779f01ca
Merge pull request #155226 from Stunkymonkey/fbterm-refactor 
fbterm: refactor
 2022-01-17 11:09:55 +08:00
Robert Schütz d5cceedbd1 python,pythonPackages: make aliases 
Since aliases are disallowed in nixpkgs, this makes usage of Python 2
which is EOL more explicit.
 2022-01-16 18:39:59 +00:00
Felix Buehler 34950c7359 sinit: refactor 2022-01-16 16:23:21 +01:00
Felix Buehler 3051b532d1 fbterm: refactor 2022-01-16 16:15:37 +01:00
Jörg Thalheim 5a6a12256d
Merge pull request #154157 from yaxitech/sgx-ssl 
sgx-ssl: init at lin_2.15.1_1.1.1l
 2022-01-16 06:05:10 +00:00
Bernardo Meurer 4fa2647449
Merge pull request #154994 from mweinelt/kernel-disable-unpriv-ebpf 
linux: enable BPF_UNPRIV_DEFAULT_OFF on 5.10 and later
 2022-01-16 00:46:51 +00:00
Bernardo Meurer 00cd3d063c
Merge pull request #154976 from TredwellGit/linux 
Kernels 2022-01-14
 2022-01-16 00:41:11 +00:00
Martin Weinelt 3ee206291a
linux: enable BPF_UNPRIV_DEFAULT_OFF between 5.10 and 5.15 
Disable unprivileged access to BPF syscalls to prevent denial of service
and privilege escalation via

a) potential speculative execution side-channel-attacks on unmitigated
hardware[0]

or

b) unvalidated memory access in ringbuffer helper functions[1].

Fixes: CVE-2021-4204, CVE-2022-23222

[0] https://ebpf.io/summit-2021-slides/eBPF_Summit_2021-Keynote-Daniel_Borkmann-BPF_and_Spectre.pdf
[1] https://www.openwall.com/lists/oss-security/2022/01/13/1
 2022-01-15 23:44:19 +01:00
Vincent Haupert 6639cd8c65 sgx-ssl: don't run test app in installCheckPhase 
Although we build the test app in SGX simulation mode which does not
require hardware SGX support, SGX SSL fails to initialize on non-Intel
CPUs. This is unexpected (and inconsistent with the `sgx-sdk` sample
code we run in the `installCheckPhase`) and subject to an upstream
issue: https://github.com/intel/intel-sgx-ssl/issues/113

Revert this commit as soon as the issue is resolved by Intel.
 2022-01-15 13:08:31 +01:00
arcnmx 36026bb0c4 linuxPackages.kvmfr: patch for 5.16 2022-01-14 15:14:39 -08:00
Jonathan Ringer 97a8c7228a linuxPackages.nvidia_x11_beta: 495.29.05 -> 510.39.01 2022-01-14 12:34:41 -08:00
R. RyanTM 162d4c51b3
ryzenadj: 0.8.2 -> 0.8.3 
(#154582)
 2022-01-14 16:58:04 +01:00
markuskowa eb7348fea9
Merge pull request #154872 from markuskowa/upd-rdma-core 
rdma-core: 38.0 -> 38.1
 2022-01-14 10:45:11 +01:00
TredwellGit e19681509b linux/hardened/patches/5.4: 5.4.170-hardened1 -> 5.4.171-hardened1 2022-01-14 02:25:10 +00:00
TredwellGit ead5545be3 linux/hardened/patches/5.15: 5.15.12-hardened1 -> 5.15.14-hardened1 2022-01-14 02:25:01 +00:00
TredwellGit f14a7feff2 linux/hardened/patches/5.10: 5.10.89-hardened1 -> 5.10.91-hardened1 2022-01-14 02:24:52 +00:00
TredwellGit 56224051e3 linux/hardened/patches/4.19: 4.19.224-hardened1 -> 4.19.225-hardened1 2022-01-14 02:24:42 +00:00
TredwellGit 230a6813d9 linux/hardened/patches/4.14: 4.14.261-hardened1 -> 4.14.262-hardened1 2022-01-14 02:24:34 +00:00
TredwellGit c5f9bb4d21 linux-rt_5_4: 5.4.161-rt67 -> 5.4.170-rt68 2022-01-14 02:23:37 +00:00
Martin Weinelt 99ee04b5d1 cryptsetup: 2.4.2 -> 2.4.3 2022-01-13 18:24:48 +01:00
Markus Kowalewski 442dc01aac
rdma-core: 38.0 -> 38.1 2022-01-13 11:20:40 +01:00
Andreas Stührk db091609ff sgx-ssl: init at lin_2.15.1_1.1.1l 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-01-12 19:24:39 +01:00
Julian Stecklina 7a73bd3d08 linuxPackages.tuxedo-keyboard: update description to point to module 2022-01-12 11:47:53 +01:00
Julian Stecklina ea9647d202 linuxPackages.tuxedo-keyboard: 3.0.8 -> 3.0.9 2022-01-12 11:47:53 +01:00
R. Ryantm 734af73298 bpftrace: 0.14.0 -> 0.14.1 2022-01-12 04:01:33 -06:00
Bobby Rong b7c1fcea75
Merge pull request #154682 from IvarWithoutBones/bump/tuigreet 
tuigreet: 0.6.1 -> 0.7.1
 2022-01-12 17:11:27 +08:00
TredwellGit 61dd0c8e85 linux: 5.4.170 -> 5.4.171 2022-01-11 16:37:55 +00:00
TredwellGit 4cf69dc13a linux: 5.15.13 -> 5.15.14 2022-01-11 16:37:49 +00:00