mirrors/nixpkgs
1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-30 09:31:01 +00:00
Code Issues Wiki Activity
94321 commits 262 branches 124 tags 5.3 GiB
Commit graph

5477 commits

Author SHA1 Message Date
Vladimír Čunát 30f551d8b2 Merge branch 'master' into staging 2016-10-05 19:02:48 +02:00
Jörg Thalheim c684eb756a
rtkit: *security* Pass uid of caller to polkit 
Otherwise, we force polkit to look up the uid itself in /proc, which is racy if
they execve() a setuid binary.
 2016-10-05 18:11:02 +02:00
Alexander Ried 96fbdf8594 kernel: Disable RT_GROUP_SCHED 
Follow systemd recommendation
fd74fa791f/README (L96-L103)
 2016-10-05 12:52:45 +02:00
Alexander Ried 4e91e8cb3d rtkit: add patch from debian to remove ControlGroup stanza 
fixes log clutter:
systemd[1]: [/nix/store/....-rtkit-0.11/etc/systemd/system/rtkit-daemon.service:32] Unknown lvalue 'ControlGroup' in section 'Service'
 2016-10-05 11:23:11 +02:00
Thomas Tuegel d067b7bd35
Merge branch 'kde-5' into staging 2016-10-04 21:50:17 -05:00
Shea Levy e54313d183 Revert "Revert "Linux 4.8"" 
Now featuring @aszlig's modinst_arg_list_too_long patch.

This reverts commit 43bedb970d.

Fixes #19213
 2016-10-04 10:10:36 -04:00
Shea Levy 43bedb970d Revert "Linux 4.8" 
This reverts commit e4958d54b1.
 2016-10-03 22:04:43 -04:00
Vladimír Čunát 1525568c74 util-linux: fixup patch hash from grandparent merge 
And name the file, too.
 2016-10-03 23:06:51 +02:00
Jörg Thalheim 45f64a37c9 Merge pull request #19175 from Mic92/util-linux 
util-linux: workaround CVE-2016-2779
 2016-10-03 22:53:21 +02:00
Jörg Thalheim 888f6a1280 Merge pull request #19199 from wizeman/u/fix-help2man-hash 
help2man: fix hash
 2016-10-03 19:26:44 +02:00
Franz Pletz beca8946ee
jool: 3.4.5 -> 3.5.0 2016-10-03 18:25:28 +02:00
Shea Levy e4958d54b1 Linux 4.8 2016-10-03 08:45:45 -04:00
Eric Sagnes 58d44a376e wireguard: 2016-08-08 -> 2016-10-01 2016-10-03 17:06:11 +09:00
Jörg Thalheim ba00ba65eb
util-linux: workaround CVE-2016-2779 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2779
 2016-10-03 08:49:56 +02:00
Joachim Fasting 9a9237e0aa
grsecurity: revamp nixos kernel config 
Cleanup:
- Restructure & add some commentary
- Remove redundant option specs given the auto config
  constraints (some are left in for documentation purposes)

Changes:
- GRKERNSEC_CONFIG_VIRT_HOST -> GUEST
  The former deselects paravirtualization and friends
- PAX_LATENT_ENTROPY n -> y (implied by auto)
- GRKERNSEC_ACL_HIDEKERN y -> n
  Possibly useless with redistribution
 2016-10-02 19:25:58 +02:00
Joachim Fasting 1bb7b44cd7
grsecurity: make GRKERNSEC y and PAX y implicit 
These options should always be specified. Note, an implication of this
change is that not specifying any grsec/PaX options results in a build
failure.
 2016-10-02 19:25:58 +02:00
Tuomas Tynkkynen 19225bf5cc Merge remote-tracking branch 'upstream/master' into staging 2016-10-02 10:36:47 +03:00
Tuomas Tynkkynen f5dd3a703d treewide: Fix more lib.optional misuses 2016-10-02 00:44:10 +03:00
Aneesh Agrawal fcee1d0b28
Remove redundant -DCMAKE_BUILD_TYPE=Release flags 
Since commit 183d05a0 in 2012, this is the default.

fixes #18000
 2016-10-01 16:13:41 +02:00
Joachim Fasting 2ec9a1a955
grsecurity: 4.7.5-201609261522 -> 4.7.6-201609301918 2016-10-01 08:47:30 +02:00
Joachim Fasting 22108b7a10
linux_4_7: 4.7.5 -> 4.7.6 2016-10-01 08:46:31 +02:00
Eelco Dolstra 613a12a8bd linux: 4.4.22 -> 4.4.23 2016-09-30 14:41:19 +02:00
Eelco Dolstra 8b09ba32d3 systemd: Apply various upstream bug fixes 
This includes the fix for the assertion failure in
https://github.com/systemd/systemd/issues/4234.
 2016-09-30 11:23:51 +02:00
rnhmjoj 7cf7572734
btfs: 2.11 -> 2.12 2016-09-30 01:23:16 +02:00
Eelco Dolstra fe9e5f9f55 pam_usb: Fix evaluation 2016-09-29 20:35:40 +02:00
Eelco Dolstra 518340624d Merge remote-tracking branch 'origin/master' into staging 2016-09-29 13:06:14 +02:00
Eelco Dolstra c5ddb7dd56 Move useSetUID to pam_usb, the only place where it's used 2016-09-29 13:05:28 +02:00
Yochai ca9c21b0ab rtl8812au: 4.2.2-1 -> 4.3.20 2016-09-29 09:29:22 +03:00
Graham Christensen ff5cf3abff linux-3.10: fix build by upstream patch 2016-09-28 19:18:34 +02:00
Vladimír Čunát 77604964b6 Merge branch 'master' into staging 2016-09-28 17:13:59 +02:00
Vladimír Čunát 3e1afeaa5b libsepol: temporary fixup after flex security update 
/cc #18909.
 2016-09-28 11:12:05 +02:00
Alexander Ried d666196a44
iproute2: fix bash completion 
apparently bash expects only files in its completion folder and not
subfolders.
 2016-09-27 18:20:07 +02:00
Joachim Fasting 98a9d815e0
grsecurity: 4.7.4-201609211951 -> 4.7.5-201609261522 2016-09-27 01:43:50 +02:00
zimbatm 0e91a0bbe7 Merge pull request #18943 from Mic92/busybox 
busybox: 1.23.2 -> 1.24.2
 2016-09-26 12:23:22 +01:00
Frederik Rietdijk 3ba16c8234 Do not use top-level buildPythonPackage or buildPythonApplication 
but instead use the one in pythonPackages.
 2016-09-26 11:10:51 +02:00
Joachim Fasting e1395365ea
spl: fix eval 
xref: 30ae939142
 2016-09-25 16:16:33 +02:00
Alexander Ried 7615d6385a iproute2: 4.5.0 -> 4.7.0 (#18435) 
iproute now packages a bash-completion file which it installs to
$BASH_COMPDIR.

* fanpatch: adjust for new version

- The patch did not apply because the code around the additions changed.
- The patch uses functions that got changed [1] & [2], I adjusted the
  patch to use the safe version. Probably not needed but better safe
  than sorry.
[1] format_host: http://git.kernel.org/cgit/linux/kernel/git/shemminger/iproute2.git/commit/?id=a418e451643e77fe36861e53359587ba8aa41873
[2] rt_addr_n2a: http://git.kernel.org/cgit/linux/kernel/git/shemminger/iproute2.git/commit/?id=7faf1588a755edb9c9cabbe1d3211265e9826d28
 2016-09-25 15:07:03 +02:00
Franz Pletz 30ae939142
linuxPackages.spl: don't mark as broken on kernel >= 4.7 
Compatibility added in c8c688b0c9.
 2016-09-25 14:55:45 +02:00
Franz Pletz 6e063a49b1
linuxPackages.jool: 3.4.4 -> 3.4.5 2016-09-25 14:20:46 +02:00
Franz Pletz c8c688b0c9
linuxPackages.zfs: 0.6.5.7 -> 0.6.5.8 
Adds compatibility for 4.7 & 4.8 Linux kernels.
 2016-09-25 14:20:46 +02:00
Franz Pletz 3a4a425728
linux: 4.7.4 -> 4.7.5 2016-09-25 14:20:46 +02:00
Franz Pletz c83f8a536a
linux: 4.4.20 -> 4.4.22 2016-09-25 14:20:46 +02:00
Franz Pletz fdf239fb83
linux: 4.1.31 -> 4.1.33 2016-09-25 14:20:45 +02:00
Franz Pletz 17402fc4a3
linux: 3.18.40 -> 3.18.42 2016-09-25 14:20:45 +02:00
Franz Pletz 31ff655e46
kernelPatches: remove unneeded patches 2016-09-25 14:20:45 +02:00
Franz Pletz 01f465c82b
linux: 3.12.62 -> 3.12.63 2016-09-25 14:20:45 +02:00
Franz Pletz b1029abe56
linux: 3.10.102 -> 3.10.103 2016-09-25 14:20:45 +02:00
Franz Pletz e8cd27dd8a
linux_4_6: remove, not maintained anymore 2016-09-25 14:20:39 +02:00
Jörg Thalheim 74876b0cad
busybox: 1.23.2 -> 1.24.2 
fixes https://lwn.net/Vulnerabilities/696815/
 2016-09-25 13:21:29 +02:00
Nikolay Amiantov ea4d517eb8 Merge pull request #18661 from NeQuissimus/kernel/zbud 
kernel-common: Add ZBUD
 2016-09-25 12:33:08 +04:00
Joachim Fasting 64816cd972
grsecurity: 4.7.4-201609152234 -> 201609211951 2016-09-22 23:40:50 +02:00
Joachim F fc4751eccc Merge pull request #18751 from TvoroG/rtlwifi 
rtlwifi_new: init at 2016-09-12
 2016-09-22 22:50:46 +02:00
Luca Bruno cf6815275a Merge pull request #18814 from tavyc/nvme-cli 
nvme-cli: init at 0.9
 2016-09-22 21:47:57 +01:00
Octavian Cerna b26dff4ea5 nvme-cli: init at 0.9 2016-09-21 21:45:38 +03:00
Domen Kožar d199d5041a ena: mark as broken on chromiumos 
(cherry picked from commit bc06f19efb)
Signed-off-by: Domen Kožar <domen@dev.si>
 2016-09-21 12:04:17 +02:00
Marsel 52dd323047 rtlwifi_new: init at 2016-09-12 2016-09-20 16:18:24 +03:00
Kirill Boltaev d2bbc631ff pktgen: disable parallel building 2016-09-19 05:28:43 +03:00
Joachim Fasting e2659de1b2
kernelPatches: remove legacy grsecurity attrs 2016-09-18 15:26:57 +02:00
Charles Strahan d5e24d3f80
fanctl: 0.9.0 -> 0.12.0 2016-09-17 22:37:39 -04:00
Vladimír Čunát 6a9e765e27 linux*: remove 3.14, as it's no longer maintained 2016-09-17 02:10:53 +02:00
Vladimír Čunát 12a45a8496 Merge #18237: ati_drivers_x11: patch for kernel 4.6 2016-09-17 01:29:27 +02:00
rushmorem 7be7620e51 fuse: 2.9.5 -> 2.9.7 2016-09-16 22:28:14 +02:00
Tuomas Tynkkynen f5c9c4f18a Merge pull request #18659 from layus/fix-mptcp 
linux_mptcp: fix config options broken by b4a4a63cc4
 2016-09-16 21:06:54 +03:00
aszlig a0b643ed06
linux-testing: 4.8-rc4 -> 4.8-rc6 
Built successfully on my machine, no runtime tests performed.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Verified-with-PGP: ABAF 11C6 5A29 70B1 30AB E3C4 79BE 3E43 0041 1886
 2016-09-16 17:57:32 +02:00
Tim Steinbach 77e1be36b9
kernel-common: Add ZBUD, move ZSMALLOC into module space 2016-09-16 15:31:51 +00:00
Guillaume Maudoux f0e519d26a linux_mptcp: fix config options broken by b4a4a63cc4 2016-09-16 13:15:50 +02:00
Joachim Fasting d082a7c0fd
grsecurity: 4.7.3-201609072139 -> 4.7.4-201609152234 2016-09-16 11:18:42 +02:00
Joachim Fasting 2050f12f4e
linux_4_7: 4.7.3 -> 4.7.4 2016-09-16 11:18:42 +02:00
Domen Kožar 77a67189ef lttng-modules: broken on chromiumos 
(cherry picked from commit 3f4d94a4c2)
Signed-off-by: Domen Kožar <domen@dev.si>
 2016-09-16 11:12:29 +02:00
aszlig 1781e95577
Merge pull request #18567 (VirtualBox 5.1.6) 
This introduces VirtualBox version 5.1.6 along with a few refactored
stuff, notably:

  * Kernel modules and user space applications are now separate
    derivations.
  * If config.pulseaudio doesn't exist in nixpkgs config, the default is
    now to build with PulseAudio modules.
  * A new updater to keep VirtualBox up to date.

All subtests in nixos/tests/virtualbox.nix succeed on my machine and
VirtualBox was reported to be working by @DamienCassou (although with
unrelated audio problems for another fix/branch) and @calbrecht.
 2016-09-14 02:20:16 +02:00
Kirill Boltaev 0f37287df5 treewide: explicitly specify gtk version 2016-09-13 21:09:24 +03:00
Tuomas Tynkkynen 0c0188c5d2 kernel config: Explicitly enable some NLS-related things 
Doesn't affect x86, but ARM can't mount VFAT filesystems without this on
a 3.18 kernel.
 2016-09-13 17:06:13 +03:00
Tuomas Tynkkynen b4a4a63cc4 kernel generate-config.pl: Properly support string options 
Or we get something like:

option not set correctly: NLS_DEFAULT (wanted 'utf8', got '"utf8"')
 2016-09-13 17:06:13 +03:00
Tuomas Tynkkynen 246bd302ec kernel generate-config.pl: Be more verbose on errors 2016-09-13 17:06:13 +03:00
Nikolay Amiantov 4748709926 Merge commit 'refs/pull/18498/head' of git://github.com/NixOS/nixpkgs 2016-09-13 12:51:34 +03:00
Franz Pletz 05357f098c Merge pull request #18486 from aske/mba6x_bl 
linuxPackages.mba6x_bl: 2016-02-12 -> 2016-04-22
 2016-09-13 07:28:59 +02:00
aszlig 8bd89c922d
virtualbox: Split kernel modules into own package 
Putting the kernel modules into the same output path as the main
VirtualBox derivation causes all of VirtualBox to be rebuilt on every
single kernel update.

The build process of VirtualBox already outputs the kernel module source
along with the generated files for the configuration of the main
VirtualBox package. We put this into a different output called "modsrc"
which we re-use from linuxPackages.virtualbox, which is now only
containing the resulting kernel modules without the main user space
implementation.

This not only has the advantage of decluttering the Nix expression for
the user space portions but also gets rid of the need to nuke references
and the need to patch out "depmod -a".

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2016-09-13 06:12:38 +02:00
Nikolay Amiantov 9b26cb92e3 Merge branch 'displaylink' 
Close #18041
 2016-09-13 01:59:47 +03:00
Nikolay Amiantov fbf6a97b04 linuxPackages.displaylink: init at 1.1.62 2016-09-13 00:30:35 +03:00
Kirill Boltaev bccd75094f treewide: explicitly specify gtk and related package versions 2016-09-12 18:26:06 +03:00
Michael Raskin 11bc6ea4ae firejail: 0.9.42-rc1 -> 0.9.42 2016-09-12 13:01:34 +02:00
Tuomas Tynkkynen 2b0eace6cf Merge remote-tracking branch 'upstream/staging' into master 2016-09-11 11:41:18 +03:00
aske 0628215f9e linuxPackages.mba6x_bl: 2016-02-12 -> 2016-04-22 2016-09-10 20:27:49 +03:00
Tuomas Tynkkynen 35ec0e72e3 util-linux: Split 'dev' 2016-09-10 19:05:05 +03:00
Joachim Fasting 91674b75d3
grsecurity: 4.7.2-201608312326 -> 4.7.3-201609072139 2016-09-10 17:06:42 +02:00
Ruslan Babayev 7b51c79ccd pktgen: 3.0.04 -> 3.0.13 (#18477) 2016-09-10 12:06:13 +02:00
Vladimír Čunát 07facfc49f broadcom-sta: don't (claim to) maintain anymore 
I haven't used the driver for years.
 2016-09-10 10:57:48 +02:00
Franz Pletz c513e2ab39
multipath-tools: 0.5.0 -> 0.6.2, fixes build 
Was broken due to 78178d5854.
 2016-09-09 23:14:16 +02:00
Tuomas Tynkkynen fcec24334e Merge remote-tracking branch 'upstream/staging' into master 2016-09-09 11:41:31 +03:00
Joachim Fasting 099584a27c
busybox: fix static build 
The static build fails with undefined references to __memcpy_chk when
the fortify hardening is enabled.
 2016-09-09 04:46:00 +02:00
Tuomas Tynkkynen 290db94f04 Merge remote-tracking branch 'upstream/master' into staging 2016-09-09 02:40:47 +03:00
Jörg Thalheim e2991cc70b bcc: install documentation not as an executable 
in bcc/tools documentation was wrapped as an executable
 2016-09-08 20:39:24 +02:00
Jörg Thalheim c58f6e62de bcc: git-2016-05-18 -> git-2016-08-30 2016-09-08 20:39:24 +02:00
Eelco Dolstra bc7e4e390a linux: 4.4.19 -> 4.4.20 2016-09-08 13:58:05 +02:00
Tim Steinbach 4829cd7f65
kernel: 4.7.2 -> 4.7.3 2016-09-08 01:51:28 +00:00
Bjørn Forsman 2bf421d197 mcelog: add utillinux as dependency 
Fixes this:

  $ sudo mcelog
  ...
  unknown-error-trigger: line 21: logger: command not found
  unknown-error-trigger: line 22: logger: command not found
 2016-09-06 20:30:47 +02:00
Franz Pletz 9a2065ff2a
batman-adv: 2016.2 -> 2016.3 2016-09-06 03:59:43 +02:00
Eelco Dolstra 78178d5854 systemd: Separate lib output 
This moves libsystemd.so and libudev.so into systemd.lib, and gets rid
of libudev (which just contained a copy of libudev.so and the udev
headers). It thus reduces the closure size of all packages that
(indirectly) depend on libsystemd, of which there are quite a few (for
instance, PulseAudio and dbus). For example, it reduces the closure of
Blender from 430.8 to 400.8 MiB.
 2016-09-05 19:17:14 +02:00
Eelco Dolstra e8315cb1ca shadow: Separate man output 
This removes ~2 MiB from the minimal config.
 2016-09-05 14:53:27 +02:00
Eelco Dolstra ff7368e944 audit: Move z/OS plugin to a separate output 
This prevents the NixOS base system from pulling in openldap,
cyris-sasl, and libkrb5.
 2016-09-05 14:53:27 +02:00