mirrors/nixpkgs
1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-24 14:41:17 +00:00
Code Issues Wiki Activity
99586 commits 233 branches 124 tags 7 GiB
Commit graph

5750 commits

Author SHA1 Message Date
Jörg Thalheim 87e1c49298
android-udev-rules: 20170106 -> 20170109 2017-01-09 13:40:31 +01:00
Jörg Thalheim adbcb37db5
android-udev-rules: 20161014 -> 20170106 2017-01-08 23:40:40 +01:00
Michael Raskin 9653be493a firejail: 0.9.44.2 -> 0.9.44.4 2017-01-08 13:58:24 +01:00
Joachim Fasting d6ff445f10
grsecurity: 4.8.15-201612301949 -> 4.8.16-201701062021 2017-01-07 08:01:41 +01:00
Tim Steinbach c1d20ea50c
kernel: 4.9.0 -> 4.9.1 2017-01-06 16:15:18 -05:00
Tim Steinbach ecf87b11f2
kernel: 4.8.15 -> 4.8.16 2017-01-06 16:15:02 -05:00
Tim Steinbach 8fda707027
kernel: 4.4.39 -> 4.4.40 2017-01-06 16:14:30 -05:00
Vladimír Čunát 07bf828bd9
Merge branch 'staging'; security /cc #21642 2017-01-06 16:32:47 +01:00
Jörg Thalheim ca0d747d6d Merge pull request #21578 from Mic92/zfs 
zfs: add unstable variant
 2017-01-05 12:52:56 +01:00
Jason A. Donenfeld 1ba9a3cd9b wireguard: 0.0.20161230 -> 0.0.20170105 
Version bump that contains some new tools.

fixes #21666
 2017-01-05 10:38:58 +00:00
Jörg Thalheim 4029470a6f
zfs: add unstable variant 
Until now nixos only delivered the latest zfs release. This release is often not
compatible with the latest mainline kernel. Therefor an unstable variant is
added, which might be based on testing releases or git revisions.

fixes #21359
 2017-01-05 08:40:50 +01:00
Franz Pletz 08d1f28818
Revert "iproute: remove broken fan patch" 
This reverts commit 0d5a5307be because it
breaks evaluation. See #21561.
 2017-01-04 22:30:55 +01:00
Jörg Thalheim 0779fdb3e4 Merge pull request #21561 from Mic92/iproute 
iproute: remove broken fan patch
 2017-01-04 21:47:54 +01:00
Daiderd Jordan 27660cfdc0
Merge branch 'master' into staging 2017-01-04 01:42:26 +01:00
Alexander Kahl 61d125b842 sssd: init at 1.14.2 
perlPackages.TextWrapI18N: init at 0.06
perlPackages.Po4a: init at 0.47
jade: init at 1.2.1
ding-libs: init at 0.6.0

Switch nscd to no-caching mode if SSSD is enabled.

abbradar: disable jade parallel building.

Closes #21150
 2017-01-04 03:07:20 +03:00
Daiderd Jordan 6158604d8a Merge pull request #21603 from abuibrahim/master 
ofp: init at 2.0.0
 2017-01-04 00:12:58 +01:00
Ruslan Babayev f3e2feb057 ofp: init at 2.0.0 2017-01-03 10:28:46 -08:00
Tim Steinbach 92d0a977d9 Merge pull request #21614 from NeQuissimus/busybox_1_26_1 
busybox: 1.25.1 -> 1.26.1
 2017-01-03 13:09:35 -05:00
Tim Steinbach 9bd93ac6e0
busybox: 1.25.1 -> 1.26.1 2017-01-03 08:40:32 -05:00
Tuomas Tynkkynen 2a4c8313e4 linux_testing: 4.10-rc1 -> 4.10-rc2 2017-01-03 13:51:23 +02:00
Michael Raskin 237629a090 eudev: 3.2 -> 3.2.1 2017-01-02 20:18:49 +01:00
Michael Raskin 11bfe01846 firejail: 0.9.42 -> 0.9.44.2 2017-01-02 20:18:47 +01:00
Balletie 66c745e30d
pommed-light: init at 1.50lw 2017-01-02 19:40:43 +01:00
Jörg Thalheim 1fa75a5bb7
sysdig: 0.12.0 -> 0.13.0 2017-01-02 08:10:47 +01:00
Daiderd Jordan 5a67b130b9
Merge branch 'master' into staging 2017-01-02 00:54:17 +01:00
Ruslan Babayev 1bead81275 pktgen: fix runtime paths 
The Lua and lscpu path substitution got accidentally removed in
with commit 605b8095ca
 2017-01-01 15:44:21 -08:00
Jörg Thalheim f3052035ee
wireguard: 0.0.20161223 -> 0.0.20161230 
fixes #21572
 2017-01-01 21:24:33 +01:00
Jörg Thalheim db8c9ef3ff
bcc: git-2016-08-30 -> 0.2.0 2017-01-01 10:29:17 +01:00
Joachim Fasting 75ce714818
grsecurity: 4.8.15-201612151923 -> 201612301949 2017-01-01 06:01:04 +01:00
Jörg Thalheim 0d5a5307be
iproute: remove broken fan patch 2017-01-01 05:17:53 +01:00
Ruslan Babayev 605b8095ca pktgen: 3.0.13 -> 3.1.0 2016-12-31 16:43:11 -08:00
Ruslan Babayev aeb41bbf75 odp-dpdk: 2016-08-16 -> 1.12.0.0 2016-12-31 16:23:47 -08:00
Ruslan Babayev dd45691fe0 dpdk: 16.07 -> 16.07.2 2016-12-31 16:22:52 -08:00
Vladimír Čunát 6bded45883
flex: 2.6.1 -> 2.6.3 
This resolves some warnings and errors introduced in 2.6.x.
 2016-12-30 23:17:08 +01:00
Aneesh Agrawal 652a87018b
googleAuthenticator: 1.0 -> 1.03 2016-12-30 06:49:17 -05:00
Eelco Dolstra bbd03e236a
Use looser 9pfs caching in VM tests/builds 
This can give significant speed ups, see
7e20254412.
 2016-12-29 21:26:16 +01:00
Robin Gloster 3fcdbedbef
iproute: 4.8.0 -> 4.9.0 2016-12-29 02:52:55 +01:00
Franz Pletz 1cbb04e72e
iproute: 4.7.0 -> 4.8.0 2016-12-29 02:52:55 +01:00
Robin Gloster 3e8bb7237d
cryptsetup: 1.7.1 -> 1.7.3 2016-12-29 02:52:54 +01:00
Franz Pletz c2a979fbfd
cryptsetup: 1.7.0 -> 1.7.1 2016-12-29 02:52:54 +01:00
Nikolay Amiantov cdf306909f udev182: remove 2016-12-29 00:11:40 +03:00
Nikolay Amiantov a36a2412ee libudev0-shim: init at 1 2016-12-29 00:11:40 +03:00
Tuomas Tynkkynen 45338a3077 fuse: Minor cleanup 2016-12-28 17:37:10 +02:00
Franz Pletz c6bcc485de
linux_4_8: add patch to fix CVE-2016-9919 2016-12-28 06:35:11 +01:00
Tuomas Tynkkynen 5ba7f33e3a linux_testing: 4.9-rc8 -> 4.10-rc1 2016-12-27 01:35:10 +02:00
Tuomas Tynkkynen e60bb86d00 kexectools: 2.0.13 -> 2.0.14 
ARM patch is included upstream now.
 2016-12-26 18:54:34 +02:00
Michael Raskin 2c616b0473 xf86-input-wacom: 0.32.0 -> 0.34.0 2016-12-25 22:56:32 +01:00
aszlig 6af6cec8b2
Revert "thin-provisioning-tools: init at 0.6.1" 
This reverts commit 55b18ac486.

There is already a "thin-provisioning-tools" package (see
cd1ec18b42).

Although this one was committed earlier, I'm reverting it because it's
not only older, but it's unreferenced within <nixpkgs>.

Apart from that the packaging of the other package is of higher
packaging quality (maintainer and license, doesn't use "descriptionS",
uses autoreconfHook).

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Cc: @globin, @dwe11er, @jagajaga
Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2016-12-25 02:05:49 +01:00
Tuomas Tynkkynen 0e3b56c7b9 alsa-lib: Remove unnecessary crossAttrs 
It's breaking the cross build.
 2016-12-24 22:41:32 +02:00
Jörg Thalheim c98f3ffea8
wireguard: 0.0.20161218 -> 0.0.20161223 2016-12-24 13:55:32 +01:00
Frederik Rietdijk 9f6bd82364 nvidia-x11: 375.20 -> 375.26 2016-12-23 10:57:28 +01:00
Graham Christensen 3ffb5ba60c
linux:3.18.44 -> 3.18.45 2016-12-21 21:08:47 -05:00
Graham Christensen 53e21529d4
linux:3.12.68 -> 3.12.69 2016-12-21 21:08:47 -05:00
Jason A. Donenfeld 77588ca442 wireguard: 20161209 -> 20161218 (#21288) 2016-12-22 03:04:55 +01:00
Joachim Fasting 6758d157d2
multipath-tools: ensure gzip does not capture timestamp 
gzip is originally called as 'gzip -9 -c'

This is a port of
a8e7ddd1df

Note that it does not seem to make a difference to `nix-build --check`.
 2016-12-20 15:31:55 +01:00
Rok Garbas b7cfbf96d6 tp_smapi: updateScript added 2016-12-18 16:45:33 +01:00
Franz Pletz eb559d2b07
batman-adv: 2016.4 -> 2016.5 2016-12-18 05:23:38 +01:00
aszlig ffe71cbe19
kexec-tools: Add patch to fix build on ARM 
Building on ARM fails with the following error:

kexec/arch/arm/phys_to_virt.o kexec/arch/arm/phys_to_virt.c
kexec/arch/arm/phys_to_virt.c:3:26: fatal error: phys_to_virt.h: No such file or directory

The patch I'm using is from Fedora:

http://pkgs.fedoraproject.org/cgit/rpms/kexec-tools.git/tree/kexec-tools-2.0.13-fix-armv7-build-failure.patch?id=97581f1a435aafa298a4d0bbcfaf40c63a41ce92

It has been reported upstream as well:

http://lists.infradead.org/pipermail/kexec/2016-September/017352.html

I'm adding the patch for all architectures, so that the next person to
upgrade kexec-tools doesn't forget that even while on x86.

Tested building with i686-linux, x86_64-linux and armv7l-linux.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2016-12-18 04:49:39 +01:00
Tim Steinbach 0e8e4a08f3
linux: 4.8.14 -> 4.8.15 2016-12-16 08:16:45 -05:00
Tim Steinbach cb9ff3f7f9
linux: 4.4.38 -> 4.4.39 2016-12-16 08:16:22 -05:00
Joachim Fasting f0e77cd07d
grsecurity: 4.8.14-201612110933 -> 4.8.15-201612151923 2016-12-16 12:46:44 +01:00
Franz Pletz a4586f87dc
wireguard: 20161129 -> 20161209 2016-12-16 12:16:39 +01:00
Will Dietz be24f1d364 musl: 1.1.11 -> 1.1.15, add security patch. (#21023) 2016-12-16 11:32:28 +01:00
Jörg Thalheim 4714ca8b56 kexec-tools: 2.0.12 -> 2.0.13 (#21158) 
also fix kexec by removing faulty hardeningFlags
 2016-12-15 20:48:03 +01:00
Graham Christensen 01d022e16b Merge pull request #21118 from grahamc/fix-rsa-build-failure 
linux_{4_8,grsec_nixos}: patch to fix build failure
 2016-12-13 09:15:50 -05:00
Joachim Fasting d918c80e13
grsecurity: disable verbose initify 
Not as useful/informative as I had hoped.
 2016-12-13 15:12:34 +01:00
Graham Christensen 7a813d3f6d
linux_{4_8,grsec_nixos}: patch to fix build failure 
crypto/rsa_helper.c:18:28: fatal error: rsapubkey-asn1.h: No such file or directory
 2016-12-13 07:25:46 -05:00
Jörg Thalheim 7c8d4cd9a9
wireguard: 0.0.20161116.1 -> 0.0.20161129 2016-12-12 14:41:43 +01:00
Shea Levy f6daae391f linux: add 4.9 2016-12-11 19:33:05 -05:00
Joachim Fasting 601058e0e2
grsecurity: 4.8.13-201612082118 -> 4.8.14-201612110933 2016-12-11 19:09:16 +01:00
Tim Steinbach f576c490e3
linux: 4.4.37 -> 4.4.38 2016-12-10 15:18:52 -05:00
Tim Steinbach b69822c505
linux: 4.8.13 -> 4.8.14 2016-12-10 15:15:44 -05:00
Tuomas Tynkkynen bdab6fe5a1 kernel: Use built-in dtbs_install target instead of rolling our own 
In particular, on aarch64 all the .dtb files will be in subdirectories
and *.dtb won't match anything.
 2016-12-10 20:24:08 +02:00
Franz Pletz 9074d9859e
linux: add patch to fix CVE-2016-8655 
See https://lwn.net/Articles/708319/ for more information.
 2016-12-10 17:08:42 +01:00
Frederik Rietdijk 033525c6b8 dstat: fix bad interpreter: No such file 2016-12-10 14:21:51 +01:00
Bjørn Forsman 2077385421 kernel: enable CONFIG_DYNAMIC_DEBUG (like Fedora and Ubuntu) 
It was useful in tracking down CIFS + DFS issue, and it's apparently
enabled by default in two major distros.
 2016-12-10 00:01:21 +02:00
Bjørn Forsman d429520b13 kernel: add CONFIG_CIFS_* like Fedora, Ubuntu 
The plan is to fix mounting DFS shares on NixOS (for which some of these
options are needed), but I figured it might be a good idea to enable all
CONFIG_CIFS_* like Fedora 24 and Ubuntu 16.04 while at it. Ubuntu even
has CONFIG_CIFS_SMB311, but as Fedora do not, I left it out.

Mounting DFS shares still doesn't work; need to configure cifs.upcall
and /etc/request-key.conf. Until then, using GVFS as a workaround.
 2016-12-10 00:01:21 +02:00
Bjørn Forsman fc6d82cf76 cifs-utils: add 'talloc' to buildInputs, to build cifs.upcall 
Fixes this ./configure symptom:

  configure: WARNING: talloc.h not found, consider installing libtalloc-devel. Disabling cifs.upcall.

and is needed to (eventually) fix CIFS + DFS kernel mount on NixOS.
 2016-12-10 00:01:21 +02:00
Joachim Fasting d1a5dc0b1c
grsecurity: 4.8.12-201612062306 -> 4.8.13-201612082118 2016-12-09 15:31:02 +01:00
Joachim Fasting 9a63779d64
grsecurity: use upstream url as the primary source 2016-12-09 15:31:00 +01:00
Joachim Fasting ca7cc96ee8
grsecurity: enable PAX_INITIFY 
Uses gcc plugin to detect more instances where memory used during init
can be freed.
 2016-12-09 15:30:40 +01:00
Tim Steinbach bfffbb5ea6
linux: 4.8.12 -> 4.8.13 2016-12-09 08:27:11 -05:00
Tim Steinbach e861a5f7af
linux: 4.4.36 -> 4.4.37 2016-12-09 08:26:46 -05:00
Joachim Fasting af1202434a
ndiswrapper: mark as broken 
Build fails across all our kernels.  There is a new version 1.60, but
it, too, fails to build.  Until somebody comes along to patch around it,
we might as well mark this as broken.
 2016-12-08 23:12:32 +01:00
Joachim Fasting 5fd4ffe00f
grsecurity: 4.8.12-201612031658 -> 201612062306 2016-12-08 12:22:13 +01:00
Dmytro Rets e8220d3264
Update broadcom URL for broadcom-sta driver. 2016-12-08 11:50:31 +02:00
Tim Steinbach c9d1d430ec
linux: 4.9-rc7 -> 4.9-rc8 2016-12-05 19:40:11 -05:00
Joachim Fasting 9578299bbe
grsecurity: 4.8.11-201611271225 -> 4.8.12-201612031658 2016-12-06 01:24:32 +01:00
Joachim Fasting cc396697a6
grsecurity: enable ability to lock in readonly mounts 2016-12-06 01:24:12 +01:00
Joachim Fasting 0e765c72e5
grsecurity: enable module hardening 2016-12-06 01:23:58 +01:00
Joachim Fasting 071fbcda24
grsecurity: enable optional sysfs restrictions 
Fairly severe, but can be disabled at bootup via
grsec_sysfs_restrict=0. For the NixOS module we ensure that it is
disabled, for systemd compatibility.
 2016-12-06 01:23:36 +01:00
Joachim Fasting 8c1f5afdf3
grsecurity: delay toggling of sysctls until system is up 
We generally trust init, so there's little point in having these enabled
during early bootup; it accomplishes little except fill our logs with
spam.
 2016-12-06 01:22:53 +01:00
Tuomas Tynkkynen 9ccc14b1bc linux_rpi: Add some feature flags 
Copied from linux_4_4 (except for the EFI stub thing).

Otherwise the firewall module fails to evaluate:
Failed assertions:
- This kernel does not support rpfilter
 2016-12-04 18:18:06 +02:00
Jörg Thalheim e00632e200 Merge pull request #20858 from Mic92/lxcfs 
lxcfs: init at 2.0.4
 2016-12-04 11:33:07 +01:00
Tim Steinbach 4f8b74b401 Merge pull request #20866 from NeQuissimus/linux_4_8_12 
linux: 4.8.11 -> 4.8.12
 2016-12-02 18:28:46 -05:00
Tim Steinbach 853b6493c8
linux: 4.8.11 -> 4.8.12 2016-12-02 14:29:00 -05:00
Tim Steinbach 654f5df5dc
linux: 4.4.35 -> 4.4.36 2016-12-02 14:28:26 -05:00
Jörg Thalheim af609b0254
lxcfs: init at 2.0.4 2016-12-02 13:52:03 +01:00
Tim Steinbach 5afc6b506c
linux: 4.1.35 -> 4.1.36 2016-12-01 20:34:02 -05:00
Joachim F 85ecde87c8 Merge pull request #20804 from danbst/fix-shadow 
shadow: fix collision with coreutils (man groups.1.gz)
 2016-12-01 23:08:30 +01:00