1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-25 23:20:55 +00:00
Commit graph

39237 commits

Author SHA1 Message Date
Shea Levy 608cee44cc kmod: bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:42:04 -05:00
Shea Levy bc6aa21b05 nodejs: Bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:40:04 -05:00
Shea Levy 41bbe377d3 libspotify: unmaintain
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:38:01 -05:00
Shea Levy 3c9ed5b51a http-parser: Bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:37:20 -05:00
Shea Levy 72b5403ee8 edk2/OVMF: Update
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:32:21 -05:00
Shea Levy dc4c049f3c Remove refind
We never used it in NixOS

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:16:10 -05:00
Shea Levy eb4e04c24f gcc-4.6: unmaintain
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:14:52 -05:00
Shea Levy b47609410b ats: unmaintain
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:14:27 -05:00
Shea Levy 9cf29b7039 llvm: Propagate ncurses and zlib
Really shouldn't be needed with shared libs, should patch llvm-config

Fixes #1601

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:11:00 -05:00
Eelco Dolstra 34638ebc1e cleanSource: Support Mercurial 2014-02-03 23:44:11 +01:00
Eelco Dolstra 9e7fe29e41 ntpd: Don't answer status queries
Workaround for CVE-2013-5211:

http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using
2014-02-03 23:44:11 +01:00
Eelco Dolstra d451d12128 ntp: Update to 4.2.6p5 2014-02-03 23:44:11 +01:00
Shea Levy 5e72e36f95 gummiboot-builder.py: Remove old entries before adding new ones
Fixes #1483

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:41:31 -05:00
Karn Kallio e1b422d348 Update perl CPAN GraphViz package to work with latest graphviz. 2014-02-03 23:30:18 +01:00
Karn Kallio 1739fcf612 pure: The pure interpreter does not now build with llvm 3.4 on linux. 2014-02-03 23:30:18 +01:00
Karn Kallio b572051882 mlton: fix build with latest version. 2014-02-03 23:30:18 +01:00
Shea Levy f2210651eb Revert "Hide nodePackages from nix-env"
Now node packages that aren't just programs have a node- prefix in their
names.

This reverts commit 2f11bc495b.

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:28:38 -05:00
Shea Levy 3bec816e0d Update node packages to np2nix 5.5.0
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:23:54 -05:00
Shea Levy 448dc031ed Document EFI installation
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:05:23 -05:00
Shea Levy d6ef65cb6a Limit livecd label to 11 characters
vfat partition labels can only be 11 characters long

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:05:04 -05:00
Moritz Maxeiner 8e74e1fded Replace the current Yubikey PBA implementation with the previous one.
Rationale:
  * The main reason for choosing to implement the PBA in accordance
    with the Yubico documentation was to prevent a MITM-USB-attack
    successfully recovering the new LUKS key.
  * However, a MITM-USB-attacker can read user id and password when
    they were entered for PBA, which allows him to recover the new
    challenge after the PBA is complete, with which he can challenge
    the Yubikey, decrypt the new AES blob and recover the LUKS key.
  * Additionally, since the Yubikey shared secret is stored in the
    same AES blob, after such an attack not only is the LUKS device
    compromised, the Yubikey is as well, since the shared secret
    has also been recovered by the attacker.
  * Furthermore, with this method an attacker could also bruteforce
    the AES blob, if he has access to the unencrypted device, which
    would again compromise the Yubikey, should he be successful.
  * Finally, with this method, once the LUKS key has been recovered
    once, the encryption is permanently broken, while with the previous
    system, the LUKS key itself it changed at every successful boot,
    so recovering it once will not necessarily result in a permanent
    breakage and will also not compromise the Yubikey itself (since
    its secret is never stored anywhere but on the Yubikey itself).

Summary:
The current implementation opens up up vulnerability to brute-forcing
the AES blob, while retaining the current MITM-USB attack, additionally
making the consequences of this attack permanent and extending it to
the Yubikey itself.
2014-02-03 22:50:17 +01:00
Domen Kožar e96bc485db retroshare: 0.5.1d -> 0.5.5c 2014-02-03 21:54:45 +01:00
Vladimír Čunát 3fe1656376 libav: bugfix updates for both branches; maintain 2014-02-03 21:43:55 +01:00
Bjørn Forsman 15eed826b6 psqlodbc: update from 8.3 to 9.3 (fixes build) 2014-02-03 21:08:27 +01:00
Shea Levy b4a9fff1aa Update node packages
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 14:43:21 -05:00
Peter Simons c19547ad42 haskell-shelly: update to version 1.4.4 2014-02-03 18:30:02 +01:00
Peter Simons a2d903d213 haskell-pipes-network: update to version 0.6.2 2014-02-03 18:30:02 +01:00
Peter Simons dae7d83454 haskell-doctest: update to version 0.9.10.1 2014-02-03 18:30:02 +01:00
Peter Simons 55bcf1bcc5 haskell-atomic-primops: update to version 0.6 2014-02-03 18:30:02 +01:00
Peter Simons aaa462c4bc haskell-abstract-deque: update to version 0.2.2.1 2014-02-03 18:30:02 +01:00
Karn Kallio 26ea10a775 proofgeneral: fix build with earlier version of texinfo. 2014-02-03 18:26:20 +01:00
Georges Dubus 8677b19c9d silver-searcher: updated to 0.19.2
Also fixed the "libgcc_s.so.1 must be installed for pthread_cancel to
work" problem.
2014-02-03 18:21:43 +01:00
Gergely Risko 8e7518f923 Added snapBlaze and sqliteSimple haskell packages 2014-02-03 18:21:42 +01:00
Bjørn Forsman 700c1323b8 sqliteodbc: fix library location
Commit d7d3c8fd82 (sqliteodbc: update to
0.995, add more metadata) mistakenly moved libraries from $out/lib to
$out (or rather stopped moving them from $out to $out/lib).

Move them back to $out/lib where they're expected to be and referred to
by the /etc/odbcinst.ini snippet.
2014-02-03 18:13:26 +01:00
Bjørn Forsman 34484e65f3 arp-scan: new package
Arp-scan is a command-line tool that uses the ARP protocol to discover
and fingerprint IP hosts on the local network.

http://www.nta-monitor.com/tools-resources/security-tools/arp-scan
2014-02-03 12:37:51 +01:00
Vladimír Čunát 9dd9e52c0c pidgin: bugfix 2.10.8 -> .9
Fixes connection to some servers broken by the previous update.
2014-02-03 10:05:47 +01:00
Shea Levy 2cf7bc982b idris requires llvm-general-3.3 currently
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-02 20:40:29 -05:00
Shea Levy 134546bca2 clang: Fix linking with -flto
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-02 20:39:16 -05:00
Shea Levy 06ef22bcdd llvm-general: Fix build
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-02 20:36:50 -05:00
Shea Levy 86c587134b llvm-3.4: Try to fix build on darwin
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-02 19:47:59 -05:00
Peter Simons 710ddf7662 haskell-trifecta: update jail-breaking code 2014-02-02 23:36:22 +01:00
Peter Simons c6053075bd haskell-hakyll: jailbreak to fix build with recent versions of regex-tdfa
https://github.com/NixOS/nixos/issues/281
2014-02-02 23:16:29 +01:00
Peter Simons e3651da23e haskell-lens: add version 4.0 2014-02-02 22:36:13 +01:00
Peter Simons f16f44662f haskell-aeson: fix build of version 0.7.x 2014-02-02 22:36:13 +01:00
Peter Simons 422eda499e haskell-hlint: update to version 1.8.56 2014-02-02 22:36:13 +01:00
Peter Simons 4675368065 haskell-yesod-form: update to version 1.3.5 2014-02-02 22:36:13 +01:00
Peter Simons 012006bd96 haskell-yesod-core: update to version 1.2.6.6 2014-02-02 22:36:12 +01:00
Peter Simons c21822f64f haskell-yesod-bin: update to version 1.2.5.8 2014-02-02 22:36:12 +01:00
Peter Simons b5041566b4 haskell-web-routes: update to version 0.27.5 2014-02-02 22:36:12 +01:00
Peter Simons 1dfed43619 haskell-web-routes-boomerang: update to version 0.28.2 2014-02-02 22:36:12 +01:00