ilyakooo0/nixpkgs
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-09-25 14:48:25 +03:00
Code Issues Projects Releases Wiki Activity
109,260 Commits 96 Branches 102 Tags 4.3 GiB
abc374f127
Commit Graph

6566 Commits

Author SHA1 Message Date
Alexander Kirchhoff
3948891112 pam_ssh_agent_auth: Re-allow multiple authorized keys files 
This functionality was initially introduced in
3644f9124a to fix
https://github.com/NixOS/nixos/pull/52, but was broken in the update from 0.9.5
to 0.10.3.  The original patch does not cleanly apply due to reformatting and
parameter changes upstream, but the adaptations of the patch to the new version
are not too severe.
 2017-03-03 01:11:53 -08:00
Franz Pletz
49bdf9803a
linux: IPV6_FOU_TUNNEL is available since 4.7 2017-03-02 17:19:55 +01:00
Franz Pletz
75e85cae42
linux: enable FOU tunnels and VRF interfaces 2017-03-02 17:19:55 +01:00
Joachim Fasting
c5785dc3eb
nvidiabl: mark as broken on kernels >4.4 
All builds on kernels >4.4 fail.
 2017-03-02 16:11:42 +01:00
Joachim Fasting
499f813ae8
nvidiabl: 0.85 -> 0.87 2017-03-02 16:11:18 +01:00
Joachim Fasting
7f31a8e359
cryptodev: mark as broken for kernels >4.4 
All builds for kernels above 4.4 fail; there is no newer
upstream version.
 2017-03-02 16:11:16 +01:00
Tuomas Tynkkynen
256e764226 radeontools: Mark as broken 
The upstream release is from 2004. The website of this software talks
about configuring XFree86. I *highly* doubt this software is of any use
nowadays.
 2017-03-02 02:30:00 +02:00
Tobias Geerinckx-Rice
b12b4eaca6
phc-intel: 0.4.0-rev22 -> 0.4.0-rev24 
Fixes Hydra failures on kernel >= 4.10 by only supporting kernel >= 4.10.
 2017-03-01 23:34:37 +01:00
Tuomas Tynkkynen
0495b34782 trinity: Apply upstream commit as a patch to fix build 
Needed since glibc 2.25.
 2017-03-01 18:03:30 +02:00
Vladimír Čunát
b43614a6bb
Merge branch 'staging' 
(Truly, this time :-)
 2017-03-01 11:34:44 +01:00
Joachim Fasting
ab6d358ebf
openisns: fix empty lib output 
Looks like enable-shared defaults to false, so we actually
ended up with no usable object files in the lib output.

This also appears to have broken open-iscsi, as evinced by

/nix/store/[...]-binutils-2.27/bin/ld: cannot find -lisns
collect2: error: ld returned 1 exit status
make[1]: *** [Makefile:57: iscsid] Error 1

https://hydra.nixos.org/build/49437400/log/raw

With this patch, open-iscsi builds fine here.
 2017-03-01 01:48:51 +01:00
Bjørn Forsman
fc8e0ccc2e sysdig: give the source tarball a meaningful name 2017-02-28 17:58:03 +01:00
Jörg Thalheim
c6375407ec Merge pull request #23281 from makefu/pkgs/exfat-nofuse/min-kernel 
exfat-nofuse: exclude 4.1 kernel build
 2017-02-28 16:58:11 +01:00
Jörg Thalheim
479c6c1ef0
sysdig: 0.14.0 -> 0.15.0 2017-02-28 16:41:08 +01:00
makefu
b4ff1ba4a9
exfat-nofuse: exclude 4.1 kernel build 2017-02-28 16:28:23 +01:00
Franz Pletz
40e84506ec
linuxPackages.ixgbevf: 3.2.2 -> 4.0.3 
cc #23253
 2017-02-28 16:00:56 +01:00
Franz Pletz
163db1bbf9
linuxPackages.e1000e: 3.3.1 -> 3.3.5.3 
cc #23253
 2017-02-28 16:00:56 +01:00
Jörg Thalheim
dc7d4dcbb5 Merge pull request #23278 from makefu/pkgs/exfat-nofuse/pin-kernel 
exfat-nofuse: build only for kernels < 4.10
 2017-02-28 15:56:44 +01:00
makefu
af7ccaf8c8
exfat-nofuse: build only for kernels < 4.10 2017-02-28 15:50:15 +01:00
Franz Pletz
d733d36cc6
linuxPackages.jool: only supported on linux < 4.10 
cc #23253
 2017-02-28 14:47:04 +01:00
Franz Pletz
616e5c1953
linuxPackages.sch_cake: only supported in linux >= 4.4 
cc #23253
 2017-02-28 14:46:39 +01:00
Shea Levy
e292d166e8 fwupd: Fix localstatedir 2017-02-27 15:28:43 -05:00
Vladimír Čunát
a1919db7cd
Merge branch 'master' into staging 2017-02-27 20:15:27 +01:00
Shea Levy
2edb8ffa14 fwupd: 0.8.0 -> 0.8.1. 2017-02-27 10:07:57 -05:00
Joachim Fasting
a20a53300d
grsecurity: 4.9.13-201702261126 -> 201702270729 2017-02-27 16:04:32 +01:00
Shea Levy
1230330b14 fwupd: Fix systemd/udev install 2017-02-27 08:45:14 -05:00
Shea Levy
8307307e4e fwupd: Init at 0.8.0 2017-02-27 08:38:49 -05:00
Shea Levy
40e136542e fwupdate: init at 8 2017-02-27 08:35:08 -05:00
Shea Levy
72ff466de3 libsmbios: 2.2.28 -> 2.3.2 2017-02-27 08:30:46 -05:00
Robin Gloster
8d95889fe6
xf86_input_multitouch: fix build 2017-02-27 13:34:41 +01:00
Bjørn Forsman
3d104ab2b3 gst-plugins-base: align attrname with pkgname 2017-02-27 12:16:26 +01:00
Joachim Fasting
f3a6991f3d
grsecurity: 4.9.12-201702231830 -> 4.9.13-201702261126 2017-02-26 18:20:50 +01:00
Franz Pletz
701544d0a7
linux: 4.9.12 -> 4.9.13 2017-02-26 18:09:16 +01:00
Franz Pletz
62857b1f21
linux: 4.4.51 -> 4.4.52 2017-02-26 18:09:16 +01:00
Franz Pletz
8a75569619
linux: 4.10 -> 4.10.1 2017-02-26 18:09:15 +01:00
Graham Christensen
8b40d2e305
mcelog: 144 -> 148 2017-02-26 09:16:01 -05:00
Joachim Fasting
0150d9a95c
grsecurity: 4.9.11-201702222257 -> 4.9.12-201702231830 2017-02-26 14:01:57 +01:00
Peter Hoeg
a85b55e4cd microcode-intel: 20160714 -> 20161104 2017-02-26 18:25:25 +08:00
Matthew Robbetts
b9418091f4 hostapd: libressl patches. 2017-02-25 10:15:53 +01:00
Franz Pletz
9d14ea4295
utillinux: 2.29 -> 2.29.2 for CVE-2017-2616 
cc #23072
 2017-02-25 09:40:36 +01:00
Peter Hoeg
e4d8cb8dab iio-sensor-proxy: init at 2.2 and nixos module 
This PR adds support for ```iio-sensor-proxy``` used by GNOME v3 and
others for reading data from the accelerometer, gps, compass and similar sensors
built into some relatively recent laptops.

Additionally, there is a NixOS module exposed via hardware.sensor.iio
for enabling services, udev rules and dbus services.
 2017-02-25 08:46:46 +08:00
Franz Pletz
7eb7126f5a
Revert "lxc: fix build for glibc-2.25" 
This reverts commit 76ae7e19a9.
 2017-02-24 21:45:29 +01:00
Franz Pletz
76ae7e19a9
lxc: fix build for glibc-2.25 2017-02-24 17:57:41 +01:00
Franz Pletz
f15cebd28c
jool: 3.5.0 -> 3.5.2 2017-02-24 17:57:41 +01:00
Jörg Thalheim
0eefe9bc62 lxc: fix glibc 2.25 incompatibility 2017-02-24 14:00:23 +01:00
Leon Isenberg
5abc164e2d earlyoom: init at 0.11 2017-02-24 08:19:12 +01:00
Graham Christensen
d36b1ccc13
Revert "Revert "linux kernels: patch against DCCP double free (CVE-2017-6074)"" 
This reverts commit 53a2baabbe.
 2017-02-23 19:23:29 -05:00
Graham Christensen
53a2baabbe
Revert "linux kernels: patch against DCCP double free (CVE-2017-6074)" 
This reverts commit 1d68edbef4.
 2017-02-23 18:47:16 -05:00
Graham Christensen
1d68edbef4
linux kernels: patch against DCCP double free (CVE-2017-6074) 2017-02-23 18:44:43 -05:00
Tim Steinbach
82aae8f631
kernel: 4.4.50 -> 4.4.51 2017-02-23 17:47:51 -05:00
Tim Steinbach
18c2be2862
kernel: 4.9.11 -> 4.9.12 2017-02-23 17:47:18 -05:00
Joachim Fasting
b92501f0d8
grsecurity: 4.9.11-201702181444 -> 201702222257 2017-02-23 19:18:39 +01:00
Jason A. Donenfeld
67b4f726c8 wireguard: 0.0.20170214 -> 0.0.20170223 
Simple version bump.
 2017-02-23 19:07:42 +01:00
Nikolay Amiantov
fd29b10606 linuxPackages.lttng-modules: 2.8.3 -> 2.9.1 2017-02-23 13:04:23 +03:00
Vladimír Čunát
145d3ea81c
Merge branch 'master' into staging 2017-02-22 17:47:49 +01:00
Vladimír Čunát
7ccd6f25f0
reptyr: fixup build with glibc-2.25 2017-02-22 16:54:40 +01:00
Jörg Thalheim
5b14e91717 Merge pull request #22822 from Mic92/iputils 
iputils: 20151218 -> 20161105
 2017-02-22 00:37:13 +01:00
Vladimír Čunát
c986f4f894
fatrace: fixup build with glibc-2.25 2017-02-21 19:03:36 +01:00
Vladimír Čunát
cbc343e5e7
criu: fixup build with glibc-2.25 2017-02-21 18:21:01 +01:00
Franz Pletz
6fd27c7c38
linuxPackages.sch_cake: init at 2017-01-28 2017-02-21 08:24:35 +01:00
Shea Levy
f454297a7d linux 4.10 2017-02-20 07:32:46 -05:00
Shea Levy
b191ac0d89 Revert "linux 4.10" 
Somehow the tarball was actually linux 4.4.10

This reverts commit fea71f84d0.
 2017-02-20 07:29:47 -05:00
Shea Levy
fea71f84d0 linux 4.10 2017-02-20 06:47:49 -05:00
Nikolay Amiantov
22750b36fd nvidia: support application profiles 
Closes #22666.
 2017-02-19 19:46:01 +03:00
Nikolay Amiantov
f6eedf0867 nvidia-x11.settings: add librsvg for gtk3 2017-02-19 19:45:54 +03:00
Michael Raskin
511f82d6e5 fbterm: install terminfo definition 
Hopefully helps with #22988
 2017-02-19 17:29:48 +01:00
Tuomas Tynkkynen
9483359887 linuxPackages.tp_smapi: Use common-updater/update-source-version script 
This way we have the benefit of the usual Nixpkgs style, and gain a
slight reduction in amount of code in the updater.

Also use callPackage to reduce duplication of the dependencies of the
update script and use makeBinPath to make things neater.
 2017-02-19 16:51:17 +02:00
Nikolay Amiantov
362ef377c8 nvidia_x11.settings: link dlopen'ed libraries 2017-02-19 11:53:23 +03:00
Tim Steinbach
7274fc32d2
linux: 4.4.48 -> 4.4.50 2017-02-18 18:40:04 -05:00
Tim Steinbach
2423313581
kernel: 4.9.10 -> 4.9.11 2017-02-18 18:33:36 -05:00
Robin Gloster
9326a89910
lvm: add missing dependency 
fixes #14394
 2017-02-18 23:17:14 +01:00
Joachim Fasting
ca016c2626
grsecurity: 4.9.10-201702152052 -> 4.9.11-201702181444 2017-02-18 22:01:16 +01:00
Cray Elliott
5e0b978eff mwprocapture: init at 1.2.3269 (#22160) 2017-02-18 15:44:31 +01:00
obadz
db95097674 syscall_limiter: 20160105 -> 20170123 2017-02-18 10:42:59 +00:00
Vladimír Čunát
432dba859e
Merge branch 'staging' 
A security update of libxml2 is within.
 2017-02-18 08:59:29 +01:00
Joachim Fasting
e8007c0e89
linux_4_9: patch for CVE-2017-5986 
Seems fairly low impact[1] but we might as well patch it until a new 4.9
version is released

[1]: https://bugzilla.redhat.com/show_bug.cgi?id=1420276
 2017-02-17 19:11:30 +01:00
Joachim Fasting
73577a2b05
linux_4_9: 4.9.9 -> 4.9.10 2017-02-17 19:11:24 +01:00
Robin Gloster
643703366d
pam_ssh_agent_auth: 0.9.5 -> 0.10.3 2017-02-17 00:12:01 +01:00
Robin Gloster
96b4d69136
openisns: 0.95 -> 0.97 2017-02-17 00:11:58 +01:00
Robin Gloster
df58ed2f13
hostapd: 2.5 -> 2.6 2017-02-17 00:11:37 +01:00
Robin Gloster
31ff2ac057
systemd: add patch to fix docker 
843d5baf6a

"don't use the unified hierarchy for the systemd cgroup yet"

fixes #22472
 2017-02-16 23:56:27 +01:00
Joachim Fasting
bc2f53fd29
grsecurity: 4.9.8-201702071801 -> 4.9.10-201702152052 2017-02-16 14:51:25 +01:00
Jörg Thalheim
a674dea675
iputils: 20151218 -> 20161105 
most notable change is the removal of tracepath6 and ping6
 2017-02-15 11:26:17 +01:00
Joachim Fasting
9d8a0f8dd8
pax-utils: 1.1.7 -> 1.2.2 
Fixes at least a few out-of-bounds reads[1][2]

[1]: http://seclists.org/oss-sec/2017/q1/256
[2]: http://seclists.org/oss-sec/2017/q1/308
 2017-02-15 05:37:50 +01:00
Eelco Dolstra
314dd9215b Merge pull request #16654 from awakenetworks/parnell/setcap-wrappers 
Adding setcap-wrapper functionality to Nix
 2017-02-14 16:25:06 +01:00
Graham Christensen
cc442cbdba Merge pull request #22786 from zx2c4/patch-4 
wireguard: 0.0.20170213 -> 0.0.20170214
 2017-02-14 08:20:41 -05:00
Graham Christensen
1a9707de24
wireguard: update description to describe its current state 2017-02-14 08:20:19 -05:00
Jason A. Donenfeld
36d50978b2 wireguard: 0.0.20170213 -> 0.0.20170214 
This has a quick fix for old bash.
 2017-02-14 12:08:58 +01:00
Tim Steinbach
0ec9e695c8
linux: 3.10.104 -> 3.10.105 2017-02-13 18:47:01 -05:00
Parnell Springmeyer
9e36a58649
Merging against upstream master 2017-02-13 17:16:28 -06:00
Jason A. Donenfeld
2ad8face66 wireguard: 0.0.20170115 -> 0.0.20170213 (#22759) 2017-02-13 22:20:49 +01:00
Eelco Dolstra
c71a893334
Revert "Use looser 9pfs caching in VM tests/builds" 
This reverts commit bbd03e236a.
 2017-02-13 14:38:19 +01:00
Eelco Dolstra
4af79a7331
Revert "linux: Apply 9p veryloose patch to 4.9" 
This reverts commit a82810c7a7.

Fixes #22695.
 2017-02-13 12:16:39 +01:00
Jude Taylor
c3e3b6a19a
nvidia-x11: fix parallel building variable name 2017-02-11 14:29:37 -08:00
Frederik Rietdijk
bab37c73ac nvidia-x11: undo parallel building 
In ffc498c490 -j$NIX_BUILD_JOBS was added.
Somehow this caused my machine to run many many more parallel jobs than
it was supposed to, freezing the system.

If you don't experience this, feel free to revert.
 2017-02-11 15:50:22 +01:00
Matt McHenry
166464b5ad patch ati-drivers for kernel 4.9 
uses patch from https://github.com/imageguy/fglrx-for-Fedora/blob/master/fglrx_kernel_4.9.diff
 2017-02-11 12:57:53 +02:00
Nikolay Amiantov
442b4d65c3 Merge pull request #22304 from abbradar/nvidia 
Refactor NVidia drivers
 2017-02-10 23:53:34 +03:00
Tuomas Tynkkynen
182a369ab9 sssd: Cleanup a bit 2017-02-10 20:12:00 +02:00
Jörg Thalheim
3455bd6f36
android-udev-rules: 20170202 -> 20170208 2017-02-09 22:23:52 +01:00
Franz Pletz
9dec33dc4f
linux: 4.9.8 -> 4.9.9 2017-02-09 16:27:29 +01:00
Franz Pletz
9d8248517e
linux: 4.4.47 -> 4.4.48 2017-02-09 16:27:16 +01:00
Tuomas Tynkkynen
05605b41d8 autofs: Some cleanup 
The --with-openldap and --with-sasl flags passed here are actually wrong
as they don't point to the dev outputs of the packages. Anyway, autoconf
recognizes the packages as they are in buildInputs.

getBin is generally not needed - binaries can always be referred as
${foo}/bin/bar regardless of whether the package is multiple-output.

meta.version is unnecessary.
 2017-02-09 02:50:48 +02:00
Franz Pletz
dced724c00
linux_3_18: remove due to EOL 2017-02-08 23:50:59 +01:00
Nikolay Amiantov
2fd2fcf54d linuxPackages.nvidia_x11: refactor, build more from source 
* Use libglvnd;
* Compile nvidia-settings, nvidia-persistenced from source;
* Generalize builder.
 2017-02-08 16:57:46 +03:00
Joachim Fasting
bd46a375df
grsecurity: 4.9.8-201702060653 -> 201702071801 2017-02-08 01:31:18 +01:00
Vladimír Čunát
ce9d30e734
Merge #22241: amdgpu-pro: 16.50 -> 16.60 2017-02-07 20:49:58 +01:00
Kier Davis
83865b2c6c intel-ocl: init at r4.0-59481 2017-02-07 15:20:30 +03:00
aszlig
cf94e18627
linux-testing: 4.10-rc4 -> 4.10-rc7 
Tested via building the linux_testing attribute only, not in production.

Verified unpacked tarball with GnuPG:

gpg: Signature made Mon 06 Feb 2017 12:21:50 AM CET
gpg:                using RSA key 79BE3E4300411886
gpg: Good signature from "Linus Torvalds <torvalds@linux-foundation.org>" [unknown]
Primary key fingerprint: ABAF 11C6 5A29 70B1 30AB  E3C4 79BE 3E43 0041 1886

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2017-02-07 10:23:50 +01:00
Joachim Fasting
9611a60708
jfbview: 0.5.2 -> 0.5.3, fixes build 
Also convert tabs to spaces
 2017-02-07 04:48:33 +01:00
David McFarland
47c166fe05 amdgpu-pro: 16.50 -> 16.60 2017-02-06 23:16:21 -04:00
Joachim Fasting
0d422c5db5
grsecurity: 4.8.17-201701151620 -> 4.9.8-201702060653 
The first release in the 4.9 branch.

I've also migrated my update scripts to SHA-512 so that'll
be the hash of choice for grsec packages going forward.
 2017-02-06 15:49:34 +01:00
Franz Pletz
01cf43a389
firmwareLinuxNonfree: 2016-07-12 -> 2017-02-06 2017-02-06 15:11:04 +01:00
Jörg Thalheim
2c96395272
android-udev-rules: 20170125 -> 20170202 2017-02-06 13:21:50 +01:00
Nikolay Amiantov
90bc1a8595 Merge pull request #22353 from abbradar/bluetooth 
Bluetooth improvements
 2017-02-05 13:18:48 +03:00
Joachim F
e480521c5b Merge pull request #22443 from rnhmjoj/btfs 
btfs: 2.12 -> 2.13
 2017-02-05 01:28:51 +01:00
Vladimír Čunát
a2c867fd39
Merge branch 'staging' 2017-02-04 21:02:46 +01:00
Vladimír Čunát
73d798549f
protobuf, perf: fix my bad condition on gcc version 2017-02-04 20:58:47 +01:00
rnhmjoj
4ee66dbc7c
btfs: 2.12 -> 2.13 2017-02-04 18:51:44 +01:00
Franz Pletz
05152bd5b3 Merge pull request #22428 from Mic92/zfs 
zfs: 0.6.5.8 -> 0.6.5.9 (linux 4.9 support)
 2017-02-04 16:33:53 +01:00
Tim Steinbach
949f9aff1d
linux: 3.12.69 -> 3.12.70 2017-02-04 09:18:50 -05:00
Tim Steinbach
7f69dc48b9
linux: 4.9.7 -> 4.9.8 2017-02-04 09:09:19 -05:00
Tim Steinbach
17b5ae4fe4
linux: 4.4.46 -> 4.4.47 2017-02-04 09:09:02 -05:00
Jörg Thalheim
efd77e06c3
linuxPackages.zfs: 0.6.5.8 -> 0.6.5.9 2017-02-04 10:33:16 +01:00
Jörg Thalheim
0ca7e01bed
kernelPackages.spl: 0.6.5.8 -> 0.6.5.9 2017-02-04 10:33:11 +01:00
Tim Steinbach
26e5b42106
linux: 4.4.45 -> 4.4.46 2017-02-03 18:36:50 -05:00
Jörg Thalheim
a8e32d68b5 Merge pull request #22412 from makefu/exfat-nofuse 
exfat-nofuse: init at 2017-01-03
 2017-02-03 20:07:26 +01:00
makefu
26a27e4657
exfat-nofuse: init at 2017-01-03 2017-02-03 19:49:27 +01:00
Nikolay Amiantov
ede8adc441 tcp_wrappers: 7.6.q -> 7.6.q-26 
I've accidentially taken old Debian patchset. Maybe this also helps with Darwin failures.
 2017-02-03 21:13:36 +03:00
Nikolay Amiantov
230c97c944 Merge pull request #22303 from abbradar/nfs4 
NFS improvements
 2017-02-03 20:04:25 +03:00
Test
b23452d517 wrap upstart binaries and patch hard-coded paths 2017-02-03 11:03:30 -06:00
Vladimír Čunát
2ba076e99c
Merge branch 'master' into staging 
>11k more build jobs on master, just for Linux :-/
This way staging will never catch up.
 2017-02-03 15:32:08 +01:00
Michael Raskin
d6710e3d66 shadow: 4.2.1 -> 4.4 2017-02-03 13:14:39 +01:00
Michael Raskin
4101f1fd18 iptables: 1.6.0 -> 1.6.1 2017-02-03 13:14:39 +01:00
Vladimír Čunát
e7c968fbf2
linuxPackages*.perf: fix build with default gcc 
Broken since 9842a107.
 2017-02-03 12:38:18 +01:00
Vladimír Čunát
adab4cd58b
Merge branch 'master' into staging 2017-02-03 11:47:38 +01:00
Pascal Bach
d1738c19bb kernel: 4.9.6 -> 4.9.7 2017-02-02 21:08:24 +01:00
Robin Gloster
a0aacdd199
lxc: 2.0.6 -> 2.0.7 2017-02-02 18:59:07 +01:00
Michael Raskin
2973d35b9a sysdig: 0.13.0 -> 0.14.0 2017-02-02 11:12:16 +01:00
Robin Gloster
8a0d1bcf8b
systemd: add patches to fix i686 booting 2017-02-02 01:12:55 +01:00
Nikolay Amiantov
496476be4e bluez4: reintroduce to nixpkgs 
It's still needed by KDE4. It was there, just unreferenced from all-packages.
 2017-02-02 00:52:54 +03:00
Daiderd Jordan
957ad8e3a1 Merge pull request #22301 from LnL7/khd 
khd: 1.1.4 -> 2.0.0
 2017-02-01 22:16:47 +01:00
Michael Raskin
a9e55a2a8e firejail: 0.9.44.4 -> 0.9.44.8 2017-02-01 19:28:45 +01:00
Nikolay Amiantov
58d6b40893 nfs-utils: 1.3.3 -> 2.1.1 
Use upstream systemd units, add kerberos support.
 2017-02-01 19:47:33 +03:00
Nikolay Amiantov
469546f46e tcp_wrappers: 7.6 -> 7.6.q 2017-02-01 02:45:44 +03:00
Nikolay Amiantov
6991e7930e keyutils: split outputs 2017-02-01 02:45:28 +03:00
Daiderd Jordan
7bd49cded4
khd: 1.1.4 -> 2.0.0 2017-01-30 22:43:54 +01:00
Vladimír Čunát
9cd2dbc569
Merge branch 'master' into staging 
Hopefully this will fix the mass abortion on Hydra;
restarting the jobs didn't help.
 2017-01-30 18:39:36 +01:00
Eelco Dolstra
c20cc6d0b3
Excise use of importJSON 
Putting information in external JSON files is IMHO not an improvement
over the idiomatic style of Nix expressions. The use of JSON doesn't
add anything over Nix expressions (in fact it removes expressive
power). And scattering package info over lots of little files makes
packages less readable over having the info in one file.
 2017-01-30 11:44:08 +01:00
Parnell Springmeyer
6777e6f812
Merging with upstream 2017-01-29 05:54:01 -06:00
Parnell Springmeyer
4aa0923009
Getting rid of the var indirection and using a bin path instead 2017-01-29 04:11:01 -06:00
Parnell Springmeyer
e92b8402b0
Addressing PR feedback 2017-01-28 20:48:03 -08:00
Jude Taylor
ffc498c490
nvidia_x11: add missing vulkan files 2017-01-28 19:47:25 -08:00
Tuomas Tynkkynen
424cfe7686 Merge remote-tracking branch 'upstream/master' into staging 2017-01-29 02:16:29 +02:00
Tuomas Tynkkynen
2f38d1fd1f kmscube: init at 2016-09-19 2017-01-29 02:08:04 +02:00
Kevin Cox
6dcc4623ac
libnl: 3.2.23 -> 2.3.29 to revert accidental downgrade. 
libnl was accidentally downgrades to 2.3.29 in
8d342d20b5 instead of being upgraded to
2.3.29 so this fixes that.
 2017-01-27 22:41:44 +00:00
Jörg Thalheim
c2a7c448da
android-udev-rules: 20170109 -> 20170125 2017-01-27 22:37:12 +01:00
Alexey Shmalko
e799e7b5d6
musl: build musl-gcc 
The build of the wrapper was disabled in 93e44be (#21023) and is not
related to the CVE itself. (See comments in the mentioned PR.)
 2017-01-27 21:54:27 +02:00
Tim Steinbach
99c9252e3f
kernel: 4.9.5 -> 4.9.6 2017-01-26 19:56:26 -05:00
Tim Steinbach
4345dfb5ba
kernel: 4.4.44 -> 4.4.45 2017-01-26 19:55:58 -05:00
Tuomas Tynkkynen
be0e48e48f Merge remote-tracking branch 'upstream/master' into staging 2017-01-27 02:18:44 +02:00
Robin Gloster
972749f1d4
systemd: fix repository url 
Left-over from testing, sorry..
 2017-01-26 17:57:10 +01:00
Robin Gloster
a38f1911d3
systemd: 231 -> 232 
Includes adding some more upstream units and removing obsolete (-.slice) ones.
 2017-01-26 17:52:52 +01:00
Tuomas Tynkkynen
e2a2f6d595 Merge pull request #22117 from dezgeg/aarch64-for-merge 
Aarch64 (ARM64) support
 2017-01-26 17:52:28 +02:00
Vladimír Čunát
6973c7739e
Merge branch 'master' into staging 
There were some larger rebuilds because of security.
 2017-01-26 16:49:41 +01:00
Parnell Springmeyer
a26a796d5c
Merging against master - updating smokingpig, rebase was going to be messy 2017-01-26 02:00:04 -08:00
Parnell Springmeyer
025555d7f1
More fixes and improvements 2017-01-26 00:05:40 -08:00
Franz Pletz
4276844cb0
powerstat: 0.2.10 -> 0.2.11 2017-01-26 03:52:50 +01:00
Franz Pletz
f4833ed484
smemstat: 0.01.14 -> 0.01.16 2017-01-26 03:52:50 +01:00
Franz Pletz
d14c7bf046
eventstat: 0.03.02 -> 0.03.03 2017-01-26 03:52:48 +01:00
Franz Pletz
96c35ad06a
fnotifystat: 0.01.14 -> 0.01.16 2017-01-26 03:52:47 +01:00
Franz Pletz
243272cd2e
forkstat: 0.01.14 -> 0.01.16 2017-01-26 03:52:47 +01:00
Graham Christensen
8d342d20b5
libnl: 3.2.28 -> 3.2.29 for CVE-2017-0386 2017-01-25 20:53:18 -05:00
Robin Gloster
9842a107da
linuxPackages.perf: fix build with gcc6 2017-01-25 20:12:38 +01:00
Parnell Springmeyer
bae00e8aa8
setcap-wrapper: Merging with upstream master and resolving conflicts 2017-01-25 11:08:05 -08:00
Franz Pletz
b9b95aa4d4 Merge pull request #22034 from mayflower/conntrack-helpers 
Disable conntrack helper autoloading by default
 2017-01-25 14:18:41 +01:00
Tuomas Tynkkynen
2bfd83ab6d platforms.nix: Add some aarch64-specific kernel config 
This makes Raspberry Pi 3 and some Cavium ThunderX server hardware work.
 2017-01-25 02:14:46 +02:00
Joachim Fasting
c50c551142
grsecurity: 4.8.16-201701062021 -> 4.8.17-201701151620 2017-01-25 00:58:57 +01:00
Joachim Fasting
482c67af70
grsecurity: adapt new to mirror url structure 2017-01-25 00:58:54 +01:00
Franz Pletz
403fdd737e
linux: remove canDisableNetfilterConntrackHelpers feature 
This feature is available in all kernels in nixpkgs.
 2017-01-25 00:28:55 +01:00
Tuomas Tynkkynen
3519244c72 raspberrypifw: Enable build on Aarch64 
So that the boot blobs can be copied.

FIXME: This makes the dynamic linker of the ARM binaries point to a
aarch64 linker.
 2017-01-25 00:01:54 +02:00
Tuomas Tynkkynen
8999ab9e56 fuse: Add Aarch64 patch from upstream git to fix build 
See e.g. https://bugs.launchpad.net/linaro-oe/+bug/1087757
 2017-01-25 00:01:54 +02:00
Nathan Zadoks
fcc51d3256 linux: fix installTargets for AArch64 
[dezgeg: note that we are currently using just 'Image' instead of
'Image.gz' as U-Boot doesn't support the latter yet. We might switch
once it does since the kernel images are quite big]
 2017-01-25 00:01:54 +02:00
Nathan Zadoks
bfff3d6e23 busybox: Fix in-store invocation of busybox 
This fixes the usage for stdenv bootstrap.

Additionally, dezgeg ported the patch from 1.25.1 to 1.26.1
 2017-01-25 00:01:52 +02:00
John Ericson
5ad696b067 Merge pull request #22107 from Ericson2314/cross-tepid 
Somewhat saner cross-compiling through bootstrapping
 2017-01-24 15:09:56 -05:00
Michael Raskin
e08cae373b Merge branch 'master' into kwm 2017-01-24 17:59:56 +00:00
Michael Raskin
2bcc678f5a Merge pull request #22070 from LnL7/khd 
khd: init at v1.1.4
 2017-01-24 17:58:50 +00:00
John Ericson
a1a798f017 top-level: crossSystem is no longer exposed to packages. Use *Platform. 2017-01-24 11:37:56 -05:00
John Ericson
bf17d6dacf top-level: Introduce buildPackages for resolving build-time deps 
[N.B., this package also applies to the commits that follow it in the same
PR.]

In most cases, buildPackages = pkgs so things work just as before. For
cross compiling, however, buildPackages is resolved as the previous
bootstrapping stage. This allows us to avoid the mkDerivation hacks cross
compiling currently uses today.

To avoid a massive refactor, callPackage will splice together both package
sets. Again to avoid churn, it uses the old `nativeDrv` vs `crossDrv` to do
so. So now, whether cross compiling or not, packages with get a `nativeDrv`
and `crossDrv`---in the non-cross-compiling case they are simply the same
derivation. This is good because it reduces the divergence between the
cross and non-cross dataflow. See `pkgs/top-level/splice.nix` for a comment
along the lines of the preceding paragraph, and the code that does this
splicing.

Also, `forceNativeDrv` is replaced with `forceNativePackages`. The latter
resolves `pkgs` unless the host platform is different from the build
platform, in which case it resolves to `buildPackages`. Note that the
target platform is not important here---it will not prevent
`forcedNativePackages` from resolving to `pkgs`.

--------

Temporarily, we make preserve some dubious decisions in the name of preserving
hashes:

Most importantly, we don't distinguish between "host" and "target" in the
autoconf sense. This leads to the proliferation of *Cross derivations
currently used. What we ought to is resolve native deps of the cross "build
packages" (build = host != target) package set against the "vanilla
packages" (build = host = target) package set. Instead, "build packages"
uses itself, with (informally) target != build in all cases.

This is wrong because it violates the "sliding window" principle of
bootstrapping stages that shifting the platform triple of one stage to the
left coincides with the next stage's platform triple. Only because we don't
explicitly distinguish between "host" and "target" does it appear that the
"sliding window" principle is preserved--indeed it is over the reductionary
"platform double" of just "build" and "host/target".

Additionally, we build libc, libgcc, etc in the same stage as the compilers
themselves, which is wrong because they are used at runtime, not build
time. Fixing this is somewhat subtle, and the solution and problem will be
better explained in the commit that does fix it.

Commits after this will solve both these issues, at the expense of breaking
cross hashes. Native hashes won't be broken, thankfully.

--------

Did the temporary ugliness pan out? Of the packages that currently build in
`release-cross.nix`, the only ones that have their hash changed are
`*.gcc.crossDrv` and `bootstrapTools.*.coreutilsMinimal`. In both cases I
think it doesn't matter.

 1. GCC when doing a `build = host = target = foreign` build (maximally
    cross), still defines environment variables like `CPATH`[1] with
    packages.  This seems assuredly wrong because whether gcc dynamically
    links those, or the programs built by gcc dynamically link those---I
    have no idea which case is reality---they should be foreign. Therefore,
    in all likelihood, I just made the gcc less broken.

 2. Coreutils (ab)used the old cross-compiling infrastructure to depend on
    a native version of itself. When coreutils was overwritten to be built
    with fewer features, the native version it used would also be
    overwritten because the binding was tight. Now it uses the much looser
    `BuildPackages.coreutils` which is just fine as a richer build dep
    doesn't cause any problems and avoids a rebuild.

So, in conclusion I'd say the conservatism payed off. Onward to actually
raking the muck in the next PR!

[1]: https://gcc.gnu.org/onlinedocs/gcc/Environment-Variables.html
 2017-01-24 11:37:56 -05:00
Eelco Dolstra
a82810c7a7
linux: Apply 9p veryloose patch to 4.9 2017-01-24 13:05:02 +01:00
Franz Pletz
7c5324f29a
nftables: disable broken xtables support 2017-01-24 11:47:34 +01:00
Daiderd Jordan
adfb7e1f13
kwm: init at 1.1.4 2017-01-24 08:31:11 +01:00
Shea Levy
4f9f00fcc9 Add function to build a ghc standalone archive (OSX/iOS only) 2017-01-23 18:35:03 -05:00
Daiderd Jordan
0f91cdc45f
kwm: init at 4.0.4 2017-01-23 21:45:01 +01:00
Daiderd Jordan
034d39b244
darwin: update shas, some sources where re-released with different metadata 2017-01-23 19:39:03 +01:00
Shea Levy
b82d6b3a0a ios-cross: Expose the SDK directory via ccCross 2017-01-23 08:23:43 -05:00
Franz Pletz
e10cd27269
Merge branch 'staging' 2017-01-23 11:06:41 +01:00
Tim Steinbach
fc8233a64f
kernel: 4.4.43 -> 4.4.44 2017-01-22 12:11:50 -05:00
Franz Pletz
b1e9acfb18 Merge pull request #21990 from Mic92/utillinux 
utillinux: undo seccomp sandbox and improve purity
 2017-01-22 14:15:01 +01:00
Franz Pletz
f09c5c9c45
nftables: 0.6 -> 0.7, enable xtables support 2017-01-22 13:01:01 +01:00
Franz Pletz
210f894c12
iptables: split out dev output 2017-01-22 13:01:01 +01:00
Franz Pletz
016a194ac8
conntrack_tools: 1.4.3 -> 1.4.4 2017-01-22 13:01:01 +01:00
Jörg Thalheim
7cb14d4353 Merge pull request #22020 from Mic92/zfs 
ZfsUnstable: 0.7.0-rc2 -> 0.7.0-rc3
 2017-01-21 23:50:28 +01:00
Franz Pletz
56c6a4391f
zfs: add hint to try unstable version, fix typo 2017-01-21 23:35:55 +01:00
Franz Pletz
61caacbf47
linux: 4.1.36 -> 4.1.38 2017-01-21 20:41:38 +01:00
Franz Pletz
ce3b98d08b
linux: 3.18.45 -> 3.18.47 2017-01-21 20:41:36 +01:00
Jörg Thalheim
adecd56871
splUnstable: 0.7.0-rc2 -> 0.7.0-rc3 2017-01-21 18:18:33 +01:00
Jörg Thalheim
c33e1e06fa
zfsUnstable: 0.7.0-rc2 -> 0.7.0-rc3 2017-01-21 18:18:17 +01:00
Michael Raskin
dc6413399c eudev: fix build with a fresh gperf 2017-01-21 08:55:17 +01:00
Daiderd Jordan
c7d49e5f69
darwin: fixed eval of frameworks 2017-01-21 01:01:46 +01:00
Robert Helgesson
ba4687c3ea
radeontop: 2016-07-04 -> 2016-10-28 
This is actually version 1.0 but to support `nix-env -u` we continue
using the release date.
 2017-01-20 23:14:53 +01:00
Shea Levy
e70dcf6818 ios-cross: Bump sdk version, verify sdk install at build time 2017-01-20 14:10:15 -05:00
Vladimír Čunát
6b6553c768
Merge branch 'staging' 
It contains security updates.  I somehow forgot to push this yesterday.
 2017-01-20 16:33:59 +01:00
Shea Levy
34c52896d1 linux 4.9.4 -> 4.9.5 2017-01-20 09:36:04 -05:00
Nikolay Amiantov
d75a3cfb29 Merge pull request #21995 from abbradar/opencl 
Fix OpenCL support
 2017-01-20 12:09:17 +03:00
Nikolay Amiantov
05eee18e7a linuxPackages.nvidia_x11: fix OpenCL support 
* Move OpenCL .icd file to the right place;
* Remove libOpenCL.so (we use ocl-icd instead).
 2017-01-20 03:37:51 +03:00
Robin Gloster
a6ebca448e
iproute: update fan patches 2017-01-19 17:28:22 +01:00
Jörg Thalheim
104a37a9fb
util-linux: improve purity by using login from shadow 
replacing shutdown in postPatch phase is not necessary as rtcwake was already
patched to use the search path (the only user of shutdown)
 2017-01-19 15:13:38 +01:00
Jörg Thalheim
4b9b1fa945
util-linux: remove seccomp sandbox for CVE-2016-2279 
the patch for CVE-2016-2779 was reverted by upstream and was not adopted
by any other downstream distributions. Upstream waits for a better fix
in the kernel:
https://www.kernel.org/pub/linux/utils/util-linux/v2.28/v2.28-ReleaseNotes
 2017-01-19 15:10:18 +01:00
Vladimír Čunát
40003aa2ed
Merge branch 'master' into staging 2017-01-18 15:54:04 +01:00
Tuomas Tynkkynen
9fc3ce73d1 kernel config: Enable BONDING and TMPFS_POSIX_ACL 
Yet again something that's lacking on other platforms than x86.
 2017-01-18 01:21:08 +02:00
Eelco Dolstra
e9109b1b97
linux: 4.4.42 -> 4.4.43 2017-01-17 12:02:46 +01:00
Eelco Dolstra
9a9be9296f
linux: 4.9.3 -> 4.9.4 2017-01-17 12:02:46 +01:00
Tuomas Tynkkynen
08ddb16865 linux_testing: 4.10-rc2 -> 4.10-rc4 2017-01-16 11:41:13 +02:00
Thomas Tuegel
04d11637cb
linux_4_9: enable support for amdgpu on older chipsets 
Linux 4.9 includes experimental amdgpu support for AMD Southern Islands
chipsets. (By default, only Sea Islands and newer chipsets are supported.)
Southern Islands chips will still use radeon by default, but daring users may
set `services.xserver.videoDrivers = [ "amdgpu" ];` to try the experimental
driver.
 2017-01-15 16:29:50 -06:00
Jörg Thalheim
12b2830446
wireguard: 0.0.20170105 -> 0.0.20170115 2017-01-15 17:33:54 +01:00
Daiderd Jordan
d6517b6e5e Merge pull request #21898 from matthewbauer/darwintools 
DarwinTools: init at 1
 2017-01-15 10:11:39 +01:00
Jörg Thalheim
2ab883c9da
sysdig: patch for linux >= 4.9.1 2017-01-15 00:08:12 +01:00
Tim Steinbach
e8d3c74b49
util-linux: 2.28.1 -> 2.29 2017-01-14 12:57:58 -05:00
Tim Steinbach
afb73be9f7 busybox: 1.26.1 -> 1.26.2 2017-01-14 17:19:43 +01:00
Tim Steinbach
295337ead5
linux: 4.9.2 -> 4.9.3 2017-01-14 11:02:26 -05:00
Tim Steinbach
9158b89fd3
linux: 4.4.41 -> 4.4.42 2017-01-14 11:01:52 -05:00
Franz Pletz
44efd447b6 Merge pull request #21816 from NeQuissimus/linux_4_8_removal 
linux: Remove 4.8
 2017-01-12 10:22:29 +01:00
Graham Christensen
d20d38e68d
nvidia_x11_legacy340: 340.96 -> 340.101 for CVE-2016-7382, CVE-2016-7389, CVE-2016-8826 2017-01-11 20:11:20 -05:00
Graham Christensen
9837dce6d2
nvidia_x11_legacy304: 304.131 -> 304.134 for CVE-2016-7382, CVE-2016-7389, CVE-2016-8826 2017-01-11 20:11:14 -05:00
Tim Steinbach
d483a871d1
linux: Remove 4.8 2017-01-11 16:59:29 -05:00
Jude Taylor
3f49c4f3ce reattach-to-user-namespace: fix version 2017-01-10 12:21:43 -08:00
Jude Taylor
f2713ce805 update reattach-to-user-namespace 2017-01-10 11:51:03 -08:00
David McFarland
b2da3d3050 amdgpu-pro: 16.40 -> 16.50 (#21502) 2017-01-10 15:24:21 +01:00
Michael Raskin
5b9d80646b mdadm4: init at 4.0 
Would be just mdadm: 3.3.4 -> 4.0, but it doesn't look like there are
urgent bugfixes, and it is a major release, and wrong RAID handling
kills data, so let's let the early adopters test it a bit.
 2017-01-10 14:09:20 +01:00
Franz Pletz
6b01b229c2
linux: 4.9.1 -> 4.9.2 2017-01-10 07:45:19 +01:00
Franz Pletz
3b17823187
linux: 4.8.16 -> 4.8.17 2017-01-10 07:45:19 +01:00
Franz Pletz
4c43937af0
linux: 4.4.40 -> 4.4.41 2017-01-10 07:45:18 +01:00
Pascal Wittmann
18c0b54981
linuxConsoleTools: 1.4.9 -> 1.6.0 2017-01-09 22:08:30 +01:00
Vladimír Čunát
c82baee8ac
sssd: fixup build after bind output changes #21685 2017-01-09 20:24:01 +01:00
Jörg Thalheim
87e1c49298
android-udev-rules: 20170106 -> 20170109 2017-01-09 13:40:31 +01:00
Jörg Thalheim
adbcb37db5
android-udev-rules: 20161014 -> 20170106 2017-01-08 23:40:40 +01:00
Michael Raskin
9653be493a firejail: 0.9.44.2 -> 0.9.44.4 2017-01-08 13:58:24 +01:00
Matthew Bauer
6f72be9962
DarwinTools: init at 1 2017-01-08 02:28:44 -06:00
Joachim Fasting
d6ff445f10
grsecurity: 4.8.15-201612301949 -> 4.8.16-201701062021 2017-01-07 08:01:41 +01:00
Tim Steinbach
c1d20ea50c
kernel: 4.9.0 -> 4.9.1 2017-01-06 16:15:18 -05:00
Tim Steinbach
ecf87b11f2
kernel: 4.8.15 -> 4.8.16 2017-01-06 16:15:02 -05:00
Tim Steinbach
8fda707027
kernel: 4.4.39 -> 4.4.40 2017-01-06 16:14:30 -05:00
Vladimír Čunát
07bf828bd9
Merge branch 'staging'; security /cc #21642 2017-01-06 16:32:47 +01:00
Jörg Thalheim
ca0d747d6d Merge pull request #21578 from Mic92/zfs 
zfs: add unstable variant
 2017-01-05 12:52:56 +01:00
Jason A. Donenfeld
1ba9a3cd9b wireguard: 0.0.20161230 -> 0.0.20170105 
Version bump that contains some new tools.

fixes #21666
 2017-01-05 10:38:58 +00:00
Jörg Thalheim
4029470a6f
zfs: add unstable variant 
Until now nixos only delivered the latest zfs release. This release is often not
compatible with the latest mainline kernel. Therefor an unstable variant is
added, which might be based on testing releases or git revisions.

fixes #21359
 2017-01-05 08:40:50 +01:00
Franz Pletz
08d1f28818
Revert "iproute: remove broken fan patch" 
This reverts commit 0d5a5307be because it
breaks evaluation. See #21561.
 2017-01-04 22:30:55 +01:00
Jörg Thalheim
0779fdb3e4 Merge pull request #21561 from Mic92/iproute 
iproute: remove broken fan patch
 2017-01-04 21:47:54 +01:00
Daiderd Jordan
27660cfdc0
Merge branch 'master' into staging 2017-01-04 01:42:26 +01:00
Alexander Kahl
61d125b842 sssd: init at 1.14.2 
perlPackages.TextWrapI18N: init at 0.06
perlPackages.Po4a: init at 0.47
jade: init at 1.2.1
ding-libs: init at 0.6.0

Switch nscd to no-caching mode if SSSD is enabled.

abbradar: disable jade parallel building.

Closes #21150
 2017-01-04 03:07:20 +03:00
Daiderd Jordan
6158604d8a Merge pull request #21603 from abuibrahim/master 
ofp: init at 2.0.0
 2017-01-04 00:12:58 +01:00
Ruslan Babayev
f3e2feb057 ofp: init at 2.0.0 2017-01-03 10:28:46 -08:00
Tim Steinbach
92d0a977d9 Merge pull request #21614 from NeQuissimus/busybox_1_26_1 
busybox: 1.25.1 -> 1.26.1
 2017-01-03 13:09:35 -05:00
Daiderd Jordan
538d1b688a stdenv: bootstrap cmake and python on darwin 2017-01-03 18:01:47 +01:00
Tim Steinbach
9bd93ac6e0
busybox: 1.25.1 -> 1.26.1 2017-01-03 08:40:32 -05:00
Tuomas Tynkkynen
2a4c8313e4 linux_testing: 4.10-rc1 -> 4.10-rc2 2017-01-03 13:51:23 +02:00
Michael Raskin
237629a090 eudev: 3.2 -> 3.2.1 2017-01-02 20:18:49 +01:00
Michael Raskin
11bfe01846 firejail: 0.9.42 -> 0.9.44.2 2017-01-02 20:18:47 +01:00
Balletie
66c745e30d
pommed-light: init at 1.50lw 2017-01-02 19:40:43 +01:00
Jörg Thalheim
1fa75a5bb7
sysdig: 0.12.0 -> 0.13.0 2017-01-02 08:10:47 +01:00
Daiderd Jordan
5a67b130b9
Merge branch 'master' into staging 2017-01-02 00:54:17 +01:00
Ruslan Babayev
1bead81275 pktgen: fix runtime paths 
The Lua and lscpu path substitution got accidentally removed in
with commit 605b8095ca
 2017-01-01 15:44:21 -08:00
Jörg Thalheim
f3052035ee
wireguard: 0.0.20161223 -> 0.0.20161230 
fixes #21572
 2017-01-01 21:24:33 +01:00
Jörg Thalheim
db8c9ef3ff
bcc: git-2016-08-30 -> 0.2.0 2017-01-01 10:29:17 +01:00
Joachim Fasting
75ce714818
grsecurity: 4.8.15-201612151923 -> 201612301949 2017-01-01 06:01:04 +01:00
Jörg Thalheim
0d5a5307be
iproute: remove broken fan patch 2017-01-01 05:17:53 +01:00
Ruslan Babayev
605b8095ca pktgen: 3.0.13 -> 3.1.0 2016-12-31 16:43:11 -08:00
Ruslan Babayev
aeb41bbf75 odp-dpdk: 2016-08-16 -> 1.12.0.0 2016-12-31 16:23:47 -08:00
Ruslan Babayev
dd45691fe0 dpdk: 16.07 -> 16.07.2 2016-12-31 16:22:52 -08:00
Vladimír Čunát
6bded45883
flex: 2.6.1 -> 2.6.3 
This resolves some warnings and errors introduced in 2.6.x.
 2016-12-30 23:17:08 +01:00
Aneesh Agrawal
652a87018b
googleAuthenticator: 1.0 -> 1.03 2016-12-30 06:49:17 -05:00
Eelco Dolstra
bbd03e236a
Use looser 9pfs caching in VM tests/builds 
This can give significant speed ups, see
7e20254412.
 2016-12-29 21:26:16 +01:00
Robin Gloster
3fcdbedbef
iproute: 4.8.0 -> 4.9.0 2016-12-29 02:52:55 +01:00
Franz Pletz
1cbb04e72e
iproute: 4.7.0 -> 4.8.0 2016-12-29 02:52:55 +01:00
Robin Gloster
3e8bb7237d
cryptsetup: 1.7.1 -> 1.7.3 2016-12-29 02:52:54 +01:00
Franz Pletz
c2a979fbfd
cryptsetup: 1.7.0 -> 1.7.1 2016-12-29 02:52:54 +01:00
Nikolay Amiantov
cdf306909f udev182: remove 2016-12-29 00:11:40 +03:00
Nikolay Amiantov
a36a2412ee libudev0-shim: init at 1 2016-12-29 00:11:40 +03:00
Tuomas Tynkkynen
45338a3077 fuse: Minor cleanup 2016-12-28 17:37:10 +02:00
Franz Pletz
c6bcc485de
linux_4_8: add patch to fix CVE-2016-9919 2016-12-28 06:35:11 +01:00
Tuomas Tynkkynen
5ba7f33e3a linux_testing: 4.9-rc8 -> 4.10-rc1 2016-12-27 01:35:10 +02:00
Tuomas Tynkkynen
e60bb86d00 kexectools: 2.0.13 -> 2.0.14 
ARM patch is included upstream now.
 2016-12-26 18:54:34 +02:00
Michael Raskin
2c616b0473 xf86-input-wacom: 0.32.0 -> 0.34.0 2016-12-25 22:56:32 +01:00
aszlig
6af6cec8b2
Revert "thin-provisioning-tools: init at 0.6.1" 
This reverts commit 55b18ac486.

There is already a "thin-provisioning-tools" package (see
cd1ec18b42).

Although this one was committed earlier, I'm reverting it because it's
not only older, but it's unreferenced within <nixpkgs>.

Apart from that the packaging of the other package is of higher
packaging quality (maintainer and license, doesn't use "descriptionS",
uses autoreconfHook).

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Cc: @globin, @dwe11er, @jagajaga
Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2016-12-25 02:05:49 +01:00
Tuomas Tynkkynen
0e3b56c7b9 alsa-lib: Remove unnecessary crossAttrs 
It's breaking the cross build.
 2016-12-24 22:41:32 +02:00
Jörg Thalheim
c98f3ffea8
wireguard: 0.0.20161218 -> 0.0.20161223 2016-12-24 13:55:32 +01:00
Vladimír Čunát
c655399126
Merge branch 'staging' 2016-12-24 10:50:49 +01:00
Frederik Rietdijk
9f6bd82364 nvidia-x11: 375.20 -> 375.26 2016-12-23 10:57:28 +01:00
Vladimír Čunát
2e03ae274d Merge branch 'master' into staging 2016-12-22 11:28:56 +01:00
Graham Christensen
3ffb5ba60c
linux:3.18.44 -> 3.18.45 2016-12-21 21:08:47 -05:00
Graham Christensen
53e21529d4
linux:3.12.68 -> 3.12.69 2016-12-21 21:08:47 -05:00
Jason A. Donenfeld
77588ca442 wireguard: 20161209 -> 20161218 (#21288) 2016-12-22 03:04:55 +01:00
Joachim Fasting
6758d157d2
multipath-tools: ensure gzip does not capture timestamp 
gzip is originally called as 'gzip -9 -c'

This is a port of
a8e7ddd1df

Note that it does not seem to make a difference to `nix-build --check`.
 2016-12-20 15:31:55 +01:00
Aristid Breitkreuz
bb18e10ba0 Merge remote-tracking branch 'origin/master' into staging 2016-12-20 14:05:30 +01:00
Dan Peebles
377cef8d16 apple-sdk: 10.9 -> 10.11 2016-12-19 19:47:24 -05:00
Rok Garbas
b7cfbf96d6 tp_smapi: updateScript added 2016-12-18 16:45:33 +01:00
Franz Pletz
eb559d2b07
batman-adv: 2016.4 -> 2016.5 2016-12-18 05:23:38 +01:00
aszlig
ffe71cbe19
kexec-tools: Add patch to fix build on ARM 
Building on ARM fails with the following error:

kexec/arch/arm/phys_to_virt.o kexec/arch/arm/phys_to_virt.c
kexec/arch/arm/phys_to_virt.c:3:26: fatal error: phys_to_virt.h: No such file or directory

The patch I'm using is from Fedora:

http://pkgs.fedoraproject.org/cgit/rpms/kexec-tools.git/tree/kexec-tools-2.0.13-fix-armv7-build-failure.patch?id=97581f1a435aafa298a4d0bbcfaf40c63a41ce92

It has been reported upstream as well:

http://lists.infradead.org/pipermail/kexec/2016-September/017352.html

I'm adding the patch for all architectures, so that the next person to
upgrade kexec-tools doesn't forget that even while on x86.

Tested building with i686-linux, x86_64-linux and armv7l-linux.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2016-12-18 04:49:39 +01:00
Vladimír Čunát
86e4c9ed46
Merge branch 'master' into staging 2016-12-17 20:29:25 +01:00
Tim Steinbach
0e8e4a08f3
linux: 4.8.14 -> 4.8.15 2016-12-16 08:16:45 -05:00
Tim Steinbach
cb9ff3f7f9
linux: 4.4.38 -> 4.4.39 2016-12-16 08:16:22 -05:00
Joachim Fasting
f0e77cd07d
grsecurity: 4.8.14-201612110933 -> 4.8.15-201612151923 2016-12-16 12:46:44 +01:00
Franz Pletz
a4586f87dc
wireguard: 20161129 -> 20161209 2016-12-16 12:16:39 +01:00
Will Dietz
be24f1d364 musl: 1.1.11 -> 1.1.15, add security patch. (#21023) 2016-12-16 11:32:28 +01:00
Daiderd Jordan
a01a5ed925
darwin.libunwind: fix source 
Fixes #20977

since this was the same sha as the linux package nix just used that instead.
 2016-12-15 21:11:04 +01:00
Jörg Thalheim
4714ca8b56 kexec-tools: 2.0.12 -> 2.0.13 (#21158) 
also fix kexec by removing faulty hardeningFlags
 2016-12-15 20:48:03 +01:00
Daiderd Jordan
87b3918d0b Merge pull request #21133 from matthewbauer/shell_cmds 
shell_cmds: init at 198
 2016-12-15 17:53:09 +01:00
Daniel Peebles
0f17a2ba1e Merge pull request #21167 from matthewbauer/remove-coreosmakefiles 
darwin.CoreOSMakefiles: remove
 2016-12-15 09:27:22 -05:00
Matthew Bauer
ac4f27666e
darwin.CoreOSMakefiles: remove 
This wasn't being used and it was causing an error when evaluating:

error: attribute ‘CoreOSMakefiles’ missing, at /Users/mbauer/Projects/nixpkgs2/pkgs/os-specific/darwin/apple-source-releases/default.nix:140:71
 2016-12-14 23:45:19 -06:00
Matthew Bauer
83c7660279
shell_cmds: init at 187 
fixes #11707
 2016-12-14 21:18:09 -06:00
Daiderd Jordan
14bf940610
Revert "darwin.libunwind: fix install phase" 
This reverts commit 76125722f0.
 2016-12-15 00:37:37 +01:00
Daniel Peebles
e6d28d6643 Merge pull request #21003 from LnL7/darwin-libunwind 
darwin.libunwind: fix install phase
 2016-12-14 18:03:24 -05:00
Graham Christensen
01d022e16b Merge pull request #21118 from grahamc/fix-rsa-build-failure 
linux_{4_8,grsec_nixos}: patch to fix build failure
 2016-12-13 09:15:50 -05:00
Joachim Fasting
d918c80e13
grsecurity: disable verbose initify 
Not as useful/informative as I had hoped.
 2016-12-13 15:12:34 +01:00
Graham Christensen
7a813d3f6d
linux_{4_8,grsec_nixos}: patch to fix build failure 
crypto/rsa_helper.c:18:28: fatal error: rsapubkey-asn1.h: No such file or directory
 2016-12-13 07:25:46 -05:00
Jörg Thalheim
7c8d4cd9a9
wireguard: 0.0.20161116.1 -> 0.0.20161129 2016-12-12 14:41:43 +01:00
Shea Levy
f6daae391f linux: add 4.9 2016-12-11 19:33:05 -05:00
Joachim Fasting
601058e0e2
grsecurity: 4.8.13-201612082118 -> 4.8.14-201612110933 2016-12-11 19:09:16 +01:00
Tim Steinbach
f576c490e3
linux: 4.4.37 -> 4.4.38 2016-12-10 15:18:52 -05:00
Tim Steinbach
b69822c505
linux: 4.8.13 -> 4.8.14 2016-12-10 15:15:44 -05:00
Tuomas Tynkkynen
bdab6fe5a1 kernel: Use built-in dtbs_install target instead of rolling our own 
In particular, on aarch64 all the .dtb files will be in subdirectories
and *.dtb won't match anything.
 2016-12-10 20:24:08 +02:00
Franz Pletz
9074d9859e
linux: add patch to fix CVE-2016-8655 
See https://lwn.net/Articles/708319/ for more information.
 2016-12-10 17:08:42 +01:00
Frederik Rietdijk
033525c6b8 dstat: fix bad interpreter: No such file 2016-12-10 14:21:51 +01:00
Vladimír Čunát
0fa8ead76c
Merge #21029: nghttp2: 1.16.1 -> 1.17.0 2016-12-10 00:52:26 +01:00
Bjørn Forsman
2077385421 kernel: enable CONFIG_DYNAMIC_DEBUG (like Fedora and Ubuntu) 
It was useful in tracking down CIFS + DFS issue, and it's apparently
enabled by default in two major distros.
 2016-12-10 00:01:21 +02:00
Bjørn Forsman
d429520b13 kernel: add CONFIG_CIFS_* like Fedora, Ubuntu 
The plan is to fix mounting DFS shares on NixOS (for which some of these
options are needed), but I figured it might be a good idea to enable all
CONFIG_CIFS_* like Fedora 24 and Ubuntu 16.04 while at it. Ubuntu even
has CONFIG_CIFS_SMB311, but as Fedora do not, I left it out.

Mounting DFS shares still doesn't work; need to configure cifs.upcall
and /etc/request-key.conf. Until then, using GVFS as a workaround.
 2016-12-10 00:01:21 +02:00
Bjørn Forsman
fc6d82cf76 cifs-utils: add 'talloc' to buildInputs, to build cifs.upcall 
Fixes this ./configure symptom:

  configure: WARNING: talloc.h not found, consider installing libtalloc-devel. Disabling cifs.upcall.

and is needed to (eventually) fix CIFS + DFS kernel mount on NixOS.
 2016-12-10 00:01:21 +02:00
Vladimír Čunát
b05b120779
Merge branch 'master' into staging 2016-12-09 19:11:05 +01:00
Joachim Fasting
d1a5dc0b1c
grsecurity: 4.8.12-201612062306 -> 4.8.13-201612082118 2016-12-09 15:31:02 +01:00
Joachim Fasting
9a63779d64
grsecurity: use upstream url as the primary source 2016-12-09 15:31:00 +01:00
Joachim Fasting
ca7cc96ee8
grsecurity: enable PAX_INITIFY 
Uses gcc plugin to detect more instances where memory used during init
can be freed.
 2016-12-09 15:30:40 +01:00
Tim Steinbach
bfffbb5ea6
linux: 4.8.12 -> 4.8.13 2016-12-09 08:27:11 -05:00
Tim Steinbach
e861a5f7af
linux: 4.4.36 -> 4.4.37 2016-12-09 08:26:46 -05:00
Daiderd Jordan
76125722f0
darwin.libunwind: fix install phase 2016-12-09 00:08:58 +01:00
Joachim Fasting
af1202434a
ndiswrapper: mark as broken 
Build fails across all our kernels.  There is a new version 1.60, but
it, too, fails to build.  Until somebody comes along to patch around it,
we might as well mark this as broken.
 2016-12-08 23:12:32 +01:00
Joachim Fasting
5fd4ffe00f
grsecurity: 4.8.12-201612031658 -> 201612062306 2016-12-08 12:22:13 +01:00
Dmytro Rets
e8220d3264
Update broadcom URL for broadcom-sta driver. 2016-12-08 11:50:31 +02:00
Anthony Cowley
1712366bac
apple-sdk: Include system cups libraries 
The SDK includes cups header files, but not the libraries. The
`nixpkgs.cups` definition doesn't build on darwin due to the SDK being
too old. This change symlinks the system cups libraries into the old
SDK.
 2016-12-07 23:14:38 +01:00
Tim Steinbach
c9d1d430ec
linux: 4.9-rc7 -> 4.9-rc8 2016-12-05 19:40:11 -05:00
Joachim Fasting
9578299bbe
grsecurity: 4.8.11-201611271225 -> 4.8.12-201612031658 2016-12-06 01:24:32 +01:00
Joachim Fasting
cc396697a6
grsecurity: enable ability to lock in readonly mounts 2016-12-06 01:24:12 +01:00
Joachim Fasting
0e765c72e5
grsecurity: enable module hardening 2016-12-06 01:23:58 +01:00
Joachim Fasting
071fbcda24
grsecurity: enable optional sysfs restrictions 
Fairly severe, but can be disabled at bootup via
grsec_sysfs_restrict=0. For the NixOS module we ensure that it is
disabled, for systemd compatibility.
 2016-12-06 01:23:36 +01:00
Joachim Fasting
8c1f5afdf3
grsecurity: delay toggling of sysctls until system is up 
We generally trust init, so there's little point in having these enabled
during early bootup; it accomplishes little except fill our logs with
spam.
 2016-12-06 01:22:53 +01:00
Tuomas Tynkkynen
f91458ca38 reattach-to-user-namespace: Set platforms 2016-12-05 02:36:54 +02:00
Tuomas Tynkkynen
9ccc14b1bc linux_rpi: Add some feature flags 
Copied from linux_4_4 (except for the EFI stub thing).

Otherwise the firewall module fails to evaluate:
Failed assertions:
- This kernel does not support rpfilter
 2016-12-04 18:18:06 +02:00
Jörg Thalheim
e00632e200 Merge pull request #20858 from Mic92/lxcfs 
lxcfs: init at 2.0.4
 2016-12-04 11:33:07 +01:00
Tim Steinbach
4f8b74b401 Merge pull request #20866 from NeQuissimus/linux_4_8_12 
linux: 4.8.11 -> 4.8.12
 2016-12-02 18:28:46 -05:00
Tim Steinbach
853b6493c8
linux: 4.8.11 -> 4.8.12 2016-12-02 14:29:00 -05:00
Tim Steinbach
654f5df5dc
linux: 4.4.35 -> 4.4.36 2016-12-02 14:28:26 -05:00
Jörg Thalheim
af609b0254
lxcfs: init at 2.0.4 2016-12-02 13:52:03 +01:00
Tim Steinbach
5afc6b506c
linux: 4.1.35 -> 4.1.36 2016-12-01 20:34:02 -05:00
Joachim F
85ecde87c8 Merge pull request #20804 from danbst/fix-shadow 
shadow: fix collision with coreutils (man groups.1.gz)
 2016-12-01 23:08:30 +01:00
danbst
ac51528df8 shadow: fix collision with coreutils (man groups.1.gz) 
The `groups.1.gz` collides with one from coreutils. The code to fix this
was already present in expression, but wrongly assumes that share/man/man1
directory will be copied to `man` output after `installPhase`.

It turned out, that man directory is set at configure step, so we should
remove file from `man` output.
 2016-11-30 01:44:28 +02:00
Tim Steinbach
18a3225dac
linux: 3.12.67 -> 3.12.68 2016-11-29 17:40:17 -05:00
Tuomas Tynkkynen
8a4d6516ee Merge remote-tracking branch 'upstream/staging' into master 2016-11-30 00:34:23 +02:00
Franz Pletz
e43f2fc868
Revert "lxc: 2.0.4 -> 2.0.6" 
This reverts commit 5d804566df.

This was an error on my part. I had the commit sitting on my local master
and pulled upstream to rebase my commit before pushing. I didn't notice
there was a commit bumping lxc and the auto-merge on the rebase.
 2016-11-29 15:42:37 +01:00
Matt McHenry
f0bdca82c0 linuxPackages.ati_drivers_x11: patch for kernel 4.7+ (#19810) 2016-11-28 19:56:50 +01:00
Franz Pletz
5d804566df
lxc: 2.0.4 -> 2.0.6 
Fixes CVE-2016-8649.

See https://lists.linuxcontainers.org/pipermail/lxc-users/2016-November/012597.html.
 2016-11-28 19:04:42 +01:00
Peter Simons
21a5532c57 Merge pull request #20766 from avnik/update/lxc 
lxc: 2.0.4 -> 2.0.6 (security)
 2016-11-28 15:13:10 +01:00
Alexander V. Nikolaev
a8eeef62e6 lxc: 2.0.4 -> 2.0.6 (security) 
https://security-tracker.debian.org/tracker/CVE-2016-8649
 2016-11-28 15:17:06 +02:00
Alexander V. Nikolaev
121da5e938 lxc: fix sandbox builds 
Package attempt to write /etc/bash_completion.d, I directed it to
"${out}/etc/bash_completion.d" as it was suggested.
 2016-11-28 15:17:05 +02:00
Graham Christensen
04edf297cc Merge pull request #20676 from matthewbauer/file_cmds 
file_cmds: init at 264.1.1
 2016-11-28 06:48:18 -05:00
Joachim Fasting
5da1394a58
Revert "gradm: fix using gradm while the RBAC system is active" 
This reverts commit fdbf7dc8b3.

Unfortunately, while gradm now works when the RBAC system is enabled,
gradm still fails when full system learning is enabled, so I probably
need to try again later.
 2016-11-28 11:41:12 +01:00
Joachim Fasting
b90ed0cc80
grsecurity: 4.8.10-201611232213 -> 4.8.11-201611271225 2016-11-28 11:41:10 +01:00
Joachim Fasting
4c7323545b
Revert "grsecurity: work around for #20490" 
This reverts commit e38b74ba89.

I failed to notice f19c961b4e461da045f2e72e73701059e5117be0; better
use that fix instead.
 2016-11-28 11:40:55 +01:00
Matthew Bauer
bd57e32312
file_cmds: init at 264.1.1 2016-11-27 21:58:07 -06:00
Tim Steinbach
eecf76eaa2
linux: 4.9-rc6 -> 4.9-rc7 2016-11-27 19:48:24 -05:00
Tuomas Tynkkynen
86ea3126bc linux_rpi: 1.20160620 -> 1.20161020 2016-11-28 00:24:00 +02:00
Tuomas Tynkkynen
25d6bfa258 raspberrypifw: 1.20160620 -> 1.20161020 2016-11-28 00:23:40 +02:00
Tim Steinbach
b47307bd74
linux: 4.8.10 -> 4.8.11 2016-11-26 16:29:23 -05:00
Tim Steinbach
cc77360bed
linux: 4.4.34 -> 4.4.35 2016-11-26 16:28:58 -05:00
Jörg Thalheim
01172c2ccf Merge pull request #20591 from NeQuissimus/linux_4_9_rc6 
linux: 4.9-rc5 -> 4.9-rc6
 2016-11-26 16:00:16 +01:00
Vladimír Čunát
925b335607
Merge branch 'master' into staging 2016-11-26 11:27:09 +01:00
Frederik Rietdijk
231cd277df nvidia-x11: 367.57 -> 375.20 2016-11-26 09:31:10 +01:00
Joachim Fasting
fdbf7dc8b3
gradm: fix using gradm while the RBAC system is active 
The built-in ACL prevents the gradm binary from loading dynamic
libraries from the Nix store.  Thus, once the RBAC system is activated,
the gradm binary cannot be used.

Fix by patching in rules to allow references to the Nix store where
appropriate.
 2016-11-26 02:59:35 +01:00
Frederik Rietdijk
6a8c708d6d cryptsetup: use python2 2016-11-24 22:28:04 +01:00
Frederik Rietdijk
d8b0096704 dstat: use python2 2016-11-24 22:28:03 +01:00
Joachim Fasting
f9d787c67b
grsecurity: 4.8.10-201611210813 -> 201611232213 2016-11-24 12:08:12 +01:00
Nikolay Amiantov
be95ceaff2 treewide: quote URLs in my packages 2016-11-24 01:17:52 +03:00
Franz Pletz
7974d7493a
linux: compress kernel image with xz 2016-11-23 02:24:13 +01:00
Tim Steinbach
e4a1b76457
linux: 4.8.9 -> 4.8.10 2016-11-21 18:07:17 -05:00
Tim Steinbach
d62069aca4
linux: 4.4.33 -> 4.4.34 2016-11-21 18:06:57 -05:00
Joachim Fasting
96194467e6
grsecurity: 4.8.8-201611150756 -> 4.8.10-201611210813 2016-11-21 23:15:14 +01:00
Tim Steinbach
f6bbc6c477
linux: 4.9-rc5 -> 4.9-rc6 2016-11-20 17:23:32 -05:00
Joachim Fasting
6d428242a9
linuxPackages.spl: now builds against grsecurity kernel 2016-11-20 23:01:34 +01:00
Joachim Fasting
0df3553a38
paxtest: 0.9.14 -> 0.9.15 2016-11-20 23:01:31 +01:00
Joachim Fasting
32c71c06d2
pax-utils: 1.1.6 -> 1.1.7 2016-11-20 23:01:28 +01:00
Pascal Wittmann
f7e0bc2ae7
Make all meta.maintainers attributes lists 2016-11-20 18:06:03 +01:00
Franz Pletz
1fec301ac5
zfs: remove zfs-tests 
Removes runtime dependency on gcc and reduces closure size by more than 110MB.
 2016-11-20 04:49:42 +01:00