Commit graph

693 commits

Author SHA1 Message Date
obadz
24a9183f90 Merge branch 'hardened-stdenv' into staging
Closes #12895

Amazing work by @globin & @fpletz getting hardened compiler flags by
enabled default on the whole package set
2016-08-22 01:19:35 +01:00
obadz
15b07f4b8e efibootmgr: 0.12 -> 13
Fixes glib 2.24 build issues
2016-08-21 12:02:36 +01:00
Vladimír Čunát
cdb44a4ada Merge branch 'master' into staging 2016-08-20 18:01:36 +02:00
obadz
e82ffa5612 efivar: 0.23 -> 27
Fixes glib 2.24 build issues
Patch no longer required
2016-08-20 15:05:38 +01:00
Dan Peebles
b7b2019e62 proot: fix static build 2016-08-19 21:41:21 +00:00
Franz Pletz
bd4490e277 Merge branch 'master' into hardened-stdenv 2016-08-13 16:59:55 +02:00
Luca Bruno
909b036b47 Merge pull request #16610 from leenaars/datefudge
Datefudge
2016-08-12 22:10:59 +01:00
zimbatm
c2302f2f45 Merge pull request #17677 from kamilchm/no-go-libs-json
buildGoPackage: remove Go deps file `libs.json`
2016-08-12 18:13:29 +01:00
Robin Gloster
b7787d932e Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-08-12 09:46:53 +00:00
Kamil Chmielewski
da3ddd48e4 buildGoPackage: remove Go deps file libs.json
After #16017 there were a lot
of comments saying that `nix` would be better than `JSON`
for Go packages dependency sets.
As said in https://github.com/NixOS/nixpkgs/pull/16017#issuecomment-229624046

    > Because of the content-addressable store, if two programs have the
    > same dependency it will already result in the same derivation in
    > the
    > store. Git also has compression in the pack files so it won't make
    > much difference to duplicate the dependencies on disk. And finally
    > most users will just use the binary builds so it won't make any
    > differences to them.

This PR removes `libs.json` file and puts all package dependencies in
theirs `deps.json`.
2016-08-11 23:07:09 +02:00
Michael Raskin
beaee69795 freeipmi: 1.5.2 -> 1.5.3 2016-08-11 17:57:35 +02:00
Michiel Leenaars
b250898855 datefudge: init at 1.2.1 2016-08-09 14:58:16 +02:00
Robert Helgesson
28f17215b9
wsmancli: fix compilation
Without this the package build fails with a linking error. Fixes #14872.
2016-08-07 19:28:51 +02:00
Franz Pletz
a3f6ca6d17 collectd: 5.5.1 -> 5.5.2 (security)
Fixes CVE-2016-6254.
2016-08-05 04:07:31 +02:00
Robin Gloster
1b979d8384 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-08-03 13:34:44 +00:00
Tuomas Tynkkynen
21f17d69f6 treewide: Add lots of meta.platforms
Build-tested on x86_64 Linux & Mac.
2016-08-02 21:42:43 +03:00
Robin Gloster
1be4907ca2 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-08-02 13:46:36 +00:00
Matthew Justin Bauer
2ae5dbbf3b acct: only build on linux 2016-08-01 15:12:31 -05:00
Robin Gloster
f222d98746 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-07-25 12:47:13 +00:00
mimadrid
0a9eba2aa4
htop: 2.0.1 -> 2.0.2 2016-07-23 00:03:34 +02:00
Robin Gloster
1f04b4a566 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-07-21 00:56:43 +00:00
Tuomas Tynkkynen
584b667efc ddrescue: lzip is a nativeBuildInput 2016-07-20 02:38:10 +03:00
Robin Gloster
5185bc1773 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-07-15 14:41:01 +00:00
Kranium Gikos Mendoza
121a8c0646 stress-ng: 0.06.01 -> 0.06.11 2016-07-15 00:06:54 +08:00
joachifm
03a7fa9104 Merge pull request #16840 from womfoo/bump/leatherman-0.7.5-facter-3.1.8
Bump leatherman: 0.7.0 -> 0.7.5 and sole dependency facter 3.1.6 -> 3.1.8
2016-07-12 16:20:51 +02:00
Kranium Gikos Mendoza
356b3ae546 facter: 3.1.6 -> 3.1.8 2016-07-10 23:37:05 +08:00
Tobias Geerinckx-Rice
0385abbc70
di: 4.37 -> 4.42; trim meta.description 2016-07-05 09:29:42 +02:00
Joachim Fasting
966c75ef0c
evemu: add meta.platforms 2016-07-05 00:54:12 +02:00
Damien Cassou
0b80e03904 evemu: 2.0.0 -> 2.4.0 2016-07-04 15:19:03 +02:00
Christian Kauhaus
0c0f068f35
cron: fix crontab(5) and cron job PATH
Switch off HAVE_SAVED_UIDS since it activates a code path for temporary
privilege dropping which does not work on NixOS.

Vixie-cron's sources ship with two implementations. Unfortunately, the
one activated by HAVE_SAVED_UIDS (using setuid()) does not work on
NixOS. Saved UIDs work only if the program which is using them has the
setuid bit set on its own executable, not if called from a setuid
wrapper (as we do it in NixOS). The other implementation (using
setreuid()) works without problems.

Quote from
<http://stackoverflow.com/questions/8499296/realuid-saved-uid-effective-uid-whats-going-on>:

    If you're euid is root and you change the uid, the privileges gets
    dropped permanently.If effective user id is not root then saved user
    id is never touched and you can regain the root privilege back
    anytime you want in your program.

Also extend the default PATH with NixOS-specific bin directories as
vixie-cron's default is not really usable on NixOS.

Re #16518

Closes #16522
2016-07-02 00:09:07 +02:00
Arseniy Seroka
188ecd633e Merge pull request #16489 from mimadrid/update/fio-2.12
fio: 2.9 -> 2.12
2016-06-25 13:37:31 +03:00
mimadrid
49902897f2
fio: 2.9 -> 2.12 2016-06-25 11:06:16 +02:00
Kyle McKean
544d9a7620 collectd: add snmp support 2016-06-23 16:54:28 +02:00
Bjørn Forsman
bd01fad0ed Captialize meta.description of all packages
In line with the Nixpkgs manual.

A mechanical change, done with this command:

  find pkgs -name "*.nix" | \
      while read f; do \
          sed -e 's/description\s*=\s*"\([a-z]\)/description = "\u\1/' -i "$f"; \
      done

I manually skipped some:

* Descriptions starting with an abbreviation, a user name or package name
* Frequently generated expressions (haskell-packages.nix)
2016-06-20 13:55:52 +02:00
Benjamin Staffin
68689f4d8e hiera-eyaml: init at 2.1.0 2016-06-15 20:19:06 -04:00
Joachim Fasting
70c5ab532f Merge pull request #16110 from womfoo/augeas
augeas: 1.2.0 -> 1.5.0
2016-06-13 16:46:08 +02:00
Robin Gloster
8031cba2ab Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-06-10 09:27:04 +00:00
Kranium Gikos Mendoza
cc05622761 augeas: 1.2.0 -> 1.5.0 2016-06-10 10:23:44 +08:00
rushmorem
6e709b180e storebrowse: mark broken
`storebrowse` depends on https://code.google.com/archive/p/gosqlite/
which leads to gosqlite.googlecode.com/hg/sqlite which now 404s.
2016-06-09 22:09:07 +02:00
Kamil Chmielewski
8cd1d4cda5 buildGoPackage: use Go 1.6 by default 2016-06-09 13:08:10 +02:00
Kamil Chmielewski
734d152977 buildGo16Packages: fetchgit -> fetchFromGitHub 2016-06-09 13:08:10 +02:00
Kamil Chmielewski
bbc37e0eb7 Moving from fetchgit generated by go2nix to fetchFromGitHub where rev is
a tag
2016-06-09 13:08:10 +02:00
Kamil Chmielewski
7eb671ebcd no more goPackages 2016-06-09 13:08:00 +02:00
Kamil Chmielewski
9e273d5b29 consul--template: extracted from goPackages 2016-06-09 11:22:02 +02:00
Kamil Chmielewski
abcec97b1e confd: extracted from goPackages 2016-06-09 11:22:02 +02:00
Tuomas Tynkkynen
bac26e08db Fix lots of fetchgit hashes (fallout from #15469) 2016-06-03 17:17:08 +03:00
michael bishop
85b87796ae
runit: fix closure size 2016-06-03 06:46:54 -03:00
Robin Gloster
2d382f3d98 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-05-30 19:39:34 +00:00
Frederik Rietdijk
373455e237 Merge pull request #15613 from womfoo/facter
facter: 3.1.5 -> 3.1.6 (add ruby support) and dependency leatherman: 0.4.2 -> 0.7.0
2016-05-28 15:29:31 +02:00
Vladimír Čunát
81039713fa Merge branch 'master' into staging
... to get the systemd update (rebuilding ~7k jobs).
2016-05-26 16:50:22 +02:00