Commit Graph

109083 Commits

Author SHA1 Message Date
Jörg Thalheim
34d86e9d84 Merge pull request #26497 from LnL7/fix-lib-tests
lib-tests: fix test for isStorePath
2017-06-10 10:36:23 +01:00
Jörg Thalheim
377e0d3bd3 Merge pull request #26418 from lheckemann/mesa-valgrind
mesa: add valgrind support
2017-06-10 10:32:42 +01:00
Jörg Thalheim
800d525ac4 Merge pull request #26349 from midchildan/tilix
tilix: init at 1.5.8
2017-06-10 10:31:08 +01:00
Jörg Thalheim
661ec1950d Merge pull request #26414 from volth/issue-25511
xdg_utils: fix #25511 (broken sed magic)
2017-06-10 10:30:45 +01:00
Tim Jäger
0c54a292fb hplip: introduce nettools dependency (#26439)
* hplip: introduce nettools dependency

Some HP printers (notably a HP MFP M477fnw) need to run `hostname` as part of
the printing process. This executable is provided by the "nettools" package.

* hplip: prepend nettools to PATH
2017-06-10 10:04:33 +01:00
Jörg Thalheim
b731e65081 arphic: init at 0.2.20080216.2
arphic: init at 0.2.20080216.2
2017-06-10 09:32:34 +01:00
Jörg Thalheim
6e604ec68c
arphic: style fixes 2017-06-10 09:31:20 +01:00
Jörg Thalheim
c1d05287d6 Merge pull request #26451 from oxij/pkg/up/exiftool
perl: Image-ExifTool: 9.27 -> 10.48, add alias to all-packages.nix
2017-06-10 09:28:08 +01:00
Jörg Thalheim
308acf3199 Merge pull request #26478 from Moredread/profanity_tray
profanity: enable tray icon support
2017-06-10 09:25:53 +01:00
Jörg Thalheim
9e4eb9b696 Merge pull request #26498 from winniequinn/vscode-1.13.0
vscode: 1.12.2 -> 1.13.0
2017-06-10 09:22:26 +01:00
Karn Kallio
dc07372692
kdenlive : patch CMakeLists.txt to find Concurrent module. 2017-06-10 10:14:57 +02:00
Jörg Thalheim
ea7aa3156c Merge pull request #26496 from romildo/fix.lxappearance
lxappearance: add variant for Gtk+-3
2017-06-10 09:11:51 +01:00
Vladimír Čunát
cb9f953c92
Merge branch 'master' into staging
More larger rebuilds.
2017-06-10 10:07:33 +02:00
Vincent Laporte
2d64e1b7d0 lbreakout2: fix build on Darwin 2017-06-10 07:43:45 +00:00
Joachim Schiele
507c207958 spamassassin: major service fixes -> added more perl packages to spamassassin and abstracted service to not use /etc/spamassassin, also running sa-update as spamd user periodically (#26470)
thanks @grahamc for IRC comments
2017-06-10 09:35:35 +02:00
Winnie Quinn
6736ec318a vscode: 1.12.2 -> 1.13.0 2017-06-09 22:17:23 -04:00
Michael Weiss
d17bcfc5f0 androidenv: Manually update missing packages
Improvement: Use nix-shell for fetch.sh

androidsdk{,_extras}:
- Update to 7.1.1

google_apis_25 is missing after fetch.sh due to an error in addon.xml
(upsteam bug).

Addons:
- Add google_apis_25
- Update google_play_services (v8_rc41 -> v11_rc16)
2017-06-10 03:57:30 +02:00
Changlin Li
8237294f64 Add Unicode Arphic CJK fonts
These are a couple of CJK fonts that are on most other Linux distributions
that aren't on NixOS
2017-06-09 20:52:18 -04:00
Michael Weiss
fb26e5c8b6 androidenv: Update all packages using fetch.sh
Platforms:
- Update platform_25 (r02 -> r03)
- Add platform_26

Sources:
- Add source_25
2017-06-10 02:29:59 +02:00
Masayuki Takeda
c2c775d047 rictydiminished-with-firacode: init at 0.0.1 (#26485) 2017-06-10 00:29:36 +01:00
Joachim F
1a0b1d94ed Merge pull request #26454 from DeltaEvo/teamspeak
Teamspeak (client: 3.0.19.4 -> 3.1.4, server: 3.0.13.5 -> 3.0.13.6)
2017-06-09 22:59:01 +01:00
Joachim F
a109f52c4e Merge pull request #26445 from lheckemann/osg340
openscenegraph: 3.2.3 -> 3.4.0
2017-06-09 22:58:32 +01:00
Jörg Thalheim
a54eea6827 Merge pull request #26495 from makefu/pkgs/metasploit/update
metasploit: 4.14.17 -> 4.14.25
2017-06-09 22:39:07 +01:00
Daiderd Jordan
cfe2b12fe4
lib-tests: fix test for isStorePath 2017-06-09 23:38:08 +02:00
Jörg Thalheim
95f733e0aa
bundix: 2.1.0 -> 2.2.0 2017-06-09 22:37:36 +01:00
Jörg Thalheim
0cab4cac12
metasploit: add missing update deps to shell.nix 2017-06-09 22:20:28 +01:00
Joachim F
506f990372 Merge pull request #26461 from romildo/upd.flat-plat
flat-plat: 20170515 -> 20170605
2017-06-09 22:19:38 +01:00
makefu
c1135333d1
metasploit: 4.14.17 -> 4.14.25 2017-06-09 23:09:22 +02:00
romildo
11623c5fca lxappearance: add variant for Gtk+-3
lxappearance supports both Gtk+-2 and Gtk+-3. The current `lxappearance'
package continues to be for Gtk+-2. Add `lxappearance-gtk3' for Gtk+-3.

A patch is needed in order to look for themes in system data dirs with
Gtk+-3.
2017-06-09 18:05:09 -03:00
Joachim F
cabdbcbcb8 Merge pull request #26483 from ciil/lbreakout2-pkg
lbreakout2: init at 2.6.5
2017-06-09 21:54:24 +01:00
Jörg Thalheim
c0e14c084d
metasploit: add missing update deps to shell.nix 2017-06-09 21:45:24 +01:00
Vladimír Čunát
d12497a23b
pycairo: fix #26475 - another dead patch download 2017-06-09 21:57:35 +02:00
Edward Tjörnhammar
a66a9ae8e8
kodi-retroarch-advanced-launchers: ensure sound has been released 2017-06-09 20:41:02 +02:00
Daiderd Jordan
57091a19e2 Merge pull request #26043 from orivej/sasl
cyrus_sasl: fix version
2017-06-09 20:30:35 +02:00
Daiderd Jordan
a6dc11e81e
tmux: fix hash, looks like the upstream tag was moved
--- a/configure.ac       1970-01-01 01:00:01.000000000 +0100
+++ b/configure.ac       1970-01-01 01:00:01.000000000 +0100
@@ -1,6 +1,6 @@
 # configure.ac

-AC_INIT(tmux, 2.5-rc)
+AC_INIT(tmux, 2.5)
 AC_PREREQ([2.60])

 AC_CONFIG_AUX_DIR(etc)
2017-06-09 19:54:39 +02:00
Bjørn Forsman
6a55fda61e nixos/acme: improve documentation
* Use literalExample for better readability
* Clarify a bit wrt. 'webroot' and 'allowKeysForGroup'
2017-06-09 19:35:17 +02:00
Bjørn Forsman
7a0e958b97 nixos/acme: support "full.pem" (for lighttpd)
* Create "full.pem" from selfsigned certificate
* Tell simp_le to create "full.pem"
* Inject service dependency between lighttpd and the generation of certificates

Side note: According to the internet these servers also use the
"full.pem" format: pound, ejabberd, pure-ftpd.
2017-06-09 19:35:17 +02:00
Simon Lackerbauer
7d87d234d3 lbreakout2: init at 2.6.5 2017-06-09 19:23:40 +02:00
David Johnson
00892b7e4e generic-builder.nix: Update doHaddock
By default, `ghcjs` haddocks are precluded from being built. I see no reason to disallow building haddocks on projects built with `ghc` and `ghcjs` (someone can correct me here). `HaLVM` currently does not support `haddock` since it's a Stage 1 `GHC`. https://github.com/GaloisInc/HaLVM/blob/master/src/misc/build.mk.in#L20

Currently, building `haddocks` for `ghcjs` projects requires altering the derivation, which doesn't allow users to take advantage of the cache. This change will relieve that.
2017-06-09 10:04:34 -07:00
Michael Weiss
b615c2e992 android-studio: 2.3.2.0 -> 2.3.3.0 2017-06-09 18:46:54 +02:00
ikervagyok
55ca2cf495 minecraft-server: 1.11.2 -> 1.12 (#26458) 2017-06-09 17:07:31 +01:00
Joachim F
66e82eaea8 Merge pull request #26488 from romildo/upd.jwm
jwm: 1582 -> 1594
2017-06-09 15:33:54 +01:00
Simon Lackerbauer
762aa2b819 lbreakout2: init at 2.6.5 2017-06-09 16:31:36 +02:00
Simon Lackerbauer
ff621bc0ee Merge branch 'lbreakout2' of github.com:ciil/nixpkgs into lbreakout2 2017-06-09 16:24:56 +02:00
Graham Christensen
7d8218a351 Merge pull request #26489 from michalpalka/xen-security
xen: patch for XSAs: 206, 211, 212, 213, 214 and 215
2017-06-09 09:31:42 -04:00
Vladimír Čunát
97f3009bf8
pycairo: fix #26475 - a dead patch download 2017-06-09 15:21:25 +02:00
Michał Pałka
dd3dcceb23 xen: patch for XSAs: 206, 211, 212, 213, 214 and 215
XSA-206 Issue Description:

> xenstored supports transactions, such that if writes which would
> invalidate assumptions of a transaction occur, the entire transaction
> fails.  Typical response on a failed transaction is to simply retry
> the transaction until it succeeds.
>
> Unprivileged domains may issue writes to xenstore which conflict with
> transactions either of the toolstack or of backends such as the driver
> domain. Depending on the exact timing, repeated writes may cause
> transactions made by these entities to fail indefinitely.

More: https://xenbits.xen.org/xsa/advisory-206.html

XSA-211 Issue Description:

> When a graphics update command gets passed to the VGA emulator, there
> are 3 possible modes that can be used to update the display:
>
> * blank - Clears the display
> * text - Treats the display as showing text
> * graph - Treats the display as showing graphics
>
> After the display geometry gets changed (i.e., after the CIRRUS VGA
> emulation has resized the display), the VGA emulator will resize the
> console during the next update command. However, when a blank mode is
> also selected during an update, this resize doesn't happen. The resize
> will be properly handled during the next time a non-blank mode is
> selected during an update.
>
> However, other console components - such as the VNC emulation - will
> operate as though this resize had happened. When the display is
> resized to be larger than before, this can result in a heap overflow
> as console components will expect the display buffer to be larger than
> it is currently allocated.

More: https://xenbits.xen.org/xsa/advisory-211.html

XSA-212 Issue Description:

> The XSA-29 fix introduced an insufficient check on XENMEM_exchange
> input, allowing the caller to drive hypervisor memory accesses outside
> of the guest provided input/output arrays.

More: https://xenbits.xen.org/xsa/advisory-212.html

XSA-213 Issue Description:

> 64-bit PV guests typically use separate (root) page tables for their
> kernel and user modes.  Hypercalls are accessible to guest kernel
> context only, which certain hypercall handlers make assumptions on.
> The IRET hypercall (replacing the identically name CPU instruction)
> is used by guest kernels to transfer control from kernel mode to user
> mode.  If such an IRET hypercall is placed in the middle of a multicall
> batch, subsequent operations invoked by the same multicall batch may
> wrongly assume the guest to still be in kernel mode.  If one or more of
> these subsequent operations involve operations on page tables, they may
> be using the wrong root page table, confusing internal accounting.  As
> a result the guest may gain writable access to some of its page tables.

More: https://xenbits.xen.org/xsa/advisory-213.html

XSA-214 Issue Description:

> The GNTTABOP_transfer operation allows one guest to transfer a page to
> another guest.  The internal processing of this, however, does not
> include zapping the previous type of the page being transferred.  This
> makes it possible for a PV guest to transfer a page previously used as
> part of a segment descriptor table to another guest while retaining the
> "contains segment descriptors" property.
>
> If the destination guest is a PV one of different bitness, it may gain
> access to segment descriptors it is not normally allowed to have, like
> 64-bit code segments in a 32-bit PV guest.
>
> If the destination guest is a HVM one, that guest may freely alter the
> page contents and then hand the page back to the same or another PV
> guest.
>
> In either case, if the destination PV guest then inserts that page into
> one of its own descriptor tables, the page still having the designated
> type results in validation of its contents being skipped.

More: https://xenbits.xen.org/xsa/advisory-214.html

XSA-215 Issue Description:

> Under certain special conditions Xen reports an exception resulting
> from returning to guest mode not via ordinary exception entry points,
> but via a so call failsafe callback.  This callback, unlike exception
> handlers, takes 4 extra arguments on the stack (the saved data
> selectors DS, ES, FS, and GS).  Prior to placing exception or failsafe
> callback frames on the guest kernel stack, Xen checks the linear
> address range to not overlap with hypervisor space.  The range spanned
> by that check was mistakenly not covering these extra 4 slots.

More: https://xenbits.xen.org/xsa/advisory-215.html
2017-06-09 13:09:01 +00:00
romildo
44681c53d6 jwm: 1582 -> 1594 2017-06-09 09:30:20 -03:00
Jörg Thalheim
14eeae9d4e Merge pull request #26474 from Mic92/cc-wrapper
cc-wrapper: externalize default_cxx_stdlib_compile
2017-06-09 13:27:53 +01:00
Jörg Thalheim
fdf43ddf4a Merge pull request #26479 from jgertm/jgertm/buck
buck: build buckd as well
2017-06-09 13:26:40 +01:00