Commit Graph

6326 Commits

Author SHA1 Message Date
Franz Pletz
9d14ea4295
utillinux: 2.29 -> 2.29.2 for CVE-2017-2616
cc 
2017-02-25 09:40:36 +01:00
Peter Hoeg
e4d8cb8dab iio-sensor-proxy: init at 2.2 and nixos module
This PR adds support for ```iio-sensor-proxy``` used by GNOME v3 and
others for reading data from the accelerometer, gps, compass and similar sensors
built into some relatively recent laptops.

Additionally, there is a NixOS module exposed via hardware.sensor.iio
for enabling services, udev rules and dbus services.
2017-02-25 08:46:46 +08:00
Franz Pletz
7eb7126f5a
Revert "lxc: fix build for glibc-2.25"
This reverts commit 76ae7e19a9.
2017-02-24 21:45:29 +01:00
Franz Pletz
76ae7e19a9
lxc: fix build for glibc-2.25 2017-02-24 17:57:41 +01:00
Franz Pletz
f15cebd28c
jool: 3.5.0 -> 3.5.2 2017-02-24 17:57:41 +01:00
Jörg Thalheim
0eefe9bc62 lxc: fix glibc 2.25 incompatibility 2017-02-24 14:00:23 +01:00
Leon Isenberg
5abc164e2d earlyoom: init at 0.11 2017-02-24 08:19:12 +01:00
Graham Christensen
d36b1ccc13
Revert "Revert "linux kernels: patch against DCCP double free (CVE-2017-6074)""
This reverts commit 53a2baabbe.
2017-02-23 19:23:29 -05:00
Graham Christensen
53a2baabbe
Revert "linux kernels: patch against DCCP double free (CVE-2017-6074)"
This reverts commit 1d68edbef4.
2017-02-23 18:47:16 -05:00
Graham Christensen
1d68edbef4
linux kernels: patch against DCCP double free (CVE-2017-6074) 2017-02-23 18:44:43 -05:00
Tim Steinbach
82aae8f631
kernel: 4.4.50 -> 4.4.51 2017-02-23 17:47:51 -05:00
Tim Steinbach
18c2be2862
kernel: 4.9.11 -> 4.9.12 2017-02-23 17:47:18 -05:00
Joachim Fasting
b92501f0d8
grsecurity: 4.9.11-201702181444 -> 201702222257 2017-02-23 19:18:39 +01:00
Jason A. Donenfeld
67b4f726c8 wireguard: 0.0.20170214 -> 0.0.20170223
Simple version bump.
2017-02-23 19:07:42 +01:00
Nikolay Amiantov
fd29b10606 linuxPackages.lttng-modules: 2.8.3 -> 2.9.1 2017-02-23 13:04:23 +03:00
Vladimír Čunát
145d3ea81c
Merge branch 'master' into staging 2017-02-22 17:47:49 +01:00
Vladimír Čunát
7ccd6f25f0
reptyr: fixup build with glibc-2.25 2017-02-22 16:54:40 +01:00
Jörg Thalheim
5b14e91717 Merge pull request from Mic92/iputils
iputils: 20151218 -> 20161105
2017-02-22 00:37:13 +01:00
Vladimír Čunát
c986f4f894
fatrace: fixup build with glibc-2.25 2017-02-21 19:03:36 +01:00
Vladimír Čunát
cbc343e5e7
criu: fixup build with glibc-2.25 2017-02-21 18:21:01 +01:00
Franz Pletz
6fd27c7c38
linuxPackages.sch_cake: init at 2017-01-28 2017-02-21 08:24:35 +01:00
Shea Levy
f454297a7d linux 4.10 2017-02-20 07:32:46 -05:00
Shea Levy
b191ac0d89 Revert "linux 4.10"
Somehow the tarball was actually linux 4.4.10

This reverts commit fea71f84d0.
2017-02-20 07:29:47 -05:00
Shea Levy
fea71f84d0 linux 4.10 2017-02-20 06:47:49 -05:00
Nikolay Amiantov
22750b36fd nvidia: support application profiles
Closes .
2017-02-19 19:46:01 +03:00
Nikolay Amiantov
f6eedf0867 nvidia-x11.settings: add librsvg for gtk3 2017-02-19 19:45:54 +03:00
Michael Raskin
511f82d6e5 fbterm: install terminfo definition
Hopefully helps with 
2017-02-19 17:29:48 +01:00
Tuomas Tynkkynen
9483359887 linuxPackages.tp_smapi: Use common-updater/update-source-version script
This way we have the benefit of the usual Nixpkgs style, and gain a
slight reduction in amount of code in the updater.

Also use callPackage to reduce duplication of the dependencies of the
update script and use makeBinPath to make things neater.
2017-02-19 16:51:17 +02:00
Nikolay Amiantov
362ef377c8 nvidia_x11.settings: link dlopen'ed libraries 2017-02-19 11:53:23 +03:00
Tim Steinbach
7274fc32d2
linux: 4.4.48 -> 4.4.50 2017-02-18 18:40:04 -05:00
Tim Steinbach
2423313581
kernel: 4.9.10 -> 4.9.11 2017-02-18 18:33:36 -05:00
Robin Gloster
9326a89910
lvm: add missing dependency
fixes 
2017-02-18 23:17:14 +01:00
Joachim Fasting
ca016c2626
grsecurity: 4.9.10-201702152052 -> 4.9.11-201702181444 2017-02-18 22:01:16 +01:00
Cray Elliott
5e0b978eff mwprocapture: init at 1.2.3269 () 2017-02-18 15:44:31 +01:00
obadz
db95097674 syscall_limiter: 20160105 -> 20170123 2017-02-18 10:42:59 +00:00
Vladimír Čunát
432dba859e
Merge branch 'staging'
A security update of libxml2 is within.
2017-02-18 08:59:29 +01:00
Joachim Fasting
e8007c0e89
linux_4_9: patch for CVE-2017-5986
Seems fairly low impact[1] but we might as well patch it until a new 4.9
version is released

[1]: https://bugzilla.redhat.com/show_bug.cgi?id=1420276
2017-02-17 19:11:30 +01:00
Joachim Fasting
73577a2b05
linux_4_9: 4.9.9 -> 4.9.10 2017-02-17 19:11:24 +01:00
Robin Gloster
643703366d
pam_ssh_agent_auth: 0.9.5 -> 0.10.3 2017-02-17 00:12:01 +01:00
Robin Gloster
96b4d69136
openisns: 0.95 -> 0.97 2017-02-17 00:11:58 +01:00
Robin Gloster
df58ed2f13
hostapd: 2.5 -> 2.6 2017-02-17 00:11:37 +01:00
Robin Gloster
31ff2ac057
systemd: add patch to fix docker
843d5baf6a

"don't use the unified hierarchy for the systemd cgroup yet"

fixes 
2017-02-16 23:56:27 +01:00
Joachim Fasting
bc2f53fd29
grsecurity: 4.9.8-201702071801 -> 4.9.10-201702152052 2017-02-16 14:51:25 +01:00
Jörg Thalheim
a674dea675
iputils: 20151218 -> 20161105
most notable change is the removal of tracepath6 and ping6
2017-02-15 11:26:17 +01:00
Joachim Fasting
9d8a0f8dd8
pax-utils: 1.1.7 -> 1.2.2
Fixes at least a few out-of-bounds reads[1][2]

[1]: http://seclists.org/oss-sec/2017/q1/256
[2]: http://seclists.org/oss-sec/2017/q1/308
2017-02-15 05:37:50 +01:00
Eelco Dolstra
314dd9215b Merge pull request from awakenetworks/parnell/setcap-wrappers
Adding setcap-wrapper functionality to Nix
2017-02-14 16:25:06 +01:00
Graham Christensen
cc442cbdba Merge pull request from zx2c4/patch-4
wireguard: 0.0.20170213 -> 0.0.20170214
2017-02-14 08:20:41 -05:00
Graham Christensen
1a9707de24
wireguard: update description to describe its current state 2017-02-14 08:20:19 -05:00
Jason A. Donenfeld
36d50978b2 wireguard: 0.0.20170213 -> 0.0.20170214
This has a quick fix for old bash.
2017-02-14 12:08:58 +01:00
Tim Steinbach
0ec9e695c8
linux: 3.10.104 -> 3.10.105 2017-02-13 18:47:01 -05:00
Parnell Springmeyer
9e36a58649
Merging against upstream master 2017-02-13 17:16:28 -06:00
Jason A. Donenfeld
2ad8face66 wireguard: 0.0.20170115 -> 0.0.20170213 () 2017-02-13 22:20:49 +01:00
Eelco Dolstra
c71a893334
Revert "Use looser 9pfs caching in VM tests/builds"
This reverts commit bbd03e236a.
2017-02-13 14:38:19 +01:00
Eelco Dolstra
4af79a7331
Revert "linux: Apply 9p veryloose patch to 4.9"
This reverts commit a82810c7a7.

Fixes .
2017-02-13 12:16:39 +01:00
Jude Taylor
c3e3b6a19a
nvidia-x11: fix parallel building variable name 2017-02-11 14:29:37 -08:00
Frederik Rietdijk
bab37c73ac nvidia-x11: undo parallel building
In ffc498c490 -j$NIX_BUILD_JOBS was added.
Somehow this caused my machine to run many many more parallel jobs than
it was supposed to, freezing the system.

If you don't experience this, feel free to revert.
2017-02-11 15:50:22 +01:00
Matt McHenry
166464b5ad patch ati-drivers for kernel 4.9
uses patch from https://github.com/imageguy/fglrx-for-Fedora/blob/master/fglrx_kernel_4.9.diff
2017-02-11 12:57:53 +02:00
Nikolay Amiantov
442b4d65c3 Merge pull request from abbradar/nvidia
Refactor NVidia drivers
2017-02-10 23:53:34 +03:00
Tuomas Tynkkynen
182a369ab9 sssd: Cleanup a bit 2017-02-10 20:12:00 +02:00
Jörg Thalheim
3455bd6f36
android-udev-rules: 20170202 -> 20170208 2017-02-09 22:23:52 +01:00
Franz Pletz
9dec33dc4f
linux: 4.9.8 -> 4.9.9 2017-02-09 16:27:29 +01:00
Franz Pletz
9d8248517e
linux: 4.4.47 -> 4.4.48 2017-02-09 16:27:16 +01:00
Tuomas Tynkkynen
05605b41d8 autofs: Some cleanup
The --with-openldap and --with-sasl flags passed here are actually wrong
as they don't point to the dev outputs of the packages. Anyway, autoconf
recognizes the packages as they are in buildInputs.

getBin is generally not needed - binaries can always be referred as
${foo}/bin/bar regardless of whether the package is multiple-output.

meta.version is unnecessary.
2017-02-09 02:50:48 +02:00
Franz Pletz
dced724c00
linux_3_18: remove due to EOL 2017-02-08 23:50:59 +01:00
Nikolay Amiantov
2fd2fcf54d linuxPackages.nvidia_x11: refactor, build more from source
* Use libglvnd;
* Compile nvidia-settings, nvidia-persistenced from source;
* Generalize builder.
2017-02-08 16:57:46 +03:00
Joachim Fasting
bd46a375df
grsecurity: 4.9.8-201702060653 -> 201702071801 2017-02-08 01:31:18 +01:00
Vladimír Čunát
ce9d30e734
Merge : amdgpu-pro: 16.50 -> 16.60 2017-02-07 20:49:58 +01:00
Kier Davis
83865b2c6c intel-ocl: init at r4.0-59481 2017-02-07 15:20:30 +03:00
aszlig
cf94e18627
linux-testing: 4.10-rc4 -> 4.10-rc7
Tested via building the linux_testing attribute only, not in production.

Verified unpacked tarball with GnuPG:

gpg: Signature made Mon 06 Feb 2017 12:21:50 AM CET
gpg:                using RSA key 79BE3E4300411886
gpg: Good signature from "Linus Torvalds <torvalds@linux-foundation.org>" [unknown]
Primary key fingerprint: ABAF 11C6 5A29 70B1 30AB  E3C4 79BE 3E43 0041 1886

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2017-02-07 10:23:50 +01:00
Joachim Fasting
9611a60708
jfbview: 0.5.2 -> 0.5.3, fixes build
Also convert tabs to spaces
2017-02-07 04:48:33 +01:00
David McFarland
47c166fe05 amdgpu-pro: 16.50 -> 16.60 2017-02-06 23:16:21 -04:00
Joachim Fasting
0d422c5db5
grsecurity: 4.8.17-201701151620 -> 4.9.8-201702060653
The first release in the 4.9 branch.

I've also migrated my update scripts to SHA-512 so that'll
be the hash of choice for grsec packages going forward.
2017-02-06 15:49:34 +01:00
Franz Pletz
01cf43a389
firmwareLinuxNonfree: 2016-07-12 -> 2017-02-06 2017-02-06 15:11:04 +01:00
Jörg Thalheim
2c96395272
android-udev-rules: 20170125 -> 20170202 2017-02-06 13:21:50 +01:00
Nikolay Amiantov
90bc1a8595 Merge pull request from abbradar/bluetooth
Bluetooth improvements
2017-02-05 13:18:48 +03:00
Joachim F
e480521c5b Merge pull request from rnhmjoj/btfs
btfs: 2.12 -> 2.13
2017-02-05 01:28:51 +01:00
Vladimír Čunát
a2c867fd39
Merge branch 'staging' 2017-02-04 21:02:46 +01:00
Vladimír Čunát
73d798549f
protobuf, perf: fix my bad condition on gcc version 2017-02-04 20:58:47 +01:00
rnhmjoj
4ee66dbc7c
btfs: 2.12 -> 2.13 2017-02-04 18:51:44 +01:00
Franz Pletz
05152bd5b3 Merge pull request from Mic92/zfs
zfs: 0.6.5.8 -> 0.6.5.9 (linux 4.9 support)
2017-02-04 16:33:53 +01:00
Tim Steinbach
949f9aff1d
linux: 3.12.69 -> 3.12.70 2017-02-04 09:18:50 -05:00
Tim Steinbach
7f69dc48b9
linux: 4.9.7 -> 4.9.8 2017-02-04 09:09:19 -05:00
Tim Steinbach
17b5ae4fe4
linux: 4.4.46 -> 4.4.47 2017-02-04 09:09:02 -05:00
Jörg Thalheim
efd77e06c3
linuxPackages.zfs: 0.6.5.8 -> 0.6.5.9 2017-02-04 10:33:16 +01:00
Jörg Thalheim
0ca7e01bed
kernelPackages.spl: 0.6.5.8 -> 0.6.5.9 2017-02-04 10:33:11 +01:00
Tim Steinbach
26e5b42106
linux: 4.4.45 -> 4.4.46 2017-02-03 18:36:50 -05:00
Jörg Thalheim
a8e32d68b5 Merge pull request from makefu/exfat-nofuse
exfat-nofuse: init at 2017-01-03
2017-02-03 20:07:26 +01:00
makefu
26a27e4657
exfat-nofuse: init at 2017-01-03 2017-02-03 19:49:27 +01:00
Nikolay Amiantov
ede8adc441 tcp_wrappers: 7.6.q -> 7.6.q-26
I've accidentially taken old Debian patchset. Maybe this also helps with Darwin failures.
2017-02-03 21:13:36 +03:00
Nikolay Amiantov
230c97c944 Merge pull request from abbradar/nfs4
NFS improvements
2017-02-03 20:04:25 +03:00
Vladimír Čunát
2ba076e99c
Merge branch 'master' into staging
>11k more build jobs on master, just for Linux :-/
This way staging will never catch up.
2017-02-03 15:32:08 +01:00
Michael Raskin
d6710e3d66 shadow: 4.2.1 -> 4.4 2017-02-03 13:14:39 +01:00
Michael Raskin
4101f1fd18 iptables: 1.6.0 -> 1.6.1 2017-02-03 13:14:39 +01:00
Vladimír Čunát
e7c968fbf2
linuxPackages*.perf: fix build with default gcc
Broken since 9842a107.
2017-02-03 12:38:18 +01:00
Vladimír Čunát
adab4cd58b
Merge branch 'master' into staging 2017-02-03 11:47:38 +01:00
Pascal Bach
d1738c19bb kernel: 4.9.6 -> 4.9.7 2017-02-02 21:08:24 +01:00
Robin Gloster
a0aacdd199
lxc: 2.0.6 -> 2.0.7 2017-02-02 18:59:07 +01:00
Michael Raskin
2973d35b9a sysdig: 0.13.0 -> 0.14.0 2017-02-02 11:12:16 +01:00
Robin Gloster
8a0d1bcf8b
systemd: add patches to fix i686 booting 2017-02-02 01:12:55 +01:00
Nikolay Amiantov
496476be4e bluez4: reintroduce to nixpkgs
It's still needed by KDE4. It was there, just unreferenced from all-packages.
2017-02-02 00:52:54 +03:00
Daiderd Jordan
957ad8e3a1 Merge pull request from LnL7/khd
khd: 1.1.4 -> 2.0.0
2017-02-01 22:16:47 +01:00
Michael Raskin
a9e55a2a8e firejail: 0.9.44.4 -> 0.9.44.8 2017-02-01 19:28:45 +01:00
Nikolay Amiantov
58d6b40893 nfs-utils: 1.3.3 -> 2.1.1
Use upstream systemd units, add kerberos support.
2017-02-01 19:47:33 +03:00
Nikolay Amiantov
469546f46e tcp_wrappers: 7.6 -> 7.6.q 2017-02-01 02:45:44 +03:00
Nikolay Amiantov
6991e7930e keyutils: split outputs 2017-02-01 02:45:28 +03:00
Daiderd Jordan
7bd49cded4
khd: 1.1.4 -> 2.0.0 2017-01-30 22:43:54 +01:00
Vladimír Čunát
9cd2dbc569
Merge branch 'master' into staging
Hopefully this will fix the mass abortion on Hydra;
restarting the jobs didn't help.
2017-01-30 18:39:36 +01:00
Eelco Dolstra
c20cc6d0b3
Excise use of importJSON
Putting information in external JSON files is IMHO not an improvement
over the idiomatic style of Nix expressions. The use of JSON doesn't
add anything over Nix expressions (in fact it removes expressive
power). And scattering package info over lots of little files makes
packages less readable over having the info in one file.
2017-01-30 11:44:08 +01:00
Parnell Springmeyer
6777e6f812
Merging with upstream 2017-01-29 05:54:01 -06:00
Parnell Springmeyer
4aa0923009
Getting rid of the var indirection and using a bin path instead 2017-01-29 04:11:01 -06:00
Parnell Springmeyer
e92b8402b0
Addressing PR feedback 2017-01-28 20:48:03 -08:00
Jude Taylor
ffc498c490
nvidia_x11: add missing vulkan files 2017-01-28 19:47:25 -08:00
Tuomas Tynkkynen
424cfe7686 Merge remote-tracking branch 'upstream/master' into staging 2017-01-29 02:16:29 +02:00
Tuomas Tynkkynen
2f38d1fd1f kmscube: init at 2016-09-19 2017-01-29 02:08:04 +02:00
Kevin Cox
6dcc4623ac
libnl: 3.2.23 -> 2.3.29 to revert accidental downgrade.
libnl was accidentally downgrades to 2.3.29 in
8d342d20b5 instead of being upgraded to
2.3.29 so this fixes that.
2017-01-27 22:41:44 +00:00
Jörg Thalheim
c2a7c448da
android-udev-rules: 20170109 -> 20170125 2017-01-27 22:37:12 +01:00
Alexey Shmalko
e799e7b5d6
musl: build musl-gcc
The build of the wrapper was disabled in 93e44be () and is not
related to the CVE itself. (See comments in the mentioned PR.)
2017-01-27 21:54:27 +02:00
Tim Steinbach
99c9252e3f
kernel: 4.9.5 -> 4.9.6 2017-01-26 19:56:26 -05:00
Tim Steinbach
4345dfb5ba
kernel: 4.4.44 -> 4.4.45 2017-01-26 19:55:58 -05:00
Tuomas Tynkkynen
be0e48e48f Merge remote-tracking branch 'upstream/master' into staging 2017-01-27 02:18:44 +02:00
Robin Gloster
972749f1d4
systemd: fix repository url
Left-over from testing, sorry..
2017-01-26 17:57:10 +01:00
Robin Gloster
a38f1911d3
systemd: 231 -> 232
Includes adding some more upstream units and removing obsolete (-.slice) ones.
2017-01-26 17:52:52 +01:00
Tuomas Tynkkynen
e2a2f6d595 Merge pull request from dezgeg/aarch64-for-merge
Aarch64 (ARM64) support
2017-01-26 17:52:28 +02:00
Vladimír Čunát
6973c7739e
Merge branch 'master' into staging
There were some larger rebuilds because of security.
2017-01-26 16:49:41 +01:00
Parnell Springmeyer
a26a796d5c
Merging against master - updating smokingpig, rebase was going to be messy 2017-01-26 02:00:04 -08:00
Parnell Springmeyer
025555d7f1
More fixes and improvements 2017-01-26 00:05:40 -08:00
Franz Pletz
4276844cb0
powerstat: 0.2.10 -> 0.2.11 2017-01-26 03:52:50 +01:00
Franz Pletz
f4833ed484
smemstat: 0.01.14 -> 0.01.16 2017-01-26 03:52:50 +01:00
Franz Pletz
d14c7bf046
eventstat: 0.03.02 -> 0.03.03 2017-01-26 03:52:48 +01:00
Franz Pletz
96c35ad06a
fnotifystat: 0.01.14 -> 0.01.16 2017-01-26 03:52:47 +01:00
Franz Pletz
243272cd2e
forkstat: 0.01.14 -> 0.01.16 2017-01-26 03:52:47 +01:00
Graham Christensen
8d342d20b5
libnl: 3.2.28 -> 3.2.29 for CVE-2017-0386 2017-01-25 20:53:18 -05:00
Robin Gloster
9842a107da
linuxPackages.perf: fix build with gcc6 2017-01-25 20:12:38 +01:00
Parnell Springmeyer
bae00e8aa8
setcap-wrapper: Merging with upstream master and resolving conflicts 2017-01-25 11:08:05 -08:00
Franz Pletz
b9b95aa4d4 Merge pull request from mayflower/conntrack-helpers
Disable conntrack helper autoloading by default
2017-01-25 14:18:41 +01:00
Tuomas Tynkkynen
2bfd83ab6d platforms.nix: Add some aarch64-specific kernel config
This makes Raspberry Pi 3 and some Cavium ThunderX server hardware work.
2017-01-25 02:14:46 +02:00
Joachim Fasting
c50c551142
grsecurity: 4.8.16-201701062021 -> 4.8.17-201701151620 2017-01-25 00:58:57 +01:00
Joachim Fasting
482c67af70
grsecurity: adapt new to mirror url structure 2017-01-25 00:58:54 +01:00
Franz Pletz
403fdd737e
linux: remove canDisableNetfilterConntrackHelpers feature
This feature is available in all kernels in nixpkgs.
2017-01-25 00:28:55 +01:00
Tuomas Tynkkynen
3519244c72 raspberrypifw: Enable build on Aarch64
So that the boot blobs can be copied.

FIXME: This makes the dynamic linker of the ARM binaries point to a
aarch64 linker.
2017-01-25 00:01:54 +02:00
Tuomas Tynkkynen
8999ab9e56 fuse: Add Aarch64 patch from upstream git to fix build
See e.g. https://bugs.launchpad.net/linaro-oe/+bug/1087757
2017-01-25 00:01:54 +02:00
Nathan Zadoks
fcc51d3256 linux: fix installTargets for AArch64
[dezgeg: note that we are currently using just 'Image' instead of
'Image.gz' as U-Boot doesn't support the latter yet. We might switch
once it does since the kernel images are quite big]
2017-01-25 00:01:54 +02:00
Nathan Zadoks
bfff3d6e23 busybox: Fix in-store invocation of busybox
This fixes the usage for stdenv bootstrap.

Additionally, dezgeg ported the patch from 1.25.1 to 1.26.1
2017-01-25 00:01:52 +02:00
John Ericson
5ad696b067 Merge pull request from Ericson2314/cross-tepid
Somewhat saner cross-compiling through bootstrapping
2017-01-24 15:09:56 -05:00
Michael Raskin
e08cae373b Merge branch 'master' into kwm 2017-01-24 17:59:56 +00:00
Michael Raskin
2bcc678f5a Merge pull request from LnL7/khd
khd: init at v1.1.4
2017-01-24 17:58:50 +00:00
John Ericson
a1a798f017 top-level: crossSystem is no longer exposed to packages. Use *Platform. 2017-01-24 11:37:56 -05:00
John Ericson
bf17d6dacf top-level: Introduce buildPackages for resolving build-time deps
[N.B., this package also applies to the commits that follow it in the same
PR.]

In most cases, buildPackages = pkgs so things work just as before. For
cross compiling, however, buildPackages is resolved as the previous
bootstrapping stage. This allows us to avoid the mkDerivation hacks cross
compiling currently uses today.

To avoid a massive refactor, callPackage will splice together both package
sets. Again to avoid churn, it uses the old `nativeDrv` vs `crossDrv` to do
so. So now, whether cross compiling or not, packages with get a `nativeDrv`
and `crossDrv`---in the non-cross-compiling case they are simply the same
derivation. This is good because it reduces the divergence between the
cross and non-cross dataflow. See `pkgs/top-level/splice.nix` for a comment
along the lines of the preceding paragraph, and the code that does this
splicing.

Also, `forceNativeDrv` is replaced with `forceNativePackages`. The latter
resolves `pkgs` unless the host platform is different from the build
platform, in which case it resolves to `buildPackages`. Note that the
target platform is not important here---it will not prevent
`forcedNativePackages` from resolving to `pkgs`.

--------

Temporarily, we make preserve some dubious decisions in the name of preserving
hashes:

Most importantly, we don't distinguish between "host" and "target" in the
autoconf sense. This leads to the proliferation of *Cross derivations
currently used. What we ought to is resolve native deps of the cross "build
packages" (build = host != target) package set against the "vanilla
packages" (build = host = target) package set. Instead, "build packages"
uses itself, with (informally) target != build in all cases.

This is wrong because it violates the "sliding window" principle of
bootstrapping stages that shifting the platform triple of one stage to the
left coincides with the next stage's platform triple. Only because we don't
explicitly distinguish between "host" and "target" does it appear that the
"sliding window" principle is preserved--indeed it is over the reductionary
"platform double" of just "build" and "host/target".

Additionally, we build libc, libgcc, etc in the same stage as the compilers
themselves, which is wrong because they are used at runtime, not build
time. Fixing this is somewhat subtle, and the solution and problem will be
better explained in the commit that does fix it.

Commits after this will solve both these issues, at the expense of breaking
cross hashes. Native hashes won't be broken, thankfully.

--------

Did the temporary ugliness pan out? Of the packages that currently build in
`release-cross.nix`, the only ones that have their hash changed are
`*.gcc.crossDrv` and `bootstrapTools.*.coreutilsMinimal`. In both cases I
think it doesn't matter.

 1. GCC when doing a `build = host = target = foreign` build (maximally
    cross), still defines environment variables like `CPATH`[1] with
    packages.  This seems assuredly wrong because whether gcc dynamically
    links those, or the programs built by gcc dynamically link those---I
    have no idea which case is reality---they should be foreign. Therefore,
    in all likelihood, I just made the gcc less broken.

 2. Coreutils (ab)used the old cross-compiling infrastructure to depend on
    a native version of itself. When coreutils was overwritten to be built
    with fewer features, the native version it used would also be
    overwritten because the binding was tight. Now it uses the much looser
    `BuildPackages.coreutils` which is just fine as a richer build dep
    doesn't cause any problems and avoids a rebuild.

So, in conclusion I'd say the conservatism payed off. Onward to actually
raking the muck in the next PR!

[1]: https://gcc.gnu.org/onlinedocs/gcc/Environment-Variables.html
2017-01-24 11:37:56 -05:00
Eelco Dolstra
a82810c7a7
linux: Apply 9p veryloose patch to 4.9 2017-01-24 13:05:02 +01:00
Franz Pletz
7c5324f29a
nftables: disable broken xtables support 2017-01-24 11:47:34 +01:00
Daiderd Jordan
adfb7e1f13
kwm: init at 1.1.4 2017-01-24 08:31:11 +01:00
Shea Levy
4f9f00fcc9 Add function to build a ghc standalone archive (OSX/iOS only) 2017-01-23 18:35:03 -05:00
Daiderd Jordan
0f91cdc45f
kwm: init at 4.0.4 2017-01-23 21:45:01 +01:00
Daiderd Jordan
034d39b244
darwin: update shas, some sources where re-released with different metadata 2017-01-23 19:39:03 +01:00
Shea Levy
b82d6b3a0a ios-cross: Expose the SDK directory via ccCross 2017-01-23 08:23:43 -05:00
Franz Pletz
e10cd27269
Merge branch 'staging' 2017-01-23 11:06:41 +01:00
Tim Steinbach
fc8233a64f
kernel: 4.4.43 -> 4.4.44 2017-01-22 12:11:50 -05:00
Franz Pletz
b1e9acfb18 Merge pull request from Mic92/utillinux
utillinux: undo seccomp sandbox and improve purity
2017-01-22 14:15:01 +01:00
Franz Pletz
f09c5c9c45
nftables: 0.6 -> 0.7, enable xtables support 2017-01-22 13:01:01 +01:00
Franz Pletz
210f894c12
iptables: split out dev output 2017-01-22 13:01:01 +01:00
Franz Pletz
016a194ac8
conntrack_tools: 1.4.3 -> 1.4.4 2017-01-22 13:01:01 +01:00
Jörg Thalheim
7cb14d4353 Merge pull request from Mic92/zfs
ZfsUnstable: 0.7.0-rc2 -> 0.7.0-rc3
2017-01-21 23:50:28 +01:00
Franz Pletz
56c6a4391f
zfs: add hint to try unstable version, fix typo 2017-01-21 23:35:55 +01:00
Franz Pletz
61caacbf47
linux: 4.1.36 -> 4.1.38 2017-01-21 20:41:38 +01:00
Franz Pletz
ce3b98d08b
linux: 3.18.45 -> 3.18.47 2017-01-21 20:41:36 +01:00
Jörg Thalheim
adecd56871
splUnstable: 0.7.0-rc2 -> 0.7.0-rc3 2017-01-21 18:18:33 +01:00
Jörg Thalheim
c33e1e06fa
zfsUnstable: 0.7.0-rc2 -> 0.7.0-rc3 2017-01-21 18:18:17 +01:00
Michael Raskin
dc6413399c eudev: fix build with a fresh gperf 2017-01-21 08:55:17 +01:00
Daiderd Jordan
c7d49e5f69
darwin: fixed eval of frameworks 2017-01-21 01:01:46 +01:00
Robert Helgesson
ba4687c3ea
radeontop: 2016-07-04 -> 2016-10-28
This is actually version 1.0 but to support `nix-env -u` we continue
using the release date.
2017-01-20 23:14:53 +01:00
Shea Levy
e70dcf6818 ios-cross: Bump sdk version, verify sdk install at build time 2017-01-20 14:10:15 -05:00
Vladimír Čunát
6b6553c768
Merge branch 'staging'
It contains security updates.  I somehow forgot to push this yesterday.
2017-01-20 16:33:59 +01:00
Shea Levy
34c52896d1 linux 4.9.4 -> 4.9.5 2017-01-20 09:36:04 -05:00
Nikolay Amiantov
d75a3cfb29 Merge pull request from abbradar/opencl
Fix OpenCL support
2017-01-20 12:09:17 +03:00
Nikolay Amiantov
05eee18e7a linuxPackages.nvidia_x11: fix OpenCL support
* Move OpenCL .icd file to the right place;
* Remove libOpenCL.so (we use ocl-icd instead).
2017-01-20 03:37:51 +03:00
Robin Gloster
a6ebca448e
iproute: update fan patches 2017-01-19 17:28:22 +01:00
Jörg Thalheim
104a37a9fb
util-linux: improve purity by using login from shadow
replacing shutdown in postPatch phase is not necessary as rtcwake was already
patched to use the search path (the only user of shutdown)
2017-01-19 15:13:38 +01:00
Jörg Thalheim
4b9b1fa945
util-linux: remove seccomp sandbox for CVE-2016-2279
the patch for CVE-2016-2779 was reverted by upstream and was not adopted
by any other downstream distributions. Upstream waits for a better fix
in the kernel:
https://www.kernel.org/pub/linux/utils/util-linux/v2.28/v2.28-ReleaseNotes
2017-01-19 15:10:18 +01:00
Vladimír Čunát
40003aa2ed
Merge branch 'master' into staging 2017-01-18 15:54:04 +01:00
Tuomas Tynkkynen
9fc3ce73d1 kernel config: Enable BONDING and TMPFS_POSIX_ACL
Yet again something that's lacking on other platforms than x86.
2017-01-18 01:21:08 +02:00
Eelco Dolstra
e9109b1b97
linux: 4.4.42 -> 4.4.43 2017-01-17 12:02:46 +01:00
Eelco Dolstra
9a9be9296f
linux: 4.9.3 -> 4.9.4 2017-01-17 12:02:46 +01:00
Tuomas Tynkkynen
08ddb16865 linux_testing: 4.10-rc2 -> 4.10-rc4 2017-01-16 11:41:13 +02:00
Thomas Tuegel
04d11637cb
linux_4_9: enable support for amdgpu on older chipsets
Linux 4.9 includes experimental amdgpu support for AMD Southern Islands
chipsets. (By default, only Sea Islands and newer chipsets are supported.)
Southern Islands chips will still use radeon by default, but daring users may
set `services.xserver.videoDrivers = [ "amdgpu" ];` to try the experimental
driver.
2017-01-15 16:29:50 -06:00
Jörg Thalheim
12b2830446
wireguard: 0.0.20170105 -> 0.0.20170115 2017-01-15 17:33:54 +01:00
Daiderd Jordan
d6517b6e5e Merge pull request from matthewbauer/darwintools
DarwinTools: init at 1
2017-01-15 10:11:39 +01:00
Jörg Thalheim
2ab883c9da
sysdig: patch for linux >= 4.9.1 2017-01-15 00:08:12 +01:00
Tim Steinbach
e8d3c74b49
util-linux: 2.28.1 -> 2.29 2017-01-14 12:57:58 -05:00
Tim Steinbach
afb73be9f7 busybox: 1.26.1 -> 1.26.2 2017-01-14 17:19:43 +01:00
Tim Steinbach
295337ead5
linux: 4.9.2 -> 4.9.3 2017-01-14 11:02:26 -05:00
Tim Steinbach
9158b89fd3
linux: 4.4.41 -> 4.4.42 2017-01-14 11:01:52 -05:00
Franz Pletz
44efd447b6 Merge pull request from NeQuissimus/linux_4_8_removal
linux: Remove 4.8
2017-01-12 10:22:29 +01:00
Graham Christensen
d20d38e68d
nvidia_x11_legacy340: 340.96 -> 340.101 for CVE-2016-7382, CVE-2016-7389, CVE-2016-8826 2017-01-11 20:11:20 -05:00
Graham Christensen
9837dce6d2
nvidia_x11_legacy304: 304.131 -> 304.134 for CVE-2016-7382, CVE-2016-7389, CVE-2016-8826 2017-01-11 20:11:14 -05:00
Tim Steinbach
d483a871d1
linux: Remove 4.8 2017-01-11 16:59:29 -05:00
Jude Taylor
3f49c4f3ce reattach-to-user-namespace: fix version 2017-01-10 12:21:43 -08:00
Jude Taylor
f2713ce805 update reattach-to-user-namespace 2017-01-10 11:51:03 -08:00
David McFarland
b2da3d3050 amdgpu-pro: 16.40 -> 16.50 () 2017-01-10 15:24:21 +01:00
Michael Raskin
5b9d80646b mdadm4: init at 4.0
Would be just mdadm: 3.3.4 -> 4.0, but it doesn't look like there are
urgent bugfixes, and it is a major release, and wrong RAID handling
kills data, so let's let the early adopters test it a bit.
2017-01-10 14:09:20 +01:00
Franz Pletz
6b01b229c2
linux: 4.9.1 -> 4.9.2 2017-01-10 07:45:19 +01:00