Commit Graph

109488 Commits

Author SHA1 Message Date
Jens Binkert
aff15c4b7b pidgin-sipe: 1.22.0 -> 1.22.1 2017-06-22 06:02:07 +02:00
aszlig
4007ee974c
vlock: Don't try to install setuid binary
With newer Nix it's (fortunately) no longer possible to create a file
with setuid bits, even though the permissions are fixed later the build
will fail during installPhase already.

I've verified whether the contents of the output path are the same as
before this change and the contents match.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2017-06-22 04:01:27 +02:00
aszlig
7a99036cef
nixos/release-combined: Add keymap tests
We really want to break channel updates whenever we break something like
this, because this actually will hit machines out there and can be very
much annoying (we had broken keymaps a few times which is why I
introduced these tests in the first place).

Just to be sure I don't break channel updates with this commit, I ran
all of the keymap tests and they all succeeded.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2017-06-22 03:33:35 +02:00
aszlig
44c64fef16
nixos/xserver: Improve checking keyboard layout
Enumerating the symbols directory doesn't include variants, so we're now
basically doing what "localectl list-x11-keymap-layouts" does but we use
sed instead.

The reason I'm not using localectl directly is because the path to
rules/base.lst is hardcoded in the systemd source.

Of course, the XKB specification allows for much more complicated rules,
but at least this should cover the most basic ones including variants.

So the sed expression itself is just for listing the available layouts
and variants and we use a grep with -xF to match only full lines without
interpreting regular expressions.

This should again allow to set "dvorak" as the layout option.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Cc: @lheckemann
Fixes: #25526
2017-06-22 03:24:28 +02:00
aszlig
7c0f6f4be5
pyopenssl: 16.2.0 -> 17.0.0 and fix tests
Upstream changes:

 * Added OpenSSL.X509Store.set_time() to set a custom verification time
   when verifying certificate chains. pyca/pyopenssl#567
 * Added a collection of functions for working with OCSP stapling. None
   of these functions make it possible to validate OCSP assertions, only
   to staple them into the handshake and to retrieve the stapled
   assertion if provided. Users will need to write their own code to
   handle OCSP assertions. We specifically added:
   Context.set_ocsp_server_callback, Context.set_ocsp_client_callback,
   and Connection.request_ocsp. pyca/pyopenssl#580
 * Changed the SSL module's memory allocation policy to avoid zeroing
   memory it allocates when unnecessary. This reduces CPU usage and
   memory allocation time by an amount proportional to the size of the
   allocation. For applications that process a lot of TLS data or that
   use very lage allocations this can provide considerable performance
   improvements. pyca/pyopenssl#578
 * Automatically set SSL_CTX_set_ecdh_auto() on OpenSSL.SSL.Context.
   pyca/pyopenssl#575
 * Fix empty exceptions from OpenSSL.crypto.load_privatekey().
   pyca/pyopenssl#581

The full upstream changelog can be found at:

https://pyopenssl.readthedocs.io/en/17.0.0/changelog.html

I've also added a patch from pyca/pyopenssl#637 in order to fix the
tests, which was the main reason for the version bump because that patch
won't apply for 16.2.0.

According to the upstream changelog there should be no
backwards-incompatible changes, but I've tested building against some of
the packages depending on pyopenssl anyway. Regardless of this, the
build for pyopenssl fails right now anyway, so the worst that could
happen via this commit would be that we break something that's already
broken.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2017-06-22 01:30:10 +02:00
Profpatsch
5cbc6ca9bb lib/generators: put more information in toPretty lambdas
With `builtins.functionArgs` we can get some information if the first argument
is an attrset and whether the contained fields have default values. Encode that
into the pretty-printed lambda.
2017-06-22 00:58:59 +02:00
Profpatsch
feb8cbdc38 lib/debug: traceSeqN & traceSeqValN
Strict trace functions that only go down to a specified depth.
Handy to get a better picture and prevent infinite recursions.
2017-06-22 00:58:59 +02:00
Profpatsch
b1ffe5e4c0 lib/generators: toPretty
`toPretty` implements a pretty printer for nix values.
2017-06-22 00:58:59 +02:00
Franz Pletz
dd3f2e648a
linux_hardened_copperhead: init at 4.11.6.c 2017-06-21 23:49:00 +02:00
Franz Pletz
febe37a24a
webkitgtk: 2.16.3 -> 2.16.4 for multiple CVEs
Fixes:

  * CVE-2017-2538
  * CVE-2017-2424

See https://webkitgtk.org/security/WSA-2017-0005.html
2017-06-21 23:49:00 +02:00
Daiderd Jordan
7469eb9fed
stress: enable on darwin 2017-06-21 23:26:43 +02:00
Graham Christensen
dd265313e7 Merge pull request #26736 from grahamc/improve-nixos-test-debug
Improve nixos test debug
2017-06-21 17:26:18 -04:00
Michael Raskin
bc47794ab5 quicklispPackages: update
Escape things by default in derivation names (i.e. digit cannot be the
first character etc.)

Update Quicklisp (tracking upstream); list new missing dependencies

Add some minimal README about ql-to-nix
2017-06-21 22:17:48 +02:00
Jörg Thalheim
e89e96a755 linux_4_11: renable CONFIG_UPROBE_EVENTS
CONFIG_UPROBE_EVENT was renamed to CONFIG_UPROBE_EVENTS.
2017-06-21 17:16:46 +01:00
Domen Kožar
7bd918b364
hydra-evaluator: depend on jq 2017-06-21 15:35:07 +02:00
Domen Kožar
be4a4ef701
hydra: 2017-04-26 -> 2017-06-21 2017-06-21 15:30:02 +02:00
Franz Pletz
cfdb9769ce
unrar: 5.4.5 -> 5.5.5 (security)
Fixes arbitrary memory write.

See https://bugs.chromium.org/p/project-zero/issues/detail?id=1286
2017-06-21 14:38:26 +02:00
Domen Kožar
f237eeb6a8
moreutils: address comment on 14a320ace8 2017-06-21 13:44:17 +02:00
Franz Pletz
5521b542a2
openvpn: 2.4.2 -> 2.4.3
See https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243

Fixed:

  * CVE-2017-7508
  * CVE-2017-7520
  * CVE-2017-7521
  * CVE-2017-7512
  * CVE-2017-7522
2017-06-21 13:36:10 +02:00
Tim Steinbach
f1ea37c1b4 Merge pull request #26735 from NeQuissimus/minikube_0_19_1
minikube: 0.19.0 -> 0.19.1
2017-06-21 07:31:29 -04:00
Jörg Thalheim
d3ceaccb42 nerdtree-git-plugin: init at 2017-03-12 2017-06-21 10:23:21 +01:00
Jörg Thalheim
a3f054d8ad
dino: 2017-06-13 -> 2017-06-21 2017-06-21 09:42:46 +01:00
Peter Hoeg
b8297ff08a bundler: 1.15.0 -> 1.15.1 2017-06-21 15:29:05 +08:00
Frederik Rietdijk
0d20c7e2f5 python.pkgs: several maintenance bumps 2017-06-21 09:03:40 +02:00
Daiderd Jordan
031d26eb24 Merge pull request #26709 from robx/fix-python-protobuf-v2
python-modules/protobuf: fix darwin build by passing C++ includes exp…
2017-06-21 08:52:13 +02:00
Michael Raskin
bb65640784 Merge pull request #26728 from MP2E/wine-staging-update
wineStaging, wineUnstable: 2.7 -> 2.10
2017-06-21 08:09:07 +02:00
Graham Christensen
3f40fcabbf
nixos tests: waitForWindow: output a list of windows we see prior to the final check
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
    machine: exit status 0
    machine: Last chance to match /(?^:dfiirst configuration)/ on the the window list, which currently contains:
    machine: [i3 con] container around 0xf8a5f0, i3: first configuration, [i3 con] floatingcon around 0xf8c260, [i3 con] container around 0xf8a380, i3bar for output Virtual-1, [i3 con] bottom dockarea Virtual-1, [i3 con] workspace 1, [i3 con] content Virtual-1, [i3 con] top dockarea Virtual-1, [i3 con] output Virtual-1, [i3 con] workspace __i3_scratch, [i3 con] content __i3, [i3 con] pseudo-output __i3, i3
2017-06-20 21:16:35 -04:00
Graham Christensen
1b833015b7
nixos tests: waitForText: output the detected screen content prior to the last attempt
machine: Last chance to match /(?^:BALICE)/ on the screen, which currently contains:
    machine: performing optical character recognition
    machine: sending monitor command: screendump /tmp/nix-build-vm-test-run-sddm.drv-0/ocrin.ppm
    machine: Session Layout

    O O

    0 1 : 0 9

    Wednesday, June 21, 2017

    |_ I

    Select your user and enter password
2017-06-20 21:10:34 -04:00
Graham Christensen
348785eec0
nixos tests: waitUntilTTYMatches: Log TTY contents on last try
If the test has not passed yet, on the last attempt it now outputs:

    machine: Last chance to match /logine: / on TTY2, which currently contains:
    machine: running command: fold -w$(stty -F /dev/tty2 size | awk '{print $2}') /dev/vcs2
    machine: exit status 0
    machine:

    <<< Welcome to NixOS 17.09.git.a804ef4 (x86_64) - tty2 >>>

    machine login:

to help debug the problem. Notice the "logine" typo in my check.
2017-06-20 20:57:39 -04:00
Graham Christensen
56435c1404
nixos tests: retry: Count down to 0, and pass remaining attempts to the sub
Allows test functions to output diagnostic information on failure.
2017-06-20 20:54:33 -04:00
Tim Steinbach
fdc7cf8238
minikube: 0.19.0 -> 0.19.1 2017-06-20 19:32:29 -04:00
Michael Weiss
d04286be34 quiterss: 0.18.5 -> 0.18.6 2017-06-20 23:31:02 +02:00
Pascal Wittmann
065bb61330
moreutils: fix darwin build 2017-06-20 22:39:51 +02:00
Volth
8fe525b6c7 mtr: do not do 'setcap' on installPhase, it would fail anyway 2017-06-20 22:22:29 +02:00
Shea Levy
a21ddfb158 pythonPackages.bcdoc: Disable tests 2017-06-20 16:08:47 -04:00
Isaac Shapira
6fd606bdf3 awscli: 1.11.95 -> 1.11.105 2017-06-20 14:00:14 -06:00
Cray Elliott
922d706e81 wineStaging: 2.7 -> 2.10
wineUnstable: 2.7 -> 2.10
2017-06-20 11:23:37 -07:00
Domen Kožar
14a320ace8
moreutils: fix build on darwin 2017-06-20 16:42:49 +02:00
Pascal Wittmann
613dd68ab6 Merge pull request #26725 from schneefux/pkg.wallabag
wallabag: 2.2.2 -> 2.2.3
2017-06-20 15:31:24 +02:00
schneefux
c02e26f8a0
wallabag: 2.2.2 -> 2.2.3 2017-06-20 13:30:38 +02:00
Robin Gloster
908157c6c5
prometheus-blackbox-exporter: 0.4.0 -> 0.5.0 2017-06-20 12:04:55 +02:00
Jörg Thalheim
b6bacc4bb2 llvmPackage_{3.4,3.5,3.7,3.8,3.9}: fix output of llvm-config
llvm-config is a tool to output compile and linker flags, when compiling against llvm.

The tool however outputs static library names despite libllvm is build
as shared library on nixos. This was fixed for llvm 3.4, 3.5 and 3.7.

For llvm 3.8 and 3.9 it printed the library extension twice (.so.so).
This was fixed in 4.0 and the patch is backported to 3.8 and 3.9 in
this pull request.

```
$ for i in 34 35 37 38 39; do echo "\nllvm-$i"; nix-shell -p llvmPackages_$i.llvm --run 'llvm-config --libnames'; done

llvm-34
libLLVMInstrumentation.so libLLVMIRReader.so libLLVMAsmParser.so
...

llvm-35
libLLVMLTO.so libLLVMObjCARCOpts.so libLLVMLinker.so libLLVMipo.so
...

llvm-37
libLLVMLTO.so libLLVMObjCARCOpts.so libLLVMLinker.so libLLVMBitWriter.so
...

llvm-38
libLLVM-3.8.1.so

llvm-39
libLLVM-3.9.so
```

fixes #26713
2017-06-20 10:22:06 +01:00
Franz Pletz
fe9c7ad83f
libcpuid: 0.2.2 -> 0.4.0 2017-06-20 07:51:34 +02:00
Franz Pletz
0227471cc9
librsvg: 2.40.16 -> 2.40.17 2017-06-20 07:48:14 +02:00
Franz Pletz
76de6e4f39
libcroco: 0.6.11 -> 0.6.12 2017-06-20 07:47:52 +02:00
Franz Pletz
2d5ede04fc
libinput: 1.7.2 -> 1.7.3 2017-06-20 07:43:59 +02:00
Franz Pletz
2ddcdac01c
libftdi1: 1.2 -> 1.3 2017-06-20 07:43:38 +02:00
Franz Pletz
a01f1c0a42
sniproxy: 0.4.0 -> 0.5.0 2017-06-20 07:43:14 +02:00
Franz Pletz
1f2a47c70f
libhttpseverywhere: 0.4.2 -> 0.4.5 2017-06-20 07:28:34 +02:00
Franz Pletz
57a889bcfa
liblockfile: 1.09 -> 1.14 2017-06-20 07:24:20 +02:00