Commit Graph

223343 Commits

Author SHA1 Message Date
Andreas Rammhold
bf3870a4c0
Merge pull request #86277 from mweinelt/dnsmasq/2.81
dnsmasq: 2.80 → 2.81
2020-05-01 03:50:57 +02:00
Jan Tojnar
f14021febf
Merge branch 'master' into staging-next 2020-04-29 08:35:23 +02:00
Jan Tojnar
2b5e2ffe0a
Merge pull request #86165 from jtojnar/libusb-compat-rename 2020-04-29 08:26:08 +02:00
Jörg Thalheim
6015d03ef1
Merge pull request #86037 from purcell/dotnet-arm64 2020-04-29 07:04:32 +01:00
worldofpeace
d67d074ae6
Merge pull request #86285 from cole-h/fish
fish: 3.1.1 -> 3.1.2
2020-04-29 01:37:57 -04:00
worldofpeace
a6dc21fa2d nixos/pantheon: fix doc typo 2020-04-29 01:20:03 -04:00
jakobrs
d21cc14114 v4l2loopback: 0.12.4 -> 0.12.5 2020-04-29 07:19:01 +02:00
Vincent Laporte
95b35a2514 coqPackages.gappalib: 1.4.1 → 1.4.3 2020-04-29 06:56:14 +02:00
Peter Hoeg
83a57cfa31
Merge pull request #81366 from pvgoran/pykms-fix-logging
pykms: fix/enhance logging
2020-04-29 12:49:00 +08:00
Cole Helbling
7a15b6037b
fish: 3.1.1 -> 3.1.2
https://github.com/fish-shell/fish-shell/compare/3.1.1...3.1.2

"This release of fish fixes a major issue discovered in fish 3.1.1:
Commands such as `fzf` and `enhancd`, when used with `eval`, would hang.
`eval` buffered output too aggressively, which has been fixed."
2020-04-28 21:26:50 -07:00
Pavel Goran
c678d68cdb nixos/pykms: add SyslogIdentifier 2020-04-29 03:53:47 +00:00
Pavel Goran
462fa8bbaf pykms: replace logging patch
The logging "sed-patch" that was introduced for version 20190611 worked poorly:
it was too intrusive (breaking the --logfile option), and it didn't prevent
using in-store file for logging by default. The new logging patch (an actual
"diff-patch") is less intrusive: it just changes the default log file's
location to be the current directory instead of the executable's directory.
2020-04-29 03:53:41 +00:00
Mario Rodas
de71be7723
Merge pull request #86220 from avdv/wtf-0.29.0
wtf: 0.29.0 -> 0.29.0
2020-04-28 21:42:09 -05:00
Martin Weinelt
c9fef6230a dnsmasq: 2.80 → 2.81
Fixes: CVE-2019-14834

A vulnerability was found in dnsmasq before version 2.81, where the
memory leak allows remote attackers to cause a denial of service
(memory consumption) via vectors involving DHCP response creation.

Changelog:

version 2.81
	Improve cache behaviour for TCP connections. For ease of
	implementaion, dnsmasq has always forked a new process to handle
	each incoming TCP connection. A side-effect of this is that
	any DNS queries answered from TCP connections are not cached:
	when TCP connections were rare, this was not a problem.
	With the coming of DNSSEC, it is now the case that some
	DNSSEC queries have answers which spill to TCP, and if,
	for instance, this applies to the keys for the root, then
	those never get cached, and performance is very bad.
	This fix passes cache entries back from the TCP child process to
	the main server process, and fixes the problem.

	Remove the NO_FORK compile-time option, and support for uclinux.
	In an era where everything has an MMU, this looks like
	an anachronism, and it adds to (Ok, multiplies!) the
	combinatorial explosion of compile-time options. Thanks to
	Kevin Darbyshire-Bryant for the patch.

	Fix line-counting when reading /etc/hosts and friends; for
	correct error messages. Thanks to Christian Rosentreter
	for reporting this.

	Fix bug in DNS non-terminal code, added in 2.80, which could
	sometimes cause a NODATA rather than an NXDOMAIN reply.
	Thanks to Norman Rasmussen, Sven Mueller and Maciej Żenczykowski
	for spotting and diagnosing the bug and providing patches.

	Support TCP-fastopen (RFC-7413) on both incoming and
	outgoing TCP connections, if supported and enabled in the OS.

	Improve kernel-capability manipulation code under Linux. Dnsmasq
	now fails early if a required capability is not available, and
	tries not to request capabilities not required by its
	configuration.

	Add --shared-network config. This enables allocation of addresses
	by the DHCP server in subnets where the server (or relay) does not
	have an interface on the network in that subnet. Many thanks to
	kamp.de for sponsoring this feature.

	Fix broken contrib/lease_tools/dhcp_lease_time.c. A packet
	validation check got borked in commit 2b38e382 and release 2.80.
	Thanks to Tomasz Szajner for spotting this.

	Fix compilation against nettle version 3.5 and later.

	Fix spurious DNSSEC validation failures when the auth section
	of a reply contains unsigned RRs from a signed zone,
	with the exception that NSEC and NSEC3 RRs must always be signed.
        Thanks to Tore Anderson for spotting and diagnosing the bug.

	Add --dhcp-ignore-clid. This disables reading of DHCP client
	identifier option (option 61), so clients are only identified by
	MAC addresses.

	Fix a bug which stopped --dhcp-name-match from working when a hostname
	is supplied in --dhcp-host. Thanks to James Feeney for spotting this.

	Fix bug which caused very rarely caused zero-length DHCPv6 packets.
	Thanks to Dereck Higgins for spotting this.

	Add --tftp-single-port option.

	Enhance --conf-dir to load files in a deterministic order. Thanks to
	Evgenii Seliavka for the suggestion and initial patch.

	In the router advert code, handle case where we have two
	different interfaces on the same IPv6 net, and we are doing
	RA/DHCP service on only one of them. Thanks to NIIBE Yutaka
	for spotting this case and making the initial patch.

	Support prefixed ranges of ipv6 addresses in dhcp-host.
	This eases problems chain-netbooting, where each link in the
	chain requests an address using a different UID. With a single
	address, only one gets the "static" address, but with this
	fix, enough addresses can be reserved for all the stages of the
	boot. Many thanks to Harald Jensås for his work on this idea and
	earlier patches.

	Add filtering by tag of --dhcp-host directives. Based on a patch
	by Harald Jensås.

	Allow empty server spec in --rev-server, to match --server.

	Remove DSA signature verification from DNSSEC, as specified in
	RFC 8624. Thanks to Loganaden Velvindron for the original patch.

	Add --script-on-renewal option.
2020-04-29 04:22:08 +02:00
worldofpeace
b7f80f00ef
Merge pull request #86150 from ceedubs/unison-ucm-M1l
unison-ucm: 1.0.M1j-alpha -> 1.0.M1l-alpha
2020-04-28 21:49:49 -04:00
Mario Rodas
af6f00d552
Merge pull request #86211 from marsam/update-nodejs-12_x
nodejs-12_x: 12.16.2 -> 12.16.3
2020-04-28 20:41:35 -05:00
Jaka Hudoklin
d3ef0655d4
Merge pull request #86233 from prusnak/remove-amd-legacy
amdadl-sdk, amdapp-sdk: remove
2020-04-29 01:31:31 +00:00
adisbladis
50950bda13
Merge pull request #86262 from zowoq/podman
podman: 1.9.0 -> 1.9.1
2020-04-29 03:00:47 +02:00
Mario Rodas
002817019b
Merge pull request #86224 from bbigras/starship
starship: 0.40.1 -> 0.41.0
2020-04-28 19:37:12 -05:00
Colin
4007ceb6af
treewide get rid of go 1.12 (#83253)
* treewide Drop unneeded go 1.12 overrides

* Fix packr to be go module compatible.

I updated to version 2.8.0 which is the latest on master.
Then due to the 2 different sets of go modules which are used, I split
the build into two different derivations, then merged them togethor
using symlinkJoin to have the same output structure as the existing derivation.

* Remove consul dependency on go1.12

I updated the consul version to 1.7.2 and flipped it to building using
modules.

* Remove go1.12 from perkeep.

Update the version to the latest unstable on master.

* Update scaleway-cli to not be pinned to go1.12

Switched the version to 1.20

* Update prometheus-varnish-exporter to not depend on go1.12

* Update lnd to build with go1.12

Updated the version
Forced only building subpackages with main to prevent panics over
multiple modules in one repo

* Remove go1.12 from openshift

Had to update the version to 4.1.0 and do a bit of munging to get this
to work

* Remove go1.12 completely.

These are no longer needed.

* Update bazel-watcher and make it build with go 1.14
2020-04-28 20:16:20 -04:00
Florian Klink
c01ac3ed12
Merge pull request #85998 from helsinki-systems/make-nsswitch-more-flexible
nixos/nsswitch: Make databases more configurable
2020-04-29 01:28:33 +02:00
Silvan Mosberger
aa3dde806e
Merge pull request #86024 from Infinisil/lib-tests-pkgs 2020-04-29 01:20:14 +02:00
worldofpeace
a8b60a8567
Merge pull request #86167 from jtojnar/webkitgtk-2.28.2
webkitgtk: 2.28.1 → 2.28.2
2020-04-28 18:46:10 -04:00
worldofpeace
10bf212b4f
Merge pull request #85589 from emilazy/add-acme-maintainers-team
Add ACME maintainers team
2020-04-28 18:38:12 -04:00
zowoq
3fb6a304d0 podman: 1.9.0 -> 1.9.1
https://github.com/containers/libpod/releases/tag/v1.9.1
2020-04-29 08:31:03 +10:00
Florian Klink
05328a49f6
Merge pull request #85772 from blitz/open-watcom
Use Open Watcom to build VirtualBox BIOS
2020-04-29 00:29:06 +02:00
Florian Klink
d464035ba8
Merge pull request #86246 from mweinelt/openldap/v2.4.50
openldap: 2.4.49 → 2.4.50
2020-04-29 00:05:22 +02:00
worldofpeace
a0ebabf60a
Merge pull request #80896 from clkamp/pam-unix-add-nodelay
nixos/security/pam: Add nodelay option
2020-04-28 17:50:42 -04:00
worldofpeace
f5c04ecb2c
Merge pull request #86255 from lovesegfault/zoom-us-5.0
zoom-us: 3.5.385850.0413 -> 5.0.398100.0427
2020-04-28 17:46:51 -04:00
Bernardo Meurer
de2b31490b
zoom-us: 3.5.385850.0413 -> 5.0.398100.0427 2020-04-28 13:52:28 -07:00
matthuszagh
92212a59df
pythonPackages.pylibftdi: init at 0.18.1 (#71286) 2020-04-28 16:49:19 -04:00
Alex Whitt
30fce6f31b rdesktop: 1.8.6 -> 1.9.0 2020-04-28 13:21:15 -07:00
Martin Weinelt
2091d42cef openldap: 2.4.49 → 2.4.50
Fixes: CVE-2020-12243

In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters
with nested boolean expressions can result in denial of service
(daemon crash).
2020-04-28 21:51:49 +02:00
Cody Allen
df202b418d
unison-ucm: 1.0.M1j-alpha -> 1.0.M1l-alpha
Follow-up to #85940. There were a couple of issues with the
1.0.M1j-alpha release that were promptly fixed.
2020-04-28 12:04:40 -07:00
Eelco Dolstra
4426104c8c
Merge pull request #85711 from worldofpeace/gnome-iso
nixos/release: add GNOME ISO
2020-04-28 21:03:03 +02:00
Maxine E. Aubrey
e6f7f84325 nomad: 0.11.0 -> 0.11.1 2020-04-28 12:02:26 -07:00
worldofpeace
bde9441480
Merge pull request #86147 from matthewbauer/tweak-kde-preferences
kde/{kate,konqueror,okular}: decrease text mimetype preference
2020-04-28 14:10:51 -04:00
worldofpeace
f5ddad7d5e pantheon.gala: 3.3.0 -> 3.3.1
https://github.com/elementary/gala/releases/tag/3.3.1
2020-04-28 14:01:52 -04:00
worldofpeace
34444e7b45
Merge pull request #86231 from symphorien/nix-du-strictDeps
nix-du: fix with strictDeps
2020-04-28 13:34:43 -04:00
worldofpeace
d85aabfb5f
Merge pull request #84449 from doronbehar/improve-guvcview
guvcview: fix gsettings filechooser errors
2020-04-28 13:32:13 -04:00
evils
e257a92472
foldingathome: 7.5.1 -> 7.6.9 (#86171) 2020-04-28 17:20:43 +00:00
Pavol Rusnak
d94444e44f
amdadl-sdk, amdapp-sdk: remove
these libraries are obsolete and nothing in the nixpkgs tree requires them
2020-04-28 19:15:10 +02:00
Chris Ostrouchov
27c7e7d38a pythonPackages.auth0-python: init at 3.9.1 2020-04-28 09:32:56 -07:00
Chris Ostrouchov
359c6b5bc1 pythonPackages.cloudflare: init at 2.6.5 2020-04-28 09:32:56 -07:00
Ben Darwin
cc89b93798 python3Packages.batchgenerators: 0.19.7 -> 0.20.0 2020-04-28 09:31:12 -07:00
Bruno Bigras
6da294e8df starship: 0.40.1 -> 0.41.0 2020-04-28 12:00:20 -04:00
markuskowa
07806dd7bb
Merge pull request #86218 from bzizou/libfabric
libfabric: init at 1.10.0
2020-04-28 17:29:35 +02:00
Tim Steinbach
f7b417440d
jenkins: 2.222.1 -> 2.222.3 2020-04-28 11:16:48 -04:00
Bruno Bzeznik
75a3a9af8d libfabric: init at 1.10.0 2020-04-28 17:09:15 +02:00
Claudio Bley
bd0e684f9a wtf: 0.28.0 -> 0.29.0 2020-04-28 17:08:12 +02:00