Commit Graph

129353 Commits

Author SHA1 Message Date
xeji
c9a1639e20 cacert: add output "unbundled"
which contains all certs, each in a separate file.
This output is not installed by default.
2018-02-25 23:48:54 +01:00
Vladimír Čunát
0479e91309
lightdm-gtk-greeter: fix build by ignoring a warning 2018-02-24 22:30:24 +01:00
Vladimír Čunát
63ca2cc786
Merge #35370: texlive.bin: fix with poppler 0.62 2018-02-24 22:30:23 +01:00
Vladimír Čunát
e571f14d39
harfbuzz: 1.7.1 -> 1.7.5 2018-02-24 22:30:23 +01:00
Vladimír Čunát
01bf8381fd
gtk3: 3.22.26 -> 3.22.28 (maintenance) 2018-02-24 22:30:22 +01:00
Vladimír Čunát
8045887b33
Merge #35305: sqlite: 3.21.0 -> 3.22.0 2018-02-24 22:30:21 +01:00
Vladimír Čunát
420babf3fd
Merge #35259: libva, libva-utils, vaapiIntel: 2.0.0 -> 2.1.0 2018-02-24 22:30:19 +01:00
Vladimír Čunát
e719327694
Merge #35113: cups: upstream patch for a bug 2018-02-24 22:30:18 +01:00
Vladimír Čunát
753db3e2d0
Merge #34878: fontconfig: Fix for HFS+ 1s date resolution 2018-02-24 22:30:17 +01:00
Vladimír Čunát
2358301666
Merge #34429: libxkbcommon: 0.7.2 -> 0.8.0 2018-02-24 22:30:15 +01:00
Vladimír Čunát
ddb422714d
mesa: 17.3.3 -> 17.3.5 (maintenance) 2018-02-24 22:30:13 +01:00
Vladimír Čunát
b6476968c4
libdrm: 2.4.89 -> 2.4.90 2018-02-24 22:30:13 +01:00
Vladimír Čunát
de9382f132
Merge #35324: wayland-protocols: 1.11 -> 1.13 2018-02-24 22:30:09 +01:00
adisbladis
6f13032b6e
Merge pull request #35421 from flokli/CVE-zziplib-0.13.67
zziplib: 0.13.67 -> 0.13.68
2018-02-24 22:49:24 +08:00
Jörg Thalheim
bd72d71be2
Merge pull request #35424 from volth/protobuf-3.5
protobuf: 3.4.0 -> {3.4.1, 3.5.1.1}
2018-02-24 14:26:46 +00:00
John Ericson
9a5171bd22 Merge remote-tracking branch 'upstream/master' into staging 2018-02-24 02:39:51 -05:00
John Ericson
30f171d3e2
Merge pull request #35441 from obsidiansystems/android-clean
android sdk, libibert, libbfd: Clean ups
2018-02-24 02:29:24 -05:00
adisbladis
333d0f8859
Merge pull request #35449 from aaronschif/fix/homesick-update
homesick: 1.1.3 -> 1.1.6
2018-02-24 15:19:35 +08:00
adisbladis
ecdf3b3c89
Merge pull request #35448 from etu/testssl-update
testssl: 2.9.5-1 -> 2.9.5-2
2018-02-24 15:07:05 +08:00
Elis Hirwing
36725805be
testssl: 2.9.5-1 -> 2.9.5-2 2018-02-24 07:45:03 +01:00
Aaron Schif
da44efd014 homesick: 1.1.3 -> 1.1.6 2018-02-24 00:43:52 -06:00
John Ericson
7748972763 androidenv: Better platform conditionals 2018-02-24 01:43:10 -05:00
John Ericson
fe5ae8b550 androidenv: Clean up whitespace 2018-02-24 01:43:10 -05:00
John Ericson
1c00a8afd7 libiberty, libbfd: Make hash less fickle
These shouldn't respond to targetPlatform, but previously did. The
reason is somewhat complex: they would rely on the sources of gcc and
binutils, respectively, which *do* depend on the target platform.
Obviously the source is the same in all cases, but when those packages
are no longer preserved from bootstrapping stages their `src` attributes
use a different fetchurl resulting in a changed hash.
2018-02-24 01:43:09 -05:00
Jan Tojnar
c8b1b34123
Merge pull request #33459 from hamishmack/glib-networking-macos
glib-networking: Fix glib-networking for macOS
2018-02-24 06:29:05 +01:00
volth
ccbd01f9d4
protobuf: protobuf3_5 -> protobuf3_4 2018-02-24 02:10:32 +00:00
Jörg Thalheim
e9fdcc9662
Merge pull request #35425 from xeji/kubernetes-go-version
kubernetes: patch broken go version check
2018-02-24 01:38:57 +00:00
Jörg Thalheim
465d8b0fa9 kubernetes: use fetchpatch instead 2018-02-24 01:18:46 +00:00
Tuomas Tynkkynen
cb6172c3b1 fio: 3.4 -> 3.5 2018-02-24 02:59:25 +02:00
Tuomas Tynkkynen
ae9d4faff9 Merge remote-tracking branch 'upstream/master' into staging 2018-02-24 02:05:30 +02:00
Jörg Thalheim
7d37688d66
Merge pull request #35422 from ryantm/mattermost-fix
mattermost: add build number
2018-02-23 23:47:19 +00:00
Jörg Thalheim
eb05f92c08
Merge pull request #35401 from makefu/pkgs/cups-zj-58/init
cups-zj-58: init at 2018-02-22
2018-02-23 22:42:52 +00:00
zimbatm
835d8e5c21 direnv: 2.14.0 -> 2.15.0 2018-02-23 22:42:20 +00:00
Aristid Breitkreuz
e349ccc77f nixos/alsa: Do not make sound.enable conditional on stateVersion.
Eelco Dolstra wrote:

Hm, this is not really the intended use of stateVersion. From the description:

        Every once in a while, a new NixOS release may change
        configuration defaults in a way incompatible with stateful
        data. For instance, if the default version of PostgreSQL
        changes, the new version will probably be unable to read your
        existing databases. To prevent such breakage, you can set the
        value of this option to the NixOS release with which you want
        to be compatible. The effect is that NixOS will option
        defaults corresponding to the specified release (such as using
        an older version of PostgreSQL).

So this is only intended for options that have some corresponding on-disk state. AFAICT this is not the case for sound. In any case stateVersion is a necessary evil that only exists because we can't just upgrade Postgres databases or change SSH host keys. It's not necessary for things like whether sound is enabled. (If the user discovers that sound is suddenly disabled, they can just enable it.)

I had some vague recollection that we also had a configVersion option setting to control the defaults for non-state-related options, but I can't find it so maybe it was only discussed.
2018-02-23 23:14:42 +01:00
xeji
b54e5b908d kubernetes: patch broken go version check
fixes #35403
patch from https://github.com/kubernetes/kubernetes/pull/58207
already merged upstream - remove for next version
2018-02-23 22:56:36 +01:00
volth
4bbd6900f8 protobuf: 3.4.0 -> {3.4.1, 3.5.1.1} 2018-02-23 21:38:22 +00:00
Ryan Mulligan
ac782ae4e0 mattermost: add build number 2018-02-23 13:26:31 -08:00
Andreas Rammhold
a6664d8192
mupdf: apply patch for CVE-2018-6544 (part 2)
This (hopefully) completes 998b1ef.
2018-02-23 22:25:37 +01:00
Michael Weiss
49b7fc3908 android-studio-preview: 3.1.0.11 -> 3.1.0.12 2018-02-23 21:57:09 +01:00
Florian Klink
9f6a942fc7 zziplib: 0.13.67 -> 0.13.68
Bump zziplib to 0.13.68 to fix multiple CVE issues:

 - CVE-2018-6381
 (a803559fa9)
 - CVE-2018-6484
 (https://github.com/gdraheim/zziplib/issues/14#issuecomment-363198084)
 - CVE-2018-6540
 (72ec933663)
 - CVE-2018-6541
 (https://github.com/gdraheim/zziplib/issues/16#issuecomment-363197718)
 - CVE-2018-6542
 (931f962ddf)

Unfortunately, getting only those patches is hard, as they're not well
referenced to linked issues. The testsuite checking for vulns
requires network access (so we can't easily test it here).

https://github.com/gdraheim/zziplib/issues/20 might still be an issue,
so keeping this as a TODO here.
2018-02-23 21:39:48 +01:00
Florian Klink
ee16feed37 zziplib: add docbook_xml_dtd_412 2018-02-23 21:10:27 +01:00
Vladimír Čunát
296fa609ad
Merge #35404: sage: explicitly use gfortran6 2018-02-23 20:39:51 +01:00
Florian Klink
cdf19abfa5 zziplib: use postPatch instead of patchPhase 2018-02-23 20:36:21 +01:00
Joachim F
cda0f9fede
Merge pull request #35414 from flokli/CVE-2018-6544
mupdf: apply patch for CVE-2018-6544
2018-02-23 19:14:31 +00:00
Franz Pletz
a5521d1598
Merge pull request #35416 from volth/patch-106
nixos/programs.chromium: write policies for google-chrome too
2018-02-23 19:11:41 +00:00
volth
270f99f7bf
nixos/programs.chromium: write policies for google-chrome too
Policy configuration files live under /etc/chromium for Chromium, and under /etc/opt/chrome for Google Chrome.
2018-02-23 19:00:26 +00:00
Florian Klink
998b1ef13b mupdf: apply patch for CVE-2018-6544 2018-02-23 19:50:54 +01:00
Franz Pletz
844ad2ec03
Merge pull request #35406 from xeji/wireguard
wireguard: 0.0.20180202 -> 0.0.20180218
2018-02-23 18:20:54 +00:00
Franz Pletz
2b838f3d4d
Merge pull request #35405 from tomberek/tinc_chown_invitations
tinc: enable invitations
2018-02-23 18:18:52 +00:00
adisbladis
b492e2a164
dnsmasq: Patch CVE-2017-15107 2018-02-24 01:36:45 +08:00