Commit Graph

8358 Commits

Author SHA1 Message Date
Franz Pletz
cb3d27df93 Merge remote-tracking branch 'origin/master' into hardened-stdenv 2016-03-05 18:55:30 +01:00
Franz Pletz
aff1f4ab94 Use general hardening flag toggle lists
The following parameters are now available:

  * hardeningDisable
    To disable specific hardening flags
  * hardeningEnable
    To enable specific hardening flags

Only the cc-wrapper supports this right now, but these may be reused by
other wrappers, builders or setup hooks.

cc-wrapper supports the following flags:

  * fortify
  * stackprotector
  * pie (disabled by default)
  * pic
  * strictoverflow
  * format
  * relro
  * bindnow
2016-03-05 18:55:26 +01:00
Franz Pletz
a2e449e43e coreutils: Skip some tests (filenames too long) 2016-03-05 18:55:26 +01:00
Nikolay Amiantov
9e9a2f1096 unrar: 5.3.9 -> 5.3.11
Also build shared library.
2016-03-05 09:34:33 +03:00
Robin Gloster
e2372a4183 ceph: fix for zip timestamps 2016-03-04 14:15:59 +00:00
Tristan Helmich
c3096a4160 memtest86+: disable pic/stackprotector hardening 2016-03-04 14:56:58 +01:00
Emery
d07d94b97c amtterm: initial package at 1.4
https://www.kraxel.org/cgit/amtterm/
2016-03-04 14:47:47 +01:00
joachifm
2bf5629618 Merge pull request #10139 from mstrm/clamav
clamav: Use freshclam.conf defined by clamav-updater module if enabled
2016-03-04 11:59:49 +00:00
Nikolay Amiantov
2a7f56bc8f virtualgl: 2.4.1 -> 2.5 2016-03-04 14:46:45 +03:00
Martin Sturm
507ad9a4f9 clamav: Use freshclam.conf defined by clamav-updater module if enabled 2016-03-04 02:26:44 +01:00
joachifm
4bea06636a Merge pull request #13636 from mpscholten/undmg2
undmg: init at 1.0.0
2016-03-03 23:55:31 +00:00
Arseniy Seroka
a40322613e Merge pull request #13564 from valeriangalliat/nix-prefetch-scripts/explicit-nix-dependency
nix-prefetch-scripts: explicitly depend on Nix
2016-03-03 23:39:50 +03:00
zimbatm
5f4417e0cf pythonPackages.acme_0_1: init at 0.1.0
`acme_0_1` is introduced because `simp_le` strictly depends on version 0.1.0
of the library (which is now at 0.4.0).
2016-03-03 18:47:02 +00:00
Marc Scholten
8b5b57fb96 undmg: init at 1.0.2 2016-03-03 18:08:48 +01:00
Robin Gloster
84cc00b403 ceph: possible fix for zip timestamps 2016-03-03 16:55:17 +00:00
Robin Gloster
fed49425c5 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-03-03 16:11:55 +00:00
joachifm
950424f9fd Merge pull request #13638 from romildo/update.xsettingsd
xsettingsd: 0.0.1 -> git-2015-06-14
2016-03-03 15:16:06 +00:00
José Romildo Malaquias
6cf907ba09 xsettingsd: 0.0.1 -> git-2015-06-14 2016-03-03 11:58:55 -03:00
joachifm
1b1379a68d Merge pull request #13531 from magnetophon/connman-dmenu-master
connman-dmenu: init at git-29-9-2015
2016-03-03 13:07:44 +00:00
Nikolay Amiantov
f442830c55 libreswan: specify that we don't support parallel building 2016-03-02 18:56:32 +03:00
Nikolay Amiantov
23dd97ee88 Merge commit 'refs/pull/13412/head' of git://github.com/NixOS/nixpkgs 2016-03-02 18:56:24 +03:00
Marius Bakke
c5f177cb5d dnscrypt-proxy: 1.6.0 -> 1.6.1 2016-03-02 15:12:06 +00:00
Alex Franchuk
69d8cb4a6b libreswan: add package and service to nixos 2016-03-02 09:44:30 -05:00
Robin Gloster
33f7d0b3f6 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-03-01 22:46:39 +00:00
Robin Gloster
2f7e9f26d8 gummiboot: disable stackprotector hardening 2016-03-01 22:21:21 +00:00
Robin Gloster
a12ecfc405 refind: disable stackprotector hardening 2016-03-01 22:21:08 +00:00
Eelco Dolstra
cc71804ab0 openssh: Fix build 2016-03-01 22:25:17 +01:00
Aneesh Agrawal
7f8d50b443 openssh: 7.1p2 -> 7.2p1 2016-03-01 22:25:16 +01:00
Robin Gloster
d47857c3d9 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-03-01 21:09:17 +00:00
joachifm
d917b4975c Merge pull request #13478 from sheenobu/clamav
clamav: 0.98.7 -> 0.99
2016-03-01 03:44:23 +00:00
Valérian Galliat
269d0864b5 nix-prefetch-scripts: explicitly depend on Nix
Otherwise, a call to, for example, nix-prefetch-git, in a nix-shell --pure or
nix-build phase would result in an error such as:

    Switched to a new branch 'fetchgit'
    removing `.git'...
    /nix/store/7qvjji7kbd033nsyxlpiiiam61a44yz9-nix-prefetch-git/bin/.nix-prefetch-git-wrapped: line 374: nix-hash: command not found
2016-02-29 18:38:59 -05:00
Pascal Wittmann
5a0dbaabad parallel: 20160122 -> 20160222 2016-02-29 23:35:32 +01:00
Pascal Wittmann
5ba31560d5 pdf2djvu: 0.9.3 -> 0.9.4 2016-02-29 23:35:32 +01:00
zimbatm
4704b81e8a Merge pull request #13467 from zimbatm/letsencrypt-0.4.0
letsencrypt: 0.1.0 -> 0.4.0
2016-02-29 11:02:43 +00:00
Robin Gloster
3b4765c9e5 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-02-28 16:32:57 +00:00
Ozan Sener
3a6b06f1be wring: init at 1.0.0 2016-02-28 18:05:56 +02:00
Thomas Tuegel
ab746ec902 ibus: consolidate wrappers 2016-02-28 09:30:09 -06:00
Thomas Tuegel
41204574be ibus-m17n: use Python 3 2016-02-28 07:12:55 -06:00
Thomas Tuegel
3a8a887cfd ibus-with-plugins: replace ibus wrappers 2016-02-28 07:12:55 -06:00
zimbatm
69ce5cb656 use the sourceforge mirrors everywhere
find pkgs -name "*.nix" -exec sed -r \
    "s|https?://downloads.sourceforge.net/|mirror://sourceforge/|g" -i {} \;
2016-02-28 12:07:42 +00:00
Franz Pletz
b871649530 quicktun: init at 2.2.4 2016-02-28 12:23:12 +01:00
Domen Kožar
67b9053d29 Merge pull request #13530 from danielfullmer/zerotier-fix
zerotierone: hardcoded path fix
2016-02-28 10:20:04 +00:00
Bart Brouns
8fa1fb4920 connman-dmenu: init at git-29-9-2015
fix indentation
2016-02-28 05:18:35 +01:00
Daniel Fullmer
110dfca988 zerotierone: hardcoded path fix
New code in zerotier broke the previous substitution where we refer to
the correct path for "ip".
2016-02-27 22:13:41 -05:00
rnhmjoj
838379f117 bdf2psf: 1.134 -> 1.137 2016-02-28 02:56:22 +01:00
zimbatm
6a518e51dd Merge pull request #13475 from rimmington/collectd-no-mysql
collectd: allow mysql to be null
2016-02-27 22:24:57 +00:00
Arseniy Seroka
824a1fb5b9 Merge pull request #13496 from zimbatm/no-dots-at-end-of-description
Remove all dots at end of descriptions
2016-02-27 21:34:06 +03:00
Franz Pletz
0a9076b5f8 socat: 2.0.0-b8 -> 2.0.0-b9 (CVE-2016-2217)
https://lwn.net/Vulnerabilities/674840/

http://www.dest-unreach.org/socat/contrib/socat-secadv7.html
http://www.dest-unreach.org/socat/contrib/socat-secadv8.html
2016-02-27 19:10:38 +01:00
Franz Pletz
88d1564985 socat: 1.7.3.0 -> 1.7.3.1 (CVE-2016-2217)
https://lwn.net/Vulnerabilities/674840/

http://www.dest-unreach.org/socat/contrib/socat-secadv7.html
http://www.dest-unreach.org/socat/contrib/socat-secadv8.html
2016-02-27 19:10:38 +01:00
zimbatm
17348dc094 Remove all dots at end of descriptions
Specially crafted for @JagaJaga

    find pkgs -name "*.nix" -exec \
      sed -e 's|\(description.*\)\.";|\1";|g' -i {} \;
2016-02-27 17:30:29 +00:00