Commit Graph

39306 Commits

Author SHA1 Message Date
Evgeny Egorochkin
60f9005fa7 exiv2: update from 0.23 to 0.24 2014-02-04 21:58:25 +02:00
Evgeny Egorochkin
b98014f7e5 openldap: update from 2.4.35 to 2.4.38 2014-02-04 21:58:25 +02:00
Evgeny Egorochkin
4ca25047d6 libassuan: update from 2.0.3 to 2.1.1 2014-02-04 21:58:25 +02:00
Sander van der Burg
ab60acc1aa nodejs: update packages 2014-02-04 19:04:59 +01:00
Pascal Wittmann
e8b0001268 idris-mode: fixed link to homepage (merge #1671) 2014-02-04 18:56:24 +01:00
Gergely Risko
2c8e492691 Generate hoogle databases beside HTML haddock documentation for Haskell packages 2014-02-04 18:11:57 +01:00
Sander van der Burg
81408168f2 nodejs: fix the patch to make it build on darwin 2014-02-04 18:03:21 +01:00
Vladimír Čunát
cbba3f90da re-merge #1618: use ubuntu module blacklists by default
I'm sorry, previously I merged an outdated reference,
so only the old version of the PR got into master up to now.
2014-02-04 18:02:19 +01:00
Domen Kožar
e1b206b4a9 clarify rename error messages 2014-02-04 16:33:01 +01:00
Sander van der Burg
77451661d4 Updated node packages 2014-02-04 16:21:22 +01:00
Shea Levy
741cc62f75 Force a rebuild.
Sigh.

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-04 08:43:45 -05:00
Shea Levy
5da2c77fbd telepathy-farstream: Bump.
Hopefully fixes the tested job

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-04 07:05:21 -05:00
Nixpkgs Monitor
d2451cbce6 mercurialFull: update from 2.8.2 to 2.9 2014-02-04 10:35:20 +01:00
Lluís Batlle i Rossell
627c82b991 gcc 4.8: no need for the arm eabi patch. 2014-02-04 10:18:27 +01:00
Lluís Batlle i Rossell
2ef5b4ec7c Updating tox/toxic 2014-02-04 10:12:28 +01:00
Lluís Batlle i Rossell
5d8ca218df upx: updating to 3.91. 2014-02-04 10:12:28 +01:00
Shea Levy
bd996abc9c Haskell packages don't mix default.nix and <version>.nix in the same directory
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:56:27 -05:00
Shea Levy
5ac4f3dcf6 llvm: Attempt to fix build on darwin
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:54:25 -05:00
Shea Levy
a2b9ed2eae gummiboot: bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:48:05 -05:00
Shea Levy
608cee44cc kmod: bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:42:04 -05:00
Shea Levy
bc6aa21b05 nodejs: Bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:40:04 -05:00
Shea Levy
41bbe377d3 libspotify: unmaintain
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:38:01 -05:00
Shea Levy
3c9ed5b51a http-parser: Bump
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:37:20 -05:00
Shea Levy
72b5403ee8 edk2/OVMF: Update
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:32:21 -05:00
Shea Levy
dc4c049f3c Remove refind
We never used it in NixOS

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:16:10 -05:00
Shea Levy
eb4e04c24f gcc-4.6: unmaintain
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:14:52 -05:00
Shea Levy
b47609410b ats: unmaintain
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:14:27 -05:00
Shea Levy
9cf29b7039 llvm: Propagate ncurses and zlib
Really shouldn't be needed with shared libs, should patch llvm-config

Fixes #1601

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 18:11:00 -05:00
Eelco Dolstra
34638ebc1e cleanSource: Support Mercurial 2014-02-03 23:44:11 +01:00
Eelco Dolstra
9e7fe29e41 ntpd: Don't answer status queries
Workaround for CVE-2013-5211:

http://support.ntp.org/bin/view/Main/SecurityNotice#DRDoS_Amplification_Attack_using
2014-02-03 23:44:11 +01:00
Eelco Dolstra
d451d12128 ntp: Update to 4.2.6p5 2014-02-03 23:44:11 +01:00
Shea Levy
5e72e36f95 gummiboot-builder.py: Remove old entries before adding new ones
Fixes #1483

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:41:31 -05:00
Karn Kallio
e1b422d348 Update perl CPAN GraphViz package to work with latest graphviz. 2014-02-03 23:30:18 +01:00
Karn Kallio
1739fcf612 pure: The pure interpreter does not now build with llvm 3.4 on linux. 2014-02-03 23:30:18 +01:00
Karn Kallio
b572051882 mlton: fix build with latest version. 2014-02-03 23:30:18 +01:00
Shea Levy
f2210651eb Revert "Hide nodePackages from nix-env"
Now node packages that aren't just programs have a node- prefix in their
names.

This reverts commit 2f11bc495b.

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:28:38 -05:00
Shea Levy
3bec816e0d Update node packages to np2nix 5.5.0
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:23:54 -05:00
Shea Levy
448dc031ed Document EFI installation
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:05:23 -05:00
Shea Levy
d6ef65cb6a Limit livecd label to 11 characters
vfat partition labels can only be 11 characters long

Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 17:05:04 -05:00
Moritz Maxeiner
8e74e1fded Replace the current Yubikey PBA implementation with the previous one.
Rationale:
  * The main reason for choosing to implement the PBA in accordance
    with the Yubico documentation was to prevent a MITM-USB-attack
    successfully recovering the new LUKS key.
  * However, a MITM-USB-attacker can read user id and password when
    they were entered for PBA, which allows him to recover the new
    challenge after the PBA is complete, with which he can challenge
    the Yubikey, decrypt the new AES blob and recover the LUKS key.
  * Additionally, since the Yubikey shared secret is stored in the
    same AES blob, after such an attack not only is the LUKS device
    compromised, the Yubikey is as well, since the shared secret
    has also been recovered by the attacker.
  * Furthermore, with this method an attacker could also bruteforce
    the AES blob, if he has access to the unencrypted device, which
    would again compromise the Yubikey, should he be successful.
  * Finally, with this method, once the LUKS key has been recovered
    once, the encryption is permanently broken, while with the previous
    system, the LUKS key itself it changed at every successful boot,
    so recovering it once will not necessarily result in a permanent
    breakage and will also not compromise the Yubikey itself (since
    its secret is never stored anywhere but on the Yubikey itself).

Summary:
The current implementation opens up up vulnerability to brute-forcing
the AES blob, while retaining the current MITM-USB attack, additionally
making the consequences of this attack permanent and extending it to
the Yubikey itself.
2014-02-03 22:50:17 +01:00
Domen Kožar
e96bc485db retroshare: 0.5.1d -> 0.5.5c 2014-02-03 21:54:45 +01:00
Vladimír Čunát
3fe1656376 libav: bugfix updates for both branches; maintain 2014-02-03 21:43:55 +01:00
Bjørn Forsman
15eed826b6 psqlodbc: update from 8.3 to 9.3 (fixes build) 2014-02-03 21:08:27 +01:00
Shea Levy
b4a9fff1aa Update node packages
Signed-off-by: Shea Levy <shea@shealevy.com>
2014-02-03 14:43:21 -05:00
Peter Simons
c19547ad42 haskell-shelly: update to version 1.4.4 2014-02-03 18:30:02 +01:00
Peter Simons
a2d903d213 haskell-pipes-network: update to version 0.6.2 2014-02-03 18:30:02 +01:00
Peter Simons
dae7d83454 haskell-doctest: update to version 0.9.10.1 2014-02-03 18:30:02 +01:00
Peter Simons
55bcf1bcc5 haskell-atomic-primops: update to version 0.6 2014-02-03 18:30:02 +01:00
Peter Simons
aaa462c4bc haskell-abstract-deque: update to version 0.2.2.1 2014-02-03 18:30:02 +01:00
Karn Kallio
26ea10a775 proofgeneral: fix build with earlier version of texinfo. 2014-02-03 18:26:20 +01:00