JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
264,938 Commits 2 Branches 0 Tags 13 GiB
ec93459db3
Commit Graph

1873 Commits

Author SHA1 Message Date
Maximilian Bosch
ccb3f1c9dd
Merge pull request #105591 from mweinelt/qemu 
qemu: fix CVE-2020-28916
 2020-12-02 21:14:16 +01:00
Sergey Lukjanov
b999879206 docker: 19.03.13 -> 19.03.14 2020-12-01 23:34:59 -08:00
Martin Weinelt
2d55b8def4 containerd: update commit id for version indicator 
I forogt to update the `commit` value in 8884729, which is why this the
version output was wrong:

```
❯ ./result/bin/containerd -v
containerd github.com/containerd/containerd v1.4.3 7ad184331fa3e55e52b890ea95e65ba581ae3429
```

This change corrects it.

```
❯ ./result/bin/containerd -v
containerd github.com/containerd/containerd v1.4.3 269548fa27e0089a8b8278fc4fc781d7f65a939b
```
 2020-12-01 18:55:01 +01:00
Martin Weinelt
8884729f19
containerd: 1.4.2 -> 1.4.3 
Access controls for the shim’s API socket verified that the connecting
process had an effective UID of 0, but did not otherwise restrict
access to the abstract Unix domain socket. This would allow malicious
containers running in the same network namespace as the shim, with an
effective UID of 0 but otherwise reduced privileges, to cause new
processes to be run with elevated privileges.

Fixes: CVE-2020-15257
 2020-12-01 17:10:19 +01:00
Martin Weinelt
c3f268000e
qemu: fix CVE-2020-28916 
While receiving packets via e1000e_write_packet_to_guest an infinite
loop could be triggered if the receive descriptor had a NULL buffer
address.

A privileged guest user could use this to induce a DoS Scenario.

Fixes: CVE-2020-28916
 2020-12-01 16:54:21 +01:00
Sascha Grunert
bd6067cd5d podman: 2.1.0 -> 2.2.0 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-12-01 22:20:11 +10:00
Martin Weinelt
3200eaef74
Merge pull request #105157 from mweinelt/libslirp 
libslirp: fix CVE-2020-29129
 2020-11-30 15:56:09 +01:00
Martin Weinelt
bd3ce46719
qemu: fix CVE-2020-29129, CVE-2020-29130 in vendored libslirp 
Fixes out-of-bounds access in libslirp while processing ARP/NCSI packets.

Fixes: CVE-2020-29129, CVE-2020-29130
 2020-11-28 02:47:44 +01:00
Sandro
1542fd8e8d
Merge pull request #77421 from Shados/xen-build-efi-binaries 2020-11-27 23:49:07 +01:00
Sandro
e6126df5d9
Merge pull request #105132 from r-ryantm/auto-update/containerd 
containerd: 1.4.1 -> 1.4.2
 2020-11-27 13:15:31 +01:00
R. RyanTM
706ed34eb3 containerd: 1.4.1 -> 1.4.2 2020-11-27 10:28:11 +00:00
Sandro
d3badf3b43
Merge pull request #105075 from r-ryantm/auto-update/singularity 
singularity: 3.6.4 -> 3.7.0
 2020-11-26 23:10:50 +01:00
Florian Klink
1cdbdc3278
Merge pull request #104545 from zowoq/runc 
runc: add wrapper for systemd
 2020-11-26 22:16:53 +01:00
R. RyanTM
1b0e3aa842 singularity: 3.6.4 -> 3.7.0 2020-11-26 20:28:31 +00:00
Sandro
3d4e98ea6e
Merge pull request #103466 from CheariX/open-vm-tools-11.2.0 2020-11-25 11:25:26 +01:00
Graham Christensen
bc49a0815a
utillinux: rename to util-linux 2020-11-24 12:42:06 -05:00
Sascha Grunert
52271f44b1 crun: 0.15.1 -> 0.16 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-11-24 19:35:46 +10:00
zowoq
50e24b8e0a runc: add wrapper for procps, systemd 
for cgroupsv2 it needs `busctl` and `systemctl` in its PATH.
 2020-11-23 08:46:34 +10:00
zowoq
a82d8ca64d runc: add docker to passthru.tests 2020-11-23 08:43:08 +10:00
zowoq
cdf6ffdf2e docker: add passthru.tests 2020-11-23 08:43:08 +10:00
zowoq
fe78178e09 containerd: add passthru.tests 2020-11-23 08:43:08 +10:00
zowoq
90bb6fbb24 singularity: drop unneeded removeReferencesTo 2020-11-18 08:13:34 +10:00
zowoq
33822cb12f docker: drop redundant removeReferencesTo 2020-11-18 08:13:34 +10:00
Oleksii Filonenko
512c3c0a05 maintainers: rename filalex77 -> Br1ght0ne 2020-11-17 13:09:31 +02:00
Austin Seipp
a83e5c4245
firecracker: 0.22.0 -> 0.23.0 
Closes #102789.

Signed-off-by: Austin Seipp <aseipp@pobox.com>
 2020-11-15 21:28:29 -06:00
Christian Mainka
44e2d0d402 open-vm-tools: 11.1.5 -> 11.2.0 2020-11-11 16:22:41 +01:00
Alexander Bich
fae02c06b8 ocaml-libvirt: 0.6.1.4.2017-11-08-unstable -> 0.6.1.5 2020-11-10 05:57:39 +01:00
Maximilian Bosch
50957910fc
Merge pull request #102481 from mweinelt/qemu/cve-2020-27617 
qemu: apply patch for CVE-2020-27617
 2020-11-09 23:51:22 +01:00
Jörg Thalheim
feeda77ec2
Merge pull request #101820 from Chiiruno/dev/looking-glass 
looking-glass-client: B1 -> B2
 2020-11-09 14:43:27 +01:00
Okina Matara
56fb786f82
looking-glass-client: B1 -> B2 2020-11-07 02:41:16 -06:00
markuskowa
b580137d40
Merge pull request #100777 from jbedo/singularity 
singularity: 3.6.3 -> 3.6.4
 2020-11-06 00:13:36 +01:00
Sascha Grunert
d48026dc5b crun: 0.15 -> 0.15.1 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-11-04 08:28:22 +10:00
Phillip Cloud
ea270c00b0
bug: fix libnvidia-container build (#101665) 2020-11-03 13:17:06 +01:00
R. RyanTM
2702aced5e charliecloud: 0.19 -> 0.20 2020-11-02 08:19:19 -08:00
Martin Weinelt
0c54b757e9
qemu: apply patch for CVE-2020-27617 
An assert(3) failure issue was found in the networking helper functions of QEMU. It could occur in the eth_get_gso_type() routine, if a packet does not have a valid networking L3 protocol (ex. IPv4, IPv6) value. A guest user may use this flaw to crash the QEMU process on the host resulting in DoS scenario.

Fixes: CVE-2020-27617
 2020-11-02 14:01:01 +01:00
WORLDofPEACE
f2d8aebe8e
Merge pull request #101493 from Magicloud/vbox6116 
virtualbox: 6.1.14 -> 6.1.16
 2020-10-27 12:37:16 -04:00
Milan Pässler
0dc4ced3eb docker: 19.03.12 -> 19.03.13 
Added libseccomp and pkgconfig inputs to containerd, because 1.3.x requires them.
However containerd 1.2.x and 1.4.x do not.
 2020-10-27 12:48:51 +01:00
R. RyanTM
6a42a70023 open-vm-tools: 11.1.0 -> 11.1.5 2020-10-25 09:39:40 +01:00
Magicloud
e416dc89a1 virtualbox: 6.1.14 -> 6.1.16 
6.1.16 is the latest release of Virtualbox. And it is necessary to have it when using Linux 5.9 kernel.
 2020-10-24 02:53:08 +08:00
Sandro Jäckel
e44cc1404b docker: use upstream repo for containerd 
http://github.com/docker/containerd is archived and redirects to
https://github.com/docker-archive/containerd.

To make updates easier track the upstream repo which Docker uses.
 2020-10-24 00:12:06 +10:00
Josh Holland
802e9ea3a6 open-vm-tools: fix build w/glibc-2.32 2020-10-21 14:21:49 +01:00
Andreas Rammhold
2451796b49
qemu: make ncurses optional for the test runner 
This shaves another 3MB off the closure size of QEMU.
 2020-10-19 17:49:31 +02:00
Andreas Rammhold
e79eed4840
qemu: strip down the features for the test runner 
This allows much faster VM-test based systemd testing as the closure of
qemu suddenly shrinks to reasonable sizes again.
 2020-10-19 17:39:47 +02:00
Justin Bedo
8a788b8587
singularity: 3.6.3 -> 3.6.4 
Important security release addressing CVE-2020-15229.
 2020-10-19 09:11:34 +11:00
R. RyanTM
ffde8a8e1e
seabios: 1.13.0 -> 1.14.0 (#96616) 2020-10-14 11:09:21 +02:00
Julius Marozas
4eae3ac1ec
virt-manager: 2.2.1 -> 3.1.0 2020-10-12 19:54:03 +03:00
Alexei Robyn
22fdd2465c xen: Build Xen EFI binary 2020-10-10 22:09:31 +11:00
Alexei Robyn
6048a3c1f5 xen: Remove unsupported Xen version (4.8) 2020-10-10 22:09:26 +11:00
Maximilian Bosch
1b05fccf81
Merge pull request #99383 from fadenb/virt-manager-qt_fix 
virt-manager-qt: Add patch to rename variables
 2020-10-10 20:28:17 +02:00
Tim Steinbach
9ef0ac8fe9
docker: Remove maintainer nequissimus 2020-10-08 11:00:14 -04:00
Tristan Helmich (omniIT)
643bdb404e virt-manager-qt: Add patch to rename variables 
KDE/krdc@56a0222b51 renamed some
variables resulting in a build failure. The added patch renames the
variables in virt-manager-qt accordingly.
 2020-10-02 12:20:32 +00:00
Maximilian Bosch
fd28991cd7
Merge pull request #98993 from r-ryantm/auto-update/docker-compose 
docker-compose: 1.26.2 -> 1.27.4
 2020-09-30 16:09:58 +02:00
R. RyanTM
b10b4d6947 docker-compose: 1.26.2 -> 1.27.4 2020-09-28 08:00:40 +00:00
zowoq
bbeed7ecf8 podman: 2.1.0 -> 2.1.1 
https://github.com/containers/podman/releases/tag/v2.1.1
 2020-09-26 12:44:38 +10:00
Ryan Mulligan
bb77b5cae7
Merge pull request #98699 from r-ryantm/auto-update/charliecloud 
charliecloud: 0.18 -> 0.19
 2020-09-25 08:45:15 -07:00
Ryan Mulligan
6f6a81c435
Merge pull request #98705 from r-ryantm/auto-update/containerd 
containerd: 1.4.0 -> 1.4.1
 2020-09-25 08:44:26 -07:00
Maximilian Bosch
76dcad0282
Merge pull request #97411 from Magicloud/vbox6114 
virtualbox: 6.1.10 -> 6.1.14
 2020-09-25 15:07:21 +02:00
Maximilian Bosch
579404c4a5
virtualbox: re-add support for virtio 
For some reason the original source tarball for version 6.1.14 didn't
bundle the sources for `virtio`-support causing a build-failure.

After this was reported, a new tarball named
`VirtualBox-6.1.14a.tar.bz2` was published which fixes the issue[1].

[1] https://www.virtualbox.org/ticket/19862
 2020-09-25 12:37:39 +02:00
R. RyanTM
625ba8ed5e containerd: 1.4.0 -> 1.4.1 2020-09-25 03:58:04 +00:00
R. RyanTM
ae421104f8 charliecloud: 0.18 -> 0.19 2020-09-25 02:03:11 +00:00
Sascha Grunert
dcb8c26e43
crun: 0.14.1 -> 0.15 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-09-23 17:19:15 +02:00
Sascha Grunert
5c27f0dd65 podman: 2.0.6 -> 2.1.0 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-09-23 07:10:18 +10:00
Austin Seipp
5a71d9619a
firecracker: 0.21.1 -> 0.22.0 
Signed-off-by: Austin Seipp <aseipp@pobox.com>
 2020-09-21 16:54:48 -05:00
Justin Bedo
efa99abf28
singularity: 3.6.2 -> 3.6.3 2020-09-21 12:07:38 +10:00
Ryan Burns
9d58eb47f2 docker_18_09: fix build 
The cross-compilation patch introduced in
https://github.com/NixOS/nixpkgs/pull/92140
fixes an issue introduced in Docker CE 19.03,
and will not apply to (and is not needed for)
previous versions.
 2020-09-19 20:29:26 -07:00
Sascha Grunert
1e8324291e cri-o: 1.18.3 -> 1.19.0 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-09-17 17:50:57 +10:00
zowoq
d3875340df conmon: 2.0.20 -> 2.0.21 
https://github.com/containers/conmon/releases/tag/v2.0.21
 2020-09-11 06:48:48 +10:00
Magicloud
e1538e43b9 virtualbox: 6.1.10 -> 6.1.14 
6.1.14 is the latest release of Virtualbox.

Also disabled VirtIO since the source tarball does not include necessary source code.
 2020-09-09 19:58:36 +08:00
zowoq
f3623b8435 singularity: use upstream vendor 2020-09-08 16:32:39 +10:00
zowoq
ee0d559dae oci-seccomp-bpf-hook: move to linuxPackages 2020-09-02 20:14:22 +10:00
Sascha Grunert
7bb51c2a60 podman: 2.0.5 -> 2.0.6 
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-09-02 07:33:34 +10:00
Linus Heckemann
bba8571c39
Merge pull request #96538 from Mic92/go-references 
buildGoModule/buildGoPackage: Remove go references from lib,libexec
 2020-08-30 16:44:08 +02:00
Mario Rodas
0c447a3bc0
Merge pull request #96521 from marsam/fix-docker-darwin 
docker: fix build on darwin
 2020-08-28 23:05:56 -05:00
Daniël de Kok
192ed0a00e
Merge pull request #95888 from bzizou/charliecloud18 
charliecloud: 0.12 -> 0.18
 2020-08-28 16:34:57 +02:00
Bruno Bzeznik
1601ff7dd4 charliecloud: 0.12 -> 0.18 (docker + ch-grow support) 2020-08-28 14:39:21 +02:00
Jörg Thalheim
dee0f69844
singularity: remove remove-references-to call 2020-08-28 13:19:12 +01:00
Jörg Thalheim
7aa189970a
docker: simplify remove-references-to 2020-08-28 13:19:11 +01:00
Mario Rodas
7201fac2e7
docker: fix build on darwin 
The directory change to `./go/src/${goPackagePath}` was only executed on
Linux.
 2020-08-28 00:00:00 +00:00
Dmitry Kalinkin
6eae50cca8
Merge pull request #96331 from jbedo/singularity 
singularity: 3.6.1 -> 3.6.2
 2020-08-27 10:17:17 -07:00
Frederik Rietdijk
b61ad0afc2 Merge master into staging-next 2020-08-26 08:42:36 +02:00
Justin Bedo
1b74b520b7
singularity: 3.6.1 -> 3.6.2 2020-08-26 14:12:17 +10:00
zowoq
e6ec21dfa3 podman: 2.0.4 -> 2.0.5 
https://github.com/containers/podman/releases/tag/v2.0.5
 2020-08-26 08:04:49 +10:00
Jonathan Ringer
62f046e902
Merge master into staging-next 2020-08-25 09:16:30 -07:00
Bruno Bzeznik
46f277b3f2
Update pkgs/applications/virtualization/charliecloud/default.nix 
Co-authored-by: Daniël de Kok <me@github.danieldk.eu>
 2020-08-25 09:01:36 +02:00
Frederik Rietdijk
6d122d67fa
Merge pull request #92140 from betaboon/docker-cross-compile-fixes 
Docker cross compile fixes v2
 2020-08-24 12:09:27 +02:00
Mario Rodas
d6128625f0
docker-slim: 1.31.0 -> 1.32.0 2020-08-24 04:20:00 -05:00
zowoq
c449e59e2c runc: add cri-o to passthru.tests 2020-08-24 19:19:41 +10:00
zowoq
bb464f7063 conmon: add cri-o to passthru.tests 2020-08-24 19:19:41 +10:00
zowoq
8dde002724 cri-o: add passthru.tests 2020-08-24 19:19:41 +10:00
zowoq
e148213273 runc: inherit tests 2020-08-24 19:19:41 +10:00
zowoq
304e6037ad podman: inherit tests 2020-08-24 19:19:41 +10:00
zowoq
d809dc5b75 crun: inherit tests 2020-08-24 19:19:41 +10:00
zowoq
1dde18f6c5 conmon: inherit tests 2020-08-24 19:19:41 +10:00
Mario Rodas
58c19bea93
Merge pull request #95957 from r-ryantm/auto-update/containerd 
containerd: 1.2.13 -> 1.4.0
 2020-08-23 20:36:45 -05:00
Arthur Gautier
4e73ee6a53 qemu: adds tpm support 2020-08-23 17:24:38 -07:00
R. RyanTM
a3113478f2 containerd: 1.2.13 -> 1.4.0 2020-08-22 04:48:25 +00:00
Oleksii Filonenko
e0e54d6171
Merge pull request #95884 from marsam/update-docker-slim 
docker-slim: 1.30.0 -> 1.31.0
 2020-08-22 01:34:30 +03:00
Sascha Grunert
e48ddd2270 oci-seccomp-bpf-hook: new at 1.2.0 
Add a new package for the OCI seccomp BPF hook package.

Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-08-21 19:13:50 +10:00
Bruno Bzeznik
d909bb5418 charliecloud: 0.12 -> 0.18 2020-08-21 08:06:48 +02:00
Mario Rodas
fa608f2cbb
docker-slim: 1.30.0 -> 1.31.0 2020-08-20 04:20:00 -05:00