Commit Graph

9485 Commits

Author SHA1 Message Date
Aristid Breitkreuz
a84d20a351 Merge pull request #17010 from mimadrid/update/ethtool-4.6
ethtool: 4.5 -> 4.6
2016-07-16 20:35:25 +02:00
Benno Fünfstück
5e5165ec6f platinum-searcher: 2.1.1 -> 2.1.3 2016-07-16 17:07:14 +02:00
Kranium Gikos Mendoza
16cc4dd3a3 vtun: add debian gcc5 fix 2016-07-16 21:07:21 +08:00
mimadrid
018f4eb164
ethtool: 4.5 -> 4.6 2016-07-16 15:04:31 +02:00
Joachim F
ed50ef318b Merge pull request #15848 from matthewbauer/packagekit
Add in PackageKit
2016-07-16 13:29:08 +02:00
Joachim F
0fdd630965 Merge pull request #16726 from womfoo/bump/proxychains-4.2.0
proxychains: 4.0.1-head -> 4.2.0
2016-07-16 13:19:26 +02:00
Rickard Nilsson
4f8f1c30cb openssh: Use the default privilege separation dir (/var/empty)
(This is a rewritten version of the reverted commit
a927709a35, that disables the creation of
/var/empty during build so that sandboxed builds also works. For more
context, see https://github.com/NixOS/nixpkgs/pull/16966)

If running NixOS inside a container where the host's root-owned files
and directories have been mapped to some other uid (like nobody), the
ssh daemon fails to start, producing this error message:

fatal: /nix/store/...-openssh-7.2p2/empty must be owned by root and not group or world-writable.

The reason for this is that when openssh is built, we explicitly set
`--with-privsep-path=$out/empty`. This commit removes that flag which
causes the default directory /var/empty to be used instead. Since NixOS'
activation script correctly sets up that directory, the ssh daemon now
also works within containers that have a non-root-owned nix store.
2016-07-16 10:15:58 +02:00
mimadrid
8856cfa619
xarchiver: 0.5.4 -> 0.5.4.6 2016-07-15 18:23:26 +02:00
Frederik Rietdijk
2e986016d0 Merge pull request #16946 from phanimahesh/fix-16198
Fix typo: s/propogate/propagate/
2016-07-15 15:00:01 +02:00
Bjørn Forsman
2ad0a84751 Revert "openssh: Use the default privilege separation dir (/var/empty)"
This reverts commit a927709a35 because it
doesn't build:

$ nix-build -A openssh
...
mkdir /nix/store/yl2xap8n1by3dqxgc4rmrc4s753676a3-openssh-7.2p2/libexec
(umask 022 ; ./mkinstalldirs /var/empty)
mkdir /var
mkdir: cannot create directory '/var': Permission denied
mkdir /var/empty
mkdir: cannot create directory '/var/empty': No such file or directory
make: *** [Makefile:304: install-files] Error 1
builder for ‘/nix/store/ifygp4mqpv7l8cgp0njp8w7lmrl6brpp-openssh-7.2p2.drv’ failed with exit code 2
2016-07-15 12:42:37 +02:00
Frederik Rietdijk
81d798bc36 Merge pull request #16463 from FRidh/secp
secp256k1: init (native lib, and python ffi bindings at 0.12.1)
2016-07-15 12:23:20 +02:00
Rickard Nilsson
a927709a35 openssh: Use the default privilege separation dir (/var/empty)
If running NixOS inside a container where the host's root-owned files
and directories have been mapped to some other uid (like nobody), the
ssh daemon fails to start, producing this error message:

fatal: /nix/store/...-openssh-7.2p2/empty must be owned by root and not group or world-writable.

The reason for this is that when openssh is built, we explicitly set
`--with-privsep-path=$out/empty`. This commit removes that flag which
causes the default directory /var/empty to be used instead. Since NixOS'
activation script correctly sets up that directory, the ssh daemon now
also works within containers that have a non-root-owned nix store.
2016-07-14 20:54:06 +02:00
Arseniy Seroka
4060133812 Merge pull request #16956 from zimbatm/zerotier-1.1.12
zerotierone: 1.1.6 -> 1.1.12
2016-07-14 22:20:18 +04:00
Tobias Geerinckx-Rice
93d0a4d311 Merge pull request #16962 from womfoo/bump/stress-ng-0.06.11
stress-ng: 0.06.01 -> 0.06.11
2016-07-14 19:41:05 +02:00
Kranium Gikos Mendoza
121a8c0646 stress-ng: 0.06.01 -> 0.06.11 2016-07-15 00:06:54 +08:00
Kranium Gikos Mendoza
9aee153f2b zerofree: 1.0.3 -> 1.0.4 2016-07-14 15:43:09 +02:00
zimbatm
dc6306a69d zerotierone: 1.1.6 -> 1.1.12 2016-07-14 14:02:54 +01:00
Vladimír Čunát
1b5ac05845 Merge branch 'staging'
Includes security fixes in gd and libarchive.
2016-07-14 15:51:28 +02:00
J Phani Mahesh
ac19f09122 wicd: propogatedBuildInputs -> propagatedBuildInputs 2016-07-14 17:23:06 +05:30
J Phani Mahesh
79312dc614 xflux-gui: propogatedBuildInputs -> propagatedBuildInputs 2016-07-14 15:53:09 +05:30
Ioannis Koutras
d861911263 ocproxy: init at 1.50 2016-07-13 17:15:23 +03:00
Gabriel Ebner
70e2438530 Merge pull request #16913 from womfoo/init/mc-4.8.17
mc: 4.8.16 -> 4.8.17
2016-07-13 13:44:13 +02:00
Robert Helgesson
c9b9619636 nethogs: 0.8.1 -> 0.8.5 2016-07-13 13:17:24 +02:00
Kranium Gikos Mendoza
12effae5b6 mc: 4.8.16 -> 4.8.17 2016-07-13 18:52:31 +08:00
Arseniy Seroka
a7f87bd518 Merge pull request #16904 from womfoo/fix-bump/smbldaptools-0.9.11
smbldaptools: 0.9.10 -> 0.9.11
2016-07-13 14:52:07 +04:00
Ioannis Koutras
a3e6044e9c biber: 2.4 -> 2.5 2016-07-13 10:53:12 +03:00
Kranium Gikos Mendoza
d5e70a2adc smbldaptools: 0.9.10 -> 0.9.11 2016-07-13 09:01:25 +08:00
Vladimír Čunát
40785f0dac Merge branch 'master' into staging
Hydra nixpkgs: ?compare=1282763
2016-07-12 22:00:10 +02:00
joachifm
3df7f3cbc3 Merge pull request #16831 from womfoo/fix-bump/gtkgnutella-1.1.9
gtk-gnutella: fix build and 1.1.5 -> 1.1.9
2016-07-12 16:21:36 +02:00
joachifm
7135dfd541 Merge pull request #16836 from brainrape/update-youtube-dl
youtube-dl: 2016.07.03.1 -> 2016.07.09.2
2016-07-12 16:21:26 +02:00
joachifm
03a7fa9104 Merge pull request #16840 from womfoo/bump/leatherman-0.7.5-facter-3.1.8
Bump leatherman: 0.7.0 -> 0.7.5 and sole dependency facter 3.1.6 -> 3.1.8
2016-07-12 16:20:51 +02:00
joachifm
7a54a71c9e Merge pull request #16808 from 4z3/urlwatch
urlwatch: 2.1 -> 2.2
2016-07-12 16:20:17 +02:00
Gabriel Ebner
51e1b2508c Merge pull request #16878 from womfoo/bump/siege-4.0.2
siege: 4.0.1 -> 4.0.2
2016-07-12 08:23:15 +02:00
Kranium Gikos Mendoza
e54223e8bb siege: 4.0.1 -> 4.0.2 2016-07-12 13:31:31 +08:00
Scott Stevenson
8c81c234d3 rcm: 1.2.3 -> 1.3.0 (#16847) 2016-07-11 18:11:31 +02:00
Eric Sagnes
1349cd4e8d fcitx: refactor (#16858) 2016-07-11 17:50:22 +02:00
Domen Kožar
5789f5875f nix-repl: 2015-09-07 -> 2016-02-28 2016-07-11 14:00:28 +02:00
Gabriel Ebner
ad41b8fa19 mu: fix build of webkit support and re-enable it 2016-07-11 10:37:31 +02:00
Jookia
ba2232f1f2 srelay: init at 0.4.8b6 (#16833) 2016-07-11 03:41:02 +02:00
Kranium Gikos Mendoza
356b3ae546 facter: 3.1.6 -> 3.1.8 2016-07-10 23:37:05 +08:00
Márton Boros
129c17b222 youtube-dl: 2016.07.03.1 -> 2016.07.09.2 2016-07-10 12:58:10 +02:00
Carl Sverre
0e6fbf83f8 sift: fix hydra build fail (#16820)
For some reason I haven't been able to figure out, sift does not build on OSX.
I think it is because sift uses cgo for some of its functionality which you can
see here:
https://github.com/svent/sift/blob/master/matching_cgo.go#L23

The error which hydra found (and is reproducible on OSX) can be seen here:
https://hydra.nixos.org/build/37169149

Ideally I would like to get sift building on OSX, however my nix-fu is weak.
Any suggestions are welcome.  In the meantime I would like to get sift into one
of the release channels for Linux where it works fine.
2016-07-10 11:17:47 +02:00
Franz Pletz
bdf4c0d21f ntp: 4.2.8p6 -> 4.2.8p8 (security)
Fixes CVE-2016-4953, CVE-2016-4954, CVE-2016-4955, CVE-2016-4956.
2016-07-10 10:48:11 +02:00
Franz Pletz
033e593a4f dnsmasq: 2.75 -> 2.76 (security)
Fixes CVE-2015-8899.
2016-07-10 10:48:10 +02:00
Franz Pletz
b8ecb949e6 haproxy: 1.6.5 -> 1.6.6 (security)
Fixes at least CVE-2016-5360.
2016-07-10 10:46:22 +02:00
Franz Pletz
f1f6dc9b87 shadowsocks-libev: polarssl is now called mbedtls 2016-07-10 10:26:14 +02:00
Kranium Gikos Mendoza
f854c7d4f4 gtk-gnutella: 1.1.5 -> 1.1.9 2016-07-10 11:21:28 +08:00
Robert Helgesson
18a91ddfb6 cloc: 1.68 -> 1.70 2016-07-09 22:51:12 +02:00
Robert Helgesson
8a82798f97 autorandr: avoid use of xxd
Use the Python fallback instead of bringing in a dependency on Vim.
2016-07-09 22:40:34 +02:00
Graham Christensen
7bd2052436 autorandr: 4f5e2401ef -> 20150127
wertarbyte has allowed his project to languish, and phillipberdt
has taken it over and is merging pull requests
2016-07-09 22:19:32 +02:00
Alexey Shmalko
a5ee403f5b alarm-clock-applet: use default method for propagating gstreamer (#16786) 2016-07-09 18:36:04 +02:00
Vladimír Čunát
95a9fa0ba0 Merge branch 'master' into staging 2016-07-09 16:49:48 +02:00
Daiderd Jordan
b7c134358d coreutils: use symlinks instead of shell wrapper 2016-07-09 16:47:54 +02:00
Matthias Beyer
340a5d6fbf openvpn: 2.3.10 -> 2.3.11
Taken from #15856.
2016-07-09 15:04:55 +02:00
Ram Kromberg
781cd33f3b glmark2: 2014.03 -> 2015-06-11 (#16812) 2016-07-09 14:50:24 +02:00
Miguel Madrid
57e1a6c48d traceroute: 2.0.21 -> 2.1.0 (#16809) 2016-07-09 14:40:14 +02:00
Robert Helgesson
02600dacf8 brasero: depend on hicolor_icon_theme
This avoids conflicts on `share/icons/hicolor/icon-theme.cache`.
2016-07-09 13:04:32 +02:00
tv
93b246287b urlwatch: 2.1 -> 2.2 2016-07-09 12:16:30 +02:00
Tobias Geerinckx-Rice
599cf0fe50
zstd: 0.7.2 -> 0.7.3
New:
- compression format specification zstd_compression_format.md
- -- separator, stating that all following arguments are file names
- ZSTD_getDecompressedSize()

Fixes:
- dictBuilder using HC levels
- legacy support from ZSTD_decompress_usingDDict()
- multi-blocks decoding with intermediate uncompressed blocks
2016-07-08 22:09:43 +02:00
Tobias Geerinckx-Rice
3970c6da5e
borgbackup: 1.0.4 -> 1.0.5
This update slipped in between 1.0.4 and me pushing 276448a. Upstream says:

This is a critical bugfix release - upgrading to it is strongly recommended!
Please read https://github.com/borgbackup/borg/blob/1.0.5/docs/changes.rst.
2016-07-08 20:52:39 +02:00
Tobias Geerinckx-Rice
276448a477
borgbackup: 1.0.3 -> 1.0.4
Take Pypi's hint and switch to GitHub.
2016-07-08 20:39:46 +02:00
Ram Kromberg
5abd5603ed lzfse: init at 2016-06-21 2016-07-08 13:09:16 +03:00
Tuomas Tynkkynen
9e6aac9cb0 bandwidth: 1.2.0 -> 1.3.1 2016-07-08 03:27:07 +03:00
Miguel Madrid
746de51073 unrar: 5.3.11 -> 5.4.2 2016-07-07 19:13:26 +02:00
Tobias Geerinckx-Rice
ce5c51b406
dpkg: 1.18.8 -> 1.18.9 2016-07-06 19:42:45 +02:00
Tobias Geerinckx-Rice
12c055240d
dpkg: 1.18.7 -> 1.18.8 2016-07-06 15:56:33 +02:00
Tuomas Tynkkynen
3d5a41fc75 Merge pull request #16732 from RamKromberg/fix/icoutils-issue-15894
icoutils: perl dependencies added #15894
2016-07-06 13:17:20 +03:00
Ram Kromberg
3d316da103 icoutils: perl dependencies added #15894 2016-07-06 06:48:51 +03:00
Tuomas Tynkkynen
e12f789cef sng: 1.0.6 -> 1.1.0 2016-07-06 01:18:46 +03:00
Matthew Bauer
10fb846989 packagekit: add myself as maintainer 2016-07-05 20:27:28 +00:00
Matthew Bauer
4e50880c82 packagekit: add latest from hughsie's github repo
- currently pulled in from Git until the next release of PackageKit
  has Nix support
- also: add in a service module to start packagekit properly
- nixos service can be enabled via services.packagekit.enable
- packagekit requires nixunstable to build properly
2016-07-05 20:26:59 +00:00
Kranium Gikos Mendoza
796ced26aa proxychains: 4.0.1-head -> 4.2.0 2016-07-05 19:24:21 +08:00
Tobias Geerinckx-Rice
0385abbc70
di: 4.37 -> 4.42; trim meta.description 2016-07-05 09:29:42 +02:00
Tuomas Tynkkynen
daddf89e4f Merge pull request #16709 from vrthra/bdf2psf
bdf2psf: 1.137 -> 1.146
2016-07-05 03:23:52 +03:00
Joachim Fasting
966c75ef0c
evemu: add meta.platforms 2016-07-05 00:54:12 +02:00
Lancelot SIX
3e1f746e28 Merge pull request #16694 from mimadrid/update/youtube_dl-2016.07.03.1
youtube-dl: 2016.06.27 -> 2016.07.03.1

`mps-youtube` is the only package that fails in `nox-review`, but this wat true before this merge. I have tested the updated result of `youtube-dl`. All fine for me.
2016-07-04 22:07:44 +02:00
Rahul Gopinath
9f0330d94b bdf2psf: 1.137 -> 1.146 2016-07-04 10:37:57 -07:00
Rahul Gopinath
40896e5074 xorriso: 1.4.2 -> 1.4.4 2016-07-04 17:31:17 +02:00
Arseniy Seroka
dc0c01f929 Merge pull request #16688 from vrthra/mailutils
mailutils: fix build break
2016-07-04 18:01:47 +03:00
Damien Cassou
0b80e03904 evemu: 2.0.0 -> 2.4.0 2016-07-04 15:19:03 +02:00
Frederik Rietdijk
ae0fa4d980 Merge pull request #16700 from madjar/bump-nox
nox: update to 0.0.4
2016-07-04 13:51:02 +02:00
zimbatm
cec48bfa74 direnv: fix path to bash 2016-07-04 12:46:32 +01:00
Georges Dubus
a865e34f51 nox: update to 0.0.4 2016-07-04 13:40:40 +02:00
mimadrid
aaa023c858
youtube-dl: 2016.06.27 -> 2016.07.03.1 2016-07-04 11:41:15 +02:00
Tobias Geerinckx-Rice
99c89f867d
debian-devscripts: 2.16.5 -> 2.16.6 2016-07-04 10:52:51 +02:00
Rahul Gopinath
27a9ef8709 mailutils: fix build break
See #14606 for the breakage. It is fixed by using default guile 2.0
Also addes support for fribidi, sasl, and gssapi
2016-07-03 22:50:39 -07:00
Joachim Fasting
29ae5a10fb Merge pull request #16669 from rasendubi/alarm-clock-applet
alarm-clock-applet: fix finding gstreamer plugins and gconf at runtime
2016-07-03 23:18:25 +02:00
Tobias Geerinckx-Rice
11ce7e0cfd
zstd: 0.7.1 -> 0.7.2
Fixes:
- ZSTD_decompressBlock() using multiple consecutive blocks.
- potential segfault on very large files (many gigabytes).
- CLI displays system error message when destination file
  cannot be created.
- potential leak in zdict.
2016-07-03 21:19:15 +02:00
zimbatm
17d6abb771 Merge pull request #16676 from mpscholten/maphosts2
maphosts: Don't provide bundler anymore
2016-07-03 18:10:33 +01:00
Marc Scholten
a11f780274 maphosts: Don't provide bundler anymore 2016-07-03 17:59:23 +02:00
zimbatm
8346e72a22 direnv: 2.8.0 -> 2.9.0 2016-07-03 16:56:18 +01:00
Alexey Shmalko
2d992c2afa
alarm-clock-applet: fix finding gstreamer plugins and gconf at runtime 2016-07-03 00:21:03 +03:00
Joachim Fasting
24b3fa1ae6 Merge pull request #16560 from vrthra/dvtm-customize
dvtm: allow user configuration
2016-07-02 14:10:26 +02:00
Joachim Fasting
648ae736f0 Merge pull request #16593 from womfoo/init/pick-1.4.0
pick: init at 1.4.0
2016-07-02 14:05:56 +02:00
Joachim Fasting
291c454d5e Merge pull request #16594 from mpscholten/maphosts2
maphosts: init at 1.1.1
2016-07-02 14:05:09 +02:00
Joachim Fasting
512745c2a7 Merge pull request #16631 from rasendubi/alarm-clock-applet
alarm-clock-applet: init at 0.3.4
2016-07-02 14:02:57 +02:00
William Casarin
c81b4cde58 clib: 1.4.2 -> 1.7.0 (#16656) 2016-07-02 12:46:57 +02:00
Christian Kauhaus
0c0f068f35
cron: fix crontab(5) and cron job PATH
Switch off HAVE_SAVED_UIDS since it activates a code path for temporary
privilege dropping which does not work on NixOS.

Vixie-cron's sources ship with two implementations. Unfortunately, the
one activated by HAVE_SAVED_UIDS (using setuid()) does not work on
NixOS. Saved UIDs work only if the program which is using them has the
setuid bit set on its own executable, not if called from a setuid
wrapper (as we do it in NixOS). The other implementation (using
setreuid()) works without problems.

Quote from
<http://stackoverflow.com/questions/8499296/realuid-saved-uid-effective-uid-whats-going-on>:

    If you're euid is root and you change the uid, the privileges gets
    dropped permanently.If effective user id is not root then saved user
    id is never touched and you can regain the root privilege back
    anytime you want in your program.

Also extend the default PATH with NixOS-specific bin directories as
vixie-cron's default is not really usable on NixOS.

Re #16518

Closes #16522
2016-07-02 00:09:07 +02:00
artuuge
83fd63995a cpp_ethereum: init at 1.2.9
jsoncpp: 1.6.5 -> 1.7.2
libjson_rpc_cpp: 0.2.1 -> 0.6.0
argtable: init at 3.0.1
libcpuid: init at 0.2.2
2016-07-01 19:14:00 +02:00
Alexey Shmalko
9ba48ecb38
alarm-clock-applet: init at 0.3.4
There were a couple of issue before the application run normally.

The first one is GConf error:
https://nixos.org/wiki/Solve_GConf_errors_when_running_GNOME_applications

The second one is absence of gst plugins:
https://github.com/NixOS/nixpkgs/issues/10559
2016-07-01 03:06:50 +03:00