Commit Graph

17762 Commits

Author SHA1 Message Date
TredwellGit
c0b2ac9b7a linux: 4.4.299 -> 4.4.300 2022-01-27 11:47:56 +00:00
TredwellGit
e0781196f7 linux: 4.19.225 -> 4.19.226 2022-01-27 11:47:50 +00:00
TredwellGit
388633adc5 linux: 4.14.262 -> 4.14.263 2022-01-27 11:47:44 +00:00
Bobby Rong
943e69118e
Merge pull request #156924 from r-ryantm/auto-update/sssd
sssd: 2.6.2 -> 2.6.3
2022-01-27 12:27:17 +08:00
R. Ryantm
2d67084243 sssd: 2.6.2 -> 2.6.3 2022-01-27 00:04:01 +00:00
Martin Weinelt
b3b17c3885
Merge pull request #156787 from helsinki-systems/drop/racoon 2022-01-26 23:30:20 +01:00
Felix Buehler
09e3b7a570 treewide: remove all updateWalker/downloadURLRegexp 2022-01-26 21:46:08 +01:00
Felix Buehler
ed7bf9452c treewide: remove *.upstream files from updateWalker 2022-01-26 21:46:07 +01:00
Gregor Pogacnik
a86365b055 linux: upgrade hardened kernel (CVE-2022-0185)
5.4.172 -> 5.4.173, 5.10.92 -> 5.10.93, 5.15.15 -> 5.15.16
2022-01-26 16:20:37 +00:00
Sandro
7d739f013f
Merge pull request #151432 from Atemu/update/linux_lqx 2022-01-26 14:45:41 +01:00
Binary-Eater
ebc3be413c
nvidia-x11: add GNU which to buildInputs (#156203)
This enables the runfile to successfully uncompress and extract without
having to fallback to "unpackManually" in "builder.sh"
2022-01-26 04:23:20 -05:00
Nikolay Amiantov
d15130584f dpdk: move libbsd to propagated inputs
It is required in pkgconfig file.
2022-01-26 03:29:10 +03:00
Nikolay Amiantov
5ab992b43a dpdk: wrap python scripts 2022-01-26 03:29:10 +03:00
ajs124
b5f5cc6d44 ipsecTools: drop 2022-01-26 01:11:48 +01:00
Jonathan Ringer
e74ccf2d72
Merge pull request #154708 from NixOS/staging-next
Staging next 2022-01-12
2022-01-25 11:54:52 -08:00
Ben Siraphob
4aa14a8cdd
Merge pull request #155077 from devins2518/diskdev_cmds
darwin.diskdev_cmds: fix build on m1 by bumping xnu version
2022-01-25 12:14:20 -06:00
Atemu
155ea72476 linux_lqx: 5.15.16-lqx1 -> 5.15.16-lqx2 2022-01-25 18:09:40 +01:00
Martin Weinelt
48f17360d9 Merge remote-tracking branch 'origin/master' into staging-next 2022-01-25 15:53:19 +01:00
ajs124
b05d2077eb
Merge pull request #156395 from helsinki-systems/upd/ima-evm-utils
ima-evm-utils: 1.1 -> 1.4
2022-01-25 15:01:05 +01:00
Linus Heckemann
d6695c4046
Merge pull request #151919 from lheckemann/gt
gt: init at 2021-09-30
2022-01-25 14:35:37 +01:00
github-actions[bot]
86301be1a5
Merge master into staging-next 2022-01-25 12:01:13 +00:00
Jörg Thalheim
9ac39c9be8
Merge pull request #156208 from jonringer/fix-sgx
sgx-sdk: fix build
2022-01-25 07:49:11 +01:00
Jonathan Ringer
8d530c676a
sgx-sdk: fix build 2022-01-24 19:16:05 -08:00
ajs124
3ba3702e62 ima-evm-utils: 1.1 -> 1.4 2022-01-25 02:24:03 +01:00
github-actions[bot]
bbbd0a92af
Merge master into staging-next 2022-01-25 00:02:13 +00:00
Guillaume Girol
1b1fe46bb1
Merge pull request #156314 from B4dM4n/nixos-tests-missing
nixos/tests: add missing tests
2022-01-24 19:32:15 +00:00
Linus Heckemann
339a63abbe gt: init at 2021-09-30 2022-01-24 19:47:03 +01:00
github-actions[bot]
a45818989a
Merge master into staging-next 2022-01-24 18:01:03 +00:00
Alyssa Ross
2f14e11f3a cryptsetup: don't look at targetPlatform
targetPlatform refers to the platform the program being compiled will
produce binaries for, which only makes sense for things like
compilers, not cryptsetup.  The correct platform to look at to check
static support is hostPlatform, which refers to the architecture the
program being compiled will run on.
2022-01-24 15:11:46 +01:00
Yurii Matsiuk
4c8a08d231
tuigreet: 0.7.1 -> 0.7.2 2022-01-24 14:40:02 +01:00
github-actions[bot]
6fee71d339
Merge master into staging-next 2022-01-24 12:01:16 +00:00
Patrick Hilhorst
4ed7bed68d
Merge branch 'master' into nixos-tests-missing 2022-01-24 12:05:30 +01:00
Linus Heckemann
6fcdb32754
Merge pull request #156304 from lheckemann/rtl8189es
linuxPackages.rtl8189es: init at 2020-10-03
2022-01-24 09:43:29 +01:00
github-actions[bot]
11cced7438
Merge master into staging-next 2022-01-24 00:01:45 +00:00
Fabian Möller
4329d79dba
nixos/tests: link tests to their packages 2022-01-23 21:08:10 +01:00
Felix Bühler
9ea6af42ad
Merge pull request #156178 from Stunkymonkey/treewide-pname-version-7
treewide: rename name to pname&version
2022-01-23 20:48:42 +01:00
Dmitry Kalinkin
d3ec14f6cb
darwin.text_cmds: fix build 2022-01-23 08:18:46 -05:00
Linus Heckemann
1b94b6c8cc rtl8189es: init at 2020-10-03
Co-Authored-By: Linus Heckemann <git@sphalerite.org>
2022-01-23 12:55:16 +01:00
github-actions[bot]
591c66a4e3
Merge master into staging-next 2022-01-23 06:00:56 +00:00
Sandro
626d29f986
Merge pull request #155714 from QuantMint/bump-scons-ffado 2022-01-23 05:22:12 +01:00
Bernardo Meurer
103a25f1f2
Merge pull request #147482 from FlorianFranzen/bluez-experimental
bluez5: add experimental variant
2022-01-23 03:18:41 +00:00
Felix Buehler
027d353491 treewide: rename name to pname&version 2022-01-22 18:13:29 +01:00
Martin Weinelt
1518fb9e18
Merge pull request #156167 from bobby285271/fwupd 2022-01-22 15:32:06 +01:00
Bobby Rong
edf5e394d3
fwupd: fix aarch64 build
The following changes are introduced in 1.5.6 and the plugin_synaptics option no longer exist:

a75ef53eaf

With meson 0.60 the build will fail.
2022-01-22 22:26:57 +08:00
github-actions[bot]
bc45bc6d10
Merge master into staging-next 2022-01-22 06:01:28 +00:00
Jan Tojnar
6631973f45
Merge pull request #155261 from ius/udisks2-cross
udisks: move util-linux to buildInputs
2022-01-22 03:52:43 +01:00
Atemu
dbfea90833 linux-lqx: 5.15.15 -> 5.15.16 2022-01-21 16:14:44 +01:00
github-actions[bot]
69b5682348
Merge master into staging-next 2022-01-21 06:01:27 +00:00
Maximilian Bosch
8858896dde
Merge pull request #155929 from TredwellGit/linux
Kernels 2022-01-20
2022-01-21 01:48:34 +01:00
github-actions[bot]
fc3ddb8979
Merge master into staging-next 2022-01-21 00:01:42 +00:00
TredwellGit
89cc4c1ee6 linux: 5.4.172 -> 5.4.173 2022-01-20 19:29:58 +00:00
TredwellGit
581019ba48 linux: 5.16.1 -> 5.16.2 2022-01-20 19:29:51 +00:00
TredwellGit
fea530a537 linux: 5.15.15 -> 5.15.16 2022-01-20 19:29:44 +00:00
TredwellGit
6c1f8548a2 linux: 5.10.92 -> 5.10.93 2022-01-20 19:29:36 +00:00
Vladimír Čunát
9e07c1de65
wpa_supplicant_gui: fixup build after update in PR #155266 2022-01-20 18:12:47 +01:00
github-actions[bot]
360ff20100
Merge master into staging-next 2022-01-20 06:01:09 +00:00
Sandro
d0169cc94c
Merge pull request #155567 from wentasah/kernelshark-2.1 2022-01-20 03:16:01 +01:00
github-actions[bot]
b74b591fbe
Merge master into staging-next 2022-01-20 00:01:46 +00:00
Andreas Rammhold
31e5b8dc21
Remove myself from maintainers
I don't have time and energy to deal with all of this anymore.
2022-01-20 00:24:52 +01:00
7c6f434c
ddf6a38b15
Merge pull request #155704 from reedriley/firejail
firejail: minor improvements and apparmor support
2022-01-19 22:30:34 +00:00
QuantMint
bcff7661cf ffado: bump scons 2022-01-19 21:02:09 +01:00
Reed Riley
b2445ca613 firejail: add apparmor support 2022-01-19 13:35:19 -05:00
Reed Riley
e0bc22ad7b firejail: improve local profile customization support 2022-01-19 11:14:28 -05:00
Reed Riley
881972bfa6 firejail: remove deprecated flag, see: 4909fa7efc 2022-01-19 10:56:39 -05:00
github-actions[bot]
28abf69ffd
Merge master into staging-next 2022-01-19 12:01:24 +00:00
Sandro
c392f1e9cb
Merge pull request #155606 from SuperSandro2000/Lunarequest/master 2022-01-19 12:37:32 +01:00
nullrequest
eff260aaf2
linux config: enable Landlock LSM 2022-01-19 12:12:03 +01:00
Michal Sojka
73aaf861da kernelshark: 2.0.2 -> 2.1.0 2022-01-19 08:29:25 +01:00
TredwellGit
7c410af47e linux/hardened/patches/5.4: 5.4.171-hardened1 -> 5.4.172-hardened1 2022-01-19 01:35:46 +00:00
TredwellGit
632c0297ce linux/hardened/patches/5.15: 5.15.14-hardened1 -> 5.15.15-hardened1 2022-01-19 01:35:37 +00:00
TredwellGit
7bc3a9ee46 linux/hardened/patches/5.10: 5.10.91-hardened1 -> 5.10.92-hardened1 2022-01-19 01:35:28 +00:00
TredwellGit
3aec9d28ba linux: 5.4.171 -> 5.4.172 2022-01-19 01:34:30 +00:00
TredwellGit
ea3bccf3b8 linux: 5.16 -> 5.16.1 2022-01-19 01:34:23 +00:00
TredwellGit
05ad09bd54 linux: 5.15.14 -> 5.15.15 2022-01-19 01:34:15 +00:00
TredwellGit
0b04210a04 linux: 5.10.91 -> 5.10.92 2022-01-19 01:34:07 +00:00
Devin Singh
c74a7840e2
diskdev_cmds: fix build using arch's xnu source 2022-01-18 06:52:26 -06:00
github-actions[bot]
b456d67c98
Merge master into staging-next 2022-01-18 00:01:41 +00:00
Pavol Rusnak
6c18c013f4
Merge pull request #154348 from Stunkymonkey/treewide-pname-version-5
treewide: rename name to pname&version
2022-01-17 21:05:32 +01:00
Felix Buehler
6cbf83ba01 treewide: rename name to pname&version 2022-01-17 20:52:59 +01:00
Frederik Rietdijk
4d125692e5 Merge master into staging-next 2022-01-17 16:10:06 +01:00
Martin Weinelt
738ff6b30c
wpa_supplicant: 2.9 -> 2.10 2022-01-17 13:42:09 +01:00
Martin Weinelt
90482284fa
hostapd: 2.9 -> 2.10 2022-01-17 13:42:09 +01:00
github-actions[bot]
0eee7ee8c8
Merge master into staging-next 2022-01-17 12:01:25 +00:00
Renaud
0448ee08a4
Merge pull request #153260 from r-ryantm/auto-update/klibc
klibc: 2.0.9 -> 2.0.10
2022-01-17 11:02:38 +01:00
Frederik Rietdijk
afef6d0e81
Merge pull request #154687 from dotlambda/python-alias
python,pythonPackages: make aliases
2022-01-17 09:37:49 +01:00
github-actions[bot]
f0a71fe6f3
Merge master into staging-next 2022-01-17 06:01:22 +00:00
Bobby Rong
9e779f01ca
Merge pull request #155226 from Stunkymonkey/fbterm-refactor
fbterm: refactor
2022-01-17 11:09:55 +08:00
Joerie de Gram
9742335d83 udisks: move util-linux to buildInputs
This fixes cross compilation.
2022-01-16 22:10:00 +01:00
Robert Schütz
d5cceedbd1 python,pythonPackages: make aliases
Since aliases are disallowed in nixpkgs, this makes usage of Python 2
which is EOL more explicit.
2022-01-16 18:39:59 +00:00
github-actions[bot]
d1d6f982a8
Merge master into staging-next 2022-01-16 18:00:59 +00:00
Atemu
ec6f1661c7 linux-lqx: 5.15.12 -> 5.15.15 2022-01-16 18:07:36 +01:00
Felix Buehler
34950c7359 sinit: refactor 2022-01-16 16:23:21 +01:00
Felix Buehler
3051b532d1 fbterm: refactor 2022-01-16 16:15:37 +01:00
github-actions[bot]
0173b359a6
Merge master into staging-next 2022-01-16 12:01:11 +00:00
Jörg Thalheim
5a6a12256d
Merge pull request #154157 from yaxitech/sgx-ssl
sgx-ssl: init at lin_2.15.1_1.1.1l
2022-01-16 06:05:10 +00:00
github-actions[bot]
122cae786e
Merge master into staging-next 2022-01-16 06:01:16 +00:00
Bernardo Meurer
4fa2647449
Merge pull request #154994 from mweinelt/kernel-disable-unpriv-ebpf
linux: enable BPF_UNPRIV_DEFAULT_OFF on 5.10 and later
2022-01-16 00:46:51 +00:00
Bernardo Meurer
00cd3d063c
Merge pull request #154976 from TredwellGit/linux
Kernels 2022-01-14
2022-01-16 00:41:11 +00:00
Martin Weinelt
3ee206291a
linux: enable BPF_UNPRIV_DEFAULT_OFF between 5.10 and 5.15
Disable unprivileged access to BPF syscalls to prevent denial of service
and privilege escalation via

a) potential speculative execution side-channel-attacks on unmitigated
hardware[0]

or

b) unvalidated memory access in ringbuffer helper functions[1].

Fixes: CVE-2021-4204, CVE-2022-23222

[0] https://ebpf.io/summit-2021-slides/eBPF_Summit_2021-Keynote-Daniel_Borkmann-BPF_and_Spectre.pdf
[1] https://www.openwall.com/lists/oss-security/2022/01/13/1
2022-01-15 23:44:19 +01:00
Vincent Haupert
6639cd8c65 sgx-ssl: don't run test app in installCheckPhase
Although we build the test app in SGX simulation mode which does not
require hardware SGX support, SGX SSL fails to initialize on non-Intel
CPUs. This is unexpected (and inconsistent with the `sgx-sdk` sample
code we run in the `installCheckPhase`) and subject to an upstream
issue: https://github.com/intel/intel-sgx-ssl/issues/113

Revert this commit as soon as the issue is resolved by Intel.
2022-01-15 13:08:31 +01:00