Commit graph

100 commits

Author SHA1 Message Date
Matthew Bauer
d453273fbf llvm8: support c++ in cross case
this adds libc++ to the LLVM cross, giving us access to the full
Nixpkgs set. This requires 4 stages of wrapped compilers:

- Clang with no libraries
- Clang with just compiler-rt
- Clang with Libc, and compiler-rt
- Clang with Libc++, Libc, and compiler-rt
2019-04-11 21:28:51 -04:00
Will Dietz
934c6bb7b9 krb5: 1.15.5 -> 1.17
https://web.mit.edu/kerberos/krb5-1.17/

https://web.mit.edu/kerberos/krb5-1.16/krb5-1.16.2.html
https://web.mit.edu/kerberos/krb5-1.16/krb5-1.16.1.html
https://web.mit.edu/kerberos/krb5-1.16/krb5-1.16.html
2019-02-22 01:54:01 -06:00
Will Dietz
5883ef9dc2 krb5: 1.15.2 -> 1.15.5
https://web.mit.edu/kerberos/krb5-1.15/krb5-1.15.3.html
https://web.mit.edu/kerberos/krb5-1.15/krb5-1.15.4.html
https://web.mit.edu/kerberos/krb5-1.15/krb5-1.15.5.html
2019-02-22 01:53:59 -06:00
Jörg Thalheim
b5c1deca8a
treewide: remove wkennington as maintainer
He prefers to contribute to his own nixpkgs fork triton.
Since he is still marked as maintainer in many packages
this leaves the wrong impression he still maintains those.
2019-01-26 10:05:32 +00:00
Kai Wohlfahrt
ade842f51a kerberos: move user binaries to default output
The intention of the previous change was to move krb5-config to .dev (it
gives the locations of headers), but it grabbed all of the user-facing
binaries too. This puts them back.
2018-12-11 13:33:10 +00:00
Jörg Thalheim
3681fa5456
direnv: make cross-compile on windows 2018-11-24 10:43:47 +00:00
Matthew Bauer
ef4d78aded
krb5: don't pull in keyutils with bionic
keyutils breaks with bionic. since it's an optional dependency, it seems safe to just disable it with libkrb5 (which otherwise works fine with bionic libc).
2018-11-03 14:37:18 -05:00
Matthew Bauer
4120a9dda7
Merge pull request #42295 from avnik/libprefixed-to-multioutput/heimdal
Libprefixed to multioutput/heimdal
2018-09-05 13:50:13 -05:00
Dan Peebles
a5b5536e2a krb5: add linux keyring support
This requires some minor hoop-hopping because it's involved in the
Linux bootstrap, but it's nothing too complicated.

Fixes #43289
2018-08-20 02:42:41 +00:00
Alexander V. Nikolaev
5a59d5e131 heimdal: simplify build, keep bin/ in $out 2018-08-08 13:38:40 +03:00
Alexander V. Nikolaev
0a72127d57 heimdal: move "info" to own output 2018-08-08 13:38:40 +03:00
Alexander V. Nikolaev
cb1e30f84b heimdal: refactor lib-prefixed packages to multi-output 2018-08-08 13:38:40 +03:00
Niklas Hambüchen
bc6cfb4750 krb5: Add staticOnly flag 2018-07-21 04:43:50 +02:00
Josef Kemetmüller
020957716e heimdal: Fix darwin build 2018-05-22 18:19:28 +03:00
Josef Kemetmüller
9a100e3e31 heimdal: Fix db include
[dezgeg squashed in to fit the changes introduced in "db: Use more
conventional outputs, also split bin"]
2018-05-22 18:19:28 +03:00
Jan Malakhovski
7438083a4d tree-wide: disable doCheck and doInstallCheck where it fails (the trivial part) 2018-04-25 04:18:46 +00:00
Edward Tjörnhammar
5566bf97e5
libheimdal: 7.4.0 -> 7.5.0
In Heimdal 7.1 through 7.4, remote unauthenticated attackers are able to
crash the KDC by sending a crafted UDP packet containing empty data
fields for client name or realm.

Security: CVE-2017-17439
2018-03-21 21:17:50 +01:00
Ben Gamari
bef09dcca1 krb5: Allow cross-compilation 2018-01-09 11:23:56 -05:00
Vladimír Čunát
c303047032
fetchurl on Darwin: gssSupport = false (see 9b54a00160)
I can't see a better way around the problem for now.
2017-12-21 09:34:44 +01:00
Vladimír Čunát
13e6a5c561
kerberos: split headers into $dev 2017-12-19 15:18:01 +01:00
Vladimír Čunát
3c51628a4c
fetchurl: switch to the usual curl
I verified that krb5 doesn't need yacc in lib-only build,
simplifying the circular-reference cut.
2017-12-19 15:17:52 +01:00
Franz Pletz
8678f14ac9
kerberos: 1.15 -> 1.15.2 for CVE-2017-11462 2017-09-28 14:52:37 +02:00
Jörg Thalheim
0016d925e4 kerberos: store state in /var/lib instead of $out/var 2017-09-12 14:30:18 +01:00
Franz Pletz
a957761abd
libheimdal: 2015-09-13 -> 7.4.0 for CVE-2017-11103
The git snapshot was based on 7.0 which is vulnerable.
2017-08-01 10:26:19 +02:00
tkatchev
6d211110f5 libkrb5: fix issue #16161. 2017-01-19 13:16:46 +03:00
Nikolay Amiantov
f84344ed41 libkrb5: 1.14.3 -> 1.15 2016-12-20 21:29:59 +03:00
Frederik Rietdijk
db0df92bbf heimdal: use python2
because of print statement
2016-10-18 23:16:06 +02:00
Robin Gloster
452f182356
krb5: 1.14.2 -> 1.14.3
fixes CVE-2016-3120
2016-09-18 23:47:56 +02:00
Vladimír Čunát
b626e83838 Merge #16291: krb5: fix compilation on weird prefixes
(when nix store prefix contains a "+" character)
2016-06-20 14:46:19 +02:00
Dmitry Kalinkin
2a91dd0f65 krb5: fix for stores with paths containing '+' character 2016-06-17 15:37:51 -04:00
Tuomas Tynkkynen
e80e4ba2bb treewide: Make explicit that 'dev' output of sqlite is used 2016-05-19 10:04:34 +02:00
Tuomas Tynkkynen
2a73de6e6c treewide: Make explicit that 'dev' output of openssl is used 2016-05-19 10:02:23 +02:00
Tuomas Tynkkynen
5eb01cd0ad treewide: Make explicit that 'dev' output of openldap is used 2016-05-19 10:00:50 +02:00
Shea Levy
edb0b7e36f krb5: 1.14 -> 1.14.2 (security updates) 2016-05-02 14:19:37 -04:00
Vladimír Čunát
9b091e8a0c krb5: simplify unpacking 2016-01-05 09:37:51 +01:00
Vladimír Čunát
1878ac9335 tree-wide: various cleanups
It's mainly refactoring and mass-rebuild simplifications without any
real impact (besides better readability).
2016-01-02 11:29:45 +01:00
janus
cbcab5521b FreeBSD: re-add heimdal 2016-01-01 17:01:13 +00:00
janus
55aa9163cc FreeBSD: minor fixes, add notes and make stdenv more robust 2016-01-01 17:01:13 +00:00
janus
a472d836f6 FreeBSD: apr-util, cyrus-sasl, berkeley db, glib, gnutls, kerberos, libelf-freebsd, openldap, serf, guile, tet, shishi, gawk, gnugrep 2016-01-01 17:01:13 +00:00
janus
9897b35661 FreeBSD: patch expat, kerberos, libedit, ossp-uuid, lz4, sharutils, add libelf-freebsd 2016-01-01 17:01:13 +00:00
Luca Bruno
51512d4c8f heimdal: try disabling parallel builds due to hydra issues
cc @wkennington
2015-09-29 10:49:33 +02:00
William A. Kennington III
5a0759971f heimdal: 2015-06-17 -> 2015-09-13 2015-09-16 13:14:23 -07:00
Eelco Dolstra
f41201ef97 heimdal: Fix description 2015-07-27 00:27:19 +02:00
William A. Kennington III
9c5ef0469c krb5: 1.13.1 -> 1.13.2 2015-06-26 23:02:20 -07:00
William A. Kennington III
943b282800 heimdal: Always install hcrypto 2015-06-26 22:45:20 -07:00
William A. Kennington III
a13fe2db47 Fix redundancy 2015-06-26 22:41:58 -07:00
William A. Kennington III
769ea09360 heimdal: Use the git version and breakout into a library 2015-06-26 22:41:25 -07:00
William A. Kennington III
b6322e1215 krb5: Break out into a lib and not lib version 2015-06-26 22:05:47 -07:00
Bjørn Forsman
52184b53c0 Revert "Revert "Explicitly pass -pthread flag to fix the build after some updates""
This reverts commit 6cfea50ad1.

I think the reason for the revert was because of patch dependencies. We really
need this patch to fix heimdal build.

Or else:

  $ nix-build -A heimdal
  ...
  /tmp/nix-build-heimdal-1.5.3.drv-0/heimdal-1.5.3/base/.libs/libheimbase.so: undefined reference to `pthread_getspecific'
  /tmp/nix-build-heimdal-1.5.3.drv-0/heimdal-1.5.3/base/.libs/libheimbase.so: undefined reference to `pthread_key_create'
  /tmp/nix-build-heimdal-1.5.3.drv-0/heimdal-1.5.3/base/.libs/libheimbase.so: undefined reference to `pthread_setspecific'
  collect2: error: ld returned 1 exit status
  Makefile:509: recipe for target 'tc' failed
  make[2]: *** [tc] Error 1
2015-06-06 09:23:33 +02:00
Eelco Dolstra
020cb43f55 Revert "kerberos: Modernize build"
This reverts commit 9740b0d12d.
2015-06-04 14:54:52 +02:00