Commit graph

108 commits

Author SHA1 Message Date
Matthew Bauer
d0677e6d45 treewide: add warning comment to “boot” packages
This adds a warning to the top of each “boot” package that reads:

  Note: this package is used for bootstrapping fetchurl, and thus cannot
  use fetchpatch! All mutable patches (generated by GitHub or cgit) that
  are needed here should be included directly in Nixpkgs as files.

This makes it clear to maintainer that they may need to treat this
package a little differently than others. Importantly, we can’t use
fetchpatch here due to using <nix/fetchurl.nix>. To avoid having stale
hashes, we need to include patches that are subject to changing
overtime (for instance, gitweb’s patches contain a version number at
the bottom).
2020-07-31 08:56:53 +02:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
Niklas Hambüchen
5676e6df1f krb5: Add patches to fix build with musl on 1.18 2020-04-01 02:23:13 +02:00
R. RyanTM
5d33637dd9 krb5: 1.17 -> 1.18 2020-02-27 10:21:01 +01:00
volth
7b8fb5c06c treewide: remove redundant quotes 2019-09-08 23:38:31 +00:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
R. RyanTM
831fcf8801 heimdal: 7.6.0 -> 7.7.0
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/heimdal/versions
2019-06-16 19:00:04 -07:00
R. RyanTM
623d7c046e heimdal: 7.5.0 -> 7.6.0
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/heimdal/versions
2019-05-21 09:31:15 -07:00
Matthew Bauer
d453273fbf llvm8: support c++ in cross case
this adds libc++ to the LLVM cross, giving us access to the full
Nixpkgs set. This requires 4 stages of wrapped compilers:

- Clang with no libraries
- Clang with just compiler-rt
- Clang with Libc, and compiler-rt
- Clang with Libc++, Libc, and compiler-rt
2019-04-11 21:28:51 -04:00
Will Dietz
934c6bb7b9 krb5: 1.15.5 -> 1.17
https://web.mit.edu/kerberos/krb5-1.17/

https://web.mit.edu/kerberos/krb5-1.16/krb5-1.16.2.html
https://web.mit.edu/kerberos/krb5-1.16/krb5-1.16.1.html
https://web.mit.edu/kerberos/krb5-1.16/krb5-1.16.html
2019-02-22 01:54:01 -06:00
Will Dietz
5883ef9dc2 krb5: 1.15.2 -> 1.15.5
https://web.mit.edu/kerberos/krb5-1.15/krb5-1.15.3.html
https://web.mit.edu/kerberos/krb5-1.15/krb5-1.15.4.html
https://web.mit.edu/kerberos/krb5-1.15/krb5-1.15.5.html
2019-02-22 01:53:59 -06:00
Jörg Thalheim
b5c1deca8a
treewide: remove wkennington as maintainer
He prefers to contribute to his own nixpkgs fork triton.
Since he is still marked as maintainer in many packages
this leaves the wrong impression he still maintains those.
2019-01-26 10:05:32 +00:00
Kai Wohlfahrt
ade842f51a kerberos: move user binaries to default output
The intention of the previous change was to move krb5-config to .dev (it
gives the locations of headers), but it grabbed all of the user-facing
binaries too. This puts them back.
2018-12-11 13:33:10 +00:00
Jörg Thalheim
3681fa5456
direnv: make cross-compile on windows 2018-11-24 10:43:47 +00:00
Matthew Bauer
ef4d78aded
krb5: don't pull in keyutils with bionic
keyutils breaks with bionic. since it's an optional dependency, it seems safe to just disable it with libkrb5 (which otherwise works fine with bionic libc).
2018-11-03 14:37:18 -05:00
Matthew Bauer
4120a9dda7
Merge pull request #42295 from avnik/libprefixed-to-multioutput/heimdal
Libprefixed to multioutput/heimdal
2018-09-05 13:50:13 -05:00
Dan Peebles
a5b5536e2a krb5: add linux keyring support
This requires some minor hoop-hopping because it's involved in the
Linux bootstrap, but it's nothing too complicated.

Fixes #43289
2018-08-20 02:42:41 +00:00
Alexander V. Nikolaev
5a59d5e131 heimdal: simplify build, keep bin/ in $out 2018-08-08 13:38:40 +03:00
Alexander V. Nikolaev
0a72127d57 heimdal: move "info" to own output 2018-08-08 13:38:40 +03:00
Alexander V. Nikolaev
cb1e30f84b heimdal: refactor lib-prefixed packages to multi-output 2018-08-08 13:38:40 +03:00
Niklas Hambüchen
bc6cfb4750 krb5: Add staticOnly flag 2018-07-21 04:43:50 +02:00
Josef Kemetmüller
020957716e heimdal: Fix darwin build 2018-05-22 18:19:28 +03:00
Josef Kemetmüller
9a100e3e31 heimdal: Fix db include
[dezgeg squashed in to fit the changes introduced in "db: Use more
conventional outputs, also split bin"]
2018-05-22 18:19:28 +03:00
Jan Malakhovski
7438083a4d tree-wide: disable doCheck and doInstallCheck where it fails (the trivial part) 2018-04-25 04:18:46 +00:00
Edward Tjörnhammar
5566bf97e5
libheimdal: 7.4.0 -> 7.5.0
In Heimdal 7.1 through 7.4, remote unauthenticated attackers are able to
crash the KDC by sending a crafted UDP packet containing empty data
fields for client name or realm.

Security: CVE-2017-17439
2018-03-21 21:17:50 +01:00
Ben Gamari
bef09dcca1 krb5: Allow cross-compilation 2018-01-09 11:23:56 -05:00
Vladimír Čunát
c303047032
fetchurl on Darwin: gssSupport = false (see 9b54a00160)
I can't see a better way around the problem for now.
2017-12-21 09:34:44 +01:00
Vladimír Čunát
13e6a5c561
kerberos: split headers into $dev 2017-12-19 15:18:01 +01:00
Vladimír Čunát
3c51628a4c
fetchurl: switch to the usual curl
I verified that krb5 doesn't need yacc in lib-only build,
simplifying the circular-reference cut.
2017-12-19 15:17:52 +01:00
Franz Pletz
8678f14ac9
kerberos: 1.15 -> 1.15.2 for CVE-2017-11462 2017-09-28 14:52:37 +02:00
Jörg Thalheim
0016d925e4 kerberos: store state in /var/lib instead of $out/var 2017-09-12 14:30:18 +01:00
Franz Pletz
a957761abd
libheimdal: 2015-09-13 -> 7.4.0 for CVE-2017-11103
The git snapshot was based on 7.0 which is vulnerable.
2017-08-01 10:26:19 +02:00
tkatchev
6d211110f5 libkrb5: fix issue #16161. 2017-01-19 13:16:46 +03:00
Nikolay Amiantov
f84344ed41 libkrb5: 1.14.3 -> 1.15 2016-12-20 21:29:59 +03:00
Frederik Rietdijk
db0df92bbf heimdal: use python2
because of print statement
2016-10-18 23:16:06 +02:00
Robin Gloster
452f182356
krb5: 1.14.2 -> 1.14.3
fixes CVE-2016-3120
2016-09-18 23:47:56 +02:00
Vladimír Čunát
b626e83838 Merge #16291: krb5: fix compilation on weird prefixes
(when nix store prefix contains a "+" character)
2016-06-20 14:46:19 +02:00
Dmitry Kalinkin
2a91dd0f65 krb5: fix for stores with paths containing '+' character 2016-06-17 15:37:51 -04:00
Tuomas Tynkkynen
e80e4ba2bb treewide: Make explicit that 'dev' output of sqlite is used 2016-05-19 10:04:34 +02:00
Tuomas Tynkkynen
2a73de6e6c treewide: Make explicit that 'dev' output of openssl is used 2016-05-19 10:02:23 +02:00
Tuomas Tynkkynen
5eb01cd0ad treewide: Make explicit that 'dev' output of openldap is used 2016-05-19 10:00:50 +02:00
Shea Levy
edb0b7e36f krb5: 1.14 -> 1.14.2 (security updates) 2016-05-02 14:19:37 -04:00
Vladimír Čunát
9b091e8a0c krb5: simplify unpacking 2016-01-05 09:37:51 +01:00
Vladimír Čunát
1878ac9335 tree-wide: various cleanups
It's mainly refactoring and mass-rebuild simplifications without any
real impact (besides better readability).
2016-01-02 11:29:45 +01:00
janus
cbcab5521b FreeBSD: re-add heimdal 2016-01-01 17:01:13 +00:00
janus
55aa9163cc FreeBSD: minor fixes, add notes and make stdenv more robust 2016-01-01 17:01:13 +00:00
janus
a472d836f6 FreeBSD: apr-util, cyrus-sasl, berkeley db, glib, gnutls, kerberos, libelf-freebsd, openldap, serf, guile, tet, shishi, gawk, gnugrep 2016-01-01 17:01:13 +00:00
janus
9897b35661 FreeBSD: patch expat, kerberos, libedit, ossp-uuid, lz4, sharutils, add libelf-freebsd 2016-01-01 17:01:13 +00:00
Luca Bruno
51512d4c8f heimdal: try disabling parallel builds due to hydra issues
cc @wkennington
2015-09-29 10:49:33 +02:00
William A. Kennington III
5a0759971f heimdal: 2015-06-17 -> 2015-09-13 2015-09-16 13:14:23 -07:00