Commit graph

7967 commits

Author SHA1 Message Date
Austin Seipp
178ecc1515 nixpkgs: btsync 1.4.93 -> 1.4.103
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-12-05 21:56:52 -06:00
Cillian de Róiste
52ce239786 guitarix: update from 0.32.0 to 0.32.1 2014-12-05 09:08:09 +00:00
Michael Raskin
b4084d4913 Just use old glm for LO, the rest of LO is not keen on using C++ git add -A 1 2014-12-05 10:51:40 +03:00
Michael Raskin
761e5309b5 Set c++11 standard for LibreOffice build - needed by glm 2014-12-05 09:42:06 +03:00
Maciek Starzyk
dcad10c8e6 haskell-git-annex: Add maintainer, was removed by mistake. 2014-12-04 21:49:15 +01:00
Max Gonzih
a9d276c539 Add mopidy-mopify package 2014-12-04 18:20:28 +01:00
Thomas Tuegel
5c9de38488 zotero: use private firefox and xulrunner
Zotero breaks every time firefox is updated (about every six weeks). It
is always fixed with the next zotero update, but that can take weeks.
Sometimes, upstream even skips firefox releases. This will stop zotero
breaking every time.
2014-12-04 09:40:57 -06:00
Peter Simons
0377be182c cinelerra: fix download url 2014-12-04 15:57:16 +01:00
Maciek Starzyk
81cb2c144c haskell-git-annex: update to version 5.20141203 2014-12-04 14:45:54 +01:00
Pascal Wittmann
5e04917e65 gource: fix build with new glm version 2014-12-04 14:31:28 +01:00
Domen Kožar
8105a94e2b eaglemode: fix build 2014-12-04 14:21:11 +01:00
Domen Kožar
683740466a Merge pull request #5217 from geerds/tox
Tox: Update libtoxcore, qtox, utox and toxic
2014-12-04 14:12:49 +01:00
Georges Dubus
e019249936 Merge pull request #5169 from AndersonTorres/altcoins
Altcoins
2014-12-04 13:58:00 +01:00
Jascha Geerds
c81575eae1 qtox: Fix installPhase 2014-12-04 11:26:00 +01:00
Jascha Geerds
459fd43988 tox-prpl: Update to the newest dev version
This update is necessary due to API changes in libtoxcore.
2014-12-04 11:02:27 +01:00
Jascha Geerds
d5dc5eaff0 utox: Update to the newest dev version
This update is necessary due to API changes in libtoxcore.
2014-12-04 02:53:48 +01:00
Jascha Geerds
44dd2ed9ec toxic: Update to the newest dev version
This update is necessary due to API changes in libtoxcore. Sad to say that
the recent stable version doesn't work with our libtoxcore. We need to
update to the recent dev version.
2014-12-04 02:47:32 +01:00
Jascha Geerds
c57a4c2f78 Update libtoxcore and qtox to the newest dev version
As from now qtox depends on openalSoft instead of openal. This is due to
incompatibilities between those to two implementations. Anyway, this
should be okay because their official debian package depends on
openalSoft as well.
2014-12-04 02:29:56 +01:00
Mateusz Kowalczyk
4106631b96 sxiv: update git revision 2014-12-03 16:55:17 +00:00
Mateusz Kowalczyk
fb53ebbcce easytag: update from 2.3.1 to 2.3.2 2014-12-03 16:52:57 +00:00
Peter Simons
67ddc8f4b9 R: add meta.platforms attribute 2014-12-03 16:28:28 +01:00
Vincent Laporte
18e5582f6c claws-mail: update from 3.10.1 to 3.11.1 2014-12-03 16:22:14 +01:00
Jos van den Oever
f12e2d1e66 Update gnumeric
goffice is also updated. goffice is maintained by the gnumeric people
and released in sync with gnumeric. gnumeric 1.12.x corresponds to
goffice 0.10.x.
2014-12-03 09:12:39 +01:00
Bjørn Forsman
fea06f2712 gnuradio: update 3.7.5 -> 3.7.5.1
Build tested.
2014-12-03 07:21:22 +01:00
Eelco Dolstra
d6c3b564c4 firefox: Update to 34.0.5 2014-12-02 23:15:32 +01:00
Cillian de Róiste
46cd3237af yoshimi: update from 1.2.5 to 1.3.0
Fix build by adding LV2 support
2014-12-02 23:12:21 +01:00
Bjørn Forsman
e6f59f2a22 evtest: update 1.31 -> 1.32 2014-12-02 22:59:49 +01:00
Bjørn Forsman
d42cd0600b qmmp: update 0.7.6 -> 0.8.2 2014-12-02 22:56:43 +01:00
taku0
a5e1fa2479 firefox-bin, thunderbird-bin: major updates
Close #5207.
2014-12-02 21:51:25 +01:00
Bjørn Forsman
d5e8c6b732 wireshark: update from 1.12.1 to 1.12.2
Potentially fixes CVE-2014-8710, CVE-2014-8711, CVE-2014-8712,
CVE-2014-8713, CVE-2014-8714.
2014-12-02 21:36:22 +01:00
Vincent Laporte
bc95472fb7 skrooge: update from 1.3.2 to 1.10.0 2014-12-02 19:28:11 +01:00
cillianderoiste
ebc96e4b0a Merge pull request #5201 from geerds/pidgin-window-merge
Add package pidgin-window-merge
2014-12-02 16:35:24 +00:00
Jaka Hudoklin
36a5384ec9 mesos: update to 0.21.0 2014-12-02 12:22:12 +01:00
Jaka Hudoklin
aeba2947b0 Add chronos, fault tolerant job scheduler for Mesos 2014-12-02 12:22:05 +01:00
Jascha Geerds
4ba9aa074f Add package pidgin-window-merge 2014-12-02 11:37:11 +01:00
Michael Raskin
60b660b33a Adding slmenu 2014-12-02 12:29:54 +03:00
Domen Kožar
50515b221e Merge pull request #5090 from eduarrrd/gramps
Add gramps package.
2014-12-01 22:06:22 +01:00
Jascha Geerds
268ea28b78 pycharm: Update to 4.0.1 2014-12-01 18:27:51 +01:00
Charles Strahan
b90b899b0c rescuetime: add version 2014-12-01 12:19:44 +00:00
Charles Strahan
f9dbd4e1ba rescuetime: fix typo 2014-12-01 12:11:01 +00:00
Charles Strahan
fcb173f70f rescuetime: a time tracking service 2014-12-01 05:16:57 +00:00
aszlig
2b58a6ab0d
virtualbox: Fix extension pack installation.
With hardening, we need to go a bit further rather than just allowing
/nix/store being world-writable. We now use fakeroot to make sure the
VBoxExtPackHelperApp won't moan that the files are not owned by root.

They are, but only outside of the chrooted build process.

Another issue with using fakeroot is that it doesn't seem to cope well
with arguments that contain spaces. That's why I've piped the call into
${stdenv.shell}.

Now, the really gory and confusing part is the introduction of
VBOX_PATH_APP_PRIVATE_ARCH_TOP and the change of VBOX_PATH_APP_PRIVATE.

The VBOX_PATH_APP_PRIVATE_ARCH is *only* for modules and is checked by
the hardened implementation against whether things like VMMR0.r0 or
VBoxVMM.so reside in that directory. As a side note: I admit that the
whole libexec directory is quite polluted with stuff that shouldn't be
there, but for now we've broken enough things and will tear apart the
whole structure at some day in the future[TM].

For the confusing part we have VBOX_PATH_APP_PRIVATE_ARCH_TOP, which
_should_ be the same as VBOX_PATH_APP_PRIVATE_ARCH but unfortunately,
the hardened implementation is checking against this directory (in
IsValidBaseDir) for the extension pack(why!?).

Of course, we could put even that into the libexec directory, somewhat
similar as the official package, but after all, let's at least *try* to
separate things.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2014-12-01 03:32:55 +01:00
Jaka Hudoklin
6b2e5c3262 i3: make i3-save-workspace work 2014-11-30 18:40:03 +01:00
aszlig
318fbb34e7
virtualbox: Allow /nix/store being world-writable.
We are already checking whether /nix/store has the sticky bit set, so if
it is world-writable as well it doesn't mean that the actual store path
is writable. Let alone the fact that it is only writable during the
build process.

This should fix installing the extension pack when enableExtensionPack
is used.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2014-11-30 18:23:19 +01:00
Cillian de Róiste
e0f0e2c731 Update sonic-visualiser 2.3 -> 2.4.1 and fix attribute name 2014-11-30 10:57:40 +01:00
aszlig
017e6b72c1
virtualbox: Update to upstream version 4.3.20.
Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2014-11-30 06:25:50 +01:00
Jaka Hudoklin
eb2f9f029a kubernetes: build only on x86_64-linux 2014-11-30 01:24:59 +01:00
Arseniy Seroka
3477bc9a47 fix some hashes 2014-11-30 02:25:41 +03:00
AndersonTorres
b7d93fed25 Litecoin: Update to 0.9.3-preview5
Now Litecoin expression lives in a single file, litecoin.nix
2014-11-29 17:16:56 -02:00
aszlig
3e49487c1a
virtualbox: Enable hardening by default.
VirtualBox with hardening support requires the main binaries to be
setuid root. Using VBOX_WITH_RUNPATH, we ensure that the RPATHs are
pointing to the libexec directory and we also need to unset
VBOX_WITH_ORIGIN to make sure that the build system is actually setting
those RPATHs.

The hardened.patch implements two things:

 * Set the binary directory to the setuid-wrappers dir so that
   VboxSVC calls them instead of the binaries from the store path. The
   reason behind this is because nothing in the Nix store can have the
   setuid flag.
 * Excempt /nix/store from the group permission check, because while it
   is group-writeable indeed it also has the sticky bit set (and also
   the whole store is mounted read-only on most NixOS systems), so we're
   checking on that as well.

Right now, the hardened.patch uses /nix/store and /var/setuid-wrappers
directly, so someone would ever want to change those on a NixOS system,
please provide a patch to set those paths on build time. However, for
simplicity, it's best to do it when we _really_ need it.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2014-11-29 19:21:46 +01:00