summary refs log tree commit diff
path: root/pkgs/os-specific
diff options
context:
space:
mode:
authorFrederik Rietdijk <freddyrietdijk@fridh.nl>2018-11-30 18:03:49 +0100
committerGitHub <noreply@github.com>2018-11-30 18:03:49 +0100
commit2c5f92a7238cbc8241c936fbc70194a2936a23ca (patch)
tree191dff12c0967ebadef4987790640a33ad713eef /pkgs/os-specific
parent74e283403c9f10504c1d2ab8c4970289c81a482b (diff)
parent28e2277305f8c6eeee3f6f773927b956eb903a15 (diff)
downloadnixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.tar
nixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.tar.gz
nixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.tar.bz2
nixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.tar.lz
nixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.tar.xz
nixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.tar.zst
nixpkgs-2c5f92a7238cbc8241c936fbc70194a2936a23ca.zip
Merge staging-next into master
Diffstat (limited to 'pkgs/os-specific')
-rw-r--r--pkgs/os-specific/linux/busybox/default.nix3


-rw-r--r--pkgs/os-specific/linux/kernel/common-config.nix7


-rw-r--r--pkgs/os-specific/linux/kernel/manual-config.nix2


-rw-r--r--pkgs/os-specific/linux/kexectools/default.nix2


-rw-r--r--pkgs/os-specific/linux/libratbag/default.nix9


-rw-r--r--pkgs/os-specific/linux/util-linux/default.nix6


6 files changed, 16 insertions, 13 deletions
diff --git a/pkgs/os-specific/linux/busybox/default.nix b/pkgs/os-specific/linux/busybox/default.nix
index 71ad6203e32..5f4efe943ca 100644
--- a/pkgs/os-specific/linux/busybox/default.nix
+++ b/pkgs/os-specific/linux/busybox/default.nix
@@ -42,7 +42,8 @@ stdenv.mkDerivation rec {
     sha256 = "1dzg45vgy2w1xcd3p6h8d76ykhabbvk1h0lf8yb24ikrwlv8cr4p";
   };
 
-  hardeningDisable = [ "format" ] ++ lib.optionals enableStatic [ "fortify" ];
+  hardeningDisable = [ "format" "pie" ]
+    ++ lib.optionals enableStatic [ "fortify" ];
 
   patches = [
     ./busybox-in-store.patch
diff --git a/pkgs/os-specific/linux/kernel/common-config.nix b/pkgs/os-specific/linux/kernel/common-config.nix
index 27a615d7bb9..b94e34c8f6c 100644
--- a/pkgs/os-specific/linux/kernel/common-config.nix
+++ b/pkgs/os-specific/linux/kernel/common-config.nix
@@ -370,9 +370,12 @@ let
     };
 
     container = {
-      NAMESPACES     = option yes; #  Required by 'unshare' used by 'nixos-install'
+      NAMESPACES     = yes; #  Required by 'unshare' used by 'nixos-install'
       RT_GROUP_SCHED = no;
-      CGROUP_DEVICE  = option yes;
+      CGROUP_DEVICE  = yes;
+      CGROUP_HUGETLB = yes;
+      CGROUP_PERF    = yes;
+      CGROUP_RDMA    = whenAtLeast "4.11" yes;
 
       MEMCG                    = yes;
       MEMCG_SWAP               = yes;
diff --git a/pkgs/os-specific/linux/kernel/manual-config.nix b/pkgs/os-specific/linux/kernel/manual-config.nix
index 1d280647c5a..0ce6ed769a3 100644
--- a/pkgs/os-specific/linux/kernel/manual-config.nix
+++ b/pkgs/os-specific/linux/kernel/manual-config.nix
@@ -269,7 +269,7 @@ stdenv.mkDerivation ((drvAttrs config stdenv.hostPlatform.platform kernelPatches
       ++ optionals stdenv.lib.inNixShell [ pkgconfig ncurses ]
       ;
 
-  hardeningDisable = [ "bindnow" "format" "fortify" "stackprotector" "pic" ];
+  hardeningDisable = [ "bindnow" "format" "fortify" "stackprotector" "pic" "pie" ];
 
   # Absolute paths for compilers avoid any PATH-clobbering issues.
   makeFlags = commonMakeFlags ++ [
diff --git a/pkgs/os-specific/linux/kexectools/default.nix b/pkgs/os-specific/linux/kexectools/default.nix
index 069bd17c483..b78286a902b 100644
--- a/pkgs/os-specific/linux/kexectools/default.nix
+++ b/pkgs/os-specific/linux/kexectools/default.nix
@@ -12,7 +12,7 @@ stdenv.mkDerivation rec {
     sha256 = "1ac20jws8iys9w6dpn4q3hihyx73zkabdwv3gcb779cxfrmq2k2h";
   };
 
-  hardeningDisable = [ "format" "pic" "relro" ];
+  hardeningDisable = [ "format" "pic" "relro" "pie" ];
 
   configureFlags = [ "BUILD_CC=${buildPackages.stdenv.cc.targetPrefix}cc" ];
   nativeBuildInputs = [ buildPackages.stdenv.cc ];
diff --git a/pkgs/os-specific/linux/libratbag/default.nix b/pkgs/os-specific/linux/libratbag/default.nix
index 271dc156695..c614b39255d 100644
--- a/pkgs/os-specific/linux/libratbag/default.nix
+++ b/pkgs/os-specific/linux/libratbag/default.nix
@@ -12,15 +12,14 @@ stdenv.mkDerivation rec {
     sha256 = "0cr5skrb7a5mgj7dkm647ib8336hb88bf11blaf6xldafi8b0jlj";
   };
 
-
-  # todo: python should be in buildInputs, but right now meson propagates
-  # its own python. see: https://github.com/NixOS/nixpkgs/pull/46020
   nativeBuildInputs = [
-    (python3.withPackages (ps: with ps; [ evdev pygobject3 ]))
     meson ninja pkgconfig gitMinimal swig check valgrind
   ];
 
-  buildInputs = [ glib systemd udev libevdev ];
+  buildInputs = [
+    glib systemd udev libevdev
+    (python3.withPackages (ps: with ps; [ evdev pygobject3 ]))
+  ];
 
   mesonFlags = [
     "-Dsystemd-unit-dir=./lib/systemd/system/"
diff --git a/pkgs/os-specific/linux/util-linux/default.nix b/pkgs/os-specific/linux/util-linux/default.nix
index 55758190efd..72693696494 100644
--- a/pkgs/os-specific/linux/util-linux/default.nix
+++ b/pkgs/os-specific/linux/util-linux/default.nix
@@ -4,15 +4,15 @@
 let
   version = lib.concatStringsSep "." ([ majorVersion ]
     ++ lib.optional (patchVersion != "") patchVersion);
-  majorVersion = "2.32";
-  patchVersion = "1";
+  majorVersion = "2.33";
+  patchVersion = "";
 
 in stdenv.mkDerivation rec {
   name = "util-linux-${version}";
 
   src = fetchurl {
     url = "mirror://kernel/linux/utils/util-linux/v${majorVersion}/${name}.tar.xz";
-    sha256 = "1ck7d8srw5szpjq7v0gpmjahnjs6wgqzm311ki4gazww6xx71rl6";
+    sha256 = "12k54fj1wz1193kq619vplvzj7gf8yn42sfj0kmfxgrm7kbvjqgj";
   };
 
   patches = [

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-05 07:01:35 +0000