Commit Graph

29 Commits

Author SHA1 Message Date
Lluís Batlle i Rossell
a8a01a54ab Removing another glibc patch already upstream.
svn path=/nixpkgs/branches/stdenv-updates/; revision=25111
2010-12-14 07:32:07 +00:00
Lluís Batlle i Rossell
8895565d45 I think we had a *double* patch for the security problem CVE-2010-3856.
I had added the audit_suid.patch some time ago, and at some point niksnut added
this ignore-origin.patch. I think both fix the situation, the
ignore-origin.patch being released sooner than the audit_suid. As the
ignore-origin-patch is not in the recent glibc, it makes me think it was a quick
solution to the vulnerability, later properly fixed.

I remove, then, the ignore-origin.patch. We can check later if we remain
vulnerable.

svn path=/nixpkgs/branches/stdenv-updates/; revision=25110
2010-12-13 23:09:57 +00:00
Lluís Batlle i Rossell
55051fec78 Removing patches for glibc bugs already fixed in the new glibc version.
svn path=/nixpkgs/branches/stdenv-updates/; revision=25109
2010-12-13 23:09:09 +00:00
Lluís Batlle i Rossell
3c78b20229 Updating glibc to 2.12.2 (considering the ports for 2.12.1 would work equally).
I also update the url for the ports to take the upstream tarball instead of a
copy I had in vicerveza.

svn path=/nixpkgs/branches/stdenv-updates/; revision=25108
2010-12-13 23:08:10 +00:00
Lluís Batlle i Rossell
1b62c9c061 I made changes to achieve a working cross-built gcc wrapper. Now,
"gcc45.hostDrv" works in the host system, together with libc, binutils, dynamic
linker, ...


svn path=/nixpkgs/branches/stdenv-updates/; revision=24971
2010-12-04 21:45:37 +00:00
Lluís Batlle i Rossell
9af474ca72 Fixing a problem of nscd on (only) armv5tel (soft-float).
It gets linked to libgcc_s (shared lib) unless doing the trick I thought feasible of
telling 'configure' that the linker does not support "as-needed".
I found this reading their 'configure' script.

We don't want nscd linked to libgcc because that would make glibc dependant on the
previous gcc. This only happens on armv5tel, for the supported platforms.

svn path=/nixpkgs/branches/stdenv-updates/; revision=24959
2010-12-02 22:23:15 +00:00
Lluís Batlle i Rossell
560b88b920 I forgot a patch I mentioned in the previous commit.
svn path=/nixpkgs/branches/stdenv-updates/; revision=24779
2010-11-19 22:21:05 +00:00
Lluís Batlle i Rossell
a98b72fb77 New glibc fix, this time for https://bugzilla.redhat.com/show_bug.cgi?id=651638
svn path=/nixpkgs/branches/stdenv-updates/; revision=24761
2010-11-18 22:59:57 +00:00
Lluís Batlle i Rossell
453150ae83 Adding another fix for glibc, for a security hole, suggested by niksnut.
svn path=/nixpkgs/branches/stdenv-updates/; revision=24760
2010-11-18 20:33:29 +00:00
Lluís Batlle i Rossell
acd1e6ee3a Removing a patch for glibc that I thought was needed for i686-linux.
Building with gcc 4.4 as minimum was needed, and not this patch.
http://sourceware.org/bugzilla/show_bug.cgi?id=12123

I uploaded new i686-linux bootstrap-tools with gcc 4.5.1, but I'll not update
the i686 reference to those bootstrap-tools until they are reachable by http.
The bootstrap-tools we used until now had gcc 4.3, said not to be able to build
glibc 2.12.1.

Meanwhile other platforms can go on building this glibc already without the
patch.


svn path=/nixpkgs/branches/stdenv-updates/; revision=24522
2010-10-28 23:04:34 +00:00
Lluís Batlle i Rossell
2b34bdd2ba Two fixes in one:
- our gcc should not bring libssp, because glibc provides __stack_chk_fail
  already. libssp is only for some non-glibc systems.
  The gcc configure script was not finding the header files of our glibc, so
  it assumed it did not provide __stack_chk_fail. I wrote code in the builder
  that patches the gcc/configure script properly for that.

  As a consequence, the glibc does not need anymore the "nscd-ssp-linking"
  patch, and we have a saner gcc (without libssp when using -fstack-protector)
- Instead of disabling the sse42 strstr() implementation in glibc due to the
  bug http://sourceware.org/bugzilla/show_bug.cgi?id=12123, I provide a better
  patch written after more reserach (that I submitted upstream already, and
  it's pending review).


svn path=/nixpkgs/branches/stdenv-updates/; revision=24493
2010-10-26 18:56:02 +00:00
Lluís Batlle i Rossell
f3da1c5e80 Adding a fix for an important glibc vulnerability, very easy to exploit:
http://www.securityfocus.com/bid/44347

svn path=/nixpkgs/branches/stdenv-updates/; revision=24475
2010-10-25 18:25:23 +00:00
Lluís Batlle i Rossell
4309788df0 Adding a comment on the status of the nscd patch in glibc
svn path=/nixpkgs/branches/stdenv-updates/; revision=24371
2010-10-19 21:20:00 +00:00
Lluís Batlle i Rossell
955fe6f69d Fixing the nscd patch again. The other attempts did not give a working nscd.
The build system was making a nscd dynamically linked with libssp, which we
don't want in general. We want a glibc not depending on the gcc that built it.


svn path=/nixpkgs/branches/stdenv-updates/; revision=24313
2010-10-15 22:58:12 +00:00
Lluís Batlle i Rossell
d5f6182edc I made one of the glibc patches wrong (typo). I fix it.
svn path=/nixpkgs/branches/stdenv-updates/; revision=24309
2010-10-15 20:06:55 +00:00
Lluís Batlle i Rossell
6b35b69a28 Workaround to overcome the glibc/gcc bug:
http://sources.redhat.com/bugzilla/show_bug.cgi?id=12123

I also fixed a wrong comment I had committed in the previous commit.


svn path=/nixpkgs/branches/stdenv-updates/; revision=24306
2010-10-15 18:00:12 +00:00
Lluís Batlle i Rossell
9ed84bc432 Trying to fix the nscd ssp problem finally.
http://sources.redhat.com/bugzilla/show_bug.cgi?id=12125
I also reported this upstream, as it seems broken since 2.11.1


svn path=/nixpkgs/branches/stdenv-updates/; revision=24305
2010-10-15 17:56:01 +00:00
Lluís Batlle i Rossell
262bcb3f58 Blind commit enabling the '-lssp' for nscd in glibc2.12
It looks like we need it when building the glibc212 attribute using nixpkgs's
gcc, instead of bootstrap-tools'.


svn path=/nixpkgs/branches/stdenv-updates/; revision=24296
2010-10-15 09:17:34 +00:00
Lluís Batlle i Rossell
27ae94e566 The glibc locales expression did not work limiting SUPPORTED-LOCALES. Now it does.
svn path=/nixpkgs/branches/stdenv-updates/; revision=24249
2010-10-12 20:41:40 +00:00
Lluís Batlle i Rossell
fa4ef6621a Fixing nscd in glibc (thank you Ludovic!).
svn path=/nixpkgs/branches/stdenv-updates/; revision=24157
2010-10-07 21:59:31 +00:00
Lluís Batlle i Rossell
180cb34e2a Removing a glibc patch for nscd I think we don't need anymore in the main glibc
expression.
For what I could see from the build log, although it should add a '-lssp', it
did not have any effect in this glibc 2.12.


svn path=/nixpkgs/branches/stdenv-updates/; revision=24156
2010-10-07 21:23:09 +00:00
Lluís Batlle i Rossell
a480f92f9d Fixing the glibc locales build expression (in the sense that now it builds, not that it looks nice)
svn path=/nixpkgs/branches/stdenv-updates/; revision=23369
2010-08-23 17:36:51 +00:00
Lluís Batlle i Rossell
9a1e29ecdf Patch for glibc 2.12.1 to build with gnumake 3.82
svn path=/nixpkgs/branches/stdenv-updates/; revision=23342
2010-08-21 21:08:05 +00:00
Lluís Batlle i Rossell
96c53c8239 Fix on the file type on glibc ports 2.12.1. (gzip vs bzip2)
svn path=/nixpkgs/branches/stdenv-updates/; revision=23339
2010-08-21 20:11:07 +00:00
Lluís Batlle i Rossell
23b47575c6 Adding a tarball I publish in my server for glibc ports 2.12.1 I made from the git repository.
svn path=/nixpkgs/branches/stdenv-updates/; revision=23337
2010-08-21 20:00:54 +00:00
Lluís Batlle i Rossell
0709b7df6d Making glibc not depend on glibc-ports for platforms not requiring glibc-ports.
svn path=/nixpkgs/branches/stdenv-updates/; revision=23327
2010-08-21 19:05:42 +00:00
Lluís Batlle i Rossell
9cbc109b9a Fixes on the glibc-2.12 expression.
I removed a patch (mod_nano) already in the release.
I fixed the nix-locale-archive so the programs don't try to modify the /usr
locale-archive (for non-nixos), although the libc may use that archive to show
strings.
I remove the glibc-2.11 void directory.


svn path=/nixpkgs/branches/stdenv-updates/; revision=23302
2010-08-21 11:51:21 +00:00
Ludovic Courtès
9b9df7a444 glibc: Make the native store path independent on whether `gccCross' is null.
svn path=/nixpkgs/branches/stdenv-updates/; revision=23283
2010-08-20 15:26:56 +00:00
Ludovic Courtès
87a62c6369 glibc 2.12.1.
svn path=/nixpkgs/branches/stdenv-updates/; revision=23282
2010-08-20 15:26:50 +00:00