nixpkgs

History

Joachim Fasting 63433537ce nixos/hardened profile: disable legacy virtual syscalls This eliminates a theoretical risk of ASLR bypass due to the fixed address mapping used by the legacy vsyscall mechanism. Modern glibc use vdso(7) instead so there is no loss of functionality, but some programs may fail to run in this configuration. Programs that fail to run because vsyscall has been disabled will be logged to dmesg. For background on virtual syscalls see https://lwn.net/Articles/446528/ Closes https://github.com/NixOS/nixpkgs/pull/25289		2017-04-29 17:27:11 +02:00
..
config	treewide: use boolToString function	2017-04-11 18:18:53 +02:00
hardware	rtl8192su-firmware: init at unstable-2016-10-05	2017-03-31 10:49:38 +02:00
i18n/input-method	Remove top-level kde5 attribute	2017-02-27 11:49:10 -06:00
installer	nix: 1.11.8 -> 1.11.9	2017-04-25 17:19:10 +02:00
misc	Merge branch 'master' into aria2.service	2017-04-27 17:50:13 +03:00
profiles	nixos/hardened profile: disable legacy virtual syscalls	2017-04-29 17:27:11 +02:00
programs	fix 'command-not-found: is a directory' error	2017-04-28 23:11:21 -04:00
security	grsecurity: discontinue support	2017-04-28 12:35:15 +02:00
services	confluence module: needs bash for health checks	2017-04-29 11:15:59 +02:00
system	nixos/grub: Add another example for extraEntries	2017-04-25 08:50:43 +02:00
tasks	Add Elantech ETPS/2 Trackpoint (ThinkPad Yoga 260)	2017-04-22 13:42:57 +02:00
testing	kdm: drop service	2017-02-11 13:55:09 -05:00
virtualisation	Merge pull request #25245 from bachp/docker-proxy	2017-04-27 11:03:46 +02:00
module-list.nix	zsh-syntax-highlighting: Add more configuration options and move to module (#25153 )	2017-04-23 21:17:31 +02:00
rename.nix	zsh-syntax-highlighting: Add more configuration options and move to module (#25153 )	2017-04-23 21:17:31 +02:00