| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Update nixos/modules/services/system/cachix-agent/default.nix•••Co-authored-by: pennae <82953136+pennae@users.noreply.github.com>
(cherry picked from commit 91cc0cf63bc9959f9cdcc60ab15cf2eae6d870b1)
origin/backport-155009-to-release-21.11 | Domen Kožar | 2022-01-18 | 1 | -1/+1 |
| * | nixos: add cachix-agent service•••(cherry picked from commit 42994be64b12ed7713aaf6f50ae550f999057833)
| Domen Kožar | 2022-01-18 | 2 | -0/+58 |
| * | Merge pull request #155480 from NixOS/backport-153279-to-release-21.11•••[Backport release-21.11] element-desktop: fix "Sqlcipher support is missing" | Janne Heß | 2022-01-18 | 1 | -1/+4 |
| |\ |
|
| | * | element-desktop: fix "Sqlcipher support is missing"•••(cherry picked from commit b85a0597380060def713a7ff3b13a6478c1a265c)
| Austin Butler | 2022-01-18 | 1 | -1/+4 |
| |/ |
|
| * | Merge pull request #155470 from NixOS/backport-155443-to-release-21.11•••[Backport release-21.11] nixos/modules/syncthing: add 22000/udp to firewall | pennae | 2022-01-18 | 1 | -2/+2 |
| |\ |
|
| | * | nixos/modules/syncthing: add 22000/udp to firewall•••(cherry picked from commit f533a6d2bdd11bf901c7d370e7ddd604b245cf98)
| Zane van Iperen | 2022-01-18 | 1 | -2/+2 |
| |/ |
|
| * | Merge pull request #155412 from NixOS/backport-155407-to-release-21.11•••[Backport release-21.11] nixos/mosquitto: wait for network-online.target, not network.target | pennae | 2022-01-18 | 1 | -1/+1 |
| |\ |
|
| | * | nixos/mosquitto: wait for network-online.target, not network.target•••network.target is reached earlier, but with much fewer services
available. DNS is likely to be not functional before
network-online.target, so waiting for that seems better for that reason
alone. the existing backends for network-online.target all seem to do
reasonable things (wait until all links are in *some* stable state), so
we shouldn't lose anything from waiting.
(cherry picked from commit dc101d9fef9c4c4f27251cdb500dd7b21aa3718f)
| pennae | 2022-01-17 | 1 | -1/+1 |
| * | | Merge pull request #155366 from NixOS/backport-155122-to-release-21.11•••[Backport release-21.11] php: 7.4.26 -> 7.4.27, 8.0.13 -> 8.0.14 | Elis Hirwing | 2022-01-18 | 2 | -4/+4 |
| |\ \ |
|
| | * | | php: 8.0.13 -> 8.0.14•••(cherry picked from commit 5fc1a37f1be2f8b1b50125926fe1d1bf6ecb1377)
| Pol Dellaiera | 2022-01-17 | 1 | -2/+2 |
| | * | | php: 7.4.26 -> 7.4.27•••(cherry picked from commit 6e4afa39a5952a5d834cbe2d5d7f03a469b8d1c9)
| Pol Dellaiera | 2022-01-17 | 1 | -2/+2 |
| * | | | Merge pull request #155434 from NixOS/backport-152126-to-release-21.11•••[Backport release-21.11] mkFranzDerivation: fix tray icon on Wayland | Bobby Rong | 2022-01-18 | 1 | -1/+2 |
| |\ \ \ |
|
| | * | | | mkFranzDerivation: fix tray icon on Wayland•••(cherry picked from commit 8a9a6919de9e65736921b7336098901ff2e89b85)
| Henri Menke | 2022-01-17 | 1 | -1/+2 |
| |/ / / |
|
| * | | | Merge pull request #155268 from mweinelt/21.11/hostapd | Martin Weinelt | 2022-01-17 | 2 | -0/+45 |
| |\ \ \
| |_|/
|/| | |
|
| | * | | wpa_supplicant: patch patch SAE/EAP-pwd side-channel attack update 2 | Martin Weinelt | 2022-01-16 | 1 | -0/+22 |
| | * | | hostapd: patch SAE/EAP-pwd side-channel attack update 2 | Martin Weinelt | 2022-01-16 | 1 | -0/+23 |
| * | | | lighttpd: add patch for CVE-2022-22707•••(cherry picked from commit e8146a035f3aba0fb6a16e7b08cd3fc64ddf8d8b)
| Robert Scott | 2022-01-17 | 1 | -0/+9 |
| * | | | Merge pull request #154801 from NixOS/backport-154467-to-release-21.11•••[Backport release-21.11] ferdi: 5.6.5 -> 5.6.10 | Maximilian Bosch | 2022-01-17 | 1 | -2/+2 |
| |\ \ \ |
|
| | * | | | ferdi: 5.6.5 -> 5.6.10•••(cherry picked from commit 2875c98aaf193dac2c5f05c272b65357a5e92889)
origin/backport-154467-to-release-21.11 | R. Ryantm | 2022-01-12 | 1 | -2/+2 |
| * | | | | Merge pull request #155388 from NixOS/backport-155374-to-release-21.11•••[Backport release-21.11] uriparser: Fix cross building | Janne Heß | 2022-01-17 | 1 | -2/+2 |
| |\ \ \ \ |
|
| | * | | | | uriparser: Fix cross building•••When cross building, we need to disable building tests or cmake will
complain about the missing gtest.
Also switching from targetPlatform to buildPlatform caused doCheck to be
properly set to false
(cherry picked from commit 9049874ff1e79408862d0ca7b854315c20526c73)
| Janne Heß | 2022-01-17 | 1 | -2/+2 |
| |/ / / / |
|
| * | | | | release.nix: fix eval with aarch64-, but not x86_64-darwin supported•••We emit a few jobs conditionally on supportDarwin which only checked for
x86_64-darwin in the past. This change makes it more modular by
transforming it into an attribute set which holds the two darwin
arches. Jobs needing aarch64-darwin or x86_64-darwin are now only
emitted if their respective platform is actually in supportedSystems.
This issue was discovered because the staging-next-21.11 jobset had
commented out x86_64-darwin (presumably due to a build load issue).
(cherry picked from commit 533eb9866c6dfe56637f2f8c76fcca3c7b47f72f)
| sternenseemann | 2022-01-17 | 1 | -5/+8 |
| * | | | | Merge pull request #153858 from NixOS/backport-153273-to-release-21.11 | Patrick Hilhorst | 2022-01-17 | 3 | -17/+17 |
| |\ \ \ \ |
|
| | * | | | | nixos/test-driver: also passthru driverInteractive•••(cherry picked from commit d4dc638d77fc31aaa3000090e50a69fa6096fb86)
origin/backport-153273-to-release-21.11 | Patrick Hilhorst | 2022-01-07 | 3 | -17/+17 |
| * | | | | | Merge pull request #155365 from NixOS/backport-155305-to-release-21.11•••[Backport release-21.11] vscode-extensions.stkb.rewrap: 1.15.4 -> 1.16.0 | Bobby Rong | 2022-01-17 | 1 | -2/+2 |
| |\ \ \ \ \
| |_|_|_|/
|/| | | | |
|
| | * | | | | vscode-extensions.stkb.rewrap: 1.15.4 -> 1.16.0•••(cherry picked from commit 31dda65403b5a81ad90baaa7b2aafd4645319517)
| datafoo | 2022-01-17 | 1 | -2/+2 |
| |/ / / / |
|
| * | | | | Merge pull request #155201 from NixOS/backport-154193-to-release-21.11•••[Backport release-21.11] keycloak: 15.1.0 -> 16.1.0 + module improvements | Kim Lindberger | 2022-01-17 | 3 | -34/+114 |
| |\ \ \ \ |
|
| | * | | | | keycloak service: allow to set empty frontend URL•••This together with extraConfig:
{
"subsystem=undertow"."server=default-server"."http-listener=default"."proxy-address-forwarding" = true;
"subsystem=undertow"."server=default-server"."https-listener=https"."proxy-address-forwarding" = true;
}
Allows to run Keycloak behind a reverse proxy that provides
X-Forwarded-* headers.
(cherry picked from commit 97a0cf62f098d21a31c4dc03294e4919e88c225f)
| Nikolay Amiantov | 2022-01-16 | 2 | -2/+11 |
| | * | | | | keycloak service: add themes support•••Custom themes can be packaged and then added using `themes` config
attribute.
(cherry picked from commit 84f70eefd1c4f90e892164afa39931a9fc5ba8db)
| Nikolay Amiantov | 2022-01-16 | 2 | -2/+56 |
| | * | | | | keycloak service: use 'attrsOf anything' for extraConfig•••(cherry picked from commit a42abe27c0b58749f1c563fc77305d145c739746)
| Nikolay Amiantov | 2022-01-16 | 1 | -1/+1 |
| | * | | | | keycloak service: update HTTPS configuration•••Keycloak 16.1.0 uses different way to configure HTTPS.
This requires us to order commands correctly, otherwise linked
objects will fail.
(cherry picked from commit 827267a27f300a8fe503986da2570bc3b9252e69)
| Nikolay Amiantov | 2022-01-16 | 1 | -4/+16 |
| | * | | | | keycloak service: ordering for CLI script•••Allow update commands in the script to be ordered using `mkOrder`.
If we encounter ordered sub-objects we sort them by priority.
To implement this we now explicitly pass current node in `recurse`,
which also allows us to clean up edge case for top-level node.
Also refactor `recurse` to avoid passing result text argument; we
weren't tail recursive before anyway.
(cherry picked from commit 3c7e78cc6ab73ca9b0dbcb376122befa59098300)
| Nikolay Amiantov | 2022-01-16 | 1 | -23/+28 |
| | * | | | | keycloak: 15.1.0 -> 16.1.0•••(cherry picked from commit 9bbcc98e304962e4b9b6a911707b87d1cedf8b83)
| Nikolay Amiantov | 2022-01-16 | 1 | -2/+2 |
| * | | | | | Merge pull request #155271 from blitz/tailscale-update•••[21.11] tailscale: 1.14.6 -> 1.20.1 | Bobby Rong | 2022-01-17 | 2 | -6/+6 |
| |\ \ \ \ \ |
|
| | * | | | | | tailscale: 1.18.2 -> 1.20.1•••https://github.com/tailscale/tailscale/releases/tag/v1.20.1
(cherry picked from commit cca85c7c3d1e4708b89a92d5bd11200aa2d6675a)
| Ivan Petkov | 2022-01-16 | 1 | -3/+3 |
| | * | | | | | tailscale: remove old xversion tag•••Tailscale stopped using that tag several releases ago.
(cherry picked from commit 6675c8e96d401881c60f3add3c5703319fc645f4)
| Brad Fitzpatrick | 2022-01-16 | 1 | -2/+0 |
| | * | | | | | tailscale: 1.18.1 -> 1.18.2•••https://github.com/tailscale/tailscale/releases/tag/v1.18.2
(cherry picked from commit 73f84c6a7e36b1dc2492f4e5bc966f1b222efdf2)
| Thomas Gerbet | 2022-01-16 | 1 | -2/+2 |
| | * | | | | | tailscale: 1.14.6 -> 1.18.1•••(cherry picked from commit 42a7e36904bae3a1eea01b189ddd1dfdad4509e0)
| James Walker | 2022-01-16 | 2 | -4/+6 |
| | | |_|_|/
| |/| | | |
|
| * | | | | | Merge pull request #155164 from NixOS/backport-154976-to-release-21.11•••[Backport release-21.11] Kernels 2022-01-14 | ajs124 | 2022-01-17 | 2 | -28/+28 |
| |\ \ \ \ \
| |/ / / /
|/| | | | |
|
| | * | | | | linux/hardened/patches/5.4: 5.4.170-hardened1 -> 5.4.171-hardened1•••(cherry picked from commit e19681509b81005eff58ea063c8d2669642aaf36)
| TredwellGit | 2022-01-16 | 1 | -5/+5 |
| | * | | | | linux/hardened/patches/5.15: 5.15.12-hardened1 -> 5.15.14-hardened1•••(cherry picked from commit ead5545be3916a68d69a6a1095ea8b750d43f3fb)
| TredwellGit | 2022-01-16 | 1 | -5/+5 |
| | * | | | | linux/hardened/patches/5.10: 5.10.89-hardened1 -> 5.10.91-hardened1•••(cherry picked from commit f14a7feff2c34a9546b828b10d0dff8336a2c649)
| TredwellGit | 2022-01-16 | 1 | -5/+5 |
| | * | | | | linux/hardened/patches/4.19: 4.19.224-hardened1 -> 4.19.225-hardened1•••(cherry picked from commit 56224051e3b96df0b4004ba981c6423d9784ea4a)
| TredwellGit | 2022-01-16 | 1 | -5/+5 |
| | * | | | | linux/hardened/patches/4.14: 4.14.261-hardened1 -> 4.14.262-hardened1•••(cherry picked from commit 230a6813d9ef8efa262730983b77401d1dbc8e27)
| TredwellGit | 2022-01-16 | 1 | -5/+5 |
| | * | | | | linux-rt_5_4: 5.4.161-rt67 -> 5.4.170-rt68•••(cherry picked from commit c5f9bb4d2185d04ac9f3f00feced506ff0170ffc)
| TredwellGit | 2022-01-16 | 1 | -3/+3 |
| * | | | | | Merge pull request #155127 from NixOS/backport-155126-to-release-21.11 | Ninjatrappeur | 2022-01-16 | 1 | -1/+0 |
| |\ \ \ \ \ |
|
| | * | | | | | prosody: remove outdated passthrough test reference•••4369bebd9a32658ded22b580886587cdc577a29d removed the prosody-mysql
test. We forgot to remove the associated passthru test entry in the
prosody derivation.
(cherry picked from commit 3469429c39f09f0f6b848e76a1c24770bae02d83)
| Félix Baylac-Jacqué | 2022-01-15 | 1 | -1/+0 |
| * | | | | | | Merge pull request #155141 from NixOS/backport-155138-to-release-21.11•••[Backport release-21.11] signal-desktop: Fix "Failed to load GLES library: libGLESv2.so.2" | Michael Weiss | 2022-01-16 | 1 | -0/+3 |
| |\ \ \ \ \ \ |
|
| | * | | | | | | signal-desktop: Fix "Failed to load GLES library: libGLESv2.so.2"•••A new symlink is required to fix the following error:
[3744707:0100/000000.911609:ERROR:egl_util.cc(74)] Failed to load GLES library: libGLESv2.so.2: libGLESv2.so.2: cannot open shared object file: No such file or directory
zsh: segmentation fault (core dumped) signal-desktop --enable-features=UseOzonePlatform --ozone-platform=wayland
The GPU acceleration still fails (not sure if it worked before) but at least
"signal-desktop --enable-features=UseOzonePlatform --ozone-platform=wayland"
launches again (without "--disable-gpu"):
[40492:0115/184719.611780:ERROR:gpu_process_host.cc(968)] GPU process exited unexpectedly: exit_code=139
[40492:0115/184720.256775:ERROR:gpu_process_host.cc(968)] GPU process exited unexpectedly: exit_code=139
[40492:0115/184720.892093:ERROR:gpu_process_host.cc(968)] GPU process exited unexpectedly: exit_code=139
[40620:0115/184721.033949:ERROR:sandbox_linux.cc(376)] InitializeSandbox() called with multiple threads in process gpu-process.
[40620:0115/184721.069600:ERROR:gl_utils.cc(318)] [.RendererMainThread-0x227200113f00]GL Driver Message (OpenGL, Performance, GL_CLOSE_PATH_NV, High): GPU stall due to ReadPixels
[40620:0115/184721.133265:ERROR:gl_utils.cc(318)] [.RendererMainThread-0x227200113f00]GL Driver Message (OpenGL, Performance, GL_CLOSE_PATH_NV, High): GPU stall due to ReadPixels
[40620:0115/184721.158341:ERROR:gl_utils.cc(318)] [.RendererMainThread-0x227200113f00]GL Driver Message (OpenGL, Performance, GL_CLOSE_PATH_NV, High): GPU stall due to ReadPixels
(After three GPU process crashes Chromium should automatically fall back
to software rendering.)
Fix #155050 (it only fixes the crashes though, not the underlying
issue, but that's likely all we can do for the moment as other Linux
distributions are affected as well; Ozone/Wayland is just not stable yet)
(cherry picked from commit 892a9971b04a8e2d1661331469554b556ac620ae)
| Michael Weiss | 2022-01-15 | 1 | -0/+3 |
| | |/ / / / / |
|
| * | | | | | | Merge pull request #150551 from justinas/backport-freon-45•••[21.11] gnomeExtensions.freon: 44 -> 45, patch binary paths | Bobby Rong | 2022-01-16 | 2 | -3/+109 |
| |\ \ \ \ \ \
| |_|_|/ / /
|/| | | | | |
|
