summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* less: 600 -> 608•••Back on a recommended/non-beta version. http://greenwoodsoftware.com/less/news.608.html (cherry picked from commit b61fb50ddee8727d87b0c4f9ba4ed0b74961bd33) origin/backport-189974-to-release-22.05ash2022-09-061-2/+2
* Merge pull request #189719 from sersorrel/backport-189610-to-release-22.05•••[22.05] xivlauncher: 1.0.0.9 -> 1.0.1.0Bobby Rong2022-09-062-6/+7
|\
| * xivlauncher: add sersorrel to maintainers•••(cherry picked from commit ebafad7e76a58f4af0549b97d32bb781fd8a5233) ash2022-09-041-1/+1
| * xivlauncher: 1.0.0.9 -> 1.0.1.0•••(cherry picked from commit 92354582ddf5040015a785aba867ed92c65afdea) ash2022-09-042-5/+6
* | Merge pull request #189861 from NixOS/backport-154860-to-release-22.05•••[Backport release-22.05] findup: init at 1.0Bobby Rong2022-09-062-0/+41
|\ \
| * | findup: init at 1.0•••(cherry picked from commit f78e768d4971cabd98bf078f2c0113aafbd939f8) hiljusti2022-09-052-0/+41
* | | Merge pull request #189933 from NixOS/backport-188803-to-release-22.05Martin Weinelt2022-09-061-4/+24
|\ \ \ | |/ / |/| |
| * | python3Packages.markdown2: add patch for xss issue SNYK-PYTHON-MARKDOWN2-2606985•••(cherry picked from commit c64ca0283bce0c57678d2d5422bb3227f5850098) Robert Scott2022-09-051-1/+15
| * | python3Packages.markdown2: 2.4.1 -> 2.4.3•••(cherry picked from commit 7f0b3c288fb128c0681e9bec2098aeb70d71252d) Robert Scott2022-09-051-2/+2
| * | python3Packages.markdown2: fix tests to actually run•••(cherry picked from commit 26501c52687e2a33260bc7b6acf1ef51db76a984) Robert Scott2022-09-051-1/+7
|/ /
* | Merge pull request #189856 from NixOS/backport-189852-to-release-22.05Martin Weinelt2022-09-052-13/+12
|\ \
| * | paperless: move `PYTHONPATH` definition to module•••`paperless-ngx.pythonPath` was incomplete due to the missing paperless-ngx source, so it had to be amended in the service. Instead of amending it, define it entirely in the service. This allows an override of `paperless-ngx.propagatedBuildInputs` to be reflected in the service's PYTHONPATH. (cherry picked from commit 783f8f16c16ba47daffff2c6b92a96eb8bb5d363) Erik Arvstedt2022-09-052-4/+2
| * | nixos/paperless: extract variable `pkg`•••(cherry picked from commit 310b9fe58d34a4d655778bf561e8fb021e2d4b70) Erik Arvstedt2022-09-051-10/+11
|/ /
* | gnome.sushi: Fix video previews•••GStreamer was missing gtksink element. Fixes: https://github.com/NixOS/nixpkgs/issues/182542 (cherry picked from commit 09e38a1d8a8c034ec8be0fc2fd1b22139855a66d) Jan Tojnar2022-09-051-1/+1
* | Merge pull request #189731 from mweinelt/22.05/papercutsMartin Weinelt2022-09-042-14/+16
|\ \
| * | nixos/paperless: Restrict CAP_NET_BIND_SERVICE•••Handing CAP_NET_BIND_SERVICE to the `paperless-web.service` only makes sense when it actually wants to bind to a port < 1024. Don't hand it out if that is not the case. (cherry picked from commit f98011803ebbe7e68e2133a3405d4928f3c274c7) Martin Weinelt2022-09-041-2/+3
| * | paperless: Expose python environment in passthru•••This allows adding more python dependencies through overrides. (cherry picked from commit 73e10d9d5a150c2dbaac705389b9ca41fcc0626d) Martin Weinelt2022-09-041-5/+7
| * | nixos/paperless: Add pgsql via unix socket example•••Finding out how to connect paperless to a PostgreSQL database via unix sockets and peer authentication took me a few minutes, so leaving a hint in the extraConfig example seems like a good idea to me. Also remove unnecessary use of literalExpression for attribute set, it is only required for complex values like functions or values that depend on other values or packages. (cherry picked from commit 2d257f81019e6a9ee255a92810be771d753b8ba5) Martin Weinelt2022-09-041-5/+4
| * | nixos/paperless: Allow mbind syscall in paperless-web.services•••After uploading a document through the webinterface I started seeing it killed through the SYSBUS signal. Inspecting the call trace led me to liblapack's memory allocator, that uses the mbind syscall on Linux. (cherry picked from commit 94f00041f0cd3916be55bc90367a3e160717533f) Martin Weinelt2022-09-041-2/+2
| |/
* | Merge pull request #187902 from ereslibre/backport-wasmtime-0-39-1•••wasmtime: backport to release-22.05Guillaume Girol2022-09-041-15/+14
|\ \ | |/ |/|
| * wasmtime: disable tests on x86_64-darwin•••Remove tests on x86_64-darwin to avoid specific false errors due to the way Hydra runners are set up for this architecture. On this platform, on Hydra runners we see: `SIMD support requires SSE3, SSSE3, SSE4.1, and SSE4.2 on x86_64.` present in all failing tests. Thus, do not run tests on this platform to avoid false reports of this derivation being broken, because Hydra runners are set up in a way that this CPU features are not available. An example of automation marking this derivation as broken because the Hydra runs were reporting failures: 03bc5717445bbccda21d10eeecb6ded4c12d08fe. (cherry picked from commit 9c59fd919f7eb9ee1756d4773fc5bc4d36c03064) Rafael Fernández López2022-09-041-2/+8
| * wasmtime: 0.38.0 -> 0.39.1•••https://github.com/bytecodealliance/wasmtime/blob/v0.39.1/RELEASES.md Fixes CVE-2022-31146 and CVE-2022-31169. (cherry picked from commit 03119abf6b7de3bb5c36efdeaa18c0fc296dbc87) Thomas Gerbet2022-09-041-3/+4
| * wasmtime: 0.37.0 -> 0.38.0•••(cherry picked from commit d4ed4c52e182be106c273a2ee5f7196ca78dc523) Rafael Fernández López2022-09-041-3/+3
| * wasmtime: remove unneeded dependencies•••Also, add `ereslibre` as a maintainer (cherry picked from commit 7042b2fd9cff1c454d4f970fe52ac61981fac77a) Rafael Fernández López2022-09-041-11/+3
* | Merge pull request #189361 from NixOS/backport-180149-to-release-22.05•••[Backport release-22.05] nixos/gitlab: fix registry.issuer settingChristian Kögler2022-09-041-1/+1
|\ \
| * | nixos/gitlab: fix registry.issuer setting•••Prior to this change, the configuration value for `services.gitlab.registry.issuer` was only referenced by the docker-registry configuration and in the `gitlab-registry-cert` service while the gitlab config used the hard-coded value "gitlab-issuer". (cherry picked from commit e2a322b3cdd8e851c6c9f9c744e307a2b9a1ce33) origin/backport-180149-to-release-22.05WilliButz2022-09-011-1/+1
* | | Merge pull request #186904 from NixOS/backport-185833-to-release-22.05•••[Backport release-22.05] opentrack: 2.1.3 → 2022.3.0superherointj2022-09-041-44/+65
|\ \ \
| * | | opentrack: 2.1.3 → 2022.3.0•••Fixes #185520 (cherry picked from commit f38a47d64a95881b889a7bbd91f61321ff84a856) origin/backport-185833-to-release-22.05Francesco Zanini2022-08-161-44/+65
* | | | Merge pull request #189502 from NixOS/backport-189492-to-release-22.05Martin Weinelt2022-09-032-267/+267
|\ \ \ \
| * | | | thunderbird*: 102.2.1 -> 102.2.2•••https://www.thunderbird.net/en-US/thunderbird/102.2.1/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2022-38/ (cherry picked from commit 935aa2d5fdfb15f4e237c4876fc9928f9d04024c) Vladimír Čunát2022-09-022-267/+267
* | | | | Merge pull request #189604 from NixOS/backport-189592-to-release-22.05•••[Backport release-22.05] ungoogled-chromium: 105.0.5195.54 -> 105.0.5195.102Michael Weiss2022-09-031-5/+5
|\ \ \ \ \
| * | | | | ungoogled-chromium: 105.0.5195.54 -> 105.0.5195.102•••(cherry picked from commit 82d8999e044ed542bc3d9bd90f4cd5bcd5ee1dfd) origin/backport-189592-to-release-22.05Michael Weiss2022-09-031-5/+5
|/ / / / /
* | | | | Merge pull request #186792 from rnhmjoj/pr-monero-back•••[22.05] monero-{cli,gui}: 0.17.3.2 -> 0.18.1.0Michele Guerini Rocco2022-09-038-17/+48
|\ \ \ \ \
| * | | | | monero: 0.17.3.2 -> 0.18.1.0•••(cherry picked from commit 0ec615c46b67a1c300fce032fce433dfd2bc3ec3) Pavol Rusnak2022-08-151-3/+3
| * | | | | monero-gui: 0.17.3.2 -> 0.18.1.0•••(cherry picked from commit 749e42f16d8fbaa1b5c814c4a7dc17b937d2f67d) Pavol Rusnak2022-08-151-5/+5
| * | | | | randomx: 1.1.9 -> 1.1.10•••(cherry picked from commit bb202ec7218af0327d8b9b87758a96a35e1e6e7f) Stanisław Pitucha2022-08-152-3/+3
| * | | | | hidapi: 0.11.2 -> 0.12.0•••(cherry picked from commit 20749fc886cf6ade0726d0ab51a6c08428e51c73) R. Ryantm2022-08-151-2/+2
| * | | | | apple_sdk_11_0: fix build on x86_64-darwin and expose as attribute•••(cherry picked from commit d8f71776fffc7c98d82a58771b199a761d40cde1) Randy Eckenrode2022-08-152-3/+3
| * | | | | apple_sdk_11_0: provide SDK-specific `callPackage`•••(cherry picked from commit 9659c7abcebb9fd36d0a8184681574268d8b9296) Randy Eckenrode2022-08-151-1/+15
| * | | | | apple_sdk_11_0: expose 11.0 sdk stdenv as an attribute•••(cherry picked from commit 4741402d547773cc7d7f53814e65a3b81f23666c) Randy Eckenrode2022-08-151-0/+17
* | | | | | Merge pull request #189524 from primeos/chromium-backport•••[22.05] chromium: 104.0.5112.101 -> 105.0.5195.102 + ungoogled-chromiumMichael Weiss2022-09-033-21/+59
|\ \ \ \ \ \
| * | | | | | ungoogled-chromium: 104.0.5112.102 -> 105.0.5195.54•••(cherry picked from commit f9e02fa9452babef3c16cbff57a4e6ced2152206) Michael Weiss2022-09-032-8/+7
| * | | | | | chromium: 105.0.5195.52 -> 105.0.5195.102•••https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop.html This update includes 1 security fix. Google is aware of reports that an exploit for CVE-2022-3075 exists in the wild. CVEs: CVE-2022-3075 (cherry picked from commit ac10e9551d3e06344946f8f01fc14159e17f486a) Michael Weiss2022-09-031-7/+7
| * | | | | | chromium: Fix the build•••The build was failing with the following error: ``` [18950/51180] SOLINK ./libvk_swiftshader.sotls_transport_interface/dtls_transport_interface.omputils.o[K.otch.oos.oKx/unbundle:default)fault)ault) FAILED: libvk_swiftshader.so libvk_swiftshader.so.TOC python3 "../../build/toolchain/gcc_solink_wrapper.py" --readelf="readelf" --nm="nm" --sofile="./libvk_swiftshader.so" --tocfile="./libvk_swiftshader.so.TOC" --output="./libvk_swiftshader.so" -- clang++ -shared -Wl,-soname="libvk_swiftshader.so" -Wl,-Bsymbolic -Wl,--version-script=../../third_party/swiftshader/src/Vulkan/vk_swiftshader.lds -fuse-ld=lld -Wl,--fatal-warnings -Wl,--build-id=sha1 -fPIC -Wl,-z,noexecstack -Wl,-z,relro -Wl,-z,now -Wl,--icf=all -Wl,--color-diagnostics -Wl,-mllvm,-instcombine-lower-dbg-declare=0 -flto=thin -Wl,--thinlto-jobs=all -Wl,--thinlto-cache-dir=thinlto-cache -Wl,--thinlto-cache-policy=cache_size=10\%:cache_size_bytes=40g:cache_size_files=100000 -Wl,-mllvm,-import-instr-limit=30 -fwhole-program-vtables -Wl,--no-call-graph-profile-sort -m64 -no-canonical-prefixes -Wl,-O2 -Wl,--gc-sections -rdynamic -Wl,-z,defs -Wl,--as-needed -nostdlib++ -Wl,--lto-O0 -fsanitize=cfi-vcall -fsanitize=cfi-icall -o "./libvk_swiftshader.so" @"./libvk_swiftshader.so.rsp" ld.lld: error: unable to find library -l:libffi_pic.a clang++: error: linker command failed with exit code 1 (use -v to see invocation) ``` This turned out to be a regression from b6b51374fc7. That change was bad/undesirable in the first place and I only applied it to quickly fix another build error caused by incompatible wayland-protocols header files from a newer system version (Chromium bundles version 1.21 while we already package 1.26). The better fix for that wayland-protocols build issue is to pull in a patch that is already used/tested by the Arch package [0] and seems to originate from [1] (not sure if that patch was formally submitted yet). Alternatives to that patch would be to (we should probably first try the first approach if need be): 1) Build with wayland-protocols 1.21 from the system (by overriding the Nixpkgs package). 2) Dynamically link against libffi by patching [2] to use the other branch (`default_toolchain == "//build/toolchain/cros:target"`). Some additional details can be found in the GitHub PR [3]. Huge thanks to Lorenz Brun for his great analysis that enabled me to fix the build so that we can finally merge the update to Chromium M105 (which contains many important security fixes!). [0]: https://github.com/archlinux/svntogit-packages/commit/a353833a5a731abfaa465b658f61894a516aa49b [1]: https://bugs.chromium.org/p/angleproject/issues/detail?id=7582#c1 [2]: https://source.chromium.org/chromium/chromium/src/+/refs/tags/105.0.5195.52:build/config/linux/libffi/BUILD.gn [3]: https://github.com/NixOS/nixpkgs/pull/189033 Co-Authored-By: Lorenz Brun <lorenz@brun.one> (cherry picked from commit d932886d6ea5b4e5bf07247e54c29f77b9b69a20) Michael Weiss2022-09-032-4/+43
| * | | | | | chromium: 104.0.5112.101 -> 105.0.5195.52•••https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_30.html This update includes 24 security fixes. CVEs: CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042 CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3047 CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052 CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057 CVE-2022-3058 (cherry picked from commit 360844281a45dc6eb17168e5330c4bfd2df73ebc) Michael Weiss2022-09-031-10/+10
* | | | | | | Merge pull request #189239 from Ma27/element-web-update-22.05•••[22.05] element-{web,desktop}: 1.11.0 -> 1.11.4, fix CVE-2022-36059 & CVE-2022-36060Jonas Heinrich2022-09-033-10/+19
|\ \ \ \ \ \ \ | |_|_|_|_|_|/ |/| | | | | |
| * | | | | | element-desktop: work around broken resolutionsMaximilian Bosch2022-09-011-0/+2
| * | | | | | element-{web,desktop}: 1.11.0 -> 1.11.4, fix CVE-2022-36059 & CVE-2022-36060•••Backport of #189150, #186133. Maximilian Bosch2022-09-012-10/+17
* | | | | | | rustup: also patch binaries in libexec•••fixes https://github.com/NixOS/nixpkgs/issues/186052 (cherry picked from commit 56a690d7fb6d0ea98e67ed4ee0113d4f7ca17f54) Jörg Thalheim2022-09-031-5/+5
* | | | | | | Merge pull request #189545 from NixOS/backport-187968-to-release-22.05•••[Backport release-22.05] emacs: Enable xinput2 on version 29 and neweradisbladis2022-09-031-9/+4
|\ \ \ \ \ \ \ | |_|/ / / / / |/| | | | | |
generated by cgit v1.2.3 (git 2.52.0) at 2026-01-17 05:36:16 +0000