summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* gitlab: 14.6.2 -> 14.6.3•••(cherry picked from commit 60782fc57d2527c288376e65d80cec523bfdd389) origin/backport-156296-to-release-21.11Lara2022-01-233-8/+8
* Merge pull request #156323 from NixOS/backport-156249-to-release-21.11•••[Backport release-21.11] python310Packages.mattermostdriver: 7.3.1 -> 7.3.2Linus Heckemann2022-01-231-2/+2
|\
| * python310Packages.mattermostdriver: 7.3.1 -> 7.3.2•••(cherry picked from commit 607c7e95dc7928165af8ae3ce74e7056f6d428f1) R. Ryantm2022-01-231-2/+2
|/
* imagemagick: 7.1.0-19 -> 7.1.0-20•••https://github.com/ImageMagick/ImageMagick/releases/tag/7.1.0-20 (cherry picked from commit 74783209bf1905108fc5de24fbe273bcd2287168) Alvar Penning2022-01-231-5/+7
* Merge pull request #155767 from NixOS/backport-155739-to-release-21.11•••[Backport release-21.11] hydrus: 469 -> 470bBobby Rong2022-01-231-2/+2
|\
| * hydrus: 469 -> 470b•••(cherry picked from commit c7193ca132e0a7e204fbb36eb2f78286a1333349) Daniel Olsen2022-01-201-2/+2
* | Merge pull request #156250 from NixOS/backport-156198-to-release-21.11•••[Backport release-21.11] brave: 1.34.80 -> 1.34.81Mario Rodas2022-01-221-2/+2
|\ \
| * | brave: 1.34.80 -> 1.34.81•••https://github.com/brave/brave-browser/blob/master/CHANGELOG_DESKTOP.md#13481 (cherry picked from commit fafa1363f91d685135c8138f27e479ba72a837f2) TredwellGit2022-01-231-2/+2
|/ /
* | Merge pull request #156084 from NixOS/backport-155966-to-release-21.11•••[Backport release-21.11] ungoogled-chromium: 97.0.4692.71 -> 97.0.4692.99Michael Weiss2022-01-221-5/+5
|\ \
| * | ungoogled-chromium: 97.0.4692.71 -> 97.0.4692.99•••(cherry picked from commit fc8ddca83b9fb7b0375f7c176b5734a0f747939b) Michael Weiss2022-01-211-5/+5
* | | Merge pull request #154652 from NixOS/backport-147544-to-release-21.11•••[Backport release-21.11] stdenv: move overriden stdenv in closureGuillaume Girol2022-01-222-7/+8
|\ \ \
| * | | CODEOWNERS: added cab404•••(cherry picked from commit 706988fd4937048d30c52f3251965445e133fa76) origin/backport-147544-to-release-21.11Vladimir Serov2022-01-111-1/+1
| * | | stdenv: move overriden stdenv in closure•••Before that, base stdenv passed non-makeOverridable version of itself inside. This cause it to be lost on package-name.stdenv. (cherry picked from commit 523c701c0badbad5cadca2f847ef2f42846f4570) Vladimir Serov2022-01-111-6/+7
* | | | Merge pull request #156166 from NixOS/backport-156156-to-release-21.11•••[Backport release-21.11] signal-desktop: 5.27.0 -> 5.27.1Michael Weiss2022-01-221-2/+2
|\ \ \ \
| * | | | signal-desktop: 5.27.0 -> 5.27.1•••Version 5.27.1 is the last version with working Ozone/Wayland support but we'll have to update to a more recent version soon. See [0] for more details. [0]: https://github.com/NixOS/nixpkgs/pull/154003 (cherry picked from commit 1f7d88bba222e6cb297ae9da6b120db6cfba2c51) Michael Weiss2022-01-221-2/+2
* | | | | Merge pull request #156073 from NixOS/backport-155522-to-release-21.11•••[Backport release-21.11] types.singleLineStr: strings that don't contain '\n'pennae2022-01-222-1/+14
|\ \ \ \ \
| * | | | | types.singleLineStr: Improve description•••Co-authored-by: pennae <82953136+pennae@users.noreply.github.com> (cherry picked from commit 1394bfc32a7f2398815b000ad11812f2da7ea2d5) Jules Aguillon2022-01-211-1/+1
| * | | | | types.singleLineStr: Allow and trim trailing \n•••Allow a \n character at the end of the string and remove it during the merge function. An option of this type will resolve to the value "foo" whether it is set to "foo" or "foo\n". This is useful when using 'builtins.readFile' or ''-strings, which might add an unintended newline (for example, bash trim the final newline from a subshell). (cherry picked from commit 4baf8548fbf9957b53418e0aad06bd6a798c283e) Jules Aguillon2022-01-211-5/+12
| * | | | | types.singleLineStr: Disallow \r•••(cherry picked from commit f25a13212be9bd716db9420a59cb74ecab02937a) Jules Aguillon2022-01-211-3/+2
| * | | | | types.singleLineStr: strings that don't contain '\n'•••Add a new type, inheriting 'types.str' but checking whether the value doesn't contain any newline characters. The motivation comes from a problem with the 'users.users.${u}.openssh.authorizedKeys' option. It is easy to unintentionally insert a newline character at the end of a string, or even in the middle, for example: restricted_ssh_keys = command: keys: let prefix = '' command="${command}",no-pty,no-agent-forwarding,no-port-forwarding,no-X11-forwarding ''; in map (key: "${prefix} ${key}") keys; The 'prefix' string ends with a newline, which ends up in the middle of a key entry after a few manipulations. This is problematic because the key file is built by concatenating all the keys with 'concatStringsSep "\n"', with result in two entries for the faulty key: '' command="...",options... MY_KEY '' This is hard to debug and might be dangerous. This is now caught at build time. (cherry picked from commit df590070b007b2cd2f64647b2780c903506aa21f) Jules Aguillon2022-01-212-1/+8
* | | | | | Merge pull request #156143 from NixOS/backport-156120-to-release-21.11•••[Backport release-21.11] firefox-bin: 96.0 -> 96.0.2Mario Rodas2022-01-221-393/+393
|\ \ \ \ \ \
| * | | | | | firefox-bin: 96.0 -> 96.0.2•••(cherry picked from commit 6d40232a018ff444c1172278d68ae92378d72018) taku02022-01-221-393/+393
* | | | | | | Merge pull request #156164 from NixOS/backport-156075-to-release-21.11•••[Backport release-21.11] yt-dlp: 2021.12.27 -> 2022.1.21Mario Rodas2022-01-221-2/+2
|\ \ \ \ \ \ \ | |_|_|/ / / / |/| | | | | |
| * | | | | | yt-dlp: 2021.12.27 -> 2022.1.21•••(cherry picked from commit 36b052a6d5c3a0bff187105599de70c26702c83d) Sandro Jäckel2022-01-221-2/+2
|/ / / / / /
* | | | | | Merge pull request #155861 from NixOS/backport-154892-to-release-21.11•••[Backport release-21.11] sfxr-qt: 1.3.0 -> 1.4.0Bobby Rong2022-01-221-3/+7
|\ \ \ \ \ \ | |/ / / / / |/| | | | |
| * | | | | sfxr-qt: 1.3.0 -> 1.4.0•••And some formatting (cherry picked from commit d7d893c17a56070ee51e2a514d98d9fc6e3e93d0) Francesco Gazzetta2022-01-201-3/+7
* | | | | | accountsservice: build with systemd to allow user switching•••(cherry picked from commit a1a7963636d0c5187e342b7fc4a821abce7bdfb1) Lorenz Brun2022-01-221-0/+2
* | | | | | Merge pull request #156044 from NixOS/backport-156020-to-release-21.11Martin Weinelt2022-01-221-2/+2
|\ \ \ \ \ \
| * | | | | | firefox-unwrapped: 96.0.1 -> 96.0.2•••(cherry picked from commit 51252591303a0006d6c91f01c48ca64104a152be) R. Ryantm2022-01-211-2/+2
* | | | | | | Merge pull request #156103 from NixOS/backport-155064-to-release-21.11•••[Backport release-21.11] matrix-synapse: 1.49.2 -> 1.50.1Maximilian Bosch2022-01-223-2/+32
|\ \ \ \ \ \ \
| * | | | | | | matrix-synapse: 1.49.2 -> 1.50.1•••(cherry picked from commit ae7e8b427e6b807d32fade6034f3122e86d49ed3) Sumner Evans2022-01-211-2/+3
| * | | | | | | matrix_common: init at 1.0.0•••New required dependency for matrix-synapse (cherry picked from commit af080751af5752982a6adb43161a6e392d2da9eb) Sumner Evans2022-01-212-0/+29
|/ / / / / / /
* | | | | | | Merge pull request #155526 from NixOS/backport-145258-to-release-21.11•••[Backport release-21.11] steam: fix `/etc/resolv.conf` reference in FHS envMaximilian Bosch2022-01-211-1/+1
|\ \ \ \ \ \ \
| * | | | | | | steam: fix `/etc/resolv.conf` reference in FHS env•••It seems as if it's a problem if `/etc/resolv.conf` is a symlink to `/run/systemd/resolve/stub-resolv.conf` which is the case when using `systemd-resolved.service`: bwrap: Can't bind mount /oldroot/etc/resolv.conf on /newroot/etc/resolv.conf: Unable to mount source on destination: No such file or directory I confirmed that by following the symlink of `/etc/resolv.conf` (pointing to `/run/systemd/resolve/stub-resolv.conf`) with `readlink -f` the issues are all gone. (cherry picked from commit f3f82d83302f0ef41df881d38cf21c25c7507898) Maximilian Bosch2022-01-181-1/+1
* | | | | | | | Merge pull request #155898 from talyz/backport-keycloak-loadcredential•••[21.11] nixos/keycloak: Use LoadCredential to load secrets + module formattingKim Lindberger2022-01-211-402/+416
|\ \ \ \ \ \ \ \
| * | | | | | | | nixos/keycloak: Reformat the code with nixpkgs-fmttalyz2022-01-201-92/+102
| * | | | | | | | nixos/keycloak: Inherit library functions and builtins•••Instead of referencing all library functions through `lib.` and builtins through `builtins.` at every invocation, inherit them into the appropriate scope. talyz2022-01-201-287/+301
| * | | | | | | | nixos/keycloak: Use LoadCredential to load secrets•••Use systemd's LoadCredential mechanism to make the secret files available to the service. This gets rid of the privileged part of the ExecPreStart script which only served to copy these files and assign the correct permissions. There's been issues with this approach when used in combination with DynamicUser, where sometimes the user isn't created before the ExecPreStart script runs, causing the error install: invalid user ‘keycloak’ This should fix that issue. Unfortunately, all of the ExecPreStart script had to be moved to ExecStart, since credentials aren't provided to ExecPreStart. See https://github.com/systemd/systemd/issues/19604. talyz2022-01-201-41/+31
* | | | | | | | | Merge pull request #156092 from NixOS/backport-156038-to-release-21.11•••[Backport release-21.11] grafana: 8.3.3 -> 8.3.4Maximilian Bosch2022-01-211-4/+4
|\ \ \ \ \ \ \ \ \
| * | | | | | | | | grafana: 8.3.3 -> 8.3.4•••ChangeLog: https://github.com/grafana/grafana/releases/tag/v8.3.4 (cherry picked from commit b1a80228a69d8b9add9c2ccf8c045f667df2f784) Maximilian Bosch2022-01-211-4/+4
|/ / / / / / / / /
* | | | | | | | | Merge pull request #156085 from NixOS/backport-155965-to-release-21.11•••[Backport release-21.11] chromium: 97.0.4692.71 -> 97.0.4692.99Michael Weiss2022-01-211-7/+7
|\ \ \ \ \ \ \ \ \ | |_|_|_|_|_|_|/ / |/| | | | | | | |
| * | | | | | | | chromium: 97.0.4692.71 -> 97.0.4692.99•••https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop_19.html This update includes 26 security fixes. CVEs: CVE-2022-0289 CVE-2022-0290 CVE-2022-0291 CVE-2022-0292 CVE-2022-0293 CVE-2022-0294 CVE-2022-0295 CVE-2022-0296 CVE-2022-0297 CVE-2022-0298 CVE-2022-0300 CVE-2022-0301 CVE-2022-0302 CVE-2022-0303 CVE-2022-0304 CVE-2022-0305 CVE-2022-0306 CVE-2022-0307 CVE-2022-0308 CVE-2022-0309 CVE-2022-0310 CVE-2022-0311 (cherry picked from commit a1c5e5bc40749652503cd956e777455e2180b663) Michael Weiss2022-01-211-7/+7
|/ / / / / / / /
* | | | | | | | Merge pull request #156031 from NixOS/backport-155854-to-release-21.11•••[Backport release-21.11] nixos/networking: fix assertion on IPMasqueradepennae2022-01-211-1/+1
|\ \ \ \ \ \ \ \ | |_|_|_|_|/ / / |/| | | | | | |
| * | | | | | | nixos/networking: fix assertion on IPMasquerade•••(cherry picked from commit 9bfb803dce4bba176fcdf84f43a9ce2b5725df8b) datafoo2022-01-211-1/+1
* | | | | | | | Merge pull request #156049 from NixOS/backport-155234-to-release-21.11Patrick Hilhorst2022-01-212-0/+46
|\ \ \ \ \ \ \ \
| * | | | | | | | python3Packages.mutmut: init at 2.2.0•••(cherry picked from commit 4326ef50cfee1d36b026e9f79744466080494eab) Patrick Hilhorst2022-01-212-0/+46
| | |_|_|/ / / / | |/| | | | | |
* | | | | | | | Merge pull request #155469 from jyooru/backport/brave•••[Backport release-21.11] brave: 1.33.106 -> 1.34.80Bobby Rong2022-01-211-3/+3
|\ \ \ \ \ \ \ \ | |/ / / / / / / |/| | | | | | |
| * | | | | | | [21.11] brave: 1.33.106 -> 1.34.80•••https://github.com/brave/brave-browser/blob/master/CHANGELOG_DESKTOP.md#13480 (cherry picked from commit b1a677f080e1308ff4104698652f9b5908604461) Reason: Security vulnerability: #155316 TredwellGit2022-01-201-3/+3
* | | | | | | | Merge pull request #156023 from NixOS/backport-155929-to-release-21.11•••[Backport release-21.11] Kernels 2022-01-20Maximilian Bosch2022-01-214-8/+8
|\ \ \ \ \ \ \ \ | |_|/ / / / / / |/| | | | | | |
| * | | | | | | linux: 5.4.172 -> 5.4.173•••(cherry picked from commit 89cc4c1ee66927cf1a4ed84184884be672450e38) TredwellGit2022-01-211-2/+2
generated by cgit v1.2.3 (git 2.52.0) at 2026-01-17 05:17:49 +0000