From 32b599ecfa3eed0546c309b96da402c493eb173c Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Thu, 26 Jan 2023 01:20:17 +0000 Subject: [PATCH 01/35] btrfs-progs: 6.1.2 -> 6.1.3 --- pkgs/tools/filesystems/btrfs-progs/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/tools/filesystems/btrfs-progs/default.nix b/pkgs/tools/filesystems/btrfs-progs/default.nix index a24481bbae9e..8c04f5d23387 100644 --- a/pkgs/tools/filesystems/btrfs-progs/default.nix +++ b/pkgs/tools/filesystems/btrfs-progs/default.nix @@ -9,11 +9,11 @@ stdenv.mkDerivation rec { pname = "btrfs-progs"; - version = "6.1.2"; + version = "6.1.3"; src = fetchurl { url = "mirror://kernel/linux/kernel/people/kdave/btrfs-progs/btrfs-progs-v${version}.tar.xz"; - sha256 = "sha256-a+Zn2X89ZcC6V8MxyYsL07E89g2NMfqK0liCqtnXnXo="; + sha256 = "sha256-03/J7E+ld4sgqnVI/nBus6MAM4wUczGCca5UAk2scWc="; }; nativeBuildInputs = [ From ec1115c462018868d5795253daf8fabd5889bc92 Mon Sep 17 00:00:00 2001 From: Anders Kaseorg Date: Tue, 14 Feb 2023 21:09:31 -0800 Subject: [PATCH 02/35] debian-devscripts: Add missing Perl dependencies for uscan Signed-off-by: Anders Kaseorg --- pkgs/tools/misc/debian-devscripts/default.nix | 2 +- pkgs/top-level/perl-packages.nix | 16 ++++++++++++++++ 2 files changed, 17 insertions(+), 1 deletion(-) diff --git a/pkgs/tools/misc/debian-devscripts/default.nix b/pkgs/tools/misc/debian-devscripts/default.nix index 6b710f2e2c0d..c2b0f3fd2aef 100644 --- a/pkgs/tools/misc/debian-devscripts/default.nix +++ b/pkgs/tools/misc/debian-devscripts/default.nix @@ -27,7 +27,7 @@ in stdenv.mkDerivation rec { nativeBuildInputs = [ makeWrapper pkg-config ]; buildInputs = [ xz dpkg libxslt python setuptools curl gnupg diffutils bash-completion help2man ] ++ - (with perlPackages; [ perl CryptSSLeay LWP TimeDate DBFile FileDesktopEntry ParseDebControl LWPProtocolHttps ]); + (with perlPackages; [ perl CryptSSLeay LWP TimeDate DBFile FileDesktopEntry ParseDebControl LWPProtocolHttps Moo FileHomeDir IPCRun FileDirList FileTouch ]); preConfigure = '' export PERL5LIB="$PERL5LIB''${PERL5LIB:+:}${dpkg}"; diff --git a/pkgs/top-level/perl-packages.nix b/pkgs/top-level/perl-packages.nix index f115511a1183..f84085c8c3c2 100644 --- a/pkgs/top-level/perl-packages.nix +++ b/pkgs/top-level/perl-packages.nix @@ -9139,6 +9139,22 @@ let }; }; + FileDirList = buildPerlPackage { + version = "0.05"; + pname = "File-DirList"; + src = fetchurl { + url = "mirror://cpan/authors/id/T/TP/TPABA/File-DirList/File-DirList-0.05.tar.gz"; + sha256 = "sha256-mTt9dmLlV5hEih7azLmr0oHSvSO+fquZ9Wm44pYtO8M="; + }; + preCheck = '' + export HOME="$TMPDIR" + ''; + meta = { + description = "Provide a sorted list of directory content"; + license = with lib.licenses; [ artistic1 gpl1Plus ]; + }; + }; + FileFindIterator = buildPerlPackage { pname = "File-Find-Iterator"; version = "0.4"; From 2396a492f6119df7224e84bedc61d82af005708e Mon Sep 17 00:00:00 2001 From: Adam Joseph Date: Thu, 16 Feb 2023 11:47:59 -0800 Subject: [PATCH 03/35] spandsp: fix cross compilation --- pkgs/development/libraries/spandsp/default.nix | 1 + 1 file changed, 1 insertion(+) diff --git a/pkgs/development/libraries/spandsp/default.nix b/pkgs/development/libraries/spandsp/default.nix index f2bc63d4f6d6..2c96e60c6d37 100644 --- a/pkgs/development/libraries/spandsp/default.nix +++ b/pkgs/development/libraries/spandsp/default.nix @@ -10,6 +10,7 @@ stdenv.mkDerivation rec { outputs = [ "out" "dev" ]; makeFlags = [ "CC=${stdenv.cc.targetPrefix}cc" + "CC_FOR_BUILD=${buildPackages.stdenv.cc}/bin/cc" ]; configureFlags = [ From c1cce191c6e8a630624d2ccfd0a9479897569206 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Fri, 17 Feb 2023 10:22:09 +0000 Subject: [PATCH 04/35] python310Packages.txtorcon: 22.0.0 -> 23.0.0 --- pkgs/development/python-modules/txtorcon/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/python-modules/txtorcon/default.nix b/pkgs/development/python-modules/txtorcon/default.nix index 85385347b96f..a329e0965cc8 100644 --- a/pkgs/development/python-modules/txtorcon/default.nix +++ b/pkgs/development/python-modules/txtorcon/default.nix @@ -20,11 +20,11 @@ buildPythonPackage rec { pname = "txtorcon"; - version = "22.0.0"; + version = "23.0.0"; src = fetchPypi { inherit pname version; - sha256 = "sha256-iaG2XjKks2nWfmwWY4f7xGjMXQUidEjSOaXn6XGKoFM="; + sha256 = "sha256-AiX/rWdokTeEmtmtNK21abDYj5rwRQMABnpfkB6ZQyU="; }; propagatedBuildInputs = [ From 9fd7b0ebfe8c4f491940d6a311030d6cac878394 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Fri, 17 Feb 2023 10:49:58 +0000 Subject: [PATCH 05/35] python310Packages.pulumi-aws: 5.29.1 -> 5.30.0 --- pkgs/development/python-modules/pulumi-aws/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/python-modules/pulumi-aws/default.nix b/pkgs/development/python-modules/pulumi-aws/default.nix index 8c52852b98c6..ae388396fd3f 100644 --- a/pkgs/development/python-modules/pulumi-aws/default.nix +++ b/pkgs/development/python-modules/pulumi-aws/default.nix @@ -12,7 +12,7 @@ buildPythonPackage rec { pname = "pulumi-aws"; # Version is independant of pulumi's. - version = "5.29.1"; + version = "5.30.0"; format = "setuptools"; disabled = pythonOlder "3.7"; @@ -21,7 +21,7 @@ buildPythonPackage rec { owner = "pulumi"; repo = "pulumi-aws"; rev = "refs/tags/v${version}"; - hash = "sha256-sdefoQgZ58re2VtIvNQjbjAb9aateZlGSeTAiVO6JGo="; + hash = "sha256-XRn5kMbbbbk5+X8vah44cAHv2MMySK0ToO8ga5FWSuA="; }; sourceRoot = "${src.name}/sdk/python"; From 5dd7384427551afb1df2e99cb9ebba7ec07258f4 Mon Sep 17 00:00:00 2001 From: Nicholas Sielicki Date: Sat, 18 Feb 2023 19:08:41 +0000 Subject: [PATCH 06/35] linuxPackages.ena: 2.8.2 -> 2.8.3 Signed-off-by: Nicholas Sielicki --- pkgs/os-specific/linux/ena/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/os-specific/linux/ena/default.nix b/pkgs/os-specific/linux/ena/default.nix index fe056be74a7e..e3529c97e7ba 100644 --- a/pkgs/os-specific/linux/ena/default.nix +++ b/pkgs/os-specific/linux/ena/default.nix @@ -1,14 +1,14 @@ { lib, stdenv, fetchFromGitHub, kernel }: stdenv.mkDerivation rec { - version = "2.8.2"; + version = "2.8.3"; name = "ena-${version}-${kernel.version}"; src = fetchFromGitHub { owner = "amzn"; repo = "amzn-drivers"; rev = "ena_linux_${version}"; - sha256 = "sha256-KlRNI2lnUbNeQGY1G+Qm683yXRTNCJwWIri51+PAi9o="; + sha256 = "sha256-Z5BCqqC4FNKHqpocJ6CsHwhh5sszj5QfxiN6+Dkaqek="; }; hardeningDisable = [ "pic" ]; From b391669506f3d7fbb2c4bf859e85fc986ff956b0 Mon Sep 17 00:00:00 2001 From: Nicholas Sielicki Date: Sat, 18 Feb 2023 19:13:56 +0000 Subject: [PATCH 07/35] pythonPackages.asyncssh: unbroken on darwin Marked as broken via bulk commit: 65db3b1 Found to build, pass tests, and function properly on darwin-x86_64. Signed-off-by: Nicholas Sielicki --- pkgs/development/python-modules/asyncssh/default.nix | 1 - 1 file changed, 1 deletion(-) diff --git a/pkgs/development/python-modules/asyncssh/default.nix b/pkgs/development/python-modules/asyncssh/default.nix index 4165db53b128..a597c1bdf2c7 100644 --- a/pkgs/development/python-modules/asyncssh/default.nix +++ b/pkgs/development/python-modules/asyncssh/default.nix @@ -78,7 +78,6 @@ buildPythonPackage rec { ]; meta = with lib; { - broken = stdenv.isDarwin; description = "Asynchronous SSHv2 Python client and server library"; homepage = "https://asyncssh.readthedocs.io/"; changelog = "https://github.com/ronf/asyncssh/blob/v${version}/docs/changes.rst"; From 26351db9a8c1638c98bc3ad721d660be5e43e71c Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 02:33:13 +0000 Subject: [PATCH 08/35] python310Packages.frozendict: 2.3.4 -> 2.3.5 --- pkgs/development/python-modules/frozendict/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/python-modules/frozendict/default.nix b/pkgs/development/python-modules/frozendict/default.nix index 8c6c79c3ec6e..6e3aac99828e 100644 --- a/pkgs/development/python-modules/frozendict/default.nix +++ b/pkgs/development/python-modules/frozendict/default.nix @@ -8,7 +8,7 @@ buildPythonPackage rec { pname = "frozendict"; - version = "2.3.4"; + version = "2.3.5"; format = "setuptools"; disabled = pythonOlder "3.7"; @@ -17,7 +17,7 @@ buildPythonPackage rec { owner = "Marco-Sulla"; repo = "python-frozendict"; rev = "refs/tags/v${version}"; - hash = "sha256-rDorFoVHiwbkRsIIA2MLKPHJ9HWJw2FKZ5iFHEiqzhg="; + hash = "sha256-IlKhqQvNaYz4+U8UJ/fGUNNTC3RjyGKCJUzJ6J431Vw="; }; postPatch = '' From 3824ca44a6416817c7e72ea8672a42c971eb98be Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 05:16:10 +0000 Subject: [PATCH 09/35] s2n-tls: 1.3.36 -> 1.3.37 --- pkgs/development/libraries/s2n-tls/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/libraries/s2n-tls/default.nix b/pkgs/development/libraries/s2n-tls/default.nix index afb872287413..ddf4257afeee 100644 --- a/pkgs/development/libraries/s2n-tls/default.nix +++ b/pkgs/development/libraries/s2n-tls/default.nix @@ -8,13 +8,13 @@ stdenv.mkDerivation rec { pname = "s2n-tls"; - version = "1.3.36"; + version = "1.3.37"; src = fetchFromGitHub { owner = "aws"; repo = pname; rev = "v${version}"; - sha256 = "sha256-IL7+f+7Igvm7KeBpDwnIoIB8IUqg3JDEtLFQslBIENE="; + sha256 = "sha256-NqOr2R61s4aUjHWI2QkyLpxUm/+c4vkAUg+UDduu3j4="; }; nativeBuildInputs = [ cmake ]; From 6bdbb4797ee3fa4b46603afb95c8b92b26a24b9a Mon Sep 17 00:00:00 2001 From: techknowlogick Date: Sun, 19 Feb 2023 00:26:49 -0500 Subject: [PATCH 10/35] tea: 0.9.0 -> 0.9.2 Diff: https://gitea.com/gitea/tea/compare/v0.9.0...v0.9.2 --- pkgs/tools/misc/tea/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/tools/misc/tea/default.nix b/pkgs/tools/misc/tea/default.nix index cc68fa7c55fd..a576e70a3714 100644 --- a/pkgs/tools/misc/tea/default.nix +++ b/pkgs/tools/misc/tea/default.nix @@ -2,14 +2,14 @@ buildGoModule rec { pname = "tea"; - version = "0.9.0"; + version = "0.9.2"; src = fetchFromGitea { domain = "gitea.com"; owner = "gitea"; repo = "tea"; rev = "v${version}"; - sha256 = "sha256-Bvee8m/BXvPtaaD8xjVg9qzorO0ln6xHP1upPgWoD+A="; + sha256 = "sha256-sZfg8+LIu1Ejvmr/o4X3EOz3fv+RvLhrGRf2yy+6t8c="; }; vendorSha256 = "sha256-nb0lQEAaIYlGpodFQLhMk/24DmTgg5K3zQ4s/XY+Z1w="; From c154180073790ce7ebadd4c1204b14d938ef43ef Mon Sep 17 00:00:00 2001 From: Euan Kemp Date: Mon, 6 Jun 2022 06:56:21 +0000 Subject: [PATCH 11/35] k3s: add ipset runtime dependency Fixes #176445 The included change to the k3s test fails without the package change. --- nixos/tests/k3s/single-node.nix | 3 +++ pkgs/applications/networking/cluster/k3s/1_23/default.nix | 2 ++ pkgs/applications/networking/cluster/k3s/1_24/default.nix | 2 ++ pkgs/applications/networking/cluster/k3s/1_25/default.nix | 2 ++ pkgs/applications/networking/cluster/k3s/1_26/default.nix | 2 ++ 5 files changed, 11 insertions(+) diff --git a/nixos/tests/k3s/single-node.nix b/nixos/tests/k3s/single-node.nix index c120f461ddc9..d61595d889e2 100644 --- a/nixos/tests/k3s/single-node.nix +++ b/nixos/tests/k3s/single-node.nix @@ -77,6 +77,9 @@ import ../make-test-python.nix ({ pkgs, lib, k3s, ... }: machine.succeed("k3s kubectl wait --for 'condition=Ready' pod/test") machine.succeed("k3s kubectl delete -f ${testPodYaml}") + # regression test for #176445 + machine.fail("journalctl -o cat -u k3s.service | grep 'ipset utility not found'") + machine.shutdown() ''; }) diff --git a/pkgs/applications/networking/cluster/k3s/1_23/default.nix b/pkgs/applications/networking/cluster/k3s/1_23/default.nix index 72fbe89dd6b3..3abe8c675539 100644 --- a/pkgs/applications/networking/cluster/k3s/1_23/default.nix +++ b/pkgs/applications/networking/cluster/k3s/1_23/default.nix @@ -4,6 +4,7 @@ , socat , iptables , iproute2 +, ipset , bridge-utils , btrfs-progs , conntrack-tools @@ -249,6 +250,7 @@ buildGoModule rec { socat iptables iproute2 + ipset bridge-utils ethtool util-linux # kubelet wants 'nsenter' from util-linux: https://github.com/kubernetes/kubernetes/issues/26093#issuecomment-705994388 diff --git a/pkgs/applications/networking/cluster/k3s/1_24/default.nix b/pkgs/applications/networking/cluster/k3s/1_24/default.nix index 11037db5b6d3..9ebac6b7448e 100644 --- a/pkgs/applications/networking/cluster/k3s/1_24/default.nix +++ b/pkgs/applications/networking/cluster/k3s/1_24/default.nix @@ -4,6 +4,7 @@ , socat , iptables , iproute2 +, ipset , bridge-utils , btrfs-progs , conntrack-tools @@ -249,6 +250,7 @@ buildGoModule rec { socat iptables iproute2 + ipset bridge-utils ethtool util-linux # kubelet wants 'nsenter' from util-linux: https://github.com/kubernetes/kubernetes/issues/26093#issuecomment-705994388 diff --git a/pkgs/applications/networking/cluster/k3s/1_25/default.nix b/pkgs/applications/networking/cluster/k3s/1_25/default.nix index b62eec692855..5b5fc097e77d 100644 --- a/pkgs/applications/networking/cluster/k3s/1_25/default.nix +++ b/pkgs/applications/networking/cluster/k3s/1_25/default.nix @@ -4,6 +4,7 @@ , socat , iptables , iproute2 +, ipset , bridge-utils , btrfs-progs , conntrack-tools @@ -249,6 +250,7 @@ buildGoModule rec { socat iptables iproute2 + ipset bridge-utils ethtool util-linux # kubelet wants 'nsenter' from util-linux: https://github.com/kubernetes/kubernetes/issues/26093#issuecomment-705994388 diff --git a/pkgs/applications/networking/cluster/k3s/1_26/default.nix b/pkgs/applications/networking/cluster/k3s/1_26/default.nix index cef2355a3da6..1b8b5a1b2a64 100644 --- a/pkgs/applications/networking/cluster/k3s/1_26/default.nix +++ b/pkgs/applications/networking/cluster/k3s/1_26/default.nix @@ -4,6 +4,7 @@ , socat , iptables , iproute2 +, ipset , bridge-utils , btrfs-progs , conntrack-tools @@ -249,6 +250,7 @@ buildGoModule rec { socat iptables iproute2 + ipset bridge-utils ethtool util-linux # kubelet wants 'nsenter' from util-linux: https://github.com/kubernetes/kubernetes/issues/26093#issuecomment-705994388 From d8d60a3af15ae1a6eea129989daa2ecb8fe8d7ac Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 06:38:46 +0000 Subject: [PATCH 12/35] vtm: 0.9.8t -> 0.9.8v --- pkgs/tools/misc/vtm/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/tools/misc/vtm/default.nix b/pkgs/tools/misc/vtm/default.nix index c3b5ae21f9f4..485006228b00 100644 --- a/pkgs/tools/misc/vtm/default.nix +++ b/pkgs/tools/misc/vtm/default.nix @@ -6,13 +6,13 @@ stdenv.mkDerivation rec { pname = "vtm"; - version = "0.9.8t"; + version = "0.9.8v"; src = fetchFromGitHub { owner = "netxs-group"; repo = "vtm"; rev = "v${version}"; - sha256 = "sha256-Q6kwGmxDThsaGIzSPhxd/kKz0nORf6K9lUJMU9CdIXU="; + sha256 = "sha256-7ECYbw51MXhYsbQxnuS4QUr5HN0cIUqgMx7V7D/kYTg="; }; nativeBuildInputs = [ cmake ]; From 883a0d45a72fede827962ddfcb8c4d3b515d1db2 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 07:51:13 +0000 Subject: [PATCH 13/35] syft: 0.71.0 -> 0.72.0 --- pkgs/tools/admin/syft/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/tools/admin/syft/default.nix b/pkgs/tools/admin/syft/default.nix index 2d7f00d2d649..6c627c3464d4 100644 --- a/pkgs/tools/admin/syft/default.nix +++ b/pkgs/tools/admin/syft/default.nix @@ -2,13 +2,13 @@ buildGoModule rec { pname = "syft"; - version = "0.71.0"; + version = "0.72.0"; src = fetchFromGitHub { owner = "anchore"; repo = pname; rev = "v${version}"; - hash = "sha256-Q02WBUMwboGkXrSjCT2C3vLYH4UlnavIudvOSb5g2bA="; + hash = "sha256-WpAD7/GiKD5+f9uqfRL5b3gMeUNaYHsosoNi0KdoBa0="; # populate values that require us to use git. By doing this in postFetch we # can delete .git afterwards and maintain better reproducibility of the src. leaveDotGit = true; @@ -22,7 +22,7 @@ buildGoModule rec { }; # hash mismatch with darwin proxyVendor = true; - vendorHash = "sha256-bUSQk4uJ4TAhjLS8pjqC486sa31z/MyZf5jDsnxhtSM="; + vendorHash = "sha256-8ArooLNyabjFTXYlfYTn63CewtPCT+p4+DNsebFoTj4="; nativeBuildInputs = [ installShellFiles ]; From 3a71397570fb20f16c0263248d0eb2b1f9b308c5 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 07:54:10 +0000 Subject: [PATCH 14/35] git-chglog: 0.15.2 -> 0.15.4 --- pkgs/applications/version-management/git-chglog/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/applications/version-management/git-chglog/default.nix b/pkgs/applications/version-management/git-chglog/default.nix index 6259bad88063..ad0d64a6ef62 100644 --- a/pkgs/applications/version-management/git-chglog/default.nix +++ b/pkgs/applications/version-management/git-chglog/default.nix @@ -2,16 +2,16 @@ buildGoModule rec { pname = "git-chglog"; - version = "0.15.2"; + version = "0.15.4"; src = fetchFromGitHub { owner = "git-chglog"; repo = "git-chglog"; rev = "v${version}"; - sha256 = "sha256-VB3JYXz50B/SkA/q1iET7p5uhArrF8JyhAWhcxLVsg8="; + sha256 = "sha256-rTJn2vUrEnmG2japqCxHv3BR9MpmMfpMLO2FBP6ONbw="; }; - vendorHash = "sha256-/5s9Dvce0JWu8DaUlrtnkN6N5esEmkFvOgq0tVLZGnM="; + vendorHash = "sha256-skhEHpSnxOTZrL8XLlQZL3s224mg8XRINKJnatYCQko="; ldflags = [ "-s" "-w" "-X=main.Version=v${version}" ]; From 6e9902c7f6ef9af4434f01db2c05a6a3f488ce97 Mon Sep 17 00:00:00 2001 From: Yueh-Shun Li <44064051+ShamrockLee@users.noreply.github.com> Date: Tue, 14 Feb 2023 17:22:39 +0800 Subject: [PATCH 15/35] apptainer: always specify either --with-suid or --without-suid build flag --- pkgs/applications/virtualization/singularity/generic.nix | 6 ++++-- pkgs/applications/virtualization/singularity/packages.nix | 8 ++++---- 2 files changed, 8 insertions(+), 6 deletions(-) diff --git a/pkgs/applications/virtualization/singularity/generic.nix b/pkgs/applications/virtualization/singularity/generic.nix index 562781b09a31..f20735e45e3d 100644 --- a/pkgs/applications/virtualization/singularity/generic.nix +++ b/pkgs/applications/virtualization/singularity/generic.nix @@ -52,6 +52,9 @@ in # SingularityCE 3.10.0 and above requires explicit --without-seccomp when libseccomp is not available. , enableSeccomp ? true # Whether the configure script treat SUID support as default + # When equal to enableSuid, it supress the --with-suid / --without-suid build flag + # It can be set to `null` to always pass either --with-suid or --without-suided + # Type: null or boolean , defaultToSuid ? true # Whether to compile with SUID support , enableSuid ? false @@ -131,8 +134,7 @@ buildGoModule { "--runstatedir=/var/run" ] ++ lib.optional (!enableSeccomp) "--without-seccomp" - ++ lib.optional (defaultToSuid && !enableSuid) "--without-suid" - ++ lib.optional (!defaultToSuid && enableSuid) "--with-suid" + ++ lib.optional (enableSuid != defaultToSuid) (if enableSuid then "--with-suid" else "--without-suid") ++ extraConfigureFlags ; diff --git a/pkgs/applications/virtualization/singularity/packages.nix b/pkgs/applications/virtualization/singularity/packages.nix index aa626443c538..a21066d77574 100644 --- a/pkgs/applications/virtualization/singularity/packages.nix +++ b/pkgs/applications/virtualization/singularity/packages.nix @@ -29,10 +29,10 @@ let # Apptainer doesn't depend on conmon conmon = null; - # defaultToSuid becomes false since Apptainer 1.1.0 - # https://github.com/apptainer/apptainer/pull/495 - # https://github.com/apptainer/apptainer/releases/tag/v1.1.0 - defaultToSuid = false; + # Apptainer builders require explicit --with-suid / --without-suid flag + # when building on a system with disabled unprivileged namespace. + # See https://github.com/NixOS/nixpkgs/pull/215690#issuecomment-1426954601 + defaultToSuid = null; }; singularity = callPackage From 41d114b234490b8c529d4895475eea53c8c4b726 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 08:55:14 +0000 Subject: [PATCH 16/35] fulcio: 1.0.0 -> 1.1.0 --- pkgs/tools/security/fulcio/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/tools/security/fulcio/default.nix b/pkgs/tools/security/fulcio/default.nix index 91ec0a5c2503..9640b0d1fc98 100644 --- a/pkgs/tools/security/fulcio/default.nix +++ b/pkgs/tools/security/fulcio/default.nix @@ -2,13 +2,13 @@ buildGoModule rec { pname = "fulcio"; - version = "1.0.0"; + version = "1.1.0"; src = fetchFromGitHub { owner = "sigstore"; repo = pname; rev = "v${version}"; - sha256 = "sha256-djnDHRD/vHfsem03896qcEb6uzgW3OCMBLqMDHca9vY="; + sha256 = "sha256-b2rn4et7Ze8XRc1Oa/DCfpva/rihtBLapbGlpYGvOjc="; # populate values that require us to use git. By doing this in postFetch we # can delete .git afterwards and maintain better reproducibility of the src. leaveDotGit = true; @@ -20,7 +20,7 @@ buildGoModule rec { find "$out" -name .git -print0 | xargs -0 rm -rf ''; }; - vendorSha256 = "sha256-X+M/E1kWhgS408PHwMg5jnDn2ad1NW6xvlLucuOLAeg="; + vendorHash = "sha256-8iNXBSEaKApu+qjGIYOLU6z/sxIVQhltgBRG9eN4RXw="; nativeBuildInputs = [ installShellFiles ]; From d6865fa8f5f4989b325a0d27e61df0d4f9f290b4 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 09:25:17 +0000 Subject: [PATCH 17/35] python310Packages.rokuecp: 0.17.0 -> 0.17.1 --- pkgs/development/python-modules/rokuecp/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/development/python-modules/rokuecp/default.nix b/pkgs/development/python-modules/rokuecp/default.nix index 44ea38934b9f..9ce035ea88b3 100644 --- a/pkgs/development/python-modules/rokuecp/default.nix +++ b/pkgs/development/python-modules/rokuecp/default.nix @@ -17,7 +17,7 @@ buildPythonPackage rec { pname = "rokuecp"; - version = "0.17.0"; + version = "0.17.1"; format = "pyproject"; disabled = pythonOlder "3.9"; @@ -25,8 +25,8 @@ buildPythonPackage rec { src = fetchFromGitHub { owner = "ctalkington"; repo = "python-rokuecp"; - rev = version; - hash = "sha256-M4eZzFphhc96Pf1bspD+Hvl9SUN1N72xnxdtVFiPc78="; + rev = "refs/tags/${version}"; + hash = "sha256-3GHG4FBGMiF5kNk2gl05xiX9+5tcrUyi4SUCXTa6Qco="; }; nativeBuildInputs = [ From 3c603d0e0b5b28f0d9c75d1ad011a302530351b2 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 09:57:43 +0000 Subject: [PATCH 18/35] python310Packages.gdown: 4.6.2 -> 4.6.3 --- pkgs/development/python-modules/gdown/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/python-modules/gdown/default.nix b/pkgs/development/python-modules/gdown/default.nix index 7f802a10b10f..7db92fffc88f 100644 --- a/pkgs/development/python-modules/gdown/default.nix +++ b/pkgs/development/python-modules/gdown/default.nix @@ -12,14 +12,14 @@ buildPythonPackage rec { pname = "gdown"; - version = "4.6.2"; + version = "4.6.3"; format = "setuptools"; disabled = pythonOlder "3.7"; src = fetchPypi { inherit pname version; - hash = "sha256-/2pPAymq6dek2NsInD+ga+CYOTG7BPgWGNm7Iwp2GHg="; + hash = "sha256-7G6pIu9ONhagVAc2VtmqLNxxf729CpTS931S0yOUMwc="; }; propagatedBuildInputs = [ From 0bc3315a9877defcbde8518e6b64cbfea320e69a Mon Sep 17 00:00:00 2001 From: Fabian Affolter Date: Sun, 19 Feb 2023 11:21:59 +0100 Subject: [PATCH 19/35] python310Packages.itanium-demangler: remove whitespaces --- pkgs/development/python-modules/itanium-demangler/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/python-modules/itanium-demangler/default.nix b/pkgs/development/python-modules/itanium-demangler/default.nix index d1251449af5c..67b71c9bf217 100644 --- a/pkgs/development/python-modules/itanium-demangler/default.nix +++ b/pkgs/development/python-modules/itanium-demangler/default.nix @@ -15,7 +15,7 @@ buildPythonPackage rec { src = fetchFromGitHub { owner = "whitequark"; repo = "python-itanium_demangler"; - rev = "v${version}"; + rev = "refs/tags/v${version}"; hash = "sha256-I6NUfckt2cocQt5dZSFadpshTCuA/6bVNauNXypWh+A="; }; @@ -28,7 +28,7 @@ buildPythonPackage rec { ]; pythonImportsCheck = [ - " itanium_demangler " + "itanium_demangler" ]; meta = with lib; { From 711b317cf7cf72d19e34be540ff1e2c982f5c291 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 10:42:55 +0000 Subject: [PATCH 20/35] python310Packages.types-docutils: 0.19.1.3 -> 0.19.1.4 --- pkgs/development/python-modules/types-docutils/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/python-modules/types-docutils/default.nix b/pkgs/development/python-modules/types-docutils/default.nix index 33e80f489521..a2ca0732797a 100644 --- a/pkgs/development/python-modules/types-docutils/default.nix +++ b/pkgs/development/python-modules/types-docutils/default.nix @@ -5,12 +5,12 @@ buildPythonPackage rec { pname = "types-docutils"; - version = "0.19.1.3"; + version = "0.19.1.4"; format = "setuptools"; src = fetchPypi { inherit pname version; - hash = "sha256-Nv4w3lbx7OGp96mQ1H2qeBta+DHSs/Lct9/QG4V8w9Q="; + hash = "sha256-G2SyG2Cf8fx3kdPZMPFLVrNq0JAp/ZfkXjTMiJ1nG18="; }; # Module doesn't have tests From 6ba1fdef07320078dd4eb9289f7d67815e381ae4 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 11:06:33 +0000 Subject: [PATCH 21/35] numix-icon-theme-circle: 23.02.12 -> 23.02.16 --- pkgs/data/icons/numix-icon-theme-circle/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/data/icons/numix-icon-theme-circle/default.nix b/pkgs/data/icons/numix-icon-theme-circle/default.nix index 91d3426f016a..b07057ba6899 100644 --- a/pkgs/data/icons/numix-icon-theme-circle/default.nix +++ b/pkgs/data/icons/numix-icon-theme-circle/default.nix @@ -2,13 +2,13 @@ stdenvNoCC.mkDerivation rec { pname = "numix-icon-theme-circle"; - version = "23.02.12"; + version = "23.02.16"; src = fetchFromGitHub { owner = "numixproject"; repo = pname; rev = version; - sha256 = "sha256-gQdVmF7ZzC+KjU0uQW6+sEw9Wz5940G60ebXqKHajuY="; + sha256 = "sha256-P/lg+7hx3WOmuWUKznFVKlPIB+MqlE3Nb/n8WK8aUM8="; }; nativeBuildInputs = [ gtk3 ]; From 582795ab5a273716e9e3843e0de6967eb59d88ef Mon Sep 17 00:00:00 2001 From: Charlotte Van Petegem Date: Sun, 19 Feb 2023 12:58:52 +0100 Subject: [PATCH 22/35] matrix-hookshot: init at 2.7.0 --- .../matrix-hookshot/default.nix | 76 ++++++++++++ .../matrix-hookshot/package.json | 111 ++++++++++++++++++ .../matrix-synapse/matrix-hookshot/pin.json | 5 + .../matrix-synapse/matrix-hookshot/update.sh | 35 ++++++ pkgs/top-level/all-packages.nix | 2 + 5 files changed, 229 insertions(+) create mode 100644 pkgs/servers/matrix-synapse/matrix-hookshot/default.nix create mode 100644 pkgs/servers/matrix-synapse/matrix-hookshot/package.json create mode 100644 pkgs/servers/matrix-synapse/matrix-hookshot/pin.json create mode 100755 pkgs/servers/matrix-synapse/matrix-hookshot/update.sh diff --git a/pkgs/servers/matrix-synapse/matrix-hookshot/default.nix b/pkgs/servers/matrix-synapse/matrix-hookshot/default.nix new file mode 100644 index 000000000000..9903dbb1184e --- /dev/null +++ b/pkgs/servers/matrix-synapse/matrix-hookshot/default.nix @@ -0,0 +1,76 @@ +{ lib +, stdenv +, fetchFromGitHub +, fetchYarnDeps +, makeWrapper +, matrix-sdk-crypto-nodejs +, mkYarnPackage +, rust +, rustPlatform +, napi-rs-cli +, nodejs +}: + +let + data = lib.importJSON ./pin.json; +in +mkYarnPackage rec { + pname = "matrix-hookshot"; + version = data.version; + + src = fetchFromGitHub { + owner = "matrix-org"; + repo = "matrix-hookshot"; + rev = data.version; + sha256 = data.srcHash; + }; + + packageJSON = ./package.json; + + offlineCache = fetchYarnDeps { + yarnLock = src + "/yarn.lock"; + sha256 = data.yarnHash; + }; + + cargoDeps = rustPlatform.fetchCargoTarball { + inherit src; + name = "${pname}-${version}"; + hash = "sha256-WolkDSS5wPxtltKzq4Er2nAQ0GrsF3imim3/Ge4eguQ="; + }; + + packageResolutions = { + "@matrix-org/matrix-sdk-crypto-nodejs" = "${matrix-sdk-crypto-nodejs}/lib/node_modules/@matrix-org/matrix-sdk-crypto-nodejs"; + }; + + nativeBuildInputs = [ + rustPlatform.cargoSetupHook + rustPlatform.rust.cargo + rustPlatform.rust.rustc + napi-rs-cli + makeWrapper + ]; + + buildPhase = '' + runHook preBuild + cd deps/${pname} + napi build --target ${rust.toRustTargetSpec stdenv.targetPlatform} --dts ../src/libRs.d.ts --release ./lib + yarn run build:app:fix-defs + yarn run build:app + yarn run build:web + cd ../.. + runHook postBuild + ''; + + postInstall = '' + makeWrapper '${nodejs}/bin/node' "$out/bin/matrix-hookshot" --add-flags \ + "$out/libexec/matrix-hookshot/deps/matrix-hookshot/lib/App/BridgeApp.js" + ''; + + doDist = false; + + meta = with lib; { + description = "A bridge between Matrix and multiple project management services, such as GitHub, GitLab and JIRA"; + maintainers = with maintainers; [ chvp ]; + license = licenses.asl20; + }; +} diff --git a/pkgs/servers/matrix-synapse/matrix-hookshot/package.json b/pkgs/servers/matrix-synapse/matrix-hookshot/package.json new file mode 100644 index 000000000000..6676f3bb9c30 --- /dev/null +++ b/pkgs/servers/matrix-synapse/matrix-hookshot/package.json @@ -0,0 +1,111 @@ +{ + "name": "matrix-hookshot", + "version": "2.7.0", + "description": "A bridge between Matrix and multiple project management services, such as GitHub, GitLab and JIRA.", + "main": "lib/app.js", + "repository": "https://github.com/matrix-org/matrix-hookshot", + "author": "matrix.org", + "license": "Apache-2.0", + "napi": { + "name": "matrix-hookshot-rs" + }, + "engines": { + "node": ">=16" + }, + "scripts": { + "build:web": "vite build", + "build:app": "tsc --project tsconfig.json", + "build:app:rs": "napi build --dts ../src/libRs.d.ts --release ./lib", + "build:app:fix-defs": "ts-node scripts/definitions-fixer.ts src/libRs.d.ts", + "build:docs": "ts-node scripts/build-metrics-docs.ts > docs/metrics.md && mdbook build", + "dev:web": "vite dev", + "build": "scripts/build-app.sh", + "clean:web": "rimraf public/", + "clean:app": "tsc --build tsconfig.json --clean", + "clean:app:rs": "rimraf src/libRs.d.ts target/", + "clean:docs": "mdbook clean", + "clean": "scripts/clean.sh", + "prepare": "yarn build", + "start": "node --require source-map-support/register lib/App/BridgeApp.js", + "start:app": "node --require source-map-support/register lib/App/BridgeApp.js", + "start:webhooks": "node --require source-map-support/register lib/App/GithubWebhookApp.js", + "start:matrixsender": "node --require source-map-support/register lib/App/MatrixSenderApp.js", + "test": "mocha -r ts-node/register tests/init.ts tests/*.ts tests/**/*.ts", + "test:cover": "nyc --reporter=lcov --reporter=text yarn test", + "lint": "yarn run lint:js && yarn run lint:rs", + "lint:js": "eslint -c .eslintrc.js 'src/**/*.ts' 'tests/**/*.ts' 'web/**/*.ts' 'web/**/*.tsx'", + "lint:rs": "cargo fmt --all -- --check", + "generate-default-config": "ts-node src/Config/Defaults.ts --config > config.sample.yml", + "validate-config": "ts-node src/Config/Config.ts" + }, + "dependencies": { + "@alloc/quick-lru": "^5.2.0", + "@octokit/auth-app": "^3.3.0", + "@octokit/auth-token": "^2.4.5", + "@octokit/rest": "^18.10.0", + "@octokit/webhooks": "^9.1.2", + "ajv": "^8.11.0", + "axios": "^0.24.0", + "cors": "^2.8.5", + "express": "^4.17.3", + "figma-js": "^1.14.0", + "http-status-codes": "^2.2.0", + "ioredis": "^5.2.3", + "jira-client": "^8.0.0", + "markdown-it": "^12.3.2", + "matrix-appservice-bridge": "^6.0.0", + "matrix-bot-sdk": "npm:@vector-im/matrix-bot-sdk@^0.6.3-element.0", + "matrix-widget-api": "^1.0.0", + "micromatch": "^4.0.4", + "mime": "^3.0.0", + "node-emoji": "^1.11.0", + "nyc": "^15.1.0", + "p-queue": "^6.6.2", + "prom-client": "^14.0.1", + "reflect-metadata": "^0.1.13", + "rss-parser": "^3.12.0", + "source-map-support": "^0.5.21", + "string-argv": "^0.3.1", + "tiny-typed-emitter": "^2.1.0", + "uuid": "^8.3.2", + "vm2": "^3.9.11", + "winston": "^3.3.3", + "xml2js": "^0.4.23", + "yaml": "^1.10.2" + }, + "devDependencies": { + "@codemirror/lang-javascript": "^6.0.2", + "@napi-rs/cli": "^2.2.0", + "@preact/preset-vite": "^2.2.0", + "@tsconfig/node16": "^1.0.3", + "@types/ajv": "^1.0.0", + "@types/chai": "^4.2.22", + "@types/cors": "^2.8.12", + "@types/express": "^4.17.14", + "@types/jira-client": "^7.1.0", + "@types/markdown-it": "^12.2.3", + "@types/micromatch": "^4.0.1", + "@types/mime": "^2.0.3", + "@types/mocha": "^9.0.0", + "@types/node": "^16", + "@types/node-emoji": "^1.8.1", + "@types/uuid": "^8.3.3", + "@types/xml2js": "^0.4.11", + "@typescript-eslint/eslint-plugin": "^5.4.0", + "@typescript-eslint/parser": "^5.4.0", + "@uiw/react-codemirror": "^4.12.3", + "chai": "^4.3.4", + "eslint": "^8.3.0", + "eslint-config-preact": "^1.3.0", + "eslint-plugin-mocha": "^9.0.0", + "mini.css": "^3.0.1", + "mocha": "^8.2.1", + "preact": "^10.5.15", + "rimraf": "^3.0.2", + "sass": "^1.51.0", + "ts-node": "^10.4.0", + "typescript": "^4.5.2", + "vite": "^2.9.13", + "vite-svg-loader": "^3.4.0" + } +} diff --git a/pkgs/servers/matrix-synapse/matrix-hookshot/pin.json b/pkgs/servers/matrix-synapse/matrix-hookshot/pin.json new file mode 100644 index 000000000000..d726307eeb00 --- /dev/null +++ b/pkgs/servers/matrix-synapse/matrix-hookshot/pin.json @@ -0,0 +1,5 @@ +{ + "version": "2.7.0", + "srcHash": "rW5fqKshnF2S4w55V2GaAa2RFVM+YbwRum9OwTTpYuA=", + "yarnHash": "0q71901ra9m9rbbczal1imqfba4b07bpr8hkpw1d1r9ghc2xjay4" +} diff --git a/pkgs/servers/matrix-synapse/matrix-hookshot/update.sh b/pkgs/servers/matrix-synapse/matrix-hookshot/update.sh new file mode 100755 index 000000000000..4d91ec753329 --- /dev/null +++ b/pkgs/servers/matrix-synapse/matrix-hookshot/update.sh @@ -0,0 +1,35 @@ +#!/usr/bin/env -S nix shell nixpkgs#nix nixpkgs#curl nixpkgs#jq nixpkgs#prefetch-yarn-deps nixpkgs#nix-prefetch-github nixpkgs#nix-prefetch-git --command bash + +if [ "$#" -gt 1 ] || [[ "$1" == -* ]]; then + echo "Regenerates packaging data for matrix-hookshot." + echo "Usage: $0 [git release tag]" + exit 1 +fi + +version="$1" + +set -euo pipefail + +if [ -z "$version" ]; then + version="$(curl "https://api.github.com/repos/matrix-org/matrix-hookshot/releases?per_page=1" | jq -r '.[0].tag_name')" +fi + +src="https://raw.githubusercontent.com/matrix-org/matrix-hookshot/$version" +src_hash=$(nix-prefetch-github matrix-org matrix-hookshot --rev ${version} | jq -r .sha256) + +tmpdir=$(mktemp -d) +trap 'rm -rf "$tmpdir"' EXIT + +pushd $tmpdir +curl -O "$src/yarn.lock" +yarn_hash=$(prefetch-yarn-deps yarn.lock) +popd + +curl -O "$src/package.json" +cat > pin.json << EOF +{ + "version": "$version", + "srcHash": "$src_hash", + "yarnHash": "$yarn_hash" +} +EOF diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix index fa05105d53c4..d595b9d8fc33 100644 --- a/pkgs/top-level/all-packages.nix +++ b/pkgs/top-level/all-packages.nix @@ -9068,6 +9068,8 @@ with pkgs; matrix-corporal = callPackage ../servers/matrix-corporal { }; + matrix-hookshot = callPackage ../servers/matrix-synapse/matrix-hookshot {}; + mautrix-facebook = callPackage ../servers/mautrix-facebook { }; mautrix-googlechat = callPackage ../servers/mautrix-googlechat { }; From 4902c3e0742b0c78996dbb5304878d22906ec71c Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 12:19:11 +0000 Subject: [PATCH 23/35] nixpacks: 1.3.1 -> 1.4.0 --- pkgs/applications/virtualization/nixpacks/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/applications/virtualization/nixpacks/default.nix b/pkgs/applications/virtualization/nixpacks/default.nix index 6631ff63ea20..c8072c903d26 100644 --- a/pkgs/applications/virtualization/nixpacks/default.nix +++ b/pkgs/applications/virtualization/nixpacks/default.nix @@ -2,16 +2,16 @@ rustPlatform.buildRustPackage rec { pname = "nixpacks"; - version = "1.3.1"; + version = "1.4.0"; src = fetchFromGitHub { owner = "railwayapp"; repo = pname; rev = "v${version}"; - sha256 = "sha256-lQHJ5Y+EMhERxOX062QMNPImAX9tjamGYFXYYUmhpys="; + sha256 = "sha256-v9ycluLfkrPDzjsMXtv7w9UHgMaGzTsJw4lT/KfRAu4="; }; - cargoHash = "sha256-z+DQkl/7kX5tLG9igPnEgHi9sJhB4NoutfV2/BV2U6A="; + cargoHash = "sha256-wVQEa1qS+JF6PHKvRrRFbSvj2qp6j14ErOQPkxP0uuA="; # skip test due FHS dependency doCheck = false; From 143c3a786959943d1c4405b45aaab5e388662a5f Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 12:20:41 +0000 Subject: [PATCH 24/35] librsync: 2.3.2 -> 2.3.3 --- pkgs/development/libraries/librsync/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/development/libraries/librsync/default.nix b/pkgs/development/libraries/librsync/default.nix index cc9778a3ba7d..7d08eba373d0 100644 --- a/pkgs/development/libraries/librsync/default.nix +++ b/pkgs/development/libraries/librsync/default.nix @@ -2,13 +2,13 @@ stdenv.mkDerivation rec { pname = "librsync"; - version = "2.3.2"; + version = "2.3.3"; src = fetchFromGitHub { owner = "librsync"; repo = "librsync"; rev = "v${version}"; - sha256 = "sha256-GNwOIZ2UjvsYIthotiPDBrabYzCGFG/YVEbwVa9Nwi4="; + sha256 = "sha256-s7WmQhLG6xoBJx5OsdZSD8bSuEC3xUCfbH/GzMAevGQ="; }; nativeBuildInputs = [ cmake ]; From 7e52a2bc76c05f83d9b5ec61eff86d50110440c7 Mon Sep 17 00:00:00 2001 From: Mario Rodas Date: Sun, 19 Feb 2023 12:21:00 +0000 Subject: [PATCH 25/35] librsync: 2.3.3 -> 2.3.4 https://github.com/librsync/librsync/releases/tag/v2.3.4 --- pkgs/development/libraries/librsync/default.nix | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/pkgs/development/libraries/librsync/default.nix b/pkgs/development/libraries/librsync/default.nix index 7d08eba373d0..5139c397de3a 100644 --- a/pkgs/development/libraries/librsync/default.nix +++ b/pkgs/development/libraries/librsync/default.nix @@ -2,13 +2,13 @@ stdenv.mkDerivation rec { pname = "librsync"; - version = "2.3.3"; + version = "2.3.4"; src = fetchFromGitHub { owner = "librsync"; repo = "librsync"; rev = "v${version}"; - sha256 = "sha256-s7WmQhLG6xoBJx5OsdZSD8bSuEC3xUCfbH/GzMAevGQ="; + sha256 = "sha256-fiOby8tOhv0KJ+ZwAWfh/ynqHlYC9kNqKfxNl3IhzR8="; }; nativeBuildInputs = [ cmake ]; @@ -19,6 +19,7 @@ stdenv.mkDerivation rec { meta = with lib; { description = "Implementation of the rsync remote-delta algorithm"; homepage = "https://librsync.sourceforge.net/"; + changelog = "https://github.com/librsync/librsync/releases/tag/v${version}"; license = licenses.lgpl2Plus; mainProgram = "rdiff"; platforms = platforms.unix; From d71d42707ed7d00201f99f6935044549f96869bb Mon Sep 17 00:00:00 2001 From: Yureka Date: Sun, 19 Feb 2023 13:39:59 +0100 Subject: [PATCH 26/35] ell: disable tests on musl (#217073) --- pkgs/os-specific/linux/ell/default.nix | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/pkgs/os-specific/linux/ell/default.nix b/pkgs/os-specific/linux/ell/default.nix index e4ac8c3929d6..6243076a2111 100644 --- a/pkgs/os-specific/linux/ell/default.nix +++ b/pkgs/os-specific/linux/ell/default.nix @@ -28,7 +28,8 @@ stdenv.mkDerivation rec { enableParallelBuilding = true; - doCheck = true; + # tests sporadically fail on musl + doCheck = !stdenv.hostPlatform.isMusl; meta = with lib; { homepage = "https://git.kernel.org/pub/scm/libs/ell/ell.git"; From 03ee925c058b7c0ad3786897883acae8adfd862a Mon Sep 17 00:00:00 2001 From: Jonas Heinrich Date: Fri, 17 Feb 2023 12:09:11 +0100 Subject: [PATCH 27/35] firejail: Fix double-dash usage on non-POSIX shells --- pkgs/os-specific/linux/firejail/default.nix | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/pkgs/os-specific/linux/firejail/default.nix b/pkgs/os-specific/linux/firejail/default.nix index 9ab8eac772ce..64607c5653eb 100644 --- a/pkgs/os-specific/linux/firejail/default.nix +++ b/pkgs/os-specific/linux/firejail/default.nix @@ -47,6 +47,12 @@ stdenv.mkDerivation rec { # Fix the path to 'xdg-dbus-proxy' hardcoded in the 'common.h' file substituteInPlace src/include/common.h \ --replace '/usr/bin/xdg-dbus-proxy' '${xdg-dbus-proxy}/bin/xdg-dbus-proxy' + + # Workaround for regression introduced in 0.9.72 preventing usage of + # end-of-options indicator "--" + # See https://github.com/netblue30/firejail/issues/5659 + substituteInPlace src/firejail/sandbox.c \ + --replace " && !arg_doubledash" "" ''; preConfigure = '' From 2e97ef89424435f8a48991f389daa869c441fad9 Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 13:17:26 +0000 Subject: [PATCH 28/35] sentry-cli: 2.12.0 -> 2.13.0 --- pkgs/development/tools/sentry-cli/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/development/tools/sentry-cli/default.nix b/pkgs/development/tools/sentry-cli/default.nix index f4fac6644646..9f1d0f592f4e 100644 --- a/pkgs/development/tools/sentry-cli/default.nix +++ b/pkgs/development/tools/sentry-cli/default.nix @@ -9,13 +9,13 @@ }: rustPlatform.buildRustPackage rec { pname = "sentry-cli"; - version = "2.12.0"; + version = "2.13.0"; src = fetchFromGitHub { owner = "getsentry"; repo = "sentry-cli"; rev = version; - sha256 = "sha256-HkaCaOVbEEy8H6gN9hoiDEEQM+XWyUJ4gYPxTlbBGgA="; + sha256 = "sha256-U6L2JQk/fYuxmZdt3CvPSaaEDRgZby0CiPT0nJGuVwA="; }; doCheck = false; @@ -25,7 +25,7 @@ rustPlatform.buildRustPackage rec { buildInputs = [ openssl ] ++ lib.optionals stdenv.isDarwin [ Security SystemConfiguration ]; nativeBuildInputs = [ pkg-config ]; - cargoHash = "sha256-4RUeUwixb5omcHT4jJHJKF2lYZE/4014DnrR2j7sen0="; + cargoHash = "sha256-gF3a8oCHmnNgatvbM1DeOQknXMMcHgerx2OcDdyqC8U="; meta = with lib; { homepage = "https://docs.sentry.io/cli/"; From 82224be8a2046ad8cc744e63496ae83f5fa86c48 Mon Sep 17 00:00:00 2001 From: Fabian Affolter Date: Sun, 19 Feb 2023 15:30:51 +0100 Subject: [PATCH 29/35] python310Packages.txtorcon: add changelog to meta - disable on older Python releases - update ordering --- .../python-modules/txtorcon/default.nix | 47 +++++++++++-------- 1 file changed, 28 insertions(+), 19 deletions(-) diff --git a/pkgs/development/python-modules/txtorcon/default.nix b/pkgs/development/python-modules/txtorcon/default.nix index a329e0965cc8..e412b9a87027 100644 --- a/pkgs/development/python-modules/txtorcon/default.nix +++ b/pkgs/development/python-modules/txtorcon/default.nix @@ -1,30 +1,33 @@ { lib , stdenv -, python -, buildPythonPackage -, pythonOlder -, fetchPypi -, cryptography -, incremental -, twisted , automat -, zope_interface -, idna -, pyopenssl -, service-identity -, pytestCheckHook -, mock -, lsof +, buildPythonPackage +, cryptography +, fetchPypi , GeoIP +, idna +, incremental +, lsof +, mock +, pyopenssl +, pytestCheckHook +, python +, pythonOlder +, service-identity +, twisted +, zope_interface }: buildPythonPackage rec { pname = "txtorcon"; version = "23.0.0"; + format = "setuptools"; + + disabled = pythonOlder "3.7"; src = fetchPypi { inherit pname version; - sha256 = "sha256-AiX/rWdokTeEmtmtNK21abDYj5rwRQMABnpfkB6ZQyU="; + hash = "sha256-AiX/rWdokTeEmtmtNK21abDYj5rwRQMABnpfkB6ZQyU="; }; propagatedBuildInputs = [ @@ -35,14 +38,20 @@ buildPythonPackage rec { zope_interface ] ++ twisted.optional-dependencies.tls; - nativeCheckInputs = [ pytestCheckHook mock lsof GeoIP ]; + nativeCheckInputs = [ + pytestCheckHook + mock + lsof + GeoIP + ]; doCheck = !(stdenv.isDarwin && stdenv.isAarch64); - meta = { + meta = with lib; { description = "Twisted-based Tor controller client, with state-tracking and configuration abstractions"; homepage = "https://github.com/meejah/txtorcon"; - maintainers = with lib.maintainers; [ jluttine exarkun ]; - license = lib.licenses.mit; + changelog = "https://github.com/meejah/txtorcon/releases/tag/v${version}"; + maintainers = with maintainers; [ jluttine exarkun ]; + license = licenses.mit; }; } From 3cb4d0338d444c77a10c4ae15849ffc0f2867d1c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jonathan=20Neusch=C3=A4fer?= Date: Tue, 14 Feb 2023 02:15:50 +0100 Subject: [PATCH 30/35] lattice-diamond: Expose pnmainc and ddtcmd commands These commands are used by Amaranth. --- pkgs/development/embedded/fpga/lattice-diamond/default.nix | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/pkgs/development/embedded/fpga/lattice-diamond/default.nix b/pkgs/development/embedded/fpga/lattice-diamond/default.nix index e8bc4c1b1be5..d27cf9bff374 100644 --- a/pkgs/development/embedded/fpga/lattice-diamond/default.nix +++ b/pkgs/development/embedded/fpga/lattice-diamond/default.nix @@ -87,11 +87,10 @@ stdenv.mkDerivation { # Remove 32-bit libz. rm $out/$prefix/bin/lin64/libz.{so,so.1} - # Make wrappers (should these target more than the 'diamond' tool?). - # The purpose of these is just to call the target program using its - # absolute path - otherwise, it will crash. + # Make wrappers. The purpose of these is just to call the target program + # using its absolute path - otherwise, it will crash. mkdir -p bin - for tool in diamond ; do + for tool in diamond pnmainc ddtcmd ; do makeWrapper $out/$prefix/bin/lin64/$tool $out/bin/$tool done ''; From 9b5469bd507f9882db9fcc0302bd22d402a909e3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jonathan=20Neusch=C3=A4fer?= Date: Tue, 14 Feb 2023 02:16:17 +0100 Subject: [PATCH 31/35] lattice-diamond: Add Diamond's library directories into RPATH Subtools such as pnmainc rely on libraries in the diamond/bin/lin64 and diamond/ispfpga/bin/lin64 directories, but they don't set LD_LIBRARY_PATH as would be needed. To make things work, simply include these two directories in the RPATH that is patched into Diamond binaries. --- pkgs/development/embedded/fpga/lattice-diamond/default.nix | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/pkgs/development/embedded/fpga/lattice-diamond/default.nix b/pkgs/development/embedded/fpga/lattice-diamond/default.nix index d27cf9bff374..654e746ffa81 100644 --- a/pkgs/development/embedded/fpga/lattice-diamond/default.nix +++ b/pkgs/development/embedded/fpga/lattice-diamond/default.nix @@ -79,7 +79,8 @@ stdenv.mkDerivation { # dependencies from nix. patchelf \ --set-interpreter "$(cat $NIX_CC/nix-support/dynamic-linker)" \ - --set-rpath "$libPath" --force-rpath \ + --set-rpath "$libPath:$out/$prefix/bin/lin64:$out/$prefix/ispfpga/bin/lin64" \ + --force-rpath \ $f done done From 4df32ef3b7a724566e31de8462f9c40696d62c99 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jonathan=20Neusch=C3=A4fer?= Date: Fri, 17 Feb 2023 19:12:46 +0100 Subject: [PATCH 32/35] lattice-diamond: Make ELF binaries in synpbase usable --- pkgs/development/embedded/fpga/lattice-diamond/default.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pkgs/development/embedded/fpga/lattice-diamond/default.nix b/pkgs/development/embedded/fpga/lattice-diamond/default.nix index 654e746ffa81..4bd62bfa929e 100644 --- a/pkgs/development/embedded/fpga/lattice-diamond/default.nix +++ b/pkgs/development/embedded/fpga/lattice-diamond/default.nix @@ -67,7 +67,7 @@ stdenv.mkDerivation { done # Patch executable ELFs. - for path in bin/lin64 ispfpga/bin/lin64; do + for path in bin/lin64 ispfpga/bin/lin64 synpbase/linux_a_64 synpbase/linux_a_64/mbin; do cd $out/$prefix/$path for f in *; do if ! file $f | grep -q "ELF 64-bit LSB executable" ; then From 2fe7e66ca091f5d3e7cef55ac4d8354ac13c5062 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jonathan=20Neusch=C3=A4fer?= Date: Fri, 17 Feb 2023 19:11:58 +0100 Subject: [PATCH 33/35] lattice-diamond: Replace direct use of /usr/bin/id with Nix-compatible path --- pkgs/development/embedded/fpga/lattice-diamond/default.nix | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/pkgs/development/embedded/fpga/lattice-diamond/default.nix b/pkgs/development/embedded/fpga/lattice-diamond/default.nix index 4bd62bfa929e..f80261720cf6 100644 --- a/pkgs/development/embedded/fpga/lattice-diamond/default.nix +++ b/pkgs/development/embedded/fpga/lattice-diamond/default.nix @@ -1,5 +1,5 @@ { lib, stdenv, rpmextract, patchelf, makeWrapper, file, requireFile, glib, zlib, - freetype, fontconfig, xorg, libusb-compat-0_1 }: + freetype, fontconfig, xorg, libusb-compat-0_1, coreutils }: stdenv.mkDerivation { pname = "diamond"; @@ -85,6 +85,9 @@ stdenv.mkDerivation { done done + # Patch absolute /usr/bin/id path in script + sed -i -e "s#/usr/bin/id#${coreutils}/bin/id#" $out/$prefix/synpbase/bin/config/platform_set + # Remove 32-bit libz. rm $out/$prefix/bin/lin64/libz.{so,so.1} From 9f67569096d7dde25878397532567e4d4a399546 Mon Sep 17 00:00:00 2001 From: Fabian Affolter Date: Sun, 19 Feb 2023 16:40:31 +0100 Subject: [PATCH 34/35] python310Packages.rokuecp: add changelog to meta --- pkgs/development/python-modules/rokuecp/default.nix | 1 + 1 file changed, 1 insertion(+) diff --git a/pkgs/development/python-modules/rokuecp/default.nix b/pkgs/development/python-modules/rokuecp/default.nix index 9ce035ea88b3..d272d07ff19f 100644 --- a/pkgs/development/python-modules/rokuecp/default.nix +++ b/pkgs/development/python-modules/rokuecp/default.nix @@ -73,6 +73,7 @@ buildPythonPackage rec { meta = with lib; { description = "Asynchronous Python client for Roku (ECP)"; homepage = "https://github.com/ctalkington/python-rokuecp"; + changelog = "https://github.com/ctalkington/python-rokuecp/releases/tag/${version}"; license = licenses.mit; maintainers = with maintainers; [ fab ]; }; From c94f4441cc2acc583f2f88d1db56a0915576f0da Mon Sep 17 00:00:00 2001 From: "R. Ryantm" Date: Sun, 19 Feb 2023 15:56:58 +0000 Subject: [PATCH 35/35] erdtree: 1.0.0 -> 1.1.0 --- pkgs/tools/system/erdtree/default.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pkgs/tools/system/erdtree/default.nix b/pkgs/tools/system/erdtree/default.nix index a60071e44739..ddca2f106b49 100644 --- a/pkgs/tools/system/erdtree/default.nix +++ b/pkgs/tools/system/erdtree/default.nix @@ -5,16 +5,16 @@ rustPlatform.buildRustPackage rec { pname = "erdtree"; - version = "1.0.0"; + version = "1.1.0"; src = fetchFromGitHub { owner = "solidiquis"; repo = pname; rev = "v${version}"; - hash = "sha256-gZC90flsfH03Grc1netzlv/iX/9DH+rpaSstfXFearc="; + hash = "sha256-W9rTsumZZ3O0kOc+dT9TC/Z/Katb3q6yFreAVCvX5qo="; }; - cargoHash = "sha256-0I60lUYyR4Za2Q3FqcdqJhUKFjX5+PE88G6JxxxiBXw="; + cargoHash = "sha256-6jFBNkiCFBQbpiYkNZ6dyXH/ZnFHZYFliMZFlE/DodM="; meta = with lib; { description = "File-tree visualizer and disk usage analyzer";