Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

A small set of package updates #2

Closed
wants to merge 4 commits into from
Closed

A small set of package updates #2

wants to merge 4 commits into from

Conversation

aszlig
Copy link
Member

@aszlig aszlig commented Jun 4, 2012

This should fix a few build failures with those packages, especially VirtualBox with newer kernels.
In addition some updates to quite old versions of a few packages.

aszlig added 4 commits June 4, 2012 19:48
@aszlig
Update VirtualBox and guest additions to v4.1.16.
56ba391 
This includes fixes for kernels up to v3.4, so we shouldn't get build failures
with kernel 3.4 anymore.
@aszlig
Update figlet to version 2.2.4.
7c358eb 
This is primarily because version 222 is no longer available at the upstream FTP
site.
@aszlig
Fix installation of figlet 2.2.4.
c29c7a7
@aszlig
Update Django to version 1.4.
d687cc8
@peti
Copy link
Member

peti commented Jun 11, 2012

Committed in r34439 to r34441.

@aszlig aszlig closed this Jun 11, 2012
@jcumming jcumming mentioned this pull request May 21, 2013
Closed
wizeman added a commit that referenced this pull request Feb 22, 2014
@wizeman
Merge pull request #1771 from thoughtpolice/grsec-tools
39fbd8f 
grsecurity: add gradm, paxctl, and pax-utils (take #2)
@wmertens wmertens mentioned this pull request Jun 7, 2014
Closed
cstrahan referenced this pull request in cstrahan/nixpkgs Dec 12, 2014
Merge pull request #2 from basvandijk/update-ghcjs
3973b89 
Update ghcjs && and remove deprecation warning
nbp added a commit that referenced this pull request Jan 18, 2015
@nbp
Merge pull request #2 from ametaireau/syncserver
bd68791
@magnetophon magnetophon mentioned this pull request Apr 15, 2015
Closed
briangebala pushed a commit to briangebala/nixpkgs that referenced this pull request Jun 15, 2015
@markschaake
Merge pull request NixOS#2 from briangebala/release-14.12
fa9731f 
Inline swizzle of NodeJs.
garbas pushed a commit that referenced this pull request Sep 3, 2015
@devhell @garbas
{lib}mediainfo{-gui}: 0.7.76 -> 0.7.77, fixes #9617
32d0d86 
Local build and run successful.

From the ChangeLog:
```
Version 0.7.77, 2015-09-02

+ #B941, MXF: files having only a video stream and an ancillary data
  stream were having incorrect second video stream
+ MOV: detection of r210 CodecID as raw RGB
+ Ancillary data: detection of all metadata blocks (previously: only the
  first one was detected)
x MPEG-TS: Wrong demux of TSP (188+16 TS) files having PES with only
  padding x MediaTrace #2: XML malformed with Flags items (hotfix, flags
  meaning disabled in XML output)
x MediaTrace #3: XML malformed with some MP4 files
x MediaTrace #6: XML duplicated attributes
x MediaTrace #10: versioned xsd, creating library name and version
x MediaTrace: XML content was not escaped
x #B947, Amazon S3 support (REST API v2), CLI/DLL only and if compiled
  with libcurl support: Analyze file on s3 was not working if secret key
  contains / character
```
@copumpkin copumpkin mentioned this pull request Sep 29, 2015
Closed
@jagajaga jagajaga mentioned this pull request Dec 22, 2015
Merged
@DeivAstra DeivAstra mentioned this pull request Jan 2, 2016
Closed
LnL7 referenced this pull request in LnL7/nixpkgs Jan 8, 2016
@LnL7
vim-plugins: added build inputs for jagajaga/vim-addon-vim2nix #2
de18e60
jagajaga added a commit that referenced this pull request Jan 8, 2016
@jagajaga
Merge pull request #12248 from LnL7/vim-plugins-buildinputs
ed1ce64 
vim-plugins: added build inputs for jagajaga/vim-addon-vim2nix #2
gleber added a commit to gleber/nixpkgs that referenced this pull request Jan 18, 2016
@gleber
Merge pull request NixOS#2 from ericbmerritt/erlang-improvements
940dfc2 
rebar3: refactor to make hermetic
@yokto yokto mentioned this pull request Mar 7, 2016
Closed
@copumpkin copumpkin mentioned this pull request Mar 31, 2016
Merged
7 tasks
@copumpkin copumpkin mentioned this pull request Jun 7, 2016
Closed
corngood referenced this pull request in corngood/nixpkgs Sep 24, 2016
@expipiplus1
Merge pull request #2 from Ralith/vulkan
45b465e 
vulkan-loader: fix evaluation without source
@mz-pdm mz-pdm mentioned this pull request Nov 18, 2016
Closed
@copumpkin copumpkin mentioned this pull request Dec 14, 2016
Closed
@copumpkin copumpkin mentioned this pull request Jan 27, 2017
Closed
@copumpkin copumpkin mentioned this pull request Feb 8, 2017
Closed
@ghost ghost mentioned this pull request Nov 23, 2023
Merged
@ben0x539 ben0x539 mentioned this pull request Dec 5, 2023
Merged
12 tasks
marsam added a commit that referenced this pull request Jan 18, 2024
@marsam
Merge pull request #281498 from mfrw/mfrw/gh-2.42.1
f7e6ecd 
gh: 2.41.0 -> 2.42.1
@deepfire deepfire mentioned this pull request Jan 19, 2024
Draft
13 tasks
dotlambda referenced this pull request in dotlambda/nixpkgs Feb 18, 2024
@dotlambda
ceph: fix cryptography override
b06ebb2 
Since ba83271 the build fails with

    applying patch /nix/store/46rxbbvl2l3mrxb50y9rzy7ahgx0lraj-d741901dddd731895346636c0d3556c6fa51fbe6.patch
    patching file tests/hazmat/primitives/test_aead.py
    Hunk #1 FAILED at 56.
    Hunk #2 FAILED at 197.
    Hunk NixOS#3 FAILED at 378.
    Hunk NixOS#4 FAILED at 525.
    Hunk NixOS#5 FAILED at 700.
    Hunk NixOS#6 FAILED at 844.
    6 out of 6 hunks FAILED -- saving rejects to file tests/hazmat/primitives/test_aead.py.rej
trofi added a commit to trofi/nixpkgs that referenced this pull request Feb 28, 2024
@trofi
unnethack: disable fortify3 to avoid startup crash
a956789 
Without the change `unnethack` startup crashes as:

    (gdb) bt
    #0  __pthread_kill_implementation (threadid=<optimized out>, signo=signo@entry=6, no_tid=no_tid@entry=0) at pthread_kill.c:44
    NixOS#1  0x00007f734250c0e3 in __pthread_kill_internal (signo=6, threadid=<optimized out>) at pthread_kill.c:78
    NixOS#2  0x00007f73424bce06 in __GI_raise (sig=sig@entry=6) at ../sysdeps/posix/raise.c:26
    NixOS#3  0x00007f73424a58f5 in __GI_abort () at abort.c:79
    NixOS#4  0x00007f73424a67a1 in __libc_message (fmt=fmt@entry=0x7f734261e2f8 "*** %s ***: terminated\n") at ../sysdeps/posix/libc_fatal.c:150
    NixOS#5  0x00007f734259b1d9 in __GI___fortify_fail (msg=msg@entry=0x7f734261e2df "buffer overflow detected") at fortify_fail.c:24
    NixOS#6  0x00007f734259ab94 in __GI___chk_fail () at chk_fail.c:28
    NixOS#7  0x00000000005b2ac5 in strcpy (__src=0x7ffe68838b00 "Shall I pick a character's race, role, gender and alignment for you? [YNTQ] (y)",
        __dest=0x7ffe68838990 "\001") at /nix/store/B0S2LKF593R3585038WS4JD3LYLF2WDX-glibc-2.38-44-dev/include/bits/string_fortified.h:79
    NixOS#8  curses_break_str (str=str@entry=0x7ffe68838b00 "Shall I pick a character's race, role, gender and alignment for you? [YNTQ] (y)", width=width@entry=163,
        line_num=line_num@entry=1) at ../win/curses/cursmisc.c:275
    NixOS#9  0x00000000005b3f51 in curses_character_input_dialog (prompt=prompt@entry=0x7ffe68838cf0 "Shall I pick a character's race, role, gender and alignment for you?",
        choices=choices@entry=0x7ffe68838d70 "YNTQ", def=def@entry=121) at ../win/curses/cursdial.c:211
    NixOS#10 0x00000000005b9ca0 in curses_choose_character () at ../win/curses/cursinit.c:556
    NixOS#11 0x0000000000404eb1 in main (argc=<optimized out>, argv=<optimized out>) at ./../sys/unix/unixmain.c:309

which corresponds to `gcc` warning:

    ../win/curses/cursmisc.c: In function 'curses_break_str':
    ../win/curses/cursmisc.c:275:5: warning: '__builtin___strcpy_chk' writing one too many bytes into a region of a size that depends on 'strlen' [-Wstringop-overflow=]
      275 |     strcpy(substr, str);
          |     ^

I did not find a single small upstream change that fixes it. Let's
disable `fortify3` until next release.

Closes: NixOS#292113
@isti115 isti115 mentioned this pull request Mar 26, 2024
Merged
13 tasks
b-rodrigues added a commit to rstats-on-nix/nixpkgs that referenced this pull request Apr 24, 2024
@b-rodrigues
fix for S4Vectors NixOS#2
1a042ed
@KiaraGrouwstra KiaraGrouwstra mentioned this pull request Apr 25, 2024
Closed
@eclairevoyant eclairevoyant mentioned this pull request Jul 26, 2024
Merged
13 tasks
@mannp mannp mentioned this pull request Aug 3, 2024
Closed
@LinuxMason LinuxMason mentioned this pull request Aug 4, 2024
Closed
fpletz pushed a commit that referenced this pull request Aug 24, 2024
@Ma27
gitea: drop PAM support
b395692 
Strongly inspired by the forgejo counterpart[1], for the following
reasons:

* The feature is broken with the current module and crashes on
  authentication with the following stacktrace (with a PAM service
  `gitea` added):

      server # Stack trace of thread 1008:
      server # #0  0x00007f3116917dfb __nptl_setxid (libc.so.6 + 0x8ddfb)
      server # #1  0x00007f3116980ae6 setuid (libc.so.6 + 0xf6ae6)
      server # #2  0x00007f30cc80f420 _unix_run_helper_binary (pam_unix.so + 0x5420)
      server # #3  0x00007f30cc8108c9 _unix_verify_password (pam_unix.so + 0x68c9)
      server # #4  0x00007f30cc80e1b5 pam_sm_authenticate (pam_unix.so + 0x41b5)
      server # #5  0x00007f3116a84e5b _pam_dispatch (libpam.so.0 + 0x3e5b)
      server # #6  0x00007f3116a846a3 pam_authenticate (libpam.so.0 + 0x36a3)
      server # #7  0x00000000029b1e7a n/a (.gitea-wrapped + 0x25b1e7a)
      server # #8  0x000000000047c7e4 n/a (.gitea-wrapped + 0x7c7e4)
      server # ELF object binary architecture: AMD x86-64
      server #
      server # [   42.420827] gitea[897]: pam_unix(gitea:auth): unix_chkpwd abnormal exit: 159
      server # [   42.423142] gitea[897]: pam_unix(gitea:auth): authentication failure; logname= uid=998 euid=998 tty= ruser= rhost=  user=snenskek

  It only worked after turning off multiple sandbox settings and adding
  `shadow` as supplementary group to `gitea.service`.

  I'm not willing to maintain additional multiple sandbox settings for
  different features, especially given that it was probably not used for
  quite a long time:

  * There was no PR or bugreport about sandboxing issues related to
    PAM.

  * Ever since the module exists, it used the user `gitea`, i.e. it had
    never read-access to `/etc/shadow`.

* Upstream has it disabled by default[2].

If somebody really needs it, it can still be brought back by an overlay
updating `tags` accordingly and modifying the systemd service config.

[1] 07641a9
[2] https://docs.gitea.com/usage/authentication#pam-pluggable-authentication-module
@smancill smancill mentioned this pull request Sep 3, 2024
Merged
13 tasks
dezren39 referenced this pull request in developing-today-forks/nixpkgs Oct 14, 2024
@dezren39
Merge pull request #2 from dezren39/patch-2_2
94f8d4e
@Titaniumtown Titaniumtown mentioned this pull request Oct 15, 2024
Closed
@blackxored blackxored mentioned this pull request Nov 22, 2024
Closed
13 tasks
modulitos pushed a commit to modulitos/nixpkgs that referenced this pull request Nov 24, 2024
@ryantm
attempt NixOS#2 to add Patreon badge
d6ffd3a
@martinetd martinetd mentioned this pull request Jan 5, 2025
Merged
13 tasks
drupol pushed a commit that referenced this pull request Jan 5, 2025
@martinetd
nixos/cryptpad: fix service with nodejs 22.11
cf498c1 
nixosTests.cryptpad started failing recently.

Investigating the issue shows that seccomp has become problematic during
the init phase, (e.g. this can be reproduced by removing the customize
directory in /var/lib/cryptpad):

machine # [   10.774365] systemd-coredump[864]: Process 756 (node) of user 65513 dumped core.
machine #
machine # Module libgcc_s.so.1 without build-id.
machine # Module libstdc++.so.6 without build-id.
machine # Module libicudata.so.74 without build-id.
machine # Module libicuuc.so.74 without build-id.
machine # Module libicui18n.so.74 without build-id.
machine # Module libz.so.1 without build-id.
machine # Module node without build-id.
machine # Stack trace of thread 756:
machine # #0  0x00007ff951974dcb fchown (libc.so.6 + 0x107dcb)
machine # #1  0x00007ff95490d0c0 uv__fs_copyfile (libuv.so.1 + 0x150c0)
machine # #2  0x00007ff95490d89a uv__fs_work (libuv.so.1 + 0x1589a)
machine # #3  0x00007ff954910c76 uv_fs_copyfile (libuv.so.1 + 0x18c76)
machine # #4  0x0000000000eb8a39 _ZN4node2fsL8CopyFileERKN2v820FunctionCallbackInfoINS1_5ValueEEE (node + 0xab8a39)
machine # #5  0x0000000001cda5e2 Builtins_CallApiCallbackGeneric (node + 0x18da5e2)
[...]
machine # [   10.877468] cryptpad[685]: /nix/store/h4yhhxpfm03c5rgz91q7jrvknh596ly2-cryptpad-2024.12.0/bin/cryptpad: line 3:   756 Bad system call         (core dumped) "/nix/store/fkyp1bm5gll9adnfcj92snyym524mdrj-nodejs-22.11.0/bin/node" "/nix/store/h4yhhxpfm03c5rgz91q7jrvknh596ly2-cryptpad-2024.12.0/lib/node_modules/cryptpad/scripts/build.js"

nodejs 20.18 rightly did not require chown when the source and
destination are the same owner (heck, the script does not run as
root so even if it is not blocked there is no way it'd work with a
different owner...)

For now just allow chown calls again, this is not worth wasting more
time.

Fixes #370717
yechielw pushed a commit to yechielw/nixpkgs that referenced this pull request Jan 6, 2025
@martinetd @yechielw
nixos/cryptpad: fix service with nodejs 22.11
6f56945 
nixosTests.cryptpad started failing recently.

Investigating the issue shows that seccomp has become problematic during
the init phase, (e.g. this can be reproduced by removing the customize
directory in /var/lib/cryptpad):

machine # [   10.774365] systemd-coredump[864]: Process 756 (node) of user 65513 dumped core.
machine #
machine # Module libgcc_s.so.1 without build-id.
machine # Module libstdc++.so.6 without build-id.
machine # Module libicudata.so.74 without build-id.
machine # Module libicuuc.so.74 without build-id.
machine # Module libicui18n.so.74 without build-id.
machine # Module libz.so.1 without build-id.
machine # Module node without build-id.
machine # Stack trace of thread 756:
machine # #0  0x00007ff951974dcb fchown (libc.so.6 + 0x107dcb)
machine # NixOS#1  0x00007ff95490d0c0 uv__fs_copyfile (libuv.so.1 + 0x150c0)
machine # NixOS#2  0x00007ff95490d89a uv__fs_work (libuv.so.1 + 0x1589a)
machine # NixOS#3  0x00007ff954910c76 uv_fs_copyfile (libuv.so.1 + 0x18c76)
machine # NixOS#4  0x0000000000eb8a39 _ZN4node2fsL8CopyFileERKN2v820FunctionCallbackInfoINS1_5ValueEEE (node + 0xab8a39)
machine # NixOS#5  0x0000000001cda5e2 Builtins_CallApiCallbackGeneric (node + 0x18da5e2)
[...]
machine # [   10.877468] cryptpad[685]: /nix/store/h4yhhxpfm03c5rgz91q7jrvknh596ly2-cryptpad-2024.12.0/bin/cryptpad: line 3:   756 Bad system call         (core dumped) "/nix/store/fkyp1bm5gll9adnfcj92snyym524mdrj-nodejs-22.11.0/bin/node" "/nix/store/h4yhhxpfm03c5rgz91q7jrvknh596ly2-cryptpad-2024.12.0/lib/node_modules/cryptpad/scripts/build.js"

nodejs 20.18 rightly did not require chown when the source and
destination are the same owner (heck, the script does not run as
root so even if it is not blocked there is no way it'd work with a
different owner...)

For now just allow chown calls again, this is not worth wasting more
time.

Fixes NixOS#370717
@Thatoo Thatoo mentioned this pull request Jan 7, 2025
Open
@CountingBeeps CountingBeeps mentioned this pull request Jan 9, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@aszlig @peti