New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
mariadb: 10.3.18 -> 10.3.20 #73267
mariadb: 10.3.18 -> 10.3.20 #73267
Conversation
@GrahamcOfBorg test mysql |
Unsure on |
This pull request has been mentioned on NixOS Discourse. There might be relevant details there: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
remove the darwin optional patch to potentially fix the darwin build. It's failing because the patch was already "successfully" applied (i.e. that commit is now in the source)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Works fine on NixOS. Leaving MacOS issues to other maintainers.
I've dug into this on darwin and I can confirm that the patch is already present in this version of mariadb and can simply be removed. Similarly the patch appears to be present in version 3.1.5 of mariadb-connector-c, which this PR doesn't update but whoever does update that should be aware. |
I could do that as part of #71860 |
diff --git a/pkgs/servers/sql/mariadb/default.nix b/pkgs/servers/sql/mariadb/default.nix
index dbb7f2e3fff..77413b825c6 100644
--- a/pkgs/servers/sql/mariadb/default.nix
+++ b/pkgs/servers/sql/mariadb/default.nix
@@ -46,12 +46,7 @@ common = rec { # attributes common to both builds
patches = [
./cmake-includedir.patch
./cmake-libmariadb-includedir.patch
- ] ++ optional stdenv.hostPlatform.isDarwin (fetchpatch {
- url = "https://github.com/MariaDB/mariadb-connector-c/commit/ee91b2c98a63acb787114dee4f2694e154630928.patch";
- extraPrefix = "libmariadb/";
- sha256 = "06i865zwyhs9fvrgmargzn09pbg1cmably3c4wifd241bj8ig8qk";
- stripLen = 1;
- });
+ ];
cmakeFlags = [
"-DBUILD_CONFIG=mysql_release" With this diff applied I've gotten past the patch phase and am currently in the process of building. |
Build failed:
|
Though now I'm wondering why the build failure said |
Ok forget that failure. I suspect what happened was |
I am added update MariaDB to 10.3.20 in #70924 |
This build takes a long time and I need to run. I'm cancelling my build, but suffice to say it got well past |
@Izorkin I'm not sure what the state of your other PR is, but it has been sitting for a while. Since this is a security update I think it makes sense to have a very simple PR which can be merged quickly and have a backport in good time. If your other PR is merged before this one that is fine too. Whatever gets security release faster is what we can go with. @lilyball so this PR should be good to go on @filalex77 @jonringer @lilyball @Izorkin thanks for feedback so far. I had a busy day and didn't get a chance to respond so I appreciate the work you put in on this 🎉 |
Looks like ofBorg successfully built this on darwin 🎉 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
nix-review
passes on NixOS
diff LGTM
https://github.com/NixOS/nixpkgs/pull/73267
1 package are marked as broken and were skipped:
unixODBCDrivers.mysql
49 package were build:
akonadi akregator automysqlbackup diesel-cli digikam kaddressbook kdeApplications.akonadi-calendar kdeApplications.akonadi-contacts kdeApplications.akonadi-import-wizard kdeApplications.akonadi-mime kdeApplications.akonadi-notes kdeApplications.akonadi-search kdeApplications.akonadiconsole kdeApplications.calendarsupport kdeApplications.eventviews kdeApplications.incidenceeditor kdeApplications.kalarm kdeApplications.kalarmcal kdeApplications.kdepim-addons kdeApplications.kdepim-apps-libs kdeApplications.kdepim-runtime kgpg kmail kdeApplications.kmail-account-wizard kdeApplications.kmailtransport kdeApplications.knotes kontact korganizer kdeApplications.libgravatar kdeApplications.libkdepim kdeApplications.libksieve kdeApplications.mailcommon kdeApplications.mailimporter kdeApplications.mbox-importer kdeApplications.messagelib kdeApplications.pim-data-exporter kdeApplications.pim-sieve-editor kdeApplications.pimcommon kmymoney lua51Packages.luadbi-mysql luaPackages.luadbi-mysql lua53Packages.luadbi-mysql luajitPackages.luadbi-mysql mysql shmig snabb trojita zanshin zoneminder
@GrahamcOfBorg test mysql |
the tests passed locally |
Thanks again, all! 🎉 |
Right... security fixes included. Anyone interested in doing backport? ❤️ |
Motivation for this change
Version bump. Replace #71713.
Reading the release notes I'm left with the impression this bump contains security fixes, but when I actually look at the mentioned CVEs only
mysql
is mentioned... 🤷♂️Things done
sandbox
innix.conf
on non-NixOS linux)nix-shell -p nix-review --run "nix-review wip"
./result/bin/
)nix path-info -S
before and after)Notify maintainers
cc @