Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Staging next #79801

Merged
merged 23 commits into from Feb 12, 2020
Merged

Staging next #79801

merged 23 commits into from Feb 12, 2020

Conversation

FRidh
Copy link
Member

@FRidh FRidh commented Feb 11, 2020

Motivation for this change
Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS linux)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Ensured that relevant documentation is up to date
  • Fits CONTRIBUTING.md.

jtojnar and others added 22 commits February 6, 2020 00:02
@jtojnar
libgit2: 0.27.8 -> 0.28.4
e8a7668 
* https://github.com/libgit2/libgit2/releases/tag/v0.28.0
* https://github.com/libgit2/libgit2/releases/tag/v0.28.1
* https://github.com/libgit2/libgit2/releases/tag/v0.28.2
* https://github.com/libgit2/libgit2/releases/tag/v0.28.3
* https://github.com/libgit2/libgit2/releases/tag/v0.28.4
@jtojnar
gitfs: Switch to Python 3
02f1740 
Supported since 0.5 at least
@jtojnar
python3.pkgs.pygit2: 0.27.2 → 1.0.3
5308a86 
Removes Python 2 support.

https://github.com/libgit2/pygit2/blob/v1.0.3/CHANGELOG.rst
@tobim @thoughtpolice
ninja: 1.9.0 -> 1.10.0
3a39ea0
@jonringer
python3Packages.pip: 19.3.1 -> 20.0.2
5ca385e
@FRidh
Merge staging-next into staging
d9eb897
@bhipple
fetchcargo: use flat tar.gz file for vendored src instead of recursiv…
2115a20 
…e hash dir

This has several advantages:

1. It takes up less space on disk in-between builds in the nix store.
2. It uses less space in the binary cache for vendor derivation packages.
3. It uses less network traffic downloading from the binary cache.
4. It plays nicely with hashed mirrors like tarballs.nixos.org, which only
   substitute --flat hashes on single files (not recursive directory hashes).
5. It's consistent with how simple `fetchurl` src derivations work.
6. It provides a stronger abstraction between input src-package and output
   package, e.g., it's harder to accidentally depend on the src derivation at
   runtime by referencing something like `${src}/etc/index.html`. Likewise, in
   the store it's harder to get confused with something that is just there as a
   build-time dependency vs. a runtime dependency, since the build-time
   src dependencies are tarred up.

Disadvantages are:
1. It takes slightly longer to untar at the start of a build.

As currently implemented, this attaches the compacted vendor.tar.gz feature as a
rider on `verifyCargoDeps`, since both of them are relatively newly implemented
behavior that change the `cargoSha256`.

If this PR is accepted, I will push forward the remaining rust packages with a
series of treewide PRs to update the `cargoSha256`s.
@zimbatm
Merge pull request #78501 from bhipple/feature/fetchcargo-tar-gz
15a51f6 
fetchcargo: use flat tar.gz file for vendored src instead of recursive hash dir
libssh2-1.9.0: apply patch for CVE-2019-17498
4682b29 
No upstream release yet, but libssh2/libssh2#402
has been accepted by upstream devs.

Original advisory:
https://blog.semmle.com/libssh2-integer-overflow-CVE-2019-17498/

Re #73662
@vcunat
Merge #79740: libssh2: patch CVE-2019-17498 (into staging)
4ff2a16
@r-ryantm @FRidh
libmtp: 1.1.16 -> 1.1.17
4fce9a6
@r-ryantm @FRidh
drumkv1: 0.9.11 -> 0.9.12
ccc54f0
@zimbatm @worldofpeace
ruby_2_4: remove
bcdc90a 
According to https://endoflife.software/programming-languages/server-side-scripting/ruby
ruby 2.4 will go end-of-life in march, where the new release of nixpkgs
will be cut. We won't be able to support it for security updates.

Remove all references to ruby_2_4 and add ruby_2_7 instead where
missing.

Mark packages that depend on ruby 2.4 as broken:
* chefdk
* sonic-pi
@jtojnar
Merge pull request #72544 from r-ryantm/auto-update/libgit2
5ff9a68 
libgit2: 0.27.8 -> 0.28.4
@vcunat
lz4: do the refactoring forgotten after PR #51965
35b13b5
@vcunat
lz4: split binaries into a separate output
cfa1f13 
It's a little suspicious that the binaries are (apparently)
linked statically, but I assume upstream has some reasons (e.g. speed).
@vcunat
gnutls: move some docs that don't seem useful normally
3668d99
@jonringer
python3Packages.lxml: 4.4.2 -> 4.5.0
c7eee5d
@andir @FRidh
nss: 3.48 -> 3.49.2
92f660e
@wamserma @FRidh
sqlite: 3.30.1 -> 3.31.0 (security)
4959c97
@FRidh
Merge master into staging-next
2cf3198
@FRidh
Merge staging into staging-next
1a6c3cb
@FRidh FRidh merged commit bfe0115 into master Feb 12, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bhipple bhipple bhipple approved these changes

@alyssais alyssais Awaiting requested review from alyssais

@andir andir Awaiting requested review from andir

@jonringer jonringer Awaiting requested review from jonringer

@LnL7 LnL7 Awaiting requested review from LnL7

@Mic92 Mic92 Awaiting requested review from Mic92 Mic92 is a code owner

@zimbatm zimbatm Awaiting requested review from zimbatm

Assignees
No one assigned
Labels
6.topic: python 6.topic: ruby 6.topic: rust 8.has: clean-up 8.has: documentation 8.has: package (new) 10.rebuild-darwin: 501+ 10.rebuild-darwin: 5001+ 10.rebuild-darwin-stdenv 10.rebuild-linux: 501+ 10.rebuild-linux: 5001+ 10.rebuild-linux-stdenv
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
10 participants
@FRidh @bhipple @jtojnar @tobim @jonringer @zimbatm @vcunat @r-ryantm @andir @wamserma