Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Staging next #63423

Merged
merged 58 commits into from Jun 26, 2019
Merged

Staging next #63423

merged 58 commits into from Jun 26, 2019

Conversation

FRidh
Copy link
Member

@FRidh FRidh commented Jun 18, 2019

Motivation for this change
Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nix-review --run "nix-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Assured whether relevant documentation is up to date
  • Fits CONTRIBUTING.md.

FRidh and others added 30 commits June 15, 2019 10:50
@FRidh
Merge staging-next into staging
40ff733
@dtzWill @FRidh
dbus: 1.12.14 -> 1.12.16
6d7cdd7 
https://gitlab.freedesktop.org/dbus/dbus/blob/dbus-1.12.16/NEWS

It's short and explains the CVE a bit, including below:

> CVE-2019-12749: Do not attempt to carry out DBUS_COOKIE_SHA1
> authentication for identities that differ from the user running the
> DBusServer. Previously, a local attacker could manipulate symbolic
> links in their own home directory to bypass authentication and connect
> to a DBusServer with elevated privileges. The standard system and
> session dbus-daemons in their default configuration were immune to this
> attack because they did not allow DBUS_COOKIE_SHA1, but third-party
> users of DBusServer such as Upstart could be vulnerable.   Thanks to Joe
> Vennix of Apple Information Security.   (dbus#269, Simon McVittie)
@dtzWill @FRidh
nghttp2: 1.38.0 -> 1.39.1
044b8b6 
https://nghttp2.org/blog/2019/06/11/nghttp2-v1-39-1/
@lopsided98 @FRidh
boehm-gc: remove unneeded dontStrip attribute
26e9078
@lopsided98 @FRidh
boehm-gc: remove libatomic_ops build input
7c11742
@lopsided98 @FRidh
guile: 2.2.3 -> 2.2.4
0a7bc46
@dtzWill @FRidh
less: 530 -> 551
4f96316 
At long last! \o/

pname-ify while visiting.

http://greenwoodsoftware.com/less/news.551.html
@FRidh
bison: 3.3.2 -> 3.4.1
f1bf93e
@FRidh
Merge staging-next into staging
9de9a15
@matthewbauer
treewide: remove libGLSupported from pkgs
f0733a0 
This isn’t a package, and we already have mesaPlatforms to handle this logic.
@matthewbauer
mesa: rename from mesa-noglu to mesa
f7e2bb8
@matthewbauer
treewide: mesa_noglu, mesa_drivers, libGL_driver -> mesa
263f589 
Just use mesa for these to be more clear. Move these to aliases.nix
@matthewbauer
Merge pull request #62167 from matthewbauer/alias-libgl
4d6f65b 
Add libGL* aliases
@FRidh
Merge staging-next into staging
f120248
@marsam @FRidh
pythonPackages.pluggy: 0.8.1 -> 0.11.0
aad6f1c
@marsam @FRidh
pythonPackages.wcwidth: disable test
9358a15 
To prevent infinite recursion with pytest
@marsam @FRidh
pythonPackages.chardet: fix pytest 4 support
16aea3d
@marsam @FRidh
pythonPackages.apipkg: fix pytest 4 support
50ccd6b
@marsam @FRidh
pythonPackages.pytest-xdist: 1.26.1 -> 1.28.0
3f9e381
@marsam @FRidh
pythonPackages.execnet: 1.5.0 -> 1.6.0
738b300
@marsam @FRidh
pythonPackages.werkzeug: 0.15.2 -> 0.15.4
706646e
@FRidh
python: pluggy: 0.11.0 -> 0.12.0
96a6621
@marsam @FRidh
pythonPackages.pytest: 4.2.1 -> 4.6.3
1a7ffb4
@FRidh
pythonPackages.packaging: disable tests
912b763
@FRidh
pythonPackages.zipp: disable tests
93e5a93
@FRidh
pythonPackages.importlib-metadata: 0.8 -> 0.18
2bc5baa
@FRidh
pythonPackages.zipp: 0.3.3 -> 0.5.1
5b9b2bc
@risicle @FRidh
pythonPackages.pytest-shutil: 1.6.0 -> 1.7.0
ec4f4c9
@risicle @FRidh
pythonPackages.pytest-fixture-config: 1.4.0 -> 1.7.0
9f446bd
@risicle @FRidh
pythonPackages.pytest-virtualenv: 1.6.0 -> 1.7.0
a8d0931
r-ryantm and others added 7 commits June 18, 2019 11:16
@r-ryantm @FRidh
networkmanager: 1.18.0 -> 1.18.1
6daac68 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/network-manager/versions
@fpletz @FRidh
libgit2: remove 0.26, default to 0.27
1081237
@r-ryantm @FRidh
libmicrohttpd: 0.9.63 -> 0.9.64
e62299f 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/libmicrohttpd/versions
@saschagrunert @FRidh
coreutils: Skip inotify dir-recreate test
bb6c2a0 
Some target platforms, especially when building inside a container
have issues with the inotify test. I also saw issues related to that
test under macOS so I would suggest in skipping that for now.
@r-ryantm @FRidh
openconnect: 8.02 -> 8.03
9b775bc 
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/openconnect/versions
@FRidh
Revert "sqlite: enable parallel builds"
2a3488a 
Revert due to reported issues
#63157

This reverts commit 9398234.
@FRidh
Merge staging into staging-next
63dd7b7
@FRidh FRidh merged commit 4f499b1 into master Jun 26, 2019
@lasandell lasandell mentioned this pull request Aug 26, 2019
Closed
10 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
6.topic: nixos 6.topic: python 6.topic: steam 8.has: clean-up 8.has: module (update) 8.has: package (new) 10.rebuild-darwin: 501+ 10.rebuild-darwin: 5001+ 10.rebuild-darwin-stdenv 10.rebuild-linux: 501+ 10.rebuild-linux: 5001+ 10.rebuild-linux-stdenv
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet