nixpkgs

mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-11-11 15:27:20 +03:00

Author	SHA1	Message	Date
Niklas Hambüchen	a874a8a98b	release notes: Mention wireguard `generatePrivateKeyFile` permission changes	2021-04-30 19:28:04 +02:00
Niklas Hambüchen	0dc08b4138	wireguard module: generatePrivateKeyFile: Fix chmod security race. Fixes #121288 Until now, the `touch + chmod 600 + write` approach made it possible for an unprivileged local user read the private key file, by opening the file after the touch, before the read permissions are restricted. This was only the case if `generatePrivateKeyFile = true` and the parent directory of `privateKeyFile` already existed and was readable. This commit fixes it by using `umask`, which ensures kernel-side that the `touch` creates the file with the correct permissions atomically. This commit also: * Removes `mkdir --mode 0644 -p "${dirOf values.privateKeyFile}"` because setting permissions `drw-r--r--` ("nobody can enter that dir") is awkward. `drwx------` would perhaps make sense, like for `.ssh`. However, setting the permissions on the private key file is enough, and likely better, because `privateKeyFile` is about that file specifically and no docs suggest that there's something special about its parent dir. * Removes the `chmod 0400 "${values.privateKeyFile}"` because there isn't really a point in removing write access from the owner of the private key.	2021-04-30 18:55:38 +02:00
Robert Schütz	c8dff328e5	Merge pull request #120447 from AluisioASG/aasg/dyndnsc-0.6.1 dyndnsc: 0.5.1 -> 0.6.1	2021-04-30 17:35:33 +02:00
Kim Lindberger	fdd6ca8fce	Merge pull request #118898 from talyz/gitlab-memory-bloat nixos/gitlab: Add options to tame GitLab's memory usage somewhat	2021-04-30 16:58:30 +02:00
Aaron Andersen	445c114b49	Merge pull request #121162 from r-ryantm/auto-update/kodi-inputstream-adaptive kodiPackages.inputstream-adaptive: 2.6.13 -> 2.6.14	2021-04-30 10:45:18 -04:00
Aluísio Augusto Silva Gonçalves	093ab98c80	dyndnsc: 0.5.1 -> 0.6.1	2021-04-30 11:40:29 -03:00
Aluísio Augusto Silva Gonçalves	932ec5518e	python3Packages.pytest-console-scripts: init at 1.2.0 Thanks to @kvas-it for cutting a release with the patches needed to make tests work.	2021-04-30 11:40:29 -03:00
Aluísio Augusto Silva Gonçalves	0463f91e04	python3Packages.sanic-auth: fix tests (#121279 ) After #120881, packages using Sanic's `app.test_client` or `app.asgi_client` need to depend on `sanic-testing` as well.	2021-04-30 16:40:24 +02:00
Aluísio Augusto Silva Gonçalves	98822ee896	python3Packages.json-logging: init at 1.3.0	2021-04-30 11:33:04 -03:00
Michael Weiss	774550baf5	Merge pull request #119615 from Synthetica9/cage-0.1.3 cage: 0.1.2.1 -> 0.1.3	2021-04-30 16:27:11 +02:00
Guillaume Girol	0c9ed22e64	Merge pull request #119562 from symphorien/fusermountsetuid fuse: fix mount.fuse -o setuid=...	2021-04-30 14:26:39 +00:00
Michael Weiss	28b8cff301	nixos/tests/cage: Fix the test with wlroots 0.13 See #119615 for more details. The aarch64-linux test failed with "qemu-system-aarch64: Virtio VGA not available" so I've restricted the test to x86_64-linux (the virtio paravirtualized 3D graphics driver is likely only available on very few platforms).	2021-04-30 15:57:04 +02:00
Michael Weiss	c89bf45195	Merge pull request #121267 from samuelgrf/fix-google-chrome-dev google-chrome-dev: fix error on startup	2021-04-30 15:52:14 +02:00
Patrick Hilhorst	4263479d3e	cage: 0.1.2.1 -> 0.1.3	2021-04-30 15:38:12 +02:00
Robert Schütz	dc68eb58bb	Merge pull request #120881 from AluisioASG/aasg/sanic-routing python3Packages.sanic: 21.3.2 -> 21.3.4; fix tests	2021-04-30 15:20:49 +02:00
Sandro	e68f542c32	Merge pull request #121260 from Mic92/cutter	2021-04-30 15:13:26 +02:00
ajs124	cd349a4a62	Merge pull request #121019 from r-ryantm/auto-update/gitlab-pages gitlab-pages: 1.35.0 -> 1.38.0	2021-04-30 15:12:10 +02:00
Sandro	c9c351c5ef	Merge pull request #121166 from timothyklim/master nvidia-x11: 460.27.04 -> 465.27	2021-04-30 15:08:53 +02:00
Sandro	bcfd1b2f2c	Merge pull request #121038 from sikmir/josm josm: 17702 → 17833	2021-04-30 15:02:36 +02:00
Henri Menke	c9f1544978	sof-firmware: 1.6 -> 1.7 (#121181 )	2021-04-30 15:02:09 +02:00
Sandro	9a80c030b6	Merge pull request #120754 from netcrns/netcrns/movine	2021-04-30 15:01:44 +02:00
Sandro	09fb96f975	Merge pull request #120763 from vale981/master	2021-04-30 15:00:55 +02:00
Aluísio Augusto Silva Gonçalves	bd815d2121	python3Packages.sanic: 21.3.2 -> 21.3.4 While we're at it, revise the dependencies lists; there's been a couple of break-ups with 21.3.0.	2021-04-30 09:56:09 -03:00
Aluísio Augusto Silva Gonçalves	192b28a75f	python3Packages.sanic-testing: init at 0.3.1	2021-04-30 09:56:09 -03:00
Aluísio Augusto Silva Gonçalves	550bb02269	python3Packages.sanic-routing: init at 0.6.2	2021-04-30 09:56:09 -03:00
Aluísio Augusto Silva Gonçalves	5b971598f0	python3Packages.pytest-sanic: mark as broken with sanic >= 21.3.0 pytest-sanic is incompatible with the current version of Sanic, see sanic-org/sanic#2095 and yunstanford/pytest-sanic#50. While it is broken, we also need it to run Sanic's tests (for which case it works just fine).	2021-04-30 09:56:09 -03:00
Samuel Gräfenstein	c9d89c2f55	google-chrome-dev: fix error on startup Fix `[..]/crashpad_handler: No such file or directory`.	2021-04-30 14:54:55 +02:00
Sandro	dd829d287a	Merge pull request #121205 from r-ryantm/auto-update/libgpiod libgpiod: 1.6.2 -> 1.6.3	2021-04-30 14:53:19 +02:00
Sandro	87769f35d4	Merge pull request #121199 from r-ryantm/auto-update/helm kubernetes-helm: 3.5.3 -> 3.5.4	2021-04-30 14:51:13 +02:00
Sandro	039d5a2d1a	Merge pull request #120707 from onsails/ffsend ffsend: fix build on darwin	2021-04-30 14:47:55 +02:00
Timothy Klim	ebb59d3b11	nvidia-x11: 460.27.04 -> 465.27	2021-04-30 19:45:48 +07:00
Sandro	536ae468d2	Merge pull request #120018 from blargg/yadm yadm: 2.5.0 -> 3.1.0	2021-04-30 14:45:44 +02:00
Sandro	217ee74d64	Merge pull request #121013 from eduardosm/pyface pythonPackages.pyface: fix build	2021-04-30 14:36:41 +02:00
Daniël de Kok	2e27fa876d	Merge pull request #121010 from Flakebi/amdvlk amdvlk: 2021.Q1.6 -> 2021.Q2.2	2021-04-30 14:31:55 +02:00
Martin Weinelt	de6af39b43	Merge pull request #120859 from mweinelt/fastd fastd: fix build on aarch64	2021-04-30 14:31:22 +02:00
Sandro	c47fc06de1	Merge pull request #120921 from sikmir/libosmium libosmium: 2.16.0 → 2.17.0	2021-04-30 14:11:45 +02:00
Sandro	2af7eeed29	Merge pull request #120944 from fabaff/bump-graphql-core python3Packages.graphql-core: 3.1.3 -> 3.1.4	2021-04-30 14:10:50 +02:00
Sandro	833cd36d44	Merge pull request #120723 from jlesquembre/maven maven: 3.6.3 -> 3.8.1	2021-04-30 14:01:40 +02:00
Sandro	7a217983de	Merge pull request #120755 from eduardosm/frescobaldi frescobaldi: 3.1.1 -> 3.1.3	2021-04-30 14:01:23 +02:00
Sandro	2dc423f52b	Merge pull request #120612 from MetaDark/protontricks protontricks: 1.4.4 -> 1.5.0	2021-04-30 14:00:52 +02:00
Sandro	4577d77155	Merge pull request #120861 from saschagrunert/oci-seccomp-bpf-hook linuxPackages.oci-seccomp-bpf-hook: 1.2.2 -> 1.2.3	2021-04-30 13:58:45 +02:00
Sandro	4b9e6ce136	Merge pull request #120091 from georgyo/pulumi3.0.0 pulumi-bin: 2.24.1 -> 3.1.0	2021-04-30 13:58:19 +02:00
Sandro	b93dfb3188	Merge pull request #120872 from Hoverbear/vscode-mainProgram vscode: add meta.mainProgram	2021-04-30 13:57:55 +02:00
Sandro	89dd657749	Merge pull request #120741 from sternenseemann/chroma-0.9.1 chroma: 0.8.2 -> 0.9.1	2021-04-30 13:57:08 +02:00
Sandro	cf467975bf	Merge pull request #120838 from sternenseemann/soldat-unstable-2021-04-27 soldat-unstable: unstable-2021-02-09 -> unstable-2021-04-27	2021-04-30 13:56:50 +02:00
Sandro	d7e9d65ea2	Merge pull request #120341 from iFreilicht/master	2021-04-30 13:54:16 +02:00
Michael Weiss	7fff32f51b	Merge pull request #121150 from primeos/ungoogled-chromium ungoogled-chromium: 90.0.4430.85 -> 90.0.4430.93	2021-04-30 13:37:24 +02:00
Jörg Thalheim	9d38355a4a	cutter: 2.0.1 -> 2.0.2	2021-04-30 13:36:33 +02:00
Jörg Thalheim	5a1acaeb4c	rizin: 0.2.0 -> 0.2.1	2021-04-30 13:36:33 +02:00
Michael Weiss	eb5226217e	Merge pull request #121139 from L-as/master mesa: Don't fail to build when d3d isn't built	2021-04-30 13:27:56 +02:00

1 2 3 4 5 ...

286335 Commits