pyrox.dev
Merge staging-next into staging
authored by github-actions[bot] and committed by GitHub 7be452e1 4ed08e56
+1
-1
nixos/doc/manual/release-notes/rl-2111.section.md
+1
-1
nixos/doc/manual/release-notes/rl-2111.section.md
···
100
100
- [opensnitch](https://github.com/evilsocket/opensnitch), an application firewall. Available as [services.opensnitch](#opt-services.opensnitch.enable).
101
101
102
102
- [snapraid](https://www.snapraid.it/), a backup program for disk arrays.
103
-
Available as [snapraid](#opt-snapraid.enable).
103
+
Available as [snapraid](#opt-services.snapraid.enable).
104
104
105
105
- [Hockeypuck](https://github.com/hockeypuck/hockeypuck), a OpenPGP Key Server. Available as [services.hockeypuck](#opt-services.hockeypuck.enable).
106
106
+8
nixos/doc/manual/release-notes/rl-2311.section.md
+8
nixos/doc/manual/release-notes/rl-2311.section.md
···
1313
1313
- When using [split parity files](https://www.snapraid.it/manual#7.1) in `snapraid`,
1314
1314
the snapraid-sync systemd service will no longer fail to run.
1315
1315
1316
+
- `wpa_supplicant`'s configuration file cannot be read by non-root users, and
1317
+
secrets (such as Pre-Shared Keys) can safely be passed via
1318
+
`networking.wireless.environmentFile`.
1319
+
1320
+
The configuration file could previously be read, when `userControlled.enable` (non-default),
1321
+
by users who are in both `wheel` and `userControlled.group` (defaults to `wheel`)
1322
+
1323
+
1316
1324
## Nixpkgs Library {#sec-release-23.11-nixpkgs-lib}
1317
1325
1318
1326
### Breaking Changes {#sec-release-23.11-lib-breaking}
+1
-1
nixos/modules/module-list.nix
+1
-1
nixos/modules/module-list.nix
···
366
366
./services/backup/mysql-backup.nix
367
367
./services/backup/postgresql-backup.nix
368
368
./services/backup/postgresql-wal-receiver.nix
369
+
./services/backup/snapraid.nix
369
370
./services/backup/restic-rest-server.nix
370
371
./services/backup/restic.nix
371
372
./services/backup/rsnapshot.nix
···
1512
1513
./tasks/network-interfaces.nix
1513
1514
./tasks/powertop.nix
1514
1515
./tasks/scsi-link-power-management.nix
1515
-
./tasks/snapraid.nix
1516
1516
./tasks/stratis.nix
1517
1517
./tasks/swraid.nix
1518
1518
./tasks/trackpoint.nix
+3
nixos/modules/programs/wayland/river.nix
+3
nixos/modules/programs/wayland/river.nix
···
48
48
49
49
# To make a river session available if a display manager like SDDM is enabled:
50
50
services.xserver.displayManager.sessionPackages = optionals (cfg.package != null) [ cfg.package ];
51
+
52
+
# https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050913
53
+
xdg.portal.config.river.default = mkDefault [ "wlr" "gtk" ];
51
54
}
52
55
(import ./wayland-session.nix { inherit lib pkgs; })
53
56
]);
+3
nixos/modules/services/hardware/udev.nix
+3
nixos/modules/services/hardware/udev.nix
+4
-4
nixos/modules/services/matrix/synapse.md
+4
-4
nixos/modules/services/matrix/synapse.md
···
16
16
17
17
## Synapse Homeserver {#module-services-matrix-synapse}
18
18
19
-
[Synapse](https://github.com/matrix-org/synapse) is
19
+
[Synapse](https://github.com/element-hq/synapse) is
20
20
the reference homeserver implementation of Matrix from the core development
21
21
team at matrix.org. The following configuration example will set up a
22
22
synapse server for the `example.org` domain, served from
23
23
the host `myhostname.example.org`. For more information,
24
24
please refer to the
25
-
[installation instructions of Synapse](https://matrix-org.github.io/synapse/latest/setup/installation.html) .
25
+
[installation instructions of Synapse](https://element-hq.github.io/synapse/latest/setup/installation.html) .
26
26
```
27
27
{ pkgs, lib, config, ... }:
28
28
let
···
70
70
# the domain (i.e. example.org from @foo:example.org) and the federation port
71
71
# is 8448.
72
72
# Further reference can be found in the docs about delegation under
73
-
# https://matrix-org.github.io/synapse/latest/delegate.html
73
+
# https://element-hq.github.io/synapse/latest/delegate.html
74
74
locations."= /.well-known/matrix/server".extraConfig = mkWellKnown serverConfig;
75
75
# This is usually needed for homeserver discovery (from e.g. other Matrix clients).
76
76
# Further reference can be found in the upstream docs at
···
169
169
::: {.note}
170
170
It's also possible to user alternative authentication mechanism such as
171
171
[LDAP (via `matrix-synapse-ldap3`)](https://github.com/matrix-org/matrix-synapse-ldap3)
172
-
or [OpenID](https://matrix-org.github.io/synapse/latest/openid.html).
172
+
or [OpenID](https://element-hq.github.io/synapse/latest/openid.html).
173
173
:::
174
174
175
175
## Element (formerly known as Riot) Web Client {#module-services-matrix-element-web}
+7
-7
nixos/modules/services/matrix/synapse.nix
+7
-7
nixos/modules/services/matrix/synapse.nix
···
446
446
default = { };
447
447
description = mdDoc ''
448
448
The primary synapse configuration. See the
449
-
[sample configuration](https://github.com/matrix-org/synapse/blob/v${pkgs.matrix-synapse-unwrapped.version}/docs/sample_config.yaml)
449
+
[sample configuration](https://github.com/element-hq/synapse/blob/v${pkgs.matrix-synapse-unwrapped.version}/docs/sample_config.yaml)
450
450
for possible values.
451
451
452
452
Secrets should be passed in by using the `extraConfigFiles` option.
···
749
749
by the module, but in practice it broke on runtime and as a result, no URL
750
750
preview worked anywhere if this was set.
751
751
752
-
See https://matrix-org.github.io/synapse/latest/usage/configuration/config_documentation.html#url_preview_url_blacklist
752
+
See https://element-hq.github.io/synapse/latest/usage/configuration/config_documentation.html#url_preview_url_blacklist
753
753
on how to configure it properly.
754
754
''))
755
755
(types.attrsOf types.str));
···
873
873
Redis configuration for synapse.
874
874
875
875
See the
876
-
[upstream documentation](https://github.com/matrix-org/synapse/blob/v${pkgs.matrix-synapse-unwrapped.version}/usage/configuration/config_documentation.md#redis)
876
+
[upstream documentation](https://github.com/element-hq/synapse/blob/v${pkgs.matrix-synapse-unwrapped.version}/docs/usage/configuration/config_documentation.md#redis)
877
877
for available options.
878
878
'';
879
879
};
···
886
886
description = lib.mdDoc ''
887
887
Options for configuring workers. Worker support will be enabled if at least one worker is configured here.
888
888
889
-
See the [worker documention](https://matrix-org.github.io/synapse/latest/workers.html#worker-configuration)
889
+
See the [worker documention](https://element-hq.github.io/synapse/latest/workers.html#worker-configuration)
890
890
for possible options for each worker. Worker-specific options overriding the shared homeserver configuration can be
891
891
specified here for each worker.
892
892
···
900
900
using [`services.matrix-synapse.configureRedisLocally`](#opt-services.matrix-synapse.configureRedisLocally).
901
901
902
902
Workers also require a proper reverse proxy setup to direct incoming requests to the appropriate process. See
903
-
the [reverse proxy documentation](https://matrix-org.github.io/synapse/latest/reverse_proxy.html) for a
903
+
the [reverse proxy documentation](https://element-hq.github.io/synapse/latest/reverse_proxy.html) for a
904
904
general reverse proxying setup and
905
-
the [worker documentation](https://matrix-org.github.io/synapse/latest/workers.html#available-worker-applications)
905
+
the [worker documentation](https://element-hq.github.io/synapse/latest/workers.html#available-worker-applications)
906
906
for the available endpoints per worker application.
907
907
:::
908
908
'';
···
932
932
The file for log configuration.
933
933
934
934
See the [python documentation](https://docs.python.org/3/library/logging.config.html#configuration-dictionary-schema)
935
-
for the schema and the [upstream repository](https://github.com/matrix-org/synapse/blob/v${pkgs.matrix-synapse-unwrapped.version}/docs/sample_log_config.yaml)
935
+
for the schema and the [upstream repository](https://github.com/element-hq/synapse/blob/v${pkgs.matrix-synapse-unwrapped.version}/docs/sample_log_config.yaml)
936
936
for an example.
937
937
'';
938
938
};
+5
-3
nixos/modules/services/networking/vdirsyncer.nix
+5
-3
nixos/modules/services/networking/vdirsyncer.nix
···
20
20
else
21
21
pkgs.writeText "vdirsyncer-${name}.conf" (toIniJson (
22
22
{
23
-
general = cfg'.config.general // (lib.optionalAttrs (cfg'.config.statusPath == null) {
24
-
status_path = "/var/lib/vdirsyncer/${name}";
25
-
});
23
+
general = cfg'.config.general // {
24
+
status_path = if cfg'.config.statusPath == null
25
+
then "/var/lib/vdirsyncer/${name}"
26
+
else cfg'.config.statusPath;
27
+
};
26
28
} // (
27
29
mapAttrs' (name: nameValuePair "pair ${name}") cfg'.config.pairs
28
30
) // (
+4
nixos/modules/services/networking/wpa_supplicant.nix
+4
nixos/modules/services/networking/wpa_supplicant.nix
···
107
107
stopIfChanged = false;
108
108
109
109
path = [ package ];
110
+
# if `userControl.enable`, the supplicant automatically changes the permissions
111
+
# and owning group of the runtime dir; setting `umask` ensures the generated
112
+
# config file isn't readable (except to root); see nixpkgs#267693
113
+
serviceConfig.UMask = "066";
110
114
serviceConfig.RuntimeDirectory = "wpa_supplicant";
111
115
serviceConfig.RuntimeDirectoryMode = "700";
112
116
serviceConfig.EnvironmentFile = mkIf (cfg.environmentFile != null)
+7
-2
nixos/modules/tasks/snapraid.nix
nixos/modules/services/backup/snapraid.nix
+7
-2
nixos/modules/tasks/snapraid.nix
nixos/modules/services/backup/snapraid.nix
···
2
2
3
3
with lib;
4
4
5
-
let cfg = config.snapraid;
5
+
let cfg = config.services.snapraid;
6
6
in
7
7
{
8
-
options.snapraid = with types; {
8
+
imports = [
9
+
# Should have never been on the top-level.
10
+
(mkRenamedOptionModule [ "snapraid" ] [ "services" "snapraid" ])
11
+
];
12
+
13
+
options.services.snapraid = with types; {
9
14
enable = mkEnableOption (lib.mdDoc "SnapRAID");
10
15
dataDisks = mkOption {
11
16
default = { };
+12
-9
nixos/tests/ceph-single-node.nix
+12
-9
nixos/tests/ceph-single-node.nix
···
182
182
monA.wait_until_succeeds("ceph -s | grep 'mgr: ${cfg.monA.name}(active,'")
183
183
monA.wait_until_succeeds("ceph -s | grep 'HEALTH_OK'")
184
184
185
+
# This test has been commented out due to the upstream issue with pyo3
186
+
# that has broken this dashboard
187
+
# Reference: https://www.spinics.net/lists/ceph-users/msg77812.html
185
188
# Enable the dashboard and recheck health
186
-
monA.succeed(
187
-
"ceph mgr module enable dashboard",
188
-
"ceph config set mgr mgr/dashboard/ssl false",
189
-
# default is 8080 but it's better to be explicit
190
-
"ceph config set mgr mgr/dashboard/server_port 8080",
191
-
)
192
-
monA.wait_for_open_port(8080)
193
-
monA.wait_until_succeeds("curl -q --fail http://localhost:8080")
194
-
monA.wait_until_succeeds("ceph -s | grep 'HEALTH_OK'")
189
+
# monA.succeed(
190
+
# "ceph mgr module enable dashboard",
191
+
# "ceph config set mgr mgr/dashboard/ssl false",
192
+
# # default is 8080 but it's better to be explicit
193
+
# "ceph config set mgr mgr/dashboard/server_port 8080",
194
+
# )
195
+
# monA.wait_for_open_port(8080)
196
+
# monA.wait_until_succeeds("curl -q --fail http://localhost:8080")
197
+
# monA.wait_until_succeeds("ceph -s | grep 'HEALTH_OK'")
195
198
'';
196
199
in {
197
200
name = "basic-single-node-ceph-cluster";
+38
-3
pkgs/applications/graphics/pdfcpu/default.nix
+38
-3
pkgs/applications/graphics/pdfcpu/default.nix
···
2
2
3
3
buildGoModule rec {
4
4
pname = "pdfcpu";
5
-
version = "0.5.0";
5
+
version = "0.6.0";
6
6
7
7
src = fetchFromGitHub {
8
8
owner = "pdfcpu";
9
9
repo = pname;
10
10
rev = "v${version}";
11
-
sha256 = "sha256-dEAlOKjNXL7zqlll6lqGmbopjdplDR3ewMMNu9TMsmw=";
11
+
hash = "sha256-New0+pWtKdEx/k69pNisNKYj6p998HoEjAhQEDugP/g=";
12
+
# Apparently upstream requires that the compiled executable will know the
13
+
# commit hash and the date of the commit. This information is also presented
14
+
# in the output of `pdfcpu version` which we use as a sanity check in the
15
+
# installCheckPhase. This was discussed upstream in:
16
+
#
17
+
# - https://github.com/pdfcpu/pdfcpu/issues/751
18
+
# - https://github.com/pdfcpu/pdfcpu/pull/752
19
+
#
20
+
# The trick used here is to write that information into files in `src`'s
21
+
# `$out`, and then read them into the `ldflags`. We also delete the `.git`
22
+
# directories in `src`'s $out afterwards, imitating what's done if
23
+
# `leaveDotGit = false;` See also:
24
+
# https://github.com/NixOS/nixpkgs/issues/8567
25
+
leaveDotGit = true;
26
+
postFetch = ''
27
+
cd "$out"
28
+
git rev-parse HEAD > $out/COMMIT
29
+
git log -1 --pretty=%cd --date=format:'%Y-%m-%dT%H:%M:%SZ' > $out/SOURCE_DATE
30
+
find "$out" -name .git -print0 | xargs -0 rm -rf
31
+
'';
12
32
};
13
33
14
-
vendorHash = "sha256-WZsm2wiKedMP0miwnzhnSrF7Qw+jqd8dnpcehlsdMCA=";
34
+
vendorHash = "sha256-jVX/CFf9dd9qD3gyGVDjbfINtPLCsgdjWFix4BCpDZ0=";
35
+
36
+
ldflags = [
37
+
"-s"
38
+
"-w"
39
+
"-X main.version=v${version}"
40
+
];
41
+
42
+
# ldflags based on metadata from git and source
43
+
preBuild = ''
44
+
ldflags+=" -X main.commit=$(cat COMMIT)"
45
+
ldflags+=" -X main.date=$(cat SOURCE_DATE)"
46
+
'';
47
+
15
48
16
49
# No tests
17
50
doCheck = false;
···
20
53
export HOME=$(mktemp -d)
21
54
echo checking the version print of pdfcpu
22
55
$out/bin/pdfcpu version | grep ${version}
56
+
$out/bin/pdfcpu version | grep $(cat COMMIT | cut -c1-8)
57
+
$out/bin/pdfcpu version | grep $(cat SOURCE_DATE)
23
58
'';
24
59
25
60
subPackages = [ "cmd/pdfcpu" ];
+2
-2
pkgs/applications/networking/cluster/terragrunt/default.nix
+2
-2
pkgs/applications/networking/cluster/terragrunt/default.nix
···
5
5
6
6
buildGoModule rec {
7
7
pname = "terragrunt";
8
-
version = "0.54.1";
8
+
version = "0.54.3";
9
9
10
10
src = fetchFromGitHub {
11
11
owner = "gruntwork-io";
12
12
repo = pname;
13
13
rev = "refs/tags/v${version}";
14
-
hash = "sha256-BbJ8XJ2zdKm1awDEkWZIZMDku/NWN3Y+nl/GtBBHgBQ=";
14
+
hash = "sha256-ZtBWp121+Gvt1BMLUAjtMW7fgVlqRjXXspeHmbEWGOU=";
15
15
};
16
16
17
17
vendorHash = "sha256-OIkrDvNk4XD11j/+BdOkzbw86cYUj0Vz7pZ5/vIZopY=";
+3
-3
pkgs/applications/networking/coreth/default.nix
+3
-3
pkgs/applications/networking/coreth/default.nix
···
6
6
7
7
buildGoModule rec {
8
8
pname = "coreth";
9
-
version = "0.12.6";
9
+
version = "0.12.7";
10
10
11
11
src = fetchFromGitHub {
12
12
owner = "ava-labs";
13
13
repo = pname;
14
14
rev = "v${version}";
15
-
hash = "sha256-AmlDOtV6uQtrscvIgK5kz6PldA7a1XrVuwO4DCFZeno=";
15
+
hash = "sha256-voNUnQ0CWM0aGiVkIucn6eRJCp0ajz7hYKBFkYsKPu0=";
16
16
};
17
17
18
18
# go mod vendor has a bug, see: golang/go#57529
19
19
proxyVendor = true;
20
20
21
-
vendorHash = "sha256-v1DoRZuv6k6UIgPirXMbvunttn1aBLbTc+GdtdKquDk=";
21
+
vendorHash = "sha256-adxPB3JPnAf6AxUZjgciK7nJguQWyeYy2/qfePVUouE=";
22
22
23
23
ldflags = [
24
24
"-s"
+3
-3
pkgs/applications/networking/discordo/default.nix
+3
-3
pkgs/applications/networking/discordo/default.nix
···
3
3
4
4
buildGoModule rec {
5
5
pname = "discordo";
6
-
version = "unstable-2023-12-11";
6
+
version = "unstable-2023-12-12";
7
7
8
8
src = fetchFromGitHub {
9
9
owner = "ayn2op";
10
10
repo = pname;
11
-
rev = "9c9ea0dc2fdd4ca18c68b08585bcc5b276388d62";
12
-
hash = "sha256-6gGbro4OsPh+HK9GR01uOUN80lgwMd7oLq9ASWtpNoY=";
11
+
rev = "320ec7753d552974d4d5ede3fcf6fb3c0d52b6e4";
12
+
hash = "sha256-LVWOXw8+GbCE6N6kVSXDjjNqOcq7PS4KU7LXoowhBdQ=";
13
13
};
14
14
15
15
vendorHash = "sha256-8qr1erKGyJvR4LDKHkZf7nR0tQOcvUHQyJt7OlqNS44=";
+3
-3
pkgs/applications/networking/diswall/default.nix
+3
-3
pkgs/applications/networking/diswall/default.nix
···
5
5
in
6
6
rustPlatform.buildRustPackage rec {
7
7
pname = "diswall";
8
-
version = "0.4.2";
8
+
version = "0.4.3";
9
9
10
10
src = fetchFromGitHub {
11
11
owner = "dis-works";
12
12
repo = "diswall-rs";
13
13
rev = "v${version}";
14
-
sha256 = "sha256-uWGpSpT8TyEkF5OI2enZwbcsyoHIemC0Dm1LExi+AC8=";
14
+
sha256 = "sha256-RchpdIS5RKe6Ck2kYQHeq5Dl+ZBWdO/+ZHuFyfYmyMc=";
15
15
};
16
16
17
17
buildInputs = lib.optionals stdenv.isDarwin [
18
18
Security
19
19
];
20
20
21
-
cargoHash = "sha256-Te2mqrBKHDKbFaO0ZNV2C6AHz07v1jWCMm05YiXg+w0=";
21
+
cargoHash = "sha256-AUDTPFRntxk84o9f4wfai04tBMFM2ItNGc3W9lcZ1as=";
22
22
23
23
doCheck = false;
24
24
+3
-3
pkgs/applications/networking/instant-messengers/beeper/default.nix
+3
-3
pkgs/applications/networking/instant-messengers/beeper/default.nix
···
11
11
}:
12
12
let
13
13
pname = "beeper";
14
-
version = "3.89.3";
14
+
version = "3.90.11";
15
15
name = "${pname}-${version}";
16
16
src = fetchurl {
17
-
url = "https://download.todesktop.com/2003241lzgn20jd/beeper-3.89.3-build-231206totezhepd.AppImage";
18
-
hash = "sha256-o4mD2LcWnlw9EIuv0v//51uByaAAxKcJNz9mKjp/Jp8=";
17
+
url = "https://download.todesktop.com/2003241lzgn20jd/beeper-3.90.11-build-2312112f0wxx20y.AppImage";
18
+
hash = "sha256-ZYv0PUvZiw8pcszCVCd7mHE/+VHb+I25OPu5R7vI1j4=";
19
19
};
20
20
appimage = appimageTools.wrapType2 {
21
21
inherit version pname src;
+2
-2
pkgs/applications/networking/nali/default.nix
+2
-2
pkgs/applications/networking/nali/default.nix
···
2
2
3
3
buildGoModule rec {
4
4
pname = "nali";
5
-
version = "0.8.0";
5
+
version = "0.8.1";
6
6
7
7
src = fetchFromGitHub {
8
8
owner = "zu1k";
9
9
repo = "nali";
10
10
rev = "v${version}";
11
-
hash = "sha256-JIP0QX1okCfDj2Y6wZ5TaV3QH0WP3oU3JjaKK6vMfWY=";
11
+
hash = "sha256-5AI8TAKYFqjgLVKob9imrf7yVmXmAPq/zHh1bDfC5r0=";
12
12
};
13
13
14
14
vendorHash = "sha256-wIp/ShUddz+RIcsEuKWUfxsV/wNB2X1jZtIltBZ0ROM=";
+2
-2
pkgs/applications/office/paperless-ngx/default.nix
+2
-2
pkgs/applications/office/paperless-ngx/default.nix
···
21
21
}:
22
22
23
23
let
24
-
version = "2.1.1";
24
+
version = "2.1.2";
25
25
26
26
src = fetchFromGitHub {
27
27
owner = "paperless-ngx";
28
28
repo = "paperless-ngx";
29
29
rev = "refs/tags/v${version}";
30
-
hash = "sha256-/f0al6OyYo8FTOWiNFoKUYWpY0nz3qFOB00QKIvS3Dk=";
30
+
hash = "sha256-jD0dRgU/9gtNZUuTV+zkjqWb8gBnvD/AOTPucdaVKwE=";
31
31
};
32
32
33
33
python = python3;
+3
-3
pkgs/applications/science/math/eigenmath/default.nix
+3
-3
pkgs/applications/science/math/eigenmath/default.nix
···
7
7
8
8
stdenv.mkDerivation rec {
9
9
pname = "eigenmath";
10
-
version = "unstable-2023-12-11";
10
+
version = "unstable-2023-12-12";
11
11
12
12
src = fetchFromGitHub {
13
13
owner = "georgeweigt";
14
14
repo = pname;
15
-
rev = "a493ce81dc1b8801bb4d853af903bb084da0d17e";
16
-
hash = "sha256-Ej5cJrwJiTkEKJGNlfb+KBH13ISP89cYqDVNq8Iy0Gg=";
15
+
rev = "bec2c9bd0750ec7970f6c701e619565c9d348e84";
16
+
hash = "sha256-+VohU8mkFjZ0zhjmri0KY1kTzPLn2q5Au4nEBdXcR+8=";
17
17
};
18
18
19
19
checkPhase = let emulator = stdenv.hostPlatform.emulator buildPackages; in ''
+2
-2
pkgs/applications/video/droidcam/default.nix
+2
-2
pkgs/applications/video/droidcam/default.nix
···
5
5
6
6
stdenv.mkDerivation rec {
7
7
pname = "droidcam";
8
-
version = "2.1.0";
8
+
version = "2.1.1";
9
9
10
10
src = fetchFromGitHub {
11
11
owner = "aramg";
12
12
repo = "droidcam";
13
13
rev = "v${version}";
14
-
sha256 = "sha256-1VEaUm1194gF1/0zrK31SkI7POhi5eK6yYC0Cw/W4Ao=";
14
+
sha256 = "sha256-NdVnls1DvcaI/bVrc5gN96+KQZDgt0M8zkNn93QJYG0=";
15
15
};
16
16
17
17
nativeBuildInputs = [
+3
-3
pkgs/by-name/ek/eksctl/package.nix
+3
-3
pkgs/by-name/ek/eksctl/package.nix
···
6
6
7
7
buildGoModule rec {
8
8
pname = "eksctl";
9
-
version = "0.164.0";
9
+
version = "0.165.0";
10
10
11
11
src = fetchFromGitHub {
12
12
owner = "weaveworks";
13
13
repo = pname;
14
14
rev = version;
15
-
hash = "sha256-ENlMcwk4bMbIzV353vt+EG776+/ajrg5la3JeA81QS4=";
15
+
hash = "sha256-Gx8HobnE7qAfX79ZSLaN8fki+TQYz6XLyxnoSpvFOyk=";
16
16
};
17
17
18
-
vendorHash = "sha256-NOhssVWEkvoXpmnsCVVT7Li0ePGWDSGIlB2MyFtMnpI=";
18
+
vendorHash = "sha256-niULedV/9r3PFI69AenGfk3oCTvKE/h6edjW5sgHg3Q=";
19
19
20
20
doCheck = false;
21
21
+4
-2
pkgs/by-name/of/offpunk/package.nix
+4
-2
pkgs/by-name/of/offpunk/package.nix
···
33
33
in
34
34
python3Packages.buildPythonPackage rec {
35
35
pname = "offpunk";
36
-
version = "2.0";
36
+
version = "2.1";
37
37
format = "pyproject";
38
38
39
39
disabled = python3Packages.pythonOlder "3.7";
···
42
42
owner = "~lioploum";
43
43
repo = "offpunk";
44
44
rev = "v${version}";
45
-
hash = "sha256-6ftc2goCNgvXf5kszvjeSHn24Hn73jq26Irl5jiN6pk=";
45
+
hash = "sha256-IFqasTI2dZCauLUAq6/rvwkfraVK7SGUXpHCPEgSPGk=";
46
46
};
47
47
48
48
nativeBuildInputs = [ python3Packages.hatchling installShellFiles ];
···
51
51
postInstall = ''
52
52
installManPage man/*.1
53
53
'';
54
+
55
+
passthru.tests.version = testers.testVersion { package = offpunk; };
54
56
55
57
meta = with lib; {
56
58
description = "An Offline-First browser for the smolnet ";
+2
pkgs/by-name/ve/vesktop/package.nix
+2
pkgs/by-name/ve/vesktop/package.nix
···
12
12
, pipewire
13
13
, libpulseaudio
14
14
, libicns
15
+
, libnotify
15
16
, jq
16
17
, moreutils
17
18
, cacert
···
116
117
# this is mainly required for venmic
117
118
libPath = lib.makeLibraryPath [
118
119
libpulseaudio
120
+
libnotify
119
121
pipewire
120
122
gcc13Stdenv.cc.cc.lib
121
123
];
+2
-2
pkgs/data/misc/clash-geoip/default.nix
+2
-2
pkgs/data/misc/clash-geoip/default.nix
···
2
2
3
3
stdenvNoCC.mkDerivation rec {
4
4
pname = "clash-geoip";
5
-
version = "20231112";
5
+
version = "20231212";
6
6
7
7
src = fetchurl {
8
8
url = "https://github.com/Dreamacro/maxmind-geoip/releases/download/${version}/Country.mmdb";
9
-
sha256 = "sha256-CTygf2/CbxNO/9e8OfxeGZFaSrKXdlQdvUgywZX1U9o=";
9
+
sha256 = "sha256-h6EojfOWfDwD5Akvb8NrSvg3xyQZhOUrKhUxlWwio8A=";
10
10
};
11
11
12
12
dontUnpack = true;
+2
-2
pkgs/desktops/deepin/core/dde-launchpad/default.nix
+2
-2
pkgs/desktops/deepin/core/dde-launchpad/default.nix
···
15
15
16
16
stdenv.mkDerivation rec {
17
17
pname = "dde-launchpad";
18
-
version = "0.2.1";
18
+
version = "0.3.0";
19
19
20
20
src = fetchFromGitHub {
21
21
owner = "linuxdeepin";
22
22
repo = pname;
23
23
rev = version;
24
-
hash = "sha256-o9YKmtaqa4ykoR75V2OpXm4GRPWHI6WKbxWAzY1b8I0=";
24
+
hash = "sha256-8m0DjQYih3hB/n2VHuJgUYBe8tpGwBU0NdkLxr1OsFc=";
25
25
};
26
26
27
27
nativeBuildInputs = [
-3
pkgs/desktops/gnome/extensions/extensionRenames.nix
-3
pkgs/desktops/gnome/extensions/extensionRenames.nix
···
110
110
"azan@faissal.bensefia.id" = "azan-islamic-prayer-times";
111
111
"azan@hatem.masmoudi.org" = null;
112
112
113
-
# That extension is broken because of https://github.com/NixOS/nixpkgs/issues/118612
114
-
"flypie@schneegans.github.com" = null;
115
-
116
113
# ############################################################################
117
114
# Overrides for extensions that were manually packaged in the past but are gradually
118
115
# being replaced by automatic packaging where possible.
+2
-4
pkgs/desktops/pantheon/apps/elementary-files/default.nix
+2
-4
pkgs/desktops/pantheon/apps/elementary-files/default.nix
···
14
14
, libhandy
15
15
, granite
16
16
, pango
17
-
, elementary-dock
18
17
, bamf
19
18
, sqlite
20
19
, zeitgeist
···
26
25
27
26
stdenv.mkDerivation rec {
28
27
pname = "elementary-files";
29
-
version = "6.5.2";
28
+
version = "6.5.3";
30
29
31
30
outputs = [ "out" "dev" ];
32
31
···
34
33
owner = "elementary";
35
34
repo = "files";
36
35
rev = version;
37
-
sha256 = "sha256-YwXyqZ0exwQ3Qx+VWWyTTmhqCVr6be8tqzS1k3Luo8o=";
36
+
sha256 = "sha256-geJLHRo1Bd2oFT+UtirHj9FVSFTFMK/v/5h+NF9woFo=";
38
37
};
39
38
40
39
nativeBuildInputs = [
···
48
47
49
48
buildInputs = [
50
49
bamf
51
-
elementary-dock
52
50
glib
53
51
granite
54
52
gtk3
+1
pkgs/development/python-modules/alembic/default.nix
+1
pkgs/development/python-modules/alembic/default.nix
+3
-3
pkgs/development/python-modules/b2sdk/default.nix
+3
-3
pkgs/development/python-modules/b2sdk/default.nix
···
18
18
19
19
buildPythonPackage rec {
20
20
pname = "b2sdk";
21
-
version = "1.24.1";
21
+
version = "1.29.0";
22
22
format = "setuptools";
23
23
24
24
disabled = pythonOlder "3.7";
25
25
26
26
src = fetchPypi {
27
27
inherit pname version;
28
-
hash = "sha256-Tp9RjtybqCSxB1gFZXrjwNJ4mmwl+OWTzVyHd250Jas=";
28
+
hash = "sha256-h/pXLGpQ2+ENxWqIb9yteroaudsS8Hz+sraON+65TMw=";
29
29
};
30
30
31
31
nativeBuildInputs = [
···
35
35
propagatedBuildInputs = [
36
36
logfury
37
37
requests
38
-
tqdm
39
38
] ++ lib.optionals (pythonOlder "3.8") [
40
39
importlib-metadata
41
40
] ++ lib.optionals (pythonOlder "3.12") [
···
67
66
"test_raw_api"
68
67
"test_files_headers"
69
68
"test_large_file"
69
+
"test_file_info_b2_attributes"
70
70
];
71
71
72
72
pythonImportsCheck = [
+1
pkgs/development/python-modules/gunicorn/default.nix
+1
pkgs/development/python-modules/gunicorn/default.nix
+2
-2
pkgs/development/python-modules/jupyter-server/default.nix
+2
-2
pkgs/development/python-modules/jupyter-server/default.nix
···
34
34
35
35
buildPythonPackage rec {
36
36
pname = "jupyter-server";
37
-
version = "2.10.1";
37
+
version = "2.12.1";
38
38
format = "pyproject";
39
39
disabled = pythonOlder "3.8";
40
40
41
41
src = fetchPypi {
42
42
pname = "jupyter_server";
43
43
inherit version;
44
-
hash = "sha256-5tomV6lUp4ee7SjMCOCBewH/2B1+q4Y0ZgOXtV+SZHI=";
44
+
hash = "sha256-3He33MX8BUesuisoRPAXmACGZyAe6ifGMZ/5JX1wCm0=";
45
45
};
46
46
47
47
nativeBuildInputs = [
-16
pkgs/development/python-modules/weasel/default.nix
-16
pkgs/development/python-modules/weasel/default.nix
···
4
4
, fetchFromGitHub
5
5
, setuptools
6
6
, wheel
7
-
, black
8
7
, cloudpathlib
9
8
, confection
10
-
, isort
11
-
, mypy
12
9
, packaging
13
-
, pre-commit
14
10
, pydantic
15
-
, pytest
16
11
, requests
17
-
, ruff
18
12
, smart-open
19
13
, srsly
20
14
, typer
21
-
, types-requests
22
-
, types-setuptools
23
15
, wasabi
24
16
, pytestCheckHook
25
17
}:
···
44
36
];
45
37
46
38
propagatedBuildInputs = [
47
-
black
48
39
cloudpathlib
49
40
confection
50
-
isort
51
-
mypy
52
41
packaging
53
-
pre-commit
54
42
pydantic
55
-
pytest
56
43
requests
57
-
ruff
58
44
smart-open
59
45
srsly
60
46
typer
61
-
types-requests
62
-
types-setuptools
63
47
wasabi
64
48
];
65
49
+2
-2
pkgs/development/tools/analysis/codeql/default.nix
+2
-2
pkgs/development/tools/analysis/codeql/default.nix
···
2
2
3
3
stdenv.mkDerivation rec {
4
4
pname = "codeql";
5
-
version = "2.15.1";
5
+
version = "2.15.4";
6
6
7
7
dontConfigure = true;
8
8
dontBuild = true;
···
10
10
11
11
src = fetchzip {
12
12
url = "https://github.com/github/codeql-cli-binaries/releases/download/v${version}/codeql.zip";
13
-
hash = "sha256-ksWf5z0PM5osMxnR5XeEyZw4g7UbHUCqnpw2FB5M6kU=";
13
+
hash = "sha256-aFkaylIgryFYPhY5/OGCRHJMR7EJqNg83c34a2+WMX4=";
14
14
};
15
15
16
16
nativeBuildInputs = [
+5
-3
pkgs/development/tools/backblaze-b2/default.nix
+5
-3
pkgs/development/tools/backblaze-b2/default.nix
···
2
2
3
3
python3Packages.buildPythonApplication rec {
4
4
pname = "backblaze-b2";
5
-
version = "3.9.0";
5
+
version = "3.15.0";
6
6
format = "setuptools";
7
7
8
8
src = fetchPypi {
9
9
inherit version;
10
10
pname = "b2";
11
-
hash = "sha256-Z9LQapWl0zblcAyMOfKhn5/O1H6+tmgiPQfAB241jqU=";
11
+
hash = "sha256-10c2zddALy7+CGxhjUC6tMLQcZ3WmLeRY1bNKWunAys=";
12
12
};
13
13
14
14
postPatch = ''
···
30
30
arrow
31
31
b2sdk
32
32
phx-class-registry
33
-
setuptools
34
33
docutils
35
34
rst2ansi
36
35
tabulate
37
36
tqdm
37
+
platformdirs
38
+
packaging
38
39
];
39
40
40
41
nativeCheckInputs = with python3Packages; [
···
63
64
64
65
# it's hard to make it work on nix
65
66
"test/integration/test_autocomplete.py"
67
+
"test/unit/console_tool"
66
68
];
67
69
68
70
postInstall = ''
+3
-3
pkgs/development/tools/conftest/default.nix
+3
-3
pkgs/development/tools/conftest/default.nix
···
6
6
7
7
buildGoModule rec {
8
8
pname = "conftest";
9
-
version = "0.46.0";
9
+
version = "0.47.0";
10
10
11
11
src = fetchFromGitHub {
12
12
owner = "open-policy-agent";
13
13
repo = "conftest";
14
14
rev = "refs/tags/v${version}";
15
-
hash = "sha256-51OGcic3clPYjj4bmiRVmViqJUEuwzkTtNl9U3OPAdI=";
15
+
hash = "sha256-nWcwy998ivz6ftr1zkN2JlLxHLMB47OZS/vnaYkoZHI=";
16
16
};
17
-
vendorHash = "sha256-nDRg1gF6igE2FJ+s39j5EQ5/h9QkuSF2Bo9zxR3WkBE=";
17
+
vendorHash = "sha256-puAchYXCLE8yenqcCrclNqCqHP3WyFDQhzWgFv4yFUs=";
18
18
19
19
ldflags = [
20
20
"-s"
+3
-3
pkgs/development/tools/container2wasm/default.nix
+3
-3
pkgs/development/tools/container2wasm/default.nix
···
5
5
6
6
buildGoModule rec {
7
7
pname = "container2wasm";
8
-
version = "0.5.1";
8
+
version = "0.5.2";
9
9
10
10
src = fetchFromGitHub {
11
11
owner = "ktock";
12
12
repo = "container2wasm";
13
13
rev = "refs/tags/v${version}";
14
-
hash = "sha256-ba40Nu2tVrRSvVeGxlrn0Bw+xQqWeli40lwBWOXSNTA=";
14
+
hash = "sha256-P/9RbNEpQTpbbWpfN0AThWfYaXCy8SeFvsFQFqdk+Zo=";
15
15
};
16
16
17
-
vendorHash = "sha256-tyfLWmxAzFc0JuSem8L0HPG4wy9Gxdp8F/J3DyOx6rQ=";
17
+
vendorHash = "sha256-aY1/oOCaREXObi6RQ3nhQbYWpzOsJzDiiIRJ6CneB8c=";
18
18
19
19
ldflags = [
20
20
"-s"
+2
-2
pkgs/development/tools/cpm-cmake/default.nix
+2
-2
pkgs/development/tools/cpm-cmake/default.nix
···
5
5
6
6
stdenvNoCC.mkDerivation (finalAttrs: {
7
7
pname = "cpm-cmake";
8
-
version = "0.38.6";
8
+
version = "0.38.7";
9
9
10
10
src = fetchFromGitHub {
11
11
owner = "cpm-cmake";
12
12
repo = "cpm.cmake";
13
13
rev = "v${finalAttrs.version}";
14
-
hash = "sha256-6y3kZyhY1WKHLw3ekZMQeoSGUgxhBu8dPl58ZnCDa+E=";
14
+
hash = "sha256-tvqoGLGBvsPtIbPWG/5DH4IMzQTci3sjmF9dpInncWc=";
15
15
};
16
16
17
17
dontConfigure = true;
+3
-3
pkgs/development/tools/crd2pulumi/default.nix
+3
-3
pkgs/development/tools/crd2pulumi/default.nix
···
2
2
3
3
buildGoModule rec {
4
4
pname = "crd2pulumi";
5
-
version = "1.2.5";
5
+
version = "1.3.0";
6
6
7
7
src = fetchFromGitHub {
8
8
owner = "pulumi";
9
9
repo = "crd2pulumi";
10
10
rev = "v${version}";
11
-
sha256 = "sha256-Km9zL9QQgQjmIaAILzJy8oSd9GyZn/MnmBYTRMFtXlE=";
11
+
sha256 = "sha256-UBfb6PI+Ivk6JxSBIHw4tN09BHN1J+un04mnR3ByDfc=";
12
12
};
13
13
14
-
vendorHash = "sha256-iWFZ20U4S2utIqhoXgLtT4pp5e9h8IpbveIKHPe0AAw=";
14
+
vendorHash = "sha256-Fs43ITqfZYEcuRzm5bTTgmG/tWGIX9k8gdYBHmO4tMQ=";
15
15
16
16
ldflags = [ "-s" "-w" "-X github.com/pulumi/crd2pulumi/gen.Version=${src.rev}" ];
17
17
+3
-3
pkgs/development/tools/godot/4/default.nix
+3
-3
pkgs/development/tools/godot/4/default.nix
···
43
43
in
44
44
stdenv.mkDerivation rec {
45
45
pname = "godot";
46
-
version = "4.2.0-stable";
47
-
commitHash = "46dc277917a93cbf601bbcf0d27d00f6feeec0d5";
46
+
version = "4.2.1-stable";
47
+
commitHash = "b09f793f564a6c95dc76acc654b390e68441bd01";
48
48
49
49
src = fetchFromGitHub {
50
50
owner = "godotengine";
51
51
repo = "godot";
52
52
rev = commitHash;
53
-
hash = "sha256-eon9GOmOafOcPjyBqnrAUXwVBUOnYFBQy8o5dnumDDs=";
53
+
hash = "sha256-Q6Og1H4H2ygOryMPyjm6kzUB6Su6T9mJIp0alNAxvjQ=";
54
54
};
55
55
56
56
nativeBuildInputs = [
+2
-2
pkgs/development/tools/qtcreator/default.nix
+2
-2
pkgs/development/tools/qtcreator/default.nix
···
29
29
30
30
stdenv.mkDerivation rec {
31
31
pname = "qtcreator";
32
-
version = "12.0.0";
32
+
version = "12.0.1";
33
33
34
34
src = fetchurl {
35
35
url = "https://download.qt.io/official_releases/${pname}/${lib.versions.majorMinor version}/${version}/qt-creator-opensource-src-${version}.tar.xz";
36
-
hash = "sha256-OZrg3O+jvZ4Bo/BouT2r6LOfm1ZGbDidFEblyEyPe58=";
36
+
hash = "sha256-ZvuSws7QkoKeMyHFoJEeLemDCdAxDnq5SaOaUCOOA/M=";
37
37
};
38
38
39
39
nativeBuildInputs = [
+3
-3
pkgs/development/tools/rust/cargo-about/default.nix
+3
-3
pkgs/development/tools/rust/cargo-about/default.nix
···
9
9
10
10
rustPlatform.buildRustPackage rec {
11
11
pname = "cargo-about";
12
-
version = "0.5.7";
12
+
version = "0.6.0";
13
13
14
14
src = fetchFromGitHub {
15
15
owner = "EmbarkStudios";
16
16
repo = "cargo-about";
17
17
rev = version;
18
-
sha256 = "sha256-AROT/Q/C0lbkeoMYmY2Tzt0+yRVA8ESRo5mPM1h0HJs=";
18
+
sha256 = "sha256-srJ5NyO+kySFCcqyF0i99Zvh2XsNAyFvTUcks/kt0qs=";
19
19
};
20
20
21
-
cargoSha256 = "sha256-9HkaCUGo6jpzQn851ACM7kcBCkyMJJ/bb/qtV4Hp0lI=";
21
+
cargoHash = "sha256-eO4dBXVBjuN68cTvw8LzzJEedu5+dizOMu4QFEOzKK8=";
22
22
23
23
nativeBuildInputs = [ pkg-config ];
24
24
+3
-3
pkgs/development/tools/rust/duckscript/default.nix
+3
-3
pkgs/development/tools/rust/duckscript/default.nix
···
13
13
14
14
rustPlatform.buildRustPackage rec {
15
15
pname = "duckscript_cli";
16
-
version = "0.9.1";
16
+
version = "0.9.2";
17
17
18
18
src = fetchCrate {
19
19
inherit pname version;
20
-
hash = "sha256-jpAZpx8VooYapSLApWWMLTj7c3wqw/S1w1zHN3OGzMs=";
20
+
hash = "sha256-qvocz/7Fx2YkgPcOYQha5iHQmoU40joGamj/SMiYx+4=";
21
21
};
22
22
23
23
nativeBuildInputs = [ pkg-config ];
···
25
25
buildInputs = [ openssl ]
26
26
++ lib.optionals stdenv.isDarwin [ Security SystemConfiguration libiconv ];
27
27
28
-
cargoHash = "sha256-n40V75yIuSC1abq4/cYFqj9JqGj/uJ36ZSz8APovE6o=";
28
+
cargoHash = "sha256-SW3Q/+EhdMNLbhGQPpiIXuJv3ttyeCpjjvbVCrJzXlY=";
29
29
30
30
meta = with lib; {
31
31
description = "Simple, extendable and embeddable scripting language.";
+2
-2
pkgs/games/warzone2100/default.nix
+2
-2
pkgs/games/warzone2100/default.nix
···
46
46
47
47
stdenv.mkDerivation rec {
48
48
inherit pname;
49
-
version = "4.4.1";
49
+
version = "4.4.2";
50
50
51
51
src = fetchurl {
52
52
url = "mirror://sourceforge/project/warzone2100/releases/${version}/warzone2100_src.tar.xz";
53
-
hash = "sha256-8vbwO4PXEOyZqGiSz1yqhe8jfe4E4iv908mc+8xuH8I=";
53
+
hash = "sha256-O5Yqxqp1vKYr8uvAZ1SdsI/kocOzg0KRCirCqqvLrN4=";
54
54
};
55
55
56
56
buildInputs = [
+2
-2
pkgs/os-specific/darwin/utm/default.nix
+2
-2
pkgs/os-specific/darwin/utm/default.nix
···
7
7
8
8
stdenvNoCC.mkDerivation rec {
9
9
pname = "utm";
10
-
version = "4.4.4";
10
+
version = "4.4.5";
11
11
12
12
src = fetchurl {
13
13
url = "https://github.com/utmapp/UTM/releases/download/v${version}/UTM.dmg";
14
-
hash = "sha256-SyrqkNWRUKQS3D17XYsC/dcCKlPLGNNsG5obEiHE1Lk=";
14
+
hash = "sha256-FlIPSWqY2V1akd/InS6BPEBfc8pomJ8jgDns7wvaOm8=";
15
15
};
16
16
17
17
nativeBuildInputs = [ undmg makeWrapper ];
+1
-1
pkgs/os-specific/linux/batman-adv/default.nix
+1
-1
pkgs/os-specific/linux/batman-adv/default.nix
···
32
32
homepage = "https://www.open-mesh.org/projects/batman-adv/wiki/Wiki";
33
33
description = "B.A.T.M.A.N. routing protocol in a linux kernel module for layer 2";
34
34
license = lib.licenses.gpl2;
35
-
maintainers = with lib.maintainers; [ fpletz hexa ];
35
+
maintainers = with lib.maintainers; [ fpletz hexa philiptaron ];
36
36
platforms = with lib.platforms; linux;
37
37
};
38
38
}
+11
-4
pkgs/os-specific/linux/batman-adv/version.nix
+11
-4
pkgs/os-specific/linux/batman-adv/version.nix
···
1
1
{
2
-
version = "2023.2";
2
+
version = "2023.3";
3
3
4
+
# To get these, run:
5
+
#
6
+
# ```
7
+
# for tool in alfred batctl batman-adv; do
8
+
# nix-prefetch-url https://downloads.open-mesh.org/batman/releases/batman-adv-2023.3/$tool-2023.3.tar.gz --type sha256 | xargs nix hash to-sri --type sha256
9
+
# done
10
+
# ```
4
11
sha256 = {
5
-
batman-adv = "sha256-OQfc1X4sW/2dQHE5YLlAK/HaT4DFm1/wN3ifu7vY+iU=";
6
-
alfred = "sha256-qSBgKFZPieW/t3FK4piDoWEPYr4+YcCW4f6zYgBxjg4=";
7
-
batctl = "sha256-cLX5MfpjYyVpe9829tE0oDxJBvTBfLdlCjxxSQFDbsg=";
12
+
alfred = "sha256-rVrUFJ+uz351MCpXeqpnOxz8lAXSAksrSpFjuscMjk8=";
13
+
batctl = "sha256-mswxFwkwwXl8OHY7h73/iAVMNNHwEvu4EAaCc/7zEhI=";
14
+
batman-adv = "sha256-98bFPlk0PBYmQsubRPEBZ2XUv1E+A5ACvmEremweo2w=";
8
15
};
9
16
}
+10
pkgs/os-specific/linux/libnvme/default.nix
+10
pkgs/os-specific/linux/libnvme/default.nix
···
35
35
url = "https://github.com/linux-nvme/libnvme/commit/ff742e792725c316ba6de0800188bf36751bd1d1.patch";
36
36
hash = "sha256-IUjPUBmGQC4oAKFFlBrjonqD2YdyNPC9siK4t/t2slE=";
37
37
})
38
+
# included in next release
39
+
(fetchpatch {
40
+
url = "https://github.com/linux-nvme/libnvme/commit/a2b8e52e46cfd888ac5a48d8ce632bd70a5caa93.patch";
41
+
hash = "sha256-AVSWraFriErfz7dA2CjU8+ehJtAmuLxBZyBALygmrf0=";
42
+
})
43
+
# included in next release
44
+
(fetchpatch {
45
+
url = "https://github.com/linux-nvme/libnvme/commit/68c6ffb11d40a427fc1fd70ac2ac97fd01952913.patch";
46
+
hash = "sha256-dvc1sjgCFU31/LornvJ/aRVYtPOsewkas0jS+/AwFuU=";
47
+
})
38
48
];
39
49
40
50
postPatch = ''
+2
pkgs/os-specific/linux/nixos-rebuild/nixos-rebuild.8
+2
pkgs/os-specific/linux/nixos-rebuild/nixos-rebuild.8
···
34
34
.Op Fl -show-trace
35
35
.Op Fl I Va NIX_PATH
36
36
.Op Fl -verbose | v
37
+
.Op Fl -accept-flake-config
37
38
.Op Fl -impure
38
39
.Op Fl -max-jobs | j Va number
39
40
.Op Fl -keep-failed | K
···
395
396
.Fl -max-jobs Ns ,
396
397
.Fl j Ns ,
397
398
.Fl I Ns ,
399
+
.Fl -accept-flake-config Ns ,
398
400
.Fl -show-trace Ns ,
399
401
.Fl -keep-failed Ns ,
400
402
.Fl -keep-going Ns ,
+1
-1
pkgs/os-specific/linux/nixos-rebuild/nixos-rebuild.sh
+1
-1
pkgs/os-specific/linux/nixos-rebuild/nixos-rebuild.sh
···
82
82
j="$1"; shift 1
83
83
extraBuildFlags+=("$i" "$j")
84
84
;;
85
-
-j*|--quiet|--print-build-logs|-L|--no-build-output|-Q| --show-trace|--keep-going|-k|--keep-failed|-K|--fallback|--refresh|--repair|--impure|--offline|--no-net)
85
+
--accept-flake-config|-j*|--quiet|--print-build-logs|-L|--no-build-output|-Q| --show-trace|--keep-going|-k|--keep-failed|-K|--fallback|--refresh|--repair|--impure|--offline|--no-net)
86
86
extraBuildFlags+=("$i")
87
87
;;
88
88
--verbose|-v|-vv|-vvv|-vvvv|-vvvvv)
+4
-5
pkgs/servers/mail/mailpit/default.nix
+4
-5
pkgs/servers/mail/mailpit/default.nix
···
12
12
}:
13
13
14
14
let
15
-
version = "1.10.4";
15
+
version = "1.11.0";
16
16
17
17
src = fetchFromGitHub {
18
18
owner = "axllent";
19
19
repo = "mailpit";
20
20
rev = "v${version}";
21
-
hash = "sha256-DEeE562E+G/Qfpqc1kr9bklG6109OZENpglWmHj0Tpo=";
21
+
hash = "sha256-+PtyoItn9Dwf7HU3OjzldqfYgdu0LatPmijXK3gAKYY=";
22
22
};
23
23
24
24
# Separate derivation, because if we mix this in buildGoModule, the separate
···
30
30
31
31
npmDeps = fetchNpmDeps {
32
32
inherit src;
33
-
hash = "sha256-FEwaWHf5Ic2t933xSacmc+T0RydZOPCK1yQxTRZ0u38=";
33
+
hash = "sha256-zx6B6kDVdKJMQQPONC/KWRXK2i+4l5w9hzrAqatrKTE=";
34
34
};
35
35
36
36
env = lib.optionalAttrs (stdenv.isDarwin && stdenv.isx86_64) {
···
56
56
pname = "mailpit";
57
57
inherit src version;
58
58
59
-
vendorHash = "sha256-oBkdC4Qx9vuz9rvNxk27TM6vkQokOcFQ4hEZCxlT8xo=";
59
+
vendorHash = "sha256-UQms3YWXJRP1u1ERlsFNpo6ei86qaH6pgfvCLnB3AAk=";
60
60
61
61
CGO_ENABLED = 0;
62
62
···
67
67
'';
68
68
69
69
passthru.tests.version = testers.testVersion {
70
-
inherit version;
71
70
package = mailpit;
72
71
command = "mailpit version";
73
72
};
+5
-5
pkgs/servers/matrix-synapse/default.nix
+5
-5
pkgs/servers/matrix-synapse/default.nix
···
21
21
format = "pyproject";
22
22
23
23
src = fetchFromGitHub {
24
-
owner = "matrix-org";
24
+
owner = "element-hq";
25
25
repo = "synapse";
26
26
rev = "v${version}";
27
27
hash = "sha256-irPExb8rwQjkPp0b3x5hJG4Ay6OnITWIGRPxBSoP/Dk=";
···
35
35
36
36
postPatch = ''
37
37
# Remove setuptools_rust from runtime dependencies
38
-
# https://github.com/matrix-org/synapse/blob/v1.69.0/pyproject.toml#L177-L185
38
+
# https://github.com/element-hq/synapse/blob/v1.69.0/pyproject.toml#L177-L185
39
39
sed -i '/^setuptools_rust =/d' pyproject.toml
40
40
41
41
# Remove version pin on build dependencies. Upstream does this on purpose to
···
149
149
150
150
# high parallelisem makes test suite unstable
151
151
# upstream uses 2 cores but 4 seems to be also stable
152
-
# https://github.com/matrix-org/synapse/blob/develop/.github/workflows/latest_deps.yml#L103
152
+
# https://github.com/element-hq/synapse/blob/develop/.github/workflows/latest_deps.yml#L103
153
153
if (( $NIX_BUILD_CORES > 4)); then
154
154
NIX_BUILD_CORES=4
155
155
fi
···
167
167
168
168
meta = with lib; {
169
169
homepage = "https://matrix.org";
170
-
changelog = "https://github.com/matrix-org/synapse/releases/tag/v${version}";
170
+
changelog = "https://github.com/element-hq/synapse/releases/tag/v${version}";
171
171
description = "Matrix reference homeserver";
172
-
license = licenses.asl20;
172
+
license = licenses.agpl3Plus;
173
173
maintainers = teams.matrix.members;
174
174
};
175
175
}
+1
-1
pkgs/servers/matrix-synapse/tools/synadm.nix
+1
-1
pkgs/servers/matrix-synapse/tools/synadm.nix
···
37
37
longDescription = ''
38
38
A CLI tool to help admins of Matrix Synapse homeservers
39
39
conveniently issue commands available via its admin API's
40
-
(matrix-org/synapse@master/docs/admin_api)
40
+
(element-hq/synapse@master/docs/admin_api)
41
41
'';
42
42
changelog = "https://github.com/JOJ0/synadm/releases/tag/v${version}";
43
43
homepage = "https://github.com/JOJ0/synadm";
+3
-3
pkgs/servers/matrix-synapse/wrapper.nix
+3
-3
pkgs/servers/matrix-synapse/wrapper.nix
···
14
14
let
15
15
extraPackages = lib.concatMap (extra: matrix-synapse-unwrapped.optional-dependencies.${extra}) (lib.unique extras);
16
16
17
-
pluginsEnv = matrix-synapse-unwrapped.python.buildEnv.override {
18
-
extraLibs = plugins;
17
+
pythonEnv = matrix-synapse-unwrapped.python.buildEnv.override {
18
+
extraLibs = extraPackages ++ plugins;
19
19
};
20
20
21
-
searchPath = lib.makeSearchPathOutput "lib" matrix-synapse-unwrapped.python.sitePackages (extraPackages ++ [ pluginsEnv ]);
21
+
searchPath = "${pythonEnv}/${matrix-synapse-unwrapped.python.sitePackages}";
22
22
in
23
23
stdenv.mkDerivation {
24
24
name = (lib.appendToName "wrapped" matrix-synapse-unwrapped).name;
+3
-3
pkgs/tools/admin/copilot-cli/default.nix
+3
-3
pkgs/tools/admin/copilot-cli/default.nix
···
2
2
3
3
buildGoModule rec {
4
4
pname = "copilot-cli";
5
-
version = "1.32.0";
5
+
version = "1.32.1";
6
6
7
7
src = fetchFromGitHub {
8
8
owner = "aws";
9
9
repo = pname;
10
10
rev = "v${version}";
11
-
hash = "sha256-w63mNGDUc5YrlBrqsXRyy4SPC35kNKWhiHe6Sfc30tI=";
11
+
hash = "sha256-OdzycH+52F6lfCErKlsVFiPE2gxU22ySV5uPA6zBXUg=";
12
12
};
13
13
14
-
vendorHash = "sha256-8hZFsYMZQ8RxImEG2t0kfukbRjAJMEDSYF+ryLOZelc=";
14
+
vendorHash = "sha256-5Nlo5Ol4YdO3XI5RhpFfBgprVUV5DUkySvCXeFZqulk=";
15
15
16
16
nativeBuildInputs = [ installShellFiles ];
17
17
+2
-2
pkgs/tools/admin/credhub-cli/default.nix
+2
-2
pkgs/tools/admin/credhub-cli/default.nix
···
2
2
3
3
buildGoModule rec {
4
4
pname = "credhub-cli";
5
-
version = "2.9.22";
5
+
version = "2.9.24";
6
6
7
7
src = fetchFromGitHub {
8
8
owner = "cloudfoundry-incubator";
9
9
repo = "credhub-cli";
10
10
rev = version;
11
-
sha256 = "sha256-snQLZ/bHYDdC62Ti1E4zUmBHR8TtrKCx0BC2i6GAfdE=";
11
+
sha256 = "sha256-9SEdMK9KECte9QEfosju0PHxlDWwbQkn4QKi/XgFVuY=";
12
12
};
13
13
14
14
# these tests require network access that we're not going to give them
+9
-3
pkgs/tools/filesystems/ceph/default.nix
+9
-3
pkgs/tools/filesystems/ceph/default.nix
···
28
28
, doxygen
29
29
, gperf
30
30
, graphviz
31
+
, gnugrep
31
32
, gtest
32
33
, icu
34
+
, kmod
33
35
, libcap
34
36
, libcap_ng
35
37
, libnl
···
294
296
295
297
pythonPath = [ ceph-python-env "${placeholder "out"}/${ceph-python-env.sitePackages}" ];
296
298
299
+
# replace /sbin and /bin based paths with direct nix store paths
300
+
# increase the `command` buffer size since 2 nix store paths cannot fit within 128 characters
297
301
preConfigure =''
298
-
substituteInPlace src/common/module.c --replace "/sbin/modinfo" "modinfo"
299
-
substituteInPlace src/common/module.c --replace "/sbin/modprobe" "modprobe"
300
-
substituteInPlace src/common/module.c --replace "/bin/grep" "grep"
302
+
substituteInPlace src/common/module.c \
303
+
--replace "char command[128];" "char command[256];" \
304
+
--replace "/sbin/modinfo" "${kmod}/bin/modinfo" \
305
+
--replace "/sbin/modprobe" "${kmod}/bin/modprobe" \
306
+
--replace "/bin/grep" "${gnugrep}/bin/grep"
301
307
302
308
# install target needs to be in PYTHONPATH for "*.pth support" check to succeed
303
309
# set PYTHONPATH, so the build system doesn't silently skip installing ceph-volume and others
+8
-8
pkgs/tools/security/bitwarden/default.nix
+8
-8
pkgs/tools/security/bitwarden/default.nix
···
3
3
, cargo
4
4
, copyDesktopItems
5
5
, dbus
6
-
, electron_26
6
+
, electron_27
7
7
, fetchFromGitHub
8
8
, fetchpatch2
9
9
, glib
···
25
25
let
26
26
description = "A secure and free password manager for all of your devices";
27
27
icon = "bitwarden";
28
-
electron = electron_26;
28
+
electron = electron_27;
29
29
in buildNpmPackage rec {
30
30
pname = "bitwarden";
31
-
version = "2023.12.0"; # TODO add back Electron version check below
31
+
version = "2023.12.0";
32
32
33
33
src = fetchFromGitHub {
34
34
owner = "bitwarden";
···
43
43
url = "https://github.com/solopasha/bitwarden_flatpak/raw/daec07b067b9cec5e260b44a53216fc65866ba1d/wayland-clipboard.patch";
44
44
hash = "sha256-hcaRa9Nl7MYaTNwmB5Qdm65Mtufv3z+IPwLDPiO3pcw=";
45
45
})
46
+
# Workaround Electron 25 EOL and 26 has https://github.com/bitwarden/clients/issues/6560
47
+
./electron-27.patch
46
48
];
47
49
48
50
nodejs = nodejs_18;
49
51
50
52
makeCacheWritable = true;
51
53
npmWorkspace = "apps/desktop";
52
-
npmDepsHash = "sha256-bnYpvHO9Pnob+MbrSshv03mSwXCADH/2xw33nLVKMdg=";
54
+
npmDepsHash = "sha256-QwG+D0M94HN1AyQlmzKeScZyksiUr5A9igEaox9DYN4=";
53
55
54
56
cargoDeps = rustPlatform.fetchCargoTarball {
55
57
name = "${pname}-${version}";
···
82
84
libsecret
83
85
];
84
86
85
-
# FIXME add back once upstream moves to Electron >= 26
86
-
# we use electron_26 because electron_25 is EOL
87
-
/*preBuild = ''
87
+
preBuild = ''
88
88
if [[ $(jq --raw-output '.devDependencies.electron' < package.json | grep -E --only-matching '^[0-9]+') != ${lib.escapeShellArg (lib.versions.major electron.version)} ]]; then
89
89
echo 'ERROR: electron version mismatch'
90
90
exit 1
91
91
fi
92
-
'';*/
92
+
'';
93
93
94
94
postBuild = ''
95
95
pushd apps/desktop
+69
pkgs/tools/security/bitwarden/electron-27.patch
+69
pkgs/tools/security/bitwarden/electron-27.patch
···
1
+
From e2c15e826fe9d4d2d12868ef5409e423e3191b58 Mon Sep 17 00:00:00 2001
2
+
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
3
+
Date: Fri, 8 Dec 2023 13:07:46 +0100
4
+
Subject: [PATCH] Bump electron to v27.1.3 (#7134)
5
+
6
+
Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
7
+
8
+
(cherry picked from commit d76602343f36d8e17a9b0204e0290488456c96d5)
9
+
---
10
+
apps/desktop/electron-builder.json | 2 +-
11
+
package-lock.json | 8 ++++----
12
+
package.json | 2 +-
13
+
3 files changed, 6 insertions(+), 6 deletions(-)
14
+
15
+
diff --git a/apps/desktop/electron-builder.json b/apps/desktop/electron-builder.json
16
+
index 69d1c0074f..a12870bd96 100644
17
+
--- a/apps/desktop/electron-builder.json
18
+
+++ b/apps/desktop/electron-builder.json
19
+
@@ -19,7 +19,7 @@
20
+
"**/node_modules/@bitwarden/desktop-native/index.js",
21
+
"**/node_modules/@bitwarden/desktop-native/desktop_native.${platform}-${arch}*.node"
22
+
],
23
+
- "electronVersion": "25.9.1",
24
+
+ "electronVersion": "27.1.3",
25
+
"generateUpdatesFilesForAllChannels": true,
26
+
"publish": {
27
+
"provider": "generic",
28
+
diff --git a/package-lock.json b/package-lock.json
29
+
index 3f0afde95b..9b7b2dbcd9 100644
30
+
--- a/package-lock.json
31
+
+++ b/package-lock.json
32
+
@@ -125,7 +125,7 @@
33
+
"cross-env": "7.0.3",
34
+
"css-loader": "6.8.1",
35
+
"del": "6.1.1",
36
+
- "electron": "25.9.1",
37
+
+ "electron": "27.1.3",
38
+
"electron-builder": "23.6.0",
39
+
"electron-log": "5.0.0",
40
+
"electron-reload": "2.0.0-alpha.1",
41
+
@@ -20173,9 +20173,9 @@
42
+
}
43
+
},
44
+
"node_modules/electron": {
45
+
- "version": "25.9.1",
46
+
- "resolved": "https://registry.npmjs.org/electron/-/electron-25.9.1.tgz",
47
+
- "integrity": "sha512-Uo/Fh7igjoUXA/f90iTATZJesQEArVL1uLA672JefNWTLymdKSZkJKiCciu/Xnd0TS6qvdIOUGuJFSTQnKskXQ==",
48
+
+ "version": "27.1.3",
49
+
+ "resolved": "https://registry.npmjs.org/electron/-/electron-27.1.3.tgz",
50
+
+ "integrity": "sha512-7eD8VMhhlL5J531OOawn00eMthUkX1e3qN5Nqd7eMK8bg5HxQBrn8bdPlvUEnCano9KhrVwaDnGeuzWoDOGpjQ==",
51
+
"dev": true,
52
+
"hasInstallScript": true,
53
+
"dependencies": {
54
+
diff --git a/package.json b/package.json
55
+
index 9ee884b31d..4a5c3513fd 100644
56
+
--- a/package.json
57
+
+++ b/package.json
58
+
@@ -88,7 +88,7 @@
59
+
"cross-env": "7.0.3",
60
+
"css-loader": "6.8.1",
61
+
"del": "6.1.1",
62
+
- "electron": "25.9.1",
63
+
+ "electron": "27.1.3",
64
+
"electron-builder": "23.6.0",
65
+
"electron-log": "5.0.0",
66
+
"electron-reload": "2.0.0-alpha.1",
67
+
--
68
+
2.42.0
69
+
+3
-3
pkgs/tools/security/cyclonedx-gomod/default.nix
+3
-3
pkgs/tools/security/cyclonedx-gomod/default.nix
···
5
5
6
6
buildGoModule rec {
7
7
pname = "cyclonedx-gomod";
8
-
version = "1.4.1";
8
+
version = "1.5.0";
9
9
10
10
src = fetchFromGitHub {
11
11
owner = "CycloneDX";
12
12
repo = pname;
13
13
rev = "v${version}";
14
-
hash = "sha256-JczDfNBYT/Ap2lDucEvuT8NAwuQgmavOUvtznI6Q+Zc=";
14
+
hash = "sha256-whAHZDUQBJaYu+OZiqcYzWxOru1GXDQ4FMDCj+ngCDs=";
15
15
};
16
16
17
-
vendorHash = "sha256-5Mn+f+oVwbn2qGaZct5+9f6tOBXfsB/I72yD7fHUrC8=";
17
+
vendorHash = "sha256-FpsZonGJSzbAsnM00qq/qiTJLUN4q08dR+6rhTKvX0I=";
18
18
19
19
# Tests require network access and cyclonedx executable
20
20
doCheck = false;
+1
pkgs/tools/text/chroma/default.nix
+1
pkgs/tools/text/chroma/default.nix
+2
-4
pkgs/top-level/all-packages.nix
+2
-4
pkgs/top-level/all-packages.nix
···
61
61
};
62
62
63
63
stdenvNoLibs =
64
-
if stdenv.hostPlatform != stdenv.buildPlatform && (stdenv.hostPlatform.isDarwin || stdenv.hostPlatform.isDarwin.useLLVM or false)
64
+
if stdenv.hostPlatform != stdenv.buildPlatform && (stdenv.hostPlatform.isDarwin || stdenv.hostPlatform.useLLVM or false)
65
65
then
66
66
# We cannot touch binutils or cc themselves, because that will cause
67
67
# infinite recursion. So instead, we just choose a libc based on the
···
37755
37755
37756
37756
endless-sky = callPackage ../games/endless-sky { };
37757
37757
37758
-
extremetuxracer = callPackage ../games/extremetuxracer {
37759
-
libpng = libpng12;
37760
-
};
37758
+
extremetuxracer = callPackage ../games/extremetuxracer { };
37761
37759
37762
37760
exult = callPackage ../games/exult { };
37763
37761