pyrox.dev / nixpkgs
lol
fork atom

Merge staging-next into staging

authored by github-actions[bot] and committed by GitHub efbc139f dda98f36

+183 -65
unified split
+12 -7
.github/ISSUE_TEMPLATE/bug_report.md
··· 7 7 8 8 --- 9 9 10 - **Describe the bug** 10 + ### Describe the bug 11 11 A clear and concise description of what the bug is. 12 12 13 - **To Reproduce** 13 + ### Steps To Reproduce 14 14 Steps to reproduce the behavior: 15 15 1. ... 16 16 2. ... 17 17 3. ... 18 18 19 - **Expected behavior** 19 + ### Expected behavior 20 20 A clear and concise description of what you expected to happen. 21 21 22 - **Screenshots** 22 + ### Screenshots 23 23 If applicable, add screenshots to help explain your problem. 24 24 25 - **Additional context** 25 + ### Additional context 26 26 Add any other context about the problem here. 27 27 28 - **Notify maintainers** 28 + ### Notify maintainers 29 29 <!-- 30 30 Please @ people who are in the `meta.maintainers` list of the offending package or module. 31 31 If in doubt, check `git blame` for whoever last touched something. 32 32 --> 33 33 34 - **Metadata** 34 + ### Metadata 35 35 Please run `nix-shell -p nix-info --run "nix-info -m"` and paste the result. 36 + 37 + ```console 38 + [user@system:~]$ nix-shell -p nix-info --run "nix-info -m" 39 + output here 40 + ``` 36 41 37 42 Maintainer information: 38 43 ```yaml
+71
nixos/doc/manual/from_md/release-notes/rl-2111.section.xml
··· 617 617 be removed in 22.05. 618 618 </para> 619 619 </listitem> 620 + <listitem> 621 + <para> 622 + The order of NSS (host) modules has been brought in line with 623 + upstream recommendations: 624 + </para> 625 + <itemizedlist spacing="compact"> 626 + <listitem> 627 + <para> 628 + The <literal>myhostname</literal> module is placed before 629 + the <literal>resolve</literal> (optional) and 630 + <literal>dns</literal> entries, but after 631 + <literal>file</literal> (to allow overriding via 632 + <literal>/etc/hosts</literal> / 633 + <literal>networking.extraHosts</literal>, and prevent ISPs 634 + with catchall-DNS resolvers from hijacking 635 + <literal>.localhost</literal> domains) 636 + </para> 637 + </listitem> 638 + <listitem> 639 + <para> 640 + The <literal>mymachines</literal> module, which provides 641 + hostname resolution for local containers (registered with 642 + <literal>systemd-machined</literal>) is placed to the 643 + front, to make sure its mappings are preferred over other 644 + resolvers. 645 + </para> 646 + </listitem> 647 + <listitem> 648 + <para> 649 + If systemd-networkd is enabled, the 650 + <literal>resolve</literal> module is placed before 651 + <literal>files</literal> and 652 + <literal>myhostname</literal>, as it provides the same 653 + logic internally, with caching. 654 + </para> 655 + </listitem> 656 + <listitem> 657 + <para> 658 + The <literal>mdns(_minimal)</literal> module has been 659 + updated to the new priorities. 660 + </para> 661 + </listitem> 662 + </itemizedlist> 663 + <para> 664 + If you use your own NSS host modules, make sure to update your 665 + priorities according to these rules: 666 + </para> 667 + <itemizedlist spacing="compact"> 668 + <listitem> 669 + <para> 670 + NSS modules which should be queried before 671 + <literal>resolved</literal> DNS resolution should use 672 + mkBefore. 673 + </para> 674 + </listitem> 675 + <listitem> 676 + <para> 677 + NSS modules which should be queried after 678 + <literal>resolved</literal>, <literal>files</literal> and 679 + <literal>myhostname</literal>, but before 680 + <literal>dns</literal> should use the default priority 681 + </para> 682 + </listitem> 683 + <listitem> 684 + <para> 685 + NSS modules which should come after <literal>dns</literal> 686 + should use mkAfter. 687 + </para> 688 + </listitem> 689 + </itemizedlist> 690 + </listitem> 620 691 </itemizedlist> 621 692 </section> 622 693 </section>
+24
nixos/doc/manual/release-notes/rl-2111.section.md
··· 155 155 - The wordpress module provides a new interface which allows to use different webservers with the new option [`services.wordpress.webserver`](options.html#opt-services.wordpress.webserver). Currently `httpd` and `nginx` are supported. The definitions of wordpress sites should now be set in [`services.wordpress.sites`](options.html#opt-services.wordpress.sites). 156 156 157 157 Sites definitions that use the old interface are automatically migrated in the new option. This backward compatibility will be removed in 22.05. 158 + 159 + - The order of NSS (host) modules has been brought in line with upstream 160 + recommendations: 161 + 162 + - The `myhostname` module is placed before the `resolve` (optional) and `dns` 163 + entries, but after `file` (to allow overriding via `/etc/hosts` / 164 + `networking.extraHosts`, and prevent ISPs with catchall-DNS resolvers from 165 + hijacking `.localhost` domains) 166 + - The `mymachines` module, which provides hostname resolution for local 167 + containers (registered with `systemd-machined`) is placed to the front, to 168 + make sure its mappings are preferred over other resolvers. 169 + - If systemd-networkd is enabled, the `resolve` module is placed before 170 + `files` and `myhostname`, as it provides the same logic internally, with 171 + caching. 172 + - The `mdns(_minimal)` module has been updated to the new priorities. 173 + 174 + If you use your own NSS host modules, make sure to update your priorities 175 + according to these rules: 176 + 177 + - NSS modules which should be queried before `resolved` DNS resolution should 178 + use mkBefore. 179 + - NSS modules which should be queried after `resolved`, `files` and 180 + `myhostname`, but before `dns` should use the default priority 181 + - NSS modules which should come after `dns` should use mkAfter.
+2 -2
nixos/modules/config/nsswitch.nix
··· 124 124 group = mkBefore [ "files" ]; 125 125 shadow = mkBefore [ "files" ]; 126 126 hosts = mkMerge [ 127 - (mkBefore [ "files" ]) 128 - (mkAfter [ "dns" ]) 127 + (mkOrder 998 [ "files" ]) 128 + (mkOrder 1499 [ "dns" ]) 129 129 ]; 130 130 services = mkBefore [ "files" ]; 131 131 };
+1 -1
nixos/modules/hardware/sensor/iio.nix
··· 9 9 hardware.sensor.iio = { 10 10 enable = mkOption { 11 11 description = '' 12 - Enable this option to support IIO sensors. 12 + Enable this option to support IIO sensors with iio-sensor-proxy. 13 13 14 14 IIO sensors are used for orientation and ambient light 15 15 sensors on some mobile devices.
+2 -2
nixos/modules/services/networking/avahi-daemon.nix
··· 240 240 241 241 system.nssModules = optional cfg.nssmdns pkgs.nssmdns; 242 242 system.nssDatabases.hosts = optionals cfg.nssmdns (mkMerge [ 243 - (mkOrder 900 [ "mdns_minimal [NOTFOUND=return]" ]) # must be before resolve 244 - (mkOrder 1501 [ "mdns" ]) # 1501 to ensure it's after dns 243 + (mkBefore [ "mdns_minimal [NOTFOUND=return]" ]) # before resolve 244 + (mkAfter [ "mdns" ]) # after dns 245 245 ]); 246 246 247 247 environment.systemPackages = [ pkgs.avahi ];
+2 -1
nixos/modules/system/boot/resolved.nix
··· 140 140 141 141 # add resolve to nss hosts database if enabled and nscd enabled 142 142 # system.nssModules is configured in nixos/modules/system/boot/systemd.nix 143 - system.nssDatabases.hosts = optional config.services.nscd.enable "resolve [!UNAVAIL=return]"; 143 + # added with order 501 to allow modules to go before with mkBefore 144 + system.nssDatabases.hosts = (mkOrder 501 ["resolve [!UNAVAIL=return]"]); 144 145 145 146 systemd.additionalUpstreamSystemUnits = [ 146 147 "systemd-resolved.service"
+2 -3
nixos/modules/system/boot/systemd.nix
··· 925 925 system.nssModules = [ systemd.out ]; 926 926 system.nssDatabases = { 927 927 hosts = (mkMerge [ 928 - [ "mymachines" ] 929 - (mkOrder 1600 [ "myhostname" ] # 1600 to ensure it's always the last 930 - ) 928 + (mkOrder 400 ["mymachines"]) # 400 to ensure it comes before resolve (which is mkBefore'd) 929 + (mkOrder 999 ["myhostname"]) # after files (which is 998), but before regular nss modules 931 930 ]); 932 931 passwd = (mkMerge [ 933 932 (mkAfter [ "systemd" ])
+9 -1
pkgs/applications/networking/instant-messengers/slack/default.nix
··· 50 50 x86_64-linux-version = "4.17.0"; 51 51 x86_64-linux-sha256 = "07ccms58pq27ilkyhcf6cgwb7qrddwil5kgy8yv95ljikqzi5rxi"; 52 52 53 + aarch64-darwin-version = "4.17.0"; 54 + aarch64-darwin-sha256 = "1a5crmnbz8ng3z2pk5zw17dds9d5fyir4rkvv611fn858kq5fv46"; 55 + 53 56 version = { 54 57 x86_64-darwin = x86_64-darwin-version; 58 + aarch64-darwin = aarch64-darwin-version; 55 59 x86_64-linux = x86_64-linux-version; 56 60 }.${system} or throwSystem; 57 61 ··· 64 68 url = "${base}/releases/macos/${version}/prod/x64/Slack-${version}-macOS.dmg"; 65 69 sha256 = x86_64-darwin-sha256; 66 70 }; 71 + aarch64-darwin = fetchurl { 72 + url = "${base}/releases/macos/${version}/prod/arm64/Slack-${version}-macOS.dmg"; 73 + sha256 = aarch64-darwin-sha256; 74 + }; 67 75 x86_64-linux = fetchurl { 68 76 url = "${base}/linux_releases/slack-desktop-${version}-amd64.deb"; 69 77 sha256 = x86_64-linux-sha256; ··· 75 83 homepage = "https://slack.com"; 76 84 license = licenses.unfree; 77 85 maintainers = with maintainers; [ mmahut ]; 78 - platforms = [ "x86_64-darwin" "x86_64-linux" ]; 86 + platforms = [ "x86_64-darwin" "x86_64-linux" "aarch64-darwin"]; 79 87 }; 80 88 81 89 linux = stdenv.mkDerivation rec {
+2 -2
pkgs/development/python-modules/ailment/default.nix
··· 7 7 8 8 buildPythonPackage rec { 9 9 pname = "ailment"; 10 - version = "9.0.9031"; 10 + version = "9.0.9166"; 11 11 disabled = pythonOlder "3.6"; 12 12 13 13 src = fetchFromGitHub { 14 14 owner = "angr"; 15 15 repo = pname; 16 16 rev = "v${version}"; 17 - sha256 = "sha256-xyNTcGTGH8030CJif6an+kDZIfOUVDMiRhFamVajAzk="; 17 + sha256 = "09qbqn57h92f81xv35f645ai7nkkqf7cidkg3qrwfpxcwc2g9kdz"; 18 18 }; 19 19 20 20 propagatedBuildInputs = [ pyvex ];
+2 -2
pkgs/development/python-modules/angr/default.nix
··· 43 43 44 44 buildPythonPackage rec { 45 45 pname = "angr"; 46 - version = "9.0.9031"; 46 + version = "9.0.9166"; 47 47 disabled = pythonOlder "3.6"; 48 48 49 49 src = fetchFromGitHub { 50 50 owner = pname; 51 51 repo = pname; 52 52 rev = "v${version}"; 53 - sha256 = "sha256-qWAz9SHfQU0cdk4yVekJn5OIDPJPbi63CDdlHDq1Opw="; 53 + sha256 = "1h1jb57zp8wy24xy60j76sl4hrzhhwfsvfx26zhbnhqzmwghpd5x"; 54 54 }; 55 55 56 56 propagatedBuildInputs = [
+2 -2
pkgs/development/python-modules/angrop/default.nix
··· 9 9 10 10 buildPythonPackage rec { 11 11 pname = "angrop"; 12 - version = "9.0.9031"; 12 + version = "9.0.9166"; 13 13 disabled = pythonOlder "3.6"; 14 14 15 15 src = fetchFromGitHub { 16 16 owner = "angr"; 17 17 repo = pname; 18 18 rev = "v${version}"; 19 - sha256 = "sha256-3q/3iFR0FFOcvgmNVXtgi1Spu5xfXNJFy+QoIh8amOY="; 19 + sha256 = "1myrzp5axg0dj7kxqc2mz3kfqlds3vzvavcncrj5y9xpx8m7l71m"; 20 20 }; 21 21 22 22 propagatedBuildInputs = [
+2 -2
pkgs/development/python-modules/archinfo/default.nix
··· 7 7 8 8 buildPythonPackage rec { 9 9 pname = "archinfo"; 10 - version = "9.0.9031"; 10 + version = "9.0.9166"; 11 11 12 12 src = fetchFromGitHub { 13 13 owner = "angr"; 14 14 repo = pname; 15 15 rev = "v${version}"; 16 - sha256 = "sha256-pzBMyw5FwQV1FyhvOxUq39s96p0KKSrkEvJzhJQdS4E="; 16 + sha256 = "0y77lyz019rm9zgxpam6dbb006c7j66hwy985h3fg6nbz74pcml5"; 17 17 }; 18 18 19 19 checkInputs = [
+2 -2
pkgs/development/python-modules/claripy/default.nix
··· 13 13 14 14 buildPythonPackage rec { 15 15 pname = "claripy"; 16 - version = "9.0.9031"; 16 + version = "9.0.9166"; 17 17 disabled = pythonOlder "3.6"; 18 18 19 19 src = fetchFromGitHub { 20 20 owner = "angr"; 21 21 repo = pname; 22 22 rev = "v${version}"; 23 - sha256 = "sha256-UCmt2Vm8OWyKa0fmPlGuvzaFddUWs6quavUgIZasoJg="; 23 + sha256 = "0rwl5q7z16agcykn0an2lyqfn2z5yvmg0xcvxfpvndf6zpnbqhx0"; 24 24 }; 25 25 26 26 # Use upstream z3 implementation
+2 -2
pkgs/development/python-modules/cle/default.nix
··· 15 15 16 16 let 17 17 # The binaries are following the argr projects release cycle 18 - version = "9.0.9031"; 18 + version = "9.0.9166"; 19 19 20 20 # Binary files from https://github.com/angr/binaries (only used for testing and only here) 21 21 binaries = fetchFromGitHub { ··· 35 35 owner = "angr"; 36 36 repo = pname; 37 37 rev = "v${version}"; 38 - sha256 = "sha256-+9aW7J8FXuKtU20dpqnoj37McPxzbkjKuYZIO8QeFF0="; 38 + sha256 = "1mvdcwzim52mc7vjrr2cq8xwwi0v0ai3z608mg5nfbbf4zjji76c"; 39 39 }; 40 40 41 41 propagatedBuildInputs = [
+2 -2
pkgs/development/python-modules/pyvex/default.nix
··· 11 11 12 12 buildPythonPackage rec { 13 13 pname = "pyvex"; 14 - version = "9.0.9031"; 14 + version = "9.0.9166"; 15 15 16 16 src = fetchPypi { 17 17 inherit pname version; 18 - sha256 = "sha256-bl6bWv4c+tlaWcxrYCiljC9C+wAZZVyk+1O0rlb4kxA="; 18 + sha256 = "0h7jw7blr4bal7pw711cxmwm4jjypchshc8ks04z2lyziy83ywja"; 19 19 }; 20 20 21 21 postPatch = lib.optionalString stdenv.isDarwin ''
+12 -12
pkgs/games/factorio/versions.json
··· 10 10 "version": "1.1.36" 11 11 }, 12 12 "stable": { 13 - "name": "factorio_alpha_x64-1.1.35.tar.xz", 13 + "name": "factorio_alpha_x64-1.1.36.tar.xz", 14 14 "needsAuth": true, 15 - "sha256": "1svjjpyffdrmll1b3icsrikfi4v2r1z6j7iqq0v36iq0zw7vw3bk", 15 + "sha256": "1x9a2lv6zbqawqlxg8bcbx04hjy0pq40macfa4sqi8w6h14wgww8", 16 16 "tarDirectory": "x64", 17 - "url": "https://factorio.com/get-download/1.1.35/alpha/linux64", 18 - "version": "1.1.35" 17 + "url": "https://factorio.com/get-download/1.1.36/alpha/linux64", 18 + "version": "1.1.36" 19 19 } 20 20 }, 21 21 "demo": { ··· 28 28 "version": "1.1.35" 29 29 }, 30 30 "stable": { 31 - "name": "factorio_demo_x64-1.1.35.tar.xz", 31 + "name": "factorio_demo_x64-1.1.36.tar.xz", 32 32 "needsAuth": false, 33 - "sha256": "0yqb4gf2avpxr4vwafws9pv74xyd9g84zggfikfc801ldc7sp29f", 33 + "sha256": "15fl4pza7n107rrmmdm26kkc12fnrmpn6rjb4ampgzqzn1fq854s", 34 34 "tarDirectory": "x64", 35 - "url": "https://factorio.com/get-download/1.1.35/demo/linux64", 36 - "version": "1.1.35" 35 + "url": "https://factorio.com/get-download/1.1.36/demo/linux64", 36 + "version": "1.1.36" 37 37 } 38 38 }, 39 39 "headless": { ··· 46 46 "version": "1.1.36" 47 47 }, 48 48 "stable": { 49 - "name": "factorio_headless_x64-1.1.35.tar.xz", 49 + "name": "factorio_headless_x64-1.1.36.tar.xz", 50 50 "needsAuth": false, 51 - "sha256": "0xpiw89ad6cfpc576g5jpsyzwjncs3jrx01056p52wj01747fm94", 51 + "sha256": "1s8g030xp5nrlmnn21frrd8n4nd7jjmb5hbpj1vhxjrk6vpijh24", 52 52 "tarDirectory": "x64", 53 - "url": "https://factorio.com/get-download/1.1.35/headless/linux64", 54 - "version": "1.1.35" 53 + "url": "https://factorio.com/get-download/1.1.36/headless/linux64", 54 + "version": "1.1.36" 55 55 } 56 56 } 57 57 }
+3 -3
pkgs/servers/monitoring/grafana-agent/default.nix
··· 2 2 3 3 buildGoModule rec { 4 4 pname = "grafana-agent"; 5 - version = "0.16.1"; 5 + version = "0.17.0"; 6 6 7 7 src = fetchFromGitHub { 8 8 rev = "v${version}"; 9 9 owner = "grafana"; 10 10 repo = "agent"; 11 - sha256 = "0kqbn6fqlrxjqdkkhbr7qmm2m05a7dlskfdb7y4gr5ggi65m6ik5"; 11 + sha256 = "sha256-rHJGVQWbvgcvwPzt8e2uWs1n4bbaAZz6lQjyvmqmLZw="; 12 12 }; 13 13 14 - vendorSha256 = "0xi69a1zkcmi5q8m7lfwp3xb4cbkwc2dzqm24lfqsq13xj5jq6ph"; 14 + vendorSha256 = "sha256-jA8M8ZdJWmrGRQb0W1duVV+XwxqJVQ/ek0Yhw6JZvX8="; 15 15 16 16 patches = [ 17 17 # https://github.com/grafana/agent/issues/731
+2 -2
pkgs/servers/monitoring/grafana/plugins/grafana-polystat-panel/default.nix
··· 2 2 3 3 grafanaPlugin rec { 4 4 pname = "grafana-polystat-panel"; 5 - version = "1.2.5"; 6 - zipHash = "sha256-U9vNfK4ofNzwL7MVe43tGY85gI56Jt1eb7TrCkeNrOQ="; 5 + version = "1.2.6"; 6 + zipHash = "sha256-gbMD2o8A2YYZzkpYiXNkv8Oj958RP47fL6DXj1SBYF0="; 7 7 meta = with lib; { 8 8 description = "Hexagonal multi-stat panel for Grafana"; 9 9 license = licenses.asl20;
+26 -16
pkgs/servers/monitoring/prometheus/default.nix
··· 1 - { stdenv, lib, go, buildGoModule, fetchFromGitHub, mkYarnPackage, nixosTests 1 + { stdenv 2 + , lib 3 + , go 4 + , buildGoModule 5 + , fetchFromGitHub 6 + , mkYarnPackage 7 + , nixosTests 2 8 , fetchpatch 3 9 }: 4 10 ··· 27 33 installPhase = "mv build $out"; 28 34 distPhase = "true"; 29 35 }; 30 - in buildGoModule rec { 36 + in 37 + buildGoModule rec { 31 38 pname = "prometheus"; 32 39 inherit src version; 33 40 ··· 41 48 ''; 42 49 43 50 buildFlags = "-tags=builtinassets"; 44 - buildFlagsArray = let 45 - t = "${goPackagePath}/vendor/github.com/prometheus/common/version"; 46 - in [ 47 - '' 48 - -ldflags= 49 - -X ${t}.Version=${version} 50 - -X ${t}.Revision=unknown 51 - -X ${t}.Branch=unknown 52 - -X ${t}.BuildUser=nix@nixpkgs 53 - -X ${t}.BuildDate=unknown 54 - -X ${t}.GoVersion=${lib.getVersion go} 55 - '' 56 - ]; 51 + buildFlagsArray = 52 + let 53 + t = "${goPackagePath}/vendor/github.com/prometheus/common/version"; 54 + in 55 + [ 56 + '' 57 + -ldflags= 58 + -X ${t}.Version=${version} 59 + -X ${t}.Revision=unknown 60 + -X ${t}.Branch=unknown 61 + -X ${t}.BuildUser=nix@nixpkgs 62 + -X ${t}.BuildDate=unknown 63 + -X ${t}.GoVersion=${lib.getVersion go} 64 + '' 65 + ]; 57 66 58 67 # only run this in the real build, not during the vendor build 59 68 # this should probably be fixed in buildGoModule ··· 67 76 cp -a $src/console_libraries $src/consoles $out/etc/prometheus 68 77 ''; 69 78 70 - doCheck = !stdenv.isDarwin; # https://hydra.nixos.org/build/130673870/nixlog/1 79 + # doCheck = !stdenv.isDarwin; # https://hydra.nixos.org/build/130673870/nixlog/1 80 + doCheck = false; 71 81 72 82 passthru.tests = { inherit (nixosTests) prometheus; }; 73 83
+1 -1
pkgs/servers/monitoring/seyren/default.nix
··· 9 9 sha256 = "1fixij04n8hgmaj8kw8i6vclwyd6n94x0n6ify73ynm6dfv8g37x"; 10 10 }; 11 11 12 - phases = ["installPhase"]; 12 + dontUnpack = true; 13 13 14 14 nativeBuildInputs = [ makeWrapper ]; 15 15 buildInputs = [ jre ];