Until now we merged kernel updates even if no hardened versions were
available yet. On one hand we don't want to delay patch-level updates,
on the other hand users of hardened kernels have frequent breakage now[1].
This change aims to provide a solution this issue:
* The hardened patchset now references the kernel version it's released
for (including a sha256 hash for the fixed-output path of the source
tarball).
* The `hardenedKernelFor`-function doesn't just append hardened patches
now, but also overrides version & src to match the kernel version the
patch was built & tested for.
Refs #140281
[1] https://hydra.nixos.org/job/nixos/trunk-combined/nixpkgs.linuxPackages_hardened.kernel.x86_64-linux/all
(cherry picked from commit bb5aa0109b6db98a2e0a7ba88f5e0287e2374384)
* teamviewer: fix issue #96633
Fix teamviewer's breakage post 15.5.3 -> 15.15.5.
Teamviewer client was no longer able to connect to its backing
server as it now uses dbus to do so. Following changes were
required:
- add missing dbus and polkit service/policy files to package.
- add missing dbus lib to `LD_LIBRARY_PATH`.
Changes to the nixos module as a separate changeset.
(cherry picked from commit 506966d15658d8a411f364f47bbc0f3f9366dba3)
* nixos/teamviewer: fix issue #96633
Add teamviewer package as a dbus package now that the
client / server communication depends on dbus.
(cherry picked from commit 200e959995fa8088b5722bc8255109c03f2a4f78)
* nixos/teamviewer: fix issue #44307
Move to a forefront launch of the daemon. Doing so allowed us
to move the service from forking to simple to avoid the
missing pid error log.
Also:
- Make the dbus dependency explicit.
(cherry picked from commit 953bbc0d7373102cf89625dc3bb7ab8e91134069)
* teamviewer: 15.15.5 -> 15.18.5
Upgrading to the last version still using qt5.14. Later version
will be using qt5.15 which is not in 21.05 stable branch.
This fixes us the crash observed in 15.15.5 when stopping
the service.
(cherry picked from commit db889eb9137a859eedfc5b402de84271c0659662)
* teamviewer: refactor executable wrapping
This centralizes `PATH` and `LD_LIBRARY_PATH`, avoid multiple
layers of wrappers.
Refactor as suggested by @Artturin in PR provided patch:
<https://github.com/NixOS/nixpkgs/pull/140076#issuecomment-934770391>.
(cherry picked from commit c55bc5bfd3377d54f5b6153d09c033cceadfcc05)
* teamviewer: fix 97148 (busybox installed issue)
Simply add `coreutils` as a runtime dependency which will
prevent teamviewer from using incomplete busybox implementation
of expected gnu binaries.
As suggested by @Artturin in PR comment:
<https://github.com/NixOS/nixpkgs/pull/140076#issuecomment-934770391>.
(cherry picked from commit 4fb188e1d190f2e08053dba3e2e95fff1e29183a)
* teamviewer: 15.18.5 -> 15.22.3
Required move from libsForQt514 -> libsForQt515.
Note that this changset won't be backportable to 21.05.
(cherry picked from commit 975ab7f3a02ac0232afe7920a8f7d78fc22d5ccb)
Co-authored-by: Raymond Gauthier <jraygauthier@gmail.com>
GHC 8.10.7 is only in 21.05 for bootstrapping GHCJS, so it shouldn't be
included in the hls wrapper. This change was a result of an overeager
backport and we'll revert it here.
Also rollback some unnecessary change to release-haskell.nix, so it can
be used for testing evaluation still.
This ensures CI tests the nano variant. It also makes it easier to use
with `libc = "newlib-nano";` in a platform description.
(cherry picked from commit e3ff6189f6aa641e108876de32ad83a542259b60)
5.13.19 was the last 5.13 release and the version is now EOL[1].
[1] https://lwn.net/Articles/869747/
(cherry picked from commit 01eb8ec98a52c1e7317fd62f5bc58db30951e716)
The src points to the obsidiansystems repo as it has the ghcjs ported from
8.10.5 to 8.10.7, and a bunch of other fixes (#812, #811, #809)
(cherry picked from commit ba25b274f4bb0240a8ffa71e41b55712930af3d8)
Modified the stm_2_5_0_1 -> stm_2_5_0_0
Backport which adds, rather than updates, the GHC release.
----
The only big change is required for darwin since GHC 8.10.5 now
runs xattr in the install phase on darwin:
* 11e1dcde0d
* ec451cac39
Unfortunately, it uses the host /usr/bin/xattr by default which is
present in the build due to a lack of sandboxing on darwin. That xattr
version however still requires Python 2.7 whereas Python 3.8 is in PATH
in our build. We solve this by setting the XATTR environment variable.
We can't use python3Packages.xattr since GHC expects Apple's fork of
xattr which provides some extra flags to utilize.
Co-authored-by: Cheng Shao <cheng.shao@tweag.io>
(Adapted from cb330ce4f05f5a6e2da3021e9cbf4ea2eb592631)
This drops the python3Packages.ansible-collections attribute in favor of
a local callPackage that overwrites the collections package per ansible
version.
(cherry picked from commit ca618d6401631cf2c82c81220c54e774b514297f)
Jan Solanti
Maximilian Bosch
maxine [they]
Maciej Krüger
zowoq
Vincent Laporte
github-actions[bot]
Bruno BELANYI
sternenseemann
John Ericson
John Ericson
Vladimír Čunát
Robert Scott
Thomas Gerbet
Eduard Bachmakov
Divam
sternenseemann
Martin Weinelt
Martin Weinelt
Sandro Jäckel
Angus Trau
Michael Weiss
Alyssa Ross
Stig
taku0
Artturin
Joachim Breitner
adisbladis
Wael Nasreddine
Jason R. McNeil