b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
489544 commits 2 branches 0 tags 3.3 GiB
Commit graph

27143 commits

Author SHA1 Message Date
Nick Cao 0e3bd75987
Merge pull request #234842 from sumnerevans/matrix-synapse-1.84.1 
matrix-synapse: 1.84.0 -> 1.84.1
 2023-05-29 20:27:10 -06:00
Infinidoge 5dd9667abd nitter: unstable-2023-04-21 -> unstable-2023-05-19 2023-05-29 21:14:24 +00:00
Sandro Jäckel 819289b1e5
nginxModules.zstd: add SuperSandro2000 as maintainer 2023-05-29 20:41:08 +02:00
Sandro Jäckel 0000007dcc
nginxModules.vts: 0.2.1 -> 0.2.2, add SuperSandro2000 as maintainer 2023-05-29 20:40:50 +02:00
Sumner Evans e1a8113c12
matrix-synapse: 1.84.0 -> 1.84.1 
https://github.com/matrix-org/synapse/releases/tag/v1.84.1
Signed-off-by: Sumner Evans <me@sumnerevans.com>
 2023-05-29 12:29:28 -06:00
Sandro 90475fe1f8
Merge pull request #232227 from OPNA2608/fix/mir_modernise 2023-05-29 20:23:40 +02:00
Luke Granger-Brown 34d76d22ef
Merge pull request #234756 from r-ryantm/auto-update/pomerium 
pomerium: 0.22.1 -> 0.22.2
 2023-05-29 18:34:11 +01:00
R. Ryantm cc62398c92 pomerium: 0.22.1 -> 0.22.2 2023-05-29 08:39:07 +00:00
Weijia Wang 413a534a8c
Merge pull request #234701 from wegank/blobs-gg-derivation 
akkoma-emoji.blobs_gg: convert to stdenvNoCC.mkDerivation
 2023-05-29 03:19:31 +03:00
Weijia Wang aeca89c417
Merge pull request #234678 from sandydoo/fix/meilisearch-darwin 
meilisearch: fix build on x86_64-darwin
 2023-05-29 01:52:51 +03:00
Weijia Wang 91aa9d2248 akkoma-emoji.blobs_gg: convert to stdenvNoCC.mkDerivation 2023-05-29 01:45:19 +03:00
Ryan Lahfa 627341518e
Merge pull request #234461 from NixOS/update/nextcloud26 
nextcloud26: 26.0.1 -> 26.0.2
 2023-05-28 23:42:37 +02:00
Weijia Wang ca72cf4e08
Merge pull request #234629 from figsoda/telegraf 
telegraf: fix version
 2023-05-29 00:06:04 +03:00
Martin Weinelt abed6be64d
Merge pull request #234674 from fabaff/androidtvremote2 
python311Packages.androidtvremote2: init at 0.0.9
 2023-05-28 22:53:48 +02:00
Fabian Affolter 156026245b home-assistant: update component-packages 2023-05-28 21:25:49 +02:00
Sander 82b12bc861
meilisearch: remove unused darwin frameworks 2023-05-28 23:23:38 +04:00
Sander c7114ec51a
meilisearch: fix build on x86_64-darwin 2023-05-28 23:22:40 +04:00
figsoda 6a32ac7c69 telegraf: add version test 2023-05-28 10:18:00 -04:00
figsoda a0215e28ea telegraf: fix version 2023-05-28 10:14:26 -04:00
figsoda bdd9d25e2c
Merge pull request #234555 from r-ryantm/auto-update/telegraf 
telegraf: 1.26.2 -> 1.26.3
 2023-05-28 10:01:19 -04:00
figsoda 3aed07b966
Merge pull request #234581 from sikmir/flashmq 
flashmq: init at 1.4.5
 2023-05-28 09:57:55 -04:00
Nikolay Korotkiy bbefb9b2a3
flashmq: init at 1.4.5 2023-05-28 16:51:14 +04:00
Weijia Wang 4f4d0cc939
Merge pull request #228961 from r-ryantm/auto-update/victoriametrics 
victoriametrics: 1.89.1 -> 1.91.0
 2023-05-28 10:38:34 +03:00
R. Ryantm a007ccb08d telegraf: 1.26.2 -> 1.26.3 2023-05-28 04:39:24 +00:00
Weijia Wang 93e6e97194 victoriametrics: add upstream patches 2023-05-28 01:58:50 +03:00
Weijia Wang b80714f2c1
Merge pull request #234485 from r-ryantm/auto-update/nats-server 
nats-server: 2.9.16 -> 2.9.17
 2023-05-28 01:42:27 +03:00
Thomas Gerbet ed33222971 etcd_3_3: mark vulnerable to CVE-2023-32082 2023-05-28 08:04:43 +10:00
Thomas Gerbet 85f15277d0 etcd: switch to etcd_3_5 2023-05-28 08:04:43 +10:00
Weijia Wang f794726617
Merge pull request #234465 from wegank/influxdb-refactor 
influxdb, influxdb2: migrate to bindgenHook
 2023-05-27 23:04:00 +03:00
R. Ryantm cbf3c2f6f5 nats-server: 2.9.16 -> 2.9.17 2023-05-27 19:45:43 +00:00
Weijia Wang 2e290f5676 influxdb2: migrate to bindgenHook 2023-05-27 20:05:57 +03:00
Weijia Wang 26d5c72cac influxdb: migrate to bindgenHook 2023-05-27 20:05:28 +03:00
Thomas Gerbet 55a9632753 metabase: 0.46.2 -> 0.46.4 
Fixes CVE-2023-32680.

Changelogs:
https://github.com/metabase/metabase/releases/tag/v0.46.4
https://github.com/metabase/metabase/releases/tag/v0.46.3
 2023-05-27 18:42:39 +02:00
Raito Bezarius 2ede3cb621 nextcloud26: 26.0.1 -> 26.0.2 
https://nextcloud.com/changelog/#26-0-2
 2023-05-27 18:03:58 +02:00
Alyssa Ross 6abae5cbb5 xwayland: set meta.mainProgram 2023-05-27 15:00:40 +00:00
Robert Scott b65f4b653b
Merge pull request #234398 from lorenz/fix-prom 
prometheus: skip tests on 32-bit platforms
 2023-05-27 15:59:04 +01:00
Lorenz Brun e1a0a7aa76 prometheus: skip tests on 32-bit platforms 2023-05-27 15:58:45 +02:00
Robert Scott 2d895ae34c
Merge pull request #234392 from lorenz/fix-teleport 
teleport: mark as broken on <64 bit platforms
 2023-05-27 12:48:04 +01:00
Weijia Wang ae0b0867da
Merge pull request #234349 from r-ryantm/auto-update/mediamtx 
mediamtx: 0.23.0 -> 0.23.3
 2023-05-27 12:57:45 +03:00
Lorenz Brun 12be07b11c teleport: mark as broken on <64 bit platforms 2023-05-27 11:18:34 +02:00
R. Ryantm c256f09dac mediamtx: 0.23.0 -> 0.23.3 2023-05-27 03:05:34 +00:00
figsoda fba54af741
Merge pull request #234329 from wegank/sonic-server-refactor 
sonic-server: migrate to bindgenHook
 2023-05-26 21:48:14 -04:00
Ryan Lahfa d74e5f4a18
Merge pull request #213510 from RaitoBezarius/nginx-proxyprotocol 
nixos/nginx: first-class PROXY protocol support
 2023-05-27 03:37:33 +02:00
Weijia Wang 442a6dbd36 surrealdb: fix build on aarch64-linux 2023-05-26 21:00:38 -04:00
Weijia Wang cbb545fbba sonic-server: migrate to bindgenHook 2023-05-27 02:56:05 +03:00
markuskowa a367e2ba0a
Merge pull request #234174 from markuskowa/upd-nfs-ganesha 
nfs-ganesha: 5.1 -> 5.2
 2023-05-26 20:30:38 +02:00
Sander f3a4973aeb meilisearch: allow builds on aarch64-linux 2023-05-26 14:04:33 -04:00
Raito Bezarius 69bb0f94de nixos/nginx: first-class PROXY protocol support 
PROXY protocol is a convenient way to carry information about the
originating address/port of a TCP connection across multiple layers of
proxies/NAT, etc.

Currently, it is possible to make use of it in NGINX's NixOS module, but
is painful when we want to enable it "globally".
Technically, this is achieved by reworking the defaultListen options and
the objective is to have a coherent way to specify default listeners in
the current API design.
See `mkDefaultListenVhost` and `defaultListen` for the details.

It adds a safeguard against running a NGINX with no HTTP listeners (e.g.
only PROXY listeners) while asking for ACME certificates over HTTP-01.

An interesting usecase of PROXY protocol is to enable seamless IPv4 to
IPv6 proxy with origin IPv4 address for IPv6-only NGINX servers, it is
demonstrated how to achieve this in the tests, using sniproxy.

Finally, the tests covers:

- NGINX `defaultListen` mechanisms are not broken by these changes;
- NGINX PROXY protocol listeners are working in a final usecase
  (sniproxy);
- uses snakeoil TLS certs from ACME setup with wildcard certificates;

In the future, it is desirable to spoof-attack NGINX in this scenario to
ascertain that `set_real_ip_from` and all the layers are working as
intended and preventing any user from setting their origin IP address to
any arbitrary, opening up the NixOS module to bad™ vulnerabilities.

For now, it is quite hard to achieve while being minimalistic about the
tests dependencies.
 2023-05-26 19:48:26 +02:00
Weijia Wang a84996a76b
Merge pull request #234195 from wegank/389-bump 
_389-ds-base: 2.3.1 -> 2.4.1
 2023-05-26 15:21:06 +03:00
Weijia Wang dc57610254 _389-ds-base: 2.3.1 -> 2.4.1 2023-05-26 13:31:03 +03:00