!vxTmkuJzhGPsMdkAOc:transformierende-gesellschaft.org

NixOS Matrix Subsystem

130 Members
Coordination and discussion about the matrix subsystem in NixOS - https://nixos.wiki/wiki/Matrix63 Servers

Load older messages


SenderMessageTime
26 Mar 2025
@emma:rory.gayEmma [it/its] * to the best of my understanding 22:57:04
@emma:rory.gayEmma [it/its]the patch fixes federation and handling broken rooms fwiw22:57:49
@emma:rory.gayEmma [it/its]in particular, if either your server or any server youre joining via arent patched, the join will fail with a number out of range error22:58:43
@sumner:nevarro.spaceSumner Evansfrom what I understand, it's only outbound federation traffic that is affected. Confirming with the synapse devs22:59:32
@sumner:nevarro.spaceSumner EvansRedacted or Malformed Event23:00:24
@sumner:nevarro.spaceSumner EvansRedacted or Malformed Event23:03:46
@sumner:nevarro.spaceSumner Evans

from the maintainers:

Inbound traffic can cause outbound traffic to fail across all rooms

Personally, I think this is serious enough to bump the channels.

23:04:41
@sumner:nevarro.spaceSumner EvansRedacted or Malformed Event23:04:48
@f0x:pixie.townf0x
In reply to @sumner:nevarro.space
from what I understand, it's only outbound federation traffic that is affected. Confirming with the synapse devs. I think that if it's only possible for users on your own homeserver to cause this problem, then we don't have to bump the channel
https://github.com/element-hq/synapse/security/advisories/GHSA-v56r-hwv5-mxg6 states "a malicious server" so pretty sure this is exploitable over federation
23:05:21
@sumner:nevarro.spaceSumner EvansRedacted or Malformed Event23:05:45
@emilazy:matrix.orgemily I'd suggest asking for a bump in #infra:nixos.org. I have the technical permissions but I don't feel confident in using them unilaterally here 23:08:07
@emilazy:matrix.orgemily e.g., it would delay the security fixes currently building on staging-next-24.11 23:08:18
@emma:rory.gayEmma [it/its]no its caused by remote users in particular23:08:44
@emma:rory.gayEmma [it/its]
@ndzA8wy:mittens.jumpingcrab.com
@ZQqejO:mittens.jumpingcrab.com
@2cwBli9fJY:mittens.jumpingcrab.com
@hIuTKmCQjQ:mittens.jumpingcrab.com
@byJbUSec:optane.twilightparadox.com
@0dIr0JN:optane.twilightparadox.com
@q2PXjFrjI:optane.twilightparadox.com
@LfnjbI:optane.twilightparadox.com
@B8OWSs:optane.twilightparadox.com
@04zkgFxWPw:optane.twilightparadox.com
@eHvmaxWj:optane.twilightparadox.com
@yb4jUx:optane.twilightparadox.com
@VEloRu:vengeance.ignorelist.com
@BVbuVa:vengeance.ignorelist.com
@zYSwMcf25:vengeance.ignorelist.com
@Du6J9zkG:vengeance.ignorelist.com
@UkbIyOUyNL:vengeance.ignorelist.com
23:10:23
@emma:rory.gayEmma [it/its]here's the 3 homeservers that caused it23:10:33
27 Mar 2025
@hexa:lossy.networkhexanext time raise this earlier00:52:15
@hexa:lossy.networkhexatriggered nixos-24.11-small eval and bumped it to front00:52:29
@hexa:lossy.networkhexaok, everything built01:39:24
@hexa:lossy.networkhexachannel scripts are working through the eval01:39:36
@hexa:lossy.networkhexanixos-24.11-small advanced01:45:28
@hexa:lossy.networkhexaunstable-eval bumped as well01:47:26
@hexa:lossy.networkhexaupdating the nixos.org homeserver next01:47:35
@hexa:lossy.networkhexa* updating the nixos.org homeserver next 🤞01:47:42
@hexa:lossy.networkhexathis is the new space, the old one has a red icon01:47:57
@hexa:lossy.networkhexa#oldspace:nixos.org01:48:04
@hexa:lossy.networkhexa* #oldspace:nixos.org iirc01:48:16
@hexa:lossy.networkhexaunstable-small also ready in a few miniutes02:39:49
@hexa:lossy.networkhexa* unstable-small also ready in a few minutes02:39:51
@hexa:lossy.networkhexa* unstable-small also ready02:40:14
28 Mar 2025
@ralith:ralith.comRalithdid the stable channels get bumped yet?16:53:43

Show newer messages


Back to Room ListRoom Version: 4