!ZRgXNaHrdpGqwUnGnj:nixos.org

NixOS Security

175 Members
Coordination and triage of security issues in nixpkgs52 Servers

Load older messages


SenderMessageTime
12 Oct 2021
@sandro:supersandro.deSandro
In reply to @moritz.hedtke:matrix.org
https://github.com/NixOS/nixpkgs/search?q=OPENSSL_NO_VENDOR I think
Don't trust github search, it sucks, use ripgrep
20:22:56
@moritz.hedtke:matrix.orgmoritz.hedtkeI know it doesn't even Index all-packages afaik. Just wanted to quickly add a reference to what I meant20:34:20
14 Oct 2021
@hjones2199:nixos.devhjones2199 joined the room.00:47:11
@hjones2199:nixos.devhjones2199 set a profile picture.01:02:26
@j-k:matrix.orgj-kLooks like sourcegraph also skipps all-packages https://sourcegraph.com/search?q=context:global+repo:%5Egithub%5C.com/NixOS/nixpkgs%24+deno+%3D&patternType=literal08:51:29
@moritz.hedtke:matrix.orgmoritz.hedtkeYeah but GitHub has lots of other problems with their search, e.g. not showing all results in a file10:05:56
@rch:matrix.orgrch joined the room.14:01:06
@hjones2199:nixos.devhjones2199 left the room.15:40:49
@hjones2199:matrix.orghjones2199 joined the room.15:55:06
15 Oct 2021
@opnull:matrix.orgopnull joined the room.04:54:54
@r_i_s:matrix.orgris_just occurred to me i should try to get the curl update in before 21.11 so we don't end up patching 7.76 for the whole release18:36:52
@r_i_s:matrix.orgris_should just be a matter of adding the macos patch reversion18:37:20
@hexa:lossy.networkhexaif it works, thanks for caring20:37:10
@toonn:matrix.orgtoonn Why's the reversion specific to macOS? 20:48:30
@hexa:lossy.networkhexabecause the macos sdk version doesn't support nat64 iirc20:53:35
@hexa:lossy.networkhexahttps://github.com/NixOS/nixpkgs/pull/124502#issuecomment-85083960420:53:50
@toonn:matrix.orgtoonn Thanks. 21:05:42
16 Oct 2021
@r_i_s:matrix.orgris_ this is proving a little more fun than i expected - even if we could just revert the commit (spoiler: we can't) we'd only be patching the configure.ac, not the actual generated configure that comes with the tarball. and we don't (i imagine) want to add autoconf to the bootstrap loop 00:27:37
@r_i_s:matrix.orgris_ so i'm trying some manual surgery of the actual configure script 00:28:01
@r_i_s:matrix.orgris_ and i think (think) it might have worked 00:28:54
@r_i_s:matrix.orgris_ * this is proving a little more fun than i expected - even if we could just revert the commit (spoiler: we can't) we'd only be patching the configure.ac, not the actual generated configure that comes with the tarball. and we don't (i imagine) want to add autoconf to the bootstrap loop just so we can regenerate it 00:29:34
@r_i_s:matrix.orgris_https://github.com/NixOS/nixpkgs/pull/14182901:26:33
@r_i_s:matrix.orgris_would also be nice to get most apps using libressl 3.4 before release https://github.com/NixOS/nixpkgs/pull/13954516:07:04
@r_i_s:matrix.orgris_limit the damage if 3.2 becomes a disaster zone16:07:46
@pizzacoca:matrix.orgpizzacoca joined the room.19:22:32
17 Oct 2021
@mars:jupiterbroadcasting.commars joined the room.18:53:55
20 Oct 2021
@phaer:matrix.orgphaer joined the room.21:02:51
@vulnix:matrix.reverse.shvulnix joined the room.22:57:52
21 Oct 2021
@vulnix:matrix.reverse.shvulnix changed their profile picture.02:16:01
@balsoft:balsoft.rubalsoft set a profile picture.13:42:08

There are no newer messages yet.


Back to Room List