Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

merge queue: embarking 2.24-maintenance (f393260) and [#12195 + #12194 + #12196 + #12198 + #12199] together #12224

Closed
wants to merge 10 commits into from
Closed

merge queue: embarking 2.24-maintenance (f393260) and [#12195 + #12194 + #12196 + #12198 + #12199] together #12224

wants to merge 10 commits into from

Conversation

mergify[bot]
Copy link
Contributor

@mergify mergify bot commented Jan 10, 2025
edited
Loading

🎉 This combination of pull requests has been checked successfully and will be merged soon. 🎉

Branch 2.24-maintenance (f393260) and [#12195 + #12194 + #12196 + #12198 + #12199] are embarked together for merge.

This pull request has been created by Mergify to speculatively check the mergeability of [#12195 + #12194 + #12196 + #12198 + #12199].
You don't need to do anything. Mergify will close this pull request automatically when it is complete.

Required conditions of queue default for merge:

  • check-success=installer test on macos
  • check-success=installer test on ubuntu
  • check-success=tests on macos
  • check-success=tests on ubuntu
  • check-success=vm_tests
  • any of [🛡 GitHub branch protection]:
    • check-success = installer test on macos
    • check-neutral = installer test on macos
    • check-skipped = installer test on macos
  • any of [🛡 GitHub branch protection]:
    • check-success = installer test on ubuntu
    • check-neutral = installer test on ubuntu
    • check-skipped = installer test on ubuntu
  • any of [🛡 GitHub branch protection]:
    • check-success = tests on macos
    • check-neutral = tests on macos
    • check-skipped = tests on macos
  • any of [🛡 GitHub branch protection]:
    • check-success = tests on ubuntu
    • check-neutral = tests on ubuntu
    • check-skipped = tests on ubuntu

Required conditions to stay in the queue:

---
previous_failed_batches: []
pull_requests:
  - number: 12195
  - number: 12194
  - number: 12196
  - number: 12198
  - number: 12199
...

geofft and others added 10 commits January 10, 2025 10:16
@geofft @mergify
libstore: Make our sandbox pivot_root directory accessible to ourself
24542a7 
If you have the Nix store mounted from a nonlocal filesystem whose
exporter is not running as root, making the directory mode 000 makes it
inaccessible to that remote unprivileged user and therefore breaks the
build. (Specifically, I am running into this with a virtiofs mount using
Apple Virtualization.framework as a non-root user, but I expect the
same thing would happen with virtiofs in qemu on Linux as a non-root
user or with various userspace network file servers.)

Make the directory mode 500 (dr-x------) to make the sandbox work in
this use case, which explicitly conveys our intention to read and search
the directory.  The code only works because root can already bypass
directory checks, so this does not actually grant more permissions to
the directory owner / does not make the sandbox less secure.

(cherry picked from commit 5a794d9)
@roberth @mergify
doc/manual: Fix some broken fragments
9ee4a85 
(cherry picked from commit 071ddbe)

# Conflicts:
#	doc/manual/src/language/operators.md
@kevincox @mergify
Improve documentation of nix flake lock
0e421e7 
The previous documentation was inaccurate, stating that it would not update existing inputs. However these inputs will be updated if they are outdated (for example the version of an existing input has been changed). The new text properly reflects this behaviour.

(cherry picked from commit d2f627d)
@Mic92 @mergify
add description + example for nix flake archive
7920990 
Update src/nix/flake-archive.md

Update src/nix/flake-archive.md

(cherry picked from commit f0a4f19)
@llakala @mergify
docs: Provide an example of updating multiple inputs with `nix flake …
93e8e5b 
…update`

docs: Provide an example of updating multiple inputs with `nix flake update`
(cherry picked from commit 9e335ee)
@mergify
Merge of #12195
ca86de5
@mergify
Merge of #12194
d7440cc
@mergify
Merge of #12196
8de2086
@mergify
Merge of #12198
9b69ecf
@mergify
Merge of #12199
0de6a1a
@github-actions github-actions bot added documentation new-cli Relating to the "nix" command labels Jan 10, 2025
@mergify mergify bot closed this Jan 10, 2025
@mergify mergify bot deleted the mergify/merge-queue/84e77d98e8 branch January 10, 2025 20:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Ericson2314 Ericson2314 Awaiting requested review from Ericson2314 Ericson2314 will be requested when the pull request is marked ready for review Ericson2314 is a code owner

@fricklerhandwerk fricklerhandwerk Awaiting requested review from fricklerhandwerk fricklerhandwerk will be requested when the pull request is marked ready for review fricklerhandwerk is a code owner

@edolstra edolstra Awaiting requested review from edolstra edolstra will be requested when the pull request is marked ready for review edolstra is a code owner

Assignees
No one assigned
Labels
documentation new-cli Relating to the "nix" command
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@geofft @roberth @kevincox @Mic92 @llakala