system: Export default nanorc. - guix - Wojtek's customized Guix

path: root/nix/boost/throw_exception.hpp

diff options

author	Efraim Flashner <efraim@flashner.co.il>	2023-12-31 10:29:41 +0200
committer	Efraim Flashner <efraim@flashner.co.il>	2024-01-17 11:11:09 +0200
commit	33136e0426f5722dea63e18a14e7f54cda530132 (patch)
tree	d47e38f8111544064e958c05694cca4fe278448b /nix/boost/throw_exception.hpp
parent	eef3babfdb3fecbca80d8e25bbeb9e43cc5cc097 (diff)
download	guix-33136e0426f5722dea63e18a14e7f54cda530132.tar.gz guix-33136e0426f5722dea63e18a14e7f54cda530132.zip

system: Export default nanorc.

* gnu/system/shadow.scm (%default-nanorc): Extract from default-skeletons, export. (default-skeletons): Use %default-nanorc. Change-Id: I0d07b13ed4894b1152a08b96d9ef8527dde073ce

Diffstat (limited to 'nix/boost/throw_exception.hpp')

0 files changed, 0 insertions, 0 deletions

which would then allow said process to modify the file in the store after it has been marked as “valid”. Vulnerability discovered by puck <https://github.com/puckipedia>. Nix security advisory: https://github.com/NixOS/nix/security/advisories/GHSA-2ffj-w4mj-pg37 Nix fix: https://github.com/NixOS/nix/commit/244f3eee0bbc7f11e9b383a15ed7368e2c4becc9 * nix/libutil/util.cc (readDirectory): Add variants that take a DIR* and a file descriptor. Rewrite the ‘Path’ variant accordingly. (copyFile, copyFileRecursively): New functions. * nix/libutil/util.hh (copyFileRecursively): New declaration. * nix/libstore/build.cc (DerivationGoal::buildDone): When ‘fixedOutput’ is true, call ‘copyFileRecursively’ followed by ‘rename’ on each output. Change-Id: I7952d41093eed26e123e38c14a4c1424be1ce1c4 Reported-by: Picnoir <picnoir@alternativebit.fr>, Théophane Hufschmitt <theophane.hufschmitt@tweag.io> Change-Id: Idb5f2757f35af86b032a9851cecb19b70227bd88 Ludovic Courtès 2024-01-05daemon: Change default ‘timeout’ and ‘max-silent-time’ values....Ludovic Courtès


context:
space:
mode: