branch names are mutable, and with
https://github.com/NixOS/systemd/pull/29 being merged in, the nixos-v242
branch advanced from 5c20aab77900f478fd380ab189787d80e4a35963 to
40eb070cb309ec09def0ecdeaf7514c702200835, causing systemd's
fetchFromGitHub to fail with a sha256sum mismatch (when not relying on
the cache).
Fix this, by pointing systemd.src to the commit id before the branch
advancement. This won't cause a rebuild, as the sha256 stayed the same.
Fast-forwarding systemd to 40eb070cb309ec09def0ecdeaf7514c702200835 will
be done in https://github.com/NixOS/nixpkgs/pull/63784 , which also uses
the commit id, and not a branch name for rev.
On Darwin, the last argument to GCC is coming up as an empty string.
This is breaking the build of proto_library targets. However, I was not
able to reproduce with the example cpp project[0].
This commit patches the cc_wrapper of Bazel that gets installed on
Darwin to remove the last argument if it's an empty string. This is
not a probem on Linux.
[0]: https://github.com/bazelbuild/examples/tree/master/cpp-tutorial/stage3
including parallel bumps of pythonPackages.libvirt and perlPackages.SysVirt
also include patches for CVE-2019-10161, CVE-2019-10166, CVE-2019-10167
and CVE-2019-10168
See https://github.com/NixOS/nixpkgs/issues/58126 for more details.
This will instruct the user how to manually finish the setup instead of
failing with error messages (unfortunately it is quite a bit hacky
though...).
Extra note:
We cannot use "bundle config --local" due to BUNDLE_GEMFILE (would
attempt to create .bundle/config in the Nix store) and manually creating
.bundle/config doesn't work either as these configuration variables are
still overwritten by the environment variables, even though this
shouldn't be the case [0].
[0]: https://bundler.io/v2.0/man/bundle-config.1.html
Currently the `conda-shell` binary is installed as
`conda-shell-4.6.14` which is not very friendly to type.
With this change the binary is simply installed as `conda-shell`.
