supersandro2000 has quit [Disconnected by services]
supersandro2000 has joined #nixos-security
rajivr has joined #nixos-security
<hexa->
uh, to be clear: should openssl go into master/release-20.09 directly?
<hexa->
I'm going to sleep now, please clarify.
<hexa->
gchristensen ^
<gchristensen>
yes, hexa-, PR directly to master, and at the same time cherry-pick -x and PR to release-20.09. ignore ofborg's complaints about massrebuild, merge when green, and trigger an evaluation of each master and 20.09 jobset linked under "hydra job for tests" here: https://status.nixos.org/
<gchristensen>
feel free to text me on Signal when the patches arrive, I can try to be here if possible: +1 407 670 9980
ris has quit [Ping timeout: 264 seconds]
Synthetica has quit [Quit: Connection closed for inactivity]
<supersandro2000>
that will trigger rebuilds for everyone on the channel...
<gchristensen>
yes
<gchristensen>
well, no, it won't
<gchristensen>
it'll trigger rebuilds for everyone tracking master, not the channel
<gchristensen>
security issues like these are exactly why we maintain staging, so we can skip it and get critical patches out right away.
<hexa->
thanks, will do
<supersandro2000>
oh yeah right
maljub01 has quit [Ping timeout: 260 seconds]
maljub01 has joined #nixos-security
ajs124 has quit [Quit: Bridge terminating on SIGTERM]
<gchristensen>
how are these lib tests possibly so slow lol
<hexa->
i guess ofborg is building a kernel rn
<hexa->
> @ofborg test kernel-latest kernel-lts latestKernel.login kernel-latest-ath-user-regd latestKernel.hardened
<{^_^}>
error: syntax error, unexpected '@', at (string):492:1
<gchristensen>
welp
<hexa->
Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client (CVE-2021-3449)
<hexa->
that sounds bad :D
<gchristensen>
whew
<gchristensen>
I am this close to just pressing merge -> <-
<hexa->
that is the nullptr deref
<hexa->
:D
cole-h has joined #nixos-security
<julm>
thank you hexa-++ and gchristensen++ for being that fast and prepared :)
<{^_^}>
gchristensen's karma got increased to 442
<{^_^}>
hexa-'s karma got increased to 25
<stigo>
yeah nice handling hexa-++ gchristensen++
<{^_^}>
gchristensen's karma got increased to 443
<{^_^}>
hexa-'s karma got increased to 26
SushiDude[m] has quit [*.net *.split]
cemguresci[m] has quit [*.net *.split]
cwprobablydead[m has quit [*.net *.split]
kalbasit[m] has quit [*.net *.split]
danielrf[m] has quit [*.net *.split]
JrgKtemeier[m] has quit [*.net *.split]
craige has quit [*.net *.split]
ddima has quit [*.net *.split]
lukegb has quit [*.net *.split]
IdleBot_561ed31e has quit [*.net *.split]
edef has quit [*.net *.split]
IdleBot_cae112a5 has quit [*.net *.split]
danderson has quit [*.net *.split]
V has quit [*.net *.split]
blueberrypie has quit [*.net *.split]
ztzg```` has quit [*.net *.split]
WilliButz has quit [*.net *.split]
lassulus has quit [*.net *.split]
ikwildrpepper has quit [*.net *.split]
bbigras has quit [*.net *.split]
Ox4A6F has quit [*.net *.split]
thefloweringash has quit [*.net *.split]
joepie91 has quit [*.net *.split]
{`-`}_ is now known as {`-`}
{`-`} has joined #nixos-security
blueberrypie has joined #nixos-security
ddima has joined #nixos-security
lukegb has joined #nixos-security
WilliButz has joined #nixos-security
asymmetric has joined #nixos-security
mschwaig1 has joined #nixos-security
lassulus has joined #nixos-security
ikwildrpepper has joined #nixos-security
nh2[m] has quit [*.net *.split]
julianst[m] has quit [*.net *.split]
stigo has quit [*.net *.split]
simpson has quit [*.net *.split]
prusnak has quit [*.net *.split]
aminechikhaoui has quit [*.net *.split]
prusnak has joined #nixos-security
aminechikhaoui has joined #nixos-security
stigo has joined #nixos-security
simpson has joined #nixos-security
Yakulu[m] has quit [Ping timeout: 240 seconds]
immae has quit [Ping timeout: 258 seconds]
colemickens has quit [Ping timeout: 240 seconds]
V has joined #nixos-security
Guest57260 has quit [Ping timeout: 244 seconds]
JJJollyjim has quit [Ping timeout: 240 seconds]
aanderse has quit [Ping timeout: 258 seconds]
danderson has joined #nixos-security
justanotheruser has quit [Ping timeout: 260 seconds]
rajivr has quit [Quit: Connection closed for inactivity]
nf has joined #nixos-security
justanotheruser has joined #nixos-security
nf has quit [*.net *.split]
globin has quit [*.net *.split]
andi- has quit [*.net *.split]
hax404 has quit [*.net *.split]
qyliss has quit [*.net *.split]
danderson has quit [*.net *.split]
stigo has quit [*.net *.split]
supersandro2000 has quit [*.net *.split]
julm has quit [*.net *.split]
samueldr has quit [*.net *.split]
jdnixx-M has quit [*.net *.split]
{^_^} has quit [*.net *.split]
tv has quit [*.net *.split]
WilliButz has quit [*.net *.split]
lukegb has quit [*.net *.split]
craige has quit [*.net *.split]
FRidh has quit [*.net *.split]
Foxboron has quit [*.net *.split]
primeos has quit [*.net *.split]
craige_ has joined #nixos-security
danderson has joined #nixos-security
julm has joined #nixos-security
FRidh has joined #nixos-security
hax404 has joined #nixos-security
primeos has joined #nixos-security
globin has joined #nixos-security
mschwaig1 has quit [Ping timeout: 248 seconds]
stigo has joined #nixos-security
WilliButz has joined #nixos-security
WilliButz has joined #nixos-security
WilliButz has quit [Changing host]
stigo is now known as Guest12234
{^_^} has joined #nixos-security
qyliss has joined #nixos-security
tv has joined #nixos-security
andi- has joined #nixos-security
feepo has quit [Ping timeout: 258 seconds]
samueldr has joined #nixos-security
mschwaig1 has joined #nixos-security
lukegb has joined #nixos-security
elvishjerricco has quit [Ping timeout: 272 seconds]
feepo has joined #nixos-security
justanotheruser has quit [Ping timeout: 272 seconds]
jdnixx-M has joined #nixos-security
elvishjerricco has joined #nixos-security
Foxboron has joined #nixos-security
mschwaig1 has quit [Ping timeout: 244 seconds]
kalbasit[m] has joined #nixos-security
nf has joined #nixos-security
mschwaig1 has joined #nixos-security
justanotheruser has joined #nixos-security
<Raito_Bezarius>
is 1.1.1k on nixos-unstable-small channel?
<Raito_Bezarius>
it does not seem like it is pulled
Raito_Bezarius has quit [*.net *.split]
eyJhb has quit [*.net *.split]
mcint has quit [*.net *.split]
gchristensen has quit [*.net *.split]
zgrep has quit [*.net *.split]
zgrep has joined #nixos-security
eyJhb has joined #nixos-security
eyJhb has joined #nixos-security
eyJhb has quit [Changing host]
gchristensen has joined #nixos-security
simpson has quit [*.net *.split]
prusnak has quit [*.net *.split]
ehmry has quit [*.net *.split]
hexa- has quit [*.net *.split]
sphalerite has quit [*.net *.split]
bennofs has quit [*.net *.split]
raboof has quit [*.net *.split]
flokli has quit [*.net *.split]
bridge[evilred] has quit [*.net *.split]
bridge[evilred] has joined #nixos-security
raboof has joined #nixos-security
prusnak has joined #nixos-security
bennofs has joined #nixos-security
mcint has joined #nixos-security
Raito_Bezarius has joined #nixos-security
flokli has joined #nixos-security
simpson has joined #nixos-security
ehmry has joined #nixos-security
sphalerite has joined #nixos-security
ikwildrpepper has quit [*.net *.split]
lejonet has quit [*.net *.split]
kgz has quit [*.net *.split]
energizer has quit [*.net *.split]
ivan has quit [*.net *.split]
jpo has quit [*.net *.split]
alexbakker has quit [*.net *.split]
hexa- has joined #nixos-security
jpo has joined #nixos-security
lejonet1 has joined #nixos-security
alexbakker has joined #nixos-security
ikwildrpepper has joined #nixos-security
kgz has joined #nixos-security
<gchristensen>
Raito_Bezarius: it is still working its way through hydra, we applied the patch about 4 hours ago. usually distros aim to get thes eout the door in 7 days, we'll have ours done quite soon
<gchristensen>
sometimes I really really really really really don't understand what hydra is doing
<gchristensen>
it is so good at churning through massive numbers of builds, but terrible when I say "do this one first"
JrgKtemeier[m] has joined #nixos-security
<simpson>
Dwarf Fortress, but for build management.
<nf>
simpson: hahahaha
<simpson>
nf: It's a subclass of problems that keep me up at night: How can one ever possibly cancel an asynchronous action? Like, if I send a message somewhere, but then I have a regret and send a cancellation, isn't the cancellation *also* a message?
<nf>
not if cancellation means an axe to the ethernet cable
<simpson>
I'd feel that this is backport-worthy: "Traefik before 2.4.5 allows the loading of IFRAME elements from other domains."
<supersandro2000>
If I understand the issue correct than the issue does not matter to much
<simpson>
It probably only matters to a few folks, but it could be a big deal if they didn't plan for it. Like in the horror movies when the phone call is coming from inside the house: If you couldn't handle them when they were outside, then they're not really *that* much more dangerous now.
<supersandro2000>
the issue is only on the dashboard which is not user accessible and the data is admin controlled
<{^_^}>
supersandro2000's karma got increased to 0o52
<supersandro2000>
I don't get what you want to say
<simpson>
Okay, no worries.
simpson has left #nixos-security ["WeeChat 1.0.1"]
<supersandro2000>
interesting. that issue has an CVE which upstream did not link CVE-2021-27375
<supersandro2000>
I really thought they would mention such things in their changelogs as they are really enterprise savvy
<supersandro2000>
also if you make your dashboard publicly available you almost dump your entire config without some secrets which is also not advisable
star_cloud has joined #nixos-security
FRidh has quit [Quit: Konversation terminated!]
blueberrypie has joined #nixos-security
lejonet has quit [Quit: WeeChat 2.4]
lejonet has joined #nixos-security
qyliss has quit [Quit: bye]
qyliss has joined #nixos-security
Synthetica has quit [Quit: Connection closed for inactivity]
IdleBot_8e3e97e9 has joined #nixos-security
IdleBot_2fc4bffe has quit [Remote host closed the connection]