Linux 4.16 introduces a stackprotector detection script that returns
different results for the kernel compilation run and the spl/zfs
compilation run, as the setting for hardening are different. This
results in a broken ABI between spl/zfs and the compiled kernel,
breaking ZFS. Also disabling the fortify and stackprotector hardening,
as we do for the kernel, fixes that.
I hoped that setting -D_GNU_SOURCE in the build would avoid
the need for this patch -- but that only fixes the build itself,
this patch adds the define so headers work elsewhere.
Particularly, this fixes libblockdev w/musl -- before this change
it fails to "detect" headers for dmraid.h since it doesn't compile.
This is the newest sdk. I have skipped 9.3 for now but someone can
certainly add it if they need it for some reason.
Also I added a generic "xcode" that will always point to the newest
xcode that is available in Nixpkgs.
Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools.
This update was made based on information from https://repology.org/metapackage/sssd/versions.
These checks were done:
- built on NixOS
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_ssh_authorizedkeys passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_ssh_knownhostsproxy passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_cache passed the binary check.
- Warning: no invocation of /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_debuglevel had a zero exit code or showed the expected version
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_groupadd passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_groupdel passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_groupmod passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_groupshow passed the binary check.
- Warning: no invocation of /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_obfuscate had a zero exit code or showed the expected version
- Warning: no invocation of /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_override had a zero exit code or showed the expected version
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_seed passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_useradd passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_userdel passed the binary check.
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sss_usermod passed the binary check.
- Warning: no invocation of /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sssctl had a zero exit code or showed the expected version
- /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2/bin/sssd passed the binary check.
- 12 of 16 passed binary check by having a zero exit code.
- 1 of 16 passed binary check by having the new version present in output.
- found 1.16.2 with grep in /nix/store/i0srimsn8chzyqblbf6jvzxndw0w35lg-sssd-1.16.2
- directory tree listing: https://gist.github.com/842245741e6082400e50d4fd7e764d2c
- du listing: https://gist.github.com/e4b7c96457a7134ffcc6ecf385b7c5c6
In particular, this contains Firefox-related and libgcrypt updates.
Other larger rebuilds would apparently need lots of time to catch up
on Hydra, due to nontrivial rebuilds in other branches than staging.
