Hi everyone,
After reading 21.05’s release notes, I tried to do the upgrade from 20.09. However, I get a Python 2.7-Pillow-6.2.2 error and I can’t pinpoint where this dependency comes from in my configuration – only Python3Full is asked explicitly. You’ll find the trace below:
[root@tlap:/home/tcip]# nixos-rebuild switch --upgrade --show-trace
unpacking channels...
building Nix...
building the system configuration...
error: while evaluating the attribute 'activationScript' of the derivation 'nixos-system-tlap-21.05.720.4c2e84394c0' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/make-derivation.nix:201:11:
while evaluating the attribute 'system.activationScripts.script' at /nix/var/nix/profiles/per-user/root/channels/nixos/nixos/modules/system/activation/activation-script.nix:80:9:
while evaluating 'textClosureMap' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/strings-with-deps.nix:75:35, called from /nix/var/nix/profiles/per-user/root/channels/nixos/nixos/modules/system/activation/activation-script.nix:101:18:
while evaluating 'id' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/trivial.nix:14:5, called from undefined position:
while evaluating the attribute 'text' at /nix/var/nix/profiles/per-user/root/channels/nixos/nixos/modules/system/activation/activation-script.nix:9:5:
while evaluating the attribute 'text' at undefined position:
while evaluating 'g' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/attrsets.nix:298:19, called from undefined position:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:140:72, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/attrsets.nix:301:20:
while evaluating the attribute 'value' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:525:9:
while evaluating the option `system.activationScripts.etc.text':
while evaluating the attribute 'mergedValue' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:557:5:
while evaluating the attribute 'values' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:551:9:
while evaluating the attribute 'values' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:650:7:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:537:28, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:537:17:
while evaluating definitions from `/nix/var/nix/profiles/per-user/root/channels/nixos/nixos/modules/system/etc/etc.nix':
while evaluating 'dischargeProperties' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:609:25, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:538:137:
while evaluating the attribute 'value' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:392:44:
while evaluating the attribute 'sources' of the derivation 'etc' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/make-derivation.nix:201:11:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/nixos/modules/system/etc/etc.nix:20:20, called from undefined position:
while evaluating the attribute 'source' at undefined position:
while evaluating 'g' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/attrsets.nix:298:19, called from undefined position:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:140:72, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/attrsets.nix:301:20:
while evaluating the attribute 'value' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:525:9:
while evaluating the option `environment.etc.dbus-1.source':
while evaluating the attribute 'mergedValue' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:557:5:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:559:17, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:559:12:
while evaluating 'check' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/types.nix:349:15, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:559:22:
while evaluating the attribute 'serviceDirectories' of the derivation 'dbus-1' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/make-derivation.nix:201:11:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/types.nix:358:14, called from undefined position:
while evaluating the attribute 'value' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:570:27:
while evaluating anonymous function at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:559:17, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:559:12:
while evaluating 'check' at /nix/var/nix/profiles/per-user/root/channels/nixos/lib/types.nix:349:15, called from /nix/var/nix/profiles/per-user/root/channels/nixos/lib/modules.nix:559:22:
while evaluating the attribute 'passAsFile' of the derivation 'system-path' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/make-derivation.nix:201:11:
while evaluating the attribute 'passAsFile' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/build-support/buildenv/default.nix:77:5:
while evaluating the attribute 'buildInputs' of the derivation 'scribus-1.4.8' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/make-derivation.nix:201:11:
while evaluating the attribute 'passAsFile' of the derivation 'python-2.7.18-env' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/make-derivation.nix:201:11:
while evaluating the attribute 'passAsFile' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/build-support/buildenv/default.nix:77:5:
while evaluating 'requiredPythonModules' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/top-level/python-packages.nix:65:27, called from /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/development/interpreters/python/wrapper.nix:20:13:
while evaluating anonymous function at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/lib/lists.nix:645:24, called from /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/top-level/python-packages.nix:67:6:
while evaluating the attribute 'outPath' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/lib/customisation.nix:164:7:
while evaluating the attribute 'handled' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/check-meta.nix:301:7:
while evaluating 'handleEvalIssue' at /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/check-meta.nix:188:38, called from /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/stdenv/generic/check-meta.nix:302:14:
Package ‘python2.7-Pillow-6.2.2’ in /nix/store/9fydsbjwgw5ch89h1i701vj6yxwaxi9d-nixos-21.05.720.4c2e84394c0/nixos/pkgs/development/python-modules/pillow/6.nix:19 is marked as insecure, refusing to evaluate.
Known issues:
- CVE-2020-10177
- CVE-2020-10378
- CVE-2020-10379
- CVE-2020-10994
- CVE-2020-11538
- CVE-2020-35653
- CVE-2020-35654
- CVE-2020-35655
- CVE-2021-25289
- CVE-2021-25290
- CVE-2021-25291
- CVE-2021-25292
- CVE-2021-25293
- CVE-2021-27921
- CVE-2021-27922
- CVE-2021-27923
You can install it anyway by allowing this package, using the
following methods:
a) To temporarily allow all insecure packages, you can use an environment
variable for a single invocation of the nix tools:
$ export NIXPKGS_ALLOW_INSECURE=1
b) for `nixos-rebuild` you can add ‘python2.7-Pillow-6.2.2’ to
`nixpkgs.config.permittedInsecurePackages` in the configuration.nix,
like so:
{
nixpkgs.config.permittedInsecurePackages = [
"python2.7-Pillow-6.2.2"
];
}
c) For `nix-env`, `nix-build`, `nix-shell` or any other Nix command you can add
‘python2.7-Pillow-6.2.2’ to `permittedInsecurePackages` in
~/.config/nixpkgs/config.nix, like so:
{
permittedInsecurePackages = [
"python2.7-Pillow-6.2.2"
];
}
Any idea ?
Thanks for reading and all the best,