From e91e4fd936bdbd2ea323ec3a372e065a2a62c773 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 15 Jun 2025 20:34:52 +0000
Subject: [PATCH] build(deps): bump nix from 0.29.0 to 0.30.1 in /rust (#9268)
Bumps [nix](https://github.com/nix-rust/nix) from 0.29.0 to 0.30.1.
Changelog
Sourced from nix's
changelog.
[0.30.1] - 2025-05-04
Fixed
[0.30.0] - 2025-04-29
Added
- Add socket option
IPV6_PKTINFO for BSDs/Linux/Android,
also
IPV6_RECVPKTINFO for DragonFlyBSD
(#2113)
- Add
fcntl's F_PREALLOCATE constant for
Apple targets.
(#2393)
- Improve support for extracting the TTL / Hop Limit from incoming
packets
and support for DSCP (ToS / Traffic Class).
(#2425)
- Add socket option IP_TOS (nix::sys::socket::sockopt::IpTos)
IPV6_TCLASS
(nix::sys::socket::sockopt::Ipv6TClass) on Android/FreeBSD
(#2464)
- Add
SeekData and SeekHole to
Whence for hurd and apple targets
(#2473)
- Add
From trait implementation between
SocketAddr and Sockaddr,
Sockaddr6 (#2474)
- Added wrappers for
posix_spawn API
(#2475)
- Add the support for Emscripten.
(#2477)
- Add fcntl constant
F_RDADVISE for Apple target
(#2480)
- Add fcntl constant
F_RDAHEAD for Apple target
(#2482)
- Add
F_LOG2PHYS and F_LOG2PHYS_EXT for
Apple target
(#2483)
MAP_SHARED_VALIDATE was added for all linux targets.
& MAP_SYNC was added
for linux with the exclusion of mips architecures, and uclibc
(#2499)- Add
getregs()/getregset()/setregset()
for Linux/musl/aarch64
(#2502)
- Add FcntlArgs
F_TRANSFEREXTENTS constant for Apple
targets
(#2504)
- Add
MapFlags::MAP_STACK in sys::man for
netbsd
(#2526)
- Add support for
libc::LOCAL_PEERTOKEN in
getsockopt.
(#2529)
- Add support for
syslog, openlog,
closelog on all unix.
... (truncated)
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
---------
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Thomas Eizinger
---
rust/Cargo.lock | 8 ++++----
rust/Cargo.toml | 2 +-
rust/headless-client/src/linux.rs | 3 ++-
3 files changed, 7 insertions(+), 6 deletions(-)
diff --git a/rust/Cargo.lock b/rust/Cargo.lock
index c7b18159e..52588a887 100644
--- a/rust/Cargo.lock
+++ b/rust/Cargo.lock
@@ -2270,7 +2270,7 @@ dependencies = [
"mutants",
"netlink-packet-core",
"netlink-packet-route",
- "nix 0.29.0",
+ "nix 0.30.1",
"resolv-conf",
"ring",
"rtnetlink",
@@ -2318,7 +2318,7 @@ dependencies = [
"jemallocator",
"libc",
"moka",
- "nix 0.29.0",
+ "nix 0.30.1",
"num_cpus",
"opentelemetry",
"opentelemetry-stdout",
@@ -2365,7 +2365,7 @@ dependencies = [
"ip-packet",
"keyring",
"native-dialog",
- "nix 0.29.0",
+ "nix 0.30.1",
"output_vt100",
"phoenix-channel",
"png",
@@ -2426,7 +2426,7 @@ dependencies = [
"ip-packet",
"known-folders",
"libc",
- "nix 0.29.0",
+ "nix 0.30.1",
"opentelemetry",
"opentelemetry-stdout",
"opentelemetry_sdk",
diff --git a/rust/Cargo.toml b/rust/Cargo.toml
index 641fe3230..b0f99e5a7 100644
--- a/rust/Cargo.toml
+++ b/rust/Cargo.toml
@@ -108,7 +108,7 @@ native-dialog = "0.7.0"
netlink-packet-core = "0.7"
netlink-packet-route = "0.24"
network-types = "0.0.8"
-nix = "0.29.0"
+nix = "0.30.1"
nu-ansi-term = "0.50"
num_cpus = "1.17.0"
once_cell = "1.21.3"
diff --git a/rust/headless-client/src/linux.rs b/rust/headless-client/src/linux.rs
index f1645cfb6..3dd139062 100644
--- a/rust/headless-client/src/linux.rs
+++ b/rust/headless-client/src/linux.rs
@@ -3,6 +3,7 @@
use super::TOKEN_ENV_KEY;
use anyhow::{Result, bail};
use firezone_bin_shared::BUNDLE_ID;
+use nix::fcntl::AT_FDCWD;
use std::path::{Path, PathBuf};
// The Client currently must run as root to control DNS
@@ -15,7 +16,7 @@ pub(crate) fn default_token_path() -> PathBuf {
}
pub(crate) fn check_token_permissions(path: &Path) -> Result<()> {
- let Ok(stat) = nix::sys::stat::fstatat(None, path, nix::fcntl::AtFlags::empty()) else {
+ let Ok(stat) = nix::sys::stat::fstatat(AT_FDCWD, path, nix::fcntl::AtFlags::empty()) else {
// File doesn't exist or can't be read
tracing::info!(
?path,