summary refs log tree commit diff
path: root/changelog.d (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Optimize query for fetching to-device messages in `/sync` (#16805)Erik Johnston2024-01-111-0/+1
| | | | | | | | The current query supports passing in a list of users, which generates a query using `user_id = ANY(..)`. This is generates a less efficient query plan that is notably slower than a simple `user_id = ?` condition. Note: The new function is mostly a copy and paste and then a simplification of the existing function.
* Improve DB performance of calculating badge counts for push. (#16756)Erik Johnston2024-01-111-0/+1
| | | | | | | | | | | | | | | | The crux of the change is to try and make the queries simpler and pull out fewer rows. Before, there were quite a few joins against subqueries, which caused postgres to pull out more rows than necessary. Instead, let's simplify the query and do some of the filtering out in Python instead, letting Postgres do better optimizations now that it doesn't have to deal with joins against subqueries. Review note: this is a complete rewrite of the function, so not sure how useful the diff is. --------- Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>
* Correctly handle OIDC config with no `client_secret` set (#16806)Erik Johnston2024-01-101-0/+1
| | | | | | | | | | | In previous versions of authlib using `client_secret_basic` without a `client_secret` would result in an invalid auth header. Since authlib 1.3 it throws an exception. The configuration may be accepted in by very lax servers, so we don't want to deny it outright. Instead, let's default the `client_auth_method` to `none`, which does the right thing. If the config specifies `client_auth_method` and no `client_secret` then that is going to be bogus and we should reject it
* Faster load recents for sync (#16783)Erik Johnston2024-01-101-0/+1
| | | This hopefully reduces the amount of state we need to keep in memory
* Pull less state out if we fail to backfill (#16788)Erik Johnston2024-01-101-0/+1
| | | | | | | | | | | Sometimes we fail to fetch events during backfill due to missing state, and we often end up querying the same bad events periodically (as people backpaginate). In such cases its likely we will continue to fail to get the state, and therefore we should try *before* loading the state that we have from the DB (as otherwise it's wasted DB and memory). --------- Co-authored-by: reivilibre <oliverw@matrix.org>
* Reduce amount of state pulled out when querying federation hierachy (#16785)Erik Johnston2024-01-101-0/+1
| | | | | | | | | | | There are two changes here: 1. Only pull out the required state when handling the request. 2. Change the get filtered state return type to check that we're only querying state that was requested --------- Co-authored-by: reivilibre <oliverw@matrix.org>
* Split up deleting devices into batches (#16766)Erik Johnston2024-01-101-0/+1
| | | | Otherwise for users with large numbers of devices this can cause a lot of woe.
* Fix auto-merge CI to correctly wait for linting. (#16781)Erik Johnston2024-01-101-0/+1
| | | | Otherwise if you hit the `Enable auto-merge` button and the linting fails the PR is still aut-merged.
* Remove CI check for sign off (#16776)Erik Johnston2024-01-101-0/+1
| | | Since we don't require one anymore.
* Add a link to the Request log format page from Logging Sample Config (#16778)Andrew Morgan2024-01-101-0/+1
|
* Faster partial join to room with complex auth graph (#7)Erik Johnston2024-01-101-0/+1
| | | | | | | | Instead of persisting outliers in a bunch of batches, let's just do them all at once. This is fine because all `_auth_and_persist_outliers_inner` is doing is checking the auth rules for each event, which requires the events to be topologically sorted by the auth graph.
* 1.99.0rc1Erik Johnston2024-01-0921-22/+0
|
* Filter out rooms from the room directory being served to other homeservers ↵reivilibre2024-01-081-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | when those rooms block that homeserver by their Access Control Lists. (#16759) The idea here being that the directory server shouldn't advertise rooms to a requesting server is the requesting server would not be allowed to join or participate in the room. <!-- Fixes: # <!-- --> <!-- Supersedes: # <!-- --> <!-- Follows: # <!-- --> <!-- Part of: # <!-- --> Base: `develop` <!-- git-stack-base-branch:develop --> <!-- This pull request is commit-by-commit review friendly. <!-- --> <!-- This pull request is intended for commit-by-commit review. <!-- --> Original commit schedule, with full messages: <ol> <li> Pass `from_federation_origin` down into room list retrieval code </li> <li> Don't cache /publicRooms response for inbound federated requests </li> <li> fixup! Don't cache /publicRooms response for inbound federated requests </li> <li> Cap the number of /publicRooms entries to 100 </li> <li> Simplify code now that you can't request unlimited rooms </li> <li> Filter out rooms from federated requests that don't have the correct ACL </li> <li> Request a handful more when filtering ACLs so that we can try to avoid shortchanging the requester </li> </ol> --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* Port `EventInternalMetadata` class to Rust (#16782)Erik Johnston2024-01-081-0/+1
| | | | | | | | | | | | | There are a couple of things we need to be careful of here: 1. The current python code does no validation when loading from the DB, so we need to be careful to ignore such errors (at least on jki.re there are some old events with internal metadata fields of the wrong type). 2. We want to be memory efficient, as we often have many hundreds of thousands of events in the cache at a time. --------- Co-authored-by: Quentin Gliech <quenting@element.io>
* Fix linting (#16780)Erik Johnston2024-01-051-0/+1
| | | Introduced in #16762
* Simplify internal metadata class. (#16762)Erik Johnston2024-01-051-0/+1
| | | | | | | | | We remove these fields as they're just duplicating data the event already stores, and (for reasons :shushing_face:) I'd like to simplify the class to only store simple types. I'm not entirely convinced that we shouldn't instead add helper methods to the event class to generate stream tokens, but I don't really think that's where they belong either
* Implement cosign on docker image (#16774)Gaël Goinvic2024-01-041-0/+1
| | | Signed-off-by: Gaël Goinvic <gaelg@element.io>
* Add recursion_depth to /relations if recursing (#16775)David Baker2024-01-041-0/+1
| | | | | This is an extra response parameter just added to MSC3981. In the current impl, the recursion depth is always 3, so this just returns a static 3 if the recurse parameter is supplied.
* Search non ASCII display names using Admin API (#16767)Adam Jędrzejewski2024-01-041-0/+2
| | | | | Closes #16370 Signed-off-by: Adam Jedrzejewski <adamjedrzejewski@icloud.com>
* Fix email verification redirection (#16761)FadhlanR2024-01-021-0/+1
| | | | | | Previously, the response status of `HTMLResource` was hardcoded as `200`. However, for proper redirection after the user verifies their email, we require the status to be `302`. This PR addresses that issue by using `code` as response status.
* Delete the add version picker GHA workflow (#9453)Andrew Morgan2024-01-021-0/+1
| | | | | | | | | | | | | | | | | | | | Added in https://github.com/matrix-org/synapse/pull/16533, this workflow was intended to be run once to add the version picker to all historical versions of the https://matrix-org.github.io/synapse documentation website. Note that the latest version of the docs built from this repo now exist at https://element-hq.github.io/synapse/. The workflow has been run successfully and the version picker was added to the documentation. Thus we can now delete this workflow. --- Note: Do not confuse this PR with https://github.com/matrix-org/synapse/issues/9453. This PR was made while we were populating this repo with "Dummy issues" after the changeover from matrix-org/synapse to element-hq/synapse - therefore referencing this PR may cause some confusion.
* Add another custom statistics collection server (#16769)Christian Lölkes2024-01-021-0/+1
| | | Signed-off-by: Christian Lölkes <christian.loelkes@gmail.com>
* Enable user without password (#16770)Dirk Klimpel2024-01-021-0/+1
| | | | | | | | | | | Closes: - https://github.com/matrix-org/synapse/issues/10397 - #10397 An administrator should know whether he wants to set a password or not. There are many uses cases where a blank password is required. - Use of only some users with SSO. - Use of bots with password, users with SSO
* Remove config value from header (#16763)Fredrik Lanker2024-01-021-0/+1
| | | Signed-off-by: Fredrik Lanker <fredrik@lanker.se>
* Move the rust stubs inline for better IDE integration (#16757)Erik Johnston2023-12-211-0/+1
| | | | At least for vscode this allows click through / type checking / syntax highlighting.
* Fix sample config doc CI (#16758)Erik Johnston2023-12-211-0/+1
| | | I accidentally broke it during the move by removing a trailing new line.
* Sentry Alert configuration based on production and development environment ↵Zeeshan Rafiq2023-12-121-0/+1
| | | | (#16738)
* Add avatar and topic settings for server notice room (#16679)Mathieu Velten2023-12-121-0/+1
|
* Add config to change the delay before sending a notification email (#16696)Mathieu Velten2023-12-121-0/+1
|
* Adding a version picker for Synapse docs (#16533)Dmytro Kagirov2023-12-111-0/+1
|
* Write signing keys with file mode 0640 (#16740)elara-leitstellentechnik2023-12-081-0/+1
| | | | Co-authored-by: Fabian Klemp <fabian.klemp@frequentis.com>
* Clarify documentation for `only_for_reauth` (#16737)Dirk Klimpel2023-12-071-0/+1
|
* Expose OIDC discovery information under the CSAPI (#16726)David Robertson2023-12-061-0/+1
| | | | Co-authored-by: Quentin Gliech <quenting@element.io>
* 1.98.0rc1David Robertson2023-12-0527-27/+0
|
* Fix upgrading a room without `events` field in power levels (#16725)David Robertson2023-12-051-0/+1
|
* Add how to validate configuration file with synapse.config script (#16714)Amanda H. L. de Andrade Katz2023-12-051-0/+1
|
* Set response values to zero if None for ↵Will Hunt2023-12-051-0/+1
| | | | | | /_synapse/admin/v1/federation/destinations (#16729)
* Fix postgres schema after dropping old tables (#16730)David Robertson2023-12-051-0/+1
|
* Add a Postgres `REPLICA IDENTITY` to tables that do not have an implicit ↵reivilibre2023-12-041-0/+1
| | | | | | | | | | | | | | | | | | | | | | | one. This should allow use of Postgres logical replication. (take 2, now with no added deadlocks!) (#16658) * Add `ALTER TABLE ... REPLICA IDENTITY ...` for individual tables We can't combine them into one file as it makes it likely to hit a deadlock if Synapse is running, as it only takes one other transaction to access two tables in a different order to the schema delta. * Add notes * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * Re-introduce REPLICA IDENTITY test --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* Switch UNIX socket paths to /run, and add a UNIX socket example for HAProxy ↵villepeh2023-12-041-0/+1
| | | | (#16700)
* Server notices: add an autojoin setting for the notices room (#16699)Mathieu Velten2023-12-041-0/+1
| | | | Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
* Implement MSC4069: Inhibit profile propagation (#16636)Travis Ralston2023-12-041-0/+1
| | | MSC: https://github.com/matrix-org/matrix-spec-proposals/pull/4069
* ModuleAPI SSO auth callbacks (#15207)Andrew Yasinishyn2023-12-011-0/+1
| | | Signed-off-by: Andrii Yasynyshyn yasinishyn.a.n@gmail.com
* Drop unused tables & unneeded access token ID for events. (#16522)Patrick Cloke2023-12-011-0/+1
|
* Upgrade poetry-core range to fix issue with .so file (#16702)Mo Balaa2023-11-291-0/+1
| | | | | | | | poetry-core 1.8.x includes a fix which properly moves the generate synapse_rust.abi3.so file to the synapse directory when using an editable install. Without this change developers are left with a confusing experience of the synapse.synapse_rust module not being found after installation.
* Declare support for Matrix v1.7, v1.8, and v1.9. (#16707)Patrick Cloke2023-11-291-0/+1
|
* Request & follow redirects for /media/v3/download (#16701)Patrick Cloke2023-11-291-0/+1
| | | | | | Implement MSC3860 to follow redirects for federated media downloads. Note that the Client-Server API doesn't support this (yet) since the media repository in Synapse doesn't have a way of supporting redirects.
* Reduce DB load when forget on leave setting is disabled (#16668)Erik Johnston2023-11-291-0/+1
| | | | | * Reduce DB load when forget on leave setting is disabled * Newsfile
* Add a workflow to try and automatically fixup a PR (#16704)Erik Johnston2023-11-291-0/+1
| | | Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
* Speed up pruning of `user_ips` table (#16667)Erik Johnston2023-11-291-0/+1
| | | Silly query planner
* Document which versions of Synapse have compatible schema versions. (#16661)Patrick Cloke2023-11-281-0/+1
|
* Ignore `encryption_enabled_by_default_for_room_type` for notices room (#16677)Mathieu Velten2023-11-281-0/+1
|
* Remove old full schema dumps. (#16697)Patrick Cloke2023-11-281-0/+1
| | | | These are not useful and make it difficult to search for table definitions, etc.
* Fix poetry version typo in contributors' guide (#16695)David Robertson2023-11-271-0/+1
|
* Move media retention tests out of rest tests (#16684)David Robertson2023-11-271-0/+1
| | | | | | | | * Move media retention tests out of rest tests AFAICS this doesn't make any HTTP requests and so it ought not to belong in `tests.rest`. * Changelog
* Correctly read to-device stream pos on SQLite (#16682)David Robertson2023-11-241-0/+1
|
* Keep track of `user_ips` and `monthly_active_users` when delegating auth ↵David Robertson2023-11-231-0/+1
| | | | | | | | | | | | | (#16672) * Describe `insert_client_ip` * Pull out client_ips and MAU tracking to BaseAuth * Define HAS_AUTHLIB once in tests sick of copypasting * Track ips and token usage when delegating auth * Test that we track MAU and user_ips * Don't track `__oidc_admin`
* Enable refreshable tokens on the admin registration endpoint (#16642)Charles Wright2023-11-221-0/+1
| | | Signed-off-by: Charles Wright <cvwright@futo.org>
* Bump pyo3 (0.20), pythonize (0.20), pyo3-log (0.9) (#16673)V024602023-11-221-0/+1
| | | Signed-off-by: Kai A. Hiller <V02460@gmail.com>
* Admin API for server notice: consistently bypass rate limits (#16670)Mathieu Velten2023-11-221-0/+1
| | | | | | | * Admin API for server notice: disable rate limit for all calls * Add changelog * Update changelog.d/16670.bugfix
* Filter out auth chain queries that don't exist (#16552)Jason Little2023-11-221-0/+1
|
* 1.97.0rc1David Robertson2023-11-2136-36/+0
|
* Speed up how quickly we launch new tasks (#16660)Erik Johnston2023-11-171-0/+1
| | | Now that we're reducing concurrency (#16656), this is more important.
* Bump requests-toolbelt from 0.10.1 to 1.0.0. (#16659)Patrick Cloke2023-11-171-0/+1
|
* Speed up purge room by adding index (#16657)Erik Johnston2023-11-171-0/+1
| | | What it says on the tin
* Also discard 'caches' and 'backfill' stream POSITIONS (#16655)Erik Johnston2023-11-171-0/+1
| | | Follow on from #16640
* Update admin user API return types in docs. (#16654)Michael Weimann2023-11-171-0/+1
|
* Reduce task concurrency (#16656)Erik Johnston2023-11-171-0/+1
|
* Revert "Fix test not detecting tables with missing primary keys and missing ↵Erik Johnston2023-11-161-1/+0
| | | | | replica identities, then add more replica identities. (#16647)" (#16652) This reverts commit 830988ae72d63bbb67d2020a3f221664f3f456ee.
* Revert "Add a Postgres `REPLICA IDENTITY` to tables that do not have an ↵Erik Johnston2023-11-161-1/+0
| | | | | implicit one. This should allow use of Postgres logical replication. (#16456)" (#16651) This reverts commit 69afe3f7a0d89f3422ddbd3aa16bc9bbc01056eb.
* Speed up deleting device messages (#16643)Erik Johnston2023-11-161-0/+1
| | | Keeping track of a lower bound of stream ID where we've deleted everything below makes the queries much faster. Otherwise, every time we scan for rows to delete we'd re-scan across all the rows that have previously deleted (until the next table VACUUM).
* Speed up persisting large number of outliers (#16649)Erik Johnston2023-11-161-0/+1
| | | Recalculating the roots tuple every iteration could be very expensive, so instead let's do a topological sort.
* Fix sending out of order `POSITION` over replication (#16639)Erik Johnston2023-11-161-0/+1
| | | | | If a worker reconnects to Redis we send out the current positions of all our streams. However, if we're also trying to send out a backlog of RDATA at the same time then we can end up sending a `POSITION` with the current token *before* we've sent all the RDATA before the current token. This doesn't cause actual bugs as the receiving servers see the POSITION, fetch the relevant rows from the DB, and then ignore the old RDATA as they come in. However, this is inefficient so it'd be better if we didn't send out-of-order positions
* More efficiently handle no-op POSITION (#16640)Erik Johnston2023-11-161-0/+1
| | | | We may receive `POSITION` commands where we already know that worker has advanced past that position, so there is no point in handling it.
* Fix test not detecting tables with missing primary keys and missing replica ↵reivilibre2023-11-161-0/+1
| | | | | | | | | | | | | | | identities, then add more replica identities. (#16647) * Fix the CI query that did not detect all cases of missing primary keys * Add more missing REPLICA IDENTITY entries * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* Add an Admin API to temporarily grant the ability to update an existing ↵David Robertson2023-11-151-0/+1
| | | | cross-signing key without UIA (#16634)
* Asynchronous Uploads (#15503)Sumner Evans2023-11-151-0/+1
| | | Support asynchronous uploads as defined in MSC2246.
* Add links to pre-1.0 changelog issue/PR references. (#16638)Patrick Cloke2023-11-151-0/+1
|
* Use full GitHub links instead of bare issue numbers. (#16637)Patrick Cloke2023-11-151-0/+1
|
* Improve documentation for ↵Will Hunt2023-11-141-0/+1
| | | | `/_synapse/admin/v1/rooms/<room_id>/timestamp_to_event` (#16631)
* Remove whole table locks on push rule add/delete (#16051)Nick Mills-Barrett2023-11-131-0/+1
| | | | The statements are already executed within a transaction thus a table level lock is unnecessary.
* Add a Postgres `REPLICA IDENTITY` to tables that do not have an implicit ↵reivilibre2023-11-131-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | one. This should allow use of Postgres logical replication. (#16456) * Add Postgres replica identities to tables that don't have an implicit one Fixes #16224 * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * Move the delta to version 83 as we missed the boat for 82 * Add a test that all tables have a REPLICA IDENTITY * Extend the test to include when indices are deleted * isort * black * Fully qualify `oid` as it is a 'hidden attribute' in Postgres 11 * Update tests/storage/test_database.py Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com> * Add missed tables --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
* Fix outbound_federation_restricted_to docs & note when added (#16628)David Robertson2023-11-131-0/+1
|
* Use attempt_to_set_autocommit everywhere. (#16615)Patrick Cloke2023-11-091-0/+1
| | | To avoid asserting the type of the database connection.
* Fix a long-standing bug where Synapse would not unbind third-party ↵reivilibre2023-11-091-0/+1
| | | | | | | | | | | | | | | identifiers for Application Service users when deactivated and would not emit a compliant response. (#16617) * Don't skip unbinding 3PIDs and returning success status when deactivating AS user Fixes #16608 * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* Use dbname instead of database for Postgres config. (#16618)Patrick Cloke2023-11-091-0/+1
|
* Use _invalidate_cache_and_stream_bulk in more places. (#16616)Patrick Cloke2023-11-092-1/+2
| | | | | This takes advantage of the new bulk method in more places to invalidate caches for many keys at once (and then to stream that over replication).
* Convert simple_select_one_txn and simple_select_one to return tuples. (#16612)Patrick Cloke2023-11-091-0/+1
|
* Return attrs for more media repo APIs. (#16611)Patrick Cloke2023-11-091-0/+1
|
* Bulk-invalidate e2e cached queries after claiming keys (#16613)David Robertson2023-11-091-0/+1
| | | | Co-authored-by: Patrick Cloke <patrickc@matrix.org>
* Avoid updating the same rows multiple times with simple_update_many_txn. ↵Patrick Cloke2023-11-071-0/+1
| | | | | | (#16609) simple_update_many_txn had a bug in it which would cause each update to be applied twice.
* Avoid executing no-op queries. (#16583)Patrick Cloke2023-11-071-0/+1
| | | | | | If simple_{insert,upsert,update}_many_txn is called without any data to modify then return instead of executing the query. This matches the behavior of simple_{select,delete}_many_txn.
* More tests for the simple_* methods. (#16596)Patrick Cloke2023-11-071-0/+1
| | | | Expand tests for the simple_* database methods, additionally test against both PostgreSQL and SQLite variants.
* Collect information for PushRuleEvaluator in parallel. (#16590)Patrick Cloke2023-11-061-0/+1
| | | | | | | | Fetch information needed for push rule evaluation in parallel. Ideally this would use query pipelining, but this is not available in psycopg2. Due to the database thread pool this may result in little to no parallelization.
* Bump setuptools_rust to match pinned version. (#16605)Patrick Cloke2023-11-061-0/+1
|
* Support reactor timing metric on more reactors. (#16532)Patrick Cloke2023-11-061-0/+1
| | | | | | | | | | Previously only Twisted's EPollReactor was compatible with the reactor timing metric, notably not working when asyncio was used. After this change, the following configurations support the reactor timing metric: * poll, epoll, or select reactors * asyncio reactor with a poll, epoll, select, /dev/poll, or kqueue event loop.
* Simplify event persistence code (#16584)Patrick Cloke2023-11-032-0/+2
| | | | | | | | | | | The event persistence code used to handle multiple rooms at a time, but was simplified to only ever be called with a single room at a time (different rooms are now handled in parallel). The code is still generic to multiple rooms causing a lot of work that is unnecessary (e.g. unnecessary loops, and partitioning data by room). This strips out the ability to handle multiple rooms at once, greatly simplifying the code.
* Use simple_select_many_txn in event persistance code. (#16585)Patrick Cloke2023-11-021-0/+1
| | | | | Just to standardize on the normal helpers, it might also have a slight perf improvement on PostgreSQL which will now use `ANY (?)` instead of `IN (?, ?, ...)`.
* Bump twisted from 23.8.0 to 23.10.0 (#16588)dependabot[bot]2023-11-011-0/+1
|
* Do not call getfullargspec on every call. (#16589)Patrick Cloke2023-10-311-0/+1
| | | | | getfullargspec is relatively expensive and the results will not change between calls, so precalculate it outside the wrapper.
* Remove remaining usage of cursor_to_dict. (#16564)Patrick Cloke2023-10-311-0/+1
|
* 1.96.0rc1Erik Johnston2023-10-3138-38/+0
|
* Revert "1.96.0rc1"Erik Johnston2023-10-3138-0/+38
| | | | This reverts commit 4724a6ded136c727bcff5082b94c2b3d6355e908.
* 1.96.0rc1Erik Johnston2023-10-3138-38/+0
|
* Claim local one-time-keys in bulk (#16565)David Robertson2023-10-301-0/+1
| | | | Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
* Clients link fixed in README (#16569)Niranjan Kurhade2023-10-301-0/+1
|
* Add fast path for replication events stream fetch (#16580)Erik Johnston2023-10-301-0/+1
| | | | We can bail early if the from token is greater than or equal to the current token.
* Claim fallback keys in bulk (#16570)David Robertson2023-10-301-0/+1
|
* Bump setuptools-rust from 1.7.0 to 1.8.0 (#16574)dependabot[bot]2023-10-301-0/+1
| | | | | Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: David Robertson <davidr@element.io>
* Run actions/setup-go after checking out complement (#16567)David Robertson2023-10-301-0/+1
|
* Fix HTTP repl response to use minimum token (#16578)Erik Johnston2023-10-301-0/+1
|
* Portdb: don't copy a table that gets rebuilt (#16563)David Robertson2023-10-271-0/+1
|
* complement: enable dirty runs (#16520)kegsay2023-10-271-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * complement: enable dirty runs * Add changelog * Set a low connpool limit when running in Complement Dirty runs can cause many containers to be running concurrently, which seems to easily exhaust resources on the host. The increased speedup from dirty runs also seems to use more db connections on workers, which are misconfigured currently to have `SUM(workers * cp_max) > max_connections`, causing ``` FATAL: sorry, too many clients already ``` which results in tests failing. * Try p=2 concurrency to restrict slowness of servers which causes partial state join tests to flake * Debug logging * Only run flakey tests * Only adjust connection pool limits in worker mode * Move cp vars to somewhere where they get executed in CI * Move cp values back to where they actually work * Debug logging * Try p=1 to see if this makes worker mode happier * Remove debug logging
* Ensure local invited & knocking users leave before purge. (#16559)Patrick Cloke2023-10-271-0/+1
| | | | | This is mostly useful for federated rooms where some users would get stuck in the invite or knock state when the room was purged from their homeserver.
* Reduce amount of caches POSITIONS we send (#16561)Erik Johnston2023-10-271-0/+1
| | | Follow on from / actually correctly does #16557
* Reduce spurious replication catchup (#16555)Erik Johnston2023-10-271-0/+1
|
* Fix cross-worker ratelimiting (#16558)Erik Johnston2023-10-271-0/+1
| | | c.f. #16481
* Reduce replication traffic due to reflected cache stream POSITION (#16557)Erik Johnston2023-10-271-0/+1
|
* Add new module API for adding custom fields to events `unsigned` section ↵Erik Johnston2023-10-271-0/+1
| | | | (#16549)
* Remove more usages of cursor_to_dict. (#16551)Patrick Cloke2023-10-261-0/+1
| | | Mostly to improve type safety.
* Add a new module API to update user presence state. (#16544)Patrick Cloke2023-10-261-0/+1
| | | | | | | | | | This adds a module API which allows a module to update a user's presence state/status message. This is useful for controlling presence from an external system. To fully control presence from the module the presence.enabled config parameter gains a new state of "untracked" which disables internal tracking of presence changes via user actions, etc. Only updates from the module will be persisted and sent down sync properly).
* Convert simple_select_list and simple_select_list_txn to return lists of ↵Patrick Cloke2023-10-261-0/+1
| | | | | tuples (#16505) This should use fewer allocations and improves type hints.
* Pin the recommended poetry version in contributors' guide (#16550)David Robertson2023-10-251-0/+1
|
* Allow multiple workers to write to receipts stream. (#16432)Erik Johnston2023-10-251-0/+1
| | | Fixes #16417
* Fix tests on Twisted trunk. (#16528)Patrick Cloke2023-10-251-0/+1
| | | | | | | | | | | | | Twisted trunk makes a change to the `TLSMemoryBIOFactory` where the underlying protocol is changed from `TLSMemoryBIOProtocol` to `BufferingTLSTransport` to improve performance of TLS code (see https://github.com/twisted/twisted/issues/11989). In order to properly hook this code up in tests we need to pass the test reactor's clock into `TLSMemoryBIOFactory` to avoid the global (trial) reactor being used by default. Twisted does something similar internally for tests: https://github.com/twisted/twisted/blob/157cd8e659705940e895d321339d467e76ae9d0a/src/twisted/web/test/test_agent.py#L871-L874
* Fix http/s proxy authentication with long username/passwords (#16504)Richard Brežák2023-10-241-0/+1
|
* Rework alias and public room list rules docs (#16541)David Robertson2023-10-241-0/+1
|
* Remove duplicate call to wake a remote destination when using federation ↵Jason Little2023-10-241-0/+1
| | | | sending worker (#16515)
* Replace all Prometheus datasource UIDs of the Grafana Dashboard with the ↵Michael Sasser2023-10-231-0/+1
| | | | variable `${DS_PROMETHEUS}` and remove `__inputs` (#16471)
* Fix type hint errors from Twisted trunk (#16526)Patrick Cloke2023-10-231-0/+1
|
* Fix bug where a new writer advances their token too quickly (#16473)Erik Johnston2023-10-231-0/+1
| | | | | | | | | | | | | | | | | | | * Fix bug where a new writer advances their token too quickly When starting a new writer (for e.g. persisting events), the `MultiWriterIdGenerator` doesn't have a minimum token for it as there are no rows matching that new writer in the DB. This results in the the first stream ID it acquired being announced as persisted *before* it actually finishes persisting, if another writer gets and persists a subsequent stream ID. This is due to the logic of setting the minimum persisted position to the minimum known position of across all writers, and the new writer starts off not being considered. * Fix sending out POSITIONs when our token advances without update Broke in #14820 * For replication HTTP requests, only wait for minimal position
* Fix bug that could cause a `/sync` to tightloop with sqlite after restart ↵Erik Johnston2023-10-231-0/+1
| | | | | (#16540) This could happen if the last rows in the account data stream were inserted into `account_data`. After a restart the max account ID would be calculated without looking at the `account_data` table, and so have an old ID.
* Mention how to redirect the Jaeger traces to a specific Jaeger instance (#16531)Marcel2023-10-231-0/+1
|
* Force TLS certificate verification in registration script. (#16530)Denis Kasak2023-10-231-0/+1
| | | | | | | | | | If using the script remotely, there's no particularly convincing reason to disable certificate verification, as this makes the connection interceptible. If on the other hand, the script is used locally (the most common use case), you can simply target the HTTP listener and avoid TLS altogether. This is what the script already attempts to do if passed a homeserver configuration YAML file.
* Remove the last reference to event_txn_id. (#16521)Patrick Cloke2023-10-231-0/+1
| | | | This table was no longer used, except for a background process which purged old entries in it.
* Bump matrix-synapse-ldap3 from 0.2.2 to 0.3.0 (#16539)David Robertson2023-10-231-0/+1
|
* Clarify presence router docs. (#16529)Patrick Cloke2023-10-201-0/+1
|
* Mark sync as limited if there is a gap in the timeline (#16485)Erik Johnston2023-10-191-0/+1
| | | | | | | | This splits thinsg into two queries, but most of the time we won't have new event backwards extremities so this shouldn't actually add an extra RTT for the majority of cases. Note this removes the check for events with no prev events, but that was part of MSC2716 work that has since been removed.
* Avoid sending massive replication updates when purging a room. (#16510)Patrick Cloke2023-10-181-0/+1
|
* Improve performance of delete device messages query (#16492)Mathieu Velten2023-10-181-0/+1
|
* Run trial/integration tests if .ci is modified. (#16512)Patrick Cloke2023-10-181-0/+1
|
* Test against Python 3.12 release (#16511)Patrick Cloke2023-10-171-0/+1
|
* 1.95.0rc1Patrick Cloke2023-10-1730-30/+0
|
* Convert DeviceLastConnectionInfo to attrs. (#16507)Patrick Cloke2023-10-171-0/+1
| | | To improve type safety & memory usage.
* Fix a bug where servers could be marked as up when they were failing (#16506)Patrick Cloke2023-10-171-0/+1
| | | | After this change a server will only be reported as back online if they were previously having requests fail.
* Update the release script to remind releaser to check for special release ↵reivilibre2023-10-161-0/+1
| | | | | | | | | | | | | | | | | notes. (#16461) * Add reminder to check special release notes board in release script * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * Update release.py * Bah, black --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* Convert state delta processing from a dict to attrs. (#16469)Patrick Cloke2023-10-161-0/+1
| | | For improved type checking & memory usage.
* Remove useless async job to delete device messages on sync (#16491)Mathieu Velten2023-10-161-0/+1
|
* Clean up logging on event persister endpoints (#16488)Richard van der Hoff2023-10-141-0/+1
|
* Fix typo in useful_sql_for_admins.md (#16477)Laurence Gill2023-10-121-0/+1
|
* Revert "Drop unused tables & unneeded access token ID for events. (#16268)" ↵Patrick Cloke2023-10-121-1/+0
| | | | | | | | (#16465) This reverts commit cabd57746004fe2dacc11aa8d373854a3d25e306. There are additional usages of these tables which need to be removed first.
* Update complement.sh to match new public API shape (#16466)kegsay2023-10-121-0/+1
| | | | | | | | | | | | | * Update complement.sh to match new public API shape Sister PR to https://github.com/matrix-org/complement/pull/666 Context: https://github.com/matrix-org/complement/issues/654#issuecomment-1746613495 * Changelog * Pedantry * Run complement plz
* Convert user_get_threepids response to attrs. (#16468)Patrick Cloke2023-10-111-0/+1
| | | This improves type annotations by not having a dictionary of Any values.
* Convert simple_select_many_batch, simple_select_many_txn to tuples. (#16444)Patrick Cloke2023-10-111-0/+1
|
* Handle content types with parameters. (#16440)Patrick Cloke2023-10-111-0/+1
|
* Inline simple_search_list/simple_search_list_txn. (#16434)Patrick Cloke2023-10-101-0/+1
| | | | This only has a single use and is over abstracted. Inline it so that we can improve type hints.
* Add DB indices to speed up purging rooms (#16457)David Robertson2023-10-101-0/+1
|
* Disable statement timeout whilst purging rooms (#16455)reivilibre2023-10-091-0/+1
| | | | | | | | | | | | | * Disable statement timeout whilst purging rooms * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * Note the introduction version --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* Don't block CI on sign-off (#16454)Erik Johnston2023-10-091-0/+1
| | | As this doesn't work with the private sign off flow.
* Fix possible AttributeError when account-api is called over unix socket (#16404)Christoph2023-10-091-0/+1
| | | Fixes #16396
* Apply join rate limiter outside the lineariser (#16441)David Robertson2023-10-061-0/+1
|
* Convert simple_select_list_paginate_txn to return tuples. (#16433)Patrick Cloke2023-10-061-0/+1
|
* Return ThumbnailInfo in more places (#16438)Patrick Cloke2023-10-061-0/+1
| | | | Improves type hints by using concrete types instead of dictionaries.
* Drop unused tables & unneeded access token ID for events. (#16268)Patrick Cloke2023-10-061-0/+1
| | | | Drop the event_txn_id table and the tables related to MSC2716, which is no longer supported in Synapse.
* Stop sending incorrect knock_state_events. (#16403)Patrick Cloke2023-10-061-0/+1
| | | | | | | | | Synapse was incorrectly implemented with a knock_state_events property on some APIs (instead of knock_room_state). This was correct in Synapse 1.70.0, but *both* fields were sent to also be compatible with Synapse versions expecting the wrong field. Enough time has passed that only the correct field needs to be included/handled.
* Fix comments related to replication. (#16428)Patrick Cloke2023-10-061-0/+1
|
* Add documentation on background updates. (#16420)Patrick Cloke2023-10-061-0/+1
|
* Register media servlets via regex. (#16419)Patrick Cloke2023-10-061-0/+1
| | | | | This converts the media servlet URLs in the same way as (most) of the rest of Synapse. This will give more flexibility in the versions each endpoint exists under.
* Bump pyo3 from 0.17.1 to 0.19.2 (#16162)V024602023-10-061-0/+1
| | | Signed-off-by: Kai A. Hiller <V02460@gmail.com>
* Remove unused method. (#16435)Patrick Cloke2023-10-051-0/+1
|
* Remove manys calls to cursor_to_dict (#16431)Patrick Cloke2023-10-052-1/+2
| | | | | | | | | | This avoids calling cursor_to_dict and then immediately unpacking the values in the dict for other users. By not creating the intermediate dictionary we can avoid allocating the dictionary and strings for the keys, which should generally be more performant. Additionally this improves type hints by avoid Dict[str, Any] dictionaries coming out of the database layer.
* Add __slots__ to replication commands. (#16429)Patrick Cloke2023-10-051-0/+1
| | | To slightly reduce the amount of memory each command takes.
* Factor out `MultiWriter` token from `RoomStreamToken` (#16427)Erik Johnston2023-10-051-0/+1
|
* Add type hints to synmark. (#16421)Patrick Cloke2023-10-041-0/+1
|
* Some refactors around receipts stream (#16426)Erik Johnston2023-10-041-0/+1
|
* 1.94.0rc1David Robertson2023-10-0324-24/+0
|
* Add note to 'federation_domain_whitelist' option (#16416)Erik Johnston2023-10-031-0/+1
|
* Clean-up old release notes (#16418)Patrick Cloke2023-10-021-0/+1
| | | | Fixes some broken formatting from the reStructuedText to Markdown conversion and fixes some typos.
* mypy plugin to check `@cached` return types (#14911)David Robertson2023-10-021-0/+1
| | | | | | | | Co-authored-by: David Robertson <davidr@element.io> Co-authored-by: Patrick Cloke <patrickc@matrix.org> Co-authored-by: Erik Johnston <erik@matrix.org> Assert that the return type of callables wrapped in @cached and @cachedList are cachable (aka immutable).
* Remove Python version from `/_synapse/admin/v1/server_version` (#16380)MomentQYC2023-10-021-0/+1
| | | | There's no reason to expose the full Python version over what is frequently a public API.
* Downgrade repl stream time out error to warning (#16401)Erik Johnston2023-09-291-0/+1
| | | | | | This is because if a worker reaches ~100% CPU then everything starts lagging and we hit the log line a lot. When at error we invoke sentry and that has a lot of overhead, which then puts even more pressure on the worker.
* Support rendering some media downloads as inline (#15988)Will Hunt2023-09-291-0/+1
| | | | | Use an `inline` Content-Disposition header when the media is "safe" to display inline (some known text, image, video, audio formats).
* Remove warnings from the docs about using message retention. (#16382)Patrick Cloke2023-09-281-0/+1
| | | | | There are no known bugs in the message retention code, but it is possible that there still exists race conditions. Additional fixes will be made as reported.
* Improve state types. (#16395)Patrick Cloke2023-09-281-0/+1
|
* Use modern config for maturin. (#16394)Patrick Cloke2023-09-281-0/+1
| | | | | | | This allows maturin >= 0.15 to build the properly named shared library object. For now the old configuration is also kept to allow for older maturin installs to be used.
* Add a cache around server ACL checking (#16360)Patrick Cloke2023-09-261-0/+1
| | | | | * Pre-compiles the server ACLs onto an object per room and invalidates them when new events come in. * Converts the server ACL checking into Rust.
* Implement MSC4028: push all encrypted events. (#16361)Patrick Cloke2023-09-261-0/+1
| | | | This unstable push rule is implemented behind an experimental configuration flag.
* Skip export-data on non-code (e.g. docs) PRs (#16387)David Robertson2023-09-261-0/+1
|
* Add documentation about the user directory search algorithm (#16320)Patrick Cloke2023-09-261-0/+1
|
* Reduce calls to `send_presence_to_destinations` (#16385)Erik Johnston2023-09-261-0/+1
|
* Improve comments in StateGroupBackgroundUpdateStore. (#16383)Patrick Cloke2023-09-251-0/+1
|
* Add developer documentation concerning gradual schema migrations with column ↵reivilibre2023-09-251-0/+1
| | | | | | | alterations. (#15691) Co-authored-by: Eric Eastwood <erice@element.io>
* Avoid running CI steps when the files they check have not been changed. (#14745)reivilibre2023-09-251-0/+1
|
* Bump types-psycopg2 from 2.9.21.11 to 2.9.21.14 (#16381)dependabot[bot]2023-09-251-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Bump types-psycopg2 from 2.9.21.11 to 2.9.21.14 Bumps [types-psycopg2](https://github.com/python/typeshed) from 2.9.21.11 to 2.9.21.14. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-psycopg2 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * Relax the annotation of Cursor.description See https://github.com/matrix-org/synapse/pull/16343#issuecomment-1726083384 for rationale. * Changelog * Changelog --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: David Robertson <davidr@element.io>
* Add support for pydantic v2 via pydantic.v1 compat module (#16332)Maxwell G2023-09-251-0/+1
| | | While maintaining support with pydantic v1.
* Get CI to check PRs have been signed-off (#16348)David Robertson2023-09-251-0/+1
|
* Add missing license header. (#16359)Patrick Cloke2023-09-211-0/+1
|
* Convert more cached return values to immutable types (#16356)Patrick Cloke2023-09-201-0/+1
|
* Return immutable objects for cachedList decorators (#16350)Patrick Cloke2023-09-191-0/+1
|
* Merge branch 'release-v1.93' into developPatrick Cloke2023-09-1956-56/+0
|\
| * 1.93.0rc1Patrick Cloke2023-09-1956-56/+0
| |
* | Fix-up deactivated notes in docs. (#16355)Patrick Cloke2023-09-191-0/+1
|/
* Use string for federation_client_minimum_tls_version documentation examples ↵Jan Christian Grünhage2023-09-191-0/+1
| | | | (#16353)
* Test against PostgreSQL 16. (#16351)Patrick Cloke2023-09-181-0/+1
|
* Stop patching EventBase.__eq__ in tests. (#16349)Patrick Cloke2023-09-181-0/+1
| | | | It is clearer to directly test equality instead of doing indirect assertions via patching __eq__.
* Filter locked users in the admin API (#16328)Hanadi2023-09-181-0/+1
| | | | Co-authored-by: Hanadi Tamimi <hanadi.tamimi@sdui.de>
* Make cached account data/tags/admin types immutable (#16325)Patrick Cloke2023-09-181-0/+1
|
* Return an immutable value from get_latest_event_ids_in_room. (#16326)Patrick Cloke2023-09-181-0/+1
|
* Additional validation of receipts (#16327)Patrick Cloke2023-09-181-0/+1
| | | | Reject invalid receipts with a reasonable error message & expands tests for receipts.
* Mandate Pillow>=10.0.1 because of libwebp CVE (#16347)Mathieu Velten2023-09-181-0/+1
|
* Set email charset as utf-8 rather than utf8 (#16329)José Joaquín Atria2023-09-181-0/+1
|
* Add automatic purge after all users forget a room (#15488)Mathieu Velten2023-09-151-0/+1
| | | | | | Also add restore of purge/shutdown rooms after a synapse restart. Co-authored-by: Eric Eastwood <erice@matrix.org> Co-authored-by: Erik Johnston <erikj@matrix.org>
* Convert `_insert_graph_receipts_txn` to `simple_upsert` (#16299)Jason Little2023-09-151-0/+1
|
* Only use literal strings for process names (#16315)Erik Johnston2023-09-151-0/+1
|
* Some minor performance fixes for task schedular (#16313)Erik Johnston2023-09-141-0/+1
|
* Speed up deleting to-device messages task (#16318)Erik Johnston2023-09-141-0/+1
|
* docs: Link to the Alpine Linux community package for Synapse (#16304)65432023-09-141-0/+1
|
* Refactor `get_user_by_id` (#16316)Erik Johnston2023-09-141-0/+1
|
* Remove a reference cycle in background process (#16314)Erik Johnston2023-09-131-0/+1
|
* Fix using dehydrated devices (MSC2697) & refresh tokens (#16288)Hanadi2023-09-131-0/+1
| | | | | Refresh tokens were not correctly moved to the rehydrated device (similar to how the access token is currently handled). This resulted in invalid refresh tokens after rehydration.
* Use StrCollection in additional places. (#16301)Patrick Cloke2023-09-131-0/+1
|
* Don't schedule an async task on every sync (#16312)Erik Johnston2023-09-131-0/+1
|
* Fix deleting device inbox when using background worker (#16311)Erik Johnston2023-09-131-0/+1
| | | | | Introduced in #16240 The action for the task was only defined on the "master" handler, rather than the base worker one.
* Improve logging of replication (#16309)Erik Johnston2023-09-131-0/+1
|
* Merge branch 'master' into developMathieu Velten2023-09-122-2/+0
|\
| * 1.92.0Mathieu Velten2023-09-123-3/+0
| |
| * Support releasing on macOS. (#16266)Patrick Cloke2023-09-071-0/+1
| |
* | Bump mypy from 1.4.1 to 1.5.1. (#16300)Patrick Cloke2023-09-121-0/+1
| |
* | Stop purging tables which are slated for removal. (#16273)Patrick Cloke2023-09-121-0/+1
| |
* | Refactor storing of server keys (#16261)Erik Johnston2023-09-121-0/+1
| |
* | Add the List-Unsubscribe header for notification emails. (#16274)Patrick Cloke2023-09-111-0/+1
| | | | | | | | | | | | | | | | Adds both the List-Unsubscribe (RFC2369) and List-Unsubscribe-Post (RFC8058) headers to push notification emails, which together should: * Show an "Unsubscribe" link in the MUA UI when viewing Synapse notification emails. * Enable "one-click" unsubscribe (the user never leaves their MUA, which automatically makes a POST request to the specified endpoint).
* | Filter out down hosts when retrying fetching device lists (#16298)Erik Johnston2023-09-111-0/+1
| |
* | Improve type hints for attrs classes (#16276)David Robertson2023-09-081-0/+1
| |
* | Upgrade CI run of Python 3.12 from rc1 to rc2 (#16280)V024602023-09-081-0/+1
| |
* | Update ruff config (#16283)Patrick Cloke2023-09-081-0/+1
| | | | | | Enable additional checks & clean-up unneeded configuration.
* | Log values at DEBUG level with execute_values (#16281)David Robertson2023-09-081-0/+1
| |
* | Fix-up incorrect spellings in docs. (#16282)Patrick Cloke2023-09-081-0/+1
| |
* | Fix bug with new task scheduler using lots of CPU. (#16278)Erik Johnston2023-09-081-0/+1
| | | | | | | | | | Using the new `TaskScheduler` meant that we'ed create lots of new metrics (due to adding task ID to the desc of background process), resulting in requests for metrics taking an increasing amount of CPU.
* | Avoid temporary storage of sensitive information. (#16272)Patrick Cloke2023-09-081-0/+1
| | | | | | | | During the UI auth process, avoid storing sensitive information into the database.
* | Raise setuptools_rust version cap to 1.7.0 (#16277)V024602023-09-081-0/+1
| |
* | Reduce CPU overhead of change password endpoint (#16264)Erik Johnston2023-09-081-0/+1
| |
* | Recheck if remote device is cached before requesting it (#16252)Erik Johnston2023-09-071-0/+1
| | | | | | | | This fixes a bug where we could get stuck re-requesting the device over replication again and again.
* | Add `/notifications` endpoint to workers (#16265)Erik Johnston2023-09-071-0/+1
| |
* | Send the opentracing span information to appservices (#16227)Marcel2023-09-061-0/+1
| |
* | Handle "registration_enabled" parameter for CAS (#16262)Aurélien Grimpard2023-09-061-0/+1
| | | | | | | | Similar to OIDC, CAS providers can now disable registration such that only existing users are able to login via SSO.
* | Merge remote-tracking branch 'origin/release-v1.92' into developPatrick Cloke2023-09-062-0/+2
|\|
| * Add back newsfile from #16258.Patrick Cloke2023-09-061-0/+1
| |
| * Fix incorrect docstring for Ratelimiter. (#16255)Patrick Cloke2023-09-051-0/+1
| |
* | Apply missed suggestions from the review of #16090. (#16263)reivilibre2023-09-061-0/+1
| | | | | | | | | | | | | | | | | | | | | | * Suggestions from PR * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>
* | Add GCC and GNU Make to the Nix flake development environment so that `ruff` ↵reivilibre2023-09-061-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | can be compiled. (#16090) * Add gcc and GNU make to the Nix flake * Newsfile Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org> * unset LD_LIBRARY_PATH --------- Signed-off-by: Olivier Wilkinson (reivilibre) <oliverw@matrix.org>