Commit Graph

30221 Commits

Author SHA1 Message Date
Robert Hensing
1ed0a2c21e
Merge pull request #200712 from andir/andir/testing-remove-unused-with
nixos/lib/testing-python: remove unused `with pkgs;`
2022-11-11 16:27:19 +01:00
Franz Pletz
3c446ee4e2
Merge pull request #200639 from fpletz/pkgs/obs-28.1.2
obs-studio: 28.0.3 -> 28.1.2, plugins fixes
2022-11-11 16:26:59 +01:00
Andreas Rammhold
923e404389 nixos/lib/testing-python: remove unused with pkgs;
This with statement has no users anymore and can safely be removed.
2022-11-11 16:05:00 +01:00
Lorenz Brun
f046cc0923 nixos/pam: support fscrypt login protectors
fscrypt can automatically unlock directories with the user's login
password. To do this it ships a PAM module which reads the user's
password and loads the respective keys into the user's kernel keyring.

Significant inspiration was taken from the ecryptfs implementation.
2022-11-11 15:37:39 +01:00
Franz Pletz
96edebd788
obs-studio27: remove 2022-11-11 15:36:49 +01:00
Maximilian Bosch
35b146ca31
nixos/nextcloud: fixup openssl compat change
Upon testing the change itself I realized that it doesn't build properly
because

* the `pname` of a php extension is `php-<name>`, not `<name>`.
* calling the extension `openssl-legacy` resulted in PHP trying to compile
  `ext/openssl-legacy` which broke since it doesn't exist:

      source root is php-8.1.12
      setting SOURCE_DATE_EPOCH to timestamp 1666719000 of file php-8.1.12/win32/wsyslog.c
      patching sources
      cdToExtensionRootPhase
      /nix/store/48mnkga4kh84xyiqwzx8v7iv090i7z66-stdenv-linux/setup: line 1399: cd: ext/openssl-legacy: No such file or directory

I didn't encounter that one before because I was mostly interested in
having a sane behavior for everyone not using this "feature" and the
documentation around this. My findings about the behavior with turning
openssl1.1 on/off are still valid because I tested this on `master` with
manually replacing `openssl` by `openssl_1_1` in `php-packages.nix`.

To work around the issue I had to slightly modify the extension
build-system for PHP:

* The attribute `extensionName` is now relevant to determine the output
  paths (e.g. `lib/openssl.so`). This is not a behavioral change for
  existing extensions because then `extensionName==name`.

  However when specifying `extName` in `php-packages.nix` this value is
  overridden and it is made sure that the extension called `extName` NOT
  `name` (i.e. `openssl` vs `openssl-legacy`) is built and installed.

  The `name` still has to be kept to keep the legacy openssl available
  as `php.extensions.openssl-legacy`.

Additionally I implemented a small VM test to check the behavior with
server-side encryption:

* For `stateVersion` below 22.11, OpenSSL 1.1 is used (in `basic.nix`
  it's checked that OpenSSL 3 is used). With that the "default"
  behavior of the module is checked.

* It is ensured that the PHP interpreter for Nextcloud's php-fpm
  actually loads the correct openssl extension.

* It is tested that (encrypted) files remain usable when (temporarily)
  installing OpenSSL3 (of course then they're not decryptable, but on a
  rollback that should still be possible).

Finally, a few more documentation changes:

* I also mentioned the issue in `nextcloud.xml` to make sure the issue
  is at least mentioned in the manual section about Nextcloud. Not too
  much detail here, but the relevant option `enableBrokenCiphersForSSE`
  is referenced.

* I fixed a few minor wording issues to also give the full context
  (we're talking about Nextcloud; we're talking about the PHP extension
  **only**; please check if you really need this even though it's
  enabled by default).

  This is because I felt that sometimes it might be hard to understand
  what's going on when e.g. an eval-warning appears without telling where
  exactly it comes from.
2022-11-11 14:45:46 +01:00
Martin Weinelt
90ad4d9da7
Merge pull request #200629 from helsinki-systems/fix/test-dhparams 2022-11-11 12:11:55 +01:00
Robert Hensing
b106ff14ed nixosOptionsDoc: Report in which option an error occurs 2022-11-11 06:47:30 +01:00
Robert Hensing
429ba6c714 nixosOptionsDoc: Add markdownByDefault parameter 2022-11-11 06:29:44 +01:00
ajs124
8bb4c87281 nixosTests.dhparams: fix with openssl3 2022-11-11 02:55:54 +01:00
Franz Pletz
8cc2dcce7d
Merge pull request #199524 from ymarkus/zfs-exporter
nixos/prometheus-zfs-exporter: init
2022-11-11 02:01:13 +01:00
Anderson Torres
d48d7a69aa
Merge pull request #174975 from danth/firefox-module
nixos/firefox: init
2022-11-10 21:31:57 -03:00
Franz Pletz
286f868a5c
Merge pull request #162057 from jdheyburn/jdheyburn-unifi-prometheus-exporter-loki 2022-11-11 01:31:41 +01:00
Franz Pletz
8e9f00682d
nixos/prometheus-zfs-exporter: mdDoc descriptions 2022-11-11 01:29:10 +01:00
github-actions[bot]
a4ffa492ba
Merge master into haskell-updates 2022-11-11 00:17:01 +00:00
Franz Pletz
d82f52519a
nixos/libvirtd: always start libvirtd
Previously we did socket-activation but this breaks the autostart
feature since upstream expects libvirtd to be started unconditionally on
boot.

Fixes #171623.
2022-11-11 01:10:37 +01:00
Maximilian Bosch
2a63e4f902
Merge pull request #200218 from Ma27/rm-kernel-4.9
linux_4_9: remove
2022-11-10 23:34:56 +01:00
Daniel Thwaites
01b3d0bf25
nixos/firefox: init 2022-11-10 19:07:37 +00:00
amesgen
733ea72e16
nixos/rss2email: remove unnecessary cfg file indirection to fix test (#200108)
Previously, the NixOS test often failed as the copied config file is not
overwriteable. In actual setups, the restart interval is much bigger, such that
systemd-tmpfiles will correct the permissions inbetween.
2022-11-10 20:06:32 +01:00
figsoda
e920aed521
Merge pull request #200440 from nagy/treewide-modules
treewide: use `types.port` and `mkEnableOption` in nixos modules
2022-11-10 12:12:51 -05:00
Gauvain 'GovanifY' Roussel-Tarbouriech
5a4a53dbc6 nixos/mautrix-telegram: fix crash on postgresql database usage 2022-11-10 11:17:20 -05:00
Vincent Haupert
847774470e nixos/github-runners: restart service if exit code signals a retryable error
On some occasions, the GitHub runner service encounters errors which are
deemed retryable but result in the runner's termination. To signal a
retryable error, the runner exits with status code 2:

https://github.com/actions/runner/blob/40ed7f8/src/Runner.Common/Constants.cs#L146

To account for that behavior, this commit sets
`RestartForceExitStatus=2` which results in a service restart regardless
of using an ephemeral runner or not.
2022-11-10 11:06:04 -05:00
Janne Heß
798bc67cff
Merge pull request #200319 from helsinki-systems/feat/redis-module-changes
nixos/redis: misc module changes
2022-11-10 16:03:54 +01:00
sternenseemann
5c044644a6 Merge remote-tracking branch 'origin/master' into haskell-updates 2022-11-10 13:56:56 +01:00
Eelco Dolstra
0a00b332cd
Merge pull request #198526 from farnoy/nixos-container-unified-cgroups
[nixos-container] Make nixos containers use unified cgroupsv2
2022-11-10 13:37:43 +01:00
github-actions[bot]
f3a93620b1
Merge master into staging-next 2022-11-10 12:01:27 +00:00
Maximilian Bosch
61128cba67
nixos/nextcloud: minor docs cleanup for openssl change
* s/NextCloud/Nextcloud/g
* `enableBrokenCiphersForSSE` should be enabled by default for any NixOS
  installation from before 22.11 to make sure existing installations
  don't run into the issue. Not the other way round.
* Update release notes to reflect on that.
* Improve wording of the warning a bit: explain which option to change
  to get rid of it.
* Ensure that basic tests w/o `enableBrokenCiphersForSSE` run with
  OpenSSL 3.
2022-11-10 12:17:43 +01:00
Raito Bezarius
394d4de877
nextcloud25: enable by default broken ciphers for NixOS ≤ 22.11 2022-11-10 12:17:43 +01:00
Raito Bezarius
7eefaeb5e3
nextcloud25: use openssl 1.1 as a PHP extension to fix RC4 encryption 2022-11-10 12:17:43 +01:00
Anderson Torres
40962b461b
Merge pull request #200300 from thiagokokada/mame-tools-init
mame-tools: init at 0.249
2022-11-10 07:45:00 -03:00
Thiago Kenji Okada
891511b619 nixos/doc: document mame package changes 2022-11-10 09:47:54 +00:00
Thiago Kenji Okada
d868053b40 nixos/doc: formatting improvements 2022-11-10 09:47:54 +00:00
Daniel Nagy
b4674b39c1
treewide: use mkEnableOption in nixos modules 2022-11-10 09:30:00 +01:00
Daniel Nagy
095269c862
treewide: use types.port in nixos modules 2022-11-10 09:30:00 +01:00
Bobby Rong
8380ac4538
nixos/cinnamon: don't override greeter theme if the package is excluded
This makes it possible to remove mint themes in an easy way, in this
case we will just use the default from slick-greeter module, i.e. the
Adwaita theme.
2022-11-10 14:47:06 +08:00
Bobby Rong
ba4494f8f6
nixos/cinnamon: make it possible to remove more non-essential packages
Packages for accessibility and theme can now be removed with excludePackages
2022-11-10 14:47:06 +08:00
Bobby Rong
bb30779791
nixos/cinnamon: fix some typos 2022-11-10 14:47:00 +08:00
Bobby Rong
e88b1dc9c8
nixos/cinnamon: switch to xdg.icons.enable
We enable this option explicitly to prevent users from accidentally
disabling it and getting a broken desktop.
2022-11-10 14:43:25 +08:00
Bobby Rong
fa3008b93c
nixos/cinnamon: switch to xdg.mime.enable
We enable this option explicitly to prevent users from accidentally
disabling it and getting a broken desktop.
2022-11-10 14:41:58 +08:00
github-actions[bot]
3ff06869dc
Merge master into haskell-updates 2022-11-10 00:16:25 +00:00
github-actions[bot]
020ea91183
Merge master into staging-next 2022-11-10 00:02:27 +00:00
Sandro Jäckel
5452a26077
nixos/lvm: replace boot.isContainer with services.lvm.enable 2022-11-09 23:47:37 +01:00
Sandro Jäckel
182575a60d
nixos/kernel: replace boot.isContainer with boot.kernel.enable 2022-11-09 23:45:33 +01:00
Guillaume Girol
255ac994b8 nixos/firefox-syncserver: fix setup failure due to duplicate key
in some circumstances, the setup service would fail with:
ERROR 1062 (23000) at line 5: Duplicate entry '1' for key 'PRIMARY'
so let's use an upsert instead of insert. This also simplifies the
script.

Besides, also fix that when the setup script changes, the corresponding
script is not restarted as it is usually not active, so we trigger a
restart of the main systemd service.
2022-11-09 23:39:08 +01:00
ajs124
bc4e9a890c nixos/redis: store config in state directory
this is needed because certain redis features, like sentinel, require
the config file to be persistent
2022-11-09 21:49:33 +01:00
Bernardo Meurer
c9e23626a1
nixos/udisks2: symlink libblockdev configs
Without this, you get the following error message in the logs:

udisksd[4082]: Failed to load config files: Failed to get contents of the config dir (/etc/libblockdev/conf.d/)Error opening directory “/etc/libblockdev/conf.d/”: No such file or directory. Using the built-in config
2022-11-09 18:30:59 +00:00
github-actions[bot]
d99020653d
Merge master into staging-next 2022-11-09 18:01:11 +00:00
Bernardo Meurer
6678a7ecb7
nixos/geoclue2: make system service wait on network-online
In ee0b8a7eaa we made the user service wait on network-online, but
forgot about the system service. We need them _both_ to wait when the
wifi source is enabled.
2022-11-09 16:50:18 +00:00
ajs124
168ad716e0 nixos/redis: add extraParams 2022-11-09 16:43:04 +01:00
Anderson Torres
3a73976c74
Merge pull request #200388 from babbaj/remove-ethminer
ethminer: remove
2022-11-09 12:06:28 -03:00
Babbaj
9a7c359a35
ethminer: remove 2022-11-09 09:37:35 -05:00
Jonas Heinrich
f7f9442695 nixos/invoiceplane: Enable clean url 2022-11-09 08:17:52 -05:00
Robert Hensing
59f6a93082
Merge pull request #199595 from hercules-ci/nixos-toplevel-maintenance
nixos/top-level: maintenance
2022-11-09 13:54:36 +01:00
Robert Hensing
93a905ec4f
Merge pull request #194759 from hercules-ci/fqdn-or-hostname
nixos: Add `networking.fqdnOrHostName`
2022-11-09 13:53:57 +01:00
github-actions[bot]
5995b81686
Merge master into staging-next 2022-11-09 06:01:29 +00:00
Oto Petřík
4729d5d7f6 nixos/proxmox-image: allow building UEFI images
Allow building other than Legacy-BIOS-only Proxmox images.
Default is unchanged.

To build UEFI proxmox image use:
  proxmox.qemuConf.bios = "ovmf";
(default is "seabios")

To build image bootable using both "seabios" and "ovmf" use:
  partitionTableType = "hybrid";
BIOS can be switched in Proxmox between "seabios" and "ovmf" and VM still boots.
(GRUB2-only, systemd-boot does not boot under "seabios")

To build systemd-boot UEFI image:
  proxmox.qemuConf.bios = "ovmf";
  boot.loader.systemd-boot.enable = true;
2022-11-09 03:19:42 +01:00
ajs124
c79f431491
Merge pull request #200201 from helsinki-systems/upd/varnish
varnish: updates
2022-11-09 01:40:41 +01:00
github-actions[bot]
8deed80953
Merge master into haskell-updates 2022-11-09 00:16:09 +00:00
github-actions[bot]
81316207ec
Merge master into staging-next 2022-11-09 00:02:55 +00:00
ajs124
65522538a3
Merge pull request #200284 from Ma27/signald-release-notes
nixos/doc: mention signald update in release-notes and related upgrade instructions
2022-11-09 00:59:55 +01:00
Maximilian Bosch
fbc4961be9
nixos/doc: mention signald update in release-notes and related upgrade instructions 2022-11-08 23:27:20 +01:00
Bjørn Forsman
25617e3def nixos/blocky: fix description
Before: "Whether to enable Fast and lightweight [...]"
After: "Whether to enable blocky, a fast and lightweight [...]"
2022-11-08 20:59:06 +01:00
Pascal Bach
ea2a9ac9d3
Merge pull request #200222 from Ma27/prometheus-hardening-regression
nixos/prometheus: fix startup w/hardened service
2022-11-08 20:33:47 +01:00
github-actions[bot]
4517d658d3
Merge master into staging-next 2022-11-08 18:01:16 +00:00
Maximilian Bosch
176676c4cf
Merge pull request #192890 from Enzime/fix/nextcloud-space-passwords
nixos/nextcloud: handle passwords with spaces
2022-11-08 18:02:04 +01:00
Maximilian Bosch
dcb32beda0
nixos/prometheus: fix startup w/hardened service
See the discussion below the original PR[1] and #197443 for more
context.

I guess I missed that upon review because the branch was too old and I
cherry-picked the commit onto my deployment branch which is based on
22.05. Sorry for that!

[1] https://github.com/NixOS/nixpkgs/pull/162784#issuecomment-1306848036
2022-11-08 17:46:35 +01:00
Maximilian Bosch
8d9133c67d
linux_4_9: remove
Support will be dropped on 01 Jan 2023[1]. Normally we'd keep it around
until then, but considering that it's an LTS kernel it may be better to
do it before 22.11 to make sure there are no unpleasant surprises.

Closes #199933

[1] https://endoflife.date/linux
2022-11-08 16:30:14 +01:00
happysalada
2c5abd89c7 rmem_max: define merge function 2022-11-08 10:30:10 -05:00
Jonas Heinrich
fd76db7cb4 nixos/invoiceplane: Add cron option 2022-11-08 09:59:10 -05:00
Philipp Hauck
cb82a002f8 nixos: correct install summary 2022-11-08 15:29:42 +01:00
ajs124
47cbd610ce varnish71: drop 2022-11-08 14:35:01 +01:00
github-actions[bot]
917a1408b8
Merge master into staging-next 2022-11-08 06:01:15 +00:00
Sandro
4f8277ef10
Merge pull request #200094 from mdlayher/mdl-zrepl 2022-11-08 01:53:26 +01:00
Sandro Jäckel
677d6f1623
nixos/changedetection-io: hide referer by default 2022-11-08 01:37:46 +01:00
github-actions[bot]
7db1be3e27
Merge master into haskell-updates 2022-11-08 00:16:51 +00:00
github-actions[bot]
8345eea2ce
Merge master into staging-next 2022-11-08 00:02:57 +00:00
Matt Layher
8ec252784e
zrepl: 0.5.0 -> 0.6.0
Signed-off-by: Matt Layher <mdlayher@gmail.com>
2022-11-07 18:35:44 -05:00
Michael Weiss
acf257739b
Merge pull request #199902 from primeos/nixos-tests-chromium
nixos/tests/chromium: Re-enable the chrome://gpu test for M107
2022-11-08 00:21:13 +01:00
Martin Weinelt
0f774a39d4
Merge pull request #196957 from Madouura/dev/protonup
close https://github.com/NixOS/nixpkgs/pull/193062
close https://github.com/NixOS/nixpkgs/issues/186974
2022-11-07 23:24:41 +01:00
Vladimír Čunát
7fa607bab4
Merge #194670: arangodb: 3.4.8 -> 3.10.0 2022-11-07 22:25:43 +01:00
laalsaas
5f07247a07 mepo: init module 2022-11-07 20:27:00 +01:00
David Arnold
2aa5c8d3ab nixos/teamviewer: fix for non-NetworkManager environments 2022-11-07 19:54:25 +01:00
Sandro
da6ae81172
Merge pull request #200052 from SuperSandro2000/less-space 2022-11-07 19:50:33 +01:00
github-actions[bot]
938efbfd26
Merge master into staging-next 2022-11-07 18:01:17 +00:00
Manuel Bärenz
891dfb1b63 nixos/mastodon: add option mediaAutoRemove 2022-11-07 18:58:58 +01:00
Sandro
eb33bec8b3
nixos/less: fix spacing 2022-11-07 17:51:51 +01:00
sternenseemann
c7a0d75bd1 haskell.compiler.ghc92: 9.2.4 -> 9.2.5 2022-11-07 17:29:47 +01:00
Bobby Rong
4e9c9c0b7c
Merge pull request #199154 from uninsane/pr/lightdm-mobile-greeter
lightdm-mobile-greeter: init at 2022-10-30
2022-11-07 22:30:53 +08:00
happysalada
1ef74a7854 lighthouse: module add defaults 2022-11-07 09:15:49 -05:00
Maximilian Bosch
58227c4de0
Merge pull request #162784 from amarshall/prom-svc-harden
nixos/prometheus: Harden systemd service
2022-11-07 15:03:43 +01:00
colin
ed9998cf2a nixos/lightdm: add greeters.mobile config option
i based this on the neighboring lightdm-greeters/mini.nix module.

lightdm-mobile-greeter doesn't have a lot of configuration options.
it grabs the default user to login as from lightdm, along with which DE
it should launch. so no further configuration should be needed aside
from enabling `services.xserver.displayManager.lightdm.enable` and
either setting `services.xserver.displayManager.defaultSession` to the
appropriate session or explicitly defining a seat like:

```nix
services.xserver.displayManager.lightdm.extraSeatDefaults = ''
  user-session = phosh
'';
```
2022-11-07 05:48:23 -08:00
happysalada
f4ff9c2649 lighthouse: init module 2022-11-07 07:58:17 -05:00
Maximilian Bosch
94046425a0
Merge pull request #199997 from mayflower/wp-create-font-dir
nixos/wordpress: ensure that fonts already exists
2022-11-07 13:25:16 +01:00
github-actions[bot]
19a0988af4
Merge master into staging-next 2022-11-07 12:01:51 +00:00
Bobby Rong
03e68946a0
Merge pull request #186628 from ocfox/pam_faildelay
nixos/pam: add option failDelay
2022-11-07 19:54:57 +08:00
Robert Hensing
abd4e9d524
Merge pull request #199572 from SuperSandro2000/nix-daemon-io-prio
nixos/nix-daemon: don't give daemon by default high io priority
2022-11-07 12:26:47 +01:00
Maximilian Bosch
67e61879c5
Merge pull request #199416 from symphorien/wg-add-peer
nixos/wireguard: start new peers when they are added
2022-11-07 12:20:06 +01:00
ocfox
ab0ae8f5e1
nixos/pam: add option failDelay
Co-authored-by: Bobby Rong <rjl931189261@126.com>
2022-11-07 19:16:35 +08:00
Majiir Paktu
ad83bff008 nixos/binfmt: restart systemd-binfmt when registrations change 2022-11-07 11:28:47 +01:00
Maximilian Bosch
b40b8b92e2
nixos/wordpress: ensure that fonts already exists
Not a big deal in most of the cases because wordpress ensures that this
directory exists on its own, but with our twentig customizations that's
actually causing issues.

(cherry picked from commit 3285342bfe5f401dda84c13c834e73154928a61c)
2022-11-07 10:08:01 +01:00
Edward Tjörnhammar
83ecc90d10 nixos/mdevctl: init module 2022-11-07 09:05:23 +00:00
illustris
140bd1aef4
hbase: update versions and remove EoL version
- remove 1.7
- 2.4.11 -> 2.4.15
- init 2.5.1
- 3.0.0-alpha-2 -> 3.0.0-alpha-3
2022-11-07 12:01:36 +05:30
github-actions[bot]
5f9b3cb99e
Merge master into staging-next 2022-11-07 06:01:28 +00:00
zowoq
58a59738d5 nixos/tests/podman: fix rootless systemd 2022-11-07 14:11:34 +10:00
zowoq
bbfdc6ce4d nixos/tests/podman: move docker tests to separate node 2022-11-07 14:11:34 +10:00
github-actions[bot]
e51ba60580
Merge master into staging-next 2022-11-07 00:03:30 +00:00
Maximilian Bosch
f54c651ba5
Merge pull request #199905 from booklearner/patch-1
alps: fix default smtp port
2022-11-06 23:59:21 +01:00
Doron Behar
c568890eb8
Merge pull request #133537 from Yarny0/foomatic-db
foomatic-db ppd files
2022-11-06 22:25:55 +00:00
Lily Foster
c2b3c9794d nixosTests: test spaces in mount options via btrfs subvols
Also enabled the btrfs tests for installer-systemd-stage-1 again
2022-11-06 22:15:35 +01:00
Atemu
753f883c35 stage-1: escape mount points and options
mountFS adds these strings to fstab and then relies on `mount` parsing fstab. If
they have spaces or tabs in them, that would break fstab and therefore not mount
with the unhelpful error: No such file or directory.

Co-authored-by: Lily Foster <lily@lily.flowers>

Co-authored-by: Luflosi <Luflosi@users.noreply.github.com>
2022-11-06 22:15:31 +01:00
Jörg Thalheim
efa5fc967f
Merge pull request #199875 from helsinki-systems/fix/mariadb-tests
mariadb: fix nixos tests
2022-11-06 22:11:53 +01:00
booklearner
59bd411df9
alps: fix default smtp port 2022-11-06 16:00:34 -05:00
Michael Weiss
673f7d025b
nixos/tests/chromium: Re-enable the chrome://gpu test for M107
I need to fix copying the chrome://gpu content to the clipboard (Ctrl+a doesn't
work anymore so we have to click the button) but we can at least test the font
rendering for now.
2022-11-06 21:48:57 +01:00
Jörg Thalheim
1d442b3b68
Merge pull request #186087 from Mic92/consul
nixos/consul: use signal instead of api for reload
2022-11-06 20:32:19 +01:00
Domen Kožar
8993cc730d
Merge pull request #199770 from domenkozar/nixos-options-markdown
nixos options markdown: fix html escaping
2022-11-06 18:08:59 +00:00
github-actions[bot]
6e2df29235
Merge master into staging-next 2022-11-06 18:01:32 +00:00
ajs124
f22af0612d mariadb: fix nixos tests
after 8b30afdd78
2022-11-06 18:49:17 +01:00
Jakub Okoński
12508ac79a nixos-container: force systemd-nspawn to use unified cgroups hierarchy 2022-11-06 17:12:02 +01:00
Yarny0
6f622e91c5 cups-drv-rastertosag-gdi (cups driver): gzip ppd files
ppd files are gzipped to save some space.
The `gzip` "-n" option prevents gzip from storing
a timestamp, thus facilitating reproducibility.
2022-11-06 16:19:22 +01:00
Madoura
e747d0a368
protonup-ng: init at 0.2.1
Co-authored-by: IceDBorn <github.envenomed@dralias.com>
2022-11-06 09:05:55 -06:00
Naïm Favier
0cc3d43a70
Merge pull request #191796 from hmenke/njs
nginxModules.njs: init at 0.7.8
2022-11-06 13:31:03 +01:00
github-actions[bot]
e8dd554943
Merge master into staging-next 2022-11-06 12:01:29 +00:00
Maximilian Bosch
91d7b27cfb
Merge pull request #189756 from alyssais/mailman-virtualRoot
nixos/mailman: add serve.virtualRoot option
2022-11-06 12:42:48 +01:00
Naïm Favier
7e14da4b2f
Merge pull request #199785 from xeals/influxdb2-timezone 2022-11-06 12:17:28 +01:00
Franz Pletz
7519cb2c7c
Merge pull request #198638 from KFearsoff/fix-node-exporter-netdev-collector
nixos/prometheus-node-exporter: fix netdev collect
2022-11-06 12:05:09 +01:00
Bobby Rong
59727943df
Merge pull request #196877 from luochen1990/fix-synergy-server-tls
synergy: fix services.synergy.server.tls.cert (#196867)
2022-11-06 17:41:02 +08:00
xeals
de4601c37e
nixos/influxdb2: set timezone data environment variable
Go reads the timezone database from ZONEINFO instead of TZDIR, which is otherwise
unset.
2022-11-06 11:12:42 +11:00
github-actions[bot]
a46c8c1b26
Merge master into staging-next 2022-11-06 00:02:47 +00:00
Domen Kožar
e190302018 nixos options markdown: fix html escaping
\<foo\> will often be displayed like \<foo>, for example by mkdocs.

I've tested a number of markdown renderers and they render html escape
sequences fine.
2022-11-05 21:20:01 +00:00
Henri Menke
9ab02e1ec6
nginxModules.njs: init at 0.7.8 2022-11-05 21:40:57 +01:00
Maximilian Bosch
dc03bcda57
Merge pull request #199683 from robryk/wrappertests
nixos/security/wrappers: add test
2022-11-05 20:57:46 +01:00
github-actions[bot]
a8cf6897e5
Merge master into staging-next 2022-11-05 18:01:11 +00:00
Maximilian Bosch
19bf0264bb
Merge pull request #199345 from Ma27/bump-nextcloud
nextcloud: 24.0.6 -> 24.0.7, 25.0.0 -> 25.0.1
2022-11-05 17:19:09 +01:00
Bjørn Forsman
f23ddc55a6 nixos/sane: mention sane-airscan in the extraBackends option
It's a very useful backend (that probably should be enabled by default,
like on Ubuntu), let's start by making it easier to discover.

Ref https://github.com/NixOS/nixpkgs/issues/28406.
2022-11-05 16:19:04 +01:00
Martin Weinelt
98a7c26e26
Merge pull request #193041 from vlinkz/calamaresmoduleupdate 2022-11-05 15:40:20 +01:00
Martin Weinelt
7bbc6e29b1 nixos/home-assistant: update bluetooth components 2022-11-05 13:30:17 +01:00
github-actions[bot]
3674d6a755
Merge staging-next into staging 2022-11-05 12:02:05 +00:00
Robert Obryk
3628ad0a9e nixos/security/wrappers: add test
This is a small smoke test of each piece (setuid, setgid, caps) of
wrappers' functionality. It doesn't try to check for combinations of
functionalities or anything more complicated.
2022-11-05 12:38:11 +01:00
happysalada
9c341e1ba3 erigon: init module 2022-11-05 06:36:29 -04:00
Bjørn Forsman
4fbec87a5b nixos/sane: point env vars to /etc for quick reload
Point $SANE_CONFIG_DIR and $LD_LIBRARY_PATH to symlinks in /etc, instead
of directly to nix store paths, so that activating a new configuration
takes effect immediately, instead of requiring users to re-login.
2022-11-05 10:40:51 +01:00
github-actions[bot]
52c99d862c
Merge staging-next into staging 2022-11-05 06:02:05 +00:00
Artturi
bed653c5fa
Merge pull request #164169 from martinetd/logrotate_post_cleanup
logrotate: cleanup legacy options
2022-11-05 04:27:33 +02:00
Lin Jian
fb445b517e nixos/fish: use a local version of runCommand for babelfishTranslate
Building etc."fish/setEnvironment.fish" needs
config.system.build.setEnvironment, which can be very large. And what
babelfishTranslate does is to translate env vars exported by bash
syntax, which does not need much computing power.

This patch can reduce the network traffic when using remote builders
with almost no harm.
2022-11-04 18:35:18 -07:00
Dominique Martinet
665d896244 logrotate: add services.logrotate.settings example 2022-11-05 10:34:04 +09:00
Dominique Martinet
01ff1dd23f logrotate service: cleanup deprecated options 2022-11-05 10:34:03 +09:00
Robert Hensing
9299483604 nixos/top-level.nix: Move configurationName to grub.nix
The configuration-name file is grub specific, so it should not be
in top-level.nix.
2022-11-05 00:25:46 +01:00
Robert Hensing
37fa46a224 nixos/top-level.nix: Remove workaround for #156533 2022-11-05 00:25:46 +01:00
Robert Hensing
0b05ed2c78 nixos/specialisation.nix: Extract module 2022-11-05 00:25:46 +01:00
Robert Hensing
d3ac0938a7 nixos/top-level.nix: Make extensible
(cherry picked from commit 4ec415cff9)
2022-11-05 00:05:26 +01:00
Sandro
8017d9e2da
nixos/nix-daemon: don't give daemon by default high io priority
According to https://www.freedesktop.org/software/systemd/man/systemd.exec.html#IOSchedulingClass= the default is 4
2022-11-04 22:07:05 +01:00
github-actions[bot]
07bf88ec8f
Merge staging-next into staging 2022-11-04 18:01:42 +00:00
Guillaume Girol
c5df8359df nixos/wireguard: start new peers when they are added
when a new peer is added, it does not modify any active units, because
the interface unit remains the same. therefore the new peer is not added
until next reboot or manual action.
2022-11-04 15:35:21 +01:00
Yannick Markus
50f308b059 nixos/prometheus-zfs-exporter: init 2022-11-04 14:43:01 +01:00
Bjørn Forsman
8973da1d91 nixos/tests/bazarr: set timezone to fix runtime failure
Ref. https://github.com/morpheus65535/bazarr/issues/1983.
2022-11-04 14:10:31 +01:00
Bjørn Forsman
166c9c8269 nixos/tests/bazarr: fix eval error
The test still doesn't pass, it has some runtime issues as well.

Fixes: 5803706662 ("nixos/tests: fix type mismatch in wait_for_open_port")
2022-11-04 14:10:31 +01:00
ajs124
92fe5610ff
Merge pull request #199094 from NickCao/pdns
pdns: 4.6.3 -> 4.7.2
2022-11-04 14:09:36 +01:00
github-actions[bot]
194df35602
Merge staging-next into staging 2022-11-04 06:02:00 +00:00
Anderson Torres
97f523e3c8
Merge pull request #185688 from bb2020/usbstor
nixos/usbStorage: add new option
2022-11-03 22:33:20 -03:00
Nick Cao
bbc2675e19
nixos/pdns: add note about schema change to release note 2022-11-04 09:07:27 +08:00
github-actions[bot]
08b08d0caf
Merge staging-next into staging 2022-11-04 00:03:34 +00:00
Franz Pletz
0fc1caab21
Merge pull request #199158 from aaronjheng/perf-trace 2022-11-04 00:19:56 +01:00
ajs124
f888abe781
Merge pull request #198484 from LeSuisse/cassandra-2-drop
cassandra_2_1, cassandra_2_2: drop
2022-11-04 00:05:42 +01:00
ajs124
2dd8b1bebf
Merge pull request #198998 from LeSuisse/percona-server56-drop
percona-server56: drop
2022-11-03 23:56:30 +01:00
Aaron Jheng
d7618af3d8
perf: remove trace binary 2022-11-03 22:31:38 +00:00
ajs124
42ec4ec905
Merge pull request #198303 from cleeyv/jitsi-update
Update of all Jitsi Meet components
2022-11-03 22:57:04 +01:00
Cleeyv
6873292f43 nixos/tests/jibri: remove grep for obsolete videobridge health check
As already fixed earlier this year in the jitsi-meet test by @ajs124
729764a32d
2022-11-03 17:00:45 -04:00
ajs124
bdcc05301a
Merge pull request #198748 from Mic92/tt-rss
tt-rss: 2021-06-21 -> 2022-10-15
2022-11-03 20:48:34 +01:00
kekrby
f938099de1 nixos/modules/config/gtk/gtk-icon-cache: do not generate icon caches for files in $out/share/icons
Icon caches should be generated for directories under $out/share/icons, as the comments mention, but it is done for files as well which does not make the build fail but results in files under $out/share/icons being turned into empty directories, see /run/current-system/sw/share/icons/gnome-logo-text.svg as an example.
2022-11-03 18:45:29 +03:00
Maximilian Bosch
ad21c759d4
nixos/nextcloud: fix upgrade warning 2022-11-03 14:32:21 +01:00
talyz
d65910761c
nixos/keycloak: Escape database password properly 2022-11-03 14:15:53 +01:00
Guillaume Girol
5d07c39b14 nixos/power-management: fix deadlock with post-resume.{target,service}
Fixes a deadlock where post-resume.target has After=post-resume.service
and post-resume.service runs systemctl try-restart post-resume.target
the systemctl call cannot complete if post-resume.target was already
queued at that time.
2022-11-03 12:00:00 +00:00
github-actions[bot]
3e5d1d0000
Merge staging-next into staging 2022-11-02 18:02:19 +00:00
Victor Fuentes
f4e541427e
calamares-cd: default supporting all locales 2022-11-02 13:59:53 -04:00
Domen Kožar
a14e3dfaa5
Merge pull request #199182 from jfroche/fix/missing-module-ref
nixos/cachix-watch-store: fix missing reference to the module
2022-11-02 16:52:53 +00:00
Vladimír Čunát
27eae99b3e
Merge #198236: staging-next 2022-10-28 2022-11-02 17:33:20 +01:00
Jean-François Roche
7506fbd7f4
nixos/cachix-watch-store: fix missing reference to the module
I forgot to add the module to the list when I have added the module (dc529302fe)
2022-11-02 17:00:45 +01:00
Pavol Rusnak
6d973d7389
Merge pull request #199147 from erikarvstedt/fix-bitcoind-startup
nixos/bitcoind: fix rare startup error
2022-11-02 13:55:46 +01:00
Bernardo Meurer
c459a3638a
Merge pull request #198992 from lovesegfault/kernel-drop-eol 2022-11-02 12:48:53 +00:00
github-actions[bot]
71d2c63882
Merge staging-next into staging 2022-11-02 12:02:01 +00:00
github-actions[bot]
4b05cc6f66
Merge master into staging-next 2022-11-02 12:01:31 +00:00
Erik Arvstedt
828cd4c895
nixos/bitcoind: fix rare startup error
Previously, dhcpcd and bitcoind starting up in parallel could lead to
the following error in bitcoind:
```
bitcoind: libevent: getaddrinfo: address family for nodename not supported
bitcoind: Binding RPC on address 127.0.0.1 port 8332 failed.
bitcoind: Unable to bind any endpoint for
```
After the initial failure, the bitcoind service would always restart successfully.

This race condition, where both applications were simultaneously
manipulating network resources, was only triggered under specific
hardware conditions.

Fix it by running bitcoind after dhcp has started (by running after
`network-online.target`).
This bug and the fix only affect the default NixOS scripted
networking backend.
2022-11-02 12:31:40 +01:00
Jörg Thalheim
951f81c0cc
nixos/systemd-unit-options: document correct wantedBy default for user units (#199007)
Until this commit, the documentation suggested `multi-user.target`
as `wantedBy` for all services.
Since `multi-user.target` is not available for user services,
propose a different default for those in the documentation.

Co-authored-by: Naïm Favier <n@monade.li>
Co-authored-by: Florian Warzecha <liketechnik@disroot.org>
2022-11-02 07:03:22 +00:00
github-actions[bot]
ff1df95c8f
Merge staging-next into staging 2022-11-02 06:05:15 +00:00
github-actions[bot]
d6b8789005
Merge master into staging-next 2022-11-02 06:04:45 +00:00
Julien Moutinho
e1930cf933 nixos/sourcehut: removing myself from maintainers
Sourcehut is too complex, fast moving and RAM hungry for me.
I'll make do with gitolite and public-inbox for now.
2022-11-01 21:56:37 -04:00
github-actions[bot]
452026e7da
Merge staging-next into staging 2022-11-02 00:03:04 +00:00
github-actions[bot]
075f0857dd
Merge master into staging-next 2022-11-02 00:02:32 +00:00
Naïm Favier
814628a45d
Merge pull request #174951 from dpausp/fix-pam-tty-audit 2022-11-01 23:50:58 +01:00
Sandro
a01b2b807e
Merge pull request #197221 from azahi/endlessh-module 2022-11-01 23:44:25 +01:00
Sandro
796cc1ad51
Merge pull request #198532 from raindev/syncthing-devices-folders 2022-11-01 23:28:33 +01:00
Sandro
b9f986fb41
Merge pull request #199004 from SuperSandro2000/vmware-guest-xserver 2022-11-01 22:58:46 +01:00
Sandro
dcb0e1f692
Merge pull request #194059 from onny/invoiceplane-test 2022-11-01 22:53:13 +01:00
Jonas Heinrich
a6e8bd09f3 invoiceplane: 1.5.11 -> 1.6-beta-1 2022-11-01 19:48:09 +01:00
github-actions[bot]
5a70f6da92
Merge staging-next into staging 2022-11-01 18:01:39 +00:00
github-actions[bot]
ef41cdba6c
Merge master into staging-next 2022-11-01 18:01:10 +00:00
Sandro
597ed547fc
Merge pull request #198637 from prusnak/miniupnpc 2022-11-01 18:17:18 +01:00
Sandro
4ca8261132
nixos/vmware-guest: depend headless option on xserver availability 2022-11-01 16:57:30 +01:00
Pavol Rusnak
d7788c7303
miniupnpc_1: drop
- it is time to drop 6 years old version
- no package really requires miniupnpc 1.x
- miniupnpc package now defaults to 2.x
2022-11-01 16:55:31 +01:00
Thomas Gerbet
2669e59da4 percona-server56: drop
Percona Server for MySQL 5.6 is no more maintained due to the EOL of MySQL 5.6.
See https://www.percona.com/downloads/Percona-Server-5.6/LATEST/.

A bit hard to list all the potential security issues affecting it but CVE-2021-27928
should be one of them.
2022-11-01 16:30:21 +01:00
Bernardo Meurer
8cc5d8e32a
linuxKernel.kernels.linux_5_19: drop
The 5.19.x series has reached EOL, and is no longer supported upstream.
2022-11-01 15:15:08 +00:00
Sandro
fad5f168d2
Merge pull request #197010 from tpwrules/disable-qt-cache 2022-11-01 16:09:35 +01:00
Bobby Rong
d8d07760bc
Merge pull request #197043 from r-ryantm/auto-update/dolibarr
dolibarr: 16.0.0 -> 16.0.1
2022-11-01 21:32:37 +08:00
Bobby Rong
48adf8f8d1
nixos/tests/dolibarr: add to all-tests 2022-11-01 21:02:39 +08:00
Izorkin
c09fd120cc
nixos/nginx: add proxyCache options 2022-11-01 10:07:38 +03:00
github-actions[bot]
facfd56509
Merge master into staging-next 2022-11-01 00:02:56 +00:00
Thiago Kenji Okada
21fdd3855b
Merge pull request #198590 from zhaofengli/cemu-wiiu
cemu: init at 2.0-10
2022-10-31 20:48:52 +00:00
Zhaofeng Li
4f57829303 rl-2211: Mention the cemu-ti rename
The cemu-ti rename was done in #188939.
2022-10-31 14:03:26 -06:00
talyz
b82316bc91
nixos/keycloak: Escape admin password properly 2022-10-31 19:20:35 +01:00
John Soo
f2585031bf
arangodb: document new parameters and aarch64-linux drop 2022-10-31 09:55:55 -07:00
github-actions[bot]
76cceffaf9
Merge master into staging-next 2022-10-31 12:01:26 +00:00
Stanisław Pitucha
08fbb5de2d
Merge pull request #190325 from fgaz/merecat/init
merecat: init at 2.31
2022-10-31 21:23:03 +11:00
Maximilian Bosch
2d79fdf801
Merge pull request #198142 from SuperSandro2000/nextcloud-logType
nixos/nextcloud: allow changing logType
2022-10-31 10:57:00 +01:00
Naïm Favier
8f571534c9
Merge pull request #194766 from ncfavier/proxy-arp 2022-10-31 09:59:56 +01:00
Francesco Gazzetta
b43605fb03 nixos/merecat: init 2022-10-31 09:24:28 +01:00
Smaug123
73a4e61349 tt-rss: 2021-06-21 -> 2022-08-01
Pull in a year of upstream changes.
This update will involve two database migrations when logging in to the
resulting service.
2022-10-31 07:50:31 +01:00
github-actions[bot]
5a9ca012a5
Merge master into staging-next 2022-10-31 06:01:16 +00:00
Sandro
b99b28431c
Merge pull request #197987 from SuperSandro2000/grafana-socket 2022-10-31 01:45:42 +01:00
github-actions[bot]
9d424dbc41
Merge master into staging-next 2022-10-31 00:02:32 +00:00
Izorkin
c4f9538875
nixos/peertube: fix start services 2022-10-31 01:44:13 +03:00
Izorkin
15959cdc5f
nixos/peertube: add quic header to nginx configuration 2022-10-31 01:44:12 +03:00
Izorkin
d4296648b5
nixos/peertube: add hsts header to nginx configuration 2022-10-31 01:34:29 +03:00
Sandro
00bde1ac69
Merge pull request #197870 from SuperSandro2000/udev-enable 2022-10-30 19:58:23 +01:00
Sandro
4d4fdde2cf
Merge pull request #197876 from iopq/alt-history 2022-10-30 19:51:28 +01:00
Sandro
4f989630d2
Merge pull request #197989 from SuperSandro2000/healthchecks 2022-10-30 19:46:18 +01:00
Bjørn Forsman
fcf81f91a3 nixos/jenkins-job-builder: better defaults for accessUser/accessTokenFile
The new defaults allows jenkins-job-builder to reload the configuration
out-of-the-box, whereas the previous defaults required users to manually
reload/restart jenkins, or configure accessUser/accessTokenFile
themselves.

(If `extraJavaOptions = [ "-Djenkins.install.runSetupWizard=false" ]`
then the initial admin user is *not* created and you have to use JCasC
or something else to bootstrap.)
2022-10-30 19:01:48 +01:00
github-actions[bot]
4f746003cf
Merge master into staging-next 2022-10-30 18:01:14 +00:00
John Soo
86e1247a47
arangodb: note removal of old versions in rl-2211 notes 2022-10-30 10:22:11 -07:00
Winter
4abe8dcd61 nixos/mautrix-telegram: fix link to example config 2022-10-30 13:20:16 -04:00
Winter
8e803f4364 nixos/mautrix-telegram: add new required config option 2022-10-30 13:20:16 -04:00
maxine
700de524b4
Merge pull request #198390 from euank/k3s-tests-fixup
nixos/tests/k3s: fix multi-node test
2022-10-30 14:40:21 +01:00
KFears
b3782f29ff nixos/prometheus-node-exporter: fix netdev collect
Netdev collector needs AF_NETLINK permissions to work. It will fail with
the message "couldn't get netstats: socket: address family is not
supported by protocol" otherwise.
2022-10-30 14:59:05 +04:00
github-actions[bot]
a7989ee51a
Merge master into staging-next 2022-10-30 06:01:22 +00:00
Kevin Cox
610fcf1243 nixos/mautrix-facebook: add new required config option 2022-10-29 20:59:36 -04:00
github-actions[bot]
7cf1999911
Merge master into staging-next 2022-10-30 00:02:33 +00:00
Andrew Barchuk
43bc09e037
nixos/syncthing: keep manually added dirs/devices
If folders and devices are not configured explicitly, do not wipe the
changes done via the web GUI. Currently the list of devices or folders
will be reset unless overrideFolders/overrideDevices is disabled.
2022-10-30 00:22:00 +02:00
Mario Rodas
1fb589678b
Merge pull request #197906 from jtojnar/postgres-upgrading-exts
doc/nixos/postgress: Mention extensions in upgrading
2022-10-29 14:25:46 -05:00
github-actions[bot]
d3cd7d0199
Merge master into staging-next 2022-10-29 18:01:22 +00:00
Federico Beffa
06bc65dd16 nixos/languagetool: fix startup configuration option 2022-10-29 18:05:53 +02:00
Thomas Gerbet
c7c4f66546 cassandra_2_1, cassandra_2_2: drop
Cassandra 2.x is no more supported upstream and is affected by some vulnerabilities
(CVE-2020-13946, CVE-2020-17516).
2022-10-29 17:49:57 +02:00
Florian Klink
55c1fca0d8
Merge pull request #198336 from ck3d/doc-overrideStrategy
doc/rl-2211: add new option overrideStrategy
2022-10-29 16:24:42 +01:00
Christian Kögler
fa269d4e0d doc/rl-2211: add new option overrideStrategy 2022-10-29 16:19:50 +02:00
github-actions[bot]
18b25cbb99
Merge master into staging-next 2022-10-29 12:01:19 +00:00
Martin Weinelt
f3c660e95b
Merge pull request #198298 from yorickvP/int-rm-leading-zeroes 2022-10-29 12:37:51 +02:00
Naïm Favier
3a13505cc8
Merge pull request #194644 from the-argus/feat/mkdefault-etc-issue 2022-10-29 11:44:06 +02:00
Thiago Kenji Okada
f83198ab9c
Merge pull request #171680 from bryanasdev000/zfshibernation
nixos/zfs: introduce option to control hibernation
2022-10-29 10:37:52 +01:00
Bryan A. S
a53858010b nixos/zfs: introduce option to control hibernation 2022-10-29 04:46:27 -03:00
Euan Kemp
9d477c37ac nixos/tests/k3s: fix multi-node test
This corrects the multi-node test after a couple recent changes which
resulted in it being broken.

The `lib.toString` change was an incorrect tree-wide refactor, and the
aarch64 change also introduced an error in python indentation/formatting
I believe.
2022-10-28 21:03:30 -07:00
github-actions[bot]
f349a716a3
Merge master into staging-next 2022-10-29 00:02:26 +00:00
Robert Hensing
39b10ad867
Merge pull request #198294 from edolstra/no-toString
nixos/modules/misc/documentation.nix: Don't use toString on a path
2022-10-28 22:28:08 +02:00
github-actions[bot]
6e5f43a5bd
Merge master into staging-next 2022-10-28 18:01:29 +00:00