nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-27 09:23:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
488,942 Commits 236 Branches 124 Tags 7.7 GiB
537c6ede55
Commit Graph

33530 Commits

Author SHA1 Message Date
Ryan Lahfa
537c6ede55
Merge pull request #234266 from emilylange/qemu-vm-2047mb 
nixos/qemu-vm: add `virtualisation.memorySize < 2048` assertion on 32bit
 2023-05-27 15:31:00 +02:00
Nick Cao
cf58ff13a3
Merge pull request #234254 from kevincox/mautrix-facebook-appservice-id 
nixos.mautrix-facebook: Fix appservice name
 2023-05-26 19:48:00 -06:00
Raito Bezarius
69bb0f94de nixos/nginx: first-class PROXY protocol support 
PROXY protocol is a convenient way to carry information about the
originating address/port of a TCP connection across multiple layers of
proxies/NAT, etc.

Currently, it is possible to make use of it in NGINX's NixOS module, but
is painful when we want to enable it "globally".
Technically, this is achieved by reworking the defaultListen options and
the objective is to have a coherent way to specify default listeners in
the current API design.
See `mkDefaultListenVhost` and `defaultListen` for the details.

It adds a safeguard against running a NGINX with no HTTP listeners (e.g.
only PROXY listeners) while asking for ACME certificates over HTTP-01.

An interesting usecase of PROXY protocol is to enable seamless IPv4 to
IPv6 proxy with origin IPv4 address for IPv6-only NGINX servers, it is
demonstrated how to achieve this in the tests, using sniproxy.

Finally, the tests covers:

- NGINX `defaultListen` mechanisms are not broken by these changes;
- NGINX PROXY protocol listeners are working in a final usecase
  (sniproxy);
- uses snakeoil TLS certs from ACME setup with wildcard certificates;

In the future, it is desirable to spoof-attack NGINX in this scenario to
ascertain that `set_real_ip_from` and all the layers are working as
intended and preventing any user from setting their origin IP address to
any arbitrary, opening up the NixOS module to bad™ vulnerabilities.

For now, it is quite hard to achieve while being minimalistic about the
tests dependencies.
 2023-05-26 19:48:26 +02:00
emilylange
5dbd4f3243
nixos/qemu-vm: add virtualisation.memorySize < 2048 assertion on 32bit 2023-05-26 19:43:58 +02:00
Kevin Cox
5242aea64f
nixos.mautrix-facebook: Fix appservice name 
It appears that newer mautrix-facebook versions default to the appservice name `facebook`. This was breaking our registration and causing mautrix-facebook to fail to start. This changes the name back and makes the registration generated match whatever the setting in the app is.
 2023-05-26 12:39:37 -04:00
Ryan Lahfa
435237d641
Merge pull request #233350 from GrahamDennis/grahamdennis/testing-networks 
nixos/qemu-vm: add option for named network interfaces
 2023-05-26 15:57:01 +02:00
Weijia Wang
9b6c126355
Merge pull request #234116 from chkno/nar-serve-fix 
nixos/tests/nar-serve: Fix
 2023-05-26 11:43:24 +03:00
Scott Worley
8dcfb6853c nixos/tests/nar-serve: Fix 2023-05-25 19:10:22 -07:00
lucasew
8587646ef3 nixos/virtualisation/google-compute-config: minor refactoring 
Signed-off-by: lucasew <lucas59356@gmail.com>
 2023-05-26 00:56:32 +00:00
Yaya
ae47862b93 nixos/doc: add release note for sftpgo 2023-05-25 22:46:15 +02:00
Yaya
931a1b97f7 nixos/tests/sftpgo: init 2023-05-25 22:46:15 +02:00
Yaya
f63f781063 nixos/sftpgo: init 
A fully featured and highly configurable SFTP server with optional
HTTP/S, FTP/S and WebDAV support.

https://github.com/drakkan/sftpgo
 2023-05-25 22:46:15 +02:00
Jenny
0adbf8feb4
nixos/pam_mount: fix mounts without options (#234026) 
This commit adds a comma in front of the given options, which makes the
mounts still succeed even if no options are given.

Fixes #233946
 2023-05-25 22:45:59 +02:00
Sandro
86b0cdb24b
Merge pull request #233517 from illustris/pve-fix 
nixos/proxmox-image: fix qemu build failure
 2023-05-25 22:07:14 +02:00
Sandro
ef2a17c946
Merge pull request #232339 from bl1nk/bl1nk/thelounge-package-option 
nixos/thelounge: add package option
 2023-05-25 22:04:22 +02:00
Sandro
e29207b95a
Merge pull request #231630 from OPNA2608/fix/mir_keyboard_missing 
mir: Pull patch to fix evdev device misses
 2023-05-25 21:40:42 +02:00
Will Fancher
fe43923a70
Merge pull request #229767 from mberndt123/mberndt123/stratis-rootfs 
nixos/stratis: initrd support for stratis root volumes
 2023-05-25 14:06:31 -04:00
Sandro
1b40315504
Merge pull request #233092 from midchildan/chore/mirakurun/node18 2023-05-25 14:47:50 +02:00
illustris
6a20c13258
nixos/proxmox-image: fix qemu build failure 2023-05-25 16:25:43 +05:30
Weijia Wang
67e3953505 foundationdb: default to foundationdb71 2023-05-25 01:08:10 +03:00
Weijia Wang
94dca479f4
Merge pull request #229321 from kira-bruneau/clonehero 
clonehero: 0.23.2.2 -> 1.0.0.4080
 2023-05-25 01:03:18 +03:00
nyanotech
3aad03a464 nixos/sshd: detect duplicate config keys 2023-05-25 00:01:03 +02:00
Syboxez Blank
47a2d457b0 clonehero: 0.23.2.2 -> 1.0.0.4080 
Co-authored-by: Kira Bruneau <kira.bruneau@pm.me>
 2023-05-24 17:07:32 -04:00
Artturi
9cde82ecd2
Merge pull request #231996 from amjoseph-nixpkgs/pr/release-notes/powerpc64le-linux 2023-05-25 00:04:45 +03:00
Artturi
05bf5e1c91
Merge pull request #232001 from amjoseph-nixpkgs/pr/release-notes/powerpc-ieee-long-double 2023-05-25 00:03:40 +03:00
midchildan
c3346f87c4
mirakurun: use node 18 
Relates to #229910.
 2023-05-25 03:44:13 +09:00
Maximilian Bosch
40dcc3375c
Merge pull request #232837 from emilylange/nixos/synapse 
nixos/synapse: allow omitting `trusted_key_servers[].verify_keys`
 2023-05-24 16:28:03 +02:00
zowoq
7a697fefe2 nixosTests.etcd-cluster: update name 2023-05-24 14:14:05 +10:00
zowoq
3865e5f46e nixosTests.etcd-cluster: fix test 
match changes in 25f3323d60
 2023-05-24 14:14:05 +10:00
Graham Dennis
8e58daad02 nixos/qemu-vm: quoted string reformat 2023-05-24 08:54:22 +10:00
Graham Dennis
93502aa3b1 nixos/qemu-vm: add option for named network interfaces 
Adds a new option to the virtualisation modules that enables specifying explicitly named network interfaces in QEMU VMs.
The existing `virtualisation.vlans` option is still supported for cases where the name of the network interface is irrelevant.
 2023-05-24 08:54:20 +10:00
Ryan Lahfa
0d13962366
Merge pull request #233518 from tie/bios-bootable-x86 
nixos/iso-image: enable BIOS boot by default if possible
 2023-05-23 17:05:21 +02:00
Ryan Lahfa
078d3ebcaa
Merge pull request #232235 from cyberus-technology/outline-0.69.2 
outline: 0.68.1 -> 0.69.2
 2023-05-23 15:14:18 +02:00
Matthias Berndt
feb5a3cdcd remove unneeded import 2023-05-23 14:56:49 +02:00
Robert Hensing
983bf78c16
Merge pull request #233397 from Kranzes/hci-module 
nixos/hercules-ci-agent: sync module with upstream
 2023-05-23 14:17:28 +02:00
Alexander Sieg
5ade08168a
outline: add nixos test 2023-05-23 12:03:39 +02:00
Alexander Sieg
74bc42615c
outline: 0.68.1 -> 0.69.2 2023-05-23 10:44:02 +02:00
Robert Hensing
81a6201117
Merge pull request #233546 from bobby285271/fix/manual 
rl-2311: Add placeholder entries
 2023-05-23 09:21:46 +02:00
Maximilian Bosch
c0bbecef87
Merge pull request #232276 from LeSuisse/broken-php80-packages 
grocy, limesurvey: mark as broken due to lack of PHP 8.1 compatibility
 2023-05-23 07:19:17 +02:00
Bobby Rong
44b98d80ea
rl-2311: Add placeholder entries 
This fixes manual-combined validation.
 2023-05-23 12:59:58 +08:00
Ivan Trubach
c68a5bb85a nixos/iso-image: enable BIOS boot by default if possible 
The change introduced in commit e5b072eca1
breaks backwards compatibility for some users, see
e5b072eca1 (commitcomment-113775008)
https://github.com/NixOS/nixpkgs/pull/219351#discussion_r1139773448

This change updates the implementation to enable BIOS boot if possible
for the build and host platforms, and also assert that BIOS boot is not
enabled for non-x86 host platforms.
 2023-05-23 04:43:31 +03:00
Sandro
493c6d8505
Merge pull request #233053 from midchildan/chore/epgstation/node18 
epgstation: use node18 + other fixes
 2023-05-23 01:48:26 +02:00
Raito Bezarius
2c28f1de7c 23.11 is Tapir 2023-05-22 21:16:04 +02:00
0x4A6F
afad0c152b
Merge pull request #214428 from mweinelt/frigate-init 
frigate: init at 0.12.0
 2023-05-22 18:29:37 +02:00
Ryan Lahfa
2e1e1f8765
Merge pull request #231502 from SuperSandro2000/portunus-openldap 
nixos/portunus: use openldap compiled with libxcrypt-legacy
 2023-05-22 18:20:52 +02:00
Naïm Favier
7b28ea6783
Merge pull request #233377 from ncfavier/revert-226088 
Revert "nixos/syncthing: use rfc42 style settings"
 2023-05-22 16:35:04 +02:00
Martin Weinelt
c7ad6560b0
nixos/tests/frigate: init 
Starts a frigate instance with a dummy video stream provided by ffmpeg.

Co-Authored-By: fleaz <mail@felixbreidenstein.de>
 2023-05-22 16:29:55 +02:00
Martin Weinelt
f11d33afb7
nixos/frigate: init 2023-05-22 16:29:54 +02:00
Martin Weinelt
958fc81472
Merge pull request #216786 from mweinelt/go2rtc 
go2rtc: init at 1.5.0
 2023-05-22 16:00:54 +02:00
Will Fancher
636e03bef3
Merge pull request #232533 from nikstur/systemd-repart-create-root 
nixos/systemd-repart: enable creating root partition
 2023-05-22 09:13:00 -04:00