Kerstin
5c01128ec0
Merge pull request #117501 from Izorkin/update-mastodon-redis
...
nixos/mastodon: use unix socket for redis
2024-02-16 17:27:08 +01:00
Izorkin
cf62e3257f
nixos/mastodon: redis now uses unix socket by default
2024-02-16 16:39:31 +03:00
Patrizio Bekerle
4625f86517
qownnotes: 24.2.0 -> 24.2.3
2024-02-16 13:08:22 +01:00
Maximilian Bosch
f406c1d3f8
Merge pull request #289107 from lf-/jade/mkdefault-oomd
...
nixos/systemd.oomd: set the memory pressure thresholds as mkDefault
2024-02-16 10:46:47 +01:00
Matej Cotman
80861fb032
lemmy-server: fix tests by waiting until backend is ready with 10s timeout
2024-02-15 22:46:32 +02:00
Felix Bühler
60abd7c1f9
Merge pull request #288138 from ambroisie/tandoor-recipes-manage-script
...
nixos/tandoor-recipes: improve manage script
2024-02-15 20:26:03 +01:00
Felix Bühler
27f19c1efd
Merge pull request #288622 from Stunkymonkey/photoprism-manage-script
...
nixos/photoprism: improve manage script
2024-02-15 20:18:42 +01:00
Jade Lovelace
5d1feba540
nixos/systemd.oomd: set the memory pressure thresholds as mkDefault
...
These should be defaults as they're pretty reasonable to want to
override as a user. Unsure how to change the slice defaults to be
overridable, that should probably be a later conversation.
2024-02-15 09:41:26 -08:00
Sarah Brofeldt
ed0bc642b7
Merge pull request #288466 from JorisBolsens/patch-2
...
nixos/kubernetes: don't delete the apitoken after its created
2024-02-15 18:20:24 +01:00
markuskowa
3630c552a3
Merge pull request #285522 from markuskowa/fix-closure-mpi
...
openmpi: split dev into separate output, reduce closure size
2024-02-15 15:21:03 +01:00
Adam C. Stephens
6a6f5206d7
Merge pull request #287100 from mkg20001/lxd-fix-config
...
lxd-container-image: set mode of configuration.nix
2024-02-15 07:48:05 -05:00
Jonas Chevalier
c3ef726ee1
nixos/ldso: avoid instance of nixpkgs ( #288509 )
...
Follow-up to #269551
Avoid creating a new instance of nixpkgs to access two variables.
`pkgs.pkgsi686Linux` was being accessed whenever the feature is being
used or not.
A second instance of nixpkgs is being created in
`nixos/modules/config/stub-ld.nix` and can be disabled by setting
`environment.ldso32 = null` or `environment.stub-ld.enable = false`.
Both combined fixes this error:
error: attribute 'i686-linux' missing
2024-02-15 13:01:03 +01:00
Vladimír Čunát
aaca7a186f
Merge #286596 : nixos/knot: add support for XDP setups
2024-02-15 09:19:59 +01:00
Robert Hensing
dcf985388c
Merge pull request #271976 from r-k-b/fix-dockerTools-includeStorePaths
...
nixos/dockerTools: fix includeStorePaths when enableFakechroot
2024-02-14 23:38:44 +01:00
Yt
f13f90978a
Merge pull request #288638 from ThyMYthOS/update-stalwart
...
stalwart-mail: fix default configuration and test
2024-02-14 21:42:46 +00:00
Michele Guerini Rocco
f74d88a6f1
Merge pull request #281162 from kennycallado/master
...
nixos/icewm: Update icewm start command
2024-02-14 18:17:27 +01:00
maxine
8c8cc53769
Merge pull request #288531 from chewblacka/update-undervolt
...
undervolt: 0.3.0 -> 0.4.0
2024-02-14 17:30:53 +01:00
Michele Guerini Rocco
cd02351ae0
Merge pull request #233017 from koenw/libreswan-StateDirectory
...
nixos/libreswan: Use StateDirectory to setup ipsec/nss
2024-02-14 14:36:43 +01:00
Michele Guerini Rocco
c1f27ae1d3
Merge pull request #199515 from MangoIV/mangoiv/add-note-to-boot-initrd-secrets
...
Add documentation for moved secrets in stage 1
2024-02-14 14:35:04 +01:00
Michele Guerini Rocco
bac2597d26
Merge pull request #270737 from bramd/brltty-6.6
...
Update BRLTTY to 6.6
2024-02-14 14:10:32 +01:00
Michele Guerini Rocco
dc91f91987
Merge pull request #286393 from oddlama/fix-hostapd-utf8-ssid
...
nixos/hostapd: fix utf8Ssid setting not properly honored
2024-02-14 14:08:46 +01:00
Sandro
eb76e99000
Merge pull request #288527 from K900/chromium-plasma-typo
2024-02-14 13:13:50 +01:00
Manuel Stahl
cd8aad903c
stalwart-mail: fix default configuration and test
2024-02-13 20:34:22 +01:00
emilylange
993083f0ab
nixos/garage: allow all available log levels in cfg.logLevel
...
`error` and `warn` have always been valid log levels.
But because the upstream docs never mentioned those, we simply didn't
add them to the enum of our module option.
The upstream docs have been updated and now mention `error` and `warn`
as well.
Upstream PR: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/716
2024-02-13 20:26:29 +01:00
Peder Bergebakken Sundt
bf7c95ce73
Merge pull request #285314 from pbsds/ttyd-1706718068
...
nixos/ttyd: add `entrypoint` and `writable` option
2024-02-13 19:41:11 +01:00
Felix Buehler
9db5906a6f
nixos/photoprism: improve manage script
2024-02-13 18:51:30 +01:00
John Garcia
eaa1034a80
nixos/undervolt: add turbo option
2024-02-13 13:38:22 +00:00
Martin Weinelt
ec89463a61
nixos/knot: refactor
...
- Stop using `with lib`
- Drop `lib.mdDoc`
- Use `escaepSystemdExecArgs` for escaping
2024-02-13 13:44:32 +01:00
Martin Weinelt
08a775839d
nixos/tests/knot: test the XDP interface
...
We reconfigure the secondary nameserver VM to do all the same things that
it did before, but now over the XDP interface.
2024-02-13 13:44:31 +01:00
Martin Weinelt
d1d8dd3e55
nixos/knot: add support for XDP setups
...
The Express Data Path (XDP) is a way to circumvent the traditional Linux
networking stack and instead run an eBPF program on your NIC, that makes
the decision to provide Knot with certain packets. This is way faster
and more scalable but comes at the cost of reduced introspection.
Unfortunately the `knotc conf-check` command fails hard with missing
interfaces or IP addresses configured in `xdp.listen`, so we disable it
for now, once the `xdp` config section is set. We also promote the config
check condition to a proper option, so our conditions become public
documentation, and we allow users to deal with corner cases, that we have
not thought of yet.
We follow the pre-requisites documented in the Knot 3.3 manual, and set
up the required capabilities and allow the AF_XDP address family.
But on top of that, due to our strict hardening, we found two more
requirements, that were communicated upstream while debugging this.
- There is a requirement on AF_NETLINK, likely to query for and configure
the relevant network interface
- Running eBPF programs requires access to the `bpf` syscall, which we
deny through the `~@privileged` configuration.
In summary We now conditionally loosen the hardening of the unit once we
detect that an XDP configuration is wanted. And since we cannot
introspect arbitrary files from the `settingsFiles` option, we expose XDP
support through the `enableXDP` toggle option on the module.
2024-02-13 13:44:31 +01:00
K900
526bcf58da
nixos/chromium: fix incorrect option definition
...
Fixes #232528
2024-02-13 15:17:45 +03:00
Yt
971fbfd00a
Merge pull request #276468 from onny/opensnitch-update4
...
opensnitch: 1.6.4 -> 1.6.5, opensnitch-ui: 1.6.4 -> 1.6.5
2024-02-13 10:46:01 +00:00
Joris Bolsens
6a11b7a777
nixos/kubernetes: don't delete the apitoken after its created
...
This was breaking the nixos-kubernetes-node-join script
the token gets copied, and then immediately overridden with /dev/null when certmgr restarts.
2024-02-12 22:50:27 -08:00
Adam C. Stephens
fccf3732ef
Merge pull request #288123 from adamcstephens/incus/networkd
...
nixos/lxc: fix VM network and switch container to networkd
2024-02-13 00:30:26 -05:00
Yt
8893789d4a
Merge pull request #288243 from ThyMYthOS/update-stalwart
...
stalwart-mail: 0.5.2 -> 0.5.3
2024-02-12 21:51:36 +00:00
Adam Stephens
cf68af8561
nixos/lxc/container: switch to networkd by default
2024-02-12 16:26:30 -05:00
Adam Stephens
bdc79efc2b
nixos/lxd/vm: fix network config
2024-02-12 16:26:29 -05:00
Sandro
886449aef2
Merge pull request #268979 from con-f-use/warn_docker_storage_driver
...
nixos/docker: warn about changing storageDriver and remove `devicemapper` value
2024-02-12 19:46:05 +01:00
Janik
29f575d7e6
Merge pull request #288284 from NetaliDev/rustdesk-extra-args
...
nixos/rustdesk-server: add extra args options for hbbr and hbbs
2024-02-12 16:52:01 +01:00
Pol Dellaiera
2d627a2a70
Merge pull request #277220 from nu-nu-ko/nixos-jellyfin-dirs
...
nixos/jellyfin: add directory options
2024-02-12 14:06:46 +01:00
Jennifer Graul
c412263319
nixos/rustdesk-server: add extra args options for hbbr and hbbs
2024-02-12 13:41:08 +01:00
Jonas Heinrich
31b9a9d18c
opensnitch: 1.6.4 -> 1.6.5, opensnitch-ui: 1.6.4 -> 1.6.5.1
2024-02-12 11:58:44 +01:00
Maciej Krüger
4a9a73c626
Merge pull request #284046 from mkg20001/oils-for-linux
...
oil: rename to oil-python, oil: init at 0.20.0
2024-02-12 11:08:07 +01:00
Manuel Stahl
cf1efc01d3
stalwart-mail: 0.5.2 -> 0.5.3
2024-02-12 09:50:35 +01:00
Bruno BELANYI
5e43c70867
nixos/tandoor-recipes: improve manage script
...
This is mirroring the way the manage script is created in the paperless
module, which is more robust to special characters.
2024-02-11 21:21:02 +00:00
maxine
9b52568c86
Merge pull request #288122 from amaxine/fwupd-internal-tests
2024-02-11 21:15:52 +01:00
Maxine Aubrey
4a4904c2b2
nixos/fwupd: make test option internal, be explicit about removal
2024-02-11 20:27:02 +01:00
kirillrdy
76d14d166c
Merge pull request #287708 from JorisBolsens/patch-1
...
nixos/kubernetes: use correct -o option with bash install when copying certs in cfssl prestart script
2024-02-12 06:14:44 +11:00
Maximilian Bosch
417fdb06d7
Merge pull request #287856 from emilylange/nixos-gitea-package-forgejo-warning
...
nixos/gitea: warn when using `services.gitea` with forgejo
2024-02-11 18:06:05 +01:00
Maciej Krüger
7e2cabc5ea
Merge pull request #287270 from mweinelt/lxd-networkd
...
nixos/lxd: use networkd for DHCP/RA
2024-02-11 15:40:59 +01:00