Sandro
78fff7ed35
Merge pull request #181197 from bjornfor/fix-ddclient-password-leak
2022-07-12 15:13:43 +02:00
Bjørn Forsman
e0f2f7f9ea
nixos/ddclient: don't leak password in process listings
...
...by using `replace-secret` instead of `sed` when injecting the
password into the ddclient config file. (Verified with `execsnoop`.)
Ref https://github.com/NixOS/nixpkgs/issues/156400 .
2022-07-12 10:23:40 +02:00
Pascal Wittmann
6d1cabe9d9
Merge pull request #158346 from kurnevsky/i2pd-yggdrasil
...
i2pd: add yggdrasil settings
2022-07-12 10:19:18 +02:00
Sandro
366683965e
Merge pull request #166308 from ncfavier/wg-resolvconf
...
nixos/resolvconf: allow different implementations
2022-07-10 21:00:00 +02:00
James Hannah
c6e76ab7c9
nixos/radvd: add package option
...
Allow package users to override the package for radvd.
2022-07-01 21:11:46 +02:00
Sandro
911a73340c
Merge pull request #175335 from wyndon/init-lokinet
2022-07-01 11:54:38 +02:00
wyndon
69e1e00ebb
nixos/lokinet: init
2022-06-30 16:01:50 +02:00
Pascal Bach
13df7151e1
Merge pull request #178783 from greizgh/fix-syncthing-doc
...
nixos/syncthing: fix services.syncthing.folders description
2022-06-27 22:37:56 +02:00
Aaron Andersen
28562b800e
Merge pull request #178154 from aanderse/nixos/prosody
...
nixos/prosody: conditionally provision required directories with StateDirectory
2022-06-26 22:45:18 +02:00
Sandro
74ea995b11
Merge pull request #174446 from jsimonetti/routedns-init
...
routedns: init at 0.1.5
2022-06-24 16:31:03 +02:00
Lassulus
8c2e25e98e
Merge pull request #177081 from azahi/trickster
...
trickster: 0.1.10 -> 1.1.5
2022-06-23 22:24:54 +02:00
Greizgh
ac1e34f0fe
nixos/syncthing: fix services.syncthing.folders description
...
It was improperly referencing overrideDevices instead of overrideFolders.
2022-06-23 20:44:59 +02:00
Bernardo Meurer
5332bc174a
Merge pull request #178483 from twitchyliquid64/tailscale-networkd
...
tailscale: ignore tailscale link when using networkd
2022-06-23 12:10:14 -04:00
ajs124
6c189d264e
Merge pull request #177077 from Lassulus/bitlbee_cfgdir
...
nixos/bitlbee: allow writing to configDir
2022-06-22 19:27:59 +02:00
Naïm Favier
4af5c46faa
nixos/dhcpcd: use networking.resolvconf.package
...
Allow using the appropriate resolver implementation to set DNS entries
(typically systemd-resolved instead of openresolv).
2022-06-21 22:58:44 +02:00
Naïm Favier
953a5bd3dd
nixos/tailscale: use networking.resolvconf.package
...
Allow using the appropriate resolver implementation to set DNS entries
(typically systemd-resolved instead of openresolv).
2022-06-21 22:58:44 +02:00
Naïm Favier
458ac47a1d
nixos/wg-quick: improve usage with systemd-networkd
...
Use `networking.resolvconf.package` to allow DNS entries to be set using
the system-wide resolver implementation instead of hardcoding systemd or
openresolv.
Extend the tests by adding DNS entries and making one of the peers use
systemd-networkd (hence systemd-resolved).
Also add a few `networkd`-specific settings.
2022-06-21 22:58:44 +02:00
Tom
3b8a162680
tailscale: ignore tailscale link when using networkd
2022-06-21 13:23:28 -07:00
Robert Hensing
e2c261f2c0
Merge pull request #176146 from pennae/module-docs-markdown
...
treewide: markdown option docs
2022-06-21 13:16:02 +02:00
Aaron Andersen
078a53824e
nixos/prosody: provide additional details in the user and group options description
2022-06-18 10:08:08 -04:00
Aaron Andersen
79bfd3c0d0
nixos/prosody: conditionally provision required directories with StateDirectory
2022-06-18 10:05:15 -04:00
Jeroen Simonetti
829167bd27
nixos/routedns: init
...
Signed-off-by: Jeroen Simonetti <jeroen@simonetti.nl>
2022-06-15 08:33:46 +02:00
Azat Bahawi
82497b0e9f
trickster: 0.1.10 -> 1.1.5
2022-06-14 01:51:45 +03:00
Maximilian Bosch
fd2a89b983
nixos/wpa_supplicant: don't log that wpa_supplicant.conf is ignored with allowAuxiliaryImperativeNetworks = true
...
The warning is wrong with `allowAuxiliaryImperativeNetworks`[1] being
set to `true` because both files are included in this case with `-c` and
`-I`.
[1] https://nixos.org/manual/nixos/stable/options.html#opt-networking.wireless.allowAuxiliaryImperativeNetworks
2022-06-12 17:07:36 +02:00
pennae
320aa2a791
treewide: attempt at markdown option docs
2022-06-12 12:44:38 +02:00
Timothy DeHerrera
ec4e23d4e9
Merge pull request #171155 from cab404/wg-quick-files
...
nixos/wg-quick: added support for configuration files
2022-06-11 22:00:45 -07:00
Soham Sen
feff6ddbe7
expressvpn: init at 3.25.0.13
2022-06-11 17:10:33 +05:30
lassulus
a12e525410
nixos/bitlbee: allow writing to configDir
2022-06-09 21:05:16 +02:00
cab
8de1e9e2f8
nixos/wg-quick: added support for configuration files
2022-06-07 01:28:50 +04:00
pennae
e21c4d67d5
nixos/unifi: change deprecated default for openFirewall
...
this was deprecated 6 months ago in unstable for removal in 22.11,
so now seems like a good point to change the default.
2022-06-03 15:59:41 +02:00
Aaron Andersen
18a07645e5
Merge pull request #174959 from MoritzBoehme/openconnect-auto-start
...
nixos/openconnect: add autoStart option
2022-05-31 23:05:25 -04:00
Moritz Böhme
106bfcaf8a
nixos/openconnect: add autoStart option
2022-05-27 17:41:03 +02:00
Sandro
7fa8d8b2e2
Merge pull request #153481 from Tchekda/submit/bird-lg
2022-05-25 18:20:58 +02:00
pennae
023e25264c
Merge pull request #172983 from pennae/mosquitto-bind-interface
...
nixos/mosquitto: add bind_interface listener option, fix assertion messages
2022-05-23 10:53:08 +00:00
Martin Weinelt
05232d19b6
Merge pull request #163220 from fleaz/init-r53_ddns
2022-05-22 17:08:55 +02:00
Francesco Gazzetta
6bb9d0ce3b
nixos/zeronet: fix systemd after
2022-05-21 17:46:28 -04:00
Francesco Gazzetta
183e391256
nixos/zeronet: add package option
2022-05-21 17:46:28 -04:00
David Tchekachev
0f63bd3ba8
nixos/bird-lg: init
2022-05-20 15:44:00 +03:00
Jörg Thalheim
e56ae50ed9
Merge pull request #173109 from Mic92/upterm
...
nixos/upterm: additional hardening
2022-05-19 20:16:13 +01:00
Niklas Hambüchen
23aee34b6f
Merge pull request #171264 from NixOS/nebula-always-restart
...
nixos/nebula: Always restart
2022-05-19 14:05:49 +02:00
Anillc
6958412083
nixos/frr: add extraOptions option
...
Support passing options to daemons. For example, bgpd needs '-M rpki' to
enable rpki functions.
2022-05-19 16:02:47 +08:00
Silvan Mosberger
26ab617a10
Merge pull request #172393 from mweinelt/openssh/sntrup761x25519-sha512-kexmethod
...
nixos/openssh: Add sntrup761x25519-sha512 kexAlgo
2022-05-18 12:03:00 +02:00
Lassulus
a976121d57
Merge pull request #165474 from jian-lin/fix-wireguard-systemd-unit-dependency
...
nixos/wireguard: fix dependencies on network-related targets
2022-05-18 11:16:25 +02:00
Robert Schütz
ae758a85d7
nixos/radicale: give access to /dev/urandom
...
A git command was failing in the test with
error: unable to get random bytes for temporary file: Operation not permitted
error: unable to create temporary file: Operation not permitted
error: .Radicale.lock: failed to insert into database
error: unable to index file '.Radicale.lock'
2022-05-17 22:23:57 +02:00
github-actions[bot]
f10256fb7a
Merge master into staging-next
2022-05-16 12:02:51 +00:00
Sandro
6c0dc6d621
nixos/ddclient: turn verbose off by default
...
verbose is a debugging setting one step noisier than debug and should only be turned on when debugging because it leaks quite some credentials and tokens in the journalctl.
2022-05-16 01:49:08 +02:00
pennae
c1115d37ff
nixos/mosquitto: fix attribute path display in assertions
2022-05-15 10:33:38 +02:00
pennae
2145dbc4fc
nixos/mosquitto: add missing listener option bind_interface
...
we expose it under settings instead of at the listener toplevel because
mosquitto seems to pick the addresses it will listen on
nondeterministically from the set of addresses configured on the
interface being bound to. encouraging its use by putting it into the
toplevel options for a listener seems inadvisable.
2022-05-15 10:33:38 +02:00
Jörg Thalheim
eefafb54ef
nixos/upterm: additional hardening
...
Before:
$ ps aux | grep upterm
root 2575046 0.0 0.0 1085080
2022-05-15 09:57:52 +02:00
github-actions[bot]
bcb22e9a7b
Merge master into staging-next
2022-05-13 18:01:23 +00:00
