Commit Graph

30779 Commits

Author SHA1 Message Date
Sandro Jäckel
89b5dddf99
nixos/avahi: revert closing firewall port by default 2022-12-10 03:40:39 +01:00
Izorkin
4165ff32cf
Release notes: fix typo 2022-12-09 23:18:37 +03:00
Izorkin
2b6bfed79c
nixos/lxc-container: undo some of the minimal profile stuff 2022-12-09 23:18:37 +03:00
Vladimir Pouzanov
65aed3b37f
Allow to override the https settings 2022-12-09 19:23:50 +00:00
Linus Heckemann
2ee8b6ee74
Merge pull request #188958 from lheckemann/zram-builtin
nixos/zram: support built-in zram
2022-12-09 19:57:44 +01:00
github-actions[bot]
48b3a17dea
Merge master into staging-next 2022-12-09 12:01:30 +00:00
Maximilian Bosch
539954efab
Merge pull request #204780 from Ma27/kernel-maintenance-docs
nixos/manual: document kernel backporting policy and implications of it
2022-12-09 11:53:53 +01:00
Maximilian Bosch
8476b02749
nixos/doc: suggest using the latest longterm kernel for ZFS 2022-12-09 11:34:05 +01:00
K900
2123b57d5d nixos/supergfxd: make optional, fix eval (again) 2022-12-09 13:31:00 +03:00
Izorkin
731d4961aa
nixos/profiles/minimal: add release notes 2022-12-09 13:05:27 +03:00
Izorkin
0c6ce0dbab
nixos/installer/netboot-minimal: enable man 2022-12-09 13:03:49 +03:00
Izorkin
309d6a3185
iso/minimal: use mkForce 2022-12-09 13:03:49 +03:00
Izorkin
191d2115ea
iso/minimal: use minimal profile 2022-12-09 13:03:49 +03:00
Izorkin
362d351845
nixos/profiles/minimal: disable udisks service 2022-12-09 13:03:49 +03:00
Izorkin
ee858454b3
nixos/profiles/minimal: disable logrotate service 2022-12-09 13:03:49 +03:00
Izorkin
df22e4124d
nixos/profiles/minimal: disable documentation 2022-12-09 13:03:38 +03:00
Naïm Favier
0bc9e25e68
Merge pull request #204438 from ncfavier/vim-full 2022-12-09 10:34:17 +01:00
Vladimír Čunát
9c497bb8d6
Merge branch 'staging-next' into staging 2022-12-09 10:27:46 +01:00
Sandro
18ab3af0d4
Merge pull request #205251 from InternetUnexplorer/fix-fish-skim-keybindings 2022-12-09 10:02:04 +01:00
Naïm Favier
4e5ebcc3ed
vim-full: rename from vim_configurable
Avoids confusion: `vim-full`'s build-time features are configurable, but both
`vim` and `vim-full` are *customizable* (in the sense of user configuration).
2022-12-09 09:55:55 +01:00
InternetUnexplorer
86ae48a4bf skim: fix fish shell keybindings
This fixes a typo that prevented the fish keybindings from being loaded.
Also, the keybindings are now only loaded if programs.skim.keybindings
is true, which matches the behavior for bash and zsh.
2022-12-08 22:52:09 -08:00
Artturi
8ffe22e286
Merge pull request #203956 from Artturin/addforbiddendependenciesregex
nixos/top-level.nix: add forbiddenDependenciesRegex option
2022-12-09 07:54:00 +02:00
Martin Weinelt
a4f2ca1ef3
Merge pull request #205123 from Frostman/prometheus-smartctl-exporter-0.9.1 2022-12-09 01:58:06 +01:00
Martin Weinelt
c7fbae1289
nixos/tests/prometheus-exporters.smartctl: update test script
We can't actually get metrics for a virtual disk drive so the exporter
fails to start with 0.9.x.

Instead let's just make sure it said that /dev/vda was unavailable.
2022-12-09 01:40:01 +01:00
Martin Weinelt
fdcc9e8202
nixos/prometheus.exporters.smartctl: Simplify DeviceAllow logic
Setting up the DeviceAllow list with explicitly configured devices was a
nice idea, but sometimes a configured device (`/dev/nvme0n1` an NVMe
namespace) has a parent device (`/dev/nvme0`) that smartctl needs to
access to query metrics.

Falling back to the block and character definitions is probably a valid
fallback.
2022-12-09 01:40:01 +01:00
Sergey Lukjanov
a49feed255 nixos/prometheus.exporters.smartctl: use cli args instead of config
Config support was dropped and replaced with CLI args
2022-12-08 15:31:33 -08:00
Robert Hensing
470e6fd1cd
Merge pull request #201902 from ck3mp3r/dockertools-architecture-in-config-200725
Adding ability to set image architecture when creating OCI images using DockerTools
2022-12-08 23:54:50 +01:00
ajs124
3071eef957
Merge pull request #201707 from helsinki-systems/alias-krb5Full
krb5Full: turn into alias
2022-12-08 23:54:02 +01:00
Ryan Lahfa
022c7d777a
Merge pull request #196837 from KoviRobi/dnsmasq-attrsets-config
nixos/dnsmasq: Use attrs instead of plain text config
2022-12-08 23:47:08 +01:00
ajs124
c7930769a7 krb5Full: turn into alias 2022-12-08 23:08:44 +01:00
Cole Helbling
5af481f67f nixos/activation/bootspec: fixup improper $out substitution 2022-12-08 13:50:05 -08:00
Cole Helbling
fc88e4cf7d nixos/boot/external: drop duplicated external bootloader documentation
The documentation is generated thanks to `meta.doc`, and was out of
date anyways.
2022-12-08 13:50:05 -08:00
Cole Helbling
dce9add02b nixos/activation/bootspec: refactor the generator script
We separate the different steps (injecting the toplevel and injecting
the specialisations) so that it's easy to document what each snippet is
actually doing.
2022-12-08 13:50:05 -08:00
Cole Helbling
38e5089814 nixos/activation/bootspec: drop problematic comment, only generate bootspec when bootspec is enabled 2022-12-08 13:50:05 -08:00
Cole Helbling
97f657c742 nixos/activation/bootspec: DocBook -> Markdown, add description for extensions field 2022-12-08 13:50:05 -08:00
Cole Helbling
cc63293b50 nixos/boot/external: fixup typo in generated docs, regenerate docs 2022-12-08 13:50:05 -08:00
Cole Helbling
ad6ea546b4 nixos/boot/external: DocBook -> Markdown 2022-12-08 13:50:05 -08:00
Raito Bezarius
680369e504 nixos/activation/bootspec: add some comments to explain the delicate manipulations 2022-12-08 13:50:05 -08:00
Raito Bezarius
11dfbee0a4 nixos/activation/bootspec: add bootspec chapter in NixOS manual 2022-12-08 13:50:05 -08:00
Raito Bezarius
9832e3e9b9 nixos/activation/bootspec: remove SB extension example in Cue schema 2022-12-08 13:50:04 -08:00
Raito Bezarius
980f50124f nixos/boot/external: add @raitobezarius as maintainer and allow initrd secrets 2022-12-08 13:50:04 -08:00
Raito Bezarius
092e6d39cd nixos/tests/bootspec: init
This will test various scenarios of bootspec generation.
2022-12-08 13:50:04 -08:00
Raito Bezarius
348ba1b33c nixos/activation/bootspec: module-ify
This does the following:

* turns bootspec into a NixOS module
* validates bootspecs with Cue
* exposes internal knobs
2022-12-08 13:50:04 -08:00
Raito Bezarius
ee27291b34 nixos/activation/bootspec: fix slurping specialisation bootspecs 2022-12-08 13:50:04 -08:00
K900
e69c37eae9 nixos/activation: don't generate bootspec for containers 2022-12-08 13:50:04 -08:00
Graham Christensen
e9c85d6d0f nixos/activation/bootspec: embed the document into a bootspec subdir 2022-12-08 13:50:04 -08:00
Graham Christensen
6c0e4e892f nixos/activation/bootspec: embed the entire contents of specialisation's bootspecs into the parent
See: https://github.com/NixOS/rfcs/pull/125#discussion_r871222614
2022-12-08 13:50:04 -08:00
Cole Helbling
83d06ce16d nixos/boot/external: init
This allows supporting external bootloader backends.
2022-12-08 13:50:04 -08:00
Cole Helbling
942dcd238b nixos/activation/bootspec: init bootspec support (RFC-0125) 2022-12-08 13:50:03 -08:00
Robert Hensing
cf7b358d69 nixosTests.docker-tools: Fix syntax
This may be unnecessary, but I'm not waiting for the tests again.
2022-12-08 22:29:38 +01:00
Christian Kemper
afe2d0bb8b fix docker inspect image reference 2022-12-08 20:29:10 +01:00
Christian Kemper
f6ae4479ea dockerTools: allowing architecture to be specified
... for buildImage, buildLayeredImage and streamLayeredImage,
adding docs and tests.
2022-12-08 20:29:09 +01:00
Naïm Favier
109f8b4657 nixos/make-options-doc: remove dead code
The logic for pretty-printing Nix values isn't needed any more because
`optionAttrSetToDocList` returns already rendered values.
2022-12-08 17:52:52 +01:00
Naïm Favier
6a117e2759 nixos/doc: render option values using lib.generators.toPretty
Render un`_type`d defaults and examples as `literalExpression`s using
`lib.generators.toPretty` so that consumers don't have to reinvent Nix
pretty-printing. `renderOptionValue` is kept internal for now intentionally.

Make `toPretty` print floats as valid Nix values (without a tilde).

Get rid of the now-obsolete `substSpecial` function.

Move towards disallowing evaluation of packages in the manual by
raising a warning on `pkgs.foo.{outPath,drvPath}`; later, this should
throw an error. Instead, module authors should use `literalExpression`
and `mkPackageOption`.
2022-12-08 17:52:52 +01:00
Naïm Favier
0ff3b35356 nixos/doc: fix some options 2022-12-08 17:52:52 +01:00
tars0x9752
49a8c118b2
blesh: unstable-2022-07-24 -> unstable-2022-07-29, refactor 2022-12-08 13:39:55 +01:00
Bobby Rong
d44e752fba
Merge pull request #204474 from peperunas/libreddit
libreddit: Add package option to module
2022-12-08 19:49:11 +08:00
K900
4353ba58d4
Merge pull request #205119 from K900/supergfxd-fixup
supergfxd: fix config format
2022-12-08 14:13:58 +03:00
Martin Weinelt
286fb727a0
Merge pull request #205071 from NixOS/home-assistant 2022-12-08 11:52:59 +01:00
Robert Hensing
80b1fb3d5e
Merge pull request #204841 from qowoz/nix
nixVersions.nix_2_12: init at 2.12.0
2022-12-08 11:28:42 +01:00
K900
a445c5f6ea supergfxd: fix config format 2022-12-08 11:46:10 +03:00
Martin Weinelt
87c22c7909
nixos/home-assistant: update bluetooth components 2022-12-08 02:36:55 +01:00
Daniel Nagy
ad866e565d
treewide: switch to port type for nixos modules 2022-12-08 00:00:00 +01:00
Sandro
3758110622
Merge pull request #204573 from SuperSandro2000/pinentry-nox 2022-12-07 23:00:26 +01:00
Sandro
b3f9ddea98
Merge pull request #204422 from SuperSandro2000/bluezfull 2022-12-07 22:46:15 +01:00
Sandro
082ccd0a6d
Merge pull request #202369 from laalsaas/blesh 2022-12-07 18:47:36 +01:00
Domen Kožar
edc730d7c2
Merge pull request #204996 from sandydoo/improve/render-nix-types-in-commonmark
nixos/make-options-doc: pretty-print literals
2022-12-07 15:01:52 +00:00
sandydoo
3564228a10
nixos/make-options-doc: improve CommonMark formatting
Render the `type` attribute in a code block to match the rest of the
attributes.
2022-12-07 14:39:26 +00:00
Lin Yinfeng
56099e008e nixos/mastodon: allow appending other env files to serviceConfig.EnvironmentFile 2022-12-07 15:07:17 +01:00
sandydoo
926afb6f1c
nixos/make-options-doc: pretty-print literals
Unlike the XML doc renderer, the AsciiDoc and CommonMark renderers don't
pretty-print certain complex types, like literal expressions, DocBook
literals, and derivations. These types are dumped into the documentation
as JSON.

This commit parses and unwraps these types when loading the
JSON-formatted NixOS options. The AsciiDoc and CommonMark renders have
also been combined into a single script to allow code reuse.
2022-12-07 14:06:56 +00:00
Andrei Pampu
acb964a35c nixos/tests/bazarr: remove unfree predicate for unrar 2022-12-07 14:59:49 +01:00
Yureka
a0e889791f nixos/tests/peering-manager: init 2022-12-07 12:54:55 +01:00
Yureka
56d4e1ec67 nixos/peering-manager: init 2022-12-07 12:54:55 +01:00
Bobby Rong
fa01623a88
Merge pull request #204809 from bobby285271/cinnamon
cinnamon.mint-artwork: 1.7.2 -> 1.7.3
2022-12-07 09:45:02 +08:00
Zhaofeng Li
48bc7784ab rl-2305: Mention services.fwupd.daemonSettings 2022-12-06 18:24:40 -07:00
Zhaofeng Li
c4ae704be6 nixos/fwupd: Make daemon.conf structured 2022-12-06 18:24:40 -07:00
Bjørn Forsman
bbcfd192a8 nixos/borgbackup: change --prefix to --glob-archives
Fixes warning from `borg prune`:

  Warning: "--prefix" has been deprecated. Use "--glob-archives 'yourprefix*'" (-a) instead.
2022-12-07 02:24:00 +01:00
Yoan Tournade
4c915f1d1a Add BORG_RSH entry under an environment option 2022-12-07 01:00:59 +01:00
Sandro
bc3206a9e2
Merge pull request #202909 from symphorien/ipp-usb 2022-12-06 22:36:30 +01:00
Sandro Jäckel
714cd4a0a5
nixos/no-x-libs: add qrencode 2022-12-06 22:01:30 +01:00
laalsaas
cbf4a44852 blesh: init module 2022-12-06 21:40:23 +01:00
Guillaume Girol
8e7a32d061 nixos/ipp-usb: add module 2022-12-06 21:06:54 +01:00
zowoq
1ec69621ef nixos/nix-fallback-paths: 2.11.1 -> 2.12.0 2022-12-07 04:42:28 +10:00
Luke Granger-Brown
5faeb3ba2d factorio: fix review comments 2022-12-06 18:29:54 +00:00
Wael Nasreddine
69dff6a36c
Merge pull request #144455 from Twingate/master 2022-12-06 09:33:20 -08:00
Bobby Rong
42748ee18f
cinnamon.mint-artwork: 1.7.2 -> 1.7.3
This changes the greeter theme to Mint-Y-Aqua.
2022-12-06 23:53:47 +08:00
David McFarland
7df3e9ec5b nixos/doc/manual: add chapter on VA-API 2022-12-06 10:05:01 -04:00
Maximilian Bosch
fa257ecb33
nixos/kernel: link manual (with backport policies) from boot.kernelPackages
Yes I know it's dirty to link the rendered HTML, but linking
`#sec-kernel-config` breaks the manual build for me with the following
error:

    element link: validity error : IDREF attribute linkend references an unknown ID "sec-kernel-config"

This is something that should probably be fixed, but for the current
change I'd argue that this is good enough (in fact even the
`nix.settings`-option uses that hack).
2022-12-06 14:38:16 +01:00
Robert Hensing
ab823e3a11 cassandra_4: init 2022-12-06 14:09:38 +01:00
Robert Hensing
5775cfa4b8 nixos/cassandra: Prepare for cassandra 4
Its scripts disagree a bit with our flexible
logging approach and our default logging config.
Might want to revisit this at some point.

The `mkdir` failures in the log are harmless.
2022-12-06 14:09:38 +01:00
Robert Hensing
90b1c9fa10 nixos/cassandra: Refactor: extract version variables 2022-12-06 14:09:38 +01:00
Maximilian Bosch
fcf0e540b1
nixos/manual: document kernel backporting policy and implications of it
I'm well aware that this issue is currently under discussion[1] and that
these things may change. Also, please don't misinterpret this as an
attempt to end the discussion.

This topic made it obvious that people are surprised by the way this
issue is handled and only finding out about this unwritten rule because
of asking is not a good state IMHO, so I decided to document the
following things:

* Right now we drop kernels as soon as they get out of maintenance (LTS
  kernels even before the next stable NixOS that will exceed their
  lifespan).
* The `latestCompatibleLinuxPackages` attribute from ZFS isn't
  monotonic since latest only refers to the latest supported kernel.
* In fact `latestCompatibleLinuxPackages` doesn't seem to be documented
  at all in the manual, so I also did that.

[1] https://discourse.nixos.org/t/aggressive-kernel-removal-on-eol-in-nixos/23097
2022-12-06 14:04:13 +01:00
github-actions[bot]
0ac4c6779e
Merge master into staging-next 2022-12-06 00:02:32 +00:00
Naïm Favier
a6dd75809d
Merge pull request #204178 from ncfavier/iso-filter-nixpkgs 2022-12-05 19:00:03 +01:00
Bjørn Forsman
831fc4f86a nixos/tests/bazarr: remove unneeded timezone workaround
The issue was fixed in bazarr-1.1.3.
2022-12-05 18:51:53 +01:00
Maximilian Bosch
7f684f3160
Merge pull request #204618 from rapenne-s/openFirewall_off_2
make openFirewall options to false for NixOS services
2022-12-05 18:13:39 +01:00
Naïm Favier
98a5ae3e5d
Merge pull request #202956 from arcnmx/systemd-networkd-wait-online 2022-12-05 17:53:26 +01:00
Maximilian Bosch
38c786c6ef
Merge pull request #204269 from mayflower/fix-mailman-nginx
nixos/mailman: remove trailing slash from `/static` location
2022-12-05 16:48:57 +01:00
Solene Rapenne
0d805d3a0b nixos/rl-2305: mention openFirewall changed to false for services 2022-12-05 12:12:48 +01:00
Solene Rapenne
372a2d2111 nixos/unifi-video: openFirewall default to false 2022-12-05 12:03:09 +01:00
Solene Rapenne
659803e879 nixos/tmate-ssh-server: openFirewall default to false 2022-12-05 12:03:09 +01:00
Solene Rapenne
efeb1e50d9 nixos/avahi-daemon: openFirewall default to false 2022-12-05 12:03:09 +01:00
Solene Rapenne
535c434fa8 nixos/snapserver: openFirewall default to false 2022-12-05 12:03:02 +01:00
github-actions[bot]
d267d26578
Merge master into staging-next 2022-12-05 06:01:36 +00:00
Jacob Greenleaf
0111e9547e nixos/borgbackup: Add option for inhibiting sleep
Adds a new option for backup jobs `inhibitsSleep` which prevents
the system from going to sleep while a backup is in progress.
Uses `systemd-inhibit`, which holds a "lock" that prevents the
system from sleeping while the process it invokes is running.

This did require wrapping the existing backup script using
`writeShellScript` so that it could be run by `systemd-inhibit`.
2022-12-04 19:57:41 -08:00
Sandro Jäckel
f2bd1b839c
nixos/no-x-libs: add pinentry 2022-12-05 02:42:50 +01:00
Sandro Jäckel
de66678a60
nixos/no-x-libs: add zbar 2022-12-05 02:07:00 +01:00
Sandro Jäckel
d0ffce42bb
nixos/no-x-libs: add imagemagick/imagemagickBig 2022-12-05 02:07:00 +01:00
Jack Cummings
75f2f8e753 passthrough config if there are no secrets defined 2022-12-04 16:37:51 -08:00
Robert Kovacsics
2c00429560 nixos/dnsmasq: Use attrs instead of plain text config
This should make it easier to configure in multiple places, override
defaults, etc.
2022-12-04 23:08:37 +00:00
Maximilian Bosch
fcd4117b24
Merge pull request #203665 from KFearsoff/fix-grafana-markdown-release-notes
nixos/grafana: fix 22.11 release notes
2022-12-04 22:48:57 +01:00
squalus
ef90ce7093 nixos/grafana: add Admin to valid auto_assign_org_role values 2022-12-04 13:10:19 -08:00
Martin Weinelt
fe8eef1ae4 Merge remote-tracking branch 'origin/master' into staging-next 2022-12-04 22:06:42 +01:00
Mario Rodas
4eebb34855
Merge pull request #204297 from bjornfor/nixos-fix-lxd-init
nixos/lxd: add missing util-linux to $PATH
2022-12-04 15:02:59 -05:00
Vincent Haupert
dbff3c22c1 nixos/aesmd: add option environment 2022-12-04 20:12:50 +01:00
Andreas Stührk
da0dc8339c nixos/aesmd: add option to configure quote provider library
Changes sgx-psw to append `aesm` to `LD_LIBRARY_PATH`:
- Append instead of prepend to allow for overriding in service config
- As we already add a wrapper to add `aesm` to `LD_LIBRARY_PATH` it is
  not necessary to also set in `LD_LIBRARY_PATH` of the systemd service.

Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
2022-12-04 20:12:50 +01:00
Maximilian Bosch
331d854662
Merge pull request #203874 from noneucat/fix/grocy/storage
nixos/grocy: fix file uploads
2022-12-04 17:28:07 +01:00
Naïm Favier
170a98ba73
Merge pull request #167871 from asymmetric/doc-networkd 2022-12-04 16:24:02 +01:00
Lorenzo Manacorda
2ae17515e0 nixos/networkd: doc activation of systemd.networkd 2022-12-04 16:18:48 +01:00
Ryan Lahfa
e1185ea096
Merge pull request #197382 from phaer/patch-4
initrd-ssh: allow empty hostKeys
2022-12-04 15:34:43 +01:00
Anderson Torres
3ec5fa600e
Merge pull request #201033 from linsui/firefox
nixos/firefox: add more options
2022-12-04 11:32:17 -03:00
Naïm Favier
f9743988ad
linuxPackages.hyperv-daemons: add path conditions for kvp and vss 2022-12-04 15:25:26 +01:00
Naïm Favier
364d3609cd
nixos/installer/cd-dvd: use filtered nixpkgs source
Pin the `nixpkgs` registry entry to the *filtered* nixpkgs source to
avoid copying the entire `.git` directory to the ISO when building
from a local checkout.

Also set `to` directly instead of the `flake.outPath` hack.
2022-12-04 14:54:18 +01:00
Giulio De Pasquale
34ddff29a4
libreddit: Add package option 2022-12-04 14:00:17 +01:00
Anderson Torres
b793d48515
Merge pull request #204352 from laalsaas/skim
skim: refactor and init module
2022-12-04 07:51:43 -03:00
Sandro
e38618a657
Merge pull request #203825 from SuperSandro2000/mastodon-tootctl
Closes https://github.com/NixOS/nixpkgs/issues/199029
2022-12-04 11:29:45 +01:00
Sandro
9622693a4b
nixos/bluetooth: remove bluezFull alias from examples 2022-12-04 09:58:49 +01:00
Alexandre Acebedo
0905acf069 nixos/rog-control-center: init 2022-12-04 10:11:27 +03:00
Alexandre Acebedo
8f7537e34f nixos/asusctl: init 2022-12-04 10:11:27 +03:00
Alexandre Acebedo
8f14c05c50 nixos/supergfxctl: init 2022-12-04 10:11:27 +03:00
Bobby Rong
71fe9c0596
Merge pull request #204225 from bobby285271/cinnamon
Cinnamon updates 2022-12-02
2022-12-04 12:02:36 +08:00
Bobby Rong
35763bc43b
cinnamon.mint-artwork: 1.7.0 -> 1.7.2
Now sets cursor theme and size.
2022-12-04 11:20:51 +08:00
Bobby Rong
1b6468cfb4
nixos/lightdm-greeters/slick: Add options for cursor themes
These options are newly added in 1.6.0.
2022-12-04 11:20:51 +08:00
Sandro
9467d17255
Merge pull request #204316 from nagy/nixos/fzf-refactor 2022-12-04 01:55:13 +01:00
laalsaas
a78621f9b0 skim: init module 2022-12-03 23:15:09 +01:00
Martin Weinelt
f069b36483
Merge pull request #204331 from mweinelt/zigbee2mqtt-1.28.4 2022-12-03 22:27:44 +01:00
Luke Granger-Brown
7b7bff387b nixos: update release notes for unifi-poller --> unpoller. 2022-12-03 20:14:16 +00:00
Luke Granger-Brown
c7918fed9e nixos/prometheus/unifi-poller: rename to unpoller. 2022-12-03 20:12:54 +00:00
Luke Granger-Brown
ffcd97b521 nixos/unifi-poller: rename to unpoller. 2022-12-03 20:12:54 +00:00
Daniel Nagy
3126eb7621
nixos/fzf: refactor two options 2022-12-03 20:00:00 +01:00
Martin Weinelt
5d685e0eed nixos/zigbee2mqtt: Update syscall filter
The tests would fail after migrating to `buildNpmPackage`, likely
because we are now using nodejs 18.

> audit: type=1326 audit(1670092271.655:102): auid=4294967295 uid=317 gid=317 ses=4294967295 subj=kernel pid=995 comm="node" exe="/nix/store/dj805sw07vvpbxx39c8g67x8qddg0ikw-nodejs-18.12.1/bin/node" sig=31 arch=c000003e syscall=330 compat=0 ip=0x7ff8b655f37b code=0x8000000
2022-12-03 19:57:50 +01:00
github-actions[bot]
e1399a2156
Merge master into staging-next 2022-12-03 18:01:02 +00:00
Mario Rodas
86c83ab79d
Merge pull request #204262 from hmenke/maintainers
maintainers: remove and add hmenke
2022-12-03 11:11:40 -05:00
Maximilian Bosch
d85c685320
Merge pull request #201380 from Ma27/installer/vim-with-nix-support
nixos/profiles/base: install vim w/nix-syntax plugin
2022-12-03 16:20:08 +01:00
Maximilian Bosch
0b5a0cbc69
nixos/profiles/base: install vim w/nix-syntax plugin
Considering that you most likely edit Nix code in the installer, that
seems like a useful thing.

The size of the ISO I got from

    nix-build nixos/release.nix -A iso_minimal.x86_64-linux

is still at 877M.
2022-12-03 16:05:01 +01:00
Bjørn Forsman
c3cfa83884 nixos/lxd: add missing util-linux to $PATH
This fixes `lxd init`, which previously failed like this:

  $ yes "" | lxd init
  [...]
  Error: Failed to create storage pool "default": Failed to run: losetup --find --nooverlap --direct-io=on --show /var/lib/lxd/disks/default.img: exec: "losetup": executable file not found in $PATH
2022-12-03 16:01:05 +01:00
phaer
3c1906b202 initrd-ssh: add ignoreEmptyHostKeys option 2022-12-03 15:10:43 +01:00
Artturi
645b5a2f9f
Revert "nixos/lib: add /home to pathsNeededForBoot" 2022-12-03 15:16:42 +02:00
Artturi
74ff2f1862
Merge pull request #203768 from linj-fork/pr-neededforboot
nixos/lib: add /home to pathsNeededForBoot
2022-12-03 15:16:34 +02:00
Martin Weinelt
39739a47b0 Merge remote-tracking branch 'origin/master' into staging-next 2022-12-03 13:55:28 +01:00
Maximilian Bosch
367897a68b
nixos/mailman: remove trailing slash from /static location
Otherwise HTTP routes such as `/static/django-mailman3/css/main.css`
will cause a 404.
2022-12-03 13:03:26 +01:00
Henri Menke
da053d008f
maintainers: remove and add hmenke 2022-12-03 12:26:58 +01:00
SamLukeYes
ad35d94ecc xonsh: migrate to /etc/xonsh/xonshrc 2022-12-03 17:42:47 +08:00
K900
3ee2fd4af0
Merge pull request #202661 from K900/goodbye-my-qt-goodbye
treewide: drop Qt5 < 5.15
2022-12-03 10:51:44 +03:00
K900
7348354e8e nixos/doc: add release note for Qt 5.1{2,4} deprecation 2022-12-03 10:51:04 +03:00
github-actions[bot]
7ec4183673
Merge master into staging-next 2022-12-03 06:01:28 +00:00
arcnmx
51b5602b45 nixos/networkd: add wait-online.enable option
When no interfaces are managed by systemd-networkd, it will
unconditionally fail. This option allows it to be disabled in those
situations where it prevents system switches from succeeding.
2022-12-02 19:00:31 -08:00
laalsaas
257a832e61 fzf: init module 2022-12-03 03:14:21 +01:00
Sandro Jäckel
6e845a8491
nixos/mastodon: replace mastodon-env with a proper wrapper mastodon-tootctl 2022-12-03 02:59:39 +01:00
Sandro
068e7cb340
Merge pull request #201817 from jhh/nut-exporter 2022-12-03 02:22:48 +01:00
github-actions[bot]
a83c4dd193
Merge master into staging-next 2022-12-03 00:02:19 +00:00
Artturin
a34d7b67fd nixos/top-level.nix: add forbiddenDependenciesRegex option
useful for making sure that there's no dev outputs in the system
2022-12-02 21:15:24 +02:00
Robert Hensing
146620355f nixosTests.postgresql: Fix attribute name shadowing 2022-12-02 18:15:01 +00:00
Robert Hensing
7bfbf037d7 Merge remote-tracking branch 'upstream/master' into allow-configuration-of-roles 2022-12-02 18:12:14 +00:00
Jasper Woudenberg
bc3b07cb93 resilio: Add jwoudenberg as extra maintainer 2022-12-02 12:08:33 -06:00
Jasper Woudenberg
c8f9d170d4 nixos/resilio: support secret files
When using the declarative shared folder configuration for resilio sync
it is now possible to pass a path from which to read the secret should
be read at runtime. The path will not be added to the nix store.

The 'secret' parameter to specify the secret directly is still
supported. This option will still store the secret in the nix store.

This commit follows the pattern described in this issue, for upstream
programs that do not provide support for setting a password using a
file: https://github.com/NixOS/nixpkgs/issues/24288
2022-12-02 12:08:33 -06:00
github-actions[bot]
fcd7475a32
Merge master into staging-next 2022-12-02 18:01:15 +00:00
Valentin Gagarin
260de5901e
Merge pull request #204103 from ncfavier/doc-mkOrder
nixos/doc: document `mkOrder` and friends
2022-12-02 17:19:40 +01:00
Artturi
dadca5c5e1
Merge pull request #140890 from seb314/wireguard/dyndns-restart-on-failure
wireguard: non-invasive fix for permanent disconnects on unstable network (e.g. laptops) from dyndns endpoints
2022-12-02 17:47:47 +02:00
Martin Weinelt
b0df6347ae
Merge pull request #204067 from rapenne-s/release_2211 2022-12-02 16:46:45 +01:00
Solene Rapenne
11c32f4a71 nixos/rl-2211: make it clear NixOS isn't a set of packages
Co-authored-by: Valentin Gagarin <valentin.gagarin@tweag.io>

Co-authored-by: Martin Weinelt <mweinelt@users.noreply.github.com>
2022-12-02 16:40:00 +01:00
Naïm Favier
2f7f695dd7
Merge pull request #204001 from nagy/port-types 2022-12-02 14:52:35 +01:00
Naïm Favier
e8927c46b8
nixos/doc: document mkOrder and friends
Add a section on ordering option definitions.

Also mention `mkDefault` in the section on `mkOverride`.

Clarify the code a bit by renaming `defaultPriority` to
`defaultOverridePriority` and introducing `defaultOrderPriority`.
2022-12-02 14:15:24 +01:00
github-actions[bot]
1de884edb3
Merge master into staging-next 2022-12-02 06:01:28 +00:00
sternenseemann
2a04723331 nixos/rl-2211: remove reference to nowhere
The note this originally referred to was moved to the “Internal Changes”
section and later trimmed down, so the referenced content is no longer
there.
2022-12-01 22:31:24 -05:00
Raito Bezarius
b22e868d22 sourcehut.dispatchsrht: move removal notice to 23.05 release notes 2022-12-01 22:31:01 -05:00
github-actions[bot]
f2b70bba3e
Merge master into staging-next 2022-12-02 00:02:32 +00:00
Martin Weinelt
2755aba128
Merge pull request #204014 from AmineChikhaoui/rel22.11-ec2-amis 2022-12-02 00:03:29 +01:00
AmineChikhaoui
2c90cb9304
ec2-amis: add release 22.11 2022-12-01 17:21:34 -05:00
Daniel Nagy
dbe8182e74
treewide: switch to port type for nixos modules 2022-12-01 22:30:00 +01:00
Ryan Lahfa
d13437b014
Merge pull request #201052 from Stunkymonkey/octoprint-firewall
nixos/octoprint: add openFirewall option
2022-12-01 21:35:40 +01:00
Ryan Lahfa
5d87a1b9b8
Merge pull request #195735 from hax404/tayga_init
nixos/tayga: init
2022-12-01 21:14:50 +01:00
Bernardo Meurer
831b9b4c36
Merge pull request #203818 from qowoz/nix 2022-12-01 15:01:50 -05:00
github-actions[bot]
237453e7f7
Merge master into staging-next 2022-12-01 18:01:25 +00:00
Felix Buehler
6de9ec5969 nixos/octoprint: add openFirewall option 2022-12-01 17:38:08 +01:00
Ryan Lahfa
40b71c3e93
nixos/redmine: add missing lib.mdDoc (#203952) 2022-12-01 17:37:16 +01:00
figsoda
5195ca2346
Merge pull request #203826 from figsoda/lint
nixos/*: apply some lints from statix and nil
2022-12-01 11:20:11 -05:00
Ryan Lahfa
9f6a1541c7
Merge pull request #198592 from winterqt/remove-dispatchsrht
sourcehut.dispatchsrht: remove
2022-12-01 16:18:07 +01:00
Ryan Lahfa
ec545378b5
Merge pull request #98633 from DavHau/patch-1
profiles: add HP Smart Array RAID scsi driver to all-hardware.nix
2022-12-01 16:07:29 +01:00
Ryan Lahfa
bc7c15825b
Merge pull request #117371 from grahamc/sysctl-hostname
network-interfaces: set hostname from sysctl if defined
2022-12-01 16:03:04 +01:00
Ryan Lahfa
2ae5aa0bd6
Merge pull request #118036 from jluttine/add-jupyter-kernel-env
nixos/jupyter: add env kernel option
2022-12-01 16:02:16 +01:00
Ryan Lahfa
94ac413379
Merge pull request #140840 from erdnaxe/isso_hardening
nixos/isso: systemd unit hardening
2022-12-01 15:52:54 +01:00
Ryan Lahfa
78ef5b8663
Merge pull request #171930 from felixsinger/module/redmine/add-component-configs
nixos/redmine: Rework module
2022-12-01 15:35:08 +01:00
Ryan Lahfa
a8a68c3427
Merge pull request #189935 from baloo/baloo/qemu-vm/fixup-efi-partitions
qemu-vm: ensure we do not overwrite the partition table when EFI is in use
2022-12-01 15:16:23 +01:00
Ryan Lahfa
cc11eea79d
Merge pull request #195671 from amarshall/rename-readonlystore
nixos: nix.readOnlyStore -> boot.readOnlyNixStore
2022-12-01 15:06:23 +01:00
Ryan Lahfa
39f399f6ff
Merge pull request #199395 from owm111/physlock-m
nixos/physlock: add muteKernelMessages option
2022-12-01 14:51:50 +01:00
Ryan Lahfa
da5ef17a96
Merge pull request #199520 from bjornfor/nixos-hardware-sane-open-firewal
nixos/sane: add openFirewall option
2022-12-01 14:50:11 +01:00
Ryan Lahfa
cd08eded16
Merge pull request #202077 from Mic92/mandb-cross
nixos/mandb: fix cross compiling
2022-12-01 14:37:02 +01:00
Ryan Lahfa
1c5443f6cd
Merge pull request #203183 from teutat3s/fix/gitea-needs-gpg-in-path
gitea: needs gnupg in its path to sign commits
2022-12-01 14:29:34 +01:00
Ryan Lahfa
e1c7bf6657
Merge pull request #203723 from rvolosatovs/fix/amd-sev
module-list: include AMD SEV module
2022-12-01 14:22:16 +01:00
Georg Haas
8d47058b32
nixos/tests/tayga: init 2022-12-01 11:17:39 +01:00
Alex Zero
16b7892876
nixos/tayga: init 2022-12-01 11:17:20 +01:00
Andy Chun @noneucat
f8f19f84c6 nixos/grocy: add a basic smoke test for file uploads 2022-11-30 22:18:05 -08:00
Mike Placentra
518ef4d8d8 nixos/roon-server: persist installation ID to avoid re-login
Set environment variable ROON_ID_DIR to the same value as ROON_DATA_DIR
so that it knows it's the same installation after a restart.
Otherwise, each time the server process restarts, the user will need
to log in, and configure any server-local audio devices, again.

This environment variable was found in Roon's "easy installer" script:
https://help.roonlabs.com/portal/en/kb/articles/linux-install#The_Easy_Installer_Recommended
2022-12-01 01:05:39 -05:00
github-actions[bot]
7ea4004879
Merge master into staging-next 2022-12-01 06:01:22 +00:00
Andrew Marshall
c88944f025 nixos: nix.readOnlyStore -> boot.readOnlyNixStore
The placement of this option under `nix` was misleading, as it is not
configuration of the Nix daemon, but rather configuration of the NixOS
boot process and how it mounts the Nix store. As such, make it an option
of `boot` to clarify what it actually affects, and imply that it will
only take effect on a reboot.

Since it no longer has the context of nix, adjust the name to include
it.
2022-11-30 22:57:08 -05:00
zowoq
34386263f7 nixos/nix-fallback-paths: 2.11.0 -> 2.11.1 2022-12-01 12:32:15 +10:00
Mario Rodas
4a057b08c4
Merge pull request #203733 from nagy/freenet-nixos-test
nixosTests.freenet: init
2022-11-30 21:18:55 -05:00
github-actions[bot]
818d9a61a3
Merge master into staging-next 2022-12-01 00:02:26 +00:00
Naïm Favier
e989ef9671
Merge pull request #203595 from ncfavier/registry-paths 2022-12-01 01:01:30 +01:00
figsoda
b865b96b97 nixos/invoiceplane: remove unnecessary parentheses 2022-11-30 18:13:58 -05:00
figsoda
f97daa68bc nixos/gammu-smsd: remove unnecessary parentheses 2022-11-30 18:12:53 -05:00
figsoda
1ecbafd0a2 nixos/discourse: remove unnecessary parentheses 2022-11-30 18:01:29 -05:00
figsoda
d1c73c2543 nixos/keepalived: remove unnecessary parentheses 2022-11-30 17:59:52 -05:00
figsoda
7dfc2a1369 nixos/user-groups: remove unnecessary parentheses 2022-11-30 17:58:55 -05:00
figsoda
55acad5c35 nixos/softether: apply statix suggestions 2022-11-30 17:56:56 -05:00
figsoda
d65639ce40 nixos/redis: simplify 2022-11-30 17:38:52 -05:00
figsoda
dfff1a2b83 nixos/prosody: simplify logic 2022-11-30 17:36:07 -05:00
figsoda
025142b808 nixos/hbase: remove unnecessary parenthesis 2022-11-30 17:32:53 -05:00
figsoda
1b9b057d92 nixos/buildbot: syntax clean up 2022-11-30 17:31:28 -05:00
figsoda
a356511f1a nixos/crossfire-server: remove unnecessary parentheses 2022-11-30 17:29:36 -05:00
figsoda
fd4f865645 nixos/nixpkgs: remove unused binding 2022-11-30 17:27:31 -05:00
figsoda
ca6c2c2111 nixos/docker-image: clean up let-in binding 2022-11-30 17:27:23 -05:00
Samuel Dionne-Riel
471e42794c nixos/plasma5: Add iio sensors proxy for Plasma Mobile
This makes autorotate actually work.
2022-11-30 17:12:30 -05:00
KFears
79d19d6c9c nixos/grafana: fix 22.11 release notes 2022-12-01 00:24:41 +04:00
Maciej Krüger
0c99764a00
Merge pull request #203609 from aanderse/nixos/lxc-container 2022-11-30 21:04:22 +01:00
Martin Weinelt
7ff150ec50
Merge pull request #203781 from SuperSandro2000/fix-link
nixos/release-notes: fix link formatting
2022-11-30 19:29:05 +01:00
Sandro Jäckel
29450f5d80
nixos/release-notes: fix link formatting 2022-11-30 19:19:55 +01:00
Martin Weinelt
ce698e3f0b
Merge pull request #203735 from mweinelt/nixos-22.11-docs
Release NixOS 22.11
2022-11-30 19:19:48 +01:00
Martin Weinelt
384b898d18
Merge pull request #203774 from mweinelt/nixos-22.11-rl-fixups 2022-11-30 19:05:30 +01:00
maralorn
6184f635b3 nixos/doc: Fix typo in 22.11 release manual 2022-11-30 19:03:28 +01:00
Martin Weinelt
068f7348db nixos/doc/rl-2211: more cleanup 2022-11-30 19:01:13 +01:00
github-actions[bot]
cb51cfe745
Merge master into staging-next 2022-11-30 18:01:11 +00:00
Taeer Bar-Yam
67d671d5b7 nixos/firejail: remove the need for qualifications 2022-11-30 12:45:16 -05:00
Jörg Thalheim
4d9ac448db
Merge pull request #203391 from winterqt/rl-2211-cleanup
nixos/doc/rl-2211: cleanup
2022-11-30 18:07:31 +01:00
Lin Jian
0c70035f24
nixos/lib: add /home to pathsNeededForBoot
Before this patch, if we:

  1. add a new user in the config,
  2. mount /home seperately,
  3. not set neededForBoot for /home,
  4. and run `nixos-rebuild boot`,

the newly added user's home will not be created after a reboot. This
is because when nixos/modules/config/update-users-groups.pl is running
in stage 2 to setup users, /home is not mounted.

This patch fixes this issue.
2022-12-01 00:49:46 +08:00
Jörg Thalheim
07fe1b987b nixos/doc/rl-2211: cleanup 2022-11-30 17:37:03 +01:00
Aaron Andersen
ecf7441d25 nixos/lxc: apply recommendations from distrobuilder 2022-11-30 10:09:59 -05:00
Elis Hirwing
9126bcf608
Merge pull request #203634 from LeSuisse/pcre-jit-sealloc-issue
php8*: disable PCRE2 JIT SEAlloc to avoid crashes when forking
2022-11-30 16:03:36 +01:00
Thomas Gerbet
622f4ee354 php8*: disable PCRE2 JIT SEAlloc to avoid crashes when forking
This is a follow up to #200815 and #184634.

The PCRE2 JIT SEAlloc does not support the `fork()` as announced in
their README [0]:
> If you are enabling JIT under SELinux environment you may also want to add
>  --enable-jit-sealloc, which enables the use of an executable memory allocator
>  that is compatible with SELinux. Warning: this allocator is experimental!
>  It does not support fork() operation and may crash when no disk space is
>  available. This option has no effect if JIT is disabled.

As a result using it in PHP can break apps and tools, it can only be
enabled under very specific context where you have a full picture of
what the PHP code is doing.

This contribution disables again the PCRE2 JIT SEAlloc and extends the
existing PHP/PCRE2 tests to make sure we do not enable it again by
mistake.

[0] https://www.pcre.org/readme.txt
2022-11-30 13:22:39 +01:00
Bobby Rong
d54eca4cbb
Merge pull request #203589 from bobby285271/cinnamon
Cinnamon updates 2022-11-29
2022-11-30 20:21:12 +08:00
github-actions[bot]
b910b25976
Merge master into staging-next 2022-11-30 12:01:13 +00:00
Daniel Nagy
807c2f1fc0
nixosTests.freenet: init 2022-11-30 12:15:00 +01:00
Martin Weinelt
f1b9cc23aa Release NixOS 22.11 2022-11-30 11:52:38 +01:00
Minijackson
31f1a9a2a9 nixos/netbox: fix ldap configuration 2022-11-30 10:10:28 +01:00
Minijackson
01932120ab nixos/netbox: set path of dynamic content
By default this paths are set in the Nix store, and so no media,
reports, or scripts could be added / modified
2022-11-30 10:10:28 +01:00
Roman Volosatovs
a2251e2225
module-list: include AMD SEV module
Signed-off-by: Roman Volosatovs <rvolosatovs@riseup.net>
2022-11-30 09:11:50 +01:00
github-actions[bot]
aff62e907a
Merge master into staging-next 2022-11-30 06:01:30 +00:00
Andrew Marshall
87245df5d3 nixos/stubby: Support fine-grained logLevel
In much older versions, Stubby only supported debug logging, but that is
no longer true, so support the fine-grained log level.
2022-11-29 20:14:00 -06:00
Winter
881f22670e nixos/doc/rl-2211: add entry for aarch64-linux jobset inclusion/images on homepage 2022-11-29 21:07:36 -05:00