Commit Graph

294 Commits

Author SHA1 Message Date
Vonfry
0849e0fe7a
nixos/ly: init module 2024-08-03 19:56:25 +08:00
github-actions[bot]
81cddc1677
Merge staging-next into staging 2024-08-03 00:02:50 +00:00
Florian Klink
129558261d
buildkite-agent: 3.59.0 -> 3.76.1 (#331340)
* buildkite-agent: 3.59.0 -> 3.76.1

* nixos/buildkite-agent: put each agent in its own private /tmp

Workaround for https://github.com/buildkite/agent/issues/2916, but
probably still a good idea.
2024-08-02 21:59:32 +02:00
Maximilian Bosch
7b01c5da3c
Merge pull request #329611 from Ma27/pg16
postgresql: 15 -> 16 for 24.11+
2024-08-02 07:09:50 +00:00
github-actions[bot]
fe3585d6db
Merge staging-next into staging 2024-08-02 06:01:37 +00:00
Masum Reza
1318ddf6f3
Merge pull request #326385 from Pandapip1/init-nixos-immersed-vr
nixos/immersed-vr: init module
2024-08-02 11:30:57 +05:30
K900
a4a42b3aec Merge remote-tracking branch 'origin/staging-next' into staging 2024-08-01 08:57:50 +03:00
Christina Sørensen
32ca66f3ed
nixos/kubernetes: refactor feature gates to attrsOf bool, making it possible to disable featureGates
This is a breaking change, requiring users of `featureGates` to change
from a `listOf str` to `attrsOf bool`.

Before:
```nix
featureGates = [ "EphemeralContainers" ];
extraOpts = pkgs.lib.concatStringsSep " " (
[
  "--container-runtime=remote"
  ''--feature-gates="CSIMigration=false"''
});
```

After:
```nix
featureGates = {EphemeralContainers = true; CSIMigration=false;};
```

This is much nicer, and sets us up for later work of migrating to
configuration files for other services, like e.g. has been happening
with kubelet (see: #290119).

Signed-off-by: Christina Sørensen <christina@cafkafk.com>
2024-08-01 07:51:34 +02:00
github-actions[bot]
bcb5e2eebe
Merge staging-next into staging 2024-07-31 12:01:52 +00:00
Arian van Putten
eabd328ae3 docs/release-notes: 24.11: add note about removal of systemd.enableUnifiedCgroupHierarchy 2024-07-31 13:49:58 +02:00
Sandro
3a6a3f6f90
Merge pull request #330787 from Naxdy/work/remove-gtkuseportal 2024-07-31 13:23:46 +02:00
Naxdy
632da75711
nixos/xdg/portal: remove deprecated option gtkUsePortal 2024-07-31 11:27:11 +02:00
euxane
4f2da6c9c1 nixos/fcgiwrap: add option migration instruction errors
This adds migration instructions for the removed global shared instance
configuration of fcgiwrap.

Adding those explicit messages to the previous options requires moving
the newly defined options from `services.fcgiwrap.*` to
`services.fcgiwrap.instances.*` due to an option namespace clash.

`mkRenamedOptionModule` was not used because the previous options do
not directly map to the new ones. In particular, `user` and `group`
were described as setting the socket's permission, but were actually
setting the process' running user.

Co-authored-by: Minijackson <minijackson@riseup.net>
2024-07-31 11:02:37 +02:00
K900
4f29b5a16b Merge remote-tracking branch 'origin/staging-next' into staging 2024-07-31 08:57:17 +03:00
Emily
d21a082a4d
Merge pull request #296691 from helsinki-systems/feat/restic-systemd-inhibit
nixos/restic: add option to inhibit going to sleep
2024-07-30 20:45:56 +02:00
Sandro
f22c61e419
Merge pull request #330109 from teutat3s/default-docker-27
docker: move default from 24.x to 27.x, docker_24 mark as vulnerable, docker_{25,26}: bump
2024-07-29 13:48:20 +02:00
Kerstin Humm
d6b9fb9ba3
gollum: 5.3.3 -> 6.0.1
Changelog: https://github.com/gollum/gollum/releases
2024-07-29 12:49:43 +02:00
Robert Scott
48bde3a189 cc-wrapper: add support for pacret hardening flag on aarch64 2024-07-28 19:27:14 +01:00
Emily
8a837af302
Merge pull request #326819 from risicle/ris-shadowstack
cc-wrapper: add support for `shadowstack` hardening flag
2024-07-28 19:07:52 +01:00
github-actions[bot]
9f368dc2ef
Merge staging-next into staging 2024-07-28 18:01:25 +00:00
Robert Hensing
70d94d8360
Merge pull request #330434 from ShamrockLee/test-overriding-attrs
tests.overriding: structure tests as an attribut set
2024-07-28 15:13:32 +02:00
github-actions[bot]
f8a6105aee
Merge staging-next into staging 2024-07-28 00:03:18 +00:00
Sergei Zimmerman
e3e6e94010
nixos/rathole: init module
Adds a module for rathole package. The package itself
and this module is very similar to frp, so the options
and tests are not very far off from those for frp.
2024-07-28 01:25:01 +03:00
K900
24076029d2 Merge remote-tracking branch 'origin/master' into staging-next 2024-07-28 01:04:35 +03:00
Julien Malka
3d3c0f4d34
Merge pull request #330017 from Mic92/boot-counting
nixos/systemd-boot: init boot counting
2024-07-27 19:53:49 +02:00
Yueh-Shun Li
fdd16729a2 tests.overriding: structure tests as an attribut set
Make individual tests accessible via tests.override.tests.<name>
2024-07-27 22:42:30 +08:00
github-actions[bot]
4007341b1f
Merge staging-next into staging 2024-07-27 12:01:37 +00:00
Vladimír Čunát
64c6a981fe
Merge branch 'master' into staging-next 2024-07-27 09:18:58 +02:00
nicoo
9587ddd261
nixos/nix-channel: don't set nix-path (#327683)
Otherwise, the empty path in `nix.conf` takes precedence over `NIX_PATH`,
and by extension the `nix.nixPath` configuration option.

Introduced in 61afc4d166.
2024-07-26 19:19:38 +00:00
teutat3s
b381163c0b
docker: move default from 24.x to 27.x
24.x is no longer maintained as of February 1, 2024[1].
It did not (yet?) receive a fix for CVE-2024-41110.

[1] https://github.com/moby/moby/pull/46772#discussion_r1686464084
2024-07-26 20:57:43 +02:00
Jörg Thalheim
11067484e9
Merge pull request #328722 from Cottand/update-nomad2
nomad: update 1.6 and 1.8, build with go 1.22 for 1.8 and 1.6, deprecate 1.5
2024-07-26 20:29:41 +02:00
Julien Malka
64edc7f00f nixos/systemd-boot: init boot counting
Update nixos/modules/system/boot/loader/systemd-boot/boot-counting.md

Co-authored-by: Moritz Sanft <58110325+msanft@users.noreply.github.com>
2024-07-26 20:04:37 +02:00
github-actions[bot]
8c2e73a4ed
Merge staging-next into staging 2024-07-26 18:01:39 +00:00
Martin Weinelt
93f4195fe0
Merge remote-tracking branch 'origin/master' into staging-next
Conflicts:
- pkgs/applications/graphics/seamly2d/default.nix
2024-07-26 18:05:04 +02:00
Dennis Stengele
6f3ba8d714
nixos/zeronsd: init module and package (#253610)
* zeronsd: init at 0.5.2

* nixos/zeronsd: init at 0.5.2

This is the module for the new zeronsd package.
2024-07-26 15:20:56 +02:00
github-actions[bot]
df41014acf
Merge staging-next into staging 2024-07-26 12:01:48 +00:00
K900
26801aa449 Merge remote-tracking branch 'origin/master' into staging-next 2024-07-26 14:31:21 +03:00
Pol Dellaiera
ceda66b310
Merge pull request #251687 from martinetd/cryptpad
nixos/cryptpad: init, cryptpad: init at 2024.6.0
2024-07-26 09:21:51 +02:00
github-actions[bot]
a4b184a41e
Merge staging-next into staging 2024-07-24 18:01:51 +00:00
github-actions[bot]
7208220b63
Merge master into staging-next 2024-07-24 18:01:18 +00:00
Masum Reza
81cb83b07f
Merge pull request #290008 from eum3l/add-opengfw
opengfw: init at 0.4.0 (+NixOS module)
2024-07-24 20:39:41 +05:30
Bobby Rong
3a422267eb
Merge pull request #329199 from bobby285271/upd/cinnamon-by-name
Move all packages out of cinnamon scope
2024-07-24 22:04:34 +08:00
Peder Bergebakken Sundt
24899eea99
Merge pull request #327184 from bhankas/goatcounter
nixos/goatcounter: init
2024-07-24 15:38:27 +02:00
eum3l
86ae0fca93 nixos/opengfw: init 2024-07-24 15:11:23 +02:00
github-actions[bot]
df499e467c
Merge staging-next into staging 2024-07-24 12:01:42 +00:00
github-actions[bot]
8402add1f4
Merge master into staging-next 2024-07-24 12:01:12 +00:00
Silvan Mosberger
473e469d5a
Merge pull request #328381 from tie/map-attrs-flatten 2024-07-24 13:32:34 +02:00
Ivan Trubach
b9c51260d0 lib/deprecated: print deprecation warning for mapAttrsFlatten 2024-07-24 13:23:16 +03:00
Yaya
9ea48560ad nixos/doc/rl-2411: Mention a change in nixos/gitlab
`gitaly` is now using the bundled git package instead of `pkgs.git`
internally to maintain compatibility with GitLab.
2024-07-24 10:51:55 +02:00
Maximilian Bosch
bf2d040432
postgresql: 15 -> 16 for 24.11+
Upgrade default postgresql for stateVersion >=24.11.
This also rebuilds all packages linking against `libpq.so` to use
postgresql 16.

After re-reading https://www.postgresql.org/docs/16/release-16.html
I don't see any major risks about doing that.
2024-07-24 10:43:02 +02:00
Dominique Martinet
b846e8762f nixos/cryptpad: init
This is a full rewrite independent of the previously removed cryptpad
module, managing cryptpad's config in RFC0042 along with a shiny test.

Upstream cryptpad provides two nginx configs, with many optimizations
and complex settings; this uses the easier variant for now but
improvements (e.g. serving blocks and js files directly through nginx)
should be possible with a bit of work and care about http headers.

the /checkup page of cryptpad passes all tests except HSTS, we don't
seem to have any nginx config with HSTS enabled in nixpkgs so leave this
as is for now.

Co-authored-by: Pol Dellaiera <pol.dellaiera@protonmail.com>
Co-authored-by: Michael Smith <shmitty@protonmail.com>
2024-07-24 16:17:26 +09:00
Thomas Gerbet
e54753495c
linux/common-config: restrict access to dmesg
`SECURITY_DMESG_RESTRICT` is enabled by default by a lot of
other distributions for a quite a while now, NixOS is a bit of an outlier.
The main justification to enable it is that kernel log might leak kernel
pointers which can then be used by exploits to defeat KASLR (NixOS also
enables `kernel.kptr_restrict` by default since 2013).
2024-07-24 12:06:04 +05:30
Payas Relekar
aebb3d3474 nixos/goatcounter: init 2024-07-24 10:17:44 +05:30
Bobby Rong
be722f046d
cinnamon: Document scope deprecation 2024-07-23 22:12:43 +08:00
github-actions[bot]
d284ef371e
Merge master into staging-next 2024-07-23 12:01:18 +00:00
Gavin John
467f7b25f6 nixos/doc/rl-2411: Document programs.immersed-vr 2024-07-23 10:07:57 +01:00
Florian
a161b380a9
Merge pull request #328205 from litchipi/ifm
ifm: init at 4.0.2
2024-07-23 09:35:56 +02:00
Litchi Pi
0fb7268b9b Init IFM service at version 4.0.2
Signed-off-by: Litchi Pi <litchi.pi@proton.me>
2024-07-23 08:44:50 +02:00
github-actions[bot]
09a27d5bc1
Merge master into staging-next 2024-07-23 00:02:18 +00:00
Martin Weinelt
bd473ceae3
nixos/doc/rl-2411: add ollama changes 2024-07-22 14:51:40 +02:00
Cottand
6e52b03583 nomad_1_5: deprecate 2024-07-20 20:19:33 +01:00
Vladimír Čunát
577f40b8a9
Merge branch 'staging' into staging-next 2024-07-20 16:12:24 +02:00
Pavel Sobolev
c9c14f86db
nixos/flaresolverr: initial commit 2024-07-19 20:55:21 +03:00
github-actions[bot]
401d4660b3
Merge staging-next into staging 2024-07-18 18:01:57 +00:00
Krzysztof Nazarewski
676a51c41f nixos/hardware.display: init 2024-07-18 16:57:40 +03:00
github-actions[bot]
844ec2d5a1
Merge staging-next into staging 2024-07-18 12:01:55 +00:00
Martin Weinelt
983077457f
Merge remote-tracking branch 'origin/staging-next' into staging
Conflicts:
-	pkgs/development/python-modules/uvcclient/default.nix
-	pkgs/development/tools/rust/rust-analyzer/default.nix
2024-07-18 12:35:33 +02:00
Jacek Galowicz
dfc9d68303
Merge pull request #319308 from frederictobiasc/nixosTest-ipv6
nixosTest: Introduce IPv6
2024-07-18 11:52:10 +02:00
Frédéric Christ
c6f6c28218 nixos/testing: Add ipv6 configuration
This contribution enables a working IPv6 setup by default. This works
analog to the current automatic IPv4 setup.
2024-07-18 10:22:32 +02:00
Martin Weinelt
bf8439efae
Merge pull request #311927 from mweinelt/music-assistant
music-assistant: init at 2.0.7
2024-07-18 02:31:18 +02:00
Darragh Elliott
61820de2d4 ddns-updater: Add module, test, update script 2024-07-17 21:56:05 +00:00
Martin Weinelt
974165d1cc
nixos/doc/rl-2411: add music-assistant 2024-07-17 22:29:39 +02:00
Kira Bruneau
b37088de74
Merge pull request #326894 from kira-bruneau/replay-sorcery
replay-sorcery: remove as it is unmaintained upstream
2024-07-17 14:37:51 -04:00
Artturin
20cf80e167 Merge branch 'staging-next' into staging 2024-07-17 21:29:37 +03:00
Nicolas Mémeint
12f1589056 authelia: 4.37.5 -> 4.38.9 2024-07-17 17:26:46 +02:00
Weijia Wang
078fdedf26 Merge branch 'staging-next' into staging 2024-07-17 13:10:23 +02:00
Sandro
51fcc2c92e
Merge pull request #314440 from ju1m/radicle 2024-07-17 13:04:06 +02:00
Pyrox
a24fa6098d
nixos/gotenberg: init 2024-07-17 10:37:35 +02:00
Artturin
a516ea8c99 Merge branch 'staging-next' into staging 2024-07-16 19:07:48 +03:00
Kira Bruneau
c0c8a36716 replay-sorcery: remove as it is unmaintained upstream 2024-07-16 07:29:07 -04:00
Atemu
aba669227b
Merge pull request #326618 from emilazy/drop-ffmpeg-5
ffmpeg_5: drop
2024-07-16 13:06:36 +02:00
Robert Scott
b207b6ef74 cc-wrapper: add support for shadowstack hardening flag 2024-07-14 21:25:47 +01:00
seth
1b26960b05
nixos/doc/rl-2411: budgie and budgiePlugins have been removed 2024-07-14 15:38:11 -04:00
github-actions[bot]
31817540ee
Merge staging-next into staging 2024-07-14 18:01:37 +00:00
Masum Reza
47d9445dfa
Merge pull request #311189 from Luis-Licea/master
nixos/localsend: init
2024-07-14 19:53:43 +05:30
github-actions[bot]
0d7af056e2
Merge staging-next into staging 2024-07-14 12:02:04 +00:00
Pol Dellaiera
1a8e33d451
Merge pull request #326532 from drupol/module/add-tika
nixos/tika: init module
2024-07-14 12:27:27 +02:00
Emily
f9eee6b0a7 ffmpeg_5: drop 2024-07-14 08:35:56 +01:00
Vladimír Čunát
211398c03e
Merge branch 'staging-next' into staging 2024-07-14 08:35:35 +02:00
éclairevoyant
9665639708
Merge pull request #310708 from importantblimp/180654
nixos/input-method: deprecate .enabled option; add .type and .enable options
2024-07-14 00:02:13 +00:00
Gavin John
3e8b6a47fb
nixos/doc/rl-2411: Document programs.localsend 2024-07-14 00:08:34 +05:30
K900
3eeff54780 nixos/alsa: kill sound.enable and friends with fire 2024-07-13 13:56:18 +03:00
Pol Dellaiera
c8bf7321a9
nixos/tika: init module 2024-07-12 18:46:53 +02:00
github-actions[bot]
b66506a79e
Merge staging-next into staging 2024-07-12 12:01:44 +00:00
Martin Weinelt
e62de266ad
Merge pull request #326149 from mguentner/remove_mxisd_ma1sd
nixos/mxisd: remove module
2024-07-12 13:15:11 +02:00
Maximilian Güntner
23e62062bc
nixos/mxisd: remove module
mxisd and ma1sd are both unmaintained
2024-07-12 11:44:59 +02:00
GY
bcc7eff2c5
nixos/input-method: deprecate .enabled option; add .type and .enable options
This commit introduces two new properties:
`enable` and `type`, to replace the `enabled` property.
`enable` has the same meaning as is common across nixpkgs.
`type` has the same meaning as the existing `enabled` property.
`enabled` property is now deprecated and will be removed in a future release.

Fixes #180654
2024-07-12 03:59:20 -04:00
Doron Behar
3cddaded22
Merge pull request #318015 from doronbehar/pkg/yarnConfigHook
Create yarnBuildHook and yarnConfigHook
2024-07-12 09:45:26 +03:00
Vladimír Čunát
2c053848df
Merge branch 'master' into staging 2024-07-11 22:05:05 +02:00
Aleksana
e04b0e7323
Merge pull request #326162 from jopejoe1/vim-refactor
nixos/vim: add enable option and link `/share/vim-plugins` only when …
2024-07-11 21:35:06 +08:00