Commit Graph

12756 Commits

Author SHA1 Message Date
Jan Tojnar
95968e616c
Merge pull request #165231 from K900/the-unplumbening
nixos/pipewire: unbreak mixed Pulse/Pipewire setups
2022-03-26 11:42:15 +01:00
Vladimír Čunát
b9eab51eed
Merge #160343: GNOME: 41 -> 42 2022-03-26 09:16:07 +01:00
K900
435a5b675b nixos/pipewire: introduce an explicit option to use Pipewire as audio server 2022-03-26 08:54:18 +03:00
Emery Hemingway
ad15abe7ff squid: 4.17 -> 5.4.1
* enable HTCP
* enable systemd support
* add NixOS option "services.squid.package"
2022-03-25 15:59:05 +00:00
Maciej Krüger
511e56d76c
Merge pull request #140406 from mkg20001/mvn 2022-03-25 15:08:44 +01:00
Jan Tojnar
87d18174d3 nixos/gdm: fix accessibility menu icon
GNOME Shell 42 switched an icon for the accessibility menu in the top panel
to one from gnome-control-center instead of a legacy one from adwaita-icon-theme:
https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/2155

Let’s add that dependency to the systemd unit since installing it
through `environment.systemPackages` is not enough due to environment isolation.
2022-03-25 15:02:49 +01:00
Bobby Rong
5a00ac1b08 pantheon.gnome-bluetooth-contract: mark as broken
Sendto device selection is removed in gnome-bluetooth 42.
I decide it is not worth to maintain a legacy gnome-bluetooth
package for the contract.
This should also be broken in elementary OS 7.
2022-03-25 15:02:43 +01:00
Bobby Rong
b214aa70b4 pantheon.evince: drop
The vanilla evince already support dark style
preference in Pantheon, so no need to keep the patch.
2022-03-25 15:02:43 +01:00
Bobby Rong
0f97d73b74 pantheon.file-roller: drop
The vanilla file-roller already support dark style
preference in Pantheon, so no need to keep the package.
2022-03-25 15:02:33 +01:00
Jan Tojnar
7addb1c0ec nixos/gnome: install gnome-console (kgx) instead of gnome-terminal
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/457
2022-03-25 15:02:32 +01:00
Jan Tojnar
f828b189d9 nixos/gnome: do not install gnome-screenshot
It has been replaced by a tool built into GNOME Shell:

b281beb124
2022-03-25 15:02:32 +01:00
Jan Tojnar
185522691f nixos/gnome: Remove realtime scheduling option
It is now accomplished using rtkit rather than setcap wrapper:
https://gitlab.gnome.org/GNOME/mutter/-/merge_requests/2060

Replace the option with `security.rtkit.enable`.

Closes: https://github.com/NixOS/nixpkgs/issues/90201
Closes: https://github.com/NixOS/nixpkgs/issues/86730
2022-03-25 15:02:32 +01:00
Jan Tojnar
1ced655c91 nixos/gnome: switch from gedit to gnome-text-editor
This is the new editor.

https://gitlab.gnome.org/GNOME/gnome-build-meta/-/merge_requests/1321
2022-03-25 15:02:31 +01:00
Luflosi
ec415055ba nixos/ipfs: improve how the commandline flags are generated
Use `utils.escapeSystemdExecArgs` instead of relying on the exact way in which `toString` formats a list.
In https://github.com/NixOS/nixpkgs/pull/156706#discussion_r795867283 a suggestion was made and then implemented to replace `toString` with `concatStringsSep " "`.
@pennae then suggested to use `utils.escapeSystemdExecArgs` instead in https://github.com/NixOS/nixpkgs/pull/164846#issuecomment-1073001848.
2022-03-24 20:42:07 +00:00
Guillaume Girol
57b4185159
Merge pull request #164091 from Pascal-Vtx/fix/graylog-module
nixos/graylog: fix group creation
2022-03-24 20:13:55 +00:00
Robert Hensing
ce5a33e62b
Merge pull request #164660 from ncfavier/tests-restrict-arguments
nixos/testing: restrict arguments to makeTest
2022-03-24 17:01:47 +01:00
Peter Hoeg
39a6621150 nixos/https-dns-proxy: init module 2022-03-24 15:36:28 +08:00
Naïm Favier
a8296e7537
nixos/earlyoom: bring the module up to date (#163663)
* nixos/earlyoom: bring the module up to date

Removes deprecated option `ignoreOOMScoreAdjust`, introduces `killHook`
as a replacement for `notificationsCommand`, and adds an `extraArgs`
option for things not covered by the module.

* nixos/earlyoom: add nixos test

* nixos/earlyoom: add reportInterval

Allows setting the interval for logging a memory report. Defaults to
3600 following upstream
     (https://github.com/rfjakob/earlyoom/blob/master/earlyoom.default#L5)
to avoid flooding logs.

* nixos/earlyoom: add free{Mem,Swap}KillThreshold

Fixes https://github.com/NixOS/nixpkgs/issues/83504
2022-03-24 15:34:09 +08:00
Bernardo Meurer
25d1efa97e
Merge pull request #165386 from zhaofengli/moonraker-2022-03-10
moonraker: unstable-2021-12-05 -> unstable-2022-03-10
2022-03-23 10:33:10 -07:00
InternetUnexplorer
2e7cf56e45 kde/plasma5: 5.24.0 -> 5.24.3 2022-03-23 18:19:33 +08:00
Zhaofeng Li
0527ccaca7 nixos/moonraker: Grant polkit permissions for system-level operations 2022-03-22 15:35:38 -07:00
Zhaofeng Li
787aaea68e nixos/moonraker: Add iproute2 to path 2022-03-22 15:35:38 -07:00
Benjamin Staffin
d6f50a5c8e keycloak: fix a missing newline when using plugins 2022-03-22 12:36:14 -04:00
Sivizius
b4c2ffaffa
nixos/wg-quick: add autostart option to interfaces (#162219)
This adds the option `networking.wg-quick.interfaces.<name>.autostart`, which defaults to `true`, which is the previous behavior. With this option set to `false`, the systemd-unit will no longer be set to `wantedBy = [ "multi-user.target" ]` and therefore the tunnel has to be enabled/disabled via `systemctl start/stop wg-quick-<name>`.

Co-authored-by: pennae <82953136+pennae@users.noreply.github.com>
2022-03-22 13:25:57 +00:00
Kevin Cox
954f445608
Merge pull request #165252 from Luflosi/ipfs-hardening
nixos/ipfs: add systemd hardening
2022-03-22 08:10:01 -04:00
Peter Hoeg
052632fd15 nixos/iwd: workaround for race condition where wlan device disappears 2022-03-22 19:36:51 +08:00
Luflosi
41d45d674a
nixos/ipfs: add systemd hardening
Use the hardened systemd unit from upstream.
2022-03-22 11:12:14 +01:00
K900
1dbc26d995 nixos/pipewire: unbreak mixed Pulse/Pipewire setups
Fixes #163066
2022-03-22 11:29:46 +03:00
Benjamin Staffin
34006ebc9d Merge remote-tracking branch 'origin/master' into mvn 2022-03-21 18:37:45 -04:00
Robert Hensing
6c469679f6 Merge remote-tracking branch 'upstream/master' into tests-restrict-arguments 2022-03-21 23:17:17 +01:00
Robert Hensing
eb8b70c020 nixos: Make config.nix.enable pass test 2022-03-21 23:14:10 +01:00
Pascal Bach
4c3c80df54
Merge pull request #114393 from DarkDNA/feature/samba/network-online
nixos/samba: Add a wants=network-online.target to the target.
2022-03-21 19:25:50 +01:00
Kevin Cox
8ce16fcf62
Merge pull request #163451 from hercules-ci/stop-premature-warnings
Stop premature warnings, including `nix.settings` migration
2022-03-21 10:10:40 -04:00
Sandro
3d48fda6f5
Merge pull request #164330 from Luflosi/fix-tor-client-disable 2022-03-20 19:51:30 +01:00
Benjamin Staffin
81b63b6ef6
nixos/oauth2_proxy: add missing oidc providers (#164632)
- Add adfs and keycloak-oidc providrs
- Sort the list alphabetically
2022-03-20 13:31:43 -04:00
pennae
5b1fde773a
Merge pull request #163860 from delroth/synapse-rl-fix
matrix-synapse: fix release notes and doc for #158605 changes
2022-03-20 08:49:46 +00:00
Vladimír Čunát
02f6f9c363
Merge #164895: nixos displayManager.session: drop type 2022-03-19 21:51:08 +01:00
Ninjatrappeur
05417a66e7
Merge pull request #164398 from NinjaTrappeur/nin/pleroma-wrappers 2022-03-19 21:28:40 +01:00
Vladimír Čunát
fd609f9233
nixos services.xserver.displayManager.session: drop type
For now at least.  I expect someone will find a working type later.
It's incorrect and was causing bad issues.  Example test case:
nix-instantiate nixos/release.nix -A tests.xfce.x86_64-linux --dry-run

This is a partial revert of commit b2d803c from PR #162271.
2022-03-19 21:11:41 +01:00
Martin Wurm
fd2215b20c nixos/paperless-ng: fix #164615
Add an exception to the `paperless-ng-server` service's
`SystemCallFilter` as the `mbind` syscall is needed when consuming a
document while having a classification model present.
2022-03-17 19:35:20 +01:00
Félix Baylac-Jacqué
b205832efe nixos/pleroma: regenerate empty release cookie files
Since b9cfbcafdf, the lack of hexdump in
the closure lead to the generation of empty cookie files. This empty
cookie file is making pleroma to crash at startup now we correctly
read it.

We introduce a migration forcing these empty cookies to be
re-generated to something not empty.
2022-03-17 15:22:14 +01:00
Félix Baylac-Jacqué
71d9048f72 nixos/pleroma: inject release cookie path to the pleroma package
We inject the release cookie path to the pleroma derivation in order
to wrap pleroma_ctl with it. Doing this allows us to remove the
systemd-injected RELEASE_COOKIE path, which was sadly
buggy (RELEASE_COOKIE should point to the *content* of the cookie, not
the file containing it).

We take advantage of this to factor out the cookie path.
2022-03-17 15:22:14 +01:00
Robert Hensing
0395086d0c
Merge pull request #162271 from Infinisil/warn-no-type
Throw an error for options without a type
2022-03-16 22:58:45 +01:00
Maximilian Bosch
5226029af8
Merge pull request #164313 from Ma27/drop-nextcloud21
nextcloud21: remove
2022-03-16 17:59:53 +01:00
Artturi
b734f40478
Merge pull request #154004 from illustris/hadoop 2022-03-16 14:05:56 +02:00
Ryan Mulligan
0ab73f9a3f
Merge pull request #162535 from astro/pacemaker
pacemaker: init
2022-03-15 16:06:56 -07:00
Luflosi
1b34039b5f
nixos/tor: fix services.tor.client.enable = false not working
If `services.tor.client.enable` is set to false (the default), the `SOCKSPort` option is not added to the torrc file but since Tor defaults to listening on port 9050 when the option is not specified, the tor client is not actually disabled. To fix this, simply set `SOCKSPort` to 0, which disables the client.
Use `mkForce` to prevent potentially two different `SOCKSPort` options in the torrc file, with one of them being 0 as this would cause Tor to fail to start. When `services.tor.client.enable` is set to false, this should always be disabled.
2022-03-15 23:39:02 +01:00
Maximilian Bosch
15876a546c
nextcloud21: remove
EOLed by upstream in 2022-02[1].

[1] https://docs.nextcloud.com/server/23/admin_manual/release_schedule.html#older-versions
2022-03-15 21:26:46 +01:00
Luflosi
3c63da7cf8
nixos/tor: allow tor to read resolv.conf when using resolved
When `services.resolved.enable` is set to true, the file /etc/resolv.conf becomes a symlink to /etc/static/resolv.conf, which is a symlink to /run/systemd/resolve/stub-resolv.conf. Without this commit, tor does not have access to this file thanks to systemd confinement. This results in the following warning when tor starts:
```
[warn] Unable to stat resolver configuration in '/etc/resolv.conf': No such file or directory
[warn] Could not read your DNS config from '/etc/resolv.conf' - please investigate your DNS configuration. This is possibly a problem. Meanwhile, falling back to local DNS at 127.0.0.1.
```
To fix this, simply allow read-only access to the file when resolved is in use.
According to https://github.com/NixOS/nixpkgs/pull/161818#discussion_r824820462, the symlink may also point to /run/systemd/resolve/resolv.conf, so allow that as well.
2022-03-15 15:16:14 +01:00
Luke Granger-Brown
247a1809a4
Merge pull request #163431 from nazarewk/update-plantuml-server
plantuml-server 1.2021.12 -> 1.2022.2
2022-03-14 13:37:49 +00:00