nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-14 01:33:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
426,619 Commits 200 Branches 125 Tags 8.9 GiB
beed76d557
Commit Graph

23069 Commits

Author SHA1 Message Date
Jan Tojnar
e598636243 doc/nixos/postgress: Mention extensions in upgrading 
This is easy to miss and can lead to annoying failures.
 2022-10-26 15:06:09 +02:00
Jan Tojnar
0de7128deb doc/nixos/postgress: Streamline upgrade script 
We already need to set the package so no need to manually copy the schema version.
 2022-10-26 15:05:13 +02:00
github-actions[bot]
01d2877656
Merge staging-next into staging 2022-10-26 06:01:50 +00:00
Anderson Torres
0614d5d969
Merge pull request #197229 from lucasew/nixos/uvesafb 
nixos/uvesafb: init
 2022-10-25 22:47:19 -03:00
github-actions[bot]
4e978a8caa
Merge staging-next into staging 2022-10-26 00:03:42 +00:00
Niklas Hambüchen
f5c5386870 nixos/smokeping: Don't show 413 Forbidden on thttpd /. Fixes #197704 2022-10-25 23:11:50 +02:00
github-actions[bot]
81a6c5a54c
Merge staging-next into staging 2022-10-25 18:16:24 +00:00
Carl Richard Theodor Schneider
1526a1b041 adguardhome: Add schema_version 
This will add `passthru.schema_version` to be used as default value for
the adguardhome module.
It will also update the `update.sh` to keep the `schema_version` in sync
with the version by inspecting the sourcecode.

This might break existing configs, if they use deprecated values that don't
appear in newer schema_versions and schema_version wasn't set explicitly.
Explicit declarations of schema_version always have higher priority.

This also removes the `host` and `config` settings in favour of using the
appropriate `settings`.

Fixes #173938

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-25 17:35:27 +02:00
Jan Tojnar
361d98667c
Merge pull request #197029 from jtojnar/webp-loader 
webp-pixbuf-loader: Adopt by GNOME
 2022-10-25 17:02:06 +02:00
colin
e4235c60b7 freshrss: use an absolute path for ExecStart 
this fixes the issue after a recent PR on this file:
<https://github.com/NixOS/nixpkgs/pull/196140#discussion_r1002907603>
 2022-10-25 05:22:45 -07:00
github-actions[bot]
f332a666fb
Merge staging-next into staging 2022-10-25 12:02:09 +00:00
MidAutumnMoon
6724d2221a
nixos/shiori: set proper SystemCallFilter 2022-10-25 16:48:01 +08:00
MidAutumnMoon
9b8fd74d68
nixos/nats: set proper SystemCallFilter 2022-10-25 16:47:46 +08:00
MidAutumnMoon
afb8d0e5a6
nixos/prometheus-smartctl: set proper SystemCallFilter 2022-10-25 16:47:09 +08:00
MidAutumnMoon
f4342c11e5
nixos/geoipupdate: set proper SystemCallFilter 2022-10-25 16:45:49 +08:00
MidAutumnMoon
5c983ac37b
nixos/prosody-filer: set proper SystemCallFilter 2022-10-25 16:14:24 +08:00
MidAutumnMoon
7742cd543d
nixos/yggdrasil: set proper SystemCallFilter 2022-10-25 16:09:31 +08:00
MidAutumnMoon
ae025da558
nixos/dex-oidc: set proper SystemCallFilter 2022-10-25 16:07:04 +08:00
MidAutumnMoon
bd8413e8e1
nixos/snowflake-proxy: set proper SystemCallFilter 2022-10-25 15:41:54 +08:00
github-actions[bot]
29e01ddcd1
Merge staging-next into staging 2022-10-25 06:24:30 +00:00
MidAutumnMoon
d3a95ce32c
nixos/listmonk: set proper SystemCallFilter 2022-10-25 11:55:18 +08:00
MidAutumnMoon
ba8041fc2b
nixos/croc: set proper SystemCallFilter 2022-10-25 11:51:40 +08:00
Andrew Kvalheim
545b74f075 brscan4-etc-files: rename name to pname&version 
re #103997
 2022-10-25 02:38:39 +02:00
github-actions[bot]
c80ab7a746
Merge staging-next into staging 2022-10-25 00:05:26 +00:00
Martin Weinelt
fcf2d05d81 nixos/acme: Relax syscall filter after go upgrade 
With Go 1.19 calls to setrlimit are required for lego to run.

While we could allow setrlimit alone, I think it is not unreasonable to
allow @resources in general.

Closes: #197513
 2022-10-25 07:22:27 +10:00
Sandro
64f3daf6d5
Merge pull request #197459 from SuperSandro2000/changedetection-typo 2022-10-24 23:07:26 +02:00
github-actions[bot]
38a8b47046
Merge staging-next into staging 2022-10-24 18:06:30 +00:00
Timothy DeHerrera
3266f35fcd
Merge pull request #197503 from eigengrau/zsh-fpath-prefer-profiles 
nixos/zsh: prefer added completions over completions shipped with Zsh
 2022-10-24 11:35:29 -06:00
Bernardo Meurer
8a7f3f3271
Merge pull request #197585 from KFearsoff/fix-broken-grafana-configs 2022-10-24 18:28:42 +02:00
KFears
f3cb29a5b8 nixos/grafana: fix issues with rfc42 refactoring 2022-10-24 19:31:50 +04:00
Guillaume Girol
e06cab26e3
Merge pull request #196617 from oxalica/fix/btrbk-options 
nixos/btrbk: fix ordering of subsections and refactor
 2022-10-24 14:33:38 +00:00
MidAutumnMoon
0ce08acdce nixos/navidrome: set proper SystemCallFilter 2022-10-24 22:21:59 +10:00
MidAutumnMoon
7415970a3e nixos/endlessh-go: set proper SystemCallFilter 2022-10-24 22:21:02 +10:00
MidAutumnMoon
db029623b7 nixos/dnscrypt-proxy2: properly set SystemCallFilter 2022-10-24 22:20:42 +10:00
MidAutumnMoon
19b481fbc6
nixos/galene: set proper SystemCallFilter 2022-10-24 20:19:12 +08:00
MidAutumnMoon
e04013af1a nixos/gitea: set proper SystemCallFilter 
remove trailing whitespace
 2022-10-24 22:18:42 +10:00
github-actions[bot]
c5b73dc964
Merge staging-next into staging 2022-10-24 12:01:55 +00:00
Robert Hensing
7ea35fae3e
Merge pull request #197406 from bjornfor/add-nfs4-to-fstab-skip-list 
nixos/filesystems: add nfs4 to fsToSkipCheck
 2022-10-24 13:10:46 +02:00
Michele Guerini Rocco
bbdc6e34d1
Merge pull request #197069 from rnhmjoj/pr-minimal 
nixos/profiles/minimal: don't install freedesktop files
 2022-10-24 10:57:40 +02:00
M. A
8ac339533f nixos/snipe-it: Add missing upload directories 
Resolves #187179
 2022-10-24 08:20:30 +00:00
Sebastian Reuße
8dad5a2239 nixos/zsh: prefer added completions over completions shipped with Zsh 
Zsh ships some rudimentary completions for programs where upstream also ships
their own completions (e.g., curl). So as not to shadow those completions, we
need to prepend to the fpath instead of appending.

Fixes #197502
 2022-10-24 09:27:19 +02:00
oxalica
50eb816d29 nixos/btrbk: fix ordering of subsections and refactor 2022-10-24 08:52:25 +08:00
Sandro Jäckel
f24c4d8a28
nixos/changedetection-io: fix typo 2022-10-24 02:06:49 +02:00
github-actions[bot]
d771a50d9e
Merge staging-next into staging 2022-10-24 00:05:14 +00:00
schnusch
72ee279ab4 nixos/vdirsyncer: init 
inspired by borgbackup
 2022-10-23 23:23:13 +02:00
ajs124
16d6140878
Merge pull request #197386 from Ma27/nextcloud25 
nextcloud25: init
 2022-10-23 23:05:17 +02:00
Bjørn Forsman
3ec90ef87f nixos/filesystems: add nfs4 to fsToSkipCheck 
This change fixes this system journal warning for
`fileSystems.<name>.fsType = "nfs4"` configurations:

  systemd-fstab-generator[714]: Checking was requested for "192.168.0.6:/data", but it is not a device.
 2022-10-23 20:08:08 +02:00
github-actions[bot]
f4c71b2f8c
Merge staging-next into staging 2022-10-23 18:02:19 +00:00
Raito Bezarius
9b7dc6cb1c services/garage: init 2022-10-23 18:54:18 +02:00
Maximilian Bosch
40b7f52b8f
nextcloud25: init 2022-10-23 17:20:49 +02:00
Sandro
eebe7c8588
Merge pull request #197309 from qowoz/hound 2022-10-23 17:16:23 +02:00
lucasew
d31cf8ca0c nixos/uvesafb: init 
Signed-off-by: lucasew <lucas59356@gmail.com>
 2022-10-23 11:47:11 -03:00
Martin Weinelt
ccbc7eb29e
Merge pull request #197302 from MidAutumnMoon/miniflux-service-fix 2022-10-23 14:58:05 +02:00
Jonas Heinrich
65dd4df8a2
Merge pull request #197172 from jkarlson/dokuwiki 
nixos/dokuwiki: Use stateDir everywhere
 2022-10-23 14:51:52 +02:00
MidAutumnMoon
8b4b334a66
nixos/miniflux: fix startup failure caused by improper SystemCallFilter 2022-10-23 20:28:43 +08:00
github-actions[bot]
1a1df3b37d
Merge staging-next into staging 2022-10-23 12:01:47 +00:00
Maximilian Bosch
f9afc634e3
Merge pull request #191768 from KFearsoff/grafana-rfc42 
nixos/grafana: refactor for RFC42
 2022-10-23 13:28:25 +02:00
Julien Malka
b54ae5a868 nixos/uptime-kuma: init module 2022-10-23 12:44:16 +02:00
github-actions[bot]
683aa50df6
Merge staging-next into staging 2022-10-23 06:08:06 +00:00
Linus Heckemann
79ec5f2d2b
Merge pull request #161124 from Atemu/nixos/nix-skip-all-checks 
nixos/nix-daemon: make checkConfig fully disable nix.conf validation
 2022-10-23 07:55:06 +02:00
zowoq
217bf31c03 hound, nixos/hound: deduplicate runtime deps 2022-10-23 12:50:24 +10:00
Sandro
6ffd08e152
Merge pull request #197144 from SuperSandro2000/changedetection-io-network 2022-10-23 03:27:52 +02:00
Sandro Jäckel
30df44aac2
nixos/changedetection-io: fix typos 2022-10-23 01:45:37 +02:00
Tobias Stenzel
8111e4f113 nixos/pam: fix pam_tty_audit config 
Escape the line breaks to render a valid config.
Module arguments have to be at the same line or line endings have to be
escaped with a backslash.
 2022-10-22 23:20:09 +02:00
KFears
9f963f36e5 nixos/grafana: refactor settings for RFC42 2022-10-22 23:56:14 +04:00
KFears
c7cd659710 nixos/grafana: fix markdown docs 2022-10-22 23:54:32 +04:00
KFears
7908ef062f nixos/grafana: add alerting 2022-10-22 23:54:32 +04:00
KFears
34c2ea6750 nixos/grafana: deprecate notifiers 2022-10-22 23:54:31 +04:00
KFears
0852dc859e nixos/grafana: refactor datasources for RFC42 
This commit refactors `services.grafana.provision.datasources` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-22 23:53:24 +04:00
Azat Bahawi
76ccbea152
nixos/endlessh: init module 2022-10-22 16:07:52 +03:00
github-actions[bot]
d079720429
Merge staging-next into staging 2022-10-22 12:01:58 +00:00
github-actions[bot]
71e4896d63
Merge master into staging-next 2022-10-22 12:01:25 +00:00
Arnout Engelen
5784f69a46
Merge pull request #158967 from mschwaig/sd-image-determinism 
sd-image: make firmware partition reproducible, sd-image, dvd-image: get rid of faketime related warnings
 2022-10-22 13:58:22 +02:00
happysalada
fdfdc5df21 caddy: module: rmem_max default 2022-10-22 07:55:53 -04:00
markuskowa
79638604bb
Merge pull request #189703 from ck3d/remove-incomplient-nspawn-options 
nixos/nspawn: Remove not compliant options
 2022-10-22 12:19:49 +02:00
Martin Schwaighofer
0c67f190b1 sd-image: remove unnecessary subshell 
replace the subshell surrounding this block with cd before and after

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-22 12:11:30 +02:00
Martin Schwaighofer
bacef6bb09 dvd-image: replace faketime with --invariant for mkfs.vfat 2022-10-22 12:11:30 +02:00
Martin Schwaighofer
a1d6fd3702 sd-image: replace faketime with --invariant for mkfs.vfat 
This is done for sd-images only here, but should probably also be done
for dvd-images.

The --invariant arg should be a better way of making mkfs.vfat deterministic.
The previous version of invoking faketime was building fine and reproducible
when I was compiling an sdimage for aarch64 under emulation.
It was however still logging errors:
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
The logged errors were presumably inaccurate somehow as calling
faketime was required for reproducibility, even though the log makes it
looks like it failed.
 2022-10-22 12:11:30 +02:00
Martin Schwaighofer
f6ee247a1f sd-image: make firmware partition deterministic 
Based on how it works for the EFI partition of an iso-image at
nixos/modules/installer/cd-dvd/iso-image.nix.
 2022-10-22 12:11:30 +02:00
Emil Karlson
082bc22205 nixos/dokuwiki: Use stateDir everywhere 
Current module does not use non-default stateDir everywhere.

Statedir has a consistent default, use the cfg.stateDir everywhere
unconditionally.
 2022-10-22 09:02:23 +03:00
Sandro Jäckel
17f2c5ba71
nixos/changedetection-io: fix container having no network 2022-10-22 02:14:41 +02:00
github-actions[bot]
9af095c466
Merge staging-next into staging 2022-10-22 00:05:07 +00:00
github-actions[bot]
c8a9826fe2
Merge master into staging-next 2022-10-22 00:04:37 +00:00
Sandro
0d1e0a9f80
Merge pull request #191061 from Izorkin/update-peertube-nginx 2022-10-22 00:02:11 +02:00
Sandro
67e4972c5d
Merge pull request #195745 from virusdave/patch-1 2022-10-22 00:00:52 +02:00
Sandro
d4f4e5f099
Merge pull request #189718 from rnhmjoj/pr-pcsc-polkit 2022-10-21 23:16:21 +02:00
ajs124
3dd1098f45
Merge pull request #195567 from helsinki-systems/feat/jenkins-jdk17 
nixos/jenkins: jdk11 -> jdk17
 2022-10-21 22:59:03 +02:00
Martin Weinelt
80fc469031 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-21 22:33:42 +02:00
Luflosi
a255c43f44
nixos/kubo: convert to RFC42-style settings 2022-10-21 20:54:00 +02:00
Elis Hirwing
844715a8b9
Merge pull request #196819 from Stunkymonkey/freshrss-api-fix 
freshrss: fix greader-api
 2022-10-21 19:56:55 +02:00
Jonas Heinrich
c54a28030f nixos/httpd: Make option adminAddr optional 2022-10-21 09:12:25 -04:00
rnhmjoj
3bb69836cb
nixos/profiles/minimal: don't install freedesktop files 
This saves about 25M from the closure size of:

$ nix build -f nixos system --arg configuration '
  { imports = [ ./nixos/modules/profiles/minimal.nix ];
    fileSystems."/".label="root";
    boot.loader.grub.device = "nodev";
  }'
 2022-10-21 14:54:38 +02:00
KFears
89e30315e0 nixos/grafana: refactor dashboards for RFC42 
This commit refactors `services.grafana.provision.dashboards` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-21 16:42:30 +04:00
rnhmjoj
c90b6a859b
nixos/pcscd: allow use without polkit 
The polkit support in pcsclite is entirely optional but package enables
it unconditionally and this breaks connecting to the pcscd daemon on
systems without polkit.

The fix is making this configurable and automatically disabling
`polkitSupport` when the polkit service is disabled.
 2022-10-21 13:06:40 +02:00
Anderson Torres
77b67a2524
Merge pull request #196862 from atorres1985-contrib/hypr 
hypr: init at unstable-2022-05-25
 2022-10-21 08:00:20 -03:00
Florian Klink
690ccd9c4a
Merge pull request #196917 from flokli/nsncd 
nixos/nscd: add option to use nsncd, init nsncd
 2022-10-21 11:22:17 +02:00
Jan Tojnar
c789af6065 gnome._gdkPixbufCacheBuilder_DO_NOT_USE: Extract from nixos/gdk-pixbuf 
Unlike previously, we now fail loudly when a package not containing a gdk-pixbuf modules is passed.
 2022-10-21 10:06:24 +02:00
Florian Klink
aee40c2d8a nixos/nscd: add enableNsncd option 
When set, this switches from using nscd to using nsncd.

It's a protocol-compatible, non-caching and much less flaky alternative.
 2022-10-21 09:37:18 +02:00
Thomas Watson
39d6cfd68f nixos/sddm: remove stale qmlcache workaround 2022-10-20 22:15:04 -05:00
AndersonTorres
af3779f819 nixos/hypr: add module 2022-10-21 00:01:43 -03:00
github-actions[bot]
c434165354
Merge master into staging-next 2022-10-21 00:05:50 +00:00
Sandro
c9719e7fd6
Merge pull request #189269 from Tom-Hubrecht/ntfy-sh 2022-10-20 20:50:34 +02:00
Sandro
89e49d87d3
Merge pull request #196488 from SuperSandro2000/changedetectionio 2022-10-20 20:25:36 +02:00
github-actions[bot]
80317024cf
Merge master into staging-next 2022-10-20 18:10:43 +00:00
Dave Nicponski
1a73877305 Tweak nginx config for Let's Encrypt ACME challenges 
Currently, this is using a "URI prefix match", but per nginx docs,

```
[...] the location with the longest matching prefix is selected and remembered. Then regular expressions are checked, in the order of their appearance in the configuration file. The search of regular expressions terminates on the first match, and the corresponding configuration is used. If no match with a regular expression is found then the configuration of the prefix location remembered earlier is used.
```
which means a config like this (from wordpress service) will override that
```
locations = {
          "~ /\\." = {
            priority = 800;
            extraConfig = "deny all;";
          };
};
```
😱
Luckily, from nginx docs:
```
If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
```

Whew!
 2022-10-20 10:59:28 -04:00
Bernardo Meurer
d473597e33
Merge pull request #196904 from hercules-ci/nixos-nixpkgs-only-error-when-used 2022-10-20 09:10:29 -04:00
github-actions[bot]
ee0190d830
Merge master into staging-next 2022-10-20 12:01:25 +00:00
Izorkin
abdcfec3a0
nixos/peertube: add nginx configuration 2022-10-20 14:49:51 +03:00
Florian Klink
7987b41d44 nixos/nscd: nixpkgs-fmt 2022-10-20 13:15:16 +02:00
Robert Hensing
1e9864c85e nixos/nixpkgs: Only error when nixpkgs options are actually used 2022-10-20 11:19:20 +02:00
Janne Heß
24167c94f0
Merge pull request #196337 from SuperSandro2000/update-users-groups 
nixos/update-users-groups.pl: sort json file for better reproducibility
 2022-10-20 11:11:49 +02:00
LuoChen
b9d9daf749 synergy: fix services.synergy.server.tls.cert (#196867) 2022-10-20 12:34:45 +08:00
github-actions[bot]
aac580f88f
Merge master into staging-next 2022-10-20 00:05:13 +00:00
Felix Bühler
27e5ca478b
Merge pull request #196140 from uninsane/pr/freshrss-patchShebangs 
freshrss: patchShebangs instead of specifying interpreter at use site
 2022-10-20 00:03:13 +02:00
Felix Buehler
fe9fb739a9 freshrss: fix greader-api 2022-10-19 23:34:26 +02:00
Sandro Jäckel
c9aab9ba97
nixos/changedetection-io: init 2022-10-19 21:33:31 +02:00
github-actions[bot]
958cbc7d51
Merge master into staging-next 2022-10-19 18:09:25 +00:00
Domen Kožar
d2cfe468f8
Merge pull request #196728 from veehaitch/github-runner-new-pats 
nixos/github-runner: support fine-grained personal access tokens
 2022-10-19 14:40:23 +02:00
Martin Weinelt
5d2330ddb5
Merge pull request #195760 from jmbaur/prometheus-kea-exporter 2022-10-19 14:02:15 +02:00
github-actions[bot]
bbaff9a043
Merge master into staging-next 2022-10-19 12:01:22 +00:00
Vincent Haupert
ea8cf2e486 nixos/github-runners: support fine-grained personal access tokens 
Add support for GitHub's new fine-grained personal access tokens [1]. As
opposed to the classic PATs, those start with `github_pat_` instead of
`ghp_`.

Make sure to use a token which has read and write access to the
"Administration" resource group [2] to allow for registrations of new
runners.

[1] https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/

[2] https://docs.github.com/en/rest/overview/permissions-required-for-github-apps#administration
 2022-10-19 13:50:34 +02:00
Domen Kožar
ff27dc3a09
Merge pull request #176691 from codedownio/multiple-github-runners 
GitHub runners: configurable user, environment, and service overrides + multiple runners
 2022-10-19 13:38:23 +02:00
Tom McLaughlin
c2cc9aeafd Use config name by default, falling back to attr name 2022-10-19 03:33:30 -07:00
Jan Tojnar
457f28f6f8 Merge branch 'master' into staging-next 
; Conflicts:
;	pkgs/development/tools/codespell/default.nix

codespell 2.2.2 switched to pyproject & setuptools_scm:
https://github.com/codespell-project/codespell/pull/2523
 2022-10-19 05:24:28 +02:00
Tom Hubrecht
bbf5ba11b4
nixos/ntfy-sh: init 2022-10-19 02:20:16 +02:00
Sandro
e188e93b8f
Merge pull request #196477 from MatthewCroughan/mc/stateless-cups 2022-10-18 23:22:12 +02:00
Atemu
bf6d84958d rl-2211: document nix.checkConfig option changes 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:43:52 +02:00
Atemu
ef70bdd10f nixos/nix-daemon: make checkConfig fully disable nix.conf validation 
A new option checkAllErrors is introduced which implements the old checkConfig
toggle behaviour

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:42:31 +02:00
Sandro
2917c9a67e
Merge pull request #195205 from NULLx76/vmagent 2022-10-18 21:16:10 +02:00
Sandro
7307c3ae6c
Merge pull request #191922 from NukaDuka/karma 2022-10-18 21:10:04 +02:00
digital
f4ccaa51e0 nixos/containers: support nixpkgs.hostPlatform 
Use hostPlatform if both the host and the containers nixpkgs supports
hostPlatform, otherwise fall back to localSystem. This preseves backwards
compatibility.
 2022-10-18 19:15:26 +02:00
Robert Hensing
314959198f
Merge pull request #196447 from Cynerd/oci-container-docker 
nixos/modules/virtualisation: fix oci-containers with docker
 2022-10-18 15:06:18 +02:00
matthewcroughan
a99ab1fbc1 nixos/printing: add services.printing.stateless option 
This will remove all state directories related to CUPS on startup, which
is particularly useful for guaranteeing that printer discovery works
more reliably on some networks, since CUPS will no longer be able to
store state that effects the next run of the service, such as old
printer names and mDNS information.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-17 22:59:24 +01:00
Jean-François Roche
dc529302fe
nixos: add cachix watch-store service 
Self hosted CI push built packages asynchronously to cachix using a service.

Based on @Mic92 [code](https://github.com/cachix/cachix/issues/370#issuecomment-817081937)
 2022-10-17 18:24:03 +02:00
Karel Kočí
76e1e908c1
nixos/modules/virtualisation: fix oci-containers with docker 
The empty attribute set is invalidly provided as service config and
results in evaluation error.
 2022-10-17 16:11:56 +02:00
Tom McLaughlin
5221e7af04 Add comments to explain about the name defaults 2022-10-17 00:04:52 -07:00
Tom McLaughlin
2c099d1a14 Set runner name to attr name for github-runners.${name} 2022-10-17 00:01:04 -07:00
github-actions[bot]
ab4849492d
Merge master into staging-next 2022-10-17 06:24:16 +00:00
Sarah Brofeldt
85d3faa877
Merge pull request #196218 from qowoz/k8s 
kubernetes: drop e2e tests
 2022-10-17 06:33:01 +02:00
Sandro Jäckel
62cace13fe nixos/update-users-groups.pl: sort json file for better reproducibility 2022-10-17 02:37:23 +02:00
github-actions[bot]
18a6423900
Merge master into staging-next 2022-10-17 00:04:21 +00:00
Yarny0
cce8f0a3e3
tsm-client: 8.1.15.1 -> 8.1.15.2, pin openssl version (#193556) 2022-10-17 01:31:05 +02:00
Christian Kögler
46431c0819
Merge pull request #196286 from NickCao/nixos-iwd 
nixos/iwd: allow setting iwd package
 2022-10-16 21:02:05 +02:00
Christian Kögler
6208451903
Merge pull request #195380 from pacien/nixos-neovim-managed-config-rc-note 
nixos/neovim: add note about not loading init.vim
 2022-10-16 21:00:00 +02:00
Christian Kögler
daba20d006
Merge pull request #196301 from bobvanderlinden/pr-nixos-dwm-package 
nixos/dwm: add package option
 2022-10-16 20:47:01 +02:00
Bob van der Linden
0d07870dc5
nixos/dwm: add package option 2022-10-16 20:34:28 +02:00
Maximilian Bosch
a2134c24a4
Merge pull request #195808 from mayflower/fix-wordpress-fonts-dir 
nixos/wordpress: make fonts directory writable
 2022-10-16 20:05:09 +02:00
github-actions[bot]
f52955a521
Merge master into staging-next 2022-10-16 18:01:42 +00:00
Maximilian Bosch
b55eefa3bd
Merge pull request #195703 from Ma27/bump-grafana 
grafana: 9.1.7 -> 9.2.0
 2022-10-16 19:33:14 +02:00
Nick Cao
46982f4194
nixos/iwd: allow setting iwd package 2022-10-16 23:12:26 +08:00
github-actions[bot]
e648107a22
Merge master into staging-next 2022-10-16 06:06:19 +00:00
zowoq
6f983050bb nixos/kubernetes: use package from config 2022-10-16 12:38:50 +10:00
Johan Thomsen
ae712870af nixos/kubernetes: drop obsolete options/cmdline flags 2022-10-16 10:13:05 +10:00
Martin Weinelt
51fcbf5bb7 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-16 00:18:40 +02:00
Florian Klink
80e4946f38
Merge pull request #177406 from davidkna/podman-gen 
nixos/virtualisation.oci-containers: follow podman-generated systemd units more closely
 2022-10-15 22:10:55 +02:00
Jörg Thalheim
8324b6efd3
Merge pull request #196147 from Mic92/systemd-boot-delete-old-specialisation 
Systemd boot delete old specialisation
 2022-10-15 17:36:28 +02:00
Jörg Thalheim
42c9492829 nixos/systemd-boot: decrease catch scope for ValueError 2022-10-15 16:41:38 +02:00
Azat Bahawi
e04579e7cd nixos/please: init module 
Co-authored-by: Cole Helbling <cole.e.helbling@outlook.com>
 2022-10-15 07:05:10 -07:00
Robert Scott
4f54ef201d gocd-server: 19.3.0 -> 22.2.0 2022-10-15 13:34:50 +01:00
Robert Hensing
18e3f431e1 networking.fqdnOrHostName: Elaborate and format the descriptions 2022-10-15 11:57:58 +02:00
github-actions[bot]
886633ba43
Merge master into staging-next 2022-10-15 00:04:00 +00:00
Sandro
bdca71e9c0
Merge pull request #191924 from SuperSandro2000/ddclient-daemon 2022-10-14 23:52:14 +02:00
github-actions[bot]
283841a1ce
Merge master into staging-next 2022-10-14 06:20:50 +00:00
colin
9443d83e6f freshrss: patchShebangs instead of specifying interpreter at use site 
this makes it easier for one to manually administer freshrss.
for example, i can import OPML from the CLI like:

```
$ nix build .#freshrss
$ freshrss FRESHRSS_DATA_PATH=/var/lib/freshrss ./result/cli/import-for-user.php --user admin --file my-opml.opml
```

whereas previously i would have needed to include
`environment.systemPackages = [ php ];` in my system for that to work.
 2022-10-13 21:46:04 -07:00
Timothy DeHerrera
912a3deedc
Merge pull request #110197 from milahu/patch-1 
firewall: move rpfilter to mangle.PREROUTING to fix conntrack
 2022-10-13 21:04:40 -06:00
Tom McLaughlin
fc8fdb03a0 Try simpler github-runner.nix 2022-10-13 19:54:36 -06:00
Tom McLaughlin
69d9538b34
Update nixos/modules/services/continuous-integration/github-runners.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:53:25 -06:00
Tom McLaughlin
cf1b952988
Update nixos/modules/services/continuous-integration/github-runner.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:49:02 -06:00
Martin Weinelt
c728598b84 Merge remote-tracking branch 'origin/staging-next' into staging 2022-10-13 23:29:04 +02:00
Florian Klink
d90ffb83c2
Merge pull request #195154 from veehaitch/networkd-ipv6-pd 
nixos/networkd: add/adopt IPv6 options
 2022-10-13 23:00:26 +02:00
Maximilian Bosch
5afde0064a
nixos/wordpress: make fonts directory writable 
Needed to host e.g. google fonts locally.
 2022-10-13 17:30:22 +02:00
github-actions[bot]
62bcf0ac62
Merge staging-next into staging 2022-10-13 12:02:06 +00:00
victor
28d2fcc400 vmagent: init at 1.82.0 2022-10-13 13:32:47 +02:00
Maximilian Bosch
0df6c52026
nixos/grafana: ensure that declarative prometheus data-sources don't use direct access 
Support for that was permanently dropped in Grafana 9.2.0, see also
f30795b088
 2022-10-13 10:28:29 +02:00
K900
803f180021
Merge pull request #191357 from K900/plasma-beta 
Plasma 5.26.0, KDE Frameworks 5.99
 2022-10-13 10:31:12 +03:00
Vladimír Čunát
00a757ed3f
Merge branch 'master' into staging 2022-10-13 08:27:55 +02:00
Vladimír Čunát
7a94322ed7
Merge #182618: GNOME 42 → 43 2022-10-13 08:14:27 +02:00
Jared Baur
5d79c93d77
nixos/prometheus-kea-exporter: Fix ExecStart arguments 
The current `ExecStart` will not allow for multiple sockets to properly
be passed to the program since the extra newline character is interpreted to
be part of the socket path.
 2022-10-12 20:39:09 -07:00
Artturi
e66d2fd89d
Merge pull request #194256 from Artturin/treewides2 2022-10-13 00:08:01 +03:00
Thiago Kenji Okada
b87716afc9
Merge pull request #188881 from shadaj/patch-4 
nixos/restic: make it possible to use the existing backup cache for prune/check
 2022-10-12 21:26:00 +01:00
K900
37a64594bd nixos/plasma-bigscreen: enable uinput correctly 
This is required for plasma-remotecontrollers to actually work.
Make sure to also add your user to the `uinput` group.
 2022-10-12 20:28:53 +03:00
Shadaj Laddad
dd34f474ed nixos/restic: make it possible to use the existing backup cache for prune/check 
Configures the `--cache-dir` parameter for the prune and check commands run after backing up. For `check`, also adds a `checkOpts` flag to enable using the cache, since that is disabled by default.
 2022-10-12 09:09:27 -07:00
K900
5e62c78f4b nixos/plasma5: add very basic plasma-bigscreen module 2022-10-12 17:15:56 +03:00
Pascal Bach
1ca4c178dd
Merge pull request #195488 from KoviRobi/gitlab-runner-clear-docker-cache 
Gitlab runner clear docker cache
 2022-10-12 07:56:46 +02:00
Robert Hensing
129fd1ab27
Merge pull request #194530 from colemickens/stage-1-systemd-luksroot-toString-fix 
nixos: luksroot: toString-ify keyFileSize usage
 2022-10-12 00:00:35 +01:00
Florian Klink
3ff0a8f840
Merge pull request #189676 from zhaofengli/cryptenroll 
systemd: Fix systemd-{cryptenroll,cryptsetup} TPM2 and FIDO2 support (attempt #3)
 2022-10-12 00:56:04 +02:00
Patrick Jackson
4c69843460 nixos/mullvad-vpn: change dependency for the daemon to pkg mullvad 2022-10-11 12:37:49 -07:00
ajs124
18a17d11ff nixos/jenkins: jdk11 -> jdk17 
see https://www.jenkins.io/doc/upgrade-guide/2.361/
we'll need to do this eventually, not sure when the best point in time is
 2022-10-11 21:16:37 +02:00
Bobby Rong
35dffb9f93 pantheon.elementary-tasks: Mark as broken 
Does not build with e-d-s 3.45+ / libsoup 3 and porting is likely not easy.
 2022-10-11 18:52:33 +02:00
Jan Tojnar
0e989a5bd9 gnome.nautilus: 43.alpha → 43.beta 
https://gitlab.gnome.org/GNOME/nautilus/-/compare/43.alpha...43.beta

Also change the environment variable name to prevent crashes when running in an old environment.

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:15 +02:00
Jan Tojnar
50c6895e77 gnome-browser-connector: 10.1 → 42.0 
https://discourse.gnome.org/t/split-and-rename-of-chrome-gnome-shell/11075
815ec9e1af...v42.0

- Renamed and split into a separate repo from the extensions.
- CMake build replaced with Meson (jq also not needed)
- requests Python module not needed since updates are now solely handled by GNOME Shell itself

Also

- Corrected license
- Cleaned up the module
- Replaced PYTHONPATH in a wrapper by Python environment

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:12 +02:00
Martin Weinelt
373c1a8e43
installer: enable xe-guest-utilities only on x86 
Tries to find a target specific makefile for aarch64 which does not
exist.
 2022-10-11 15:33:42 +02:00
Martin Weinelt
8f366cbfcc
installer: enable vmware guest support on x86 only 
The vmware guest module asserts on this exact condition, so let's only
enable it on that condition.
 2022-10-11 15:33:41 +02:00
Tom McLaughlin
0b67081ad8 Cherry-pick 499748b 2022-10-11 06:10:11 -06:00
Tom McLaughlin
9a7f38040b Fix user type 2022-10-11 06:04:25 -06:00
Tom McLaughlin
b744fee880 Re-add DynamicUser = true per review discussion 2022-10-11 06:04:25 -06:00
Tom McLaughlin
b3de807a6a Update descriptions to use lib.mdDoc 2022-10-11 06:04:25 -06:00
Tom McLaughlin
327e05c382 Get rid of DynamicUser flag 2022-10-11 06:04:25 -06:00
Tom McLaughlin
f13759e21f Fix a deprecated types.string -> types.str 2022-10-11 06:04:25 -06:00
Tom McLaughlin
998083f2ad github-runner: configurable user, environment, service overrides + multiple runners 2022-10-11 06:04:21 -06:00
github-actions[bot]
aabca3ed54
Merge staging-next into staging 2022-10-11 06:17:43 +00:00
github-actions[bot]
5d957f3dba
Merge staging-next into staging 2022-10-11 00:05:26 +00:00
Alyssa Ross
d165f7a513
nixos/installer: fix eval with missing config arg 
Fixes: 4cdda329f0 ("nixos/modules/profiles/base.nix: omit zfs if unavailable")
 2022-10-10 23:58:22 +00:00
Martin Weinelt
cf7f4393f3
Merge pull request #193494 from NixOS/staging-next 2022-10-11 01:12:59 +02:00
Sandro
e7625f9130
Merge pull request #195418 from Baitinq/description_in_gitolite_module 2022-10-11 00:51:48 +02:00
Adam Joseph
4cdda329f0 nixos/modules/profiles/base.nix: omit zfs if unavailable 
The `boot.zfs.enabled` option is marked `readOnly`, so this is the only way to
successfully build a NixOS installer image for platforms that zfs does not build
for.

Co-authored-by: Alyssa Ross <hi@alyssa.is>
 2022-10-10 22:41:57 +00:00
Baitinq
01faaeb4bd
nixos/gitolite: add 'description' module option 
This option allows for the customization of the description of the
created gitolite user.

An example of this being useful is for the integration of gitolite with
cgit, which itself uses the gitolite user's description as the author of
the git repo displayed in its generated site.
 2022-10-10 23:14:46 +02:00
Martin Weinelt
294201004f Merge remote-tracking branch 'origin/master' into staging-next 2022-10-10 21:45:18 +02:00
Robert Kovacsics
c8eae7a526 nixos/gitlab-runner: Add gitlab-runner.clear-docker-cache service 2022-10-10 18:17:19 +01:00
Bernardo Meurer
6f004b7ed5
Merge pull request #195377 from ngkz/fork/ssh-askpass-wayland 2022-10-10 12:36:00 -03:00
Bernardo Meurer
499748bc04
Merge pull request #195003 from veehaitch/fix-github-runner-first-start 2022-10-10 12:35:24 -03:00
pacien
4e1ffaca01 nixos/neovim: add note about not loading init.vim 
Neovim does not load the user configuration when enabled through the
module, unlike when the package is added to the home or system packages
directly. I think this difference is worth mentioning in the module's
documentation, because it was confusing to some friends.
 2022-10-10 17:26:15 +02:00
Kazutoshi Noguchi
67246fbffa nixos/ssh: pass WAYLAND_DISPLAY to ssh-askpass 2022-10-11 00:15:49 +09:00
Bernardo Meurer
f5fb6e5755
Merge pull request #194496 from jansol/pipewire 2022-10-10 11:56:38 -03:00
Bernardo Meurer
ed22079db4
Merge pull request #195141 from zhaofengli/vbox-headless-wrappers 2022-10-10 11:45:40 -03:00
Artturin
7e49471316 treewide: optional -> optionals where the argument is a list 
the argument to optional should not be list
 2022-10-10 15:40:21 +03:00
Artturin
f4ea1208ec treewide: *Flags convert to list from str 
*Flags implies a list

slightly relevant:
> stdenv: start deprecating non-list configureFlags https://github.com/NixOS/nixpkgs/pull/173172

the makeInstalledTests function in `nixos/tests/installed-tests/default.nix` isn't available outside of nixpkgs so
it's not a breaking change
 2022-10-10 15:30:59 +03:00
github-actions[bot]
8d32772702
Merge staging-next into staging 2022-10-10 12:02:18 +00:00
github-actions[bot]
265121ef54
Merge master into staging-next 2022-10-10 12:01:42 +00:00
Cabia Rangris
c9e1ec215b
Merge pull request #195324 from zhaofengli/fwupd-config-merging 
nixos/fwupd: Fix configuration file merging
 2022-10-10 14:11:53 +04:00
Zhaofeng Li
bbbda58c4e nixos/fwupd: Fix configuration file merging 2022-10-10 00:01:32 -06:00
Kartik Gokte
8d5a404437 nixos/karma: init 2022-10-10 10:46:25 +05:30
Martin Weinelt
829f89581a
Merge pull request #181764 from mweinelt/glibc-without-libcrypt 2022-10-09 21:07:26 +02:00
github-actions[bot]
3b37795067
Merge staging-next into staging 2022-10-09 18:02:10 +00:00
github-actions[bot]
44f6a02f39
Merge master into staging-next 2022-10-09 18:01:35 +00:00
Jan Solanti
96dd839e8f pipewire: 0.3.58 -> 0.3.59 2022-10-09 20:17:42 +03:00
Franz Pletz
32e7482074
nixos/tests/shadow: new hashes support with libxcrypt 2022-10-09 18:09:41 +02:00
Sandro
f5802f496d
Merge pull request #187026 from azahi/endlessh-go 2022-10-09 16:50:02 +02:00
github-actions[bot]
3e675d06f5
Merge staging-next into staging 2022-10-09 12:02:02 +00:00
github-actions[bot]
8972888c55
Merge master into staging-next 2022-10-09 12:01:31 +00:00
Franz Pletz
8a86d9d4aa
Merge pull request #195190 from Ma27/coturn-replace-secret 
nixos/coturn: refactor secret injection
 2022-10-09 13:48:49 +02:00
Maximilian Bosch
4ece171482
Merge pull request #194738 from mayflower/pi-tokenjanitor 
nixos/privacyidea: add proper support for `privacyidea-token-janitor`
 2022-10-09 09:50:20 +02:00
Maximilian Bosch
4fd75277dd
nixos/coturn: refactor secret injection 
The original implementation had a few issues:

* The secret was briefly leaked since it is part of the cmdline for
  `sed(1)` and on Linux `cmdline` is world-readable.
* If the secret would contain either a `,` or a `"` it would mess with
  the `sed(1)` expression itself unless you apply messy escape hacks.

To circumvent all of that, I decided to use `replace-secret` which
allows you to replace a string inside a file (in this case
`#static-auth-secret#`) with the contents of a file, i.e.
`cfg.static-auth-secret-file` without any of these issues.
 2022-10-09 09:31:48 +02:00
talyz
fae653deb4 nixos/gitlab: Configure ActionCable 
ActionCable is used to provide realtime updates in a few places,
mainly the issue sidebar.
 2022-10-09 08:12:19 +02:00
talyz
9b3ff51c77 nixos/gitlab: Set a more appropriate type for extraConfig 2022-10-09 08:12:19 +02:00
talyz
58158100f7 nixos/gitlab: Make sure docker-registry starts after cert generation 2022-10-09 08:12:19 +02:00
talyz
8e8253ddb4 nixos/gitlab: Create registry state path 2022-10-09 08:12:19 +02:00
talyz
3dedfb3fa0 nixos/gitlab: Connect to redis through a unix socket by default 
This gives us slightly higher security as you have to be in the gitlab
group to connect, and possibly a (very small) performance benefit as
well.
 2022-10-09 08:12:19 +02:00
talyz
843082eb3a nixos/gitlab: Add findutils to runtime dependencies 
Needed for the gitlab:cleanup:orphan_job_artifact_files rake task.
 2022-10-09 08:12:19 +02:00
talyz
bee6e1dafa nixos/gitlab: Deduplicate runtime dependency listing 2022-10-09 08:12:19 +02:00
talyz
0211edd1ff nixos/gitlab: Add workhorse.config option 2022-10-09 08:12:19 +02:00
github-actions[bot]
9104c83926
Merge staging-next into staging 2022-10-09 00:04:12 +00:00
github-actions[bot]
130aa9ca68
Merge master into staging-next 2022-10-09 00:03:29 +00:00
Vincent Haupert
4f442dde0e nixos/networkd: add new options 
Systemd 250:

> DHCPv4 client support in systemd-networkd learnt a new Label= option
> for configuring the address label to apply to configure IPv4
> addresses.

> The [IPv6AcceptRA] section of .network files gained support for a new
> UseMTU= setting that may be used to control whether to apply the
> announced MTU settings to the local interface.

> The [DHCPv4] section in .network file gained a new Use6RD= boolean
> setting to control whether the DHCPv4 client request and process the
> DHCP 6RD option.

> The [DHCPv6] section in .network file gained a new setting
> UseDelegatedPrefix= to control whether the delegated prefixes will be
> propagated to the downstream interfaces.

> The [IPv6AcceptRA] section of .network files now understands two new
> settings UseGateway=/UseRoutePrefix= for explicitly configuring
> whether to use the relevant fields from the IPv6 Router Advertisement
> records.

> The [RoutingPolicyRule] section of .network file gained a new
> SuppressInterfaceGroup= setting.

> The IgnoreCarrierLoss= setting in the [Network] section of .network
> files now allows a duration to be specified, controlling how long to
> wait before reacting to carrier loss.

Systemd 246:

> systemd-networkd's [DHCPv4] section gained a new setting UseGateway=
> which may be used to turn off use of the gateway information provided
> by the DHCP lease. A new FallbackLeaseLifetimeSec= setting may be
> used to configure how to process leases that lack a lifetime option.
 2022-10-09 00:54:42 +02:00
Vincent Haupert
4367b782bc nixos/networkd: deprecate IPv6Token= 
> The IPv6Token= section in the [Network] section is deprecated, and
>> the [IPv6AcceptRA] section gained the Token= setting for its
>> replacement. The [IPv6Prefix] section also gained the Token= setting.
>> The Token= setting gained 'eui64' mode to explicitly configure an
>> address with the EUI64 algorithm based on the interface MAC address.
>> The 'prefixstable' mode can now optionally take a secret key. The
>> Token= setting in the [DHCPPrefixDelegation] section now supports all
>> algorithms supported by the same settings in the other sections.
 2022-10-09 00:52:55 +02:00
Vincent Haupert
036489ffaa nixos/networkd: adapt dhcpV6Config 
* Remove `ForceDHCPv6PDOtherInformation=`
* Add a missing `WithoutRA=` option

Systemd 250:

> The ForceDHCPv6PDOtherInformation= setting in the [DHCPv6] section
> has been removed. Please use the WithoutRA= and UseDelegatedPrefix=
> settings in the [DHCPv6] section and the DHCPv6Client= setting in the
> [IPv6AcceptRA] section to control when the DHCPv6 client is started
> and how the delegated prefixes are handled by the DHCPv6 client.
 2022-10-09 00:21:05 +02:00
Vincent Haupert
bc8d6d8f96 nixos/networkd: DHCPv6PrefixDelegation -> DHCPPrefixDelegation 
Adapt to changes introduced in Systemd 250:

> The [DHCPv6PrefixDelegation] section in .network file is renamed to
> [DHCPPrefixDelegation], as now the prefix delegation is also
> supported with DHCPv4 protocol by enabling the Use6RD= setting.

Replaces the `dhcpV6PrefixDelegationConfig` with
`dhcpPrefixDelegationConfig` and throws an error if the old option is
used.

Also adapt the respective IPv6 prefix delegation test.
 2022-10-09 00:11:52 +02:00
Zhaofeng Li
6ed7e545ec nixos/virtualbox-host: Fix hardening with headless vbox 
Fixes #157157.
 2022-10-08 15:41:59 -06:00
Jörg Thalheim
b4bb571fa0 iwd: remove myself as maintainer 2022-10-08 16:50:37 +02:00
github-actions[bot]
cdfb8a30a4
Merge staging-next into staging 2022-10-08 12:02:12 +00:00