tobias/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-11-22 16:43:38 +01:00
Code Issues Packages Projects Releases Wiki Activity
534361 commits 201 branches 75 tags 12 GiB
Commit graph

27151 commits

Author SHA1 Message Date
Pol Dellaiera d242834675
Merge pull request #230109 from vdot0x23/docker-extraPackages 
nixos/docker: add extraPackages option
 2023-07-26 15:14:13 +02:00
ajs124 c9cf0708f0
Merge pull request #229271 from markus-heinrich/submit/sogo 
nixos/sogo: fix nginx proxy_buffer config
 2023-07-26 12:39:51 +02:00
Nick Cao 9ae5c2de7f
Merge pull request #244572 from MinerSebas/usb-modeswitch-module-rename 
nixos/usb-modeswitch: Rename module from usbWwan
 2023-07-25 19:24:14 -06:00
Nick Cao 76025b299f
Merge pull request #245454 from 2xsaiko/outgoing/emacs-env 
nixos/emacs: don't set EDITOR to store path
 2023-07-25 19:19:56 -06:00
Nick Cao e3696d3a5d
Merge pull request #245399 from mweinelt/conduit-chmod-umask 
nixos/conduit: improve state directory permissions
 2023-07-25 18:50:03 -06:00
Marco Rebhan b72044c113
nixos/emacs: don't set EDITOR to store path 
Use emacseditor in PATH instead of using the absolute path to prevent
old path from sticking around when switching configurations.
 2023-07-26 00:52:03 +02:00
Sandro 492860f609
Merge pull request #245380 from SuperSandro2000/fonts-typo 
nixos/packages: fix typo preventing mkRenamedOptionModule from working
 2023-07-25 18:56:44 +02:00
oddlama 0ac2ba763f
nixos/hostapd: fix regression after refactoring to RFC42. 
Switching from submodule notation from ({name, ...}: {}) to (submob: {}) seems to require a different accessing scheme.
 2023-07-25 18:40:51 +02:00
MinerSebas 7c309898bc nixos/usb-modeswitch: Rename module from usbWwan 2023-07-25 17:07:00 +02:00
Martin Weinelt 18733782ad
nixos/conduit: improve state directory permissions 
Allow only the conduit user to access its database files, and make sure
to create all new files with 0600 (o+rw).
 2023-07-25 16:54:39 +02:00
Aaron Andersen 8d85dcea22
Merge pull request #215247 from evan-goode/evdevremapkeys 
nixos/evdevremapkeys: init
 2023-07-25 08:45:54 -04:00
Sandro Jäckel 4c07356e3d
nixos/packages: fix typo preventing mkRenamedOptionModule from working 2023-07-25 14:43:40 +02:00
Martin Weinelt 6847465f6f
Merge pull request #242275 from Atemu/nixos/paperless-manage-toShellVars 
nixos/paperless: use toShellVars for paperless-manage
 2023-07-25 12:26:32 +02:00
Robert Hensing c9f9df2f8e
Merge pull request #245038 from R-VdP/fix_nix_channel 
nixos/nix-channel: only try to remove the nix-channel binary if it exists
 2023-07-25 11:25:15 +02:00
asymmetric 46df012d2a
Merge pull request #244332 from SuperSandro2000/fonts-fonts 
nixos/fonts: rename fonts.fonts option to fonts.packages, other cleanups
 2023-07-25 09:49:25 +02:00
Bobby Rong 34d40c6f20
Merge pull request #245105 from thoughtfull-systems/xfce-exclude-packages 
nixos/xfce: add environment.xfce.excludePackages option
 2023-07-25 11:39:30 +08:00
Pol Dellaiera 07fd6694b5
Merge pull request #236368 from SuperSandro2000/etc-dir-names 
nixos/etc: keep directories in derivation name
 2023-07-25 03:02:47 +02:00
Sandro Jäckel 83793ca898
nixos/fonts: rename fonts.enableDefaultFonts to fonts.enableDefaultPackages 
to better fit the renamed fonts.packages
 2023-07-25 00:55:25 +02:00
Sandro dfcffbd74f
Merge pull request #225055 from jtrees/update-wooting-udev-rules 
wooting: update udev rules
 2023-07-24 23:56:31 +02:00
Joshua Trees 12ad49a130 wooting: clarify requirements for hardware option to work 2023-07-24 22:34:52 +02:00
Gianmarco Gargiulo b34a51f5a7
nixos/gogs: fix deprecations for 0.13.0 
Changed APP_NAME to BRAND_NAME, DB_TYPE to TYPE and PASSWD to PASSWORD.
 2023-07-24 19:41:52 +00:00
Sandro Jäckel f9fdeb2dbc
nixos/ghostscript: evaporate the extra whitespace 2023-07-24 17:34:39 +02:00
Sandro Jäckel b0c67b4b6e
treewide: rename fonts.fonts to fonts.packages 2023-07-24 17:34:39 +02:00
Sandro Jäckel 5162df3239
nixos/fonts: rename fonts.fonts option to fonts.packages, other cleanups 
fonts.fonts is not a great name and this also resolves a TODO.
 2023-07-24 17:34:37 +02:00
Paul Stadig cb2f531332 nixos/xfce: allow exclusion of xfce4-notifyd 
Use `environment.xfce.excludePackages` with `systemd.packages` so `xfce4-notifyd` can be excluded
from installation.
 2023-07-24 07:55:10 -04:00
datafoo 533ff8546b nixos/mosquitto: leverage systemd credentials 
Use systemd credentials for all variations of user passwords.
Password files do not need special permissions anymore.
 2023-07-24 11:37:30 +02:00
r-vdp b825f65c90
nixos/nix-channel: only try to remove the nix-channel binary if it exists 
It may not be there if `system.disableInstallerTools = true`.
 2023-07-24 10:34:48 +02:00
Lassulus ceaab39b40
Merge pull request #230196 from doronbehar/nixos/syncthing 
nixos/syncthing: Use API to merge / override configurations
 2023-07-24 08:38:50 +02:00
Stzx e196c81a23
udisks2: fix conf file loading warnings 2023-07-24 11:41:50 +08:00
Pol Dellaiera a30cc10e7f
Merge pull request #242703 from jwygoda/tailscaled-autoconnect 
nixos/tailscale: add authKeyFile option
 2023-07-24 04:48:42 +02:00
Sandro 9ca0bd9db3
Merge pull request #244467 from wamserma/tarsnap-add-package-option 
tarsnap: add package option
 2023-07-24 00:46:24 +02:00
Robert Hensing 35a0bd36d0
Merge pull request #244653 from bjornfor/nixos-generate-config-emit-lib 
nixos-generate-config: add 'lib' arg to configuration.nix
 2023-07-24 00:03:26 +02:00
Paul Stadig 1c5e23c405 nixos/xfce: add environment.xfce.excludePackages option 
Packages in environment.xfce.excludePackages will be excluded from the default environment.

Fixes #91169
 2023-07-23 17:52:41 -04:00
Emily 2d83cbda63
Merge pull request #244463 from mattmelling/cloudlog-pin-php8 
cloudlog: pin php version
 2023-07-23 23:09:50 +02:00
Will Fancher df59d8c0b7
Merge pull request #227208 from ElvishJerricco/zfs-systemd-target-ordering 
zfs: Relate import services to zfs-import.target instead of local-fs
 2023-07-23 16:58:25 -04:00
Sandro 1d1fe1fe14
Merge pull request #245063 from SuperSandro2000/remove-maintainer 
treewide: reduce packages I maintainer
 2023-07-23 21:28:26 +02:00
Will Fancher 0ddc9d0250 zfs: Relate import services to zfs-import.target instead of local-fs 
Being wanted by and ordered before local-fs.target isn't strictly
correct. And in systemd initrd, it's very incorrect because
local-fs.target is for the initrd file system, not the real root file
system.
 2023-07-23 14:12:53 -04:00
Sandro Jäckel cf6c96533b
treewide: reduce packages I maintainer 2023-07-23 19:30:22 +02:00
Doron Behar 047fa8dbdf nixos/syncthing: Use API to merge / override configurations 
If one sets either of `override{Device,folder}s` to false, the jq `*`
operator doesn't merge well the devices and folders, creating duplicate
IDs for folders as observed in #230146. This PR makes the script iterate
via Nix / Bash loop the devices and folders IDs and merges the keys
using upstream's `curl -X POST` support for single objects.

Hence this commit fixes #230146.
 2023-07-23 18:22:33 +03:00
r-vdp 668e2dafb6
nixos/nix-channel: fix editorconfig warnings and apply nixpkgs-fmt 2023-07-23 15:39:32 +02:00
Ilan Joselevich 383dc75dd7
Merge pull request #244949 from FlafyDev/fix/nix-daemon-if 
nixos/nix-daemon: change regular if to mkIf
 2023-07-23 16:02:33 +03:00
oddlama d073105d6b
nixos/switch-to-configuration: fix ignoring of template unit specialization dropins 2023-07-23 13:16:58 +02:00
Robert Hensing 864404dcc1
Merge pull request #244993 from Enzime/fix/linux-builder 
linux-builder: fix eval failure
 2023-07-23 11:59:03 +02:00
Michael Hoang 1deed6cd12 linux-builder: fix eval failure 2023-07-23 18:07:48 +10:00
FlafyDev 519a71edc3 nixos/nix-daemon: change regular if to mkIf 2023-07-23 04:16:04 +03:00
Mihai Fufezan e9f270f1f0
nixos/hyprland: apply config options to package 2023-07-23 01:15:59 +03:00
Ryan Lahfa c4ae17443e
Merge pull request #244233 from oddlama/init-typesense-bin 2023-07-22 18:47:45 +02:00
oddlama 234dd85da0
nixos/typesense: init at 0.24.1 2023-07-22 16:38:13 +02:00
Raito Bezarius 44aee34594 Revert "nixos/gitea: set service type to notify" 
This reverts commit b61919e5e0.

As it breaks Forgejo who does not support this feature yet.
 2023-07-22 16:12:36 +02:00
Florian Klink 02a5e9c933 nixos/networkmanager: create pppd lock directory 
I digged up some 3G stick, which uses ppp to set up the connection.

It failed to spin up ppp, because ppp failed to find the directory it wants to create its lockfiles in:

```
Jul 22 16:47:49 tp ModemManager[926779]: <info>  [modem1] state changed (connected -> disconnecting)
Jul 22 16:47:49 tp ModemManager[926779]: <info>  [modem1] simple connect started...
Jul 22 16:47:49 tp ModemManager[926779]: <info>  [modem1] simple connect state (4/10): wait to get fully enabled
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] state changed (disconnecting -> registered)
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] simple connect state (5/10): wait after enabled
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1/bearer0] connection #11 finished: duration 1s
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] simple connect state (6/10): register
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] simple connect state (7/10): wait to get packet service state attached
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] simple connect state (8/10): bearer
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] simple connect state (9/10): connect
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] state changed (registered -> connecting)
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] state changed (connecting -> connected)
Jul 22 16:47:50 tp ModemManager[926779]: <info>  [modem1] simple connect state (10/10): all done
Jul 22 16:47:50 tp pppd[1576260]: Plugin /nix/store/yqdqzz6y6agcmrfj8b6pwqhjcjyb3ypr-networkmanager-1.42.6/lib/pppd/2.5.0/nm-pppd-plugin.so loaded.
Jul 22 16:47:50 tp NetworkManager[1576260]: Plugin /nix/store/yqdqzz6y6agcmrfj8b6pwqhjcjyb3ypr-networkmanager-1.42.6/lib/pppd/2.5.0/nm-pppd-plugin.so loaded.
Jul 22 16:47:50 tp pppd[1576260]: nm-ppp-plugin: initializing
Jul 22 16:47:50 tp pppd[1576260]: pppd 2.5.0 started by root, uid 0
Jul 22 16:47:50 tp pppd[1576260]: Can't create lock file /var/run/pppd/lock/LCK..ttyUSB0: No such file or directory
Jul 22 16:47:50 tp NetworkManager[1576260]: Can't create lock file /var/run/pppd/lock/LCK..ttyUSB0: No such file or directory
Jul 22 16:47:50 tp pppd[1576260]: nm-ppp-plugin: status 2 / phase 'serial connection'
Jul 22 16:47:50 tp pppd[1576260]: Exit.
Jul 22 16:47:50 tp pppd[1576260]: nm-ppp-plugin: status 0 / phase 'dead'
Jul 22 16:47:50 tp pppd[1576260]: nm-ppp-plugin: cleaning up
```

Creating the directories via tmpfiles.d got the connection to succeed,
and might also fix other connections using PPP.
 2023-07-22 17:00:17 +03:00
Felix Bühler 0a2745684e
Merge pull request #239624 from Stunkymonkey/use-optionalString-then 
treewide: use optionalString instead of 'then ""'
 2023-07-22 13:02:47 +02:00
1000101 f63d863fde
nixos/pgbouncer: init (#241578) 
Co-authored-by: Marek Mahut <marek.mahut@gmail.com>
 2023-07-22 12:49:23 +02:00
Nick Cao 0b411c1e04
Merge pull request #244750 from therishidesai/rdesai/fix-hostapd-hardening 
nixos/hostapd: add AF_PACKET to RestrictAddressFamilies
 2023-07-21 21:16:22 -06:00
Rishi Desai efba841aeb nixos/hostapd: add AF_PACKET to RestrictAddressFamilies 2023-07-21 21:11:14 -05:00
rnhmjoj c7c288fbd5
nixos/dnscrypt-wrapper: avoid using polkit 2023-07-22 02:12:31 +02:00
Lassulus f8ad4849c3
Merge pull request #233386 from Lassulus/syncthing-fix 2023-07-22 01:02:04 +02:00
Matt Layher 93efcdac79
nixos/networkd: add DHCPServer PXE boot options 
Signed-off-by: Matt Layher <mdlayher@gmail.com>
 2023-07-21 16:59:21 -04:00
Ilan Joselevich 75a51855e3
Merge pull request #244689 from Kranzes/twingate-cp 
nixos/twingate: fix cp (-n -> --update=none)
 2023-07-21 23:21:53 +03:00
Maximilian Bosch 7c70396c1d
Merge pull request #242863 from emilylange/nixos/gitea-runtimedirmode 
nixos/gitea: revert change to RuntimeDirectoryMode
Closes ##243340
 2023-07-21 19:22:05 +02:00
Ilan Joselevich b0db3b7c11
nixos/twingate: fix cp (-n -> --update=none) 2023-07-21 19:57:57 +03:00
Bjørn Forsman a7da3eacaf nixos-generate-config: add 'lib' arg to configuration.nix 
Although 'lib' isn't needed by the default configuration, new NixOS uses
can get confused when being recommended configuration.nix snippets like

  systemd.services.NetworkManager-wait-online.enable = lib.mkForce false;

and have `sudo nixos-rebuild switch` fail with

  error: undefined variable 'lib'
 2023-07-21 13:53:33 +02:00
Stzx 3e8f45393d
Fix package ref 2023-07-21 18:56:49 +08:00
Sandro 0bca96affc
Merge pull request #243550 from SuperSandro2000/matrix-sliding-sync-module 2023-07-21 11:39:03 +02:00
Markus S. Wamser a936b9edec tarsnap: add package option 2023-07-21 11:37:15 +02:00
Sandro 9f4a3203eb
Merge pull request #233250 from SuperSandro2000/podman-timer-persist 2023-07-21 11:34:18 +02:00
Nathan Bijnens ffc3eb7c16 ebusd: new module 2023-07-21 18:22:46 +09:00
Maximilian Bosch 38823d15f4
Merge pull request #243883 from techknowlogick/gitea-1200 
gitea: 1.19.4 -> 1.20.0
 2023-07-21 09:41:07 +02:00
rnhmjoj 1f28c8defc
nixos/jool: validate the configuration 
This checks the validity of both NAT64 and SIIT configurations
at build time. An error produces something like this:

    Validating Jool configuration... Error: Cannot parse '283.0.113.1' as an IPv4 address.
 2023-07-21 09:08:40 +02:00
rnhmjoj 4657ff6ca7
nixos/jool: add service for setting up SIIT/NAT64 2023-07-21 09:07:54 +02:00
Artturi dbef093f84
Merge pull request #244449 from Artturin/fixsrip1 2023-07-21 01:44:33 +03:00
Maximilian Bosch b61919e5e0
nixos/gitea: set service type to notify 2023-07-20 22:20:43 +02:00
Andrew Marshall 3d774b4453 util-linux: Fix build on non-Linux 
Build logs show:

> configure: WARNING: non-linux system; not building mount
> configure: WARNING: non-linux system; not building swapon

So skip these on non-Linux

Using getOutput prevents eval failures on other platforms.
Things should stay eval'able with NIXPKGS_ALLOW_UNSUPPORTED_SYSTEM=1

Co-authored-by: Artturin <Artturin@artturin.com>
 2023-07-20 22:03:15 +03:00
Artturin 69267c22f1 nixos/stage-1: fix stripping 
got broken in 6ea1a2a1be which changed
runCommandCC to runCommand but was not
noticed because it was failing silently

runCommand doesn't include CC or bintools
 2023-07-20 21:26:38 +03:00
Felix Bühler f7bb884c13
Merge pull request #243850 from mattchrist/nixos/freshrss_auth_type 
nixos/freshrss: authType option
 2023-07-20 18:58:45 +02:00
Ryan Lahfa 2d0a128ac9
Merge pull request #201562 from jdbaldry/add/osquery 2023-07-20 11:06:46 +02:00
Matt Melling 3f34b65b2c
cloudlog: pin php version 2023-07-20 09:24:47 +01:00
Will Fancher 22bcc32f63
Merge pull request #244033 from SuperSandro2000/issue-243820 
nixos/stage-1: fix mount replacement in extra-utils
 2023-07-20 00:43:33 -04:00
Will Fancher 2e60058b95
Revert "nixos/boot/stage-1: chase symlinks when copying binaries" 2023-07-20 00:03:50 -04:00
Evan Goode be333da51f nixos/evdevremapkeys: init 
Add a service for evdevremapkeys (already packaged), a daemon for
remapping keyboard events
 2023-07-19 23:06:31 -04:00
Matt Christ c4d28ff161 nixos/freshrss: authType option 
This patch adds an `authType` option to enable configuring FreshRSS's
`auth_type` parameter.
Upstream documentation for this feature is located here:
https://freshrss.github.io/FreshRSS/en/admins/09_AccessControl.html

An accompanying NixOS test is provided to confirm this feature works
as expected.
 2023-07-19 19:43:55 -05:00
Sandro Jäckel 18010665ca
nixos/matrix-sliding-sync: init 
Co-authored-by: Emily <55066419+emilylange@users.noreply.github.com>
 2023-07-19 23:59:25 +02:00
Florian Klink 8f15fe7914
Merge pull request #241370 from RaitoBezarius/vxlan-independent 
nixos/networkd: support `Independent` flag for VXLAN netdevs
 2023-07-19 23:18:54 +03:00
Florian Klink 6f66c57acc
Merge pull request #241365 from RaitoBezarius/macaddrs-netdevs 
nixos/networkd: support netdev MAC addresses
 2023-07-19 23:03:34 +03:00
Martin Weinelt aadb3f3058
Merge pull request #244188 from mweinelt/engelsystem-php81 
nixos/engelsystem: pin php at 8.1
 2023-07-19 21:13:26 +02:00
Antoine Eiche da65d1dd20 nixos/osquery: init 2023-07-19 16:55:29 +02:00
Sandro dd5b7cfe1c
Merge pull request #228288 from Cynerd/bigclown 2023-07-19 15:51:25 +02:00
Sandro 3168d64a3f
Merge pull request #241974 from SohamG/pkg/oddjob 2023-07-19 15:07:04 +02:00
Sandro 2a2c6aeb4a
Merge pull request #244323 from SuperSandro2000/nexus 2023-07-19 14:55:09 +02:00
Linus Heckemann 5016dee6b1
Merge pull request #244177 from DeterminateSystems/initrd-chase-symlinks 
nixos/boot/stage-1: chase symlinks when copying binaries
 2023-07-19 14:26:55 +02:00
Sandro Jäckel fe6304df54
nixos/nexus: use mkPackageOption, cleanup 
This fixes:
trace: warning: literalExample is deprecated, use literalExpression instead, or use literalMD for a non-Nix description.
 2023-07-19 13:13:28 +02:00
Karel Kočí fd3f5471b0
nixos/mqtt2influxdb: init module 2023-07-19 09:47:04 +02:00
Karel Kočí dd4eec64ab
nixos/bcg: init module 
This is gateway that transforms BigClown wireless to MQTT.
 2023-07-19 09:47:04 +02:00
Gerg-L bf383adf0a nixos/user-groups: Add to $NIX_PROFILES paths 2023-07-18 23:33:18 -04:00
Gerg-L a5ccd2c5c8 nixos/nvidia: cleaned up reorganized and reformatted 2023-07-18 16:50:42 -04:00
Jack Connors 9bc84eba6f nixos/boinc: add boinc-headless example to package option 2023-07-18 21:47:12 +01:00
Martin Weinelt c8a7edcee1
nixos/engelsystem: pin php at 8.1 
Upstream supports php 8.0/8.1 for the 3.3.0 release. The upgrade to 8.2
caused a type mismatch in carbon.

> PHP message: Exception: Code: 0, Message: Carbon\Carbon::setLastErrors(): Argument #1 ($lastErrors) must be of type array, bool given, called in /nix/store/2prnw9qya9kaks2rwvd6fkrz0c7l5ygd-engelsystem-3.3.0/share/engelsystem/vendor/nesbot/carbon/src/Carbon/Traits/Creator.php on line 98, File: vendor/nesbot/carbon/src/Carbon/Traits/Creator.php:928
 2023-07-18 18:34:58 +02:00
Martin Weinelt 1076c3ada6
nixos/matrix-synapse: Allow passing extras, discover extras from config 
With this change we allow the user to configure extras, exposed as
optional-dependencies on the matrix-synapse package.

The vertical integration between package, user configuration and
deployment is a huge boon which then allows us to dynamically adapt the
python environment the service runs in, by inspecting the configuration
and autodiscovering certain used extras from config paths.
 2023-07-18 17:53:27 +02:00
Soham S Gumaste 162893f92a
nixos/oddjob: init at 0.34.7 2023-07-18 10:48:07 -05:00
Robert Hensing 8ad59ed1b2
Merge pull request #242098 from hercules-ci/nixos-no-nix-channel 
nixos: Disable nix-channel
 2023-07-18 15:27:24 +02:00
Martin Weinelt cd71c603a1
Merge pull request #244137 from flokli/web-eid-app-programs-firefox 
nixos/firefox: stop reading nixpkgs.config.firefox.enableEUWebID
 2023-07-18 14:52:49 +02:00
Sandro cacb77fb27
Merge pull request #206273 from wucke13/master 2023-07-18 13:12:06 +02:00
Sandro 065fd18e5c
Merge pull request #240452 from NickCao/bpftune 2023-07-18 12:43:02 +02:00
Florian Klink ca1dd491c6 nixos/firefox: stop reading nixpkgs.config.firefox.enableEUWebID 
This can cause firefox to be overridden with nativeMessagingHosts
pointing to web-eid-app twice, causing a conflict during build.
 2023-07-18 11:48:17 +03:00
Alexander Flurie 048f9a4adf fix whitespace issue 2023-07-18 00:20:46 -04:00
Mario Rodas 752b3281a4
Merge pull request #244061 from schra/fix/typo-vaultwarden 
nixos/vaultwarden: Fix Markdown syntax of link
 2023-07-17 20:15:58 -05:00
pennae d0299f7fa1
Merge pull request #243570 from dotlambda/patroni-python310 
nixos/patroni: use Python 3.10
 2023-07-18 01:28:29 +02:00
André Schröder 9858973dad nixos/vaultwarden: Fix Markdown syntax of link 
The typo was introduced in 1d41cff3dc
 2023-07-17 23:41:44 +02:00
Linus Heckemann dd2a892144 nixos/boot/stage-1: chase symlinks when copying binaries 
The split of util-linux into further outputs (#236463) resulted in
${util-linux.bin}/bin/mount becoming a symlink. This broke zfs in some
cases.
 2023-07-17 22:13:49 +02:00
Sandro 61dfd95022
Merge pull request #236778 from awakesecurity/jsoo1/buildkite-agent-hooks 
nixos/buildkite-agents: simplify service definition
 2023-07-17 21:46:12 +02:00
Sandro aa90c57672
Merge pull request #240774 from tollb/w20230630c_fix_atop_systemd_units 
nixos/atop: Fix regression in enabling atop units
 2023-07-17 21:26:21 +02:00
Sandro Jäckel 222222bedb
nixos/stage-1: fix mount replacement in extra-utils 2023-07-17 21:12:39 +02:00
Emily 00a7b91eac
Merge pull request #243366 from vamega/sambda-wsdd-firewall-config 
nixos/samba-wsdd: add openFirewall option
 2023-07-17 19:21:58 +02:00
Jarosław Wygoda 7fc0e3334e nixos/tailscale: add authKeyFile option 
Auth key registers new nodes without needing to sign in via a browser

Tailscale sends status changes with systemd-notify.
https://github.com/tailscale/tailscale/blob/v1.44.0/ipn/ipnlocal/local.go#L3670
 2023-07-17 18:52:07 +02:00
ppom 139259a377
slskd: init module (#233648) 
* slskd: init module

* Update nixos/modules/services/web-apps/slskd.nix

* Update nixos/modules/services/web-apps/slskd.nix

* add description to slskd module options

---------

Co-authored-by: ppom <ppom@ppom.me>
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2023-07-17 18:40:54 +02:00
Alexander Flurie c2861bcbdf add separate configurable datadog process agent 2023-07-17 10:34:50 -04:00
Varun Madiath d237a7318c nixos/samba-wsdd: add openFirewall option 2023-07-17 10:22:43 -04:00
Jon Seager 5e73f0c1c9 nixos/lxd: fix default ui package 2023-07-17 08:04:42 -03:00
Maximilian Bosch 42105b2ba3
nixos/gitea: explicitly set CHUNKED_UPLOAD_PATH to writable location 
Fix for Gitea 1.20.0.

Without this being set, e.g. a `git push` (or `ssh` to `git@` in general) fails like this:

    2023/07/17 09:27:05 ...s/setting/setting.go:109:LoadCommonSettings() [F] Unable to load settings from config: unable to create chunked upload directory: /nix/store/yna9nf66wl2n9hlnhxi2g7fdgawk2kxl-gitea-1.20.0/bin/data/tmp/package-upload (mkdir /nix/store/yna9nf66wl2n9hlnhxi2g7fdgawk2kxl-gitea-1.20.0/bin/data: read-only file system)
    Connection to git.mbosch.me closed.
 2023-07-17 11:49:34 +02:00
Nick Cao b47c483bf8
nixos/bpftune: init 2023-07-17 15:59:49 +08:00
Colin e7059632c6 nixos/trust-dns: init 
Co-authored-by: Yt <happysalada@tuta.io>
 2023-07-16 15:24:10 +08:00
Artturi d1abbbd9b6
Merge pull request #242309 from Artturin/ananicyextraxadd 2023-07-16 00:43:45 +03:00
github-actions[bot] 26b725b3fe
Merge master into staging-next 2023-07-15 12:01:05 +00:00
pennae 45ae0efbbc
Merge pull request #243271 from woojiq/keyd-support-multiple-configs 
nixos/keyd: add support for multiple configuration in different files
 2023-07-15 13:59:57 +02:00
Nick Cao d9dd68efda
Merge pull request #243004 from baloo/baloo/keepalived/vrrp-router-id 
keepalived: fixup `virtualRouterId` documentation
 2023-07-15 05:36:10 -06:00
woojiq 2d3bf20086 nixos/keyd: add support for multi-file configuration 
Add `keyboards` option to define different configurations for different IDs. This creates the appropriate files in `/etc/keyd` instead of just `default.conf` as before.
Add `23.11` release note entry.
Add `mkRemovedOptionModule` for the old API with a note on how to revert the old behavior.
 2023-07-15 11:33:41 +03:00
github-actions[bot] 2a22bb7087
Merge master into staging-next 2023-07-15 06:01:19 +00:00
Matti 162039a233 nixos/swraid: Add missing mkRenamedOption 2023-07-15 03:56:54 +02:00
Robert Schütz c9e8e912cb nixos/patroni: use Python 3.10 2023-07-14 18:20:14 -07:00
Sandro 545f079f5e
Merge pull request #243475 from vtuan10/enable-klipper-flash 
nixos/klipper: add enableKlipperFlash option
 2023-07-15 02:54:47 +02:00
adisbladis 110489e12a
Merge pull request #243373 from adisbladis/pict-rs_0_4 
pict-rs: 0.3.3 -> 0.4.0
 2023-07-15 12:36:05 +12:00
github-actions[bot] 73205ff524
Merge master into staging-next 2023-07-15 00:02:34 +00:00
Arthur Gautier ee38adc8e2 keepalived: use ints.between 
Signed-off-by: Arthur Gautier <baloo@superbaloo.net>
 2023-07-14 20:52:48 +00:00
Lassulus a4ffd00fb9
Merge pull request #243251 from schnusch/cgit-regex 
nixos/cgit: fix \v and \f in regexEscape
 2023-07-14 22:03:44 +02:00
schnusch 8980fdd9b5 nixos/cgit: fix \v and \f in regexEscape 2023-07-14 21:14:01 +02:00
github-actions[bot] 0f179253f1
Merge master into staging-next 2023-07-14 18:01:25 +00:00
Sandro 75cfb4925a
Merge pull request #242126 from kjeremy/vmware-guest-aarch64 
vmware-guest module: work under aarch64
 2023-07-14 19:51:14 +02:00
Bruno BELANYI b5f28477aa nixos/prowlarr: make use of 'lib.getExe' 2023-07-14 13:43:26 +00:00
Van Tuan Vo 917bb93078
nixos/klipper: add enableKlipperFlash option 2023-07-14 15:19:36 +02:00
github-actions[bot] 781017eaf1
Merge master into staging-next 2023-07-14 12:01:45 +00:00
Ryan Lahfa c9e26d7d3a
Merge pull request #242036 from jnsgruk/prowlarr-update 2023-07-14 13:48:15 +02:00
Sandro 9e010edec7
Merge pull request #243102 from yu-re-ka/peering-manager-meta 2023-07-14 12:08:05 +02:00
Pol Dellaiera 641b814a44
Merge pull request #243094 from jnsgruk/homepage 
homepage: init at 0.6.21
 2023-07-14 09:53:26 +02:00
adisbladis 4c5afa2af4 nixos/pict-rs: Use pict-rs-0.3 for NixOS <= 23.05 2023-07-14 17:46:26 +12:00
github-actions[bot] 9905fde3a5
Merge master into staging-next 2023-07-14 00:02:39 +00:00
Janik fc7d1abf50
Merge pull request #133092 from TomatoCream/add-jvm-to-nexus 2023-07-14 01:45:19 +02:00
Your Name 9cc181f5c6 nixos/nexus: add jvm package option 2023-07-13 23:16:42 +02:00
Ryan Lahfa 7bc11802ed
Merge pull request #238777 from ORichterSec/esdm-upstream 2023-07-13 22:35:45 +02:00
Will Fancher 11fec97761
Merge pull request #183314 from DeterminateSystems/optional-swraid 
Make swraid optional
 2023-07-13 16:24:34 -04:00
Sandro 6873b5c7ee
Merge pull request #243289 from SuperSandro2000/nullmailer-group 
nixos/nullmailer: allow users in the nullmailer group to send mails
 2023-07-13 21:44:18 +02:00
Guillaume Girol aaf4aa7c7e
Merge pull request #237994 from SebTM/fix/cups-xdg-missing 
cups: add dependency for xdg-open
 2023-07-13 18:22:46 +00:00
github-actions[bot] a3b43106c9
Merge master into staging-next 2023-07-13 18:01:24 +00:00
Bjørn Forsman df1eee2aa6 nixos: show which files are related to "not applying GID/UID change" 
I initially thought it was related to /var/lib/nixos/{gid-map,uid-map},
but it seems that to migrate GID/UID you have to edit
/etc/{group,passwd} (and update GID/UID in all files). So mention those
files in the warning messages.
 2023-07-13 17:21:36 +02:00
Ramses 1bee79f9f7
nixos/swap: make sure all kernel modules are loaded before creating swap devices. (#239163) 
Co-authored-by: iliana etaoin <iliana@buttslol.net>
 2023-07-13 17:12:54 +02:00
Sandro Jäckel b2c1b176d9
nixos/nullmailer: allow users in the nullmailer group to send mails 
In combination with https://github.com/NixOS/nixpkgs/pull/231673 this
allows hardened services to use nullmailer's sendmail.
 2023-07-13 17:02:19 +02:00
Oliver Richter 9d6cd34766 esdm: init at 0.6.0 
Signed-off-by: Oliver Richter <richter-oliver@gmx.net>
 2023-07-13 16:08:12 +02:00
Sebastian Sellmeier 57071b60fe
cups: add xdg-open as dependency package as substitution does not work 
for all desktop-envs
 2023-07-13 15:37:00 +02:00
github-actions[bot] f4330398cd
Merge master into staging-next 2023-07-13 12:01:13 +00:00
Philipp Bartsch 30ad9053ab nixos/murmur: add apparmor policy 2023-07-13 11:11:01 +02:00
Philipp Bartsch ced170c030 nixos/miniflux: add apparmor policy 
This change also extends the test to ensure that normal operations
aren't denied.
 2023-07-13 11:10:39 +02:00
Jon Seager 3de6be0951
nixos/homepage-dashboard: init 2023-07-13 09:38:26 +01:00
adisbladis c88c434c34 nixos/lemmy: Move pictrs url from pictrs_url to pictrs.url 
The upstream config schema changed.
 2023-07-13 15:46:30 +12:00
adisbladis 2bc5b80182 lemmy-ui: Set NODE_ENV to run server in production mode 2023-07-13 15:46:30 +12:00
Philipp Bartsch 0f474b4c6c nixos/apparmor: support custom i18n glibc locales 
The i18n nixos module creates a customized glibcLocales package.
Use the system specific glibcLocale instead of the vanilla one.
 2023-07-12 21:38:31 +02:00
github-actions[bot] 79f291cd13
Merge master into staging-next 2023-07-12 18:01:11 +00:00
Artturin 4cf8006173 nixos/ananicy: take listOf attrs instead of string 2023-07-12 20:13:03 +03:00
Lassulus 0e1fc501c6
Merge pull request #241927 from ether42/usbguard 
nixos/usbguard: rename services.usbguard.implictPolicyTarget to services.usbguard.implicitPolicyTarget
 2023-07-12 18:58:30 +02:00
Yureka 5934231542 nixos/peering-manager: remove global 'with lib;' 2023-07-12 18:39:55 +02:00
Yureka 041e9a8e7a nixos/peering-manager: add meta section 2023-07-12 18:39:54 +02:00
Pol Dellaiera f3d3147417
Merge pull request #241528 from Gerg-L/nixos/direnvrc 
nixos/direnv: init
 2023-07-12 16:42:40 +02:00
Gerg-L 194a3a7d97 nixos/direnv: init 2023-07-12 08:48:17 -04:00
Sandro 5aa53b205e
Merge pull request #208924 from erdnaxe/nitter-network-online 2023-07-12 14:19:30 +02:00
github-actions[bot] bc41da4eb9
Merge master into staging-next 2023-07-12 12:01:23 +00:00
Cabia Rangris d857b1261c
Merge pull request #241667 from cyberus-technology/outline-0.70.0 
outline: 0.69.2 -> 0.70.2
 2023-07-12 14:45:40 +04:00
Rick van Schijndel e1163b27dd
Merge pull request #242912 from chayleaf/fix-getent 
treewide: update path to getent
 2023-07-12 12:37:08 +02:00
Jon Seager b853c70661
nixos/prowlarr: add package option 2023-07-12 10:19:05 +01:00
Felix Buehler bec27fabee treewide: use lib.optional instead of 'then []' 2023-07-12 09:36:28 +01:00
Alexander Sieg b926effb76
outline: 0.69.2 -> 0.70.2 2023-07-12 09:54:57 +02:00
Arthur Gautier c8920fc6d9 keepalived: fixup virtualRouterId documentation 
Router id 0 is an invalid option with keepalived
 2023-07-12 06:12:03 +00:00
github-actions[bot] c7f86a0032
Merge master into staging-next 2023-07-12 00:02:37 +00:00
Arnout Engelen 7e26c8d097
prometheus-exporter-nextcloud: support for auth tokens 
Fixes #176849
 2023-07-12 00:32:17 +02:00
Sandro f57af4cd1e
Merge pull request #237442 from SuperSandro2000/nixos-option 
nixos-option: update to nix 2.15
 2023-07-12 00:14:53 +02:00
chayleaf 4d4c73ff78 treewide: update path to getent 2023-07-12 02:32:23 +07:00
Sandro d6d6d42c74
Merge pull request #237364 from fdietze/patch-3 
fix herbstluftwm session command with other desktop managers
 2023-07-11 21:14:20 +02:00
Sandro Jäckel 49d0af0f1e
nixos/tools: remove nixos-option condition 2023-07-11 17:13:21 +02:00
emilylange da58b13615
nixos/gitea: revert change to RuntimeDirectoryMode 
As this broke most unix socket setups and there is a far better suited
`server.UNIX_SOCKET_PERMISSION` in gitea/forgejo itself.

https://docs.gitea.io/en-us/administration/config-cheat-sheet/#server-server

ref: a0311e5107
 2023-07-11 17:05:45 +02:00
github-actions[bot] 8e15f4621a
Merge master into staging-next 2023-07-11 00:02:57 +00:00
nikstur 3b6bc9b536 nixos/filesystems: init squashfs 2023-07-10 22:02:36 +02:00
Linus Heckemann 7d2124f9e3 stage-1: Only copy mdadm and mdmon into initramfs if enabled 2023-07-10 20:31:13 +02:00
Linus Heckemann c0f963a338 boot.initrd.services.swraid -> boot.swraid 
Since the option affects both stage-1 and stage-2, it does not make
sense to keep it within the boot.initrd namespace.
 2023-07-10 20:20:08 +02:00
Linus Heckemann 0b277bcc2b nixos/swraid: make entire module optional 
swraid support will now only be enabled by default if stateVersion is
older than 23.11. nixos-generate-config will now generate explicit
config for enabling support if needed.
 2023-07-10 16:39:35 +02:00
github-actions[bot] 09bdd38107
Merge master into staging-next 2023-07-10 00:02:30 +00:00
Sandro eae22520b9
Merge pull request #237802 from SuperSandro2000/ceph-package-options 
nixos/ceph: add options to configure package used by each component
 2023-07-09 23:38:28 +02:00
Philipp Bartsch ad7ffe3a7c nixos/apparmor: fix syntax in abstractions/bash 2023-07-09 22:25:30 +02:00
Philipp Bartsch 9145e6df84 nixos/apparmor: add missing abstraction/nss-systemd 
The abstraction/nameservice profile from apparmor-profiles package
includes abstractions/nss-systemd. Without "reexporting" it,
the include fails and we get some errors.
 2023-07-09 22:21:44 +02:00
Jacob Moody 5f97e78c64 pam_dp9ik: init at 1.5 2023-07-09 14:12:21 -05:00
Atemu 2616bb762b nixos/paperless: explain how to set JSON env vars 
Co-authored-by: Christian Theune <ct@flyingcircus.io>
Co-authored-by: Erik Arvstedt <erik.arvstedt@gmail.com>
 2023-07-09 19:52:06 +02:00
github-actions[bot] c60d48234a
Merge master into staging-next 2023-07-09 12:01:18 +00:00
Lily Foster 5c1583bfd7
nixos/plymouth: fix minor doc rendering issue 2023-07-09 02:31:05 -04:00
github-actions[bot] a52559d1f6
Merge master into staging-next 2023-07-09 06:01:18 +00:00
K900 8533b23159 nixos/networkd: fix mismerge of #240969 and #241362 2023-07-09 07:34:42 +03:00
github-actions[bot] 24fc2ed8e1
Merge master into staging-next 2023-07-09 00:02:38 +00:00
Artturin 1b1f25312d ananicy: unstable-2021-11-05 -> unstable-2023-03-21 
type's were renamed so this will break some user rules
 2023-07-09 00:58:05 +03:00
Will Fancher 0b25b4c7c9
Merge pull request #237908 from lilyinstarlight/upd/plymouth-2023-06-05 
plymouth: unstable-2021-10-18 -> unstable-2023-06-05
 2023-07-08 16:57:31 -04:00
Robert Hensing a1d0ee8c50
nixos/nix-channel: Apply suggestions from code review 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2023-07-08 20:49:37 +02:00
github-actions[bot] e949ec41bd
Merge master into staging-next 2023-07-08 18:01:04 +00:00
Ryan Lahfa 186edce0a0
Merge pull request #241362 from RaitoBezarius/macvtap-networkd 2023-07-08 20:00:52 +02:00
Artturin aae2268e0a nixos/ananicy-cpp: add rulesProvider 2023-07-08 20:28:45 +03:00
Artturin ff28d7a982 nixos/ananicy: don't error if $out/ananicy-cpp doesn't exist 
copy new rule
 2023-07-08 20:19:13 +03:00
Artturin b04a04929c nixos/ananicy: add extraTypes, extraCgroups 2023-07-08 19:42:46 +03:00
Joerie de Gram 1785fe6c01 nixos/i18n: correct defaultText for supportedLocales 2023-07-08 16:43:22 +02:00
Robert Hensing 3fd4ac8e82
Merge pull request #237040 from roberth/flexible-activation 
nixos/system: Support pre-activated images
 2023-07-08 16:06:25 +02:00
Atemu 44f637aa8d nixos/paperless: use toShellVars for paperless-manage 
The homebrewed snippet didn't escape vars properly which is an issue because
PAPERLESS_OCR_USER_ARGS requires a JSON string. This also meant a discrepancy
between the services' env vars and paperless-manage's.

Just use the correctly functioning library function for this instead.
 2023-07-08 16:03:45 +02:00
K900 9c98b1a744
Merge pull request #233981 from K900/dont-touch-graphical-session-target 
nixos/x11/display-managers: don't touch graphical-session.target in xsession-wrapper
 2023-07-08 16:43:27 +03:00
Raito Bezarius 6b9e49230d nixos/networkd: add MACVTAP= option for networks 
Example 10. of man page of systemd.network(5) shows:
```

       Example 10. MacVTap

       This brings up a network interface "macvtap-test" and attaches it to "enp0s25".

           # /usr/lib/systemd/network/25-macvtap.network
           [Match]
           Name=enp0s25

           [Network]
           MACVTAP=macvtap-test
```

Which is a MACVTAP example and is currently unsupported in NixOS.
This is useful for people using "modern" technologies with virtual machines.
 2023-07-08 15:42:10 +02:00
Ryan Lahfa ed2f009130
Merge pull request #237873 from Mic92/fix-aarch64-zfs 2023-07-08 14:41:00 +02:00
Ryan Lahfa 7be83143e8
Merge pull request #222536 from oddlama/master 2023-07-08 14:36:18 +02:00
Ryan Lahfa 89d68cebcb
Merge pull request #241126 from RaitoBezarius/fix-plausible-secret-handling 2023-07-08 14:34:20 +02:00
Ryan Lahfa 0d2f526dbb
Merge pull request #241462 from SuperSandro2000/remove-ddclient 2023-07-08 14:33:00 +02:00
Ryan Lahfa 828633d36a
Merge pull request #241534 from samueldr/fix/finally-deprecate-boot-loader-raspberrypi 2023-07-08 14:16:27 +02:00
K900 d26393d60c nixos/x11/display-managers: don't touch graphical-session.target in xsession-wrapper if the desktop knows how to handle it 
This is not correct and will in fact break things because they try to run before the target is reached.
Ideally we'd get rid of it entirely, but WM users rely on this behavior, so allowlist some desktops
to get the sane behavior, and fake the session for the rest until upstreams/NixOS modules catch up.
 2023-07-08 15:09:39 +03:00
github-actions[bot] 3ab86b3cfa
Merge master into staging-next 2023-07-08 12:01:04 +00:00
Ryan Lahfa 49413e25e0
Merge pull request #241314 from jnsgruk/master 2023-07-08 13:58:20 +02:00
Bruce Toll 8f4f1ce005 nixos/atop: Fix regression in enabling atop units 
Fix regression where the systemd units for atop are no longer
automatically started at boot when programs.atop.enable = true.

Regression was introduced in commit: 09350ff7d4
  nixos/atop: Convert log format to fix service start

This commit restructures the atop systemd service config so that the
code to convert the log format gets configured as a preStart script
along with the addition of the wantedBy rule.
 2023-07-08 07:29:22 -04:00
K900 400aafbdc9
Merge pull request #239389 from K900/sddm-0.20.0 
sddm: 0.19.0 -> 0.20.0
 2023-07-08 11:52:02 +03:00
github-actions[bot] cc1af72ece
Merge master into staging-next 2023-07-08 06:01:19 +00:00
adisbladis 038752b14e
Merge pull request #242155 from adisbladis/lemmy-0_18_1 
lemmy-{ui,server}: 0.18.0 -> 0.18.1
 2023-07-08 14:48:16 +12:00
adisbladis f2b2e6d098
Merge pull request #240246 from adisbladis/xonsh-envs 
xonsh: Add wrapper
 2023-07-08 14:26:43 +12:00
adisbladis 8062626e0e lemmy-{server,ui}: 0.18.0 -> 0.18.1 2023-07-08 13:59:30 +12:00
github-actions[bot] 6d9902baac
Merge master into staging-next 2023-07-08 00:02:35 +00:00
Philipp Bartsch 0eabede44b nixos/apparmor: make abstractions/ssl_certs more go friendly 
By default golang's crypto/x509 implementation wants to read
/etc/pki/tls/certs/ when loading system certificates.

This patch adds the path to reduce audit log noise.

Relevant code:
- https://github.com/golang/go/blob/go1.20.5/src/crypto/x509/root_unix.go#L32-L82
- https://github.com/golang/go/blob/go1.20.5/src/crypto/x509/root_linux.go#L17-L22
 2023-07-08 00:53:27 +02:00
Robert Hensing 61afc4d166 nixos/nix-channel: Take care of NIX_PATH's non-empty default when disabled 2023-07-07 23:12:39 +02:00
Janik e46ab54b68
Merge pull request #241783 from gmemstr/n8n-tweaks 2023-07-07 23:04:48 +02:00
Ilan Joselevich 7016b8bf7a
Merge pull request #242076 from Kranzes/nixtmpfilesd 
nixos/nix-daemon: use tmpfiles from nixPackage when possible
 2023-07-07 23:53:27 +03:00
Jeremy Kolb 1e16a937ca vmware-guest module: work under aarch64 2023-07-07 15:40:29 -04:00
github-actions[bot] f66291aefe
Merge master into staging-next 2023-07-07 18:01:21 +00:00
Jon Seager 2fbb85e2c9
nixos/lxd: add ui.enable option to toggle ui feature 2023-07-07 18:31:03 +01:00
Ilan Joselevich 160edcf2c5
nixos/twingate: add package option and test 2023-07-07 20:03:54 +03:00
Robert Hensing d00e242b80 nixos: Add nixos.channel.enable 
For those who wish to get rid of nix-channel.
 2023-07-07 19:00:06 +02:00
Ilan Joselevich af8206f801
nixos/nix-daemon: use tmpfiles from nixPackage when possible 2023-07-07 17:29:05 +03:00
Pol Dellaiera 764472b473
Merge pull request #233091 from yayayayaka/add-team-gitlab 
maintainers/team-list: Add team gitlab
 2023-07-07 15:19:15 +02:00
Nick Cao b119b38cc1
Merge pull request #241134 from frederictobiasc/mautrix 
mautrix-telegram: 0.14.0 -> 0.14.1, python3Packages.mautrix: 0.19.16 -> 0.20.0
 2023-07-07 20:41:07 +08:00
github-actions[bot] da44aac0b1
Merge master into staging-next 2023-07-07 12:01:26 +00:00
K900 c0132f22e9 sddm: 0.19.0 -> 0.20.0 2023-07-07 12:46:59 +03:00
Sandro Jäckel 88d7aa56e1
nixos/nix*: remove not necessary imports 
We do not really declare module dependencies anywhere else and it would
a nousance to move any file if many other referenced it without being
necessary. Also most higher level modules depend on most of the lower
level ones.
So removing this because it can only potentially cause weird issues.
 2023-07-07 11:01:12 +02:00
Robert Hensing 54303b65ef
Merge pull request #241690 from hercules-ci/nixos-nix-modules 
Split nixos/nix-daemon.nix
 2023-07-07 10:29:58 +02:00
Robert Hensing 262e7272c7
Merge pull request #236389 from Enzime/darwin-builder 
darwin-builder: use port 31022 by default
 2023-07-07 10:24:48 +02:00
Robert Hensing 12cb2b0b40 nixos: flakes.nix -> nix-flakes.nix 
I guess this is what people expect to find. Thanks Sandro.
 2023-07-06 23:27:17 +02:00
github-actions[bot] 1a76e12ddc
Merge master into staging-next 2023-07-06 18:01:11 +00:00
Robert Hensing c83ad0598b nixos/*nix*: Update module impl docs and link related modules 
Something extra for the readers.
 2023-07-06 20:00:10 +02:00
Robert Hensing 07de9b62cc nixos/*nix*: Add imports as inherently necessary 
Albeit not technically necessary because of nixos//module-list.nix
 2023-07-06 19:48:22 +02:00
Michele Guerini Rocco d0b4889418
Merge pull request #240295 from sysvinit/sysvinit/udev-privacy-address-scope 
network-interfaces: restrict ipv6 udev rules
 2023-07-06 18:03:36 +02:00
Kevin Boulain 680ee304ca nixos/usbguard: rename services.usbguard.implictPolicyTarget to services.usbguard.implicitPolicyTarget 2023-07-06 15:34:40 +02:00
Kerstin ba445ba8bc
Merge pull request #241088 from jooooscha/master 
maintainers: add joscha
 2023-07-06 15:30:28 +02:00
Michael Hoang edef486898 darwin.linux-builder: rename from darwin.builder 2023-07-06 21:33:09 +10:00
Michael Hoang 34f6ce2fc2 darwin.builder: allow overriding configuration 2023-07-06 21:32:08 +10:00
Michael Hoang 98d970bc37 nixos/qemu-vm: use CA certificates from host 2023-07-06 21:32:08 +10:00
Michael Hoang 285f5e858e darwin.builder: use port 31022 by default 2023-07-06 21:32:08 +10:00
github-actions[bot] b9424c74c5
Merge staging-next into staging 2023-07-06 00:03:25 +00:00
Gabriel Simmer 674de7c287
nixos/n8n: correct configuration, webhookUrl type 
I realised in NixOS#240189 I made some minor errors in the service definition.
 2023-07-05 23:15:52 +01:00
Sandro 5e3022fb17
Merge pull request #240320 from wegank/cdesktopenv-bump 
cdesktopenv: 2.3.2 -> 2.5.1
 2023-07-05 23:41:36 +02:00
Lassulus f751061a08
Merge pull request #237477 from accelbread/usbguard-dbus-support 
nixos/usbguard: add USBGuard dbus daemon option
 2023-07-05 23:13:10 +02:00
Vladimír Čunát d507f1d4a6
Merge branch 'master' into staging 2023-07-05 23:06:05 +02:00
K900 db9b857e1d nixos/iso-image: fix syntax 2023-07-05 21:49:03 +03:00
github-actions[bot] 8791a24d33
Merge staging-next into staging 2023-07-05 18:02:00 +00:00
Will Fancher e520c2e278
Merge pull request #240600 from lilyinstarlight/fix/luksroot-lvm-default-off 
nixos/lvm: toggle initrd enable option independently of main options
 2023-07-05 12:42:45 -04:00
Alexander Sieg 8d80108d6d nixos/gitlab: configure elasticsearch indexer path 2023-07-05 15:01:31 +02:00
Robert Hensing 0f71c406cf nixos/nix-daemon: Move to services/system 
It is now only about the system service.
Granted, it also installs the client package, but that could be
factored out later, with actual test to support such a new type of
configuration.
 2023-07-05 14:59:01 +02:00
Robert Hensing fad172a366 nixos/config/nix-channel: Move NIX_PATH logic 2023-07-05 14:54:29 +02:00
Robert Hensing 5c0c96a828 nixos/config/nix-channel: Factor out root channel initialization 2023-07-05 14:54:29 +02:00
Robert Hensing 1c772cd857 nixos/config/flakes: Factor out 2023-07-05 14:54:28 +02:00
Robert Hensing d6a68f0542 nixos/config/nix-remote-build: Factor out 2023-07-05 14:54:27 +02:00
Robert Hensing 4bbd44908c nixos/config/nix: Move extraOptions 2023-07-05 14:54:27 +02:00
Robert Hensing 19e33831c6 nixos/config/nix: Move nix.check* 2023-07-05 14:54:26 +02:00
Robert Hensing d73da5b868 nixos/config/nix: Move nix.settings 2023-07-05 14:54:26 +02:00
Yaya 71be5933cd nixos/snipe-it: Use the pinned PHP package 
As 3bb3859 bumped the default PHP version to 8.2, the snipe-it package
has been pinned to PHP 8.1. This commit changes the php package used in
the module to the one pinned by snipe-it.
 2023-07-05 14:47:05 +02:00
github-actions[bot] 007ab6fb2f
Merge staging-next into staging 2023-07-05 12:02:05 +00:00
Maximilian Bosch b82c8e13c7
Merge pull request #228508 from SuperSandro2000/gitea-no-recurse 
nixos/gitea: don't recursively change file owners/permissions
 2023-07-05 13:56:46 +02:00
tv 0ab3a1fd78 nixos/nftables: add redirect for /etc/hosts 2023-07-05 13:56:27 +02:00
tv 75e405c156 nixos/nftables: use environment.etc for redirects 2023-07-05 13:56:16 +02:00
tv 9e51ec86e7 nixos/nftables: add checkRulesetRedirects option 2023-07-05 13:55:34 +02:00
Lassulus 7e37c051c1
Merge pull request #241526 from Mic92/cloud-init 2023-07-05 13:31:27 +02:00
Jörg Thalheim 56926dda06
Merge pull request #239393 from Lassulus/iso-graphical 
nixos/iso-image: make graphical grub configurable
 2023-07-05 12:30:59 +01:00
Robert Hensing 6649d1e369 nixos/config/nix: Move nixConf 2023-07-05 13:03:32 +02:00
Robert Hensing 2fa416732c nixos/config/nix: Move legacyConfMappings 2023-07-05 12:52:56 +02:00
Maximilian Bosch 7f0bc68c32
Merge pull request #237544 from hrdinka/fix_gitea 
Revert "nixos/gitea: requires database"
 2023-07-05 12:09:55 +02:00
Lily Foster 7b514d2175
nixos/lvm: toggle initrd enable option independently of main options 2023-07-05 04:59:04 -04:00
Jan Tojnar 2819e547d3 Merge branch 'staging-next' into staging 
; Conflicts:
;	pkgs/development/libraries/nss/generic.nix

- bb53634671 removed the conditionals since firefox-esr-91 and nss <3.69 has been dropped a while ago.
- cb3762857d updated the conditionals to always partition the tests based on the nss_latest version. Chosen that since it will remain future proof.
 2023-07-05 02:22:26 +02:00
Emily 3a79936b45
Merge pull request #217536 from sephii/caddy-reload 
nixos/caddy: add support for reload
 2023-07-04 22:57:24 +02:00
Daniel Șerbănescu 50a3fdd03c wordpress: fixed installing of languages 2023-07-04 21:20:42 +02:00
r-vdp 9ef5b7d793 nixos/x11: change the description of the display manager service 
Currently systemd prints `Starting X11 Server` in the journal, which completely
misled me into searching why my wayland system was starting an X server.
Turns out that what is started is actually the display manager,
so I think it's better to call it like that in the description.
 2023-07-04 21:08:13 +02:00
Samuel Dionne-Riel a6e61a1ea9 nixos: Formally deprecate boot.loader.raspberryPi 
The whole option set was recommended against since mid-2019, and never
worked with the Raspberry Pi 4 family of devices.

We should have deprecated it in early 2020 for removal by 2021. At the
time I did not feel confident in making such a decision, and never
ended-up getting around to it.

The ***only*** supported-by-NixOS boot methods for AArch64 are
standards-based boot methods, namely UEFI or the pragmatically
almost-standard extlinux-compatible for U-Boot.

You can quote me on that.
 2023-07-04 13:42:57 -04:00
Jörg Thalheim 6f404ed214 cloud-init: add xfs support 2023-07-04 19:27:18 +02:00
Alexander Sieg 8934558abf
nixos/gitlab: fix unit test result display (#241322) 
After the update to GitLab 16 the puma worker needs `gzip` in it's PATH
in order to junit test results.
 2023-07-04 18:57:19 +02:00
Atemu 712caf8eb1
Merge pull request #224366 from martinetd/ankisyncd-rs 
ankisyncd-rs: add package for anki-sync-server-rs
 2023-07-04 18:03:19 +02:00
Sandro Jäckel d35df28f65
ddclient: remove package and module on upstream maintainer request 2023-07-04 16:46:53 +02:00
Herwig Hochleitner 5205c73d93 nixos/gitea: add WORK_PATH to config 
this is in preparation for 1.20, which needs this option set
 2023-07-04 16:05:56 +02:00
github-actions[bot] 14bdc27ee1
Merge staging-next into staging 2023-07-04 12:01:56 +00:00
Sylvain Fankhauser 27b7132e81
nixos/caddy: remove admin check 
Since it introduces IFD.
 2023-07-04 11:25:08 +02:00
Sylvain Fankhauser 1f0ac736b4
nixos/caddy: add support for reload 2023-07-04 11:25:05 +02:00
Pol Dellaiera 3ede00e4fa
Merge pull request #240571 from gaelreyrol/scaphandre-module-assertions 
nixos/prometheus/exporters: adjust scaphandre assertions
 2023-07-04 11:24:24 +02:00
Dominique Martinet fbe3e3b44e replace ankisyncd with ankisyncd-rs 
- remove old ankisyncd python package
- rename new rust package so it's a drop in replacement
 2023-07-04 18:14:18 +09:00
Dominique Martinet 668f528b6c nixos/ankisyncd: use ankisyncd-rs instead of the old python one 
Unfortunately the config is not compatible; data itself looks like it was compatible
from an up to date python ankisyncd but I wouldn't assume anything with the older
service (which didn't work for me with either ankidroid or recent desktop version)
 2023-07-04 18:14:17 +09:00
Florian Klink f338f46fff
Merge pull request #240969 from mutantmell/systemd-network-unit-util 
systemd.network: move unit file generation code into a util
 2023-07-04 12:02:37 +03:00
Janik 8419b512e6
Merge pull request #240189 from gmemstr/patch-1 
n8n: add WEBHOOK_URL environment variable
 2023-07-04 08:56:36 +02:00
Raito Bezarius faba775beb nixos/networkd: support Independent flag for VXLAN netdevs 
According to networkd netdev's manpage:
```
       Independent=
           Takes a boolean. When true, the vxlan interface is created without any underlying network interface. Defaults to false, which means that a .network
           file that requests this VXLAN interface using VXLAN= is required for the VXLAN to be created.
```

is a valid option for [VXLAN] section.
 2023-07-04 01:53:34 +02:00
Raito Bezarius 4d38fa043b nixos/networkd: support netdev MAC addresses 
According to systemd.netdev manpage:

```
MACAddress=
           Specifies the MAC address to use for the device, or takes the special value "none". When "none", systemd-networkd does not request the MAC address for
           the device, and the kernel will assign a random MAC address. For "tun", "tap", or "l2tp" devices, the MACAddress= setting in the [NetDev] section is
           not supported and will be ignored. Please specify it in the [Link] section of the corresponding systemd.network(5) file. If this option is not set,
           "vlan" device inherits the MAC address of the master interface. For other kind of netdevs, if this option is not set, then the MAC address is
           generated based on the interface name and the machine-id(5).

           Note, even if "none" is specified, systemd-udevd will assign the persistent MAC address for the device, as 99-default.link has
           MACAddressPolicy=persistent. So, it is also necessary to create a custom .link file for the device, if the MAC address assignment is not desired.
```

Therefore, `none` is an acceptable value.
 2023-07-04 01:21:35 +02:00
Pascal Bach fc478ad9ff nixos/minio: allow distributed nodes 2023-07-03 21:51:02 +02:00
github-actions[bot] 0f844d9b01
Merge staging-next into staging 2023-07-03 18:01:46 +00:00
Will Fancher 73a8ca1674
Merge pull request #240601 from lilyinstarlight/fix/lvm-root-sd-stage-1-unhide 
nixos/*: unhide remaining systemd stage-1 options
 2023-07-03 13:38:12 -04:00
Christoph Hrdinka 70cc0d412f
nixos/gitea: only require databases if createDatabase is set 
Currently the database service (mysql/postgresql) is required by the
gitea service. If none of them exists on the same machine as gitea it
will refuse to start. With this change it is only required if
createDatabase was set to true.
 2023-07-03 17:02:12 +02:00
Lein Matsumaru 143869247e
rtl8723bs-firmware: cleanup 2023-07-03 14:22:20 +00:00
Lily Foster e9207b0501
nixos/*: unhide remaining systemd stage-1 options 
These options were missed in NixOS/nixpkgs#226237, but they all were
specifically added for systemd stage-1.
 2023-07-03 08:41:38 -04:00
github-actions[bot] afae8eadb8
Merge staging-next into staging 2023-07-03 12:01:45 +00:00
Janik 565fc74d28
Merge pull request #240954 from michaelshmitty/anuko-time-tracker-fixup 2023-07-03 12:29:43 +02:00
Bobby Rong dd9fcc40b7
Merge pull request #241131 from ShamrockLee/nix-daemon-gramman 
nixos/nix-daemon: fix grammatical mistake in description
 2023-07-03 16:41:51 +08:00
Michael Smith 65585d6c53 nixos/anuko-time-tracker: improve module options 
* Remove unsafe dbinstall.php script
* Make Nginx virtualhost configurable
 2023-07-03 08:39:17 +02:00
github-actions[bot] 61abd839c4
Merge staging-next into staging 2023-07-03 06:01:59 +00:00
Eric Wolf ee5cc38432 lemmy: Support secret options 
This commit implements #101777 by merging
the config with an external file at startup.
 2023-07-03 09:12:40 +08:00
Nguyễn Gia Phong 170125ebdb nixos/ntfy.sh: require base-url setting 
It is required by attachment-cache-dir whose default is provided.
 2023-07-03 08:58:05 +08:00
github-actions[bot] 9fc1b7bdc9
Merge staging-next into staging 2023-07-03 00:03:26 +00:00
Ryan Lahfa 9f2cff4e0a
Merge pull request #240913 from gabriel-doriath-dohler/MCHPRS 2023-07-03 01:14:24 +02:00
gabriel-doriath-dohler 04c830db01 nixos/mchprs: init module 
Co-authored-by: Ryan Lahfa <masterancpp@gmail.com>
 2023-07-02 23:59:59 +00:00
github-actions[bot] d3954e9196
Merge staging-next into staging 2023-07-02 18:01:45 +00:00
Emily d8c2229c49
Merge pull request #226684 from srid/patch-8 
nixos/jenkins-job-builder: Fix link to documentation, use mkEnableOption
 2023-07-02 19:49:17 +02:00
Sridhar Ratnakumar ac4790a84e
nixos/jenkins-job-builder: Fix link to documentation, use mkEnableOption 
Co-Authored-By: emilylange <git@emilylange.de>
 2023-07-02 19:07:44 +02:00
Felix Bühler e770737241
Update nixos/modules/services/networking/libreswan.nix 
Co-authored-by: Robert Hensing <roberth@users.noreply.github.com>
 2023-07-02 19:03:19 +02:00
Felix Bühler 7cc9ced775
Update nixos/modules/services/misc/cgminer.nix 
Co-authored-by: Robert Hensing <roberth@users.noreply.github.com>
 2023-07-02 19:03:11 +02:00
Frédéric Tobias Christ bb55edd515 mautrix-telegram: 0.14.0 -> 0.14.1 
Add new configuration option regarding IPv6 support to the example.

Diff: https://github.com/mautrix/telegram/compare/refs/tags/v0.14.0...v0.14.1
Changelog: https://github.com/mautrix/telegram/releases/tag/v0.14.1
 2023-07-02 17:44:51 +02:00
Yueh-Shun Li a899971599 nixos/nix-daemon: fix grammatical mistake in description 2023-07-02 23:27:09 +08:00
Raito Bezarius d7e721f614 plausible: fix admin user password seed and SMTP passwords 
LoadCredential was misused as it is not building any environment variable,
it is the responsibility of our preStart to do it so
Plausible's script can pick it up.
 2023-07-02 17:03:53 +02:00
github-actions[bot] 394e69c186
Merge staging-next into staging 2023-07-02 12:01:55 +00:00
Ryan Lahfa 7672c1e9ae
Merge pull request #201907 from Tom-Hubrecht/fail2ban 2023-07-02 13:57:47 +02:00
oddlama 1fa9f03eec
nixos/hostapd: rewrite to support multi-AP, password from file, and more 
At this point this is basically a full rewrite of this module, which
is a breaking change and was necessary to properly expose the useful
parts of hostapd's config. The notable changes are:

- `hostapd` is now started with additional systemd sandbox/hardening options
- A single-daemon can now manage multiple distinct radios and BSSs, which is
  why all configuration had to be moved into `hostapd.radios`
- By default WPA3-SAE will be used, but WPA2 and WPA3-SAE-TRANSITION are
  supported, too
- Added passwordFile-like options for wpa and sae
- Add new relevant options for MAC ACL, WiFi5, WiFi6 and WiFi7 configuration
- Implements RFC42 as far as reasonable for hostapd
- Removes `with lib;`
 2023-07-02 13:32:41 +02:00
Joscha Loos 1130d57afb gollum: add maintainer 2023-07-02 13:23:05 +02:00
mutantmell d51ebb6173 nixos/networkd: refactor 
Reduces size of networkd module by moving unit file generation code into a util.
 2023-07-01 17:17:51 -07:00
github-actions[bot] f5a8109c46
Merge staging-next into staging 2023-07-02 00:03:47 +00:00
Jan Tojnar ff15350944 Merge branch 'staging-next' into staging 
; Conflicts:
;	pkgs/development/libraries/nss/generic.nix

fa93045a5b adds `< 3.91` conjunct for the `remove-c25519-support.patch` condition
bb53634671 removes the ≥ 3.90 condition for the `remove-c25519-support.patch` since nss < 3.90 is no longer provided
 2023-07-01 20:11:04 +02:00
Mac Chaffee 61cb4170fd
nixos/static-web-server: create module which uses upstream systemd units 
This commit creates a nixos module for static-web-server.
The module uses upstream systemd units to start static-web-server.
It also includes options for configuring static-web-server.
 2023-07-01 12:51:13 -04:00
Jörg Thalheim cf2167b39e
Merge pull request #231609 from Mic92/bcachefs-tools 
bcachefs-tools: unstable-2023-01-31 -> unstable-2023-05-13
 2023-07-01 16:31:43 +01:00
Jörg Thalheim 4d719f101c nixos/bcachefs: add new mount.bcachefs util 2023-07-01 17:10:10 +02:00
Niklas Hambüchen 080757c6c5 nixos/vaultwarden: Bind to localhost by default. See #100192 2023-07-01 15:35:28 +02:00
TQ Hirsch dd481f2ee3
pdns: Changed paths in /etc to use pdns instead of powerdns 2023-07-01 18:55:51 +08:00
TQ Hirsch d25e5e2107
nixos/powerdns, nixos/pdns-recurser: Symlink configuration into /etc 
This places a symlink to the running configuration where the admin
tools expect it, allowing users to control the powerdns server or
recursor without manually specifying a config file.
 2023-07-01 18:55:50 +08:00
Janik 87cb1d7cd2
Merge pull request #178610 from Et7f3/headless-remove-vesa 2023-07-01 10:19:04 +02:00
Will Fancher ccaea077e2
Merge pull request #240792 from accelbread/plymoutherror 
nixos/gdm: fix plymouth-quit bootup error message
 2023-07-01 02:38:08 -04:00
github-actions[bot] ed3d23eef3
Merge staging-next into staging 2023-07-01 00:03:25 +00:00
pennae 969b4d7ba9
Merge pull request #232454 from quentinmit/bridge-vlan 
nixos/networkd: Fix typo in BridgeVLAN options
 2023-07-01 00:19:37 +02:00
Tom Hubrecht 208ee8b2e2 nixos/fail2ban: use attrsets for settings instead of strings 2023-06-30 22:27:40 +02:00
Michele Guerini Rocco aedc167ecf
Merge pull request #240325 from 999eagle/update/searxng 
nixos/searx: add configuration for redis and limiter settings
 2023-06-30 22:22:43 +02:00
Archit Gupta 36ca205e44 nixos/gdm: fix plymouth-quit bootup error message 
If plymouth is not enabled, there is no plymouth-quit service created
otherwise, so setting systemd.services.plymouth-quit.wantedBy creates an
empty service which logs an error during bootup. The plymouth fix should
only be applied if plymouth is actually available to prevent a needless
systemd service error on systems with gdm but no plymouth (such as a
default gnome setup).
 2023-06-30 13:15:53 -07:00
pennae 05b84a2b83
Merge pull request #240754 from SuperSandro2000/ssh-fix-manpage 
nixos/{sshd,thelounge,ttyd,proxmox-image}: fix example rendering
 2023-06-30 20:24:43 +02:00
github-actions[bot] 1f219a2d35
Merge staging-next into staging 2023-06-30 18:01:53 +00:00
Domen Kožar 22deb49735
Merge pull request #240744 from NixOS/pcdcd-plugins-default 
nixos: append ccid as a plugin
 2023-06-30 17:30:56 +01:00
Sandro Jäckel 2048a8ca02
nixos/proxmox-image: fix example rendering 2023-06-30 18:14:43 +02:00
Sandro Jäckel 0000004f80
nixos/ttyd: fix example rendering 2023-06-30 18:14:37 +02:00
Sandro Jäckel 000004d123
nixos/thelounge: fix example rendering 2023-06-30 18:14:24 +02:00
Sandro Jäckel 9999996fd6
nixos/sshd: fix example rendering 2023-06-30 18:14:16 +02:00
Domen Kožar 8079c9ac60 nixos: append ccid as a plugin 2023-06-30 16:21:57 +01:00
David McFarland d19ab9f1da nixos/gnupg: fix pinentryFlavor documentation and add release note 2023-06-30 10:22:38 -03:00
Gaël Reyrol f856229c9a
nixos/prometheus/exporters: adjust scaphandre assertions 2023-06-30 15:10:38 +02:00
github-actions[bot] 36acc4f99b
Merge staging-next into staging 2023-06-30 12:02:06 +00:00
David McFarland 3d4f3068fd nixos/gnupg: fix gpg-agent when pinentryFlavor is null 
8ea644997f moved the configuration outside
the pinentryFlavor check, causing evaluation to fail when it was set to
null.

960a5142aa removed the upstream systemd
units, causing gpg-agent.service to be conditional on pinentryFlavor.
 2023-06-30 08:04:16 -03:00
Maximilian Bosch c1ea4ec7a9
Merge pull request #208605 from Izorkin/update-gitea 
nixos/gitea: update configuration
 2023-06-30 11:44:04 +02:00
adisbladis 0fab94a844 xonsh: Add wrapper 
It is currently not obvious how to install/use xonsh with dependencies and python packages.

This PR implements a wrapper that allows you to construct a custom xonsh environment by using:
``` nix
xonsh.override { extraPackages = ps: [ ps.requests ]; }
```
 2023-06-30 19:39:53 +12:00
Sophie Tauchert 0aa5adef62
nixos/searx: add configuration for redis and limiter settings 2023-06-30 07:38:59 +02:00
github-actions[bot] f6242f9557
Merge staging-next into staging 2023-06-30 00:03:00 +00:00
Bobby Rong c84b823065
Merge pull request #240261 from bobby285271/upd/pantheon 
Pantheon updates 2023-06-28
 2023-06-29 23:31:46 +08:00
lassulus 345745b6da nixos/syncthing: fix syncthing-init running by default 
also remove empty values from the config
 2023-06-29 17:57:11 +03:00
lassulus c42a7b668c Revert "Merge pull request #233377 from ncfavier/revert-226088" 
This reverts commit 7b28ea6783, reversing
changes made to 3009b12817.
 2023-06-29 17:56:30 +03:00
Weijia Wang a5b7078a2d cdesktopenv: 2.3.2 -> 2.5.1 2023-06-29 17:18:45 +03:00
lassulus e4f361f352 installation-cd: enable graphicalGrub 2023-06-29 14:35:54 +02:00
lassulus 363c846d77 nixos/iso-image: make graphical grub configurable 2023-06-29 14:35:54 +02:00
Bobby Rong 82970f8b1e
nixos/pantheon: Stop shipping gnome-bluetooth-contract by default 
The functionality is now covered by wingpanel-indicator-bluetooth 7.0.0.
 2023-06-29 20:13:07 +08:00
github-actions[bot] 958ca2b0c0
Merge staging-next into staging 2023-06-29 12:01:52 +00:00
Kevin Cox 65365bbb83
Merge pull request #240417 from kevincox/minetest-conf 
nixos.minetest-server: Add option for generating config file and ability to add extra command line flags
 2023-06-29 07:36:04 -04:00
Kevin Cox 6cb0b6a4d6
nixos.minetest-server: Add option for generating config file and ability to add extra command line flags 
This adds two main features:

1. `services.minetest-server.config` is an options object that is automatically serialized into a minetest config file.
2. `services.minetest-server.extraArgs` provides an escape hatch to pass extra arguments.
 2023-06-28 17:31:46 -04:00
Izorkin a0311e5107
nixos/gitea: update sandboxing options 2023-06-28 23:28:56 +03:00
Gaël Reyrol 1a821e7bf5
nixos/prometheus-exporters: add php-fpm 2023-06-28 22:11:36 +02:00
github-actions[bot] c5b82a046f
Merge staging-next into staging 2023-06-28 18:01:51 +00:00
Benjamin Staffin 211d94d70b
nixos/paperless: Enable UMask now that it works (#240010) 
According to
https://github.com/NixOS/nixpkgs/issues/147599#issuecomment-1272286679
the bug that prevented this UMask directive from working has been fixed
in systemd, so it should be safe to use now.

This stops paperless-ngx from making everything world-readable on disk,
but it does not change permissions of any files previously created.
 2023-06-28 10:48:25 -04:00
dariof4 5c13477d40
nixos/fontdir: add otb to font regex (#239802) 2023-06-28 14:22:38 +02:00
Sandro 0a5cb5c47e
nixos/grafana: disable updater by default (#240323) 2023-06-28 14:09:55 +02:00
Gaël Reyrol 3a4e234b07
services/calibre-server: Add new http & auth options (#216497) 
nixos/doc: add calibre-server new options
 2023-06-28 14:06:47 +02:00
Robert Hensing 772d6076e8 nixos: Add system.activatable flag for images that are pre-activated 2023-06-28 14:06:28 +02:00
github-actions[bot] 291da905ac
Merge staging-next into staging 2023-06-28 12:02:09 +00:00
Robert Hensing 9edad17d29 nixos/top-level: Remove unused builder variables 
These variables were previously used by the activation script
build commands, but are now embedded into those commands for
to improve reusability for an upcoming addition.
 2023-06-28 12:49:34 +02:00
Robert Hensing 7891c8cdaf nixos/activatable-system: Move legacy variables to top-level 2023-06-28 12:48:59 +02:00
Robert Hensing 990b72f6af nixos/activatable-system: Make system builder commands env independent 
This way it will be easier to reuse in a different context, such as
a separate build of the activation script by itself (TBD).
 2023-06-28 12:42:51 +02:00
Pol Dellaiera e1b3f7b159
Merge pull request #239803 from gaelreyrol/prometheus-scaphandre-exporter-init 
services/prometheus/exporters: add scaphandre
 2023-06-28 09:46:08 +02:00
Pol Dellaiera f9c3e5dac1
Merge pull request #232415 from jensbin/displaylink57 
displaylink: 5.6.1-59.184 -> 5.7.0-61.129
 2023-06-28 08:36:14 +02:00
github-actions[bot] b0a5a6b413
Merge staging-next into staging 2023-06-28 06:01:58 +00:00
Leona Maroni dd05e2a899 nixos/paperless: add leona as maintainer 2023-06-28 08:42:23 +08:00
github-actions[bot] 6ace22c3b7
Merge staging-next into staging 2023-06-28 00:03:21 +00:00
Gabriel Simmer 3d33c5c7df
n8n: add WEBHOOK_URL environment variable 
The WEBHOOK_URL options is only able to be set through environment variables. Was considering adding a more generic "environment" parameter but wasn't sure the best way to approach this.
 2023-06-27 21:16:33 +01:00
Lily Foster 35337085ea
Merge pull request #237820 from lilyinstarlight/fix/systemd-initrd-network-default-package 
nixos/networkd: make overriding boot.initrd.systemd.package a little easier by using mkDefault
 2023-06-27 15:58:57 -04:00
Gaël Reyrol e11f06a951
services/prometheus/exporters: add scaphandre 2023-06-27 20:50:58 +02:00
github-actions[bot] ae79d808a5
Merge staging-next into staging 2023-06-27 18:01:53 +00:00
Sandro 135fef712e
Merge pull request #232920 from SuperSandro2000/nix-optimise 
nixos/nix-optimise: persist timer
 2023-06-27 18:14:08 +02:00
Sandro d698c07d15
Merge pull request #233451 from SuperSandro2000/matplotlib-nox 
nixos/no-x-libs: add python3.pkgs.matplotlib
 2023-06-27 17:57:56 +02:00
Aaron Andersen 7362e078cb
Merge pull request #208363 from GeorgesAlkhouri/refactor/nixos-modules-shadow 
nixos/shadow: refactor login.defs config options
 2023-06-27 11:49:15 -04:00
Molly Miller 3e96fd980d nixos/network-interfaces: restrict IPv6 privacy address overrides to interface 
Only trigger the privacy address override for a given interface when
that interface is added. Without restricting the rule to the
interface, this command would be run when any interface is added.
 2023-06-27 16:15:02 +02:00
Kerstin bc152fd1c1
Merge pull request #203621 from jooooscha/master 
nixos/gollum: add options for user and group of gollum process
 2023-06-27 15:49:45 +02:00
Nick Cao 694de8e63e
Merge pull request #240072 from NickCao/singbox-harden 
nixos/sing-box: set umask 0077 when generating configuration file
 2023-06-27 20:34:18 +08:00
Janik 946c3f8c51
Merge pull request #214063 from michaelshmitty/anuko-timetracker 2023-06-27 13:19:44 +02:00
Michael Smith 7532dbaa32 nixos/anuko-time-tracker: init 2023-06-27 12:30:33 +02:00
Naïm Favier 3ef988ce97
Merge pull request #237259 from ncfavier/extraDependencies-path 
nixos/top-level: change extraDependencies from packages to paths
 2023-06-27 11:59:06 +02:00
Naïm Favier 0179d9f7e6
nixos/top-level: change extraDependencies from package to pathInStore 
Allows adding subdirectory flake inputs that aren't top-level store paths.
 2023-06-27 11:48:08 +02:00
NotAShelf b5fcbad5fb nixos/lemmy: handle database creation better 2023-06-27 17:46:19 +08:00
Yaya 7d432c1ff9 nixos/gitlab: Add an additional folder to systemd-tmpfiles 2023-06-27 11:39:17 +02:00
Sandro Jäckel 1370fe7c36
nixos/no-x-libs: add python3.pkgs.matplotlib 2023-06-27 11:29:24 +02:00
Michele Guerini Rocco 3bb07bdf2d
Merge pull request #236322 from rnhmjoj/pr-udev-quiet 
nixos/udev: silence harmless warnings
 2023-06-27 10:28:41 +02:00
Nick Cao e52b401a95
nixos/sing-box: set umask 0077 when generating configuration file 2023-06-27 16:08:55 +08:00
Janik 23a11416b9
Merge pull request #238307 from pacien/pixelfed-update 2023-06-27 09:55:06 +02:00
Nick Cao d2483a8cc7
nixos/sing-box: init 2023-06-27 13:58:02 +08:00
Robin Gloster 61f41ba937
Merge pull request #234245 from nbraud/below 
nixos/below: Add service module
 2023-06-26 21:23:36 +02:00
Ivan Malison cd3b658167
starship: Remove INSIDE_EMACS checks (#239039) 
Many of the terminals supported inside emacs work perfectly fine with STARSHIP.
The TERM=dumb case already handles the tramp and eterm cases, so as far as I can
tell, this is basically just a check for the benefit of OLD versions of
term-mode (see
https://www.emacswiki.org/emacs/AnsiTerm#:~:text=Historically%2C%20'M%2Dx%20ansi%2Dterm,the%20older%20'C%2Dc'%20binding.,
which indicates that it also now handles colors)
 2023-06-26 20:37:10 +02:00
Ryan Lahfa 269144b67b
Merge pull request #239937 from Tom-Hubrecht/pixelfed 2023-06-26 18:00:26 +02:00
Michele Guerini Rocco 547cd96f10
Merge pull request #231108 from corngood/gpg-agent 
nixos/gnupg: add systemd configuration
 2023-06-26 16:22:41 +02:00
Tom Hubrecht 9075cd9e11 nixos/pixelfed: Fix missing php modules for pixelfed-horizon 2023-06-26 15:53:20 +02:00
Jens Binkert 46336e7a53 displaylink: 5.6.1-59.184 -> 5.7.0-61.129 2023-06-26 09:43:22 +02:00
Atemu a04b45f10e
Merge pull request #238596 from nikstur/qemu-vm-use-host-pkgs 
nixos/qemu-vm: use cfg.host.pkgs
 2023-06-26 09:06:31 +02:00
Luke Granger-Brown cba7cd9b6d
Merge pull request #233282 from pkern/spamassassin 
spamassassin: 3.4.6 → 4.0.0
 2023-06-25 23:55:34 +01:00
iliana etaoin 53135cc8c7 nixos/grub: don't die on EFI-only systems if devices != ["nodev"] 
Without this change, GRUB installation on non-PC systems (such as
aarch64-linux) only works if boot.loader.grub.devices is set to exactly
`["nodev"]`. If boot.loader.grub.devices was any other value (including
the default `[]`), users got the error:

    Died at /nix/store/an9ngv2vg95bdcy0ifsxlbkasprm4dcw-install-grub.pl line 586.

install-grub.pl verifies that if both $grub and $grubEfi are set, then
$grubTarget (e.g. i386-pc) and $grubTargetEfi (e.g. x86_64-efi) must
both be set, or the script will `die`. On non-PC systems, $grubTarget
is "".

When boot.loader.grub.devices is ["nodev"], $grub is set to null,
disabling non-EFI installation. But if a user has devices set for an
x86_64 config, or is using only mirroredBoots without setting devices,
they will hit this `die`.

This change sets $grub to "" if $grubTarget is "".
 2023-06-25 17:46:12 +00:00
Luke Granger-Brown 58b48cd720 nixos/spamassassin: add DMARC module to default config 2023-06-25 17:35:16 +00:00
Marco Rebhan af614b53d1 nixos/avahi: Add package option 
Allows replacing the avahi package (e.g. for debugging) without having
to use an overlay, avoiding unnecessary package rebuilds.
 2023-06-25 11:01:58 -03:00
Felix Buehler 6672dde558 treewide: use optionalAttrs instead of 'else {}' 2023-06-25 11:01:34 -03:00
pennae 32deda9ec0
Merge pull request #238222 from mads256h/harden-davmail 
davmail: enable sandboxing options
 2023-06-25 14:57:19 +02:00
Felix Buehler 933a41a73f treewide: use optional instead of 'then []' 2023-06-25 09:11:40 -03:00
Philipp Kern 0ce6a09235 spamassassin: 3.4.6 → 4.0.0 
The HashCash module has been removed, so this change also drops it from
the default config for spamassassin.
 2023-06-25 09:38:10 +00:00
Will Fancher b154feadb9
Merge pull request #237823 from lilyinstarlight/fix/systemd-initrd-no-rev 
nixos/version: remove nixpkgs commit rev from initrd
 2023-06-24 20:25:32 -04:00
happysalada 8db05aa52f nixos/rustus: inital module 2023-06-25 04:26:53 +08:00
Felix Buehler f3719756b5 treewide: use optionalString instead of 'then ""' 2023-06-24 20:19:19 +02:00
Nick Cao cca08f710c
Merge pull request #237507 from Alexis211/document-wgautomesh-gossip-secret 
wgautomesh: clearer documentation for `gossip_secret_file`
 2023-06-24 22:48:34 +08:00
nikstur f6b37ddaf2 nixos/qemu-vm: use cfg.host.pkgs 2023-06-24 00:45:15 +02:00
Franz Pletz 48d0d69869
Merge pull request #239348 from Ma27/bump-grafana 2023-06-23 23:15:43 +02:00
Naïm Favier b7098c1239
Merge pull request #239427 from ncfavier/syncthing-escaping 
nixos/syncthing: fix escaping
 2023-06-23 20:29:42 +02:00
Naïm Favier 9a9ded1675
nixos/syncthing: fix escaping 2023-06-23 20:19:51 +02:00
Robert Hensing b1ad9cd27d
Merge pull request #238136 from hercules-ci/nixos-nixpkgs-dont-check-when-_module.args.pkgs-is-set 
`nixos/nixpkgs`: Don't check when `_module.args.pkgs` is set
 2023-06-23 19:17:36 +02:00
pennae 50a780ce5c
Merge pull request #237824 from drupol/add-guacamole-server-and-client 
{guacamole-server,guacamole-client}: init at 1.5.2
 2023-06-23 15:41:50 +02:00
Maximilian Bosch 6e6c2e6530
nixos/grafana: clarify that there's still a bit of time until notifiers are removed 
See https://github.com/grafana/grafana/pull/66269
 2023-06-23 13:45:56 +02:00
Nick Cao e844ee1d27
Merge pull request #239208 from jelle-bigbridge/patch-1 
nixos/vault: set coredump ulimit to 0
 2023-06-23 09:57:19 +08:00
Ryan Lahfa 230a3705fc
Merge pull request #234223 from alyssais/stage-1-bind-file 2023-06-22 21:47:30 +02:00
Sandro 996d7cabba
Merge pull request #225877 from jappeace/upgrade-keter-2.1 
nixos/keter: 2.0 -> 2.1
 2023-06-22 20:00:22 +02:00
Jelle Besseling 53a3ddfab8
vault: set coredump ulimit to 0 2023-06-22 16:44:30 +02:00
Artturin ed55524562 nixos/malloc: add back maybe unnecessary line 2023-06-22 17:28:44 +03:00
Artturi 920b833494
Merge pull request #238459 from SuperSamus/vm.max_map_count 2023-06-22 11:37:48 +03:00
Elis Hirwing da7b79c90e
Merge pull request #239049 from LeSuisse/php80-removal 
php: drop PHP 8.0
 2023-06-22 08:43:39 +02:00
K900 66cb54c7fc nixos/supergfxd: add pciutils to path 
Used for some weird code paths. Fixes #239059.
 2023-06-22 08:27:44 +03:00
seth 18aeed351a
nixos/nvidia: fix typo in PRIME/nvidiaBusID assertion 2023-06-21 17:51:59 -04:00
Pol Dellaiera 6cc1b175d3
nixos/guacamole-server: init 2023-06-21 22:11:44 +02:00
Thomas Gerbet 84c0cb1471 php: drop PHP 8.0 
Closes #224505
 2023-06-21 22:09:16 +02:00
Pol Dellaiera a950888024
nixos/guacamole-client: init 2023-06-21 20:47:31 +02:00
Franz Pletz 5224f298f0
Merge pull request #235202 from SuperSandro2000/intel-vaapi-driver 2023-06-21 20:15:17 +02:00
Martino Fontana e1a6c85c2b nixos/sysctl: raise default vm.max_map_count to 1048576 2023-06-21 19:25:42 +02:00
Sandro 45539f8552
nixos/keter: fix port type 2023-06-21 18:23:47 +02:00
MayNiklas d7f89bbfb6 nixos/proxmox-image: add additionalSpace, bootSize and diskSize options 2023-06-21 14:13:03 +02:00
Domen Kožar b37c9b89a4
Merge pull request #221169 from bouk/bouk/mainpr 
opentelemetry-collector: add NixOS module
 2023-06-21 13:07:50 +01:00
Pol Dellaiera ec2b581c34
Merge pull request #238832 from Garmelon/grafana-config-options-fix 
nixos/grafana: Fix and adjust config options
 2023-06-21 11:45:24 +02:00
Jörg Thalheim 7b697d9698
Merge pull request #238822 from SuperSandro2000/grub-1-removal 
nixos/grub: remove grub 1 from descriptions
 2023-06-21 09:21:04 +01:00
Joscha daa75a4093 nixos/grafana: Fix and adjust config options 2023-06-20 23:19:45 +02:00
Sandro Jäckel 900104fc52
nixos/grub: remove grub 1 from descriptions 2023-06-20 22:34:25 +02:00
Weijia Wang e9b4c2b8f2 exhibitor: drop 2023-06-20 22:14:35 +03:00
Alyssa Ross eafa1fd10d nixos/public-inbox: set ProtectHome=tmpfs 
This fixes using coderepos in /home, by allowing the coderepo paths to
be bind mounted into an otherwise empty /home tmpfs.  Since this was
the usecase for making ProtectHome= overrideable, we don't need the
mkDefault any more.
 2023-06-20 17:19:09 +00:00
Alyssa Ross 03216e705c nixos/public-inbox: make coderepo paths accessible 2023-06-20 17:19:09 +00:00
Alyssa Ross 68c68f39db nixos/public-inbox: remove unused indexing code 
This was never run, because public-inbox-init now always initializes
Xapian.
 2023-06-20 17:11:23 +00:00
Sandro 0b77630d18
Merge pull request #209068 from CRTified/adguard-dhcp 2023-06-20 13:37:34 +02:00
Sandro 8eec7326a3
Merge pull request #219106 from m-bdf/nixos-testing-increase-device-timeout 2023-06-20 11:48:45 +02:00
rnhmjoj 7d263715bd nixos/fakeroute: run as unprivileged user 2023-06-20 01:12:04 +00:00
pennae c8b4e5d557
Merge pull request #237557 from pennae/dedocbookify-nixos 
nixos/doc: dedocbookify
 2023-06-19 14:05:03 +02:00
Florian Klink 1272a034f0
Merge pull request #238396 from R-VdP/fsck_path_fix 
nixos/systemd: Make the fsck unit depend only on FS packages.
 2023-06-19 12:58:27 +03:00
Joscha 5e4ec14596 nixos/grafana: update and add settings 
I went through all categories that were already present in the grafana
module and added most options from the official docs at
https://grafana.com/docs/grafana/v9.5/setup-grafana/configure-grafana/

I also modified the descriptions of some existing options to match the
official docs more closely.
 2023-06-18 22:23:48 +02:00
Joscha 2f68d8cb10 nixos/grafana: reformat 2023-06-18 22:23:39 +02:00
Ilan Joselevich c8afc7dd83
Merge pull request #238193 from MatthewCash/master 
nixos/kmscon: disable reload-systemd-vconsole-setup service
 2023-06-18 16:18:43 +03:00
Ryan Lahfa 8f83962b34
Merge pull request #238289 from NixOS/netdata-fix 2023-06-18 15:10:33 +02:00
Bobby Rong 34c861d69c
Merge pull request #238384 from bobby285271/fix/pantheon-sessionCommands 
nixos/pantheon: allow excluding pantheon-agent-geoclue2
 2023-06-18 19:23:09 +08:00
r-vdp c3fa4f9170
nixos/systemd: Make the fsck unit depend only on FS packages. 
This means that this unit no longer need to be rebuilt when the system path is changed.
 2023-06-18 12:46:13 +02:00
Bobby Rong 013bb477b4
nixos/pantheon: allow excluding pantheon-agent-geoclue2 
Bash will raise syntax error for sessionCommands if sessionPath is empty.
 2023-06-18 17:23:57 +08:00
Pol Dellaiera f6e54f4eb8
Merge pull request #192889 from pbsds/code-server-ext-compat 
code-server: add vscode-with-extensions compatibility
 2023-06-18 09:12:59 +02:00
Peder Bergebakken Sundt 53077eb1be code-server: add vscode-with-extensions compatibility 2023-06-17 23:14:50 +02:00
Emily 187729fe5d
Merge pull request #233324 from R-VdP/fwupd_1_9_1 
fwupd: 1.8.15 -> 1.9.2
 2023-06-17 22:55:59 +02:00
pacien d99dd867fb nixos/pixelfed: fix code cache cleanup 
The "bootstrap" directory only exists within the app's package.
The cached code is placed at the root of the runtime directory
instead.
 2023-06-17 19:57:29 +02:00
Vladimír Čunát 6d80b598ef
Merge #237233: staging-next 2023-06-11 2023-06-17 18:53:26 +02:00
Raito Bezarius 2d7e29b60e nixos/netdata: fix claim_token_file -> claimTokenFile 
It was forgotten in afc6f0d93b.
 2023-06-17 17:51:45 +02:00
Pol Dellaiera 2028c38a83
Merge pull request #238083 from deinferno/tailscale-kmod 
nixos/tailscale: fix ipv6 nat (v6nat) support
 2023-06-17 16:15:17 +02:00
Ryan Lahfa 3d941b6be8
Merge pull request #236656 from nikstur/qemu-vm-persistent-block-device-names 2023-06-17 14:52:26 +02:00
github-actions[bot] f300d1d5c2
Merge master into staging-next 2023-06-17 12:01:26 +00:00
Mads Mogensen 40c923aa13
davmail: enable sandboxing options 
The output from `systemd-analyze security davmail`:
Before: `Overall exposure level for davmail.service: 8.2 EXPOSED 🙁`
After: `Overall exposure level for davmail.service: 1.3 OK 🙂`
 2023-06-17 11:32:42 +02:00
Alyssa Ross 18f2be2e56 nixos/public-inbox: require that URL be non-empty 
public-inbox-init doesn't work if passed an empty URL.
 2023-06-17 07:57:27 +00:00
Vladimír Čunát 41d7e84dd8
Merge branch 'master' into staging-next 
Trivial conflict:
 	nixos/doc/manual/release-notes/rl-2311.section.md
 2023-06-17 07:46:50 +02:00
Matthew_Cash ae234ed1ab
nixos/kmscon: disable reload-systemd-vconsole-setup service 2023-06-16 19:12:07 -07:00
Robert Hensing 8f31bff794 nixos/nixpkgs: Don't check when _module.args.pkgs is set 2023-06-16 22:08:16 +02:00
Robert Hensing a742767baf nixos/nixpkgs: Make default Nixpkgs lazy when overridden 2023-06-16 21:46:26 +02:00
nikstur 0bdba6c99b nixos/qemu-vm: use persistent block device names 
This change removes the bespoke logic around identifying block devices.
Instead of trying to find the right device by iterating over
`qemu.drives` and guessing the right partition number (e.g.
/dev/vda{1,2}), devices are now identified by persistent names provided
by udev in /dev/disk/by-*.

Before this change, the root device was formatted on demand in the
initrd. However, this makes it impossible to use filesystem identifiers
to identify devices. Now, the formatting step is performed before the VM
is started. Because some tests, however, rely on this behaviour, a
utility function to replace this behaviour in added in
/nixos/tests/common/auto-format-root-device.nix.

Devices that contain neither a partition table nor a filesystem are
identified by their hardware serial number which is injecetd via QEMU
(and is thus persistent and predictable). PCI paths are not a reliably
way to identify devices because their availability and numbering depends
on the QEMU machine type.

This change makes the module more robust against changes in QEMU and the
kernel (non-persistent device naming) and by decoupling abstractions
(i.e. rootDevice, bootPartition, and bootLoaderDevice) enables further
improvement down the line.
 2023-06-16 19:36:03 +02:00
deinferno 26ff15b981
nixos/tailscale: fix ipv6 nat (v6nat) support 2023-06-16 12:18:55 +00:00
Maximilian Bosch 3df3a89892
nixos/nextcloud: fix declarative cache configuration 
It's supposed to be `memcache.distributed`, not an associative PHP array
named `memcache` with a key `distributed`.

This was probably never caught because the initial `grep -q` check in
the test was invalid: `redis-cli` prints nothing if no keys can be found
when not writing to a tty apparently.
 2023-06-16 14:11:38 +02:00
Maximilian Bosch 5a2769d981
nextcloud27: init 
Fixes #237560
 2023-06-16 14:11:38 +02:00
github-actions[bot] ebaef3ce4c
Merge master into staging-next 2023-06-16 12:01:08 +00:00
David McFarland 8ea644997f nixos/gpg-agent: move pinentry-program to /etc/gnupg/gpg-agent.conf 2023-06-16 08:24:52 -03:00
David McFarland 960a5142aa nixos/gnupg: add systemd configuration 
This depended on the systemd user configuration provided upstream in
doc/examples.  However, this was all removed in:

eae28f1bd4
 2023-06-16 08:21:47 -03:00
Charles Hall 370f3e4883 nixos/lemmy: remove option removed upstream 2023-06-16 05:59:32 -04:00
Ryan Lahfa a056d3567c
Merge pull request #236279 from minijackson/netbox-3.5.3 2023-06-16 11:49:13 +02:00
Ryan Lahfa afc6f0d93b
Merge pull request #228479 from zimbatm/netdata-auto-claim 2023-06-16 11:30:30 +02:00
Raito Bezarius d4cab20b3a zfs: add option to restore kernel_neon for linux 6.2 support on aarch64 
Introduced in aaeca98456
with the usual disdain for ZFS.

We have been there in the past with
<https://www.phoronix.com/news/NixOS-Linux-5.0-ZFS-FPU-Drop> /
https://github.com/NixOS/nixpkgs/pull/61076.

This fixes ZFS on aarch64 until the next breakage.

See https://github.com/openzfs/zfs/issues/14555 for original upstream
issue.
 2023-06-16 11:07:33 +02:00
github-actions[bot] af7beed7be
Merge master into staging-next 2023-06-16 06:01:09 +00:00
Will Fancher e57b65abbb
Merge pull request #238021 from dcarosone/empty-zpool-name-assertion 
nixos/zfs: assert that pool names are not empty
 2023-06-15 23:21:07 -04:00
Daniel Carosone 86ecee627a typo 2023-06-16 12:25:34 +10:00
Daniel Carosone 2dcb1b3ed7 nixos/zfs: assert that pool names are not empty 
a zfs fileSystems entry with an absolute (e.g. device) path rather than
a zfs dataser is parsed as an empty pool name, causing a doomed-to-fail
import job to be created as a boot dependency. Catch this as an assertion
 2023-06-16 10:40:09 +10:00
github-actions[bot] 839c033ffb
Merge master into staging-next 2023-06-16 00:02:18 +00:00
John Soo 75f419f222
nixos/buildkite-agents: simplify service definition 
* remove `with`

* replace specific hooks with attrsOf lines

  To be flexible, should they change.

* make hooks with writeShellApplication

  - Previously hooks would not build if they used a heredoc with `EOF`
  - To shellcheck hooks

* format with nixpkgs-fmt

* remove removed option module
 2023-06-15 16:31:29 -07:00
Raito Bezarius db230657fc nixos/pixelfed: cleanup package cache at the very start 2023-06-16 00:50:10 +02:00
Maciej Krüger 95c729c030
Merge pull request #223952 from m-bdf/fix-cfs-zen-tweaks 
Fix cfs-zen-tweaks
 2023-06-15 21:56:00 +02:00
Lily Foster 7fb3975256
nixos/plymouth: add actual logo defaultText and move existing to example 
Fixes #221391
 2023-06-15 10:42:40 -04:00
Lily Foster ef0c0d5c2f
nixos/plymouth: use new runtime paths for plugins and themes 2023-06-15 10:42:37 -04:00
github-actions[bot] 036d56d643
Merge master into staging-next 2023-06-15 12:01:17 +00:00
Charles Hall af585658b8 nixos/lemmy: reduce moving parts 2023-06-15 06:56:56 -04:00
Charles Hall fa9306c041 nixos/lemmy: allow overriding packages 2023-06-15 06:56:56 -04:00
Charles Hall b1853ecfcd nixos/lemmy: only use env var when instructed 
Lemmy checks the environment variable before the configuration file;
i.e. if the file is used to configure the database but the environment
variable is set to anything, the connection will fail because it'll
ignore the file. This was the previous behavior.

Now, the environment variable will be unset unless the user explicitly
chooses to set it, which makes the file-based configuration function
correctly. It's also possible to manually set the environment variable,
which has the major advantage of working around [this issue][0], which
prevents certain setups from working.

[0]: https://github.com/LemmyNet/lemmy/issues/2945
 2023-06-15 06:56:56 -04:00
Charles Hall dd0b5a7e08 nixos/lemmy: warn for option removed upstream 
Also hide it since it shouldn't be used.
 2023-06-15 06:56:56 -04:00
Carl Richard Theodor Schneider 59207cc930 nixos/adguardhome: Add allowDHCP option 
This option conditionally adds the `CAP_NET_RAW` capability to the service,
which is mandatory for enabling the integrated DHCP server.
It also adds another test case to validate that the DHCP server successfully
provides IP addresses to clients.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2023-06-15 12:27:35 +02:00
Jörg Thalheim 23ef0fdbf7
Merge pull request #237793 from Mic92/nix-ld 
nix-ld: 1.1.0 -> 1.2.1
 2023-06-15 08:51:56 +01:00
Jörg Thalheim 5ac7371bd1 nixos/nix-ld: use mkPackageOptionMD 2023-06-15 09:47:26 +02:00
Jörg Thalheim b60f21e135 nixos/nix-ld: also include ld.so in nixos profile 2023-06-15 09:47:25 +02:00
r-vdp 52214d7f38
fwupd: 1.8.15 -> 1.9.1 
Release notes: https://github.com/fwupd/fwupd/releases/tag/1.9.1
 2023-06-15 09:33:12 +02:00
github-actions[bot] a5a4b79b0d
Merge master into staging-next 2023-06-15 06:01:39 +00:00
Bobby Rong 6a00501dfa
Merge pull request #235371 from bobby285271/upd/cinnamon 
Cinnamon 5.8
 2023-06-15 09:41:41 +08:00
github-actions[bot] c2fa140937
Merge master into staging-next 2023-06-15 00:02:27 +00:00
Lily Foster b5cc73db7d
nixos/version: remove nixpkgs commit rev from initrd 
This avoids unnecessary initrd rebuilds when nothing in the initrd would
have changed aside from the nixpkgs revision.
 2023-06-14 16:57:34 -04:00
Lily Foster be48010eb2
nixos/networkd: make overriding boot.initrd.systemd.package a little easier by using mkDefault 2023-06-14 16:09:25 -04:00
Silvan Mosberger 746e3349f8
Merge pull request #236025 from GaetanLepage/invidious-restart 2023-06-14 21:18:55 +02:00
github-actions[bot] 0f19fc4c44
Merge master into staging-next 2023-06-14 18:01:25 +00:00
Pol Dellaiera f45bee3f4d
Merge pull request #237003 from pacien/ddclient-remove-ipv6-opt 
nixos/ddclient: remove obsolete ipv6 option
 2023-06-14 19:57:34 +02:00
Sandro Jäckel d64e1f0b40
nixos/ceph: add options to configure package used by each component 
This makes updates following the upstream guide possible.
 2023-06-14 19:20:10 +02:00
Sandro Jäckel e1fedfdf45
nixos/ceph: run statix fix 2023-06-14 19:20:10 +02:00
Jappie Klooster 5c4ae23ec0 nixos/keter: Run nixpkgs-fmt 2023-06-14 11:56:35 -04:00
Jappie Klooster 3f2f5bea96 nixos/keter: 2.0 -> 2.1 
keter 2.1 now can log to stderr instead of file rotation.
Which is faster and more reliable.
These changes support that.

Announcement:
https://discourse.haskell.org/t/keter-2-1-0-released/6134

fix test by disabling log rotation

run nixpkgs fmt

move comment right before L37

run nixpkgs format on test

Add overridable default configuration

depracate keterRoot and use root, same for package

split doc lines

use lib.getExe to get keter binary

put mkRenamedOptionModule on one line
 2023-06-14 11:54:03 -04:00
Gaetan Lepage 2e582d4edc nixos/invidious: add automaticRestart option 2023-06-14 16:19:40 +02:00
Janne Heß 1ee0ab1b79
Merge pull request #237720 from NixOS/swap-dry-activate 
switch-to-configuration.pl: fix inverted dry-activate logic for swap
 2023-06-14 14:45:35 +02:00
github-actions[bot] be1f07fc6e
Merge master into staging-next 2023-06-14 12:01:12 +00:00
Maximilian Bosch d7ac3423d3
Merge pull request #235387 from doronbehar/nixos/nextcloud.adminpassFile 
nixos/nextcloud: Mention that adminpassFile is only used on startup
 2023-06-14 12:41:35 +02:00
Wout Mertens a97fe8990d
switch-to-configuration.pl: fix inverted dry-activate logic for swap 2023-06-14 12:11:45 +02:00
Bobby Rong 30d897c0ff
nixos/cinnamon: enable touchegg by default 
Needed for gesture support.
 2023-06-14 15:48:15 +08:00
Bobby Rong 664601d819
nixos/cinnamon: enable switcherooControl by default 
xapp-gpu-offload-helper looks for this.
 2023-06-14 15:48:15 +08:00
Bobby Rong bc559b4ca3
nixos/cinnamon: install mint-l by default 
This is part of Linux Mint 21.2.
 2023-06-14 15:48:15 +08:00
Bobby Rong e0034fb284
cinnamon.mint-artwork: 1.7.3 -> 1.7.5 
Read debian/changelog for what is changed.
 2023-06-14 14:14:57 +08:00
github-actions[bot] bdc9d2055e
Merge master into staging-next 2023-06-14 00:02:31 +00:00
Pol Dellaiera 7907dd9d6b
Merge pull request #235924 from Stunkymonkey/remove-then-{} 
treewide: use lib.optionalAttrs instead of 'then {}'
 2023-06-13 20:14:58 +02:00
github-actions[bot] f29c608f98
Merge master into staging-next 2023-06-13 18:01:32 +00:00
pennae f52f531a4e nixos/make-options-doc: deprecate docbook outputs 
they're no longer necessary for us and will almost definitely start to
rot now (like commonmark and asciidoc outputs did previously). most
existing users seem to take the docbook output and run it through pandoc
to generate html, those can easily migrate to use commonmark instead.
other users will hopefully pipe up when they notice that things they rely
on are going away.

optionsUsedDocbook has only been around for one release and only exposed
to allow other places to generate warnings, so that does not deserve
such precautions.
 2023-06-13 16:56:32 +02:00
pennae 0997ae1903 nixos/manual: disallow docbook option docs 
it's been long in the making, and with 23.05 out we can finally disable
docbook option docs and default to markdown instead. this brings a
massive speed boost in manual and manpage builds, so much so that we may
consider enabling user module documentation by default.

we don't remove the docbook support code entirely yet because it's a lot
all over, and probably better removed in multiple separate changes.
 2023-06-13 16:56:30 +02:00
Pol Dellaiera 9ce1accb88
nixos/modules/openvscode-server: fix options 2023-06-13 15:08:56 +02:00
github-actions[bot] 51c0c12cd4
Merge master into staging-next 2023-06-13 12:01:28 +00:00
Sandro 9183a72d11
Merge pull request #232862 from misuzu/gotosocial-init 2023-06-13 11:36:46 +02:00
Jenny 3a86958c97
prometheus-junos-czerwonk-exporter: init at 0.10.1 + module (#235433) 2023-06-13 10:15:05 +02:00
Alex Auvolat bbd4ce7d5e wgautomesh: clearer documentation for gossip_secret_file 2023-06-13 10:01:12 +02:00
Archit Gupta cbb69aa1c1 nixos/usbguard: add USBGuard dbus daemon option 
The usbguard package includes the dbus daemon, but the NixOS config
option does not provide a service file or its necessary polkit rules.

Enabling the dbus daemon allows use of Gnome's USBGuard support.
 2023-06-12 21:38:07 -07:00
github-actions[bot] 9dc5849025
Merge master into staging-next 2023-06-13 00:02:27 +00:00
Martin Weinelt 104455784c
Merge pull request #219791 from emilylange/nixos-caddy 
nixos/caddy: change `acmeCA` default to `null`, omit empty `bind` directive
 2023-06-12 22:40:54 +02:00
Martin Weinelt eb6e16e3c5
Merge pull request #236875 from mweinelt/wyoming_piper_whisper 
wyoming-piper: init at 0.0.3, wyoming-faster-whisper: ini at 0.0.3
 2023-06-12 21:02:18 +02:00
github-actions[bot] a69b4c6b89
Merge master into staging-next 2023-06-12 18:01:15 +00:00
Will Fancher 5709754a1d
Merge pull request #237336 from zi3m5f/fix-systemd-nspawn-machineid-option 
systemd-nspawn: fix spelling of MachineID option and add module test
 2023-06-12 13:12:59 -04:00
Martin Weinelt f213f33f15
nixos/wyoming/faster-whisper: init 2023-06-12 18:44:44 +02:00
Martin Weinelt 7f17f8da9f
nixos/wyoming/piper: init 2023-06-12 18:44:44 +02:00
Robert Hensing 7e63eed145
Merge pull request #237282 from isker/patch-3 
nixos/nix-daemon: fix URL for nix.conf
 2023-06-12 17:01:15 +02:00
Felix Dietze 7cfeb768e5
fix herbstluftwm session command 2023-06-12 14:17:28 +00:00
Colin bd77d4ae46 nixos/lemmy: support nginx 2023-06-12 09:59:11 -04:00
github-actions[bot] d0fbe5588d
Merge master into staging-next 2023-06-12 12:01:32 +00:00
Robert Hensing ed551f4ecf
Merge pull request #237218 from hercules-ci/fix-nixos-generate-config-system 
nixos-generate-config: Fix generated hostPlatform.system
 2023-06-12 12:26:56 +02:00
zi3m5f 67f5dcfd94 nixos/nspawn: fix spelling of systemd.nspawn MachineID option 
This changes option systemd.nspawn.execConfig.MachineId to MachineID.
See man page systemd.nspawn(5)
 2023-06-12 12:08:15 +02:00
Ryan Lahfa 3897d52760
Merge pull request #236134 from Tom-Hubrecht/pixelfed 
nixos/pixelfed: Fix missing permissions for nginx serving files
 2023-06-12 11:59:31 +02:00
Ian Kerins 2f20e0e131
nixos/nix-daemon: fix URL for nix.conf 
The existing URL no longer takes you somewhere useful.
 2023-06-11 23:17:50 -04:00
github-actions[bot] 112762351d
Merge master into staging-next 2023-06-12 00:02:19 +00:00
Martin Weinelt fe2f291e17
Merge pull request #236757 from max-privatevoid/pam-kanidm 
nixos/pam: support Kanidm
 2023-06-11 20:22:00 +02:00
Will Fancher e23693e129 systemd stage 1 networking: Use KeepConfiguration 2023-06-11 13:59:00 -04:00
Robert Hensing 1350e522fa nixos-generate-config: Fix generated hostPlatform.system 
While the intent of the code was correct, the system string can not be used
in the substituteAll function.

See https://github.com/NixOS/nixpkgs/issues/237216
 2023-06-11 19:28:51 +02:00
Max 847a7f1102 nixos/kanidm: auto-restart kanidm-unixd-tasks 2023-06-11 17:17:42 +02:00
Max 34a4165674 nixos/pam: support Kanidm 2023-06-11 17:17:42 +02:00
github-actions[bot] b5b56fecff
Merge staging-next into staging 2023-06-11 12:02:12 +00:00
Marillindië e394dc22f9 xray: allow binding lower ports 
Set CapabilityBoundingSet, AmbientCapabilities and NoNewPrivileges as described in XTLS/xray-install.
 2023-06-11 09:03:50 +01:00
github-actions[bot] 9f2767ce37
Merge staging-next into staging 2023-06-10 18:01:41 +00:00
Robert Hensing 193f4fea90 nixos/activatable-system: Make substitutions explicit 
This helps with understanding the code.
We might make this not depend on environment variables later.
systemBuilderArgs is a form of global state, which isn't helpful.
 2023-06-10 19:15:00 +02:00
Robert Hensing a16986f1a3 nixos: Move installBootLoader to activation script modules 2023-06-10 19:15:00 +02:00
Robert Hensing 61d43dee5f nixos: Extract module for activation script inclusion into toplevel 
Allows omission of this functionality through disabledModules, e.g.
for image building.
 2023-06-10 19:15:00 +02:00
Ryan Lahfa 6262a46ba8
Merge pull request #234034 from NixOS/qemu/direct-boot 
nixos/qemu-vm: introduce `virtualisation.directBoot`
 2023-06-10 18:12:56 +02:00
IndeedNotJames 93b9fc8ac0
nixos/caddy: omit empty bind directive when listenAddresses is empty 
context: https://caddy.community/t/random-502-errors-when-proxying-to-application-with-self-signed-certificate/19657/6
 2023-06-10 13:59:15 +02:00
IndeedNotJames 3f93ec5814
nixos/caddy: change acmeCA default to null 
The nixos/caddy module is somewhat old by now
and has undergone quite some refactors.
This specific module option (originally named
`ca`) used to make a bit more sense when
Caddy did not have multiple ACME CAs as
fallback (LE & ZeroSSL) by configured by
default yet (ZeroSSL came with v2.3.0).

I also rephrased the description slightly,
to mention Caddy's automatic issuer fallback
and a note which this option maps to in the
Caddyfile, to provide a bit more context and
a more up-to-date recommendation.

Specifically that "fine-grained configuration"
section comes from a time when this module did
some custom tls/issuer config json merging
with the templated Caddyfile using `jq`.

The "The URL to the ACME CA's directory"
section is a word-for-word copy from the
official Caddy docs, which also include a link
to LE's docs to the referenced staging
endpoint. So I added that as well.
 2023-06-10 13:59:10 +02:00
pacien 76cabe1644 nixos/ddclient: remove obsolete ipv6 option 
Since ddclient@24ba945 (v3.10.0), the type and meaning of the "ipv6"
option has changed. This resulted in the following warning when
starting the service:

    WARNING:  file /run/ddclient/ddclient.conf, line 13:
    Invalid Value for keyword 'ipv6' = 'no'

This therefore removes the matching boolean option.
More advanced configurations can use the "extraConfig" option instead.
 2023-06-10 11:25:54 +02:00
github-actions[bot] ffc7e7d777
Merge staging-next into staging 2023-06-10 06:01:49 +00:00
Will Fancher 90d69b1634
Merge pull request #236388 from ElvishJerricco/sd-s1-networkd-stop-on-switch-root 
systemd stage 1 networking: Stop systemd-networkd on switch-root
 2023-06-10 00:35:56 -04:00
github-actions[bot] f85baf313e
Merge staging-next into staging 2023-06-10 00:03:09 +00:00
Martin Weinelt 0983c18e6a
nixos/go2rtc: add support for v4l2 video sources 
Capturing from /dev/video* requires being member of the video group.
 2023-06-09 20:20:38 +02:00
github-actions[bot] 622850f61f
Merge staging-next into staging 2023-06-09 18:01:50 +00:00
Sergey Ivanov bbc56fd1c7
gnunet: fix systemd service config (#151269) 
Co-authored-by: Jörg Thalheim <Mic92@users.noreply.github.com>
 2023-06-09 16:33:51 +00:00
Raito Bezarius 610f60231f nixos/qemu-vm: introduce virtualisation.directBoot 
As with many things, we have scenarios where we don't want to boot on a
disk / bootloader and also we don't want to boot directly.

Sometimes, we want to boot through an OptionROM of our NIC, e.g. netboot
scenarios or let the firmware decide something, e.g. UEFI PXE (or even
UEFI OptionROM!).

This is composed of:

- `directBoot.enable`: whether to direct boot or not
- `directBoot.initrd`: enable overriding the
  `config.system.build.initialRamdisk` defaults, useful for
  netbootRamdisk for example.

This makes it possible.
 2023-06-09 14:51:18 +02:00
github-actions[bot] 52cf9e3e3b
Merge staging-next into staging 2023-06-08 18:02:03 +00:00
Pol Dellaiera f0fc9fe22d
Merge pull request #236567 from l0b0/fix-activate-lints 
nixos/modules: Fix ShellCheck lints
 2023-06-08 18:42:38 +02:00
github-actions[bot] 2259be2076
Merge staging-next into staging 2023-06-08 12:02:05 +00:00
Weijia Wang 4b8f7098da foundationdb: cleanup 2023-06-08 14:48:41 +03:00
Weijia Wang 0dfe118d22
Merge pull request #236259 from wegank/mongodb-drop 
mongodb-4_2: drop
 2023-06-08 14:40:30 +03:00
Tom McLaughlin f69aff8f89 github-runner: add thomasjm as maintainer 2023-06-08 01:03:15 -07:00
github-actions[bot] f8aa1a896e
Merge staging-next into staging 2023-06-08 06:01:46 +00:00
Will Fancher 5d6ea734a1 systemd stage 1 networking: Stop systemd-networkd on switch-root 
This essentially backports
https://github.com/systemd/systemd/pull/27791. `systemd-networkd.service`
is sent the `SIGTERM` signal, but it is not required to be stopped
before `initrd-switch-root.target` is reached, despite the use of
`systemctl isolate initrd-switch-root.target`. This is because when
there is no ordering at all between two units, and a transaction stops
one and starts the other, the two operations can happen
simultaneously. This means the service could still be running when
`switch-root` actually occurs. Then, stage 2 systemd will see the
service still running and decide it doesn't need to add a start
operation for it to its initial transaction. Finally, the service
exits, but only after it's already too late. If, however, there is any
ordering at all between a stopping unit and a starting unit, then the
stop operation will be done first. This way, we ensure that the
service is properly exited before doing `switch-root`.

This is something to keep in mind going forward. There may be other
services that need this treatment. These `before` and `conflicts`
definitions are the correct way to ensure a unit is actually stopped
before you reach initrd-switch-root
 2023-06-08 00:25:15 -04:00
Victor Engmark 8deaa732a8 refactor: Split mkdir -m … into mkdir + chmod 
As recommended by ShellCheck
<https://www.shellcheck.net/wiki/SC2174>.
 2023-06-08 15:55:40 +12:00
Victor Engmark b0a9abedea refactor: Use dummy variable name for unused value 
As recommended by ShellCheck
<https://github.com/koalaman/shellcheck/wiki/SC2034>.
 2023-06-08 15:11:35 +12:00
Martin Weinelt 5715d6b452
Merge pull request #236471 from Mic92/mediawiki-fixes 
mediawiki: fix group used when apache2 is used
 2023-06-08 03:13:35 +02:00
Sandro Jäckel 5896d330e9
nixos/no-x-libs: disable x11 of gst_all_1.gst_plugins_good 2023-06-07 21:39:09 +02:00
Sandro Jäckel b66a6ce01b
nixos/no-x-libs: gst_all_1.gst-plugins-base: disable wayland to disable GL 
GL was already participially disabled because X11 is disabled and lead to
the following error when building gst-plguins-good:

```
Did not find CMake 'cmake'
Found CMake: NO
Run-time dependency gstreamer-gl-prototypes-1.0 found: NO (tried pkgconfig and cmake)
Looking for a fallback subproject for the dependency gstreamer-gl-prototypes-1.0

meson.build:328:2: ERROR: Neither a subproject directory nor a gst-plugins-base.wrap file was found.
```
 2023-06-07 21:39:06 +02:00
github-actions[bot] 45c3df25d7
Merge staging-next into staging 2023-06-07 18:01:50 +00:00
Jörg Thalheim d3036bb608 mediawiki: fix group used when apache2 is used 2023-06-07 17:31:44 +02:00
Pol Dellaiera fdcc0ecf37
Merge pull request #236303 from alyssais/StrictModes 
nixos/sshd: add StrictModes option
 2023-06-07 15:53:20 +02:00
Weijia Wang 4b3f710d96
Merge pull request #236363 from pennae/drop-unifi-maint 
unifi: drop pennae from maintainers
 2023-06-07 16:29:31 +03:00
github-actions[bot] 4715513f7b
Merge staging-next into staging 2023-06-07 12:01:38 +00:00
happysalada d804ca626a nixos/atuin: add database.createLocally 2023-06-07 05:35:09 -04:00
Michele Guerini Rocco e9da2bac96
Merge pull request #236048 from rnhmjoj/pr-fix-i2c 
nixos/hardware/i2c: fix uaccess rule
 2023-06-07 10:22:18 +02:00
Michele Guerini Rocco 996dd1c645
Merge pull request #236311 from joee/patch-4 
nixos/modules/web-servers/nginx/default.nix: fix minor typo
 2023-06-07 09:05:22 +02:00
Joe Edmonds f87892b50b nixos/modules/web-servers/nginx/default.nix: fix minor typo 2023-06-06 21:55:15 -07:00
github-actions[bot] d7207bf33b
Merge staging-next into staging 2023-06-07 00:03:17 +00:00
Jacob Moody 39f220b6df
nixos/grafana: add jsonData datasource option (#234364) 2023-06-07 00:11:10 +02:00
Sandro Jäckel fadc824f20
nixos/etc: keep directories in derivation name 
This changes eg. etc-timesyncd.conf to etc-systemd-timesyncd.conf which
better reflects the actual location of the config file.
 2023-06-07 00:08:43 +02:00
pennae 912caf09f7 unifi: drop pennae from maintainers 
not using this any more, and really don't have the energy to deal with
neither the fallout of ubnt not officially supporting mongodb newer than
3.6, nor the hacks nixpkgs contains to work around that.
 2023-06-06 23:29:46 +02:00
Felix Buehler ed3b102d1e treewide: use use lib.optionalAttrs instead of 'then {}' 2023-06-06 22:54:31 +02:00
Pol Dellaiera 43b346ea1e
Merge pull request #220481 from uoleg/master 
nixos/nano: refactor nanorc creation
 2023-06-06 21:35:26 +02:00
github-actions[bot] 71a0dc0490
Merge staging-next into staging 2023-06-06 18:01:51 +00:00
rnhmjoj dbcd187add
nixos/udev: silence harmless warnings 
`udevRulesFor` generates a lot of warnings like:

  substituteStream(): WARNING: pattern '"/sbin/modprobe' doesn't match anything in file '/nix/store/.../95-dm-notify.rules'

due to the (preemptive) substitution of common paths in the default
udev rules. In this case a file having no matches is not unepected
and poses no issue at all.
 2023-06-06 19:42:18 +02:00
Sandro 50ab2973ed
Merge pull request #236126 from pacien/exim-service-privilege-namespacing-fix 
nixos/exim: apply privilege restrictions
 2023-06-06 18:29:40 +02:00
Alyssa Ross eeabae56e7
nixos/sshd: add StrictModes option 2023-06-06 16:06:09 +00:00
Ryan Lahfa a06d736f1f
Merge pull request #227203 from badele/fix-smokeping-symbolic-links 
nixos/smokeping: fix smokeping symbolic links
 2023-06-06 16:02:58 +02:00
Minijackson a46c5ee816
nixos/netbox: make systemd units more consistent with upstream 2023-06-06 14:53:08 +02:00
José Romildo Malaquias 4607765abc
Merge pull request #220054 from Scrumplex/init-qt6ct 
qt6ct: init at 0.8
 2023-06-06 09:40:27 -03:00
github-actions[bot] 6162feee0f
Merge staging-next into staging 2023-06-06 12:02:04 +00:00
Domen Kožar 1b4ec8b16b
Merge pull request #233439 from tweag/nix-2.15 
nix: 2.13.3 -> 2.15.1
 2023-06-06 12:51:41 +01:00
Weijia Wang 3f467ff45f mongodb-4_2: drop 2023-06-06 14:26:11 +03:00
Anand Suresh aa884b8f3d
improve documentation for nix.settings.sandbox (#188541) 
* add information on the "relaxed" setting in `nix.settings.sandbox`
 2023-06-06 10:32:26 +02:00
K900 c3ac633a81
Merge pull request #236109 from K900/no-more-dash-n 
treewide: clean up usages of `cp -n`
 2023-06-06 09:58:15 +03:00
github-actions[bot] 9634f361e8
Merge staging-next into staging 2023-06-06 00:02:59 +00:00
Pol Dellaiera cc47c2189f
Merge pull request #220068 from h7x4/hedgedoc-allow-nullable-client-secret 
nixos/hedgedoc: allow `clientSecret` to be null
 2023-06-05 21:54:02 +02:00
Tom Hubrecht 953ee5df82 nixos/pixelfed: Fix missing permissions for nginx serving files 
Also fixes the service `pixelfed-cron` StateDirectory and uses the nginx user instead of group to define nginx appartenance to pixelfed's group
 2023-06-05 20:49:16 +02:00
pacien 54be076ae7 nixos/exim: apply privilege restrictions 
Since 816614bd62, the service is set to use the exim user so that
systemd takes care of the credentials ownership. The executable is
still required to run as root, to then drop privileges. The prefix '+'
that was used however interfers with the use of privilege restrictions
and other sandboxing options. Since we only want to escape the "User"
setting, we can use the '!' prefix instead.
 2023-06-05 20:04:48 +02:00
github-actions[bot] 23f7318bde
Merge staging-next into staging 2023-06-05 18:02:10 +00:00
Sandro 048f167595
Merge pull request #233423 from tomaskala/self-deploy-after-network-online 
nixos/self-deploy: set after to requires, type to oneshot and remove wantedBy
 2023-06-05 19:47:10 +02:00
K900 57e1ea5a18 nixos/libvirtd: don't use cp -n 2023-06-05 19:14:01 +03:00
github-actions[bot] dd60d8ee46
Merge staging-next into staging 2023-06-05 12:01:45 +00:00
github-actions[bot] de4f02a6c8
Merge master into staging-next 2023-06-05 12:01:12 +00:00
Florian Klink 4627ee741d
Merge pull request #234877 from ElvishJerricco/auto-format-and-resize-with-systemd 
Auto format and resize with systemd
 2023-06-05 12:25:02 +03:00
misuzu 45ffb33514 nixos/gotosocial: init 
Co-authored-by: Peder Bergebakken Sundt <pbsds@hotmail.com>
 2023-06-05 09:07:34 +03:00
Will Fancher b497502357 nixos: Use systemd-growfs for autoResize 2023-06-04 22:57:22 -04:00
Will Fancher 5176a4f113 nixos: Use systemd-makefs for autoFormat 2023-06-04 22:57:20 -04:00
github-actions[bot] b2f58f98dd
Merge staging-next into staging 2023-06-05 00:03:13 +00:00
github-actions[bot] 4a640f8bb6
Merge master into staging-next 2023-06-05 00:02:32 +00:00
Sandro 793dd34507
Merge pull request #219602 from 999eagle/traefik-envsubst 
nixos/traefik: add environmentFiles option
 2023-06-05 00:36:43 +02:00
rnhmjoj b4e5de4ba4
nixos/hardware/i2c: fix uaccess rule 2023-06-04 21:22:32 +02:00
github-actions[bot] e97d10016c
Merge staging-next into staging 2023-06-04 18:01:37 +00:00
github-actions[bot] 22e7031b28
Merge master into staging-next 2023-06-04 18:00:59 +00:00
Julien Moutinho b6ed3b8f40 nixos/public-inbox: explicit a few more freeform settings 2023-06-04 13:09:28 +00:00
Sergei Trofimovich 4e2cfde94e modules: fix fontconfig.nix to use '$dst', not 'dst' 
Without the change non-default configs like:

    fonts.fontconfig.subpixel.rgba = "rgb"

fail to build the system as:

    fontconfig-conf> ln: failed to create symbolic link 'dst/': No such file or directory
 2023-06-04 09:45:28 +01:00
github-actions[bot] f39e9954d2
Merge staging-next into staging 2023-06-04 06:01:52 +00:00
github-actions[bot] e50c762dbb
Merge master into staging-next 2023-06-04 06:01:17 +00:00
Tom Siewert 50d66bcba6
nixos/gitlab: Fix config reference for registry (#235639) 
Support for gitlab-container-registry has been added in 014816cbe4.
However, when enabling the registry it will throw an error as it can't
find a `package` attribute.

This commit fixes the registry configuration by adding the missing
`registry` part.
 2023-06-04 02:32:35 +02:00
github-actions[bot] 5fc7c08add
Merge staging-next into staging 2023-06-03 18:02:23 +00:00
github-actions[bot] d8ea5b9435
Merge master into staging-next 2023-06-03 18:01:49 +00:00
Jan Tojnar b575d76ce1 nixos/gdm: Do not require GTK for account-service-util 2023-06-03 17:31:15 +02:00
Sefa Eyeoglu bd97ff5ff4 nixos/fontconfig: Change default antialiasing style to greyscale instead of subpixel 
fontconfig before version 2.13.1 was apparently implicitly not using
subpixel antialiasing. The fontconfig NixOS module deviated from this,
using subpixel antialiasing with `rgb` layout by default. In fontconfig
2.14.1, subpixel antialiasing was inadvertently enabled as the default:
2b6afa02ab

According to https://gitlab.freedesktop.org/fontconfig/fontconfig/-/issues/337,
that deviates from GNOME/GTK’s defaults, which resulted in apps taking the
settings directly from fontconfig (e.g. Firefox) from diverging from GNOME
programs.

The change was subsequently reverted in 2.14.2, choosing the greyscale
antialiasing explicitly: 030759b74f
Let’s reflect this default setting in the NixOS module.

Co-authored-by: Jan Tojnar <jtojnar@gmail.com>
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2023-06-03 16:02:22 +02:00
Sefa Eyeoglu b5d2d701d1 nixos/fontconfig: refactor antialias option for fontconfig 2.14.1 
`sub-pixel` has been enabled by default since 2.14.1: 2b6afa02ab
`antialias` since 2.14.1: 0825a178e8
`lcdfilter` since 2.13.95: e1c7c6d744
`hintstyle` since 2.12.1: 98434b3392

Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2023-06-03 16:02:22 +02:00
github-actions[bot] 4e2bb74acd
Merge master into staging-next 2023-06-03 12:01:39 +00:00
happysalada ba3d0f7a95 nixos/gitea: requires database 2023-06-03 05:14:46 -04:00
Bruno Adelé 0498957eac
nixos/smokeping: Fix smokeping preStart systemd 2023-06-03 08:06:18 +02:00
github-actions[bot] 6a837d8fb1
Merge master into staging-next 2023-06-03 06:01:11 +00:00
Gabriel Fontes dff2e184f4 nixos/prometheus.exporters.graphite: init 2023-06-03 03:13:09 +00:00
Gabriel Fontes 147668b8cf nixos/sitespeed-io: init 2023-06-03 03:12:51 +00:00
github-actions[bot] 4b2e2c8b39
Merge master into staging-next 2023-06-03 00:02:20 +00:00
happysalada ee1c6053fb nixos/ntfy-sh: use dynamic user and add defaults 2023-06-02 15:22:14 -04:00
github-actions[bot] 6084eca7dc
Merge master into staging-next 2023-06-02 18:01:04 +00:00
Linus Heckemann 15c3a653d5
Merge pull request #235440 from lheckemann/garage 
nixos/garage: allow unsafe replication modes, restart on config change
 2023-06-02 19:22:03 +02:00
Linus Heckemann c4f727c944 nixos/garage: allow unsafe replication modes, restart on config change 2023-06-02 18:11:44 +02:00
K900 e534047e2d
Merge pull request #234620 from linj-fork/fix/murmur-after 
nixos/murmur: make it be after network.target again
 2023-06-02 18:13:12 +03:00
Ryan Lahfa 4a4238a840
Merge pull request #235143 from wlcx/patch-1 
nixos/pixelfed: fix broken try_files
 2023-06-02 17:12:14 +02:00
Victor Buttner 4f1ccb7fc5 nixos/docker: add extraPackages option 
This permits easier use of some features, e.g. docker checkpoint.
 2023-06-02 15:45:55 +02:00
Ryan Lahfa 0902958046
Merge pull request #235295 from nikstur/qemu-vm-improve-comments-and-docs 
nixos/qemu-vm: improve comments and option descriptions
 2023-06-02 15:34:49 +02:00
Bobby Rong 7f96a08418
Merge pull request #235511 from bobby285271/upd/cinnamon-bpo 
Cinnamon updates 2023-06-02
 2023-06-02 21:25:34 +08:00
Bobby Rong 68dd259958
Merge pull request #235514 from bobby285271/upd/pantheon 
Pantheon updates 2023-06-02
 2023-06-02 20:36:02 +08:00
github-actions[bot] c8021f68a8
Merge master into staging-next 2023-06-02 12:01:23 +00:00
Bobby Rong e447cb9776
nixos/pantheon: enable xdg-desktop-portal-gtk by default 2023-06-02 19:29:26 +08:00
Ryan Lahfa 32630256f2
Merge pull request #235424 from AmineChikhaoui/ec2-amis-rel-23.05 2023-06-02 12:18:48 +02:00
github-actions[bot] 1625d790e1
Merge staging-next into staging 2023-06-02 06:01:45 +00:00
Bobby Rong 7cf3428fd5
nixos/cinnamon: fix slick-greeter icon theme package default 2023-06-02 11:40:09 +08:00
Nick Cao 9e2fa20321
Merge pull request #235425 from 999eagle/fix/nitter 
nixos/nitter: fix proxy option
 2023-06-01 20:26:54 -06:00
github-actions[bot] 8b93c4f667
Merge staging-next into staging 2023-06-02 00:03:07 +00:00
Silvan Mosberger d4fe69faea nix-fallback-paths.nix: Update to 2.15.1 2023-06-01 22:55:14 +02:00
Thiago Kenji Okada 99d37f54f0 nixos/sway: fix package option documentation 2023-06-01 19:40:02 +00:00
Sophie Tauchert 2dbd1e56c1
nixos/nitter: fix proxy option 2023-06-01 19:59:48 +02:00
Amine Chikhaoui 709043ed97
add release 23.05 AWS AMIs 2023-06-01 13:46:53 -04:00
Doron Behar 5b6c95c4cb nixos/nextcloud: Mention that adminpassFile is only used on startup 2023-06-01 15:43:51 +03:00
github-actions[bot] e8e956566c
Merge staging-next into staging 2023-06-01 12:02:11 +00:00
Pol Dellaiera 3090855141
Merge pull request #232360 from drupol/nixos/refactor-code-server 
nixos/code-server: add tests and more command line options
 2023-06-01 13:56:01 +02:00
github-actions[bot] 52e40d8261
Merge staging-next into staging 2023-06-01 00:03:14 +00:00
nikstur 003fec835c nixos/qemu-vm: remove grub references from useBootLoader description 2023-06-01 01:38:08 +02:00
nikstur 8ea8154a32 nixos/qemu-vm: (re-)move old/incorrect comments 2023-06-01 01:38:06 +02:00
Yaya e9594e6031 nixos/gitlab: Warn users who are still using an external registry 
This adds a warning for GitLab >=16.0.0 users who are still using an
external container registry such as `pkgs.docker-distribution`. Support
for external container registries has ended in GitLab 16.0 [1] and is
scheduled for removal in a future release. [2]

[1]: https://gitlab.com/gitlab-org/gitlab/-/issues/376217
[2]: https://gitlab.com/gitlab-org/gitlab/-/issues/403322
 2023-05-31 22:14:25 +02:00
Yaya 014816cbe4 nixos/gitlab: Add support for gitlab-container-registry 
Support for external container registries (namely
`pkgs.docker-distribution`) has ended in GitLab 16.0 [1] and is
scheduled for removal in a future release. [2]

This commit adds a new registry package option, defaulting to
`pkgs.docker-distribution` and `pkgs.gitlab-container-registry` for
system state versions >= 23.11.

While it is still possible to use the docker container registry, module
users should switch to gitlab's container registry fork soon. A warning
message will be added in a future commit to advise affected users to
back up their state and then switch to the new container registry
package.

[1]: https://gitlab.com/gitlab-org/gitlab/-/issues/376217
[2]: https://gitlab.com/gitlab-org/gitlab/-/issues/403322
 2023-05-31 22:14:25 +02:00
Yaya 049d680510 nixos/dockerRegistry: add package option 
This allows the module user to select an alternative container registry
package such as `pkgs.gitlab-container-registry` for GitLab users.
 2023-05-31 22:14:25 +02:00
Yaya 2a4536952a nixos/gitlab: Require at least postgresql 13.6 
https://docs.gitlab.com/16.0/ee/install/requirements.html#postgresql-requirements
 2023-05-31 22:14:25 +02:00
Yaya 4321e48b68 nixos/gitlab: Remove procps from gitaly service 
From my understanding, procps was added to the gitlay systemd service
path in #58487 to fix gitaly-ruby's internal memory leak detection.

Now that the last ruby remnants have been removed in gitaly 16.0.0,
this should not be necessary anymore.
 2023-05-31 22:14:25 +02:00
Yaya 33411f2768 nixos/gitlab: Update redis configuration 
Configuring Redis via environment variable is not supported anymore
since [1].

[1] 1242965361
 2023-05-31 22:14:25 +02:00
Yaya 6fed71cab2 gitaly: Remove ruby dependencies 
Ruby dependencies in gitaly have been removed in the 16.0.0 release. [1]

See GitLab Epic &2862 [2] for more info.

[1]: 689556e70a
[2]: https://gitlab.com/groups/gitlab-org/-/epics/2862
 2023-05-31 22:14:25 +02:00
github-actions[bot] e436cc21a6
Merge staging-next into staging 2023-05-31 18:01:35 +00:00
Kira Bruneau 7e820610e3
Merge pull request #234207 from emilylange/acme-dns 
acme-dns: init at 1.0; nixos/acme-dns: init; nixos/acme-dns: init
 2023-05-31 11:40:35 -04:00
emilylange d0af39521b
nixos/acme-dns: init 2023-05-31 15:08:37 +02:00
Sandro Jäckel fdb8f4994a
vaapiIntel: rename to intel-vaapi-driver 
I tripped over this way to often and a package attr matching the pname
is way nicer, anyway.
 2023-05-31 15:05:32 +02:00
github-actions[bot] 323e9a44c2
Merge staging-next into staging 2023-05-31 12:01:43 +00:00
r-vdp 2b63df0a03 modules/sshd: print the offending keys when we detect duplicate sshd keys. 2023-05-31 12:07:06 +02:00
Sam W 6ad72aa37e
nixos/pixelfed: fix broken try_files 
Add missing $ to try files directive. This fixes pixelfed federation and search, amongst presumably many other things!
 2023-05-31 15:19:23 +08:00
github-actions[bot] 4265b54868
Merge staging-next into staging 2023-05-30 18:01:44 +00:00
github-actions[bot] 7443b1efc5
Merge staging-next into staging 2023-05-30 12:01:46 +00:00
Aaron Andersen d098eec2da nixos/vmalert: init 2023-05-30 07:41:00 -04:00
Nick Cao 93ebabefb2
Merge pull request #234930 from NickCao/maddy 
maddy: 0.6.3 -> 0.7.0
 2023-05-30 05:16:51 -06:00
github-actions[bot] 36927e8629
Merge staging-next into staging 2023-05-30 06:01:32 +00:00
Jonas Heinrich 63f73b3295
nixos/maddy: change secrets option to accept a list of paths 2023-05-30 12:41:07 +08:00
github-actions[bot] 1df97aede2
Merge staging-next into staging 2023-05-30 00:02:56 +00:00
Gaetan Lepage d93dc82ee9 nixos/river: fix display manager error 2023-05-29 22:41:48 +02:00
3JlOy_PYCCKUI 22c8251d7f nixos/dk: init 2023-05-29 19:05:55 +00:00
Will Fancher 76d668fae7
Merge pull request #227628 from m-bdf/logind-handle-keys 
nixos/logind: Add key handling options
 2023-05-29 14:31:43 -04:00
github-actions[bot] 5611fa71ab
Merge staging-next into staging 2023-05-29 18:01:43 +00:00
Julien Malka 9631553153 Revert "nixos/ntfy-sh: add defaults, use dynamic user" 
This reverts commit 3dcca62a5e.
 2023-05-29 11:11:32 -04:00
Florian Klink 8b8a64d737
Merge pull request #234442 from rnhmjoj/pr-fix-ifnames 
network-interfaces-scripted: fix interface cleanup
 2023-05-29 15:14:12 +02:00
github-actions[bot] a0de937efb
Merge staging-next into staging 2023-05-29 12:02:05 +00:00
Weijia Wang 4387329d8f
Merge pull request #234729 from tie/pufferpanel-doc-fhsenv 
nixos/pufferpanel: buildFHSUserEnv -> buildFHSEnv
 2023-05-29 10:56:11 +03:00
Ivan Trubach 0143b16935 nixos/pufferpanel: buildFHSUserEnv -> buildFHSEnv 
The pufferpanel module (#225274) was merged shortly after the tree-wide
rename f63a12f296 (#225748), so the use of
deperecated buildFHSUserEnv in the docs slipped through review 😅
 2023-05-29 07:08:19 +03:00
happysalada 3dcca62a5e nixos/ntfy-sh: add defaults, use dynamic user 2023-05-28 21:17:14 -04:00
Vincent Breitmoser db17d62284 nixos/cage: add environment config 
Give WLR_LIBINPUT_NO_DEVICES as example. This allows launching without
any input devices, which makes sense for a kiosk system.
 2023-05-28 23:36:22 +02:00
Lin Jian 0ae9df6c5e
nixos/murmur: make it be after network.target again 
network.target was changed to network-online.target in this PR[1] to
workaround an issue[2].

The murmur version in Nixpkgs has fixed that issue[2].

[1]: https://github.com/NixOS/nixpkgs/pull/42860
[2]: https://github.com/mumble-voip/mumble/issues/1629
 2023-05-28 21:03:40 +08:00
github-actions[bot] 19efa11381
Merge staging-next into staging 2023-05-28 06:01:45 +00:00
Bobby Rong 838dad5de9
Merge pull request #234231 from bobby285271/add/xdg-desktop-portal-xapp 
xdg-desktop-portal-xapp: init at 1.0.0
 2023-05-28 10:52:30 +08:00
github-actions[bot] 003f914d04
Merge staging-next into staging 2023-05-28 00:03:10 +00:00
Thomas Gerbet a24848c470 nixos/etcd: allow to choose the package 2023-05-28 08:04:43 +10:00
Ryan Lahfa 77a1c48cca
Merge pull request #232011 from GaetanLepage/river 
nixos/river: init module
 2023-05-27 22:30:51 +02:00
github-actions[bot] 9441fc25d1
Merge staging-next into staging 2023-05-27 18:01:38 +00:00
Victor Freire 77520d39ce nixos/legit: init 2023-05-27 16:20:05 +00:00
Raito Bezarius 09d1022782 nixos/qemu-vm: fix 32-bits assert for memorySize 
It should be an implication, rather than &&.
 2023-05-27 17:20:08 +02:00
Martin Weinelt 108721e4d1
Merge pull request #170473 from NixOS/grahamc-patch-3 
networkd: support specifying the ClientIdentifier for DHCPv4 options
 2023-05-27 16:55:30 +02:00
Ryan Lahfa 537c6ede55
Merge pull request #234266 from emilylange/qemu-vm-2047mb 
nixos/qemu-vm: add `virtualisation.memorySize < 2048` assertion on 32bit
 2023-05-27 15:31:00 +02:00
rnhmjoj 6732106210
network-interfaces-scripted: fix interface cleanup 
There is apparently a bug in the parser of iproute2 where the command
`ip link show <devname>` will not show the device but list all
interfaces (equivalent to `ip link show`) if devname is equal to one of
the flags of `ip-address(8)`. For example, `home`, or `optimistic`.

This bug causes a false positive in the clean up command of the
<devname>-netdev.service, the service fails and the interface is never
configured.

To avoid the bug we can simply use `ip link show dev <devname>`.
 2023-05-27 15:09:22 +02:00
Graham Christensen 479712af11
networkd: support specifying the ClientIdentifier for DHCPv4 options 2023-05-27 15:06:06 +02:00
nicoo 942f0a01fe nixos/below: Explicitely mark descriptions as using Markdown 2023-05-27 11:52:07 +00:00
nicoo 405e1f1e54 nixos/below: Add service module 2023-05-27 11:52:07 +00:00
github-actions[bot] 824f05f73f
Merge staging-next into staging 2023-05-27 06:01:44 +00:00
Nick Cao cf58ff13a3
Merge pull request #234254 from kevincox/mautrix-facebook-appservice-id 
nixos.mautrix-facebook: Fix appservice name
 2023-05-26 19:48:00 -06:00
Alyssa Ross 191075fa83
Merge remote-tracking branch 'origin/staging-next' into staging 
Conflicts:
	pkgs/os-specific/linux/kernel/patches.nix
	pkgs/top-level/linux-kernels.nix
 2023-05-26 18:37:26 +00:00
Raito Bezarius 69bb0f94de nixos/nginx: first-class PROXY protocol support 
PROXY protocol is a convenient way to carry information about the
originating address/port of a TCP connection across multiple layers of
proxies/NAT, etc.

Currently, it is possible to make use of it in NGINX's NixOS module, but
is painful when we want to enable it "globally".
Technically, this is achieved by reworking the defaultListen options and
the objective is to have a coherent way to specify default listeners in
the current API design.
See `mkDefaultListenVhost` and `defaultListen` for the details.

It adds a safeguard against running a NGINX with no HTTP listeners (e.g.
only PROXY listeners) while asking for ACME certificates over HTTP-01.

An interesting usecase of PROXY protocol is to enable seamless IPv4 to
IPv6 proxy with origin IPv4 address for IPv6-only NGINX servers, it is
demonstrated how to achieve this in the tests, using sniproxy.

Finally, the tests covers:

- NGINX `defaultListen` mechanisms are not broken by these changes;
- NGINX PROXY protocol listeners are working in a final usecase
  (sniproxy);
- uses snakeoil TLS certs from ACME setup with wildcard certificates;

In the future, it is desirable to spoof-attack NGINX in this scenario to
ascertain that `set_real_ip_from` and all the layers are working as
intended and preventing any user from setting their origin IP address to
any arbitrary, opening up the NixOS module to bad™ vulnerabilities.

For now, it is quite hard to achieve while being minimalistic about the
tests dependencies.
 2023-05-26 19:48:26 +02:00
emilylange 5dbd4f3243
nixos/qemu-vm: add virtualisation.memorySize < 2048 assertion on 32bit 2023-05-26 19:43:58 +02:00
Kevin Cox 5242aea64f
nixos.mautrix-facebook: Fix appservice name 
It appears that newer mautrix-facebook versions default to the appservice name `facebook`. This was breaking our registration and causing mautrix-facebook to fail to start. This changes the name back and makes the registration generated match whatever the setting in the app is.
 2023-05-26 12:39:37 -04:00
Bobby Rong 36abd7c9f8
nixos/cinnamon: enable portals by default 2023-05-26 23:53:15 +08:00
Ryan Lahfa 435237d641
Merge pull request #233350 from GrahamDennis/grahamdennis/testing-networks 
nixos/qemu-vm: add option for named network interfaces
 2023-05-26 15:57:01 +02:00
Alyssa Ross a92bc576b1
nixos/stage-1: support bind mounts of files 
On my system, / is tmpfs, and /etc/machine-id is bind mounted from
/persist.
 2023-05-26 13:26:48 +00:00
Pol Dellaiera 2c95ebadf3
nixos/code-server: add more command line options 2023-05-26 09:51:33 +02:00
github-actions[bot] 59b8a4fae6
Merge staging-next into staging 2023-05-26 06:01:46 +00:00
lucasew 8587646ef3 nixos/virtualisation/google-compute-config: minor refactoring 
Signed-off-by: lucasew <lucas59356@gmail.com>
 2023-05-26 00:56:32 +00:00
github-actions[bot] 255911fcb9
Merge staging-next into staging 2023-05-26 00:02:51 +00:00
Lily Foster 83e9bcb109
Merge pull request #231891 from SuperSandro2000/gst-plugins-bad 
nixos/no-x-libs: add gst-plugins-bad, gst-plugins-rs
 2023-05-25 19:25:00 -04:00
Yaya f63f781063 nixos/sftpgo: init 
A fully featured and highly configurable SFTP server with optional
HTTP/S, FTP/S and WebDAV support.

https://github.com/drakkan/sftpgo
 2023-05-25 22:46:15 +02:00
Jenny 0adbf8feb4
nixos/pam_mount: fix mounts without options (#234026) 
This commit adds a comma in front of the given options, which makes the
mounts still succeed even if no options are given.

Fixes #233946
 2023-05-25 22:45:59 +02:00
Sandro 86b0cdb24b
Merge pull request #233517 from illustris/pve-fix 
nixos/proxmox-image: fix qemu build failure
 2023-05-25 22:07:14 +02:00
Sandro ef2a17c946
Merge pull request #232339 from bl1nk/bl1nk/thelounge-package-option 
nixos/thelounge: add package option
 2023-05-25 22:04:22 +02:00
Will Fancher fe43923a70
Merge pull request #229767 from mberndt123/mberndt123/stratis-rootfs 
nixos/stratis: initrd support for stratis root volumes
 2023-05-25 14:06:31 -04:00
Sandro 1b40315504
Merge pull request #233092 from midchildan/chore/mirakurun/node18 2023-05-25 14:47:50 +02:00
illustris 6a20c13258
nixos/proxmox-image: fix qemu build failure 2023-05-25 16:25:43 +05:30
Gaetan Lepage 8f421acbc5 nixos/river: init module 2023-05-25 00:05:23 +02:00
Gaetan Lepage c7bd5289d6 nixos/programs: factor out wayland-session common options 2023-05-25 00:04:22 +02:00
nyanotech 3aad03a464 nixos/sshd: detect duplicate config keys 2023-05-25 00:01:03 +02:00
Sandro Jäckel 94baf8bfd9
nixos/no-x-libs: add gst-plugins-bad 2023-05-24 20:49:08 +02:00
midchildan c3346f87c4
mirakurun: use node 18 
Relates to #229910.
 2023-05-25 03:44:13 +09:00
Maximilian Bosch 40dcc3375c
Merge pull request #232837 from emilylange/nixos/synapse 
nixos/synapse: allow omitting `trusted_key_servers[].verify_keys`
 2023-05-24 16:28:03 +02:00
Tomas Kala 37c95bc868
nixos/self-deploy: set after to requires, type to 
... oneshot, remove wantedBy
 2023-05-24 14:05:17 +02:00
Graham Dennis 93502aa3b1 nixos/qemu-vm: add option for named network interfaces 
Adds a new option to the virtualisation modules that enables specifying explicitly named network interfaces in QEMU VMs.
The existing `virtualisation.vlans` option is still supported for cases where the name of the network interface is irrelevant.
 2023-05-24 08:54:20 +10:00
Otto Sabart 2c664e3a65
nixos/prometheus-ipmi-exporter: allow AF_UNIX address family 
This family is required for ipmi collector.
 2023-05-23 21:00:00 +02:00
Ryan Lahfa 0d13962366
Merge pull request #233518 from tie/bios-bootable-x86 
nixos/iso-image: enable BIOS boot by default if possible
 2023-05-23 17:05:21 +02:00
Ryan Lahfa 078d3ebcaa
Merge pull request #232235 from cyberus-technology/outline-0.69.2 
outline: 0.68.1 -> 0.69.2
 2023-05-23 15:14:18 +02:00
Robert Hensing 983bf78c16
Merge pull request #233397 from Kranzes/hci-module 
nixos/hercules-ci-agent: sync module with upstream
 2023-05-23 14:17:28 +02:00
Alexander Sieg 74bc42615c
outline: 0.68.1 -> 0.69.2 2023-05-23 10:44:02 +02:00
Maximilian Bosch c0bbecef87
Merge pull request #232276 from LeSuisse/broken-php80-packages 
grocy, limesurvey: mark as broken due to lack of PHP 8.1 compatibility
 2023-05-23 07:19:17 +02:00
Ivan Trubach c68a5bb85a nixos/iso-image: enable BIOS boot by default if possible 
The change introduced in commit e5b072eca1
breaks backwards compatibility for some users, see
e5b072eca1 (commitcomment-113775008)
https://github.com/NixOS/nixpkgs/pull/219351#discussion_r1139773448

This change updates the implementation to enable BIOS boot if possible
for the build and host platforms, and also assert that BIOS boot is not
enabled for non-x86 host platforms.
 2023-05-23 04:43:31 +03:00
Sandro 493c6d8505
Merge pull request #233053 from midchildan/chore/epgstation/node18 
epgstation: use node18 + other fixes
 2023-05-23 01:48:26 +02:00
0x4A6F afad0c152b
Merge pull request #214428 from mweinelt/frigate-init 
frigate: init at 0.12.0
 2023-05-22 18:29:37 +02:00
Ryan Lahfa 2e1e1f8765
Merge pull request #231502 from SuperSandro2000/portunus-openldap 
nixos/portunus: use openldap compiled with libxcrypt-legacy
 2023-05-22 18:20:52 +02:00
Naïm Favier 7b28ea6783
Merge pull request #233377 from ncfavier/revert-226088 
Revert "nixos/syncthing: use rfc42 style settings"
 2023-05-22 16:35:04 +02:00
Martin Weinelt f11d33afb7
nixos/frigate: init 2023-05-22 16:29:54 +02:00
Martin Weinelt 958fc81472
Merge pull request #216786 from mweinelt/go2rtc 
go2rtc: init at 1.5.0
 2023-05-22 16:00:54 +02:00
Will Fancher 636e03bef3
Merge pull request #232533 from nikstur/systemd-repart-create-root 
nixos/systemd-repart: enable creating root partition
 2023-05-22 09:13:00 -04:00
Ilan Joselevich ebafd551d7
nixos/hercules-ci-agent: sync module with upstream 2023-05-22 15:05:16 +03:00
ners afdf7705ad nixos/iso-image: add some types 2023-05-22 13:01:56 +02:00
ners c281a355fe nixos/iso-image: prepend to ISO menu labels 2023-05-22 11:25:00 +02:00
Naïm Favier d5e090d2d8
Revert "nixos/syncthing: use rfc42 style settings" 
This reverts commit 32866f8d58.
This reverts commit 40a2df0fb0.
This reverts commit 4762932601.
 2023-05-22 10:29:52 +02:00
Ryan Lahfa 0e662e669a
Merge pull request #227642 from Flakebi/powerdns-admin2 
powerdns-admin: 0.3.0 -> 0.4.1
 2023-05-22 09:30:24 +02:00
Martin Weinelt eae2018b54
nixos/go2rtc: init 2023-05-22 03:48:47 +02:00
Flakebi 1a13b4c0f9
powerdns-admin: 0.3.0 -> 0.4.1 
- Fix with flask-migrate 4+
- Update to 0.4.1
- Improve the test to check that using the database works
 2023-05-22 00:39:58 +02:00
midchildan 94eb60a7d2
nixos/epgstation: add a new option 'ffmpeg' 
Closes #187120.
 2023-05-22 05:24:19 +09:00
midchildan 059006b84b
nixos/epgstation: add required directories to tmpfiles.d 2023-05-22 05:24:18 +09:00
Aaron Andersen 9889d76032
Merge pull request #232607 from plumelo/feat/redmine-5 
redmine: 4.2.10 -> 5.0.5
 2023-05-21 14:33:01 -04:00
Sandro Jäckel 0000000324
nixos/portunus: use openldap compiled with libxcrypt-legacy 
It hardcodes sha256 crypt and the managed slapd crash loops otherwise.
 2023-05-21 18:54:56 +02:00
Sandro a74a4a2f32
Merge pull request #232534 from teutat3s/zhf/fix-prometheus-exporter-jitsi 
jitsi-videobridge: refactor broken `apis` option to `colibriRestApi`
 2023-05-21 18:43:59 +02:00
Sandro Jäckel 9ad0793b40
nixos/podman: persist timer 
otherwise the timer might never run on laptops which could be shutdown
during the night
 2023-05-21 17:24:16 +02:00
Sandro 59cb287790
Merge pull request #231260 from Luflosi/update/kubo 
kubo: 0.19.2 -> 0.20.0
 2023-05-21 17:15:22 +02:00
pennae 727086540f
Merge pull request #233238 from emilylange/username-change 
maintainers: rename indeednotjames to emilylange
 2023-05-21 17:07:05 +02:00
Sandro b34c560d19
Merge pull request #186582 from midchildan/fix/epgstation-var-empty 
nixos/epgstation: fix startup issue
 2023-05-21 16:57:54 +02:00
emilylange b0e7f7f5db
maintainers: rename indeednotjames to emilylange 2023-05-21 16:01:35 +02:00
teutat3s cb81bd9340
jitsi-videobridge: refactor broken apis option to 
colibriRestApi

Refactor option to use jvb.conf and convert to boolean. Using the CLI
argument broke a while ago and is deprecated by upstream since 2021:
https://github.com/jitsi/jitsi-videobridge/pull/1738/files#diff-d9f589d2aae1673693461d7c3b9214324201ca1f43db63a3c773d4acfc52bc81

This fixes the currently broken test:
nixosTests.prometheus-exporters.jitsi
 2023-05-21 15:31:14 +02:00
Yaya 2681d4ff12 nixos/gitlab-runner: Add gitlab team members to maintainers 2023-05-20 20:38:49 +00:00
Yaya 27d73b3d46 nixos/gitlab: Add gitlab team members to maintainers 2023-05-20 20:38:49 +00:00
Ilan Joselevich 5f6ad63b4f
Merge pull request #233037 from SuperSandro2000/libvirt-polkit 
nixos/libvirtd: enable polkit
 2023-05-20 20:03:22 +03:00
Jenny 7abd408b7f
nixos/pam_mount: fix cryptmount options (#232873) 
There was a bug in the pam_mount module that crypt mount options were
not passed to the mount.crypt command. This is now fixed and
additionally, a cryptMountOptions NixOS option is added to define mount
options that should apply to all crypt mounts.

Fixes #230920
 2023-05-20 17:40:36 +02:00
Sandro Jäckel 64361e26b2
nixos/libvirtd: enable polkit 
it is enforced by an assert anyway
 2023-05-20 17:30:34 +02:00
Georges c7695805ca
nixos/shadow: refactor login.defs config options 
Add a settings option for the login.defs file
to provide enhanced configuration abilities.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2023-05-20 13:34:41 +02:00
figsoda 701bcdbead nixos: fix typos 2023-05-19 22:31:04 -04:00
Sandro Jäckel f2ea5c05c1
nixos/nix-optimise: persist timer 
otherwise the timer might never run on laptops which could be shutdown
during the night
 2023-05-20 02:32:19 +02:00
Sandro Jäckel 879c2dd588
nixos/nix-optimise: cleanup, remove with lib 2023-05-20 02:24:32 +02:00
Weijia Wang e70a5fac10
Merge pull request #231744 from wineee/pinentryFlavor 
nixos/gnupg: default to qt pinentry program in deepin
 2023-05-20 03:04:49 +03:00
Bjørn Forsman ef85c3fe51 nixos: use passAsFile to avoid "Argument list too long" error 
This patch fixes "Argument list too long" build failure when passing a
list of store paths to system.extraDependencies that exceeds Linux'
MAX_ARG_STRLEN limit of 128 KiB. With the shortest possible derivation
names (one byte), the 128 KiB limit is equivalent to about 2850
derivations. With longer derivations names, the limit is hit earlier.
Fix this restriction.
 2023-05-19 22:31:31 +02:00
Matthias Berndt 765349d345 minor refactoring 2023-05-19 10:22:45 -04:00
nikstur ef80e11032 nixos/systemd-repart: enable creating root partition 2023-05-19 15:54:55 +02:00
IndeedNotJames d212ec13b8
nixos/synapse: allow omitting trusted_key_servers[].verify_keys 
Synapse does not require the `verify_keys` attr/object to be set.
It made sense back in the day, when federation traffic used to use self-signed certificates. But this is no longer the case.

The previous `types.nullOr` didn't actually allow omitting `verify_keys` because Synapse's config parser is unable to parse that.

Not a breaking change.

Upstream docs: https://matrix-org.github.io/synapse/latest/usage/configuration/config_documentation.html?highlight=verify_keys#trusted_key_servers
 2023-05-19 15:46:53 +02:00
Yoann Beaugnon 9617d41ab1 nixos/libvirtd: add support for nixos managed libvirt hooks 
Libvirt support calling user defined hooks on certains events.
Documentation can be found https://libvirt.org/hooks.html.
This commit allow specifying these hooks via the
virtualisation.libvirtd.hooks.<name>.* options
 2023-05-19 12:46:07 +02:00
Alyssa Ross 7ddca49451 nixos/mailman: set RemainAfterExit for settings 
This seems to be required to have the unit re-run if
services.mailman.restApiPassFile gets set.
 2023-05-19 12:03:41 +02:00
Alyssa Ross 43465c94d4 nixos/mailman: randomly generate REST API token 2023-05-19 12:03:41 +02:00
Yureka 97c8817371
nixos/clickhouse: Notify systemd about successful startup (#232443) 
https://github.com/ClickHouse/ClickHouse/pull/43400
https://github.com/ClickHouse/ClickHouse/pull/46613
 2023-05-19 00:24:20 +02:00
Sandro 58f987450c
Merge pull request #226116 from erdnaxe/nitter-update-module 
nixos/nitter: update module options
 2023-05-18 23:45:39 +02:00
Naïm Favier 84f249a0c4
Merge pull request #232582 from Lassulus/syncthing-folder-fix 
nixos/syncthing: fix disabled folders
 2023-05-18 22:19:36 +02:00
Lily Foster 3e014434a7
Merge pull request #230876 from purin-aurelia/nixos-openrgb-fix 
nixos/openrgb: fix data dir & amd i2c
 2023-05-18 15:00:13 -04:00
Will Fancher edcd3d3056
Merge pull request #229318 from ReneHollander/fix/nixos-zfs-systemd-unlock-times-out 
nixos/zfs: disable unlock timeout with systemd
 2023-05-18 12:42:21 -04:00
Meghea Iulian eb222f0f97
redmine: upgrade start command 2023-05-18 14:35:38 +03:00
K900 b451cc7668 nixos/libinput: only enable when X11 is enabled 2023-05-18 13:58:18 +03:00
Sefa Eyeoglu 5c08d4fa3e
nixos/qt: also install qt6ct if using qt5ct 
If QT_QPA_PLATFORMTHEME is set to qt5ct, Qt 6 apps can utilize qt6ct, to
achieve consistent theming across the two major versions.

Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2023-05-18 12:45:01 +02:00
lassulus 4762932601 nixos/syncthing: fix disabled folders 2023-05-18 11:06:57 +02:00
Matthias Berndt cb410a8c59 Merge remote-tracking branch 'upstream/master' into mberndt123/stratis-rootfs 2023-05-17 21:47:19 -04:00
Anderson Torres c637afe9c1
Merge pull request #229030 from atorres1985-contrib/with-lib-is-bad 
With lib is bad: removes `with lib;` occurrences - part I
 2023-05-17 20:24:46 -03:00
Martin Weinelt a919e81dbf
Merge pull request #231512 from n0emis/zammad-5.4.1 
zammad: 5.1.1 -> 5.4.1
 2023-05-17 18:36:29 +02:00
Markus Cisler a0b7802372 nixos/thelounge: add package option 
Adds a package option to the thelounge NixOS module.
 2023-05-17 08:34:18 -07:00
Naïm Favier 40a2df0fb0
nixos/syncthing: fixup #226088 2023-05-17 16:53:01 +02:00
Ember Keske 8c5087c1f6 zammad: link test in passthru.tests 2023-05-17 16:06:50 +02:00
Ryan Lahfa d4abba5c1e
Merge pull request #232243 from mklca/issue-232229 
nixos/config/swap: resolve swapfile issue !232229
 2023-05-17 11:38:48 +02:00
K900 86c366b440
nixos/grafana-agent: remove deprecated option (#232375) 
Deprecated in version 0.21: 323c1eb36d/docs/sources/static/upgrade-guide.md?plain=1#L417
 2023-05-17 11:21:27 +02:00
Matthias Berndt 92814241a8 improve stratis initrd support 
it is now possible to supply a stratis pool uuid
for every filesystem, and if that filesystem
is required for boot, the relevant pool will be
started in the initramfs.
 2023-05-16 22:48:36 -04:00
Quentin Smith ad7b199d5d
nixos/networkd: Fix typo in BridgeVLAN options 2023-05-16 19:33:34 -04:00
Lassulus 52bbee772a
Merge pull request #232019 from 4z3/master-wireguard 2023-05-16 22:29:17 +02:00
Thomas Gerbet bc48fa8f5e limesurvey: mark as broken 
limesurvey is not yet compatible with PHP 8.1.
 2023-05-16 19:18:22 +02:00
Thomas Gerbet 314c64c409 grocy: mark as broken 
grocy is not yet compatible with PHP 8.1
 2023-05-16 19:13:00 +02:00
Alexandre Iooss 1ab4e66b79 nixos/nitter: remove replaceInstagram option 2023-05-16 18:54:17 +02:00
Alexandre Iooss d1d81f1866 nixos/nitter: add new upstream options 2023-05-16 18:54:02 +02:00
Mikaela Allan 4101d3b56f
nixos/config/swap: resolve swapfile issue !232229 2023-05-16 10:48:53 -04:00
Sandro efb55108b3
Merge pull request #231435 from drupol/openvscode-server/systemd-service 2023-05-16 14:14:29 +02:00
Sandro bcd46a36a7
Merge pull request #227338 from erictapen/mastodon 2023-05-16 13:52:28 +02:00
Doron Behar 9b0a03fc88
Merge pull request #226088 from Xyz00777/master 
nixos/syncthing: applied rfc42 and added some additional options
 2023-05-16 13:29:36 +03:00
tv 50b845c5a6 nixos/wireguard: allow customizing peer unit name 2023-05-16 10:28:24 +02:00
Maciej Krüger 5bb24e21ee
Merge pull request #231097 from aanderse/lxc/nixos-rebuild-boot 2023-05-16 04:13:01 +02:00
Matthias Berndt 3aa262b644 make nixos-generate-config generate stratis pool UUIDs 2023-05-15 20:48:10 -04:00
Martin Weinelt d38127eb13
Merge pull request #232017 from NickCao/mjolnir 
mjolnir: 1.5.0 -> 1.6.4, build with mkYarnPackage
 2023-05-16 01:37:54 +02:00
Robert Hensing 25f227fc67
Merge pull request #231316 from hercules-ci/nixos-system.checks 
NixOS: add `system.checks`
 2023-05-15 23:16:29 +02:00
Pol Dellaiera 1d37fe1526
nixos/openvscode-server: init 2023-05-15 21:48:08 +02:00
Jonas Heinrich 8a4f016281 nixos/maddy: tls.loader add acme support, add secrets option 2023-05-15 15:00:16 -04:00
K900 d5c292af6b
Merge pull request #197524 from f2k1de/graylog4 
graylog: init at 4.0.8, 4.3.9, 5.0.2
 2023-05-15 19:42:04 +03:00
Sandro 872c89e5a7
Merge pull request #221750 from rhendric/rhendric/nixos/snapper 2023-05-15 17:24:25 +02:00
Nick Cao dde3cb6977
Merge pull request #232007 from Janik-Haag/restic 
restic: add persistent default for timer unit
 2023-05-15 07:37:51 -06:00
Nick Cao 1de301aef3
Merge pull request #231954 from mac-chaffee/acme-ipv6 
nixos/security/acme: Fix listenHTTP bug with IPv6 addresses
 2023-05-15 07:30:57 -06:00
woojiq 2ee66a3000 keyd: run systemd service as root user 2023-05-15 15:28:34 +02:00
Sandro 5bb17df552
Merge pull request #231705 from ambroisie/add-vikunja-port 2023-05-15 15:27:31 +02:00
Janik H 95e1099d2a restic: add persistent default for timer unit 2023-05-15 15:16:58 +02:00
figsoda 783ebc7682
Merge pull request #231707 from figsoda/trip 2023-05-15 09:13:59 -04:00
Xyz00777 32866f8d58 nixos/syncthing: use rfc42 style settings 2023-05-15 14:38:56 +02:00
nikstur 6852dc2359 nixos/rshim: fix shell escape 
Using escapeShellArg does not make sense here because (a) it turned the
list into a string, so the entire service failed and (b) because systemd
does not use the same escaping mechanism as bash.
 2023-05-15 14:06:26 +02:00
Nick Cao c256ecf7a3
nixos/mjolnir: explicitly set --mjolnir-config 2023-05-15 18:40:57 +08:00
Raito Bezarius 3f446bfbd3 nixos/pam: fix ZFS support assertion 
It was always complaining even if you didn't enable PAM ZFS.
 2023-05-15 12:06:04 +02:00
Ryan Lahfa 8c4a3f67b5
Merge pull request #228956 from tensor5/pam-zfs-key 
nixos/pam: enable unlocking ZFS home dataset
 2023-05-15 11:42:30 +02:00
Ryan Lahfa fa06a3b646
Merge pull request #230888 from Misterio77/nextcloud-createlocally-optin 
nixos/nextcloud: default createLocally to false
 2023-05-15 09:28:15 +02:00
Nicola Squartini 87cbaf7ce3 nixos/pam: assert ZFS support for PAM module 2023-05-15 09:22:42 +02:00
Nicola Squartini 5466f76755 nixos/pam: improve documentation of ZFS module 2023-05-15 09:22:39 +02:00
Nicola Squartini 09f4bf7f16 nixos/pam: enable unlocking ZFS home dataset 2023-05-15 09:20:40 +02:00
Maximilian Nitsch 25f3323d60 nixos/etcd: Fix mapping of clientCertAuth option 
The clientCertAuth option must be mapped to the etcd environment
variable ETCD_CLIENT_CERT_AUTH and the peerClientCertAuth option to
ETCD_PEER_CLIENT_CERT_AUTH.

Signed-off-by: Maximilian Nitsch <maximilian.nitsch@d3tn.com>
 2023-05-15 09:11:41 +02:00
Ryan Lahfa feb7fcde4b
Merge pull request #231481 from nikstur/rshim-user-space 
rshim for Nvidia BlueField
 2023-05-15 09:03:50 +02:00
Ryan Lahfa e3bd7faa18
Merge pull request #226830 from Janik-Haag/birdwatcher 
birdwatcher: init at 2.2.4, alice-lg: init at 6.0.0, nixos/birdwatcher: init, nixos/alice-lg: init
 2023-05-15 08:42:10 +02:00
Janik H 40136a1f7f nixos/birdwatcher: init 2023-05-15 02:52:06 +02:00
Janik H 8ed86700a2 nixos/alice-lg: init 2023-05-15 02:52:06 +02:00
Mac Chaffee 33b15fdce0
security/acme: Fix listenHTTP bug with IPv6 addresses 2023-05-14 20:27:52 -04:00
nikstur 5435eaaa4d nixos/rshim: init 2023-05-15 01:24:48 +02:00
Bernardo Meurer d8b94f5b2c
Merge pull request #231881 from lovesegfault/klipper-log 2023-05-14 16:48:48 -04:00
Jonas Chevalier 9c63dd372d
cloud-init module: fix default settings (#231867) 
The `//` operator doesn't do deep merge so it was overriding the first
attrset and not recording the defaults.
 2023-05-14 22:35:06 +02:00
Jörg Thalheim 3007746b3f
Merge pull request #231473 from B4dM4n/eval-config-pass-system 
treewide: pass system argument to eval-config.nix
 2023-05-14 20:13:12 +01:00
Bernardo Meurer 570fff5e92
nixos/klipper: add logFile option 2023-05-14 13:02:08 -04:00
Bernardo Meurer 7a5f684ffd
nixos/klipper: use klippy from $out/bin 2023-05-14 13:02:06 -04:00
Ryan Lahfa 285330f081
Merge pull request #230153 from mklca/swap-encrypt-enhancement 
nixos/config/swap: improve randomEncrytion
 2023-05-14 19:01:56 +02:00
Ryan Lahfa 1ee11b8a31
Merge pull request #231283 from nikstur/filesystems-erofs 
nixos/filesystems: init erofs
 2023-05-14 18:54:37 +02:00
Jörg Thalheim fc8c839fe8
Merge pull request #231841 from Ma27/wikijs-node18 
wiki-js: use nodejs18
 2023-05-14 16:22:56 +01:00
Gabriel Fontes f9f76529cd
nixos/nextcloud: default createLocally to false 2023-05-14 12:09:50 -03:00
Ryan Lahfa 8ef486b60e
Merge pull request #207194 from RaitoBezarius/pixelfed-module 
pixelfed: init at 0.11.5, module, tests
 2023-05-14 17:09:19 +02:00
Sophie Tauchert 8af23590d3 nixos/borgbackup: fix extraCompactArgs 
Fixes the extraCompactArgs introduced with #224072 as the variable
currently isn't added to the script's environment.
 2023-05-14 16:51:24 +02:00
figsoda 3aa6580f46 nixos/trippy: init 2023-05-14 10:05:29 -04:00
Maximilian Bosch 577ffe768c
wiki-js: use nodejs18 
Part of #229910.

Unfortunately this is a little hacky because upstream doesn't intend to
support it for 2.5, but only for 3.0 which isn't out yet, however nodejs-16
will get out of maintenance during the support-span of NixOS 23.05[1].

The only breaking change is that `extract-files` uses a deprecated way
of exposing modules, I went through the list of other breaking
changes in v17 and v18[2][3] and couldn't spot any usage of removed
features, also local testing didn't reveal further issues.

Unfortunately fixing that breakage turned out to be non-trivial.
Currently, `extract-files@9.0.0` is used with the problematic portions
in its `package.json`, however it's only a transitive dependency of
`@graphql-tools/url-loader` & `apollo-upload-client`. Unfortunately, the
versions of that in use require v9 and don't work with a newer version of
`extract-files` with the problem fixed[4]. Also, upgrading the
dependencies in question is not a feasible option because `graphql-tools`
was split up into multiple smaller packages in v8 and also some of the
APIs in use in `wiki.js` were dropped there[5], so this would also be
very time-consuming and non-trivial to fix.

Since this was the only issue, I decided to go down the hacky route and
patch the problem in `package.json` of `extract-files` manually during
our `patchPhase`.

[1] https://github.com/requarks/wiki/discussions/6388
[2] https://nodejs.org/en/blog/release/v17.0.0
[3] https://nodejs.org/en/blog/release/v18.0.0
[4] Upon local testing, this broke with the following error:

        Error [ERR_PACKAGE_PATH_NOT_EXPORTED]: Package subpath './public/extractFiles' is not defined by "exports" in /wiki/node_modules/extract-files/package.json
[5] For instance `SchemaDirectiveVisitor` in
  `server/graph/directives/auth`.
 2023-05-14 14:25:33 +02:00
Jonas Heinrich 9241cee3c4
Merge pull request #224274 from SuperSandro2000/nixos/nextcloud-notify_push 
nixos/nextcloud: add configureRedis option; nixos/nextcloud-notify_push: add bendDomainToLocalhost
 2023-05-14 10:35:57 +02:00
linsui c3a2ce47a1 nixos/neovim: fix runtime.text 2023-05-13 23:41:50 +02:00
rewine 71d6ed698f
nixos/gnupg: default to qt pinentry program in deepin 2023-05-14 05:32:38 +08:00
Vladimír Čunát 1ba92fc952
Merge branch 'master' into staging-next 2023-05-13 19:23:59 +02:00
Bruno BELANYI f3f709af74 nixos/vikunja: add 'port' option 2023-05-13 18:01:36 +01:00
ajs124 831e41f469
Merge pull request #231629 from Izorkin/update-unit 
unit: 1.29.1 -> 1.30.0
 2023-05-13 19:01:33 +02:00
Izorkin baa5550162
unit: 1.29.1 -> 1.30.0 2023-05-13 16:55:47 +03:00