tobias/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-11-15 12:15:56 +01:00
Code Issues Packages Projects Releases Wiki Activity
568218 commits 215 branches 129 tags 15 GiB
Commit graph

3614 commits

Author SHA1 Message Date
h7x4 79d3d59f58
treewide: replace mkPackageOptionMD with mkPackageOption 2023-11-30 19:03:14 +01:00
Weijia Wang feeae486de
Merge pull request #261702 from h7x4/replace-mkoption-with-mkpackageoption 
treewide: use `mkPackageOption`
 2023-11-30 02:49:30 +01:00
Aldwin Vlasblom 8efe6a71cb
nixos/vdirsyncer: fix config.statusPath option 
The `services.vdirsyncer.jobs.<name>.config.statusPath` option was
making the appropriate changes to the systemd service options, but not
to the vdirsyncer config file.
 2023-11-28 18:54:49 +01:00
Maciej Krüger 7cc312f18b
Merge pull request #265730 from nbraud/nixos/sudo-rs/x2goserver 
nixos/x2goserver: Support sudo-rs
 2023-11-28 01:37:05 +01:00
h7x4 0a37316d6c
treewide: use mkPackageOption 
This commit replaces a lot of usages of `mkOption` with the package
type, to be `mkPackageOption`, in order to reduce the amount of code.
 2023-11-27 01:28:36 +01:00
Ivan Mincik df254b2dd2 nixos/tmate-ssh-server: fix tmate-client-config script 2023-11-26 09:34:51 +01:00
Peder Bergebakken Sundt 2ca79e7f9d nixos/ejabberd: ensure erlang cookie is made 
Apply the same fix as found in `couchdb` and `rabbitmq`.
 2023-11-25 15:41:42 +01:00
Maciej Krüger 7b1e146a49
Merge pull request #266477 from duament/nixos-nat-nftables 
nixos/nat: fix nat-nftables
 2023-11-25 12:58:48 +01:00
Vincent Ambo b2f67d3f48 nixos/nix-serve: fix module compatibility with unflaked Nix 
The option `extra-allowed-users` was introduced in Nix 2.4, and fails
config validation on Nix 2.3.
 2023-11-23 00:03:31 +03:00
Atemu cfe0155154
Merge pull request #268324 from Janik-Haag/nixos-firewall-tool 
nixos/firewall: install nixos-firewall-tool for iptables by default
 2023-11-20 23:23:24 +01:00
Jonas Chevalier c57a434386
maintainers: remove the numtide team (#268684) 
It doesn't really make sense for us as team members are focused on
different things. At the end of the day it's the individuals that do the
work.
 2023-11-20 22:27:26 +01:00
Nick Cao 90ef10b571
Merge pull request #253918 from tie/centrifugo 
centrifugo: init at 5.1.1
 2023-11-20 08:59:54 -05:00
Ivan Trubach 3be1aab86f centrifugo: init at 5.1.1 2023-11-20 10:18:21 +03:00
Artturi 0bd183e065
Merge pull request #268110 from tyxieblub/squid-service 2023-11-19 23:32:10 +02:00
Ryan Lahfa ff3b480354
Merge pull request #252117 from nalves599/252116-pixiecore-firewall 2023-11-19 16:16:54 +01:00
Adrian Pistol b30601bba2 nixos/chrony: Add missing rtcsync assertion. 
Due to a lot of rebasing, I dropped my added assertion in #259405. This is important.
 2023-11-19 09:08:26 -06:00
Artturi 8896579a83
Merge pull request #264521 from stephen-huan/mullvad-vpn-resolvconf 2023-11-18 21:47:51 +02:00
Janik H. fa9cdc83ab
nixos/firewall: install nixos-firewall-tool for iptables by default 2023-11-18 17:08:30 +01:00
William McKinnon 869fb56797 nixos/syncthing: respect the dataDir option 
The previous -home argument worked as such:
"Set common configuration and data directory. The default configuration directory is $HOME/.config/syncthing (Unix-like), $HOME/Library/Application Support/Syncthing (Mac) and %LOCALAPPDATA%\Syncthing (Windows)"

This resulted in syncthing not respecting different home and data dirs
declared in its config. The default behaviour will remain the same, as
we set the datadir default value to homeDir + .config/syncthing.
 2023-11-17 22:58:46 +01:00
joris 18f3c1fb55 services/squid: explicit usage of coreutils' kill on ExecReload 2023-11-17 13:55:21 +01:00
Vladimír Čunát 0fe5300699
Merge branch 'master' into staging-next 2023-11-16 09:49:24 +01:00
Lin Jian bf8a6ad72c
Merge pull request #265733 from nbdd0121/unbound 
nixos/unbound: fix wrong syscall filter and tighten sandbox
 2023-11-16 14:38:46 +08:00
Adrian Pistol 7a1d45811e nixos/chrony: Let Chrony control/track RTC drift 2023-11-15 15:09:22 -06:00
Weijia Wang 1a85914512
Merge pull request #266528 from lucasbergman/unifi-jvmoptions 
nixos/unifi: Add the ability to specify extra JVM options
 2023-11-15 17:53:25 +01:00
Martin Weinelt 3c336a1647
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/libraries/gdcm/default.nix
 2023-11-14 13:16:34 +01:00
Jörg Thalheim 54fd866569 nixos/harmonia: set extra-allowed-users 
This fixes the case where users enable harmonia but also have allowed-users set.
Having extra-allowed-users is a no-op when nix.settings.allowed-users is set to "*" (the default)
 2023-11-14 10:37:39 +01:00
Weijia Wang 74d102ce50 Merge branch 'master' into staging-next 2023-11-12 19:45:20 +01:00
Jörg Thalheim 44cf4801c0 nixos/nix-serve: also set extra-allowed-users 
This fixes the case where users enable nix-serve but also have allowed-users set.
Having extra-allowed-users is a no-op when nix.settings.allowed-users is set to "*" (the default)
 2023-11-12 14:09:31 +01:00
Lucas Bergman 07828dc05b nixos/unifi: Add extraJvmOptions option 
This can be useful for adding extra logging, tweaking garbage collector
parameters, and for using JMX to monitor the JVM.
 2023-11-12 00:38:10 +00:00
Lucas Bergman 50ff8ff3f9 nixos/unifi: Switch command line args to a list 
There's no functionality change here, but this makes it a bit more
convenient to add more args.
 2023-11-12 00:32:50 +00:00
Lucas Bergman 2bc02c0383 nixos/unifi: Clean up formatting 
This removes "with lib", which advances #208242 a bit, and cleans up a few
formatting nits found by nixfmt.
 2023-11-12 00:28:40 +00:00
github-actions[bot] 9776723357
Merge master into staging-next 2023-11-11 18:00:58 +00:00
K900 e792d7fec0
Merge pull request #264442 from anthonyroussel/update-url-redirects 
treewide: fix redirected and broken URLs
 2023-11-11 18:08:59 +03:00
github-actions[bot] 652204165d
Merge master into staging-next 2023-11-11 12:00:58 +00:00
Anthony Roussel e30f48be94
treewide: fix redirected and broken URLs 
Using the script in maintainers/scripts/update-redirected-urls.sh
 2023-11-11 10:49:01 +01:00
Félix Baylac Jacqué dfa45288af maintainers: ninjatrappeur -> picnoir 
I changed my nickname from Ninjatrappeur to Picnoir. My github id is
stable, it shouldn't break too much stuff.

I took advantage of this handle change to remove myself from the
hostapd maintainers: I don't use NixOS as a router anymore.
 2023-11-11 08:31:16 +01:00
github-actions[bot] 912311b7fd
Merge master into staging-next 2023-11-11 00:02:21 +00:00
tu-maurice 40c06a143f prayer: remove 2023-11-10 20:44:28 -03:00
Rvfg 92ee71866f
nixos/nat: fix nat-nftables 2023-11-09 23:06:01 +08:00
github-actions[bot] 00a0662a3c
Merge master into staging-next 2023-11-09 00:02:14 +00:00
Felix Bühler 7aaa664cc2
Merge pull request #263054 from uninsane/pr-trust-dns-0.24.0 
trust-dns: 0.23.0 -> 0.24.0
 2023-11-08 19:35:23 +01:00
Adam Joseph ba2ed469c2
Merge branch 'master' into staging-next 2023-11-08 06:15:46 +00:00
Rodrigo Gryzinski 23a5f1f80d nixos/wireguard: add wireguard to default kernel modules 
Previously the module was only dynamically loaded on service startup,
this is needed in case security.lockKernelModules is enabled.
 2023-11-07 22:02:51 -03:00
Gary Guo bc422e2f61 nixos/unbound: tighten sandboxing for unbound 2023-11-07 02:30:21 +00:00
Gary Guo de6c5343b6 nixos/unbound: remove setuid/gid capability 
If username is set, then unbound will try to become that user using
`setusercontext`. But this is pointless since we are already instructing
systemd to launch unbound with that user.

So force username to be empty, which disables this behaviour in unbound.
This allows us to remove the capability granted, and also tighten the
syscall filter.
 2023-11-06 20:22:27 +00:00
Colin 83bf3ed892 trust-dns: 0.23.0 -> 0.24.0 
upstream is in the process of renaming to `hickory-dns`.
a consequence of this is that the main binary has been renamed from
`trust-dns` to `hickory-dns` and the repository has been moved (though
for the time being the old repo is still usable on account that it
redirects to the new one).
see: <https://bluejekyll.github.io/blog/posts/announcing-hickory-dns/>
 2023-11-06 15:38:23 +00:00
Weijia Wang 32da89a1a1 Merge branch 'master' into staging-next 2023-11-06 14:33:18 +01:00
Michele Guerini Rocco 8beca974f9
Merge pull request #263138 from tomfitzhenry/hostapd-optional-managementframeprotection 
nixos/hostapd: remove managementFrameProtection in favour of clearer default
 2023-11-06 11:17:07 +01:00
nicoo 6f28ce9856 nixos/x2goserver: Work with both Miller's sudo and sudo-rs 2023-11-05 20:59:15 +00:00
Gary Guo c70614c0a4 nixos/unbound: fix wrong syscall filter 
This changes the syscall filter to match that of upstream. Note that

    SystemCallFilter=~foo bar

is completely different from

    SystemCallFilter=~foo
    SystemCallFilter=bar

The former one means that foo and bar are forbidden, and the latter
one means foo is forbidden and bar is granted!
 2023-11-05 20:32:51 +00:00
github-actions[bot] bb38778356
Merge master into staging-next 2023-11-05 18:00:55 +00:00
Aaron Andersen a707831d98
Merge pull request #256738 from toastal/prosody-libevent-deprecated 
prosody: remove deprecated libevent
 2023-11-05 08:36:25 -05:00
Stephen Huan 09cc3285cc
nixos/mullvad-vpn: use resolvconf if enabled 2023-11-01 16:47:11 -04:00
h7x4 5672d3d8b8
nixos/quicktun: clean up module 2023-11-01 20:10:14 +01:00
github-actions[bot] 81270bbdcf
Merge master into staging-next 2023-10-31 18:01:02 +00:00
K900 46bc9e79a9
Merge pull request #259765 from 70m6/bugfix/bitcoind-enable 
bugfix/bitcoind-enable
 2023-10-31 17:35:10 +03:00
Tom Barrett a4b31637b5 bitcoind: only use enabled services 2023-10-31 15:29:17 +01:00
github-actions[bot] 931938d1df
Merge master into staging-next 2023-10-30 18:01:02 +00:00
Will Fancher cca22054c0 systemd-stage-1: Add assertions for unsupported options. 2023-10-30 12:15:58 +01:00
Vladimír Čunát 5c89ba8ab4
Merge branch 'master' into staging-next 2023-10-30 06:12:04 +01:00
Michele Guerini Rocco 800965ce8c
Merge pull request #245855 from rnhmjoj/pr-sslh 
nixos/sslh: update and refactor for RFC42
 2023-10-29 23:19:38 +01:00
github-actions[bot] 64070c2fda
Merge master into staging-next 2023-10-29 18:01:23 +00:00
Rémy Grünblatt c9e3cc43c7
nixos: fix iproute2 invocations (#263976) 
When using iproute2's ip binary, you can omit the dev parameter, e.g. ip link set up eth0 instead of ip link set up dev eth0.

This breaks if for some reason your device is named e.g. he, hel, … because it is interpreted as ip link set up help.

I just encountered this bug using networking.bridges trying to create an interface named he.

I used a grep on nixpkgs to try to find iproute2 invocations using variables without the dev keyword, and found a few, and fixed them by providing the dev keyword.

I merely fixed what I found, but the use of abbreviated commands makes it a bit hard to be sure everything has been found (e.g. ip l set … up instead of ip link set … up).
 2023-10-29 18:27:16 +01:00
rnhmjoj 7ecac99da7
sslh: 1.22c -> 2.0.0 2023-10-29 18:13:37 +01:00
rnhmjoj 3728338d40
nixos/sslh: refactor for RFC42 2023-10-29 18:13:37 +01:00
Aaron Andersen 3b848391b6
Merge pull request #227442 from christoph-heiss/openssh/allowusers 
openssh: add {Allow,Deny}{Users,Groups} settings
 2023-10-29 08:20:22 -04:00
github-actions[bot] 954eb09381
Merge master into staging-next 2023-10-29 00:02:24 +00:00
Weijia Wang eaf8053ad5
Merge pull request #264036 from wegank/unifi-hotfix 
nixos/unifi: fix use of optionalString
 2023-10-29 00:33:19 +02:00
Weijia Wang 88e82879f4 nixos/unifi: fix use of optionalString 2023-10-28 23:01:44 +02:00
Christoph Heiss cc8ba21629
nixos/sshd: add comment explaining different list option types 
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
 2023-10-28 20:13:26 +02:00
github-actions[bot] 519b7ea0c3
Merge master into staging-next 2023-10-28 12:01:19 +00:00
Linus Heckemann 8670794565
Merge pull request #263203 from nikstur/replace-activation 
Replace simple activationScripts
 2023-10-28 10:17:15 +02:00
github-actions[bot] 4791949f6a
Merge master into staging-next 2023-10-28 00:02:23 +00:00
tomf d18f272a39
Merge pull request #262408 from evandeaubl/master 
nixos/tailscale: add openFirewall option
 2023-10-28 05:19:41 +11:00
github-actions[bot] 96132a216a
Merge master into staging-next 2023-10-26 18:01:02 +00:00
Vladimír Čunát d811555465
Merge branch 'staging' into staging-next 2023-10-26 10:36:50 +02:00
nikstur b16365b393 nixos/iscsi: replace activationScript 
Move the functionality into preStart of the systemd service.
 2023-10-26 01:51:07 +02:00
nikstur 6987ff3a4f nixos/spiped: replace activationScript via tmpfiles 2023-10-26 01:44:21 +02:00
nikstur 6c800013bf nixos/strongswan-swanctl: replace activationScripts via tmpfiles 2023-10-26 01:44:20 +02:00
Patrick Jackson 4a938cc665 treewide: rename handle/GH account patricksjackson to arcuru 2023-10-25 15:42:48 -07:00
chayleaf 413011ddf4 kea: use separate runtime directories for each service 
Kea may clean the runtime directory when starting (or maybe systemd does
it). I ran into this issue when restarting Kea after changing its
configuration, so I think the fact it normally doesn't clean it is a
race condition (it's cleaned on service start, and normally all Kea
services start at roughly the same time).
 2023-10-26 02:51:43 +07:00
digital a6253e6b12
nixos/syncthing: support syncthing gui and api over unix sockets (#247343) 2023-10-25 09:18:42 +02:00
Janik e46b352ac4
Merge pull request #231065 from yu-re-ka/fnm-advanced-module 
nixos/fastnetmon-advanced: init
 2023-10-24 21:43:26 +02:00
Tom Fitzhenry 9e7c877de7 nixos/hostapd: remove managementFrameProtection 2023-10-24 23:54:44 +11:00
Tom Fitzhenry 9f7335d449 nixos/hostapd: document that legacy example should have optional MFP 
Thinkpad x230, for example, is unable to connect to the legacy example
if managementFrameProtection is required.
 2023-10-24 23:46:57 +11:00
Robin Gloster e5d552f5b9
treewide: update globin's maintainership 2023-10-24 13:09:45 +02:00
Yureka bf5f01ee52 nixos/fastnetmon-advanced: init 2023-10-23 22:51:19 +02:00
Lorenz Leutgeb cc6c2d32f2
rosenpass: refactor, add module and test (#254813) 2023-10-23 19:29:30 +02:00
github-actions[bot] f4afba2014
Merge staging-next into staging 2023-10-21 18:01:53 +00:00
Ryan Lahfa 0b0440e028
Merge pull request #254647 from Janik-Haag/networkManagerEnsureProfiles 
nixos/networkmanager: add declarative profiles
 2023-10-21 15:06:41 +01:00
github-actions[bot] 613d60266a
Merge staging-next into staging 2023-10-21 00:02:49 +00:00
Evan Deaubl 9407ed628d nixos/tailscale: add openFirewall option 2023-10-20 15:57:40 -07:00
Janik H a316aa58d9
nixos/networkmanager: add declarative profiles 2023-10-21 00:20:36 +02:00
Bjørn Forsman 5c78e5b4aa nixos/ddclient: simplify with lib.getExe 2023-10-20 23:49:18 +02:00
Bjørn Forsman 8a8ec36615 Revert "ddclient: remove package and module on upstream maintainer request" 
This reverts commit d35df28f65.

Upstream ddclient has new maintainers and made a new release (update in
next commit(s)).
 2023-10-20 23:49:18 +02:00
github-actions[bot] 02a21c89b8
Merge staging-next into staging 2023-10-20 18:01:21 +00:00
Bjørn Forsman 142074c2a8 nixos: fix bad mkEnableOption descriptions 
Fix descriptions that don't account for (1) the "Whether to enable"
prefix or (2) the automatically added trailing dot.
 2023-10-20 16:22:40 +01:00
github-actions[bot] 024144542b
Merge staging-next into staging 2023-10-19 18:01:22 +00:00
Thiago Kenji Okada 383389d086
Merge pull request #254582 from oluceps/dae-fix-overr 
nixos/dae: fix override existed config issue
 2023-10-19 18:34:30 +01:00
Christoph Heiss a077b7fadb
openssh: add {Allow,Deny}{Users,Groups} settings 
`settingsFormat` unfortunaly needed a bit of a rework, see also
discussion in #227442.

Signed-off-by: Christoph Heiss <christoph@c8h4.io>
 2023-10-19 18:30:51 +02:00