8f5d24c1b2
Add a module for pihole-ftl, which allows declaratively defining the pihole.toml config file. Also provide options for adlists to use, which can be added through the pihole script (packaged as "pihole"). Other state such as clients and groups require complex database operations, which is normally performed by the pihole webapp (packaged as "pihole-web"). Extend the dnsmasq module to avoid duplication, since pihole-ftl is a soft-fork of dnsmasq which maintains compatibility. Provide the pihole script in `environment.systemPackages` so pihole-ftl can be easily administrated.
3.4 KiB
Release 25.11 ("Xantusia", 2025.11/??)
Highlights
- Secure boot support can now be enabled for the Limine bootloader through {option}
boot.loader.limine.secureBoot.enable. Bootloader install script signs the bootloader, then kernels are hashed during system rebuild and written to a config. This allows Limine to boot only the kernels installed through NixOS system.
New Modules
-
gtklock, a GTK-based lockscreen for Wayland. Available as programs.gtklock.
-
Chrysalis, a graphical configurator for Kaleidoscope-powered keyboards. Available as programs.chrysalis.
-
Pi-hole, a DNS sinkhole for advertisements based on Dnsmasq. Available as services.pihole-ftl, and services.pihole-web for the web GUI and API.
-
FileBrowser, a web application for managing and sharing files. Available as services.filebrowser.
-
LACT, a GPU monitoring and configuration tool, can now be enabled through services.lact.enable. Note that for LACT to work properly on AMD GPU systems, you need to enable hardware.amdgpu.overdrive.enable.
-
SuiteNumérique Docs, a collaborative note taking, wiki and documentation web platform and alternative to Notion or Outline. Available as services.lasuite-docs.
Backward Incompatibilities
-
The
services.polipomodule has been removed aspolipois unmaintained and archived upstream. -
The Pocket ID module ([
services.pocket-id][#opt-services.pocket-id.enable]) and package (pocket-id) has been updated to 1.0.0. Some environment variables have been changed or removed, see the migration guide. -
renovatewas updated to v40. See the upstream release notes for breaking changes.
Other Notable Changes
-
services.clamsmtpis unmaintained and was removed from Nixpkgs. -
amdgpukernel driver overdrive mode can now be enabled by setting hardware.amdgpu.overdrive.enable and customized through hardware.amdgpu.overdrive.ppfeaturemask. This allows for fine-grained control over the GPU's performance and maybe required by overclocking softwares like Corectrl and Lact. These new options replace old options such as {option}programs.corectrl.gpuOverclock.enableand {option}programs.tuxclocker.enableAMD.