b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
416528 commits 2 branches 0 tags 3.3 GiB
Commit graph

29327 commits

Author SHA1 Message Date
Lucas Savva 49c0fd7d60 nixos/acme: Disable lego renew sleeping 
Lego has a built-in mechanism for sleeping for a random amount
of time before renewing a certificate. In our environment this
is not only unnecessary (as our systemd timer takes care of it)
but also unwanted since it slows down the execution of the
systemd service encompassing it, thus also slowing down the
start up of any services its depending on.

Also added FixedRandomDelay to the timer for more predictability.
 2022-10-06 10:30:24 -04:00
Lucas Savva 657ecbca0e nixos/acme: Make account creds check more robust 
Fixes #190493

Check if an actual key file exists. This does not
completely cover the work accountHash does to ensure
that a new account is registered when account
related options are changed.
 2022-10-06 10:30:24 -04:00
Lucas Savva 39796cad46 nixos/acme: Fix cert renewal with built in webserver 
Fixes #191794

Lego threw a permission denied error binding to port 80.
AmbientCapabilities with CAP_NET_BIND_SERVICE was required.
Also added a test for this.
 2022-10-06 10:30:24 -04:00
Sandro 2fca262fa0
Merge pull request #194271 from andersk/teleport-10 2022-10-06 15:36:47 +02:00
pennae 3826e303c6 nixos/firefox-syncserver: remove extra add_header 
syncstorage-rs sets this header starting with 0.12.3.
 2022-10-06 14:48:53 +02:00
pennae f97c9d60e4 nixos/firefox-syncserver: proxyPass singleNode to 127.0.0.1 
syncstorage-rs does not listen on ::1 unless explicitly configured.
 2022-10-06 14:48:53 +02:00
pennae 8dc30e9e98 nixos/firefox-syncserver: set default for oauth verifier threads 
the 0.12.1 update introduced a static thread pool for verifying oauth
tokens. set a reasonable default for self-hosted setups (10 threads).
 2022-10-06 14:48:53 +02:00
github-actions[bot] 8d6fbd7341
Merge master into staging-next 2022-10-06 12:01:31 +00:00
Maximilian Bosch 15914eba85
nixos/privacyidea: fix manual build 2022-10-06 13:50:31 +02:00
Maximilian Bosch ecaf6aed02
nixos/privacyidea: add proper support for privacyidea-token-janitor 
`privacyidea-token-janitor`[1] is a tool which helps to automate
maintenance of tokens. This is helpful to identify e.g. orphaned tokens,
i.e. tokens of users that were removed or tokens that were unused for a
longer period of time and apply actions to them (e.g. `disable` or
`delete`).

This patch adds two new things:

* A wrapper for `privacyidea-token-janitor` to make sure it's executable
  from CLI. To achieve this, it does a `sudo(8)` into the
  `privacyidea`-user and sets up the environment to make sure the
  configuration file can be found. With that, administrators can
  directly invoke it from the CLI without additional steps.

* An optional service is added which performs automatic cleanups of
  orphaned and/or unassigned tokens. Yes, the tool can do way more
  stuff, but I figured it's reasonable to have an automatic way to clean
  up tokens of users who were removed from the PI instance. Additional
  automation steps should probably be implemented in additional
  services (and are perhaps too custom to add them to this module).

[1] https://privacyidea.readthedocs.io/en/v3.7/workflows_and_tools/tools/index.html
 2022-10-06 11:43:20 +02:00
Jörg Thalheim 988c9130e1
Merge pull request #193767 from winterqt/update-dendrite 
dendrite: 0.9.9 -> 0.10.1
 2022-10-06 09:28:32 +02:00
github-actions[bot] 863df54d13
Merge master into staging-next 2022-10-06 06:05:17 +00:00
oxalica 9fca212c84 nixos/tests/systemd-oomd: fix and follows upstream tests 
The current test triggers the kernel OOM killer and doesn't work well.
 2022-10-06 09:48:13 +08:00
Stanisław Pitucha 4a6979d310
Merge pull request #194603 from phiadaarr/jitsiVideobridge 
jitsi-videobridge: fix link in docs
 2022-10-06 12:19:43 +11:00
06kellyjac becacf259d teleport: 9.1.2 -> 10.3.1 
Dropped the roletester since it doesn't exist anymore

Co-authored-by: Anders Kaseorg <andersk@mit.edu>
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
 2022-10-05 13:52:20 -07:00
github-actions[bot] 939050602c
Merge master into staging-next 2022-10-05 18:07:32 +00:00
José Luis Lafuente 396f4f05b9
nixos/tmate-ssh-server: init module (#192270) 
* nixos/tmate-ssh-server: init module

Co-authored-by: Aaron Andersen <aaron@fosslib.net>
 2022-10-05 17:34:30 +01:00
Philipp Arras 1e430612dc jitsi-videobridge: fix link in docs 2022-10-05 18:11:57 +02:00
github-actions[bot] ebb7cf0268
Merge master into staging-next 2022-10-05 12:01:40 +00:00
Florian Klink c1c406bc87
Merge pull request #191491 from oxalica/fix/systemd-initrd-modprobe 
nixos/systemd-stage-1: include modprobe confg in initrd
 2022-10-05 10:39:58 +02:00
Thiago Kenji Okada d10f9fdccd
Merge pull request #193939 from thiagokokada/bump-retroarch 
retroarch: 1.10.3 -> 1.11.0;  libretro: unstable-2022-04-21 -> unstable-2022-10-01
 2022-10-05 09:00:37 +01:00
oxalica 3c92009868 nixos/tests/systemd-initrd-modprobe: init 2022-10-05 08:37:51 +08:00
Martin Weinelt 253ca4957d Merge remote-tracking branch 'origin/master' into staging-next 2022-10-05 00:44:16 +02:00
Robert Hensing 70ec3b9f54
Merge pull request #193498 from hercules-ci/nixos-doc-disambiguate-test-options 
nixos/doc: disambiguate test option ids
 2022-10-04 21:35:49 +01:00
superherointj 2e19f2fa53 maintainers: remove superherointj 2022-10-04 14:06:48 -03:00
superherointj ef157b4b4c
Merge pull request #193376 from superherointj/package-k3s-1.25.2+k3s1 
k3s: 1.25.0+k3s1 -> 1.25.2+k3s1
 2022-10-04 13:11:41 -03:00
Adam Joseph c46bdcbaf2 nixos/lib/qemu-common.nix: set qemuSerialDevice for isMips64 2022-10-04 07:48:12 +00:00
Jan Tojnar e14d1e1bc9
Merge pull request #192969 from jtojnar/extra-gsettings-strict 
GNOME/Cinnamon/Pantheon: Clean up GSettings overrides and make strict
 2022-10-04 00:59:08 +02:00
Christian Kögler fd323dfe49
Merge pull request #194159 from foo-dogsquared/update-systemd-extraconfig-module-doc 
nixos/systemd: update extraConfig description
 2022-10-03 21:56:25 +02:00
Sandro b70049a463
Merge pull request #183349 from Luflosi/rename-ipfs-to-kubo 2022-10-03 21:34:14 +02:00
David Morgan bd62717fd3
libinput: Add tappingButtonMap option (#189612) 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-03 21:13:43 +02:00
Sandro 1385382014
Merge pull request #191532 from ambroisie/add-tandoor-recipes 2022-10-03 20:25:06 +02:00
Bruno BELANYI 91ba8464f4 nixos/tandoor-recipes: add test 2022-10-03 09:48:54 +02:00
Bruno BELANYI d8b1d34806 nixos/tandoor-recipes: init module 2022-10-03 09:48:54 +02:00
Gabriel Arazas 292aab9822 nixos/systemd: update extraConfig description 2022-10-03 11:17:41 +08:00
github-actions[bot] 0ae3aa5345
Merge master into staging-next 2022-10-02 17:45:43 +00:00
Graham Christensen 25acc1d800
Merge pull request #190014 from fgaz/vengi-tools/0.0.21 
vengi-tools: 0.0.20 -> 0.0.21
 2022-10-02 13:04:45 -04:00
superherointj 3d200bd959 nixos/tests/k3s: fix tests 
* add superherointj as maintainer
 2022-10-02 13:01:47 -03:00
piegames ec5f7d48ab
Merge pull request #194058: Disable checkMeta by default again 2022-10-02 18:00:48 +02:00
Jörg Thalheim ffde4721ab
Merge pull request #194052 from rapenne-s/fail2ban_doc 
nixos/fail2ban: improve module documentation
 2022-10-02 17:09:43 +02:00
Luflosi eefaaf41d6
kubo: rename from ipfs 
Go-IPFS was renamed to Kubo in version 0.14.0, see https://github.com/ipfs/kubo/issues/8959.
 2022-10-02 16:00:22 +02:00
Profpatsch 1600cba863 Disable checkMeta by default again. 
This caused too many downstream projects to break, so we are reverting
this change for now, until further transition fixes are in place.

See discussion in https://github.com/NixOS/nixpkgs/pull/191171

This reverts part of 6762de9a28
 2022-10-02 14:28:40 +02:00
github-actions[bot] fc393d5731
Merge master into staging-next 2022-10-02 12:01:22 +00:00
Solene Rapenne 605a588ea6 nixos/fail2ban: improve module documentation 2022-10-02 12:59:54 +02:00
Christian Kögler 6845ddc94b
Merge pull request #192864 from alyaeanyx/nix-serve-package-option 
nixos/nix-serve: add package option
 2022-10-02 11:39:28 +02:00
github-actions[bot] e879e7d54e
Merge master into staging-next 2022-10-02 00:04:43 +00:00
Sandro f01f3c83d2
Merge pull request #192615 from gador/pgadmin-6.14 2022-10-01 23:53:36 +02:00
figsoda a1d50eecab
Merge pull request #193132 from figsoda/clean-up 
treewide: clean up
 2022-10-01 17:03:11 -04:00
Florian Brandes 2cf3003858 pgadmin4: 6.13 -> 6.14 
include fix for flask-security-too update

Signed-off-by: Florian Brandes <florian.brandes@posteo.de>
 2022-10-01 21:56:03 +02:00
Maximilian Bosch 3df3bbdc50
nixos/nixos-build-vms: fix eval 
Within #193485 (and the previous changes) the internal structure of the
testing driver was changed. Since then, `makeTest` returns the
attributes for the VM test(s) (including `driverInteractive`) inside a
sub-attribute called `test`, so without this change running
`nixos-build-vms` would fail like this:

    error: attribute 'driverInteractive' missing
 2022-10-01 20:34:01 +02:00
Robert Hensing 534e5629af nixos/tests/make-test-python.nix: Restore stand-alone invocation 
It's an ugly solution (like before), but some of us want to

    nix-build nixos/tests/foo.nix

This PR makes that possible once more for tests are wired with `make-test-python.nix`.
 2022-10-01 16:43:42 +02:00
Thiago Kenji Okada 0eadc3bbf2 maintainers: add libretro team, use it in retroarch/libretro 2022-10-01 14:31:39 +01:00
Thiago Kenji Okada bbcaaeb97d retroarch: add nixosTests.retroarch as passthru.tests 2022-10-01 13:27:32 +01:00
github-actions[bot] 25043f0f28
Merge master into staging-next 2022-10-01 12:01:27 +00:00
Kira Bruneau f185f71ed8
Merge pull request #192154 from kira-bruneau/linuxPackages.xpadneo 
linuxPackages.xpadneo: 0.9.4 -> 0.9.5
 2022-10-01 07:39:12 -04:00
Christian Kögler 1c23b486f2
Merge pull request #189275 from wentasah/nullmailer-ownership 
nixos/nullmailer: Always adjust ownership of spool directories
 2022-10-01 12:51:57 +02:00
Christian Kögler a68239097e
Merge pull request #189113 from MatthewCroughan/mc/pin-installer-registry 
pin nixpkgs registry to pkgs.path via nix.settings.registry
 2022-10-01 12:49:28 +02:00
Christian Kögler 95de459778
Merge pull request #191963 from pbsds/code-remote-module 
nixos/code-server: escape shell extraArguments
 2022-10-01 10:15:32 +02:00
Christian Kögler e6ffa3dfc9
Merge pull request #191854 from farnoy/patch-1 
nixos/rust-motd: fix systemd service checks
 2022-10-01 10:09:59 +02:00
Christian Kögler 95ca550fa3
Merge pull request #191902 from ck3d/fix-machinectl-system 
nixos/test: fix system for container in systemd-machinectl
 2022-10-01 10:00:04 +02:00
Christian Kögler d3fc91e579
Merge pull request #191352 from maifel-maifel/mr-networking-deprecation-note 
nixos/networking: add a suggestion to use networkd options
 2022-10-01 09:10:30 +02:00
Winter 7414171dd1 dendrite: 0.9.9 -> 0.10.1 2022-09-30 16:56:57 -04:00
github-actions[bot] e1d2f74dee
Merge master into staging-next 2022-09-30 18:03:29 +00:00
Martin Weinelt 656e267275
Merge pull request #193565 from NixOS/home-assistant 2022-09-30 18:00:37 +02:00
Jonas Heinrich b881869205 nixos/wordpress: Add language support 2022-10-01 00:44:32 +09:00
Martin Weinelt 4978672881
nixos/home-assistant: update bluetooth and serial component list 
And fix the capability logic for bluetooth devices.
 2022-09-30 15:07:17 +02:00
cab e03e61f62e
nixos.fwupd: add remote list option 
Co-authored-by: jtojnar <jtojnar@gmail.com>
 2022-09-30 16:47:16 +04:00
Sandro c1487a18d1
Merge pull request #186990 from fgaz/ladybird/2022-08-14 2022-09-30 14:46:51 +02:00
github-actions[bot] f29cec4450
Merge master into staging-next 2022-09-30 06:22:32 +00:00
Martin Weinelt b76d66b4fd nixos/sachet: replace literalExample with literalExpression 2022-09-29 21:13:50 -04:00
github-actions[bot] 7170a03e58
Merge master into staging-next 2022-09-30 00:07:38 +00:00
Sandro 00b86b69f0
Merge pull request #193009 from SuperSandro2000/nix-daemon-localhost 2022-09-29 23:38:05 +02:00
github-actions[bot] 9d19287993
Merge master into staging-next 2022-09-29 18:03:40 +00:00
Linus Heckemann 3f7fa3fe68
Merge pull request #193404 from evrim/master 
nix-daemon module: fix mandatoryFeatures in nix.buildMachines
 2022-09-29 15:48:05 +02:00
github-actions[bot] 9c14978f84
Merge master into staging-next 2022-09-29 12:01:25 +00:00
Robert Hensing 216c5dc10d nixos/doc: Disambiguate test option ids 
Changing this later on would break external links into the manual.
 2022-09-29 12:41:59 +02:00
Robert Hensing 91879ce160 make-options-doc: Make optionIdPrefix configurable ("opt-") 2022-09-29 12:34:06 +02:00
Robert Hensing b463233ff4 nixos/iso-image: Refactor: apply / unshadow 2022-09-29 12:22:51 +02:00
Robert Hensing f34135a73b nixos/iso-image: Fix eval 2022-09-29 12:19:06 +02:00
K900 f54f12a602
Merge pull request #193485 from hercules-ci/nixos-lib-runTest-return-test 
nixos/testing: Fix release.nix tests evaluation
 2022-09-29 12:54:30 +03:00
Robert Hensing aed1deab05 nixos/testing: Fix release.nix tests evaluation 
Fixes the problem introduced by 12b3066aae
which caused nixos/release.nix to return the wrong attributes, while
intending to only affect nixos/lib's runTest.
This also removes callTest from the test options, because callTest is
only ever invoked by all-tests.nix.
 2022-09-29 10:49:09 +02:00
Ivan Nikolaenko f251840237 lib/systems/default.nix: add efiArch suffixes 
Move already implemented functionality to the upper level so
it could be used in a more generic way.

Signed-off-by: Ivan Nikolaenko <ivan.nikolaenko@unikie.com>
 2022-09-29 08:02:35 +00:00
Vladimír Čunát 8ba120420f
Merge #191339: staging-next 2022-09-15 2022-09-29 09:16:47 +02:00
Franz Pletz 417b476db7
Merge pull request #187817 from intelfx/nixos-containertarballs-fix-pixz 
make-system-tarball: use `pixz -t`
 2022-09-29 03:26:20 +02:00
David Houston 28e90d3709
nixos/virtualisation/linode-image: init (#155426) 2022-09-29 00:25:03 +02:00
Sandro f88b09a712
Merge pull request #189176 from maifel-maifel/mr-wireguard-fwmark-mtu 2022-09-29 00:04:33 +02:00
void 6349a7d15b nix-daemon module: fix mandatoryFeatures in nix.buildMachines 2022-09-29 00:35:17 +03:00
Lassulus af364a3655
Merge pull request #190172 from Stunkymonkey/init-freshrss 2022-09-28 23:11:33 +02:00
Felix Buehler 0b204f0c28 freshrss: init at 1.20.0, tests and module 2022-09-28 22:46:15 +02:00
Robert Scott 3785988a46
Merge pull request #191331 from helsinki-systems/init/varnish72 
varnish72: init at 7.2.0
 2022-09-28 19:59:57 +01:00
github-actions[bot] f18d801779
Merge staging-next into staging 2022-09-28 18:05:53 +00:00
github-actions[bot] d2b7f4ad5f
Merge master into staging-next 2022-09-28 18:05:16 +00:00
Robert Hensing 52392d42c1
Merge pull request #193361 from hercules-ci/nixos-lib-runTest-return-test 
lib.nixos.runTest: Return the test itself
 2022-09-28 17:56:22 +01:00
Lily Foster 07b207c5e9 nodePackages: patch node2nix for npm v7+ and switch to building package set with current nodejs 2022-09-28 12:41:47 -04:00
Robert Hensing 12b3066aae lib.nixos.runTest: Return the test itself 
(NB: the lib in the flake)

Correcting a mistake I made when removing the test matrix code
from https://github.com/NixOS/nixpkgs/pull/191540
 2022-09-28 18:34:36 +02:00
Martin Weinelt 7da8d25d87 Merge remote-tracking branch 'origin/master' into staging-next 2022-09-28 17:15:11 +02:00
digital 0c704db698 nixos/docs: update changelog 2022-09-28 17:14:38 +02:00
digital eb49174f7b nixos/wireguard: add option to set mtu 
Some networks can only transfer packets with a lower than normal maximum
transfer unit size. In these cases, it is necessary to set a MTU that
works for the given upstream network.
 2022-09-28 17:14:38 +02:00
digital 084509af8b nixos/wireguard: add option to set firewall mark 
Wireguard can tag its packets with a firewall mark. This can be used for
firewalls or policy routing. This is very useful in some setups where
all traffic should go through a wireguard interface. The wireguard
packets cannot go through the wireguard interface and must be routed
differently, which can be done via the Firewall Mark.

The nixos option `config.networking.wireguard.interface.<name>.fwMark`
is of type `types.str` and not `types.int` to allow for specifying the
mark as a hexadecimal value.
 2022-09-28 17:14:38 +02:00
David Warde-Farley a81954b818 Fix docs. 2022-09-28 10:48:10 -04:00