b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
401537 commits 2 branches 0 tags 3.3 GiB
Commit graph

28617 commits

Author SHA1 Message Date
Martin Weinelt b2367dbdd1
nixos/home-assistant: update hardening for bluetooth components 
A larger number of bluetooth components were introduced in 2022.8.0. To
make them work we need to add a hardening exception, so they can
discover and use bluetooth devices.
 2022-08-04 12:23:21 +02:00
Sandro 3125eef570
Merge pull request #182713 from SuperSandro2000/hydra-runuser-2 2022-08-04 12:08:44 +02:00
Sandro 77cbd6d51d
Merge pull request #184619 from SuperSandro2000/gitit 2022-08-04 11:53:26 +02:00
Sandro Jäckel decaf3e0ef
nixos/dex: replace arbitrary secrets via environmentFile 2022-08-04 11:50:12 +02:00
Sandro Jäckel ffbccb20bd
nixos/gitea: convert simple settings to freeform settings 2022-08-04 11:44:02 +02:00
Sandro Jäckel 236b053413
nixos/gitea: fix statix warnings 2022-08-04 11:42:39 +02:00
Dan Callaghan da26caad10
nixos/luksroot: allow discards with fido2luks 2022-08-04 19:32:14 +10:00
Nick Cao ce39bee9dd
nixos/stage-1-systemd: fix initrd-fstab generation for bind mounts 2022-08-04 10:26:37 +08:00
github-actions[bot] 9b65c7a2b7
Merge master into haskell-updates 2022-08-04 00:13:57 +00:00
Sandro 668da4fc8f
Merge pull request #185009 from fpletz/pkgs/maintainership-202208 2022-08-04 01:56:13 +02:00
Kira Bruneau bda6036d2e nixos/xpadneo: don't disable ertm on kernel 5.12 or later 
The [v0.9.2 changelog](https://github.com/atar-axis/xpadneo/releases/tag/v0.9.2)
mentions that ERTM should no longer be unconditionally disabled on
kernels later than 5.12.
 2022-08-03 18:20:59 -04:00
Stig Palmquist 4c2764c69c
nixos/switch-to-configuration: replace Net::DBus with busctl 
Call dbus by using `$cur_systemd/busctl --json=...` and core modules
JSON::PP and IPC::Cmd to slim down dependencies for baseSystem.

perlPackages.NetDBus pulls in quite a few other dependencies, like
XML::Twig, LWP, and HTTP::Daemon. These are not really neccecary for
s-t-c, and some of them have caused issues particularly with cross
builds after updates to perlPackages.
 2022-08-04 00:08:26 +02:00
Jonas Heinrich 41e41f1d07
Merge pull request #184027 from Shawn8901/installNoisetorchWithProgram 
noisetorch: Add noisetorch to systemPackages with programs.noisetorch enable
 2022-08-03 23:06:07 +02:00
pennae 61e93df189 nixos/*: automatically convert option docs to MD 
once again using nix-doc-munge (69d080323a)
 2022-08-03 22:46:41 +02:00
pennae 645cfa59ac nixos/make-option-docs: add xref support to markdown conversion 2022-08-03 22:01:14 +02:00
pennae 7a091b2686 nixos/make-options-doc: reuse markdown instance in mergeJSON 
this doesn't construct a new (expensive) parser for every option, making
rendering about 30x faster.
 2022-08-03 22:00:24 +02:00
pennae 3aebb4a2be nixos/*: normalize link format 
make (almost) all links appear on only a single line, with no
unnecessary whitespace, using double quotes for attributes. this lets us
automatically convert them to markdown easily.

the few remaining links are extremely long link in a gnome module, we'll
come back to those at a later date.
 2022-08-03 21:57:46 +02:00
pennae 9c8531c8a5 nixos/*: replace <replaceable>s with «thing» 
we can't embed syntactic annotations of this kind in markdown code
blocks without yet another extension. replaceable is rare enough to make
this not much worth it, so we'll go with «thing» instead. the module
system already uses this format for its placeholder names in attrsOf
paths.
 2022-08-03 21:08:58 +02:00
pennae 16102dce2f nixos/*: replace <code> in option docs with <literal> 
markdown can't represent the difference without another extension and
both the html manual and the manpage render them the same, so keeping the
distinction is not very useful on its own. with the distinction removed
we can automatically convert many options that use <code> tags to markdown.

the manpage remains unchanged, html manual does not render
differently (but class names on code tags do change from "code" to "literal").
 2022-08-03 21:03:23 +02:00
pennae 694d5b19d3 nixos/*: replace </para><para> with double linebreaks 
our xslt already replaces double line breaks with a paragraph close and
reopen. not using explicit para tags lets nix-doc-munge convert more
descriptions losslessly.

only whitespace changes to generated documents, except for two
strongswan options gaining paragraph two breaks they arguably should've
had anyway.
 2022-08-03 20:39:21 +02:00
K900 eabbad8af1
Merge pull request #185036 from K900/goblinization 
make-initrd-ng: parse ELFs ourselves instead of shelling out to patchelf and friends
 2022-08-03 19:57:55 +03:00
Bobby Rong 041b684369
rl-2211: mention cinnamon update 2022-08-03 20:47:07 +08:00
Bobby Rong be91726358
treewide: rename cinnamon.xapps to cinnamon.xapp 
https://github.com/linuxmint/xapps redirects to https://github.com/linuxmint/xapp, and the meson project name is xapp.
 2022-08-03 20:47:04 +08:00
Bobby Rong 20d269ea81
nixos/cinnamon: switch to blueman 
Part of Linux Mint 21 changes.
https://www.linuxmint.com/rel_vanessa_cinnamon_whatsnew.php
 2022-08-03 20:46:35 +08:00
Franz Pletz c092a502df
treewide: remove myself as maintainer from some pkgs 
Only packages I'm not able to maintain anymore as of today. Mostly
because I'm haven't been using them in a while.
 2022-08-03 14:17:51 +02:00
Franz Pletz 72d98311e9
virtlyst: remove 2022-08-03 13:53:13 +02:00
Stig b53684ba2b
Merge pull request #176640 from stigtsp/package/convos-7.02 
convos: 6.42 -> 7.02
 2022-08-03 11:45:27 +02:00
Michele Guerini Rocco f909bfde79
Merge pull request #184248 from SuperSandro2000/SuperSandro2000-patch-1 
nixos/ncdns: replace shortened link
 2022-08-03 11:23:04 +02:00
Valentin Gagarin 246cce5dc0
Merge pull request #183761 from leungbk/manual-typos 
manual: fix typos
 2022-08-03 11:08:00 +02:00
Janne Heß bc7ff29bdf
Merge pull request #184822 from snpschaaf/networkd-link-add-promiscious 
add Promiscuous as valid value for linkConfig
 2022-08-03 11:05:32 +02:00
Philippe Schaaf d5e7f6a613 add Promiscuous as valid value for linkConfig 
configuring a network via
`systemd.network.networks.<name>.linkConfig`
does not allow to set the attr Promiscuous = "true";

This referes to:
https://www.freedesktop.org/software/systemd/man/systemd.network.html#Promiscuous=

Signed-off-by: Philippe Schaaf <philippe.schaaf@secunet.com>
 2022-08-03 09:05:42 +02:00
Vladimír Čunát a0ebaa7431
Merge #183748: staging-next 2022-07-29 2022-08-03 09:04:16 +02:00
Florian Klink dfda3c3e04
Merge pull request #182577 from squalus/coredump 
nixos: systemd-coredump: improve disabled state
 2022-08-03 13:32:11 +07:00
github-actions[bot] 1d51c8b324
Merge master into haskell-updates 2022-08-03 00:15:49 +00:00
github-actions[bot] 537fbd1326
Merge master into staging-next 2022-08-03 00:02:25 +00:00
Sergei Trofimovich 1e8102cd58 nixos/openldap: fix option description markdown 
Otherwise manual build fails as:

    $ nix build -f nixos/release.nix manual.x86_64-linux
    ...
     > NotImplementedError: ('md node not supported yet', 'services.openldap.declarativeContents', 'inline_html', ('<code>',))
     For full logs, run 'nix log /nix/store/pfa7bg3pflp0c31ma0rc2ahwqabs88dd-base-json-md-converted.drv'.
 2022-08-02 23:11:24 +01:00
Michael Auchter 5c0e18a6bb nixos/soju: add defaults and assertions for TLS 
Enabling soju without providing a value for tlsCertificate currently
results in:

  error: The option `services.soju.tlsCertificate' is used but not
  defined.

Since tlsCertificate is intended to be optional, set default to null.

Additionally, add assertions to ensure that both tlsCertificate and
tlsCertificateKey are either set or unset.
 2022-08-02 17:36:04 +00:00
github-actions[bot] 1093a01c99
Merge master into staging-next 2022-08-02 12:01:37 +00:00
FliegendeWurst 48f4befd44
trilium: 0.51.2 -> 0.53.2 + update script (#177484) 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-08-02 14:01:17 +02:00
Linus Heckemann 6fc909a1cc makeInitrdNG: make stripping fully optional 
Now the tool will only strip binaries if a strip executable is passed
via the STRIP environment variable. This is exposed via the strip
option for makeInitrdNG and the NixOS option boot.initrd.systemd.strip.
 2022-08-02 10:19:48 +03:00
github-actions[bot] 0f0010fda3
Merge master into staging-next 2022-08-02 06:02:34 +00:00
pennae 6b13dd0e9e
Merge pull request #183491 from pennae/automatic-md-conversions 
treewide: automatically md-convert option descriptions
 2022-08-02 02:15:30 +02:00
github-actions[bot] df6d3919b7
Merge master into haskell-updates 2022-08-02 00:14:59 +00:00
github-actions[bot] ad090ff867
Merge master into staging-next 2022-08-02 00:02:24 +00:00
Sandro Jäckel f7522d6b56
nixos/gitit: use programs from path 2022-08-02 00:55:48 +02:00
Winter 468c10d8e0
Merge pull request #183039 from jansol/master 2022-08-01 18:17:39 -04:00
Jan Solanti 34a04025cf xow: remove 
Upstream project has been deprecated in favour of the 'xone' kernel
mode driver.
 2022-08-02 00:50:32 +03:00
Bernardo Meurer 6f435e54b5
Merge pull request #165151 from vtuan10/klipper-firmware 
nixos/klipper: Add Klipper firmware options
 2022-08-01 14:07:26 -07:00
github-actions[bot] e8ce2f4a26
Merge master into staging-next 2022-08-01 18:01:20 +00:00
squalus 257db1dd4a nixos: systemd-coredump: improve disabled state 
The systemd-coredump module required systemd to be built with
withCoredump=true, even if the module was disabled.

- allow systemd to be missing systemd-coredump if the module is disabled
- switch to mkDefault for the sysctl config to allow user overrides when
  the module is disabled
- add nixos tests for both the enabled and disabled cases
 2022-08-01 09:52:56 -07:00
Franz Pletz 999d90d2e7
Merge pull request #184553 from danc86/krb-no-pam 2022-08-01 16:30:07 +02:00
Thomas Gerbet 595932cd2b cosign: 1.9.0 -> 1.10.0 
`cosigned` is no more part of the cosign repository and it has been moved
into a `sigstore/policy-controller` repository. A new package should probably
be created to replace it.

https://github.com/sigstore/cosign/releases/tag/v1.10.0
 2022-08-01 16:26:26 +02:00
sternenseemann ba819ddadf Merge remote-tracking branch 'origin/master' into haskell-updates 2022-08-01 15:26:29 +02:00
Silvan Mosberger fe2c9ae814
Merge pull request #177012 from hercules-ci/nixos-modular-system 
`flake.lib.nixosSystem`: Allow `nixpkgs.system` to be set modularly; improve error message
 2022-08-01 15:05:16 +02:00
Dan Callaghan 43aab2f50b
nixos/pam: add an option to control Kerberos PAM modules 
Instead of enabling the PAM modules based on config.krb5.enable,
introduce a new option to control the PAM modules specifically.

Users may want to turn on config.krb5.enable, to get a working Kerberos
client config with tools like kinit, while letting pam_sss or something
else handle Kerberos password lookups.
 2022-08-01 21:28:05 +10:00
Bobby Rong 231631eb93
lightdm-gtk-greeter: rename from lightdm_gtk_greeter 
To match the current naming convention.
 2022-08-01 16:36:52 +08:00
github-actions[bot] 0a7aec34aa
Merge master into haskell-updates 2022-08-01 00:16:00 +00:00
github-actions[bot] 83256fd7ea
Merge master into staging-next 2022-08-01 00:02:41 +00:00
superherointj 5857574d45
Merge pull request #183307 from Djabx/autoUpgrabe-boot 
system.autoUpgrade: add boot option.
 2022-07-31 19:12:59 -03:00
markuskowa 8cd811ca08
Merge pull request #184254 from ck3d/fix-test-machinectl 
nixos/tests/systemd-machinectl: Fix resolved and UID shift check
 2022-07-31 21:18:53 +02:00
Sandro be194e390f
nixos/ncdns: replace shortened link 2022-07-31 17:13:03 +02:00
github-actions[bot] bb10509584
Merge master into staging-next 2022-07-31 12:02:29 +00:00
Guillaume Girol 479522bd60
Merge pull request #178873 from greizgh/update-seafile 
Fix broken seafile
 2022-07-31 11:23:09 +00:00
github-actions[bot] eb9760b8f7
Merge master into haskell-updates 2022-07-31 00:15:01 +00:00
github-actions[bot] 95abc5680d
Merge master into staging-next 2022-07-31 00:03:10 +00:00
Mario Rodas a255355f46
Merge pull request #182520 from danc86/sssd-kcm 
nixos/sssd: add an option to enable KCM support
 2022-07-30 18:52:05 -05:00
Christian Kögler 68973d60a2 nixos/tests/systemd-machinectl: Fix resolved and UID shift check 2022-07-30 22:32:12 +02:00
superherointj 564e99c187
Merge pull request #182445 from euank/k3s-multi-node-test 
nixos/tests/k3s: add multi-node test, test basic flannel networking
 2022-07-30 16:47:21 -03:00
Shawn8901 e5888c2436 noisetorch: Add noisetorch to systemPackages with programs.noisetorch.enable 2022-07-30 20:59:31 +02:00
Euan Kemp b6da1d8198 nixos/tests/k3s: add multi-node test 
This adds a basic multi-node test and verifies networking works between
em.
 2022-07-30 11:55:32 -07:00
Euan Kemp aa579635b9 nixos/tests/k3s: wait for default service account in test 
This lets us write a slightly simpler test, and more closely matches
actual k8s usage
 2022-07-30 11:55:24 -07:00
Euan Kemp d5b1e25711 nixos/tests/k3s: reorganize test into a subdirectory 
In preperation for more tests, coming soon.
 2022-07-30 11:55:23 -07:00
github-actions[bot] 15686bdd94
Merge master into staging-next 2022-07-30 18:01:31 +00:00
Greizgh dd8386c453
nixos/seafile: version 9.0x compatibility 2022-07-30 18:29:33 +02:00
Alyssa Ross 153bfc9966
treewide: use isx86 where appropriate 2022-07-30 16:21:10 +00:00
Alyssa Ross 5330c0a1af
treewide: use isAarch where appropriate 2022-07-30 16:18:27 +00:00
pennae 2e751c0772 treewide: automatically md-convert option descriptions 
the conversion procedure is simple:

 - find all things that look like options, ie calls to either `mkOption`
   or `lib.mkOption` that take an attrset. remember the attrset as the
   option
 - for all options, find a `description` attribute who's value is not a
   call to `mdDoc` or `lib.mdDoc`
 - textually convert the entire value of the attribute to MD with a few
   simple regexes (the set from mdize-module.sh)
 - if the change produced a change in the manual output, discard
 - if the change kept the manual unchanged, add some text to the
   description to make sure we've actually found an option. if the
   manual changes this time, keep the converted description

this procedure converts 80% of nixos options to markdown. around 2000
options remain to be inspected, but most of those fail the "does not
change the manual output check": currently the MD conversion process
does not faithfully convert docbook tags like <code> and <package>, so
any option using such tags will not be converted at all.
 2022-07-30 15:16:34 +02:00
ajs124 0502d9466a
Merge pull request #183624 from Izorkin/update-nginx 2022-07-30 15:15:05 +02:00
Aaron Andersen 2aecc7fdc1
Merge pull request #183360 from Sohalt/nixos/headscale 
nixos/headscale: minor improvements
 2022-07-30 15:02:37 +02:00
github-actions[bot] 5ebd4b10df
Merge master into staging-next 2022-07-30 12:01:30 +00:00
Bobby Rong 1abe15cfa5
nixos/cinnamon: install xed-editor 
xed is not the editor you want in Nixpkgs but a x86 encoder decoder.
 2022-07-30 19:51:15 +08:00
Nick Cao aaebb21a9e
nixosTests.powerdns: fix test script for type checking 2022-07-30 16:29:16 +08:00
Linus Heckemann bb7f88ccc0
Merge pull request #178529 from oxalica/fix/systemd-initrd-vconsole 
nixos/console: add required store paths to initrd for systemd stage 1
 2022-07-30 10:15:14 +02:00
github-actions[bot] 93fa8bacfb
Merge master into staging-next 2022-07-30 06:01:19 +00:00
Andrew Marshall 51adf865a3 nixos/networkd: Fix example for dhcpServerStaticLeaseOptions option 
The example was not valid, and would raise an error.
 2022-07-30 00:55:56 -04:00
Andrew Marshall a9fbd07f56 nixos/networkd: Fix example for ipv6Prefixes option 
The example was not valid, and would raise an error.
 2022-07-30 00:55:56 -04:00
github-actions[bot] 093f236f30
Merge master into haskell-updates 2022-07-30 00:13:25 +00:00
Anderson Torres a34e3f299c
Merge pull request #183209 from AndersonTorres/nscde 
fvwm3: init at 1.0.4
 2022-07-29 21:10:55 -03:00
github-actions[bot] 6ed636d15c
Merge master into staging-next 2022-07-30 00:02:12 +00:00
Guillaume Girol 273697ed08
Merge pull request #182829 from symphorien/bootloader-doc 
rephrase nixos installation doc
 2022-07-29 19:54:47 +00:00
Brian Leung feddd5e7f8
manual: fix typos 2022-07-29 11:20:55 -07:00
github-actions[bot] 50de8aa60e
Merge master into staging-next 2022-07-29 18:01:27 +00:00
Izorkin 97c56a12dd
nixos/tests/nginx: fix nginx-etag test 2022-07-29 20:31:43 +03:00
pennae 6662f40c24
Merge pull request #182756 from jian-lin/pr-add-kanata-module 
nixos/kanata: init
 2022-07-29 15:08:34 +02:00
github-actions[bot] a37c393ba4
Merge staging-next into staging 2022-07-29 12:02:05 +00:00
Jörg Thalheim dfda4ec196
Merge pull request #183269 from flokli/grafana-agent-merge-defaults 
nixos/grafana-agent: ensure defaults are merged
 2022-07-29 11:38:47 +01:00
Florian Klink 7df5b81fc3 nixos/grafana-agent: ensure defaults are merged 
Move the defaults to the `config` section of the module, and apply them
with mkDefault.

That way the defaults are merged with user-provided config, and are
merged without having to use lib.mkForce.
 2022-07-29 13:23:12 +07:00
Alexandre Badez 8457d9277a system.autoUpgrade: add boot option. 2022-07-29 08:21:07 +02:00
AndersonTorres bef8e4df1d fvwm3: nixos module 2022-07-28 22:28:41 -03:00
AndersonTorres 2617a00699 fvwm: rename nixos module to fvwm2 2022-07-28 22:28:39 -03:00
github-actions[bot] 3c0b8e78a9
Merge master into haskell-updates 2022-07-29 00:13:37 +00:00
pennae 52b0ad17e3 nixos/docs: cache mergeJSON md conversion on baseOptionsJSON 
with ever more options being markdown rather than docbook the conversion
time is starting to become a significant factor of doc build time.
luckily we can pre-convert all nixos option docs to MD and cache the
result of this conversion, then merge the already-converted json file
with user option docs. we leave options.json unconverted to keep it as
close to the actual nix code as possible.
 2022-07-28 23:20:02 +02:00
pennae 18be724a58 nixos/make-options-doc: give MD conversion error locations 
during docs conversion it can be very useful to know exactly *where* the
error the script complained about is. the name of the option should be
sufficient since option merging is rather rare, and won't merge doc
attributes anyway.
 2022-07-28 20:03:02 +02:00
github-actions[bot] 6a1cd17d72
Merge staging-next into staging 2022-07-28 18:01:55 +00:00
sternenseemann 7f909b041b haskell.compiler: ghc923 -> ghc924 
https://www.haskell.org/ghc/download_ghc_9_2_4.html
 2022-07-28 18:09:33 +02:00
misuzu 9b1db3db0e nixos/gitlab-runner: undeprecate configFile option 2022-07-28 17:16:55 +02:00
misuzu b4028126f1 nixos/gitlab-runner: add settings option 2022-07-28 17:16:55 +02:00
github-actions[bot] 437247fc43
Merge staging-next into staging 2022-07-28 12:02:23 +00:00
Sandro b5b9c81496
Merge pull request #177573 from asbachb/bugfix/gitea/175967 2022-07-28 13:55:11 +02:00
ajs124 8b56c85a9a
Merge pull request #183154 from mweinelt/kea-2.2.0 2022-07-28 13:21:39 +02:00
Bernardo Meurer 2d070e3213
Merge pull request #182535 from lovesegfault/roon-hqplayerd-fixes 
nixos/{roon,hqplayerd}: small fixes
 2022-07-28 00:27:15 -07:00
github-actions[bot] 0049ace2ec
Merge staging-next into staging 2022-07-28 06:02:07 +00:00
Martin Weinelt bfb1246d29
nixos/tests/vaultwarden: update 
New web builds required updated title information to look for.

Rocket by default only listens on localhost, set to 0.0.0.0 to be
reachable by the client.

Selenium/Webdriver API changes required updates to function calls.
 2022-07-28 02:00:28 +02:00
Martin Weinelt 14ad19feda
nixosTests.kea: set name 2022-07-27 23:27:29 +02:00
github-actions[bot] c5298a170d
Merge staging-next into staging 2022-07-27 18:02:13 +00:00
github-actions[bot] f6895f13b0
Merge master into staging-next 2022-07-27 18:01:33 +00:00
Alan Strohm 81cd3e229c
nixos/restic: add 'backups.package' option to override the restic package (#183028) 2022-07-27 13:47:41 -04:00
pennae a16b25432e
Merge pull request #182685 from pennae/invariant-option-conversions 
treewide: invariant option conversions to MD
 2022-07-27 15:39:47 +02:00
Bobby Rong 36d7b18e75
Merge pull request #162980 from NickCao/mautrix-telegram-nixos 
nixos/mautrix-telegram: add lottieconverter to path
 2022-07-27 20:39:08 +08:00
github-actions[bot] 54f2dacce1
Merge staging-next into staging 2022-07-27 00:03:09 +00:00
github-actions[bot] f110f87498
Merge master into staging-next 2022-07-27 00:02:31 +00:00
Rick van Schijndel 9e9f6fc1c3
Merge pull request #152065 from chkno/stunnel-extraConfig 
nixos/stunnel: Make free-form
 2022-07-26 23:24:31 +02:00
Stig Palmquist 8532168fd7
nixos/tests/convos: fix tests 
- Fix journal grep test
 2022-07-26 22:38:05 +02:00
github-actions[bot] b21eff1a41
Merge staging-next into staging 2022-07-26 18:02:15 +00:00
github-actions[bot] 1071ab374f
Merge master into staging-next 2022-07-26 18:01:32 +00:00
Sandro 7206899cbf
nixos/i18n: add en_US.UTF-8 to default locales 
Closes #182798
 2022-07-26 14:50:02 +02:00
github-actions[bot] 52e7c12c41
Merge staging-next into staging 2022-07-26 06:02:58 +00:00
github-actions[bot] 8aaeccd647
Merge master into staging-next 2022-07-26 06:02:16 +00:00
Bernardo Meurer 1cfb6dab0f
Merge pull request #182789 from talyz/sshd-dont-delete-symlinks 
sshd: Don't remove symlinks to host key files
 2022-07-25 21:51:46 -07:00
Bjørn Forsman 9b6965dcfc nixos: add lighttpd test 2022-07-26 04:45:03 +02:00
Jared Baur 777e914c20 nixos/systemd.network: Add RequiredFamilyForOnline to linkConfig 
While writing a configuration, I found a usage for this field and
noticed it was missing when building the configuration.
 2022-07-26 04:11:33 +02:00
Stig 550aaf8c96
Merge pull request #182379 from stigtsp/fix/pam-u2f-cue 
nixos/security/pam: fix u2f options leakage
 2022-07-26 03:19:01 +02:00
github-actions[bot] 4defba0df7
Merge staging-next into staging 2022-07-26 00:03:07 +00:00
github-actions[bot] 19fd1d7e90
Merge master into staging-next 2022-07-26 00:02:26 +00:00
ajs124 66e9ea4827
Merge pull request #180008 from Luflosi/skip-fsck-for-bind-mount 2022-07-25 23:56:12 +02:00
Winter c4665307de
Merge pull request #180148 from Luflosi/nginx-fix-listenAddresses-example 
nixos/nginx: fix broken listenAddresses example
 2022-07-25 17:47:00 -04:00
Guillaume Girol 063996d291
Merge pull request #182233 from symphorien/doc-iso-branch 
nixos/doc: don't advise to build master
 2022-07-25 20:48:49 +00:00
github-actions[bot] 2aa98a3fe0
Merge staging-next into staging 2022-07-25 18:02:05 +00:00
github-actions[bot] db04e3c143
Merge master into staging-next 2022-07-25 18:01:19 +00:00
Roman Volosatovs 191f777c4a
nixos/amd.sev: init 
Signed-off-by: Roman Volosatovs <roman@profian.com>
Signed-off-by: Roman Volosatovs <rvolosatovs@riseup.net>
 2022-07-25 18:13:52 +02:00
Lin Jian b6617bb594
nixos/kanata: init 2022-07-26 00:06:48 +08:00
Kevin Cox 6efae3d6a9
Merge pull request #118093 from stuebinm/nextcloud-secrets 
nixos/nextcloud: add extraOptions and secretFile options
 2022-07-25 11:29:11 -04:00
Otavio Salvador 7e8e00d656 nixos/restic: use postStop for backupCleanupCommand 
That way the `backupCleanupCommand` can also run when the backup service
failed for some reason.

Fixes: #182089.
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-07-25 11:53:01 -03:00
github-actions[bot] d31202e8c3
Merge staging-next into staging 2022-07-25 12:02:27 +00:00
github-actions[bot] ded08eff9c
Merge master into staging-next 2022-07-25 12:01:46 +00:00
Guillaume Girol 5eb63756ca rephrase nixos installation doc 
systemd-boot is not the only option, even though it "just works" better.
 2022-07-25 12:00:00 +00:00
Maximilian Bosch f923f5b9aa
Merge pull request #182456 from mayflower/crowd-secrets 
nixos/crowd: store openid password securely
 2022-07-25 12:02:57 +02:00
github-actions[bot] a5a3f67b15
Merge staging-next into staging 2022-07-25 00:03:30 +00:00
github-actions[bot] e706db2a81
Merge master into staging-next 2022-07-25 00:02:44 +00:00
Mario Rodas f97827178e
Merge pull request #181021 from melvyn2/patch-1 
Add `bash` to netdata service path
 2022-07-24 16:12:07 -05:00
Vladimír Čunát 687d59d7e6
Merge branch 'master' into staging-next 2022-07-24 22:27:27 +02:00
Sandro 87c66cbb56
nixos/hydra: fix runuser in init 2022-07-24 18:05:10 +02:00
Sandro 8f89704410
Merge pull request #182648 from SuperSandro2000/hedgedoc-module 
nixos/hedgedoc: improve ldap settings
 2022-07-24 16:33:11 +02:00
github-actions[bot] 4a6e124c33
Merge staging-next into staging 2022-07-24 12:02:06 +00:00
github-actions[bot] 21a6aafb7d
Merge master into staging-next 2022-07-24 12:01:21 +00:00
pennae ff56c775c8
Merge pull request #182098 from pennae/option-doc-md 
convert some varlists in option docs to MD
 2022-07-24 13:14:40 +02:00
pennae 5bf55a4ad5 nixos/virtualization: invariant option docs MD conversions 2022-07-24 13:01:47 +02:00
pennae b115622f4b nixos/tasks: invariant option docs MD conversions 2022-07-24 13:01:47 +02:00
pennae 860a0449ce nixos/system: invariant option docs MD conversions 2022-07-24 13:01:47 +02:00
pennae cbc44d68a7 nixos/security: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
pennae da37ca6760 nixos/programs: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
pennae 4f91838584 nixos/misc: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
pennae 4ba72f8615 nixos/installer: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
pennae 77d56dfc22 nixos/i18n: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
pennae 4dd84a34db nixos/hardware: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
pennae 8a79dfd94a nixos/config: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
Michael Weiss a4c8c46831
Merge pull request #182508 from primeos/signal-desktop 
nixos/tests/signal-desktop: Fix the sqlite3 part of the test (regressed)
 2022-07-24 12:27:38 +02:00
Felix Buehler 17e93b090e services.murmur: add openFirewall option 2022-07-24 10:32:37 +02:00
Vladimír Čunát 4ba8bc7d40
Merge branch 'master' into staging-next 2022-07-24 09:44:09 +02:00
Sandro Jäckel 98f180b0e3
nixos/hedgedoc: set good default for ldap.tlsca 2022-07-24 04:08:18 +02:00
Sandro Jäckel 1a7f6b4070
nixos/hedgedoc: do not require to set searchAttributes when ldap login is used 2022-07-24 04:08:18 +02:00
kilianar 2133278f96 nixosTests.podgrab: fix failing test 
defaultPort and customPort aren't python variables causing the test to
fail. We instead use the nix variables with string interpolation.
 2022-07-23 17:19:01 +02:00
github-actions[bot] b38a1818bc
Merge staging-next into staging 2022-07-23 12:02:12 +00:00
github-actions[bot] 6629a2339e
Merge master into staging-next 2022-07-23 12:01:31 +00:00
Bjørn Forsman 65399c4742 nixos/syncthing: don't leak the secret API key in process listings 2022-07-23 13:59:11 +02:00
Bjørn Forsman 16108ff74a nixos/jenkins-job-builder: set serviceConfig.Type = "oneshot" 
This change allows detecting configuration errors during
switch-to-configuration instead of them being reported asynchronously
*after* switch-to-configuration has exited.

(And update the NixOS test accordingly.)
 2022-07-23 13:30:53 +02:00
Nick Cao f1a08f54f0
nixos/mautrix-telegram: add lottieconverter to path 2022-07-23 16:43:39 +08:00
github-actions[bot] f036546286
Merge staging-next into staging 2022-07-23 06:02:03 +00:00
github-actions[bot] 1ce437589a
Merge master into staging-next 2022-07-23 06:01:20 +00:00
Bernardo Meurer 836af9c15e nixos/hqplayerd: allow GPU acceleration 2022-07-22 21:21:46 -07:00
Bernardo Meurer d66f766cac nixos/roon-server: fix openFirewall 2022-07-22 21:20:50 -07:00
Dan Callaghan 133ebbe46a
nixos/sssd: add an option to enable KCM support 2022-07-23 10:14:09 +10:00
Shamrock Lee c25543b554 wineWowPackages: default mainProgram to "wine64" 2022-07-22 22:45:44 +00:00
Michael Weiss 59de06d093
nixos/tests/signal-desktop: Fix the sqlite3 part of the test (regressed) 
Due to recent changes (likely a sqlite3 update) the sqlite3 meta-command
did suddenly succeed while sqlite3 is still unable to read the still
encrypted database. It just prints the following output and doesn't
seem to try to open/read the DB (which would fail):
```
main: /home/alice/.config/Signal/sql/db.sqlite r/w
```

We can simply fix this "regression" by instructing sqlite3 to list the tables
in the database (which fails because it cannot read the encrypted DB):
```
machine: must fail: su - alice -c 'sqlite3 ~/.config/Signal/sql/db.sqlite .tables'
machine # [   47.036720] su[1178]: Successful su for alice by root
machine # [   47.041049] su[1178]: pam_unix(su:session): session opened for user alice(uid=1000) by (uid=0)
machine # Error: file is not a database
machine # [   47.116070] su[1178]: pam_unix(su:session): session closed for user alice
(finished: must fail: su - alice -c 'sqlite3 ~/.config/Signal/sql/db.sqlite .tables', in 0.12 seconds)
```

Fix #181463.
 2022-07-22 23:42:55 +02:00
Alois Wohlschlager fe44207a71
nixos/power-management: run post-resume after suspend-then-hibernate 
The suspend-then-hibernate functionality is implemented by systemd in
the suspend-then-hibernate.target, separately from suspend.target and
hibernate.target. Thus post-resume would not run after resuming from
suspend-then-hibernate.

Fix this by explicitly making post-resume run after
suspend-then-hibernate.
 2022-07-22 18:33:37 +02:00
github-actions[bot] b4832bac52
Merge staging-next into staging 2022-07-22 15:34:59 +00:00
Artturin 6789222b1c Merge branch 'master' into staging-next 2022-07-22 18:23:16 +03:00
Jörg Thalheim 8807057296 nixos/openldap: drop myself as maintainer 2022-07-22 16:54:13 +02:00
Sandro 8455ba6d64
Merge pull request #181258 from SuperSandro2000/onlyoffice 2022-07-22 16:28:13 +02:00
Martin Weinelt b5e4c14806 Merge remote-tracking branch 'origin/master' into staging-next 2022-07-22 14:56:01 +02:00
pennae e4d4b3cd64
Merge pull request #182441 from leungbk/lemmy-whitespace 
services/web-apps/lemmy.nix: Remove space that causes a type error
 2022-07-22 14:30:23 +02:00
Maximilian Bosch 200ce70e63
Merge pull request #180603 from m-bdf/substitute-nix-instantiate 
nixos-generate-config: substitute nix-instantiate
 2022-07-22 14:22:52 +02:00
Maximilian Bosch 779853b52b
Merge pull request #182413 from NetaliDev/pam-mount-fix-refactor 
nixos/pam: refactor pam_mount unmounting fix
 2022-07-22 14:05:44 +02:00
github-actions[bot] dec2508b80
Merge staging-next into staging 2022-07-22 12:02:21 +00:00
github-actions[bot] a3ba713cd4
Merge master into staging-next 2022-07-22 12:01:35 +00:00
Maximilian Bosch ee2413c326
nixos/crowd: store openid password securely 2022-07-22 13:13:12 +02:00
Maximilian Bosch 1f6910b7dd
Merge pull request #182267 from mayflower/confluence-secrets 
nixos/confluence: store crowd SSO password securely
 2022-07-22 13:12:17 +02:00
Maximilian Bosch 85231bbd6e
Merge pull request #182261 from mayflower/mailman-rest-api-pass-file 
nixos/mailman: don't leak MAILMAN_REST_API_PASS into the store
 2022-07-22 13:11:37 +02:00
Ilan Joselevich d0617a58e2
services/web-apps/lemmy.nix: Remove space that causes a type error 2022-07-22 01:19:28 -07:00
Florian Klink ad29dc19c1
Merge pull request #182436 from K900/systemd-initrd-fixes 
nixos/systemd: make sure all the device nodes are created in stage1
 2022-07-22 15:06:59 +07:00