K900
f387b065b1
nixos/iso-image: disable graphical GRUB on GNOME ISOs too
...
It's broken for a lot of people.
2023-09-06 13:36:31 +03:00
Florian Klink
0a49365db9
Merge pull request #253498 from elohmeier/tpmfix
...
boot.initrd.systemd: make TPM2 modules optional
2023-09-06 11:49:47 +03:00
Jörg Thalheim
df4236c904
buildbot: supports reloading configuration
...
buildbot will reload configuration on sighup
2023-09-06 09:38:50 +02:00
Niklas Hambüchen
4a7f846937
Merge pull request #190944 from nh2/ecryptfs-security-wrapper
...
Add `programs.ecryptfs` for mount wrappers
2023-09-06 01:14:52 +02:00
Weijia Wang
f9d1b02cde
Merge pull request #253510 from schmittlauch/cawbird-remove
...
cawbird: remove due to being broken and abandoned
2023-09-06 00:28:59 +02:00
Weijia Wang
cfb61436d7
Merge pull request #252978 from oluceps/dae-upup
...
dae,nixos/dae: 0.2.4 -> 0.3.0
2023-09-05 23:57:14 +02:00
Michele Guerini Rocco
704c791a90
Merge pull request #253146 from rnhmjoj/pr-anbox
...
anbox: unbreak
2023-09-05 23:46:54 +02:00
Artturi
7b33eb656c
Merge pull request #250318 from Artturin/copycrossfix
2023-09-06 00:37:15 +03:00
Weijia Wang
8ba86153c6
Merge pull request #253391 from MrMebelMan/update/kratos_v1.0.0
...
kratos: 0.10.1 -> 1.0.0
2023-09-05 23:17:22 +02:00
Trolli Schmittlauch
af66f4fd2a
cawbird: remove due to being broken and abandoned
...
-- dedicated to Larry the bird
2023-09-05 22:12:50 +02:00
Niklas Hambüchen
5d778d1f03
Add programs.ecryptfs
for mount wrappers.
...
The `ecryptfs` package refers to the setuid wrapper paths, but they do
not exist so far in NixOS.
2023-09-05 18:56:24 +00:00
Adam Stephens
c811cf643f
nixos/tests/lxd: disable virtual-machine test on aarch64
2023-09-05 15:28:00 +00:00
Adam Stephens
a90385c62b
nixos/lxd: add preseed option
2023-09-05 15:28:00 +00:00
Adam Stephens
85c14ff2ff
nixos/lxd: remove with lib
2023-09-05 15:28:00 +00:00
ajs124
6de832b0e5
nixos/logrotate: add extraArgs option
2023-09-05 16:04:07 +02:00
Yaya
c04722cf0c
rl-2311: Mention faulty GitLab database schema
...
GitLab instances created or updated between versions [15.11.0, 15.11.2]
have an incorrect database schema. [1] This will become a problem once
upgrading GitLab to >=16.2.0.
A workaround can be found in the GitLab docs: [2]
[1]: https://gitlab.com/gitlab-org/gitlab/-/issues/408835
[2]: https://docs.gitlab.com/ee/update/versions/gitlab_16_changes.html#undefined-column-error-upgrading-to-162-or-later
2023-09-05 13:46:44 +02:00
Yaya
1a22627603
nixos/gitlab: Add a warning message
...
GitLab instances created or updated between versions [15.11.0, 15.11.2]
have an incorrect database schema. [1] This will become a problem once
upgrading GitLab to >=16.2.0.
A workaround can be found in the GitLab docs: [2]
[1]: https://gitlab.com/gitlab-org/gitlab/-/issues/408835
[2]: https://docs.gitlab.com/ee/update/versions/gitlab_16_changes.html#undefined-column-error-upgrading-to-162-or-later
2023-09-05 13:46:44 +02:00
ajs124
97dfc365e6
gitlab: 16.1.4 -> 16.3.1
...
https://gitlab.com/gitlab-org/gitlab/-/blob/v16.3.1-ee/CHANGELOG.md
Fixes CVE-2022-4343
Fixes CVE-2023-0120
Fixes CVE-2023-1279
Fixes CVE-2023-1555
Fixes CVE-2023-3205
Fixes CVE-2023-3915
Fixes CVE-2023-3950
Fixes CVE-2023-4018
Fixes CVE-2023-4378
Fixes CVE-2023-4630
Fixes CVE-2023-4638
Fixes CVE-2023-4647
Co-Authored-By: Yaya <github@uwu.is>
2023-09-05 13:46:44 +02:00
Mikael Voss
b56f8149b2
nixos/tests/akkoma: Disable retrieving timeline
2023-09-05 12:26:33 +02:00
Vladyslav Burzakovskyy
d284477a2c
kratos: 0.10.1 -> 1.0.0
2023-09-05 11:21:19 +02:00
Matt Votava
b3bb611ce6
nixos/tests/anbox: init
2023-09-05 10:09:45 +02:00
Samuel Dionne-Riel
7425d9254d
nixos/anbox: use --daemon
to squash warning
...
As noted in https://github.com/NixOS/nixpkgs/pull/102341 this is not
actually running as a forked process. It only tells the process that it
is running "as a daemon, so shut the warning up".
See `daemon_` here
- 9de4e87cdd/src/anbox/cmds/container_manager.cpp (L38-L79)
It is **strictly** used to hide that message.
Co-authored-by: Matt Votava <mvnetbiz@gmail.com>
2023-09-05 10:09:44 +02:00
Samuel Dionne-Riel
7fa154f3ee
nixos/anbox: allow applying changes to the image
2023-09-05 10:09:43 +02:00
Samuel Dionne-Riel
cdc51c811a
nixos/anbox: handle new kernel configurations
2023-09-05 10:09:43 +02:00
Samuel Dionne-Riel
708e1eb8ba
nixos/anbox: mark anbox0 as unmanaged with NetworkManager
2023-09-05 10:09:42 +02:00
Morgan Helton
147d81d155
nixos/atuin: fix enable option typo
2023-09-05 08:34:34 +02:00
Nick Cao
5451e0594a
Merge pull request #253121 from NickCao/mautrix
...
python310Packages.mautrix: 0.20.0 -> 0.20.1
2023-09-04 18:31:36 -04:00
nicoo
10b6e8ba21
nixos/sudo: Guard against security.sudo.package = pkgs.sudo-rs;
...
This is not unlikely to happen, given the enthusiasm shown by some users,
but we are not there yet, and this will save them from breaking their system.
2023-09-04 22:00:00 +00:00
tilpner
6e8591a8d1
nixos/mimir: add extraFlags option
2023-09-04 20:26:02 +00:00
Maciej Krüger
ca6ed1cc8d
Merge pull request #241680 from 4z3/networking.nftables.checkRulesetRedirects
2023-09-04 22:07:50 +02:00
pennae
6e56e31d38
release-notes: add note about jack2 losing its tools
...
let's spare anyone else using these the adventure of finding out why
their scripts broke and where the tools went.
2023-09-04 21:06:07 +02:00
rnhmjoj
b058de4ac8
nixos/release-notes: reword the Jool note
2023-09-04 18:47:05 +02:00
rnhmjoj
640c86c256
nixos/tests/jool: update for module changes
2023-09-04 18:38:25 +02:00
rnhmjoj
355a9fa040
nixos/jool: allow to manage multiple instances
2023-09-04 18:38:25 +02:00
Bobby Rong
a8e3f93bcd
Merge pull request #252986 from FedericoSchonborn/budgie-module-update
...
nixos/budgie: Use Network Manager Applet indicator, budgie.budgie-gsettings-overrides: Update defaults
2023-09-05 00:02:22 +08:00
Nick Cao
a2ddd389de
Merge pull request #253196 from rnhmjoj/pr-mautrix
...
nixos/mautrix-whatsapp: various fixes
2023-09-04 09:27:31 -04:00
Martin Weinelt
390d535562
Merge pull request #253259 from mweinelt/custom-ca-firefox-memlimit
...
nixosTests.custom-ca: resolve out of memory situations
2023-09-04 15:05:54 +02:00
Martin Weinelt
311ce2ad11
nixosTests.custom-ca: resolve out of memory situations
...
They are easily observable on hydra. E.g. on the latest eval
https://hydra.nixos.org/build/233893887
https://hydra.nixos.org/build/233900101
2023-09-04 14:34:21 +02:00
ajs124
308baf3049
uim: remove qt4, fix qt5
2023-09-04 13:54:50 +02:00
Mario Rodas
4f2c276497
Merge pull request #244093 from adamcstephens/lxd/vm
...
lxd: Add VM image and server support for QEMU VMs
2023-09-03 22:02:54 -05:00
pacien
12aaefa78d
release-notes: add entry for new stalwart-mail module
2023-09-03 22:18:50 -04:00
pacien
c6808723b0
nixos/stalwart-mail: add vm test
2023-09-03 22:18:50 -04:00
pacien
f6961de637
nixos/stalwart-mail: add module
2023-09-03 22:18:50 -04:00
Adam Stephens
efd1605be6
nixos/lxd: add virtual-machine support, image and module
2023-09-03 20:06:44 -04:00
rnhmjoj
4fb8212162
nixos/mautrix-whatsapp: log to the journal only
...
Logging outside the journal requires to manually clean/rotate the logs
and is quite surprising behavior: it should not be the default.
2023-09-04 01:20:17 +02:00
rnhmjoj
5fc70937a1
nixos/mautrix-whatsapp: set default homeserver address
...
Without one the bridge won't start.
Note: localhost:8448 is the default listening address of matrix-synapse.
2023-09-04 01:20:17 +02:00
rnhmjoj
035f905124
nixos/mautrix-whatsapp: fix merging of default settings
...
This implements proper merging of user-provided values and default
values for the settings option.
Without this, the user must provide a complete configuration file, as
changing a single setting replaces the entire JSON value, rendering the
default values completely useless. In fact, the bridge won't even start
using the default settings.
2023-09-04 01:19:54 +02:00
rnhmjoj
9e0457115e
nixos/mautrix-whatsapp: use static user and group
...
The DynamicUser mechanism does not allow share the bridge
registration.yaml file with matrix-synapse in any easy way:
1. the mautrix-whatsapp group under which the service runs is not in
/etc/group, so you can't add matrix-synapse to this.
This makes the group read bit on the file useless as the group is
effectively always empty.
2. It's not possible to use ACLs or copy the file during preStart or
postStart because the commands are executed with low priviledges.
By using a normal (static) user/group the secret can be shared with
synapse as follows:
services.matrix_synapse.settings.app_service_config_files =
[ "/var/lib/mautrix-whatsapp/whatsapp-registration.yaml" ];
users.users.matrix-synapse.extraGroups = [ "mautrix-whatsapp" ];
2023-09-04 00:40:50 +02:00
rnhmjoj
e932745cb8
nixos/mautrix-whatsapp: fix docbook description
...
Until NixOS 23.11 is release all options must be marked as migrated from
docbook to markdown.
2023-09-03 22:22:27 +02:00
Sandro
c6af5494aa
nixos/nginx: fix services.nginx.defaultListen description
2023-09-03 16:45:10 +02:00
Jörg Thalheim
3a5ff9a68c
nixos/release.nix: remove warning about missing state version for images
2023-09-03 16:32:37 +02:00
Nick Cao
69596874f1
nixos/mautrix-telegram: drop removed --base-config flag
...
See also: 9b67b17ac4
2023-09-03 08:59:57 -04:00
linsui
6b2934d6e9
nixos/yazi: init
2023-09-03 17:28:12 +08:00
Ramses
76f8cf18d1
nixos/update-users-groups: no need to include extra package
...
Co-authored-by: Jörg Thalheim <Mic92@users.noreply.github.com>
2023-09-03 11:26:37 +02:00
r-vdp
d560a5e07d
nixos/update-users-groups: fix cross compilation
...
Since #246772 , cross compiled NixOS is broken because the DateTime perl
package that was used in the update-users-groups.pl script depends on
Testutf8 which does not cross compile (see #198548 ).
This PR drops the DateTime dependency in favour of TimePiece, which has
less dependencies and whose closure does cross compile.
2023-09-03 11:26:37 +02:00
Jörg Thalheim
f6fa02c984
openrbg: set default based on what microcode updates are enabled
...
nixos-generate-config sets either of these, so lets use them
2023-09-03 07:16:52 +02:00
oluceps
ec0755d5f7
nixos/dae: add example link
...
Co-authored-by: Mathias Zhang <me@zzzsy.top>
2023-09-03 11:54:36 +08:00
Artturin
053e69578f
nixos/testing/driver: Copy cross fix from modules/misc/nixpkgs.nix
...
f7077ba131
Fixes `error: makeWrapper/makeShellWrapper must be in nativeBuildInputs`
`pkgsCross.aarch64-multiplatform.nixosTests.sway`
2023-09-03 00:19:29 +03:00
oluceps
17e386205b
nixos/dae: add basic test
2023-09-03 03:06:52 +08:00
Federico Damián Schonborn
5ab4510232
nixos/budgie: Use the Network Manager Applet indicator
...
Signed-off-by: Federico Damián Schonborn <fdschonborn@gmail.com>
2023-09-02 15:49:59 -03:00
zzzsyyy
8f070876da
nixos/dae: add confgFile option
...
Co-authored-by: oluceps <nixos@oluceps.uk>
2023-09-03 02:48:27 +08:00
oluceps
173ff5d2dd
nixos/dae: add more config options
2023-09-03 02:48:24 +08:00
Artturi
26b11c54d8
Merge pull request #247153 from Artturin/fixwarning1
2023-09-02 03:13:30 +03:00
Florian Klink
90204f058c
Merge pull request #251684 from jmbaur/user-activation-tmpfiles
...
nixos/systemd-user: call systemd-tmpfiles during activation
2023-09-01 21:52:19 +03:00
Jonas Chevalier
9ace789629
Merge pull request #249103 from yaxitech/github-runner-v2.308.0
...
github-runner: 2.307.1 -> 2.308.0
2023-09-01 16:31:29 +02:00
Atemu
c54f4fdf8c
Merge pull request #248669 from Atemu/dnscrypt-proxy-update-alias
...
dnscrypt-proxy: rename from dnscrypt-proxy2
2023-09-01 14:37:13 +02:00
Matt Melling
9181483d66
nixos/cloudlog: remove pin for PHP 8.1
2023-08-31 23:51:25 +01:00
Andrew Marshall
189b14246a
nixos/networkd: Reload (not restart) when only .network units change
...
Underneath, systemd-networkd’s reload is just `networkctl reload`. Per
`man networkctl`, calling `reload` is expected to fully handle new,
modified, and removed .network files, but it only handles *new* .netdev
files. For simplicity, assume .network -> reload and .netdev -> restart.
It’s desirable to perform reload instead of restart, as restart has the
potential to bring down interfaces, resulting in a loss of network
connectivity.
2023-08-31 12:24:17 -04:00
Sagi Sarussi
f3cf8b679b
nixos/kanidm: fix broken doc links
2023-08-31 14:03:30 +03:00
name_snrl
9345e48bb4
privoxy: fix types.string -> types.str
2023-08-30 23:08:13 +05:00
Emery Hemingway
55c8f51af5
nixos/nncp: add caller and daemon services
2023-08-29 21:31:19 +01:00
Martin Weinelt
d17a82f986
Merge pull request #252041 from mweinelt/unbound-exporter
...
prometheus-unbound-exporter: replace at 0.4.4
2023-08-29 21:26:42 +02:00
Jared Baur
e39c9f13bc
nixos/systemd-user: call systemd-tmpfiles during activation
...
Just like with system-wide tmpfiles, call `systemd-tmpfiles --create
--remove` for users during activation. This fixes an issue where new
entries in a user's tmpfiles are not reflected after activation, only at
boot when the user service systemd-tmpfiles-setup.service runs or only
after running systemd-tmpfiles manually.
2023-08-29 10:46:44 -07:00
Silvan Mosberger
f616ad76f0
Merge pull request #250885 from tweag/spp-1a
...
[RFC 140] Simple package paths, part 1a: Checking tool
2023-08-29 16:36:26 +02:00
Silvan Mosberger
34c8b0a8e5
nixos/release-combined.nix: Build pkgs/by-name tester
2023-08-29 16:35:07 +02:00
Martin Weinelt
73c5a5a778
nixos/prometheus/unbound-exporter: update for new package
...
The command line interface changed slightly, but still supports the TCP
as well as the UDS control interface.
2023-08-28 23:21:52 +02:00
Artturi
206ca4bef4
Merge pull request #246487 from amjoseph-nixpkgs/pr/binfmt-mips
2023-08-28 22:40:30 +03:00
Jan Tojnar
434d160d7c
Merge pull request #234615 from linsui/dconf
...
nixos/dconf: support generating from attrs
2023-08-28 18:31:52 +02:00
ajs124
dbb69f82c6
nixos/restic: add wrapper scripts that set parameters for backup
...
and use in test
2023-08-28 15:17:37 +02:00
ajs124
4732cbf3f8
nixos/restic: use openssh as configured in programs.ssh
2023-08-28 15:03:12 +02:00
Pol Dellaiera
df24943cc0
Merge pull request #249765 from NixOS/nixos/modules/honk-init
...
nixos/honk: init
2023-08-28 10:40:23 +02:00
Janne Heß
fd454fe4b6
Merge pull request #250316 from helsinki-systems/feat/stc-improve-mount-units
...
nixos/switch-to-configuration: Improve mount unit handling
2023-08-28 09:18:44 +02:00
Maciej Krüger
369e18f1c7
networking/nftables: ensure deletions
2023-08-28 00:44:16 +02:00
Maciej Krüger
6658b3fcf1
networking/nftables: make ruleset+rulesetFile non-exclusive
2023-08-28 00:40:22 +02:00
Maciej Krüger
a1dd69d761
networking/nftables: enable flushRuleset by default if rulset{,File} used
2023-08-28 00:40:21 +02:00
Maciej Krüger
55213b54f0
nixos/nftables: save deletions to file and run them afterwards
...
Co-authored-by: duament
2023-08-28 00:40:20 +02:00
Maciej Krüger
5f300ad70c
networking/nftables: only delete our tables if flushRuleset is set to false
2023-08-28 00:40:19 +02:00
Maciej Krüger
d5a0826686
networking/nftables: remove no longer relevant conflict warnings
2023-08-28 00:40:18 +02:00
Maciej Krüger
dc3f8728b9
release-notes: add networking.nftables.tables news
2023-08-28 00:40:14 +02:00
Maciej Krüger
cd3af25932
networking/nftables: enable flushing ruleset for older versions
...
Co-authored-by: Naïm Favier <n@monade.li>
2023-08-28 00:35:39 +02:00
Maciej Krüger
311d2fa994
*: migrate to using nftables.tables instead of ruleset directly
2023-08-28 00:30:29 +02:00
Maciej Krüger
048ef0d455
networking/nftables: add .tables property and disable ruleset flushing by default
...
This allows for other unmanaged tables to co-exist peacefully on the os,
by having the nixos-managed tables be re-created atomically and the other
tables will simply be left untouched.
2023-08-28 00:30:28 +02:00
Pol Dellaiera
48de649336
nixos/modules/honk: init
2023-08-27 23:43:40 +02:00
Theodore Ni
c68a6a21ca
Merge pull request #247909 from Sigmanificient/ragnarwm
...
ragnarwm: init at 1.3.1
2023-08-27 13:41:04 -07:00
K900
f900e733c1
Merge pull request #250778 from NixOS/staging-next
...
staging-next 2023-08-22
2023-08-27 20:22:51 +03:00
happysalada
676fe5e01b
lemmy: fix ui commit_hash path
2023-08-27 20:44:10 +08:00
Maciej Krüger
c3ed95307e
Merge pull request #251413 from karolinschlegel/init-odoo-v15
...
odoo15: init at 15.0-20230720
2023-08-27 14:10:04 +02:00
Karolin Schlegel
4eee509d25
odoo15: init at 15.0-20230720
...
This contribution adds `odoo15` as a fixed version. To allow reusing the
existing test for Odoo, I made the package attribute configurable. To
reference the test for `odoo15` in `passthru` I added it to
`all-tests.nix`.
2023-08-27 09:52:43 +02:00
github-actions[bot]
d78f502c6b
Merge master into staging-next
2023-08-27 06:00:58 +00:00
Nick Cao
3b5bb2461c
Merge pull request #249726 from hughobrien/restic-service-network-target
...
nixos/restic: wait for network-online for timed backups
2023-08-27 13:06:19 +08:00