b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
383627 commits 2 branches 0 tags 3.3 GiB
Commit graph

21377 commits

Author SHA1 Message Date
Bernardo Meurer 9a41fab23f
Merge pull request #171021 from helsinki-systems/feat/systemd-stage-1-udev-improvements 2022-05-04 09:09:09 -07:00
Sandro b59d447a16
Merge pull request #171490 from danielfullmer/fix-ssh-hostkey 2022-05-04 14:29:29 +02:00
Sandro aacb7ef4a6
Merge pull request #169966 from deinferno/vmware-host 2022-05-04 14:13:12 +02:00
github-actions[bot] 23791ce6d0
Merge staging-next into staging 2022-05-04 06:02:12 +00:00
Daniel Fullmer ad38a2a646 nixos/ssh: remove empty host key files before generating new ones 
In a previous PR [1], the conditional to generate a new host key file
was changed to also include the case when the file exists, but has zero
size. This could occur when the system is uncleanly powered off shortly
after first boot.

However, ssh-keygen prompts the user before overwriting a file. For
example:

$ touch hi
$ ssh-keygen -f hi
Generating public/private rsa key pair.
hi already exists.
Overwrite (y/n)?

So, lets just try to remove the empty file (if it exists) before running
ssh-keygen.

[1] https://github.com/NixOS/nixpkgs/pull/141258
 2022-05-03 22:09:43 -07:00
Artturi c8bbc62a64
Merge pull request #171152 from Luflosi/thefuck-improvements 
nixos/thefuck: fix programs.thefuck.alias for fish
 2022-05-04 05:32:40 +03:00
github-actions[bot] ee7e3f30f3
Merge staging-next into staging 2022-05-04 00:02:57 +00:00
Ivan Kozik 96a8c0ac23 nixos/postgresql: use postgres 14 for 22.05 
postgresql: alias to postgresql_14
 2022-05-03 22:23:08 +00:00
fleaz 8b250ec5af
nixos/r53-ddns: init 2022-05-04 00:16:18 +02:00
deinferno 3e8e52bb91 nixos/vmware-host: init at 16.2.3 2022-05-04 01:58:32 +05:00
davidak 01143883ff
Merge pull request #161788 from vlinkz/calamares-nixos 
calamares: fix calamares modules, add nixos modules, and add new iso
 2022-05-03 22:55:24 +02:00
Will Fancher e0b5ba5479 nixos: Don't use grep to request ZFS credentials, and consider keystatus 2022-05-03 14:56:50 -04:00
github-actions[bot] 51a899bdc1
Merge staging-next into staging 2022-05-03 18:10:46 +00:00
Rick van Schijndel ec4686ee14
Merge pull request #171247 from K900/systemd-boot-coreutils-mktemp 
systemd-boot: use mktemp from coreutils in installer
 2022-05-03 19:15:55 +02:00
Will Fancher 0a16158078 zfs: Update comment for https://github.com/zfsonlinux/zfs/pull/4943 2022-05-03 12:55:01 -04:00
Will Fancher 8555a7fdbf zfs: Allow three tries to decrypt datasets 2022-05-03 12:55:01 -04:00
Will Fancher 44a6882f55 nixos/stage-1-systemd: ZFS support 2022-05-03 12:55:00 -04:00
Victor Fuentes 89096bcce0
installation-cd: add calamares-plasma5 cd 2022-05-03 12:19:20 -04:00
Victor Fuentes 67b5b4cabf
installation-cd: add calamares-gnome cd 2022-05-03 12:19:20 -04:00
Luflosi deed4a3d6c
nixos/stage-1: remove dead code 
This special case for Btrfs was added in 51bc82960a. One year later beddd36c95 added code to skip the fsck entirely if the filesystem is Btrfs. This made the `if` statement unnecessary.
 2022-05-03 16:15:51 +02:00
Felix Singer 9765ee6bbf keycloak: 17.0.1 -> 18.0.0 
Release notes available at https://www.keycloak.org/docs/latest/release_notes/index.html#keycloak-18-0-0.

The way the database port is configured changed in Keycloak 18 and the
old way of including it in the `db-url-host` setting no longer
works. Use the new `db-url-port` setting instead.

Signed-off-by: Felix Singer <felixsinger@posteo.net>
Signed-off-by: Kim Lindberger <kim.lindberger@gmail.com>
 2022-05-03 16:12:55 +02:00
Artturi e982910064
Merge pull request #171248 from Artturin/addtoconfig1 2022-05-03 15:44:22 +03:00
github-actions[bot] 00dc0eecc7
Merge staging-next into staging 2022-05-03 12:01:45 +00:00
Matthieu Coudron 5114d91cd8
Merge pull request #169802 from NinjaTrappeur/nin/prosody012 2022-05-03 11:04:17 +02:00
Florian Klink f0df550602
Merge pull request #170650 from adisbladis/oci-containers-default-backend 
nixos/virtualisation.oci-containers: Use podman as the default backend
 2022-05-03 10:09:22 +02:00
Janne Heß 2edce50847
Merge pull request #171134 from helsinki-systems/feat/make-initrd-ng-strip 
makeInitrdNG: Strip more and remove output
 2022-05-03 09:41:22 +02:00
Sandro e76dd5230f
Merge pull request #167032 from Vonfry/feature/fcitx5/rime/with-custom-data-dirs 
fcitx5-rime: support custom data dir from environment variable for nixos and nix specially
 2022-05-03 09:35:04 +02:00
adisbladis 46241e156c nixos/virtualisation.oci-containers: Use podman as the default backend 
This has a number of benefits such as that applying service limits will
actually work since there isn't a layer of indirection (the Docker daemon)
between the systemd service and the container runtime.
 2022-05-03 14:50:43 +12:00
github-actions[bot] c4bf3689ee
Merge staging-next into staging 2022-05-02 18:10:52 +00:00
Niklas Hambüchen 73135fb85d
nixos/nebula: Always restart 
Without this, if the network goes down for a while, systemd will give up after 5 restarts:

    Scheduled restart job, restart counter is at 5.
    Stopped Nebula VPN service for myvpn.
    nebula@myvpn.service: Start request repeated too quickly.
    Failed with result 'exit-code'.
    Failed to start Nebula VPN service for myvpn.

Most network services need this, but for VPNs it's extra important.
 2022-05-02 16:45:44 +02:00
Artturin 1c49b81263 config.allowUnfree: define as option 2022-05-02 17:20:25 +03:00
K900 5a2f238b9a systemd-boot: use mktemp from coreutils in installer 
People running nixos-install in non-NixOS environments
occasionally run into the mktemp builtin not being loaded
into bash (yes, even NixOS' bash). Rather than try and
figure out why exactly that is happening, just use a known
good mktemp from coreutils.
 2022-05-02 15:44:55 +03:00
K900 5d02b86888 systemd-in-stage1: include firmware in initrd 
duh.
 2022-05-02 15:41:14 +03:00
github-actions[bot] c01e301153
Merge staging-next into staging 2022-05-02 12:06:41 +00:00
Félix Baylac-Jacqué 20693a1e73
prosody: 0.11.13 -> 0.12.0 
See https://blog.prosody.im/prosody-0.12.0-released for more
informations.

We remove the various lua wrappers introduced by
6799a91843 and
16d0b4a69f. It seems like we don't need
them anymore. I'm not brave enough to dig into the Lua machinery to
see what resolved that. Sorry, you'll have to trust me on that one.

We should probably think about the migration from http_upload to
http_file_share for the NixOS module. It's not trivial, we need to
make sure we don't break the already uploaded URLs.
 2022-05-02 12:43:19 +02:00
Lara 917be9fa32 asterisk: Create symlinks for each config individually 
This commit refactors the way how configuration files are deployed to
the `/etc/asterisk` directory.

The current solution builds a Nix derivation containing all config files
and symlinks it to `/etc/asterisk`. The problem with that approach is
that it is not possible to provide additional configuration that should
not be written to the Nix store, i.e. files containing credentials.

The proposed solution changes the creation of configuration files so
that each configuration file gets symlinked to `/etc/asterisk`
individually so that it becomes possible to provide additional config
files to `/etc/asterisk` as well.
 2022-05-02 10:32:34 +00:00
Robert Hensing e4054fe0a9
Merge pull request #169310 from Xiami2012/zookeeper-jre 
nixos/zookeeper: Take the same JRE we build zookeeper with by default
 2022-05-02 10:51:42 +02:00
Robert Hensing 757278a53c
Merge pull request #170412 from jtojnar/nscd-warning 
nixos/nscd: Fix lib.literalExample deprecation
 2022-05-02 10:46:11 +02:00
github-actions[bot] cd9d1feb58
Merge staging-next into staging 2022-05-02 06:01:51 +00:00
Bernardo Meurer ecfb5500f7
nixos/cloudflare-dyndns: init 2022-05-01 16:50:31 -07:00
github-actions[bot] 677697c12f
Merge staging-next into staging 2022-05-01 18:01:35 +00:00
Luflosi 536a78ecc9
nixos/thefuck: rename variable and move fishInitScript into its own variable 
Renaming the variable from `initScript` to `bashAndZshInitScript` makes it clearer, what it is actually used for.
Moving the fish init script right below the other call to `thefuck --alias` makes it more obvious, when one of them is different in some important way.
 2022-05-01 18:08:36 +02:00
Luflosi 9add6bdfc8
nixos/thefuck: fix programs.thefuck.alias for fish 
This option was previously ignored when using fish as the shell.
 2022-05-01 18:08:36 +02:00
José Romildo 417b1c12b2 lxqt: add maintainers team 2022-05-01 13:03:21 -03:00
Janne Heß bc53ac7753
nixos/systemd-shutdown: Remove unneeded binaries 2022-05-01 17:06:15 +02:00
davidak c60375c5db
Merge pull request #168640 from romildo/upd.enlightenment-team 
enlightenment: add maintainers team
 2022-05-01 16:32:36 +02:00
José Romildo Malaquias 60a652400b
Merge pull request #170508 from romildo/fix.lxqt 
nixos/lxqt: enable libinput
 2022-05-01 11:31:51 -03:00
davidak 84bf8a57c1
Merge pull request #168633 from romildo/upd.lumina-team 
lumina: add maintainers team
 2022-05-01 16:27:40 +02:00
José Romildo 0885172cec nixos/lxqt: enable libinput 2022-05-01 08:55:38 -03:00
github-actions[bot] 676b5fba35
Merge staging-next into staging 2022-05-01 06:01:47 +00:00
davidak ba3762b8be
Merge pull request #170504 from romildo/upd.mate 
nixos/mate: enable libinput
 2022-05-01 06:10:54 +02:00
github-actions[bot] 7bd3b9eff1
Merge staging-next into staging 2022-05-01 00:03:16 +00:00
Bernardo Meurer b29e3bb892
nixos/console: inird -> initrd 2022-04-30 14:43:09 -07:00
Bernardo Meurer 78f6f77962
Merge pull request #169113 from ElvishJerricco/systemd-stage-1-installer-tests 
nixos: Installer tests for systemd stage 1
 2022-04-30 13:18:57 -07:00
Bernardo Meurer 405ce5693d
Merge pull request #171045 from helsinki-systems/feat/systemd-stage-1-qemu 
nixos/*qemu*: Add systemd initrd support
 2022-04-30 13:17:09 -07:00
Janne Heß 007108f04d
nixos/*qemu*: Add systemd initrd support 2022-04-30 20:47:42 +02:00
Bernardo Meurer e1aa795705
Merge pull request #171024 from helsinki-systems/feat/systemd-stage-1-less-binaries 
nixos/systemd-stage-1: Remove unnecessary binaries
 2022-04-30 11:30:43 -07:00
Bernardo Meurer cd7596dff4
Merge pull request #170131 from helsinki-systems/feat/systemd-stage-1-only-keymap 
nixos/console: Allow setting keymap without font
 2022-04-30 11:29:25 -07:00
github-actions[bot] 5db8cea3c9
Merge staging-next into staging 2022-04-30 18:01:49 +00:00
Rick van Schijndel 536528ede8
Merge pull request #170695 from matshch/fix/nvidia-device-minor 
nixos/nvidia: fix /dev/nvidia* devices minors
 2022-04-30 15:34:16 +02:00
Aaron Andersen 213febe39a
Merge pull request #163883 from ngiger/k3b 
nixos/k3b: init
 2022-04-30 09:17:27 -04:00
Janne Heß 0411b51a00
nixos/systemd-stage-1: Remove unnecessary binaries 
We can make the growfs and makefs binaries conditional because we know
if we'll need them. Also move the cryptsetup generator to the luksroot
so it's not included when not needed.

We drop some generators altogether: systemd-getty-generator because we
don't have getty anyway in stage 1, systemd-system-update-generator
because we don't use that logic in NixOS and
systemd-veritysetup-generator because stage 1 has no veritysetup support
(yet) and if it had, we still wouldn't want to include the generator
unconditionally.
 2022-04-30 14:50:02 +02:00
Janne Heß 89ace3967e
nixos/udev: systemd initrd improvements 
First, add the builtin udev rules to /etc/udev/rules.d so they are used.
Then, add all networkd .link units to the initrd. This is done in the
old stage 1 as well so I assume this is needed even when networkd is not
used. I assume this is for things like changing the MAC address.

Also limit the number of udev/lib binaries that is put into the initrd
because the old initrd doesn't use all units either.
 2022-04-30 14:17:29 +02:00
Niklaus Giger 87b4440a60 nixos/k3b: init. Fixes #19154 missing permissions for k3b 2022-04-30 13:18:40 +02:00
Maximilian Bosch 196c877c85
nixos/network-interfaces: remove outdated deprecation information 2022-04-30 12:40:10 +02:00
Janne Heß fa2c9b41d4
nixos/systemd-stage-1: Add initrd secrets support 2022-04-30 11:41:27 +02:00
Janne Heß 18363cad97
nixos/console: Allow setting keymap without font 2022-04-30 11:22:08 +02:00
Sandro Jäckel cecb014d5d
networkmanager-applet: rename from networkmanagerapplet 2022-04-30 02:26:11 +02:00
github-actions[bot] 5f05f984a6
Merge staging-next into staging 2022-04-30 00:02:41 +00:00
Maximilian Bosch 8e42949a24
nixos/nixos-generate-config: use networking.useDHCP by default 
Currently we're still using scripted networking by default. A problem
with scripted networking is that having `useDHCP` on potentially
non-existing interfaces (e.g. an ethernet interface for USB tethering)
can cause the boot to hang.

Closes #107908
 2022-04-30 00:30:47 +02:00
Maximilian Bosch 9c18662612
nixos/networkd: allow RouteMetric for IPv6AcceptRA 
According to `systemd.network(5)` of systemd v249 this is a valid
option.

Fixes evaluation of the wildcard network definitions.
 2022-04-30 00:30:04 +02:00
Maximilian Bosch aa849e1478
nixos/network-interfaces-systemd: actually set catchall-iface if useDHCP = true; 
Previously this wasn't done in the `forEach`-expression for
`cfg.interfaces` and thus `networking.useDHCP` didn't have any effect if
no further interface was statically configured.
 2022-04-30 00:30:03 +02:00
Linus Heckemann d30dbf38b9
nixos/networkd: reimplement useDHCP in a sensible way 2022-04-30 00:30:01 +02:00
Graham Christensen f00109472a
Merge pull request #164185 from alexshpilkin/calibration 
facetimehd: support sensor calibration files
 2022-04-29 15:53:30 -04:00
Guillaume Girol 3ff4432670
Merge pull request #170393 from lostnet/couch322 
couchdb3: 3.2.1 -> 3.2.2
 2022-04-29 19:40:40 +00:00
Sandro fdc0d007bd
Merge pull request #168804 from jansol/pipewire 
pipewire: 0.3.49 -> 0.3.51
 2022-04-29 17:08:13 +02:00
happysalada a4707b645f grafana-mimir: add initial module 2022-04-29 07:23:03 -04:00
Jan Solanti 2b71de4a3d pipewire: 0.3.49 -> 0.3.50 2022-04-29 04:29:12 +03:00
Will Fancher 2e96b64e02
Merge pull request #170123 from ElvishJerricco/systemd-shutdown-ramfs-fixup 
Systemd shutdown ramfs fixup
 2022-04-28 20:17:23 -04:00
Will Fancher 50925651bb zfs: Sync pools on shutdown. 2022-04-28 14:12:16 -04:00
Will Fancher 69d8047516 nixos: Fix up systemd shutdown ramfs 2022-04-28 14:12:14 -04:00
Artem Leshchev 4d7bc6ccc0 nixos/nvidia: fix /dev/nvidia-uvm-tools device minor 2022-04-28 13:55:53 +03:00
Artem Leshchev 73261bdc59 nixos/nvidia: make nvidia-frontend device major constant 
It is assigned by https://www.kernel.org/doc/Documentation/admin-guide/devices.txt
and never changes, so we can skip grep.
 2022-04-28 13:55:53 +03:00
Robert Hensing 527457cadc
Merge pull request #156163 from erdnaxe/galene_hardening 
nixos/galene: systemd unit hardening
 2022-04-28 10:52:00 +02:00
Julien Mourer 55f1c83f5b
hardware: set enableRedistributableFirmware if enableAllFirmware is set (#163014) 
If it works with enableRedistributableFirmware, which is a subset of enableAllFirmware, it should also work with enableAllFirmware.
 2022-04-28 10:30:04 +02:00
Bobby Rong f4f969a484
Merge pull request #170360 from bobby285271/pantheon 
Pantheon 7 updates 2022-04-25
 2022-04-28 12:44:12 +08:00
Artem Leshchev b01be47c87 nixos/nvidia: fix /dev/nvidia* devices minors 
We can't assume that DRI card minor is the same as NVidia GPU device minor,
because some DRI minors could be taken by GPUs of other vendors.

Fixes #87788, #98942.
 2022-04-28 01:18:58 +03:00
Pascal Bach ee385d8364
Merge pull request #170396 from teto/gitlab-description 
services.gitlab-runner: support runner description
 2022-04-27 19:30:26 +02:00
Sandro 54b1753b2a
Merge pull request #170505 from romildo/upd.enlightenment 
nixos/enlightenment: enable libinput
 2022-04-27 18:06:40 +02:00
Florian Klink 9b71167ac0
Merge pull request #87268 from adisbladis/nixos-containers-state-directories 
nixos-container: Use new configuration & state directories
 2022-04-27 15:35:58 +02:00
Artturi fce438aa02
Merge pull request #170462 from Artturin/hpssali 2022-04-27 16:24:16 +03:00
Sandro bf0457694b
Merge pull request #169144 from romildo/upd.lxqt 
lxqt: 1.0.0 -> 1.1.0
 2022-04-27 14:54:54 +02:00
Arnout Engelen 2b85441bb0
Merge pull request #146241 from rgrunbla/wpa_supplicant-fix-writable 
wpa_supplicant: prevent writing non-writable configuration
 2022-04-27 11:35:49 +02:00
adisbladis 3c49151f15 nixos/nixos-containers: Add warning on unsupported state version combo 2022-04-27 18:35:46 +12:00
adisbladis f535d6f45e nixos-container: Use new configuration & state directories 
We need to move NixOS containers somewhere else so these don't clash
with Podman, Skopeo & other container software in the libpod &
cri-o/cri-u/libcontainer ecosystems.

The state directory move is not strictly a requirement but is good for
consistency.
 2022-04-27 18:35:08 +12:00
Bernardo Meurer 80d4480778
sd-image-aarch64: deduplicate cm4 section 2022-04-26 20:23:50 -07:00
Bobby Rong 782683d551
nixos/pantheon: fix outdated wording in docs 2022-04-27 10:18:16 +08:00
Bernardo Meurer 11c1152e0f
sd-image-aarch64: add dtbs for rpi-400 and cm4s 2022-04-26 19:05:24 -07:00
Bernardo Meurer b30105b7c2
ubootRaspberryCM4_64bit: merge with ubootRaspberryPi4_64bit 2022-04-26 19:05:23 -07:00
Bernardo Meurer dcfaae6679
nixos/modules/profiles/all-hardware: add nvme to initrd modules 2022-04-26 15:22:37 -07:00
Bernardo Meurer faf42ffbd0
ubootRaspberryCM4_64bit: init 2022-04-26 15:22:25 -07:00
Bernardo Meurer d1fef1e7c3
sd-image-aarch64: add support for the RaspberryPi CM4 2022-04-26 15:22:24 -07:00
José Romildo 0679095c10 nixos/enlightenment: enable libinput 2022-04-26 18:17:46 -03:00
José Romildo 22b2c47866 nixos/mate: enable libinput 2022-04-26 18:08:47 -03:00
Janne Heß 69d1acda00
nixos/xfs: Fix evaluation (#170471) 2022-04-26 21:43:01 +02:00
Artturin 99b1b47f39 nixos/hpsa: add alternative url for hpssacli 2022-04-26 21:39:04 +03:00
Jan Tojnar 6b738bce80 nixos/nscd: Fix lib.literalExample deprecation 
The NixOS evaluation would complain:

trace: warning: literalExample is deprecated, use literalExpression instead, or use literalDocBook for a non-Nix description.
 2022-04-26 14:06:52 +02:00
Xiami b43999bea0
nixos/zookeeper: Remove .passthru as suggested 2022-04-26 18:44:37 +08:00
Matthieu Coudron c1e318d0c5 services.gitlab-runner: support runner description 
The description for the runner in the UI is by default sthg like
"npm_nixos_d0544ed48909" i.e., the name of the attribute.

I wanted to have a more user-friendly description and added a
description to the service.
Seems like gitlab-runner doesn't like having both fields set:
"Cannot use two forms of the same flag: description name"
so I used one or the other.
 2022-04-26 11:43:46 +02:00
Will 14fca0ca6f couchdb3: 3.2.1 -> 3.2.2 2022-04-26 09:02:36 +00:00
Rick van Schijndel 4586388f85
Merge pull request #170320 from andersk/negated-version 
treewide: Simplify negated uses of versionAtLeast, versionOlder
 2022-04-26 07:50:15 +02:00
Bernardo Meurer e8e87beee7
Merge pull request #169047 from helsinki-systems/feat/systemd-stage-1-filesystems 
nixos/systemd-stage-1: Fixup most filesystem tasks
 2022-04-25 15:02:29 -07:00
Bernardo Meurer 59aa6e4988
Merge pull request #170099 from helsinki-systems/feat/systemd-stage-1-no-random-seed 
nixos/systemd-stage-1: Get rid of random-seed
 2022-04-25 14:56:45 -07:00
Bernardo Meurer 9f26ab61e5
Merge pull request #170134 from helsinki-systems/feat/systemd-stage-1-also-storepaths 
nixos/stage-1-systemd: Also accept packages as store paths
 2022-04-25 14:53:24 -07:00
Anders Kaseorg 6920d8ca42 treewide: Simplify negated uses of versionAtLeast, versionOlder 
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
 2022-04-25 13:35:24 -07:00
Robert Hensing ecc66a886e
Merge pull request #168945 from Lassulus/kexec-tests 
nixosTests.kexec: better test if we are in a new system
 2022-04-25 17:17:32 +02:00
David Anderson c9a1647ade nixos/tailscale: use systemctl restart during activation. 
This avoids the scenario where you activate a new config over Tailscale,
and a long delay between the "stop services" and "start services" phases
of the activation script lead to your terminal freezing for tens of
seconds, until tailscaled finally gets started again and the session
recovers.

Per the documentation of stopIfChanged, this is only safe to do if the
service definition is robust to stopping the old process using the new
service definition. As the maintainer of the upstream systemd unit, I
can confirm that Tailscale is robust to this scenario: it has to be
in order to work right on several other distros that just do
unpack-then-restart, rather than the more complex stop-unpack-start
dance.

Signed-off-by: David Anderson <dave@natulte.net>
 2022-04-24 23:31:35 -07:00
Vonfry 2474c8c89a
nixos/fcitx5: add the setting of RIME_DATA_DIR and options for rime-data 2022-04-25 13:39:19 +08:00
Sandro 93da45162d
Merge pull request #166321 from wentasah/usbrelay 2022-04-25 02:23:19 +02:00
Janne Heß 45494fab68
nixos/systemd-stage-1: Get rid of random-seed 
This is not used at all since the unit has
ConditionPathExists=!/etc/initrd-release
 2022-04-24 21:59:59 +01:00
Linus Heckemann fc1248c589
Merge pull request #169932 from Ma27/nextcloud-profile-setting 
nixos/nextcloud: make `profile.enabled` configurable
 2022-04-24 22:50:05 +02:00
Janne Heß acca3f4b81
nixos/plymouth: Add systemd stage 1 support 2022-04-24 21:47:49 +01:00
Janne Heß dc4b2812e4
nixos/stage-1-systemd: Also accept packages as store paths 2022-04-24 21:47:34 +01:00
Jack O'Sullivan 568cb2d6ab nixos/systemd/nspawn: Add missing nspawn unit options 
A few options have been added to the `systemd.nspawn` unit type are
missing from `systemd.nspawn.*.*Config`. See systemd.nspawn(5).
 2022-04-24 21:20:59 +01:00
Janne Heß acca69992c
nixos/btrfs: Add systemd stage 1 support 2022-04-24 16:32:54 +02:00
Janne Heß 160fb93fdc
nixos/filesystems: Make most simple filesystems compatible with systemd 
This includes disabling some features in the initrd by default, this is
only done when the new initrd is used. Namely, ext and bcache are
disabled by default. bcache gets an own enable option while ext is
detected like any other filesystem.
 2022-04-24 16:32:34 +02:00
Robin Gloster 0d8c3cf64b
Merge pull request #164650 from mayflower/jira-home 
nixos/jira: set home for jira user
 2022-04-24 14:27:33 +02:00
Linus Heckemann c85bc19cdf
Merge pull request #169303 from emccorson/fix/add-copy-system-config 
nixos/tools: add copySystemConfiguration to configuration file template
 2022-04-24 00:01:00 +02:00
Maximilian Bosch 9931c4a407
nixos/nextcloud: make profile.enabled configurable 
I recently learned that Nextcloud 23's new profile feature — basically a
way for users to share personal contact details — has a problematic
default setting, profile data is shared with **everyone** by default.

This means that an unauthenticated user can access personal information
by accessing `nextcloud.tld/u/user.name`.

The announcement of v23 states[1]:

> We go a step further and introduce a profile page. Here you can put a
> description of yourself, show links to, for example, social media, what
> department you are in and information on how to contact you. All these
> are of course entirely optional and you can choose what is visible to who!
> The profile and user status are accessible also from our mobile and desktop clients.

It's not mentioned that by default you share personal information[3] with
everyone and personally I think that's somewhat problematic.

To work around that, I decided to add an option for the recently added[2]
and even set it to `false` by default to make an explicit opt-in for
that feature.

[1] https://nextcloud.com/blog/nextcloud-hub-2-brings-major-overhaul-introducing-nextcloud-office-p2p-backup-and-more/
[2] https://github.com/nextcloud/server/pull/31624/files
[3] By default, this affects the following properties:
    * About
    * Full name
    * Headline
    * Organisation
    * Profile picture
    * Role
    * Twitter
    * Website
    Phone, Address and Email are not affected and only shown to
    authenticated users by default.
 2022-04-23 13:31:50 +02:00
Jonas Heinrich 24b53785cc nixos/create_ap: add module 2022-04-23 07:17:44 -04:00
Bernardo Meurer b23ec41f14
Merge pull request #168554 from helsinki-systems/feat/systemd-stage-1-luks 
nixos/systemd-stage-1: Add basic LUKS support
 2022-04-22 12:37:25 -07:00
Jan Tojnar be9e3fdf7d
Merge pull request #169553 from jtojnar/gnome-default-dark-background 
nixos/gnome: Add the NixOS background metadata
 2022-04-21 21:36:19 +02:00
Bernardo Meurer b57126a16e
Merge pull request #169477 from drupol/nix/add-2.8.0 
nixVersions.stable: 2.7.0 -> 2.8.0
 2022-04-21 11:18:25 -07:00
Jan Tojnar cd2a6cd9cb nixos/gnome: Add the NixOS background metadata 
This is needed to have it listed in the Control Center.
 2022-04-21 20:16:41 +02:00
Jan Tojnar 818ac0c9ae Revert "nixos/gnome3: install nixos wallpapers" 
There is no need to install them when they will not be picked up
by the Appearance panel of GNOME Control Center without
a XML metadata file anyway.

They will be pulled into the closure via overrides
so that is not a concern either.

This reverts commit 7f3bc5b8fa.
This reverts commit fa607bc939.
 2022-04-21 20:00:29 +02:00
Artturi 98ff3e401c
Merge pull request #165892 from tpwrules/fix-initrd-dirlinks 
make-initrd: fix reproducibility problems
 2022-04-21 20:51:35 +03:00
Pol Dellaiera b555b64346
nixVersions.stable: 2.7.0 -> 2.8.0 2022-04-21 19:43:40 +02:00
Pascal Bach d9309f43b3
Merge pull request #155424 from tobim/nixos/snapserver-firewall 
nixos/snapserver: don't open ports by default
 2022-04-21 19:40:20 +02:00
Jörg Thalheim aa446f8d3c
Merge pull request #169437 from Mic92/consul 
nixos/consul: allow ipv6-only
 2022-04-21 07:22:02 +01:00
Sandro 786f0c486b
Merge pull request #159103 from pacien/nixos-taskserver-firewall-no-port-open 
nixos/taskserver: do not open firewall port implicitly, port helper to Python 3
 2022-04-21 01:56:36 +02:00
Tobias Mayer 0d49836dec
nixos/snapserver: don't open ports by default 2022-04-20 23:25:28 +02:00
Lassulus b424ce3fd2
Merge pull request #161587 from helsinki-systems/feat/bird2-reload-trigger 
nixos/bird: reloadIfChanged -> reloadTriggers
 2022-04-20 18:24:05 +01:00
Jörg Thalheim 325a525467
nixos/consul: allow ipv6-only 2022-04-20 17:32:06 +02:00
Lassulus c29e523824
Merge pull request #163030 from newAM/github-runner-harden 
nixos/github-runner: systemd service hardening
 2022-04-20 16:30:23 +01:00
Linus Heckemann 5e513b4b24
Merge pull request #167324 from alyssais/mailman-postfix 
nixos/{postfix,mailman}: fix ordering between services
 2022-04-20 16:34:43 +02:00
Alyssa Ross 572131c6a9
nixos/mailman: ensure Postfix is started after Mailman 
On first run, Postfix will refuse to start if it's started before
Mailman is up, because it'll try to read the map files generated
Mailman the first time it's started, and they won't exist yet.  To fix
this, make sure Postfix isn't started until after Mailman is up if
they're both activated at the same time.
 2022-04-20 13:17:28 +00:00
Janne Heß 4f3a868e59
Merge pull request #169049 from helsinki-systems/feat/systemd-stage-1-amdgpu-pro 
nixos/amdgpu-pro: Add support for systemd stage 1
 2022-04-20 11:36:53 +02:00
Bernardo Meurer 97315af110
Merge pull request #169206 from nbraud/nixpkgs/kmscon/fonts 
nixos/kmscon: Add fonts option
 2022-04-19 12:57:26 -07:00
Jonas Heinrich 047473aa32 nixos/nextcloud: Support create database locally 2022-04-19 14:35:59 -04:00
Xiami 1637e039d2
nixos/zookeeper: Take the same JRE we build zookeeper with 2022-04-19 18:56:00 +08:00
Eric Corson 0edfd89d6e nixos/tools: add copySystemConfiguration to configuration file template 2022-04-19 10:53:47 +01:00
ajs124 3fedfb5f8a
Merge pull request #110870 from asymmetric/doc/prom-node-exp 
docs: modules/prometheus: finish exporter setup
 2022-04-18 22:54:01 +01:00
Lassulus cae8c76a9b
Merge pull request #163130 from xlambein/master 
pipewire-media-session: changed options to take defaults from JSON
 2022-04-18 19:55:31 +01:00
lassulus e097044b92 nixos/kexec-boot: auto-detect the right kernel name to support aarch64 2022-04-18 20:34:18 +02:00
Michal Sojka 6a5b839069 usbrelay: init at 0.9 2022-04-18 19:02:41 +02:00
pennae 529ce4161a
Merge pull request #169176 from scvalex/fix-nbd-section-ordering 
nixos/nbd: fix nbd-server config section ordering
 2022-04-18 16:55:45 +00:00
Janne Heß a719f5fb9d
Merge pull request #168965 from helsinki-systems/feat/systemd-stage-1-hostid 
nixos/stage-1-init: Set host id for ZFS
 2022-04-18 18:31:18 +02:00
Alexandru Scvortov 4646491175 nixos/nbd: fix nbd-server config section ordering 
Closes #169103
 2022-04-18 17:28:09 +01:00
Shawn8901 7f01ff7822 nixos/prometheus: use pkgs.formats.json.generate to write config file 
The old way of writing the file omited qoutes within strings which are needed by some configurations like federations.
The quotes got lost when `echo`ing the content via `echo '${builtins.toJSON x}'`.
The pkgs.formats.json does handle that race condition properly, so this commit switches the writing to that helper.
 2022-04-18 18:09:03 +02:00
nicoo 11bbb28f8a nixos/kmscon: Add fonts option 2022-04-18 15:56:34 +02:00
Martin Weinelt df6fa84709 nixos/nscd: fix manual build 2022-04-18 23:50:46 +10:00
Janne Heß 1bea49d3bf
nixos/stage-1-systemd: Add LUKS w/ password support 2022-04-18 11:42:45 +01:00
Florian Klink 52e346d6dd
Merge pull request #168774 from helsinki-systems/feat/systemd-shutdown 
nixos/systemd: Properly shut down the system
 2022-04-18 09:52:07 +02:00
John Ericson b6f5bf2cf0
Merge pull request #124019 from petabyteboy/feature/unscd2 
unscd: init at 0.53
 2022-04-17 22:40:53 -04:00
José Romildo 2aa95b9fec lxqt.xdg-desktop-portal-lxqt: init at 0.2.0 2022-04-17 22:08:22 -03:00
Artturi 063155ae92
Merge pull request #169106 from wahjava/fix-headscale-typo 
headscale: Fix typo as per systemd.exec(5)
 2022-04-18 02:19:15 +03:00
Madoura b18031c413
treewide/meta: Remove chiiruno and replace with Madouura (#169096) 
* maintainers: remove chiiruno

* nixos/zeronet.nix: replace chiiruno with Madouura

* nixos/hydron: replace chiiruno with Madouura

* nixos/tests/bcachefs: replace chiiruno with Madouura

* lutris: replace chiiruno with Madouura

* qtchan: replace chiiruno with Madouura

* tinygo: replace chiiruno with Madouura

* vlang: replace chiiruno with Madouura

* merkletools: replace chiiruno with Madouura

* easyjson: replace chiiruno with Madouura

* quicktemplate: replace chiiruno with Madouura

* statik: replace chiiruno with Madouura

* dumb: replace chiiruno with Madouura

* sndio: replace chiiruno with Madouura

* hydron: replace chiiruno with Madouura

* edid-decode-unstable: replace chiiruno with Madouura

* tewisay: replace chiiruno with Madouura

* svt-av1: replace chiiruno with Madouura
 2022-04-18 02:13:36 +03:00
Thiago Kenji Okada 353ba1b6e1
Merge pull request #127367 from oxalica/fix/dm-only-autostart 
nixos/desktop-manager/none: add option to run XDG autostart files
 2022-04-17 23:42:22 +01:00
Will Fancher f3f2e55e59 nixos: Fix channel copying in installer tests with systemd stage 1 2022-04-17 18:31:35 -04:00
Will Fancher 9ee5d61a16 nixos: Installer tests for systemd stage 1 2022-04-17 18:31:35 -04:00
Will Fancher 9e8b463cce nixos: Handle panic_on_fail in systemd stage 1 2022-04-17 18:31:35 -04:00
Ashish SHUKLA 4a973081b3
headscale: Fix typo as per systemd.exec(5) 2022-04-18 02:00:29 +05:30
pennae 04b5d464ba
Merge pull request #169029 from LeSuisse/nixos-tailscale-cert-uid 
nixos/tailscale: allow to set `TS_PERMIT_CERT_UID` env variable
 2022-04-17 19:51:31 +00:00
Janne Heß 69c18b0eab
Merge pull request #167051 from pacien/ssmtp-removal 
ssmtp: drop unmaintained program and module
 2022-04-17 21:09:14 +02:00
github-actions[bot] f6bedc13d1
Merge master into staging-next 2022-04-17 18:01:03 +00:00
oxalica 3855e83c49 nixos/fcitx5: remove systemd service via XDG autostart files 2022-04-18 01:14:00 +08:00
oxalica 45ba086ea5 nixos/desktop-manager/none: add option to run XDG autostart files 
`fcitx5` and `service.earlyoom` rely on use XDG autostart files to start.
But for X session with only window manager and no desktop manager
(`none` is used), no one can start them.

This options is added to run these autostart files for sessions without
desktop manager to make other services just work.
 2022-04-18 01:13:59 +08:00
Silvan Mosberger 4de6cbc904
Merge pull request #168551 from infinisil/syncplay-no-gui 
syncplay: Allow disabling GUI
 2022-04-17 19:05:29 +02:00
Guillaume Girol f66a86b3a0
Merge pull request #169052 from symphorien/nvidia_empty_default 
nixos/nvidia: fix type of bus ID option to accept empty string
 2022-04-17 14:32:59 +00:00
Martin Weinelt 5bd659fb4d
Merge pull request #167866 from NickCao/dendrite-limit 2022-04-17 16:01:34 +02:00
Janne Heß 0a60a12fae
nixos/amdgpu-pro: Add support for systemd stage 1 2022-04-17 14:00:02 +01:00
github-actions[bot] 0b8575626a
Merge master into staging-next 2022-04-17 12:01:11 +00:00
Guillaume Girol 5f95bff481 nixos/nvidia: fix type of bus ID option to accept empty string 2022-04-17 12:00:00 +00:00
Guillaume Girol d5438d2b95
Merge pull request #140539 from polykernel/bus-id-constraints 
hardware/nvidia: stricter constraints on PCI bus-id.
 2022-04-17 11:10:39 +00:00
Thomas Gerbet f89894e2e3 nixos/tailscale: allow to set TS_PERMIT_CERT_UID env variable 
This setting was introduced with Tailscale 1.22.0, see
https://github.com/tailscale/tailscale/releases/tag/v1.22.0

Co-authored-by: pennae <github@quasiparticle.net>
 2022-04-17 12:13:24 +02:00
pennae 6a289abddd
Merge pull request #169006 from SuperSandro2000/specialisation 
nixos/specialisation: fix curly brackets
 2022-04-17 08:02:12 +00:00
github-actions[bot] deb60260a7
Merge master into staging-next 2022-04-17 06:01:07 +00:00
Sandro b4e7303ddf
nixos/specialisation: fix curly brackets 2022-04-17 05:48:33 +02:00
Ryan Lahfa b94a4c2270
nixos/mininet: telnet → inetutils 
This fixes the usage of mininet on NixOS due to the replacement of the telnet package by inetutils.
 2022-04-17 02:46:33 +02:00
github-actions[bot] 18ee7a21b1
Merge master into staging-next 2022-04-17 00:02:19 +00:00
Graham Christensen d65eff4fb6
Merge pull request #167902 from DeterminateSystems/openstack-zfs-cleanup 
openstack-image: init, make-single-disk-zfs-image: init
 2022-04-16 19:44:53 -04:00
pacien 68128e7b7e nixos/nagios: replace ssmtp package use with msmtp 
The ssmtp program is not maintained and is being removed.

GitHub: see https://github.com/NixOS/nixpkgs/issues/105710
 2022-04-17 00:44:50 +02:00
pacien cfc763bf36 nixos/ssmtp: drop module 
The ssmtp program is not maintained and is being removed.

GitHub: see https://github.com/NixOS/nixpkgs/issues/105710
 2022-04-17 00:44:50 +02:00
Thiago Kenji Okada 99b20f5580
Merge pull request #107957 from tex/nixos/auto-upgrade 
nixos/auto-upgrade: add persistent option
 2022-04-16 23:06:17 +01:00
Martin Weinelt fa1bb283d8 Merge remote-tracking branch 'origin/master' into staging-next 2022-04-16 23:14:55 +02:00
Sandro 6df0dae4f9
Merge pull request #118387 from raboof/document-how-to-disable-nss 
Improved error message on disabling NSS modules when disabling nscd
 2022-04-16 22:55:40 +02:00
Janne Heß 3396c96e4b
nixos/stage-1-init: Set host id for ZFS 2022-04-16 21:32:18 +01:00
Janne Heß 30a00c29c4
nixos/systemd: Properly shut down the system 2022-04-16 21:17:36 +01:00
Janne Heß 031b95e587
Merge pull request #168814 from helsinki-systems/feat/systemd-stage-1-pass-vars 
nixos/systemd-stage-1: Pass more vars to the builder
 2022-04-16 22:02:26 +02:00
Janne Heß b9bf28fd70
nixos/stage-1-init: Pass all parameters to the builder 
This is for compatiblity with the old builder to get compat with uboot
support and to prepend microcode updates to the initrd
 2022-04-16 20:36:18 +01:00
Janne Heß 9c70501b37
Merge pull request #168793 from helsinki-systems/feat/systemd-stage-1-mdraid-merge 
nixos/stage-1-init: Merge mdraid module into swraid
 2022-04-16 21:34:38 +02:00
polykernel 614b54d9b0 hardware/nvidia: stricter constraints on PCI bus-id. 
The current type for the busId options are too relaxed, a stricter
constraint should be imposed to guard against typos which result
in Xorg unable to start.

This commit restricts the type to adhere to the B/D/F notation[1] for
addressing devices as expected by the module option.

[1] - https://wiki.osdev.org/PCI#Configuration_Space_Access_Mechanism_.231
 2022-04-16 15:25:37 -04:00
Milan Pässler 517c17420f nixos/nscd: add package option 2022-04-16 14:47:47 -04:00
Milan Svoboda a5fb565bf5 nixos/auto-upgrade: add persistent option 2022-04-16 19:27:21 +02:00
github-actions[bot] 6be56bfc2e
Merge master into staging-next 2022-04-16 12:01:10 +00:00
Luflosi faad370edc nixos/ipfs: fix the services.ipfs.autoMigrate option 
Apparently this was never properly tested and never worked. When the IPFS repo needs upgrading, the first call to ipfs, which is run before running the migration, fails with the error message "Error: ipfs repo needs migration".
To fix this, simply run the migration before any `ipfs config` calls but don't run it when `dataDir` is empty and we need to call `ipfs init`.
Writing a NixOS test for this would require keeping at least two versions of IPFS in Nixpkgs, which we don't currently do.
 2022-04-16 07:38:13 -04:00
Luflosi 8a5e51525d nixos/ipfs: add Luflosi as maintainer 2022-04-16 07:38:13 -04:00
Luflosi 6b2eca8d56 nixos/ipfs: remove unused code 
This code became obsolete with 4044d81d5c, just a couple days after it was introduced.
 2022-04-16 07:38:13 -04:00
Nick Cao 70d0e24568 nixos/logrotate: use packages from buildPackages in configuration checkPhase, fixing cross compilation 2022-04-16 10:22:39 +02:00
github-actions[bot] c58a108aaa
Merge master into staging-next 2022-04-16 06:01:08 +00:00
Mario Rodas 9bad452131
Merge pull request #129304 from yisraeldov/patch-1 
programs.chromium: fix policies for brave
 2022-04-15 22:08:43 -05:00
Nick Cao b79e0a0e06
nixos/dendrite: set LimitNOFILE to 65535 2022-04-16 10:49:01 +08:00
Martin Weinelt 2bd8fc9378 Merge remote-tracking branch 'origin/master' into staging-next 2022-04-16 00:52:15 +02:00
Luflosi 17a406f28a
nixos/matrix-synapse: fix typo in mkRemovedOptionModule replacementInstructions 
The correct capitalisation is lower-case here.
 2022-04-15 22:52:29 +02:00
Lassulus 2bd0053d94
Merge pull request #162509 from mkg20001/haste 
haste-server: init at 3dcc43578b99dbafac35dece9d774ff2af39e8d0
 2022-04-15 21:08:27 +01:00
Kim Lindberger ce2895263d
Merge pull request #167378 from talyz/keycloak-quarkus 
keycloak: Switch to the new Quarkus version of Keycloak
 2022-04-15 22:02:42 +02:00
Janne Heß 01bc138a8e
nixos/stage-1-init: Merge mdraid module into swraid 2022-04-15 19:57:16 +01:00
github-actions[bot] 40f288fa90
Merge master into staging-next 2022-04-15 18:01:30 +00:00
Michele Guerini Rocco 68a102a2e4
Merge pull request #168764 from rnhmjoj/pr-pdns-ncdns 
nixos/ncdns: listen on IPv6 by default
 2022-04-15 17:34:57 +02:00
Martin Weinelt a7fc5aaa76 Merge remote-tracking branch 'origin/master' into staging-next 2022-04-15 13:30:48 +02:00
Michele Guerini Rocco 09f816e976
Merge pull request #156401 from TLATER/tlater/gitea-hide-secrets 
nixos/gitea: Prevent secrets from being exposed at ExecStart time
 2022-04-15 10:26:12 +02:00
Thomas Watson 7fd6cea253 make-initrd: fix reproducibility problems 
cpio includes the number of directory hard links in archives it creates.
Some filesystems, like btrfs, do not count directory hard links the same
way as more common filesystems like ext4 or tmpfs, so archives built
when /tmp is on such a filesystem do not reproduce. This patch replaces
cpio with bsdtar, which does not have this issue. The specific
invocation is from this page:
https://reproducible-builds.org/docs/archives/
 2022-04-14 19:06:30 -05:00
github-actions[bot] 1c0229dbfd
Merge staging-next into staging 2022-04-15 00:03:21 +00:00
Janne Heß 0efb6720a4
nixos/console: Fix attribute path to fix eval 2022-04-14 22:07:41 +01:00
Lassulus 15b5c29a41
Merge pull request #168600 from helsinki-systems/feat/systemd-stage-1-keymap 
nixos/stage-1-systemd: Add keymap support
 2022-04-14 21:50:52 +01:00
rnhmjoj d39a10daa8
nixos/ncdns: listen on IPv6 by default 2022-04-14 21:07:15 +02:00
github-actions[bot] 795332a20e
Merge staging-next into staging 2022-04-14 18:01:48 +00:00
Michele Guerini Rocco e674ea6956
Merge pull request #168535 from rnhmjoj/pr-pdns-nixos 
nixos/pdns-recursor: update default values
 2022-04-14 18:02:29 +02:00
Janne Heß 289f38a65b
Merge pull request #168301 from helsinki-systems/feat/systemd-stage-1-mdadm 
nixos/stage-1-systemd: Add mdraid support (+ test)
 2022-04-14 17:56:36 +02:00
rnhmjoj fd480f55df
nixos/pdns-recursor: update default values 
1. Update the default values of several addresses-related settings
   that have been changed by upstream.

2. Make `dns.address` take multiple addresses. This is needed
   for dual stack, now working by default.
 2022-04-14 17:31:16 +02:00
José Romildo 8773488cc8 enlightenment: add maintainers team 2022-04-14 11:28:21 -03:00
Florian Klink e97fc37e55
Merge pull request #161253 from flokli/kexec-boot 
nixos/installer: add kexec-boot
 2022-04-14 15:30:30 +02:00
José Romildo e132736d0d lumina: add maintainers team 2022-04-14 10:27:47 -03:00
github-actions[bot] 999a16ca63
Merge staging-next into staging 2022-04-14 12:02:14 +00:00
Janne Heß dda7e9e3ee
nixos/stage-1-systemd: Add mdraid support (+ test) 2022-04-14 11:39:57 +01:00
Janne Heß 0581d31bf9
Merge pull request #167393 from iblech/patch-docs-cc 
nixos-rebuild, switch-to-configuration: document and protect against cross compilation subtlety
 2022-04-14 12:30:39 +02:00
Janne Heß 6d6c1c341c
nixos/stage-1-systemd: Add keymap support 
Makes my life a lot easier with my non-american keyboard layout
 2022-04-14 10:25:04 +01:00
Lassulus 7392416a53
Merge pull request #168302 from helsinki-systems/feat/systemd-stage-1-lvm 
nixos/stage-1-systemd: Add LVM2 support (+ test)
 2022-04-14 09:52:24 +01:00
Janne Heß cb1624c130
Merge pull request #168477 from helsinki-systems/feat/systemd-stage-1-hibernation 
nixos/stage-1-systemd: Implement and test hibernation
 2022-04-14 10:15:28 +02:00
Vladimír Čunát d5d94127fd
Merge branch 'staging-next' into staging 
Minor conflicts; I hope I didn't mess up:
	pkgs/development/tools/misc/binutils/default.nix
	pkgs/games/openjk/default.nix
 2022-04-14 09:53:21 +02:00
Jan Tojnar 5db9253633 nixos/desktop-managers: Fix eval 
nixos/lib/utils.nix is actually passed as `utils` argument to modules
so https://github.com/NixOS/nixpkgs/pull/168194 broke the eval.

Fixes: https://github.com/NixOS/nixpkgs/issues/168569
 2022-04-14 06:53:08 +02:00
Thomas Watson 0931014baf iso-image: slim down UEFI El Torito image 
UEFI firmware does not have to be able to read ISO9660 filesystems, so
the El Torito mechanism provides a way to specify an embedded FAT32
image which contains files the UEFI firmware itself must be able to
read, such as UEFI executables. Once GRUB starts and reads its
configuration, it can access the ISO9660 filesystem to load other files.

This change removes the unused kernel, initrd, and GRUB font files from
the El Torito image, but keeps the GRUB configuration and UEFI
executables. These files have been present since EFI support was
originally introduced in commit 097c656. Other distribution ISOs, such
as Ubuntu 20.04, Fedora 35, and Windows 10 work this way too. This saves
24MiB on x86_64 and 61MiB on aarch64 ISOs.
 2022-04-13 20:26:11 -05:00
Janne Heß aeb75b3b69
nixos/stage-1-systemd: Implement hibernation + test 2022-04-13 23:02:13 +01:00
Janne Heß ffb320378b
nixos/stage-1-systemd: Fix booting grub tests 2022-04-13 23:02:10 +01:00
Janne Heß 2633e82e1a
nixos/stage-1-systemd: Add LVM2 support 2022-04-13 23:00:19 +01:00
Silvan Mosberger bf123996f9 nixos/syncplay: Switch to version without GUI 2022-04-13 23:58:51 +02:00
Jan Tojnar 7eb14b532a nixos/gnome: set default wallpaper for dark mode as well 
GNOME 42 needs two wallpaper pictures – for the default (light)
colour scheme and for the dark one. Because we are clearing out
the paths in `gsettings-desktop-schemas` to prevent closure
from bloating, we need to set them in the NixOS module.

Since the wallpaper for the default colour scheme is dark,
will relegate it to the dark colour scheme and switch
to a light blue variant for the default colour scheme.
That one has inverted roundel for the NixOS logo but
it is the only light-ish background that has the logo
of the same size and placing as the dark wallpaper.
 2022-04-13 21:29:51 +02:00
Thiago Kenji Okada 3a570f57a1
Merge pull request #167775 from otavio/topic/improve-shellhub-module 
nixos: shellhub-agent: support more options
 2022-04-13 19:56:14 +01:00
Thiago Kenji Okada f1d21bed4d
Merge pull request #168196 from lucasew/fix/xfce-screensaver 
nixos/xfce4: option to disable xfce4-screensaver
 2022-04-13 14:35:49 +01:00
lucasew e76aa74c28 nixos/xfce: option to disable xfce4-screensaver 
Signed-off-by: lucasew <lucas59356@gmail.com>
 2022-04-13 09:13:03 -03:00
Silvan Mosberger 398973f7eb
Merge pull request #168292 from whentze/cockroach-module-improvements 
nixos/cockroachdb: add `extraArgs` and properly escape systemd exec args
 2022-04-13 13:48:17 +02:00
Florian Klink 8ea2f75b72 nixos/kexec-boot: use dirname of script to resolve bzImage and initrd.gz 
This will allow invoking the `kexec-boot` script without `cd`-ing into
its folder first.
 2022-04-13 13:26:04 +02:00
Florian Klink 366c8be2ad nixos/installer: add kexec-boot 
This module exposes a config.system.build.kexecBoot attribute,
which returns a directory with kernel, initrd and a shell script
running the necessary kexec commands.

It's meant to be scp'ed to a machine with working ssh and kexec binary
installed.

This is useful for (cloud) providers where you can't boot a custom image, but
get some Debian or Ubuntu installation.
 2022-04-13 13:25:22 +02:00
Sandro a39694b41f
Merge pull request #168194 from SuperSandro2000/xserver-excludePackages 
Xserver exclude packages
 2022-04-13 11:37:32 +02:00
Sandro d8cec85ca6
Merge pull request #140607 from jkarlson/terminfo 2022-04-13 11:15:23 +02:00
Emil Karlson a03b332b81 nixos/terminfo: add enableAllTerminfo option 
Add an option to install all .terminfo packages, normally this should
add no runtime bloat, if caches are used.
 2022-04-13 10:04:31 +03:00
Martin Weinelt 2731137d12
Merge pull request #168288 from erikarvstedt/paperless-ngx 2022-04-12 22:10:52 +02:00
Lassulus 65cc198539
Merge pull request #167349 from helsinki-systems/feat/udev-systemd-stage-1 
nixos/udev: Add systemd stage 1 support
 2022-04-12 21:02:52 +01:00
Linus Heckemann 0acfc5ed6e
Merge pull request #167323 from alyssais/mailman-ext_dir 
nixos/mailman: remove obsolete setting
 2022-04-12 21:27:27 +02:00
Janne Heß 7024b4e5e3
nixos/udev: Put all initrd options into a namespace 2022-04-12 20:06:13 +01:00
Erik Arvstedt 0977227b86
nixos/paperless-ng: rename to paperless, use paperless-ngx package 
Use this opportunity to rename `paperless-(ng)-server` to `paperless-scheduler`.
This follows the naming scheme in the paperless repo and docs.
 2022-04-12 18:15:44 +02:00
Erik Arvstedt 46c3331384
nixos/paperless-ng: simplify redis logic 
- Rename `hasCustomRedis` -> `enableRedis`
- Extract var `redisServer`
 2022-04-12 18:06:34 +02:00
talyz ed30d3b02f
keycloak: Switch to the new Quarkus version of Keycloak 
With version 17 of Keycloak, the Wildfly based distribution was
deprecated in favor of the one based on Quarkus. The difference in
configuration is massive and to accommodate it, both the package and
module had to be rewritten.
 2022-04-12 13:42:54 +02:00
Kim Lindberger 9d12de1ab7
Merge pull request #165481 from talyz/discourse-2.9.0.beta3 
discourse: 2.9.0.beta1 -> 2.9.0.beta3
 2022-04-12 10:38:16 +02:00
Wanja Hentze dccd5a44d1
nixos/cockroachdb: use escapeSystemdExecArgs for ExecStart args 
Co-authored-by: pennae <82953136+pennae@users.noreply.github.com>
 2022-04-12 10:34:56 +02:00
Wanja Hentze d215163ff9
nixos/cockroachdb: add extraArgs option 
There are a bunch of args to `cockroach start` that simply can not be set
given the current set of options, so this escape hatch enables them.
 2022-04-12 10:34:55 +02:00
Lassulus 807b226542
Merge pull request #162777 from amarshall/prom-deprecated-opt 
nixos/prometheus: Remove upstream-deprecated alertManagerTimeout
 2022-04-12 09:07:51 +01:00
Andrew Marshall 3bbfc7849e nixos/prometheus: Remove upstream-deprecated alertManagerTimeout 
When started, Prometheus prints:

> The flag --alertmanager.timeout has no effect and will be removed in
> the future.

See also
2316062d4e
 2022-04-11 23:37:33 -04:00
Lassulus c0139fe5c3
Merge pull request #167168 from helsinki-systems/feat/systemd-stage-1-proper-handover 
nixos/stage-1-systemd: Handover between the systemds directly
 2022-04-11 22:26:11 +01:00
Erik Arvstedt 69319ee4a6
nixos/paperless-ng: fix /proc access for service 
This allows django-q to set the number of workers according to the CPU
core count and to show memory stats via `manage.py qmonitor`.
This also fixes a non-critical psutil error in paperless-ng-server.
 2022-04-11 22:46:44 +02:00
Erik Arvstedt 308c4bf0f7
nixos/paperless-ng: minor improvments 
Service:
- Fix misleading comment:
  We could in fact implement password copying as a preStart script by
  amending BindReadOnlyPaths, but adding an extra service is simpler.

Test:
- Add more detailed subtest names
- Simplify date check
 2022-04-11 22:46:43 +02:00
Izorkin e87240e216 nixos/nginx: add extraParameters to http3 protocol 2022-04-11 22:33:12 +02:00
Izorkin c508da303b nixos/nginx: add reuseport option 2022-04-11 22:33:12 +02:00
Izorkin 660a36f173 nixos/nginx: fix http3 configuration 2022-04-11 22:33:12 +02:00
Janne Heß 3df2691e6b
nixos/stage-1-systemd: Handover between the systemds directly 2022-04-11 20:04:33 +01:00
Janne Heß fb44ecd129
nixos/udev: Add systemd stage 1 support 2022-04-11 19:43:26 +01:00
Sandro Jäckel 28539842d8
nixos/utils: move removePackagesByName to here from gnome 2022-04-11 15:42:49 +02:00
Lassulus ace8357011
Merge pull request #143878 from Izorkin/init-nifi 
nifi: init at 1.16.0
 2022-04-11 14:08:29 +01:00
Alyssa Ross 46a3a7b9a2 nixos/udev: remove rule for kqemu 
kqemu was removed from Nixpkgs in 2013 in 181dc4032d ("Remove the old
KQEMU accelerator module"), so it should be safe to drop this rule
now.
 2022-04-11 12:17:03 +00:00
Federico Beffa 9fc01af1cc nixos/users-group: Add 'homeMode' option. 2022-04-11 13:16:38 +02:00
Erik Arvstedt 63528cb1a6
nixos/systemd: remove duplicate definition of systemd.user.timers 
It's already defined in `systemd/user.nix`.
This is a leftover from commit b6d50528dd
where all `systemd.user` settings were moved to `systemd/user.nix`.
 2022-04-11 13:01:40 +02:00
Janne Heß adab6ce552
nixos/systemd-stage-1: Minor fixups 
- Fix the name of the env
- Add the correct kmod to the initrd
- Add `less` to make journalctl usable
- Fix SYSTEMD_SULOGIN_FORCe for rescue.target
- Add some missing binaries
 2022-04-11 11:13:01 +01:00
Robert Hensing 4d464cf889
Merge pull request #168030 from samhug/qemu-vm 
nixos/qemu-vm: sanitize generated environment variable name
 2022-04-11 10:45:32 +02:00
Luke Granger-Brown 4ea239aa70
Merge pull request #163958 from lukegb/networkd-main 
nixos/networkd: configure /etc/systemd/networkd.conf
 2022-04-11 02:01:19 +01:00
Luke Granger-Brown f47caf769b nixos/networkd: configure /etc/systemd/networkd.conf 
The networkd.conf file controls a variety of interesting settings
which don't seem to be configurable at the moment, including
adding names to route tables (for networkd only, although this commit
also exports them into iproute2 for convenience's sake), and
the speed metering functionality built into networkd.

Importantly, however, this also allows disabling the systemd
functionality where it likes to delete all the routes and routing rules
that haven't been configured through networkd whenever something causes
it to perform a reconfiguration.
 2022-04-11 00:28:33 +00:00
Luke Granger-Brown 1be4ba01ac
Merge pull request #164025 from lukegb/pam-ussh 
pam-ussh: init at unstable-20210615
 2022-04-11 01:25:45 +01:00
Sandro Jäckel 28e936ba64
nixos/xserver: add excludePackages option 
to remove packages environment.systemPackages
 2022-04-11 01:12:04 +02:00
pennae 3acf560427
Merge pull request #165883 from alyaeanyx/openconnect-module 
nixos/openconnect: Add NixOS module for declarative OpenConnect VPNs
 2022-04-10 21:30:26 +00:00
Izorkin d706301b0c
nixos/nifi: init service 2022-04-10 20:42:00 +03:00
Otavio Salvador fcb69a8583 nixos/shellhub-agent: use package internally, avoiding it in PATH 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-10 13:32:10 -03:00
Otavio Salvador d7a0f56c6a nixos/shellhub-agent: avoid code duplication for environment 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-10 13:32:10 -03:00
Otavio Salvador bd3b046ac8 nixos/shellhub-agent: use mkPackageOption to simplify code 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-10 13:32:10 -03:00
Otavio Salvador 8c4bc7f62c nixos/shellhub-agent: allow setting the preferredHostname 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-10 13:32:10 -03:00
Vladimír Čunát 5e845236f2
Merge branch 'staging-next' into staging 2022-04-10 17:11:36 +02:00
alyaeanyx e4c93fb04c
nixos/openconnect: add hardening flags 2022-04-10 14:19:22 +02:00
Lassulus 8b9c6a1b04
Merge pull request #115391 from kfollesdal/autoresize-azure 
nixos/virtualisation/azure-common: add auto resize of os disk
 2022-04-10 11:25:22 +01:00
Lassulus df7337ebb4
Merge pull request #166456 from mweinelt/isc-dhcp 
dhcp: 4.4.2-P1 -> 4.4.3 and make client & relay support optional
 2022-04-10 11:05:29 +01:00
Lassulus adc7fbbcdf
Merge pull request #164531 from jtojnar/networkmanager 
nixos/networkmanager: Allow overriding installed plug-ins
 2022-04-10 11:03:36 +01:00
github-actions[bot] 28c6c88d42
Merge staging-next into staging 2022-04-10 00:02:52 +00:00
Otavio Salvador 6729653309 nixos/shellhub-agent: allow setting the keepAliveInterval 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-09 20:11:12 -03:00
Otavio Salvador 60158bfc22 nixos/shellhub-agent: use new configuration variables 
The old variables still work but will eventually stop to be supported so
move to the new ones.

Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-09 20:11:12 -03:00
Otavio Salvador a62471fc65 nixos/shellhub-agent: use mkEnableOption to simplify code 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-09 20:11:12 -03:00
Sam Hug cdef7bcb5b nixos/qemu-vm: sanitize generated environment variable name 2022-04-09 11:53:58 -07:00
Linus Heckemann 918a149888
Merge pull request #167322 from alyssais/mailman-webHosts 
nixos/mailman: improve empty webHosts error
 2022-04-09 20:15:33 +02:00
Linus Heckemann 0eba1fd840
Merge pull request #142005 from sorpaas/patch-6 
nixos/mailman: use separate virtualHosts
 2022-04-09 20:14:55 +02:00
github-actions[bot] 55db28db36
Merge staging-next into staging 2022-04-09 18:01:56 +00:00
Lassulus 456ead74f5
Merge pull request #115325 from 0x4A6F/master-nethoscope 
nethoscope: init at 0.1.1
 2022-04-09 17:56:31 +01:00
0x4A6F c57232d31c
programs/nethoscope: add security.wrapper 2022-04-09 16:50:13 +02:00
Alexander Bantyev 7bbf0f0ec9
Merge pull request #166756 from ilya-fedin/mate-fixes 
mate: fix inactive settings and make session work without display managers
 2022-04-09 17:47:48 +03:00
Jennifer Graul 3a8da578a7 nixos/pam_mount: add more config options 2022-04-09 15:33:13 +02:00
Jennifer Graul b20a1c34c2 nixos/pam: fix pam_mount called multiple times 
fixes automatic unmounting with pam_mount by preventing it to be called
multiple times at login
 2022-04-09 15:33:13 +02:00
Artturi aab655c554
Merge pull request #166997 from Artturin/udiskss 2022-04-09 16:09:11 +03:00
github-actions[bot] f303d4de3b
Merge staging-next into staging 2022-04-09 12:02:07 +00:00
Frederik Rietdijk 1d63f89caa cudaPackages: overhaul of how we package cuda packages 
There are many different versions of the `cudatoolkit` and related
cuda packages, and it can be tricky to ensure they remain compatible.

- `cudaPackages` is now a package set with `cudatoolkit`, `cudnn`, `cutensor`, `nccl`, as well as `cudatoolkit` split into smaller packages ("redist");
- expressions should now use `cudaPackages` as parameter instead of the individual cuda packages;
- `makeScope` is now used, so it is possible to use `.overrideScope'` to set e.g. a different `cudnn` version;
- `release-cuda.nix` is introduced to easily evaluate cuda packages using hydra.
 2022-04-09 08:50:22 +02:00
Otavio Salvador 6175188591 nixos/shellhub-agent: reformat code using nixpkgs-fmt 
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
 2022-04-08 19:23:23 -03:00
github-actions[bot] c57af6e8b0
Merge staging-next into staging 2022-04-08 18:11:40 +00:00
Ryan Mulligan 433236f615
Merge pull request #167861 from alyssais/nixos-doc-cleanSource 
nixos/documentation: apply cleanSourceFilter
 2022-04-08 08:03:00 -07:00
Bernardo Meurer 1855216204
Merge pull request #167856 from flokli/libvirt-cloud-hypervisor 2022-04-08 07:56:55 -07:00
Sandro 45b9690a75
Merge pull request #147975 from andersk/mozillavpn 2022-04-08 15:32:45 +02:00
Alyssa Ross aeed45992b
nixos/documentation: apply cleanSourceFilter 
This will prevent result symlinks, etc. from causing rebuilds of the
manual.
 2022-04-08 12:20:28 +00:00
github-actions[bot] a36cec68d4
Merge staging-next into staging 2022-04-08 12:02:01 +00:00
Florian Klink 37a8a582d7 nixos/libvirtd: provide path to cloud-hypervisor for virtchd.service 
Otherwise, starting this daemon fails with the message

```
virtchd[3484224]: Initialization of mandatory cloud-hypervisor state driver skipped
virtchd[3484224]: Driver state initialization failed
```

Fixes #167850
 2022-04-08 13:20:42 +02:00
Alyssa Ross ae8e8aaee7 treewide: remove obsolete kernel version checks 
We no longer support any Linux kernel older than 4.9.
 2022-04-08 09:56:09 +00:00
Alyssa Ross c099ec6aff nixos/klogd: remove 
This module only has an effect for ancient kernel versions we don't
support.
 2022-04-08 09:56:09 +00:00
alyaeanyx 0c066f0d0e
nixos/openconnect: add module 2022-04-08 11:39:09 +02:00
github-actions[bot] 1266a252ca
Merge staging-next into staging 2022-04-08 00:02:53 +00:00
Graham Christensen d99f301374 openstack-config: note the image metadata needed to boot a uefi image 2022-04-07 15:28:28 -04:00
Graham Christensen d3aff5fa3c openstack-config: make the expandOnBoot option default to all 2022-04-07 15:28:28 -04:00
Graham Christensen 0a086bf7bf openstack-config: enable tty1 
This appears to be the "default" console for openstack, but my evidence is experience on just one provider.
 2022-04-07 15:28:28 -04:00
Graham Christensen d4c502a94a openstack-metadata-fetcher: don't fail if any specific wget's fail 2022-04-07 15:28:28 -04:00
Graham Christensen 14304bfe40 openstack-config: setup serial access on ttyS0 2022-04-07 15:28:28 -04:00
Graham Christensen e5a7d077c1 openstack-config: support a ZFS root with /boot perhaps coming from an ESP 2022-04-07 15:28:28 -04:00
Graham Christensen 80b00ef02a openstack-options: init 2022-04-07 15:28:27 -04:00
github-actions[bot] fef4299129
Merge staging-next into staging 2022-04-07 18:01:52 +00:00
Graham Christensen bd3e9c3d05 nixos/zfs: better support auto-expanding partitioned disks 2022-04-07 13:06:57 -04:00
pennae 3838b7e07e
Merge pull request #166894 from CameronNemo/nixos-mod-envoy 
nixos/envoy: init
 2022-04-07 16:23:12 +00:00
Cameron Nemo 1b4b16e1bd nixos/envoy: init 2022-04-07 14:43:53 +00:00
Martin Weinelt cc774b5792 Merge remote-tracking branch 'origin/staging-next' into staging 2022-04-07 12:12:57 +02:00
sternenseemann 5eeb531210 Merge remote-tracking branch 'origin/master' into haskell-updates 2022-04-07 00:36:06 +02:00
Thiago Kenji Okada d1f7cc85b5
Merge pull request #161272 from dmadisetti/master 
nixos/grub: module options to modify entry classes
 2022-04-06 23:14:15 +01:00
github-actions[bot] 42ec765901
Merge master into haskell-updates 2022-04-06 00:11:25 +00:00
github-actions[bot] 3dc8bd98b9
Merge staging-next into staging 2022-04-06 00:02:41 +00:00
pennae 04ce3788d3
Merge pull request #167381 from jonringer/qtile-module-fixes 
nixos/qtile: fixes
 2022-04-05 22:08:56 +00:00
sternenseemann fb2fc3b4a4 Merge remote-tracking branch 'origin/master' into haskell-updates 2022-04-05 21:21:42 +02:00
Jonathan Ringer f8002a6687
nixos/qtile: expose package option 2022-04-05 12:11:27 -07:00
Vladimír Čunát b4729bad3d
Merge #165406: staging-next 2022-03-23 2022-04-05 20:34:08 +02:00
Jonathan Ringer c2828e8479
nixos/qtile: expose unwrapped package to systemPackages 2022-04-05 10:43:15 -07:00
Robert Hensing 39e0bd705b
Merge pull request #165259 from Luflosi/ipfs-recursiveUpdate 
nixos/ipfs: use lib.recursiveUpdate instead of // operator
 2022-04-05 19:16:39 +02:00
Silvan Mosberger ce6bb9800d
Merge pull request #164800 from pennae/ssh-knownhosts-hostnames 
nixos/ssh: undeprecate knownHosts.«name».hostNames
 2022-04-05 18:05:26 +02:00
Ingo Blechschmidt c3428419e0 nixos/switch-to-configuration: Provider better error message in cross-compiling situations 2022-04-05 16:52:09 +02:00