swendel/nixpkgs
1
0
Fork 0
mirror of https://github.com/SebastianWendel/nixpkgs.git synced 2024-09-19 20:09:01 +02:00
Code Issues Packages Projects Releases Wiki Activity
608828 commits 5 branches 0 tags 27 GiB
Commit graph

40086 commits

Author SHA1 Message Date
github-actions[bot] 350f0a9a66
Merge staging-next into staging 2024-03-22 12:01:46 +00:00
K900 176ee51929
Merge pull request #297806 from andrevmatos/nixos/wireplumber/fix_systemwide_bluetooth 
nixos/wireplumber: fix systemwide bluetooth integration
 2024-03-22 09:47:46 +03:00
github-actions[bot] 8c5e10ca32
Merge staging-next into staging 2024-03-22 06:01:35 +00:00
Bobby Rong 5cf5dd0fb0
Merge pull request #297727 from bobby285271/upd/budgie-nemo-terminal 
nixos/budgie: Use gnome-terminal by default
 2024-03-22 13:20:40 +08:00
Bobby Rong 0f150faf98
Merge pull request #297941 from bobby285271/upd/budgie-fprintd 
nixos/budgie: Don't enable fprintd by default
 2024-03-22 13:00:38 +08:00
Bobby Rong 414628b4a0
nixos/budgie: Don't enable fprintd by default 
This is optional for {budgie,gnome}-control-center and is not
enabled in the GNOME module.

To re-enable this fprintd should be unbreak first.
 2024-03-22 12:28:17 +08:00
Maciej Krüger ccf8f3a8fb
Merge pull request #297464 from mkg20001/fcfix 
nixos/fcitx5: fix warning about plasma6 option
 2024-03-22 01:35:59 +01:00
github-actions[bot] d899609c2a
Merge master into haskell-updates 2024-03-22 00:12:31 +00:00
github-actions[bot] dce2b692f1
Merge staging-next into staging 2024-03-22 00:02:53 +00:00
Adam Stephens 790fb86a7f
nixos/users-groups: move linger to oneshot and add nixos test 2024-03-21 19:51:05 -04:00
Peder Bergebakken Sundt 554f412e2d
Merge pull request #294171 from Noodlez1232/joycond-cemuhook-fix 
nixos/joycond-cemuhook: fix missing module
 2024-03-22 00:40:59 +01:00
e1mo bc25c4bd7d
nixos/pretix: raise TimeoutStartSec 
On some slower systems or ones with a slower database (connection) the
initial migrations can exceed the default 90s timeout.
 2024-03-21 21:49:40 +01:00
e1mo 6d5a6cab71
nixos/pretix: Fix pdf generation 
Previously, pdftk (part of the ticket, badge, ... generation pipeline)
would fail with:

```
Error occurred during initialization of VM
Failed to mark memory page as executable - check if grsecurity/PaX is enabled
```
Thise caused pdf generation to fail.

Since pdftk is a java application and, according to systemd.exec(5),

 > Note that [MemoryDenyWriteExecute=] is incompatible with programs and
 > libraries that generate program code dynamically at runtime, including
 > JIT execution engines, executable stacks, and code "trampoline" featu
 > re of various C compilers.

Disabling `MemoryDenyWriteExecute=` fixes it.
 2024-03-21 21:49:39 +01:00
K900 ff3d03a15f
Merge pull request #297697 from K900/plasma6-install-kio5 
plasma6: also install base kio5
 2024-03-21 23:05:33 +03:00
sternenseemann b4d48b0f9e Merge branch master into haskell-updates 2024-03-21 21:01:05 +01:00
André Vitor de Lima Matos bdc6b3abe0
nixos/wireplumber: fix systemwide bluetooth integration 
From https://gitlab.freedesktop.org/pipewire/pipewire/-/issues/3828#note_2270701
Broken/removed in #278760
 2024-03-21 16:21:59 -03:00
github-actions[bot] d28bcc2044
Merge staging-next into staging 2024-03-21 18:01:42 +00:00
Adam Stephens 564c3749d9
nixos/users-groups: fix broken linger 2024-03-21 13:47:15 -04:00
Johannes Kirschbauer 9a21db7be8
doc: write improved documentation for nixosOptionsDoc (#295279) 
* doc: write improved documentation for nixosOptionsDoc

* Apply suggestions from @infinisil

Co-authored-by: Silvan Mosberger <github@infinisil.com>

* doc: minor fixup

---------

Co-authored-by: Silvan Mosberger <github@infinisil.com>
 2024-03-21 16:07:18 +01:00
K900 d23f4b140f
Merge pull request #297479 from cab404/raop-firewall 
nixos/pipewire: raopOpenFirewall option
 2024-03-21 18:05:20 +03:00
Bobby Rong b79ac84d84
nixos/budgie: Use gnome-terminal by default 
- Both budgie-desktop-view and cinnamon-desktop defaults to gnome-terminal, there
  are no clear reason why we don't use the defaults here.
  The cinnamon-desktop org.cinnamon.desktop.default-applications.terminal schema
  is used in nemo for default emulator, since we use nemo by default this fixes nemo
  open in terminal entry without introducing another override.
- There are theming issues with Qogir when opening right-click menu in a second tab.
- Transparency is broken when hovering on other windows, showing only the wallpaper.

This also ensures a stable default for budgie-desktop-view, by using only the
executable name and not a nix store path.

ref: https://github.com/BuddiesOfBudgie/budgie-desktop-view/blob/v1.3/data/org.buddiesofbudgie.budgie-desktop-view.gschema.xml#L60
ref: https://github.com/linuxmint/cinnamon-desktop/blob/6.0.0/schemas/org.cinnamon.desktop.default-applications.gschema.xml.in#L46
ref: https://github.com/linuxmint/nemo/blob/6.0.0/src/nemo-view.c#L7193
 2024-03-21 22:16:25 +08:00
Martin Weinelt 3b7d9c77b3
Merge pull request #297622 from mweinelt/kea-exporter-0.7.0 
kea-exporter: 0.6.1 -> 0.7.0
 2024-03-21 14:29:42 +01:00
K900 4e5b7fe664 plasma6: also install base kio5 
Fixes #295814
 2024-03-21 15:19:44 +03:00
github-actions[bot] 4fd286e707
Merge staging-next into staging 2024-03-21 12:01:49 +00:00
nikstur 80f60ad1f4
Merge pull request #297224 from WilliButz/repart-image/mkDerivation 
nixos/repart-image: refactor to use mkDerivation instead of runCommand
 2024-03-21 12:50:17 +01:00
Stig 468417b7f3
Merge pull request #296479 from marcusramberg/marcus/nimdow 
nixos/nimdow: module updates
 2024-03-21 12:14:56 +01:00
WilliButz d9264d0568
nixos/repart-image: add myself as maintainer 2024-03-21 11:37:43 +01:00
WilliButz 5282cdd926
nixos/repart-image: add internal option to expose finalPartitions 2024-03-21 11:37:43 +01:00
WilliButz d7ef2defda
nixos/repart-image: refactor to use mkDerivation 
As a follow-up to https://github.com/NixOS/nixpkgs/pull/294096 this
should further improve the flexibility around building OS images with
systemd-repart:

* Previously the attribute set `compression` needed to be fully
  populated, including `algorithm` and `level` because
  `compression.enable` was evaluated by bash, after being interpolated
  as strings into the `buildCommand`. Now it's sufficient to pass
  `compression.enable = false` to the builder, e.g. in `overrideAttrs`,
  to disable the compression.
* Using mkDerivation allows for much more customization than the
  previously used `runCommand`, making use of phases and pre/post hooks.
  This is especially helpful for building multiple images from the same
  system configuration, e.g. to build an image `Y` based on a partially
  built raw image `X`,  by injecting a UKI that depends on `X` into a
  defered ESP.
* Before this change it was non-trivial to conduct further manipulations
  on the amended repart definitions. Now, the definitions that
  systemd-repart uses to build the image can be easily manipulated in
  `postPatch` or `preBuild`.

Aside from this, the build is now executed in the build directory, rather
than `$out`. This allows references to relative paths in the build
environment to be used, especially for `--definitions`, which previously
required an absolute path.
 2024-03-21 11:37:43 +01:00
Doron Behar 2897be360b
Merge pull request #287966 from Guanran928/clash-meta 
nixos/mihomo: init
 2024-03-21 10:40:10 +02:00
Vladimír Čunát f373ad52f1
Merge master into haskell-updates 2024-03-21 09:21:50 +01:00
Martin Weinelt e4f6d1a618
nixos/tests/kea: test ctrl-agent via kea-exporter 2024-03-21 06:17:59 +01:00
Martin Weinelt 5b97e8d76d
nixos/tests/prometheus-exporters/kea: remove 
The test framework for exporters is too limited to do sensible testing
of this exporter.
 2024-03-21 06:17:59 +01:00
Martin Weinelt c77d192eb4
prometheus-kea-exporter: 0.6.1 -> 0.7.0 
https://github.com/mweinelt/kea-exporter/blob/v0.7.0/HISTORY

Updates the module to use the target name, because it now supports both
UDS as well as HTTP URLs.
 2024-03-21 06:17:59 +01:00
Martin Weinelt d702c91302
nixos/prometheus/exporters: pass utils into exporter modules 
This is useful, because it provides escapeSystemdShellArgs.
 2024-03-21 05:27:21 +01:00
Morgan Jones 4fb4d7a3b4
nixos/tests/armagetronad: fix test runner 2024-03-20 19:45:36 -07:00
github-actions[bot] 2015f3cc71
Merge master into haskell-updates 2024-03-21 00:13:28 +00:00
github-actions[bot] 7f8db6f00d
Merge staging-next into staging 2024-03-20 18:01:38 +00:00
github-actions[bot] 36232fff71
Merge master into staging-next 2024-03-20 18:01:02 +00:00
Sandro 5d59704211
Merge pull request #295387 from majiru/drawterm-update 2024-03-20 17:19:26 +01:00
Dmitry Bogatov 5bb92281f5 nixos/dnscache: Provide explicit group for "dnscache" user 
Without this patch the module refuses to evaluate, complaining that
default "nogroup" is no longer supported.
 2024-03-20 16:45:50 +01:00
Cabia Rangris eaf6b74366
nixos/pipewire: raopOpenFirewall option 
RAOP requires UDP/6001-6002 for timing
information, and won't work with apple devices if
firewall is enabled.
 2024-03-20 18:32:01 +03:00
Maciej Krüger 061b88c7f4
nixos/fcitx5: fix warning about plasma6 option 2024-03-20 15:18:51 +01:00
Sandro 50b2e2a029
Merge pull request #296866 from SuperSandro2000/xserver-pinentry 2024-03-20 14:32:44 +01:00
github-actions[bot] fbb579e773
Merge staging-next into staging 2024-03-20 12:01:43 +00:00
github-actions[bot] 90461ffe37
Merge master into staging-next 2024-03-20 12:01:15 +00:00
éclairevoyant debb92775e nixos/starship: cleanup 2024-03-20 21:08:43 +11:00
éclairevoyant 4f9d91e276 nixos/starship: allow setting package 2024-03-20 21:08:43 +11:00
Florian Klink 40e49b40ab
Merge pull request #296949 from NixOS/mycelium_service 
nixos/mycelium: init
 2024-03-20 11:50:46 +02:00
nikstur d5d1e6a4fa
Merge pull request #297227 from WilliButz/uki/expose-rendered-config 
nixos/uki: add configFile option
 2024-03-20 10:41:59 +01:00
Florian Klink 39ebd395cc
Merge pull request #224666 from grindhold/container_underscores 
check nixos-container names for underscores
 2024-03-20 11:41:34 +02:00
Doron Behar 86209dfc0d
Merge pull request #291305 from gbtb/nvtop-310 2024-03-20 09:58:40 +02:00
Pol Dellaiera 15541288f3
Merge pull request #297133 from trofi/etebase-server-fix-test 
etebase-server: fix the eval on `null` `cfg.unixSocket`
 2024-03-20 07:38:15 +01:00
K900 e240f8bde9 Merge remote-tracking branch 'origin/master' into staging-next 2024-03-20 09:27:30 +03:00
K900 e382906174
Merge pull request #295839 from peterhoeg/m/sddm_kwin 
nixos/sddm: add support for kwin_wayland
 2024-03-20 09:02:52 +03:00
Ameya Shenoy 99c0c32a49
usbguard: fix policy enums 
The available policies for `InsertedDevicePolicy` and
`ImplicitPolicyTarget` differ from the defined policy enum. This change
is to prevent users from configuring incorrect policies for `usbguard`

Related `usbguard` documentation
https://usbguard.github.io/documentation/configuration.html

Signed-off-by: Ameya Shenoy <shenoy.ameya@gmail.com>
 2024-03-20 08:41:21 +05:30
lassulus 0f0aaa517c nixos/tests/mycelium: init 2024-03-20 03:56:59 +01:00
lassulus b82a5ef764 nixos/mycelium: init 2024-03-20 03:56:58 +01:00
Adam Stephens deb5be50c4
incus: move wrapper to nixos module 2024-03-19 22:48:07 -04:00
Jacob Moody e4789ca32a drawterm: unstable-2024-02-18 -> unstable-2024-03-20 2024-03-19 20:18:57 -05:00
github-actions[bot] 05f9a72c0e
Merge master into haskell-updates 2024-03-20 00:12:21 +00:00
github-actions[bot] ffc1886a16
Merge staging-next into staging 2024-03-20 00:02:37 +00:00
github-actions[bot] a474411771
Merge master into staging-next 2024-03-20 00:02:08 +00:00
aleksana 7b715c5023 nixos/mandoc: add release note to reflect manpath changes 2024-03-20 00:56:18 +01:00
aleksana b60f6b118b nixos/mandoc: add leading slash to manPath 2024-03-20 00:56:18 +01:00
aleksana da089cf63a nixos/mandoc: fix invalid manpath directory and add cachePath option 2024-03-20 00:56:18 +01:00
Philip Taron 29a46d2802
nixos/nvidia: Set SidebandSocketPath to a user-writable path in /run 
The NVIDIA X driver uses a UNIX domain socket to pass information to
other driver components. If unable to connect to this socket, some
driver features, such as G-Sync, may not work correctly. The socket will
be bound to a file with a name unique to the X server instance created
in the directory specified by this option. Note that on Linux, an
additional abstract socket (not associated with a file) will also be
created, with this pathname socket serving as a fallback if connecting
to the abstract socket fails.

The default, which was in effect prior to this change, was `/var/run`.

The effect of not setting this option was that GDM X sessions
(and other non-root sessions) would see this warning in the log files:

```
   (WW) NVIDIA: Failed to bind sideband socket to
   (WW) NVIDIA:     '/var/run/nvidia-xdriver-b4f69129' Permission denied
```

I don't see any security implications of turning this on universally,
since there already was an abstract socket created according to the
docs.

Documentation:

1. [NVIDIA X Config Options](https://download.nvidia.com/XFree86/Linux-x86_64/440.82/README/xconfigoptions.html#SidebandSocketPath)

Diagnosis:

1. [Arch Linux BBS post](https://bbs.archlinux.org/viewtopic.php?pid=1909115#p1909115)
 2024-03-19 16:34:41 -07:00
maxine b0f45b4837
Merge pull request #295926 from savannidgerinel/savanni/1password-8.10.28-21 
_1password-gui_beta: 8.10.28-11 -> 8.10.28-21 + refactor
 2024-03-19 23:11:29 +01:00
Savanni D'Gerinel 61b6a6ae6f
_1password-gui-beta: 8.10.28-11 -> 8.10.28-21 
- Updating the 1Password beta release to 8.10.28
- Removing the KeyringHelper application.
 2024-03-19 23:09:37 +01:00
Silvan Mosberger 308671dbe8 nixos/nix: Fix example for nix.settings option 
Attribute sets aren't valid option values, needs to be a list
 2024-03-19 22:55:19 +01:00
Florian Engel 1cd1834ec0
nixos/monetdb: Init nixos test 2024-03-19 21:54:05 +01:00
Peter Hoeg 404a2363d1 nixos/plasma6: use kwin with sddm 2024-03-19 21:14:46 +01:00
Peter Hoeg 8c642cd40a nixos/sddm: add support for kwin_wayland 2024-03-19 20:55:23 +01:00
github-actions[bot] cc3ebacb50
Merge staging-next into staging 2024-03-19 18:01:30 +00:00
github-actions[bot] 7338a5dec5
Merge master into staging-next 2024-03-19 18:01:00 +00:00
Will Fancher f0701b576a
Merge pull request #290061 from SuperSandro2000/kernel-modules-package-name 
nixos/boot: move name overwrite to pkgs.aggregateModules to option
 2024-03-19 13:04:19 -04:00
WilliButz e9fa0ec5fe
nixos/uki: add configFile option 
This option makes it easier to reuse a system's ukify.conf without the
need for manually calling the generator on `settings` again to receive a
rendered configuration file.

Theoretically, a complete configuration file could now be provided by
users.
 2024-03-19 17:58:28 +01:00
Martin Weinelt 7762462405
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/python-modules/flask-security-too/default.nix
 2024-03-19 17:30:16 +01:00
Bobby Rong a5bee07d3f
Merge pull request #297208 from bobby285271/fix/budgie-test 
nixosTests.budgie: Split run dialog subtest
 2024-03-20 00:28:10 +08:00
Bobby Rong b5f838a2ca
nixosTests.budgie: Split run dialog subtest 
The original b-c-c subtest is probably flaky, as I didn't actually ensure
the inputbox focused before typing. Instead of another hacky xdotool,
split the run dialog subtest out.

https://hydra.nixos.org/build/253473303/nixlog/37
 2024-03-19 23:59:56 +08:00
Bobby Rong 2dcadb7087
Merge pull request #297072 from FedericoSchonborn/add-federicoschonborn 
maintainers: Add federicoschonborn back again
 2024-03-19 23:12:06 +08:00
gbtb 7c3a738418 nvtop: fixed build with drm, added more arm gpu support 2024-03-20 00:15:38 +10:00
ajs124 bdabdf0c16 nixos/gitlab: use workhorse package from option in path 2024-03-19 13:47:55 +01:00
ajs124 1bada61543 nixos/gitlab: switch from sidekiq to sidekiq-cluster 2024-03-19 13:47:55 +01:00
Sandro 4a9a5fab1c
Merge pull request #283501 from SuperSandro2000/hedgedoc-fix-tools-exec 2024-03-19 13:37:46 +01:00
github-actions[bot] c293380058
Merge staging-next into staging 2024-03-19 12:01:49 +00:00
github-actions[bot] 0b369088d7
Merge master into staging-next 2024-03-19 12:01:19 +00:00
Andrew Kaster b467733c33 ladybird: unstable-2023-01-17 -> 0-unstable-2024-03-16 2024-03-19 12:39:07 +01:00
Sergei Trofimovich 5a3bd05394 etebase-server: fix the eval on null cfg.unixSocket 
Without the change the test eval fails as:

    $ nix build --no-link -f. etebase-server.tests
       error: cannot coerce null to a string: null
 2024-03-19 08:59:57 +00:00
Someone 63709965b7
Merge pull request #178717 from ShamrockLee/write-multiple-references 
trivial-builders: replace writeReferencesToFile with writeClosure
 2024-03-19 08:57:20 +00:00
Federico Damián Schonborn 455b915be0
maintainers: Add federicoschonborn back again 
Signed-off-by: Federico Damián Schonborn <federicoschonborn@disroot.org>
 2024-03-18 21:51:28 -03:00
github-actions[bot] 11c9a7e4d3
Merge master into haskell-updates 2024-03-19 00:12:43 +00:00
github-actions[bot] b727e4cb21
Merge staging-next into staging 2024-03-19 00:02:39 +00:00
github-actions[bot] 7c0bd382c7
Merge master into staging-next 2024-03-19 00:02:09 +00:00
Lily Foster e3c0bb4255
Merge pull request #294542 from Janik-Haag/garage 
nixos/garage: add env-var wrapper for admin cli
 2024-03-18 16:10:15 -07:00
ibbem 1642654453 agda: Remove the --local-interfaces flag 
Upstream now provides a library file for the builtin library and ensured
that the existing interface files will be used regardless of whether
--local-interfaces is in effect. Hence, Agda will not try to write to
the Nix store anymore except if the build flags are changed.
 2024-03-18 23:10:27 +01:00
Janik H. 9ec0e31f79
nixos/garage: add env-var wrapper for admin cli 2024-03-18 22:53:21 +01:00
Will Fancher 57f69255d7
Merge pull request #293591 from lf-/jade/fix-luksroot-assert 
nixos.luksroot: fix assertion message to name correct option
 2024-03-18 17:46:11 -04:00
maralorn b6668ded0e
Merge pull request #296977 from slotThe/maintainer 
Add slotThe as a maintainer
 2024-03-18 22:43:38 +01:00
Jade Lovelace a72afcbc48 nixos.luksroot: fix assertion message to name correct option 2024-03-18 14:41:47 -07:00
Yueh-Shun Li 97a7ce7aa6 nixosTests.nixops: remove dead code from Nix expression 2024-03-19 05:30:53 +08:00
Ryan Lahfa ae07fcb07b
Merge pull request #293271 from nikstur/test-instrumentation-without-usr-bin-env 
nixos/test-instrumentation: use full path to env
 2024-03-18 13:57:37 -07:00
Tony Zorman 240c39ef2e nixos/xmonad: add slotThe as a maintainer 2024-03-18 20:27:15 +01:00
Martin Weinelt 00e2713c5b
Merge remote-tracking branch 'origin/master' into staging-next 2024-03-18 19:59:23 +01:00
Yueh-Shun Li e9fd4389d2 writeClosure: init, replacing writeReferencesToFile 
Replace writeReferencesToFile with writeClosure.

Make writeClosure accept a list of paths instead of a path.

Re-implement with JSON-based exportReferencesGraph interface provided by
__structuredAttrs = true.

Reword the documentation.

Co-authored-by: Valentin Gagarin <valentin.gagarin@tweag.io>
Co-authored-by: Robert Hensing <roberth@users.noreply.github.com>
Co-authored-by: Someone Serge <sergei.kozlukov@aalto.fi>
 2024-03-19 02:45:50 +08:00
Will Fancher 99587a3411
Merge pull request #209964 from Majiir/fix-initrd-systemd-closure 
nixos/systemd/initrd: follow init param symlinks
 2024-03-18 14:39:37 -04:00
Florian Klink 70d7abc09c
Merge pull request #296924 from flokli/document-servers-empty-fallback 
nixos/timesyncd: further document services.timesyncd.servers
 2024-03-18 20:08:22 +02:00
Jon Seager ffc736695c
Merge pull request #296937 from MinerSebas/scrutiny-collector-ordering 2024-03-18 17:16:40 +00:00
Martin Weinelt 03fcd060ff
Merge pull request #296921 from patka-123/engelsystem-cleanup 
engelsystem: cleanup
 2024-03-18 17:14:59 +01:00
Patka 93aba53a08
engelsystem: cleanup 
The custom php with extensions is not needed. The default already has all the needed extensions enabled by default.
 2024-03-18 17:08:01 +01:00
K900 823897dde8 wireplumber: 0.4.17 -> 0.5.0 2024-03-18 18:57:05 +03:00
MinerSebas 9d384c350b nixos/scrutiny: Order scrutiny-collector after scrutiny 2024-03-18 16:30:51 +01:00
Florian Klink 78d8e2ca11 nixos/timesyncd: further document services.timesyncd.servers 
Running systemd-timesyncd with an empty list of timeservers to sync from
does not work.

In case an empty list is configured here, systemd will fall back to its
compiled-in defaults, which NixOS sets to `{0..4}.nixos.pool.ntp.org`,
as per https://github.com/systemd/systemd/blob/main/docs/DISTRO_PORTING.md#ntp-pool

This has caused some confusion. Explicitly document this, and describe
how to disable timesyncd.
 2024-03-18 17:23:55 +02:00
Jonas Heinrich 30036c3d10 nixos/initrd-ssh: Add authorizedKeyFiles option 2024-03-18 15:27:15 +01:00
github-actions[bot] 7ca9ebd637
Merge staging-next into staging 2024-03-18 12:01:53 +00:00
github-actions[bot] d5491af22d
Merge master into staging-next 2024-03-18 12:01:22 +00:00
Sandro 124ec2d9d6
nixos/xserver: don't conflict pinentry package with DEs 2024-03-18 11:22:48 +01:00
nikstur a1c4f0a754
Merge pull request #282022 from ElvishJerricco/gpt-auto-root 
nixos: Support systemd-gpt-auto-root
 2024-03-18 10:27:22 +01:00
yunfachi 05901fbaec nixos/uni-sync: init 2024-03-18 10:35:43 +03:00
github-actions[bot] b92edd0054
Merge staging-next into staging 2024-03-18 06:01:50 +00:00
github-actions[bot] 819a14ad05
Merge master into staging-next 2024-03-18 06:01:21 +00:00
github-actions[bot] f24ba8a7ce
Merge staging-next into staging 2024-03-18 00:02:47 +00:00
github-actions[bot] ac91cf83c1
Merge master into staging-next 2024-03-18 00:02:20 +00:00
Alex Martens bdb6849a32 nixos/llama-cpp: fix binary path 2024-03-17 16:48:51 -07:00
Sandro ca0de94ebb
Merge pull request #276816 from majiru/nixos-tests-build-discrepancy 
Nixos tests build discrepancy
 2024-03-17 23:59:58 +01:00
Sandro 1f212fd6e6
Merge pull request #289025 from tcheronneau/issue-288907 
nixos/tinyproxy: fix the quotes around the filter path
 2024-03-17 23:33:42 +01:00
Will Fancher 486e837cbe
Merge pull request #293710 from B4dM4n/networkd-policy-rule-port-range 
nixos/networkd: allow RoutingPolicyRule port ranges
 2024-03-17 12:36:30 -07:00
annalee f1166afe59
Merge remote-tracking branch 'upstream/staging-next' into staging 2024-03-17 18:13:09 +00:00
github-actions[bot] 100b3bb178
Merge master into staging-next 2024-03-17 18:00:54 +00:00
github-actions[bot] 83409a8a66
Merge staging-next into staging 2024-03-17 12:02:22 +00:00
github-actions[bot] c222aba0b8
Merge master into staging-next 2024-03-17 12:01:55 +00:00
Patka c4e1ffb96b
engelsystem: 3.4.1 -> 3.5.0 
Release notes: https://github.com/engelsystem/engelsystem/releases/tag/v3.5.0
 2024-03-17 12:24:29 +01:00
Maximilian Bosch 6af7e814af
Merge pull request #292993 from wolfgangwalther/postgresql-refactor 
postgresql: refactor and cleanup
 2024-03-17 10:00:07 +00:00
Sandro 62748bdf42
Merge pull request #295891 from Stzx/pinentry-conflict 
pinentry: fix DM option and user conflict
 2024-03-17 08:50:13 +01:00
Bobby Rong bf2ba6e629
nixosTests.pantheon: Add test for io.elementary.gala.daemon@x11.service 
Which is manually added in the nixos module.
 2024-03-17 13:42:34 +08:00
Bobby Rong a4bca9aaef
nixos/pantheon: Add missing gala-daemon systemd services 
Otherwise it doesn't autostart after user session managed by systemd.
 2024-03-17 13:42:33 +08:00
Bobby Rong e49a58b847
nixosTests.pantheon: Fix gala environ subtest 
This is changed after we manage session with systemd, as
io.elementary.gala@.service has `ExecStart=@bindir@/gala`.
 2024-03-17 13:42:33 +08:00
Bobby Rong 0b41a85c95
nixos/display-managers: Don't force graphical-session.target activation for Pantheon 
See Nixpkgs pull request 233981.
 2024-03-17 13:42:33 +08:00
Bobby Rong 7522f97cbe
pantheon: Manage user session with systemd 
This is now needed as gnome-session 46 drops `--builtin` option.
 2024-03-17 13:41:51 +08:00
github-actions[bot] b74fe245b8
Merge staging-next into staging 2024-03-17 00:02:45 +00:00
github-actions[bot] 2178d8d857
Merge master into staging-next 2024-03-17 00:02:17 +00:00
Adam C. Stephens 79edbc3691
Merge pull request #295376 from adamcstephens/incus/test-zfs 
nixos/tests/incus: add storage test and exercise zfs integration
 2024-03-16 16:31:15 -07:00
Martin Weinelt 2b003c0269
nixos/pretix: make state directory world-readable 
Pretix creates static files in its state directory, that nginx needs to
serve, so locking down the permissions that hard is not going to work.
 2024-03-16 23:44:37 +01:00
Atemu 44a3dd2ef4
Merge pull request #296009 from Atemu/steamcompattools 
proton-ge-bin: init at 9-1, nixos/steam: use steamcompattool output for extraCompatPackages
 2024-03-16 20:57:05 +00:00
Robert Scott 41c8713b58
Merge pull request #296229 from NickCao/pdns 
pdns: 4.8.4 -> 4.9.0
 2024-03-16 20:05:10 +00:00
Jon Seager bfa0fb2dbe
Merge pull request #296463 from MinerSebas/scrutiny-split 2024-03-16 19:41:40 +00:00
Daniel Sidhion a1581a3647
doc: fix and simplify stylesheets for the manuals, fix nrd bug (#295847) 
* doc: fix and simplify stylesheets for the manuals, fix nrd bug

* Add anchorjs script to add links on section headers

* Fix another nrd bug, address style changes

* Use span instead of a for inline span syntax
 2024-03-16 20:16:59 +01:00
Will Fancher 3758681200 nixos/tests/hibernate: Use EFI 
So that resumeDevice isn't needed to make systemd stage 1 work.
 2024-03-16 15:12:15 -04:00
Nick Cao 0537bbd042
pdns: 4.8.4 -> 4.9.0 
Changelog: https://doc.powerdns.com/authoritative/changelog/4.9.html#change-4.9.0
Upgrade Notes: https://doc.powerdns.com/authoritative/upgrading.html#to-4-9-0
 2024-03-16 12:09:08 -07:00
Marcus Ramberg 11855d0fe1 tests/nimdow: init 2024-03-16 19:32:47 +01:00
Marcus Ramberg 20eec34036 nixos/nimdow: Make package configurable, ensure nimdow can start a terminal in it's default config 2024-03-16 19:32:34 +01:00
Matthieu Coudron 0c20124901
Merge pull request #286822 from teto/lua-interpreters-fusion 
luajit: adjust defaults LUA_(C)PATH
 2024-03-16 19:32:16 +01:00
github-actions[bot] 60fbf92c10
Merge master into staging-next 2024-03-16 18:01:00 +00:00
Pol Dellaiera 5ebdb3eda7
Merge pull request #296465 from Janik-Haag/networkmanager-ensure-profiles 
nixos/networkmanager: ensure-profiles, make sure networkmanager is running
 2024-03-16 18:46:12 +01:00
Janik H. 847a53742c
nixos/networkmanager: ensure-profiles, make sure networkmanager is running 2024-03-16 18:11:58 +01:00
MinerSebas 2210ac7764 nixos/scrutiny: Order scrutiny.service after influxdb2.service 2024-03-16 18:02:17 +01:00
MinerSebas 7d6917088c nixos/scrutiny: Dont enable influxdb when only using scrutiny-collector 2024-03-16 18:02:10 +01:00
Atemu bdc55d2f86 nixos/steam: provide example in extraCompatPackages 2024-03-16 17:59:27 +01:00
Atemu 2b619c2314 nixos/steam: use steamcompattool output for extraCompatPackages 
This sets a standard for Steam compat tools in NixOS where they must have the
compat tool in a special steamcompattool output.

proton-ge-bin was adjusted to conform with it.
 2024-03-16 17:59:27 +01:00
Arian van Putten d211b80d29
Merge pull request #294493 from endgame/ec2-image-ssm-agent 
nixos/amazon-image: Enable Amazon SSM Agent by default
 2024-03-16 17:57:42 +01:00
Guillaume Girol 119099506c
Merge pull request #292477 from nu-nu-ko/nixos-komga-hardening 
nixos/komga: add service hardening and misc format changes.
 2024-03-16 17:34:45 +01:00
Martin Weinelt fe8d02e2bc
Merge pull request #296180 from mweinelt/pretix 
pretix: init at 2024.2.0
 2024-03-16 17:28:20 +01:00
Manuel Sanchez Pinar b8f91b87a3
nixosTests.silverbullet: init 2024-03-16 17:12:16 +01:00
Manuel Sanchez Pinar a1301766eb
nixos/silverbullet: init module 2024-03-16 17:11:59 +01:00
Jörg Thalheim 56db90d274
Merge pull request #296164 from bubuntux/ivsc-option 
Add ivsc-firmware to ipu6 option
 2024-03-16 16:14:05 +01:00
Martin Weinelt a01acbcefe
nixos/tests/pretix: init 2024-03-16 14:50:57 +01:00
Martin Weinelt b05a529fd6
nixos/pretix: init 2024-03-16 14:50:56 +01:00
Bobby Rong 3b48b3aaa9
Merge pull request #289062 from bobby285271/upd/mate 
MATE 1.28
 2024-03-16 21:38:24 +08:00
Matthieu Coudron 99bb198cdd doc: update release notes for 24.05 
with the lua patching
 2024-03-16 14:37:10 +01:00
github-actions[bot] 9db4d84312
Merge master into staging-next 2024-03-16 12:01:19 +00:00
Pol Dellaiera 4285a30496
Merge pull request #295837 from abysssol/ollama-env-vars 
nixos/ollama: add option to set environment variables
 2024-03-16 08:02:55 +01:00
Bobby Rong fc3d133b48
Merge pull request #296347 from bobby285271/upd/budgie-tests 
nixosTests.budgie: Extend the test
 2024-03-16 14:40:35 +08:00
Bobby Rong 41fdcd0303
nixosTests.budgie: Extend the test 2024-03-16 13:25:05 +08:00
Adam Stephens 9d411861b5
nixos/tests/incus: add storage test and exercise zfs integration 2024-03-15 20:39:54 -04:00
github-actions[bot] 7006358e6a
Merge master into staging-next 2024-03-16 00:02:02 +00:00
Will Fancher f1731f2e28 nixos: Support systemd-gpt-auto-root 2024-03-15 18:22:04 -04:00
Guillaume Girol 1f26e67560
Merge pull request #278064 from symphorien/nix_config_extra 
nixos/nix: add workaround for https://github.com/NixOS/nix/issues/9487
 2024-03-15 22:46:51 +01:00
Pol Dellaiera 21456ee2a7
Merge pull request #296183 from laalsaas/etebase-server-fix 
etebase-server: create required tmpdir
 2024-03-15 22:08:15 +01:00
Wolfgang Walther 4b6bce5c31
postgresql: refactor to remove "this" argument 
This was proposed by abbradar in #150801, but left out of the follow up PR
#221851 by Ma27 to reduce the size of the diff. Compared to the initial
proposal this includes the callPackage call in the recursion, which avoids
breaking the withJIT/withoutJIT helpers.

In terms of nixpkgs, this is a pure refactor, no derivations change. However,
this makes downstream expressions like the following possible:

  (postgresql.override { jitSupport = true; }).pkgs.postgis

This would have not worked before without passing another "this" argument,
which is error prone as can be seen in this example:

  https://github.com/PostgREST/postgrest/pull/3222/files
 2024-03-15 21:11:09 +01:00
Wolfgang Walther 14b3ea2789
postgresql: refactor to pass jitSupport/llvm via scope instead of passthru 
This makes it less error-prone to use the llvm package in extensions, because
it will always match the package used by the postgresql derivation itself.

Previously, you could've accidentally used llvm instead of postgresql.llvm
with a different result.
 2024-03-15 21:11:09 +01:00
Maximilian Bosch 0d17fd9524
Merge pull request #292473 from networkException/fix-synapse-unix-socket-permissions 
nixos/matrix-synapse: allow synapse to write to directories of unix socket paths
 2024-03-15 18:53:04 +00:00
Janik H. fc060cc3cb nixos/resolvconf: add ::1 as local dns resolver 2024-03-15 19:31:37 +01:00
github-actions[bot] 00729a3d21
Merge master into staging-next 2024-03-15 18:01:19 +00:00
laalsaas 1d4c8cb0ff etebase-server: create required tmpdir 2024-03-15 16:52:21 +01:00
Maciej Krüger bda93c2221
Merge pull request #294258 from mkg20001/oil-fix 
oil: apply renames as requested by upstream
 2024-03-15 15:44:43 +01:00
Julio Gutierrez 811872a489 Add ivsc-firmware to ipu6 option 2024-03-15 09:29:46 -05:00
Andrew Marshall 24ae983076 darwin.linux-builder: Exit scripts on error 
For example, if the user decided to ctrl-c upon getting the sudo
password prompt, the script previously continued on to start the VM, but
that should not be the case.
 2024-03-15 08:52:30 -04:00
Peder Bergebakken Sundt 3399de5396
Merge pull request #295342 from pbsds/spotifyd-url-1710255988 
nixos/spotifyd: update configuration documentation url
 2024-03-15 13:03:01 +01:00
github-actions[bot] 4aac48ff7f
Merge master into staging-next 2024-03-15 06:01:09 +00:00
Mario Rodas e6aefe20a1
Merge pull request #292533 from flyingcircusio/init-postgresql-anonymizer 
postgresqlPackages.anonymizer: init at 1.3.1; add me & osnyx to flyingcircus team
 2024-03-14 20:53:36 -05:00
Bobby Rong 9254f99be6
Merge pull request #296019 from bobby285271/upd/budgie 
nixos/budgie: Fix default fonts
 2024-03-15 08:35:12 +08:00
github-actions[bot] 2bffd64e73
Merge master into staging-next 2024-03-15 00:01:59 +00:00
Bobby Rong f7f3a3ec53
nixos/budgie: Fix default fonts 
Always install noto fonts and hack font.
 2024-03-15 07:56:02 +08:00
Christian Kögler f56c78f50a
Merge pull request #295443 from ck3d/machinectl-routable 
nixos.test.machinectl: add routable network and shared store
 2024-03-14 22:46:14 +01:00
Christian Kögler f4f99bf8cc nixos/tests/machinectl: Add declarative shared container 2024-03-14 22:07:58 +01:00
Ilan Joselevich 09078fd022
Merge pull request #295932 from Kranzes/nextcloud 
nixos/nextcloud: remove opcache.enable_cli=1
 2024-03-14 21:36:09 +02:00
github-actions[bot] c160165e60
Merge master into staging-next 2024-03-14 18:01:26 +00:00
Ilan Joselevich 9353fb2309
nixos/nextcloud: remove opcache.enable_cli=1 
Upstream no longer recommends enabling the opcache cli.
See the following:
 - https://github.com/nextcloud/documentation/issues/1439
 - https://github.com/nextcloud/server/pull/15468
 2024-03-14 18:36:11 +02:00
Bobby Rong dff5e178f6
nixos/rl-2405: Mention desktop environment updates I've done so far 
Too lazy to open a new PR for Cinnamon, hopefully fine since I maintain both DEs.
 2024-03-14 23:34:13 +08:00
Bobby Rong 596f75bf1f
nixosTests.mate-wayland: init 2024-03-14 23:34:12 +08:00
Bobby Rong abd9d0bec5
nixosTests.mate: Add trivial tests for MATE 1.28 changes 2024-03-14 23:34:12 +08:00
Bobby Rong 398cce395c
nixos/mate: Add enableWaylandSession option 
Make this an opt-in for now since the session is in early stage
and introduces a new set of wayfire closure.
 2024-03-14 23:34:11 +08:00
Bobby Rong b45faa9834
nixos/mate: Add extraPanelApplets, extraCajaExtensions option 
Hopefully this is more user-friendly.
 2024-03-14 23:34:10 +08:00
Bobby Rong a323f4f828
mate: Install mate-panel-with-applets by default 2024-03-14 23:34:06 +08:00
Bobby Rong c87f6b5591
mate: Install caja-with-extensions by default 2024-03-14 23:34:05 +08:00
Martin Weinelt 5abc981e0b
Merge pull request #295626 from superherointj/k3s-1_24_remove 
k3s_1_24, k3s_1_25: remove
 2024-03-14 15:54:16 +01:00
Stzx 8bf5cc2666
pinentry: fix DM option and user conflict 2024-03-14 21:54:35 +08:00
Maciej Krüger c1a6b4015e
release-notes: update oil shell 2024-03-14 13:15:08 +01:00
abysssol b5e7a05bb7 nixos/ollama: add option to set environment variables 2024-03-14 04:21:36 -04:00
github-actions[bot] c866a07331
Merge master into staging-next 2024-03-14 06:01:12 +00:00
Bobby Rong 830f5f84e6
Merge pull request #295798 from bobby285271/adopt/budgie 
budgie: add myself as maintainer
 2024-03-14 13:28:15 +08:00
Bobby Rong 1d3d0d6a89
budgie: add myself (bobby285271) as maintainer 
Let's hope this package set is not too hard to maintain.
 2024-03-14 12:29:36 +08:00
Bobby Rong 180575819a
Merge pull request #295696 from FedericoSchonborn/drop-federicoschonborn 
maintainers: drop federicoschonborn
 2024-03-14 12:13:07 +08:00
Federico Damián Schonborn 91a2510d05
maintainers: drop federicoschonborn 
Signed-off-by: Federico Damián Schonborn <federicoschonborn@disroot.org>
 2024-03-13 16:21:10 -03:00
github-actions[bot] f4c4bfc9fc
Merge master into staging-next 2024-03-13 18:00:53 +00:00
superherointj bfe2b97cac rl-2405/k3s: notify removal of k3s_1_26, k3s_1_27, k3s_1_28 2024-03-13 13:10:35 -03:00
Maximilian Bosch 0cdaede144
pg-dump-anon: init at 1.3.1 
This is a Go program inside the sources of `postgresql_anonymizer` that
allows to perform database dumps, but with anonymized data. I figured
that it's a little awkward to have a client program to be part of the
extension package.

So I decided to create a second package called `pg-dump-anon`. Since
it's one repository, both share `version` & `src`.

Also extended the VM test to make sure we're getting properly anonymized
data when dumping with `pg_dump_anon`.
 2024-03-13 16:15:54 +01:00
nikstur 7f175e69ca
Merge pull request #295370 from arianvp/fix-295365 
nixos/binfmt: fix race condition between systemd-tmpfiles and systemd-binfmt
 2024-03-13 14:52:24 +01:00
Sandro db55012fa3
Merge pull request #291455 from SuperSandro2000/hydra-starman-worker 2024-03-13 13:57:12 +01:00
github-actions[bot] cecf050e96
Merge master into staging-next 2024-03-13 12:01:25 +00:00
Pol Dellaiera 55251f1ffc
Merge pull request #295547 from Janik-Haag/unbound 
nixos/unbound: drop networkmanager since it doesn't support unbound anymore
 2024-03-13 10:33:52 +01:00
Janik H. 4147e50f18
nixos/unbound: drop networkmanager since it doesn't support unbound anymore 2024-03-13 09:50:56 +01:00
Pol Dellaiera c35c016e5d
Merge pull request #295529 from Janik-Haag/networkmanager-drop-unbound 
nixos/networkmanager: drop unbound form dns servers
 2024-03-13 09:04:58 +01:00
Pol Dellaiera 6710011819
Merge pull request #295199 from blakesmith/gotosocial_14_2 
gotosocial 0.14.1 -> 0.14.2
 2024-03-13 08:53:37 +01:00
Jon Seager b31e87640a
Merge pull request #295501 from eclairevoyant/scrutiny 2024-03-13 07:32:37 +00:00
Janik H. a97e56ae28
nixos/networkmanager: drop unbound form dns servers 
upstream dropped unbound in 5da17c689b
 2024-03-13 08:31:52 +01:00
annalee 68befa13bb
Merge remote-tracking branch 'upstream/master' into staging-next 2024-03-13 06:02:24 +00:00
éclairevoyant e7db1f299c
nixos/scrutiny: fix timer not auto-starting 2024-03-12 22:25:54 -04:00
Anton Dyudin 811ec16c8a
doc: Fix test in writing-nixos-tests.section.md (#294902) 
* Fix test in writing-nixos-tests.section.md

That paren couldn't possibly have been in the right place.

(I do not have nix set up to generate `writing-nixos-tests.section.xml` or verify the test or anything, please do whatever is appropriate with this trivial change)

* doc: fix numpy example test value

Making the test test the right thing made it fail

see PR discussion
 2024-03-12 19:19:54 -07:00
Blake Smith b0529146b9 nixos/gotosocial: add blakesmith as a maintainer 2024-03-12 21:13:22 -05:00
annalee 8e038835fe
Merge remote-tracking branch 'upstream/master' into staging-next 2024-03-13 00:38:07 +00:00
Rok Garbas 6f11ba9ffe
Merge branch 'master' into amazon-ec2-amis 2024-03-13 00:37:12 +01:00
Christian Kögler bdd7e48646 nixos/test/machinectl: Add test for shared nix store 2024-03-12 23:27:45 +01:00
Christian Kögler de52b2b49e nixos/tests/machinectl: Make network routable 2024-03-12 23:27:45 +01:00
Jörg Thalheim 721c6579d2
Merge pull request #295407 from Stunkymonkey/nixos-murmur-registerPassword-fix 
nixos/murmur: fix writing registerPassword to config
 2024-03-12 22:47:26 +01:00
Fabián Heredia Montiel da8768347e
Merge pull request #293950 from DCsunset/nixos-hoogle 
nixos/hoogle: add extraOptions
 2024-03-12 14:57:30 -06:00
Felix Buehler 1e22e7d75e nixos/murmur: fix writing registerPassword to config 2024-03-12 21:19:24 +01:00
Arian van Putten 16526f454f nixos/binfmt: fix race condition between systemd-tmpfiles and systemd-binfmt 
We need to make sure systemd-tmpfiles-setup.service ran before we
start systemd-binft.service. Otherwise it might fail to start
due to non-existant files

Fixes #295365
 2024-03-12 21:08:03 +01:00
Pol Dellaiera 734b199708
Merge pull request #295197 from abysssol/ollama-tests 
nixos/ollama: add tests
 2024-03-12 20:28:16 +01:00
github-actions[bot] 6b78f024b2
Merge staging-next into staging 2024-03-12 18:01:46 +00:00
Azat Bahawi d3e30a442b
nixos/incus: fix systemd service path 
Fixes a regression introduced in #294754.
 2024-03-12 20:03:36 +03:00
Jacob Moody 112a71eef7 nixos/tests: remove builtints.currentSystem from make-test-python.nix 
When build using 'nix build' if we hit this default we will fail to
evaluate. Most instances that this should break have been fixed so
we remove this to prevent this from happening further in the future.
 2024-03-12 10:09:59 -05:00
Jacob Moody 4db920ed4f nixos/tests: fix discrepancy between nix-build and nix build 2024-03-12 10:09:59 -05:00
Peder Bergebakken Sundt 285d2dcf3c nixos/spotifyd: update configuration documentation url 2024-03-12 16:07:48 +01:00
Sandro e220724911
Merge pull request #292141 from SuperSandro2000/plasma-out-xserver 2024-03-12 13:55:27 +01:00
K900 21adc4f16a
Merge pull request #295092 from K900/more-heinous-crimes 
nixos/iso-image: extremely cursed performance optimization for Hydra
 2024-03-12 15:45:38 +03:00
K900 77536af43b nixos/iso-image: extremely cursed performance optimization for Hydra 
Right now the worst case chain of events for building an ISO on Hydra is

    - copy everything to squashfs builder
    - run squashfs builder
    - download squashfs from builder
    - compress squashfs
    - upload squashfs to S3
    - copy squashfs to ISO builder
    - run ISO builder
    - download ISO from builder
    - compress ISO
    - upload ISO to S3

This inlines the squashfs build into the ISO build, which makes it

    - copy everything to ISO builder
    - run ISO builder
    - download ISO from builder
    - compress ISO
    - upload ISO to S3

Which should reduce queue runner load by $alot per ISO, which we have four of on small channels
(one release, one test per arch) and a lot more than four of on large channels (with various desktops)
 2024-03-12 15:41:59 +03:00
github-actions[bot] 1cef2a1be7
Merge staging-next into staging 2024-03-12 12:01:40 +00:00
nikstur da05945c74
Merge pull request #295096 from jmbaur/uki-dtb 
nixos/uki: add ".dtb" section if devicetree is used
 2024-03-12 12:57:15 +01:00
Sandro Jäckel b07cdeb1b3
nixos/plasma6: move out of x11 
This release focuses on wayland, lets give that justice
 2024-03-12 10:49:42 +01:00
github-actions[bot] 0917422ffe
Merge staging-next into staging 2024-03-12 06:01:24 +00:00
abysssol efed30f903 nixos/ollama: add test for the ollama service 2024-03-11 21:37:48 -04:00
cmspam 701fcd7982 nixos/incus: add openvswitch support 
1. Added openvswitch integration to incus service.
2. Added tests to test openvswitch functionality with incus.
 2024-03-12 01:03:39 +00:00
github-actions[bot] fd6d62aa3d
Merge staging-next into staging 2024-03-12 00:02:37 +00:00
Jared Baur 2837c0d9aa
nixos/uki: add ".dtb" section if devicetree is used 
This ensures a ".dtb" PE section makes it into the UKI so systemd-stub
can install the correct devicetree for use by the Linux kernel. This is
often needed on systems that boot with u-boot since the devicetree used
by u-boot is often a paired down version of what the Linux kernel needs.
On those kinds of boards, the lack of this PE section means that u-boot
will end up installing its internal devicetree into the UEFI
configuration table, which is what the Linux kernel ends up using.
 2024-03-11 12:42:21 -07:00
Cosima Neidahl a44e09da5e
Merge pull request #294555 from r-ryantm/auto-update/miriway 
miriway: unstable-2024-02-14 -> unstable-2024-03-06
 2024-03-11 19:04:18 +01:00
github-actions[bot] 06e5eb63d3
Merge staging-next into staging 2024-03-11 18:01:53 +00:00
emilylange 08c37ba899 nixos/lldap: set service UMask=0027 and StateDirectoryMode=0750 
While `/var/lib/lldap` isn't technically accessible by unprivileged
users thanks to `DynamicUser=true`, a user might prefer and change it to
`DynamicUser=false`.

There is currently also a PR open that intends to make `DynamicUser`
configurable via module option.

As such, `jwt_secret_file`, if bootstrapped by the service start
procedure, might be rendered world-readable due to its permissions
(`0644/-rw-r--r--`) defaulting to the service's umask (`022`) and
`/var/lib/lldap` to `0755/drwxr-xr-x` due to `StateDirectoryMode=0755`.

This would usually be fixed by using `(umask 027; openssl ...)` instead
of just `openssl ...`.

However, it was found that another file (`users.db`), this time
bootstrapped by `lldap` itself, also had insufficient permissions
(`0644/-rw-r--r--`) inherited by the global umask and would be left
world-readable as well.

Due to this, we instead change the service's to `027`.

And to lower the impact for already bootstrapped files on existing
instances like `users.db`, set `StateDirectoryMode=0750`.
 2024-03-11 17:34:29 +01:00
emilylange 61a651e362 nixos/lldap: bootstrap jwt_secret if not provided 
If not provided, lldap defaults to `secretjwtsecret` as value which is
hardcoded in the code base.

See https://github.com/lldap/lldap/blob/v0.5.0/server/src/infra/configuration.rs#L76-L77

This is really bad, because it is trivially easy to generate an admin
access token/cookie as attacker, if a `jwt_secret` is known.
 2024-03-11 17:34:29 +01:00
Sandro Jäckel 4799ffc61d
nixos/vaultwarden: drop lib.mdDoc 2024-03-11 16:32:53 +01:00
Sandro Jäckel d5ae85691a
nixos/vaultwarden: drop with lib over entire file 2024-03-11 16:32:49 +01:00
Sandro 869ec01e56
Merge pull request #294286 from SuperSandro2000/unbound-remote-config-check 2024-03-11 16:06:31 +01:00
WilliButz a2c0efbf5e
Merge pull request #274307 from thillux/esdm-1.0.1 
esdm: update module after 1.0.1 changes
 2024-03-11 15:11:05 +01:00
Markus Theil 36f1c0c2b3 nixos/esdm: simplify module 
ESDM 1.0.1 fixed bugs related to Linux compatibility layer with CUSE.

During these fixes, the compatibility layer was simplified behind a
target in order to start the necessary services together or none of
them (services.esdm.linuxCompatServices).

Furthermore, a small helper was added to ESDM 1.0.1 in order to deal
with resume/suspend/hibernate (FUSE needs to be unblocked).

Removed options are marked.

Signed-off-by: Markus Theil <theil.markus@gmail.com>
 2024-03-11 14:28:26 +01:00
Maximilian Bosch 8d0e5a3402
postgresqlPackages.anonymizer: init at 1.3.1 2024-03-11 14:09:17 +01:00
github-actions[bot] 339816cfdf
Merge staging-next into staging 2024-03-11 12:01:42 +00:00
Pierre Allix cf625fe5f0 nixos/networkmanager: add doc about nm profiles interaction with resolvconf 2024-03-11 12:55:27 +01:00
Sandro 80ec88edec
Merge pull request #292025 from RaHoni/baculaTls 2024-03-11 12:01:19 +01:00
OPNA2608 a49c3d2689 nixos/tests/miriway: Be more lenient when identifying the terminal prompts 2024-03-11 11:37:49 +01:00
Atemu ce8ddcd321
Merge pull request #281192 from diogotcorreia/pgvecto.rs 
postgresqlPackages.pgvecto-rs: init at 0.2.1
 2024-03-11 07:12:52 +00:00
Guanran Wang 84bbdc744e
nixos/mihomo: add tests 2024-03-11 09:51:36 +08:00
Guanran Wang a5d09a41b0
nixos/mihomo: add release note 2024-03-11 09:51:36 +08:00
Guanran Wang a6857b00fe
nixos/mihomo: init 2024-03-11 09:51:36 +08:00
Diogo Correia 6b97ba66a4
nixos/tests/pgvecto-rs: init 2024-03-11 01:02:17 +00:00
github-actions[bot] e5f37c0e88
Merge staging-next into staging 2024-03-11 00:02:46 +00:00
Sandro 88c9f04d1a
Merge pull request #294771 from flokli/yubikey-agent-eval 
nixos/yubikey-agent: fix eval error
 2024-03-11 00:15:31 +01:00
Guanran Wang 0a5801395a nixos/clash-verge: add cfg.package 2024-03-10 20:16:41 +01:00
github-actions[bot] 43d40d2ee7
Merge staging-next into staging 2024-03-10 18:01:43 +00:00
Florian Klink b437b19f54 nixos/yubikey-agent: fix eval error 
This has been refactored in https://github.com/NixOS/nixpkgs/
pull/133542, but this reference wasn't updated.
 2024-03-10 19:08:23 +02:00
Pol Dellaiera 2bd0c18d98
Merge pull request #282160 from gaykitty/stargazer-debug-mode 
nixos/stargazer: add missing debugMode setting
 2024-03-10 14:31:06 +01:00
github-actions[bot] 973ef4b818
Merge staging-next into staging 2024-03-10 06:01:30 +00:00
Peder Bergebakken Sundt 4a4a70ca31
Merge pull request #280836 from numinit/nebula-port-zero 
nixos/nebula: default to port 0 for hosts other than lighthouse/relay
 2024-03-10 05:01:04 +01:00
Peder Bergebakken Sundt 3021170dfe
Merge pull request #265687 from iblech/patch-test-socks 
nixos/tests/privoxy: Verify socks support
 2024-03-10 04:27:38 +01:00
Peder Bergebakken Sundt 298957b767
Merge pull request #283238 from D3vil0p3r/patch-1 
doc: add note in Partitioning and formatting section
 2024-03-10 04:01:18 +01:00
Will Fancher f592a7ea77
Merge pull request #293720 from vkleen/fix/systemd-boot-random-seed 
nixos/systemd: Only include systemd-boot-random-seed if the unit exists
 2024-03-09 21:01:35 -05:00
github-actions[bot] 3ce29d4386
Merge staging-next into staging 2024-03-10 00:02:48 +00:00
éclairevoyant 6b80044d9d
Merge pull request #294584 from MinerSebas/plasma-samba 
nixos/plasma6: Dont add samba a second time to environment.systemPackages
 2024-03-09 23:40:45 +00:00
Sandro c86e8fd7a0
Merge pull request #133542 from fpletz/refactor/pinentry-remove-multiple-outputs 
pinentry: remove multiple outputs
 2024-03-09 23:57:27 +01:00
Weijia Wang 8ca489efef
Merge pull request #292396 from wegank/unrar-bump 
unrar: 6.2.12 -> 7.0.7
 2024-03-09 22:54:53 +01:00
Bernardo Meurer 6bb56dc681
Merge pull request #294544 from lilyinstarlight/fix/fwupd-uefi-capsule-settings 2024-03-09 16:31:44 -05:00
Emily 8b7eef367c
Merge pull request #292304 from networkException/unix-socket-sliding-sync-bindaddr 
nixos/matrix-sliding-sync: improve unix socket support
 2024-03-09 20:12:48 +01:00
github-actions[bot] 1966fd4ba6
Merge staging-next into staging 2024-03-09 18:01:41 +00:00
Lily Foster 1801583855
nixos/fwupd: fix silent failure for uefiCapsuleSettings to ever be added 
Bug was introduced in 28ea07d4e3.
 2024-03-09 12:44:46 -05:00
Maciej Krüger 8b8bc2c64b
Merge pull request #294497 from cmspam/patch-1 
incus.ui: Added incus-specific patches to fix branding and API
 2024-03-09 18:32:40 +01:00
Maciej Krüger 8a274e0c18
nixosTests.incus.*: enable nftables to fix tests 2024-03-09 17:23:03 +01:00
MinerSebas cf3a468eee nixos/plasma6: Dont add samba a second time to environment.systemPackages 2024-03-09 17:06:25 +01:00
gaykitty 366147b86d nixos/stargazer: add missing debugMode setting 2024-03-09 11:04:27 -05:00
networkException f0097cf1d9
nixos/matrix-sliding-sync: create runtime directory in /run/matrix-sliding-sync 
this patch enables the creation of a runtime directory with the default
mode 0755 in /run/matrix-sliding-sync to offer a simple option for
SYNCV3_BINDADDR when using unix sockets.
 2024-03-08 23:16:05 +01:00
Franz Pletz a270c43ea1
treewide: use sensible pinentry flavor 2024-03-08 23:09:02 +01:00
github-actions[bot] c05ba82277
Merge staging-next into staging 2024-03-08 18:01:49 +00:00
Leona Maroni 399dc3f09e
Merge pull request #290925 from r-vdp/networkd_use_gateway 
systemd-networkd: add missing UseGateway key in the DHCPv4 section
 2024-03-08 16:38:14 +01:00
Sandro Jäckel 67c1193fab
nixos/unbound: disable checkconf when remote-control is used 
Closes #293001
 2024-03-08 15:34:00 +01:00
nikstur 4fc409b977
Merge pull request #294096 from WilliButz/repart-image/overridability 
systemd-repart: improve overridability of image builder
 2024-03-08 15:23:45 +01:00
K900 73e3a5866a
Merge pull request #294269 from K900/test-driver-mypy-fixes 
nixos/lib/test-driver: fix mypy errors after staging-next merge
 2024-03-08 15:35:59 +03:00
K900 7764fc5335 nixos/lib/test-driver: fix mypy errors after staging-next merge 2024-03-08 15:33:48 +03:00
Maciej Krüger 53c527b694
Merge pull request #292817 from mkg20001/steam-team 
teams.steam: add - ref #289561
 2024-03-08 13:26:02 +01:00
github-actions[bot] 1d176721c2
Merge staging-next into staging 2024-03-08 12:01:49 +00:00
K900 7b8d88fa05 nixos/steam: fix eval after #293564 2024-03-08 14:42:31 +03:00
Vladimír Čunát 335c734226
Merge #292500: staging-next 2024-03-01 2024-03-08 12:35:06 +01:00
Maciej Krüger 26c09016b9
modules/steam: transfer maintainership to steam team 2024-03-08 12:25:03 +01:00
Thiago Kenji Okada 488f218407
Merge pull request #293564 from Shawn8901/steam-compat-tools 
steam: add extraCompatPackages
 2024-03-08 11:06:15 +00:00
maxine b587c07865
Merge pull request #292847 from jwillikers/linger-hotfix 
Fix the update-lingering activation script to not fail when a user is removed
 2024-03-08 09:54:44 +00:00
r-vdp 4c26c97d21
nixos/networkd: add missing UseGateway key in the DHCPv4 section 2024-03-08 10:54:03 +01:00
maxine d231374084
Merge pull request #288873 from amaxine/networkmanager_1.46 
networkmanager: 1.44.2 → 1.46.0
 2024-03-08 09:52:14 +00:00
Weijia Wang 4acc19b18c
Merge pull request #291581 from Luflosi/nixos/memcached/clarify-setting 
nixos/memcached: clarify behaviour of `enableUnixSocket`
 2024-03-08 10:25:10 +01:00
Weijia Wang 9dd105625d unrar: 6.2.12 -> 7.0.7 2024-03-08 09:57:11 +01:00
Viktor Kleen 0aed32b9dd
nixos/systemd: Only include systemd-boot-random-seed if the unit exists 
The unit file is only present if systemd was built with bootloader support.
 2024-03-08 08:52:11 +00:00
Jack Kelly dc158268f7 nixos/amazon-image: Enable Amazon SSM Agent by default 
Amazon-provided EC2 images do this.

See: https://docs.aws.amazon.com/systems-manager/latest/userguide/ami-preinstalled-agent.html
 2024-03-08 16:24:00 +10:00
éclairevoyant 2319821137
nixos/scrutiny: default collector api endpoint port to point at web app port 2024-03-07 23:21:53 -05:00
éclairevoyant fc5116d75c
nixos/scrutiny: clean up mkEnableOption definitions 2024-03-07 23:21:53 -05:00
éclairevoyant ce5dbf1b7b
nixos/scrutiny: inherit lib bindings 2024-03-07 23:21:52 -05:00
éclairevoyant 4e710d5221
nixos/scrutiny: remove redundant lib.mdDoc 2024-03-07 23:21:52 -05:00
~noodlez1232 555aad70c0 nixos/joycond-cemuhook: fix missing module 
It seems that the joycond-cemuhook.nix module was missing from the
module-list.nix. This commit should fix that problem.
 2024-03-07 17:17:46 -08:00
github-actions[bot] bca99088c2
Merge master into staging-next 2024-03-08 00:02:17 +00:00
Diogo Correia e035dab4ff
doc: add services.dnsproxy to 24.05 release notes 2024-03-07 23:26:59 +00:00
Diogo Correia 9b7e02dd4b
nixos/dnsproxy: init module 2024-03-07 23:26:59 +00:00
Peder Bergebakken Sundt 5f9689332a
Merge pull request #278537 from wfdewith/syncoid-permissions 
nixos/syncoid: add missing ZFS mount permission
 2024-03-08 00:11:39 +01:00
Max Niederman ea7101783c
nixos/tests/photonvision: init 2024-03-07 14:59:21 -08:00
Max Niederman 3609e216a4
nixos/photonvision: init module 2024-03-07 14:59:20 -08:00
Yt 0340f82b24
Merge pull request #292873 from ghthor/tabby 
Tabby: bump 0.7.0 -> 0.8.3 and add systemd service
 2024-03-07 21:51:06 +00:00
WilliButz 82ef47d3b7
nixos/repart-image: add options to specify mkfs parameters 
This new option makes it easier to specify extra mkfs parameters for the
systemd-repart builder.

See https://github.com/systemd/systemd/blob/v255/docs/ENVIRONMENT.md?plain=1#L575-L577
 2024-03-07 22:50:56 +01:00
Soenke Klinger d0a888c315
doc: added nvidiaLegacy driver version 470 to available options in nixos manual (#290231) 
Its possible to install the nvidiaLegacy470 driver for the slightly outdated GPUs, but the documentation only has the hints how to install the drivers for the even older GPUs.
 2024-03-07 22:29:13 +01:00
Sandro 5f39678474
Merge pull request #292552 from diogotcorreia/oci-containers-fix-stop-one-shot 
nixos/oci-containers: ignore nonexistent container when stopping
 2024-03-07 21:23:51 +01:00
Maximilian Bosch 3c8f4e06e6
Merge pull request #287602 from Ma27/drop-postgres-ensurePermissions 
nixos/postgresql: drop ensurePermissions option
 2024-03-07 19:50:44 +00:00
WilliButz f88148f05e
nixos/repart-image: improve overridability, use structuredAttrs 
Parameters passed to systemd-repart are now passed to the build script
via environment variable, which is defined as a list of strings in
combination with `__structuredAttrs = true`. This should make it easier
to customize the image build using `overrideAttrs`.

Both the script used to amend the repart definitions and the amended
definitions are now available via passthru.
 2024-03-07 18:27:11 +01:00
Martin Weinelt 1371fe6327
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/servers/home-assistant/default.nix
 2024-03-07 17:12:13 +01:00
Emily 2ab0d96297
Merge pull request #293251 from nesteroff/chromium-initial-prefs 
nixos/chromium: add the ability to set initial preferences
 2024-03-07 16:33:09 +01:00
Nick Cao b4f564dbff
Merge pull request #293821 from NickCao/knot-test-quic 
nixosTests.knot: test zone transfer over quic
 2024-03-07 09:43:04 -05:00
Will Owens d9188fc882
nixos/tabby: init module 
- Enable tabby to run as a systemd service
- Document standard tabby configuration
 2024-03-07 06:29:12 -05:00
DCsunset 38261d9556 nixos/hoogle: add extraOptions 2024-03-06 22:12:41 -05:00
github-actions[bot] e0fd83a658
Merge master into staging-next 2024-03-07 00:02:06 +00:00
Robert Hensing f32e786e98
Merge pull request #292099 from hercules-ci/update-nixops_unstable 
nixops_unstable to nixops_unstable_minimal.withPlugins migration + update
 2024-03-07 00:46:59 +01:00
Robert Hensing 76fc2db1f5 nixosTests.nixops_unstable: Set memorySize to 2G 
Give the evaluator some breathing room.
 2024-03-06 22:47:23 +01:00
Robert Hensing 663b3d4be7 nixops_unstable*: Make withPlugins.*.tests.nixos behave correctly 2024-03-06 22:47:22 +01:00
Philip Taron 86ae7a6243
Remove top level with lib; in docs (#293829) 2024-03-06 22:35:43 +01:00
Yuri Nesterov 960f93fd4f nixos/chromium: add the ability to set initial preferences 2024-03-06 21:32:18 +02:00
Shawn8901 93a891f0e8 steam: add extraCompatPackages 2024-03-06 20:24:55 +01:00
Nick Cao 3b7625845b
nixosTests.knot: test zone transfer over quic 2024-03-06 13:41:24 -05:00
Peder Bergebakken Sundt 715b2ae92e
Merge pull request #292608 from onemoresuza/hare-crosscomp 
hare: enable cross-compilation
 2024-03-06 19:36:45 +01:00
github-actions[bot] 8a8a630460
Merge master into staging-next 2024-03-06 18:01:19 +00:00