swendel/nixpkgs
1
0
Fork 0
mirror of https://github.com/SebastianWendel/nixpkgs.git synced 2024-09-23 21:55:53 +02:00
Code Issues Packages Projects Releases Wiki Activity
422231 commits 5 branches 0 tags 27 GiB
Commit graph

22868 commits

Author SHA1 Message Date
MidAutumnMoon bd8413e8e1
nixos/snowflake-proxy: set proper SystemCallFilter 2022-10-25 15:41:54 +08:00
MidAutumnMoon d3a95ce32c
nixos/listmonk: set proper SystemCallFilter 2022-10-25 11:55:18 +08:00
MidAutumnMoon ba8041fc2b
nixos/croc: set proper SystemCallFilter 2022-10-25 11:51:40 +08:00
Andrew Kvalheim 545b74f075 brscan4-etc-files: rename name to pname&version 
re #103997
 2022-10-25 02:38:39 +02:00
Martin Weinelt fcf2d05d81 nixos/acme: Relax syscall filter after go upgrade 
With Go 1.19 calls to setrlimit are required for lego to run.

While we could allow setrlimit alone, I think it is not unreasonable to
allow @resources in general.

Closes: #197513
 2022-10-25 07:22:27 +10:00
Sandro 64f3daf6d5
Merge pull request #197459 from SuperSandro2000/changedetection-typo 2022-10-24 23:07:26 +02:00
Timothy DeHerrera 3266f35fcd
Merge pull request #197503 from eigengrau/zsh-fpath-prefer-profiles 
nixos/zsh: prefer added completions over completions shipped with Zsh
 2022-10-24 11:35:29 -06:00
Bernardo Meurer 8a7f3f3271
Merge pull request #197585 from KFearsoff/fix-broken-grafana-configs 2022-10-24 18:28:42 +02:00
KFears f3cb29a5b8 nixos/grafana: fix issues with rfc42 refactoring 2022-10-24 19:31:50 +04:00
Guillaume Girol e06cab26e3
Merge pull request #196617 from oxalica/fix/btrbk-options 
nixos/btrbk: fix ordering of subsections and refactor
 2022-10-24 14:33:38 +00:00
MidAutumnMoon 0ce08acdce nixos/navidrome: set proper SystemCallFilter 2022-10-24 22:21:59 +10:00
MidAutumnMoon 7415970a3e nixos/endlessh-go: set proper SystemCallFilter 2022-10-24 22:21:02 +10:00
MidAutumnMoon db029623b7 nixos/dnscrypt-proxy2: properly set SystemCallFilter 2022-10-24 22:20:42 +10:00
MidAutumnMoon 19b481fbc6
nixos/galene: set proper SystemCallFilter 2022-10-24 20:19:12 +08:00
MidAutumnMoon e04013af1a nixos/gitea: set proper SystemCallFilter 
remove trailing whitespace
 2022-10-24 22:18:42 +10:00
Robert Hensing 7ea35fae3e
Merge pull request #197406 from bjornfor/add-nfs4-to-fstab-skip-list 
nixos/filesystems: add nfs4 to fsToSkipCheck
 2022-10-24 13:10:46 +02:00
Michele Guerini Rocco bbdc6e34d1
Merge pull request #197069 from rnhmjoj/pr-minimal 
nixos/profiles/minimal: don't install freedesktop files
 2022-10-24 10:57:40 +02:00
M. A 8ac339533f nixos/snipe-it: Add missing upload directories 
Resolves #187179
 2022-10-24 08:20:30 +00:00
Sebastian Reuße 8dad5a2239 nixos/zsh: prefer added completions over completions shipped with Zsh 
Zsh ships some rudimentary completions for programs where upstream also ships
their own completions (e.g., curl). So as not to shadow those completions, we
need to prepend to the fpath instead of appending.

Fixes #197502
 2022-10-24 09:27:19 +02:00
oxalica 50eb816d29 nixos/btrbk: fix ordering of subsections and refactor 2022-10-24 08:52:25 +08:00
Sandro Jäckel f24c4d8a28
nixos/changedetection-io: fix typo 2022-10-24 02:06:49 +02:00
schnusch 72ee279ab4 nixos/vdirsyncer: init 
inspired by borgbackup
 2022-10-23 23:23:13 +02:00
ajs124 16d6140878
Merge pull request #197386 from Ma27/nextcloud25 
nextcloud25: init
 2022-10-23 23:05:17 +02:00
Bjørn Forsman 3ec90ef87f nixos/filesystems: add nfs4 to fsToSkipCheck 
This change fixes this system journal warning for
`fileSystems.<name>.fsType = "nfs4"` configurations:

  systemd-fstab-generator[714]: Checking was requested for "192.168.0.6:/data", but it is not a device.
 2022-10-23 20:08:08 +02:00
Raito Bezarius 9b7dc6cb1c services/garage: init 2022-10-23 18:54:18 +02:00
Maximilian Bosch 40b7f52b8f
nextcloud25: init 2022-10-23 17:20:49 +02:00
Sandro eebe7c8588
Merge pull request #197309 from qowoz/hound 2022-10-23 17:16:23 +02:00
lucasew d31cf8ca0c nixos/uvesafb: init 
Signed-off-by: lucasew <lucas59356@gmail.com>
 2022-10-23 11:47:11 -03:00
Martin Weinelt ccbc7eb29e
Merge pull request #197302 from MidAutumnMoon/miniflux-service-fix 2022-10-23 14:58:05 +02:00
Jonas Heinrich 65dd4df8a2
Merge pull request #197172 from jkarlson/dokuwiki 
nixos/dokuwiki: Use stateDir everywhere
 2022-10-23 14:51:52 +02:00
MidAutumnMoon 8b4b334a66
nixos/miniflux: fix startup failure caused by improper SystemCallFilter 2022-10-23 20:28:43 +08:00
Maximilian Bosch f9afc634e3
Merge pull request #191768 from KFearsoff/grafana-rfc42 
nixos/grafana: refactor for RFC42
 2022-10-23 13:28:25 +02:00
Julien Malka b54ae5a868 nixos/uptime-kuma: init module 2022-10-23 12:44:16 +02:00
Linus Heckemann 79ec5f2d2b
Merge pull request #161124 from Atemu/nixos/nix-skip-all-checks 
nixos/nix-daemon: make checkConfig fully disable nix.conf validation
 2022-10-23 07:55:06 +02:00
zowoq 217bf31c03 hound, nixos/hound: deduplicate runtime deps 2022-10-23 12:50:24 +10:00
Sandro 6ffd08e152
Merge pull request #197144 from SuperSandro2000/changedetection-io-network 2022-10-23 03:27:52 +02:00
Sandro Jäckel 30df44aac2
nixos/changedetection-io: fix typos 2022-10-23 01:45:37 +02:00
KFears 9f963f36e5 nixos/grafana: refactor settings for RFC42 2022-10-22 23:56:14 +04:00
KFears c7cd659710 nixos/grafana: fix markdown docs 2022-10-22 23:54:32 +04:00
KFears 7908ef062f nixos/grafana: add alerting 2022-10-22 23:54:32 +04:00
KFears 34c2ea6750 nixos/grafana: deprecate notifiers 2022-10-22 23:54:31 +04:00
KFears 0852dc859e nixos/grafana: refactor datasources for RFC42 
This commit refactors `services.grafana.provision.datasources` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-22 23:53:24 +04:00
github-actions[bot] 71e4896d63
Merge master into staging-next 2022-10-22 12:01:25 +00:00
Arnout Engelen 5784f69a46
Merge pull request #158967 from mschwaig/sd-image-determinism 
sd-image: make firmware partition reproducible, sd-image, dvd-image: get rid of faketime related warnings
 2022-10-22 13:58:22 +02:00
happysalada fdfdc5df21 caddy: module: rmem_max default 2022-10-22 07:55:53 -04:00
markuskowa 79638604bb
Merge pull request #189703 from ck3d/remove-incomplient-nspawn-options 
nixos/nspawn: Remove not compliant options
 2022-10-22 12:19:49 +02:00
Martin Schwaighofer 0c67f190b1 sd-image: remove unnecessary subshell 
replace the subshell surrounding this block with cd before and after

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-22 12:11:30 +02:00
Martin Schwaighofer bacef6bb09 dvd-image: replace faketime with --invariant for mkfs.vfat 2022-10-22 12:11:30 +02:00
Martin Schwaighofer a1d6fd3702 sd-image: replace faketime with --invariant for mkfs.vfat 
This is done for sd-images only here, but should probably also be done
for dvd-images.

The --invariant arg should be a better way of making mkfs.vfat deterministic.
The previous version of invoking faketime was building fine and reproducible
when I was compiling an sdimage for aarch64 under emulation.
It was however still logging errors:
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
The logged errors were presumably inaccurate somehow as calling
faketime was required for reproducibility, even though the log makes it
looks like it failed.
 2022-10-22 12:11:30 +02:00
Martin Schwaighofer f6ee247a1f sd-image: make firmware partition deterministic 
Based on how it works for the EFI partition of an iso-image at
nixos/modules/installer/cd-dvd/iso-image.nix.
 2022-10-22 12:11:30 +02:00
Emil Karlson 082bc22205 nixos/dokuwiki: Use stateDir everywhere 
Current module does not use non-default stateDir everywhere.

Statedir has a consistent default, use the cfg.stateDir everywhere
unconditionally.
 2022-10-22 09:02:23 +03:00
Sandro Jäckel 17f2c5ba71
nixos/changedetection-io: fix container having no network 2022-10-22 02:14:41 +02:00
github-actions[bot] c8a9826fe2
Merge master into staging-next 2022-10-22 00:04:37 +00:00
Sandro 0d1e0a9f80
Merge pull request #191061 from Izorkin/update-peertube-nginx 2022-10-22 00:02:11 +02:00
Sandro 67e4972c5d
Merge pull request #195745 from virusdave/patch-1 2022-10-22 00:00:52 +02:00
ajs124 3dd1098f45
Merge pull request #195567 from helsinki-systems/feat/jenkins-jdk17 
nixos/jenkins: jdk11 -> jdk17
 2022-10-21 22:59:03 +02:00
Martin Weinelt 80fc469031 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-21 22:33:42 +02:00
Luflosi a255c43f44
nixos/kubo: convert to RFC42-style settings 2022-10-21 20:54:00 +02:00
Elis Hirwing 844715a8b9
Merge pull request #196819 from Stunkymonkey/freshrss-api-fix 
freshrss: fix greader-api
 2022-10-21 19:56:55 +02:00
Jonas Heinrich c54a28030f nixos/httpd: Make option adminAddr optional 2022-10-21 09:12:25 -04:00
rnhmjoj 3bb69836cb
nixos/profiles/minimal: don't install freedesktop files 
This saves about 25M from the closure size of:

$ nix build -f nixos system --arg configuration '
  { imports = [ ./nixos/modules/profiles/minimal.nix ];
    fileSystems."/".label="root";
    boot.loader.grub.device = "nodev";
  }'
 2022-10-21 14:54:38 +02:00
KFears 89e30315e0 nixos/grafana: refactor dashboards for RFC42 
This commit refactors `services.grafana.provision.dashboards` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-21 16:42:30 +04:00
Anderson Torres 77b67a2524
Merge pull request #196862 from atorres1985-contrib/hypr 
hypr: init at unstable-2022-05-25
 2022-10-21 08:00:20 -03:00
Florian Klink 690ccd9c4a
Merge pull request #196917 from flokli/nsncd 
nixos/nscd: add option to use nsncd, init nsncd
 2022-10-21 11:22:17 +02:00
Jan Tojnar c789af6065 gnome._gdkPixbufCacheBuilder_DO_NOT_USE: Extract from nixos/gdk-pixbuf 
Unlike previously, we now fail loudly when a package not containing a gdk-pixbuf modules is passed.
 2022-10-21 10:06:24 +02:00
Florian Klink aee40c2d8a nixos/nscd: add enableNsncd option 
When set, this switches from using nscd to using nsncd.

It's a protocol-compatible, non-caching and much less flaky alternative.
 2022-10-21 09:37:18 +02:00
AndersonTorres af3779f819 nixos/hypr: add module 2022-10-21 00:01:43 -03:00
github-actions[bot] c434165354
Merge master into staging-next 2022-10-21 00:05:50 +00:00
Sandro c9719e7fd6
Merge pull request #189269 from Tom-Hubrecht/ntfy-sh 2022-10-20 20:50:34 +02:00
Sandro 89e49d87d3
Merge pull request #196488 from SuperSandro2000/changedetectionio 2022-10-20 20:25:36 +02:00
github-actions[bot] 80317024cf
Merge master into staging-next 2022-10-20 18:10:43 +00:00
Dave Nicponski 1a73877305 Tweak nginx config for Let's Encrypt ACME challenges 
Currently, this is using a "URI prefix match", but per nginx docs,

```
[...] the location with the longest matching prefix is selected and remembered. Then regular expressions are checked, in the order of their appearance in the configuration file. The search of regular expressions terminates on the first match, and the corresponding configuration is used. If no match with a regular expression is found then the configuration of the prefix location remembered earlier is used.
```
which means a config like this (from wordpress service) will override that
```
locations = {
          "~ /\\." = {
            priority = 800;
            extraConfig = "deny all;";
          };
};
```
😱
Luckily, from nginx docs:
```
If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
```

Whew!
 2022-10-20 10:59:28 -04:00
Bernardo Meurer d473597e33
Merge pull request #196904 from hercules-ci/nixos-nixpkgs-only-error-when-used 2022-10-20 09:10:29 -04:00
github-actions[bot] ee0190d830
Merge master into staging-next 2022-10-20 12:01:25 +00:00
Izorkin abdcfec3a0
nixos/peertube: add nginx configuration 2022-10-20 14:49:51 +03:00
Florian Klink 7987b41d44 nixos/nscd: nixpkgs-fmt 2022-10-20 13:15:16 +02:00
Robert Hensing 1e9864c85e nixos/nixpkgs: Only error when nixpkgs options are actually used 2022-10-20 11:19:20 +02:00
Janne Heß 24167c94f0
Merge pull request #196337 from SuperSandro2000/update-users-groups 
nixos/update-users-groups.pl: sort json file for better reproducibility
 2022-10-20 11:11:49 +02:00
github-actions[bot] aac580f88f
Merge master into staging-next 2022-10-20 00:05:13 +00:00
Felix Bühler 27e5ca478b
Merge pull request #196140 from uninsane/pr/freshrss-patchShebangs 
freshrss: patchShebangs instead of specifying interpreter at use site
 2022-10-20 00:03:13 +02:00
Felix Buehler fe9fb739a9 freshrss: fix greader-api 2022-10-19 23:34:26 +02:00
Sandro Jäckel c9aab9ba97
nixos/changedetection-io: init 2022-10-19 21:33:31 +02:00
github-actions[bot] 958cbc7d51
Merge master into staging-next 2022-10-19 18:09:25 +00:00
Domen Kožar d2cfe468f8
Merge pull request #196728 from veehaitch/github-runner-new-pats 
nixos/github-runner: support fine-grained personal access tokens
 2022-10-19 14:40:23 +02:00
Martin Weinelt 5d2330ddb5
Merge pull request #195760 from jmbaur/prometheus-kea-exporter 2022-10-19 14:02:15 +02:00
github-actions[bot] bbaff9a043
Merge master into staging-next 2022-10-19 12:01:22 +00:00
Vincent Haupert ea8cf2e486 nixos/github-runners: support fine-grained personal access tokens 
Add support for GitHub's new fine-grained personal access tokens [1]. As
opposed to the classic PATs, those start with `github_pat_` instead of
`ghp_`.

Make sure to use a token which has read and write access to the
"Administration" resource group [2] to allow for registrations of new
runners.

[1] https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/

[2] https://docs.github.com/en/rest/overview/permissions-required-for-github-apps#administration
 2022-10-19 13:50:34 +02:00
Domen Kožar ff27dc3a09
Merge pull request #176691 from codedownio/multiple-github-runners 
GitHub runners: configurable user, environment, and service overrides + multiple runners
 2022-10-19 13:38:23 +02:00
Tom McLaughlin c2cc9aeafd Use config name by default, falling back to attr name 2022-10-19 03:33:30 -07:00
Jan Tojnar 457f28f6f8 Merge branch 'master' into staging-next 
; Conflicts:
;	pkgs/development/tools/codespell/default.nix

codespell 2.2.2 switched to pyproject & setuptools_scm:
https://github.com/codespell-project/codespell/pull/2523
 2022-10-19 05:24:28 +02:00
Tom Hubrecht bbf5ba11b4
nixos/ntfy-sh: init 2022-10-19 02:20:16 +02:00
Sandro e188e93b8f
Merge pull request #196477 from MatthewCroughan/mc/stateless-cups 2022-10-18 23:22:12 +02:00
Atemu bf6d84958d rl-2211: document nix.checkConfig option changes 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:43:52 +02:00
Atemu ef70bdd10f nixos/nix-daemon: make checkConfig fully disable nix.conf validation 
A new option checkAllErrors is introduced which implements the old checkConfig
toggle behaviour

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:42:31 +02:00
Sandro 2917c9a67e
Merge pull request #195205 from NULLx76/vmagent 2022-10-18 21:16:10 +02:00
Sandro 7307c3ae6c
Merge pull request #191922 from NukaDuka/karma 2022-10-18 21:10:04 +02:00
digital f4ccaa51e0 nixos/containers: support nixpkgs.hostPlatform 
Use hostPlatform if both the host and the containers nixpkgs supports
hostPlatform, otherwise fall back to localSystem. This preseves backwards
compatibility.
 2022-10-18 19:15:26 +02:00
Robert Hensing 314959198f
Merge pull request #196447 from Cynerd/oci-container-docker 
nixos/modules/virtualisation: fix oci-containers with docker
 2022-10-18 15:06:18 +02:00
matthewcroughan a99ab1fbc1 nixos/printing: add services.printing.stateless option 
This will remove all state directories related to CUPS on startup, which
is particularly useful for guaranteeing that printer discovery works
more reliably on some networks, since CUPS will no longer be able to
store state that effects the next run of the service, such as old
printer names and mDNS information.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-17 22:59:24 +01:00
Jean-François Roche dc529302fe
nixos: add cachix watch-store service 
Self hosted CI push built packages asynchronously to cachix using a service.

Based on @Mic92 [code](https://github.com/cachix/cachix/issues/370#issuecomment-817081937)
 2022-10-17 18:24:03 +02:00