Commit graph

29990 commits

Author SHA1 Message Date
Sandro
4d4fdde2cf
Merge pull request #197876 from iopq/alt-history 2022-10-30 19:51:28 +01:00
Sandro
4f989630d2
Merge pull request #197989 from SuperSandro2000/healthchecks 2022-10-30 19:46:18 +01:00
Bjørn Forsman
fcf81f91a3 nixos/jenkins-job-builder: better defaults for accessUser/accessTokenFile
The new defaults allows jenkins-job-builder to reload the configuration
out-of-the-box, whereas the previous defaults required users to manually
reload/restart jenkins, or configure accessUser/accessTokenFile
themselves.

(If `extraJavaOptions = [ "-Djenkins.install.runSetupWizard=false" ]`
then the initial admin user is *not* created and you have to use JCasC
or something else to bootstrap.)
2022-10-30 19:01:48 +01:00
github-actions[bot]
4f746003cf
Merge master into staging-next 2022-10-30 18:01:14 +00:00
John Soo
86e1247a47
arangodb: note removal of old versions in rl-2211 notes 2022-10-30 10:22:11 -07:00
Winter
4abe8dcd61 nixos/mautrix-telegram: fix link to example config 2022-10-30 13:20:16 -04:00
Winter
8e803f4364 nixos/mautrix-telegram: add new required config option 2022-10-30 13:20:16 -04:00
maxine
700de524b4
Merge pull request #198390 from euank/k3s-tests-fixup
nixos/tests/k3s: fix multi-node test
2022-10-30 14:40:21 +01:00
KFears
b3782f29ff nixos/prometheus-node-exporter: fix netdev collect
Netdev collector needs AF_NETLINK permissions to work. It will fail with
the message "couldn't get netstats: socket: address family is not
supported by protocol" otherwise.
2022-10-30 14:59:05 +04:00
github-actions[bot]
a7989ee51a
Merge master into staging-next 2022-10-30 06:01:22 +00:00
Kevin Cox
610fcf1243 nixos/mautrix-facebook: add new required config option 2022-10-29 20:59:36 -04:00
github-actions[bot]
7cf1999911
Merge master into staging-next 2022-10-30 00:02:33 +00:00
Andrew Barchuk
43bc09e037
nixos/syncthing: keep manually added dirs/devices
If folders and devices are not configured explicitly, do not wipe the
changes done via the web GUI. Currently the list of devices or folders
will be reset unless overrideFolders/overrideDevices is disabled.
2022-10-30 00:22:00 +02:00
Mario Rodas
1fb589678b
Merge pull request #197906 from jtojnar/postgres-upgrading-exts
doc/nixos/postgress: Mention extensions in upgrading
2022-10-29 14:25:46 -05:00
github-actions[bot]
d3cd7d0199
Merge master into staging-next 2022-10-29 18:01:22 +00:00
Thomas Gerbet
c7c4f66546 cassandra_2_1, cassandra_2_2: drop
Cassandra 2.x is no more supported upstream and is affected by some vulnerabilities
(CVE-2020-13946, CVE-2020-17516).
2022-10-29 17:49:57 +02:00
Florian Klink
55c1fca0d8
Merge pull request #198336 from ck3d/doc-overrideStrategy
doc/rl-2211: add new option overrideStrategy
2022-10-29 16:24:42 +01:00
Christian Kögler
fa269d4e0d doc/rl-2211: add new option overrideStrategy 2022-10-29 16:19:50 +02:00
github-actions[bot]
18b25cbb99
Merge master into staging-next 2022-10-29 12:01:19 +00:00
Martin Weinelt
f3c660e95b
Merge pull request #198298 from yorickvP/int-rm-leading-zeroes 2022-10-29 12:37:51 +02:00
Naïm Favier
3a13505cc8
Merge pull request #194644 from the-argus/feat/mkdefault-etc-issue 2022-10-29 11:44:06 +02:00
Thiago Kenji Okada
f83198ab9c
Merge pull request #171680 from bryanasdev000/zfshibernation
nixos/zfs: introduce option to control hibernation
2022-10-29 10:37:52 +01:00
Bryan A. S
a53858010b nixos/zfs: introduce option to control hibernation 2022-10-29 04:46:27 -03:00
Euan Kemp
9d477c37ac nixos/tests/k3s: fix multi-node test
This corrects the multi-node test after a couple recent changes which
resulted in it being broken.

The `lib.toString` change was an incorrect tree-wide refactor, and the
aarch64 change also introduced an error in python indentation/formatting
I believe.
2022-10-28 21:03:30 -07:00
github-actions[bot]
f349a716a3
Merge master into staging-next 2022-10-29 00:02:26 +00:00
Robert Hensing
39b10ad867
Merge pull request #198294 from edolstra/no-toString
nixos/modules/misc/documentation.nix: Don't use toString on a path
2022-10-28 22:28:08 +02:00
github-actions[bot]
6e5f43a5bd
Merge master into staging-next 2022-10-28 18:01:29 +00:00
Florian Klink
eec71f9dee
Merge pull request #186314 from ck3d/unit-add-map-control
nixos: Add option to influence override strategies in systemd units
2022-10-28 17:56:49 +02:00
iopq
96f7444bc8 nixos/xray: init service 2022-10-28 23:53:41 +08:00
Cleeyv
2ef91019db jibri: 8.0-93 -> 8.0-139
- Fix of accidental downgrade in #158911
- Update of runtime from Java 8 -> 11
2022-10-28 11:42:55 -04:00
pennae
d55c393aa2 nixos/mosquitto: fix test
looks like stricter typing checks broke this one?
2022-10-28 17:39:30 +02:00
pennae
15372dc4d4 nixos/mosquitto: clarify hashedPassword generation
unfortunately we cannot use other tools (like mkpasswd) instead of
mosquitto_passwd because mosquitto is incompatible with the standard
crypt format.
2022-10-28 17:39:30 +02:00
Yorick van Pelt
af4a43e36a
treewide: convert fake octal ints to strings
These were being cast to strings later and then reinterpreted as
octal.
2022-10-28 17:23:44 +02:00
Eelco Dolstra
2e860868fe nixos/modules/misc/documentation.nix: Don't use toString on a path
It gives a warning on the lazy-trees branch of Nix
(https://github.com/NixOS/nix/pull/6530) and should generally be
avoided because it causes an unnecessary copy to the store.
2022-10-28 17:05:03 +02:00
github-actions[bot]
442b0d9140
Merge master into staging-next 2022-10-28 12:01:44 +00:00
Sandro Jäckel
3c4c38a799
nixos/tests/healthchecks: update test for auto user change in healthchecks-manage 2022-10-28 13:34:18 +02:00
Naïm Favier
94d24f136e
nixos/vdirsyncer: fix description 2022-10-28 11:59:34 +02:00
github-actions[bot]
d4c6e9186b
Merge staging-next into staging 2022-10-28 00:03:13 +00:00
ajs124
32cf6b29ab
Merge pull request #194291 from bronson/sort-etc-clean
Sort /etc/.clean to reduce spurious file changes
2022-10-28 00:47:15 +02:00
Sandro
432e5e65a9
Merge pull request #197104 from Luflosi/kubo-RFC42 2022-10-27 23:48:33 +02:00
Sandro Jäckel
44cdc6104a
nixos/nextcloud: allow changing logType 2022-10-27 23:32:00 +02:00
Sandro Jäckel
887462db03
nixos/healthchecks: allow appending to EnvironmentFile to easily and securely setting EMAIL_HOST_PASSWORD 2022-10-27 22:35:28 +02:00
Patrick Jackson
316948c5ad nixos/mullvad-vpn: add cross-platform availability announcement to release notes 2022-10-27 12:39:25 -07:00
Patrick Jackson
1c1af8d2f2 nixos/mullvad-vpn: add patricksjackson to maintainers 2022-10-27 12:38:48 -07:00
Patrick Jackson
3aa131978d nixos/mullvad-vpn: add the package option 2022-10-27 12:38:48 -07:00
Sandro Jäckel
897044e435
nixos/healthchecks: automatically invoke sudo in the wrapper
much like nextcloud-occ does
2022-10-27 21:21:53 +02:00
Christian Kögler
9bb2a979d4 nixos/tests/machinectl: Disable tmpfs for /tmp 2022-10-27 20:19:18 +02:00
Christian Kögler
6d31353099 nixos: Add unit option overrideStrategy 2022-10-27 20:19:18 +02:00
github-actions[bot]
c2ec40a74a
Merge staging-next into staging 2022-10-27 18:02:10 +00:00
Robert Hensing
8837a5d68e
Merge pull request #195681 from maifel-maifel/mr-containers-hostPlatform
nixos/containers: now uses nixpkgs.hostPlatform
2022-10-27 17:52:45 +02:00
Martin Weinelt
96d7f29087
Merge pull request #176553 from MalteT/fix/smartctl-exporter-override 2022-10-27 15:50:54 +02:00
Rafal Proszowski
2c9700acf0
nixos/sonarr: add package option 2022-10-27 08:49:23 -04:00
github-actions[bot]
d2dd10ada4
Merge staging-next into staging 2022-10-27 12:02:33 +00:00
Bernardo Meurer
948fd41c77
Merge pull request #198056 from hercules-ci/nixos-fix-nixpkgs-assertion-when-pkgs-is-set 2022-10-27 12:58:11 +01:00
Robert Hensing
5d663a9171 nixos/nixpkgs.nix: Fix assertion when nixpkgs.pkgs is set 2022-10-27 13:41:01 +02:00
Frederik Rietdijk
d3ca664b6a Merge staging-next into staging 2022-10-27 10:06:54 +02:00
Jörg Thalheim
263575432d
Merge pull request #198008 from danielbarter/networkd-Address-RouteMetric
networkd: RouteMetric in Address section of a networkd config file
2022-10-27 08:10:05 +02:00
illustris
79cf21151e nixos/cloud-init: fix hostname and resolvconf configuration
- Fix hostname configuration on proxmox, which uses "hostname" in user-data
  instead of "local-hostname" in meta-data.
- Allow setting resolv.conf through cloud-init
- Add tests for new changes
- Add timeouts to make tests fail faster
2022-10-27 08:07:48 +02:00
github-actions[bot]
8aceec386f
Merge staging-next into staging 2022-10-27 06:01:51 +00:00
Daniel Barter
fde313902f networkd: allow setting RouteMetric in Address section of a network config file 2022-10-26 21:53:32 -07:00
Sandro
8f0c7e38cb
Merge pull request #190181 from RaitoBezarius/garage-module
services/garage: init
2022-10-27 02:14:01 +02:00
github-actions[bot]
5f25b88cd1
Merge staging-next into staging 2022-10-27 00:03:09 +00:00
Sandro
b05729432a
Merge pull request #196060 from risicle/ris-gocd-22.2.0 2022-10-27 01:07:34 +02:00
Sandro Jäckel
95a7b35b1c
nixos/grafana: add default value back to settings.server.socket 2022-10-27 00:53:46 +02:00
Sandro
dd2451126e
Merge pull request #188464 from xeals/fix/portinus-configuration 2022-10-27 00:52:08 +02:00
Sandro
7742fdb7d5
Merge pull request #197450 from tomfitzhenry/dnscrypt-proxy2-test-listen-port 2022-10-27 00:51:02 +02:00
Sandro
b99ffef2de
Merge pull request #197688 from MidAutumnMoon/go-119-services-fix-2 2022-10-27 00:49:35 +02:00
Sandro
dc5fa53b83
Merge pull request #197657 from MidAutumnMoon/go-119-services-fix 2022-10-27 00:48:28 +02:00
Sandro
8ebdb3e6fe
Merge pull request #176701 from CRTified/adguardhome-schemaversion 2022-10-26 22:52:04 +02:00
Sandro
6c10d52d0d
Merge pull request #194036 from gloaming/polkit-debug-logs 2022-10-26 22:23:45 +02:00
Sandro
4d1f158bf0
Merge pull request #161640 from schnusch/vdirsyncer 2022-10-26 22:22:19 +02:00
Sandro
45ff74823b
Merge pull request #187270 from yayayayaka/snipe-it-add-missing-directory 2022-10-26 22:11:24 +02:00
github-actions[bot]
8b504e632b
Merge staging-next into staging 2022-10-26 18:01:50 +00:00
Sandro Jäckel
7fe3f63da6
nixos/udev: add enable option 2022-10-26 19:24:14 +02:00
KFears
f2e74bdf57 nixos/grafana: fix secrets-related warnings 2022-10-26 21:03:57 +04:00
Thiago Kenji Okada
06ccee0e4e
Merge pull request #197865 from srhb/unbreak-kafka
Unbreak kafka
2022-10-26 15:44:26 +01:00
Thiago Kenji Okada
4a98070507
Merge pull request #197880 from 06kellyjac/tracee-update
tracee: 0.8.3 -> 0.9.2
2022-10-26 15:38:59 +01:00
Izorkin
2bb8cc27bd nixos/mastodon: fix start services 2022-10-26 16:35:23 +02:00
Sarah Brofeldt
af484ef1c4 nixos/tests/kafka: Fix tests
Requires new flags that works across all versions
Drops unused 0.9 compat
2022-10-26 15:41:40 +02:00
Jan Tojnar
04e85da1c0 doc/nixos/postgress: Mention extensions in upgrading
analyze_new_cluster script is not available in PostgreSQL 14+:

8f113698b6
2022-10-26 15:21:06 +02:00
Jan Tojnar
e598636243 doc/nixos/postgress: Mention extensions in upgrading
This is easy to miss and can lead to annoying failures.
2022-10-26 15:06:09 +02:00
Jan Tojnar
0de7128deb doc/nixos/postgress: Streamline upgrade script
We already need to set the package so no need to manually copy the schema version.
2022-10-26 15:05:13 +02:00
Thiago Kenji Okada
73ba4de363
Merge pull request #175128 from davidak/doc-graphical-installer
nixos/doc: improve install instructions
2022-10-26 13:42:48 +01:00
davidak
f701bd5986 nixos/doc: improve install instructions
- Update download URLs
- Replace "USB stick"/"USB Drive" with "USB flash drive" as that seem more correct

  https://en.wikipedia.org/wiki/USB_flash_drive
  https://elementary.io/docs/installation#choose-operating-system

- Don't mention CD as easiest option anymore,
  as all modern systems should be able to boot from USB,
  but many don't have a CD drive. Burning CDs is also usually wasteful as you
  can't burn them again.
- Remove link to NixOS Wiki (Making_the_installation_media) as it is not needed
- Add Etcher and USBImager as graphical tools to create install drive
- Make dd command consistent and use block size of 4 MB for faster flashing
- More consistent text
- Add instructions for "Booting from the install medium"

  Inspired by 9a91b0f495/docs/installation.md (booting-from-the-install-drive-booting-from-the-installation-medium-clear-float-2)

- Add instructions for "Graphical Installation"
- Restructure headings and anchors for "Manual Installation"
- Adding legacy anchors for "Manual Installation" to not break links

Co-authored-by: j-k <dev@j-k.io>
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
Co-authored-by: Robert Schütz <github@dotlambda.de>
Co-authored-by: Jörg Thalheim <Mic92@users.noreply.github.com>
Co-authored-by: Thiago Kenji Okada <thiagokokada@gmail.com>
2022-10-26 14:22:15 +02:00
github-actions[bot]
abfd2fe8a8
Merge staging-next into staging 2022-10-26 12:01:52 +00:00
06kellyjac
07ff3b1737 tracee: 0.8.3 -> 0.9.2
Use our built copy of libbpf.a
2022-10-26 12:11:44 +01:00
Francesco Gazzetta
85804486b8
Merge pull request #197836 from r-ryantm/auto-update/bloat
bloat: unstable-2022-09-23 -> unstable-2022-10-25
2022-10-26 11:05:53 +00:00
R. Ryantm
876320522f bloat: unstable-2022-09-23 -> unstable-2022-10-25
Co-authored-by: Francesco Gazzetta <fgaz@fgaz.me>
2022-10-26 11:41:53 +02:00
github-actions[bot]
01d2877656
Merge staging-next into staging 2022-10-26 06:01:50 +00:00
Winter
f540aeda6f nixos/make-options-doc: fix JSON generation on Darwin 2022-10-25 22:58:50 -04:00
Anderson Torres
0614d5d969
Merge pull request #197229 from lucasew/nixos/uvesafb
nixos/uvesafb: init
2022-10-25 22:47:19 -03:00
github-actions[bot]
4e978a8caa
Merge staging-next into staging 2022-10-26 00:03:42 +00:00
Jan Tojnar
fa285355ee nixos/doc/manual/md-to-db.sh: Add support for <kbd> element 2022-10-26 01:46:44 +02:00
Niklas Hambüchen
f5c5386870 nixos/smokeping: Don't show 413 Forbidden on thttpd /. Fixes #197704 2022-10-25 23:11:50 +02:00
Vladimír Čunát
0079830888
Merge #195644: mysql57: drop 2022-10-25 21:23:27 +02:00
github-actions[bot]
81a6c5a54c
Merge staging-next into staging 2022-10-25 18:16:24 +00:00
Carl Richard Theodor Schneider
1526a1b041 adguardhome: Add schema_version
This will add `passthru.schema_version` to be used as default value for
the adguardhome module.
It will also update the `update.sh` to keep the `schema_version` in sync
with the version by inspecting the sourcecode.

This might break existing configs, if they use deprecated values that don't
appear in newer schema_versions and schema_version wasn't set explicitly.
Explicit declarations of schema_version always have higher priority.

This also removes the `host` and `config` settings in favour of using the
appropriate `settings`.

Fixes #173938

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2022-10-25 17:35:27 +02:00
Jan Tojnar
361d98667c
Merge pull request #197029 from jtojnar/webp-loader
webp-pixbuf-loader: Adopt by GNOME
2022-10-25 17:02:06 +02:00
Sandro
9237fad409
Merge pull request #185169 from extole/kafka_3 2022-10-25 16:45:08 +02:00
colin
e4235c60b7 freshrss: use an absolute path for ExecStart
this fixes the issue after a recent PR on this file:
<https://github.com/NixOS/nixpkgs/pull/196140#discussion_r1002907603>
2022-10-25 05:22:45 -07:00
github-actions[bot]
f332a666fb
Merge staging-next into staging 2022-10-25 12:02:09 +00:00
Jörg Thalheim
493ae49688
Merge pull request #197696 from MidAutumnMoon/go-119-services-fix-3
nixos/{shiori,nats,geoipupdate,prometheus-smartct,}: set proper SystemCallFilter
2022-10-25 13:21:08 +02:00
Jörg Thalheim
92ab8de4d4
Merge pull request #197376 from ck3d/fix-nspawn-generator
nixos/unitGenerator: fix generation for nspawn files
2022-10-25 13:17:44 +02:00
MidAutumnMoon
6724d2221a
nixos/shiori: set proper SystemCallFilter 2022-10-25 16:48:01 +08:00
MidAutumnMoon
9b8fd74d68
nixos/nats: set proper SystemCallFilter 2022-10-25 16:47:46 +08:00
MidAutumnMoon
afb8d0e5a6
nixos/prometheus-smartctl: set proper SystemCallFilter 2022-10-25 16:47:09 +08:00
MidAutumnMoon
f4342c11e5
nixos/geoipupdate: set proper SystemCallFilter 2022-10-25 16:45:49 +08:00
MidAutumnMoon
5c983ac37b
nixos/prosody-filer: set proper SystemCallFilter 2022-10-25 16:14:24 +08:00
MidAutumnMoon
7742cd543d
nixos/yggdrasil: set proper SystemCallFilter 2022-10-25 16:09:31 +08:00
MidAutumnMoon
ae025da558
nixos/dex-oidc: set proper SystemCallFilter 2022-10-25 16:07:04 +08:00
MidAutumnMoon
bd8413e8e1
nixos/snowflake-proxy: set proper SystemCallFilter 2022-10-25 15:41:54 +08:00
github-actions[bot]
29e01ddcd1
Merge staging-next into staging 2022-10-25 06:24:30 +00:00
MidAutumnMoon
d3a95ce32c
nixos/listmonk: set proper SystemCallFilter 2022-10-25 11:55:18 +08:00
MidAutumnMoon
ba8041fc2b
nixos/croc: set proper SystemCallFilter 2022-10-25 11:51:40 +08:00
Andrew Kvalheim
545b74f075 brscan4-etc-files: rename name to pname&version
re #103997
2022-10-25 02:38:39 +02:00
github-actions[bot]
c80ab7a746
Merge staging-next into staging 2022-10-25 00:05:26 +00:00
Michael Weiss
f8fae712ca
Merge pull request #197611 from primeos/nixos-tests-chromium
nixos/tests/chromium: Fixes for Google Chrome and M107+
2022-10-25 00:07:06 +02:00
Martin Weinelt
2b85fb12da nixos/release: add acme to tested set
The ACME module has long been an important part of every nixos server
deployment and we should therefore make sure the tests are working as
expected before allowing a channel bump to happen.

Related: #197443
2022-10-25 07:22:27 +10:00
Martin Weinelt
fcf2d05d81 nixos/acme: Relax syscall filter after go upgrade
With Go 1.19 calls to setrlimit are required for lego to run.

While we could allow setrlimit alone, I think it is not unreasonable to
allow @resources in general.

Closes: #197513
2022-10-25 07:22:27 +10:00
Sandro
64f3daf6d5
Merge pull request #197459 from SuperSandro2000/changedetection-typo 2022-10-24 23:07:26 +02:00
Michael Weiss
5389fbe783
nixos/tests/chromium: Disable a failing test for M107+
I haven't had time to look into this yet but it looks like opening chrome://gpu
doesn't work anymore without proper GPU rendering (we use software rendering
due to the virtualisation).
According to the console output the new window never opens (at least with
Google Chrome - I couldn't test it with Chromium yet due to the failing builds
for M107 and M108):
```
(finished: sending keys ‘chrome://gpu
‘, in 0.14 seconds)
machine: waiting for a window to appear
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
(finished: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d', in 0.05 seconds)
machine # Error: eglChooseConfig returned zero configs
machine #     at Create (../../third_party/dawn/src/dawn/native/opengl/ContextEGL.cpp:53)
machine #
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
machine # WARNING: lavapipe is not a conformant vulkan implementation, testing use only.
(finished: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d', in 0.06 seconds)
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
(finished: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d', in 0.09 seconds)
[...]
```
2022-10-24 21:33:14 +02:00
Michael Weiss
0fa4d17725
nixos/tests/chromium: Fix the tests for Google Chrome
The meta attribute "timeout" is only set for Chromium (might still be required
due to the long build duration). The Google Chrome tests were failing with:

    error: attribute 'timeout' missing

According to nixos/lib/testing/meta.nix "null values are filtered out by
`meta`" so `timeout = chromiumPkg.meta.timeout or null` might be fine as
well.
2022-10-24 21:33:11 +02:00
github-actions[bot]
38a8b47046
Merge staging-next into staging 2022-10-24 18:06:30 +00:00
Timothy DeHerrera
3266f35fcd
Merge pull request #197503 from eigengrau/zsh-fpath-prefer-profiles
nixos/zsh: prefer added completions over completions shipped with Zsh
2022-10-24 11:35:29 -06:00
Bernardo Meurer
8a7f3f3271
Merge pull request #197585 from KFearsoff/fix-broken-grafana-configs 2022-10-24 18:28:42 +02:00
KFears
f3cb29a5b8 nixos/grafana: fix issues with rfc42 refactoring 2022-10-24 19:31:50 +04:00
Guillaume Girol
e06cab26e3
Merge pull request #196617 from oxalica/fix/btrbk-options
nixos/btrbk: fix ordering of subsections and refactor
2022-10-24 14:33:38 +00:00
MidAutumnMoon
0ce08acdce nixos/navidrome: set proper SystemCallFilter 2022-10-24 22:21:59 +10:00
MidAutumnMoon
7415970a3e nixos/endlessh-go: set proper SystemCallFilter 2022-10-24 22:21:02 +10:00
MidAutumnMoon
db029623b7 nixos/dnscrypt-proxy2: properly set SystemCallFilter 2022-10-24 22:20:42 +10:00
MidAutumnMoon
19b481fbc6
nixos/galene: set proper SystemCallFilter 2022-10-24 20:19:12 +08:00
MidAutumnMoon
e04013af1a nixos/gitea: set proper SystemCallFilter
remove trailing whitespace
2022-10-24 22:18:42 +10:00
github-actions[bot]
c5b73dc964
Merge staging-next into staging 2022-10-24 12:01:55 +00:00
Robert Hensing
7ea35fae3e
Merge pull request #197406 from bjornfor/add-nfs4-to-fstab-skip-list
nixos/filesystems: add nfs4 to fsToSkipCheck
2022-10-24 13:10:46 +02:00
Michele Guerini Rocco
bbdc6e34d1
Merge pull request #197069 from rnhmjoj/pr-minimal
nixos/profiles/minimal: don't install freedesktop files
2022-10-24 10:57:40 +02:00
M. A
8ac339533f nixos/snipe-it: Add missing upload directories
Resolves #187179
2022-10-24 08:20:30 +00:00
Sebastian Reuße
8dad5a2239 nixos/zsh: prefer added completions over completions shipped with Zsh
Zsh ships some rudimentary completions for programs where upstream also ships
their own completions (e.g., curl). So as not to shadow those completions, we
need to prepend to the fpath instead of appending.

Fixes #197502
2022-10-24 09:27:19 +02:00
Skyler Grey
acf1d993b9
release-notes: Move PolyMC from "highlights"
- Previously PolyMC's removal was counted as a release highlight
- It probably shouldn't be, as it's more a notable change rather than a
  highlight
- Thanks @Ma27 for noticing this
2022-10-24 08:07:51 +01:00
oxalica
50eb816d29 nixos/btrbk: fix ordering of subsections and refactor 2022-10-24 08:52:25 +08:00
Sandro Jäckel
f24c4d8a28
nixos/changedetection-io: fix typo 2022-10-24 02:06:49 +02:00
github-actions[bot]
d771a50d9e
Merge staging-next into staging 2022-10-24 00:05:14 +00:00
Tom Fitzhenry
98d2540aef nixosTests.dnscrypt-proxy2: Check that a UDP port is being listened on
Motivation: Ensure this test catches startup failures such as
https://github.com/NixOS/nixpkgs/issues/197443
2022-10-24 10:11:02 +11:00
schnusch
72ee279ab4 nixos/vdirsyncer: init
inspired by borgbackup
2022-10-23 23:23:13 +02:00
ajs124
16d6140878
Merge pull request #197386 from Ma27/nextcloud25
nextcloud25: init
2022-10-23 23:05:17 +02:00
Bjørn Forsman
3ec90ef87f nixos/filesystems: add nfs4 to fsToSkipCheck
This change fixes this system journal warning for
`fileSystems.<name>.fsType = "nfs4"` configurations:

  systemd-fstab-generator[714]: Checking was requested for "192.168.0.6:/data", but it is not a device.
2022-10-23 20:08:08 +02:00
github-actions[bot]
f4c71b2f8c
Merge staging-next into staging 2022-10-23 18:02:19 +00:00
Raito Bezarius
9b7dc6cb1c services/garage: init 2022-10-23 18:54:18 +02:00
Maximilian Bosch
40b7f52b8f
nextcloud25: init 2022-10-23 17:20:49 +02:00
Sandro
eebe7c8588
Merge pull request #197309 from qowoz/hound 2022-10-23 17:16:23 +02:00
lucasew
d31cf8ca0c nixos/uvesafb: init
Signed-off-by: lucasew <lucas59356@gmail.com>
2022-10-23 11:47:11 -03:00
Christian Kögler
c4e0d766b7 nixos/unitGenerator: fix generation for nspawn files 2022-10-23 15:57:55 +02:00
Martin Weinelt
ccbc7eb29e
Merge pull request #197302 from MidAutumnMoon/miniflux-service-fix 2022-10-23 14:58:05 +02:00
Jonas Heinrich
65dd4df8a2
Merge pull request #197172 from jkarlson/dokuwiki
nixos/dokuwiki: Use stateDir everywhere
2022-10-23 14:51:52 +02:00
MidAutumnMoon
8b4b334a66
nixos/miniflux: fix startup failure caused by improper SystemCallFilter 2022-10-23 20:28:43 +08:00
github-actions[bot]
1a1df3b37d
Merge staging-next into staging 2022-10-23 12:01:47 +00:00
Linus Heckemann
21bc28110d
Merge pull request #192299 from Lassulus/bring-back-q3
nixos-tests: bring back quake3 test
2022-10-23 13:53:54 +02:00
Maximilian Bosch
f9afc634e3
Merge pull request #191768 from KFearsoff/grafana-rfc42
nixos/grafana: refactor for RFC42
2022-10-23 13:28:25 +02:00
Maximilian Bosch
dfdff2b946
nixos/tests/grafana: remove superfluous args@ 2022-10-23 13:08:45 +02:00
Julien Malka
b54ae5a868 nixos/uptime-kuma: init module 2022-10-23 12:44:16 +02:00
github-actions[bot]
683aa50df6
Merge staging-next into staging 2022-10-23 06:08:06 +00:00
Linus Heckemann
79ec5f2d2b
Merge pull request #161124 from Atemu/nixos/nix-skip-all-checks
nixos/nix-daemon: make checkConfig fully disable nix.conf validation
2022-10-23 07:55:06 +02:00
zowoq
15c32d0645 nixosTests.lxd: increase diskSize to 4096 2022-10-23 15:10:13 +10:00
zowoq
ee5951363a nixosTests.lxd: use stdenv.hostPlatform.system
`pkgs.system` is an alias
2022-10-23 15:10:13 +10:00
zowoq
a231a1f91c nixosTests.lxd-image-server: use stdenv.hostPlatform.system
`pkgs.system` is an alias
2022-10-23 15:10:13 +10:00
zowoq
217bf31c03 hound, nixos/hound: deduplicate runtime deps 2022-10-23 12:50:24 +10:00
Sandro
6ffd08e152
Merge pull request #197144 from SuperSandro2000/changedetection-io-network 2022-10-23 03:27:52 +02:00
Sandro Jäckel
30df44aac2
nixos/changedetection-io: fix typos 2022-10-23 01:45:37 +02:00
Tobias Stenzel
8111e4f113 nixos/pam: fix pam_tty_audit config
Escape the line breaks to render a valid config.
Module arguments have to be at the same line or line endings have to be
escaped with a backslash.
2022-10-22 23:20:09 +02:00
KFears
5ea8f47014 nixos/grafana: write more efficient tests 2022-10-22 23:56:15 +04:00
KFears
9f963f36e5 nixos/grafana: refactor settings for RFC42 2022-10-22 23:56:14 +04:00
KFears
c7cd659710 nixos/grafana: fix markdown docs 2022-10-22 23:54:32 +04:00
KFears
7908ef062f nixos/grafana: add alerting 2022-10-22 23:54:32 +04:00
KFears
34c2ea6750 nixos/grafana: deprecate notifiers 2022-10-22 23:54:31 +04:00
KFears
0852dc859e nixos/grafana: refactor datasources for RFC42
This commit refactors `services.grafana.provision.datasources` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
2022-10-22 23:53:24 +04:00
Azat Bahawi
76ccbea152
nixos/endlessh: init module 2022-10-22 16:07:52 +03:00
github-actions[bot]
d079720429
Merge staging-next into staging 2022-10-22 12:01:58 +00:00
github-actions[bot]
71e4896d63
Merge master into staging-next 2022-10-22 12:01:25 +00:00
Arnout Engelen
5784f69a46
Merge pull request #158967 from mschwaig/sd-image-determinism
sd-image: make firmware partition reproducible, sd-image, dvd-image: get rid of faketime related warnings
2022-10-22 13:58:22 +02:00
happysalada
fdfdc5df21 caddy: module: rmem_max default 2022-10-22 07:55:53 -04:00
markuskowa
79638604bb
Merge pull request #189703 from ck3d/remove-incomplient-nspawn-options
nixos/nspawn: Remove not compliant options
2022-10-22 12:19:49 +02:00
Martin Schwaighofer
0c67f190b1 sd-image: remove unnecessary subshell
replace the subshell surrounding this block with cd before and after

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2022-10-22 12:11:30 +02:00
Martin Schwaighofer
bacef6bb09 dvd-image: replace faketime with --invariant for mkfs.vfat 2022-10-22 12:11:30 +02:00
Martin Schwaighofer
a1d6fd3702 sd-image: replace faketime with --invariant for mkfs.vfat
This is done for sd-images only here, but should probably also be done
for dvd-images.

The --invariant arg should be a better way of making mkfs.vfat deterministic.
The previous version of invoking faketime was building fine and reproducible
when I was compiling an sdimage for aarch64 under emulation.
It was however still logging errors:
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
The logged errors were presumably inaccurate somehow as calling
faketime was required for reproducibility, even though the log makes it
looks like it failed.
2022-10-22 12:11:30 +02:00
Martin Schwaighofer
f6ee247a1f sd-image: make firmware partition deterministic
Based on how it works for the EFI partition of an iso-image at
nixos/modules/installer/cd-dvd/iso-image.nix.
2022-10-22 12:11:30 +02:00
Emil Karlson
082bc22205 nixos/dokuwiki: Use stateDir everywhere
Current module does not use non-default stateDir everywhere.

Statedir has a consistent default, use the cfg.stateDir everywhere
unconditionally.
2022-10-22 09:02:23 +03:00
Sandro Jäckel
17f2c5ba71
nixos/changedetection-io: fix container having no network 2022-10-22 02:14:41 +02:00
github-actions[bot]
9af095c466
Merge staging-next into staging 2022-10-22 00:05:07 +00:00
github-actions[bot]
c8a9826fe2
Merge master into staging-next 2022-10-22 00:04:37 +00:00
Sandro
0d1e0a9f80
Merge pull request #191061 from Izorkin/update-peertube-nginx 2022-10-22 00:02:11 +02:00
Sandro
67e4972c5d
Merge pull request #195745 from virusdave/patch-1 2022-10-22 00:00:52 +02:00
Sandro
d4f4e5f099
Merge pull request #189718 from rnhmjoj/pr-pcsc-polkit 2022-10-21 23:16:21 +02:00
ajs124
3dd1098f45
Merge pull request #195567 from helsinki-systems/feat/jenkins-jdk17
nixos/jenkins: jdk11 -> jdk17
2022-10-21 22:59:03 +02:00
Martin Weinelt
80fc469031 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-21 22:33:42 +02:00
Luflosi
a255c43f44
nixos/kubo: convert to RFC42-style settings 2022-10-21 20:54:00 +02:00
Elis Hirwing
844715a8b9
Merge pull request #196819 from Stunkymonkey/freshrss-api-fix
freshrss: fix greader-api
2022-10-21 19:56:55 +02:00
Jonas Heinrich
c54a28030f nixos/httpd: Make option adminAddr optional 2022-10-21 09:12:25 -04:00
rnhmjoj
3bb69836cb
nixos/profiles/minimal: don't install freedesktop files
This saves about 25M from the closure size of:

$ nix build -f nixos system --arg configuration '
  { imports = [ ./nixos/modules/profiles/minimal.nix ];
    fileSystems."/".label="root";
    boot.loader.grub.device = "nodev";
  }'
2022-10-21 14:54:38 +02:00
KFears
89e30315e0 nixos/grafana: refactor dashboards for RFC42
This commit refactors `services.grafana.provision.dashboards` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
2022-10-21 16:42:30 +04:00
rnhmjoj
c90b6a859b
nixos/pcscd: allow use without polkit
The polkit support in pcsclite is entirely optional but package enables
it unconditionally and this breaks connecting to the pcscd daemon on
systems without polkit.

The fix is making this configurable and automatically disabling
`polkitSupport` when the polkit service is disabled.
2022-10-21 13:06:40 +02:00
Anderson Torres
77b67a2524
Merge pull request #196862 from atorres1985-contrib/hypr
hypr: init at unstable-2022-05-25
2022-10-21 08:00:20 -03:00
Florian Klink
690ccd9c4a
Merge pull request #196917 from flokli/nsncd
nixos/nscd: add option to use nsncd, init nsncd
2022-10-21 11:22:17 +02:00
Jan Tojnar
c789af6065 gnome._gdkPixbufCacheBuilder_DO_NOT_USE: Extract from nixos/gdk-pixbuf
Unlike previously, we now fail loudly when a package not containing a gdk-pixbuf modules is passed.
2022-10-21 10:06:24 +02:00
Florian Klink
a86e080fa4 nixosTests.nscd: add nsncd specialisation
This shows that nsncd successfully passes all the tests that we run
against glibc-nscd.
2022-10-21 09:37:18 +02:00
Florian Klink
e7bc3e7504 nixosTests.nscd: dump nscd socket info with sockdump
This dumps what's sent over the nscd socket to the console output, which
allows debugging.
2022-10-21 09:37:18 +02:00
Florian Klink
aee40c2d8a nixos/nscd: add enableNsncd option
When set, this switches from using nscd to using nsncd.

It's a protocol-compatible, non-caching and much less flaky alternative.
2022-10-21 09:37:18 +02:00
Thomas Watson
04706f6b12 release-notes: add info about disabled QML cache 2022-10-20 22:15:04 -05:00
Thomas Watson
39d6cfd68f nixos/sddm: remove stale qmlcache workaround 2022-10-20 22:15:04 -05:00
AndersonTorres
af3779f819 nixos/hypr: add module 2022-10-21 00:01:43 -03:00
github-actions[bot]
c434165354
Merge master into staging-next 2022-10-21 00:05:50 +00:00
Guillaume Girol
91a3819bad
Merge pull request #177273 from dali99/escape-systemd
Make escapeSystemdPath implement the correct systemd escaping algorithm
2022-10-20 19:15:31 +00:00
Sandro
c9719e7fd6
Merge pull request #189269 from Tom-Hubrecht/ntfy-sh 2022-10-20 20:50:34 +02:00
Sandro
89e49d87d3
Merge pull request #196488 from SuperSandro2000/changedetectionio 2022-10-20 20:25:36 +02:00
Daniel Olsen
3251123a77 nixos/lib.escapeSystemdPath: Implement the correct algorithm for escaping names in systemd units
Co-authored-by: ajs124 <git@ajs124.de>
2022-10-20 20:12:15 +02:00
github-actions[bot]
80317024cf
Merge master into staging-next 2022-10-20 18:10:43 +00:00
Dave Nicponski
1a73877305 Tweak nginx config for Let's Encrypt ACME challenges
Currently, this is using a "URI prefix match", but per nginx docs,

```
[...] the location with the longest matching prefix is selected and remembered. Then regular expressions are checked, in the order of their appearance in the configuration file. The search of regular expressions terminates on the first match, and the corresponding configuration is used. If no match with a regular expression is found then the configuration of the prefix location remembered earlier is used.
```
which means a config like this (from wordpress service) will override that
```
locations = {
          "~ /\\." = {
            priority = 800;
            extraConfig = "deny all;";
          };
};
```
😱
Luckily, from nginx docs:
```
If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
```

Whew!
2022-10-20 10:59:28 -04:00
Bernardo Meurer
d473597e33
Merge pull request #196904 from hercules-ci/nixos-nixpkgs-only-error-when-used 2022-10-20 09:10:29 -04:00
github-actions[bot]
ee0190d830
Merge master into staging-next 2022-10-20 12:01:25 +00:00
Izorkin
abdcfec3a0
nixos/peertube: add nginx configuration 2022-10-20 14:49:51 +03:00
Florian Klink
7987b41d44 nixos/nscd: nixpkgs-fmt 2022-10-20 13:15:16 +02:00
Florian Klink
a3b07e3693 nixosTests.nscd: update subtest name and comment
test_host_lookups can be used against different daemons speaking the
nscd protocol.
2022-10-20 13:15:16 +02:00
Robert Hensing
1e9864c85e nixos/nixpkgs: Only error when nixpkgs options are actually used 2022-10-20 11:19:20 +02:00
Janne Heß
24167c94f0
Merge pull request #196337 from SuperSandro2000/update-users-groups
nixos/update-users-groups.pl: sort json file for better reproducibility
2022-10-20 11:11:49 +02:00
LuoChen
b9d9daf749 synergy: fix services.synergy.server.tls.cert (#196867) 2022-10-20 12:34:45 +08:00
github-actions[bot]
aac580f88f
Merge master into staging-next 2022-10-20 00:05:13 +00:00
Felix Bühler
27e5ca478b
Merge pull request #196140 from uninsane/pr/freshrss-patchShebangs
freshrss: patchShebangs instead of specifying interpreter at use site
2022-10-20 00:03:13 +02:00
Sandro
ab6c14bf9a
Merge pull request #196624 from Minion3665/replace-polymc-with-prismlauncher 2022-10-19 23:36:35 +02:00
Felix Buehler
fe9fb739a9 freshrss: fix greader-api 2022-10-19 23:34:26 +02:00
Sandro Jäckel
c9aab9ba97
nixos/changedetection-io: init 2022-10-19 21:33:31 +02:00
github-actions[bot]
958cbc7d51
Merge master into staging-next 2022-10-19 18:09:25 +00:00
Skyler Grey
49c81f001c
release-notes: state that PolyMC has been replaced 2022-10-19 19:06:55 +01:00
Skyler Grey
fcbbc69f13
release-notes-2205: suggest using prismlauncher
- Previously PolyMC was the suggested replacement for MultiMC
- As PolyMC is marked as insecure and prismlauncher is a replacement,
  this commit suggests using it instead
2022-10-19 19:06:54 +01:00
Domen Kožar
d2cfe468f8
Merge pull request #196728 from veehaitch/github-runner-new-pats
nixos/github-runner: support fine-grained personal access tokens
2022-10-19 14:40:23 +02:00
Martin Weinelt
5d2330ddb5
Merge pull request #195760 from jmbaur/prometheus-kea-exporter 2022-10-19 14:02:15 +02:00
github-actions[bot]
bbaff9a043
Merge master into staging-next 2022-10-19 12:01:22 +00:00
Vincent Haupert
ea8cf2e486 nixos/github-runners: support fine-grained personal access tokens
Add support for GitHub's new fine-grained personal access tokens [1]. As
opposed to the classic PATs, those start with `github_pat_` instead of
`ghp_`.

Make sure to use a token which has read and write access to the
"Administration" resource group [2] to allow for registrations of new
runners.

[1] https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/

[2] https://docs.github.com/en/rest/overview/permissions-required-for-github-apps#administration
2022-10-19 13:50:34 +02:00
Domen Kožar
ff27dc3a09
Merge pull request #176691 from codedownio/multiple-github-runners
GitHub runners: configurable user, environment, and service overrides + multiple runners
2022-10-19 13:38:23 +02:00
Tom McLaughlin
c2cc9aeafd Use config name by default, falling back to attr name 2022-10-19 03:33:30 -07:00
Jan Tojnar
457f28f6f8 Merge branch 'master' into staging-next
; Conflicts:
;	pkgs/development/tools/codespell/default.nix

codespell 2.2.2 switched to pyproject & setuptools_scm:
https://github.com/codespell-project/codespell/pull/2523
2022-10-19 05:24:28 +02:00
Tom Hubrecht
bbf5ba11b4
nixos/ntfy-sh: init 2022-10-19 02:20:16 +02:00
Sandro
e188e93b8f
Merge pull request #196477 from MatthewCroughan/mc/stateless-cups 2022-10-18 23:22:12 +02:00
Atemu
bf6d84958d rl-2211: document nix.checkConfig option changes
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2022-10-18 21:43:52 +02:00
Atemu
ef70bdd10f nixos/nix-daemon: make checkConfig fully disable nix.conf validation
A new option checkAllErrors is introduced which implements the old checkConfig
toggle behaviour

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2022-10-18 21:42:31 +02:00
Sandro
2917c9a67e
Merge pull request #195205 from NULLx76/vmagent 2022-10-18 21:16:10 +02:00
Sandro
7307c3ae6c
Merge pull request #191922 from NukaDuka/karma 2022-10-18 21:10:04 +02:00
digital
f4ccaa51e0 nixos/containers: support nixpkgs.hostPlatform
Use hostPlatform if both the host and the containers nixpkgs supports
hostPlatform, otherwise fall back to localSystem. This preseves backwards
compatibility.
2022-10-18 19:15:26 +02:00
Robert Hensing
314959198f
Merge pull request #196447 from Cynerd/oci-container-docker
nixos/modules/virtualisation: fix oci-containers with docker
2022-10-18 15:06:18 +02:00
Robert Hensing
14a822f72a
Merge pull request #196281 from hercules-ci/restore-nixos-test-dx
nixos: Restore test DX
2022-10-18 11:38:37 +02:00
Robert Hensing
6259b29f29
Merge pull request #194035 from Ma27/show-option-quoting
lib/options/showOption: fix quoting of attr-names that are not identifiers
2022-10-18 11:31:54 +02:00
matthewcroughan
a99ab1fbc1 nixos/printing: add services.printing.stateless option
This will remove all state directories related to CUPS on startup, which
is particularly useful for guaranteeing that printer discovery works
more reliably on some networks, since CUPS will no longer be able to
store state that effects the next run of the service, such as old
printer names and mDNS information.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2022-10-17 22:59:24 +01:00
Jean-François Roche
dc529302fe
nixos: add cachix watch-store service
Self hosted CI push built packages asynchronously to cachix using a service.

Based on @Mic92 [code](https://github.com/cachix/cachix/issues/370#issuecomment-817081937)
2022-10-17 18:24:03 +02:00