colin/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
584,361 Commits 125 Branches 0 Tags 3.4 GiB
0194efaf82
Commit Graph

29317 Commits

Author SHA1 Message Date
Vincent Haupert
782b164523 nixos/github-runners: rework name default 2024-02-09 16:19:19 +01:00
Martin Weinelt
91d9c159da
nixos/matrix-synapse: fix recursive filtering of null values 
Using `filterAttrsRecursive` is not sufficient to account for a nested
attribute set with list values, like used for listeners.
 2024-02-09 16:05:05 +01:00
Martin Weinelt
143d266f0d
nixos/matrix-synapse: add UNIX domain socket listener support 
Exposes two options, `path` and `mode`, to configure the location and
permissions on the socket file.

The `mode` needs to be specified as string in octal and will be converted
into a decimal integer, so it correctly passes through the YAML parser
and arrives at the `os.chmod` call in the Twisted codebase. What a fun
detour.

Adds an assertion, that either `path` or `bind_addresses` and `port` are
configured on every listener.

Migrates the default replication listener of the main instance to a UNIX
domain socket, because it is more efficient.

Introduces the `enableRegistrationScript` option, to gracefully disable
the user registration script, when the client listener listens on a UNIX
domain socket, which is something the script does not support.
 2024-02-09 16:05:05 +01:00
Valentin Gagarin
e385b36a32
Merge pull request #287438 from fricklerhandwerk/qemu-docs-link 2024-02-09 15:37:35 +01:00
Vincent Haupert
9ad02c831a nixos/github-runner: deprecate module in favor of github-runners.* 2024-02-09 15:14:32 +01:00
Vincent Haupert
ab57ba24cf nixos/github-runners: document new runner registrations 
Make the documentation of the options `workDir` and `ephemeral` reflect
that changing these options will trigger a new runner registration.
 2024-02-09 15:14:32 +01:00
Vincent Haupert
a9c807496f nixos/github-runners: add noDefaultLabels option 
Add option `noDefaultLabels` which controls the `--no-default-labels`
switch passed to the configure script.
 2024-02-09 15:14:32 +01:00
Vincent Haupert
ae140cd468 nixos/github-runners: remove superfluous usages of lib 2024-02-09 15:14:31 +01:00
github-actions[bot]
a7f4ae0644
Merge master into staging-next 2024-02-09 12:01:11 +00:00
nikstur
8a3e1cf40a
Merge pull request #287013 from WilliButz/qemu-vm/tmpfiles-settings 
nixos/qemu-vm: convert tmpfiles rules to settings
 2024-02-09 11:42:17 +01:00
Valentin Gagarin
85f4b05e39 doc: add link to QEMU reference documentation in QEMU module 2024-02-09 11:21:07 +01:00
Valentin Gagarin
11c26d4cc5 use code for env var notation 2024-02-09 11:16:28 +01:00
Valentin Gagarin
d9009e0028 doc: expand on parameters passed to QEMU VMs 2024-02-09 10:48:52 +01:00
Valentin Gagarin
b1f6e08177 doc: add link to Nix manual 2024-02-09 10:47:08 +01:00
Linus Heckemann
4916e22812
Merge pull request #286176 from nikstur/writable-overlays 
nixos/filesystems: init overlayfs
 2024-02-09 08:22:09 +01:00
github-actions[bot]
592e5dab71
Merge master into staging-next 2024-02-09 00:02:27 +00:00
Bruno BELANYI
c14f029dae nixos/pyload: add user/group options 2024-02-08 20:27:14 +00:00
nikstur
4d2c5b722a
Merge pull request #285114 from WilliButz/improve-uki-settings-merging 
nixos/boot.uki: allow partial overrides of default UKI settings
 2024-02-08 21:15:08 +01:00
github-actions[bot]
13d222c591
Merge master into staging-next 2024-02-08 18:01:04 +00:00
Aaron Andersen
2d8bd81554
Merge pull request #286063 from yaxitech/github-runner-node-runtimes-286059 
nixos/github-runners: only override pkg if it has a `nodeRuntimes` arg
 2024-02-08 07:20:13 -08:00
github-actions[bot]
74098fff88
Merge master into staging-next 2024-02-08 06:01:13 +00:00
Ryan Lahfa
f5c054af12
Merge pull request #264369 from RaitoBezarius/drop-pamusb 
pam_usb, nixos/pam-usb: drop
 2024-02-08 04:26:23 +01:00
Raito Bezarius
2d78f55438 pam_usb, nixos/pam-usb: drop 
`security.pam.usb` is broken anyway and upstream has abandoned the software.
 2024-02-08 02:59:45 +01:00
github-actions[bot]
8cb642cb14
Merge master into staging-next 2024-02-08 00:02:08 +00:00
Peter Hoeg
9a113b42b3 nixos/version: add ANSI_COLOR 2024-02-08 00:14:53 +01:00
Jörg Thalheim
ded6a6cb80
Merge pull request #277137 from ajs124/fix/tt-rss-phpPackage 
nixos/tt-rss: add phpPackage option
 2024-02-07 23:19:57 +01:00
nikstur
1c1cfa073a nixos/filesystems: init overlayfs 2024-02-07 22:13:00 +01:00
Kim Lindberger
debe2ca258
Merge pull request #286532 from flyingcircusio/PL-131811-gitlab-loose-coupling-upstream 
nixos.gitlab: loosen the coupling of gitlab services to postgresql and redis
 2024-02-07 19:29:01 +01:00
github-actions[bot]
296d2f6991
Merge master into staging-next 2024-02-07 18:00:58 +00:00
Sarah Brofeldt
cd5c10f696
Merge pull request #275896 from hoppla20/master 
nixos/kubernetes: fix pki's mkSpec function
 2024-02-07 18:44:35 +01:00
Oliver Schmidt
13ba002dd0 nixos/services.gitlab: loosen the coupling between gitlab and postgres/ redis to avoid restarts and races 
Gitlab stays running at redis and postgresql restarts as if these
components were on a different host anyways. Handling reconnetctions is
part of the application logic.

Co-authored-by: Kim Lindberger <kim.lindberger@gmail.com>
for formatting fixes and test failure debugging.
 2024-02-07 18:19:18 +01:00
Sandro
f7654894a3
Merge pull request #285298 from SuperSandro2000/govee2mqtt 
govee2mqtt: init at 2024.01.21-088d4ca8, nixos/govee2mqtt: init
 2024-02-07 18:14:05 +01:00
ajs124
106626b8d7 nixos/tt-rss: add phpPackage option 
right now, we have php81 and php (which points to php82), which means that:
- php-fpm uses php81
- the update preStart uses php81
- the actual updater uses php82
 2024-02-07 17:41:27 +01:00
ajs124
33ca948d6a
Merge pull request #259604 from sefidel/tt-rss-force-update-schema 
nixos/tt-rss: supply --force-yes to update-schema
 2024-02-07 17:39:03 +01:00
WilliButz
0139970416
nixos/qemu-vm: convert tmpfiles rules to settings 
This change replaces the previously hard-coded `/boot` path with a
reference to `efiSysMountPoint` and more importantly this change makes
it possible to override these rules in scenarios in which they are not
desired.

One such scenario would be when `systemd-gpt-auto-generator(8)` is used
to automount the ESP. Consider this section from the mentioned manpage:

> The ESP is mounted to /boot/ if that directory exists and is not used
> for XBOOTLDR, and otherwise to /efi/. Same as for /boot/, an automount
> unit is used. The mount point will be created if necessary.

Prior to this change, the ESP would be automounted under `/efi` on first
boot, then the previous tmpfiles rules caused `/boot` to be created.
Following the quote above, this meant that the ESP is mounted under
`/boot` for each subsequent boot.
 2024-02-07 16:25:30 +01:00
Robert Schütz
743b095b5e
Merge pull request #286454 from dotlambda/nginx-acme-auth_request-off 
nixos/nginx: turn auth_request off for ACME challenge
 2024-02-07 15:08:08 +00:00
Sandro Jäckel
d449e88309
nixos/chromium: remove lots of extra whitespace from docs 2024-02-07 16:04:26 +01:00
Sandro Jäckel
42b58f2c73
nixos/plasma5: enable programs.chromium.enablePlasmaBrowserIntegration 2024-02-07 16:04:25 +01:00
Sandro Jäckel
d4df5391d0
nixos/chromium: add enablePlasmaBrowserIntegration, plasmaBrowserIntegrationPackage options 2024-02-07 16:04:25 +01:00
Sandro Jäckel
a73a43d737
nixos/chromium: don't generate empty files 2024-02-07 16:04:20 +01:00
Sandro Jäckel
5538de972d
nixos/chromium: cleanup formatting a bit to 
this also reduces the diff in the next commits
 2024-02-07 16:03:42 +01:00
Kerstin
a3ed4692b7
Merge pull request #286943 from Tom-Hubrecht/kanidm 
kanidm: 1.1.0-rc.15 -> 1.1.0-rc.16
 2024-02-07 15:07:13 +01:00
Christoph Heiss
62854c0103
sourcehut: add myself as maintainer 
I worked already a lot on this stuff, esp. modules - so it just makes
sense.

Signed-off-by: Christoph Heiss <christoph@c8h4.io>
 2024-02-07 14:58:12 +01:00
Tom Hubrecht
ad67485526 kanidm: 1.1.0-rc.15 -> 1.1.0-rc.16 
Release notes: https://github.com/kanidm/kanidm/releases/tag/v1.1.0-rc.16
 2024-02-07 14:14:39 +01:00
Martin Weinelt
02324756dd
nixos/zigbee2mqtt: revert systemd unit to simple type 
A recent release added systemd notify support, so I migrated our unit
towards that. The NixOS test did not reveal that the unit would not fully
activate.

Reverts: 165326d2c (partially)
Closes: #286977
 2024-02-07 13:51:11 +01:00
github-actions[bot]
03dd2b9470
Merge master into staging-next 2024-02-07 12:01:11 +00:00
Franz Pletz
5ef42fcd84
Merge pull request #286832 from trofi/crda-removal-and-wireless-regdb-update 
crda: remove package, wireless-regdb: 2023.09.01 -> 2024.01.23
 2024-02-07 11:52:55 +01:00
Sandro Jäckel
1b3f92087b
nixos/govee2mqtt: init 2024-02-07 10:39:23 +01:00
Rodney Lorrimar
8513f69b24 nixos/phosh: Ensure that desktop session is identified as Phosh 2024-02-07 20:10:15 +11:00
Will Fancher
ee9becfdfb
Merge pull request #285315 from jmbaur/sysupdate-fixes 
nixos/sysupdate: allow lists in sysupdate config
 2024-02-07 03:01:49 -05:00
Weijia Wang
29b534a3d4 restya-board: drop 2024-02-07 01:33:05 +01:00
github-actions[bot]
9824e51195
Merge master into staging-next 2024-02-07 00:02:01 +00:00
Martin Weinelt
7317fb9f77
Merge pull request #286287 from fleaz/frigate-update 
frigate: 0.12.1 -> 0.13.1
 2024-02-07 00:09:42 +01:00
Sergei Trofimovich
275855d632 nixos: hostapd: drop unused crda package import 2024-02-06 22:45:01 +00:00
fleaz
250078ceba
frigate: 0.12.1 -> 0.13.1 
Changelog:
https://github.com/blakeblackshear/frigate/releases/tag/v0.13.0
https://github.com/blakeblackshear/frigate/releases/tag/v0.13.1

Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>
 2024-02-06 22:54:22 +01:00
Felix Bühler
481c7ffc8e
Merge pull request #286069 from linsui/nau 
nixos/nautilus-open-any-terminal: add to module-list.nix
 2024-02-06 19:21:49 +01:00
Felix Bühler
9e23c379c7
Merge pull request #286032 from Stunkymonkey/k8s-pki-remove-chown 
kubernetes: prefer 'install' over 'mkdir/chmod/chown'
 2024-02-06 19:21:08 +01:00
Felix Bühler
5dac2ab264
Merge pull request #286577 from Pablo1107/photoprism-module/fix-manage-script-typo 
nixos/photoprism: fix typo with duplicated exec call
 2024-02-06 19:09:53 +01:00
github-actions[bot]
33b366b63f
Merge master into staging-next 2024-02-06 18:01:02 +00:00
Sandro
ed742ab4fc
Merge pull request #275621 from Yarny0/tsm-client-update 
tsm-client: 8.1.20.0 -> 8.1.21.0
 2024-02-06 17:17:40 +01:00
Florian Klink
7c0a129076
Merge pull request #256652 from giorgiga/rateLimitBurst-documentation 
Clarify journal size limit defaults in documentaiton of services.journald.rateLimitBurst
 2024-02-06 13:26:35 +01:00
github-actions[bot]
952bd69944
Merge master into staging-next 2024-02-06 06:00:54 +00:00
Sandro
4494fcaab7
nixos/acme: default to lets encrypt production URL instead of null, mention lets encrypt staging URI (#270221) 2024-02-06 01:51:09 +01:00
github-actions[bot]
8e7913be95
Merge master into staging-next 2024-02-06 00:02:21 +00:00
Pablo Andres Dealbera
14a1f86791 nixos/photoprism: fix typo 2024-02-05 19:34:43 -03:00
nu-nu-ko
ccf92aad9b nixos/jellyfin: add directory options 2024-02-06 11:07:33 +13:00
Robert Hensing
274ae6a454
Merge pull request #284117 from Stunkymonkey/amqp-write-secret 
nixos/rabbitmq: prefer 'install' over 'mkdir/chmod/chown'
 2024-02-05 19:29:19 +01:00
github-actions[bot]
2579984b85
Merge master into staging-next 2024-02-05 18:01:13 +00:00
Peder Bergebakken Sundt
a8880f1647 nixos/ttyd: add entrypoint option 2024-02-05 17:38:00 +01:00
Leona Maroni
2b7e1ddb4a
nixos/youtrack: fix warnings (#285775) 
* nixos/youtrack: fix extraParams warning

* nixos/youtrack: use new option for port in nginx config
 2024-02-05 17:17:45 +01:00
Sandro
1b06c0f273
Merge pull request #286341 from Izorkin/update-fastfetch 2024-02-05 17:08:45 +01:00
Franz Pletz
fadde8db1f
Merge pull request #286324 from Izorkin/update-libvirt-oom 
nixos/libvirt: changing process priority for oom killer
 2024-02-05 15:47:25 +01:00
Robert Schütz
1dd5f2b1f9 nixos/nginx: turn auth_request off for ACME challenge 
This is e.g. necessary when using tailscale-nginx-auth.
 2024-02-05 00:33:33 -08:00
github-actions[bot]
0f22335f7d
Merge master into staging-next 2024-02-05 06:01:04 +00:00
jerrita
e686847d20
nixos/nftables: add option for flattening rulesetFile 
Co-authored-by: Lin Jian <me@linj.tech>
 2024-02-05 11:27:16 +08:00
360ied
11cf6ab0dd nixos/murmur: systemd service hardening 
Murmur provides an official systemd service file in their repo,
which contains various service hardening settings:

c4b5858d14/auxiliary_files/config_files/mumble-server.service.in (L7)

The service configuration in nixpkgs does not include these hardening settings.

This commit adds the hardening settings to the murmur service in nixpkgs.
This drops the `systemd-analyze security` score of murmur.service from 9.2 (UNSAFE) to 2.1 (OK).
 2024-02-04 21:23:34 -05:00
Sandro Jäckel
c64c45da9c
nixos/nextcloud: don't execute cron when in maintenace/upgrade, don't kill cgroup 
Those are upstream recommendations taken from
22d2472b8f/admin_manual/configuration_server/background_jobs_configuration.rst (systemd)
 2024-02-05 01:29:13 +01:00
Sandro Jäckel
42daa00928
nixos/nextcloud: little formatting 2024-02-05 01:29:13 +01:00
LRFLEW
8b0d333f54
nixos/archisteamfarm: allow bots.*.passwordFile to be null (#284978) 
* Make services.archisteamfarm.bots.*.passwordFile Nullable

This adds support for alternate password specification methods, such as through the web-ui.

* Update description for services.archisteamfarm.bots.*.passwordFile

Adds note about omitting or setting to null to provide the password through the web-ui.
 2024-02-05 01:18:23 +01:00
github-actions[bot]
42e44c0583
Merge master into staging-next 2024-02-05 00:02:17 +00:00
oddlama
b7f29692c0
nixos/hostapd: fix utf8Ssid setting not properly honored 2024-02-05 00:52:08 +01:00
Weijia Wang
7ece427021
Merge pull request #279268 from superherointj/etcd-fix-firewall-startup 
nixos/etcd: fixes etcd failing to start at boot and add openFirewall option
 2024-02-05 00:37:09 +01:00
Weijia Wang
e2fb30fabc
Merge pull request #239785 from milibopp/neo4j-5.9.0 
neo4j: 4.4.11 -> 5.9.0
 2024-02-05 00:21:21 +01:00
Izorkin
15dfbbd4c3
fastfetch: add vulkanSupport option 2024-02-05 01:32:05 +03:00
Izorkin
69206539d4
fastfetch: add waylandSupport option 2024-02-05 01:32:04 +03:00
Izorkin
556b8c7b6f
fastfetch: add x11Support option 2024-02-05 01:32:03 +03:00
Robert Hensing
6761394083 nixos/rabbitmq: Rename cookie -> unsafeCookie 
Not a mkRenamedOptionModule, because user intervention is required
to determine whether they have a problem. mkRenamed* does not let
us explain anything to the user.
 2024-02-04 21:41:29 +01:00
github-actions[bot]
145a9cb679
Merge master into staging-next 2024-02-04 18:01:14 +00:00
Izorkin
9ad115e5f3
nixos/libvirt: changing process priority for oom killer 2024-02-04 19:54:02 +03:00
Artturi
8f893ff1da
Merge pull request #221628 from rhysmdnz/intune 
Microsoft Intune
 2024-02-04 17:31:58 +02:00
github-actions[bot]
5a036cc96a
Merge master into staging-next 2024-02-03 18:00:51 +00:00
Linus Heckemann
9f571cb4ef
Merge pull request #284508 from nikstur/etc-overlay-leading-slash 
nixos/etc: remove leading slash from paths
 2024-02-03 18:01:01 +01:00
linsui
b88eaf5d62 nixos/nautilus-open-any-terminal: add to module-list.nix 2024-02-03 22:27:31 +08:00
Vincent Haupert
e6854b295b nixos/github-runners: only override pkg if it has a nodeRuntimes arg 
Older versions of the github-runner package might not have the
`nodeRuntimes` argument yet causing an error as the NixOS module always
tries to override the argument.

The commit makes sure we only override `nodeRuntimes` if the configured
package has a `nodeRuntimes` argument.
 2024-02-03 14:33:39 +01:00
Felix Buehler
ffadbb6788 kubernetes: prefer 'install' over 'mkdir/chmod/chown' 2024-02-03 11:16:23 +01:00
github-actions[bot]
95ffc37024
Merge staging-next into staging 2024-02-03 06:01:25 +00:00
Martin Weinelt
e1ee205a99
Merge pull request #285931 from mweinelt/zigbee2mqtt-1.35.2 
zigbee2mqtt: 1.35.1 -> 1.35.2
 2024-02-03 03:44:36 +01:00
Martin Weinelt
165326d2ca
zigbee2mqtt: 1.35.1 -> 1.35.2 
https://github.com/Koenkk/zigbee2mqtt/releases/tag/1.35.2
 2024-02-03 02:21:15 +01:00
github-actions[bot]
58c80dd7b8
Merge staging-next into staging 2024-02-02 18:01:50 +00:00
Adam Stephens
7585f26855
nixos/incus: add zfs/lib/udev to path 
Incus needs to find zvol_id for some operations, but zfs does not put
this executable in the bin directory. Exposing lib/udev into the Incus
path solves discovery of the executable

e5690705e8/internal/server/storage/drivers/driver_zfs_volumes.go (L1820C1-L1820C41)
 2024-02-02 12:36:41 -05:00