Someone Serge
2a63db4e6f
nixos/virtualisation.containers.cdi.dynamic.nvidia: expose driverLink
...
..shallowly
2024-02-27 12:50:59 +00:00
Someone Serge
65dbac7215
nixos/virtualisation.containers.cdi.dynamic.nvidia: refactor w/ callPackage
2024-02-27 11:59:57 +00:00
Jon Seager
d0b85d47c6
Merge pull request #289863 from mjm/nut-exporter-variables
...
nixos/prometheus-nut-exporter: use extraFlags, add nutVariables option
2024-02-27 11:11:30 +00:00
pennae
13aff9b34c
Merge pull request #259937 from charmoniumQ/patch-1
...
nixos/mosquitto: fix ACL permissions
2024-02-26 22:58:40 +01:00
Atemu
f53c775852
Merge pull request #278454 from litchipi/mealie
...
mealie: init at 1.2.0
2024-02-26 21:01:49 +00:00
Luflosi
a982176a71
nixos/memcached: clarify behaviour of enableUnixSocket
...
Let's make it clear that enabling this option will disable listening on an IP address and port.
2024-02-26 15:29:55 +01:00
Pol Dellaiera
033a375a23
Merge pull request #290363 from abysssol/update-ollama-0.1.26
...
ollama: 0.1.24 -> 0.1.26
2024-02-26 15:00:57 +01:00
K900
eb74747f38
nixos/pipewire: add LV2 plugins option
...
Follow-up #282377 .
Some packages may want to load LV2 plugins directly from PipeWire config instead, so add another option to accomodate those.
2024-02-26 10:04:45 +03:00
K900
92b9d11129
Merge pull request #282377 from hcsch/pipewire-wireplumber-config-packages
...
nixos/pipewire: add configPackages options
2024-02-26 09:12:06 +03:00
abysssol
b8d8c1f207
nixos/ollama: add option for hardware acceleration
2024-02-25 15:57:58 -05:00
0x4A6F
97bca14e41
Merge pull request #290719 from martinetd/atuin
...
atuin: small fixes
2024-02-24 23:05:25 +01:00
Sandro
7fab1e2013
Merge pull request #275024 from jerith666/lorri-less-protected
2024-02-24 16:07:13 +01:00
Sandro
806772b178
Merge pull request #274662 from StarGate01/pcscd-debug
2024-02-24 01:23:10 +01:00
Sandro
f6b46c1f59
Merge pull request #290119 from cafkafk/kublet-config
2024-02-24 00:34:46 +01:00
Michele Guerini Rocco
ed9121e5d7
Merge pull request #282758 from rht/hardware_no_network
...
hddfancontrol & thinkfan: disable network access.
2024-02-24 00:15:24 +01:00
Pol Dellaiera
f9ef0053c5
Merge pull request #288401 from katexochen/bees/refactor
...
bee: refactor & update; bee{-unstable,-clef}: remove; maintainers: remove attila-lendvai
2024-02-23 20:12:41 +01:00
Christoph Honal
6c5bcf43f1
nixos/pcscd: Add extraArgs option
2024-02-23 16:52:36 +01:00
Sefa Eyeoglu
3f7e9baeeb
nixos/monado: prevent Monado from restarting quickly
...
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
2024-02-23 14:25:16 +01:00
Sefa Eyeoglu
0e585a63e2
nixos/monado: make CAP_SYS_NICE wrapper configurable
...
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
2024-02-23 14:25:16 +01:00
Sefa Eyeoglu
2d2493b23d
nixos/monado: add option to make Monado the default OpenXR runtime
...
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
2024-02-23 14:25:15 +01:00
Sefa Eyeoglu
ce36e73fdb
nixos/monado: link OpenXR runtimes
...
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
2024-02-23 14:25:15 +01:00
Sefa Eyeoglu
9003167522
xr-hardware: init at unstable-2023-11-08
...
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
2024-02-23 14:25:15 +01:00
Sefa Eyeoglu
5d57df8a80
nixos/monado: init
...
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
2024-02-23 14:25:15 +01:00
Hans Christian Schmitz
e722c56160
nixos/wireplumber: add required lv2 plugins to service path
2024-02-23 08:58:16 +01:00
Hans Christian Schmitz
5bf2637b48
nixos/wireplumber: add config packages option
2024-02-23 08:58:15 +01:00
Hans Christian Schmitz
054bba560a
nixos/pipewire: add config packages option
2024-02-23 08:57:16 +01:00
Hans Christian Schmitz
992582fdf8
nixos/pipewire: Fix capitalization
...
In docs PipeWire and WirePlumber should be capitalized as in this
sentence.
2024-02-23 08:57:12 +01:00
Christina Sørensen
26036ecf31
kubelet: Set Kubelet Parameters Via A intermediate Configuration File
...
Signed-off-by: Christina Sørensen <christina@cafkafk.com>
2024-02-23 08:55:02 +01:00
Litchi Pi
4ebf2b54b0
nixos/mealie: init module
...
Signed-off-by: Litchi Pi <litchi.pi@proton.me>
2024-02-23 07:15:24 +01:00
Sandro
80e6bb31d5
Merge pull request #289956 from SuperSandro2000/archisteamfarm
2024-02-23 02:06:03 +01:00
Sandro
78745f4652
Merge pull request #289934 from jnsgruk/scrutiny
2024-02-23 00:43:55 +01:00
Dominique Martinet
85ee3198c7
atuin: Allow setting database.uri to null
...
When a password is required to connect to postgres using
services.atuin.database.uri directly would make the password be written
in the nix store, which is suboptimal.
Instead we can have the password in a file accessible only to root by
having systemd read an EnvironmentFile directly, but we must ensure that
this file has priority over the environment set.
Not setting the variable in this case is more straightforward.
2024-02-23 07:35:21 +09:00
Jon Seager
88d637c6dd
nixos/scrutiny: init
2024-02-22 21:20:10 +00:00
Martin Weinelt
878609256b
Merge pull request #287348 from mweinelt/fastly-exporter-module
...
nixos/prometheus-fastly-exporter: fix runtime environment, refactor, make things prettier
2024-02-22 16:37:51 +01:00
Someone
ee3923ed7d
Merge pull request #284507 from ereslibre/containers-cdi
...
NixOS: Add support for CDI
2024-02-22 13:03:18 +00:00
Rafael Fernández López
8ba61ebb8a
services/hardware: add nvidia-container-toolkit
2024-02-21 22:17:07 +01:00
Adam C. Stephens
d1e2847664
Merge pull request #281000 from cablespaghetti/master
...
sabnzbd: Add configurability of state directory owner and firewall
2024-02-21 08:37:46 -05:00
adisbladis
e4e474fbcf
Merge pull request #273670 from adisbladis/zope2-removal
...
nixos/zope2: Remove module
2024-02-21 17:19:07 +13:00
Leona Maroni
47b7eb8fd9
nixos/vikunja: remove setupNginx option
...
The required nginx configuration is now really simple, and e.g. SSL/ACME
already required the user to interact with `services.nginx.virtualHosts`.
Therefore, and to reduce complexity, we now leave the web server
configuration to the user.
2024-02-20 22:43:53 +01:00
Leona Maroni
8817f080cc
nixos/vikunja: adapt for vikunja 0.23.0
...
This version removes dedicated api and frontend packages.
2024-02-20 22:43:53 +01:00
Rick van Schijndel
e5e1de76b7
Merge pull request #281058 from wineee/fi
...
deepin: don't install packages using freeimage by default
2024-02-20 20:27:47 +01:00
Sandro
d9bc710130
Merge pull request #289754 from chewblacka/nixos/atuin-add-package-option
2024-02-20 14:11:14 +01:00
Bobby Rong
931e2b8adc
Merge pull request #289788 from FedericoSchonborn/budgie-control-center-1.4.0
...
budgie.budgie-control-center: 1.3.0 -> 1.4.0
2024-02-20 12:43:23 +08:00
Federico Damián Schonborn
b9c8b27f89
nixos/budgie: Enable SSH socket support in BCC when needed
...
Signed-off-by: Federico Damián Schonborn <federicoschonborn@disroot.org>
2024-02-19 18:06:33 -03:00
Nick Cao
2da4adbd10
Merge pull request #289862 from maxbrunet/feat/automatic-timezoned/v2
...
automatic-timezoned: 1.0.148 -> 2.0.0
2024-02-19 09:42:42 -05:00
Sandro
30f71249a8
Merge pull request #285866 from 999eagle/feat/pgbouncer-systemd
2024-02-19 14:42:01 +01:00
Sandro Jäckel
69f51e028a
ArchiSteamFarm,nixos/ArchiSteamFarm: take maintainership
...
this is effectively already the case and I most updates in the last
months
2024-02-19 13:25:57 +01:00
Sandro
a332040396
Merge pull request #247668 from jtbx/nixos-teeworlds
...
nixos/teeworlds: add more configuration options
2024-02-19 02:51:04 +01:00
Maxime Brunet
5c1c4c75f7
automatic-timezoned: 1.0.148 -> 2.0.0
2024-02-18 15:01:25 -08:00
Matt Moriarity
bbad81f937
nixos/prometheus-nut-exporter: use extraFlags, add nutVariables option
2024-02-18 15:55:09 -07:00
John Garcia
7427bec3a7
nixos/atuin: add services.atuin.package option
2024-02-18 22:19:41 +00:00
Artturi
dab023d0cc
Merge pull request #287257 from 999eagle/fix/hydra-pg-application-name
...
nixos/hydra: use set-default in hydra-env wrapper package
2024-02-18 17:21:53 +02:00
Aaron Andersen
0276bd7269
Merge pull request #288166 from Princemachiavelli/jhoffer/remove_fixed_mysql_timeout
...
nixos/mysql: remove fixed timeout and use notify service type
2024-02-18 09:13:46 -05:00
rasmus-kirk
9f2d51a4e7
nixos/transmission: fix log level bounds to match the transmission wiki
2024-02-18 23:45:10 +11:00
adisbladis
3209343527
nixos/zope2: Remove module
...
`zope2` is unmaintained and the module is relying on Python2.
2024-02-18 17:48:24 +13:00
Morgan Jones
32f56d7266
nixos/nebula: fix port resolution for firewall rules
2024-02-17 15:07:27 -08:00
Sandro
8f13ee7049
Merge pull request #179034 from viraptor/go-camo-service
...
nixos/go-camo: init
2024-02-17 22:12:13 +01:00
Sandro
cf59adeb8c
Merge pull request #271324 from nessdoor/sourcehut/tests
...
nixosTests.sourcehut: implement proper integration testing
2024-02-17 20:58:22 +01:00
Stanisław Pitucha
2eed715fbf
nixos/go-camo: init
2024-02-17 20:45:49 +01:00
Izorkin
c1a97e1f49
nixos/mastodon: add option redis.passwordFile
2024-02-17 15:52:58 +03:00
Someone
5dec53ad28
Merge pull request #289401 from philiptaron/bolt
...
nixos/bolt: add a services.hardware.bolt.package option
2024-02-17 12:17:18 +00:00
jacekpoz
86abdfdf87
nixos/asusctl: add package option
2024-02-17 21:34:35 +11:00
K900
b7efb1e376
Merge pull request #289331 from K900/greetd-restart-on-success
...
nixos/greetd: only restart on success
2024-02-17 08:39:45 +03:00
Philip Taron
ad029745ce
nixos/bolt: add a services.hardware.bolt.package option
...
It just seems like good manners.
2024-02-16 14:56:20 -08:00
Sarah Brofeldt
c267e823b7
Merge pull request #289227 from JorisBolsens/patch-3
...
nixos/kubernetes: set k8 home permissions correctly
2024-02-16 19:34:14 +01:00
K900
56eb2542da
nixos/greetd: only restart on success
...
Otherwise, if the greeter/session crashes on startup, greetd enters a restart loop
that requires very precise timing to kill.
2024-02-16 19:42:31 +03:00
Izorkin
cf62e3257f
nixos/mastodon: redis now uses unix socket by default
2024-02-16 16:39:31 +03:00
Izorkin
1293f046b5
nixos/dhcpcd: optimize exitHook
2024-02-16 10:12:52 +03:00
Joris Bolsens
81391bd22f
nixos/kubernetes: set k8 home permissions correctly
2024-02-15 23:11:59 -08:00
Sophie Tauchert
f6278d4f6a
nixos/pgbouncer: fix openFirewall option
2024-02-15 21:42:27 +01:00
Sophie Tauchert
b89cd583ae
nixos/pgbouncer: only depend on postgresql.service when enabled and use notify
...
See also the upstream service file: e6ce619785/etc/pgbouncer.service
2024-02-15 21:42:27 +01:00
Felix Bühler
60abd7c1f9
Merge pull request #288138 from ambroisie/tandoor-recipes-manage-script
...
nixos/tandoor-recipes: improve manage script
2024-02-15 20:26:03 +01:00
Felix Bühler
27f19c1efd
Merge pull request #288622 from Stunkymonkey/photoprism-manage-script
...
nixos/photoprism: improve manage script
2024-02-15 20:18:42 +01:00
Sarah Brofeldt
ed0bc642b7
Merge pull request #288466 from JorisBolsens/patch-2
...
nixos/kubernetes: don't delete the apitoken after its created
2024-02-15 18:20:24 +01:00
Vladimír Čunát
aaca7a186f
Merge #286596 : nixos/knot: add support for XDP setups
2024-02-15 09:19:59 +01:00
Yt
f13f90978a
Merge pull request #288638 from ThyMYthOS/update-stalwart
...
stalwart-mail: fix default configuration and test
2024-02-14 21:42:46 +00:00
Michele Guerini Rocco
f74d88a6f1
Merge pull request #281162 from kennycallado/master
...
nixos/icewm: Update icewm start command
2024-02-14 18:17:27 +01:00
maxine
8c8cc53769
Merge pull request #288531 from chewblacka/update-undervolt
...
undervolt: 0.3.0 -> 0.4.0
2024-02-14 17:30:53 +01:00
Michele Guerini Rocco
cd02351ae0
Merge pull request #233017 from koenw/libreswan-StateDirectory
...
nixos/libreswan: Use StateDirectory to setup ipsec/nss
2024-02-14 14:36:43 +01:00
Michele Guerini Rocco
bac2597d26
Merge pull request #270737 from bramd/brltty-6.6
...
Update BRLTTY to 6.6
2024-02-14 14:10:32 +01:00
Michele Guerini Rocco
dc91f91987
Merge pull request #286393 from oddlama/fix-hostapd-utf8-ssid
...
nixos/hostapd: fix utf8Ssid setting not properly honored
2024-02-14 14:08:46 +01:00
Matt Leon
c0846f900a
matter-server: add nixos service module
...
New module to run the python-matter-server executable as a sandboxed
system service.
2024-02-13 19:17:53 -05:00
Jeremy
e01eda6edd
nixos/teeworlds: add more configuration options, revise
...
- add 'package' option
- add 'game' and 'server' attrset
- reduce repetition by using functions bool and optionalSetting
- add default value for cfg.name
- revise some option descriptions
2024-02-14 10:57:08 +13:00
Manuel Stahl
cd8aad903c
stalwart-mail: fix default configuration and test
2024-02-13 20:34:22 +01:00
emilylange
993083f0ab
nixos/garage: allow all available log levels in cfg.logLevel
...
`error` and `warn` have always been valid log levels.
But because the upstream docs never mentioned those, we simply didn't
add them to the enum of our module option.
The upstream docs have been updated and now mention `error` and `warn`
as well.
Upstream PR: https://git.deuxfleurs.fr/Deuxfleurs/garage/pulls/716
2024-02-13 20:26:29 +01:00
Peder Bergebakken Sundt
bf7c95ce73
Merge pull request #285314 from pbsds/ttyd-1706718068
...
nixos/ttyd: add `entrypoint` and `writable` option
2024-02-13 19:41:11 +01:00
Felix Buehler
9db5906a6f
nixos/photoprism: improve manage script
2024-02-13 18:51:30 +01:00
John Garcia
eaa1034a80
nixos/undervolt: add turbo option
2024-02-13 13:38:22 +00:00
Martin Weinelt
ec89463a61
nixos/knot: refactor
...
- Stop using `with lib`
- Drop `lib.mdDoc`
- Use `escaepSystemdExecArgs` for escaping
2024-02-13 13:44:32 +01:00
Martin Weinelt
d1d8dd3e55
nixos/knot: add support for XDP setups
...
The Express Data Path (XDP) is a way to circumvent the traditional Linux
networking stack and instead run an eBPF program on your NIC, that makes
the decision to provide Knot with certain packets. This is way faster
and more scalable but comes at the cost of reduced introspection.
Unfortunately the `knotc conf-check` command fails hard with missing
interfaces or IP addresses configured in `xdp.listen`, so we disable it
for now, once the `xdp` config section is set. We also promote the config
check condition to a proper option, so our conditions become public
documentation, and we allow users to deal with corner cases, that we have
not thought of yet.
We follow the pre-requisites documented in the Knot 3.3 manual, and set
up the required capabilities and allow the AF_XDP address family.
But on top of that, due to our strict hardening, we found two more
requirements, that were communicated upstream while debugging this.
- There is a requirement on AF_NETLINK, likely to query for and configure
the relevant network interface
- Running eBPF programs requires access to the `bpf` syscall, which we
deny through the `~@privileged` configuration.
In summary We now conditionally loosen the hardening of the unit once we
detect that an XDP configuration is wanted. And since we cannot
introspect arbitrary files from the `settingsFiles` option, we expose XDP
support through the `enableXDP` toggle option on the module.
2024-02-13 13:44:31 +01:00
Yt
971fbfd00a
Merge pull request #276468 from onny/opensnitch-update4
...
opensnitch: 1.6.4 -> 1.6.5, opensnitch-ui: 1.6.4 -> 1.6.5
2024-02-13 10:46:01 +00:00
Joris Bolsens
6a11b7a777
nixos/kubernetes: don't delete the apitoken after its created
...
This was breaking the nixos-kubernetes-node-join script
the token gets copied, and then immediately overridden with /dev/null when certmgr restarts.
2024-02-12 22:50:27 -08:00
Paul Meyer
ce0a47cd2c
maintainers: remove attila-lendvai
2024-02-12 23:10:03 +01:00
Paul Meyer
11eef97f3c
bee-clef: remove
2024-02-12 23:10:03 +01:00
Sandro Jäckel
80e79ded15
nixos/unbound: check validity of config file
2024-02-12 22:49:03 +01:00
Maximilian Bosch
d363f52625
nixos/postgresql: drop ensurePermissions option
...
...effectively what was planned already in #266270 , but it was too late
because the branches were restricted and didn't allow any breaking
changes anymore.
It also suffers from the same issue that we already had when discussing
this the last time[1] when `ensureDBOwnership` was ultimately introduced
as band-aid fix: newly created users don't get CREATE permission on
the `public` schema anymore (since psql 15), even with `ALL PRIVILEGES`.
If one's use-case is more sophisticated than having a single owner, it's
questionable anyways if this module is the correct tool since
permissions aren't dropped on a change to this option or a removal which
is pretty surprising in the context of NixOS.
[1] https://github.com/NixOS/nixpkgs/pull/266270
2024-02-12 21:10:33 +01:00
Janik
29f575d7e6
Merge pull request #288284 from NetaliDev/rustdesk-extra-args
...
nixos/rustdesk-server: add extra args options for hbbr and hbbs
2024-02-12 16:52:01 +01:00
Pol Dellaiera
2d627a2a70
Merge pull request #277220 from nu-nu-ko/nixos-jellyfin-dirs
...
nixos/jellyfin: add directory options
2024-02-12 14:06:46 +01:00
Jennifer Graul
c412263319
nixos/rustdesk-server: add extra args options for hbbr and hbbs
2024-02-12 13:41:08 +01:00
Jonas Heinrich
31b9a9d18c
opensnitch: 1.6.4 -> 1.6.5, opensnitch-ui: 1.6.4 -> 1.6.5.1
2024-02-12 11:58:44 +01:00
Sophie Tauchert
b670443f42
nixos/hydra: use set-default in hydra-env wrapper package
2024-02-12 11:16:32 +01:00
Josh Hoffer
b445085c22
nixos/mysql: Use notify service type for MySQL >= 8.0
2024-02-11 15:41:25 -08:00
Josh Hoffer
e553e37abf
nixos/mysql: remove MySQL fixed 30 second timeout
...
Removed hard coded timeout in postScript, allow using
more general systemd TimeoutStartSec instead.
2024-02-11 15:41:25 -08:00
Bruno BELANYI
5e43c70867
nixos/tandoor-recipes: improve manage script
...
This is mirroring the way the manage script is created in the paperless
module, which is more robust to special characters.
2024-02-11 21:21:02 +00:00
maxine
9b52568c86
Merge pull request #288122 from amaxine/fwupd-internal-tests
2024-02-11 21:15:52 +01:00
Maxine Aubrey
4a4904c2b2
nixos/fwupd: make test option internal, be explicit about removal
2024-02-11 20:27:02 +01:00
kirillrdy
76d14d166c
Merge pull request #287708 from JorisBolsens/patch-1
...
nixos/kubernetes: use correct -o option with bash install when copying certs in cfssl prestart script
2024-02-12 06:14:44 +11:00
Maximilian Bosch
417fdb06d7
Merge pull request #287856 from emilylange/nixos-gitea-package-forgejo-warning
...
nixos/gitea: warn when using `services.gitea` with forgejo
2024-02-11 18:06:05 +01:00
Sam Weston
c49e6bf8b8
nixos/sabnzbd: use stateDirectory and mkIf-ify user/group creation
2024-02-11 16:49:08 +00:00
Sam Weston
d3d5b72c65
nixos/sabnzbd: add openFirewall
2024-02-11 16:48:05 +00:00
Aaron Andersen
e163373592
Merge pull request #284814 from yaxitech/github-runner-module-update
...
nixos/github-runners: remove single runner module, rework default name, add `noDefaultLabels`
2024-02-11 06:10:56 -08:00
Martin Weinelt
18899b0c58
Merge pull request #287926 from mweinelt/home-assistant-2024.2.0-fixes
...
home-assistant: fixes for 2024.2.0
2024-02-11 04:35:53 +01:00
Martin Weinelt
055a8f709a
nixos/home-assistant: always add dependencies for default integrations
...
These are loaded unconditionally during bootstrap, and home-assistant
will now fail to start, if these aren't provided.
2024-02-11 04:09:52 +01:00
Lin Jian
f3a93440fb
Merge pull request #285813 from jerrita/nft-precheck-flatten
...
nixos/nftables: add option for flattening rulesetFile
2024-02-11 10:41:17 +08:00
Martin Weinelt
aeea37e779
Merge pull request #287480 from NixOS/home-assistant
...
home-assistant: 2024.1.6 -> 2024.2.1
2024-02-11 01:18:04 +01:00
emilylange
ca3cfc841a
nixos/gitea: warn when using services.gitea
with forgejo
...
since this is no longer supported and we have a dedicated module for
forgejo for quite some time now.
Such warning is, however, becoming more and more important, since
forgejo is no longer a soft-fork of gitea, but rather a hard-fork.
And as such, it will slowly but surely no longer be a drop-in
replacement.
Additionally, I hope that this warning will prevent users from
reporting issues with forgejo to nixos/gitea maintainers.
The accompanying forgejo.md, from which the manual section is created,
will be updated over the next few weeks when forgejo officially
publishes their blog post about all this and the way forward, so we can
link to it.
2024-02-10 20:47:04 +01:00
tomberek
6e60c8526b
Merge pull request #286993 from christoph-heiss/srht-updates-next-round
...
sourcehut: update all components
2024-02-10 11:52:53 -05:00
Sandro
756e574ebd
Merge pull request #282971 from wegank/restya-board-drop
...
restya-board: drop
2024-02-10 17:28:05 +01:00
Peder Bergebakken Sundt
40cb108adf
Merge pull request #232528 from SuperSandro2000/chromium-kde
...
nixos/chromium: add enablePlasmaBrowserIntegration option
2024-02-10 17:15:14 +01:00
Peder Bergebakken Sundt
6f55f021df
Merge pull request #287304 from ambroisie/pyload-user-group
...
nixos/pyload: add user/group options
2024-02-10 14:59:23 +01:00
Maximilian Bosch
66a0b77a78
Merge pull request #286394 from SuperSandro2000/nextcloud-timer
...
nixos/nextcloud: don't execute cron when in maintenace/upgrade, don't kill cgroup
2024-02-10 12:48:05 +01:00
Peder Bergebakken Sundt
5caded32fe
Merge pull request #277189 from anpin/fix/cloudflared-service
...
cloudflared: fixed missing configuration options
2024-02-10 12:45:08 +01:00
maxine
53f6fedd04
Merge pull request #287512 from r-vdp/fwupd_1_9_13
...
fwupd: 1.9.12 -> 1.9.13
2024-02-10 11:05:51 +01:00
Joris Bolsens
1856e7e4b1
nixos/kubernetes: use correct -o
option with bash install when copying certs in cfssl prestart script
2024-02-10 01:46:00 -08:00
Martin Weinelt
3d67816966
home-assistant: 2024.1.6 -> 2024.2.1
...
https://www.home-assistant.io/blog/2024/02/07/release-20242/
https://github.com/home-assistant/core/releases/tag/2024.2.1
2024-02-10 04:15:41 +01:00
Silvan Mosberger
11cd405226
Merge pull request #280322 from h7x4/add-hocon-format-generator
...
pkgs.formats: Add HOCON format generator
2024-02-10 03:07:51 +01:00
Silvan Mosberger
5de4385620
Merge pull request #285833 from 360ied/murmur-hardened
...
nixos/murmur: systemd service hardening
2024-02-10 02:48:46 +01:00
github-actions[bot]
b64b4f2d6a
Merge master into staging-next
2024-02-09 18:01:06 +00:00
Will Fancher
0cf1e24f32
Merge pull request #284627 from Trundle/nftables-ordering
...
nixos/nftables: remove default systemd dependencies
2024-02-09 12:29:24 -05:00
Vincent Haupert
6d8391a3ce
nixos/github-runners: add a group
option to set the executing group
...
Similar to the `user` option, the added `group` option sets the group of
the executing process. If not `null`, it also sets `DynamicUser=false`.
In case `user` is set to `null` (the default), systemd would run the
service as root implicitly. As this is dangerous and most certainly not
what users want, we force them to set `user = "root"` explicitly if
that's really their intention. That's achieved through an assertion.
2024-02-09 16:58:09 +01:00
r-vdp
12de1b3a38
fwupd: 1.9.12 -> 1.9.13
...
Changelog: https://github.com/fwupd/fwupd/releases/tag/1.9.13
2024-02-09 16:45:09 +01:00
h7x4
39a779e269
treewide: use formats.hocon
2024-02-09 16:40:22 +01:00
Vincent Haupert
35df23c07d
nixos/github-runners: set DynamicUser=false
if user
not null
2024-02-09 16:19:23 +01:00
Vincent Haupert
3f13f8d85e
nixos/github-runners: align nodeRuntimes
option with package
...
The `github-runner` package only supports `nodejs_20` since `nodejs_16`
was removed in a2976db919
.
It still makes sense to keep the `nodeRuntimes` option as this is
probably not the last Node.js we'll deprecate with at least some grace
period.
2024-02-09 16:19:23 +01:00
Vincent Haupert
782b164523
nixos/github-runners: rework name
default
2024-02-09 16:19:19 +01:00
Martin Weinelt
91d9c159da
nixos/matrix-synapse: fix recursive filtering of null values
...
Using `filterAttrsRecursive` is not sufficient to account for a nested
attribute set with list values, like used for listeners.
2024-02-09 16:05:05 +01:00
Martin Weinelt
143d266f0d
nixos/matrix-synapse: add UNIX domain socket listener support
...
Exposes two options, `path` and `mode`, to configure the location and
permissions on the socket file.
The `mode` needs to be specified as string in octal and will be converted
into a decimal integer, so it correctly passes through the YAML parser
and arrives at the `os.chmod` call in the Twisted codebase. What a fun
detour.
Adds an assertion, that either `path` or `bind_addresses` and `port` are
configured on every listener.
Migrates the default replication listener of the main instance to a UNIX
domain socket, because it is more efficient.
Introduces the `enableRegistrationScript` option, to gracefully disable
the user registration script, when the client listener listens on a UNIX
domain socket, which is something the script does not support.
2024-02-09 16:05:05 +01:00
Vincent Haupert
9ad02c831a
nixos/github-runner: deprecate module in favor of github-runners.*
2024-02-09 15:14:32 +01:00
Vincent Haupert
ab57ba24cf
nixos/github-runners: document new runner registrations
...
Make the documentation of the options `workDir` and `ephemeral` reflect
that changing these options will trigger a new runner registration.
2024-02-09 15:14:32 +01:00
Vincent Haupert
a9c807496f
nixos/github-runners: add noDefaultLabels
option
...
Add option `noDefaultLabels` which controls the `--no-default-labels`
switch passed to the configure script.
2024-02-09 15:14:32 +01:00
Vincent Haupert
ae140cd468
nixos/github-runners: remove superfluous usages of lib
2024-02-09 15:14:31 +01:00
github-actions[bot]
a7f4ae0644
Merge master into staging-next
2024-02-09 12:01:11 +00:00
Valentin Gagarin
b1f6e08177
doc: add link to Nix manual
2024-02-09 10:47:08 +01:00
Martin Weinelt
a43d9cd69a
nixos/prometheus-fastly-exporter: fix runtime environment
...
- Make the token a required option
- Drop the proto from the listen parameter
- Use systemd credentials to pass the token file
- Drop debug flag, use extraArgs instead
- Actually hook up extraArgs
- Escape shell arguments
- Drop overly broad `with lib` statement
2024-02-09 02:24:48 +01:00
Bruno BELANYI
c14f029dae
nixos/pyload: add user/group options
2024-02-08 20:27:14 +00:00
github-actions[bot]
13d222c591
Merge master into staging-next
2024-02-08 18:01:04 +00:00
Aaron Andersen
2d8bd81554
Merge pull request #286063 from yaxitech/github-runner-node-runtimes-286059
...
nixos/github-runners: only override pkg if it has a `nodeRuntimes` arg
2024-02-08 07:20:13 -08:00
github-actions[bot]
8cb642cb14
Merge master into staging-next
2024-02-08 00:02:08 +00:00
Jörg Thalheim
ded6a6cb80
Merge pull request #277137 from ajs124/fix/tt-rss-phpPackage
...
nixos/tt-rss: add phpPackage option
2024-02-07 23:19:57 +01:00
Kim Lindberger
debe2ca258
Merge pull request #286532 from flyingcircusio/PL-131811-gitlab-loose-coupling-upstream
...
nixos.gitlab: loosen the coupling of gitlab services to postgresql and redis
2024-02-07 19:29:01 +01:00