cafkafk/nixpkgs
cafkafk/nixpkgs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 2
218318 commits 1 branch 0 tags 3.7 GiB
Commit graph

1863 commits

Author SHA1 Message Date
Julien Moutinho
f9be656873
shorewall: fix warnings due to types.loaOf being deprecated (#80154) 2020-02-16 12:53:49 +02:00
Jörg Thalheim
466c1df3e2
Merge pull request #79266 from Mic92/knot 
nixos/knot: add keyFiles option
 2020-02-15 11:15:03 +00:00
Jyun-Yan You
0f8d1ac47d nixos/pppd: fix build error 2020-02-14 12:51:50 +08:00
Symphorien Gibol
44fd320c0f nixos/iodine: protect passwordFiles with toString 
It should prevent copying the files to a store path
 2020-02-13 21:30:14 +01:00
Will Dietz
ac8a92543b
iwd: drop tmpfiles snippet, services use StateDirectory already 
Originally added in [1], and iwd added StateDirectory to its services
in [2] -- 4 days later.

("StateDirectory wasn't used when tmpfile snippet was added to NixOS")
(nevermind git -> release delay)

[1] 6e54e9253a
[2] upstream iwd git rev: 71ae0bee9c6320dae0083ed8c1700bc8fff1defb
 2020-02-12 19:29:28 -06:00
Jörg Thalheim
e2ef8b439f
knot: add keyFiles option 
This useful to include tsig keys using nixops without adding those
world-readable to the nix store.
 2020-02-12 16:36:42 +00:00
Jörg Thalheim
88029bce39
knot: drop dynamic user 
This makes it hard to include secret files.
Also using tools like keymgr becomes harder.
 2020-02-12 16:34:10 +00:00
Martin Milata
d99808c720 nixos/supybot: fix username 
Broken in 1d61efb7f1.
 2020-02-10 17:56:51 +01:00
Silvan Mosberger
6169eef798
Merge pull request #78024 from wamserma/minidlna-interval 
minidlna: provide configuration option for announce interval
 2020-02-10 01:25:47 +01:00
Markus S. Wamser
696979e0bc modules/wireguard: fix typo in documentation 2020-02-07 20:54:35 +01:00
symphorien
d2d5d89c2c
nixos/iodine: improve wording of some descriptions 
Co-Authored-By: Martin Weinelt <mweinelt@users.noreply.github.com>
 2020-02-05 19:47:43 +00:00
symphorien
dfa67635d6
nixos/iodine: fix typo in description 
Co-Authored-By: Martin Weinelt <mweinelt@users.noreply.github.com>
 2020-02-05 19:42:27 +00:00
symphorien
1addf1fd94
nixos/iodine: improve description of some options 
Co-Authored-By: Martin Weinelt <mweinelt@users.noreply.github.com>
 2020-02-05 19:42:07 +00:00
Frederik Rietdijk
419bc0a4cd Revert "Revert "Merge master into staging-next"" 
In 87a19e9048 I merged staging-next into master using the GitHub gui as intended.
In ac241fb7a5 I merged master into staging-next for the next staging cycle, however, I accidentally pushed it to master.
Thinking this may cause trouble, I reverted it in 0be87c7979. This was however wrong, as it "removed" master.

This reverts commit 0be87c7979.
 2020-02-05 19:41:25 +01:00
Frederik Rietdijk
0be87c7979 Revert "Merge master into staging-next" 
I merged master into staging-next but accidentally pushed it to master.
This should get us back to 87a19e9048.

This reverts commit ac241fb7a5, reversing
changes made to 76a439239e.
 2020-02-05 19:18:35 +01:00
Vladimír Čunát
baeed035ea
Merge #78628: knot-resolver: 4.3.0 -> 5.0.1 
The service needed lots of changes. A few smaller changes
are added into the PR, e.g. replacement for PR #72014.
See the commit messages for details.
 2020-02-05 16:57:02 +01:00
Symphorien Gibol
00a91d919d nixos/iodine: hardening 2020-02-04 20:54:29 +01:00
Symphorien Gibol
7437bff7d1 nixos/iodine: nixpkgs-fmt 2020-02-04 20:54:29 +01:00
worldofpeace
74e4cb7ea4
Merge pull request #78543 from Atemu/dnscrypt-proxy2-service 
nixos/dnscrypt-proxy2: init
 2020-02-02 23:02:06 -05:00
Maximilian Bosch
c2d2c2d0ca
Merge pull request #72931 from Ma27/restart-dhcp-on-exit-hook-change 
nixos/dhcpcd: restart dhcpcd if exit hook changed
 2020-02-02 18:33:34 +01:00
Yegor Timoshenko
92d689d66b nixos/dnscrypt-proxy2: init 
This removes the original dnscrypt-proxy module as well.

Co-authored-by: Atemu <atemu.main@gmail.com>
Co-authored-by: Silvan Mosberger <contact@infinisil.com>
Co-authored-by: ryneeverett <ryneeverett@gmail.com>
Co-authored-by: worldofpeace <worldofpeace@protonmail.ch>
 2020-02-02 11:11:27 -05:00
Maximilian Bosch
f9bb054180
Merge pull request #78968 from ju1m/nsd_types_lines 
nsd : use types.lines where appropriate
 2020-02-01 09:51:23 +01:00
Julien Moutinho
1a1e5f7be5 nsd: use types.lines where appropriate 2020-01-31 20:40:48 +01:00
Vladimír Čunát
02bf0557c0
nixos/kresd: add .instances option 2020-01-31 15:22:52 +01:00
Vladimír Čunát
ae74a0e27c
(nixos/)knot-resolver: 4.3.0 -> 5.0.0 
Minor incompatibilities due to moving to upstream defaults:
  - capabilities are used instead of systemd.socket units
  - the control socket moved:
    /run/kresd/control -> /run/knot-resolver/control/1
  - cacheDir moved and isn't configurable anymore
  - different user+group names, without static IDs

Thanks Mic92 for multiple ideas.
 2020-01-31 15:22:52 +01:00
Vladimír Čunát
0a8fb01b80
nixos/kresd: fix a recent error in description 2020-01-31 15:06:27 +01:00
Aaron Andersen
7adffb14cd
Merge pull request #78419 from utsl42/fix-unifi-install 
nixos/unifi: use systemd tmpfiles instead of preStart
 2020-01-29 18:55:57 -05:00
worldofpeace
c693bd142c
Merge pull request #78745 from bene1618/dhcpcd 
nixos/dhcpcd: Add option for dhcpcd waiting behaviour
 2020-01-29 18:08:20 -05:00
Mario Rodas
deedf24c88
Merge pull request #75922 from tadfisher/kbfs-fixes 
kbfs, nixos/keybase, nixos/kbfs: fix KBFS, add enableRedirector option
 2020-01-28 19:13:40 -05:00
Benedikt Hunger
0767de3dc8 nixos/dhcpcd: Add option for dhcpcd waiting behaviour 2020-01-28 12:52:19 +01:00
Alyssa Ross
e99ec699a4 nixos/bitlbee: don't assign list to users.groups 
Warns about loaOf deprecation warning.
 2020-01-27 02:51:02 +00:00
Nathan Hawkins
b0208cb80f nixos/unifi: use systemd tmpfiles instead of preStart 2020-01-24 10:06:29 -05:00
Jörg Thalheim
2685806371
nixos/kresd: add listenDoH option 2020-01-23 23:22:37 +00:00
Jörg Thalheim
bfa278ee5a
nixos/knot: set defaultText for package option 
the package attributes looks nicer in the manual
 2020-01-23 23:17:04 +00:00
Florian Klink
dea2d64c35
Merge pull request #78134 from NinjaTrappeur/nin-harden-syncthing 
nixos/syncthing.nix: Sandbox the systemd service.
 2020-01-21 22:30:04 +01:00
zimbatm
93204f1d8a
nixos/matterbridge: fix package access 
was broken by 4371ecb8a6 due to the
switch to buildGoModule
 2020-01-21 13:17:18 +01:00
zimbatm
b54c60b689
nixos/zerotierone: simplify the unit 
There is no need to stop/start the unit when the machine is online or
offline.

This should fix the shutdown locking issues.

nixos zerotier: sometimes it doesn't shutdown
 2020-01-21 13:14:38 +01:00
Félix Baylac-Jacqué
ff8f2928ee
nixos/syncthing.nix: Sandbox the systemd service. 
Using systemd sandboxing features to harden the syncthing service.
 2020-01-20 21:48:48 +01:00
Markus S. Wamser
d4718f180b minidlna: provide configuration option for announce interval 
Signed-off-by: Markus S. Wamser <github-dev@mail2013.wamser.eu>
 2020-01-19 14:06:27 +01:00
Matt Layher
5089214a3d nixos/corerad: init 2020-01-16 12:38:36 -08:00
Silvan Mosberger
55b0129a14
Merge pull request #76178 from 0x4A6F/master-xandikos 
xandikos: add tests and module
 2020-01-13 23:48:22 +01:00
Martin Milata
d9319e8e87 nixos/ndppd: enable systemd sandboxing 2020-01-13 11:11:32 +00:00
Robin Gloster
8305186bb4
Merge pull request #77554 from lheckemann/fix-wpa-multiple1 
nixos/wpa_supplicant: fix use with multiple interfaces
 2020-01-13 12:07:54 +01:00
Linus Heckemann
bbd6d219e4 nixos/wpa_supplicant: fix #61391 2020-01-12 14:14:16 +01:00
volth
6abba2294d nixos/nat: use nixos-nat-out instead of OUTPUT 2020-01-12 00:06:49 +01:00
0x4A6F
c9ca370e32
nixos/xandikos: init 2020-01-11 16:08:45 +01:00
Daniel Fullmer
27b8253655 nixos/zerotierone: prevent systemd from changing MAC address 2020-01-09 17:51:44 -05:00
markuskowa
2913973aa7
Merge pull request #76938 from lourkeur/fix_76184_gnunet 
nixos/gnunet: Add types to the options
 2020-01-09 21:33:50 +01:00
Pascal Bach
0319241132 nixos/mxisd: fix empty user name 2020-01-08 23:18:26 +01:00
Milan Pässler
2a31a6a412 tree-wide: fix errors and warning related to loaOf deprecation 2020-01-07 06:23:28 +01:00
rnhmjoj
1d61efb7f1 treewide: use attrs instead of list for types.loaOf options 2020-01-06 10:39:18 -05:00
Louis Bettens
d49737836a nixos/gnunet: Add types to the options 2020-01-05 00:07:50 +01:00
Christian Kauhaus
129c73802f
Merge pull request #76153 from arcnmx/connman-iwd 
nixos/connman: optional iwd backend
 2020-01-02 21:35:54 +01:00
Silvan Mosberger
cdf79db19d
Module system improvements for NixOS as a submodule (#75031) 
Module system improvements for NixOS as a submodule
 2020-01-02 20:38:45 +01:00
Silvan Mosberger
bc42515736
nixos/syncthing: Fix submodule name usage 
Module arguments should be taken from the arguments directly. This
allows evalModule's specialArgs to override them if necessary
 2020-01-02 09:59:35 +01:00
Tim J. Baumann
36b98fdf26 networkmanager: fix dispatcherScripts example 
Before, the example script didn't actually exit when the event type
didn't match "up".
 2020-01-01 15:32:15 +01:00
Ryan Mulligan
3a644e30b9
Merge pull request #46131 from ju1m/shorewall 
shorewall: init at 5.2.3.3
 2019-12-30 10:04:31 -08:00
Julien Moutinho
56a73dfb35 shorewall: init at 5.2.3.3 
nixos/shorewall: init
 2019-12-30 09:42:03 -08:00
Vladimír Čunát
c3d4998e41
Merge #75803: kresd service: unify listen declarations 2019-12-27 15:55:38 +01:00
Tad Fisher
b4bacff13f nixos/keybase, nixos/kbfs: update service configs; add redirector 2019-12-23 22:55:06 -08:00
Florian Klink
eeaf1f702d
Merge pull request #75103 from sternenseemann/spacecookie 
services/spacecookie: init
 2019-12-23 11:09:52 +01:00
arcnmx
7753d58e89 nixos/connman: optional iwd backend 2019-12-21 13:48:15 -08:00
Florian Klink
e46abc6b8d
Merge pull request #76069 from misuzu/package-3proxy 
nixos/3proxy: manual validation fix
 2019-12-20 02:15:45 +01:00
misuzu
b6f87c688b nixos/3proxy: manual validation fix 2019-12-20 00:17:49 +02:00
Michael Raskin
6210c15573
Merge pull request #67507 from misuzu/package-3proxy 
3proxy: init at 0.8.13
 2019-12-19 15:42:15 +00:00
sternenseemann
25503db8e8 nixos/spacecookie: add service module and test 2019-12-17 14:17:03 +01:00
Dustin Frisch
f886a14dbd
kresd: Unified listen declarations 
Deperecates the interfaces option which was used to generate a host:port
list whereas the port was always hardcoded to 53. This unifies the
listen configuration for plain and TLS sockets and allows to specify a
port without an address for wildcard binds.
 2019-12-17 12:44:24 +01:00
Netix (Espinet François)
cd3597b486
openvswitch: better integration with systemd 
Systemd dependencies for scripted mode
were refactored according to analysis in #34586.

networking.vswitches can now be used with systemd-networkd,
although they are not supported by the daemon, a nixos receipe
creates the switch and attached required interfaces (just like
the scripted version).

Vlans and internal interfaces are implemented following the
  template format i.e. each interface is
described using an attributeSet (vlan and type at the moment).
If vlan is present, then interface is added to the vswitch with
given tag (access mode). Type internal enabled vswitch to create
interfaces (see openvswitch docs).

Added configuration for configuring supported openFlow version on
the vswitch

This commit is a split from the original PR #35127.
 2019-12-15 21:16:26 +01:00
Bernardo Meurer
5ee439eb08
nixos: fix ip46tables invocation in nat 2019-12-14 20:13:12 -08:00
volth
018c0445ba nixos/unbound: add package option 2019-12-12 23:49:47 +00:00
Andreas Rammhold
e8bb94fca9
Merge pull request #68459 from volth/patch-364 
nixos/nat: create nixos-nat-{pre,post,out} in ip6tables too
 2019-12-12 15:55:51 +01:00
Silvan Mosberger
4ee3e8b21d
nixos/treewide: Move rename.nix imports to their respective modules 
A centralized list for these renames is not good because:
- It breaks disabledModules for modules that have a rename defined
- Adding/removing renames for a module means having to find them in the
central file
- Merge conflicts due to multiple people editing the central file
 2019-12-10 02:51:19 +01:00
Emery Hemingway
6c1c99d6b4 nixos/yggdrasil: fix for configFile option 
The configFile was not being merged with the declarative configuration at
runtime.
 2019-12-07 19:56:49 +01:00
rnhmjoj
1a2e7c3b00
nixos: add myself to maintainers 2019-12-04 17:09:53 +01:00
Mario Rodas
93ff0446ca
Merge pull request #66089 from servalcatty/v2ray 
v2ray: init at 4.21.3
 2019-12-03 04:42:50 -05:00
Renaud
e37e7b413c
Merge pull request #72987 from rnhmjoj/dnschain 
nixos/dnschain: use forwardZonesRecurse in pdns-recursor
 2019-11-29 19:56:21 +01:00
Serval
899d38170c
v2ray: fixups and change to buildGoModule 2019-11-28 02:10:37 +08:00
misuzu
823d6698bb nixos/3proxy: note about htpasswd 2019-11-27 11:01:48 +02:00
Robin Gloster
c33110db9e
Merge pull request #73299 from toonn/wpa_supplicant-unit-start-bonding 
nixos/wpa_supplicant: fix unit-start script
 2019-11-26 16:48:48 +01:00
worldofpeace
38178a9a5b
Merge pull request #74030 from ckauhaus/connman-to-services.networking 
connman: move "networking.connman" options to "services.connman"
 2019-11-24 21:24:33 +00:00
Christian Kauhaus
edbf94d2ee connman: move options to services 
As part of the networking.* name space cleanup, connman should be moved
to services.connman. The same will happen for example with
networkmanager in a separate PR.
 2019-11-24 16:23:32 -05:00
John Ericson
d0d5136cce Merge remote-tracking branch 'upstream/master' into wrapper-pname-support 2019-11-24 17:25:07 +00:00
John Ericson
9b090ccbca treewide: Get rid of most parseDrvName without breaking compat 
That is because this commit should be merged to both master and
release-19.09.
 2019-11-24 17:22:28 +00:00
Serval
740e85f847
v2ray: add v2ray service 2019-11-21 21:51:10 +08:00
William G Hatch
9abc97dc65 bind: Expand description of services.bind.cacheNetworks 
The new description should give more clear understanding of when to
edit the option.

I used NixOS to set up a DNS server that is authoritative for certain
zones.  The description of the `cacheNetworks` option made me think I
needed to set it to `"any"` to allow people to query the zone I set
up.  Reading the source of the module would have clarified my
understanding, but at the time I just read the description and thought
little of it.  Later I discovered I was getting tons of DNS requests
and presumably being used for a DNS amplification attack or similar.
I have fixed the problem now, but I would like the option to have a
clearer description so others don't make the same mistake I did.
 2019-11-19 22:24:30 +01:00
Ingolf Wagner
dcdf4cec3a nixos/syncthing: add versioning 2019-11-19 20:31:30 +01:00
Erik Arvstedt
8aa5f30a8f nixos/bitcoind: remove PermissionsStartOnly 
Unneded because there are no extra commands like ExecStartPre
 2019-11-18 21:48:02 +01:00
Jelle Besseling
823852a6a9 nixos/eternal-terminal: add firewall information 
(#71917)
 2019-11-18 16:12:12 +01:00
Emery Hemingway
7a1b4d1964 nixos/yggdrasil: remove /etc effects 
Use of the /etc directory should be avoided for software without
hardcoded configuration paths.
 2019-11-16 16:36:17 +01:00
Franz Pletz
e84840117b
Merge pull request #71510 from asymmetric/wg-ns 
Add namespace support to Wireguard module
 2019-11-14 01:24:59 +00:00
Félix Baylac-Jacqué
a628f5efd9
modules/vsftpd: Add virtual users support 
Add a virtual user system based around pam and a Berkeley
user database.

Adding the:

- localRoot
- userDbPath
- allowWriteableChroot
- virtualUseLocalPrivs

Vsftpd options.
 2019-11-13 18:17:04 +01:00
toonn
82fc9ab5c8 nixos/wpa_supplicant: fix unit-start script 
Ever since setting up bonding the `wpa_supplicant-unit-start` script has
been failing. This is because the file `bonding_masters` in
`/sys/class/net/` is *not* a directory containing `uevent`.

Adding a test to verify the `uevent` path to be sourced exists resolves
the problem.
 2019-11-12 17:53:29 +01:00
misuzu
08eb63b5ac nixos/3proxy: init 2019-11-11 16:15:29 +02:00
worldofpeace
488e6b7a23
Merge pull request #73059 from flokli/nixos-test-port-tinydns 
nixos/tinydns: port test to python
 2019-11-09 21:53:07 +00:00
Peter Hoeg
954e234b98 nixos/haproxy: support hot-reload without dropping packets 2019-11-09 10:11:57 -08:00
Lorenzo Manacorda
412f6a967d wireguard: add creation and destination namespaces 
The two new options make it possible to create the interface in one namespace
and move it to a different one, as explained at https://www.wireguard.com/netns/.
 2019-11-09 11:59:14 +01:00
Silvan Mosberger
3022fde292
Merge pull request #71576 from ShaRose/patch-1 
nixos/dnsdist: Add CAP_NET_BIND_SERVICE to AmbientCapabilities
 2019-11-09 00:07:09 +01:00
Florian Klink
cbd9e9e01f nixos/tinydns: order service after network.target 
In cases where you boot up really quickly (like in the VM test on a
non-busy host), tinydns might want to bind before the loopback interface
is fully up. Order tinydns after network.target to fix that.
 2019-11-08 17:26:34 +01:00
rnhmjoj
38d573426a
nixos/dnschain: use forwardZonesRecurse in pdns-recursor 2019-11-07 17:09:24 +01:00
rnhmjoj
28c8884e62
nixos/pdns-recursor: add option for recursive forward zones 2019-11-07 17:08:09 +01:00