Commit graph

23948 commits

Author SHA1 Message Date
illustris
91bb2b7016 nixos/hadoop: fix yarn, add more service configuration options 2021-10-25 16:30:19 +09:00
github-actions[bot]
0386c26190
Merge master into staging-next 2021-10-25 06:01:29 +00:00
Izorkin
a7c6546991 nixos/peertube:add release notes 2021-10-25 13:12:30 +09:00
Izorkin
cba4aeee5d nixos/tests: add peertube test 2021-10-25 13:12:30 +09:00
Izorkin
4c092350ed nixos/peertube: init service
Co-authored-by: Moritz Hedtke <Moritz.Hedtke@t-online.de>
Co-authored-by: Steven Roose <steven@stevenroose.org>
Co-authored-by: Matthias Beyer <mail@beyermatthias.de>
Co-authored-by: Ismaël Bouya <ismael.bouya@normalesup.org>
2021-10-25 13:12:30 +09:00
github-actions[bot]
24cfffaa7a
Merge master into staging-next 2021-10-25 00:01:32 +00:00
Maximilian Bosch
e1e15974f8
nextcloud20: drop
The version 20 of Nextcloud will be EOLed by the end of this month[1].

Since the recommended default (that didn't raise an eval-warning) on
21.05 was Nextcloud 21, this shouldn't affect too many people.

In order to ensure that nobody does a (not working) upgrade across
several major-versions of Nextcloud, I replaced the derivation of
`nextcloud20` with a `throw` that provides instructions how to proceed.

The only case that I consider "risky" is a setup upgraded from 21.05 (or
older) with a `system.stateVersion` <21.11 and with
`services.nextcloud.package` not explicitly declared in its config. To
avoid that, I also left the `else-if` for `stateVersion < 21.03` which
now sets `services.nextcloud.package` to `pkgs.nextcloud20` and thus
leads to an eval-error. This condition can be removed
as soon as 21.05 is EOL because then it's safe to assume that only
21.11. is used as stable release where no Nextcloud <=20 exists that can
lead to such an issue.

It can't be removed earlier because then every `system.stateVersion <
21.11` would lead to `nextcloud21` which is a problem if `nextcloud19`
is still used.

[1] https://docs.nextcloud.com/server/20/admin_manual/release_schedule.html
2021-10-25 01:34:47 +02:00
ajs124
76a77c0bfb plasma5: fix evaluation with aliases disabled and thunderbolt enabled 2021-10-24 23:10:52 +02:00
ajs124
a26bf2cabc
Merge pull request #142675 from helsinki-systems/fix/test-runner-thread-cleanup
nixos/test-runner: Fix thread cleanup
2021-10-24 20:12:41 +02:00
github-actions[bot]
ceea0e5f2a
Merge master into staging-next 2021-10-24 18:00:57 +00:00
Bruno Bigras
69b01e3a22
Merge pull request #141408 from bbigras/openresty-lua
nixos/nginx: disable MemoryDenyWriteExecute for pkgs.openresty
2021-10-24 17:39:27 +00:00
Sandro
062469fd09
Merge pull request #140309 from OPNA2608/init/gkraken/21.11 2021-10-24 18:28:57 +02:00
Janne Heß
1ed5606d8a
nixos/test-runner: Fix thread cleanup 2021-10-24 15:11:46 +02:00
github-actions[bot]
e84dc8ac6b
Merge master into staging-next 2021-10-24 12:01:27 +00:00
Sandro
0920efc96d
Merge pull request #142703 from schmittlauch/cawbird-rl-21-11
release-notes: Include note on Cawbird API key change
2021-10-24 12:18:21 +02:00
Sebastian
dc0769c63c
nixos/bookstack: fix error message output (#142729) 2021-10-24 18:13:54 +08:00
Trolli Schmittlauch
ff38b05b49 release-notes: Include note on Cawbird API key change
follow up to #140412
2021-10-24 02:57:47 +02:00
github-actions[bot]
50a5d0f17c
Merge master into staging-next 2021-10-23 18:01:15 +00:00
Jakob Klepp
5d5a5fce90 nixos/plantuml-server: use graphviz instead of graphviz_2_32
The plantuml package made this change as well

e785e1b24b
2021-10-23 17:49:05 +02:00
Alexandre Iooss
8d559672be
nixos/grafana: fix systemd unit
Remove MemoryDenyWriteExecute hardening as it breaks image rendering
plugin. Add CAP_NET_BIND_SERVICE to bind to low ports when needed.
Remove PrivateUsers and ProcSubset as upstream choose to remove it.

Upstream changes: <https://github.com/grafana/grafana/pull/40219>,
<https://github.com/grafana/grafana/pull/40178>,
<https://github.com/grafana/grafana/pull/40339> and
<https://github.com/grafana/grafana/pull/40815>.
2021-10-23 14:33:31 +02:00
Greizgh
7b7f3dfbe4
nixos/seafile: init service 2021-10-23 11:39:08 +02:00
github-actions[bot]
59156778b4
Merge master into staging-next 2021-10-23 06:01:03 +00:00
Artturi
dfad31d753
Merge pull request #142273 from ju1m/display-managers 2021-10-23 03:58:21 +03:00
github-actions[bot]
421a9e648e
Merge master into staging-next 2021-10-23 00:01:46 +00:00
pennae
1fa5e13f30 nixos/borgbackup: allow dump scripts as stdin inputs
borg is able to process stdin during backups when backing up the special path -,
which can be very useful for backing up things that can be streamed (eg database
dumps, zfs snapshots).
2021-10-22 16:31:50 -04:00
pennae
c47fcb70c6 nixos/mosquitto: rewrite the test
expand the test to check all four forms of passwords, tls certificates (both
server and client), and that acl files are formatted properly.
2021-10-22 16:06:55 -04:00
pennae
56d0b5cd6a nixos/mosquitto: rewrite the module
mosquitto needs a lot of attention concerning its config because it doesn't
parse it very well, often ignoring trailing parts of lines, duplicated config
keys, or just looking back way further in the file to associated config keys
with previously defined items than might be expected.

this replaces the mosquitto module completely. we now have a hierarchical config
that flattens out to the mosquitto format (hopefully) without introducing spooky
action at a distance.
2021-10-22 16:06:55 -04:00
github-actions[bot]
c93daf97af
Merge master into staging-next 2021-10-22 18:01:15 +00:00
Michele Guerini Rocco
b1df6feb1a
Merge pull request #142272 from ju1m/console
nixos/console: fix cross-compiling
2021-10-22 19:02:25 +02:00
Jonathan Ringer
fc25d94010
Merge remote-tracking branch 'origin/master' into staging-next
Conflicts:
	pkgs/development/python-modules/jupyter-client/default.nix
	pkgs/development/python-modules/jupyterlab-git/default.nix
2021-10-22 09:33:07 -07:00
davidak
6adc2ce335
Merge pull request #142455 from bobby285271/fileroller
pantheon.file-roller: init
2021-10-22 16:21:45 +02:00
Florian Klink
0084c41abf nixos/systemd: add remote-cryptsetup.target
/etc/crypttab can contain the _netdev option, which adds crypto devices
to the remote-cryptsetup.target.

remote-cryptsetup.target has a dependency on cryptsetup-pre.target. So
let's add both of them.

Currently, one needs to manually ssh in and invoke `systemctl start
systemd-cryptsetup@<name>.service` to unlock volumes.

After this change, systemd will properly add it to the target, and
assuming remote-cryptsetup.target is pulled in somewhere, you can simply
pass the passphrase by invoking `systemd-tty-ask-password-agent` after
ssh-ing in, without having to manually start these services.

Whether remote-cryptsetup.target should be added to multi-user.target
(as it is on other distros) is part of another discussion - right now
the following snippet will do:

```
systemd.targets.multi-user.wants = [ "remote-cryptsetup.target" ];
```
2021-10-22 15:47:21 +02:00
Peter Hoeg
d2ed9e4f96 nixos/plasma5: add thunderbolt package if configured 2021-10-22 10:46:16 +08:00
Peter Hoeg
f1a82a2182 nixos/plasma5: make running with systemd configurable 2021-10-22 10:46:16 +08:00
Bobby Rong
73487dee85
nixos/pantheon: prefer pantheon.file-roller 2021-10-22 10:26:27 +08:00
Bobby Rong
d34be69054
nixos/file-roller: add option for specify package 2021-10-22 10:26:27 +08:00
Sandro
4663d3f99f
Merge pull request #142360 from romildo/upd.lumina 2021-10-21 23:45:29 +02:00
Jakub Sokołowski
72d16ac9b5 transmission: add extraFlags configuration option
Makes service more customizeable and makes debuggingin easier through
the use of flags like `--log-debug` or `--dump-settings`.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-21 23:36:06 +02:00
Sandro
5d74ff4206
Merge pull request #141443 from jtojnar/blackfire-2 2021-10-21 20:22:09 +02:00
Jan Tojnar
25450f2b29 blackfire: 1.49.4 → 2.5.1
https://blackfire.io/docs/up-and-running/agent-upgrade
2021-10-21 17:40:19 +02:00
Jacek Galowicz
e7a1dea4c8
Merge pull request #142207 from K900/fix-python-crashes-in-tests
nixos/lib/test-driver: clean up threads correctly
2021-10-21 14:13:04 +02:00
Jakub Kozłowski
06ec20277f coursier: Rename binary to cs 2021-10-21 08:11:47 -04:00
Ninjatrappeur
670c69cb9b
Merge pull request #96655 from ju1m/transmission 2021-10-21 12:15:05 +02:00
github-actions[bot]
54a42ab846
Merge master into staging-next 2021-10-21 06:01:21 +00:00
Julien Moutinho
2ef7fec214 nixos/systemd-lib: fix cross-compiling 2021-10-21 03:55:36 +02:00
ajs124
c57f96274f
Merge pull request #141487 from helsinki-systems/feat/nixos-install-variable
nixos/nixos-enter: Add IN_NIXOS_ENTER variable
2021-10-21 02:07:41 +02:00
github-actions[bot]
872437b0f0
Merge master into staging-next 2021-10-21 00:01:47 +00:00
Martin Weinelt
5adcd46bc0
Merge pull request #142109 from mweinelt/prometheus-node-exporter
nixos/prometheus: add hardening exceptions to node-exporter
2021-10-21 01:15:35 +02:00
Maximilian Bosch
3d1350d3f9
Merge pull request #142148 from Ma27/bump-roundcube
roundcube: 1.4.11 -> 1.5.0
2021-10-20 23:47:57 +02:00
github-actions[bot]
ba32b28e59
Merge master into staging-next 2021-10-20 18:01:18 +00:00
Eric Bailey
5b455776e3 helmfile: 0.140.1 -> 0.141.0 2021-10-20 09:06:11 -05:00
José Romildo
247f3876d5 nixos.lumina: give special privilegies to lumina-checkpass 2021-10-20 10:43:25 -03:00
github-actions[bot]
2d8f645c79
Merge master into staging-next 2021-10-20 06:01:15 +00:00
Hugo Lageneste
e09fb63ffc nixos/luksroot: sync the crypt-storage
Add a sync command just after writing to the /crypt-storage file in order to reduce
the possibilities of corruption errors.
2021-10-20 03:46:19 +03:00
Julien Moutinho
808ad2afe1 nixos/display-managers: fix cross-compiling 2021-10-20 02:29:05 +02:00
Julien Moutinho
661207ce7e nixos/console: fix cross-compiling 2021-10-20 02:15:09 +02:00
Vladimír Čunát
01df3cd7dd
Merge branch 'master' into staging-next 2021-10-19 19:24:43 +02:00
K900
9611041ef5 nixos/lib/test-driver: set defaults in __init__ instead of class level
Just a minor code style nit to avoid potential footguns
2021-10-19 16:29:19 +03:00
K900
a874235dff nixos/lib/test-driver: clean up threads correctly
The current implementation just forks off a thread to read
QEMU's stdout and lets it exist forever. This, however,
makes the interpreter shutdown racy, as the thread could
still be running and writing out buffered stdout when the
main thread exits (and since it's using the low level API,
the worker thread does not get cleaned up by the atexit hooks
installed by `threading`, either). So, instead of doing that,
let's create a real `threading.Thread` object, and also
explicitly `join` it along with the other stuff when cleaning up.
2021-10-19 16:23:51 +03:00
Maciej Krüger
b11e0a853a
Merge pull request #142084 from mkg20001/hedge 2021-10-19 15:23:45 +02:00
Michael Hoang
43d2eefea6 nixos/samba: Add openFirewall option 2021-10-19 19:11:02 +11:00
Domen Kožar
8fdc8fe5ce
Merge pull request #142040 from pennae/optimize-module-docs
make-options-docs: don't sort the options XML file
2021-10-18 16:38:32 -05:00
Maximilian Bosch
4f88fb9331
roundcube: 1.4.11 -> 1.5.0
ChangeLog: https://github.com/roundcube/roundcubemail/releases/tag/1.5.0
2021-10-18 23:27:00 +02:00
figsoda
a209d563cd
Merge pull request #142032 from thiagokokada/refactor-libvirtd-module
nixos/libvirtd: refactor module
2021-10-18 16:07:05 -04:00
Sandro
b775c1f58d
Merge pull request #142108 from Ma27/pi-ldap-proxy-py3 2021-10-18 22:06:22 +02:00
Sandro
34ba722a00
Merge pull request #142117 from samhug/hyperv 2021-10-18 21:29:52 +02:00
Robert Hensing
6dfab1853d
Merge pull request #142035 from hercules-ci/nixops-test
NixOps test
2021-10-18 21:28:15 +02:00
Maximilian Bosch
47fc40d5ab
pythonPackages.privacyidea-ldap-proxy: 0.6.1 -> 0.6.2, switch to python3 2021-10-18 21:14:35 +02:00
Pascal Wittmann
89a0ec8f3c
Merge pull request #142028 from NixOS/bugfix/subsonic-needs-jdk8
nixos/subsonic: use jre8
2021-10-18 20:44:41 +02:00
Sam Hug
d6e1fb43c4 nixos/hyperv: fix evaluation of kernelParams 2021-10-18 11:22:53 -07:00
github-actions[bot]
b0a41194a1
Merge master into staging-next 2021-10-18 18:01:14 +00:00
Julien Moutinho
90877765d3 nixos/transmission: remove SystemCallErrorNumber= to raise errors 2021-10-18 19:35:48 +02:00
Julien Moutinho
aaf21b9636 nixos/transmission: remove InaccessiblePaths= to enable reload, fixes #135695 2021-10-18 19:35:46 +02:00
Julien Moutinho
63e87892ff nixos/transmission: use freeformType on settings 2021-10-18 19:35:41 +02:00
Martin Weinelt
9b46e3084b
nixos/prometheus: add hardening exceptions to node-exporter
Conditionally grants access for the logind, wifi and network_route
collectors.
2021-10-18 19:21:30 +02:00
Thiago Kenji Okada
3e72e18c57 nixos/doc/manual/release_notes: add virtualisation.libvirtd changes 2021-10-18 13:46:56 -03:00
Thiago Kenji Okada
9e7b50e885 nixos/libvirtd: refactor module
Move all `virtualisation.libvirtd.qemu*` options to a
`virtualisation.libvirtd.qemu` submodule.

Also for consistency, add `virtualisation.libvirtd.qemu.swtpm.package`
(only new option during this refactor.)
2021-10-18 13:45:35 -03:00
Jörg Thalheim
57961d2b83
Merge pull request #141192 from helsinki-systems/feat/improved-socket-handling2
nixos/switch-to-configuration: Improve socket and timer handling, clean up, minor fixes, add test
2021-10-18 16:53:11 +01:00
Sandro
50171477bc
Merge pull request #139128 from HexF/patch-1 2021-10-18 16:15:02 +02:00
Dzmitry Malyshau
e7898e1226 Add command to switch to root
Installation guide assumed you are root but didn't explain how to get there. And it's not obvious.
2021-10-18 09:25:48 -04:00
Maciej Krüger
cb7459c286
nixos/hedgedoc: add more options for oauth2 2021-10-18 14:20:51 +02:00
github-actions[bot]
8863d12326
Merge master into staging-next 2021-10-18 12:01:18 +00:00
Robert Hensing
0645328c22
Merge pull request #142075 from hercules-ci/issue-118722-path-in-contents
dockerTools: Fix and test #118722 path in contents
2021-10-18 13:44:13 +02:00
Robert Hensing
3b9d05e114 dockerTools: Fix and test #118722 path in contents 2021-10-18 12:41:51 +02:00
happysalada
af1ac44440 jitsi: add caddy reverse proxy option 2021-10-18 19:11:32 +09:00
Robert Hensing
c64881b6da nixopsUnstable: Add test 2021-10-18 12:07:01 +02:00
Maciej Krüger
f7881666bf
Merge pull request #141555 from figsoda/git-attrsof-anything 2021-10-18 10:44:35 +02:00
pennae
24eb353907 make-options-docs: don't sort the options XML file
we need the file itself as a dependency for the docbook build, but we don't need
it to be properly sorted at the nix level. push the sort out to a python script
instead to save eval time. on the machine used to write this `nix-instantiate
<nixos/nixos> -A system` went down from 7.1s to 5.4s and GC heap size decreased
by 50MB (or 70MB max RSS).
2021-10-18 03:45:33 +02:00
Robert Hensing
a8166c9574 nixos/maintainers/scripts: Avoid copy in example 2021-10-17 23:57:42 +02:00
Robert Hensing
c247827654 nixosTest: Provide system.build.networkConfig 2021-10-17 23:56:52 +02:00
Pascal Wittmann
14c5fe8c1b
nixos/subsonic: use jre8
The latest version of Subsonic (6.1.6) does not suport Java SE 9 or later
because it depends on the JAXB APIs. Those are considered to be Java EE
APIs are no longer contained on the default classpath in Java SE 9 and
are completely removed in Java SE 11..
2021-10-17 22:55:05 +02:00
github-actions[bot]
0f92179807
Merge master into staging-next 2021-10-17 18:01:07 +00:00
davidak
249d3f306a
Merge pull request #140828 from bobby285271/evince
pantheon.evince: init
2021-10-17 19:33:06 +02:00
Jade
8d52479bc7 nixos/libvirtd: Add configuration option for swtpm 2021-10-17 16:48:17 +02:00
Janne Heß
4cdbb2d891
nixos/switch-to-configuration: Fix ordering and indentation
This makes the order of operations the same in dry-activate and a "true"
activate. Also fixes the indentation I messed up and drop a useless
unlink() call (we are already unlinking that file earlier).
2021-10-17 14:35:49 +02:00
Janne Heß
ad09f7be14
nixos/switch-to-configuration: Handle stopped sockets
The previous logic failed to detect that units were socket-activated
when the socket was stopped before switch-to-configuration was run. This
commit fixes that and also starts the socket in question.
2021-10-17 14:35:48 +02:00
Janne Heß
558158b4f5
nixos/switch-to-configuration: Hide socket warnings 2021-10-17 14:35:48 +02:00
Janne Heß
047aa1a0e9
nixos/switch-to-configuration: Use early return 2021-10-17 14:35:47 +02:00
Janne Heß
720571eefa
nixos/switchTest: Also test mounts 2021-10-17 14:35:47 +02:00
Janne Heß
4f870c7d70
nixos/switch-to-configuration: Restart timers 2021-10-17 14:35:47 +02:00
Janne Heß
adc033cd59
nixos/switch-to-configuration: Ignore path units 2021-10-17 14:35:46 +02:00
Janne Heß
de128feacc
nixos/switch-to-configuration: Ignore slice units 2021-10-17 14:35:46 +02:00
Janne Heß
b515bae5cf
nixos/switch-to-configuration: Remove some FIXMEs
The first FIXME is removed because it doesn't make sense to use
/proc/1/exe since that points to a directory that doesn't have all tools
the activation script needs (like systemd-escape).

The second one is removed because there is already no error handling
(compare with the restart logic where the return code is checked).
2021-10-17 14:35:45 +02:00
Janne Heß
cfad5e3403
nixos/switch-to-configuration: Improve socket support
This commit changes a lot more that you'd expect but it also adds a lot
of new testing code so nothing breaks in the future. The main change is
that sockets are now restarted when they change. The main reason for
the large amount of changes is the ability of activation scripts to
restart/reload units. This also works for socket-activated units now,
and honors reloadIfChanged and restartIfChanged. The two changes don't
really work without each other so they are done in the one large commit.

The test should show what works now and ensure it will continue to do so
in the future.
2021-10-17 14:35:43 +02:00
Janne Heß
744162ffb6
nixos/switch-to-configuration: Fix perlcritic warning 2021-10-17 14:33:42 +02:00
Janne Heß
c4d34cd184
nixos/top-level: Check Syntax of switch-to-configuration 2021-10-17 14:33:42 +02:00
Janne Heß
f0a31f9b9f
nixos/switch-to-configuration: Ignore started scopes
They are not managed by us and it might be weird to users to see units
they didn't expect to be started.
2021-10-17 14:33:42 +02:00
Janne Heß
ec619ca369
nixos/switch-to-configuration: Remove unused variable 2021-10-17 14:33:41 +02:00
github-actions[bot]
4454997349
Merge master into staging-next 2021-10-17 12:01:09 +00:00
Thiago Kenji Okada
5f7e675c45 nixos/libvirtd: add qemuOvmfPackage option 2021-10-17 11:39:25 +02:00
github-actions[bot]
aec898bbb2
Merge master into staging-next 2021-10-17 06:01:16 +00:00
Bobby Rong
cae293443b
nixos/pantheon: prefer pantheon.evince 2021-10-17 11:42:22 +08:00
Bobby Rong
ce7479ef91
nixos/evince: add option for specify package 2021-10-17 11:42:22 +08:00
figsoda
471cfaf523 nixos/git: change config type 2021-10-16 22:39:56 -04:00
pennae
c1f5155471 nixos/networking: support FOU encapsulation for sits 2021-10-16 20:48:03 -04:00
pennae
f29ea2d15d nixos/networking: add foo-over-udp endpoint support
allows configuration of foo-over-udp decapsulation endpoints. sadly networkd
seems to lack the features necessary to support local and peer address
configuration, so those are only supported when using scripted configuration.
2021-10-16 20:48:03 -04:00
Ryan Burns
3220fbe696 Merge branch 'master' into staging-next 2021-10-16 16:07:38 -07:00
Artturi
94da5bc7ad
Merge pull request #141169 from ck3d/fix-cross-nixos-influxdb 2021-10-16 07:03:13 +03:00
Martin Weinelt
b84bf1f3c3
Merge pull request #141823 from zopieux/fix-rtl433-hardening 2021-10-16 03:15:52 +02:00
Alexandre Macabies
7fb3edb077 nixos/prometheus-rtl_433-exporter: fix systemd hardening
9fea6d4c85 broke rtl_433-exporter by
introducing several hardening options which do not play well with
rtl_433 requiring writing to USB. More precisely, rtl_433 requires
(a) AF_NETLINK to configure the radio; (b) access to the USB device,
but PrivateDevices=true hides them; (c) rw access to the USB device,
but DeviceAllow= block-lists everything.

This commit was tested on real hardware with a standard NixOS setup.
2021-10-16 01:57:50 +02:00
Vladimir Serov
aac4c42551
nixos/doc/manual/release_notes: add kernelParams notes
Ran md-to-db.sh, and for some reason got these changes as well. I guess someone
didn't update their manual 🤷
2021-10-16 02:09:28 +03:00
Vladimir Serov
a868222d65
nixos.system.boot.kernel: stronger constraints for kernelParam type
Checks whether all spaces are inside double quotes, thus ensuring that one
string parses as no more than one kernel param.

Co-authored-by: pennae <82953136+pennae@users.noreply.github.com>
2021-10-16 01:21:10 +03:00
Martin Weinelt
43a4965bca
nixos/release-notes: render missing docbook 2021-10-15 23:24:33 +02:00
Martin Weinelt
a415d5dd2e Merge remote-tracking branch 'origin/master' into staging-next 2021-10-15 23:10:08 +02:00
pennae
62813808ff nixos/unifi, unifi: add pennae to maintainers 2021-10-15 17:14:33 +02:00
Jan Tojnar
db480ed901
Merge pull request #141770 from lorenz/fix-pulseaudio-warning
nixos/gdm: remove obsolete pulseaudio module
2021-10-15 16:54:41 +02:00
Lorenz Brun
a3d711f4e1 nixos/gdm: remove obsolete pulseaudio module
PulseAudio 14.0 has deprecated that module and moved its functionality into
the core, it does nothing other than
printing an error at every start.
2021-10-15 15:47:31 +02:00
Artturi
3dac8b26d3
Merge pull request #141709 from rembo10/sickbeard-service-fix 2021-10-15 08:45:22 +03:00
rembo10
e8d0afd8d1 nixos/sickbeard: fix the startup command 2021-10-15 08:00:36 +03:00
John Ericson
f2a619bcca
Merge pull request #118960 from kquick/assert_buildmachine_system
nixos/nix-daemon: assert system or systems for buildMachines.
2021-10-14 23:51:58 -04:00
wackbyte
0242265e55 nixos/plasma5: add useQtScaling option
closes #105943
2021-10-15 11:50:17 +08:00
Pasquale
0878b46917 nixos/release notes: correction 2021-10-15 09:20:13 +08:00
pasqui23
475a6dd9b7 nixos/changelog: rephrasing plasma update
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
2021-10-15 09:20:13 +08:00
Pasquale
8d2d64142b nixos/doc: Plasma wayland changelog 2021-10-15 09:20:13 +08:00
Pasquale
763a0014c8 nixos/plasma: remove dead code 2021-10-15 09:20:13 +08:00
Pasquale
4832352d02 nixos/plasma: use upstream xsession/wayland files 2021-10-15 09:20:13 +08:00
Martin Weinelt
adf4e67dd4 Merge remote-tracking branch 'origin/staging' into staging-next 2021-10-15 01:34:36 +02:00
Luke Granger-Brown
b4b663efc8
Merge pull request #132713 from ncfavier/cups
cups: 2.3.3 -> 2.3.3op2
2021-10-14 14:54:08 +01:00
pennae
300226261f nixos/unifi: fix unifi ExecStop= being incompatible with systemd
unifi does not shut down properly when stopped via systemd (it always exits with
SIGTERM exit status) because systemd wants stop commands to not exit before the
main command is gone and unifi does not comply. the easiest way around this is
to have systemd send an ignored signal after the stop command has exited.

unifi may still throw exceptions during shutdown, but it *does* exit cleanly as
far as systemd is concerned now.
2021-10-14 13:26:14 +02:00
Bruno Bigras
feb47656e4 nixos/tests/openresty-lua: test openresty with lua
related to #140655
2021-10-14 07:01:56 -04:00
Matthias Treydte
72fbd63c5c nixos/prometheus: fix node exporter timex collector
The timex collector (enabled by default) needs the
adjtimex syscall, which was disabled by
9fea6d4c85.

So allow it unless the timex collector is disabled.
2021-10-14 11:26:29 +02:00
Matthias Treydte
ae7ce180dd nixos/prometheus: fix node exporter systemd collector
The systemd collector needs AF_UNIX to talk to
/var/run/dbus/system_bus_socket, which was broken
with 9fea6d4c85.

This commit allows AF_UNIX when needed.
2021-10-14 11:26:29 +02:00
Janne Heß
540dc908ca
nixos/test-runner: Print exceptions that happen 2021-10-14 00:15:53 +02:00
Timothy DeHerrera
305ea3e9ed
nixos/nvidia: fix typo in PM assert 2021-10-13 09:39:35 -06:00
Graham Christensen
a997f198a3
Merge pull request #139833 from flox/multipath
nixos/multipath: add module for multipath-tools package
2021-10-13 09:58:25 -04:00
Maximilian Bosch
eb3a3725e4
Merge pull request #119638 from beardhatcode/feat/nextcloud-packages
nextcloud: add option to set datadir and extensions
2021-10-13 14:26:41 +02:00
Janne Heß
b071aea8d0
nixos/nixos-enter: Add IN_NIXOS_ENTER variable 2021-10-13 13:05:54 +02:00
github-actions[bot]
e69f5a133f
Merge staging-next into staging 2021-10-13 00:02:00 +00:00
Bruno Bigras
2ceae2db61 nixos/nginx: disable MemoryDenyWriteExecute for pkgs.openresty
fix #140655

Co-authored-by: Yurii Izorkin <izorkin@elven.pw>
2021-10-12 16:28:53 -04:00
Sandro
c984e0beb0
Merge pull request #141326 from bbigras/kopia 2021-10-12 21:09:50 +02:00
Sandro
3cf6c7ba7c
Merge pull request #141258 from waldheinz/broken-host-keys 2021-10-12 20:42:55 +02:00
github-actions[bot]
0cb186d33d
Merge staging-next into staging 2021-10-12 18:01:50 +00:00
Arseniy Seroka
cd53bf7acc
Merge pull request #140076 from jraygauthier/jrg/96633_fix-teamviewer-client-server-issue
teamviewer: fix #96633, #44307 and #97148 + 15.15.5 -> 15.18.5 -> 15.22.3
2021-10-12 20:58:56 +03:00
github-actions[bot]
7af387291c
Merge staging-next into staging 2021-10-12 12:02:08 +00:00
Florian Klink
3dbcbd1bcd
Merge pull request #140278 from ius/systemd-boot
systemd-boot: add 'graceful' configuration option
2021-10-12 12:51:20 +02:00
Florian Klink
b112f366fb
Merge pull request #81172 from misuzu/iptables-switch
iptables: switch from iptables-legacy to iptables-nftables-compat
2021-10-12 12:38:56 +02:00
Matthias Treydte
97e61a071d nixos/ssh: take care not to accept empty host key files
In case of a power loss shortly after first boot,
the host keys gernerated by ssh-keygen could exist
in the file system but have zero size, preventing
sshd from starting up.

This commit changes the behaviour to generate host
keys if the file either does not exist or has zero
size, fixing the problem on the next boot.

Thanks to @SuperSandro2000 for figuring this out.
2021-10-12 12:25:38 +02:00
Bruno Bigras
bdd81fa056 kopia: 0.8.4 -> 0.9.0 2021-10-12 01:08:43 -04:00
github-actions[bot]
5065827878
Merge staging-next into staging 2021-10-12 00:02:05 +00:00
Jan Tojnar
e859225ee5
Merge pull request #139144 from NixOS/gnome-41
GNOME: 40 → 41
2021-10-11 22:59:01 +02:00
github-actions[bot]
92a15c8929
Merge staging-next into staging 2021-10-11 18:01:55 +00:00
Michele Guerini Rocco
02fc8c2367
Merge pull request #140723 from rnhmjoj/pr-fontdir-headless
nixos/fontdir: always link the font directory
2021-10-11 19:42:19 +02:00
Maciej Krüger
e4ef597edf
Merge pull request #141255 from mkg20001/lfs 2021-10-11 18:52:03 +02:00
Maciej Krüger
c84b55bbe6
nixos/git: add lfs option to allow enabling and installing lfs easily
Co-authored-by: figsoda <figsoda@pm.me>
2021-10-11 17:56:33 +02:00
Joerie de Gram
7bd84b6685 systemd-boot: add 'graceful' configuration option
On some systems bootctl cannot write the `LoaderSystemToken` EFI variable
during installation, which results in a failure to install the boot
loader. Upstream provides a flag (--graceful) to ignore such write failures -
this change exposes it as a configuration option.

As the exact semantics of this option appear to be somewhat volatile it
should be used only if systemd-boot otherwise fails to install.
2021-10-11 15:14:33 +02:00
github-actions[bot]
d21a1c3fbc
Merge staging-next into staging 2021-10-11 12:02:07 +00:00
Bobby Rong
dd596307b7
Merge pull request #140820 from VergeDX/kippo-remove
kippo: cleanup the corresponding broken module.
2021-10-11 17:19:11 +08:00
github-actions[bot]
03d816e015
Merge staging-next into staging 2021-10-11 00:02:14 +00:00
Martin Weinelt
f358794824
Merge pull request #136039 from jdreaver/prowlarr 2021-10-10 23:30:57 +02:00
David Reaver
11ce481845 nixos/tests/prowlarr: init 2021-10-10 14:05:33 -07:00
David Reaver
3d79c9250a nixos/prowlarr: init 2021-10-10 14:05:33 -07:00
Michele Guerini Rocco
727fa5a9b1
Merge pull request #141194 from legendofmiracles/wol
Adds a notice that the service.wakeonlan module was moved
2021-10-10 21:24:15 +02:00
github-actions[bot]
aac35c22db
Merge staging-next into staging 2021-10-10 18:01:41 +00:00
legendofmiracles
9aae71379d
nixos/wakeonlan: add note to rename.nix 2021-10-10 10:50:16 -06:00
Luflosi
7938ea67a7
nixos/doc/md-to-db.sh: handle path to nixpkgs with spaces
Without this change, the script will fail if the path to nixpkgs contains a space.
2021-10-10 11:57:51 +02:00
misuzu
f898fde586 docs/release-notes: mention iptables switch 2021-10-10 11:43:35 +03:00
Christian Kögler
b154b6f7d8 nixos/influxdb: Fix cross compilation for config.toml 2021-10-10 10:34:55 +02:00
github-actions[bot]
1b2b1c3d56
Merge staging-next into staging 2021-10-10 00:02:14 +00:00
Maximilian Bosch
3498c5ff3c
nixos/nextcloud: build manual without warnings 2021-10-09 22:45:39 +02:00
Maximilian Bosch
1ee008fcb5
nixos/nextcloud: fixup #119638
A few minor changes to get #119638 - nextcloud: add option to set
datadir and extensions - ready:

* `cfg.datadir` now gets `cfg.home` as default to make the type
  non-nullable.
* Enhanced the `basic` test to check the behavior with a custom datadir
  that's not `/var/lib/nextcloud`.
* Fix hashes for apps in option example.
* Simplify if/else for `appstoreenable` in override config.
* Simplify a few `mapAttrsToList`-expressions in
  `nextcloud-setup.service`.
2021-10-09 22:45:31 +02:00
Jan Tojnar
b2ef3e68e7 nixosTests.gnome: fix
GNOME Shell 41 made the Eval command we use for NixOS tests internal
so in order to be still able to use it, we need to run the shell
in an unsafe mode.

https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/1970
https://gitlab.gnome.org/GNOME/mutter/-/merge_requests/1983

Hopefully, the test driver will eventually get better so that
we will not need hacks like this forever.
2021-10-09 21:35:57 +02:00
Jan Tojnar
80ea989ac9 xdg-desktop-portal-gtk: 1.8.0 → 1.10.0
https://github.com/flatpak/xdg-desktop-portal-gtk/releases/tag/1.10.0
2021-10-09 21:35:57 +02:00
Jan Tojnar
ed3b4aa889 nixos/release-notes: Mention GNOME 41 2021-10-09 21:35:56 +02:00
Jan Tojnar
d106b07997 nixos/gnome: use GNOME xdg portal 2021-10-09 21:35:56 +02:00
Maximilian Bosch
7856e40da6
nixos/nextcloud: fix wording in manual 2021-10-09 20:52:52 +02:00
Robbert Gurdeep Singh
1852212872
nixos/nextcloud: fail systemd-service if apps don't activate 2021-10-09 20:33:17 +02:00
Robbert Gurdeep Singh
18b18929d7
nixos/nextcloud: add settings to manage nextcloud apps
Note the appstoreEnable which will prevent nextcloud form updating
nix-managed apps. This is needed because nextcloud will store an other
version of the app in /var/lib/nextcloud/store-apps and it will
no longer be manageable.
2021-10-09 20:33:16 +02:00
Robbert Gurdeep Singh
7ba02a7b1e
nixos/nextcloud: add services.nextcloud.datadir setting
This option can be used to set an alternative storage location for
files and app metadata.
2021-10-09 20:33:13 +02:00
github-actions[bot]
81e9eafb15
Merge staging-next into staging 2021-10-09 18:01:47 +00:00
Maximilian Bosch
80404a23c9
Merge pull request #140775 from Ma27/nextcloud-docs-and-secrets
nixos/nextcloud: manual improvements & pass secrets via the environment to `nextcloud-occ`
2021-10-09 20:01:15 +02:00
Maximilian Bosch
cbfe4a42f6
Merge pull request #140979 from Ma27/matrix-workers
nixos/matrix-synapse: minor improvements to implement worker-support
2021-10-09 15:24:41 +02:00
github-actions[bot]
73444b1e90
Merge staging-next into staging 2021-10-09 12:01:44 +00:00
Michele Guerini Rocco
46b2a2594a
Merge pull request #140779 from legendofmiracles/wol
nixos/wakeonlan: switch to systemd.link and to nixos/networking
2021-10-09 10:34:26 +02:00
Luke Granger-Brown
856913b191
Merge pull request #136777 from lukegb/buildcatrust
use buildcatrust to generate trust stores
2021-10-09 03:39:49 +01:00
github-actions[bot]
605eb4e1e0
Merge staging-next into staging 2021-10-08 18:01:58 +00:00
Maximilian Bosch
f57bed8832
nixos/nextcloud: drop adminpass/dbpass options entirely 2021-10-08 18:30:57 +02:00
ajs124
ae53e57a7a
Merge pull request #133141 from helsinki-systems/feat/jitsi-meet-websocket
nixos/jitsi-meet: add support for xmpp-websocket
2021-10-08 16:51:00 +02:00
Michael Brantley
121cfd1998 nixos/multipath: add multipath module
The multipath-tools package had existed in Nixpkgs for some time but
without a nixos module to configure/drive it. This module provides
attributes to drive the majority of multipath configuration options
and is being successfully used in stage-1 and stage-2 boot to mount
/nix from a multipath-serviced iSCSI volume.

Credit goes to @grahamc for early contributions to the module and
authoring the NixOS module test.
2021-10-08 09:47:38 -04:00
Graham Christensen
a85dcd9ca3 iscsi root initiator: allow specifying arbitrary iscsi commands too 2021-10-08 09:47:01 -04:00
Graham Christensen
829bbc708b boot.initrd.extraFiles: allow users to add arbitrary files to the initrd 2021-10-08 09:47:01 -04:00