WORLDofPEACE
3b20eb47f1
nixos/tools: don't call Plasma KDE
2020-10-10 22:44:56 -04:00
WORLDofPEACE
9f1a43cefa
nixos/tools: comment about libinput
2020-10-10 22:44:56 -04:00
WORLDofPEACE
12825bc21f
nixos/tools: don't mention pinentryFlavor
...
We don't need to actually set this as it find a good
default automatically. This could confuse the user into thinking they need
to set it themselves.
2020-10-10 22:44:55 -04:00
WORLDofPEACE
13b192749c
nixos/gnome3: don't install epiphany default
...
See https://github.com/NixOS/nixpkgs/issues/98819
2020-10-10 22:12:59 -04:00
Jan Tojnar
aabcf2d8f5
Merge branch 'master' into staging-next
2020-10-11 00:27:21 +02:00
WORLDofPEACE
38237e95e6
Merge pull request #100103 from jtojnar/fontconfig-rn
...
nixos/doc: Mention fontconfig changes in 20.09 RN
2020-10-10 16:47:39 -04:00
WORLDofPEACE
2e087fe0d9
Merge pull request #100097 from Jiehong/doc/release_note_python
...
doc: add the removal of Python 3.5 to the 20.09 release notes (#95765 )
2020-10-10 16:44:25 -04:00
Michael Weiss
4a600af1b1
doc: Document a workaround for using an FQDN as hostname
...
Since #76542 this workaround is required to use a FQDN as hostname. See
#94011 and #94022 for the related discussion. Due to some
potential/unresolved issues (legacy software, backward compatibility,
etc.) we're documenting this workaround [0].
[0]: https://github.com/NixOS/nixpkgs/issues/94011#issuecomment-705952300
2020-10-10 10:48:54 -07:00
Michael Weiss
826ed96c10
nixos/networking: Switch to home.arpa as an example for the domain
...
The special-use domain "home.arpa." is designated for non-unique use in
residential home networks [0] and registered as such [1]. Therefore it
is more appropriate than "home." which could cause conflicts or result
in queries that leak out and reach the root name servers.
[0]: https://tools.ietf.org/html/rfc8375
[1]: https://www.iana.org/assignments/special-use-domain-names/special-use-domain-names.xhtml
2020-10-10 17:41:42 +02:00
Dominik Xaver Hörl
67eb45ddce
xmonad: put the correct xmonad binary in PATH
2020-10-10 13:20:04 +02:00
Vladimír Čunát
338b25697c
Merge branch 'master' into staging-next
...
Quite many rebuilds from master:
> Estimating rebuild amount by counting changed Hydra jobs.
> 3926 x86_64-darwin
> 4645 x86_64-linux
2020-10-10 11:32:10 +02:00
WORLDofPEACE
7a2eccfab0
Merge pull request #100112 from worldofpeace/fix-gnome-logout-multisession
...
nixos/display-managers: install sessionData.desktops
2020-10-09 19:31:05 -04:00
WORLDofPEACE
3cd2b59b8c
nixos/display-managers: install sessionData.desktops
...
Fixes https://github.com/NixOS/nixpkgs/issues/100108
2020-10-09 18:38:16 -04:00
Jan Tojnar
be2f1cb15c
nixos/doc: Mention fontconfig changes in 20.09 RN
...
This is a major change but it should not cause any issues.
2020-10-09 22:09:37 +02:00
Jiehong Ma
63c7735733
doc: add the removal of Python 3.5 to the 20.09 release notes ( #95765 )
2020-10-09 20:03:15 +02:00
Jiehong Ma
c3e4594eaf
doc: add AMD rocm and vulkan to 20.09 release notes ( #95765 )
2020-10-09 18:24:27 +02:00
zowoq
f9bb39e294
nixos/pam: remove trailing whitespace
2020-10-09 18:31:20 +10:00
Frederik Rietdijk
ec28e32c9e
Merge master into staging-next
2020-10-08 21:47:26 +02:00
Miles Breslin
8e628f8eea
nixos/pam: Add option to set pam-u2f appid ( #73591 )
2020-10-08 14:37:40 -04:00
Timo Kaufmann
a4cde0f969
nixos/mediatomb: fix doc errors
...
Follow-up to #93450 to fix the manual build.
2020-10-08 16:04:11 +02:00
Timo Kaufmann
19ac436cf5
Merge pull request #93450 from ardumont/gerbera-service
...
mediatomb: Improve service + add gerbera support and tests
2020-10-08 14:20:07 +02:00
Linus Heckemann
3e3f81aeac
Merge pull request #99658 from Ma27/nextcloud-copy-fix
...
nixos/nextcloud: fix nginx config to allow copy/move-operations again
2020-10-08 09:35:32 +02:00
Antoine R. Dumont (@ardumont)
a007e07abb
mediatomb/gerbera: Add release note information for 20.09
...
Note that it made into 2 entries, one about new options in the first section.
Another in the breaking compatibility section due to the openFirewall option
which changes the behavior.
2020-10-08 08:59:49 +02:00
Antoine R. Dumont (@ardumont)
3248506a00
mediatomb/gerbera: Improve firewall rules and open firewall option
...
This changes the default behavior which opened by default the firewall rules.
The users now need to declare explicitely they want to open the firewall.
2020-10-08 08:59:49 +02:00
Antoine R. Dumont (@ardumont)
9fdd11c6a8
mediatomb/gerbera: Bootstrap tests on service
...
This exposes 2 scenario running the mediatomb service:
- one running with the unmaintained mediatomb package
- one running with the new maintained gerbera package
2020-10-08 08:59:49 +02:00
Antoine R. Dumont (@ardumont)
86e56d5322
mediatomb/gerbera: Add missing types to options
...
This also fixes some various small limitations:
- Drop unnecessary quoting
- Drop duplicated gerbera interface definition
- Fix configuration indentation
2020-10-08 08:59:48 +02:00
Antoine R. Dumont (@ardumont)
fcb38d6773
mediatomb/gerbera: Make the actual configuration generation lazy
...
Also use verbose flag in cli command to make the intent clearer.
2020-10-08 08:59:48 +02:00
Antoine R. Dumont (@ardumont)
de838249c7
mediatomb/gerbera: Introduce the mediaDirectories option
...
So users can declare their autoscan directories configuration from nix.
2020-10-08 08:59:48 +02:00
Antoine R. Dumont (@ardumont)
96d1844746
mediatomb/gerbera: Introduce the pcDirectoryHide option
2020-10-08 08:59:48 +02:00
Antoine R. Dumont (@ardumont)
1db9813dd3
mediatomb/gerbera: Make transcoding option lazy and runnable if activated
...
In the sense that the pkgs dependency will be pulled if the service is
transcoding enabled. Otherwise, the transcoding part is completely dropped from
the generated configuration.
2020-10-08 08:59:48 +02:00
Edward Tjörnhammar
3bb5cc6849
mediatomb: make service compatible with the gerbera fork
...
The duplication of the interface xml tag is needed for
the daemon to respect the setting.
2020-10-08 08:59:47 +02:00
markuskowa
d8d52410a7
Merge pull request #100053 from markuskowa/upd-snapper
...
nixos/snapper: 0.8.12 -> 0.8.14
2020-10-09 00:05:27 +02:00
Silvan Mosberger
6ee8491cb1
Merge pull request #99520 from endgame/ssm-agent-user-fix
...
ssm-agent: fix bad user declaration
2020-10-08 23:28:13 +02:00
Markus Kowalewski
90aa6c93e2
nixos/snapper: add snapperd dbus service
...
Since snapper 0.8.13 a systemd service is required for DBus activation.
2020-10-08 23:17:44 +02:00
Anderson Torres
8aeaba64d7
Merge pull request #99604 from berbiche/cagebreak
...
cagebreak: init at 1.4.2
2020-10-08 00:05:57 -03:00
Jan Tojnar
00e3a3a855
Merge pull request #99601 from jtojnar/blackfire-agent
2020-10-07 19:02:11 +02:00
Andreas Rammhold
9cc924a12a
Merge pull request #99948 from jsimonetti/acme-dnsresolver
...
nixos/security/acme: Add DNS resolver option
2020-10-07 16:04:34 +02:00
Linus Heckemann
8e2796d64a
Merge pull request #99934 from mayflower/murmur-env
...
nixos/murmur: add option `environmentFile` for injecting secrets
2020-10-07 13:56:32 +02:00
elseym
533560de5b
nixos/murmur: add option environmentFile
for injecting secrets
...
Secrets are injected from the environment into the rendered
configuration before each startup using envsubst.
The test now makes use of this feature for the server password.
2020-10-07 13:35:50 +02:00
Jeroen Simonetti
cc3ce9a13a
nixos/security/acme: Add DNS resolver option
...
When using the ACME DNS-01 challenge, there is a possibility of a
failure to resolve the challenge if the record is not propagated
fast enough. To circumvent this generic DNS problem, this adds
a setting to explicitly tell the ACME provider to use a certain DNS
resolver to lookup the challenge.
Signed-off-by: Jeroen Simonetti <jeroen@simonetti.nl>
2020-10-07 13:01:08 +02:00
Vladimír Čunát
420f89ceb2
Revert "apparmor: fix and improve the service"
...
This reverts commit fb6d63f3fd
.
I really hope this finally fixes #99236 : evaluation on Hydra.
This time I really did check basically the same commit on Hydra:
https://hydra.nixos.org/eval/1618011
Right now I don't have energy to find what exactly is wrong in the
commit, and it doesn't seem important in comparison to nixos-unstable
channel being stuck on a commit over one week old.
2020-10-07 12:22:18 +02:00
Robert Hensing
0504b01100
Merge pull request #98107 from roberth/cassandra-add-extraEnvSh
...
nixos/cassandra: Add cfg.extraEnvSh
2020-10-07 11:28:39 +02:00
Jan Tojnar
991a67d453
nixos/blackfire: init
2020-10-07 10:44:54 +02:00
Linus Heckemann
41c0f49681
Merge pull request #99596 from Ma27/nextcloud20
...
nextcloud20: init
2020-10-07 08:10:38 +02:00
Jack Kelly
0d417929bf
ssm-agent: fix bad user declaration
2020-10-07 09:36:21 +10:00
Lucas Savva
1edd91ca09
nixos/acme: Fix ocspMustStaple option and add test
...
Some of the testing setup for OCSP checking was wrong and
has been fixed too.
2020-10-07 00:18:13 +01:00
Maximilian Bosch
9cbe30e129
nixos/nextcloud: --database-pass
must not be empty for pgsql/mysql
...
This is a breaking change from `nextcloud20`. However, the affected test
is still passing with an unused database password and socket
authentication.
2020-10-06 20:22:48 +02:00
Maximilian Bosch
227ba90b28
nixos/nextcloud: update nginx config for nextcloud20
...
See #97666 for further context.
2020-10-06 20:22:47 +02:00
Maximilian Bosch
5f67a62d59
nixos/nextcloud: update upgrade-path for nextcloud20
...
Please note that this is only for 21.03 since `nextcloud19` is intended
to be the default for the already feature-frozen 20.09 (the bump itself
is supposed to get backported however).
2020-10-06 20:22:47 +02:00
adisbladis
f26d6639f2
Merge pull request #99693 from worldofpeace/spectacle-in-plasma5-default
...
nixos/plasma5: add spectacle default
2020-10-06 15:22:31 +02:00
WORLDofPEACE
afdeb406b0
nixos/gnome3: fixup unconditional code
2020-10-06 07:37:47 -04:00
Frederik Rietdijk
692d219a93
Merge staging-next into staging
2020-10-06 10:25:58 +02:00
WORLDofPEACE
55bc3e44b7
nixos/plasma5: add spectacle default
...
Fixes https://github.com/NixOS/nixpkgs/issues/99680 .
In the future I think it would be nice if plasma5 could assume
an approach for an interface we have in the gnome3 module [0].
Notably being able to exclude packages with an option from
the default environment and having a default environment that
is useful to the average user. See [1], currently plasma5 defaults
are very "hard core hacker" with the most bare bones setup.
[0]: https://github.com/NixOS/nixpkgs/issues/67310
[1]: https://github.com/NixOS/nixpkgs/issues/67310#issuecomment-524649585
2020-10-06 01:25:22 -04:00
WORLDofPEACE
89281dd1df
Merge pull request #98510 from mvnetbiz/gnome3-excludepackages
...
nixos/gnome3: don't enable modules for excludePackages
2020-10-06 01:19:04 -04:00
Andreas Rammhold
2c0ee52d91
nixos/security/acme: order after nss-lookup.target
...
This should hopefully solve races with DNS servers (such as unbound)
during the activation of a new generation. Previously unbound could
still be unavailable and thus the acme script would fail.
2020-10-06 22:52:55 +02:00
WORLDofPEACE
d83e5a1ff6
Merge pull request #99697 from worldofpeace/rt-sched-optional-and-off-by-default
...
nixos/gnome3: add realtime-scheduling option
2020-10-06 16:30:27 -04:00
WORLDofPEACE
656cd70ea8
nixos/gnome3: add realtime-scheduling option
...
This adds an option services.gnome3.experimental-features.realtime-scheduling
See this comment for the motivation [0].
Having gnome-shell launched with capability seemed harmless at first,
but it caused these issues [1] [2] for people who aren't even using
the feature. It makes more sense to make this optional.
[0]: https://github.com/NixOS/nixpkgs/issues/90201#issuecomment-683304279
[1]: https://github.com/NixOS/nixpkgs/issues/90201
[2]: https://github.com/NixOS/nixpkgs/issues/86730
2020-10-06 01:58:51 -04:00
Nicolas Berbiche
c9cea8264e
cagebreak: init at 1.4.2
2020-10-05 22:18:44 -04:00
WORLDofPEACE
0d47426f37
Merge pull request #99615 from andir/use-configured-nix-for-installer
...
nixos/installer: use the configured nix package for nixos-install
2020-10-05 21:00:29 -04:00
Andreas Rammhold
544059b01f
nixos/installer: drop the extra nixUnstable in nixos-install
...
The only nix version available in the installer should be the version
configure in the module system. If someone needs `nixUnstable` in their
`nixos-install` they should probably set the module option and not just
add it to the closure.
2020-10-06 01:11:09 +02:00
Léo Gaspard
e0c48efc17
matrix-synapse module: fix documentation and add release notes ( #99564 )
2020-10-05 23:35:28 +02:00
Maximilian Bosch
609c4f497d
nixos/nextcloud: fix nginx config to allow copy/move-operations again
2020-10-05 22:25:30 +02:00
Michele Guerini Rocco
04670f8b3d
Merge pull request #96697 from hir12111/fix-font-dir
...
fontdir: Consider scalable fonts in index fonts.dir
2020-10-05 21:20:06 +02:00
WORLDofPEACE
fd74ab37b0
Merge pull request #99493 from cole-h/nixos-install-add-store
...
nixos-install: use mountpoint as store
2020-10-05 14:13:29 -04:00
Doron Behar
f4186f9596
Merge pull request #99624 from NeQuissimus/fix_pam
...
pam: Fix interaction with samba
2020-10-05 20:41:01 +03:00
Tim Steinbach
9646ae97c8
pam: Fix interaction with samba
...
9544c6078e
/ #96672 removed the samba option
`syncPasswordsByPam`.
Need to remove this option from the pam module, otherwise it will cause build errors
2020-10-05 09:13:16 -04:00
Tim Steinbach
03197f94ce
tests/hardened: Fix usage with 5.8
...
Linux >= 5.8 improved /proc mount options. `hidepid=2` is now
displayed as `hidepid=invisible`
2020-10-05 09:07:21 -04:00
Andreas Rammhold
2d92e695ba
Merge pull request #97989 from flokli/systemd-246.5
...
systemd: 246.4 -> 246.6
2020-10-05 15:02:39 +02:00
Aaron Andersen
dedd67610a
Merge pull request #99251 from xfix/remove-unnecessary-sendmail-configuration
...
nixos/httpd: remove unnecessary sendmail configuration
2020-10-05 08:59:42 -04:00
Maximilian Bosch
71098fba81
nextcloud20: init
2020-10-04 21:55:58 +02:00
rnhmjoj
9f8aad2ca6
nixos/doc: document fonts.enableFontDir changes
2020-10-04 15:22:36 +01:00
Emilio Perez
52f028f2d9
nixos/xwayland: add new module and allow configuring a default font path
...
- Add option `programs.xwayland.defaultFontPath`
- Modify sway to enable Xwayland
2020-10-04 14:56:30 +01:00
Emilio Perez
f41f53dc49
nixos/fontdir: add option to decompress fonts
...
This will let Xwayland use the global font folder as font path
2020-10-04 14:56:30 +01:00
Emilio Perez
c99bd9bedf
nixos/fontdir: add group of options for fontDir
...
Renaming enableFontDir to fontDir.enable
2020-10-04 14:56:29 +01:00
rnhmjoj
eda7e23ea4
nixos/fontdir: add the directory to the xserver font paths
2020-10-04 14:56:29 +01:00
rnhmjoj
1fdd3921a2
nixos/xserver: add option to configure the "Files" section
2020-10-04 14:56:29 +01:00
Emilio Perez
a5c0ba4004
nixos/fontdir: use regexp to find font files
2020-10-04 14:56:29 +01:00
Emilio Perez
a5618e6187
nixos/fontdir: gather more font formats
...
- Fix wrong order in which font indexes are created
mkfontdir requires the file fonts.scale to consider scalable fonts,
thus, mkfontscale should be run before
- Search more font formats, in particular, bit-mapped formats
2020-10-04 14:56:29 +01:00
Mario Rodas
e940c41a9c
Merge pull request #98163 from yanganto/hime
...
hime: init at unstable-2020-06-27
2020-10-04 08:13:21 -05:00
Maximilian Bosch
08cc63b20b
Merge pull request #97666 from Ma27/nextcloud-nginx
...
nixos/nextcloud: fix `nginx`-config for Nextcloud 19 and older
2020-10-04 13:51:52 +02:00
Augustin Borsu
685ae84cb0
nixos/jenkins: switch to openjdk11 as openjdk14 is not supported
2020-10-04 11:45:02 +02:00
Doron Behar
9544c6078e
Merge pull request #96672 from doronbehar/module/samba
...
nixos/samba: remove upstream deprecated syncPasswordsByPam option
2020-10-04 11:29:56 +03:00
Martin Weinelt
23c1374bd7
Merge pull request #90067 from mmilata/sympa-6.2.56
...
nixos/sympa: fix PATH_INFO splitting for sympa-6.2.56
2020-10-04 04:33:41 +02:00
Vladimír Čunát
30e98a4fd6
nixosTests.ec2-config: avoid an evaluation problem
...
The problem was introduced by commit 97a32bc
(within PR #79696 ).
nixos/tests/common/ec2.nix:6:17 called with unexpected argument 'meta'
2020-10-03 20:06:26 +02:00
Cole Helbling
3bbe4c322a
nixos-install: use mountpoint as store
...
Otherwise, it's possible building a flake may cause the live CD to run
out of memory.
2020-10-03 10:09:20 -07:00
Antonio Yang
0c138794af
input methods: add hime
2020-10-03 22:27:22 +08:00
Gabriel Ebner
f26dcb4850
Merge pull request #93201 from symphorien/dovecot-namespace-mailbox
...
nixos/dovecot: configure mailboxes for all processes
2020-10-03 14:46:40 +02:00
Jonas Meurer
07988a0f88
nixos/moodle: add missing PHP module ( #99163 )
2020-10-03 11:41:56 +02:00
Eelco Dolstra
b551f06097
nixos-generate-config: Add missing newline
2020-10-03 10:48:39 +02:00
Anderson Torres
26108ada86
Merge pull request #99371 from zowoq/rm-caddy1
...
caddy1: remove
2020-10-02 20:49:50 -03:00
Florian Klink
93178d471e
Merge pull request #99329 from 0x4A6F/master-networking-hostname
...
nixos: Conform with RFC 1123 in networking.hostName
2020-10-02 22:01:51 +02:00
WORLDofPEACE
bd52e7f8d3
Merge pull request #99039 from worldofpeace/dnscrypt-proxy2-harden
...
nixos/dnscrypt-proxy2: harden and improve service
2020-10-02 11:48:58 -04:00
zowoq
8f74e9e905
nixos/caddy: remove caddy1
2020-10-02 23:50:59 +10:00
Maximilian Bosch
8626701b2d
Merge pull request #99256 from Ma27/sudo-pkg-option
...
nixos/sudo: add `package` option
2020-10-02 12:35:58 +02:00
Andreas Rammhold
66c3ba64b8
Merge pull request #99340 from andir/nftables-fix-iptables-conflict-errormsg
...
nftables: Warn about correct firewall setting
2020-10-02 11:13:26 +02:00
Konrad Borowski
6fc06a1d3d
nixos/phpfpm: remove unnecessary sendmail configuration
2020-10-02 09:11:14 +02:00
Klemens Nanni
fb13347d2a
nixos/plasma5: Enable browser integration
...
This option is not documented anywhere and while it may be set
in configuration.nix to enable integration, having it on by
default when using both plasma and firefox is a great convenience;
just like all other desktop environments do it already.
2020-10-02 13:07:09 +08:00
WORLDofPEACE
332dcda646
Merge pull request #98996 from NixOS/worldofpeace-patch-1
...
nixos/dnscrypt-proxy2: version the example file
2020-10-02 00:32:45 -04:00
Matt Votava
bc970e94e7
nixos/gnome3: don't enable modules for excludePackages
2020-10-02 00:24:24 -04:00
WORLDofPEACE
6e7e633a54
nixos/dnscrypt-proxy2: harden and improve service
2020-10-02 00:00:22 -04:00
Klemens Nanni
e438d4a04f
nftables: Warn about correct firewall setting
...
services.networking.firewall might have existed during import of this
module in 2016, but it is unknown as of today.
Point to the proper boolean knob to avoid confusion.
2020-10-02 00:25:57 +02:00
0x4A6F
c232d4b587
nixos: Conform with RFC 1123 in networking.hostName
...
Conform to RFC 1123 [0], specifically to "2.1 Host Names and Numbers",
which allow starting host name with alphanumerical instead of alphabetical characters.
RFC 1123 updates RFC 952 [1], which is referenced in "man 5 hosts".
[0]: https://tools.ietf.org/html/rfc1123
[1]: https://tools.ietf.org/html/rfc952
2020-10-01 22:06:00 +00:00
Maximilian Bosch
ebb5b9ab2e
Merge pull request #99282 from fadenb/systemdjournal2gelf_20200813
...
systemd-journal2gelf: 20190702 -> 20200813
2020-10-01 19:35:34 +02:00
Tristan Helmich (omniIT)
d637770ce2
release-notes: Warn about systemd-journal2gelf changes
2020-10-01 14:35:25 +00:00
Maximilian Bosch
d2dc0ae203
nixos/sudo: add package
option
...
The `package`-option is always useful if modifying a package in an
overlay would mean that a lot of other packages need to be rebuilt as
well.
In case of `sudo` this is actually the case: when having an override for
it (e.g. for `withInsults = true;`), you'd have to rebuild e.g. `zfs`
and `grub` although that's not strictly needed.
2020-10-01 13:00:52 +02:00
Konrad Borowski
05eb3496e6
nixos/httpd: remove unnecessary sendmail configuration
...
PHP now uses system-sendmail without special configuration.
2020-10-01 12:05:08 +02:00
Alexandre Macabies
b9750a9b57
nixos/hardware/rtl-sdr: new module
...
This is a very thin module to ensure "plugdev" user exists and some udev
rules are enabled, a prerequisite for using rtl-sdr.
2020-09-30 20:39:58 +02:00
Jonathan Ringer
46e27bcb16
nixos/tests: fix x11 tests
2020-09-30 09:09:56 -07:00
Maximilian Bosch
6148b0e59f
Merge pull request #99079 from mayflower/openvpn-exporter-upstream
...
nixos/prometheus-exporters/openvpn: init
2020-09-30 15:37:03 +02:00
Linus Heckemann
a560936cab
nixos/prometheus-exporters/openvpn: init
...
Co-Authored-By: Franz Pletz <fpletz@fnordicwalking.de>
Co-Authored-By: Robin Gloster <mail@glob.in>
2020-09-29 10:53:04 +02:00
Linus Heckemann
2c1e72ee6a
prometheus exporters: always set user and group
...
systemd.exec(5) on DynamicUser:
> If a statically allocated user or group of the configured name
> already exists, it is used and no dynamic user/group is allocated.
Using DynamicUser while still setting a group name can be
useful for granting access to resources that can otherwise only be
accessed with entirely static IDs.
2020-09-29 10:53:04 +02:00
Emery Hemingway
e7d0500cb3
nixos/rsyncd: convert module to an INI generator
2020-09-29 08:07:53 +02:00
WORLDofPEACE
4065a45638
Merge pull request #99038 from worldofpeace/nixos-rebuild-impure
...
nixos-rebuild: add impure
2020-09-28 22:23:30 -04:00
WORLDofPEACE
3ad3041918
doc/nixos-rebuild(8): add Nix --impure option to summary
2020-09-28 19:41:05 -04:00
Jan Tojnar
32b4375f10
Merge branch 'staging-next' into staging
2020-09-29 00:12:29 +02:00
WORLDofPEACE
1343164249
nixos-rebuild: add impure
2020-09-28 17:24:37 -04:00
Andreas Rammhold
9630d5c07f
nixos/security/wrapper: ensure the tmpfs is not world writeable
...
The /run/wrapper directory is a tmpfs. Unfortunately, it's mounted with
its root directory has the standard (for tmpfs) mode: 1777 (world writeable,
sticky -- the standard mode of shared temporary directories). This means that
every user can create new files and subdirectories there, but can't
move/delete/rename files that belong to other users.
2020-09-28 22:55:20 +02:00
Matthieu Coudron
cd7db06935
programs.neovim: fix documentation ( #99023 )
...
brackets broke doc generation on master
2020-09-28 22:42:18 +02:00
Joachim F
173167d90e
Merge pull request #98919 from TredwellGit/nixos/hardened
...
nixos/hardened: update blacklisted filesystems
2020-09-28 15:57:28 +00:00
Matthieu Coudron
1e510a65a3
programs.neovim: init ( #98506 )
...
* programs.neovim: init
Allows to build a proper runtime folder with after/ ftplugin/ parser/ subfolders etc.
(neo)vim expects a few different folders, for instance to load
treesitter parsers.
This PR reuses the builder from the etc module, notwithstanding the
different modes/uid/gid.
This allows to get rid of some autocmd in customRC (via proper use of
the folder hierarchy) which is a win in my opinion.
2020-09-28 17:07:45 +02:00
Emery Hemingway
9fa50bea78
nixos/molly-brown: refactor module to use a TOML generator
2020-09-28 14:38:31 +02:00
WORLDofPEACE
46e5b14b4a
nixos/dnscrypt-proxy2: version the example file
...
I've frequently used the master version that has non backwards compatible keys.
2020-09-28 06:28:12 -04:00
WilliButz
e736a990c1
Merge pull request #98746 from mayflower/postfix-exporter-group
...
prometheus postfix exporter: misc
2020-09-27 22:37:38 +02:00
Arnout Engelen
31dff5cab8
nixos/doc/manual: add link to nixos-generators ( #98925 )
...
From the 'Building your Own NixOS CD' section
2020-09-27 19:59:54 +00:00
Maximilian Bosch
71426f2cfa
Merge pull request #98333 from Ma27/bump-nextcloud
...
nextcloud: 19.0.1 -> 19.0.3, deprecate/remove older versions
2020-09-27 20:02:38 +02:00
Maximilian Bosch
6b48deee54
nixos/nextcloud: drop nextcloud17, deprecate nextcloud18
...
Both packages will get EOLed within the lifetime of 20.09. `nextcloud17`
can be removed entirely (the attribute-path is kept however to provide
meaningful errors), however `nextcloud18` must be kept as `insecure` to
make sure that users from `nextcloud17` can properly upgrade to
`nextcloud19` on NixOS 20.09.
2020-09-27 19:21:21 +02:00
Florian Klink
30ddfe6b95
Revert "nixos/systemd-boot: Temporarily ignore errors"
...
This reverts commit b32701bc54
.
That fix has been included upstream in 246.5.
2020-09-27 16:45:27 +02:00
Michael Raskin
31a4e2e28b
Merge pull request #93457 from ju1m/apparmor
...
apparmor: fix and improve the service
2020-09-27 13:07:38 +00:00
TredwellGit
b6e21a7609
nixos/hardened: update blacklisted filesystems
...
241a158269/suse-module-tools.spec (L24)
2020-09-27 06:16:58 +00:00
WORLDofPEACE
c4d016a28b
Merge pull request #98676 from cole-h/shadow-owns-shadow
...
nixos/update-users-groups: /etc/shadow owned by root:shadow
2020-09-26 15:37:57 -04:00
Aaron Andersen
1032e90b52
Merge pull request #97390 from axelf4/picom-experimentalBackends-option
...
nixos/picom: add experimentalBackends option
2020-09-26 14:03:31 -04:00
Doron Behar
f85b2a1c89
Merge pull request #97797 from lf-/fix-redirecting-installer-urls
...
docs: add -L to remaining curl install commands
2020-09-26 19:15:08 +03:00
Florian Klink
8d52cf501f
nixos/datadog: Don't recommend dd_url for sites, add proper option
...
Turns out, `dd_url` should only be used in proxy scenarios, not to point
datadog to their EU endpoint - `site` should be used for that.
The `dd_url` setting doesn't affect APM, Logs or Live Process intake
which have their own "*_dd_url" settings.
2020-09-25 22:30:55 +02:00
rnhmjoj
d7ae8ab35f
nixos/tests/ncdns: more tests and disable DNSSEC
...
- DNSSEC is currently disable because it's failing
- Separately test .bit domain on ncdns and pdns-recursor
- Test for the SOA record of the bit. zone
2020-09-25 20:56:15 +02:00
Cole Helbling
937359fcf1
nixos/update-users-groups: /etc/shadow owned by root:shadow
2020-09-25 09:38:35 -07:00
Graham Christensen
d9a93852d4
nixos-rebuild: support --upgrade-all and document --upgrade ( #83327 )
2020-09-25 17:22:11 +02:00
Andreas Rammhold
bb33cdd44b
Merge pull request #98738 from mayflower/prometheus-retention
...
nixos/prometheus: add retentionTime
2020-09-25 17:11:27 +02:00
Linus Heckemann
edcb73f6b5
nixos/prometheus/postfix: enable systemd by default
2020-09-25 14:29:16 +02:00
Linus Heckemann
e80fa27968
nixos/prometheus/postfix: correct default showqPath
2020-09-25 14:28:32 +02:00
Linus Heckemann
0e3f631831
prometheus postfix exporter test: check showq
2020-09-25 14:27:29 +02:00
WilliButz
f412df1f6b
nixos/prometheus-postfix-exporter: set default group
...
The postfix exporter needs to access postfix's `queue/public/` directory
to read the `showq` socket inside. Instead of making the public
directory world accessible, this sets the postfix exporter's group to
`postdrop` by default, when the postfix service is enabled.
2020-09-25 13:59:46 +02:00
Robin Gloster
5c0a2e8c60
nixos/prometheus: add retentionTime
2020-09-25 13:44:13 +02:00
Jan Tojnar
d471c5d1f3
Merge branch 'staging-next' into staging
2020-09-24 23:09:00 +02:00
Jan Tojnar
6d518ddf77
Merge pull request #98503 from jtojnar/doc-prompts
2020-09-24 22:48:38 +02:00
Joe Hermaszewski
99d2db8dce
nvidia-x11.vulkan_beta: init at 450.56.11 ( #97882 )
...
- This is fetched from a different URL, so allow passing that explicitly.
- There also isn't an nvidia-persistenced or nvidia-settings release for
this version, so use 450.57 instead. Also implement passing
persistenced and settings version explicitly.
Co-authored-by: Dmitry Kalinkin <dmitry.kalinkin@gmail.com>
2020-09-24 10:53:05 -04:00
zowoq
008de9ca3c
nixos/{containers,cri-o,podman}: move copyFile to nixos/lib/utils
2020-09-24 10:01:47 +10:00
Sascha Grunert
eac4389021
nixos/cri-o: add networkDir
option
...
The new option can be used to specify the network directory for CNI
plugin configurations.
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
2020-09-24 07:35:35 +10:00
Maximilian Bosch
8bcc2bae60
Merge pull request #98550 from WilliButz/codimd/environment-secrets
...
nixos/codimd: add option `environmentFile` for injecting secrets
2020-09-23 17:32:40 +02:00
Shea Levy
dc6ff60cc6
Merge branch 'system76-firmware-and-nixos' into master
2020-09-23 08:14:11 -04:00
Shea Levy
4b1850bad3
Add system76 NixOS module
2020-09-23 08:10:49 -04:00
WilliButz
403c215bdd
nixos/codimd: add option environmentFile
for injecting secrets
...
Secrets are injected from the environment into the rendered
configuration before each startup using envsubst.
The test now makes use of this feature for the db password.
2020-09-23 11:59:44 +02:00
Florian Klink
1480c1a7b5
Merge pull request #98502 from cole-h/link-dev-fd
...
nixos/stage-1: set up /dev/fd
2020-09-23 09:57:43 +02:00
Martin Weinelt
76aeb20d91
nixosTests.magnetico: wait for open port and make curl actually fail
2020-09-22 23:27:12 -07:00
Jan Tojnar
e6ce041cae
nixos/doc: Improve code listings
...
By adding prompts and replaceables and removing unnecessary indentation.
2020-09-23 01:25:25 +02:00
Cole Helbling
4586810487
nixos/stage-1: set up /dev/fd
...
Otherwise, stage-2-init.sh will complain about not having access to
/dev/fd/62 as of systemd v246.
On IRC, flokli said:
15:14 <flokli> cole-h: hmmm... I could imagine some of the setup inside /dev has been moved into other parts of systemd
15:14 <flokli> And given we run systemd much later (outside initramfs only) it doesn't work properly here
15:17 <flokli> We probably don't invoke udev correctly
2020-09-22 15:33:21 -07:00
Frederik Rietdijk
7bff759fac
Merge staging-next into staging
2020-09-22 18:31:56 +02:00
Vladimír Čunát
cf09899749
Merge #97922 : nixosTests.signal-desktop: fix
2020-09-21 17:31:19 +02:00
Sarah Brofeldt
44289eb20c
Merge pull request #91170 from DianaOlympos/update/apache-kafka
...
apache-kafka: 2.4.0 -> 2.4.1/2.5.0
2020-09-21 15:42:26 +02:00
Robert Hensing
f3893d8b53
Merge pull request #97119 from Infinisil/types.anything
...
Introduce `types.anything`
2020-09-21 08:49:24 +02:00
Kirill Elagin
a4afd525cb
prometheus: Unbreak IPv6 listenAddress
...
The format of the listenAddress option was recently changed to separate
the address and the port parts. There is now a legacy check that
tells users to update to the new format. This legacy check produces
a false positive on IPv6 addresses, since they contain colons.
Fix the regex to make it not match colons within IPv6 addresses.
2020-09-21 07:53:47 +02:00
zowoq
74c2ed9e35
nixos/tools/nixos-install: remove trailing whitespace
2020-09-21 09:35:27 +10:00
WORLDofPEACE
978e419abe
Merge branch 'staging-next' into staging
2020-09-20 18:43:38 -04:00
WORLDofPEACE
34aaac6d7c
Merge branch 'staging-next' into staging
2020-09-20 18:41:15 -04:00
WORLDofPEACE
684d691c6e
Merge pull request #97738 from cole-h/build-vm-for-flakes
...
nixos-rebuild: add flake support for build-vm
2020-09-20 15:10:16 -04:00
Gabriel Ebner
0c550170d1
Merge pull request #97469 from Emantor/bump/thermald
2020-09-20 16:55:30 +02:00
Nathaniel Glen
59cbf9746c
nixos/pipewire: fix variable merging
...
While both strings and lists are valid, lists are the more accurate type
and only they can properly merge with each other.
2020-09-19 18:00:44 -04:00
Nathaniel Glen
888c1fbf96
nixos/pipewire: add missing dbus dependency
...
Without this it is possible for PipeWire to fail in binding the dbus socket.
2020-09-19 16:33:02 -04:00
Nathaniel Glen
c603619042
nixos/pipewire: use provided udev rules
...
As of PipeWire 0.3.8, the library is bundled with a slightly modified
version of PulseAudio's udev rules.
2020-09-19 16:33:02 -04:00
Nathaniel Glen
3377257d0b
pipewire: split pulse and jack emulation out
...
This splits PulseAudio and JACK emulation into separate outputs. Doing
so provides a number of benefits.
First it fixes pw-pulse and pw-jack. Prior to this they pointed to bogus
locations because the environment variables were not evaluated.
Technically fixing this only requires setting libpulse-path and
libjack-path to any absolute path not necessarily separate outputs but
it comes as a nice result.
Secondly it allows overriding libpulseaudio with pipewire.pulse in many
packages. This is possible because the new outputs have a more standard
layout.
2020-09-19 16:33:01 -04:00
Nathaniel Glen
f01be2978b
nixos/pipewire: use globs for the version
2020-09-19 16:33:01 -04:00
Nathaniel Glen
e879eb6db6
pipewire: add testing
...
This adds two tests. One is for whether the paths used by the module are
present, while the other is for testing functionality of PipeWire
itself. This is done with the recent addition of installed tests by
upstream.
2020-09-19 16:33:01 -04:00
Nathaniel Glen
ccefdd9dae
nixos/pipewire: add jack/pulse emulation
...
This allows for transparent JACK and PulseAudio emulation. With this you
can essentially replace your entire audio framework with just PipeWire
for almost no configuration.
2020-09-19 16:33:00 -04:00
Nathaniel Glen
cd81d4043e
nixos/pipewire: add ALSA routing
...
This code is based on the similar implementation for JACK.
2020-09-19 16:33:00 -04:00
Mario Rodas
8b8f54d38b
Merge pull request #98263 from asdf8dfafjk/patch-3
...
nixos/onedrive: Remove verbose flag
2020-09-19 13:46:17 -05:00
Ryan Mulligan
5ea751ca70
Merge pull request #98258 from ryantm/remove-heyefi
...
nixos/heyefi: remove module and package
2020-09-19 11:00:41 -07:00
Philipp Bartsch
eae103c835
nixos/doc: fix dead link
2020-09-19 12:52:14 +02:00
markuskowa
913657c2d9
Merge pull request #98261 from ryantm/monit-maintainer
...
nixos/monit: add ryantm as maintainer
2020-09-19 09:46:14 +02:00
asdf8dfafjk
5e166f892d
nixos/onedrive: Remove verbose flag
2020-09-19 11:32:42 +05:30
Linus Heckemann
4c8dabed17
Merge pull request #97826 from lheckemann/spice-usb-redir
...
nixos/spice-usb-redirection: init
2020-09-19 07:52:23 +02:00
Ryan Mulligan
16b94bf231
nixos/monit: add ryantm as maintainer
2020-09-18 22:09:22 -07:00
Ryan Mulligan
61863c5155
Revert "nixos/monit: Allow splitting the config in multiple files"
2020-09-18 21:57:54 -07:00
Ryan Mulligan
ad1c7eb7b6
nixos/heyefi: remove module and package
...
heyefi is no longer maintained by me; the company that made the sd
cards is defunct and the cards depended on their servers to work.
2020-09-18 21:55:07 -07:00
Marek Mahut
52532b7c36
Merge pull request #91256 from prusnak/seeks
...
seeks: remove, upstream unmaintained
2020-09-18 16:32:33 +02:00
Manuel Bärenz
4336f9f7bb
tests/agda: Fix comment
2020-09-18 12:42:23 +02:00
Cole Helbling
e26b348689
nixos-rebuild: add flake support for build-vm
...
This relies on users using `nixpkgs.lib.nixosSystem` to define their
system; otherwise, the `vm` and `vmWithBootLoader` attributes will not
exist.
2020-09-17 11:44:47 -07:00
Sebastian Zivota
4560d7ed70
nixos/calibre-server: Allow multiple libraries
...
Also add options for group and user.
2020-09-17 12:04:39 +02:00
Sascha Grunert
e363aef498
nixos/cri-o: remove deprecated manage_ns_lifecycle option
...
Signed-off-by: Sascha Grunert <sgrunert@suse.com>
2020-09-17 17:50:57 +10:00
WORLDofPEACE
115383f969
Merge pull request #97606 from NixOS/mkg/cinrelnotes
...
release-notes: mention cinnamon
2020-09-17 00:35:39 -04:00
Maciej Krüger
bc3d459ceb
release-notes: mention cinnamon
2020-09-17 06:22:34 +02:00
Rouven Czerwinski
0aaa5addfb
nixos/thermald: add adaptive mode
...
thermald >=2.3 supports the adaptive DPTF mode, in conjunction with
kernel 5.8.
2020-09-16 18:27:16 +02:00
Robert Hensing
2d2612a020
nixos/cassandra: Add cfg.extraEnvSh
2020-09-16 17:19:39 +02:00
Jacek Galowicz
713f881769
Merge pull request #89361 from helsinki-systems/feat/test-special-args
...
nixos/testing: Add support for specialArgs
2020-09-16 07:07:42 +02:00
Silvan Mosberger
310699319b
nixos/doc: Add docs for types.anything
2020-09-15 21:08:19 +02:00
Silvan Mosberger
b3810166c7
nixos/doc: Soft deprecate types.attrs
2020-09-15 21:01:04 +02:00
Dominik Xaver Hörl
c3be76580f
nixos/xserver: clean up the useXFS option
...
It had confusing semantics, being somewhere between a boolean option and
a FontPath specification. Introduce fontPath to replace it and mark the
old option as removed.
2020-09-15 14:13:34 +02:00
WORLDofPEACE
d23f814eb3
Merge pull request #98004 from romildo/upd.nm-applet
...
nixos/nm-applet: starts the applet with Appindicator support
2020-09-14 20:44:51 -04:00
José Romildo Malaquias
0c6e1ddf61
nixos/pantheon: disable nm-applet indicator
2020-09-14 21:27:00 -03:00
José Romildo Malaquias
0d7a2f67df
nixos/nm-applet: starts the applet with Appindicator support
...
As of version 1.18.0 Appindicator support is available in the official
network-manager-applet package. To use nm-applet in an Appindicator
environment the applet should be started with the following command:
$ nm-applet --indicator
Without this option it does appear in the Enlightenment panel systray,
for instance.
2020-09-14 21:11:15 -03:00
aszlig
7447bdc523
nixos/plasma5: Fix eval of colord-kde/wacomtablet
...
Regression introduced by 053b05d14d
.
The commit in question essentially removed the "with pkgs;" from the
scope around the various packages added to environment.systemPackages.
Since services.colord.enable and services.xserver.wacom.enable are false
by default, the change above didn't directly result in an evaluation
error.
Tested evaluation before and after this change via:
for cfg in hardware.bluetooth.enable \
networking.networkmanager.enable \
hardware.pulseaudio.enable \
powerManagement.enable \
services.colord.enable \
services.samba.enable \
services.xserver.wacom.enable; do
nix-instantiate --eval nixos --arg configuration '{
services.xserver.desktopManager.plasma5.enable = true;
'"$cfg"' = true;
}' -A config.environment.systemPackages > /dev/null
done
Signed-off-by: aszlig <aszlig@nix.build>
Cc: @ttuegel
2020-09-15 01:19:15 +02:00
Henri Menke
9d60354fae
nixos/shadowsocks: add test without plugin
2020-09-14 22:35:05 +02:00