alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
420575 commits 217 branches 121 tags 4.5 GiB
Commit graph

14247 commits

Author SHA1 Message Date
github-actions[bot] bbaff9a043
Merge master into staging-next 2022-10-19 12:01:22 +00:00
Vincent Haupert ea8cf2e486 nixos/github-runners: support fine-grained personal access tokens 
Add support for GitHub's new fine-grained personal access tokens [1]. As
opposed to the classic PATs, those start with `github_pat_` instead of
`ghp_`.

Make sure to use a token which has read and write access to the
"Administration" resource group [2] to allow for registrations of new
runners.

[1] https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/

[2] https://docs.github.com/en/rest/overview/permissions-required-for-github-apps#administration
 2022-10-19 13:50:34 +02:00
Domen Kožar ff27dc3a09
Merge pull request #176691 from codedownio/multiple-github-runners 
GitHub runners: configurable user, environment, and service overrides + multiple runners
 2022-10-19 13:38:23 +02:00
Tom McLaughlin c2cc9aeafd Use config name by default, falling back to attr name 2022-10-19 03:33:30 -07:00
Jan Tojnar 457f28f6f8 Merge branch 'master' into staging-next 
; Conflicts:
;	pkgs/development/tools/codespell/default.nix

codespell 2.2.2 switched to pyproject & setuptools_scm:
https://github.com/codespell-project/codespell/pull/2523
 2022-10-19 05:24:28 +02:00
Tom Hubrecht bbf5ba11b4
nixos/ntfy-sh: init 2022-10-19 02:20:16 +02:00
Sandro e188e93b8f
Merge pull request #196477 from MatthewCroughan/mc/stateless-cups 2022-10-18 23:22:12 +02:00
Atemu bf6d84958d rl-2211: document nix.checkConfig option changes 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:43:52 +02:00
Atemu ef70bdd10f nixos/nix-daemon: make checkConfig fully disable nix.conf validation 
A new option checkAllErrors is introduced which implements the old checkConfig
toggle behaviour

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:42:31 +02:00
Sandro 2917c9a67e
Merge pull request #195205 from NULLx76/vmagent 2022-10-18 21:16:10 +02:00
Sandro 7307c3ae6c
Merge pull request #191922 from NukaDuka/karma 2022-10-18 21:10:04 +02:00
matthewcroughan a99ab1fbc1 nixos/printing: add services.printing.stateless option 
This will remove all state directories related to CUPS on startup, which
is particularly useful for guaranteeing that printer discovery works
more reliably on some networks, since CUPS will no longer be able to
store state that effects the next run of the service, such as old
printer names and mDNS information.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-17 22:59:24 +01:00
Jean-François Roche dc529302fe
nixos: add cachix watch-store service 
Self hosted CI push built packages asynchronously to cachix using a service.

Based on @Mic92 [code](https://github.com/cachix/cachix/issues/370#issuecomment-817081937)
 2022-10-17 18:24:03 +02:00
Tom McLaughlin 5221e7af04 Add comments to explain about the name defaults 2022-10-17 00:04:52 -07:00
Tom McLaughlin 2c099d1a14 Set runner name to attr name for github-runners.${name} 2022-10-17 00:01:04 -07:00
github-actions[bot] ab4849492d
Merge master into staging-next 2022-10-17 06:24:16 +00:00
Sarah Brofeldt 85d3faa877
Merge pull request #196218 from qowoz/k8s 
kubernetes: drop e2e tests
 2022-10-17 06:33:01 +02:00
github-actions[bot] 18a6423900
Merge master into staging-next 2022-10-17 00:04:21 +00:00
Christian Kögler 46431c0819
Merge pull request #196286 from NickCao/nixos-iwd 
nixos/iwd: allow setting iwd package
 2022-10-16 21:02:05 +02:00
Christian Kögler daba20d006
Merge pull request #196301 from bobvanderlinden/pr-nixos-dwm-package 
nixos/dwm: add package option
 2022-10-16 20:47:01 +02:00
Bob van der Linden 0d07870dc5
nixos/dwm: add package option 2022-10-16 20:34:28 +02:00
Maximilian Bosch a2134c24a4
Merge pull request #195808 from mayflower/fix-wordpress-fonts-dir 
nixos/wordpress: make fonts directory writable
 2022-10-16 20:05:09 +02:00
github-actions[bot] f52955a521
Merge master into staging-next 2022-10-16 18:01:42 +00:00
Maximilian Bosch b55eefa3bd
Merge pull request #195703 from Ma27/bump-grafana 
grafana: 9.1.7 -> 9.2.0
 2022-10-16 19:33:14 +02:00
Nick Cao 46982f4194
nixos/iwd: allow setting iwd package 2022-10-16 23:12:26 +08:00
github-actions[bot] e648107a22
Merge master into staging-next 2022-10-16 06:06:19 +00:00
zowoq 6f983050bb nixos/kubernetes: use package from config 2022-10-16 12:38:50 +10:00
Johan Thomsen ae712870af nixos/kubernetes: drop obsolete options/cmdline flags 2022-10-16 10:13:05 +10:00
github-actions[bot] 886633ba43
Merge master into staging-next 2022-10-15 00:04:00 +00:00
Sandro bdca71e9c0
Merge pull request #191924 from SuperSandro2000/ddclient-daemon 2022-10-14 23:52:14 +02:00
github-actions[bot] 283841a1ce
Merge master into staging-next 2022-10-14 06:20:50 +00:00
colin 9443d83e6f freshrss: patchShebangs instead of specifying interpreter at use site 
this makes it easier for one to manually administer freshrss.
for example, i can import OPML from the CLI like:

```
$ nix build .#freshrss
$ freshrss FRESHRSS_DATA_PATH=/var/lib/freshrss ./result/cli/import-for-user.php --user admin --file my-opml.opml
```

whereas previously i would have needed to include
`environment.systemPackages = [ php ];` in my system for that to work.
 2022-10-13 21:46:04 -07:00
Timothy DeHerrera 912a3deedc
Merge pull request #110197 from milahu/patch-1 
firewall: move rpfilter to mangle.PREROUTING to fix conntrack
 2022-10-13 21:04:40 -06:00
Tom McLaughlin fc8fdb03a0 Try simpler github-runner.nix 2022-10-13 19:54:36 -06:00
Tom McLaughlin 69d9538b34
Update nixos/modules/services/continuous-integration/github-runners.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:53:25 -06:00
Tom McLaughlin cf1b952988
Update nixos/modules/services/continuous-integration/github-runner.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:49:02 -06:00
Maximilian Bosch 5afde0064a
nixos/wordpress: make fonts directory writable 
Needed to host e.g. google fonts locally.
 2022-10-13 17:30:22 +02:00
github-actions[bot] 62bcf0ac62
Merge staging-next into staging 2022-10-13 12:02:06 +00:00
victor 28d2fcc400 vmagent: init at 1.82.0 2022-10-13 13:32:47 +02:00
Maximilian Bosch 0df6c52026
nixos/grafana: ensure that declarative prometheus data-sources don't use direct access 
Support for that was permanently dropped in Grafana 9.2.0, see also
f30795b088
 2022-10-13 10:28:29 +02:00
K900 803f180021
Merge pull request #191357 from K900/plasma-beta 
Plasma 5.26.0, KDE Frameworks 5.99
 2022-10-13 10:31:12 +03:00
Vladimír Čunát 00a757ed3f
Merge branch 'master' into staging 2022-10-13 08:27:55 +02:00
Vladimír Čunát 7a94322ed7
Merge #182618: GNOME 42 → 43 2022-10-13 08:14:27 +02:00
Jared Baur 5d79c93d77
nixos/prometheus-kea-exporter: Fix ExecStart arguments 
The current `ExecStart` will not allow for multiple sockets to properly
be passed to the program since the extra newline character is interpreted to
be part of the socket path.
 2022-10-12 20:39:09 -07:00
Artturi e66d2fd89d
Merge pull request #194256 from Artturin/treewides2 2022-10-13 00:08:01 +03:00
Thiago Kenji Okada b87716afc9
Merge pull request #188881 from shadaj/patch-4 
nixos/restic: make it possible to use the existing backup cache for prune/check
 2022-10-12 21:26:00 +01:00
K900 37a64594bd nixos/plasma-bigscreen: enable uinput correctly 
This is required for plasma-remotecontrollers to actually work.
Make sure to also add your user to the `uinput` group.
 2022-10-12 20:28:53 +03:00
Shadaj Laddad dd34f474ed nixos/restic: make it possible to use the existing backup cache for prune/check 
Configures the `--cache-dir` parameter for the prune and check commands run after backing up. For `check`, also adds a `checkOpts` flag to enable using the cache, since that is disabled by default.
 2022-10-12 09:09:27 -07:00
K900 5e62c78f4b nixos/plasma5: add very basic plasma-bigscreen module 2022-10-12 17:15:56 +03:00
Pascal Bach 1ca4c178dd
Merge pull request #195488 from KoviRobi/gitlab-runner-clear-docker-cache 
Gitlab runner clear docker cache
 2022-10-12 07:56:46 +02:00
Patrick Jackson 4c69843460 nixos/mullvad-vpn: change dependency for the daemon to pkg mullvad 2022-10-11 12:37:49 -07:00
ajs124 18a17d11ff nixos/jenkins: jdk11 -> jdk17 
see https://www.jenkins.io/doc/upgrade-guide/2.361/
we'll need to do this eventually, not sure when the best point in time is
 2022-10-11 21:16:37 +02:00
Bobby Rong 35dffb9f93 pantheon.elementary-tasks: Mark as broken 
Does not build with e-d-s 3.45+ / libsoup 3 and porting is likely not easy.
 2022-10-11 18:52:33 +02:00
Jan Tojnar 0e989a5bd9 gnome.nautilus: 43.alpha → 43.beta 
https://gitlab.gnome.org/GNOME/nautilus/-/compare/43.alpha...43.beta

Also change the environment variable name to prevent crashes when running in an old environment.

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:15 +02:00
Jan Tojnar 50c6895e77 gnome-browser-connector: 10.1 → 42.0 
https://discourse.gnome.org/t/split-and-rename-of-chrome-gnome-shell/11075
815ec9e1af...v42.0

- Renamed and split into a separate repo from the extensions.
- CMake build replaced with Meson (jq also not needed)
- requests Python module not needed since updates are now solely handled by GNOME Shell itself

Also

- Corrected license
- Cleaned up the module
- Replaced PYTHONPATH in a wrapper by Python environment

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:12 +02:00
Tom McLaughlin 0b67081ad8 Cherry-pick 499748b 2022-10-11 06:10:11 -06:00
Tom McLaughlin 9a7f38040b Fix user type 2022-10-11 06:04:25 -06:00
Tom McLaughlin b744fee880 Re-add DynamicUser = true per review discussion 2022-10-11 06:04:25 -06:00
Tom McLaughlin b3de807a6a Update descriptions to use lib.mdDoc 2022-10-11 06:04:25 -06:00
Tom McLaughlin 327e05c382 Get rid of DynamicUser flag 2022-10-11 06:04:25 -06:00
Tom McLaughlin f13759e21f Fix a deprecated types.string -> types.str 2022-10-11 06:04:25 -06:00
Tom McLaughlin 998083f2ad github-runner: configurable user, environment, service overrides + multiple runners 2022-10-11 06:04:21 -06:00
github-actions[bot] 5d957f3dba
Merge staging-next into staging 2022-10-11 00:05:26 +00:00
Martin Weinelt cf7f4393f3
Merge pull request #193494 from NixOS/staging-next 2022-10-11 01:12:59 +02:00
Sandro e7625f9130
Merge pull request #195418 from Baitinq/description_in_gitolite_module 2022-10-11 00:51:48 +02:00
Baitinq 01faaeb4bd
nixos/gitolite: add 'description' module option 
This option allows for the customization of the description of the
created gitolite user.

An example of this being useful is for the integration of gitolite with
cgit, which itself uses the gitolite user's description as the author of
the git repo displayed in its generated site.
 2022-10-10 23:14:46 +02:00
Martin Weinelt 294201004f Merge remote-tracking branch 'origin/master' into staging-next 2022-10-10 21:45:18 +02:00
Robert Kovacsics c8eae7a526 nixos/gitlab-runner: Add gitlab-runner.clear-docker-cache service 2022-10-10 18:17:19 +01:00
Bernardo Meurer 499748bc04
Merge pull request #195003 from veehaitch/fix-github-runner-first-start 2022-10-10 12:35:24 -03:00
Bernardo Meurer f5fb6e5755
Merge pull request #194496 from jansol/pipewire 2022-10-10 11:56:38 -03:00
Artturin 7e49471316 treewide: optional -> optionals where the argument is a list 
the argument to optional should not be list
 2022-10-10 15:40:21 +03:00
Artturin f4ea1208ec treewide: *Flags convert to list from str 
*Flags implies a list

slightly relevant:
> stdenv: start deprecating non-list configureFlags https://github.com/NixOS/nixpkgs/pull/173172

the makeInstalledTests function in `nixos/tests/installed-tests/default.nix` isn't available outside of nixpkgs so
it's not a breaking change
 2022-10-10 15:30:59 +03:00
github-actions[bot] 265121ef54
Merge master into staging-next 2022-10-10 12:01:42 +00:00
Cabia Rangris c9e1ec215b
Merge pull request #195324 from zhaofengli/fwupd-config-merging 
nixos/fwupd: Fix configuration file merging
 2022-10-10 14:11:53 +04:00
Zhaofeng Li bbbda58c4e nixos/fwupd: Fix configuration file merging 2022-10-10 00:01:32 -06:00
Kartik Gokte 8d5a404437 nixos/karma: init 2022-10-10 10:46:25 +05:30
github-actions[bot] 44f6a02f39
Merge master into staging-next 2022-10-09 18:01:35 +00:00
Jan Solanti 96dd839e8f pipewire: 0.3.58 -> 0.3.59 2022-10-09 20:17:42 +03:00
Sandro f5802f496d
Merge pull request #187026 from azahi/endlessh-go 2022-10-09 16:50:02 +02:00
github-actions[bot] 8972888c55
Merge master into staging-next 2022-10-09 12:01:31 +00:00
Franz Pletz 8a86d9d4aa
Merge pull request #195190 from Ma27/coturn-replace-secret 
nixos/coturn: refactor secret injection
 2022-10-09 13:48:49 +02:00
Maximilian Bosch 4ece171482
Merge pull request #194738 from mayflower/pi-tokenjanitor 
nixos/privacyidea: add proper support for `privacyidea-token-janitor`
 2022-10-09 09:50:20 +02:00
Maximilian Bosch 4fd75277dd
nixos/coturn: refactor secret injection 
The original implementation had a few issues:

* The secret was briefly leaked since it is part of the cmdline for
  `sed(1)` and on Linux `cmdline` is world-readable.
* If the secret would contain either a `,` or a `"` it would mess with
  the `sed(1)` expression itself unless you apply messy escape hacks.

To circumvent all of that, I decided to use `replace-secret` which
allows you to replace a string inside a file (in this case
`#static-auth-secret#`) with the contents of a file, i.e.
`cfg.static-auth-secret-file` without any of these issues.
 2022-10-09 09:31:48 +02:00
talyz fae653deb4 nixos/gitlab: Configure ActionCable 
ActionCable is used to provide realtime updates in a few places,
mainly the issue sidebar.
 2022-10-09 08:12:19 +02:00
talyz 9b3ff51c77 nixos/gitlab: Set a more appropriate type for extraConfig 2022-10-09 08:12:19 +02:00
talyz 58158100f7 nixos/gitlab: Make sure docker-registry starts after cert generation 2022-10-09 08:12:19 +02:00
talyz 8e8253ddb4 nixos/gitlab: Create registry state path 2022-10-09 08:12:19 +02:00
talyz 3dedfb3fa0 nixos/gitlab: Connect to redis through a unix socket by default 
This gives us slightly higher security as you have to be in the gitlab
group to connect, and possibly a (very small) performance benefit as
well.
 2022-10-09 08:12:19 +02:00
talyz 843082eb3a nixos/gitlab: Add findutils to runtime dependencies 
Needed for the gitlab:cleanup:orphan_job_artifact_files rake task.
 2022-10-09 08:12:19 +02:00
talyz bee6e1dafa nixos/gitlab: Deduplicate runtime dependency listing 2022-10-09 08:12:19 +02:00
talyz 0211edd1ff nixos/gitlab: Add workhorse.config option 2022-10-09 08:12:19 +02:00
github-actions[bot] 130aa9ca68
Merge master into staging-next 2022-10-09 00:03:29 +00:00
Jörg Thalheim b4bb571fa0 iwd: remove myself as maintainer 2022-10-08 16:50:37 +02:00
Vladimír Čunát 6565abc264
Merge branch 'master' into staging-next 2022-10-08 10:20:07 +02:00
Vincent Haupert 941c79b620 nixos/github-runner: fix bugs related to InaccessiblePaths= 
This commit fixes two bugs:

1) When starting a github-runner for the very first time, the
   unconfigure script did not copy the `tokenFile` to the state
   directory. This case just was not handled so far. As a result, the
   runner could not configure. The unit did, however, fail even before
   as the state token file is configured as inaccessible for the service
   through `InaccessiblePaths=`. As the given path did not exist in the
   described case, setting up the unit's namespacing failed.

2) Similarly, the `tokenFile` is also marked as not accessible to the
   service user. There are, however, cases where other namespacing
   options make the files inaccessible even before `InaccessiblePaths=`
   kicks in; thus, they appear as non existing and cause the namespacing
   to fail yet again. Prefixing the entry with a `-` causes Systemd to
   ignore the entry if it cannot find it. This is the behavior we want.

I also took fixing those bugs as a chance to refactor the unconfigure
script to make it easier to follow.
 2022-10-08 01:32:55 +02:00
Nick Cao 309ea5a1af nixos/udev: allow marking firmware as not compressible 2022-10-07 19:40:58 +00:00
Alexander Bantyev 99cc02fe98
Merge pull request #193694 from cab404/fwupd-remote-list 
nixos.fwupd: add remote list option
 2022-10-07 14:23:19 +04:00
github-actions[bot] c5f0d725df
Merge master into staging-next 2022-10-06 18:03:10 +00:00
pennae 3826e303c6 nixos/firefox-syncserver: remove extra add_header 
syncstorage-rs sets this header starting with 0.12.3.
 2022-10-06 14:48:53 +02:00
pennae f97c9d60e4 nixos/firefox-syncserver: proxyPass singleNode to 127.0.0.1 
syncstorage-rs does not listen on ::1 unless explicitly configured.
 2022-10-06 14:48:53 +02:00