alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
259068 commits 217 branches 121 tags 4.5 GiB
Commit graph

15515 commits

Author SHA1 Message Date
Damien Diederen 98236860dc nixos/zookeeper: adapt to zookeeper 3.6.2 
This patch:

  * Removes an invalid/useless classpath element;
  * Removes an unnecessary environment variable;
  * Creates the required '/version-2' data subdirectory;
  * Redirects audit logging to the "console" (systemd) by default.
 2020-12-09 15:46:38 +01:00
Peng Mei Yu 3cd1a6706c unbound: Add AF_NETLINK to allowed address families. 
Unbound throws the following error:

--8<---------------cut here---------------start------------->8---
error: failed to list interfaces: getifaddrs: Address family not supported by protocol
fatal error: could not open ports
--8<---------------cut here---------------end--------------->8---

The solution is pulled from upstream:
https://github.com/NLnetLabs/unbound/pull/351
 2020-12-08 14:31:15 +08:00
Blaž Hrastnik 920c439915 thermald: Fix systemd service definition. 2020-12-08 08:26:36 +09:00
Maximilian Bosch 55ef9612a2
nixos/nginx: improve documentation for config 
Unfortunately, I had a use-case where `services.nginx.config` was
necessary quite recently. While working on that config I had to look up
the module's code to understand which options can be used and which
don't.

To slightly improve the situation, I changed the documentation like
this:

* Added `types.str` as type since `config` is not mergeable on purpose.
  It must be a string as it's rendered verbatim into `nginx.conf` and if
  the type is `unspecified`, it can be confused with RFC42-like options.

* Mention which config options that don't generate config in
  `nginx.conf` are NOT mutually exclusive.
 2020-12-06 17:26:13 +01:00
Francesco Zanini 93d74f6536 zigbee2mqtt: 1.16.1 -> 1.16.2 2020-12-05 17:42:07 +01:00
freezeboy 903b2aa9a6 nixos/n8n: init module and test 2020-12-05 11:02:40 +01:00
Linus Heckemann c14f14eeaf
Merge pull request #97505 from mayflower/grub-efi-mirroredboot 
nixos/grub: allow multiple "nodev" devices for mirroredBoots
 2020-12-04 18:37:50 +01:00
stigo 80e0a20892
Merge pull request #103813 from symphorien/firejail 
nixos/firejail: allow to pass options to firejail
 2020-12-04 09:00:15 +01:00
rnhmjoj 296c415030
nixos/fish: make generateCaches easier to override 2020-12-03 22:00:33 +01:00
rnhmjoj 87d614441d
nixos/documentation: silence man-db cache warnings 
The output of the man-db command used to generate the caches is
irrelevant and can confuse users, let's hide it.
 2020-12-03 21:57:09 +01:00
Gabriel Ebner 6e8007341e
Merge pull request #105362 from gebner/pipewire0137 
pipewire: 0.3.16 -> 0.3.17
 2020-12-03 17:15:05 +01:00
Sandro c1695ade0b
Merge pull request #105745 from archseer/thermald-2-4 2020-12-03 11:26:16 +01:00
Blaž Hrastnik 05bd810d5f thermald: Always enable adaptive mode. 
There was some issues with the fallback to passive mode on 2.3, but on
2.4 adaptive mode is always enabled upstream and thermald will fallback
to passive if necessary.

a6e68a65b5/data/thermald.service.in (L9)
 2020-12-03 12:45:58 +09:00
Gabriel Ebner 906d68cf13 nixos/pipewire: enable volume control via alsa 2020-12-02 22:11:09 +01:00
Gabriel Ebner b28f2f7386 nixos/pipewire: generate configuration file 2020-12-02 22:11:09 +01:00
Jörg Thalheim 11ee543052
sd-image: fix resizing if root is not the second partition. 2020-12-02 21:52:38 +01:00
Silvan Mosberger 2526f22723
Merge pull request #102076 from Taneb/hoogle-dynamic-user 
Set DynamicUser=true for hoogle
 2020-12-02 12:58:10 +01:00
Austin Seipp 652ac69373
Merge pull request #103393 from happysalada/add_vector 
nixos/vector: add module
 2020-12-02 03:30:11 -06:00
Andreas Rammhold 26cc536edf
Merge pull request #104203 from andir/saned-max-connections 
nixos/sane: bump the MaxConnections to a reasonable amount
 2020-12-01 19:45:13 +01:00
Jörg Thalheim b1ed5ffeab
Merge pull request #93293 from tnias/nixos_rspamd_20200716 2020-12-01 13:10:43 +00:00
Christine Dodrill 3d55480bf8
nixos/tailscale: add package as an option 
This simplifies testing changes to the tailscale service on a local
machine. You can use this as such:

```nix
let
  tailscale_patched = magic {};
in {
  services.tailscale = {
    enable = true;
    package = tailscale_patched;
  };
};
```

Signed-off-by: Christine Dodrill <me@christine.website>
 2020-12-01 12:30:31 +01:00
Silvan Mosberger a87ab948d2
Merge pull request #104836 from ncfavier/master 
nixos/nat: support IPv6 NAT
 2020-12-01 04:40:09 +01:00
Valérian Galliat b93a5a1746
nixos/nat: support IPv6 NAT 2020-12-01 00:51:58 +01:00
Silvan Mosberger 8dea4df903
lib/modules: Remove _module.checks.*.triggerPath as it's not necessary 
Previously this option was thought to be necessary to avoid infinite
recursion, but it actually isn't, since the check evaluation isn't fed
back into the module fixed-point.
 2020-11-30 23:51:42 +01:00
Silvan Mosberger c9cc8969b4
lib/modules: Rename _module.assertions to _module.checks 2020-11-30 23:51:41 +01:00
Silvan Mosberger 9523df7eb6
nixos/assertions: Use module-builtin assertion implementation 2020-11-30 23:51:22 +01:00
Silvan Mosberger 6df56e1cb8
Merge pull request #103866 from cole-h/doas 
doas: 6.6.1 -> 6.8
 2020-11-30 19:02:55 +01:00
Frederik Rietdijk 9a63b3d3d6
Merge pull request #104781 from NixOS/staging-next 
Staging next
 2020-11-30 18:27:29 +01:00
Nathan van Doorn 12c3e0a465 nixos/services/hoogle use DynamicUser instead of nobody 
I've also removed PrivateTmp = true because this is implied by dynamic user.

I've left ProtectHome = true because I believe this is stronger than
ProtectHome = "read-only" which DynamicUser implies.
 2020-11-30 13:36:19 +00:00
happysalada 627dfecadd nixos/vector: add module 2020-11-30 16:22:08 +09:00
Jörg Thalheim 3b6ef967f3
nixos/rspamd: fix postfix integration 2020-11-30 07:29:32 +01:00
Florian Klink a623bc0ba4
Merge pull request #104689 from petabyteboy/feature/gitlab-13-6-1 
gitlab: 13.6.0 -> 13.6.1
 2020-11-29 22:37:42 +01:00
Maximilian Bosch 752b6a95db
nixos/mautrix-telegram: update defaults 
These three defaults must exist in the config now, otherwise
`mautrix-telegram` will refuse to start.
 2020-11-29 21:28:07 +01:00
Gabriel Ebner 0155830275 nixos/pipewire: allow overriding the pipewire derivation 2020-11-29 17:43:07 +01:00
Gabriel Ebner ce28fd3d22 nixos/pipewire: add media-session.d files 2020-11-29 17:43:07 +01:00
Gabriel Ebner 53029a15cc nixos/pipewire: enable sound on alsa support 
Otherwise sound.extraConfig has no effect.
 2020-11-29 15:08:38 +01:00
Frederik Rietdijk 0d8491cb2b Merge master into staging-next 2020-11-29 13:51:10 +01:00
Sarah Brofeldt a7a5f7904c
Merge pull request #99173 from johanot/fix-initrd-ssh-commands-test 
nixos/initrd-ssh: set more defensive pemissions on sshd test key
 2020-11-29 11:27:03 +01:00
StigP e2968a0442
Merge pull request #102061 from braunse/gogs-0-12-3 
gogs: 0.11.91 -> 0.12.3
 2020-11-29 10:01:47 +01:00
Ryan Mulligan cb42d08df2
Merge pull request #62104 from Vizaxo/master 
nixos/exwm: allow custom Emacs load script
 2020-11-28 18:47:21 -08:00
Martin Weinelt 62ef710b54
Merge pull request #104268 from mvnetbiz/ha-allowpaths 
home-assistant: add allowlist_external_dirs to systemd unit ReadWritePaths
 2020-11-29 00:25:35 +01:00
Sander van der Burg 336628268f nixos/disnix: reorder startup to take MongoDB and InfluxDB into account, add option to add Disnix profile to the system PATH 2020-11-28 20:15:21 +01:00
Sander van der Burg 5e392940cf nixos/dysnomia: add InfluxDB configuration options, add option to use legacy modules, eliminate import from derivation hack 2020-11-28 20:15:21 +01:00
Silvan Mosberger cb59ff4aab
Merge pull request #86225 from sorki/proxychains 
nixos/proxychains: init
 2020-11-28 19:45:32 +01:00
Frederik Rietdijk 9e062723b2 Merge master into staging-next 2020-11-28 08:53:47 +01:00
Sebastien Braun 5c87a6b8ea gogs: 0.11.91 -> 0.12.3 2020-11-28 06:50:52 +01:00
Sandro a390213f85
Merge pull request #85133 from snicket2100/mosquitto-service-sandboxing 
mosquitto: systemd service sandboxing
 2020-11-27 18:53:36 +01:00
Frederik Rietdijk b2a3891e12 Merge master into staging-next 2020-11-27 15:09:19 +01:00
Milan Pässler 81aff9f411 nixos/gitlab: use bindsTo instead of requires for gitaly 2020-11-26 14:12:14 +01:00
Jan Tojnar e95cc8519b
Merge pull request #104553 from jansol/pipewire 
pipewire: 0.3.15 -> 0.3.16
 2020-11-26 10:59:17 +01:00
Luke Granger-Brown ad62155cb6 nixos/zram: add zramSwap.memoryMax option 
This allows capping the total amount of memory that will be used for
zram-swap, in addition to the percentage-based calculation, which is
useful when blanket-applying a configuration to many machines.

This is based off the strategy used by Fedora for their rollout of
zram-swap-by-default in Fedora 33
(https://fedoraproject.org/wiki/Changes/SwapOnZRAM), which caps the
maximum amount of memory used for zram at 4GiB.

In future it might be good to port this to the systemd zram-generator,
instead of using this separate infrastructure.
 2020-11-25 13:43:38 +00:00
Frederik Rietdijk 5790bb073f nixos auto-upgrade: remove flag when flake 
The `--no-build-output` flag that is added by default is only valid
for the old cli, which is not used when flakes are used.

Follow-up to c9daa81eff.
 2020-11-25 08:34:04 +01:00
Florian Klink 5b3a952e04
Merge pull request #102938 from cruegge/dev-symlinks 
nixos/stage-1: create /dev/std{in,out,err} symlinks
 2020-11-25 01:57:21 +01:00
Stijn DW 3d3bcc5cc9 nixos/factorio: Don't open firewall ports by default 2020-11-24 23:14:57 +01:00
Stijn DW d93434458b nixos/factorio: add openFirewall option 2020-11-24 23:14:57 +01:00
Graham Christensen d9c3f13df3
Merge pull request #104776 from grahamc/utillinux 
utillinux: rename to util-linux
 2020-11-24 15:14:36 -05:00
Graham Christensen bc49a0815a
utillinux: rename to util-linux 2020-11-24 12:42:06 -05:00
adisbladis 302df2a9a1
Merge pull request #81661 from adisbladis/ssh-pam-sudo-keys 
pam_ssh_agent_auth: Honour services.openssh.authorizedKeysFiles
 2020-11-24 16:06:47 +01:00
Artturin 4db239272c mullvad-vpn: add iproute2 2020-11-24 06:12:32 -08:00
Ryan Mulligan 91f1d7e405
Merge pull request #104734 from ju1m/fix-udev 
nixos/network-interfaces: fix typo in udev rule syntax
 2020-11-24 05:44:52 -08:00
Peter Simons 58f29d3ca8
Merge pull request #104721 from vkleen/postfix-smtp-fix 
nixos.postfix: make postfix.enableSmtp work again
 2020-11-24 08:58:35 +01:00
Jan Tojnar 6d99109b12
Merge branch 'staging-next' into staging 2020-11-24 05:44:44 +01:00
Julien Moutinho 2263fa5698 nixos/network-interfaces: fix typo in udev rule syntax 2020-11-24 04:21:44 +01:00
adisbladis ba1fa0c604
pam_ssh_agent_auth: Honour services.openssh.authorizedKeysFiles 
If a system administrator has explicitly configured key locations this
should be taken into account by `sudo`.
 2020-11-24 02:47:07 +01:00
Viktor Kleen 6216c843ed
nixos/postfix: make postfix.enableSmtp work again 
This fixes issue #104715.
 2020-11-23 23:46:06 +00:00
rnhmjoj 8f177612b1
nixos/wireless: fix failure with no interfaces 
This resolves issue #101963.

When the service is started and no interface is ready yet, wpa_supplicant
is being exec'd with no `-i` flags, thus failing. Once the interfaces
are ready, the udev rule would fire but wouldn't restart the unit because
it wasn't currently running (see systemctl(1) try-restart).

The solution is to exit (with a clear error message) but always restart
wpa_supplicant when the interfaces are modified.
 2020-11-24 00:18:18 +01:00
Florian Klink bbf3c9483b
Merge pull request #104520 from Izorkin/wsdd 
wsdd: init at 0.6.2
 2020-11-23 23:18:23 +01:00
Frederik Rietdijk 587538d087 Merge staging-next into staging 2020-11-23 18:10:33 +01:00
Izorkin 03760ab82e
nixos/samba-wsdd: init service samba-wsdd 2020-11-23 13:26:00 +03:00
Jan Solanti aca97840da pipewire: 0.3.15 -> 0.3.16 
This release replaces the libpulseaudio shim with a pipewire module that acts as a fake pulseaudio server along with a systemd service that loads that module on demand.
 2020-11-23 10:40:35 +02:00
Scott Worley e0d27cfb31 nixos/locate: Whitespace: One pruneFS default per line 
This makes merging less painful.

This is nixfmt's preferred format.
 2020-11-22 21:53:08 -08:00
zowoq dbbd289982 nixos/*: fix indentation 2020-11-23 08:42:51 +10:00
Florian Klink c76891314d
Merge pull request #104094 from flokli/systemd-unified-cgroup-hierarchy 
systemd: switch to unified cgroup hierarchy by default
 2020-11-22 22:35:42 +01:00
Graham Christensen 1ee1134cb1
Merge pull request #104456 from endgame/refresh-instance-metadata-on-boot 
Refresh instance metadata on boot
 2020-11-22 08:23:14 -05:00
Florian Klink 904f124247
Merge pull request #99116 from jslight90/gitlab-13.4.0 
GitLab 13.0.14 -> 13.6.0
 2020-11-22 12:00:03 +01:00
Jack Kelly 43bfd7e5b1 {ec2,openstack}-metadata-fetcher: unconditionally fetch metadata 
The metadata fetcher scripts run each time an instance starts, and it
is not safe to assume that responses from the instance metadata
service (IMDS) will be as they were on first boot.

Example: an EC2 instance can have its user data changed while
the instance is stopped. When the instance is restarted, we want to
see the new user data applied.
 2020-11-22 11:04:46 +10:00
Jack Kelly 8c39655de3 {ec2,openstack}-metadata-fetcher: introduce wget_imds function 2020-11-22 11:04:46 +10:00
Jack Kelly f8c3027812 openstack-metadata-fetcher: stop lying in log message 2020-11-22 11:04:46 +10:00
Kai Wohlfahrt db5bb4e26b nixos/openldap: Fix sssd-ldap test 
Use this as a test of the migration warnings/functionality.
 2020-11-21 16:13:03 +00:00
Kai Wohlfahrt fefc26f844 nixos/openldap: use mkRenamedOptionModule 
This offers less helpful warnings, but makes the implementation
considerably more straightforward.
 2020-11-21 16:13:03 +00:00
Kai Wohlfahrt ce1acd97a7 nixos/openldap: fix path + base64 value types 2020-11-21 16:13:03 +00:00
Kai Wohlfahrt b2ebffe186 nixos/openldap: Fix indentation 2020-11-21 16:13:03 +00:00
Kai Wohlfahrt 3f892c2174 nixos/openldap: Remove extraConfig options 
Instead of deprecating, as per PR feedback
 2020-11-21 16:13:03 +00:00
Kai Wohlfahrt 2050376cae nixos/openldap: Mention schemas in migration hint 2020-11-21 15:45:16 +00:00
Kai Wohlfahrt 5fafbee87a nixos/openldap: Add release-notes for OLC config 2020-11-21 15:45:15 +00:00
Kai Wohlfahrt adda7e62d0 nixos/openldap: Add support for base64 values 2020-11-21 15:39:20 +00:00
Kai Wohlfahrt d05061c5cd nixos/openldap: Pick some PR nits 2020-11-21 15:39:20 +00:00
Kai Wohlfahrt 9528faf182 nixos/openldap: Allow declarativeContents for multiple databases 2020-11-21 15:39:19 +00:00
Kai Wohlfahrt 057cb570be nixos/openldap: Add delcarativeConfig by suffix 
Adding by index could be an issue if the user wanted the data to be
added to a DB other than the first.
 2020-11-21 15:39:19 +00:00
Kai Wohlfahrt 1fde3c3561 nixos/openldap: switch to slapd.d configuration 
The old slapd.conf is deprecated. Replace with slapd.d, and use this
opportunity to write some structured settings.

Incidentally, this fixes the fact that openldap is reported up before
any checks have completed, by using forking mode.
 2020-11-21 15:39:19 +00:00
Joachim F 547d660f64
Merge pull request #104052 from TredwellGit/nixos/malloc 
nixos/malloc: fix Scudo
 2020-11-21 14:31:58 +00:00
Frederik Rietdijk 1ffd7cf0d6 Merge master into staging-next 2020-11-21 08:43:10 +01:00
Milan Pässler 0f82bd767b nixos/gitlab: start gitaly after gitlab 2020-11-21 01:38:11 +01:00
Jeff Slight f98a6322e6 nixos/gitlab: add changes for gitlab 13.4.x 2020-11-20 19:26:30 +01:00
Graham Christensen 75d7828724
Merge pull request #98544 from Mic92/unfuck-update-user-group 
nixos/update-user-groups: Fix encoding issues + atomic writes
 2020-11-20 10:28:52 -05:00
Eelco Dolstra 80097e57c9
nix: 2.3.8 -> 2.3.9 2020-11-20 13:03:04 +01:00
Jan Tojnar f6105d21e3
Merge branch 'master' into staging-next 2020-11-20 01:38:32 +01:00
Graham Christensen 7fa7bf2fda
Merge pull request #104193 from grahamc/ec2-metadata-imdsv2 
NixOS EC2 AMI: Support IMDSv2
 2020-11-19 16:11:32 -05:00
Frederik Rietdijk ea7b8978ef Merge master into staging-next 2020-11-19 20:08:15 +01:00
Graham Christensen f2cfecdec3
nixos ami: preflight the imds token 
According to Freenode's ##AWS, the metadata server can sometimes
take a few moments to get its shoes on, and the very first boot
of a machine can see failed requests for a few moments.
 2020-11-19 13:56:44 -05:00