alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
267140 commits 217 branches 121 tags 4.5 GiB
Commit graph

2154 commits

Author SHA1 Message Date
Benjamin Hipple e00752079e
Merge pull request #102018 from 1000101/blockbook-frontend 
blockbook-frontend: fix&update extraConfig example
 2020-10-29 22:30:07 -04:00
1000101 4b8611c959 blockbook-frontend: fix&update extraConfig example 2020-10-29 11:41:41 +01:00
Philipp fc856b89e5
nixos/murmur: add murmur group, don't run as nogroup 
fixes #101980
 2020-10-29 10:32:04 +01:00
Martin Weinelt 55746e0a4b
Merge pull request #98187 from mweinelt/nixos/babeld 
nixos/babeld: lock down service
 2020-10-29 01:24:11 +01:00
rnhmjoj 9e04bba0af nixos/dnscrypt-wrapper: fix key rotation script 
Fix an error in the validation code when the public key is in a
nonstandard location. The check command fails and the key is
incorrectly assumed to be expiring.
 2020-10-26 13:07:49 +01:00
Klemens Nanni 0b8a6e787c
nixos/avahi: Enable IPv6 by default 
Treat it the same as IPv4 (I'm tempted to disable IPv4 by default);
this is the only option I still need to set manually to enjoy IPv6-only
networks including printer discovery!
 2020-10-26 04:06:26 +01:00
Felix Tenley 542f75079b nixos/mosquitto: add passwordFile and hashedPasswordFile options 2020-10-25 10:53:38 +01:00
Aaron Andersen a160fa008d
Merge pull request #100063 from aanderse/nixos/powerdns 
nixos/powerdns: use upstream systemd unit
 2020-10-24 18:47:43 -04:00
Andreas Rammhold 250fb4611f
Merge pull request #100456 from maralorn/boolToString 
treewide: De-inline uses of lib.boolToString
 2020-10-25 00:45:11 +02:00
Aaron Andersen 4f5d3794d3 nixos/powerdns: use upstream systemd unit 2020-10-24 16:40:20 -04:00
Maximilian Bosch 98170761a8
Merge pull request #101222 from omasanori/ssh-kex 
nixos/sshd: update kexAlgorithms, fix links
 2020-10-22 13:27:47 +02:00
symphorien 9e8eaea484
nixos/sslh: fix usage of the now removed ssl probe (#101087) 
and document
 2020-10-21 21:34:35 +02:00
Izorkin d59bfded58
nixos/dhcpcd: if disabled IPv6 don't solicit or accept IPv6 2020-10-21 14:56:08 +03:00
Martin Weinelt c821e0d4be nixos/babeld: lock down service 
→ Overall exposure level for babeld.service: 2.2 OK 🙂
 2020-10-21 12:26:02 +02:00
Masanori Ogino 8875db4976 nixos/sshd: update kexAlgorithms, fix links 
The `curve25519-sha256` key exchange method is defined in RFC 8731 that
is identical to curve25519-sha256@libssh.org. OpenSSH supports the
method since version 7.4, released on 2016-12-19. It is literally a
violation of the "both in Secure Secure Shell and Mozilla guidelines"
rule, but it provides essentially the same but a future-proof default.

Also, links to the Mozilla OpenSSH guidelines are updated to refer to
the current place.

Signed-off-by: Masanori Ogino <167209+omasanori@users.noreply.github.com>
 2020-10-21 07:39:50 +09:00
Florian Klink 6e5ccaa34f
Merge pull request #100657 from flokli/network-manager-sstp 
networkmanager-sstp: init at unstable-2020-04-20, bump sstp from 1.0.12 to 1.0.13
 2020-10-21 00:33:13 +02:00
Florian Klink 72cd3086cc networkmanager-sstp: init at unstable-2020-04-20 2020-10-21 00:02:18 +02:00
Aaron Andersen 6c39180b37 nixos/pdns-recursor: declare module user as system user 2020-10-18 08:15:29 -04:00
Aaron Andersen 1627bef9c1 nixos/pdns-recursor: use upstream systemd unit 2020-10-18 08:15:29 -04:00
Malte Brandy cebf9198f3
treewide: De-inline uses of lib.boolToString 
This commit should not change eval results
 2020-10-14 01:46:17 +02:00
Michele Guerini Rocco 9b6fc07d15
Merge pull request #100060 from aanderse/dnsdist 
nixos/dnsdist: use upstream systemd unit
 2020-10-12 21:20:33 +02:00
Aaron Andersen f4ff303c3b nixos/dnsdist: use upstream systemd unit 2020-10-12 12:17:11 -04:00
Ben Wolsieffer 8294af0284 nixos/avahi: fix nss module 
mdns_minimal must be placed before resolve in nsswitch.conf
 2020-10-11 20:15:13 +02:00
elseym 533560de5b
nixos/murmur: add option environmentFile for injecting secrets 
Secrets are injected from the environment into the rendered
configuration before each startup using envsubst.
The test now makes use of this feature for the server password.
 2020-10-07 13:35:50 +02:00
Dominique Martinet f462cf15f8 wakeonlan service: use powerUpCommands 
powerDownCommands is supposed to run before shutdown, but the current
implementation only runs before-sleep, thus not enabling wakeonlan on
devices when powering off even if the hardware supports it.

Taking into consideration the possibility of unexpected shutdown, it is
preferable to move the commands to powerUpCommands instead which is
executed at boot time as well as after resume - that should cover all
use cases for wakeonlan.

Fixes #91352
 2020-09-07 14:56:59 +02:00
Silvan Mosberger f822080b05
Merge pull request #68887 from teto/ssh_banner 
services.openssh: add banner item
 2020-09-06 22:15:25 +02:00
Matthieu Coudron 1835fc455b services.openssh: add banner 
Add the possibility to setup a banner.

Co-authored-by: Silvan Mosberger <github@infinisil.com>
 2020-09-06 21:32:20 +02:00
Florian Klink d7046947e5
Merge pull request #91121 from m1cr0man/master 
Restructure acme module
 2020-09-06 18:26:22 +02:00
Lassulus 964606d40f
Merge pull request #96659 from doronbehar/module/syncthing 
nixos/syncthing: add ignoreDelete folder option
 2020-09-05 22:05:04 +02:00
Lucas Savva 982c5a1f0e
nixos/acme: Restructure module 
- Use an acme user and group, allow group override only
- Use hashes to determine when certs actually need to regenerate
- Avoid running lego more than necessary
- Harden permissions
- Support "systemctl clean" for cert regeneration
- Support reuse of keys between some configuration changes
- Permissions fix services solves for previously root owned certs
- Add a note about multiple account creation and emails
- Migrate extraDomains to a list
- Deprecate user option
- Use minica for self-signed certs
- Rewrite all tests

I thought of a few more cases where things may go wrong,
and added tests to cover them. In particular, the web server
reload services were depending on the target - which stays alive,
meaning that the renewal timer wouldn't be triggering a reload
and old certs would stay on the web servers.

I encountered some problems ensuring that the reload took place
without accidently triggering it as part of the test. The sync
commands I added ended up being essential and I'm not sure why,
it seems like either node.succeed ends too early or there's an
oddity of the vm's filesystem I'm not aware of.

- Fix duplicate systemd rules on reload services

Since useACMEHost is not unique to every vhost, if one cert
was reused many times it would create duplicate entries in
${server}-config-reload.service for wants, before and
ConditionPathExists
 2020-09-02 19:22:43 +01:00
Félix Baylac-Jacqué 09c383c17a
Merge pull request #94917 from ju1m/biboumi 
nixos/biboumi: init
 2020-09-02 17:43:27 +02:00
WORLDofPEACE 18348c7829
Merge pull request #96042 from rnhmjoj/loaOf 
treewide: completely remove types.loaOf
 2020-09-02 08:45:37 -04:00
Julien Moutinho f333296776 nixos/biboumi: init 2020-09-02 08:31:53 +02:00
rnhmjoj bc62423a87
nixos/doc: convert loaOf options refs to attrsOf 2020-09-02 00:42:51 +02:00
rnhmjoj 20d491a317
treewide: completely remove types.loaOf 2020-09-02 00:42:50 +02:00
Georg Haas 9376dd8516
nixos/modules/robustirc-bridge: init 2020-08-30 18:34:22 +02:00
Doron Behar 5789ffc509 nixos/syncthing: add ignoreDelete folder option 2020-08-30 10:55:03 +03:00
Lassulus a55bb108fc
Merge pull request #85328 from langston-barrett/lb/restart-dispatcher 
nixos/networkmanager: restart dispatcher when nameservers change
 2020-08-29 16:24:28 +02:00
Lassulus e453860b8f
Merge pull request #86236 from ThibautMarty/fix-nullOr-types 
treewide: fix modules options types where the default is null
 2020-08-26 18:21:29 +02:00
Lassulus 12baef56e4
Merge pull request #96127 from hmenke/shadowsocks 
shadowsocks service: support plugins
 2020-08-26 16:49:55 +02:00
Henri Menke d35cb15153
nixos/shadowsocks: support plugins 2020-08-26 14:01:41 +12:00
Herwig Hochleitner 8e3da733b1 nixos: wpa_supplicant: warn on unused config 2020-08-25 12:29:58 +02:00
Frederik Rietdijk fe7bab33d7
Merge pull request #95553 from zowoq/rename-maintainers 
maintainers: prefix number with underscore
 2020-08-18 11:30:24 +02:00
zowoq 0052523a18 maintainers: 1000101 -> _1000101 2020-08-18 07:59:48 +10:00
zowoq 7d9c49f8e6 maintainers: 0x4A6F -> _0x4A6F 2020-08-18 07:59:44 +10:00
Edmund Wu 68366adf3c
nixos/kresd: ensure /run/knot-resolver exists 2020-08-16 12:20:10 -04:00
Edmund Wu 6c67af2fac
nixos/kresd: ensure /var/lib/knot-resolver exists 2020-08-16 12:20:03 -04:00
Edmund Wu 1a6240bde4
nixos/kresd: fix CacheDirectory permissions as per tmpfiles 2020-08-16 12:18:32 -04:00
Edmund Wu ed89d043dc
nixos/kresd: remove derivation from systemd.tmpfiles 
Using per-unit directives as per https://github.com/NixOS/nixpkgs/pull/95222#issuecomment-674512571
 2020-08-16 12:17:14 -04:00
Matt Layher 15e5ad6c7c nixos/corerad: use SIGHUP to restart the service 
Signed-off-by: Matt Layher <mdlayher@gmail.com>
 2020-08-09 16:15:49 -07:00
Peter Hoeg 4767015ec8
Merge pull request #84073 from pnelson/nextdns-1.4.36 
nextdns: init at 1.7.0
 2020-08-08 14:29:12 +08:00
Jörg Thalheim ba930d8679
nixos/modules: remove trailing whitespace 
This leads to ci failure otherwise if the file gets changed.
git-blame can ignore whitespace changes.
 2020-08-07 14:45:39 +01:00
Marek Mahut 6cf131d54e
Merge pull request #94340 from 1000101/maintainer 
nixos/modules: add myself as maintainer of several services
 2020-08-05 11:54:29 +02:00
Ryan Mulligan c4814c03b7 treewide: add Jitsi maintainers 
* makes jitsi maintainer team
 2020-08-04 13:07:36 -07:00
Ryan Mulligan 4162c69b3c
Merge pull request #92468 from petabyteboy/jitsi-meet 
nixos/jitsi-meet: init
 2020-08-03 12:43:37 -07:00
xeji 89e0d97d7e
Merge pull request #93538 from erictapen/tinc-rsa-key-file 
nixos/tinc: allow configuration of RSA private key file
 2020-08-01 23:32:26 +02:00
1000101 b5d21137f3 nixos/modules: add myself as maintainer of several services 2020-07-31 15:53:46 +02:00
worldofpeace 654b66e0e4
Merge pull request #93963 from seqizz/g_typo_environment 
treewide: fix typo on word environment
 2020-07-28 02:18:28 -04:00
Gürkan Gür eb627de968 treewide: fix typo on word environment 2020-07-28 08:00:38 +02:00
Marek Mahut b415ebae97
Merge pull request #93700 from 1000101/bitcoind 
nixos/bitcoind: change to multi-instance + add tests
 2020-07-27 12:55:29 +02:00
1000101 95440f040e nixos/bitcoind: minor refactoring 2020-07-27 10:40:06 +02:00
Silvan Mosberger ff5bdca1ed
Merge pull request #93813 from bobismijnnaam/update-wpa-supplicant-config 
Ensure wpa_supplicant.conf is written when userControlled and extraConfig are used
 2020-07-26 16:43:56 +02:00
Emery Hemingway d800d1e884 fixup! nixos/yggdrasil: add manual section 2020-07-25 16:34:20 +02:00
Emery Hemingway 764a9252a3 nixos/yggdrasil: add manual section 2020-07-25 16:34:20 +02:00
Emery Hemingway a8780387ba nixos/dhcpd: make authoritative mode optional 
There are circumstances where running secondary DHCP servers in
non-authoritative mode is advantageous. Retain the previous
authoritative behavior as a default.
 2020-07-25 16:33:04 +02:00
Bob Rubbens 71ea6a9a41 nixos/wpa_supplicant: update config generation 
Ensure wpa_supplicant.conf is also generated when userControlled and
extraConfig are used. (As discussed in issue #59959)
 2020-07-25 14:24:57 +02:00
1000101 c6017d9895 nixos/bitcoind: change to multi-instance 2020-07-23 12:05:40 +02:00
Florian Klink f14799c8e7
Merge pull request #93073 from helsinki-systems/tmpfiles-packages 
nixos/systemd: Implement a packages option for tmpfiles
 2020-07-20 23:56:41 +02:00
Justin Humm 1192255677
nixos/tinc: allow configuration of RSA key file 
This is necessary for VPNs where some of the nodes run pre-1.1 versions.

Most of Linux distros [0] and even the nixpkgs.tinc attribute run on that
version, so it might be useful to have that option.

[0] https://repology.org/project/tinc/versions
 2020-07-20 21:39:22 +02:00
Daniël de Kok d0c12dc612
Merge pull request #85689 from danieldk/resilio-module-fix 
nixos/resilio: fix directoryRoot configuration
 2020-07-20 11:31:36 +02:00
Daniël de Kok b9e0992e87 nixos/resilio: fix directoryRoot configuration 
The resilio module places the directoryRoot configuration in the webui
section. However, the generated configuration fails on the current
version of Resilio Sync with:

Invalid key context: 'directory_root' must be in global config section

This change places this key in the global configuration section to
solve this error.
 2020-07-20 11:24:33 +02:00
aszlig 4e92b613cc
nixos/wireguard: Fix mismatched XML tag 
Build error introduced in fe7053f75a912197f312d890740dd3bdde0ed994:

  parser error : Opening and ending tag mismatch: commmand line 6139 and command
  escription><para>Base64 preshared key generated by <commmand>wg genpsk</command>
                                                                                 ^
Writing "command" with only two "m" fixes building the NixOS manual.

Signed-off-by: aszlig <aszlig@nix.build>
 2020-07-20 00:14:44 +02:00
Philipp Bartsch fe7053f75a nixos/wireguard: fix typos and unify formatting 2020-07-19 14:57:39 +02:00
Janne Heß a44b2cdd3a nixos/systemd: Implement a packages option for tmpfiles 
Also drop the `portables` tmpfiles because the file is missing in the
systemd derivation.
 2020-07-18 00:03:47 +02:00
Milan Pässler 1a5f3d133d Revert "nixos/jicofo: use ExecStart instead of script" 
This reverts commit d3a26a5ecd.
Using ServiceConfig.ExecStart instead of script lead to the content not
being executed in a shell anymore, which broke the secrets being read
from a file and passed as a command line parameter.
 2020-07-15 21:41:29 +02:00
Justin Humm ce111fcc26
Merge pull request #92225 from bachp/unifi-5.13.32 
unifiStable: 5.13.29 -> 5.13.32
 2020-07-11 17:14:19 +02:00
Milan Pässler d3a26a5ecd nixos/jicofo: use ExecStart instead of script 2020-07-09 00:25:30 +02:00
Milan Pässler 1a071343f2 nioxs/jicofo: use existing generator 2020-07-09 00:00:05 +02:00
Martin Milata 47c38f00b2 nixos/jicofo: init 2020-07-09 00:00:04 +02:00
Martin Milata c695d57895 nixos/jitsi-videobridge: init 2020-07-09 00:00:04 +02:00
Michele Guerini Rocco fc553c0bc5
Merge pull request #89773 from rnhmjoj/ncdns 
ncdns: init at 0.0.10.3
 2020-07-07 10:58:55 +02:00
Benjamin Hipple 1e835d98c5
Merge pull request #89498 from 0x4A6F/master-xandikos 
xandikos: 0.1.0 -> 0.2.2
 2020-07-05 20:04:50 -04:00
Pascal Bach 3e7d650bcc nixos/unifi: restart service on package update 
Currently the service doesn't detect if on of the packages is updated
and doesn't restart.

By manually adding a trigger we make sure the service restarts if any of
the involved packages update.
 2020-07-03 22:34:29 +02:00
_ a3b0864bb0 nixos/onedrive: init 2020-06-29 19:56:41 +05:30
Robert Schütz 595a3d14b7
Merge pull request #91168 from dotlambda/radicale-3.0.3 
radicale: 2.1.11 -> 3.0.3
 2020-06-28 12:48:56 +02:00
Christoph Hrdinka b2655b6a34
Merge pull request #91514 from NinjaTrappeur/nin-fix-nsdconf 
nixos/nsd: symlink conf file to /etc/nsd
 2020-06-26 23:24:30 +02:00
Marek Mahut bb7c60708a
Merge pull request #91497 from 1000101/blockbook 
nixos/blockbook-frontend: init
 2020-06-26 21:17:36 +02:00
Félix Baylac-Jacqué 7020dc8eac
nixos/nsd: symlink conf file to /etc/nsd 
We remove the configFile build flag override in the NixOS module.

Instead of embedding the conf file link to the binaries, we symlink it
to /etc/nsd/nsd.nix, the hardcoded config file location for the
various CLI nsd utilities.

This config file build option override is triggerring a nsd rebuild
for each configuration change. This prevent us to use the nixos cache
in many cases.

Co-authored-by: Erjo <erjo@cocoba.work>
 2020-06-26 20:18:33 +02:00
1000101 de3c56ffd8 nixos/blockbook-frontend: init 2020-06-26 16:16:49 +02:00
Matt Layher 09f0d65317
nixos/corerad: set systemd unit Type=notify 
Signed-off-by: Matt Layher <mdlayher@gmail.com>
 2020-06-24 22:09:20 -04:00
Philip Nelson 81034b583c nixos/nextdns: init 2020-06-24 18:33:05 -07:00
Timo Kaufmann 41ba255e23
Merge pull request #77982 from symphorien/sshl_ipv6 
nixos/sslh: make it possible (and the default) to listen on ipv6, plus regression test
 2020-06-24 22:13:19 +02:00
Profpatsch 517be84135 small treewide: his -> theirs/its 
SJW brigade represent. ;)

Co-authored-by: Jan Tojnar <jtojnar@gmail.com>
 2020-06-23 16:49:50 +02:00
Robert Schütz d77fb3729d nixos/radicale: use radicale3 2020-06-23 12:02:27 +02:00
Michele Guerini Rocco 1eef920a8d
Merge pull request #91128 from bbigras/rslsync-localhost 
nixos/resilio: listen on [::1] by default
 2020-06-20 20:43:04 +02:00
Bruno Bigras dbb5bdfa09 nixos/resilio: listen on [::1] by default 2020-06-20 14:28:23 -04:00
Marek Mahut 0ff1bdb7c0
Merge pull request #90884 from mmahut/wasabi 
nixos/wasabibackend: init 1.1.11.1
 2020-06-20 15:30:32 +02:00
Symphorien Gibol 433f227f70 nixos/sslh: make it possible (and the default) to listen on ipv6 2020-06-20 12:54:36 +02:00
Bruno Bigras ad13beeebc nixos/resilio: fix group name in documentation 2020-06-19 15:15:33 -04:00
Marek Mahut d07ba3e962
nixos/wasabibackend: fixing description 
Co-authored-by: 1000101 <b1000101@pm.me>
 2020-06-19 20:07:55 +02:00
Marek Mahut b62df8ab46 nixos/wasabibackend: init 2020-06-19 16:44:21 +02:00
WORLDofPEACE bd52e7f8d3
Merge pull request #99039 from worldofpeace/dnscrypt-proxy2-harden 
nixos/dnscrypt-proxy2: harden and improve service
 2020-10-02 11:48:58 -04:00
Andreas Rammhold 66c3ba64b8
Merge pull request #99340 from andir/nftables-fix-iptables-conflict-errormsg 
nftables: Warn about correct firewall setting
 2020-10-02 11:13:26 +02:00
WORLDofPEACE 6e7e633a54 nixos/dnscrypt-proxy2: harden and improve service 2020-10-02 00:00:22 -04:00
Klemens Nanni e438d4a04f
nftables: Warn about correct firewall setting 
services.networking.firewall might have existed during import of this
module in 2016, but it is unknown as of today.

Point to the proper boolean knob to avoid confusion.
 2020-10-02 00:25:57 +02:00
WORLDofPEACE 46e5b14b4a
nixos/dnscrypt-proxy2: version the example file 
I've frequently used the master version that has non backwards compatible keys.
 2020-09-28 06:28:12 -04:00
Mario Rodas 8b8f54d38b
Merge pull request #98263 from asdf8dfafjk/patch-3 
nixos/onedrive: Remove verbose flag
 2020-09-19 13:46:17 -05:00
asdf8dfafjk 5e166f892d
nixos/onedrive: Remove verbose flag 2020-09-19 11:32:42 +05:30
Ryan Mulligan ad1c7eb7b6 nixos/heyefi: remove module and package 
heyefi is no longer maintained by me; the company that made the sd
cards is defunct and the cards depended on their servers to work.
 2020-09-18 21:55:07 -07:00
Marek Mahut 52532b7c36
Merge pull request #91256 from prusnak/seeks 
seeks: remove, upstream unmaintained
 2020-09-18 16:32:33 +02:00
Henri Menke 9d60354fae nixos/shadowsocks: add test without plugin 2020-09-14 22:35:05 +02:00
Henri Menke e587b5a8a8 nixos/shadowsocks: add extraConfig 2020-09-14 22:35:05 +02:00
Kevin Cox 91032af924
Merge pull request #97592 from NixOS/kevincox-chrony-state 
chrony: Create state directory with correct owner.
 2020-09-10 09:49:55 -04:00
Kevin Cox 57b9d5c144
chrony: Create state directory with correct owner. 
Fixes https://github.com/NixOS/nixpkgs/issues/97546
 2020-09-09 15:48:48 -04:00
Piotr Bogdan cb141359bf nixos/openvpn: path now requires conversion to a string 
Following changes in https://github.com/NixOS/nixpkgs/pull/91092 the `path` attribute is now a list
instead of being a string. This resulted resulted in the following evaluation error:

"cannot coerce a list to a string, at [...]/nixos/modules/services/networking/openvpn.nix:16:18"

so we now need to convert it to the right type ourselves.

Closes https://github.com/NixOS/nixpkgs/issues/97360.
 2020-09-08 11:09:04 +01:00
Pavol Rusnak 2e0542ebac
seeks: remove, upstream unmaintained 2020-06-22 13:43:29 +02:00
Aaron Andersen b6108e021b
Merge pull request #89327 from mweinelt/go-neb-module 
nixos/go-neb: init
 2020-06-16 06:30:29 -04:00
Matt Layher 562beabff3
nixos/corerad: use passAsFile while converting settings JSON to TOML 
Signed-off-by: Matt Layher <mdlayher@gmail.com>
 2020-06-14 13:30:17 -04:00
Silvan Mosberger 00e448172f
Merge pull request #89781 from mdlayher/mdl-corerad-settings 2020-06-14 16:48:54 +02:00
Matt Layher f1a4b100fd
nixos/corerad: add settings option to supersede configFile 
Signed-off-by: Matt Layher <mdlayher@gmail.com>
 2020-06-14 10:07:16 -04:00
rnhmjoj e23c57c347
nixos/ncdns: init module 2020-06-14 01:09:33 +02:00
rnhmjoj 2e5019b92c
dnschain: remove package and NixOS module 
The software is unmaintained since ~2014 and the package
can't be built anymore (issue #89205).
 2020-06-13 12:33:31 +02:00
Martin Weinelt 642e9916c6
nixos/go-neb: init 2020-06-02 15:25:05 +02:00
Mario Rodas c9d9ba0f7b
Merge pull request #83307 from servalcatty/fix/v2ray-check 
nixos/v2ray: check v2ray config during the build time
 2020-05-31 16:32:03 -05:00
Florian Klink 09a7612cbe
Merge pull request #88434 from pstch/patch-2 
nixos/haproxy: add reloading support, use upstream service hardening
 2020-05-31 23:11:44 +02:00
Hugo Geoffroy c784d3ab76 nixos/haproxy: add reloading support, use upstream service hardening 
Refactor the systemd service definition for the haproxy reverse proxy,
using the upstream systemd service definition. This allows the service
to be reloaded on changes, preserving existing server state, and adds
some hardening options.
 2020-05-31 22:35:27 +02:00
Florian Klink 414e1c6305
Merge pull request #88887 from mweinelt/vsftpd 
vsftpd: listen on both address families
 2020-05-31 16:34:01 +02:00
Michele Guerini Rocco a4f9e8bf68
Merge pull request #85900 from rnhmjoj/dnscrypt 
nixos/dnscrypt-wrapper: use dnscrypt-proxy1
 2020-05-27 19:52:53 +02:00
Marek Mahut 8f1c621b4e Merge pull request #88881 from mmahut/ergo 
ergo: init at 3.2.5
 2020-05-27 11:34:24 +02:00
Marek Mahut fdc48e5c7e nixos/ergo: init 2020-05-26 21:47:31 +02:00
Martin Weinelt c18fae4a35 vsftpd: listen on both address families 2020-05-25 20:14:20 +02:00
rnhmjoj 743eea4c5f
nixos/dnscrypt-wrapper: make provider keys configurable 2020-05-25 09:16:23 +02:00
rnhmjoj fd3727a313
nixos/dnscrypt-wrapper: use dnscrypt-proxy1 2020-05-25 09:16:23 +02:00
Aaron Andersen 563a3f5a81 nixos/networkmanager: apply --filter-policy=STRICT to modemmanager service 2020-05-23 20:49:13 -04:00
snicket2100 866b411ab6 nixos/dnscrypt-proxy2: service restart on failure 
it does happen that `dnscrypt-proxy` exit when it is unable to
synchronise its resolvers metadata on startup. this can happen due
to network connectivity issues for example. not restarting it automatically
means no dns resolution will work until a manual restart is performed.
 2020-05-22 06:43:10 +02:00
Florian Klink 1955982190 nixos/wpa_supplicant: always run systemctl of the currently running systemd 2020-05-21 10:31:08 +02:00
Florian Klink 52e104cfdf nixos/nsd: always run systemctl of the currently running systemd 2020-05-21 10:30:40 +02:00
Florian Klink b0222a5e9c nixos/dhcpcd: always run systemctl of the currently running systemd 2020-05-21 10:30:21 +02:00
Emery Hemingway ac97b19a2a nixos/yggdrasil: change config priority, persistentKeys 
Favor the configuration in "configFile" over "config" to allow
"configFile" to override "config" without a system rebuild.

Add a "persistentKeys" option to generate keys and addresses that
persist across service restarts. This is useful for self-configuring
boot media.
 2020-05-21 12:11:13 +05:30
Florian Klink 4a85559ffc
Merge pull request #87016 from flokli/nsswitch-cleanup 
nixos/nsswitch cleanup nss modules
 2020-05-14 14:55:43 +02:00
betaboon fd41795f58 nixos/pixiecore: fix escaping of cmdline 2020-05-12 15:14:49 +02:00
Florian Klink fd21793de6 nixos/avahi: move nss database configuration into avahi module 2020-05-11 16:14:50 +02:00
Vojtěch Káně e7ab236cab monero: fix rcp.restricted option 
According to https://monerodocs.org/interacting/monerod-reference/#node-rpc-api
the correct option is restricted-rpc, not restrict-rpc.
 2020-05-11 12:11:58 +02:00
0x4A6F 71a137a297
nixos/xandikos: update listen-address parameter 2020-05-08 18:20:55 +02:00
Vladimír Čunát 54eb2d1018
Merge branch 'staging-next' 
Status on Hydra for linuxes seems good enough:
https://hydra.nixos.org/eval/1585703?filter=linux&compare=1585482&full=#tabs-now-fail
 2020-05-06 08:20:05 +02:00
Frederik Rietdijk 9875bbae75 Merge master into staging-next 2020-05-05 19:51:09 +02:00
Lassulus ef0f57ff8a
Merge pull request #86712 from rardiol/hostapd 
nixos/hostapd: country selection, CRDA, logging
 2020-05-05 19:51:09 +02:00
Ricardo Ardissone a55b736a65 nixos/hostapd: conditionally enable ieee80211d 2020-05-04 21:28:56 -03:00
Ricardo Ardissone d6d0442243 nixos/hostapd: add logLevel option 2020-05-04 00:31:09 -03:00
Ricardo Ardissone c09c054231 nixos/hostapd: add countryCode option 2020-05-04 00:31:09 -03:00