alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
424674 commits 217 branches 121 tags 4.5 GiB
Commit graph

29870 commits

Author SHA1 Message Date
MidAutumnMoon f4342c11e5
nixos/geoipupdate: set proper SystemCallFilter 2022-10-25 16:45:49 +08:00
MidAutumnMoon 5c983ac37b
nixos/prosody-filer: set proper SystemCallFilter 2022-10-25 16:14:24 +08:00
MidAutumnMoon 7742cd543d
nixos/yggdrasil: set proper SystemCallFilter 2022-10-25 16:09:31 +08:00
MidAutumnMoon ae025da558
nixos/dex-oidc: set proper SystemCallFilter 2022-10-25 16:07:04 +08:00
MidAutumnMoon bd8413e8e1
nixos/snowflake-proxy: set proper SystemCallFilter 2022-10-25 15:41:54 +08:00
github-actions[bot] 29e01ddcd1
Merge staging-next into staging 2022-10-25 06:24:30 +00:00
MidAutumnMoon d3a95ce32c
nixos/listmonk: set proper SystemCallFilter 2022-10-25 11:55:18 +08:00
MidAutumnMoon ba8041fc2b
nixos/croc: set proper SystemCallFilter 2022-10-25 11:51:40 +08:00
Andrew Kvalheim 545b74f075 brscan4-etc-files: rename name to pname&version 
re #103997
 2022-10-25 02:38:39 +02:00
github-actions[bot] c80ab7a746
Merge staging-next into staging 2022-10-25 00:05:26 +00:00
Michael Weiss f8fae712ca
Merge pull request #197611 from primeos/nixos-tests-chromium 
nixos/tests/chromium: Fixes for Google Chrome and M107+
 2022-10-25 00:07:06 +02:00
Martin Weinelt 2b85fb12da nixos/release: add acme to tested set 
The ACME module has long been an important part of every nixos server
deployment and we should therefore make sure the tests are working as
expected before allowing a channel bump to happen.

Related: #197443
 2022-10-25 07:22:27 +10:00
Martin Weinelt fcf2d05d81 nixos/acme: Relax syscall filter after go upgrade 
With Go 1.19 calls to setrlimit are required for lego to run.

While we could allow setrlimit alone, I think it is not unreasonable to
allow @resources in general.

Closes: #197513
 2022-10-25 07:22:27 +10:00
Sandro 64f3daf6d5
Merge pull request #197459 from SuperSandro2000/changedetection-typo 2022-10-24 23:07:26 +02:00
Michael Weiss 5389fbe783
nixos/tests/chromium: Disable a failing test for M107+ 
I haven't had time to look into this yet but it looks like opening chrome://gpu
doesn't work anymore without proper GPU rendering (we use software rendering
due to the virtualisation).
According to the console output the new window never opens (at least with
Google Chrome - I couldn't test it with Chromium yet due to the failing builds
for M107 and M108):
```
(finished: sending keys ‘chrome://gpu
‘, in 0.14 seconds)
machine: waiting for a window to appear
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
(finished: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d', in 0.05 seconds)
machine # Error: eglChooseConfig returned zero configs
machine #     at Create (../../third_party/dawn/src/dawn/native/opengl/ContextEGL.cpp:53)
machine #
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
machine # WARNING: lavapipe is not a conformant vulkan implementation, testing use only.
(finished: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d', in 0.06 seconds)
machine: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d'
(finished: must succeed: xwininfo -root -tree | sed 's/.*0x[0-9a-f]* \"\([^\"]*\)\".*/\1/; t; d', in 0.09 seconds)
[...]
```
 2022-10-24 21:33:14 +02:00
Michael Weiss 0fa4d17725
nixos/tests/chromium: Fix the tests for Google Chrome 
The meta attribute "timeout" is only set for Chromium (might still be required
due to the long build duration). The Google Chrome tests were failing with:

    error: attribute 'timeout' missing

According to nixos/lib/testing/meta.nix "null values are filtered out by
`meta`" so `timeout = chromiumPkg.meta.timeout or null` might be fine as
well.
 2022-10-24 21:33:11 +02:00
github-actions[bot] 38a8b47046
Merge staging-next into staging 2022-10-24 18:06:30 +00:00
Timothy DeHerrera 3266f35fcd
Merge pull request #197503 from eigengrau/zsh-fpath-prefer-profiles 
nixos/zsh: prefer added completions over completions shipped with Zsh
 2022-10-24 11:35:29 -06:00
Bernardo Meurer 8a7f3f3271
Merge pull request #197585 from KFearsoff/fix-broken-grafana-configs 2022-10-24 18:28:42 +02:00
KFears f3cb29a5b8 nixos/grafana: fix issues with rfc42 refactoring 2022-10-24 19:31:50 +04:00
Guillaume Girol e06cab26e3
Merge pull request #196617 from oxalica/fix/btrbk-options 
nixos/btrbk: fix ordering of subsections and refactor
 2022-10-24 14:33:38 +00:00
MidAutumnMoon 0ce08acdce nixos/navidrome: set proper SystemCallFilter 2022-10-24 22:21:59 +10:00
MidAutumnMoon 7415970a3e nixos/endlessh-go: set proper SystemCallFilter 2022-10-24 22:21:02 +10:00
MidAutumnMoon db029623b7 nixos/dnscrypt-proxy2: properly set SystemCallFilter 2022-10-24 22:20:42 +10:00
MidAutumnMoon 19b481fbc6
nixos/galene: set proper SystemCallFilter 2022-10-24 20:19:12 +08:00
MidAutumnMoon e04013af1a nixos/gitea: set proper SystemCallFilter 
remove trailing whitespace
 2022-10-24 22:18:42 +10:00
github-actions[bot] c5b73dc964
Merge staging-next into staging 2022-10-24 12:01:55 +00:00
Robert Hensing 7ea35fae3e
Merge pull request #197406 from bjornfor/add-nfs4-to-fstab-skip-list 
nixos/filesystems: add nfs4 to fsToSkipCheck
 2022-10-24 13:10:46 +02:00
Michele Guerini Rocco bbdc6e34d1
Merge pull request #197069 from rnhmjoj/pr-minimal 
nixos/profiles/minimal: don't install freedesktop files
 2022-10-24 10:57:40 +02:00
M. A 8ac339533f nixos/snipe-it: Add missing upload directories 
Resolves #187179
 2022-10-24 08:20:30 +00:00
Sebastian Reuße 8dad5a2239 nixos/zsh: prefer added completions over completions shipped with Zsh 
Zsh ships some rudimentary completions for programs where upstream also ships
their own completions (e.g., curl). So as not to shadow those completions, we
need to prepend to the fpath instead of appending.

Fixes #197502
 2022-10-24 09:27:19 +02:00
Skyler Grey acf1d993b9
release-notes: Move PolyMC from "highlights" 
- Previously PolyMC's removal was counted as a release highlight
- It probably shouldn't be, as it's more a notable change rather than a
  highlight
- Thanks @Ma27 for noticing this
 2022-10-24 08:07:51 +01:00
oxalica 50eb816d29 nixos/btrbk: fix ordering of subsections and refactor 2022-10-24 08:52:25 +08:00
Sandro Jäckel f24c4d8a28
nixos/changedetection-io: fix typo 2022-10-24 02:06:49 +02:00
github-actions[bot] d771a50d9e
Merge staging-next into staging 2022-10-24 00:05:14 +00:00
Tom Fitzhenry 98d2540aef nixosTests.dnscrypt-proxy2: Check that a UDP port is being listened on 
Motivation: Ensure this test catches startup failures such as
https://github.com/NixOS/nixpkgs/issues/197443
 2022-10-24 10:11:02 +11:00
schnusch 72ee279ab4 nixos/vdirsyncer: init 
inspired by borgbackup
 2022-10-23 23:23:13 +02:00
ajs124 16d6140878
Merge pull request #197386 from Ma27/nextcloud25 
nextcloud25: init
 2022-10-23 23:05:17 +02:00
Bjørn Forsman 3ec90ef87f nixos/filesystems: add nfs4 to fsToSkipCheck 
This change fixes this system journal warning for
`fileSystems.<name>.fsType = "nfs4"` configurations:

  systemd-fstab-generator[714]: Checking was requested for "192.168.0.6:/data", but it is not a device.
 2022-10-23 20:08:08 +02:00
github-actions[bot] f4c71b2f8c
Merge staging-next into staging 2022-10-23 18:02:19 +00:00
Raito Bezarius 9b7dc6cb1c services/garage: init 2022-10-23 18:54:18 +02:00
Maximilian Bosch 40b7f52b8f
nextcloud25: init 2022-10-23 17:20:49 +02:00
Sandro eebe7c8588
Merge pull request #197309 from qowoz/hound 2022-10-23 17:16:23 +02:00
lucasew d31cf8ca0c nixos/uvesafb: init 
Signed-off-by: lucasew <lucas59356@gmail.com>
 2022-10-23 11:47:11 -03:00
Christian Kögler c4e0d766b7 nixos/unitGenerator: fix generation for nspawn files 2022-10-23 15:57:55 +02:00
Martin Weinelt ccbc7eb29e
Merge pull request #197302 from MidAutumnMoon/miniflux-service-fix 2022-10-23 14:58:05 +02:00
Jonas Heinrich 65dd4df8a2
Merge pull request #197172 from jkarlson/dokuwiki 
nixos/dokuwiki: Use stateDir everywhere
 2022-10-23 14:51:52 +02:00
MidAutumnMoon 8b4b334a66
nixos/miniflux: fix startup failure caused by improper SystemCallFilter 2022-10-23 20:28:43 +08:00
github-actions[bot] 1a1df3b37d
Merge staging-next into staging 2022-10-23 12:01:47 +00:00
Linus Heckemann 21bc28110d
Merge pull request #192299 from Lassulus/bring-back-q3 
nixos-tests: bring back quake3 test
 2022-10-23 13:53:54 +02:00
Maximilian Bosch f9afc634e3
Merge pull request #191768 from KFearsoff/grafana-rfc42 
nixos/grafana: refactor for RFC42
 2022-10-23 13:28:25 +02:00
Maximilian Bosch dfdff2b946
nixos/tests/grafana: remove superfluous args@ 2022-10-23 13:08:45 +02:00
Julien Malka b54ae5a868 nixos/uptime-kuma: init module 2022-10-23 12:44:16 +02:00
github-actions[bot] 683aa50df6
Merge staging-next into staging 2022-10-23 06:08:06 +00:00
Linus Heckemann 79ec5f2d2b
Merge pull request #161124 from Atemu/nixos/nix-skip-all-checks 
nixos/nix-daemon: make checkConfig fully disable nix.conf validation
 2022-10-23 07:55:06 +02:00
zowoq 15c32d0645 nixosTests.lxd: increase diskSize to 4096 2022-10-23 15:10:13 +10:00
zowoq ee5951363a nixosTests.lxd: use stdenv.hostPlatform.system 
`pkgs.system` is an alias
 2022-10-23 15:10:13 +10:00
zowoq a231a1f91c nixosTests.lxd-image-server: use stdenv.hostPlatform.system 
`pkgs.system` is an alias
 2022-10-23 15:10:13 +10:00
zowoq 217bf31c03 hound, nixos/hound: deduplicate runtime deps 2022-10-23 12:50:24 +10:00
Sandro 6ffd08e152
Merge pull request #197144 from SuperSandro2000/changedetection-io-network 2022-10-23 03:27:52 +02:00
Sandro Jäckel 30df44aac2
nixos/changedetection-io: fix typos 2022-10-23 01:45:37 +02:00
Tobias Stenzel 8111e4f113 nixos/pam: fix pam_tty_audit config 
Escape the line breaks to render a valid config.
Module arguments have to be at the same line or line endings have to be
escaped with a backslash.
 2022-10-22 23:20:09 +02:00
KFears 5ea8f47014 nixos/grafana: write more efficient tests 2022-10-22 23:56:15 +04:00
KFears 9f963f36e5 nixos/grafana: refactor settings for RFC42 2022-10-22 23:56:14 +04:00
KFears c7cd659710 nixos/grafana: fix markdown docs 2022-10-22 23:54:32 +04:00
KFears 7908ef062f nixos/grafana: add alerting 2022-10-22 23:54:32 +04:00
KFears 34c2ea6750 nixos/grafana: deprecate notifiers 2022-10-22 23:54:31 +04:00
KFears 0852dc859e nixos/grafana: refactor datasources for RFC42 
This commit refactors `services.grafana.provision.datasources` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-22 23:53:24 +04:00
Azat Bahawi 76ccbea152
nixos/endlessh: init module 2022-10-22 16:07:52 +03:00
github-actions[bot] d079720429
Merge staging-next into staging 2022-10-22 12:01:58 +00:00
github-actions[bot] 71e4896d63
Merge master into staging-next 2022-10-22 12:01:25 +00:00
Arnout Engelen 5784f69a46
Merge pull request #158967 from mschwaig/sd-image-determinism 
sd-image: make firmware partition reproducible, sd-image, dvd-image: get rid of faketime related warnings
 2022-10-22 13:58:22 +02:00
happysalada fdfdc5df21 caddy: module: rmem_max default 2022-10-22 07:55:53 -04:00
markuskowa 79638604bb
Merge pull request #189703 from ck3d/remove-incomplient-nspawn-options 
nixos/nspawn: Remove not compliant options
 2022-10-22 12:19:49 +02:00
Martin Schwaighofer 0c67f190b1 sd-image: remove unnecessary subshell 
replace the subshell surrounding this block with cd before and after

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-22 12:11:30 +02:00
Martin Schwaighofer bacef6bb09 dvd-image: replace faketime with --invariant for mkfs.vfat 2022-10-22 12:11:30 +02:00
Martin Schwaighofer a1d6fd3702 sd-image: replace faketime with --invariant for mkfs.vfat 
This is done for sd-images only here, but should probably also be done
for dvd-images.

The --invariant arg should be a better way of making mkfs.vfat deterministic.
The previous version of invoking faketime was building fine and reproducible
when I was compiling an sdimage for aarch64 under emulation.
It was however still logging errors:
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
ERROR: ld.so: object '/nix/store/1c2cp2709kmvby8ql2n9946v7l52nn50-libfaketime-0.9.9/lib/libfaketime.so.1' from LD_PRELOAD cannot be preloaded (cannot open shared object file): ignored.
The logged errors were presumably inaccurate somehow as calling
faketime was required for reproducibility, even though the log makes it
looks like it failed.
 2022-10-22 12:11:30 +02:00
Martin Schwaighofer f6ee247a1f sd-image: make firmware partition deterministic 
Based on how it works for the EFI partition of an iso-image at
nixos/modules/installer/cd-dvd/iso-image.nix.
 2022-10-22 12:11:30 +02:00
Emil Karlson 082bc22205 nixos/dokuwiki: Use stateDir everywhere 
Current module does not use non-default stateDir everywhere.

Statedir has a consistent default, use the cfg.stateDir everywhere
unconditionally.
 2022-10-22 09:02:23 +03:00
Sandro Jäckel 17f2c5ba71
nixos/changedetection-io: fix container having no network 2022-10-22 02:14:41 +02:00
github-actions[bot] 9af095c466
Merge staging-next into staging 2022-10-22 00:05:07 +00:00
github-actions[bot] c8a9826fe2
Merge master into staging-next 2022-10-22 00:04:37 +00:00
Sandro 0d1e0a9f80
Merge pull request #191061 from Izorkin/update-peertube-nginx 2022-10-22 00:02:11 +02:00
Sandro 67e4972c5d
Merge pull request #195745 from virusdave/patch-1 2022-10-22 00:00:52 +02:00
Sandro d4f4e5f099
Merge pull request #189718 from rnhmjoj/pr-pcsc-polkit 2022-10-21 23:16:21 +02:00
ajs124 3dd1098f45
Merge pull request #195567 from helsinki-systems/feat/jenkins-jdk17 
nixos/jenkins: jdk11 -> jdk17
 2022-10-21 22:59:03 +02:00
Martin Weinelt 80fc469031 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-21 22:33:42 +02:00
Luflosi a255c43f44
nixos/kubo: convert to RFC42-style settings 2022-10-21 20:54:00 +02:00
Elis Hirwing 844715a8b9
Merge pull request #196819 from Stunkymonkey/freshrss-api-fix 
freshrss: fix greader-api
 2022-10-21 19:56:55 +02:00
Jonas Heinrich c54a28030f nixos/httpd: Make option adminAddr optional 2022-10-21 09:12:25 -04:00
rnhmjoj 3bb69836cb
nixos/profiles/minimal: don't install freedesktop files 
This saves about 25M from the closure size of:

$ nix build -f nixos system --arg configuration '
  { imports = [ ./nixos/modules/profiles/minimal.nix ];
    fileSystems."/".label="root";
    boot.loader.grub.device = "nodev";
  }'
 2022-10-21 14:54:38 +02:00
KFears 89e30315e0 nixos/grafana: refactor dashboards for RFC42 
This commit refactors `services.grafana.provision.dashboards` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-21 16:42:30 +04:00
rnhmjoj c90b6a859b
nixos/pcscd: allow use without polkit 
The polkit support in pcsclite is entirely optional but package enables
it unconditionally and this breaks connecting to the pcscd daemon on
systems without polkit.

The fix is making this configurable and automatically disabling
`polkitSupport` when the polkit service is disabled.
 2022-10-21 13:06:40 +02:00
Anderson Torres 77b67a2524
Merge pull request #196862 from atorres1985-contrib/hypr 
hypr: init at unstable-2022-05-25
 2022-10-21 08:00:20 -03:00
Florian Klink 690ccd9c4a
Merge pull request #196917 from flokli/nsncd 
nixos/nscd: add option to use nsncd, init nsncd
 2022-10-21 11:22:17 +02:00
Jan Tojnar c789af6065 gnome._gdkPixbufCacheBuilder_DO_NOT_USE: Extract from nixos/gdk-pixbuf 
Unlike previously, we now fail loudly when a package not containing a gdk-pixbuf modules is passed.
 2022-10-21 10:06:24 +02:00
Florian Klink a86e080fa4 nixosTests.nscd: add nsncd specialisation 
This shows that nsncd successfully passes all the tests that we run
against glibc-nscd.
 2022-10-21 09:37:18 +02:00
Florian Klink e7bc3e7504 nixosTests.nscd: dump nscd socket info with sockdump 
This dumps what's sent over the nscd socket to the console output, which
allows debugging.
 2022-10-21 09:37:18 +02:00
Florian Klink aee40c2d8a nixos/nscd: add enableNsncd option 
When set, this switches from using nscd to using nsncd.

It's a protocol-compatible, non-caching and much less flaky alternative.
 2022-10-21 09:37:18 +02:00
AndersonTorres af3779f819 nixos/hypr: add module 2022-10-21 00:01:43 -03:00
github-actions[bot] c434165354
Merge master into staging-next 2022-10-21 00:05:50 +00:00
Guillaume Girol 91a3819bad
Merge pull request #177273 from dali99/escape-systemd 
Make escapeSystemdPath implement the correct systemd escaping algorithm
 2022-10-20 19:15:31 +00:00
Sandro c9719e7fd6
Merge pull request #189269 from Tom-Hubrecht/ntfy-sh 2022-10-20 20:50:34 +02:00
Sandro 89e49d87d3
Merge pull request #196488 from SuperSandro2000/changedetectionio 2022-10-20 20:25:36 +02:00
Daniel Olsen 3251123a77 nixos/lib.escapeSystemdPath: Implement the correct algorithm for escaping names in systemd units 
Co-authored-by: ajs124 <git@ajs124.de>
 2022-10-20 20:12:15 +02:00
github-actions[bot] 80317024cf
Merge master into staging-next 2022-10-20 18:10:43 +00:00
Dave Nicponski 1a73877305 Tweak nginx config for Let's Encrypt ACME challenges 
Currently, this is using a "URI prefix match", but per nginx docs,

```
[...] the location with the longest matching prefix is selected and remembered. Then regular expressions are checked, in the order of their appearance in the configuration file. The search of regular expressions terminates on the first match, and the corresponding configuration is used. If no match with a regular expression is found then the configuration of the prefix location remembered earlier is used.
```
which means a config like this (from wordpress service) will override that
```
locations = {
          "~ /\\." = {
            priority = 800;
            extraConfig = "deny all;";
          };
};
```
😱
Luckily, from nginx docs:
```
If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
```

Whew!
 2022-10-20 10:59:28 -04:00
Bernardo Meurer d473597e33
Merge pull request #196904 from hercules-ci/nixos-nixpkgs-only-error-when-used 2022-10-20 09:10:29 -04:00
github-actions[bot] ee0190d830
Merge master into staging-next 2022-10-20 12:01:25 +00:00
Izorkin abdcfec3a0
nixos/peertube: add nginx configuration 2022-10-20 14:49:51 +03:00
Florian Klink 7987b41d44 nixos/nscd: nixpkgs-fmt 2022-10-20 13:15:16 +02:00
Florian Klink a3b07e3693 nixosTests.nscd: update subtest name and comment 
test_host_lookups can be used against different daemons speaking the
nscd protocol.
 2022-10-20 13:15:16 +02:00
Robert Hensing 1e9864c85e nixos/nixpkgs: Only error when nixpkgs options are actually used 2022-10-20 11:19:20 +02:00
Janne Heß 24167c94f0
Merge pull request #196337 from SuperSandro2000/update-users-groups 
nixos/update-users-groups.pl: sort json file for better reproducibility
 2022-10-20 11:11:49 +02:00
LuoChen b9d9daf749 synergy: fix services.synergy.server.tls.cert (#196867) 2022-10-20 12:34:45 +08:00
github-actions[bot] aac580f88f
Merge master into staging-next 2022-10-20 00:05:13 +00:00
Felix Bühler 27e5ca478b
Merge pull request #196140 from uninsane/pr/freshrss-patchShebangs 
freshrss: patchShebangs instead of specifying interpreter at use site
 2022-10-20 00:03:13 +02:00
Sandro ab6c14bf9a
Merge pull request #196624 from Minion3665/replace-polymc-with-prismlauncher 2022-10-19 23:36:35 +02:00
Felix Buehler fe9fb739a9 freshrss: fix greader-api 2022-10-19 23:34:26 +02:00
Sandro Jäckel c9aab9ba97
nixos/changedetection-io: init 2022-10-19 21:33:31 +02:00
github-actions[bot] 958cbc7d51
Merge master into staging-next 2022-10-19 18:09:25 +00:00
Skyler Grey 49c81f001c
release-notes: state that PolyMC has been replaced 2022-10-19 19:06:55 +01:00
Skyler Grey fcbbc69f13
release-notes-2205: suggest using prismlauncher 
- Previously PolyMC was the suggested replacement for MultiMC
- As PolyMC is marked as insecure and prismlauncher is a replacement,
  this commit suggests using it instead
 2022-10-19 19:06:54 +01:00
Domen Kožar d2cfe468f8
Merge pull request #196728 from veehaitch/github-runner-new-pats 
nixos/github-runner: support fine-grained personal access tokens
 2022-10-19 14:40:23 +02:00
Martin Weinelt 5d2330ddb5
Merge pull request #195760 from jmbaur/prometheus-kea-exporter 2022-10-19 14:02:15 +02:00
github-actions[bot] bbaff9a043
Merge master into staging-next 2022-10-19 12:01:22 +00:00
Vincent Haupert ea8cf2e486 nixos/github-runners: support fine-grained personal access tokens 
Add support for GitHub's new fine-grained personal access tokens [1]. As
opposed to the classic PATs, those start with `github_pat_` instead of
`ghp_`.

Make sure to use a token which has read and write access to the
"Administration" resource group [2] to allow for registrations of new
runners.

[1] https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/

[2] https://docs.github.com/en/rest/overview/permissions-required-for-github-apps#administration
 2022-10-19 13:50:34 +02:00
Domen Kožar ff27dc3a09
Merge pull request #176691 from codedownio/multiple-github-runners 
GitHub runners: configurable user, environment, and service overrides + multiple runners
 2022-10-19 13:38:23 +02:00
Tom McLaughlin c2cc9aeafd Use config name by default, falling back to attr name 2022-10-19 03:33:30 -07:00
Jan Tojnar 457f28f6f8 Merge branch 'master' into staging-next 
; Conflicts:
;	pkgs/development/tools/codespell/default.nix

codespell 2.2.2 switched to pyproject & setuptools_scm:
https://github.com/codespell-project/codespell/pull/2523
 2022-10-19 05:24:28 +02:00
Tom Hubrecht bbf5ba11b4
nixos/ntfy-sh: init 2022-10-19 02:20:16 +02:00
Sandro e188e93b8f
Merge pull request #196477 from MatthewCroughan/mc/stateless-cups 2022-10-18 23:22:12 +02:00
Atemu bf6d84958d rl-2211: document nix.checkConfig option changes 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:43:52 +02:00
Atemu ef70bdd10f nixos/nix-daemon: make checkConfig fully disable nix.conf validation 
A new option checkAllErrors is introduced which implements the old checkConfig
toggle behaviour

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:42:31 +02:00
Sandro 2917c9a67e
Merge pull request #195205 from NULLx76/vmagent 2022-10-18 21:16:10 +02:00
Sandro 7307c3ae6c
Merge pull request #191922 from NukaDuka/karma 2022-10-18 21:10:04 +02:00
digital f4ccaa51e0 nixos/containers: support nixpkgs.hostPlatform 
Use hostPlatform if both the host and the containers nixpkgs supports
hostPlatform, otherwise fall back to localSystem. This preseves backwards
compatibility.
 2022-10-18 19:15:26 +02:00
Robert Hensing 314959198f
Merge pull request #196447 from Cynerd/oci-container-docker 
nixos/modules/virtualisation: fix oci-containers with docker
 2022-10-18 15:06:18 +02:00
Robert Hensing 14a822f72a
Merge pull request #196281 from hercules-ci/restore-nixos-test-dx 
nixos: Restore test DX
 2022-10-18 11:38:37 +02:00
Robert Hensing 6259b29f29
Merge pull request #194035 from Ma27/show-option-quoting 
lib/options/showOption: fix quoting of attr-names that are not identifiers
 2022-10-18 11:31:54 +02:00
matthewcroughan a99ab1fbc1 nixos/printing: add services.printing.stateless option 
This will remove all state directories related to CUPS on startup, which
is particularly useful for guaranteeing that printer discovery works
more reliably on some networks, since CUPS will no longer be able to
store state that effects the next run of the service, such as old
printer names and mDNS information.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-17 22:59:24 +01:00
Jean-François Roche dc529302fe
nixos: add cachix watch-store service 
Self hosted CI push built packages asynchronously to cachix using a service.

Based on @Mic92 [code](https://github.com/cachix/cachix/issues/370#issuecomment-817081937)
 2022-10-17 18:24:03 +02:00
Karel Kočí 76e1e908c1
nixos/modules/virtualisation: fix oci-containers with docker 
The empty attribute set is invalidly provided as service config and
results in evaluation error.
 2022-10-17 16:11:56 +02:00
github-actions[bot] 969a1796ef
Merge master into staging-next 2022-10-17 12:01:24 +00:00
Vladimír Čunát 8b880dd5d1
Merge #195505: nixosTests: avoid some broken ones, fix some others 2022-10-17 09:09:53 +02:00
Tom McLaughlin 5221e7af04 Add comments to explain about the name defaults 2022-10-17 00:04:52 -07:00
Tom McLaughlin 2c099d1a14 Set runner name to attr name for github-runners.${name} 2022-10-17 00:01:04 -07:00
github-actions[bot] ab4849492d
Merge master into staging-next 2022-10-17 06:24:16 +00:00
Sarah Brofeldt 85d3faa877
Merge pull request #196218 from qowoz/k8s 
kubernetes: drop e2e tests
 2022-10-17 06:33:01 +02:00
Sandro Jäckel 62cace13fe nixos/update-users-groups.pl: sort json file for better reproducibility 2022-10-17 02:37:23 +02:00
github-actions[bot] 18a6423900
Merge master into staging-next 2022-10-17 00:04:21 +00:00
Yarny0 cce8f0a3e3
tsm-client: 8.1.15.1 -> 8.1.15.2, pin openssl version (#193556) 2022-10-17 01:31:05 +02:00
Christian Kögler 46431c0819
Merge pull request #196286 from NickCao/nixos-iwd 
nixos/iwd: allow setting iwd package
 2022-10-16 21:02:05 +02:00
Christian Kögler 6208451903
Merge pull request #195380 from pacien/nixos-neovim-managed-config-rc-note 
nixos/neovim: add note about not loading init.vim
 2022-10-16 21:00:00 +02:00
Christian Kögler daba20d006
Merge pull request #196301 from bobvanderlinden/pr-nixos-dwm-package 
nixos/dwm: add package option
 2022-10-16 20:47:01 +02:00
Bob van der Linden 0d07870dc5
nixos/dwm: add package option 2022-10-16 20:34:28 +02:00
Maximilian Bosch a914b9460d
Merge pull request #193075 from Ma27/nextcloud-pkg-fix 
fetchNextcloudApp: rewrite with fetchzip & applyPatches
 2022-10-16 20:07:57 +02:00
Maximilian Bosch a2134c24a4
Merge pull request #195808 from mayflower/fix-wordpress-fonts-dir 
nixos/wordpress: make fonts directory writable
 2022-10-16 20:05:09 +02:00
github-actions[bot] f52955a521
Merge master into staging-next 2022-10-16 18:01:42 +00:00
Maximilian Bosch b55eefa3bd
Merge pull request #195703 from Ma27/bump-grafana 
grafana: 9.1.7 -> 9.2.0
 2022-10-16 19:33:14 +02:00
Nick Cao 46982f4194
nixos/iwd: allow setting iwd package 2022-10-16 23:12:26 +08:00
Robert Hensing 1d9b913088 nixos/lib/testing: Delay nodes.machine.~config~ migration 
Provide a window during which both solutions are valid without
warnings, in order to fight warning fatigue, and not to push 3rd
party repo maintainers to add unnecessary compat code.
 2022-10-16 16:30:21 +02:00
Robert Hensing 611f247810 nixos/tests: Generalize nix-build file.nix hack to testing-python.nix 2022-10-16 16:30:20 +02:00
github-actions[bot] e648107a22
Merge master into staging-next 2022-10-16 06:06:19 +00:00
zowoq 6f983050bb nixos/kubernetes: use package from config 2022-10-16 12:38:50 +10:00
zowoq d58290cffa kubernetes: drop e2e tests 
these tests never worked
 2022-10-16 12:38:21 +10:00
Johan Thomsen 38ea9bc083 nixos/manual/kubernetes: re-enabling of insecure ports is no longer possible 2022-10-16 10:13:05 +10:00
Johan Thomsen 6ec7298ead nixos/kubernetes: modularized tests 2022-10-16 10:13:05 +10:00
Johan Thomsen ae712870af nixos/kubernetes: drop obsolete options/cmdline flags 2022-10-16 10:13:05 +10:00
Martin Weinelt 51fcbf5bb7 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-16 00:18:40 +02:00
Florian Klink 80e4946f38
Merge pull request #177406 from davidkna/podman-gen 
nixos/virtualisation.oci-containers: follow podman-generated systemd units more closely
 2022-10-15 22:10:55 +02:00
Alexander Bantyev 6babc092ca
Merge pull request #196185 from mkaito/mkaito/serokell-team 
maintainers: remove mkaito from serokell team
 2022-10-15 23:44:14 +04:00
Dennis Gosnell e9305a371f Merge remote-tracking branch 'origin/master' into haskell-updates 2022-10-15 11:58:34 -04:00
Dennis Gosnell 1445c56426 termonad: remove top-level termonad-with-packages alias 2022-10-15 11:49:02 -04:00
Jörg Thalheim 8324b6efd3
Merge pull request #196147 from Mic92/systemd-boot-delete-old-specialisation 
Systemd boot delete old specialisation
 2022-10-15 17:36:28 +02:00
Jörg Thalheim 42c9492829 nixos/systemd-boot: decrease catch scope for ValueError 2022-10-15 16:41:38 +02:00
Azat Bahawi e04579e7cd nixos/please: init module 
Co-authored-by: Cole Helbling <cole.e.helbling@outlook.com>
 2022-10-15 07:05:10 -07:00
Robert Scott 4f54ef201d gocd-server: 19.3.0 -> 22.2.0 2022-10-15 13:34:50 +01:00
rnhmjoj 8a45db4fb9
nixosTests.custom-ca.midori: fix 2022-10-15 14:05:59 +02:00
Francesco Gazzetta b6f2a1382d
nixosTests.domination: fix the test 2022-10-15 14:05:47 +02:00
Vladimír Čunát 19d127f8c8
nixosTests.cloud-init: broken = true; 
https://hydra.nixos.org/job/nixos/trunk-combined/nixos.tests.cloud-init.x86_64-linux/all
 2022-10-15 14:05:47 +02:00
Vladimír Čunát 3371c7f004
nixosTests.systemd-cryptenroll: broken = true; 
https://hydra.nixos.org/job/nixos/trunk-combined/nixos.tests.systemd-cryptenroll.x86_64-linux/all
 2022-10-15 14:05:47 +02:00
Vladimír Čunát 92cbe74537
nixosTests.terminal-emulators.contour: drop 
https://hydra.nixos.org/job/nixos/trunk-combined/nixos.tests.terminal-emulators.contour.x86_64-linux/all
 2022-10-15 14:03:25 +02:00
Vladimír Čunát 823242c42d
nixosTests.terminal-emulators.wezterm: drop 
https://hydra.nixos.org/job/nixos/trunk-combined/nixos.tests.terminal-emulators.wezterm.x86_64-linux/all
 2022-10-15 14:03:24 +02:00
Vladimír Čunát ad2f58729a
nixosTests.mjolnir: broken = true; 
https://hydra.nixos.org/job/nixos/trunk-combined/nixos.tests.mjolnir.x86_64-linux/all
 2022-10-15 14:03:24 +02:00
Vladimír Čunát 00220b4245
nixosTests.wine.wineWowPackages-wayland: drop 
https://hydra.nixos.org/job/nixos/trunk-combined/nixos.tests.wine.wineWowPackages-wayland.x86_64-linux/all
 2022-10-15 14:03:24 +02:00
Vladimír Čunát 1e58b84405
Merge #195650: nixosTests.vscodium: fix .wayland test 
... by allowing more expressions to satisfy save file dialog.
 2022-10-15 13:39:15 +02:00
github-actions[bot] 4f07e7f326
Merge master into staging-next 2022-10-15 06:07:54 +00:00
zowoq bb884d6a1e nixosTests.traefik: enable on aarch64-linux 2022-10-15 14:29:46 +10:00
zowoq ff30f8a429 nixosTests.podman*: enable on aarch64-linux 2022-10-15 14:29:46 +10:00
zowoq d50ee203f7 nixosTests.oci-containers: enable on aarch64-linux 2022-10-15 14:29:46 +10:00
zowoq 0a8746ca85 nixosTests.{docker,docker-rootless}: enable on aarch64-linux 2022-10-15 14:29:46 +10:00
zowoq 9286419109 nixosTests.cri-o: enable on aarch64-linux 2022-10-15 14:29:46 +10:00
zowoq 8b4bbd6919 nixosTests.cfssl: enable on aarch64-linux 2022-10-15 14:29:46 +10:00
github-actions[bot] b4b0b7d41b
Merge master into haskell-updates 2022-10-15 00:20:09 +00:00
github-actions[bot] 886633ba43
Merge master into staging-next 2022-10-15 00:04:00 +00:00
Sandro bdca71e9c0
Merge pull request #191924 from SuperSandro2000/ddclient-daemon 2022-10-14 23:52:14 +02:00
Benjamin Smith e55474ecc3 requested review changes, and kafka 3.3 2022-10-14 12:52:05 -07:00
github-actions 8231febc5d Apache Kafka upgrade to 3.x 2022-10-14 12:47:06 -07:00
github-actions[bot] 14fe809072
Merge master into staging-next 2022-10-14 18:02:25 +00:00
Bernardo Meurer 71f2836fba
Merge pull request #184770 from NickCao/kernel-keyring 2022-10-14 09:46:01 -03:00
github-actions[bot] cc090d2b94
Merge master into staging-next 2022-10-14 12:01:35 +00:00
Ninjatrappeur 8e3b02dc7d
Merge pull request #194916 from flokli/nixos-test-nscd 2022-10-14 11:54:37 +02:00
Florian Klink dea7647814 nixosTests.nscd: drop _gateway lookups 
This has shown to be flaky in the VM test, at least when running on
the aarch64 ofborg builder(s).

I assume it's some flakyness in systemd-networkd not being fully up, or
at least not up to the point that it properly replies to the _gateway
request.

This part of the test is supposed to test external (non-glibc) nss
module lookup for the host database works, which is already sufficiently
covered in the previous checks (for *.localhost). Drop these redundant
checks. We're not integration-testing networkd here.
 2022-10-14 11:26:48 +02:00
Florian Klink f08b8d6cfa nixosTests.nscd: test unscd as well 
This shows that external nss module resolution is broken with unscd.
 2022-10-14 10:07:11 +02:00
github-actions[bot] 283841a1ce
Merge master into staging-next 2022-10-14 06:20:50 +00:00
colin 9443d83e6f freshrss: patchShebangs instead of specifying interpreter at use site 
this makes it easier for one to manually administer freshrss.
for example, i can import OPML from the CLI like:

```
$ nix build .#freshrss
$ freshrss FRESHRSS_DATA_PATH=/var/lib/freshrss ./result/cli/import-for-user.php --user admin --file my-opml.opml
```

whereas previously i would have needed to include
`environment.systemPackages = [ php ];` in my system for that to work.
 2022-10-13 21:46:04 -07:00
Timothy DeHerrera 912a3deedc
Merge pull request #110197 from milahu/patch-1 
firewall: move rpfilter to mangle.PREROUTING to fix conntrack
 2022-10-13 21:04:40 -06:00
Tom McLaughlin fc8fdb03a0 Try simpler github-runner.nix 2022-10-13 19:54:36 -06:00
Tom McLaughlin 69d9538b34
Update nixos/modules/services/continuous-integration/github-runners.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:53:25 -06:00
Tom McLaughlin cf1b952988
Update nixos/modules/services/continuous-integration/github-runner.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:49:02 -06:00
github-actions[bot] 9602cb4aa1
Merge master into haskell-updates 2022-10-14 00:21:48 +00:00
Martin Weinelt c728598b84 Merge remote-tracking branch 'origin/staging-next' into staging 2022-10-13 23:29:04 +02:00
Florian Klink d90ffb83c2
Merge pull request #195154 from veehaitch/networkd-ipv6-pd 
nixos/networkd: add/adopt IPv6 options
 2022-10-13 23:00:26 +02:00
Maximilian Bosch 5afde0064a
nixos/wordpress: make fonts directory writable 
Needed to host e.g. google fonts locally.
 2022-10-13 17:30:22 +02:00
github-actions[bot] 62bcf0ac62
Merge staging-next into staging 2022-10-13 12:02:06 +00:00
victor 28d2fcc400 vmagent: init at 1.82.0 2022-10-13 13:32:47 +02:00
Maximilian Bosch 0df6c52026
nixos/grafana: ensure that declarative prometheus data-sources don't use direct access 
Support for that was permanently dropped in Grafana 9.2.0, see also
f30795b088
 2022-10-13 10:28:29 +02:00
K900 803f180021
Merge pull request #191357 from K900/plasma-beta 
Plasma 5.26.0, KDE Frameworks 5.99
 2022-10-13 10:31:12 +03:00
Vladimír Čunát 00a757ed3f
Merge branch 'master' into staging 2022-10-13 08:27:55 +02:00
Vladimír Čunát 7a94322ed7
Merge #182618: GNOME 42 → 43 2022-10-13 08:14:27 +02:00
Jared Baur 5d79c93d77
nixos/prometheus-kea-exporter: Fix ExecStart arguments 
The current `ExecStart` will not allow for multiple sockets to properly
be passed to the program since the extra newline character is interpreted to
be part of the socket path.
 2022-10-12 20:39:09 -07:00
github-actions[bot] b405702c7f
Merge master into haskell-updates 2022-10-13 00:20:20 +00:00
Artturi e66d2fd89d
Merge pull request #194256 from Artturin/treewides2 2022-10-13 00:08:01 +03:00
Thiago Kenji Okada b87716afc9
Merge pull request #188881 from shadaj/patch-4 
nixos/restic: make it possible to use the existing backup cache for prune/check
 2022-10-12 21:26:00 +01:00
Maximilian Bosch 955e01095a
grafana: 9.1.7 -> 9.2.0 
ChangeLog: https://github.com/grafana/grafana/releases/tag/v9.2.0

Also fixed the test: the default value for the admin email address is
now `admin@localhost`[1].

[1] 39102c6656
 2022-10-12 20:45:15 +02:00
K900 37a64594bd nixos/plasma-bigscreen: enable uinput correctly 
This is required for plasma-remotecontrollers to actually work.
Make sure to also add your user to the `uinput` group.
 2022-10-12 20:28:53 +03:00
Shadaj Laddad dd34f474ed nixos/restic: make it possible to use the existing backup cache for prune/check 
Configures the `--cache-dir` parameter for the prune and check commands run after backing up. For `check`, also adds a `checkOpts` flag to enable using the cache, since that is disabled by default.
 2022-10-12 09:09:27 -07:00
K900 5e62c78f4b nixos/plasma5: add very basic plasma-bigscreen module 2022-10-12 17:15:56 +03:00
Stanisław Pitucha d2afb051ff
Merge pull request #195210 from yorickvP/guake 
guake: 3.6.3 -> 3.9.0
 2022-10-12 22:12:57 +11:00
Patrick Hilhorst 1bb6ca7fe1
nixosTests.vscodium: allow more expressions to satisfy save file dialog 
Previously was not clearing due to OCR glitch, should be more robust now. Also commented out the 'quit', which was also failing.
 2022-10-12 11:38:31 +02:00
Yorick van Pelt 0d6d7a1fc1
release-notes: update release notes about mysql57 drop 2022-10-12 11:02:14 +02:00
Yorick van Pelt a5c9290979
mysql57: drop 
Mysql 5.7 is not EOL yet, but is quite old and fully replaceable
by mysql 8.0 or mariadb.
 2022-10-12 11:02:14 +02:00
Pascal Bach 1ca4c178dd
Merge pull request #195488 from KoviRobi/gitlab-runner-clear-docker-cache 
Gitlab runner clear docker cache
 2022-10-12 07:56:46 +02:00
github-actions[bot] 7e82e2594e
Merge master into haskell-updates 2022-10-12 00:23:04 +00:00
Robert Hensing 129fd1ab27
Merge pull request #194530 from colemickens/stage-1-systemd-luksroot-toString-fix 
nixos: luksroot: toString-ify keyFileSize usage
 2022-10-12 00:00:35 +01:00
Florian Klink 3ff0a8f840
Merge pull request #189676 from zhaofengli/cryptenroll 
systemd: Fix systemd-{cryptenroll,cryptsetup} TPM2 and FIDO2 support (attempt #3)
 2022-10-12 00:56:04 +02:00
Patrick Jackson 4c69843460 nixos/mullvad-vpn: change dependency for the daemon to pkg mullvad 2022-10-11 12:37:49 -07:00
ajs124 18a17d11ff nixos/jenkins: jdk11 -> jdk17 
see https://www.jenkins.io/doc/upgrade-guide/2.361/
we'll need to do this eventually, not sure when the best point in time is
 2022-10-11 21:16:37 +02:00
Sandro 9278ee48fc
Merge pull request #191977 from yurrriq/kops-1.25.0 2022-10-11 20:56:45 +02:00
Vincent Haupert bfed63047d release-notes: mention breaking changes w/r/t systemd-networkd 250 2022-10-11 19:00:49 +02:00
Bobby Rong 35dffb9f93 pantheon.elementary-tasks: Mark as broken 
Does not build with e-d-s 3.45+ / libsoup 3 and porting is likely not easy.
 2022-10-11 18:52:33 +02:00
Jan Tojnar fed9f9420e release-notes: Mention GNOME 43 2022-10-11 18:52:31 +02:00
Jan Tojnar 0e989a5bd9 gnome.nautilus: 43.alpha → 43.beta 
https://gitlab.gnome.org/GNOME/nautilus/-/compare/43.alpha...43.beta

Also change the environment variable name to prevent crashes when running in an old environment.

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:15 +02:00
Jan Tojnar b8e21f065b librsvg: remove installed tests 
Build will start failing with the following error in 2.55.1 due to `/build/librsvg-2.55.1/.libs` ending up in rpath:

    RPATH of binary /nix/store/78k70limslvxs6y98hdirbcixl3car1q-librsvg-2.55.1-installedTests/libexec/installed-tests/RSVG/api contains a forbidden reference to /build/
 2022-10-11 18:52:13 +02:00
Jan Tojnar 50c6895e77 gnome-browser-connector: 10.1 → 42.0 
https://discourse.gnome.org/t/split-and-rename-of-chrome-gnome-shell/11075
815ec9e1af...v42.0

- Renamed and split into a separate repo from the extensions.
- CMake build replaced with Meson (jq also not needed)
- requests Python module not needed since updates are now solely handled by GNOME Shell itself

Also

- Corrected license
- Cleaned up the module
- Replaced PYTHONPATH in a wrapper by Python environment

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:12 +02:00
Martin Weinelt 8a6466ecd3
Merge pull request #195295 from mweinelt/networkd-ia-pd-kea 2022-10-11 15:37:05 +02:00
Martin Weinelt d97e915faf
nixos/tests/chromium: Enable on aarch64-linux 2022-10-11 15:33:42 +02:00
Martin Weinelt 08991fc87a
nixos/release-small: Test uefi cdrom 2022-10-11 15:33:42 +02:00
Martin Weinelt 4b6758f83e
nixos/release-combined: Enable more jobs on aarch64-linux 2022-10-11 15:33:42 +02:00