mirrors/nixpkgs
1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-17 19:21:04 +00:00
Code Issues Wiki Activity
695298 commits 267 branches 124 tags 5.9 GiB
Commit graph

34030 commits

Author SHA1 Message Date
Matthew Croughan 4eb19953b6
node-red: move from nodePackages (#347018) 2024-10-09 16:11:38 +01:00
Franz Pletz 689b9903ac
nixos/tailscale-derper: init (#306533) 2024-10-09 17:05:01 +02:00
Franz Pletz ae4102c9f3
headscale (module and package): 0.22.3 -> 0.23.0 (#340054) 2024-10-09 17:01:18 +02:00
Franz Pletz be6a26cae7
nixos/libvirtd: add startDelay and shutdownTimeout option (#347023) 2024-10-09 16:58:16 +02:00
github-actions[bot] 0b14a71873
Merge master into staging-next 2024-10-09 12:06:03 +00:00
Emery Hemingway 7f63bcba36 nixos/nncp: refactor configuration merging 
The NNCP utilities have poor support for configuration merging so
use jq and hjson-cli instead.
 2024-10-09 09:07:11 +00:00
Bruno Bigras 90f457d197 wakapi: set StateDirectory 
fix #347393
 2024-10-09 02:54:57 -04:00
Michael Hoang b2e9cc6167 qemu-vm: fix case-hack appearing in store image 2024-10-09 16:59:48 +11:00
github-actions[bot] b1bc4ea2b5
Merge master into staging-next 2024-10-09 00:14:24 +00:00
Florian Klink 2ec88eb10b
nixos/systemd: allow running shellcheck on generated systemd scripts (#311394) 2024-10-08 22:24:49 +03:00
Gavin John ab5706b3a5
nixos/programs.immersed-vr: rename to programs.immersed 2024-10-08 11:38:55 -07:00
Felix Buehler 6290926fed nixos/freshrss: fix phpfpm.pool 2024-10-08 20:23:52 +02:00
K900 956f9243c0 Merge remote-tracking branch 'origin/master' into staging-next 2024-10-08 21:15:13 +03:00
Robert Schütz b129e21ffd node-red: move from nodePackages 2024-10-08 08:29:56 -07:00
K900 1e4c95f332
kdePackages: Plasma 6.1.5 -> 6.2 (#341487) 2024-10-08 16:00:53 +03:00
Vladimír Čunát a0c9222e11
Merge branch 'master' into staging-next 
(a bit older master for now, due to a conflict in dhcpcd service)
 2024-10-08 14:59:47 +02:00
K900 bf21badcac nixos/plasma6: adjust for portal config changes 2024-10-08 15:31:24 +03:00
Sandro Jäckel a155c718d3
nixos/nginx: expand proxyResolveWhileRunning's description 2024-10-08 13:36:13 +02:00
Izorkin c3e32a04ae
nixos/dhcpcd: allow jemalloc and mimalloc memory allocators 2024-10-08 14:12:27 +03:00
K900 a3ccb7f562 steam: decimate 2024-10-08 14:00:17 +03:00
Florian Klink 146e83d76b
dhcpcd: enable sandboxing options (#208780) 2024-10-08 13:09:11 +03:00
r-vdp 2b224f0e3c
nixos/systemd: allow using writeShellApplication for systemd unit scripts 2024-10-08 12:01:48 +02:00
e1mo 4f899ed44d
nixos/dokuwiki,nixos/wordpress,nixos/invoiceplane: Remove deprecated isCoercibleToString 
Close #292788
 2024-10-08 11:53:03 +02:00
Robert Hensing a034fb50f7 Format 2024-10-08 11:27:01 +02:00
Robert Hensing 00355648f0 nixos/modules/profiles/macos-builder.nix: Restore as alias 2024-10-08 10:27:11 +02:00
Robert Hensing 4687820524 Document nixos/modules/profiles/nix-builder-vm.nix 2024-10-08 10:27:11 +02:00
Robert Hensing 1d76033154 Rename nixos/modules/profiles/{macos-builder.nix -> nix-builder-vm.nix} 2024-10-08 10:27:11 +02:00
Robert Hensing 2d11924c9a
macos-builder: readd Nix CLI for debugging (#347205) 2024-10-08 09:58:17 +02:00
Sebastián Zavala Villagómez 1c5727cdf7 nixos/localtimed: set time.timeZone to null to avoid silent overriding 
Currently if a timezone was selected explicitly, the service will
silently override the value, essentially ignoring what is meant to be a
a deliberate choice of option. This may cause confusion as to why the
option is not doing anything when this service is enabled, particularly
in more complex set-ups after some time.

This will simply make the choice deliberate from the user's part, either
by having to remove the option or lowering its priority as a recognition
that it may be ignored.

This change was inspired by the `services.tzupdate` module, which does
the same.

[1]: <https://github.com/NixOS/nixpkgs/blob/master/nixos/modules/services/misc/tzupdate.nix#L24>
 2024-10-07 23:40:49 -04:00
Michael Hoang 10bad16926 macos-builder: readd Nix CLI for debugging 
See https://github.com/NixOS/nixpkgs/pull/268574#discussion_r1788966194
 2024-10-08 12:41:55 +11:00
Emily df769e85f3 Merge master into staging-next 2024-10-08 01:23:55 +01:00
Thomas Gerbet 16caf1231b cups-filters: remove support for legacy CUPS browsing and for LDAP 
Fixes CVE-2024-47176 and CVE-2024-47850. NixOS is not affected by these security issues by
default because we do not ship the default configuration file so it fallbacks to `BrowseRemoteProtocols dnssd`.

631/udp is removed from the open firewall ports, it was by the CUPS
browsing protocol.
 2024-10-07 22:28:12 +02:00
K900 0846895fc6 Merge remote-tracking branch 'origin/master' into staging-next 2024-10-07 21:08:55 +03:00
Sandro 0538ecd092
rss-bridge: Remove pkg patch, adapt nixos service (#331295) 2024-10-07 18:57:22 +02:00
Peder Bergebakken Sundt cd9a00431c
ec2: shellcheck fixes (#340489) 2024-10-07 15:39:38 +02:00
github-actions[bot] b33aedbb4d
Merge master into staging-next 2024-10-07 12:05:43 +00:00
Cosima Neidahl a825406b15
lomiri.lomiri: Replace NIXOS_XKB_LAYOUTS envvar with file (#345288) 2024-10-07 09:33:40 +02:00
codgician 2a848b3732
nixos/libvirtd: add startDelay and shutdownTimeout option 2024-10-07 14:43:45 +08:00
Florian Klink 9c13bad7ca
nixos/tmpfiles: only setup nix-related tmpfiles if nix is enabled (#343784) 2024-10-07 09:11:46 +03:00
github-actions[bot] 5fa43e7396
Merge master into staging-next 2024-10-07 06:05:15 +00:00
Emily 85c36fecfc
xen: nuke, move to by-name. (#345192) 2024-10-07 03:48:37 +01:00
Emily 1a53b400e5
mongodb: mongodb-5_0 -> mongodb-7_0; mongodb-5_0: drop; unifi: unifi7 -> unifi8; unifi{7,-video}: drop (#345625) 2024-10-07 01:38:54 +01:00
github-actions[bot] ab0e8e5be7
Merge master into staging-next 2024-10-07 00:14:55 +00:00
Will Fancher aad455b434
nixos/usbStorage: apply upstream (#284334) 2024-10-06 19:39:07 -04:00
James Atkins 42f5ecde9d nixos/networkd: support systemd-creds in WireGuard 
systemd 256 supports network.wireguard.* credentials (https://github.com/systemd/systemd/pull/30826).
Check whether PrivateKey / PresharedKey starts with an @, if so it is a credential.
 2024-10-06 18:38:40 -05:00
Emily b0395df085 unifi7: drop 2024-10-06 22:47:41 +01:00
Will Fancher c00fc8bd1a
nixos/unl0kr: add settings to the unl0kr module (#339787) 2024-10-06 17:44:55 -04:00
Izorkin 611b1d53b7
dhcpcd: enable sandboxing options 2024-10-06 23:46:18 +03:00
Fernando Rodrigues 251dc99c70
nixos/xen: simplify package options 
Signed-off-by: Fernando Rodrigues <alpha@sigmasquadron.net>
 2024-10-06 20:24:29 +00:00
Kevin Cox fb9b5c806b
mautrix-meta: drop maintainership Rutherther (#346916) 2024-10-06 14:45:10 -04:00
Kevin Cox b8fc5855fb
nixos.mautrix-meta: Update config to 0.4 format (#343606) 2024-10-06 14:44:41 -04:00
Rutherther 379ca4e67f mautrix-meta: drop maintainership Rutherther 2024-10-06 20:33:42 +02:00
Bjørn Forsman 40bfbe3226 nixos/scrutiny: wait until ready 
Add postStart code that waits until Scrutiny has opened its port. This
fixes a race condition against scrutiny-collector, which can start (and
fail) before scrutiny is ready.
 2024-10-06 20:07:45 +02:00
github-actions[bot] 7ab01e096c
Merge master into staging-next 2024-10-06 18:03:58 +00:00
Maximilian Bosch 5ee80e8120
Merge: nixos/nginx: remove shortand from defaultText (#346767) 2024-10-06 17:13:51 +02:00
DontEatOreo 7b69d089ca
nixos/gpu-screen-recorder: remove cap_sys_nice 
Reason: https://github.com/NixOS/nixpkgs/pull/339874#discussion_r1788687308

Co-authored-by: dec05eba <dec05eba@protonmail.com>
 2024-10-06 15:27:45 +03:00
DontEatOreo 8d564190a9
nixos/gpu-screen-recorder: format with nixfmt-rfc-style 2024-10-06 15:27:45 +03:00
Sandro 020c26717f
nixos/quorum: fix geth args, fix test (#341181) 2024-10-06 14:06:31 +02:00
github-actions[bot] 5c3e5ec59f
Merge master into staging-next 2024-10-06 12:05:15 +00:00
Sandro 00461d0fcb
nixos/nginx: fix double slash in example (#346774) 2024-10-06 13:58:54 +02:00
Sandro Jäckel dd7ef21afc
nixos/nginx: fix double slash in example 2024-10-06 03:45:51 +02:00
Aaron Andersen 38a589083e
nixos/userborn: fix username typo 2024-10-05 21:40:09 -04:00
Sandro b64b2d25c2
nixos/nginx: remove shortand from defaultText 2024-10-06 03:19:07 +02:00
github-actions[bot] ff851b037d
Merge master into staging-next 2024-10-06 00:15:37 +00:00
Nick Cao 9e012ecbf2
nixos/sing-box: generate config file into RuntimeDirectory 2024-10-05 18:18:23 -04:00
Nick Cao 5f821de20c
keycloak: 25.0.6 -> 26.0.0 (#346439) 2024-10-05 18:14:45 -04:00
Felix Singer 0f599d1e68 nixos/redmine: Apply initial hardening using the systemd unit 
These options are a good start for sandboxing the service. It's planned
to set `ProtectSystem` to `strict` instead of `full`, but that requires
specific directories to be configured as writable. It's also planned to
filter system calls. However, that requires more testing but it
shouldn't prevent us from applying these options for now and add others
later.

In my tests, Redmine only bound to an IPv4 address and Unix socket,
which is why I restricted the address families to these both.

The command `systemd-analyze security redmine.service` reports an
overall exposure level of 2.9 with this patch.

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2024-10-05 22:13:37 +02:00
h7x4 25f2846361
nixos/bind: set type of zones.*.extraConfig to lines (#346424) 2024-10-05 21:07:26 +02:00
h7x4 cc76cf58f8
nixos/uinput: set a static GID for the uinput group (#333762) 2024-10-05 20:59:16 +02:00
Robert Schütz 506df4e38e nodePackages.npm: drop 2024-10-05 11:23:49 -07:00
github-actions[bot] 653bcc0ea9
Merge master into staging-next 2024-10-05 18:04:03 +00:00
Will Fancher 9f8eb445fa
nixos/systemd-stage-1: Don't enable TPM2 on scripted stage 1 (#346547) 2024-10-05 13:44:39 -04:00
Jared Baur c39781c558
nixos/activation-script: only setup nix tmpfiles if nix is enabled 
If nix is not installed on the end system, the tmpfiles settings related
to it do not need to be setup.
 2024-10-05 09:03:19 -07:00
Jared Baur 3d6e7d7b56
nixos/tmpfiles: only setup nix tmpfiles when nix is used 
If nix is not installed on the end system, the tmpfiles settings related
to it do not need to be setup.
 2024-10-05 09:01:55 -07:00
Nick Cao 6069dde181
nixos/keycloak: make initialAdminPassword optional 2024-10-05 08:37:41 -04:00
github-actions[bot] 94cb2166da
Merge master into staging-next 2024-10-05 12:05:30 +00:00
r-vdp 94532d1530 nixos/syncthing: remove syncthing-resume service 
It was removed upstream in https://github.com/syncthing/syncthing/pull/9611
and the stub generated by nixos now prints an error in the logs due to
it not having a ExecStart line.
 2024-10-05 12:55:39 +02:00
r-vdp 70119aa60f
nixis/uinput: use a fixed GID for the uinput group 2024-10-05 10:21:26 +02:00
r-vdp 469f505813
nixos/{uinput,ids}: format 2024-10-05 10:21:01 +02:00
github-actions[bot] 13400dc754
Merge master into staging-next 2024-10-05 06:04:21 +00:00
Brendan Taylor cb31bd4755 nixos/redis: add option services.redis.servers.*.group 
previously if you set the "user" option and did not create a group
account with the same name the module would create a service that would
fail to start.

with this change:
- the module is more explicit about this behaviour
- you can configure the group directly, so that you're not forced to a
  particular user/group structure
- you can read the group name used by the redis service. this is useful
  for giving other services permission to use the redis socket.
 2024-10-04 21:12:38 -06:00
Bobby Rong f594475564
nixos/xfce: Fix ambiguous with (#346528) 2024-10-05 09:03:18 +08:00
Sandro Jäckel 9b996f7396
nixos/xfce: Fix ambiguous with 
Pull request 345352 introduces `pkgs.exo`, don't pick up that package.
 2024-10-05 08:43:24 +08:00
Nick Cao 0cdc3e2a0b
nixos/keycloak: drop removed proxy option 
Reference: https://www.keycloak.org/docs/latest/upgrading/index.html#proxy-option-removed
 2024-10-04 20:20:46 -04:00
github-actions[bot] e9c8665026
Merge master into staging-next 2024-10-05 00:14:01 +00:00
Nick Cao 16cd47369f
nixos/keycloak: KEYCLOAK_ADMIN{,PASSWORD} -> KC_BOOTSTRAP_ADMIN_{USERNAME,PASSWORD} 
Reference: https://www.keycloak.org/docs/latest/upgrading/index.html#admin-bootstrapping-and-recovery
 2024-10-04 20:08:06 -04:00
Nick Cao d2ec2d3c29
nixos/keycloak: link $out/lib to KC_HOME_DIR to fix loading optimized app image 
Reference: https://www.keycloak.org/docs/latest/upgrading/index.html#additional-validations-on-the-optimized-startup-option
 2024-10-04 20:06:08 -04:00
Will Fancher 3e90d5a2bc nixos/systemd-stage-1: Don't enable TPM2 on scripted stage 1 2024-10-04 19:50:46 -04:00
jade f0ce0e71c3
Remove the revCount attribute from the generated flake registry (#316225) 2024-10-04 15:25:55 -07:00
Aaron Andersen 913a23b5e2
nixos/redmine: Allow specifying an IP address Redmine should bind to (#345617) 2024-10-04 18:18:45 -04:00
h7x4 c38aa540ba
nixos/networking: fix macvlan service description (#346507) 2024-10-04 23:20:09 +02:00
Anthony Roussel 17fd7e3eea
nixos/gns3-server: fix ubridge support (#303442) 2024-10-04 22:16:13 +02:00
Bjørn Forsman 20a3012813 nixos/networking: improve vlan service description 
VLAN is an abbreviation, so let's not write Vlan.
 2024-10-04 22:09:01 +02:00
Bjørn Forsman e8da2c8981 nixos/networking: fix macvlan service description 
Fix copy pasta from the vlan service: Vlan -> MACVLAN
 2024-10-04 22:08:40 +02:00
github-actions[bot] fb53f9f64b
Merge master into staging-next 2024-10-04 18:04:31 +00:00
Peder Bergebakken Sundt 986e6d4e3d
tsm-client: 8.1.23.0 -> 8.1.24.0 (#345039) 2024-10-04 18:25:37 +02:00
Ramses 2d809488f7
nixos/containers: Fix shellcheck issues (#346131) 2024-10-04 18:19:19 +02:00
K900 d5f1752ca9
xdg-desktop-portal-gtk: Enable all default portals unconditionally (#345979) 2024-10-04 18:29:33 +03:00
nicoo 6f26c88376
nixos/macos-builder: pin stateVersion (#342380) 
Closes #325610, #325674
 2024-10-04 16:09:56 +02:00
Peder Bergebakken Sundt f0ad87bdd7 nixos/resilio: add package option 2024-10-04 15:13:04 +02:00
Mynacol aa0fc3e8b8 rss-bridge: Remove pkg patch, adapt nixos service 
The rss-bridge service changes introduced in f2201789fe
resp. https://github.com/NixOS/nixpkgs/pull/223148 removes the need for
the package patch. This commit removes the patch to ease updating and
maintenance.
Relevant service functionality was also removed (e.g. the setting of
RSSBRIDGE_DATA).

The explicit definition of FileCache.path so users can easily see its
default value and change it, requires to use a freeformType to let users
freely add potentially upcoming config options. This type is restricted
to ini types (although we coerce them to environment variables).
This however makes the list of enabled_bridges impossible. That was
fixed by explicitly introducing this option with a type allowing lists.
The default value however should be unset, which is expressed as `null`,
which further spurred a change in the environment variable generation to
ignore null values (instead of coercing them to an empty string).

A breaking change note was added to highlight this change. A check that
warns users of the not-application of their existing config file is
not easily possible, as people could have only added or changed the
config.ini.php file on the file system without changing a nix variable.
 2024-10-04 14:58:15 +02:00
Felix Stupp 6de4d04fdb
nixos/bind: set type of zones.*.extraConfig to lines 
allowing multiple definitions of that option to be merged, because:
- their order should be irrelevant
- it might make sense to declare multiples of them at different locations
 2024-10-04 14:49:12 +02:00
github-actions[bot] 5942e21e4e
Merge master into staging-next 2024-10-04 12:05:36 +00:00
h7x4 d783411040
nixos: improve systemd slice names (#345990) 2024-10-04 12:08:36 +02:00
Pol Dellaiera 2199b69a7a
nixos/privatebin: init module & privatebin: init at 1.7.4 (#344014) 2024-10-04 09:51:40 +02:00
Paul Meyer 3e9b0cdf35
go_1_21/buildGo121Module: remove (#344622) 2024-10-04 08:29:15 +02:00
github-actions[bot] 61f961f1f6
Merge master into staging-next 2024-10-04 06:04:48 +00:00
Sandro e00cc9f2fa
openwebrx: remove alias alsaUtils -> alsa-utils (#346259) 2024-10-04 02:21:40 +02:00
github-actions[bot] 579054c806
Merge master into staging-next 2024-10-04 00:14:14 +00:00
Astro 48b4aa8eae openwebrx: s/alsaUtils/alsa-utils/ 
allows running with allowAliases = false
 2024-10-03 23:53:56 +02:00
h7x4 c760c830d4
nixos/fedimintd: init service (#322815) 2024-10-03 23:53:30 +02:00
Bjørn Forsman e6d7bbf71d nixos/prometheus-dnsmasq-exporter: use a working default leasesPath 
dnsmasq dhcp-leasefile defaults to /var/lib/dnsmasq/dnsmasq.leases, so
use that as the default for the exporter too. Curiously, the example was
using the working path, so this patch simply swaps "example" and
"default" values.
 2024-10-03 23:06:09 +02:00
Nico Felbinger 924ee0c2bc nixos/suricata: init module 2024-10-03 22:50:30 +02:00
Dawid Ciężarkiewicz ba727987d4
nixos/fedimintd: init services 2024-10-03 13:05:12 -07:00
Sandro Jäckel d82d689716
nixos/tailscale-derper: init 2024-10-03 22:04:40 +02:00
github-actions[bot] 192fd67cc3
Merge master into staging-next 2024-10-03 18:04:30 +00:00
Christina Sørensen e7602822bc
nixos/terminfo, contour: mark contour broken, remove from enableAllTerminfo (#345827) 2024-10-03 19:00:56 +02:00
h7x4 5190ddc27d
treewide: \xc2\xa0 -> (#345898) 2024-10-03 18:23:59 +02:00
r-vdp cc28f2bef5
nixos/containers: Fix shellcheck issues 2024-10-03 17:57:41 +02:00
Domen Kožar e873268a35
nixos/datadog-agent: fix deprecated trace agent option (#336546) 2024-10-03 16:15:08 +01:00
github-actions[bot] 0e9a6f22a1
Merge master into staging-next 2024-10-03 00:14:11 +00:00
lassulus def08aa2e3
jitsi-meet: Default NAT harvester, Excalidraw Caddy, Prosody lockdown (#280615) 2024-10-02 21:08:06 +01:00
Bjørn Forsman 48908e5b86 nixos: improve systemd slice names 
Following
https://www.freedesktop.org/software/systemd/man/latest/systemd.unit.html#Description=,
update slice names to be short, descriptive and capitalized.
 2024-10-02 20:24:13 +02:00
github-actions[bot] b90a808faa
Merge master into staging-next 2024-10-02 18:04:34 +00:00
Jan Tojnar c85360e799 nixos/gnome: Enable all x-d-p-gtk portals 
This will fix the conflict when another DE using the full `xdg-desktop-portal-gtk` is enabled simultaneously with GNOME.
There will not be conflicts at runtime since the portals have been configured by `gnome-session` in `xdg.portal.configPackages` for a while now.
There will be minimal effect on system closure as all the extra x-d-p dependencies are also used by GNOME platform.
 2024-10-02 18:54:06 +02:00
Jan Tojnar 0b5c9469bb nixos/deepin: Enable all x-d-p-gtk portals 
This will fix the conflict when another DE using the full `xdg-desktop-portal-gtk` is enabled simultaneously with Deepin.
Currently, our Deepin uses `gtk` as the preferred default implementation for all portals so presumably the duplicate portals should not have been disabled anyway.
The added closure size should be negligible, as most of the packages are probably also used by Deepin transitively.
 2024-10-02 18:49:42 +02:00
Jan Tojnar ef3e98107f nixos/cinnamon: Enable all x-d-p-gtk portals 
This will fix the conflict when another DE using the full `xdg-desktop-portal-gtk` is enabled simultaneously with Cinnamon.
There will no longer be conflicts at runtime since the portals are now configured by `cinnamon-common` in `xdg.portal.configPackages`.
The added closure size should be negligible, as most of the packages are also used by Cinnamon.
 2024-10-02 18:44:58 +02:00
Sandro d44717c448
nixos/binfmt: Add option to use static emulators when available (#334859) 2024-10-02 15:51:30 +02:00
Peder Bergebakken Sundt 3100acba08 treewide: \xc2\xa0 -> 
I have no idea what this escape sequence even is, but it breaks the nix parser with cryptic errors if not used in a comment.
A friend let me know MacOS is prone to input weird spaces, not sure if that is the source.

Candidates were located and created with:

    chr="$(echo -e '\xc2\xa0')"; rg -F "$chr" -l | xe sd -F "$chr" " "

There are some examples left, most being example output from `tree` in various markdown documents, some patches which we can't really touch, and `pkgs/tools/nix/nixos-render-docs/src/tests/test_commonmark.py` which I'm not sure if should be addressed
 2024-10-02 15:33:06 +02:00
github-actions[bot] 58677f23e2
Merge master into staging-next 2024-10-02 12:05:45 +00:00
Atemu b12b45ea63
nixos/i2pd: fix build (#345879) 2024-10-02 13:03:18 +02:00
Pol Dellaiera 075be3e70b
nixos/gatus: init module (#294469) 2024-10-02 11:08:14 +02:00
Peder Bergebakken Sundt ed72e91db1 nixos/mihomo: fix option type 2024-10-02 10:57:28 +02:00
Daniel Nagy 1d8136e1ae
nixos/i2pd: fix build 2024-10-02 09:45:00 +02:00
Christina Sørensen c911876981
nixos/terminfo: remove broken package contour 
Contour was broken for aarch64 in #253334, and completely broke
in #344788 for all platforms.

This removes the broken package, and adds a notice to remove broken
packages in the future. aarch64 users have waited a year for this to be
fixed, so I think we should lean to be more eager to remove in general,
and then the fix can come when it is ready, instead of letting it block
this.

Resolves: #258515
Signed-off-by: Christina Sørensen <christina@cafkafk.com>
 2024-10-02 05:56:13 +02:00
github-actions[bot] 5810844b9c
Merge master into staging-next 2024-10-02 00:14:22 +00:00
Kristoffer Dalby abb3b0089b
nixos/headscale: update module to headscale 0.23.0 
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2024-10-01 21:53:33 +02:00
Kristoffer Dalby 5dd728a081
nixos/headscale: modernize 
Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
 2024-10-01 20:40:19 +02:00
h7x4 cd9c62afca nixos/graphite: add systemd slice 
Co-authored-by: Bjørn Forsman <bjorn.forsman@gmail.com>
 2024-10-01 20:15:22 +02:00
github-actions[bot] c3c8b24e1c
Merge master into staging-next 2024-10-01 18:04:42 +00:00
h7x4 ed45f4b166 nixos/phpfpm: phpfpm.slice -> system-phpfpm.slice 2024-10-01 20:03:08 +02:00
Emily 4ec4146f54 unifi-video: drop 
EOL since January 2021.
 2024-10-01 15:58:19 +01:00
Maximilian Bosch 25fe330bc9
Merge: nextcloud30: init at 30.0.0; nextcloud30Packages: init (#342521) 2024-10-01 14:51:56 +02:00
K900 e3bf09623f Merge remote-tracking branch 'origin/master' into staging-next 2024-10-01 15:09:28 +03:00
Florian Klink b66c0f2e99
nixos/systemd: let systemd setup /etc/machine-id (#327552) 2024-10-01 15:05:59 +03:00
Maximilian Bosch 55a45406a6
nixos/nextcloud: update relatedPackages 2024-10-01 13:36:16 +02:00
Maximilian Bosch 20ed9ccd88
nextcloud: correct stateversion logic 2024-10-01 12:48:47 +02:00
Jonas Heinrich 1b121c1ea2
nextcloud30: init at 30.0.0 2024-10-01 12:48:45 +02:00
Paul Meyer 6e839b8f99 go_1_21/buildGo121Module: remove 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
 2024-10-01 12:43:42 +02:00
Ryan Lahfa 29d56eea7e
nixos/repart-image: pass partition attrs to builder instead of JSON file (#345524) 2024-10-01 11:38:07 +02:00
Zhaofeng Li b8c1ef98e4 nixos/binfmt: Add option to use static emulators when available 
The fixBinary flag will be enabled if a static emulator is in use.
 2024-10-01 15:05:32 +09:00
K900 3f7da3dfa9 Merge remote-tracking branch 'origin/master' into staging-next 2024-10-01 08:44:24 +03:00
Felix Singer 5f14c876bd nixos/redmine: Allow specifying an IP address Redmine should bind to 
In order to not expose Redmine over all interfaces, allow configuring an
IP address it should bind to. Listen to 0.0.0.0 by default.

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2024-10-01 06:16:42 +02:00
h7x4 0d67767718
nixos/networkd: add DHCPv4 - IPv6OnlyMode toggle (#343605) 2024-10-01 01:33:24 +02:00
Nick Cao 5aa3097833
nixos/hatsu: init module (#345102) 2024-09-30 18:35:12 -04:00
h7x4 636185e25a
seafile: 10.0.1 -> 11.0.12 (#318727) 2024-09-30 23:53:02 +02:00
Pol Dellaiera abbc4cb34c
nixos/open-webui: fix opensearch (#345529) 2024-09-30 23:28:21 +02:00
WilliButz 93c61c1e58
nixos/repart-verity-store: include original roothashes in repart-output.json 2024-09-30 22:45:05 +02:00
Masum Reza afab97c863
nixos/wayland: add gtk portal to all applicable compositors (#342646) 2024-10-01 00:23:28 +05:30
WilliButz 3f1f20b2a7
nixos/repart-image: pass partition attrs to builder instead of JSON file 
Having access to the original Nix partition definitions in the builder
should make it a bit easier to manipulate them and still provide access
to the manipulated results.
 2024-09-30 20:10:51 +02:00
K900 b29cb6c1f9 Merge remote-tracking branch 'origin/master' into staging-next 2024-09-30 20:23:25 +03:00
藍+85CD 2f15b523d9
nixos/hatsu: init module 2024-10-01 00:33:38 +08:00
Erin Yuki Schlarb 56581588c3 jitsi-meet: Add option to disable Prosody services not used by Jitsi Meet 
The default Prosody config assumes that Prosody will be used as a federated
XMPP server, while the usecase for Jitsi Meet is much narrower.
 2024-09-30 18:19:34 +02:00
Erin Yuki Schlarb 7ab8f255b9 jitsi-meet: Restrict jitsi-excalidraw systemd service to the minimum requried 2024-09-30 18:19:33 +02:00
Erin Yuki Schlarb 9e8b3f97cc jitsi-meet: Also forward Excalidraw connections when using Caddy as web server 2024-09-30 18:19:33 +02:00
Erin Yuki Schlarb 61cf88212d jitsi-videobridge: Set configurable default NAT harvester address to make the 
service work behind NAT without additional manual configuration
 2024-09-30 18:19:33 +02:00
h7x4 11f77694ac
nixos/bluemap: move to web-apps (#345353) 2024-09-30 17:53:27 +02:00
Erin Yuki Schlarb 67e261beb5 jitsi-meet: Set internal MUC options set in official Docker image 2024-09-30 17:31:04 +02:00
pinage404 83b1350904 nixos/open-webui: fix opensearch 
When [adding Open WebUI as search engine in Firefox](https://docs.openwebui.com/tutorials/integrations/browser-search-engine/#for-firefox) it always links to `http://localhost:3000` instead of the configured port

It is because [the response use `WEBUI_URL` environment variable](1d225dd804/backend/open_webui/main.py (L2370)) which [is set by default to `1d225dd804/backend/open_webui/env.py (L106))
 2024-09-30 17:28:11 +02:00
Maximilian Bosch 1e746f0030
Merge: nixos/postgresql: escape initdbArgs (#345341) 2024-09-30 17:04:10 +02:00
Ali Rizvi 9020d82c70
nixos/wayland: add gtk portal by default 2024-09-30 09:54:19 -04:00
Martin Weinelt b47b572e21
nixos/freeradius: fix group assignment for radius user 2024-09-30 15:50:13 +02:00
github-actions[bot] d7d44ff498
Merge master into staging-next 2024-09-30 12:05:43 +00:00
Martin Weinelt 4ca03e3a11
nixos/logrotate: allow sending signal to arbitrary processes 
Various postrotate scripts send e.g. SIGHUP to processes, to have them
reload their config or reopen their logfile.
 2024-09-30 13:30:38 +02:00
Martin Weinelt 2dabc4fce1
nixos/logrotate: reorder setuid syscall group 
Relevant parts of @setuid are in @privileged, so we need to flip the
order around, to grant @setuid in spite of denying @privileged.
 2024-09-30 13:26:14 +02:00
Florian Klink 9ff2ff44f8
nixos/garage: fix StateDirectory check to work with multiple data_dirs (#342903) 2024-09-30 12:27:06 +02:00
Pol Dellaiera c82e57f79b
nixos: enable fstrim by default (#345285) 2024-09-30 11:52:13 +02:00
github-actions[bot] 09f18b89af
Merge master into staging-next 2024-09-30 00:14:50 +00:00
Weijia Wang aa4c638b89
wordpressPackages: packages, language and theme updates (#345359) 2024-09-29 23:44:35 +02:00
Viorel-Cătălin Răpițeanu db71929224 wordpressPackages: update packages, add ru_RU lang, make twentytwentyfour default 2024-09-29 23:09:33 +03:00
h7x4 c25213a9bd
nixos/bluemap: move to web-apps 2024-09-29 21:40:39 +02:00
Maximilian Bosch 11d1f8776c
nixos/postgresql: escape initdbArgs 
It doesn't look correct that this isn't the case already.
 2024-09-29 21:03:52 +02:00
Maximilian Bosch 0e78dc369c
Merge: doc: use initdbArgs in example postgresql upgrade script (#302823) 2024-09-29 20:39:05 +02:00
Alyssa Ross ac037f0b18
Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
	pkgs/development/compilers/llvm/common/default.nix
 2024-09-29 20:10:12 +02:00
Masum Reza 007e91615b
waybar: add systemdSupport input (#345107) 2024-09-29 23:28:25 +05:30
Savyasachee Jha 22e2e02118 nixos/privatebin: init 2024-09-29 23:02:19 +05:30
Naïm Camille Favier 7cba8410f7
nixos/networkmanager: set up /etc/ipsec.secrets as required by the L2TP plugin (#340325) 2024-09-29 18:56:59 +02:00
Martin Weinelt 6710d0dd01
nixos/logrotate: relax hardening (#345275) 2024-09-29 16:24:34 +02:00
Weijia Wang 27e93e3061
go-ethereum: 1.14.8 -> 1.14.9 (#342934) 2024-09-29 16:21:23 +02:00
Franz Pletz 273796ebd7
nixos/upower: update percentage defaults (#344839) 2024-09-29 15:39:41 +02:00
OPNA2608 85e63d0540 lomiri.lomiri: Replace NIXOS_XKB_LAYOUTS envvar with file 
This only ever worked for the session, not for the greeter. Writing the information out to a file should be more consistent.

To make sure that this works, and continues working, for the greeter & session, also add a new VM test.
 2024-09-29 14:51:04 +02:00
Sefa Eyeoglu 5fcc1337d2
nixos/waybar: enable systemdSupport for package 
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2024-09-29 17:56:24 +05:30
h7x4 8b62732138
bluemap: 3.21 -> 5.4 (#332245) 2024-09-29 14:05:29 +02:00
github-actions[bot] 8e5ca58e0a
Merge master into staging-next 2024-09-29 12:05:05 +00:00
Jörg Thalheim 7d8f1572d1 nixos: enable fstrim by default 
The majority of users these days will install NixOS on SSD/NVME based
storage. Enabling fstrim ensures that the TRIM operation on this type of
storage is run at least once a week. This will improve performance and
life time of said devices. This also works in virtual machines as
formats such as qcow2 or vmdk support TRIM.
Ubuntu has a similar systemd timer also for quite a while enabled by
default.
Enabling this service will not increase the dependency closure as
util-linux is already part of the base system.
In case only filesystems that are not supported by fstrim are used, the
overhead is negelible as fstrim run in less than a second once a week.
 2024-09-29 14:04:18 +02:00
Martin Weinelt d3e0a89ca6
nixos/logrotate: relax hardening 
The previous hardening change restricted the unit too much, breaking
legitimate functionality of logrotate.

Unfortunately this was not covered by our NixOS test.
 2024-09-29 12:29:19 +02:00
Doron Behar 4fcd6b86ee
nixos/tzupdate: make it actually work (#343748) 2024-09-29 12:56:06 +03:00
K900 3951cf36e1
nixos/xdg/icons: add fallbackThemes option (#345057) 2024-09-29 12:17:57 +03:00
Bruno Bigras 1336b64235
Add veilid module (#330585) 2024-09-29 04:30:44 -04:00
Michele Guerini Rocco a08c2e29b9
nixos/monero: remove with lib; (#343474) 2024-09-29 09:36:21 +02:00