mirrors/nixpkgs
1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-19 20:21:14 +00:00
Code Issues Wiki Activity
581189 commits 300 branches 124 tags 6.2 GiB
Commit graph

38708 commits

Author SHA1 Message Date
h7x4 932344b54a
Merge pull request #270475 from MinerSebas/prometheus-restic-exporter 
prometheus-restic-exporter: init at 1.4.0
 2024-02-01 20:05:11 +01:00
Pierre Bourdon 3484985991
Merge pull request #285587 from edef1c/wrapper-cve-2023-6246 
nixos/modules/security/wrappers: limit argv0 to 512 bytes
 2024-02-01 19:18:45 +01:00
edef b4c9840652 nixos/modules/security/wrappers: limit argv0 to 512 bytes 
This mitigates CVE-2023-6246, crucially without a mass-rebuild.

Change-Id: I762a0d489ade88dafd3775d54a09f555dc8c2527
 2024-02-01 18:16:55 +00:00
Atemu f38bca1ca5
Merge pull request #279677 from leona-ya/paperless-nltk 
nixos/paperless: use nltk_data package as NLTK data source
 2024-02-01 16:59:28 +01:00
Leona Maroni 6300f478e9
nixos/paperless: use nltk_data package as NLTK data source 
nixos
 2024-02-01 16:53:34 +01:00
MinerSebas da91e4d75b nixos/tests/prometheus-exporters: add test for prometheus-restic-exporter 2024-02-01 15:00:35 +01:00
MinerSebas d1f031cbbd nixos/prometheus-restic-exporter: init module 2024-02-01 14:48:56 +01:00
Leona Maroni 0f2df9ff19 nixos/youtrack: rebuild module for 2023.x support 2024-02-01 13:36:13 +01:00
Nick Cao 0850ee016b
nixos/networkd: drop upstreamed stage-1 unit dependencies 
Reference: https://github.com/systemd/systemd/pull/27791
 2024-01-31 22:52:52 -05:00
Adam Stephens 75ec325cb9
nixos/pam: remove pam_cgfs 
pam_cgfs is a cgroups-v1 pam module. Verified with upstream that
this module no longer necessary on cgroups-v2 systems.
 2024-01-31 17:19:23 -05:00
Felix Bühler 6c22593ad4
Merge pull request #284799 from Pablo1107/photoprism-module/fix-manage-script 
nixos/photoprism: use nsenter to call photoprism bin with correct UID and PID
 2024-01-31 20:52:11 +01:00
Martin Weinelt 509d6bc2ca
Merge pull request #285326 from pbsds/pretalx-1706723715 
nixos/pretalx: add 24.05 "new service" release note
 2024-01-31 20:04:23 +01:00
Franz Pletz 9e485b2169
Merge pull request #284326 from WilliButz/snmp-exporter-module/fix-logPrefix 
nixos/prometheus-snmp-exporter: fix undefined logPrefix
 2024-01-31 19:55:40 +01:00
Peder Bergebakken Sundt 15f31376b5 nixos/pretalx: add 24.05 "new service" release note 2024-01-31 18:57:53 +01:00
Peder Bergebakken Sundt 19159ced3e
Merge pull request #249523 from greizgh/seafile-10 
Seafile 10
 2024-01-31 17:13:54 +01:00
Peder Bergebakken Sundt d5d752af43
Merge pull request #280821 from SuperSandro2000/pretalx 
pretalx: init 2023.1.3
 2024-01-31 17:11:38 +01:00
Jörg Thalheim 7d5c09b02e
Merge pull request #285167 from Mic92/systemd-boot 
nixos/systemd-boot: fix editor option
 2024-01-31 22:38:09 +07:00
Nick Cao 2c4eca2c07
Merge pull request #285100 from Tungsten842/revert-281529-acpid 
Revert "acpid: Disable network access"
 2024-01-31 08:25:37 -05:00
Maximilian Bosch 37ac24e2c7
nixos/tests/kernel-rust: test against 6.7 and testing (6.8rc1) 
In #283893 we realized that not only 6.7, but also testing is affected.
And with more stable kernels following, we'll probably want to test
against all of them whether Rust support is working fine. As long as
it's not the default at least, then we should probably move this to
`kernel-generic`.

Every kernel that's new enough to support `rust-out-of-tree-module` (and
`linux_testing`) is part of this text matrix.
 2024-01-31 09:52:20 +01:00
Jörg Thalheim 202e697233 nixos/systemd-boot: fix editor option 2024-01-31 10:46:30 +07:00
Mario Rodas 4006079f95
Merge pull request #276177 from aaronjheng/prometheus-openvpn-exporter 
prometheus-openvpn-exporter: remove
 2024-01-30 19:32:50 -05:00
Thomas Gerbet 898c3061fe
Merge pull request #279253 from risicle/ris-packagekit-1.2.8 
packagekit: 1.2.5.1pre -> 1.2.8
 2024-01-30 23:37:46 +01:00
Tungsten842 c1afcd1c8c
Revert "acpid: Disable network access" 2024-01-30 22:49:43 +01:00
Robert Scott 19b3ab3fe4 packagekit: use test_nop backend by default 
nix backend is broken and this is causing the nixos test to
fail
 2024-01-30 20:41:15 +00:00
Guillaume Girol 996d064488
Merge pull request #278131 from symphorien/sane_test 
nixos/sane: add nixos test
 2024-01-30 21:00:12 +01:00
Robert Hensing 056a4d8d52
Merge pull request #283406 from tfc/nixos-rebuild-socket 
nixos-rebuild: Handle too-long tmpdir paths on macOS
 2024-01-30 19:02:37 +01:00
Martin Weinelt 5283fe407c
nixos/tests/pretalx: init 2024-01-30 17:41:34 +01:00
Martin Weinelt 8f03632997
nixos/pretalx: init 2024-01-30 17:41:34 +01:00
Ryan Lahfa bed631549e
Merge pull request #284263 from amarshall/fix-zfs-test-wrong-pkg 
nixos/tests/zfs: fix using wrong package in tests; minor cleanup
 2024-01-30 16:37:17 +01:00
Ryan Lahfa 386c037cb7
Merge pull request #284174 from jmbaur/repart-sector-size 
Fix appliance-repart-image NixOS VM test
 2024-01-30 16:36:09 +01:00
K900 3176d495ff nixos/plasma5: enable qt stuff 
Otherwise things like themes only work due to lucky wrapper leakage.
 2024-01-30 17:36:06 +03:00
Weijia Wang 5116ea824d
Merge pull request #280549 from wineee/deepin-icon 
deepin: move distribution.info back to deepin-desktop-base
 2024-01-30 14:50:13 +01:00
Luke Granger-Brown 23310f467a
Merge pull request #284980 from patka-123/update-paperless-service-example-doc 
nixos/paperless: update extraConfig to settings in service docs.
 2024-01-30 12:53:31 +00:00
Yureka a6c64fbd39
nixos/strongswan-swanctl: add includes option for secrets (#284742) 2024-01-30 12:47:33 +01:00
h7x4 ba5f81a6b6
Merge pull request #276547 from ambroisie/pyload-module 
nixos/pyload: init module
 2024-01-30 12:29:46 +01:00
Patka 3d028d17c9
nixos/paperless: update extraConfig to settings in service docs 
Signed-off-by: Patka <patka@patka.dev>
 2024-01-30 11:26:04 +01:00
Sandro 4891afd8df
Merge pull request #284735 from Izorkin/update-gpg-tui 2024-01-30 11:09:05 +01:00
Yureka c94d63a527
nixos/utils: fix stack overflow in genJqReplacementSnippet (#284027) 
When the input contains derivations, don't attempt to recurse into them
 2024-01-30 11:00:08 +01:00
K900 0f34032f5a nixos/plasma5: install missing style plugins 2024-01-30 11:38:10 +03:00
Luke Granger-Brown a12b828a26
Merge pull request #277661 from appsforartists/handheld-daemon 
handheld-daemon: init at 1.1.0
 2024-01-30 04:01:11 +00:00
Franz Pletz 540cdedf5d
Merge pull request #284676 from r-ryantm/auto-update/exportarr 2024-01-30 03:08:25 +01:00
Brenton Simpson b960a217bd handheld-daemon: touchup code style to better match nixpkgs 
Co-authored-by: h7x4 <h7x4@nani.wtf>
Co-authored-by: Luke Granger-Brown <git@lukegb.com>
Co-authored-by: Bruno BELANYI <bruno@belanyi.fr>
 2024-01-29 17:20:30 -08:00
Franz Pletz f77e7dbd31
nixos/tests/prometheus-exporters: remove exportarr_sonarr 
This test has never worked. Not sure why it was merged in the first
place.
 2024-01-30 01:00:22 +01:00
Franz Pletz 3432be07e4
Merge pull request #278555 from leona-ya/kresd-port-only-regex 2024-01-30 00:41:53 +01:00
Bernardo Meurer 429a3accd9
Merge pull request #284800 from lovesegfault/fix-moonraker-warn 
nixos/moonraker: fix update_manager.enable_system_updates being [bool] and not bool
 2024-01-29 18:23:33 -05:00
Franz Pletz da226d14bf
Merge pull request #284749 from 2xsaiko/outgoing/dovecot-fix-1 2024-01-30 00:17:12 +01:00
Felix Bühler b6e25194a4
Merge pull request #283778 from linsui/noat 
nixos/nautilus-open-any-terminal: init
 2024-01-29 22:07:23 +01:00
Marco Rebhan 522d660f25
nixos/dovecot: fix sieve script config generation 2024-01-29 19:42:55 +01:00
Bernardo Meurer 392b32b2af
nixos/moonraker: fix update_manager.enable_system_updates being [bool] and not bool 2024-01-29 11:31:12 -05:00
Pablo Andres Dealbera bb40443e77 nixos/photoprism: use nsenter to call photoprism bin with correct UID and PID 2024-01-29 13:26:35 -03:00
Bobby Rong 850bac2305
Merge pull request #284633 from FedericoSchonborn/budgie-desktop-10.9 
Budgie Desktop 10.9
 2024-01-29 21:58:15 +08:00
Bobby Rong 6b5dd0640b
nixosTests.budgie: Fix login subtest 
After budgie-session is used.
 2024-01-29 10:13:31 -03:00
Weijia Wang 273b8ebd64
Merge pull request #284711 from misuzu/netbird-test 
nixosTests.netbird: fix after module update
 2024-01-29 13:25:52 +01:00
Marco Rebhan 26e71b5a5b
nixos/dovecot: remove unused imports 2024-01-29 12:21:58 +01:00
Izorkin fd21b17628
nixos/no-x-libs: add gpg-tui 2024-01-29 12:35:22 +03:00
Fabián Heredia Montiel 45fad8902f linux/hardened/patches/6.7: init at 6.7.2-hardened1 2024-01-29 09:44:08 +01:00
misuzu 83591dbbe5 nixosTests.netbird: fix after module update 2024-01-29 09:46:02 +02:00
Jacek Galowicz d45acb5457 nixos-rebuilt-target-host test: Add long TMPDIR to verify that fix works 2024-01-29 07:59:15 +01:00
Felix Bühler da47763cb8
Merge pull request #279384 from Stunkymonkey/recursive-pth-loader-normalize 
python311Packages.recursive-pth-loader: rename from recursivePthLoader
 2024-01-29 00:40:42 +01:00
Federico Damián Schonborn 0d209c6641
nixos/budgie: Replace gnome-session with budgie-session 
Signed-off-by: Federico Damián Schonborn <fdschonborn@gmail.com>
 2024-01-28 20:08:59 -03:00
Joachim F 6dd56e1483
Merge pull request #275579 from tamara-schmitz/master 
update hardened profile to new recommendations
 2024-01-28 20:25:27 +01:00
Sandro 263af58884
Merge pull request #284488 from Silver-Golden/master 
Bitwarden directory connector: fix bad preStart
 2024-01-28 19:18:10 +01:00
K900 499b9a5de0
Merge pull request #284562 from K900/lemmy-nginx-fix 
lemmy: fix nginx config generation
 2024-01-28 20:48:51 +03:00
Kerstin 45b1d68c35
Merge pull request #283981 from f2k1de/mastodon-too-many-open-files-fix 
mastodon: set LimitNOFILE
 2024-01-28 18:47:53 +01:00
Nick Cao 2389ab15b4
Merge pull request #284496 from ElvishJerricco/systemd-255-hibernate-resume 
systemd-stage-1: Fix hibernate-resume with systemd v255
 2024-01-28 11:20:04 -05:00
K900 c34a1d5135 lemmy: fix nginx config generation 2024-01-28 19:15:02 +03:00
Adam C. Stephens 382935bf7a
Merge pull request #284109 from ambroisie/update-woodpecker 
woodpecker-*: 1.0.5 -> 2.2.2
 2024-01-28 10:19:02 -05:00
Aaron Andersen 0ed21f3b09
Merge pull request #284122 from Stunkymonkey/zabbix-write-secret 
nixos/{zabbixServer,zabbixProxy}: prefer 'install' over 'mkdir/chmod/chown'
 2024-01-28 06:24:11 -08:00
Andrew Marshall 5d798a0657 nixos/tests/zfs: decouple makeZfsTest params from unstable vs. stable 
enableUnstable was trying to do too much, it’s more obvious to remove
the indirection to set zfsPackage and push the semantics up to the
caller.
 2024-01-28 09:20:31 -05:00
Andrew Marshall 39ba1b4145 nixos/tests/zfs: improve naming 
It is not one package, but the package set, and so is plural.
 2024-01-28 09:19:21 -05:00
nikstur dff64f549e nixos/x11: remove leading slash from environment.etc path 
Even if the tools that assemble /etc can handle leading slashes, this
still is not correct. For example, you could have both /X11 and X11 in
environment.etc which makes overriding hard.
 2024-01-28 13:38:09 +01:00
nikstur a9161ceb5a nixos/etc: remove leading slash from target paths in build-composefs-dump.py 
This is necessary so that duplicates in the composefs dump are avoided.
 2024-01-28 13:37:23 +01:00
Will Fancher 6f1b17d4b8 systemd-stage-1: Fix hibernate-resume with systemd v255 2024-01-28 06:52:21 -05:00
Brendan Golden fe59b6d24b
Bitwarden directory connector: fix bad preStart 2024-01-28 10:52:43 +00:00
Jared Baur 0bf5f3be25
appliance-repart-image: fix OVMF not detecting disk 
With the update of systemd to v255, the repart tool switched to use 4K
sector sizes by default. This change sets the appliance-repart-image
test to use a sector size of 512B to fit in with the existing NixOS VM
test infrastructure using qemu disks with 512B sector sizes.
 2024-01-27 17:20:04 -08:00
Jared Baur 4e139026b5
nixos/repart: add option for configuring sector size 
This option is helpful for situations when the target host disk's sector
size differs from that of the build host.
 2024-01-27 17:19:32 -08:00
nikstur 92b98478a8 nixos/etc: fix type checking of build-composefs-dump.py 2024-01-28 01:58:56 +01:00
PassiveLemon 1d3e2a92bc nixos/alvr: init module 2024-01-27 19:45:27 -05:00
Martin Weinelt 0deb00012d
Merge pull request #255707 from micahsoftdotexe/update-navidrome 
nixos/navidrome: accept DataFolder option
 2024-01-28 00:08:18 +01:00
Micah Tanner 7d9e3e510b nixos/navidrome: accept DataFolder option 2024-01-27 17:54:50 -05:00
Tamara Schmitz b80c3284d5
nixos/hardened: update hardened profile to new recommendations 
Borrowing from here to match hardened profile with more recent kernels:
* https://madaidans-insecurities.github.io/guides/linux-hardening.html?#boot-parameters
* https://github.com/a13xp0p0v/kernel-hardening-checker/

Removed "slub_debug" as that option disables kernel memory address
hashing. You also see a big warning about this in the dmesg:
"This system shows unhashed kernel memory addresses via the console, logs, and other interfaces."

"init_on_alloc=1" and "init_on_free=1" zeroes all SLAB and SLUB allocations. Introduced in 6471384af2a6530696fc0203bafe4de41a23c9ef. Also the default for the Android Google kernel btw. It is on by default through the KConfig.

"slab_nomerge" prevents the merging of slab/slub caches. These are
effectively slab/slub pools.

"LEGACY_VSYSCALL_NONE" disables the older vsyscall mechanic that relies on
static address. It got superseeded by vdsos a decade ago. Read some
LWN.net to learn more ;)

"debugfs=off" I'm sure there are some few userspace programs that rely on
debugfs, but they shouldn't.

Most other things mentioned on the blog where already the default on a
running machine or may not be applicable.

Most other Kconfigs changes come from the kernel hardening checker and
were added, when they were not applied to the kernel already.

Unsure about CONFIG_STATIC_USERMODEHELPER. Would need testing.
 2024-01-27 20:43:58 +00:00
WilliButz 3a00809390
nixos/prometheus-snmp-exporter: fix undefined logPrefix 
When I added `coerceConfigFile` based on the blackbox exporter module, I
did not notice the missing attribute definition.
 2024-01-27 20:59:41 +01:00
Luke Granger-Brown 0f8804e6a5
Merge pull request #283916 from devusb/fix-pomerium-test 
nixos/pomerium: fix UI test
 2024-01-27 17:02:35 +00:00
Nick Cao 8138e47046
Merge pull request #284115 from jacekpoz/ratbagd-module 
nixos/ratbagd: add package option
 2024-01-27 11:12:55 -05:00
Sandro 8219e2c1bc
Merge pull request #279050 from SuperSandro2000/portunus-seedsettings 
nixos/portunus: add seedSettings option
 2024-01-27 16:08:41 +01:00
Andrew Marshall fb346a8791 nixos/tests/zfs: fix using wrong package 2024-01-27 09:33:35 -05:00
Will Fancher 2af1ee5bba
Merge pull request #259196 from liff/mod/systemd-lock-handler 
nixos/systemd-lock-handler: init with corresponding package at 2.4.2
 2024-01-27 06:13:38 -05:00
Maximilian Bosch abd098fce8
Merge pull request #283972 from onny/nextcloud-settings 
nixos/nextcloud: Rename extraOptions to settings
 2024-01-27 11:01:23 +01:00
Olli Helenius e103c5cfcf
nixos/systemd-lock-handler: init 2024-01-27 11:55:46 +02:00
Pierre Bourdon b0051767f1
Merge pull request #284153 from JulienMalka/systemd-boot-builder-folder 
nixos/systemd-boot: move builder script in bin folder
 2024-01-27 06:58:18 +01:00
K900 b5dc67dd94
Merge pull request #284130 from xNaxdy/fix-plasma5-mobilegear 
nixos/plasma5: fix plasmaMobileGear path
 2024-01-27 07:07:52 +03:00
Weijia Wang 7d021ca26b
Merge pull request #265056 from rgri/init-mouse-actions 
mouse-actions: init at 0.4.4
 2024-01-27 03:47:42 +01:00
Julien Malka ceeddc5b15 nixos/systemd-boot: move builder script in bin folder 2024-01-27 01:29:40 +00:00
Thomas Gerbet 117fd19a77
Merge pull request #276306 from ambroisie/aria2-rpc-secret-file 
nixos/aria2: implement 'rpcSecretFile'
 2024-01-27 00:46:56 +01:00
Bruno BELANYI 44792c6df4 nixos: release notes for woodpecker update 2024-01-26 22:54:32 +00:00
Naxdy edc49b2e83
nixos/plasma5: fix plasmaMobileGear path 2024-01-26 23:52:49 +01:00
Yt a759a579fb
Merge pull request #283447 from Munksgaard/livebook-fixes 
livebook: Use `mix release` to build instead of escript
 2024-01-26 22:14:08 +00:00
Felix Buehler bdce5312c9 nixos/{zabbixServer,zabbixProxy}: prefer 'install' over 'mkdir/chmod/chown' 2024-01-26 23:10:57 +01:00
jacekpoz 49130d8bf7
nixos/ratbagd: add package option 2024-01-26 22:58:44 +01:00
Felix Buehler 4c9b5cb310 nixos/rabbitmq: prefer 'install' over 'mkdir/chmod/chown' 2024-01-26 22:56:28 +01:00