diff --git a/nixos/doc/manual/release-notes/rl-1709.xml b/nixos/doc/manual/release-notes/rl-1709.xml
index 6fc84a57cffd..c951934e6236 100644
--- a/nixos/doc/manual/release-notes/rl-1709.xml
+++ b/nixos/doc/manual/release-notes/rl-1709.xml
@@ -45,6 +45,33 @@ has the following highlights:
even though HDMI-0 is the first head in the list.
+
+
+ The handling of SSL in the nginx module has been cleaned up, renaming
+ the misnomed enableSSL to onlySSL
+ which reflects its original intention. This is not to be used with the
+ already existing forceSSL which creates a second
+ non-SSL virtual host redirecting to the SSL virtual host. This by
+ chance had worked earlier due to specific implementation details. In
+ case you had specified both please remove the enableSSL
+ option to keep the previous behaviour.
+
+
+ Another addSSL option has been introduced to configure
+ both a non-SSL virtual host and an SSL virtual host.
+
+
+ Options to configure resolvers and
+ upstreams have been introduced. See their information
+ for further details.
+
+
+ The port option has been replaced by a more generic
+ listen option which makes it possible to specify
+ multiple addresses, ports and SSL configs dependant on the new SSL
+ handling mentioned above.
+
+ The following new services were added since the last release:
@@ -62,10 +89,17 @@ following incompatible changes:
- aiccu package was removed. This is due to SixXS
+ The aiccu package was removed. This is due to SixXS
sunsetting its IPv6 tunnel.
+
+
+ The fanctl package and fan module
+ have been removed due to the developers not upstreaming their iproute2
+ patches and lagging with compatibility to recent iproute2 versions.
+
+
Top-level idea package collection was renamed.
@@ -202,7 +236,6 @@ rmdir /var/lib/ipfs/.ipfs
gpgv, etc.
-
services.mysql now has declarative
@@ -238,7 +271,22 @@ FLUSH PRIVILEGES;
-- Optionally, delete the password-authenticated user:
-- DROP USER 'root'@'localhost';
-
+
+
+
+
+ sha256 argument value of
+ dockerTools.pullImage expression must be
+ updated since the mechanism to download the image has been
+ changed. Skopeo is now used to pull the image instead of the
+ Docker daemon.
+
+
+
+
+ Templated systemd services e.g container@name are
+ now handled currectly when switching to a new configuration, resulting
+ in them being reloaded.
@@ -296,14 +344,48 @@ FLUSH PRIVILEGES;
- sha256 argument value of
- dockerTools.pullImage expression must be
- updated since the mechanism to download the image has been
- changed. Skopeo is now used to pull the image instead of the
- Docker daemon.
+ Definitions for /etc/hosts can now be sped
+ declaratively with networking.hosts.
+
+
+
+
+ Two new options have been added to the installer loader, in addition
+ to the default having changed. The kernel log verbosity has been lowered
+ to the upstream default for the default options, in order to not spam
+ the console when e.g. joining a network.
+
+
+ This therefore leads to adding a new debug option
+ to set the log level to the previous verbose mode, to make debugging
+ easier, but still accessible easily.
+
+
+ Additionally a copytoram option has been added,
+ which makes it possible to remove the install medium after booting.
+ This allows tethering from your phone after booting from it.
+
+
+ services.gitlab-runner.configOptions has been added
+ to specify the configuration of gitlab-runners declaratively.
+
+
+ services.jenkins.plugins has been added
+ to install plugins easily, this can be generated with jenkinsPlugins2nix.
+
+
+ services.postfix.config has been added
+ to specify the main.cf with NixOS options. Additionally other options
+ have been added to the postfix module and has been improved further.
+
+
+ The GitLab package and module have been updated to the latest 9.5 release.
+
+
+ The systemd-boot boot loader now lists the NixOS
+ version, kernel version and build date of all bootable generations.
-