dev/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
663,722 Commits 3 Branches 0 Tags 4.3 GiB
af1a940b27
Commit Graph

42835 Commits

Author SHA1 Message Date
Litchi Pi
0fb7268b9b Init IFM service at version 4.0.2 
Signed-off-by: Litchi Pi <litchi.pi@proton.me>
 2024-07-23 08:44:50 +02:00
github-actions[bot]
09a27d5bc1
Merge master into staging-next 2024-07-23 00:02:18 +00:00
Franz Pletz
b12aaa9f9b
Merge pull request #316139 from Luflosi/bind-service-wait-for-ready-status 2024-07-23 00:19:53 +02:00
Pol Dellaiera
771c4624ed
Merge pull request #328713 from mweinelt/ollama-sandbox-issue 
nixos/ollama: replace flawed sandboxing option
 2024-07-22 22:21:16 +02:00
Artturin
60e9cffe2c Merge branch 'master' into staging-next 2024-07-22 22:53:31 +03:00
nikstur
be0df72dfa
Merge pull request #328926 from nikstur/sysusers-only-for-sysusers 
Sysusers only for sysusers
 2024-07-22 20:55:58 +02:00
Bruno BELANYI
87a80cdaf9
Merge pull request #329112 from ambroisie/tandoor-module 
nixos/tandoor-recipes: revert 'GUNICORN_MEDIA=1'
 2024-07-22 15:48:52 +01:00
Jonas Heinrich
4edef1362f sane-backends: configure and use lock dir 2024-07-22 16:46:30 +02:00
Bobby Rong
3e9b9159cb
Merge pull request #327144 from bobby285271/upd/cinnamon-xapps-by-name 
Move various packages out of cinnamon scope
 2024-07-22 21:33:16 +08:00
Martin Weinelt
fe58e8856f
nixos/ollama: make host example dualstack wildcard 
Binding to IPv6 wildcard generally binds dual-stack, which is also a
better example because the way to specify it is not always very clear.
 2024-07-22 14:51:40 +02:00
Martin Weinelt
bd473ceae3
nixos/doc/rl-2411: add ollama changes 2024-07-22 14:51:40 +02:00
Martin Weinelt
12897b37a8
nixos/ollama: harden systemd unit 
Tested with CPU and CUDA acceleration. Researched for ROCm, but I have no
compatible card to test it with.
 2024-07-22 14:51:40 +02:00
Martin Weinelt
be7bce879f
nixos/ollama: remove writablePaths option 
Making the models directory always writable is much simpler, than having
to watch out for an option to facilitate that.
 2024-07-22 14:51:39 +02:00
Martin Weinelt
809ea5c6bd
nixos/ollama: replace flawed sandboxing option 
The ollama module in its default configuration relies on systemd's
`DynamicUser=` feature for user allocation. In #305076 that allocation
was made conditional and tied to the `sandboxing` option, that was
intended to fix access to model directories outside the allocated state
directory.

However, by disabling sandboxing ollama would inadvertently run as root,
given that `User=` and `Group=` are not required to be set.

The correct way to grant access to other paths is to allocate static
user and group, and grant permissions to the destination path to that
allocation.

We therefore replace the sandboxing option user and group options, that
default to `null`, which means they default to `DynamicUser=`, but can
be replaced with a statically allocated user/group, and thereby a stable
uid/gid.

Fixes: 552eb759 ("nixos/ollama: add options to bypass sandboxing")
 2024-07-22 14:51:39 +02:00
Bruno BELANYI
c8f2bb1b65 nixos/tandoor-recipes: revert 'GUNICORN_MEDIA=1' 
Quoting from upstream's documentation [1]:

> Basically everyone recommends not doing this. Please use [a webserver]
> to handle media file serving.

Given that this commit broke the module for unrelated reasons, I've
decided to just revert it and let downstream users make the choice of
easy vs. secure.

[1]: https://docs.tandoor.dev/system/configuration/#gunicorn-media

This reverts commit e8c56de827.
 2024-07-22 09:17:41 +00:00
PopeRigby
a5eaa1df10
nixos/scrutiny: enable collector by default if scrutiny is enabled (#329069) 2024-07-22 07:38:45 +01:00
Aleksana
b841e48094
Merge pull request #329018 from Aleksanaa/nixos/appimage 
nixos/appimage: minor fix eval
 2024-07-22 07:57:16 +08:00
aleksana
71b3f89bee nixos/appimage: minor fix eval 2024-07-22 07:47:00 +08:00
Sohalt
c11439943d
nixos/containers: add wants and after dependency for network interfaces (#153234) 
Co-authored-by: Franz Pletz <fpletz@fnordicwalking.de>
 2024-07-22 01:22:19 +02:00
Nathan Henrie
de322fa088 nixos/espanso: add n8henrie to maintainers 
I help maintain espanso and would like to help maintain both the package
and the module.
 2024-07-21 17:08:24 -06:00
Marcus Ramberg
585a077fd2
Merge pull request #327665 from bolives-hax/add-qemu-s390x-binfmt 
added s390x option type via magic attributes
 2024-07-21 23:12:55 +02:00
Sandro
4b97ce3bc4
Merge pull request #322095 from illustris/hadoop_3_4 
hadoop: init 3.4, drop 3.2
 2024-07-21 21:24:10 +02:00
Sandro
af3e8fe556
Merge pull request #322173 from illustris/hbase 
hbase: version upgrades
 2024-07-21 21:23:28 +02:00
Sandro
49831e2e65
Merge pull request #328604 from illustris/pve-kvm 
nixos/proxmoxImage: fix build
 2024-07-21 21:23:06 +02:00
bl0v3
e83fc89111 nixos/binfmt: added s390x option type via magic attributes 2024-07-21 20:17:16 +02:00
Bobby Rong
d114d56aad
nixos/cinnamon: Do not use "with pkgs.cinnamon" 
Otherwise with allowAliases enabled, the aliases are preferred and used,
spamming deprecation warnings.
 2024-07-22 01:02:17 +08:00
Bobby Rong
508637b0e3
xapp: Move from cinnamon scope to top-level 
* The timeshift changes are used to make by-name check happy.
* More by-name changes in the next commit.
 2024-07-22 01:02:16 +08:00
Atemu
f6d4f4f055
Merge pull request #328662 from Aleksanaa/nixos/appimage 
nixos/appimage: support both type-1 and type-2 appimages in binfmt
 2024-07-21 17:44:39 +02:00
Sandro
4cc8b29327
Merge pull request #299599 from SuperSandro2000/kde-pim 
programs/kde-pim: init
 2024-07-21 16:26:01 +02:00
nikstur
2ca04530c9 nixos/systemd-sysusers: assert against password and hashedPassword 
Regardless of mutable or immutable users, systemd-sysupdate never
updates existing user records and thus will for example never change
passwords for you.

It only support initial passwords and now actively asserts agains other
paswords.
 2024-07-21 16:23:11 +02:00
nikstur
2710a49adb nixos/systemd-sysusers: stop creating users statically 
On Linux we cannot feasbibly generate users statically because we need
to take care to not change or re-use UIDs over the lifetime of a machine
(i.e. over multiple generations). This means we need the context of the
running machine.

Thus, stop creating users statically and instead generate them at
runtime irrespective of mutableUsers.

When /etc is immutable, the password files (e.g. /etc/passwd etc.) are
created in a separate directory (/var/lib/nixos/etc). /etc will be
pre-populated with symlinks to this separate directory.

Immutable users are now implemented by bind-mounting the password files
read-only onto themselves and only briefly re-mounting them writable to
re-execute sysusers. The biggest limitation of this design is that you
now need to manually unmount this bind mount to change passwords because
sysusers cannot change passwords for you. This shouldn't be too much of
an issue because system users should only rarely need to change their
passwords.
 2024-07-21 16:23:11 +02:00
nikstur
d43e323b4a nixos/systemd-sysusers: only create systemusers 
systemd-sysusers cannot create normal users (i.e. with a UID > 1000).
Thus we stop trying an explitily only use systemd-sysusers when there
are no normal users on the system (e.g. appliances).
 2024-07-21 16:22:01 +02:00
Bobby Rong
350a70036a
mint-themes: Move from cinnamon scope to top-level 2024-07-21 21:17:11 +08:00
Bobby Rong
2359076f1f
mint-y-icons: Move from cinnamon scope to top-level 2024-07-21 21:17:10 +08:00
Bobby Rong
c09bdb5d5e
mint-cursor-themes: Move from cinnamon scope to top-level 2024-07-21 21:17:09 +08:00
github-actions[bot]
968bf02dc2
Merge master into staging-next 2024-07-21 12:01:16 +00:00
Will Fancher
6f959a9e96 nixos/make-initrd-ng: dlopen ELF notes 2024-07-21 06:31:42 -04:00
Will Fancher
e6c544270c nixos/make-initrd-ng: Pass contents as JSON 2024-07-21 06:31:42 -04:00
Will Fancher
519680f662 nixos/systemd: Check that systemd-boot is copied to both places. 2024-07-21 06:31:42 -04:00
nikstur
d4a80b6d0c systemd: 255.6 -> 256.2 2024-07-21 06:31:37 -04:00
Franz Pletz
1a3c164570
Merge pull request #328682 from fpletz/nixos/fix-proxmox-lxc 2024-07-21 09:09:40 +02:00
github-actions[bot]
be3262bae8
Merge master into staging-next 2024-07-21 00:02:58 +00:00
Nick Cao
b7080d0dd7
Revert "nixos/keycloak: disable keycloak-metrics-spi in tests" 
This reverts commit 0360d42e20.
 2024-07-20 15:39:58 -04:00
Cottand
6e52b03583 nomad_1_5: deprecate 2024-07-20 20:19:33 +01:00
Adam C. Stephens
65ef67740b
Merge pull request #328665 from adamcstephens/incus/fix-lts-unstable 
incus: fix OVMF path backward compatibility
 2024-07-20 14:09:46 -04:00
github-actions[bot]
e533bfc8da
Merge master into staging-next 2024-07-20 18:01:23 +00:00
lassulus
e209fc2f2f
Merge pull request #241373 from nikstur/qemu-vm-simplify-nix-store-image 
nixos/qemu-vm: simplify building nix store image
 2024-07-20 19:27:40 +02:00
Franz Pletz
ceafec213f
nixos/proxmox-lxc: fix nixos-rebuild 
Same is being done in lxc-container module.
 2024-07-20 16:54:29 +02:00
Franz Pletz
c501d3fa97
nixos/proxmox-lxc: fix getty start 
Otherwise there is no getty on tty1 in Proxmox.
 2024-07-20 16:54:28 +02:00
Franz Pletz
4aa419c046
nixos/proxmox-lxc: reformat 2024-07-20 16:54:28 +02:00
Franz Pletz
7c67f72893
Merge pull request #320075 from illustris/pve-lxc-ping-fix 2024-07-20 16:52:05 +02:00
illustris
aa794162ba
hbase: version upgrades 
- 2.4.17 -> 2.4.18
- 2.5.4 -> 2.5.9
- init 2.6.0
- 3.0.0-alpha-3 -> 3.0.0-beta-1
 2024-07-20 20:21:00 +05:30
Vladimír Čunát
577f40b8a9
Merge branch 'staging' into staging-next 2024-07-20 16:12:24 +02:00
Arian van Putten
8afba669e2 nixos/wrappers: use normal mount for /run/wrappers 
We want to get rid of specialFileSystems / earlyMountScript eventually and
there is no need to run this before systemd anymore now that
the wrappers themselves are set up in a systemd unit since https://github.com/NixOS/nixpkgs/pull/263203

Also this is needed to make soft-reboot work. We want to make sure
that we remount /run/wrappers with the nosuid bit removed on soft-reboot
but because @earlyMountScript@ happens in initrd, this wouldn't happen
 2024-07-20 16:07:43 +02:00
Adam Stephens
28922c4421
incus: fix OVMF path backward compatibility 
incus 6.3.0 changed the OVMF path, but our module needs to support LTS
as well. Also move the newer OCI deps to be conditional on version.
 2024-07-20 09:54:07 -04:00
aleksana
1d1676b2ee nixos/appimage: support both type-1 and type-2 appimages in binfmt 2024-07-20 21:23:59 +08:00
K900
5e13e3e566
Merge pull request #324894 from paveloom/flaresolverr 
flaresolverr: init at 3.3.21 + nixos/flaresolverr: initial commit
 2024-07-20 11:06:18 +03:00
illustris
0dca765a25
nixos/proxmoxImage: fix build 2024-07-20 12:12:16 +05:30
Robert Rose
c58c1e8f55 nixos/k3s: add options for graceful node shutdown and kubelet config 
Allow to set kubelet configuration parameters
via an option. Additionally, expose the
respective options for graceful node
shutdown directly, as it is anticipated to
be used frequently.
 2024-07-19 20:28:00 +02:00
github-actions[bot]
637b531dcf
Merge staging-next into staging 2024-07-19 18:01:40 +00:00
Pavel Sobolev
c9c14f86db
nixos/flaresolverr: initial commit 2024-07-19 20:55:21 +03:00
OPNA2608
029b06454e tests/teleports: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:23:19 +02:00
OPNA2608
2d49594644 tests/lomiri-clock-app: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:23:00 +02:00
OPNA2608
005ef5ab39 tests/lomiri-calculator-app: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:22:45 +02:00
OPNA2608
dc004592e8 tests/lomiri-filemanager-app: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:22:25 +02:00
OPNA2608
47e508ba36 tests/morph-browser: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:21:56 +02:00
OPNA2608
6613de20f2 tests/lomiri-system-settings: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:21:32 +02:00
OPNA2608
c768ee4aa3 nixos/lomiri: ubuntu_font_family -> ubuntu-classic 2024-07-19 19:20:59 +02:00
Peder Bergebakken Sundt
b2a54feb35
Merge pull request #279408 from alyssais/mailman-nginx-timeout 
nixos/mailman: increase nginx proxy timeout
 2024-07-19 17:56:07 +02:00
Aleksana
532db1f9d1
Merge pull request #310621 from Istvan91/dont_write_defaults_in_ssh_config 
nixos/ssh: don't write addressfamily with default value in config
 2024-07-19 21:23:08 +08:00
github-actions[bot]
a6c20a7387
Merge staging-next into staging 2024-07-19 12:01:49 +00:00
Sandro
89d95fb2bc
Merge pull request #327939 from Guanran928/libreddit 2024-07-19 13:47:14 +02:00
Sarah Brofeldt
54fbcf1be8
Merge pull request #321632 from PedroRegisPOAR/kubernetes-mkCert-drops-nogroup-as-default 
nixos/kubernetes: adds argument to mkCert defaulting to kubernetes group
 2024-07-19 12:49:49 +02:00
Jonas Chevalier
676e42a45e
Merge pull request #327729 from zimbatm/odoo-fixes 
odoo fixes
 2024-07-19 12:35:03 +02:00
Sirio Balmelli
c2b4c0e51d tests/odoo: replace db init workaround with services.odoo.autoInit 
Signed-off-by: Sirio Balmelli <sirio@b-ad.ch>
 2024-07-19 11:52:01 +02:00
Sirio Balmelli
85761ade56 modules/odoo: add autoInitExtraFlags 
Allow module user to specify additional flags to be passed on autoInit

Signed-off-by: Sirio Balmelli <sirio@b-ad.ch>
 2024-07-19 11:51:57 +02:00
Sirio Balmelli
67bcb287ec modules/odoo: execute autoInit only once 
Signed-off-by: Sirio Balmelli <sirio@b-ad.ch>
 2024-07-19 11:51:52 +02:00
Philip Taron
c67ed48869
nixos/ldap: avoid top-level with expression (#327992) 2024-07-19 11:19:51 +02:00
Philip Taron
f56ba38335
make-disk-image.nix: avoid top-level with statement (#327020) 2024-07-19 11:19:19 +02:00
Ivan Trubach
7919709a23 nixos/modules: use mapAttrsToList instead of mapAttrsFlatten 2024-07-19 11:39:39 +03:00
Frédéric Christ
0539bbe086 nixos/tests: Fix tests failing with new default IPv6 configuration 2024-07-19 09:58:25 +02:00
Guanran Wang
782e8513d3
nixos/cloudflare-dyndns: introduce package option 2024-07-19 14:45:09 +08:00
github-actions[bot]
f6ed4c2f35
Merge staging-next into staging 2024-07-19 06:01:45 +00:00
Matthew Croughan
be9599e3d4
nixos/scion: introduce package option (#327765) 2024-07-19 02:30:10 +02:00
github-actions[bot]
f316203fda
Merge staging-next into staging 2024-07-19 00:03:05 +00:00
lassulus
3575fad9da
Merge pull request #323466 from andersk/grep-stray 
nixos/udev: Fix `grep: warning: stray \ before /`
 2024-07-18 23:02:07 +02:00
Jörg Thalheim
054c2d71f7
Merge pull request #328221 from nikstur/fix-overlay-etc 
nixos/etc: handle mountpoints on top of /etc when switching
 2024-07-18 21:59:30 +02:00
nikstur
6abbe725ca nixos/etc: handle mountpoints on top of /etc when switching 
The activation script that remounts the /etc overlay now handles other
mount points on top of /etc by bind mounting them to the new temporary
/etc overlay and then atomically revealing it.
 2024-07-18 21:28:53 +02:00
nikstur
289dd22132 nixos/qemu-vm: simplify building nix store image 
Summary of this change:

- Simplify code.
- Stop a disk image from being cached in the binary cache.
- Make erofs Nix Store image build in an acceptable time outside of
  testing environments (like `darwin.builder`).
- Do not regress on performance for tests that use many store paths in
  their Nix store image.
- Slightly longer startup time for tests where not many store paths are
  included in the image (these probably shouldn't use `useNixStoreImage`
  anyways).
- Slightly longer startup time when inputs of VM do not change because
  the Nix store image is not cached anymore.

Remove the `storeImage` built with make-disk-image.nix. This produced a
separate derivation which is then cached in the binary cache. These
types of images should be avoided because they gunk up the cache as they
change frequently. Now all Nix store images, whether read-only or
writable are based on the erofs image previously only used for read-only
images.

Additionally, simplify the way the erofs image is built by copying the
paths to include to a separate directory and build the erofs image from
there.

Before this change, the list of Nix store paths to include in the Nix
store image was converted to a complex regex that *excludes* all other
paths from a potentially large Nix store.

This previous approach suffers from two issues:

1. The regex is complex and, as admitted in the source code of the
   includes-to-excludes.py script, most likely contains at least one
   error. This means that it's unlikely that anyone will touch this
   piece of software again.

2. When the Nix store image is built from a large Nix store (like when
   you build the VM script to run outside of any testing context) this
   regex becomes painfully slow. There is at least one prominent
   use-case where this matters: `darwin.builder`.

Benchmarking impressions:

- Building Nix store via make-disk-image.nix takes ~25s
- Building Nix store as an erofs image takes ~4s
- Running nixosTests.qemu-vm-writable-store-image takes ~10s when
  building the erofs image with the regex vs ~14s when building by
  copying to a temporary directory.
- nixosTests.gitlab which had the biggest gains from the initial erofs
  change takes the same time as before.
- On a host with ~140k paths in /nix/store, building the erofs image
  with the regex takes 410s as opposed to 6s when copying to a temporary
  directory.
 2024-07-18 20:24:58 +02:00
github-actions[bot]
401d4660b3
Merge staging-next into staging 2024-07-18 18:01:57 +00:00
lassulus
a62c421981
Merge pull request #290730 from nikstur/qemu-vm-refactoring 
qemu-vm.nix refactoring
 2024-07-18 19:34:51 +02:00
nikstur
b6e354f052 nixos/qemu-vm: remove creation of /etc/nixos 
/etc/nixos is already created by stage-2-init.sh
 2024-07-18 19:11:28 +02:00
nikstur
cb5a876e82 nixos/qemu-vm: consistently use efiSysMountPoint 
Remove the explicit creation of efiSysMountPoint. This is not needed in
the scripted or the systemd initrd.
 2024-07-18 19:11:27 +02:00
nikstur
b7b90d0455 nixos/qemu-vm: fsck ESP 
The ESP is a writable vfat filesystem that can be fscked like any other
fs thus we should stick to the default.
 2024-07-18 19:11:27 +02:00
nikstur
0e5f929851 nixos/tests/qemu-vm-store: init 2024-07-18 19:11:27 +02:00
nikstur
ded6d983d6 nixos/qemu-vm: use new overlayfs API 2024-07-18 19:11:24 +02:00
nikstur
54674e9063 nixos/qemu-vm: remove duplication between scripted and systemd initrd 2024-07-18 19:09:28 +02:00
Michael Hoang
ab65220a1a regreet: add options for controlling theming 2024-07-19 01:28:45 +10:00
Krzysztof Nazarewski
676a51c41f nixos/hardware.display: init 2024-07-18 16:57:40 +03:00
Jakob Klepp
c5c92feff7
nixos/oci-containers: document firewall bypass 
Add explanation about the security impact of the
ports option.
Provide a safer example.

The problem is discussed in greater depth here:
https://github.com/NixOS/nixpkgs/issues/111852
 2024-07-18 14:32:08 +02:00
github-actions[bot]
844ec2d5a1
Merge staging-next into staging 2024-07-18 12:01:55 +00:00
Martin Weinelt
983077457f
Merge remote-tracking branch 'origin/staging-next' into staging 
Conflicts:
-	pkgs/development/python-modules/uvcclient/default.nix
-	pkgs/development/tools/rust/rust-analyzer/default.nix
 2024-07-18 12:35:33 +02:00
Jacek Galowicz
dfc9d68303
Merge pull request #319308 from frederictobiasc/nixosTest-ipv6 
nixosTest: Introduce IPv6
 2024-07-18 11:52:10 +02:00
Sandro
fa5abfe559
Merge pull request #317623 from jmbaur/stc-ng-followup 2024-07-18 11:33:59 +02:00
Frédéric Christ
c6f6c28218 nixos/testing: Add ipv6 configuration 
This contribution enables a working IPv6 setup by default. This works
analog to the current automatic IPv4 setup.
 2024-07-18 10:22:32 +02:00
Aaron Andersen
2e930eafb9
Merge pull request #318285 from gador/nixos-zabbixWeb-nginx 
nixos/zabbixWeb: Add nginx as webserver, add zabbix 6.4
 2024-07-17 21:22:13 -04:00
Martin Weinelt
bf8439efae
Merge pull request #311927 from mweinelt/music-assistant 
music-assistant: init at 2.0.7
 2024-07-18 02:31:18 +02:00
Darragh Elliott
61820de2d4 ddns-updater: Add module, test, update script 2024-07-17 21:56:05 +00:00
Sandro
669a3a6fe0
Merge pull request #327748 from lluchs/fix-tsm-client-lists 
nixos/tsm-client: Fix multi-value dsm.sys options
 2024-07-17 23:05:09 +02:00
Florian Brandes
7d3b77d66f
nixos/zabbixWeb: format 
Signed-off-by: Florian Brandes <florian.brandes@posteo.de>
 2024-07-17 22:33:47 +02:00
Florian Brandes
9ca5b84e27
nixos/zabbixWeb: add nginx config 
Co-authored-by: Aaron Andersen <aaron@fosslib.net>
Signed-off-by: Florian Brandes <florian.brandes@posteo.de>
 2024-07-17 22:31:50 +02:00
Martin Weinelt
974165d1cc
nixos/doc/rl-2411: add music-assistant 2024-07-17 22:29:39 +02:00
Martin Weinelt
0abdf47358
nixos/tests/music-assistant: init 2024-07-17 22:29:38 +02:00
Martin Weinelt
76442766ea
nixos/music-assistant: init 2024-07-17 22:29:38 +02:00
Johannes Jöns
3f7fcbb2f9
Merge pull request #290014 from jopejoe1/ubuntu-font 
ubuntu-sans{,-mono}: rename from ubuntu_font_family, 0.83 -> 1.004
 2024-07-17 18:46:36 +00:00
Kira Bruneau
b37088de74
Merge pull request #326894 from kira-bruneau/replay-sorcery 
replay-sorcery: remove as it is unmaintained upstream
 2024-07-17 14:37:51 -04:00
Artturin
20cf80e167 Merge branch 'staging-next' into staging 2024-07-17 21:29:37 +03:00
Philip Taron
33a4732e46
nixos/swap: avoid top-level with expressions (#327991) 2024-07-17 20:23:14 +02:00
Pol Dellaiera
74d05311fd
Merge pull request #327886 from drupol/nixos-tika-module-add-options 
nixos/tika: add `enableOcr` option
 2024-07-17 20:10:06 +02:00
Philip Taron
1438803fb5
nixos/users-groups: avoid top level with lib; use lib before builtins (#327757) 2024-07-17 20:00:54 +02:00
Cassandra McCarthy
c6ba378b7b
airsonic: update context-path directive 
This line has been broken since the service file was created. According
to the [spring docs] that Airsonic uses, server.context-path is what
should be here. I've tested this by manually setting it as an extra JVM
option on my machine, and it works.

[spring docs]: https://docs.spring.io/spring-boot/docs/1.4.5.RELEASE/reference/htmlsingle/#common-application-properties
 2024-07-17 13:23:19 -04:00
Sandro
1607a42b49
Merge pull request #290452 from flandweber/borgmatic-exporter 
borgmatic-exporter: init at 0.2.5
 2024-07-17 19:08:28 +02:00
Nicolas Mémeint
1ceb55d4b9 nixos/authelia: Remove options incompatible with new settings 
- Remove settings.server.{host,port} options
  - Replaced by settings.server.address
  - If any of settings.server.{host,port,path} are specified in the
    configuration, a warning is displayed and these values will be used
    instead of settings.server.address

- Change what secrets.oidcIssuerPrivateKeyFile maps to
  - Previously: AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE
  - Now: identity_providers.oidc.jwks[0].key
    - Not done directly in the NixOS settings config but as a separate
      YAML config file
    - Done that way because Go templates are not correctly handled by
      the YAML generator (#319716)

- Change secrets.jwtSecretFile env variable mapping
  - Previously: AUTHELIA_JWT_SECRET_FILE
  - Now: AUTHELIA_IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET_FILE
 2024-07-17 17:26:46 +02:00
Nicolas Mémeint
12f1589056 authelia: 4.37.5 -> 4.38.9 2024-07-17 17:26:46 +02:00
Guanran Wang
f7a0c71b61
libreddit: remove as unmaintained upstream 2024-07-17 23:03:14 +08:00
Aleksana
a9a4e171c7
Merge pull request #327032 from danc86/push-krkxkxtnruqp 
nixos/sssd: fix KCM to use new krb5 settings
 2024-07-17 22:29:09 +08:00
Pol Dellaiera
6b3c00c65a
nixos/tika: add enableOcr option 2024-07-17 13:14:35 +02:00
Weijia Wang
078fdedf26 Merge branch 'staging-next' into staging 2024-07-17 13:10:23 +02:00
Sandro
51fcc2c92e
Merge pull request #314440 from ju1m/radicle 2024-07-17 13:04:06 +02:00
Kartik Gokte
dbba11e241 nixos/prometheus-pve-exporter: added new options introduced in v3.4.3 2024-07-17 16:09:11 +05:30
zimbatm
d11a54cb2f nixos/odoo: set data_dir explicitly 
Don't hide the data is a private sub-folder.

Before:
* /var/lib/private/odoo/.local/share/Odoo/
After:
* /var/lib/private/odoo/data
 2024-07-17 10:59:01 +02:00
Pyrox
a24fa6098d
nixos/gotenberg: init 2024-07-17 10:37:35 +02:00
OTABI Tomoya
43d306e7db
Merge pull request #326398 from phaer/etebase-python 
etebase-server: use buildPythonApplication, default to withLdap = false
 2024-07-17 10:00:42 +09:00
github-actions[bot]
4c086d8ee0
Merge staging-next into staging 2024-07-17 00:03:16 +00:00
Lukas Werling
f52ee2af39 nixos/tsm-client: Fix multi-value dsm.sys options 
A configuration such as:

    programs.tsmClient.servers.backup.domain = [ "/dir1" "dir2" ];

...would previously result in an error ("cannot coerce a list to a
string"), since `makeDsmSysLines` would return a nested list.
 2024-07-16 23:38:14 +02:00
Robert Hensing
2d9a686483 nixos/nix-channel.nix: shellcheck and fix the activation check 2024-07-16 22:09:33 +02:00
zimbatm
c570314635 nixos/odoo: add autoInit option 
When enabled, Odoo will automatically initialize the database on
startup.
 2024-07-16 21:55:13 +02:00
zimbatm
750f1478fc nixos/odoo: use env vars to configure Odoo 
This allows running multiple commands with the same settings.
 2024-07-16 21:55:13 +02:00
Robert Hensing
3f76dcea93 nixosTests.installer.switchToFlake: It is probably really stupid 
We may want to clear NIX_PATH when channels are disabled, or maybe
it has to be a separate option.
This is just very frustrating to me.
 2024-07-16 21:45:00 +02:00
Julien Malka
af6c7624fa
Merge pull request #327708 from SuperSandro2000/systemdBootBuilder 2024-07-16 21:38:10 +02:00
Robert Hensing
46df92b270 nixosTests.installer.switchToFlake: Adjust for workaround in #323613 2024-07-16 21:34:40 +02:00
Robert Hensing
34fee8c804 nixos/nix-channel: Highlight and tidy the warnings 2024-07-16 21:34:40 +02:00
Pol Dellaiera
dfef8af6e9
Merge pull request #326939 from abysssol/ollama-split-test 
nixos/ollama: split cuda and rocm from service test
 2024-07-16 21:02:07 +02:00
Robert Hensing
1022da85ab nixos/activation-script: Add lib.sh with warn() 2024-07-16 20:42:06 +02:00
phaer
c437fb23e1 etebase-server: use buildPythonApplication... 
...not pythonPackage. This is an app, living in pkgs/servers, so
we just use callPackage in all-packages and drop the python module.

python3.pkgs.toPythonModule could be used if a python module was needed.
Before that change legacyPackages.x86_64-linux.python311.pkgs.etebase-server.python
would give a python 3.12 release, and was therefore broken.

etebase-server = toPythonModule (pkgs.etebase-server.override {
  python3 = python;
});

would now be correct
 2024-07-16 20:20:29 +02:00
github-actions[bot]
df8055b727
Merge staging-next into staging 2024-07-16 18:01:37 +00:00
Sandro Jäckel
0e5342f48a
nixos/systemd-boot: give systemdBootBuilder a better name 
Before it had twice a store hash which made nix store diff-closures
kinda ugly.
 2024-07-16 19:53:57 +02:00
Artturin
a516ea8c99 Merge branch 'staging-next' into staging 2024-07-16 19:07:48 +03:00
Sandro
c0e4367e8f
Merge pull request #267764 from Silver-Golden/nixos/proxmox-lxc-import-not-activate 2024-07-16 17:02:47 +02:00
❄️
930b0dca59
Merge pull request #327476 from rorosen/k3s-extra-flags-list 
nixos/k3s: accept a list of extraFlags
 2024-07-16 09:27:19 -03:00
Sandro
0397741f8a
Merge pull request #324698 from bbenno/graylog-6_0 2024-07-16 14:24:21 +02:00
Sandro
11964fa63e
Merge pull request #327361 from arthsmn/flatpak-builder-update 2024-07-16 13:55:12 +02:00
Kira Bruneau
c0c8a36716 replay-sorcery: remove as it is unmaintained upstream 2024-07-16 07:29:07 -04:00
lassulus
40e2c89c57
Merge pull request #327324 from quantenzitrone/ydotool 
programs.ydotool: remove invalid systemd directive
 2024-07-16 13:24:36 +02:00
Atemu
aba669227b
Merge pull request #326618 from emilazy/drop-ffmpeg-5 
ffmpeg_5: drop
 2024-07-16 13:06:36 +02:00
Finn Landweber
0d58b75cba
added prometheus-borgmatic-exporter module 2024-07-16 12:17:49 +02:00
Sandro
10635f7d2a
Merge pull request #202068 from justinas/nginxlog-exporter-typed-options 2024-07-16 11:07:18 +02:00
Aleksana
ae5d2af73e
Merge pull request #327288 from Mic92/xmr-stak 
xmr-stak: remove
 2024-07-16 16:37:20 +08:00
Honnip
ec2ae3e0df
nixos/firefox: add missing language packs 
Add `fur`, `sat`, `sc`, `skr`, `tg`.
Aligned to Firefox 128
 2024-07-16 15:36:32 +09:00
Robert Rose
cc2790ff1e nixos/k3s: accept a list of extraFlags 
Accept a list of strings for the extraFlags
option in addition to the previous single
string.
 2024-07-16 08:20:32 +02:00
Philip Taron
2e17c4a4da
nixos/amazon-image: avoid top-level with statements 2024-07-15 22:02:39 -07:00
Philip Taron
3ba72e2834
nixos/amazon-image: avoid top-level with statements in maintainers script 2024-07-15 22:02:39 -07:00
Max
1dd44eaf67 nixos/pam: use Kanidm's package option 2024-07-16 00:39:03 +02:00
Adam C. Stephens
a167a16697
Merge pull request #326620 from bbigras/incus 
incus: 6.2.0 -> 6.3.0
 2024-07-15 14:47:18 -04:00
Masum Reza
c796e4e5ac
Merge pull request #323877 from Luflosi/update/darling-dmg 
darling-dmg: 1.0.4+git20200427 -> 1.0.4-unstable-2023-07-26
 2024-07-15 22:40:06 +05:30
Bruno Bigras
856651fda8 nixos/incus: INCUS_OVMF_PATH -> INCUS_EDK2_PATH 2024-07-15 12:10:50 -04:00
Bobby Rong
d4f7ad898f
Merge pull request #326687 from getchoo/pkgs/budgie/by-name 
move all packages from budgie & budgiePlugins scopes
 2024-07-15 22:41:54 +08:00
Sandro
99fe5240da
Merge pull request #325811 from Naxdy/work/blackmagic 2024-07-15 16:41:11 +02:00
Weijia Wang
97381b7b83
Merge pull request #322106 from codyps/lighthouse-5.2.0 
lighthouse: 4.6.0 → 5.2.0
 2024-07-15 16:21:56 +02:00
Zitrone
10c8868b7f
programs.ydotool: remove invalid systemd directive 
fixes #327156
 2024-07-15 16:03:15 +02:00
arthsmn
05b4a52e0a
flatpak-builder: update test 2024-07-15 09:49:49 -03:00
Will Fancher
b4b4751e97 systemd-stage-1: Use common bin for /sbin 
util-linux's mount command was only looking in /sbin for mount
helpers, which wasn't working.
 2024-07-15 05:03:52 -04:00
K900
c3391ff001 nixos-alsa: remove with lib;, fix undefined references 2024-07-15 10:33:34 +03:00
Jörg Thalheim
fdfe59f7b3 xmr-stak: remove 2024-07-15 09:30:59 +02:00
Masum Reza
a14c5d651c
Merge pull request #306516 from gador/init-blenderfarm 
blendfarm: init at 1.1.6; nixos/blendfarm: init
 2024-07-15 09:37:31 +05:30
abysssol
aa8e02582d nixos/ollama: split cuda and rocm from service test 
Cuda and rocm are platform specific, only working on linux.
Also, ofborg won't run any of the service test at all because
cuda is unfreely licensed.
 2024-07-14 22:01:56 -04:00
seth
1b26960b05
nixos/doc/rl-2411: budgie and budgiePlugins have been removed 2024-07-14 15:38:11 -04:00
seth
731fb7477c
budgie-analogue-clock-applet: move from budgiePlugins scope to top-level 2024-07-14 15:37:52 -04:00
seth
fef55ad1ca
magpie: move from budgie scope to top-level 2024-07-14 15:33:01 -04:00
seth
50124d6c9f
budgie-session: move from budgie scope to top-level 2024-07-14 15:33:01 -04:00
seth
228edade41
budgie-screensaver: move from budgie scope to top-level 2024-07-14 15:33:00 -04:00
seth
51bfa7985c
budgie-gsettings-override: move from budgie scope to top-level 2024-07-14 15:33:00 -04:00
seth
9bfabc5a06
budgie-desktop-view: move from budgie scope to top-level 2024-07-14 15:32:59 -04:00
seth
417179abbd
budgie-desktop{,with-plugins}: move from budgie scope to top-level 2024-07-14 15:32:58 -04:00
seth
96bab1b8b0
budgie-control-center: move from budgie scope to top-level 2024-07-14 15:32:57 -04:00
seth
ba97c97f32
budgie-backgrounds: move from budgie scope to top-level 2024-07-14 15:32:57 -04:00
Naxdy
73ffe01d1a
nixos/decklink: init 2024-07-14 20:42:52 +02:00
Vladimir Panteleev
1e6acabaeb
nix-channel: do not set empty nix-path when disabling channels 
An empty nix-path in nix.conf will disable NIX_PATH environment variable
entirely, which is not necessarily implied by users who want to disable
nix channels. NIX_PATH also has some usages in tools like nixos-rebuild
or just as user aliases.

That change is surprising and debatable, and also caused breakages in
nixpkgs-review and user configs.

See:
- https://github.com/NixOS/nixpkgs/pull/242098/files#r1269891427
- https://github.com/Mic92/nixpkgs-review/issues/343
- https://github.com/NixOS/nix/pull/10998

Co-authored-by: oxalica <oxalicc@pm.me>
 2024-07-14 18:17:16 +00:00
github-actions[bot]
31817540ee
Merge staging-next into staging 2024-07-14 18:01:37 +00:00
Sefa Eyeoglu
1d5188b3b4
nixos/vaultwarden: assert valid backupDir path 
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2024-07-14 19:54:27 +02:00
Sandro
3c2e182677
Merge pull request #318897 from symphorien/btrbk_undeprecate_extraPackages 
nixos/btrbk: undeprecate extraPackages
 2024-07-14 19:13:55 +02:00
Sandro
77ee426a4d
Merge pull request #324663 from OPNA2608/init/lomiri/teleports 
lomiri.teleports: init at 1.20
 2024-07-14 18:47:54 +02:00
Florian Brandes
f312bdb5d7
nixos/blendfarm: init 
Signed-off-by: Florian Brandes <florian.brandes@posteo.de>
 2024-07-14 21:01:04 +05:30
Masum Reza
47d9445dfa
Merge pull request #311189 from Luis-Licea/master 
nixos/localsend: init
 2024-07-14 19:53:43 +05:30
Sandro
8f24fa52bb
Merge pull request #317488 from asbish/master 
nixos/prometheus-snmp-exporter: add environmentFile option
 2024-07-14 16:17:05 +02:00
Shiva Kaul
04967c307f nixos/spiped: remove broken chmod's from preStart 
Remove `chmod`s which were (1) broken and (2) no longer considered good Nix practice.
 2024-07-14 22:04:53 +10:00
github-actions[bot]
0d7af056e2
Merge staging-next into staging 2024-07-14 12:02:04 +00:00
Pol Dellaiera
1a8e33d451
Merge pull request #326532 from drupol/module/add-tika 
nixos/tika: init module
 2024-07-14 12:27:27 +02:00
Emily
f9eee6b0a7 ffmpeg_5: drop 2024-07-14 08:35:56 +01:00
Emily
aef28c7834 nixos/akkoma: unpin ffmpeg_5 
Their Dockerfile uses Alpine’s ffmpeg package, which is already
on 6. They just invoke the command‐line tool and nothing they do
looks particularly version‐sensitive.
 2024-07-14 08:34:23 +01:00
Emily
b801dc2813 nixos/frigate: unpin ffmpeg_5 
It just uses the command‐line tool, and the test passes.
 2024-07-14 08:34:23 +01:00
Dan Callaghan
375ef3c127 nixos/sssd: fix KCM to use new krb5 settings 
krb5.libdefaults moved to security.krb5.settings.libdefaults in PR #243169.
 2024-07-14 16:43:56 +10:00
Vladimír Čunát
211398c03e
Merge branch 'staging-next' into staging 2024-07-14 08:35:35 +02:00
Jörg Thalheim
de95681a8d
Merge pull request #319836 from martinetd/bpftrace_headers 
bpftrace: fix regressions with 0.20.4
 2024-07-14 05:58:31 +02:00
tomberek
e28b6650c3
Merge pull request #320462 from amozeo/pkgs/nixos-rebuild/by-attr 
nixos-rebuild, nixos-install: add support for --file and --attr flags
 2024-07-13 20:46:31 -04:00
éclairevoyant
9665639708
Merge pull request #310708 from importantblimp/180654 
nixos/input-method: deprecate .enabled option; add .type and .enable options
 2024-07-14 00:02:13 +00:00
lassulus
ee2d97a3ce
Merge pull request #323604 from LennyPenny/patch-1 
nixos/tandoor-recipes: enable serving of media files by default
 2024-07-13 21:36:17 +02:00
Gavin John
e69e59cbce
{nixos}localsend: Add pandapip1 as maintainer 2024-07-14 00:08:34 +05:30
Gavin John
3e8b6a47fb
nixos/doc/rl-2411: Document programs.localsend 2024-07-14 00:08:34 +05:30
Luis David Licea Torres
1cbd2f94cb
nixos/tests/localsend: init 2024-07-14 00:08:33 +05:30
Luis David Licea Torres
f5443063a2
nixos/localsend: init module 2024-07-14 00:08:33 +05:30
Guillaume Girol
98f7683671
Merge pull request #324585 from timschumi/gsr-2024-07-04 
gpu-screen-recorder{,-gtk}: Update to unstable-2024-07-05 (+ systemd unit and capabilities)
 2024-07-13 17:05:00 +02:00
K900
01fe231d85
Merge pull request #326262 from K900/no-more-sound-enable 
nixos/alsa: kill sound.enable and friends with fire
 2024-07-13 14:04:22 +03:00
K900
3eeff54780 nixos/alsa: kill sound.enable and friends with fire 2024-07-13 13:56:18 +03:00
OPNA2608
77aaa0695f nixos/lomiri: Add teleports 2024-07-13 10:45:42 +02:00
OPNA2608
e5ad7914a8 tests/teleports: init 2024-07-13 10:45:16 +02:00
Jörg Thalheim
084fddb13f
Merge pull request #326701 from turtton/multiple-efi-support 
nixos/systemd-boot-builder: fix installed_match regex
 2024-07-13 10:16:37 +02:00
turtton
be20b91547 nixos/systemd-boot-builder: fix installed_match regex 
Fix regular expression used to get bootloader versions from bootctl status.
This avoids problems that occur in minor environments like mine.

References:  #296563
 2024-07-13 09:20:13 +02:00
superherointj
e3e012325b k3s/tests/auto-deploy: fix race condition 
Co-authored-by: wrmilling marcusramberg
 2024-07-12 17:58:00 -03:00
superherointj
b298bbfce0 k3s/nixos/tests: move comments to test (clean-up) 2024-07-12 17:58:00 -03:00
Bruno Bigras
c2a12db1a4 nixos/incus: add skopeo and umoci 2024-07-12 16:34:17 -04:00
Jan Tojnar
1275c3f884 Merge branch 'staging-next' into staging 2024-07-12 21:36:23 +02:00
Tim Schumacher
cddf0244b3 gpu-screen-recorder: Add program module for creating setcap wrappers 
Co-authored-by: oddlama <oddlama@oddlama.org>
Co-authored-by: ash <ash@sorrel.sh>
 2024-07-12 21:30:17 +02:00
Pol Dellaiera
c8bf7321a9
nixos/tika: init module 2024-07-12 18:46:53 +02:00
Maximilian Bosch
8d75ee9c03
Merge pull request #317567 from erictapen/postgresql-tls-client-cert-test 
nixos/tests/postgresql: add tls client cert test
 2024-07-12 15:08:37 +00:00
Florian Klink
68767b54d3
Merge pull request #321935 from Ma27/nspawn-cgroupsv2 
nixos/nspawn: cgroupsv2 by default
 2024-07-12 18:06:08 +03:00
❄️
4c8eaad86a
Merge pull request #326542 from superherointj/k3s-use-teams 
k3s: use team for maintainers
 2024-07-12 11:23:58 -03:00
superherointj
5266d2da66 k3s/tests/auto-deploy: fix auto-deploy reference 
* re-establish alphabetical order
* fix typo on comment
 2024-07-12 10:06:45 -03:00
Masum Reza
20d8c32dbf
Merge pull request #316658 from symphorien/ibus_engine_option_error_message 
nixos/ibus: improve error message for non-engine packages
 2024-07-12 18:18:21 +05:30
superherointj
bbc168ab4c k3s: use team for maintainers 2024-07-12 09:30:38 -03:00
Johannes Jöns
07c1bf2c3a
Merge pull request #326531 from Aleksanaa/nixos/vim 
nixos/vim: improve warning message
 2024-07-12 12:27:23 +00:00
github-actions[bot]
b66506a79e
Merge staging-next into staging 2024-07-12 12:01:44 +00:00
Martin Weinelt
e62de266ad
Merge pull request #326149 from mguentner/remove_mxisd_ma1sd 
nixos/mxisd: remove module
 2024-07-12 13:15:11 +02:00
aleksana
03d414a125 nixos/vim: improve warning message 2024-07-12 18:52:42 +08:00
Marcus Ramberg
72249a0d35
Merge pull request #275180 from rorosen/extend-k3s-module 2024-07-12 12:02:32 +02:00
Maximilian Güntner
23e62062bc
nixos/mxisd: remove module 
mxisd and ma1sd are both unmaintained
 2024-07-12 11:44:59 +02:00
GY
bcc7eff2c5
nixos/input-method: deprecate .enabled option; add .type and .enable options 
This commit introduces two new properties:
`enable` and `type`, to replace the `enabled` property.
`enable` has the same meaning as is common across nixpkgs.
`type` has the same meaning as the existing `enabled` property.
`enabled` property is now deprecated and will be removed in a future release.

Fixes #180654
 2024-07-12 03:59:20 -04:00
Doron Behar
3cddaded22
Merge pull request #318015 from doronbehar/pkg/yarnConfigHook 
Create yarnBuildHook and yarnConfigHook
 2024-07-12 09:45:26 +03:00
Vladimír Čunát
2c053848df
Merge branch 'master' into staging 2024-07-11 22:05:05 +02:00
Wroclaw
eeb1dffd02 nixos/nixos-install: add support for --file and --attr flags 2024-07-11 21:34:01 +02:00
seth
e708e7a14d
nixos/nvidia: enable modesetting by default on driver versions >= 535 2024-07-11 15:14:28 -04:00
Aleksana
bed9309adc
Merge pull request #325697 from Pandapip1/envision-udev-rules 
nixos/envision: Add udev rules
 2024-07-11 21:36:57 +08:00
Aleksana
e04b0e7323
Merge pull request #326162 from jopejoe1/vim-refactor 
nixos/vim: add enable option and link `/share/vim-plugins` only when …
 2024-07-11 21:35:06 +08:00
Robert Hensing
ca6eda04cc
Merge pull request #325929 from jfroche/nix-2.18.5 
nixVersions.nix_2_18: 2.18.4 -> 2.18.5
 2024-07-11 14:29:46 +02:00
Florian Klink
a307e5d76b
Merge pull request #326068 from phozzy/Feat/Add-syslog-capabilities-4-opentelemetry-collector 
Feat/add syslog capabilities 4 opentelemetry collector
 2024-07-11 15:10:43 +03:00
Jonas Chevalier
87fa27e3aa
Merge pull request #321410 from mogeko/rke2 
rke2: add killall script
 2024-07-11 12:15:24 +02:00
Masum Reza
ae20d8d61a
Merge pull request #325951 from mjoerg/magic-wormhole-python-3.12 
magic-wormhole: make usable with Python 3.12
 2024-07-11 15:32:13 +05:30
Sandro
24cefb01b3
Merge pull request #284419 from ocfox/realm 2024-07-11 10:46:47 +02:00
K900
1f86d2ae2c
Merge pull request #324921 from CobaltCause/more-magic-kernel-params 
nixos/nvidia: enable fbdev when available
 2024-07-11 09:39:35 +03:00
Artur Faizullin
4e3c5fb713 nixos/opentelemetry-collector: Avoid using a fixed hardcoded path 
Follow the boyscout rule.
 2024-07-11 08:27:29 +02:00
Artur Faizullin
40013729d3 nixos/opentelemetry-collector: Use SupplementaryGroups to add the dynamic user to systemd-journal group 
OpenTelemetry collector's Journald Receiver has not enough permissions
 2024-07-11 08:23:20 +02:00
Artur Faizullin
e304e2ee59 nixos/opentelemetry-collector: Accept changes from linter 
Follow the boyscout rule.
 2024-07-11 08:19:48 +02:00
jopejoe1
5f56edf0b9 nixos/vim: add enable option and link /share/vim-plugins only when vim is enabled 2024-07-11 08:08:12 +02:00
Aleksana
733998ee32
Merge pull request #326160 from jopejoe1/nano-link 
nixos/nano: only link `/share/nano` when nano is enabled
 2024-07-11 12:09:01 +08:00
Masum Reza
341ef0e80b
Merge pull request #321142 from treyfortmuller/tff/cloudflare-warp-module 
nixos/cloudflare-warp: init module
 2024-07-11 09:28:09 +05:30
Nick Cao
5df12940bd
nixos/udev: remove rules for /dev/kvm 
Permissions on /dev/kvm are already specified by tmpfiles.d rules

Reference: https://github.com/systemd/systemd/blob/v255/tmpfiles.d/static-nodes-permissions.conf.in#L18
 2024-07-10 21:06:01 -04:00
Peder Bergebakken Sundt
0271af555b
Merge pull request #309213 from jmbaur/homed-nixos-test 
nixos/homed: fix test
 2024-07-11 01:41:30 +02:00
Peder Bergebakken Sundt
26b1af9155
Merge pull request #318543 from TomaSajt/terraria-kill-service 
nixos/terraria: kill session when stopping without world selected
 2024-07-11 01:38:35 +02:00
Martin Weinelt
176a56c40f
Merge remote-tracking branch 'origin/staging-next' into staging 
Conflicts:
- pkgs/applications/misc/blender/default.nix
- pkgs/development/web/nodejs/nodejs.nix
 2024-07-11 01:06:28 +02:00
Aaron Andersen
6c4182b0c2
Merge pull request #325957 from mibmo/module/clamav/package-option 
nixos/clamav: add package option
 2024-07-10 17:18:41 -04:00
Wroclaw
d77469c442 nixos/tests/installer: add testByAttrSwitch 2024-07-10 20:59:41 +02:00
Wroclaw
c7b66353bf nixos/tests/installer: rename "flake" argument in makeConfig and reverse meaning 
to "withTestInstrumentation", which reflects what this argument does
 2024-07-10 20:59:41 +02:00
jopejoe1
a9007d0831 nixos/nano: only link /share/nano when nano is enabled 2024-07-10 20:29:50 +02:00
Trey Fortmuller
7b32ea9abb
nixos/cloudflare-warp: init 
Co-authored-by: John Titor <50095635+JohnRTitor@users.noreply.github.com>
removed `with lib;` at the top level
cleanup
 2024-07-10 22:48:57 +05:30
Peder Bergebakken Sundt
447ca95585
Merge pull request #320277 from Yarny0/tsm-client-update 
tsm-client: update and migrate to by-name and finalAttrs
 2024-07-10 19:00:24 +02:00
Gavin John
e3e16de910 nixos/envision: Add udev rules 2024-07-10 10:53:02 -04:00
Sandro
96b59d07fb
Merge pull request #308779 from SuperSandro2000/shells-environment-followup 2024-07-10 16:48:15 +02:00
ocfox
f0e2e1d83e
nixos/realm: add release note 2024-07-10 16:43:18 +02:00
ocfox
76b5481df7
nixosTests.realm: init 2024-07-10 16:43:17 +02:00
ocfox
86ce0733d2
nixos/realm: init 
Co-authored-by: Nick Cao <nickcao@nichi.co>
Co-authored-by: oluceps <i@oluceps.uk>
 2024-07-10 16:43:17 +02:00
Robert Schütz
626ecc4e32
Merge pull request #325711 from wahjava/update-vaultwarden 
vaultwarden: 1.30.5 -> 1.31.0
 2024-07-10 07:21:26 -07:00
Ashish SHUKLA
4d8ce0754f
vaultwarden: 1.30.5 -> 1.31.0 2024-07-10 14:46:37 +02:00
WilliButz
0864b38144
nixos/repart-image: fix amend script 
Calling ruff directly on files was deprecated in favor of
`ruff check`. Since #322953 usage without the subcommand is no longer
possible.
 2024-07-10 11:40:40 +02:00
Masum Reza
025f6d60e3
Merge pull request #326047 from britter/britter/onlyoffice-typos 
onlyoffice: typo fixes, remove top level `with lib;`
 2024-07-10 15:01:05 +05:30
Benedikt Ritter
57ea5be929
onlyoffice: Remove top-level with lib; 
Prepend affected components with `lib.` instead.
 2024-07-10 10:42:29 +02:00
lassulus
11dbf85aad
Merge pull request #325637 from Stunkymonkey/jtisi-meet-chmod-chown 
nixos/jitsi-meet: prefer 'serviceConfig' over 'chmod'/'chown'
 2024-07-10 09:57:18 +02:00
Benedikt Ritter
d61489db1a
onlyoffice: Fix typos 2024-07-10 09:14:21 +02:00
Doron Behar
238d267aef doc: mention yarn hooks in release notes 2024-07-10 09:39:48 +03:00
Martin Joerg
a85c314882 nixos/magic-wormhole-mailbox-server: use Python 3.11, adopt 
magic-wormhole-mailbox-server is not yet supported with Python 3.12.
https://github.com/magic-wormhole/magic-wormhole-mailbox-server/issues/41
 2024-07-09 22:22:56 +00:00
Martin Joerg
12de9a7469 nixos/magic-wormhole-mailbox-server: nixfmt 2024-07-09 22:22:56 +00:00
Gavin John
e922115dfd nixos/doc/rl-2411: Document nixos/qgroundcontrol 2024-07-09 18:19:19 -04:00
Gavin John
b480a4b396 qgroundcontrol: Add pandapip1 as maintainer 2024-07-09 18:19:18 -04:00
Gavin John
36a1b0dc58 nixos/qgroundcontrol: init module 2024-07-09 18:19:18 -04:00
mib
8eac966310 nixos/clamav: add package option 2024-07-10 00:00:01 +02:00
Tom Butler
e7e8ad1e35
nixos: Set home directory parent tree permissions to 0755 
When the user's home directory is created using `createHome` e.g.

```
users.users.alice = {
    home = "/users/alice";
    createHome = true;
};
```

The `/users` directory was created with the same permissions as `/users/alice`, `0700` by default.

The parent directory `/users` permissions results in `createHome` creating a home directory that is inaccessible to the user:

```
$ su alice
$ cd /user/alice
cd: permission denied: /users/alice
```

The underlying cause is `make_path($u->{home}, { mode => oct($u->{homeMode}) })` which sets, in the example above`, `/users` to `0700`. Instead it should be `0755` like other system directories `/var`, `/dev`, etc.
 2024-07-09 23:09:09 +02:00
Justinas Stankevicius
a572d5151c nixos/prometheus-nginxlog-exporter: define types of inner options 2024-07-09 23:12:33 +03:00
Jean-François Roche
c08c79536c nixVersions.nix_2_18: 2.18.4 -> 2.18.5 
Fix sandbox on macos.

More details here: https://github.com/NixOS/nix/compare/2.18.4...2.18.5
 2024-07-09 21:56:09 +02:00
Franz Pletz
c7ee75329f
Merge pull request #325247 from OPNA2608/fix/lomiri/revert-glib-workarounds 
lomiri.*: Revert GLib workarounds
 2024-07-09 17:51:49 +02:00
Franz Pletz
f1d54d49b9
Merge pull request #325459 from numinit/nebula-module-tweaks 
nixos/nebula: support non-path host keys
 2024-07-09 16:59:35 +02:00
Franz Pletz
b9db8b7c16
Merge pull request #325589 from wskeele/duplicity-include-filelist 
nixos/duplicity: Add support for --include-filelist / --exclude-filelist
 2024-07-09 16:45:35 +02:00
Franz Pletz
a88ac08475
Merge pull request #325377 from hughobrien/hetzner-virtio_gpu 
profiles/qemu_guest: add virtio_gpu to initrd
 2024-07-09 15:47:21 +02:00
Franz Pletz
31c99a61da
Merge pull request #325286 from bjornfor/nixos-deconz-fix-service-stop 
nixos/deconz: treat SIGTERM exit status as success
 2024-07-09 15:07:36 +02:00
Emily Trau
5fbd57aebc
Merge pull request #325738 from Enzime/drop/Enzime 
maintainers: remove Enzime
 2024-07-09 16:00:59 +10:00
Pol Dellaiera
db41081a91
Merge pull request #323743 from NixOS/nixos/module/glance-init 
nixos/glance: init module
 2024-07-09 06:42:22 +02:00
Michael Hoang
eb725313bc treewide: remove Enzime 2024-07-09 14:32:33 +10:00
Martin Weinelt
5a82f82cc5
Merge pull request #325594 from mweinelt/firefox-128.0 
Firefox: 127.0.2 -> 128.0; 115.12.0esr -> 115.13.0esr; init 128.0esr
 2024-07-09 01:38:57 +02:00
Will Fancher
21aed90c1e
Merge pull request #325348 from JulienMalka/remove-uefi-large-file-test 
nixos/tests/systemd-boot: remove uefiLargeFileWorkaround test
 2024-07-08 18:49:47 -04:00
Felix Buehler
87051a8f44 nixos/sogo: prefer 'install' over 'chmod'/'chown' 2024-07-08 22:41:47 +02:00
Felix Buehler
16eb9ced4e nixos/jitsi-meet: prefer 'serviceConfig' over 'chmod'/'chown' 2024-07-08 22:10:25 +02:00
Pol Dellaiera
ed24a0baf3
Merge pull request #317107 from ibizaman/deluge_exporter_init 
prometheus-deluge-exporter: init at 2.4.0-unstable-2024-06-02
 2024-07-08 20:09:50 +02:00
Martin Weinelt
6d85f70d35
firefox-esr-128-unwrapped: init at 128.0esr 2024-07-08 19:41:05 +02:00
Sandro
e08b520450
Merge pull request #323469 from OPNA2608/init/lomiri/lomiri-clock-app 2024-07-08 17:47:39 +02:00
wskeele
fff878e7c6 nixos/duplicity: Add support for --include-filelist / --exclude-filelist 2024-07-08 17:02:42 +02:00
OPNA2608
2204726a6d nixos/lomiri: Add clock 2024-07-08 16:02:09 +02:00
OPNA2608
3efabb3359 tests/lomiri-clock-app: init 2024-07-08 16:02:09 +02:00
matthewcroughan
c53e5201f4 nixos/scion: make storing path database optional 
Storing the SCION path sqlite databases persistently on disk is a valid
setup that improves performance, but may have outstanding bugs that need
to be investigated, so this makes persisent storage optional, off by
default.
 2024-07-08 13:26:30 +02:00
Pol Dellaiera
00e9e54702
nixos/glance: init module 2024-07-08 13:14:09 +02:00
Aleksana
81c768e223
Merge pull request #324757 from sjamaan/remove-key-mgmt-from-wpa-cli-examples 
Remove key management setting in wpa_cli examples
 2024-07-08 18:13:46 +08:00
Vladimír Čunát
4c09ae2416
Merge branch 'staging-next' into staging 2024-07-08 10:43:15 +02:00
Morgan Jones
de5e0cf11b
nixos/nebula: add numinit as maintainer 
I maintain the package and coauthored this module, so should be on it.
:-)
 2024-07-08 01:06:58 -07:00
Morgan Jones
95f1ebd2aa
nixos/nebula: loosen ProtectSystem 
"strict" may be too strict for some PKCS#11 providers.
 2024-07-08 01:04:15 -07:00
Morgan Jones
b81827b992
nixos/nebula: allow string or path for keys 
Nebula will be getting PKCS#11 support soon, and this will allow
keys to be specified as PKCS#11 URIs instead of paths.
 2024-07-08 01:03:40 -07:00
Max Hausch
a8038698d3
nixos/restic: add option to inhibit going to sleep 2024-07-08 09:43:27 +02:00
Hugh O'Brien
66b896630d
profiles/qemu_guest: add virtio_gpu to initrd 2024-07-07 19:35:32 -04:00
Sandro
9d33b8d690
Merge pull request #321046 from OPNA2608/init/lomiri/lomiri-calculator-app 
lomiri.lomiri-calculator-app: init at 4.0.2
 2024-07-08 00:30:19 +02:00
Julien Malka
107fe87209 nixos/tests/systemd-boot: remove uefiLargeFileWorkaround test 2024-07-07 20:44:21 +00:00
Aaron Andersen
aa3e6fadd2
Merge pull request #325133 from jpds/nixos-prometheus-hardening 
nixos/prometheus: systemd hardening for alertmanager/pushgateway
 2024-07-07 16:22:35 -04:00
Aaron Andersen
b9ada94572
Merge pull request #325062 from matteo-pacini/nzbhydra2 
nzbhydra2: 4.7.6 -> 7.2.3, add maintainer
 2024-07-07 16:00:06 -04:00
Jörg Thalheim
ef1670eee9
Merge pull request #325291 from Stunkymonkey/bee-umask-chmod 
nixos/bee: prefer 'install' over 'chmod'
 2024-07-07 21:49:17 +02:00
Julien Malka
6701c2c867
Merge pull request #323421 from Mic92/systemd-boot-builder 2024-07-07 19:36:09 +02:00
Jörg Thalheim
c7411f7d53
Merge pull request #277579 from nikstur/openssh-tests-in-separate-derivation 
openssh: put tests into passthru
 2024-07-07 19:10:35 +02:00
Matteo Pacini
146fa6b114 nzbhydra2: changed test maintainers 
Removed jamiemagee from maintainers.
Added myself as maintainer.
 2024-07-07 17:37:56 +01:00
Felix Buehler
72a4f148f9 nixos/bee: prefer 'install' over 'chmod' 2024-07-07 17:47:28 +02:00
Jörg Thalheim
d1b9c95fdf
Merge pull request #325284 from trueNAHO/docs-fix-broken-nix-dev-urls 
treewide: fix broken `nix.dev` URLs
 2024-07-07 17:41:07 +02:00
Julien Malka
777cdce1de
Merge pull request #325231 from magneticflux-/python312-invalid-escape-seq 2024-07-07 17:23:47 +02:00
NAHO
a7cc1dcd68
treewide: fix broken 'nix.dev' URLs 2024-07-07 17:15:35 +02:00
Sandro
ebd625a22a
Merge pull request #276692 from dani0854/nixos/languagetool/add_jvm_options 
nixos/languagetool: add jvm options
 2024-07-07 16:41:41 +02:00
Bjørn Forsman
5aab6344c2 nixos/deconz: treat SIGTERM exit status as success 
deconz doesn't handle SIGTERM and terminates with code 143 (128 + 15
(SIGTERM) instead of 0. This results in systemd marking the service as
failed when a user stops it (with `systemctl stop deconz`). Fix it by
treating code 143 as success.
 2024-07-07 16:11:11 +02:00
Lin Jian
ec44ccbf6b
Merge pull request #325217 from linyinfeng/json-secrets 
nixos/utils: support JSON secret files in genJqSecretsReplacementSnippet
 2024-07-07 21:46:13 +08:00
Sandro
b2a1b6f508
Merge pull request #324924 from SuperSandro2000/mediawiki-syntaxcheck 
nixos/mediawiki: check if LocalConfig.php is valid syntax
 2024-07-07 15:17:08 +02:00
Aaron Andersen
a25848c974
Merge pull request #324884 from SuperSandro2000/locate-persist-timer 
nixos/locate: persist updatedb timer
 2024-07-07 08:28:46 -04:00
Lin Yinfeng
01543e789c
nixos/utils: support JSON secret files in genJqSecretsReplacementSnippet 
genJqReplacementSnippet quotes the content of the secret file in the
output json file, which prevents structured secret, such as a list or
an object, from being used.

This commit adds a `quote = true|false` option to the `{ _secret =
"/path/to/secret"; }` attribute set. `quote = true` treats the
content of /path/to/secret as string, while `quote = false` treats
the content of /path/to/secret as a JSON document.

`quote = true` is the default, maintaining backward compatibility.
 2024-07-07 19:22:10 +08:00
OPNA2608
c34ee327e6 Revert "lomiri.telephony-service: Mark broken & exclude everywhere" 
This reverts commit 3ef60ac499.
 2024-07-07 12:58:45 +02:00
Mitchell Skaggs
5e1481ccc7
nixos/systemd-boot: fix invalid escape sequences 
This was inadvertently introduced in https://github.com/NixOS/nixpkgs/pull/281639, but was not a loud warning until Python 3.12 made invalid escape sequences a `SyntaxWarning` instead of a `DeprecationWarning` in https://github.com/python/cpython/issues/98401.
 2024-07-07 05:37:08 -05:00
Judson Lester
a9c8ff2cee
lorri: 1.6.0 -> 1.7.0 (#322749) 
* (lorri): (1.6.0 -> 1.7.0)

1.7.0 supports Flakes

* (lorri) (update tests)

* lorri: 1.6.0 -> 1.7.0

Removing superfluous binding for `gitRev`
 2024-07-07 11:16:23 +02:00
Yu Ishii
f210aaf4ca nixos/prometheus-snmp-exporter: add a parameter implicitly 
Change to adding `--config.expand-environment-variables` parameter to
`ExecStart` if `environmentFile` option is set.
 2024-07-07 16:49:31 +09:00
Yu Ishii
839bbc1700 nixos/prometheus-snmp-exporter: add environmentFile option 
Prometheus snmp-exporter has support to pass sensitive data as environment
variables. Since other exporter configurations for NixOS have
environmentFile option, the same option is added to snmp-exporter.
 2024-07-07 14:28:37 +09:00
Franz Pletz
e5fadeaa27
Merge pull request #321962 from LostAttractor/iproute2/libbpf 2024-07-07 02:08:31 +02:00
Jonathan Davies
008ea18566
nixos/prometheus: Harden alertmanager/webhook-logger/pushgateway systemd definitions 2024-07-07 00:15:57 +01:00
Jonathan Davies
7ce4fe5463
nixos/prometheus: Log systemd-analyze for alertmanager/webhook-logger/pushgateway 2024-07-07 00:15:42 +01:00
OPNA2608
3a788099cd tests/lomiri: Add polkit agent test 2024-07-06 20:05:07 +02:00
OPNA2608
916ba54f24 nixos/lomiri: Add polkit agent 2024-07-06 20:05:06 +02:00
github-actions[bot]
73c1b870f2
Merge staging-next into staging 2024-07-06 06:01:47 +00:00
github-actions[bot]
5a601bc241
Merge master into staging-next 2024-07-06 06:01:20 +00:00
Masum Reza
06eb305992
Merge pull request #321649 from Frontear/update-stevenblack-blocklist 
stevenblack-blocklist: rev bump and improvements of module + package
 2024-07-06 09:45:35 +05:30
Ali Rizvi
ab98e84e0d
nixos/stevenblack: rework to use distinct package outputs 2024-07-05 23:30:26 -04:00
Sandro Jäckel
313d2ccf83
nixos/mediawiki: check if LocalConfig.php is valid syntax 2024-07-06 02:06:50 +02:00
Martin Weinelt
e7b1ee45cf
Merge remote-tracking branch 'origin/staging-next' into staging 
Conflicts:
- pkgs/tools/misc/watchlog/default.nix
 2024-07-06 01:52:35 +02:00
Martin Weinelt
d9610a9f2e
Merge remote-tracking branch 'origin/master' into staging-next 2024-07-06 01:51:14 +02:00
Charles Hall
142c8ab9a4
nixos/nvidia: enable fbdev when available 
In my experience this is required to get Plasma 6 Wayland to work on
my GTX 1080 with the proprietary driver. Otherwise, I get errors in my
`journalctl --user` about "MESA-LOADER: failed to open simpledrm" (among
many other things) and Plasma just presents a black screen with a cursor
and nothing else.

I discovered this by searching the aforementioned error and found
[this Arch Linux forum post][0] and some further clicking around led
me to [this section on the ArchWiki][1], which is where I got the
`versionAtLeast` value from.

Tested with `nvidia-x11-555.58-6.9.7`.

[0]: https://bbs.archlinux.org/viewtopic.php?id=293741
[1]: https://wiki.archlinux.org/title/NVIDIA#DRM_kernel_mode_setting
 2024-07-05 16:24:12 -07:00