gador/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
554,822 Commits 9 Branches 0 Tags
1c2a4b971eb0e683a85d1adcc97acd6f9b51e65b
Commit Graph

3560 Commits

Author SHA1 Message Date
Weijia Wang
feeae486de Merge pull request #261702 from h7x4/replace-mkoption-with-mkpackageoption 
treewide: use `mkPackageOption`
 2023-11-30 02:49:30 +01:00
Maciej Krüger
7cc312f18b Merge pull request #265730 from nbraud/nixos/sudo-rs/x2goserver 
nixos/x2goserver: Support sudo-rs
 2023-11-28 01:37:05 +01:00
h7x4
0a37316d6c treewide: use mkPackageOption 
This commit replaces a lot of usages of `mkOption` with the package
type, to be `mkPackageOption`, in order to reduce the amount of code.
 2023-11-27 01:28:36 +01:00
Ivan Mincik
df254b2dd2 nixos/tmate-ssh-server: fix tmate-client-config script 2023-11-26 09:34:51 +01:00
Maciej Krüger
7b1e146a49 Merge pull request #266477 from duament/nixos-nat-nftables 
nixos/nat: fix nat-nftables
 2023-11-25 12:58:48 +01:00
Vincent Ambo
b2f67d3f48 nixos/nix-serve: fix module compatibility with unflaked Nix 
The option `extra-allowed-users` was introduced in Nix 2.4, and fails
config validation on Nix 2.3.
 2023-11-23 00:03:31 +03:00
Atemu
cfe0155154 Merge pull request #268324 from Janik-Haag/nixos-firewall-tool 
nixos/firewall: install nixos-firewall-tool for iptables by default
 2023-11-20 23:23:24 +01:00
Jonas Chevalier
c57a434386 maintainers: remove the numtide team (#268684) 
It doesn't really make sense for us as team members are focused on
different things. At the end of the day it's the individuals that do the
work.
 2023-11-20 22:27:26 +01:00
Nick Cao
90ef10b571 Merge pull request #253918 from tie/centrifugo 
centrifugo: init at 5.1.1
 2023-11-20 08:59:54 -05:00
Ivan Trubach
3be1aab86f centrifugo: init at 5.1.1 2023-11-20 10:18:21 +03:00
Artturi
0bd183e065 Merge pull request #268110 from tyxieblub/squid-service 2023-11-19 23:32:10 +02:00
Ryan Lahfa
ff3b480354 Merge pull request #252117 from nalves599/252116-pixiecore-firewall 2023-11-19 16:16:54 +01:00
Adrian Pistol
b30601bba2 nixos/chrony: Add missing rtcsync assertion. 
Due to a lot of rebasing, I dropped my added assertion in #259405. This is important.
 2023-11-19 09:08:26 -06:00
Artturi
8896579a83 Merge pull request #264521 from stephen-huan/mullvad-vpn-resolvconf 2023-11-18 21:47:51 +02:00
Janik H.
fa9cdc83ab nixos/firewall: install nixos-firewall-tool for iptables by default 2023-11-18 17:08:30 +01:00
William McKinnon
869fb56797 nixos/syncthing: respect the dataDir option 
The previous -home argument worked as such:
"Set common configuration and data directory. The default configuration directory is $HOME/.config/syncthing (Unix-like), $HOME/Library/Application Support/Syncthing (Mac) and %LOCALAPPDATA%\Syncthing (Windows)"

This resulted in syncthing not respecting different home and data dirs
declared in its config. The default behaviour will remain the same, as
we set the datadir default value to homeDir + .config/syncthing.
 2023-11-17 22:58:46 +01:00
joris
18f3c1fb55 services/squid: explicit usage of coreutils' kill on ExecReload 2023-11-17 13:55:21 +01:00
Vladimír Čunát
0fe5300699 Merge branch 'master' into staging-next 2023-11-16 09:49:24 +01:00
Lin Jian
bf8a6ad72c Merge pull request #265733 from nbdd0121/unbound 
nixos/unbound: fix wrong syscall filter and tighten sandbox
 2023-11-16 14:38:46 +08:00
Adrian Pistol
7a1d45811e nixos/chrony: Let Chrony control/track RTC drift 2023-11-15 15:09:22 -06:00
Weijia Wang
1a85914512 Merge pull request #266528 from lucasbergman/unifi-jvmoptions 
nixos/unifi: Add the ability to specify extra JVM options
 2023-11-15 17:53:25 +01:00
Martin Weinelt
3c336a1647 Merge remote-tracking branch 'origin/master' into staging-next 
Conflicts:
- pkgs/development/libraries/gdcm/default.nix
 2023-11-14 13:16:34 +01:00
Jörg Thalheim
54fd866569 nixos/harmonia: set extra-allowed-users 
This fixes the case where users enable harmonia but also have allowed-users set.
Having extra-allowed-users is a no-op when nix.settings.allowed-users is set to "*" (the default)
 2023-11-14 10:37:39 +01:00
Weijia Wang
74d102ce50 Merge branch 'master' into staging-next 2023-11-12 19:45:20 +01:00
Jörg Thalheim
44cf4801c0 nixos/nix-serve: also set extra-allowed-users 
This fixes the case where users enable nix-serve but also have allowed-users set.
Having extra-allowed-users is a no-op when nix.settings.allowed-users is set to "*" (the default)
 2023-11-12 14:09:31 +01:00
Lucas Bergman
07828dc05b nixos/unifi: Add extraJvmOptions option 
This can be useful for adding extra logging, tweaking garbage collector
parameters, and for using JMX to monitor the JVM.
 2023-11-12 00:38:10 +00:00
Lucas Bergman
50ff8ff3f9 nixos/unifi: Switch command line args to a list 
There's no functionality change here, but this makes it a bit more
convenient to add more args.
 2023-11-12 00:32:50 +00:00
Lucas Bergman
2bc02c0383 nixos/unifi: Clean up formatting 
This removes "with lib", which advances #208242 a bit, and cleans up a few
formatting nits found by nixfmt.
 2023-11-12 00:28:40 +00:00
github-actions[bot]
9776723357 Merge master into staging-next 2023-11-11 18:00:58 +00:00
K900
e792d7fec0 Merge pull request #264442 from anthonyroussel/update-url-redirects 
treewide: fix redirected and broken URLs
 2023-11-11 18:08:59 +03:00
github-actions[bot]
652204165d Merge master into staging-next 2023-11-11 12:00:58 +00:00
Anthony Roussel
e30f48be94 treewide: fix redirected and broken URLs 
Using the script in maintainers/scripts/update-redirected-urls.sh
 2023-11-11 10:49:01 +01:00
Félix Baylac Jacqué
dfa45288af maintainers: ninjatrappeur -> picnoir 
I changed my nickname from Ninjatrappeur to Picnoir. My github id is
stable, it shouldn't break too much stuff.

I took advantage of this handle change to remove myself from the
hostapd maintainers: I don't use NixOS as a router anymore.
 2023-11-11 08:31:16 +01:00
github-actions[bot]
912311b7fd Merge master into staging-next 2023-11-11 00:02:21 +00:00
tu-maurice
40c06a143f prayer: remove 2023-11-10 20:44:28 -03:00
Rvfg
92ee71866f nixos/nat: fix nat-nftables 2023-11-09 23:06:01 +08:00
github-actions[bot]
00a0662a3c Merge master into staging-next 2023-11-09 00:02:14 +00:00
Felix Bühler
7aaa664cc2 Merge pull request #263054 from uninsane/pr-trust-dns-0.24.0 
trust-dns: 0.23.0 -> 0.24.0
 2023-11-08 19:35:23 +01:00
Adam Joseph
ba2ed469c2 Merge branch 'master' into staging-next 2023-11-08 06:15:46 +00:00
Rodrigo Gryzinski
23a5f1f80d nixos/wireguard: add wireguard to default kernel modules 
Previously the module was only dynamically loaded on service startup,
this is needed in case security.lockKernelModules is enabled.
 2023-11-07 22:02:51 -03:00
Gary Guo
bc422e2f61 nixos/unbound: tighten sandboxing for unbound 2023-11-07 02:30:21 +00:00
Gary Guo
de6c5343b6 nixos/unbound: remove setuid/gid capability 
If username is set, then unbound will try to become that user using
`setusercontext`. But this is pointless since we are already instructing
systemd to launch unbound with that user.

So force username to be empty, which disables this behaviour in unbound.
This allows us to remove the capability granted, and also tighten the
syscall filter.
 2023-11-06 20:22:27 +00:00
Colin
83bf3ed892 trust-dns: 0.23.0 -> 0.24.0 
upstream is in the process of renaming to `hickory-dns`.
a consequence of this is that the main binary has been renamed from
`trust-dns` to `hickory-dns` and the repository has been moved (though
for the time being the old repo is still usable on account that it
redirects to the new one).
see: <https://bluejekyll.github.io/blog/posts/announcing-hickory-dns/>
 2023-11-06 15:38:23 +00:00
Weijia Wang
32da89a1a1 Merge branch 'master' into staging-next 2023-11-06 14:33:18 +01:00
Michele Guerini Rocco
8beca974f9 Merge pull request #263138 from tomfitzhenry/hostapd-optional-managementframeprotection 
nixos/hostapd: remove managementFrameProtection in favour of clearer default
 2023-11-06 11:17:07 +01:00
nicoo
6f28ce9856 nixos/x2goserver: Work with both Miller's sudo and sudo-rs 2023-11-05 20:59:15 +00:00
Gary Guo
c70614c0a4 nixos/unbound: fix wrong syscall filter 
This changes the syscall filter to match that of upstream. Note that

    SystemCallFilter=~foo bar

is completely different from

    SystemCallFilter=~foo
    SystemCallFilter=bar

The former one means that foo and bar are forbidden, and the latter
one means foo is forbidden and bar is granted!
 2023-11-05 20:32:51 +00:00
github-actions[bot]
bb38778356 Merge master into staging-next 2023-11-05 18:00:55 +00:00
Aaron Andersen
a707831d98 Merge pull request #256738 from toastal/prosody-libevent-deprecated 
prosody: remove deprecated libevent
 2023-11-05 08:36:25 -05:00
Stephen Huan
09cc3285cc nixos/mullvad-vpn: use resolvconf if enabled 2023-11-01 16:47:11 -04:00