gador/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
654,752 Commits 9 Branches 0 Tags
c110ea8d6618cb430e8ba19a7f58013e4f2c0922
Commit Graph

5871 Commits

Author SHA1 Message Date
github-actions[bot]
d7993cebbc Merge staging-next into staging 2024-06-05 12:01:43 +00:00
Thomas Gerbet
ef6fea2d86 openssh: move Kerberos support into a dedicated package 
The `openssh` and `openssh_hpn` packages are now built without
the Kerberos support by default in an effort to reduce the attack surface.

The Kerberos support is likely used only by a fraction of the total users
(I'm guessing mainly users integrating SSH in an Active Directory env) so
dropping it should not impact too many users. It should also be noted that
the Kerberos/GSSAPI auth is disabled by default in the configuration.
`opensshWithKerberos` and `openssh_hpnWithKerberos` are added in order
to provide an easy migration path for users needing this support.

The `openssh_gssapi` package is kept untouched.
 2024-06-05 19:45:31 +10:00
Jörg Thalheim
9028937bc4 Merge pull request #317347 from Prince213/doc-bootspec 
nixos/activation/bootspec: misc fixes
 2024-06-05 09:56:54 +02:00
Pol Dellaiera
133aa44c38 Merge pull request #317286 from drupol/open-webui-add-more-env 
nixos/{ollama,open-webui}: minor service update
 2024-06-05 09:12:28 +02:00
Pol Dellaiera
8ea262601a nixos/open-webui: add release note entry 2024-06-05 08:05:18 +02:00
Sizhe Zhao
5209c84957 nixos/activation/bootspec: fix style 2024-06-05 11:14:36 +08:00
Sizhe Zhao
4f05b8e213 nixos/activation/bootspec: rephrase 2024-06-05 11:13:43 +08:00
Sizhe Zhao
3a4753867d nixos/activation/bootspec: no longer experimental 2024-06-05 11:09:55 +08:00
Sizhe Zhao
0aaccaa596 nixos/activation/bootspec: now enabled by default 2024-06-05 11:06:03 +08:00
github-actions[bot]
daadd0b777 Merge master into haskell-updates 2024-06-05 00:13:17 +00:00
github-actions[bot]
1e2381cfc5 Merge staging-next into staging 2024-06-05 00:02:59 +00:00
Coutinho de Souza
b0fcfa88cf hareHook: init 
Co-authored-by: Colin <colin@uninsane.org>
 2024-06-04 20:32:51 -03:00
emilylange
ac20219508 nixos/rl-2411: add services.forgejo.secrets 
and the accompanying `services.forgejo.mailerPasswordFile` deprecation.
 2024-06-05 01:05:47 +02:00
kirillrdy
dfee75c298 Merge pull request #309121 from jlbribeiro/pkgs/zx-8.0.2 
zx: 7.2.3 -> 8.1.2
 2024-06-05 06:07:55 +10:00
Arian van Putten
f8439331dc doc/release-notes: Add note about backwards compatibility in ACME module 
Co-authored-by: Stéphan Kochen <git@stephank.nl>
 2024-06-04 20:23:30 +02:00
Thomas Gerbet
71ac0e5f22 Merge pull request #317024 from risicle/ris-zerocallusedregs-default-relnotes 
nixos/doc/rl-2411: `zerocallusedregs` hardening flag enabled by default
 2024-06-04 12:55:27 +02:00
Morgan Jones
7f03a67b0b {doc/android,release-notes}: update android-studio and androidenv 2024-06-03 23:01:44 -07:00
github-actions[bot]
14af82271b Merge master into haskell-updates 2024-06-04 00:13:34 +00:00
José Ribeiro
6fc5c63584 doc(rl-24.11): zx v8 breaking changes 2024-06-03 22:16:55 +01:00
Robert Scott
35b3c16331 nixos/doc/rl-2411: zerocallusedregs hardening flag enabled by default 2024-06-03 22:02:18 +01:00
Sandro
617a79dd10 doc/release-notes: repalce security.pam.enableSSHAgentAuth with security.pam.sshAgentAuth.enable 2024-06-03 13:34:00 +02:00
github-actions[bot]
ac1903efd3 Merge master into haskell-updates 2024-06-03 00:13:54 +00:00
Yueh-Shun Li
dbcf7cf697 apptainer, singularity: add release note entry about systemBinPaths 
Add a Nixpkgs 24.05 release note entry explaining the introduction of
`systemBinPaths` argument, the prioritization of the original (FHS)
`defaultPath` values, and the deprecation of arguments `newuidmapPath`,
`newgidmapPath` and NixOS configuration option
`programs.singularity.enableFakeroot`.
 2024-06-03 07:53:29 +08:00
Sandro
6f02edec1a Merge pull request #316358 from majewsky/portunus-remove-libxcrypt-legacy 2024-06-02 23:10:26 +02:00
Vassilis Palassopoulos
f41fc204d6 doc/release-notes: fix option that enables Plasma 6 2024-06-02 13:48:33 +03:00
github-actions[bot]
d865fb67ab Merge master into haskell-updates 2024-06-02 00:14:43 +00:00
Weijia Wang
9835090379 doc/release-notes: fix mention of ankisyncd 2024-06-01 14:26:51 +02:00
Aleksana
5a7bf1479a Merge pull request #316270 from wegank/release-notes-3 
doc/release-notes: update info on gnome 46
 2024-06-01 16:33:46 +08:00
Stefan Majewsky
d11d18df30 portunus: remove libxcrypt-legacy usage 2024-06-01 10:28:21 +02:00
Silvan Mosberger
72ca766b70 Merge pull request #316207 from infinisil/release-notes-lib 2024-06-01 08:58:07 +02:00
github-actions[bot]
26c4820adb Merge master into haskell-updates 2024-06-01 00:14:21 +00:00
Weijia Wang
6fd5c54452 doc/release-notes: update info on gnome 46 2024-06-01 00:05:54 +02:00
Weijia Wang
d95b1060ca Release NixOS 24.05 2024-05-31 20:17:44 +02:00
Silvan Mosberger
2906c69534 doc/release-notes: Add section on lib 2024-05-31 18:37:30 +02:00
sternenseemann
c2b48909d6 Merge master into haskell-updates 2024-05-31 12:49:29 +02:00
Martin Weinelt
85cdd3a849 Merge pull request #316026 from wegank/release-notes-2 
doc/release-notes: highlight desktop environment updates
 2024-05-31 10:24:10 +02:00
Weijia Wang
8c58b05881 doc/release-notes: highlight desktop environment updates 2024-05-31 02:13:24 +02:00
Yt
6606ce9c0c Merge pull request #273101 from onny/invoiceplane-settings2 
nixos/invoiceplane: Remove deprecated extraConfig
 2024-05-31 00:04:34 +00:00
euxane
0174aa1c56 nixos/stalwart-mail: rocksdb as default storage 
This sets RocksDB as the default storage backend for `stateVersion` >=
24.11. For previous `stateVersion`s, the structured data and blobs
remain on SQLite and the filesystem respectively.

This is closer to the suggested upstream configuration for fully local
storage.
 2024-05-30 16:22:03 +02:00
github-actions[bot]
7476d0d0c9 Merge master into haskell-updates 2024-05-30 00:13:58 +00:00
Someone
7781c1a927 Merge pull request #303682 from SomeoneSerge/feat/imgui-cmake 
imgui: ship vcpkg' (cmake) distribution info
 2024-05-29 12:48:33 +00:00
github-actions[bot]
a3713f011c Merge master into haskell-updates 2024-05-29 00:14:23 +00:00
Someone Serge
fdf0e19b73 imgui: mention cmake integration in release notes 2024-05-28 19:58:02 +00:00
Jacek Generowicz
9c6861249c Further tweaks to release notes 2024-05-28 17:28:29 +02:00
Jacek Generowicz
005ef76e9e Consistently use capitalized Nix in plain text 2024-05-28 17:28:29 +02:00
Jacek Generowicz
9708aca853 Various tweaks to release notes 2024-05-28 17:28:29 +02:00
Jacek Generowicz
e36f83eac4 Clean up the curious dwarf-fortress note 2024-05-28 17:28:28 +02:00
Jonas Heinrich
4217b9cd9a nixos/invoiceplane: Remove deprecated extraConfig 2024-05-28 14:07:44 +02:00
Jonas Chevalier
5d6d058646 Merge pull request #308090 from mogeko/service-rke2 
nixos/rke2: add rke2 service
 2024-05-28 09:36:03 +02:00
Mogeko
a642efcdab nixos/rke2: add rke2 service 
Set assertions to avoid obvious errors.

Eliminate the conflict between default CNI (`cana`) and `NetworkManager`.

Determine whether optional can be used for agent.

Add the option `cisHardening` to enable CIS Hardening.

Set kernel parameters by `boot.kernel.sysctl`.

Using `lib.escapeShellArgs` to make `ExecStart` more resilient to escaping issues.

Using a list of `str` to extra flags.
 2024-05-28 12:39:30 +08:00