2019-09-09 16:24:15 +01:00
|
|
|
<section xmlns="http://docbook.org/ns/docbook"
|
|
|
|
|
xmlns:xlink="http://www.w3.org/1999/xlink"
|
|
|
|
|
xmlns:xi="http://www.w3.org/2001/XInclude"
|
|
|
|
|
version="5.0"
|
|
|
|
|
xml:id="sec-release-20.03">
|
|
|
|
|
<title>Release 20.03 (“Markhor”, 2020.03/??)</title>
|
|
|
|
|
|
|
|
|
|
<section xmlns="http://docbook.org/ns/docbook"
|
|
|
|
|
xmlns:xlink="http://www.w3.org/1999/xlink"
|
|
|
|
|
xmlns:xi="http://www.w3.org/2001/XInclude"
|
|
|
|
|
version="5.0"
|
|
|
|
|
xml:id="sec-release-20.03-highlights">
|
|
|
|
|
<title>Highlights</title>
|
|
|
|
|
|
|
|
|
|
<para>
|
2019-09-19 18:17:30 +01:00
|
|
|
In addition to numerous new and upgraded packages, this release has the
|
|
|
|
|
following highlights:
|
2019-09-09 16:24:15 +01:00
|
|
|
</para>
|
|
|
|
|
|
|
|
|
|
<itemizedlist>
|
|
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
Support is planned until the end of October 2020, handing over to 20.09.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-09-22 10:27:39 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
Postgresql for NixOS service now defaults to v11.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-09-28 23:17:04 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
The graphical installer image starts the graphical session automatically.
|
|
|
|
|
Before you'd be greeted by a tty and asked to enter <command>systemctl start display-manager</command>.
|
|
|
|
|
It is now possible to disable the display-manager from running by selecting the <literal>Disable display-manager</literal>
|
|
|
|
|
quirk in the boot menu.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-10-08 12:10:23 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
2019-10-08 12:15:15 +01:00
|
|
|
By default zfs pools will now be trimmed on a weekly basis.
|
|
|
|
|
Trimming is only done on supported devices (i.e. NVME or SSDs)
|
|
|
|
|
and should improve throughput and lifetime of these devices.
|
|
|
|
|
It is controlled by the <varname>services.zfs.trim.enable</varname> varname.
|
2019-10-08 12:10:23 +01:00
|
|
|
The zfs scrub service (<varname>services.zfs.autoScrub.enable</varname>)
|
|
|
|
|
and the zfs autosnapshot service (<varname>services.zfs.autoSnapshot.enable</varname>)
|
|
|
|
|
are now only enabled if zfs is set in <varname>config.boot.initrd.supportedFilesystems</varname> or
|
|
|
|
|
<varname>config.boot.supportedFilesystems</varname>. These lists will automatically contain
|
|
|
|
|
zfs as soon as any zfs mountpoint is configured in <varname>fileSystems</varname>.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-10-09 00:54:56 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
<command>nixos-option</command> has been rewritten in C++, speeding it up, improving correctness,
|
|
|
|
|
and adding a <option>--all</option> option which prints all options and their values.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-09-09 16:24:15 +01:00
|
|
|
</itemizedlist>
|
|
|
|
|
</section>
|
|
|
|
|
|
|
|
|
|
<section xmlns="http://docbook.org/ns/docbook"
|
|
|
|
|
xmlns:xlink="http://www.w3.org/1999/xlink"
|
|
|
|
|
xmlns:xi="http://www.w3.org/2001/XInclude"
|
|
|
|
|
version="5.0"
|
|
|
|
|
xml:id="sec-release-20.03-new-services">
|
|
|
|
|
<title>New Services</title>
|
|
|
|
|
|
|
|
|
|
<para>
|
|
|
|
|
The following new services were added since the last release:
|
|
|
|
|
</para>
|
|
|
|
|
|
|
|
|
|
<itemizedlist>
|
|
|
|
|
<listitem>
|
2019-11-15 04:58:35 +00:00
|
|
|
<para>
|
|
|
|
|
The kubernetes kube-proxy now supports a new hostname configuration
|
|
|
|
|
<literal>services.kubernetes.proxy.hostname</literal> which has to
|
|
|
|
|
be set if the hostname of the node should be non default.
|
|
|
|
|
</para>
|
2019-09-09 16:24:15 +01:00
|
|
|
</listitem>
|
|
|
|
|
</itemizedlist>
|
2019-09-19 18:17:30 +01:00
|
|
|
|
2019-09-09 16:24:15 +01:00
|
|
|
</section>
|
|
|
|
|
|
|
|
|
|
<section xmlns="http://docbook.org/ns/docbook"
|
|
|
|
|
xmlns:xlink="http://www.w3.org/1999/xlink"
|
|
|
|
|
xmlns:xi="http://www.w3.org/2001/XInclude"
|
|
|
|
|
version="5.0"
|
|
|
|
|
xml:id="sec-release-20.03-incompatibilities">
|
|
|
|
|
<title>Backward Incompatibilities</title>
|
|
|
|
|
|
|
|
|
|
<para>
|
2019-09-19 18:17:30 +01:00
|
|
|
When upgrading from a previous release, please be aware of the following
|
|
|
|
|
incompatible changes:
|
2019-09-09 16:24:15 +01:00
|
|
|
</para>
|
|
|
|
|
|
|
|
|
|
<itemizedlist>
|
|
|
|
|
<listitem>
|
2018-10-27 15:03:13 +01:00
|
|
|
<para>
|
|
|
|
|
GnuPG is now built without support for a graphical passphrase entry
|
|
|
|
|
by default. Please enable the <literal>gpg-agent</literal> user service
|
|
|
|
|
via the NixOS option <literal>programs.gnupg.agent.enable</literal>.
|
|
|
|
|
Note that upstream recommends using <literal>gpg-agent</literal> and
|
|
|
|
|
will spawn a <literal>gpg-agent</literal> on the first invocation of
|
|
|
|
|
GnuPG anyway.
|
|
|
|
|
</para>
|
2019-09-09 16:24:15 +01:00
|
|
|
</listitem>
|
|
|
|
|
<listitem>
|
2019-10-18 13:05:53 +01:00
|
|
|
<para>
|
|
|
|
|
The <literal>dynamicHosts</literal> option has been removed from the
|
|
|
|
|
<link linkend="opt-networking.networkmanager.enable">networkd</link>
|
|
|
|
|
module. Allowing (multiple) regular users to override host entries
|
|
|
|
|
affecting the whole system opens up a huge attack vector.
|
|
|
|
|
There seem to be very rare cases where this might be useful.
|
|
|
|
|
Consider setting system-wide host entries using
|
|
|
|
|
<link linkend="opt-networking.hosts">networking.hosts</link>, provide
|
|
|
|
|
them via the DNS server in your network, or use
|
|
|
|
|
<link linkend="opt-environment.etc">environment.etc</link>
|
|
|
|
|
to add a file into <literal>/etc/NetworkManager/dnsmasq.d</literal>
|
|
|
|
|
reconfiguring <literal>hostsdir</literal>.
|
|
|
|
|
</para>
|
2019-09-09 16:24:15 +01:00
|
|
|
</listitem>
|
2019-10-22 22:43:28 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
The <literal>99-main.network</literal> file was removed. Maching all
|
|
|
|
|
network interfaces caused many breakages, see
|
|
|
|
|
<link xlink:href="https://github.com/NixOS/nixpkgs/pull/18962">#18962</link>
|
|
|
|
|
and <link xlink:href="https://github.com/NixOS/nixpkgs/pull/71106">#71106</link>.
|
|
|
|
|
</para>
|
|
|
|
|
<para>
|
|
|
|
|
We already don't support the global <link linkend="opt-networking.useDHCP">networking.useDHCP</link>,
|
|
|
|
|
<link linkend="opt-networking.defaultGateway">networking.defaultGateway</link> and
|
|
|
|
|
<link linkend="opt-networking.defaultGateway6">networking.defaultGateway6</link> options
|
|
|
|
|
if <link linkend="opt-networking.useNetworkd">networking.useNetworkd</link> is enabled,
|
|
|
|
|
but direct users to configure the per-device
|
|
|
|
|
<link linkend="opt-networking.interfaces">networking.interfaces.<name>.…</link> options.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-10-29 23:43:34 +00:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
The stdenv now runs all bash with <literal>set -u</literal>, to catch the use of undefined variables.
|
|
|
|
|
Before, it itself used <literal>set -u</literal> but was careful to unset it so other packages' code ran as before.
|
|
|
|
|
Now, all bash code is held to the same high standard, and the rather complex stateful manipulation of the options can be discarded.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-11-11 21:41:26 +00:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
The SLIM Display Manager has been removed, as it has been unmaintained since 2013.
|
|
|
|
|
Consider migrating to a different display manager such as LightDM (current default in NixOS),
|
|
|
|
|
SDDM, GDM, or using the startx module which uses Xinitrc.
|
2019-11-16 10:45:07 +00:00
|
|
|
</para>
|
2019-11-11 21:41:26 +00:00
|
|
|
</listitem>
|
2019-10-19 16:37:44 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
The BEAM package set has been deleted. You will only find there the different interpreters.
|
|
|
|
|
You should now use the different build tools coming with the languages with sandbox mode disabled.
|
|
|
|
|
</para>
|
2019-11-11 21:41:26 +00:00
|
|
|
</listitem>
|
2019-11-19 22:59:59 +00:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
There is now only one Xfce package-set and module. This means attributes, <literal>xfce4-14</literal>
|
|
|
|
|
<literal>xfce4-12</literal>, and <literal>xfceUnstable</literal> all now point to the latest Xfce 4.14
|
|
|
|
|
packages. And in future NixOS releases will be the latest released version of Xfce available at the
|
|
|
|
|
time during the releases development (if viable).
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-11-21 22:31:19 +00:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
The <link linkend="opt-services.phpfpm.pools">phpfpm</link> module now sets
|
|
|
|
|
<literal>PrivateTmp=true</literal> in its systemd units for better process isolation.
|
|
|
|
|
If you rely on <literal>/tmp</literal> being shared with other services, explicitly override this by
|
|
|
|
|
setting <literal>serviceConfig.PrivateTmp</literal> to <literal>false</literal> for each phpfpm unit.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-09-09 16:24:15 +01:00
|
|
|
</itemizedlist>
|
|
|
|
|
</section>
|
|
|
|
|
|
|
|
|
|
<section xmlns="http://docbook.org/ns/docbook"
|
|
|
|
|
xmlns:xlink="http://www.w3.org/1999/xlink"
|
|
|
|
|
xmlns:xi="http://www.w3.org/2001/XInclude"
|
|
|
|
|
version="5.0"
|
|
|
|
|
xml:id="sec-release-20.03-notable-changes">
|
|
|
|
|
<title>Other Notable Changes</title>
|
|
|
|
|
|
|
|
|
|
<itemizedlist>
|
|
|
|
|
<listitem>
|
2019-09-28 16:57:19 +01:00
|
|
|
<para>SD images are now compressed by default using <literal>bzip2</literal>.</para>
|
2019-09-09 16:24:15 +01:00
|
|
|
</listitem>
|
2019-05-21 09:24:47 +01:00
|
|
|
<listitem>
|
|
|
|
|
<para>
|
|
|
|
|
OpenSSH has been upgraded from 7.9 to 8.1, improving security and adding features
|
|
|
|
|
but with potential incompatibilities. Consult the
|
|
|
|
|
<link xlink:href="https://www.openssh.com/txt/release-8.1">
|
|
|
|
|
release announcement</link> for more information.
|
|
|
|
|
</para>
|
|
|
|
|
</listitem>
|
2019-09-09 16:24:15 +01:00
|
|
|
</itemizedlist>
|
|
|
|
|
</section>
|
|
|
|
|
</section>
|
