JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
339,493 Commits 2 Branches 0 Tags 12 GiB
07b48811d7
Commit Graph

24791 Commits

Author SHA1 Message Date
Andrew Marshall
f10aea2434 nixos/ssh: Add enableAskPassword 
Previously, this was only implicitly enabled if xserver.enable = true.
However, Wayland-based desktops do not require this, and so configuring
SSH_ASKPASS on a Wayland desktop becomes cumbersome. This simplifies
that by adding a new option that defaults to the old conditional.
 2021-12-18 12:13:02 -05:00
0x4A6F
0b738b87db
Merge pull request #151145 from zhaofengli/unifi5-log4j-new-mitigation 
unifi5: Follow new mitigation guidelines
 2021-12-18 13:00:28 +01:00
Robert Hensing
058677c417
Merge pull request #151150 from agbrooks/oci-layer-order 
dockerTools.buildImage: Fix incorrect layer unpack order before executing runAsRoot script
 2021-12-18 11:03:03 +01:00
Zhaofeng Li
8bbae8e558 unifi: Add NixOS tests 2021-12-18 00:19:04 -08:00
Bobby Rong
c9ec5a228d
Merge pull request #151153 from bobby285271/pantheon 
Pantheon updates 2021-12-17
 2021-12-18 14:01:54 +08:00
Bobby Rong
62103c4e41
pantheon.xdg-desktop-portal-pantheon: move to pkgs/desktop/pantheon 
Only used by Pantheon AFAIK.
 2021-12-18 11:35:55 +08:00
Aaron Andersen
eeef6e1341
Merge pull request #151144 from Sohalt/spacenavd-syslog 
nixos/spacenavd: remove syslog.target
 2021-12-17 21:47:23 -05:00
Andrew Brooks
57718902e3 nixos/tests/docker-tools: add test for pre-runAsRoot layer unpack order 2021-12-17 19:26:53 -06:00
sohalt
9718fc1211 nixos/spacenavd: remove syslog.target 2021-12-18 00:59:48 +01:00
Zhaofeng Li
a4bcad541e unifi5: Follow new mitigation guidelines 
Simply disabling lookups isn't enough, and the JndiLookup class must be
removed:

https://web.archive.org/web/20211217085954/https://logging.apache.org/log4j/2.x/security.html
 2021-12-17 15:55:13 -08:00
pennae
64bbe28843 nixos/unifi: rename openPorts to openFirewall 
openFirewall is the much more common name for an option with this
effect. since the default was `true` all along, renaming it doesn't hurt
much and only improves consistency with other modules.
 2021-12-17 21:30:52 +01:00
pennae
2000a1edcd nixos/unifi: add deprecation warning for openPorts 
modules are discouraged from opening ports in the firewall unless
explicitly told to do so. add a deprecation notice for this in unifi.
 2021-12-17 21:30:52 +01:00
ajs124
e6188c00f0
Merge pull request #149387 from sumnerevans/matrix-synapse-1.49 
matrix-synapse: 1.48.0 -> 1.49.0
 2021-12-17 19:51:34 +00:00
Graham Christensen
06edb74413
Merge pull request #148785 from pennae/more-option-doc-staticizing 
treewide: more defaultText for options
 2021-12-17 11:14:08 -05:00
Flakebi
368b22d09b powerdns-admin: fix and add module 
- Add the migrations directory to the package
- Add postgres support to the package
- Add a service for powerdns-admin

Co-authored-by: Zhaofeng Li <hello@zhaofeng.li>
 2021-12-17 10:33:40 +01:00
Bobby Rong
94144484c2
Merge pull request #148164 from veehaitch/nixos-github-runner-148024-v2 
nixos/github-runner: refactor tokens handling
 2021-12-17 16:28:21 +08:00
Alyssa Ross
de27156be0 nixos/cage: log to journal 
Previously, cage would log to the TTY it was running on top of, so log
messages were basically lost.
 2021-12-16 23:55:15 +00:00
Nikolay Amiantov
fe97584f15
Merge pull request #147679 from danderson/danderson/influx-update 
influxdb2: 2.0.8 -> 2.1.1
 2021-12-17 02:41:41 +03:00
Martin Weinelt
8086f8658e
Merge pull request #151029 from andir/snapcast-bind 2021-12-16 23:52:05 +01:00
Andreas Rammhold
c9c93b0add
nixos/snapserver: use the correct bind address arguments 
Snapserver expects the arguments `--tcp.bind_to_address` and
`--http.bind_to_address` instead of the `--tcp.address` (and http
equivalent) versions.

This caused the process to listen on `0.0.0.0` (for TCP and HTTP
sockets) regardless of the configuration value. It also never listend on
the IPv6 address `::` as our module system made the user believe.

This commit fixes the above issue and ensures that (at least for the TCP
socket) that our default `::` does indeed allow connections via IPv6
(to localhost aka ::1).
 2021-12-16 23:27:56 +01:00
David Anderson
7708b9db26 infuxdb2: add package split to 22.05 release notes. 2021-12-16 12:17:20 -08:00
David Anderson
492f791f9d influxdb2: use the new server derivation in the nixos module. 2021-12-16 12:10:09 -08:00
Kim Lindberger
ebaa226853
elk7: 7.11.1 -> 7.16.1, 6.8.3 -> 6.8.21 + add filebeat module and tests (#150879) 
* elk7: 7.11.1 -> 7.16.1

* nixosTests.elk: Improve reliability and compatibility with ELK 7.x

- Use comparisons in jq instead of grepping
- Match for `.hits.total.value` if version >= 7, otherwise it always
  passes
- Make curl fail if requests fails

* nixos/filebeat: Add initial module and test

Filebeat is an open source file harvester, mostly used to fetch logs
files and feed them into logstash.

This module can be used instead of journalbeat if used with
`filebeat7` and configured with the `journald` input.

* python3Packages.parsedmarc.tests: Fix breakage

- Don't use the deprecated elasticsearch7-oss package
- Improve jq query robustness and add tracing

* rl-2205: Note the addition of the filebeat service

* elk6: 6.8.3 -> 6.8.21

The latest version includes a fix for CVE-2021-44228.

* nixos/journalbeat: Add a loose dependency on elasticsearch

Avoid unnecssary back-off when elasticsearch is running on the same
host.
 2021-12-17 00:20:52 +09:00
Nikolay Amiantov
759f4afc65
tarsnap service: fix escaping (#150802) 2021-12-16 16:53:59 +03:00
zowoq
014236e9c9 nixos/kubernetes: don't import <nixpkgs> 2021-12-16 21:47:12 +10:00
Nikolay Amiantov
aef12c8678
Merge pull request #150779 from abbradar/youtrack 
youtrack: 2021.1.13597 -> 2021.4.35970, restart on failure
 2021-12-15 16:04:58 +03:00
Markus S. Wamser
b93e478777 writers.PyPy{2,3}: init 2021-12-15 10:01:08 +01:00
Markus S. Wamser
4e42f6bcb3 writers.writePython2: remove 2021-12-15 09:56:14 +01:00
Nikolay Amiantov
497d334c14 youtrack service: restart on failure 2021-12-15 01:40:00 +03:00
Sumner Evans
c0a6554847
matrix-synapse: 1.48.0 -> 1.49.0 2021-12-14 10:34:41 -07:00
Silvan Mosberger
d995f2abb9
Merge pull request #150631 from pennae/fix-option-docs-nix23 
nixos/lib/make-options-doc: fix with nix 2.3
 2021-12-14 11:58:41 +01:00
ajs124
84ce6a6286
Merge pull request #149868 from lostnet/couchopts 
couchdb3: add vm.args option and fix pkgs.couchdb reference
 2021-12-14 10:48:56 +00:00
Bobby Rong
bbfbcefb02
Merge pull request #149628 from Izorkin/fix-wsdd 
nixos/tests/wsdd: fix test
 2021-12-14 14:58:40 +08:00
pennae
a70b1eb630 nixos/lib/make-options-doc: fix with nix 2.3 2021-12-14 03:41:09 +01:00
zowoq
d90103d112 Revert "kubernetes: disable rbac tests" 
This reverts commit 91c6a97243.
 2021-12-14 11:02:36 +10:00
Johan Thomsen
282b303e83 nixos/kubernetes: drop tty and stdin for execs in test pods 2021-12-14 11:02:07 +10:00
Julien Moutinho
5cf90a60e5 nixos/redis: cleanup tests 2021-12-13 14:42:19 -05:00
Julien Moutinho
7475554372 nixos/redis: enable multiple instances of redis-server 2021-12-13 14:42:19 -05:00
Bernardo Meurer
f40283cf62
Merge pull request #149837 from helsinki-systems/feat/redo-activation-script-restarting 
nixos/switch-to-configuration: Add a massive test and do a slight refactor
 2021-12-13 11:37:20 -08:00
Maximilian Bosch
bedca751c5
Merge pull request #150527 from malte-christian/master 
nixos/nextcloud: update warning for MariaDB >= 10.6
 2021-12-13 15:21:16 +01:00
Jörg Thalheim
afa3c99cd5
Merge pull request #148593 from veehaitch/sgx-psw 
sgx-psw: init package and module
 2021-12-13 14:16:26 +00:00
Malte
7c43256291 nixos/nextcloud: update warning for MariaDB >= 10.6 2021-12-13 13:25:21 +01:00
maralorn
b243326a02
Merge pull request #149013 from Ma27/postgres-docs 
nixos/postgresql: improve docs on how to upgrade
 2021-12-12 15:55:37 +01:00
Martin Weinelt
37527494b6
Merge pull request #150329 from zhaofengli/unifi-6.5.54 2021-12-12 14:10:10 +01:00
markuskowa
5d99afe652
Merge pull request #150311 from bachp/glusterfs-syslog-target 
nixos/glusterfs: remove syslog.target from services
 2021-12-12 12:42:53 +01:00
zowoq
91c6a97243 kubernetes: disable rbac tests 
timed out on hydra
 2021-12-12 19:56:19 +10:00
Zhaofeng Li
e992604bf0 nixos/unifi: Apply log4j2 mitigation 2021-12-12 01:48:58 -08:00
Bobby Rong
ebb5bd223c
Merge pull request #150372 from bobby285271/pantheon 
pantheon.appcenter: re-add patch for disable packagekit backend
 2021-12-12 13:30:53 +08:00
Bobby Rong
c65f6852e4
Revert "nixos/pantheon: mention latest appcenter changes in manual" 
This reverts commit d49d9a24b7.
 2021-12-12 12:45:31 +08:00
Bobby Rong
1eef9ae2d1
Revert "nixos/pantheon: cleanup FAQ section" 
This reverts commit cd58f44937.
 2021-12-12 12:45:10 +08:00