Pol Dellaiera
161182c362
Merge pull request #234987 from mmusnjak/apache-datasketches
...
apache_datasketches: init at 1.6.0
2023-06-02 21:55:22 +02:00
happysalada
ee1c6053fb
nixos/ntfy-sh: use dynamic user and add defaults
2023-06-02 15:22:14 -04:00
Marko Mušnjak
aafe0f4314
apache_datasketches: init at 1.6.0
...
PostgreSQL extension providing approximate algorithms for
distinct item counts, quantile estimation and frequent items detection.
2023-06-02 21:03:19 +02:00
github-actions[bot]
6084eca7dc
Merge master into staging-next
2023-06-02 18:01:04 +00:00
Linus Heckemann
15c3a653d5
Merge pull request #235440 from lheckemann/garage
...
nixos/garage: allow unsafe replication modes, restart on config change
2023-06-02 19:22:03 +02:00
Linus Heckemann
c4f727c944
nixos/garage: allow unsafe replication modes, restart on config change
2023-06-02 18:11:44 +02:00
K900
e534047e2d
Merge pull request #234620 from linj-fork/fix/murmur-after
...
nixos/murmur: make it be after network.target again
2023-06-02 18:13:12 +03:00
Ryan Lahfa
4a4238a840
Merge pull request #235143 from wlcx/patch-1
...
nixos/pixelfed: fix broken try_files
2023-06-02 17:12:14 +02:00
Ryan Lahfa
0902958046
Merge pull request #235295 from nikstur/qemu-vm-improve-comments-and-docs
...
nixos/qemu-vm: improve comments and option descriptions
2023-06-02 15:34:49 +02:00
Bobby Rong
7f96a08418
Merge pull request #235511 from bobby285271/upd/cinnamon-bpo
...
Cinnamon updates 2023-06-02
2023-06-02 21:25:34 +08:00
Mario Rodas
99287fe19b
Merge pull request #235450 from Luflosi/update/aaaaxy
...
aaaaxy: 1.3.538 -> 1.4.2
2023-06-02 07:42:12 -05:00
Bobby Rong
68dd259958
Merge pull request #235514 from bobby285271/upd/pantheon
...
Pantheon updates 2023-06-02
2023-06-02 20:36:02 +08:00
github-actions[bot]
c8021f68a8
Merge master into staging-next
2023-06-02 12:01:23 +00:00
Bobby Rong
9f5dc9f927
nixos/tests/cinnamon: silence a warning and remove unused args
...
Module argument `nodes.machine.config` is deprecated. Use `nodes.machine` instead.
2023-06-02 19:51:12 +08:00
Bobby Rong
e447cb9776
nixos/pantheon: enable xdg-desktop-portal-gtk by default
2023-06-02 19:29:26 +08:00
Ryan Lahfa
32630256f2
Merge pull request #235424 from AmineChikhaoui/ec2-amis-rel-23.05
2023-06-02 12:18:48 +02:00
github-actions[bot]
1625d790e1
Merge staging-next into staging
2023-06-02 06:01:45 +00:00
Bobby Rong
7cf3428fd5
nixos/cinnamon: fix slick-greeter icon theme package default
2023-06-02 11:40:09 +08:00
Nick Cao
9e2fa20321
Merge pull request #235425 from 999eagle/fix/nitter
...
nixos/nitter: fix proxy option
2023-06-01 20:26:54 -06:00
github-actions[bot]
8b93c4f667
Merge staging-next into staging
2023-06-02 00:03:07 +00:00
Dennis Gosnell
dcf201d275
nixosTests.virtualbox: remove cdepillabout as maintainer
2023-06-02 07:44:51 +09:00
Silvan Mosberger
d4fe69faea
nix-fallback-paths.nix: Update to 2.15.1
2023-06-01 22:55:14 +02:00
Alex Crawford
67c72f85a3
rl-2305: Use immutable URL for the systemd release notes
2023-06-01 13:48:11 -07:00
Alex Crawford
4b8977a3e9
rl-2305: Fix the links to the Nix release notes
...
NixOS 23.05 updated Nix from 2.11 to 2.13, so the release notes for
2.12 and 2.13 should be linked.
2023-06-01 13:48:11 -07:00
Thiago Kenji Okada
99d37f54f0
nixos/sway: fix package option documentation
2023-06-01 19:40:02 +00:00
Weijia Wang
f2654557a6
Merge pull request #235369 from vcunat/p/release-notes-nits
...
23.05 release notes nits
2023-06-01 20:48:14 +02:00
Luflosi
35af643640
aaaaxy: 1.3.538 -> 1.4.2
...
https://github.com/divVerent/aaaaxy/releases/tag/v1.4.2
2023-06-01 20:14:33 +02:00
Weijia Wang
e921ee7fdf
Merge pull request #235298 from eliasnaur/master
...
nixos/doc/manual: add release notes for util-linux on Darwin
2023-06-01 20:04:18 +02:00
github-actions[bot]
8985306cfd
Merge staging-next into staging
2023-06-01 18:01:45 +00:00
Sophie Tauchert
2dbd1e56c1
nixos/nitter: fix proxy option
2023-06-01 19:59:48 +02:00
Weijia Wang
076e3d55c0
Merge pull request #234043 from figsoda/pypi
...
python3.pkgs.fetchPypi: deprecate in favor of top-level fetchPypi
2023-06-01 19:56:32 +02:00
Amine Chikhaoui
709043ed97
add release 23.05 AWS AMIs
2023-06-01 13:46:53 -04:00
Martin Weinelt
849fe26ac4
Merge pull request #229309 from bjornfor/update-kanidm
...
kanidm: 1.1.0-alpha.11 -> 1.1.0-alpha.12
2023-06-01 16:47:44 +02:00
Bjørn Forsman
ed99bd0fb9
kanidm: 1.1.0-alpha.11 -> 1.1.0-alpha.12
...
* Update Cargo.lock from upstream.
* Adapt expression to upstream source tree layout changes.
* Apply patch to restore x86_64 v1 support
Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>
Also updates the NixOS test:
* Stop kanidm to recover the idm_admin account
* Group all tests into subtest blocks
* Add TODO to wait for unix socket on unixd for the next release
Co-Authored-By: Raito Bezarius <masterancpp@gmail.com>
Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>
2023-06-01 15:28:11 +02:00
github-actions[bot]
e8e956566c
Merge staging-next into staging
2023-06-01 12:02:11 +00:00
Pol Dellaiera
3090855141
Merge pull request #232360 from drupol/nixos/refactor-code-server
...
nixos/code-server: add tests and more command line options
2023-06-01 13:56:01 +02:00
Vladimír Čunát
054c184cab
nixos/doc: drop a repeated paragraph
...
It's in "backward incompatibilities" section, so no need to be also
in "*other* notable changes" section.
2023-06-01 12:47:34 +02:00
Vladimír Čunát
c41c19276d
nixos/doc: drop a repeated paragraph
...
Bad conflict resolution, I assume.
2023-06-01 12:46:52 +02:00
Vladimír Čunát
ad90e88108
nixos/doc: fix typo
2023-06-01 12:46:15 +02:00
Elias Naur
f970e996fc
nixos/doc/manual: add release notes for util-linux on Darwin
...
This is a follow-up to PR #232713 .
2023-05-31 18:25:11 -06:00
github-actions[bot]
52e40d8261
Merge staging-next into staging
2023-06-01 00:03:14 +00:00
nikstur
003fec835c
nixos/qemu-vm: remove grub references from useBootLoader description
2023-06-01 01:38:08 +02:00
nikstur
8ea8154a32
nixos/qemu-vm: (re-)move old/incorrect comments
2023-06-01 01:38:06 +02:00
Yaya
28ecd17523
nixos/doc: Mention container registry deprecation in gitlab
...
Support for external container registries has ended in GitLab >=16 and
module users are therefore advised to switch to gitlab's fork instead.
2023-05-31 22:14:25 +02:00
Yaya
e9594e6031
nixos/gitlab: Warn users who are still using an external registry
...
This adds a warning for GitLab >=16.0.0 users who are still using an
external container registry such as `pkgs.docker-distribution`. Support
for external container registries has ended in GitLab 16.0 [1] and is
scheduled for removal in a future release. [2]
[1]: https://gitlab.com/gitlab-org/gitlab/-/issues/376217
[2]: https://gitlab.com/gitlab-org/gitlab/-/issues/403322
2023-05-31 22:14:25 +02:00
Yaya
014816cbe4
nixos/gitlab: Add support for gitlab-container-registry
...
Support for external container registries (namely
`pkgs.docker-distribution`) has ended in GitLab 16.0 [1] and is
scheduled for removal in a future release. [2]
This commit adds a new registry package option, defaulting to
`pkgs.docker-distribution` and `pkgs.gitlab-container-registry` for
system state versions >= 23.11.
While it is still possible to use the docker container registry, module
users should switch to gitlab's container registry fork soon. A warning
message will be added in a future commit to advise affected users to
back up their state and then switch to the new container registry
package.
[1]: https://gitlab.com/gitlab-org/gitlab/-/issues/376217
[2]: https://gitlab.com/gitlab-org/gitlab/-/issues/403322
2023-05-31 22:14:25 +02:00
Yaya
049d680510
nixos/dockerRegistry: add package option
...
This allows the module user to select an alternative container registry
package such as `pkgs.gitlab-container-registry` for GitLab users.
2023-05-31 22:14:25 +02:00
Yureka
82d9c2e91f
nixosTests.gitlab: fix project ids
2023-05-31 22:14:25 +02:00
Yaya
edc47cb999
nixos/doc: Mention PostgreSQL requirement for gitlab
...
`gitlab` has been upgraded to major version 16 and requires at least
PostgreSQL 13.6.
2023-05-31 22:14:25 +02:00
Yaya
2a4536952a
nixos/gitlab: Require at least postgresql 13.6
...
https://docs.gitlab.com/16.0/ee/install/requirements.html#postgresql-requirements
2023-05-31 22:14:25 +02:00
Yaya
4321e48b68
nixos/gitlab: Remove procps from gitaly service
...
From my understanding, procps was added to the gitlay systemd service
path in #58487 to fix gitaly-ruby's internal memory leak detection.
Now that the last ruby remnants have been removed in gitaly 16.0.0,
this should not be necessary anymore.
2023-05-31 22:14:25 +02:00
Yaya
33411f2768
nixos/gitlab: Update redis configuration
...
Configuring Redis via environment variable is not supported anymore
since [1].
[1] 1242965361
2023-05-31 22:14:25 +02:00
Yaya
6fed71cab2
gitaly: Remove ruby dependencies
...
Ruby dependencies in gitaly have been removed in the 16.0.0 release. [1]
See GitLab Epic &2862 [2] for more info.
[1]: 689556e70a
[2]: https://gitlab.com/groups/gitlab-org/-/epics/2862
2023-05-31 22:14:25 +02:00
github-actions[bot]
e436cc21a6
Merge staging-next into staging
2023-05-31 18:01:35 +00:00
figsoda
ffbf6f27c9
python3.pkgs.fetchPypi: deprecate in favor of top-level fetchPypi
2023-05-31 13:48:06 -04:00
Kira Bruneau
7e820610e3
Merge pull request #234207 from emilylange/acme-dns
...
acme-dns: init at 1.0; nixos/acme-dns: init; nixos/acme-dns: init
2023-05-31 11:40:35 -04:00
figsoda
137dd249c5
writeTextFile: revert workaround for executable = null
2023-05-31 09:25:18 -04:00
emilylange
fa21828be5
nixosTests.acme-dns: init
2023-05-31 15:08:39 +02:00
emilylange
d0af39521b
nixos/acme-dns: init
2023-05-31 15:08:37 +02:00
github-actions[bot]
323e9a44c2
Merge staging-next into staging
2023-05-31 12:01:43 +00:00
Martin Weinelt
17684ef69d
rl2305: Sync back changes that only went into 23.05
2023-05-31 13:55:20 +02:00
Martin Weinelt
99012d1bbd
Merge pull request #235011 from NixOS/before-23.05-final-release
...
release: before 23.05 final release
2023-05-31 13:51:08 +02:00
Arian van Putten
5a13c00640
Merge pull request #235082 from ElvishJerricco/systemd-uefi-bug-chunked-reads
...
systemd-boot: Patch for firmwares that fail to load large files
2023-05-31 13:49:57 +02:00
Lennart Mühlenmeier
a17e3e356a
rl-2305: finalize the release notes
...
Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>
2023-05-31 13:28:55 +02:00
ajs124
957db96d53
Merge pull request #233850 from helsinki-systems/upd/apparmor
...
apparmor: 3.1.3 -> 3.1.4
2023-05-31 12:12:30 +02:00
r-vdp
2b63df0a03
modules/sshd: print the offending keys when we detect duplicate sshd keys.
2023-05-31 12:07:06 +02:00
Sam W
6ad72aa37e
nixos/pixelfed: fix broken try_files
...
Add missing $ to try files directive. This fixes pixelfed federation and search, amongst presumably many other things!
2023-05-31 15:19:23 +08:00
Will Fancher
6727bab05e
systemd-boot: Patch for firmwares that fail to load large files
2023-05-30 19:21:16 -04:00
github-actions[bot]
4265b54868
Merge staging-next into staging
2023-05-30 18:01:44 +00:00
github-actions[bot]
15b82046fb
Merge master into staging-next
2023-05-30 18:01:10 +00:00
Raito Bezarius
b8c2962807
nixos/doc/manual/installation: update the upgrading chapter for 23.05
2023-05-30 16:42:53 +02:00
github-actions[bot]
7443b1efc5
Merge staging-next into staging
2023-05-30 12:01:46 +00:00
github-actions[bot]
8ca315db3e
Merge master into staging-next
2023-05-30 12:01:07 +00:00
Aaron Andersen
d098eec2da
nixos/vmalert: init
2023-05-30 07:41:00 -04:00
Nick Cao
93ebabefb2
Merge pull request #234930 from NickCao/maddy
...
maddy: 0.6.3 -> 0.7.0
2023-05-30 05:16:51 -06:00
Raito Bezarius
5e64b96a12
rl-2305: alpha version for 23.05
...
This is an alpha version worked out by the release managers.
Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>
2023-05-30 12:09:55 +02:00
github-actions[bot]
36927e8629
Merge staging-next into staging
2023-05-30 06:01:32 +00:00
github-actions[bot]
2cc7256a10
Merge master into staging-next
2023-05-30 06:01:03 +00:00
Jonas Heinrich
63f73b3295
nixos/maddy: change secrets option to accept a list of paths
2023-05-30 12:41:07 +08:00
github-actions[bot]
1df97aede2
Merge staging-next into staging
2023-05-30 00:02:56 +00:00
github-actions[bot]
ceb7ed5e38
Merge master into staging-next
2023-05-30 00:02:21 +00:00
Gaetan Lepage
d93dc82ee9
nixos/river: fix display manager error
2023-05-29 22:41:48 +02:00
3JlOy_PYCCKUI
22c8251d7f
nixos/dk: init
2023-05-29 19:05:55 +00:00
Will Fancher
76d668fae7
Merge pull request #227628 from m-bdf/logind-handle-keys
...
nixos/logind: Add key handling options
2023-05-29 14:31:43 -04:00
Ryan Lahfa
5e871d8aa6
Merge pull request #234639 from Atemu/rl-buildFHSEnvBubblewrap-migration
...
rl-2305: mention buildFHSEnv switch to bubblewrap
2023-05-29 20:11:05 +02:00
github-actions[bot]
5611fa71ab
Merge staging-next into staging
2023-05-29 18:01:43 +00:00
github-actions[bot]
698b4f4f63
Merge master into staging-next
2023-05-29 18:01:07 +00:00
Julien Malka
9631553153
Revert "nixos/ntfy-sh: add defaults, use dynamic user"
...
This reverts commit 3dcca62a5e
.
2023-05-29 11:11:32 -04:00
Florian Klink
8b8a64d737
Merge pull request #234442 from rnhmjoj/pr-fix-ifnames
...
network-interfaces-scripted: fix interface cleanup
2023-05-29 15:14:12 +02:00
github-actions[bot]
a0de937efb
Merge staging-next into staging
2023-05-29 12:02:05 +00:00
github-actions[bot]
1baa1734cb
Merge master into staging-next
2023-05-29 12:01:30 +00:00
Weijia Wang
4387329d8f
Merge pull request #234729 from tie/pufferpanel-doc-fhsenv
...
nixos/pufferpanel: buildFHSUserEnv -> buildFHSEnv
2023-05-29 10:56:11 +03:00
Vladimír Čunát
2f9191eb88
Merge branch 'master' into staging-next
2023-05-29 08:14:18 +02:00
Ivan Trubach
0143b16935
nixos/pufferpanel: buildFHSUserEnv -> buildFHSEnv
...
The pufferpanel module (#225274 ) was merged shortly after the tree-wide
rename f63a12f296
(#225748 ), so the use of
deperecated buildFHSUserEnv in the docs slipped through review 😅
2023-05-29 07:08:19 +03:00
happysalada
3dcca62a5e
nixos/ntfy-sh: add defaults, use dynamic user
2023-05-28 21:17:14 -04:00
github-actions[bot]
7ff7700c0b
Merge staging-next into staging
2023-05-29 00:03:02 +00:00
Martin Weinelt
6b554aae1c
Merge pull request #234186 from hmenke/shadowsocks
...
nixos/shadowsocks: wait for nginx to prevent race condition
2023-05-29 01:37:36 +02:00
Weijia Wang
b8ce4c46f5
Merge pull request #234645 from Izorkin/update-http3-libs
...
Update http3 libraries
2023-05-29 00:50:38 +03:00
github-actions[bot]
a981e2e0f3
Merge staging-next into staging
2023-05-28 18:01:48 +00:00
Izorkin
f28c987507
nixos/tests: update nginx-http3 test
2023-05-28 19:55:00 +03:00
Alyssa Ross
ad31856bd9
nixosTests.public-inbox: extend sleep
...
5 seconds isn't reliably enough here on my system.
2023-05-28 16:40:13 +00:00
Atemu
3720991c06
rl-2305: mention buildFHSEnv switch to bubblewrap
...
See https://github.com/NixOS/nixpkgs/pull/225748
2023-05-28 17:41:49 +02:00
Lin Jian
0ae9df6c5e
nixos/murmur: make it be after network.target again
...
network.target was changed to network-online.target in this PR[1] to
workaround an issue[2].
The murmur version in Nixpkgs has fixed that issue[2].
[1]: https://github.com/NixOS/nixpkgs/pull/42860
[2]: https://github.com/mumble-voip/mumble/issues/1629
2023-05-28 21:03:40 +08:00
Alyssa Ross
507ff39251
nixos/test-driver: fix formatting
...
This caused the test driver to fail to build.
Fixes: 406de94b41
("nixos/test-driver: add `timeout` option for `wait_for_console_text`")
2023-05-28 12:29:26 +00:00
github-actions[bot]
572e24048b
Merge staging-next into staging
2023-05-28 12:01:53 +00:00
Jacek Galowicz
b4b45ee6d2
Revert "nixos/lib/test-driver: enable EFI variable reads at runtime"
2023-05-28 13:05:59 +02:00
Jacek Galowicz
d9626034f1
Merge pull request #234513 from NixOS/test-driver/wait_for_console_timeout
...
nixos/test-driver: add `timeout` option for `wait_for_console_text`
2023-05-28 09:57:00 +02:00
Jacek Galowicz
be62469b22
Merge pull request #229027 from NixOS/qemu-vm/read-efi-var
...
nixos/lib/test-driver: enable EFI variable reads at runtime
2023-05-28 09:51:29 +02:00
github-actions[bot]
19efa11381
Merge staging-next into staging
2023-05-28 06:01:45 +00:00
Bobby Rong
838dad5de9
Merge pull request #234231 from bobby285271/add/xdg-desktop-portal-xapp
...
xdg-desktop-portal-xapp: init at 1.0.0
2023-05-28 10:52:30 +08:00
github-actions[bot]
003f914d04
Merge staging-next into staging
2023-05-28 00:03:10 +00:00
Raito Bezarius
d1104e2109
nixos/test-driver: add timeout
option for wait_for_console_text
(variant 2)
2023-05-28 00:07:43 +02:00
Thomas Gerbet
85f15277d0
etcd: switch to etcd_3_5
2023-05-28 08:04:43 +10:00
Thomas Gerbet
a24848c470
nixos/etcd: allow to choose the package
2023-05-28 08:04:43 +10:00
Raito Bezarius
406de94b41
nixos/test-driver: add timeout
option for wait_for_console_text
...
Previously, `wait_for_console_text` would block indefinitely until there were lines
shown in the buffer.
This is highly annoying when testing for things that can just hang for some reasons.
This introduces a classical timeout mechanism via non-blocking get on the Queue.
2023-05-27 23:55:52 +02:00
Raito Bezarius
f1aee66f92
nixos/lib/test-driver: enable EFI variable reads at runtime
...
This is useful whenever you want to diagnose the current state of UEFI
variables, to assert that bootloaders or boot programs (systemd-stub)
did their job correctly and set their variables accordingly.
In the future, it can enable inspecting SecureBoot keys also.
2023-05-27 22:44:58 +02:00
Ryan Lahfa
77a1c48cca
Merge pull request #232011 from GaetanLepage/river
...
nixos/river: init module
2023-05-27 22:30:51 +02:00
github-actions[bot]
9441fc25d1
Merge staging-next into staging
2023-05-27 18:01:38 +00:00
rnhmjoj
ea0b4a694a
nixos/test/networking: test unusual interface names
2023-05-27 19:19:37 +02:00
Victor Freire
fca068a558
nixos/tests/legit: init
2023-05-27 16:20:05 +00:00
Victor Freire
77520d39ce
nixos/legit: init
2023-05-27 16:20:05 +00:00
Raito Bezarius
09d1022782
nixos/qemu-vm: fix 32-bits assert for memorySize
...
It should be an implication, rather than &&.
2023-05-27 17:20:08 +02:00
Jacek Galowicz
3580ac6c65
Merge pull request #234427 from alyssais/create_machine
...
nixos/test-driver: undeprecate create_machine
2023-05-27 17:02:11 +02:00
Alyssa Ross
e33c2a5e4c
nixos/test-driver: add missing spaces to warning
2023-05-27 15:00:00 +00:00
Martin Weinelt
108721e4d1
Merge pull request #170473 from NixOS/grahamc-patch-3
...
networkd: support specifying the ClientIdentifier for DHCPv4 options
2023-05-27 16:55:30 +02:00
Ryan Lahfa
537c6ede55
Merge pull request #234266 from emilylange/qemu-vm-2047mb
...
nixos/qemu-vm: add `virtualisation.memorySize < 2048` assertion on 32bit
2023-05-27 15:31:00 +02:00
rnhmjoj
6732106210
network-interfaces-scripted: fix interface cleanup
...
There is apparently a bug in the parser of iproute2 where the command
`ip link show <devname>` will not show the device but list all
interfaces (equivalent to `ip link show`) if devname is equal to one of
the flags of `ip-address(8)`. For example, `home`, or `optimistic`.
This bug causes a false positive in the clean up command of the
<devname>-netdev.service, the service fails and the interface is never
configured.
To avoid the bug we can simply use `ip link show dev <devname>`.
2023-05-27 15:09:22 +02:00
Graham Christensen
479712af11
networkd: support specifying the ClientIdentifier for DHCPv4 options
2023-05-27 15:06:06 +02:00
Alyssa Ross
845576aac4
nixos/test-driver: undeprecate create_machine
...
This warning was added a year and a half ago, but still no test in
NixOS directly instantiates the machine class, presumably because it's
not actually possible for a test to do so without losing
functionality. For example, there's no way for a NixOS test to access
the output directory that create_machine passes to the Machine
constructor.
This warning is therefore just contributing to alert fatigue for
users, who are unable to follow its advice. Once it's actually
possible to do what it suggests, the warning can be reintroduced.
2023-05-27 12:56:04 +00:00
github-actions[bot]
824f05f73f
Merge staging-next into staging
2023-05-27 06:01:44 +00:00
Nick Cao
cf58ff13a3
Merge pull request #234254 from kevincox/mautrix-facebook-appservice-id
...
nixos.mautrix-facebook: Fix appservice name
2023-05-26 19:48:00 -06:00
Alyssa Ross
191075fa83
Merge remote-tracking branch 'origin/staging-next' into staging
...
Conflicts:
pkgs/os-specific/linux/kernel/patches.nix
pkgs/top-level/linux-kernels.nix
2023-05-26 18:37:26 +00:00
Raito Bezarius
69bb0f94de
nixos/nginx: first-class PROXY protocol support
...
PROXY protocol is a convenient way to carry information about the
originating address/port of a TCP connection across multiple layers of
proxies/NAT, etc.
Currently, it is possible to make use of it in NGINX's NixOS module, but
is painful when we want to enable it "globally".
Technically, this is achieved by reworking the defaultListen options and
the objective is to have a coherent way to specify default listeners in
the current API design.
See `mkDefaultListenVhost` and `defaultListen` for the details.
It adds a safeguard against running a NGINX with no HTTP listeners (e.g.
only PROXY listeners) while asking for ACME certificates over HTTP-01.
An interesting usecase of PROXY protocol is to enable seamless IPv4 to
IPv6 proxy with origin IPv4 address for IPv6-only NGINX servers, it is
demonstrated how to achieve this in the tests, using sniproxy.
Finally, the tests covers:
- NGINX `defaultListen` mechanisms are not broken by these changes;
- NGINX PROXY protocol listeners are working in a final usecase
(sniproxy);
- uses snakeoil TLS certs from ACME setup with wildcard certificates;
In the future, it is desirable to spoof-attack NGINX in this scenario to
ascertain that `set_real_ip_from` and all the layers are working as
intended and preventing any user from setting their origin IP address to
any arbitrary, opening up the NixOS module to bad™ vulnerabilities.
For now, it is quite hard to achieve while being minimalistic about the
tests dependencies.
2023-05-26 19:48:26 +02:00
emilylange
5dbd4f3243
nixos/qemu-vm: add virtualisation.memorySize < 2048
assertion on 32bit
2023-05-26 19:43:58 +02:00
Kevin Cox
5242aea64f
nixos.mautrix-facebook: Fix appservice name
...
It appears that newer mautrix-facebook versions default to the appservice name `facebook`. This was breaking our registration and causing mautrix-facebook to fail to start. This changes the name back and makes the registration generated match whatever the setting in the app is.
2023-05-26 12:39:37 -04:00
Bobby Rong
36abd7c9f8
nixos/cinnamon: enable portals by default
2023-05-26 23:53:15 +08:00
Ryan Lahfa
435237d641
Merge pull request #233350 from GrahamDennis/grahamdennis/testing-networks
...
nixos/qemu-vm: add option for named network interfaces
2023-05-26 15:57:01 +02:00
Vladimír Čunát
2159f74076
Merge branch 'staging-next' into staging
2023-05-26 14:03:40 +02:00
Henri Menke
7d621d6be5
nixos/shadowsocks: wait for nginx to prevent race condition
2023-05-26 11:24:21 +02:00
Weijia Wang
9b6c126355
Merge pull request #234116 from chkno/nar-serve-fix
...
nixos/tests/nar-serve: Fix
2023-05-26 11:43:24 +03:00
Pol Dellaiera
371b4c3eb7
nixos/code-server: init tests
2023-05-26 09:51:33 +02:00
Pol Dellaiera
2c95ebadf3
nixos/code-server: add more command line options
2023-05-26 09:51:33 +02:00
github-actions[bot]
59b8a4fae6
Merge staging-next into staging
2023-05-26 06:01:46 +00:00
Scott Worley
8dcfb6853c
nixos/tests/nar-serve: Fix
2023-05-25 19:10:22 -07:00
lucasew
8587646ef3
nixos/virtualisation/google-compute-config: minor refactoring
...
Signed-off-by: lucasew <lucas59356@gmail.com>
2023-05-26 00:56:32 +00:00
github-actions[bot]
255911fcb9
Merge staging-next into staging
2023-05-26 00:02:51 +00:00
Lily Foster
83e9bcb109
Merge pull request #231891 from SuperSandro2000/gst-plugins-bad
...
nixos/no-x-libs: add gst-plugins-bad, gst-plugins-rs
2023-05-25 19:25:00 -04:00
Yaya
ae47862b93
nixos/doc: add release note for sftpgo
2023-05-25 22:46:15 +02:00
Yaya
931a1b97f7
nixos/tests/sftpgo: init
2023-05-25 22:46:15 +02:00
Yaya
f63f781063
nixos/sftpgo: init
...
A fully featured and highly configurable SFTP server with optional
HTTP/S, FTP/S and WebDAV support.
https://github.com/drakkan/sftpgo
2023-05-25 22:46:15 +02:00