Age | Commit message (Collapse) | Author | Files | Lines |
|
nixos/ebusd: permit "none" as a log level
|
|
nixos/mailman: prefer 'install' over 'chmod/chown'
|
|
|
|
nixos/no-x-libs: disable more GUIs for gst_all_1.gst-plugins-good
|
|
nixos/nginx: don't add .well-known locations for acme when using DNS-01
|
|
nixos/vault: change type and default of devRootTokenID
|
|
nixos/postgresql: Remove toplevel `with lib;`
|
|
|
|
challenge
|
|
Previously you needed to set an devRootTokenID when dev=true despite the option being optional
Caused by wrong default value and not allowing null as value
|
|
nixos/incus: add missing packages to path
|
|
|
|
nextcloud29: init at 29.0.0, nextcloud27: 27.1.8 -> 27.1.9, nextcloud28: 28.0.4 -> 28.0.5
|
|
|
|
nixos/no-x-libs: add ffmpeg, ffmpeg_6, ffmpeg_7
|
|
|
|
|
|
nixos/adguardhome: update config to match new schema, update package and fix update script
|
|
coder: add kylecarbs to maintainers
|
|
nixos/qemu-vm: add option to specify security model to use for a shared directory
|
|
|
|
Conflicts:
nixos/modules/services/home-automation/ebusd.nix
|
|
Fix inspired from this issue: https://github.com/rhasspy/wyoming-faster-whisper/issues/27
|
|
Revert "dbus: Switch default implementation to broker"
|
|
This reverts commit e827697fd3435b458a759ef0b92de7f26624b910.
This seems to cause various issues during system activation, as reported
in https://github.com/NixOS/nixpkgs/issues/302771 for example.
Due to being close to branchoff, revert this for now.
We'll open a tracking issue to collect and sort out remaining issues.
|
|
nixos/redis: enable vmOverCommit by defaul; don't disable transparent hugepages
|
|
nixos/systemd-boot: avoid expensive mypy builds on configuration changes
|
|
movim: include authentication patch & remove parallel dependency
|
|
nixos/wireplumber: add `extraConfig` / `extraScripts` options for WirePlumber 0.5
|
|
|
|
Since https://github.com/redis/redis/pull/4001 included in 6.2.0
transparent hugepages works when being set to madvise which is the NixOS
and upstream recommended default.
|
|
> WARNING Memory overcommit must be enabled! Without it, a background save or replication may fail under low memory condition.
> Being disabled, it can also cause failures without low memory condition, see https://github.com/jemalloc/jemalloc/issues/1328.
> To fix this issue add 'vm.overcommit_memory = 1' to /etc/sysctl.conf and then reboot or run the command 'sysctl vm.overcommit_memory=1' for this to take effect.
|
|
|
|
nixos/knot: use a more precise type for .settings
|
|
|
|
|
|
Currently there is an issue with $PATH & parallel causing build errors.
It’s probably best to just remove the dependency where bash forking is
good enough here.
|
|
See discussion on PR #304373
|
|
nixos/pam: Use secure default for `sshAgentAuth.authorizedKeysFiles`
|
|
nixos/libinput: move out of xserver
|
|
isolate: add module and module tests
|
|
pks-t/pks-matrix-appservice-irc-fix-chown-registration-yml
nixos/matrix-appservice-irc: fix chown of registration.yml in pre-script
|
|
Before the startup, the matrix-appservice-irc service sets up the
registration file such that it can be used by matrix-synapse. Part of
that setup requires us to change the group of said file so that the home
server can read it. Consequently, we need CAP_CHOWN and require that the
@chown system calls are allowed.
While we supposedly set up both of these, the setup of system calls is
broken as we have both an allow and a deny list of syscalls. But while
the allow list contains "@chown", the deny list contains "@privileged"
which contains "@chown" itself. So ultimately, we end up denying
"@chown".
Fix this issue by specifying "@chown" after the deny list.
|
|
I manually audited all `RunCommand` and `exec.LookPath` calls in the incus repo, combined with the following information
/run/wrappers/bin
lxc usable-cub 20240427123718.368 WARN idmap_utils - ../src/lxc/idmap_utils.c:lxc_map_ids:165 - newuidmap binary is missing
iw
lxc 20240427123830.358 ERROR network - ../src/lxc/network.c:lxc_netdev_move_wlan:1679 - Couldn't find the application iw in PATH
minio-client
https://github.com/lxc/incus/pull/777
ceph-client
Added, but could be missing bits to actually work
May need full ceph package for `radosgw-admin` for object storage?
|
|
Currently the installWrapper warning is issued if sudo (and sudo-rs)
aren't installed. This is fine, except we get the warning even if we
explicitly turn off installWrapper -- say, for this very reason!
Rather than warning on every build until either sudo is installed or
Akkoma is uninstalled, only warn if cfg.installWrapper is true.
|
|
|
|
nixos/hyprland: Set environment variables for Hyprland to work better
|
|
XDG vars set to Hyprland
GTK and QT backend set to wayland (preferred), with x11 as fallback
Java AWT fix for tiling window managers
|
|
Yall won't miss me. The packages I leave orphaned are trivially updated as dependents need the new versions.
But passively endorsing the direction this organization and its leadership is something I can't do.
To those who still have faith in turning this around, you da real MVP 🖖
|
|
nixos/netbird: Fix configuration of coturn server
|