diff options
author | Vladimír Čunát <v@cunat.cz> | 2022-04-14 09:50:48 +0200 |
---|---|---|
committer | Vladimír Čunát <v@cunat.cz> | 2022-04-14 09:53:21 +0200 |
commit | d5d94127fd6468febe4f5e8eba8cb231bbd56103 (patch) | |
tree | 53efc69e691bdf7c7415039f5cdddb90d8fb5fc4 /nixos/doc | |
parent | 43c910047f4f2882cf9cba1d38045c3f6ebee051 (diff) | |
parent | 069038f0931658e6030876f37f81dfb6825f884c (diff) | |
download | nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.tar nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.tar.gz nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.tar.bz2 nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.tar.lz nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.tar.xz nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.tar.zst nixpkgs-d5d94127fd6468febe4f5e8eba8cb231bbd56103.zip |
Merge branch 'staging-next' into staging
Minor conflicts; I hope I didn't mess up: pkgs/development/tools/misc/binutils/default.nix pkgs/games/openjk/default.nix
Diffstat (limited to 'nixos/doc')
-rw-r--r-- | nixos/doc/manual/from_md/release-notes/rl-2205.section.xml | 47 | ||||
-rw-r--r-- | nixos/doc/manual/release-notes/rl-2205.section.md | 12 |
2 files changed, 57 insertions, 2 deletions
diff --git a/nixos/doc/manual/from_md/release-notes/rl-2205.section.xml b/nixos/doc/manual/from_md/release-notes/rl-2205.section.xml index 4dbad90a52f..a62ca7b3c15 100644 --- a/nixos/doc/manual/from_md/release-notes/rl-2205.section.xml +++ b/nixos/doc/manual/from_md/release-notes/rl-2205.section.xml @@ -381,6 +381,14 @@ cluster resource manager </para> </listitem> + <listitem> + <para> + <link xlink:href="https://nifi.apache.org">nifi</link>, an + easy to use, powerful, and reliable system to process and + distribute data. Available as + <link xlink:href="options.html#opt-services.nifi.enable">services.nifi</link>. + </para> + </listitem> </itemizedlist> </section> <section xml:id="sec-release-22.05-incompatibilities"> @@ -520,6 +528,13 @@ </listitem> <listitem> <para> + <literal>services.prometheus.alertManagerTimeout</literal> has + been removed as it has been deprecated upstream and has no + effect. + </para> + </listitem> + <listitem> + <para> The DHCP server (<literal>services.dhcpd4</literal>, <literal>services.dhcpd6</literal>) has been hardened. The service is now using the systemd’s @@ -553,6 +568,17 @@ </listitem> <listitem> <para> + <literal>services.paperless-ng</literal> was renamed to + <literal>services.paperless</literal>. Accordingly, the + <literal>paperless-ng-manage</literal> script (located in + <literal>dataDir</literal>) was renamed to + <literal>paperless-manage</literal>. + <literal>services.paperless</literal> now uses + <literal>paperless-ngx</literal>. + </para> + </listitem> + <listitem> + <para> The <literal>matrix-synapse</literal> service (<literal>services.matrix-synapse</literal>) has been converted to use the <literal>settings</literal> option @@ -1691,6 +1717,13 @@ </listitem> <listitem> <para> + A module for declarative configuration of openconnect VPN + profiles was added under + <literal>networking.openconnect</literal>. + </para> + </listitem> + <listitem> + <para> The <literal>element-desktop</literal> package now has an <literal>useKeytar</literal> option (defaults to <literal>true</literal>), which allows disabling @@ -1789,6 +1822,15 @@ </listitem> <listitem> <para> + <literal>security.pam.ussh</literal> has been added, which + allows authorizing PAM sessions based on SSH + <emphasis>certificates</emphasis> held within an SSH agent, + using + <link xlink:href="https://github.com/uber/pam-ussh">pam-ussh</link>. + </para> + </listitem> + <listitem> + <para> The <literal>zrepl</literal> package has been updated from 0.4.0 to 0.5: </para> @@ -1882,7 +1924,10 @@ <para> <literal>services.xserver.desktopManager.xfce</literal> now includes Xfce’s screen locker, - <literal>xfce4-screensaver</literal>. + <literal>xfce4-screensaver</literal> that is enabled by + default. You can disable it by setting + <literal>false</literal> to + <link linkend="opt-services.xserver.desktopManager.xfce.enableScreensaver">services.xserver.desktopManager.xfce.enableScreensaver</link>. </para> </listitem> <listitem> diff --git a/nixos/doc/manual/release-notes/rl-2205.section.md b/nixos/doc/manual/release-notes/rl-2205.section.md index 86cc8ed3dd1..be24eb9b4f8 100644 --- a/nixos/doc/manual/release-notes/rl-2205.section.md +++ b/nixos/doc/manual/release-notes/rl-2205.section.md @@ -109,6 +109,8 @@ In addition to numerous new and upgraded packages, this release has the followin - [pacemaker](https://clusterlabs.org/pacemaker/) cluster resource manager +- [nifi](https://nifi.apache.org), an easy to use, powerful, and reliable system to process and distribute data. Available as [services.nifi](options.html#opt-services.nifi.enable). + <!-- To avoid merge conflicts, consider adding your item at an arbitrary place in the list instead. --> ## Backward Incompatibilities {#sec-release-22.05-incompatibilities} @@ -173,6 +175,8 @@ In addition to numerous new and upgraded packages, this release has the followin } ``` +- `services.prometheus.alertManagerTimeout` has been removed as it has been deprecated upstream and has no effect. + - The DHCP server (`services.dhcpd4`, `services.dhcpd6`) has been hardened. The service is now using the systemd's `DynamicUser` mechanism to run as an unprivileged dynamically-allocated user with limited capabilities. The dhcpd state files are now always stored in `/var/lib/dhcpd{4,6}` and the `services.dhcpd4.stateDir` and `service.dhcpd6.stateDir` options have been removed. @@ -182,6 +186,8 @@ In addition to numerous new and upgraded packages, this release has the followin - `services.ipfs.extraFlags` is now escaped with `utils.escapeSystemdExecArgs`. If you rely on systemd interpolating `extraFlags` in the service `ExecStart`, this will no longer work. +- `services.paperless-ng` was renamed to `services.paperless`. Accordingly, the `paperless-ng-manage` script (located in `dataDir`) was renamed to `paperless-manage`. `services.paperless` now uses `paperless-ngx`. + - The `matrix-synapse` service (`services.matrix-synapse`) has been converted to use the `settings` option defined in RFC42. This means that options that are part of your `homeserver.yaml` configuration, and that were specified at the top-level of the module (`services.matrix-synapse`) now need to be moved into `services.matrix-synapse.settings`. And while not all options you @@ -583,6 +589,8 @@ In addition to numerous new and upgraded packages, this release has the followin using `fetchgit` or `fetchhg` if the argument `fetchSubmodules` is set to `true`. +- A module for declarative configuration of openconnect VPN profiles was added under `networking.openconnect`. + - The `element-desktop` package now has an `useKeytar` option (defaults to `true`), which allows disabling `keytar` and in turn `libsecret` usage (which binds to native credential managers / keychain libraries). @@ -613,6 +621,8 @@ In addition to numerous new and upgraded packages, this release has the followin and [services.logrotate.extraConfig](#opt-services.logrotate.extraConfig) will work, but issue deprecation warnings and [services.logrotate.settings](#opt-services.logrotate.settings) should now be used instead. +- `security.pam.ussh` has been added, which allows authorizing PAM sessions based on SSH _certificates_ held within an SSH agent, using [pam-ussh](https://github.com/uber/pam-ussh). + - The `zrepl` package has been updated from 0.4.0 to 0.5: - The RPC protocol version was bumped; all zrepl daemons in a setup must be updated and restarted before replication can resume. @@ -642,7 +652,7 @@ In addition to numerous new and upgraded packages, this release has the followin - xfsprogs was update to version 5.15, which enables inobtcount and bigtime by default on filesystem creation. Support for these features was added in kernel 5.10 and deemed stable in kernel 5.15. If you want to be able to mount XFS filesystems created with this release of xfsprogs on kernel releases older than 5.10, you need to format them with `mkfs.xfs -m bigtime=0 -m inobtcount=0`. -- `services.xserver.desktopManager.xfce` now includes Xfce's screen locker, `xfce4-screensaver`. +- `services.xserver.desktopManager.xfce` now includes Xfce's screen locker, `xfce4-screensaver` that is enabled by default. You can disable it by setting `false` to [services.xserver.desktopManager.xfce.enableScreensaver](#opt-services.xserver.desktopManager.xfce.enableScreensaver). - The `hadoop` package has added support for `aarch64-linux` and `aarch64-darwin` as of 3.3.1 ([#158613](https://github.com/NixOS/nixpkgs/pull/158613)). |