Home Explore Blog Models CI



nixpkgs
5th chunk of `nixos/doc/manual/release-notes/rl-1809.section.md`
3ee2fc19965585d572a9b63d2583a332e824732322d2bfe200000001000009b8
  This benefits evaluation performance, lets you write Nixpkgs packages that depend on NixOS images and is consistent with a deployment architecture that would be centered around Nixpkgs overlays.

- `lib.traceValIfNot` has been deprecated. Use `if/then/else` and `lib.traceValSeq` instead.

- `lib.traceCallXml` has been deprecated. Please complain if you use the function regularly.

- The attribute `lib.nixpkgsVersion` has been deprecated in favor of `lib.version`. Please refer to the discussion in [NixOS/nixpkgs\#39416](https://github.com/NixOS/nixpkgs/pull/39416#discussion_r183845745) for further reference.

- `lib.recursiveUpdateUntil` was not acting according to its specification. It has been fixed to act according to the docstring, and a test has been added.

- The module for `security.dhparams` has two new options now:

  `security.dhparams.stateless`

  : Puts the generated Diffie-Hellman parameters into the Nix store instead of managing them in a stateful manner in `/var/lib/dhparams`.

  `security.dhparams.defaultBitSize`

  : The default bit size to use for the generated Diffie-Hellman parameters.

  ::: {.note}
  The path to the actual generated parameter files should now be queried using `config.security.dhparams.params.name.path` because it might be either in the Nix store or in a directory configured by `security.dhparams.path`.
  :::

  ::: {.note}
  **For developers:**

  Module implementers should not set a specific bit size in order to let users configure it by themselves if they want to have a different bit size than the default (2048).

  An example usage of this would be:

  ```nix
  { config, ... }:

  {
    security.dhparams.params.myservice = { };
    environment.etc."myservice.conf".text = ''
      dhparams = ${config.security.dhparams.params.myservice.path}
    '';
  }
  ```

  :::

- `networking.networkmanager.useDnsmasq` has been deprecated. Use `networking.networkmanager.dns` instead.

- The Kubernetes package has been bumped to major version 1.11. Please consult the [release notes](https://github.com/kubernetes/kubernetes/blob/release-1.11/CHANGELOG-1.11.md) for details on new features and api changes.

- The option `services.kubernetes.apiserver.admissionControl` was renamed to `services.kubernetes.apiserver.enableAdmissionPlugins`.

- Recommended way to access the Kubernetes Dashboard is via HTTPS (TLS) Therefore; public service port for the dashboard has changed to 443 (container port 8443) and scheme to https.
Title: NixOS/Nixpkgs Release 18.09: `lib` Function Deprecations and Module Updates
Summary
This section details several deprecations and updates in NixOS/Nixpkgs Release 18.09. `lib.traceValIfNot`, `lib.traceCallXml`, and `lib.nixpkgsVersion` (in favor of `lib.version`) have been deprecated. The `lib.recursiveUpdateUntil` function has been fixed. The `security.dhparams` module gained `stateless` and `defaultBitSize` options, allowing for Nix store management of parameters and custom bit sizes, with updated access methods for paths. `networking.networkmanager.useDnsmasq` is deprecated, replaced by `networking.networkmanager.dns`. The Kubernetes package has been updated to version 1.11, with `services.kubernetes.apiserver.admissionControl` renamed to `services.kubernetes.apiserver.enableAdmissionPlugins`, and the Kubernetes Dashboard now defaults to HTTPS access on port 443.