about summary refs log tree commit diff
path: root/nixos/modules/system
Commit message (Collapse)AuthorAge
* nixos/clevis: initCamille Mondon2023-12-02
| | | | Co-Authored-By: Julien Malka <julien@malka.sh>
* Revert "nixos/switch-to-configuration: remove explicit tmpfiles invocation"K9002023-11-29
|
* Merge pull request #269983 from nikstur/stc-tmpfilesBernardo Meurer2023-11-28
|\ | | | | nixos/switch-to-configuration: remove explicit tmpfiles invocation
| * nixos/switch-to-configuration: remove explicit tmpfiles invocationnikstur2023-11-25
| |
* | Merge pull request #218441 from tomfitzhenry/unl0krWill Fancher2023-11-28
|\ \ | |/ |/| add boot.initrd.unl0kr
| * nixos/module: add boot.initrd.unl0krTom Fitzhenry2023-10-16
| |
* | nixos/systemd: Mark down the options descriptionnicoo2023-11-22
| |
* | nixos/systemd: Link manpages in options' descriptionnicoo2023-11-22
| |
* | nixos/systemd: Refactor `package` optionnicoo2023-11-22
| |
* | nixos/systemd: Refactor references to `config.systemd`nicoo2023-11-22
| |
* | nixos/systemd: refactor option definitionsnicoo2023-11-22
| | | | | | | | | | - factor out `config.systemd.`; - remove `lib.mdDoc` no-op.
* | Merge pull request #266151 from JulienMalka/append-secret-reproducibleRyan Lahfa2023-11-19
|\ \
| * | nixos/stage1: make append_initrd_secrets script reproducibleJulien Malka2023-11-07
| | |
* | | Merge pull request #266990 from ↵Will Fancher2023-11-18
|\ \ \ | | | | | | | | | | | | | | | | ElvishJerricco/systemd-boot-boot-pass-flags-to-update nixos/systemd-boot: pass EFI variable flags during update too
| * | | nixos/systemd-boot: pass EFI variable flags during update tooThomas Watson2023-11-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 8f2babd0326e was partially reverted by mistake. Original message below --- On some systems, EFI variables are not supported or otherwise wonky. bootctl attempting to access them causes failures during bootloader installations and updates. For such systems, NixOS provides the options `boot.loader.efi.canTouchEfiVariables` and `boot.loader.systemd-boot.graceful` which pass flags to bootctl that change whether and how EFI variables are accessed. Previously, these flags were only passed to bootctl during an install operation. However, they also apply during an update operation, which can cause the same sorts of errors. This change passes the flags during update operations as well to prevent those errors. Fixes https://github.com/NixOS/nixpkgs/issues/151336
* | | | nixos/networkd: allow configuring AckFilter for CAKE qdiscPatrick Steinhardt2023-11-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The CAKE section for systemd.network units allows configuring whether or not redundant ACKs should be dropped. This option corresponds to the respective tc-cake(8) params "ack-filter", "ack-filter-aggressive" or "no-ack-filter". Add support for these values in the `cakeConfig` module so that users can configure it.
* | | | nixos/networkd: add [IPVLAN] and [IPVTAP] configuration options to ↵Philip Taron2023-11-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | systemd.netdev files [IPVLAN](https://www.freedesktop.org/software/systemd/man/latest/systemd.netdev.html#%5BIPVLAN%5D%20Section%20Options) [IPVTAP](https://www.freedesktop.org/software/systemd/man/latest/systemd.netdev.html#%5BIPVTAP%5D%20Section%20Options)
* | | | nixos/networkd: add ipvtap kind to netdev and IPVTAP= to networkPhilip Taron2023-11-18
| | | | | | | | | | | | | | | | | | | | | | | | From `man systemd.netdev`: https://www.freedesktop.org/software/systemd/man/latest/systemd.netdev.html#Supported%20netdev%20kinds From `man systemd.network`: https://www.freedesktop.org/software/systemd/man/latest/systemd.network.html#IPoIB=
* | | | nixos/systemd-boot: allow for bootspec-less generationsJulien Malka2023-11-17
| | | | | | | | | | | | | | | | | | | | | | | | Generation built with old versions of NixOS with no bootspec support may still be present on the system and must be accounted for.
* | | | Merge pull request #263442 from JulienMalka/systemd-boot-bootspecRyan Lahfa2023-11-15
|\ \ \ \
| * | | | nixos/systemd-boot: conform backend to RFC-0125Julien Malka2023-11-14
| | | | | | | | | | | | | | | | | | | | Now the builder is using Bootspec documents.
* | | | | Merge pull request #262595 from tpwrules/fix-extra-config-documentationSamuel Dionne-Riel2023-11-14
|\ \ \ \ \ | | | | | | | | | | | | nixos/kernel: correct kernelPatches.extraConfig documentation
| * | | | | nixos/kernel: correct kernelPatches.extraConfig documentationThomas Watson2023-11-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It hasn't expected the prefix for a long time (possibly ever). Other documentation and patches within nixpkgs itself (such as the crashdump module) do not have the prefix.
* | | | | | initrd/autofs4: remove legacy references to autofs4 kernel modulezzywysm2023-11-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Back in 2018, the kernel decided to remove the autofs4 module. https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a2225d931f75ddd3c39f4d0d195fad99dfd68671 This caused immediate problems with systemd, so the kernel allowed autofs4 as a config option that would simply map back to autofs. https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d02d21ea007b6b33cdaf15c2f84fb1fea996ecc2 Earlier this year, in July 2023, the kernel got tired of people not adapting to the autofs change, and forced the issue by fixing it within the kernel defconfigs, which NixOS uses as a starting point for their own kernel configs. https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1f2190d6b7112d22d3f8dfeca16a2f6a2f51444e This commit reflects the post-2018 reality by changing the remaining autofs4 references to autofs. Since this change initially happened in kernel 4.18 and we no longer support 4.x kernels, we don't need any backwards-compatibility tweaks.
* | | | | | treewide: fix redirected and broken URLsAnthony Roussel2023-11-11
| |_|/ / / |/| | | | | | | | | | | | | | Using the script in maintainers/scripts/update-redirected-urls.sh
* | | | | Merge pull request #240651 from accelbread/postresumecommandsWill Fancher2023-11-09
|\ \ \ \ \ | | | | | | | | | | | | nixos/boot: add postResumeCommands option
| * | | | | nixos/boot: add postResumeCommands optionArchit Gupta2023-11-06
| | |_|/ / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Adds a postResumeCommands option to the initramfs to allow inserting code to execute after the device has attempted to resume, and before filesystems are mounted. This allows to inject code for operations like wiping the rootfs on boot; if those were instead put in postDeviceCommands, on a hibernated device, they would execute before the device resumes from hibernation.
* | | | | Merge pull request #266116 from ElvishJerricco/sd-s1-user-shells-fix-warningWill Fancher2023-11-07
|\ \ \ \ \ | | | | | | | | | | | | nixos/initrd-ssh: Only warn about shell when using systemd initrd
| * | | | | nixos/initrd-ssh: Only warn about shell when using systemd initrdWill Fancher2023-11-07
| | | | | |
* | | | | | nixos/journald: add `storage` optionMaximilian Bosch2023-11-07
|/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | While this can be added via `services.journald.extraConfig`, this option provides proper type-checking and other modules can determine where journal data is stored. This is relevant when using e.g. promtail to send logs to Loki and it should read from `/run/log/journal` if volatile storage is used.
* | / / / nixos/stage-1: create initramfs /lib at build timeAlyssa Ross2023-11-06
| |/ / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | Modules built in to the kernel can attempt to load firmware before init is started. To guarantee the firmware is accessible to them where they expect, /lib has to exist in the initramfs — it can't be created later by init, because by that point the module may already have tried and given up.
* | | | nixos/systemd-boot: add julienmalka as maintainerJulien Malka2023-11-04
|/ / /
* | | stage-2: don't write to /dev/kmsg if missingLuka Blaskovic2023-10-30
| | |
* | | Merge pull request #263849 from ElvishJerricco/sd-initrd-not-experimentalK9002023-10-30
|\ \ \ | | | | | | | | systemd-stage-1: No longer experimental
| * | | systemd-stage-1: No longer experimentalWill Fancher2023-10-27
| | | |
* | | | systemd-stage-1: Add assertions for unsupported options.Will Fancher2023-10-30
| | | |
* | | | Merge pull request #258071 from helsinki-systems/feat/stc-lockJanne Heß2023-10-30
|\ \ \ \ | | | | | | | | | | nixos/switch-to-configuration: Lock the switch
| * | | | nixos/switch-to-configuration: Lock the switchJanne Heß2023-09-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This prevents any concurrent switches from happening which is not an issue I have seen people complaining about but it seems like a good measure.
* | | | | nixos: fix iproute2 invocations (#263976)Rémy Grünblatt2023-10-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When using iproute2's ip binary, you can omit the dev parameter, e.g. ip link set up eth0 instead of ip link set up dev eth0. This breaks if for some reason your device is named e.g. he, hel, … because it is interpreted as ip link set up help. I just encountered this bug using networking.bridges trying to create an interface named he. I used a grep on nixpkgs to try to find iproute2 invocations using variables without the dev keyword, and found a few, and fixed them by providing the dev keyword. I merely fixed what I found, but the use of abbreviated commands makes it a bit hard to be sure everything has been found (e.g. ip l set … up instead of ip link set … up).
* | | | | Merge pull request #262583 from ElvishJerricco/systemd-stage-1-shellsWill Fancher2023-10-29
|\ \ \ \ \ | | | | | | | | | | | | systemd-stage-1: Support for user shells
| * | | | | systemd-stage-1: Support for user shellsWill Fancher2023-10-21
| | |_|/ / | |/| | |
* | | | | Revert "nixos/activation: remove specialfs activationScript"K9002023-10-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit a8f50f991948b91d1a191d1348bfff860a39b5a2. Broke installer tests, need to figure out how to fix nixos-enter before attempting this again.
* | | | | Merge pull request #263462 from nikstur/rebuildable-systemRobert Hensing2023-10-29
|\ \ \ \ \ | | | | | | | | | | | | Rebuildable system & appliance
| * | | | | nixos: add system.switch.enable flagnikstur2023-10-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This flag allows the user to optionally exclude switch-to-confguration.pl from toplevel. This is interesting for appliance images where you don't want to re-build the system. This flag is called `rebuildable` because the standard interface to do this is `nixos-rebuild` which will not work anymore with this change.
* | | | | | Merge pull request #263203 from nikstur/replace-activationLinus Heckemann2023-10-28
|\ \ \ \ \ \ | | | | | | | | | | | | | | Replace simple activationScripts
| * | | | | | nixos/activation: link gcroot with tmpfiles instead of in activationnikstur2023-10-26
| | | | | | |
| * | | | | | nixos/binfmt: replace activationScript via tmpfilesnikstur2023-10-25
| | | | | | |
| * | | | | | nixos/activation: remove specialfs activationScriptnikstur2023-10-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The stage-2-init.sh script has the same functionality hardcoded so we do not need it in the activationScript again.
| * | | | | | nixos/activation: replace var activationScript via tmpfilesnikstur2023-10-25
| | | | | | |
| * | | | | | nixos/timesyncd: replace activationScript via ExecPreStartJulian Stecklina2023-10-25
| |/ / / / /
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-07 09:14:08 +0000