Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | Revert "nginx: Format the config file" | Robin Gloster | 2017-02-16 |
| | | | | | | This reverts commit e362a3d5c94ba379d428fbd2cc40470719a61556. See #22883 | ||
* | networking.networkd: adjust autmatic mapping of bonds | Profpatsch | 2017-02-16 |
| | | | | | | | | Since the bonds interface changed to a lot more possible values we create a mapping of kernel bond attribute names and values to networkd attributes. Those match for the most part, but have to transformed slightly. There is also an assert that unknown options won’t slip through silently. | ||
* | networking.bonds: add support for arbitrary driverOptions | Profpatsch | 2017-02-16 |
| | | | | | | | | | Until now the four attributes available very selectively provided a small subset, while copying upstream documentation. We make driver options an arbitrary key-value set and point to kernel documentation, which is always up-to-date. This way every option can be set. The four already existing options are deprecated with a warning. | ||
* | Merge pull request #22869 from copumpkin/amazon-init-fix | Daniel Peebles | 2017-02-16 |
|\ | | | | | amazon-init NixOS module: fix (I think) race condition with network | ||
| * | amazon-init NixOS module: fix (I think) race condition with network | Dan Peebles | 2017-02-16 |
| | | | | | | | | | | | | | | The initialization code is now a systemd service that explicitly waits for network-online, so the occasional failure I was seeing because the `nixos-rebuild` couldn't get anything from the binary cache should stop. I hope! | ||
* | | Merge pull request #22813 from benley/pam-kwallet | Thomas Tuegel | 2017-02-16 |
|\ \ | | | | | | | nixos: add optional pam_kwallet5 integration | ||
| * | | pam: add optional pam_kwallet5 integration | Benjamin Staffin | 2017-02-16 |
| | | | |||
* | | | kbd service: use /dev/tty1 for systemd-vconsole-setup | Nikolay Amiantov | 2017-02-16 |
| | | | | | | | | | | | | Fixes #22470 | ||
* | | | kbd service: use systemd-vconsole-setup even with early setup | Nikolay Amiantov | 2017-02-16 |
| |/ |/| | | | | | This way we have fonts reloaded on switches. | ||
* | | Fix typo introduced by #22677 | Kier Davis | 2017-02-15 |
| | | |||
* | | nixos/geoip-updater: run as user 'geoip' instead of 'nobody' | Bjørn Forsman | 2017-02-15 |
|/ | | | | That way 'nobody' is prevented from messing with the databases. | ||
* | nixos/security.wrappers: improve documentation | Bjørn Forsman | 2017-02-15 |
| | | | | | | | * The source attribute is mandatory, not optional * The program attribute is optional * Move the info about the mandatory attribute first (most important, IMHO) | ||
* | modules/filesystems: disallow non-empty fstab fields (#22803) | Profpatsch | 2017-02-15 |
| | | | | It was possible to pass empty strings / strings with only separator characters; this lead to broken fstab formatting. | ||
* | prometheus.blackboxExporter service: add CAP_NET_RAW | Franz Pletz | 2017-02-15 |
| | | | | | The blackbox-exporter for prometheus needs CAP_NET_RAW for sending icmp probes. | ||
* | nixos/security.wrappers: use literalExample in documentation | Bjørn Forsman | 2017-02-15 |
| | | | | | It's much more readable when the example attrset is pretty printed instead of written as one line. | ||
* | nixos/cron: unbreak since new security.wrapper | Bjørn Forsman | 2017-02-15 |
| | |||
* | nixos/atd: unbreak after new security.wrappers | Bjørn Forsman | 2017-02-15 |
| | | | | | * convert list -> attrset * 'atd' doesn't exist, 'at' does | ||
* | nixos: hint about security.setuidOwners/Programs -> security.wrappers | Bjørn Forsman | 2017-02-15 |
| | | | | | Let users know about the option rename / change during nixos-rebuild with a useful message instead of an error (with no way forward). | ||
* | nixos/virtualbox: unbreak wrt. new security.wrappers | Bjørn Forsman | 2017-02-15 |
| | | | | The new option takes an attrset, not a list. | ||
* | nixos: remove remaining reference to setuidPrograms | Bjørn Forsman | 2017-02-15 |
| | | | | The option doesn't exist anymore. | ||
* | nixos-container: break lines in description of forwardPorts. | Ian-Woo Kim | 2017-02-15 |
| | |||
* | nixos-container: hostPort -> forwardPort and forwardPort is now a list of ↵ | Ian-Woo Kim | 2017-02-15 |
| | | | | (protocol,hostPort,containerPort). | ||
* | nixos-container: support multiple port forwarding. change type of hostPort ↵ | Ian-Woo Kim | 2017-02-15 |
| | | | | from 'string' to 'listOf str' | ||
* | nixos-container: introduce hostPort in declarative container options. | Ian-Woo Kim | 2017-02-15 |
| | |||
* | nixos-container: add --port option for nixos-container (forward network ↵ | Ian-Woo Kim | 2017-02-15 |
| | | | | ports to systemd-nspawn container) | ||
* | security-wrapper: Wrap <para> tags in a <note> tag | Parnell Springmeyer | 2017-02-14 |
| | |||
* | Revert "nix-daemon: default useSandbox to true" | Graham Christensen | 2017-02-14 |
| | | | | This reverts commit d0a086770a1be8c1f3175c195587052c5a5bfe1c. | ||
* | Merge pull request #22767 from grahamc/sandbox-by-default | Graham Christensen | 2017-02-14 |
|\ | | | | | nix-daemon: default useSandbox to true | ||
| * | nix-daemon: default useSandbox to true | Graham Christensen | 2017-02-13 |
| | | |||
* | | Merge pull request #22758 from dezgeg/pr-nixos-rebuild | Eelco Dolstra | 2017-02-14 |
|\ \ | | | | | | | nixos-rebuild: Don't rebuild nixos-rebuild when --fast is used | ||
| * | | nixos-rebuild: Don't build nixos-rebuild with --fast | Tuomas Tynkkynen | 2017-02-13 |
| | | | |||
| * | | nixos-rebuild: Support passing e.g. '-j8' | Tuomas Tynkkynen | 2017-02-13 |
| | | | | | | | | | | | | Where there is no space between '-j' and the number. | ||
* | | | Using para tags for manual formatting | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Syntax wibble | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Default should be to set owner and group to root on setcap wrappers too | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Fixing ref to old-wrappersDir | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Simplifying the wrapper program derivation | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Addressing feedback and fixing a bug | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | /run/wrapper is not a filesystem, no need to skip it | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Removing unused module option old-wrapperDir | Parnell Springmeyer | 2017-02-14 |
| | | | |||
* | | | Derp, correctly write the source program's path | Parnell Springmeyer | 2017-02-13 |
| | | | |||
* | | | Resurrecting the single-wrapper read from sibling .real file behavior | Parnell Springmeyer | 2017-02-13 |
| | | | |||
* | | | Merging against upstream master | Parnell Springmeyer | 2017-02-13 |
|\ \ \ | | |/ | |/| | |||
| * | | nixos/grafana: Don't print password warning if no password has been set | Rickard Nilsson | 2017-02-13 |
| |/ | |||
| * | Merge pull request #22724 from grahamc/pam-oath-fixup | Graham Christensen | 2017-02-13 |
| |\ | | | | | | | pam_oath: require OATH and pam_unix credentials to be valid | ||
| | * | pam_oath: require OATH and pam_unix credentials to be valid | Graham Christensen | 2017-02-12 |
| | | | |||
| * | | grub: fix capitalisation | Robin Gloster | 2017-02-13 |
| | | | | | | | | | | | | Missed this occurence while renaming the option | ||
| * | | grub: add grub.useOSProber option (#22558) | symphorien | 2017-02-13 |
| | | | |||
| * | | VM tests: veryloose -> cache=loose | Eelco Dolstra | 2017-02-13 |
| | | | |||
| * | | Azure: switch back to qemu 2.2.0 for generating image. Seems to work best. | Rob Vermaas | 2017-02-13 |
| | | | | | | | | | | | | (cherry picked from commit 2da8a5dac8674501ba9ed10e44650088b466688a) |