summary refs log tree commit diff
path: root/nixos/tests/misc.nix
Commit message (Collapse)AuthorAge
* nixos/tests/misc: check hidepid mount via /proc/mountsJoachim Fasting2017-04-23
|
* nixos: add optional process information hidingJoachim Fasting2016-04-10
| | | | | | | | | | | | | | | | | | | This module adds an option `security.hideProcessInformation` that, when enabled, restricts access to process information such as command-line arguments to the process owner. The module adds a static group "proc" whose members are exempt from process information hiding. Ideally, this feature would be implemented by simply adding the appropriate mount options to `fileSystems."/proc".fsOptions`, but this was found to not work in vmtests. To ensure that process information hiding is enforced, we use a systemd service unit that remounts `/proc` after `systemd-remount-fs.service` has completed. To verify the correctness of the feature, simple tests were added to nixos/tests/misc: the test ensures that unprivileged users cannot see process information owned by another user, while members of "proc" CAN. Thanks to @abbradar for feedback and suggestions.
* nixos/tests: implement a trivial test for sudoJoachim Fasting2016-03-25
| | | | | This is an alternative to NixOS/nixpkgs#6721, with improvements suggested by @edolstra
* filesystems: use list of strings for fs optionsAneesh Agrawal2016-02-06
| | | | | | | | | | | | Allow usage of list of strings instead of a comma-separated string for filesystem options. Deprecate the comma-separated string style with a warning message; convert this to a hard error after 16.09. 15.09 was just released, so this provides a deprecation period during the 16.03 release. closes #10518 Signed-off-by: Robin Gloster <mail@glob.in>
* nixos/tests/misc: start systemd-udev-settle manuallyLuca Bruno2015-12-01
| | | | | | | | systemd-udev-settle is not started by default anymore. Because checking for psmouse like that is considered legacy, we start systemd-udev-settle manually in the test. cc @edolstra
* all tests: added meta.maintainers sectionJoachim Schiele2015-07-12
|
* tests/misc.nix: Ensure that the Nix DB is initialised correctlyEelco Dolstra2015-04-07
|
* Don't require a device for tmpfs filesystemsEelco Dolstra2014-07-30
|
* name nixos tests, close #3078Florian Friesdorf2014-06-28
|
* Set session variables in the shell as wellEelco Dolstra2014-06-13
|
* Add a test for automountingEelco Dolstra2014-04-29
|
* UrghEelco Dolstra2014-04-25
| | | | | | Can't figure out why "hostname -s" keeps failing randomly :-( http://hydra.nixos.org/build/10662142
* Make nscd startup synchronousEelco Dolstra2014-04-24
| | | | | | | Nscd forks into the background before it's ready to accept connections. So explicitly wait until it's ready. http://hydra.nixos.org/build/10661767
* Try againEelco Dolstra2014-04-24
|
* Make the misc test a bit more robustEelco Dolstra2014-04-24
|
* Add option ‘systemd.tmpfiles.rules’Eelco Dolstra2014-04-17
| | | | | | | | This allows specifying rules for systemd-tmpfiles. Also, enable systemd-tmpfiles-clean.timer so that stuff is cleaned up automatically 15 minutes after boot and every day, *if* you have the appropriate cleanup rules (which we don't have by default).
* Fix module loading in systemd-udevdEelco Dolstra2014-04-17
|
* Make it easier to run the testsEelco Dolstra2014-04-14
| | | | | | | | | | | You can now run a test in the nixos/tests directory directly using nix-build, e.g. $ nix-build '<nixos/tests/login.nix>' -A test This gets rid of having to add the test to nixos/tests/default.nix. (Of course, you still need to add it to nixos/release.nix if you want Hydra to run the test.)
* Add a regression test for hostname / nss_myhostnameEelco Dolstra2013-11-26
| | | | Issue #1248.
* Fix the misc testEelco Dolstra2013-10-13
| | | | http://hydra.nixos.org/build/6480163
* Move all of NixOS to nixos/ in preparation of the repository mergeEelco Dolstra2013-10-10
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-06 09:24:58 +0000