summary refs log tree commit diff
path: root/nixos
Commit message (Collapse)AuthorAge
...
* | | | | | | | | | networking: Fix timeout when `lo` has aliased IPsGraham Christensen2018-07-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With a config like { networking.interfaces."lo".ip4 = [ { address = "10.8.8.8"; prefixLength = 32; } ]; } a nixos-rebuild switch would take a long time, and you'd see: $ systemctl list-jobs JOB UNIT TYPE STATE 734400 network-interfaces.target start waiting 734450 sys-subsystem-net-devices-lo.device start running 734449 network-link-lo.service start waiting and: systemd[1]: sys-subsystem-net-devices-lo.device: Job sys-subsystem-net-devices-lo.device/star> systemd[1]: sys-subsystem-net-devices-lo.device: Job sys-subsystem-net-devices-lo.device/star> systemd[1]: Timed out waiting for device sys-subsystem-net-devices-lo.device. This removes the device dependency for `lo` and fixes this bug. Closes #7227
* | | | | | | | | | nixos.tests.containers-imperative: increase VM memoryVladimír Čunát2018-07-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Apparently merging #43021 1bdb1387103 did increase memory usage in some cases. 1 GiB for a VM memory seems still low enough to me.
* | | | | | | | | | dockerTools.buildImage: add option to use nix output hash as tagMathias Schreck2018-07-06
| | | | | | | | | |
* | | | | | | | | | Merge pull request #43097 from peterhoeg/m/pipewirePeter Hoeg2018-07-06
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | pipewire (nixos): add socket activation support
| * | | | | | | | | | pipewire (nixos): add support for socket activationPeter Hoeg2018-07-06
| | |_|_|_|/ / / / / | |/| | | | | | | |
* | | | | | | | | | Merge pull request #42569 from spacefrogg/nscd-fixMatthew Bauer2018-07-05
|\ \ \ \ \ \ \ \ \ \ | |_|/ / / / / / / / |/| | | | | | | | | resolvconf.conf: Remove forced NSCD service restart
| * | | | | | | | | resolvconf.conf: Remove forced NSCD service restartMichael Raitza2018-06-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Forcibly restarting NSCD is unnecessary and breaks setups that use SSSD for authentication. NSCD is capable of detecting changes to /etc/resolv.conf and invalidating its caches internally. Restarting NSCD/SSSD breaks user name and UID resolution.
* | | | | | | | | | Merge pull request #42724 from yshui/libinput-buttonMatthew Bauer2018-07-05
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | libinput: add button to scrollMethod
| * | | | | | | | | | nixos/libinput: add button to scrollMethodYuxuan Shui2018-06-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Close #17840
* | | | | | | | | | | Merge pull request #42775 from mkaito/oauth2_proxy-virtualHostsYegor Timoshenko2018-07-05
|\ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | oauth2_proxy: add nginx vhost module
| * | | | | | | | | | | fixup! oauth2_proxy: add nginx vhost moduleMichishige Kaito2018-06-29
| | | | | | | | | | | |
| * | | | | | | | | | | oauth2_proxy: add nginx vhost moduleMichishige Kaito2018-06-29
| | | | | | | | | | | |
* | | | | | | | | | | | Merge pull request #42398 from Ma27/make-autorandr-target-configurableSilvan Mosberger2018-07-05
|\ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | nixos/autorandr: make default target in systemd service configurable
| * | | | | | | | | | | | nixos/autorandr: make default target in systemd service configurableMaximilian Bosch2018-07-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The `.service` file defining the `systemd` unit for `autorandr.service` which is bundled with the package itself uses `--default default` in the `ExecStart` section. This can be an issue when having multiple layouts (e.g. `default` as workstation layout I mostly work on and `mobile` when I go somewhere else). When the service gets restarted and `--default` can't be applied, however the current layout can't be detected (e.g. when working with an unknown beamer) the service silently fails with a message like this: ``` Jun 22 18:44:46 hauptshuhle autorandr[3168]: /nix/store/h83b72ffm68nm8fyjnppljchp456a94r-xrandr-1.5.0/bin/xrandr: ca> Jun 22 18:44:46 hauptshuhle autorandr[3168]: Failed to apply profile 'default' (line 718): Jun 22 18:44:46 hauptshuhle autorandr[3168]: Command failed: /nix/store/h83b72ffm68nm8fyjnppljchp456a94r-xrandr-1.> ``` As discussed in the IRC (see https://botbot.me/freenode/nixos/2018-07-05/?msg=101791455&page=6) it's a bad long-term solution in terms of maintenance to manually patch the service file bundled with the derivation, instead the service shall be configured declaratively. Additionally this makes possible overrides from the user-space way easier. The `udev` rule (in `$out/etc/udev/rules.d`) won't' be affected, it simply runs `systemctl start autorandr.service` when e.g. a new display is added, so now `udev` communicates with the NixOS systemd unit.
* | | | | | | | | | | | | Merge pull request #42118 from emmanuelrosa/mpd-nixos-testsSilvan Mosberger2018-07-04
|\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | mpd: add NixOS tests
| * | | | | | | | | | | | | mpd: add NixOS testsEmmanuel Rosa2018-06-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This change adds NixOS tests for the MPD (Music Player Daemon) module. Tests include: - Playing audio locally using ALSA directly. - Playing audio locally using PulseAudio (backed by ALSA). - Playing audio from an external client. - Rejecting an external client when it's not explicitly allowed (default configuration). refs #41772
* | | | | | | | | | | | | | supplicant: Fix tiny typo in the documentationIngo Blechschmidt2018-07-04
| |_|_|_|_|_|_|_|_|_|_|_|/ |/| | | | | | | | | | | |
* | | | | | | | | | | | | Merge pull request #42860 from ldesgoui/fix-murmur-serviceSilvan Mosberger2018-07-03
|\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | murmur service: prevent silent launch failure by waiting until network is available
| * | | | | | | | | | | | | murmur: prevent silent launch failureldesgoui2018-07-02
| | |_|_|_|_|/ / / / / / / | |/| | | | | | | | | | |
* | | | | | | | | | | | | Merge pull request #41222 from gnidorah/firewallSilvan Mosberger2018-07-03
|\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | nixos/firewall: per-interface port options
| * | | | | | | | | | | | | nixos/firewall: per-interface port optionsgnidorah2018-06-24
| | | | | | | | | | | | | |
* | | | | | | | | | | | | | Merge pull request #42896 from sorki/gpsd_nowaitJörg Thalheim2018-07-03
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | nixos/gpsd-service: add services.gpsd.nowait option
| * | | | | | | | | | | | | | gpsd: use optionalStringJörg Thalheim2018-07-03
| | | | | | | | | | | | | | |
| * | | | | | | | | | | | | | nixos/gpsd-service: add services.gpsd.nowait optionRichard Marko2018-07-03
| | |_|_|_|_|_|_|_|_|_|_|_|/ | |/| | | | | | | | | | | |
* | | | | | | | | | | | | | Merge pull request #42898 from aespinosa/kerberosJörg Thalheim2018-07-03
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | nixos/kerberos: update binary folder pointer
| * | | | | | | | | | | | | | nixos/kerberos: update binary folder pointerAllan Espinosa2018-07-02
| | |_|_|_|_|_|_|_|_|_|/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ${pkg.tcp_wrappers}/sbin does not exist anymore.
* | | | | | | | | | | | | | Merge pull request #42269 from Baughn/zfsJörg Thalheim2018-07-03
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / / / / |/| | | | | | | | | | | | | zfs: Improve import handling
| * | | | | | | | | | | | | zfs: Improve import handlingSvein Ove Aas2018-07-02
| | | | | | | | | | | | | |
* | | | | | | | | | | | | | Merge pull request #42845 from ivanbrennan/nixos-sudo-describe-rules-precedenceJoachim F2018-07-02
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | |_|/ / / / / / / / / / / / |/| | | | | | | | | | | | | nixos/security.sudo: Document ordering of extraRules
| * | | | | | | | | | | | | nixos/security.sudo: describe extraRules orderivanbrennan2018-07-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The order of sudoers entries is significant. The man page for sudoers(5) notes: Where there are multiple matches, the last match is used (which is not necessarily the most specific match). This module adds a rule for group "wheel" matching all commands. If you wanted to add a more specific rule allowing members of the "wheel" group to run command `foo` without a password, you'd need to use mkAfter to ensure your rule comes after the more general rule. extraRules = lib.mkAfter [ { groups = [ "wheel" ]; commands = [ { command = "${pkgs.foo}/bin/foo"; options = [ "NOPASSWD" "SETENV" ]; } ] } ]; Otherwise, when configuration options are merged, if the general rule ends up after the specific rule, it will dictate the behavior even when running the `foo` command.
* | | | | | | | | | | | | | nixos/hadoop: Replace users.extra{Users,Groups}aszlig2018-07-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In fff5923686c21dd147bde62d08e9f1042deadb4f all occurences of users.extraUsers and users.extraGroups have been changed tree-wide to users.users and users.group. In the meantime the hadoop modules were introduced via #41381 (060a98e9f4ad879492e48d63e887b0b6db26299e). Unfortunately those modules still use users.extraUsers, which has been renamed a long time ago (14321ae2431e33f5ed81f1ee43eddd29c7e9d01d, about three years from now), so let's actually rename it accordingly as well. Signed-off-by: aszlig <aszlig@nix.build> Cc: @matthewbauer, @aespinosa
* | | | | | | | | | | | | | Merge pull request #41823 from Chiiruno/dev/megucaJörg Thalheim2018-07-02
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | |_|/ / / / / / / / / / / / |/| | | | | | | | | | | | | meguca: 2018-05-26 -> 2018-06-11
| * | | | | | | | | | | | | meguca: 2018-05-26 -> 2018-06-10Okina Matara2018-06-29
| | |_|_|_|_|_|_|_|_|_|_|/ | |/| | | | | | | | | | |
* | | | | | | | | | | | | Merge pull request #42798 from flokli/users-usersMichael Raskin2018-07-02
|\ \ \ \ \ \ \ \ \ \ \ \ \ | |_|_|_|/ / / / / / / / / |/| | | | | | | | | | | | tree-wide: users.extraUsers -> users.users, users.extraGroups -> users.groups
| * | | | | | | | | | | | nixos/modules: users.(extraUsers|extraGroup->users|group)Florian Klink2018-06-30
| | | | | | | | | | | | |
| * | | | | | | | | | | | nixos/tests: users.(extraUsers|extraGroup->users|group)Florian Klink2018-06-30
| | | | | | | | | | | | |
| * | | | | | | | | | | | nixos-generate-config.pl: users.extraUsers-> users.usersFlorian Klink2018-06-30
| | | | | | | | | | | | |
| * | | | | | | | | | | | nixos/modules/installer: users.extraUsers -> users.usersFlorian Klink2018-06-30
| | | | | | | | | | | | |
* | | | | | | | | | | | | iwd: set statedir to /var/lib/iwdJörg Thalheim2018-07-01
| | | | | | | | | | | | |
* | | | | | | | | | | | | Merge pull request #41381 from aespinosa/hadoop-modulesMatthew Bauer2018-06-30
|\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | nixos/hadoop: add hadoop module (hdfs, yarn)
| * | | | | | | | | | | | | nixos/hadoop: add hadoop module (hdfs, yarn)Allan Espinosa2018-06-29
| | | | | | | | | | | | | |
* | | | | | | | | | | | | | nixos/tests/letsencrypt: Don't substitute certsaszlig2018-06-30
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If one of the certificates of the chain gets substituted from a binary cache and the rest is generated locally it might turn out that we get invalid certificates, which in turn cause tests using this module to fail. So let's set allowSubstitutes to false for all derivations that are involved with certificate/key generation. Signed-off-by: aszlig <aszlig@nix.build>
* | | | | | | | | | | | | | nixos/fwupd: Fix metaSilvan Mosberger2018-06-30
| | | | | | | | | | | | | |
* | | | | | | | | | | | | | Merge pull request #42709 from jollheef/masteradisbladis2018-06-30
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ | |_|/ / / / / / / / / / / / |/| | | | | | | | | | | | | hostapd: use WPA2 instead of WPA1 by default
| * | | | | | | | | | | | | hostapd: use WPA2 instead of WPA1 by defaultMikhail Klementev2018-06-30
| | |_|_|_|_|_|_|/ / / / / | |/| | | | | | | | | | |
* | | | | | | | | | | | | Merge pull request #42746 from flokli/manual-fixes-users-usersxeji2018-06-30
|\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | Manual fixes: users.extraUsers -> users.users
| * | | | | | | | | | | | | manual: rename user added to networkmanager from "youruser" to "alice"Florian Klink2018-06-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | to be consistent with the rest of the manual Reported-By: Cedric Shahabi <cedric.shahabi@gmail.com>
| * | | | | | | | | | | | | manual: rename users.extraUsers to users.usersFlorian Klink2018-06-28
| | |_|_|_|_|_|_|/ / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Is called like this since 14321ae2431e33f5ed81f1ee43eddd29c7e9d01d, but docs were still using the old option in some cases. Reported-By: Cedric Shahabi <cedric.shahabi@gmail.com>
* | | | | | | | | | | | | openafs_1_8: init at 1.8.0 (#41889)spacefrogg2018-06-30
| |_|_|/ / / / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Introduce new "server" output holding the server binaries - Adapt tsmbac.patch to new build environment - Adapt openafs nixos server module accordingly - Update upstream CellServDB: 2017-03-14 -> 2018-05-14 - Introduce package attributes to refer to the openafs packages to use for server, programs and kernel module
* | | | | | | | | | | | networkmanager: Expand dns description, integrate with other services (#41898)Benjamin Staffin2018-06-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Rather than special-casing the dns options in networkmanager.nix, use the module system to let unbound and systemd-resolved contribute to the newtorkmanager config.
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-24 13:29:26 +0000