summary refs log tree commit diff
path: root/nixos
Commit message (Collapse)AuthorAge
...
* | | | | | | | | | Merge pull request #41938 from tilpner/awesome-no-argbJörg Thalheim2018-06-13
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | nixos/awesome: Add noArgb option
| * | | | | | | | | | nixos/awesome: Add noArgb optiontilpner2018-06-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add option to disable client transparency support in awesome, which greatly improves performance in my setup (and presumably will in some others).
* | | | | | | | | | | Merge pull request #41852 from oxij/nixos/tor-serviceJoachim F2018-06-13
|\ \ \ \ \ \ \ \ \ \ \ | |/ / / / / / / / / / |/| | | | | | | | | | nixos/tor: fix systemd service
| * | | | | | | | | | nixos/tor: use ControlPort for controlSocket for simplicitySLNOS2018-06-11
| | | | | | | | | | |
| * | | | | | | | | | nixos/tor: add tor-init service to fix directory ownerships, fix hardeningsSLNOS2018-06-11
| | |/ / / / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts a part of 5bd12c694bfebaef1d03eb7f74a6eca01b86f546. Apparently there's no way to specify user for RuntimeDirectory in systemd service file (it's always root) but tor won't create control socket if the dir is owned by anybody except the tor user. These hardenings were adopted from the upstream service file, checked against systemd.service(5) and systemd.exec(5) manuals, and tested to actually work with all the options enabled. `PrivateDevices` implies `DevicePolicy=closed` according to systemd.exec(5), removed. `--RunAsDaemon 0` is the default value according to tor(5), removed.
* | | | | | | | | | Merge pull request #41764 from oxij/nixos/some-more-related-packagesMichael Raskin2018-06-13
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | nixos: add some more related packages
| * | | | | | | | | | nixos: xserver: add related packagesJan Malakhovski2018-06-13
| | | | | | | | | | |
| * | | | | | | | | | nixos: doc: make `relatedPackages` a bit smarterJan Malakhovski2018-06-13
| | | | | | | | | | |
* | | | | | | | | | | nixos/tests/morty: fix non-deterministic failureUli Baum2018-06-13
| |_|/ / / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | ... due to improper timing
* | | | | | | | | | Merge pull request #41884 from johanot/k8s-improvementsSarah Brofeldt2018-06-13
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | nixos/kubernetes: improvements
| * | | | | | | | | | nixos/kubernetes: improvementsJohan Thomsen2018-06-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Added option 'cni.configDir' to allow for having CNI config outside of nix-store Existing behavior (writing verbatim CNI conf-files to nix-store) is still available. - Removed unused option 'apiserver.publicAddress' and changed 'apiserver.address' to 'bindAddress' This conforms better to k8s docs and removes existing --bind-address hardcoding to 0.0.0.0 - Fixed c/p mistake in apiserver systemd unit description - Updated 18.09 release notes to reflect changes to existing options And fixed some typos from previous PR - Make docker images for Kubernetes Dashboard and kube-dns configurable
* | | | | | | | | | | Merge pull request #37289 from disassembler/dnsdistxeji2018-06-13
|\ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | nixos/dnsdist: init module
| * | | | | | | | | | | nixos/dnsdist: initial serviceSamuel Leathers2018-05-02
| | | | | | | | | | | |
* | | | | | | | | | | | nixos/tinc: minor fixesvolth2018-06-12
| |_|_|_|_|_|/ / / / / |/| | | | | | | | | |
* | | | | | | | | | | nixos/nat: optional networking.nat.externalInterface (#41864)volth2018-06-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | to prevent "cannot coerce null to string" raise before the assertions are checked
* | | | | | | | | | | nixos/unbound: add restart (#41885)volth2018-06-12
| | | | | | | | | | |
* | | | | | | | | | | maintainers/create-azure.sh: remove hydra.nixos.org as binary cache (#41883)Jörg Thalheim2018-06-12
| |/ / / / / / / / / |/| | | | | | | | |
* | | | | | | | | | azure: stop carrying qemu-220 patchCole Mickens2018-06-12
| |_|_|_|_|/ / / / |/| | | | | | | |
* | | | | | | | | nixos/no-x-libs: Switch to using nixpkgs.overlaysaszlig2018-06-11
| |_|/ / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The usage of nixpkgs.config.packageOverrides is deprecated and we do have overlays since quite a while. Signed-off-by: aszlig <aszlig@nix.build> Cc: @edolstra
* | | | | | | | nixos/initrd-network: support hetznervolth2018-06-11
| | | | | | | |
* | | | | | | | nixos/tomcat: fix eval error introduced by #40657Uli Baum2018-06-11
| | | | | | | |
* | | | | | | | nixos/autosuggestions: add module (#41397)Maximilian Bosch2018-06-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The `zsh-autosuggestions` package provides several configuration options such as a different highlight style (like `fg=cyan` which is easier to read). With `rename.nix` the old `programs.zsh.enableAutosuggestions` is still functional, but yields the following warning like this during evaluation: ``` trace: warning: The option `programs.zsh.enableAutosuggestions' defined in `<unknown-file>' has been renamed to `programs.zsh.autosuggestions.enable'. ``` The module provides the most common `zsh-autosuggestions` (highlight style and strategy) as options that will be written into the interactive shell init (`/etc/zshrc` by default). Further configuration options can be declared using the `extraConfig` attr set: ``` { programs.zsh.autosuggestions.extraConfig = { "ZSH_AUTOSUGGEST_BUFFER_MAX_SIZE" = "buffer_size"; }; } ``` A full list of available configuration options for `zsh-autosuggestions` can be viewed here: https://github.com/zsh-users/zsh-autosuggestions/blob/v0.4.3/README.md
* | | | | | | | tomcat service: fix webapps default option (#40657)Tristan Helmich2018-06-10
| | | | | | | | | | | | | | | | | | | | | | | | The old package tomcat.webapps does not exist
* | | | | | | | nixos/nat: optional networking.nat.externalInterface (#41758)volth2018-06-10
| | | | | | | |
* | | | | | | | Merge branch 'master' into nixos-evaluateMatthew Justin Bauer2018-06-10
|\ \ \ \ \ \ \ \
| * | | | | | | | sshd: change location of config file (#41744)Izorkin2018-06-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | create symlink /etc/ssh/sshd_config
| * | | | | | | | nixos/tests/gnome3: switch to lightdm (#41742)xeji2018-06-09
| | | | | | | | |
| * | | | | | | | Merge pull request #41733 from Baughn/nix-syncJörg Thalheim2018-06-09
| |\ \ \ \ \ \ \ \ | | |_|_|/ / / / / | |/| | | | | | | zfs: Fix "zfs-sync" for modern systemd
| | * | | | | | | zfs: Fix "zfs-sync" for modern systemdSvein Ove Aas2018-06-09
| | | | | | | | |
| * | | | | | | | Merge pull request #41731 from andir/memcached-testAndreas Rammhold2018-06-09
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | nixos/memcached: added simple set/get test
| | * | | | | | | | nixos/memcached: added simple set/get testAndreas Rammhold2018-06-09
| | |/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | The test ensures that the services comes up and accepts/provides values.
| * | | | | | | | Merge pull request #41057 from nyanloutre/duplicati/custom_optionsPeter Hoeg2018-06-09
| |\ \ \ \ \ \ \ \ | | |/ / / / / / / | |/| | | | | | | nixos/duplicati: add port and datafolder options
| | * | | | | | | nixos/duplicati: add port and interface optionsnyanloutre2018-06-09
| | | | | | | | |
| * | | | | | | | nixos/munge: run munge as user munge instead of root. (#41509)markuskowa2018-06-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Added a note in release notes (incompatibilities) * Adapt slurm test * Change user to munge in service.munge
| * | | | | | | | nixos/sslh: add transparent proxying support (#41412)volth2018-06-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [x] Support transparent proxying. This means services behind sslh (Apache, sshd and so on) will see the external IP and ports as if the external world connected directly to them. [x] Run sslh daemon as unprivileged user instead of root (it is not only for security, transparent proxying requires it) [x] Removed pidFile support (it is not compatible with running sslh daemon as unprivileged user) [x] listenAddress default changed from "config.networking.hostName" (which resolves to meaningless "127.0.0.1" as with current /etc/hosts production) to "0.0.0.0" (all addresses)
| * | | | | | | | Merge pull request #41466 from andir/haproxy-1.8.9Andreas Rammhold2018-06-08
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | Haproxy 1.8.9
| | * | | | | | | | nixos/tests; add haproxyAndreas Rammhold2018-06-08
| | | |_|_|_|_|/ / | | |/| | | | | |
| * | | | | | | | Merge pull request #41375 from phryneas/mosh-with-libutempterxeji2018-06-08
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | nixos/programs.mosh: refactor
| | * | | | | | | | nixos/programs.mosh: refactorLenz Weber2018-06-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Adds programs.mosh.withUtempter (default: true). The option enables -with-utempter for mosh, allowing it to write to /var/run/utmp and thus making connected sessions appear in the output of `who -a`. For that, a guid-wrapper is required. Also, the path to the `utempter` was hardcoded in the resulting binary until now (so it could never been found), thus, libutempter was patched accordingly to point to /run/wrappers/bin/utempter which at least works when the wrapper is configured.
| * | | | | | | | | Merge pull request #41652 from hamishmack/patch-4Jörg Thalheim2018-06-08
| |\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | minio: Output server logs & startup in json format
| | * | | | | | | | | minio: Output server logs & startup in json formatHamish Mackenzie2018-06-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently minio logs with enhanced tty data and journalctl does not include anything useful as a result: ``` Jun 08 11:03:28 alpha minio[17813]: [78B blob data] Jun 08 11:03:28 alpha minio[17813]: [49B blob data] Jun 08 11:03:28 alpha minio[17813]: [19B blob data] Jun 08 11:03:28 alpha minio[17813]: [88B blob data] Jun 08 11:03:28 alpha minio[17813]: [45B blob data] Jun 08 11:03:28 alpha minio[17813]: [44B blob data] Jun 08 11:03:28 alpha minio[17813]: [57B blob data] ``` Indicating that it detected some binary output. With the `--json` flag it logs: ``` Jun 08 11:14:58 alpha minio[18573]: {"level":"FATAL","time":"2018-06-07T23:14:58.770637778Z","error":{"message":"--address input is invalid: address 127.0.0.1: missing port in address","source":["/build/go/src/github.com/minio/minio/cmd/server-main.go:121:cmd.serverHandleCmdArgs()"]}} ```
| * | | | | | | | | | doc: Explain how to hack on kernelMatthieu Coudron2018-06-08
| |/ / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Presents the options available (linuxManualConfig versus overriding extraConfig, ignoreConfigErrors, autoModules, kernelPreferBuiltin. For advanced hostPlatform customization refer to the commands shared by ericson1234 at https://github.com/NixOS/nixpkgs/pull/33813 but it is too advanced to put in the doc.
| * | | | | / / / / nixos/sandbox: improve documentation.Brandon Elam Barker2018-06-07
| | |_|_|_|/ / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | This was put together based on feedback from LnL on IRC.
| * | | | | | | | Revert "Merge pull request #38263 from lopsided98/grub-initrd-secrets"Joachim Fasting2018-06-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit c06d7950f1b97abf510bc70bd2a2b0445e8d36f2, reversing changes made to 4c25fbe338212f498a34d2a9b4c2072ac96c0e31. See https://github.com/NixOS/nixpkgs/issues/41608
| * | | | | | | | Merge pull request #38263 from lopsided98/grub-initrd-secretsJoachim F2018-06-06
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | grub: support initrd secrets
| | * | | | | | | | nixos/grub: support initrd secretsBen Wolsieffer2018-05-07
| | | | | | | | | |
| * | | | | | | | | nixos/release-combined: remove keymap tests from tested jobUli Baum2018-06-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Temporary fix for #41538; non-deterministic failures blocked the release channel.
| * | | | | | | | | Merge pull request #40729 from nlewo/pr-hydra-testDaiderd Jordan2018-06-06
| |\ \ \ \ \ \ \ \ \ | | |_|_|_|_|_|/ / / | |/| | | | | | | | nixos/tests/hydra: build a trivial derivation
| | * | | | | | | | nixos/tests/hydra: add it in nixos/release.nixAntoine Eiche2018-06-06
| | | | | | | | | |
| | * | | | | | | | nixos/tests/hydra: build a trivial derivationAntoine Eiche2018-06-06
| | | |_|/ / / / / | | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | A script is used to create a project, and configure a jobset. This jobset fetches a local file containing a trivial Nix expression. The test script makes sure this derivation has been successfully built by Hydra.
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-13 01:08:55 +0000