public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
111,449 Commits 1 Branch 0 Tags
Commit Graph

6812 Commits

Author SHA1 Message Date
Matt McHenry
01fbf30041 postfix: warn about deprecated extraMasterConf option 2017-08-10 21:32:03 -04:00
Matt McHenry
edd4a0efe3 postfix: fix typo in transport_maps path 2017-08-10 21:32:02 -04:00
Martin Wohlert
9be26f81ca change swap.randomEncryption config option to "coercedTo" for backwards compatibility 2017-07-26 20:57:10 +03:00
Martin Wohlert
c3d5cfdc3c swap: extend randomEncryption to plainOpen and ability to select cipher 2017-07-26 20:57:10 +03:00
Peter Hoeg
588e3da3f4 Merge pull request #26761 from gnidorah/master3 
qt5ct module: expose qtstyleplugins
 2017-07-26 22:44:45 +08:00
Nikolay Amiantov
358abce837 autofs service: fix the manual 
Fixes #27202.
 2017-07-26 15:24:43 +03:00
k0ral
a3e6df6ee2 environment.noXlibs: Disable gnome when noXLibs is set (#27567) 2017-07-26 08:54:42 +02:00
edef
10c6df2e3c nixos/…/swap.nix: don't create a LUKS header for randomEncryption 
Creating and then erasing the key relies on the disk erasing data
correctly, and otherwise allows attackers to simply decrypt swap just
using "secretkey". We don't actually need a LUKS header, so we can save
ourselves some pointless disk writes and identifiability.

In addition, I wouldn't have made the awful mistake of backing up my swap partition's LUKS header instead of my zpool's. May my data rest in peace.
 2017-07-26 08:45:50 +02:00
0xABAB
90acbe5449
Cleanup tahoe module 
- Remove useless escape of question mark
- Fix and quoting
- Add some '&&s' for correctness
- Add escapeShellArg
- Remove &&s in preStart

Edited by grahamc: fixed the ${} typo on line 246
 2017-07-25 22:09:43 -04:00
Volth
00512470ec tinc service: add CLI tools to the $PATH 
Now user can execute e.g. "sudo tinc.netname dump nodes"
 2017-07-25 23:13:58 +02:00
Jörg Thalheim
97544a6c38 Merge pull request #27627 from volth/zookeeper-escape-shell 
nixos/zookeeper: escape cfg.extraCmdLineOptions
 2017-07-25 07:46:05 +01:00
Charles Strahan
c1fdf3341b Merge pull request #27347 from cstrahan/osquery-new 
osquery: init at 2.5.2
 2017-07-24 21:51:10 -04:00
Charles Strahan
53426f6cb9
osquery: init at 2.5.2 2017-07-24 21:47:32 -04:00
Volth
f2bfb459c4 nixos/zookeeper: escape cfg.extraCmdLineOptions 2017-07-24 22:27:58 +00:00
Aristid Breitkreuz
63190540a8 wireguard: sometimes module tries to re-add the default route, which fails - use replace to make it succeed 2017-07-23 23:08:39 +02:00
Joachim F
1a768eba2a Merge pull request #26632 from jazmit/nixpkgs 
coturn: allow use of ports < 1024
 2017-07-23 12:56:05 +01:00
gnidorah
9f61c7f947 qt5ct module: expose qtstyleplugins 2017-07-23 12:56:04 +03:00
Jörg Thalheim
b1bff52a5c Merge pull request #27469 from Ma27/oh-my-zsh/make-pkg-configurable 
programs.zsh.ohMyZsh: add `package` option to make package overrides on module-base easier
 2017-07-22 10:00:35 +01:00
Joel Thompson
9dc51dc00d exhibitor: Fix bugs in previous package 
The previous package didn't build properly due to a bug in the build
script, and the nixos module didn't evaluate due to missing descriptions
in the options. This fixes both issues.

It also adds missing command-line options that weren't able to be set
and properly converts bools to the strings exhibitor expects.
 2017-07-21 16:14:04 -04:00
Franz Pletz
1697684591
docker module: fix autoPrune.enable description 
cc #27503
 2017-07-21 16:54:40 +02:00
Joel Thompson
4b42fc4b8a exhibitor: init at 3.4.9 
Initial Exhibitor nix package and nixos module for Netflix's Exhibitor,
which is a manager for Apache Zookeeper.
 2017-07-21 09:45:37 -04:00
Rhys
8777174d60 nixos/oauth2_proxy: actually pass provider-specific options 
Syntax errors prevented important parameters from being passed to
oauth2_proxy, which could have permitted unauthorised access to
services behind the proxy.
 2017-07-21 00:27:06 +02:00
Pascal Bach
22acfd0327 docker service: add option to do automatic pruning 
This allows to run the prune job periodically on a machine.
By default the if enabled the job is run once a week.

The structure is similar to how system.autoUpgrade works.
 2017-07-20 20:33:16 +02:00
Michael Peyton Jones
b09c87ab47 Factorio service: fix typo in attribute path 2017-07-20 20:32:25 +02:00
Franz Pletz
00b6ac7bd3 Merge pull request #26419 from roblabla/feature-sasl 
cyrus-sasl: Add saslauthd service and LDAP support
 2017-07-20 20:23:52 +02:00
Maximilian Bosch
95bf0cc1cb
programs.zsh.ohMyZsh: add package option to make package overrides on module-base easier 2017-07-20 08:54:10 +02:00
Graham Christensen
2b2a6f2070
nixos/ldap: remove tls_checkpeer no when using TLS 2017-07-19 19:23:40 -04:00
Daiderd Jordan
a03d6116ce
gitlab: fix archive urls for gitlab service 
Accessing an url like https://gitlab.example.org/group/project/repository/archive.tar.gz?ref=master
requires tar/gzip to be in the path of the gitlab-workhorse service otherwise it fails.
 2017-07-19 21:34:17 +02:00
zimbatm
14f53e5251 Merge pull request #26214 from zimbatm/google-compute-image 
Google compute image
 2017-07-19 09:49:20 +01:00
Benno Fünfstück
99fbd867ef Merge pull request #27031 from jerith666/cnijfilter-2-80 
cnijfilter: init at 2.80
 2017-07-18 14:37:32 +02:00
Rob Vermaas
ec313abdce
Add file with Azure image locations, similar to ec2-amis.nix. Will be used by nixops. 
(cherry picked from commit e93f26847ea41cce6633b6a0feb6ce31b0722d5d)
 2017-07-18 09:18:51 +00:00
Rob Vermaas
412bfda422
Add file with GCE image locations, similar to ec2-amis.nix. Will be used by nixops. 
(cherry picked from commit 9d810ddcc1938a90090fd60f8924f4e83acbeee2)
 2017-07-18 09:16:15 +00:00
Eelco Dolstra
17642b5fd0
nix: 1.11.12 -> 1.11.13 2017-07-18 10:54:01 +02:00
Jörg Thalheim
26f85e4253 Merge pull request #27410 from florianjacob/journalwatch 
journalwatch & journalwatch service: init at 1.1.0
 2017-07-18 08:19:33 +01:00
Aristid Breitkreuz
9b0ff955fd wireguard: allow not storing private keys in world-readable /nix/store (#27433) 
* wireguard: allow not storing private keys in world-readable /nix/store
 2017-07-17 23:55:31 +02:00
Falco Peijnenburg
b09d036342 Strongswan after network-online instead of network 
The systemd service file shipped with strongswan has strongswan started after `network-online`. It turns out that this is for good reason: failure to connect on boot otherwise. 

See this thread on the mailing list, which my colleague initiated after finding that our NixOS strongswan config wouldn't connect on boot:
https://lists.strongswan.org/pipermail/users/2017-January/010359.html

Tested on a local config (which has the strongswan service config overridden).
 2017-07-17 20:17:58 +02:00
Wout Mertens
c4783a982b nginx: add gzip_vary to recommended settings 
Google PageSpeed recommends turning this on to allow proxies to cache
 2017-07-17 20:15:59 +02:00
Jörg Thalheim
04c944cdb4 Merge pull request #27057 from Nadrieril/bitlbee-libpurple 
bitlbee service: Add option to load libpurple plugins into bitlbee
 2017-07-17 18:07:43 +01:00
Robin Gloster
b8d92a7840
programs.gnupg: use extraInit instead of interactiveShellInit 
Otherwise some programmes cannot use the GPG agent, e.g. applications
started from dmenu.

Behaviour was changed in #26888, this reverts that part.
 2017-07-17 18:45:37 +02:00
Matt McHenry
67d02cd60a cnijfilter: init at 2.80 
this driver reads support files from lib/bjlib as well as lib/cups,
which is why the path in cupsd.nix is tweaked
 2017-07-17 07:32:23 -04:00
Nadrieril
8669fb1f96 tinc service: BindToAddress and ListenAddress are different options, they should not be mistaken 2017-07-17 13:07:49 +02:00
Benno Fünfstück
1d78df2729 Merge pull request #27000 from Balletie/fix/pulseaudio-alsa-conf 
pulseaudio: Resolve conflicting asound.conf of pulseaudio and alsa
 2017-07-17 08:20:38 +02:00
volth
870375e19d all-hardware.nix: add VMware support. (#27430) 
NixOS does not boot in VMware guest without these modules
 2017-07-17 02:38:10 +02:00
Graham Christensen
8df6d351c4 Merge pull request #26912 from knedlsepp/fix-autoResize 
nixos: Force check the filesystem before resizing
 2017-07-16 16:54:54 -04:00
Graham Christensen
3d176b7ff1 Merge pull request #25670 from Mic92/cups-hardening 
cups: mount private /tmp
 2017-07-16 16:41:33 -04:00
Graham Christensen
6b879ef36e Merge pull request #23964 from benley/nixos-manual-launcher 
nixos: nix snowflake logo for the nixos manual launcher
 2017-07-16 16:28:30 -04:00
aszlig
b618843860
nixos/taskserver: Fix manual PKI management 
The helper tool had a very early check whether the automatically created
CA key/cert are available and thus it would abort if the key was
unavailable even though we don't need or even want to have the CA key.

Unfortunately our NixOS test didn't catch this, because it was just
switching from a configuration with an automatically created CA to a
manual configuration without deleting the generated keys and certs.

This is done now in the tests and it's also fixed in the helper tool.

Reported-by: @jpotier
Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2017-07-16 20:38:15 +02:00
Nadrieril
65e38b7c52 bitlbee service: Add option to load libpurple plugins into bitlbee 2017-07-16 14:19:39 +01:00
Franz Pletz
951b932456 Merge pull request #27403 from rnhmjoj/nginx 
nginx: make listen addresses configurable
 2017-07-16 13:50:18 +02:00
Christian Kögler
e8a8f1233a snapper: add nixos module 
fixes #27154
 2017-07-16 10:06:42 +01:00