public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
218,568 Commits 1 Branch 0 Tags
Commit Graph

16498 Commits

Author SHA1 Message Date
Symphorien Gibol
4600fe67c5 nixos/roundcube: add release notes for #77532 2020-02-05 12:00:00 +00:00
Leonhard Markert
42a2668eb0 lorri: unstable-2020-01-09 -> 1.0 2020-02-05 12:12:02 +01:00
Richard Marko
0c20feb231 use overlayfs by default for netboot and iso 2020-02-05 10:35:59 +01:00
Maximilian Bosch
87d4951a82
Merge pull request #78660 from buckley310/dircolors 
nixos/bash: configure $LS_COLORS for interactive shells
 2020-02-05 09:08:41 +01:00
wedens
7b5550a3fc nixos/grub: make memtest work with EFI 
Memtest86+ doesn't support EFI, so unfree Memtest86 is used when EFI
support is enabled (systemd-boot currently also uses Memtest86 when
memtest is enabled).
 2020-02-05 11:12:55 +07:00
Florian Klink
3c74e48d9c nixos/filesystems: ensure keys gid on /run/keys mountpoint 
boot.specialFileSystems is used to describe mount points to be set up in
stage 1 and 2.

We use it to create /run/keys already there, so sshd-in-initrd scenarios
can consume keys sent over through nixops send-keys.

However, it seems the kernel only supports the gid=… option for tmpfs,
not ramfs, causing /run/keys to be owned by the root group, not keys
group.

This was/is worked around in nixops by running a chown root:keys
/run/keys whenever pushing keys [1], and as machines had to have pushed keys
to be usable, this was pretty much always the case.

This is causing regressions in setups not provisioned via nixops, that
still use /run/keys for secrets (through cloud provider startup scripts
for example), as suddenly being an owner of the "keys" group isn't
enough to access the folder.

This PR removes the defunct gid=… option in the mount script called in
stage 1 and 2, and introduces a tmpfiles rule which takes care of fixing
up permissions as part of sysinit.target (very early in systemd bootup,
so before regular services are started).

In case of nixops deployments, this doesn't change anything.
nixops-based deployments receiving secrets from nixops send-keys in
initrd will simply have the permissions already set once tmpfiles is
started.

Fixes #42344

[1]: 884d6c3994/nixops/backends/__init__.py (L267-L269)
 2020-02-05 01:53:26 +01:00
Silvan Mosberger
c4e912ac79
Merge pull request #79243 from Infinisil/remove-hostresolvconf 
nixos/resolvconf: Remove useHostResolvConf option
 2020-02-05 00:53:53 +01:00
Silvan Mosberger
97ff64e351
nixos/resolvconf: Remove useHostResolvConf option 
Never had any effect
 2020-02-05 00:28:32 +01:00
Silvan Mosberger
b4cc413928
Merge pull request #77594 from Frostman/fix-grub-extrafiles-mirroredboots 
Fix boot.loader.grub.extraFiles when used with mirroredBoots
 2020-02-05 00:22:35 +01:00
Florian Klink
eb09e82120
Merge pull request #79162 from misuzu/systemd-sleep-config 
nixos/systemd: add `systemd.sleep.extraConfig` config option
 2020-02-04 23:02:53 +01:00
Maximilian Bosch
f28acbdd33
Merge pull request #79221 from Ma27/bump-oracle-sqldeveloper 
sqldeveloper: {17.4.1.054.0712,18.2.0.183.1748} -> 19.4.0.354.1759
 2020-02-04 22:25:44 +01:00
Symphorien Gibol
b7f27cb61a nixos/iodine: add test 2020-02-04 20:54:29 +01:00
Symphorien Gibol
00a91d919d nixos/iodine: hardening 2020-02-04 20:54:29 +01:00
Symphorien Gibol
7437bff7d1 nixos/iodine: nixpkgs-fmt 2020-02-04 20:54:29 +01:00
Jörg Thalheim
6cfc7e9bd2
Merge pull request #78448 from snicket2100/irqbalance-systemd 
irqbalance: systemd service config aligned with upstream
 2020-02-04 14:21:04 +00:00
Jörg Thalheim
c24a2d3e32
nixos/irqbalance: re-add multi-user.target 
otherwise the service is never started by us.
 2020-02-04 14:20:12 +00:00
Maximilian Bosch
294f667121
sqldeveloper: {17.4.1.054.0712,18.2.0.183.1748} -> 19.4.0.354.1759 
There are no new releases of sqldeveloper v17/v18 and I don't think that
we should keep obviously unmaintained software that interacts with
database systems.

I removed `sqldeveloper_18` and `pkgs.sqldeveloper` now points to
version 19.4. Unfortunately I had to drop darwin support as JavaFX is
required for 19.4 which is part of the `oraclejdk` which isn't packaged
for darwin yet.

For further information please refer to the release notes:

https://www.oracle.com/technetwork/developer-tools/sql-developer/downloads/sqldev-relnotes-194-5908846.html
 2020-02-04 13:51:52 +01:00
Sergey Lukjanov
7144b9ac54 Fix boot.loader.grub.extraFiles when used with mirroredBoots 
Substitute @bootPath@ in boot.loader.grub.extraPrepareConfig script
same way as it's done for boot.loader.grub.extraEntries option.
 2020-02-03 15:37:00 -08:00
Lucas Savva
2181313c54
nixos/acme: simplify email resolve logic 2020-02-03 21:37:22 +00:00
Florian Klink
d4a951f31d
Merge pull request #78960 from aanderse/nslcd 
nixos/ldap: remove redundant configuration options
 2020-02-03 19:42:47 +01:00
Evan Stoll
e341719193 openrazer: 2.6.0 -> 2.7.0 
openrazer: remove superfluous period from hardware.openrazer.enable
 2020-02-03 10:00:35 -08:00
Florian Klink
136c0e4249
Merge pull request #79141 from thefloweringash/openstack-tests 
nixos/tests/openstack-image: add stdenv to image for nixos-rebuild
 2020-02-03 18:17:02 +01:00
Andrew Childs
6e40a8e484 nixosTests.openstack-image-userdata: re-enable 2020-02-04 02:07:57 +09:00
misuzu
f93a9074e4 nixos/systemd: add systemd.sleep.extraConfig config option 2020-02-03 18:33:15 +02:00
Marek Mahut
2abe12a39a manual.release-notes: qesteidutil is deprecated 2020-02-03 11:22:19 +01:00
worldofpeace
74e4cb7ea4
Merge pull request #78543 from Atemu/dnscrypt-proxy2-service 
nixos/dnscrypt-proxy2: init
 2020-02-02 23:02:06 -05:00
worldofpeace
4c3166b006 nixosTests.dnscrypt-proxy2: init 
This removes the old dnscrypt-proxy test.
 2020-02-02 21:51:19 -05:00
Andrew Childs
e0a734ef6b nixos/tests/openstack-image: add stdenv to image for nixos-rebuild 
Fixes #79100
 2020-02-03 10:44:53 +09:00
Florian Klink
7870644286
Merge pull request #79064 from worldofpeace/port-misc 
nixosTests.misc: port to python
 2020-02-03 00:13:50 +01:00
Maximilian Bosch
5c2a7d0f07
Merge pull request #79015 from mayflower/pkg/prometheus-xmpp-alerts 
prometheus-xmpp-alerts: init at 0.4.2
 2020-02-02 18:46:53 +01:00
Maximilian Bosch
c2d2c2d0ca
Merge pull request #72931 from Ma27/restart-dhcp-on-exit-hook-change 
nixos/dhcpcd: restart dhcpcd if exit hook changed
 2020-02-02 18:33:34 +01:00
snicket2100
04bfeeac79 irqbalance: using systemd service definition from the package itself 2020-02-02 18:09:45 +01:00
worldofpeace
915060d03f rl-2003: dnscrypt-proxy2 2020-02-02 11:11:27 -05:00
Yegor Timoshenko
92d689d66b nixos/dnscrypt-proxy2: init 
This removes the original dnscrypt-proxy module as well.

Co-authored-by: Atemu <atemu.main@gmail.com>
Co-authored-by: Silvan Mosberger <contact@infinisil.com>
Co-authored-by: ryneeverett <ryneeverett@gmail.com>
Co-authored-by: worldofpeace <worldofpeace@protonmail.ch>
 2020-02-02 11:11:27 -05:00
Eelco Dolstra
26aba55951
Revert "add config.environment.ld-linux" 
This reverts commit af665d822a166ae62547c1c310207f11acaded17, see
https://github.com/NixOS/nixpkgs/pull/78798#issuecomment-580059834 for
the reasons in a similar PR.
 2020-02-02 15:29:49 +01:00
Eelco Dolstra
5495cb91eb
Revert "rmdir: avoid failing when directory did not exist" 
This reverts commit 45db499d2de2235388212a911b8344b58ddfda36.
 2020-02-02 15:29:40 +01:00
Vladimír Čunát
1af60850c5
nixosTests.misc: fix blkio sub-test with newer kernels 
The blkio.sectors file is no longer provided; by quick search:
https://issues.apache.org/jira/browse/MESOS-9848
so hopefully it's sufficient to test existence of this other file:
https://www.kernel.org/doc/html/v5.4/admin-guide/cgroup-v1/blkio-controller.html#common-files-among-various-policies

Originally this sub-test was added in 58e40f84.
 2020-02-02 13:20:03 +01:00
Maximilian Bosch
0c960262d1
oraclejdk8: document removals in the release notes 2020-02-02 12:11:50 +01:00
Jacek Galowicz
5ae9820ea4 nixosTests.keymap: Port to python 2020-02-02 10:46:54 +01:00
Jacek Galowicz
8f6f418e42 nixosTests.ihatemoney: Port to python 2020-02-02 10:43:38 +01:00
Jacek Galowicz
afc3d25824 nixosTests.buildbot: Port to python 2020-02-02 10:43:38 +01:00
Maximilian Bosch
0f10495eb9
Merge pull request #74624 from Ma27/networkd-units-internal 
nixos/networkd: mark `units` option as internal
 2020-02-02 07:59:57 +01:00
John Ericson
14fbd4146d
Merge pull request #59855 from volth/qemu-cpu-passthru 
runInLinuxVM, test-driver: pass host's cpu type to guest vm
 2020-02-01 22:59:37 -05:00
worldofpeace
f350a6f42c nixosTests.misc: port to python 2020-02-01 20:59:42 -05:00
Aaron Andersen
5b5856f6fb nixos/httpd: add http2 option 2020-02-01 19:08:02 -05:00
worldofpeace
9cb395a4e7
Merge pull request #78838 from worldofpeace/nm-doc-update 
nixos/doc/network-manager: updates
 2020-02-01 18:08:48 -05:00
worldofpeace
cbce59a9cc nixos/doc/network-manager: updates 
Fixes #71161
 2020-02-01 18:07:10 -05:00
worldofpeace
22c56b847e
Merge pull request #79054 from worldofpeace/geary-module-note 
rl-2003: add note about Geary module
 2020-02-01 18:05:40 -05:00
worldofpeace
4200386fb6 rl-2003: add note about Geary module 2020-02-01 18:01:25 -05:00
Jörg Thalheim
c9d6dee9e4
nixos/locate: don't create /var/cache 
This is already handled by the default systemd tmpfiles.

fixes #78941
 2020-02-01 17:14:52 +00:00