Age | Commit message (Collapse) | Author |
|
|
|
nixos/redis: add requirePassFile option
|
|
docker-containers: Move ExecStartPre/ExecStopPost to preStart/postStop
|
|
|
|
This commit fixes #76620. It moves ExecStartPre and ExecStopPost to
preStart and postStop, as these options are composable. It thus allows
adding additional initialisation scripts or cleanup scripts to the systemd
unit of the docker container.
|
|
|
|
This expands the example to something one might actually want to use
to set up a serial console.
|
|
This leads to inconsistent results between local builds and
Hydra. Also Nix is not a general purpose language, we shouldn't be
parsing .git from inside Nix code.
|
|
config.system.nixos.revision
|
|
In 0945178b3c6fd9e33002dd6e3c6f77dfca49565a we decided that Perl-based
VM tests should be deprecated and will be removed between 20.03 and
20.09. So let's switch `nixos-build-vms(8)` to python as well (which is
entirely interactive, so other scripts won't break).
In my experience, the test-driver isn't used most of the time, so this
patch is mainly supposed to get rid of the (probably misleading)
deprecation warning when running `nixos-build-vms`. Apart from that, the
interface for python's test-driver is way nicer.
|
|
|
|
nixos/knot: add keyFiles option
|
|
This option allows the user to control whether or not the docker container is
automatically started on boot. The previous default behavior (true) is preserved
|
|
* nixos/postgresql: support 0750 for data directory
This is rework of part of https://github.com/NixOS/nixpkgs/pull/46670.
My usecase was to be able to inspect PG datadir as wheel user.
PG11 now allows starting server with 0750 mask for data dir.
`groupAccess = true` now does this automatically. The only thing you have to do
is to set group ownership.
For PG10 and below, I've described a hack how this can be done. Before this PR
hack was impossible. The hack isn't ideal, because there is short
period of time when dir mode is 0700, so I didn't want to make it official.
Test/example is present too.
* postgresql: allow changing initidb arguments via module system
Closes https://github.com/NixOS/nixpkgs/issues/18829
+ some cleanups
* addressed review comments and some fixes
* whoops
* change groupAccess to tristate, to not force `chmod` on dataDir.
Making mask either 0700 or 0750 is too restrictive..
* WIP
* let's not support group mode for versions pre-11.
The only fix is to change mode to 0700 before start, because otherwise postgresql
doesn't start, and error is non-obvious.
|
|
The only fix is to change mode to 0700 before start, because otherwise postgresql
doesn't start, and error is non-obvious.
|
|
|
|
|
|
nixos/pppd: fix build error
|
|
nixos/alsa: replace list by attrset in environment.etc
|
|
|
|
|
|
|
|
nixos/caddy: resync with upstream unit file
|
|
brightnessctl: Add systemd support
|
|
Avoids having the password in the nix store.
|
|
nixos-enter: redirect to fd2 instead of a file named /dev/stderr
|
|
ell,iwd: 0.28, 1.5, minor touchups, drop tmpfiles snippet
|
|
rxvt-unicode: fix typo in aliases.nix
|
|
Deprecate the boot.vesa option
|
|
|
|
|
|
mattermost: 5.9.0 -> 5.15.0
|
|
In some cases, /dev/stderr may not point to a sensible location. For
example, running nixos-enter inside a systemd unit where the unit's
StandardOutput and StandardError are set to be sockets. In these
cases, this line would fail.
Piping to fd2 directly works just as well, even under strange and
twisted executions.
Co-authored-by: Michael Bishop <michael.bishop@iohk.io>
|
|
Originally added in [1], and iwd added StateDirectory to its services
in [2] -- 4 days later.
("StateDirectory wasn't used when tmpfile snippet was added to NixOS")
(nevermind git -> release delay)
[1] 6e54e9253a28d1fe5c507b76ce45965c31ecab70
[2] upstream iwd git rev: 71ae0bee9c6320dae0083ed8c1700bc8fff1defb
|
|
Add DesktopNames parameter to generated desktop session files
|
|
nixos/filesystems: don't chown /run/keys recursively
|
|
This useful to include tsig keys using nixops without adding those
world-readable to the nix store.
|
|
This makes it hard to include secret files.
Also using tools like keymgr becomes harder.
|
|
session files
Some display managers (e.g. SDDM) set the XDG_CURRENT_DESKTOP variable accroding to this parameter.
If this variable is not defined, there will be some problems (e.g. MATE doesn't have icons on the desktop).
Fixes https://github.com/NixOS/nixpkgs/issues/71427
|
|
rngd: Start early during boot and encrypted swap entropy fix
|
|
3c74e48d9c8dbcede89a72ea18cd27def4b498a9 was a bit too much, it updated
permissions of all files recursively, causing files to be readable by
the group.
This isn't a problem immediately after bootup, but on a new activation,
as tmpfiles.d get restarted then, updating the permission bits of
now-existing files.
This updates the `Z` to be a `z` (the non-recursive variant), and adds a
`d` to ensure a directory is created (which should be covered by the
initrd shell script anyway)
|
|
Due to the support of the systemd-logind API the udev rules aren't
required anymore which renders this module useless [0].
Note: brightnessctl should now require a working D-Bus setup and a valid
local logind session for this to work.
[0]: https://github.com/NixOS/nixpkgs/pull/79663
|
|
flatpak: 1.4.2 → 1.6.1
|
|
* https://github.com/flatpak/xdg-desktop-portal/releases/tag/1.6.0
* https://github.com/flatpak/xdg-desktop-portal/releases/tag/1.5.4
* https://github.com/flatpak/xdg-desktop-portal/releases/tag/1.5.3
* https://github.com/flatpak/xdg-desktop-portal/releases/tag/1.5.2
* https://github.com/flatpak/xdg-desktop-portal/releases/tag/1.5.1
* https://github.com/flatpak/xdg-desktop-portal/releases/tag/1.5.0
|
|
nixos: fix bunch of mangled usernames
|
|
nixos/plasma5: Port initial configurations from Plasma 5.16
|
|
Broken in 1d61efb7f177f7b70c467ab4940fde0a3481d4dc.
|
|
Broken in 1d61efb7f177f7b70c467ab4940fde0a3481d4dc.
|
|
Broken in 1d61efb7f177f7b70c467ab4940fde0a3481d4dc.
|
|
Flake support
|