Jörg Thalheim
5a73cd4f68
nixos/zfs: Enable trim by default ( #69672 )
...
nixos/zfs: Enable trim by default
2019-09-28 10:07:12 +01:00
Jörg Thalheim
3ed9892552
Merge pull request #69489 from Mic92/sysctl
...
nixos/sysctl: reduce prio of "kernel.kptr_restrict" to mkDefault
2019-09-28 10:06:54 +01:00
Vladimír Čunát
fda4a08d4a
Merge branch 'staging-next'
...
There are several security fixes - again, as it consists mainly of the
previously reverted staging-next merge.
2019-09-28 07:43:04 +02:00
worldofpeace
07ca91187c
Merge pull request #69706 from worldofpeace/gdm-isnt-unstable
...
nixos/gdm: update description
2019-09-27 18:40:18 -04:00
worldofpeace
e4cce87fba
nixos/gdm: update description
...
GDM isn't dangerous anymore in NixOS.
2019-09-27 17:42:39 -04:00
Vladimír Čunát
217cf982c7
Merge branch 'master' into staging-next
2019-09-27 22:13:02 +02:00
Samuel Dionne-Riel
95005c1039
Merge pull request #68265 from tkerber/rpi4
...
Various: Add support for raspberry pi 4.
2019-09-27 14:35:17 -04:00
Svein Ove Aas
e4f975765f
nixos/zfs: Enable trim by default
2019-09-27 18:35:03 +01:00
Joachim F
ad773d31e2
Merge pull request #69345 from joachifm/feat/split-version
...
Replace uses of splitString for splitting version strings
2019-09-27 06:19:18 +00:00
worldofpeace
985697bff7
Merge pull request #66652 from craigem/clarify_wireless_examples
...
nixos/doc: Clarify wireless examples
2019-09-26 22:56:20 -04:00
Craige McWhirter
cce7486deb
nixos/doc: Clarify wireless examples
...
This commits makes it clearer to a novice reader how to configure several
diferent types of SSID connections that were otherwise obscurely documented
Resolves #66650
2019-09-26 22:52:21 -04:00
Joachim Fasting
bad07dfac5
tree-wide: replace uses of splitString "." with lib.versions
...
Quoting from the splitString docstring:
NOTE: this function is not performant and should never be used.
This replaces trivial uses of splitString for splitting version
strings with the (potentially builtin) splitVersion.
2019-09-26 17:42:49 +02:00
Linus Heckemann
f0f3bd8d96
Merge pull request #68227 from volth/patch-362
...
network-interfaces.nix: escape '.' in interface names passed to sysctl
2019-09-26 12:16:24 +02:00
Jörg Thalheim
46dfb2d090
nixos/sysctl: reduce prio of "kernel.kptr_restrict" to mkDefault
...
Users should be able to override this value without having to use mkForce.
2019-09-26 10:09:31 +01:00
Peter Hoeg
8cc9d24fe1
Merge pull request #69387 from peterhoeg/f/optimise
...
nixos/nix-optimise: be smarter about when we run the store optimiser
2019-09-26 13:10:39 +08:00
Dmitry Kalinkin
c455adcc42
Merge branch 'master' into staging-next
...
Fixes eval on darwin after #69072
Resolved conflict in pkgs/tools/security/thc-hydra/default.nix
Basically had to revert a1c0e10564
which
adapts #69210 to master that doesn't yet have
329a88efa7
Tested using maintainers/scripts/eval-release.sh before and after to see
that the fix works
2019-09-25 19:21:46 -04:00
Marek Mahut
a28f136bdb
Merge pull request #69297 from aanderse/zabbix
...
nixos/zabbixServer: move pid file from default (/tmp) to /run/zabbix …
2019-09-25 20:35:50 +02:00
edef
429644bf4c
nixos/rabbitmq: use an attrset for example configItems
2019-09-25 17:38:00 +00:00
markuskowa
389c287b90
Merge pull request #69398 from Evils-Devils/fancontrol
...
nixos/fancontrol: init
2019-09-25 18:34:16 +02:00
Evils-Devils
6765f049f2
Update nixos/modules/services/hardware/fancontrol.nix
...
Co-Authored-By: markuskowa <markus.kowalewski@gmail.com>
2019-09-25 17:31:20 +02:00
Evils-Devils
44e2ff26b8
Update nixos/modules/services/hardware/fancontrol.nix
...
Co-Authored-By: markuskowa <markus.kowalewski@gmail.com>
2019-09-25 17:24:49 +02:00
Evils
401b0b0c7b
fancontrol: load config from configuration.nix
2019-09-25 17:05:09 +02:00
Evils-Devils
5fe72ee446
Update nixos/modules/services/hardware/fancontrol.nix
...
Co-Authored-By: markuskowa <markus.kowalewski@gmail.com>
2019-09-25 14:49:28 +02:00
Evils
baa642e8b3
fancontrol: more cleanup
2019-09-25 14:42:22 +02:00
Evils
30f8bc974c
update cfg to match section change
2019-09-25 13:43:06 +02:00
Evils-Devils
6c19673fef
Update nixos/modules/services/hardware/fancontrol.nix
...
Co-Authored-By: markuskowa <markus.kowalewski@gmail.com>
2019-09-25 13:28:16 +02:00
Franz Pletz
66967ec752
Merge pull request #67232 from ck3d/container-useHostResolvConf
...
machinectl compliant NixOS installation
2019-09-25 09:34:17 +00:00
Evils
81b6dec3c8
fancontrol service init
2019-09-25 05:05:32 +02:00
Peter Hoeg
81cd220c67
nixos/pymks: log to journal
2019-09-25 06:33:34 +08:00
Peter Hoeg
4b34dd3120
Merge pull request #69300 from peterhoeg/f/ha2
...
nixos/home-assistant: set bluetooth perms
2019-09-25 04:49:31 +08:00
Robin Gloster
6b87fb6df2
Merge pull request #69346 from rvolosatovs/fix/systemd-dhcp
...
nixos/network: replace deprecated DHCP=both by DHCP=yes
2019-09-24 14:14:30 +02:00
Florian Klink
e813eb2b65
nixos/gitlab: Update release notes and documentation ( #69313 )
...
nixos/gitlab: Update release notes and documentation
2019-09-24 13:00:35 +02:00
Roman Volosatovs
a0a3675bdf
nixos/network: replace deprecated DHCP=both by DHCP=yes
2019-09-24 11:33:36 +02:00
Vladimír Čunát
eab41878ac
Merge branch 'master' into staging-next
2019-09-24 08:14:34 +02:00
Jörg Thalheim
bfed455de3
Merge pull request #68946 from volth/escape
...
treewide: fix string escapes
2019-09-24 04:19:12 +01:00
Jörg Thalheim
c5bc77d151
Merge pull request #67748 from typetetris/yubico-local-auth
...
Yubico local auth
2019-09-24 03:31:39 +01:00
Notkea
981177e4dd
nixos/postgresql-wal-receiver: remove restart limit ( #67857 )
...
useful in case of network disruption
2019-09-23 22:51:26 +03:00
talyz
dfc43f7d0a
nixos/gitlab: Document the restriction introduced on statePath
...
The state path now, since the transition from initialization in
preStart to using systemd-tmpfiles, has the following restriction: no
parent directory can be owned by any other user than root or the user
specified in services.gitlab.user. This is a potentially breaking
change and the cause of the error isn't immediately obvious, so
document it both in the release notes and statePath description.
2019-09-23 17:55:58 +02:00
Peter Hoeg
e537a0a11e
home-assistant: set capabilities for bluetooth
2019-09-23 21:54:16 +08:00
Robin Gloster
30591314e5
Merge pull request #68970 from teto/rngd
...
qemu-guest: allow to override security.rngd
2019-09-23 15:53:38 +02:00
Aaron Andersen
32a38d50bb
nixos/zabbixServer: move pid file from default (/tmp) to /run/zabbix to avoid issues with PrivateTmp=true
2019-09-23 09:35:51 -04:00
Franz Pletz
0dc4fe0a44
nixos/systemd: pick more upstream tmpfiles confs
...
In #68792 it was discovered that /dev/fuse doesn't have
wordl-read-writeable permissions anymore. The cause of this is that the
tmpfiles examples in systemd were reorganized and split into more files.
We thus lost some of the configuration we were depending on.
In this commit some of the new tmpfiles configuration that are
applicable to us are added which also makes wtmp/lastlog in the pam
module not necessary anymore.
Rationale for the new tmpfile configs:
- `journal-nowcow.conf`: Contains chattr +C for journald logs which
makes sense on copy-on-write filesystems like Btrfs. Other filesystems
shouldn't do anything funny when that flag is set.
- `static-nodes-permissions.conf`: Contains some permission overrides
for some device nodes like audio, loop, tun, fuse and kvm.
- `systemd-nspawn.conf`: Makes sure `/var/lib/machines` exists and old
snapshots are properly removed.
- `systemd-tmp.conf`: Removes systemd services related private tmp
folders and temporary coredump files.
- `var.conf`: Creates some useful directories in `/var` which we would
create anyway at some point. Also includes
`/var/log/{wtmp,btmp,lastlog}`.
Fixes #68792 .
2019-09-23 15:23:31 +02:00
Florian Klink
6262e83f5f
nixos/gitlab: Add gnutar and gzip to gitlab-sidekiq's path ( #68908 )
...
nixos/gitlab: Add gnutar and gzip to gitlab-sidekiq's path
2019-09-23 06:40:52 +02:00
Peter Hoeg
55509279a9
Merge pull request #69260 from volth/patch-369
...
nixos/mailcatcher: add bind capabilities
2019-09-23 11:27:32 +08:00
Peter Hoeg
423eb16913
Merge pull request #15560 from peterhoeg/nm_dnsdhcp
...
nixos/networkmanager: tiny cleanups
2019-09-23 10:16:32 +08:00
volth
6c038cd409
nixos/mailcatcher: add bind capabilities
2019-09-22 19:49:26 +00:00
Jan Tojnar
11c2b06dd2
Merge branch 'master' into staging-next
2019-09-22 16:39:12 +02:00
Martin Milata
2adb03fdae
nixos/wordpress: generate secrets locally
...
Use /dev/urandom to generate keys and salts instead of downloading them
from https://api.wordpress.org/secret-key/1.1/salt/
2019-09-22 14:33:08 +02:00
Peter Simons
a486f0178d
Merge pull request #68950 from peti/t/nixos-doc-fix
...
nixos: improve the example that shows how to include nvidia_x11 in boot.extraModulePackages
2019-09-22 11:53:52 +02:00
Vladimír Čunát
22a216849b
Re-Revert "Merge branch 'staging-next'"
...
This reverts commit f8a8fc6c7c
.
2019-09-22 09:38:09 +02:00