JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
60,012 Commits 2 Branches 0 Tags 13 GiB
5248ba84fd
Commit Graph

2559 Commits

Author SHA1 Message Date
Joachim Fasting
e9cd877921 nixos: resolve uid/gid conflicts 
This patch resolves all uid/gid conflicts except for nobody/nogroup (seems
to make sense that these are the same).
All conflicts where determined mechanically, but resolutions were manual.
This patch also marks uids/gids with no corresponding group/user as "unused"
(aka. reserved).

Briefly,

- tss group conflicts with dhcpcd
  The tss group id conflicts with dhcpcd: assign
  a new number and add a corresponding tss user.
- elasticsearch uid conflicts with haproxy gid
- resolve firebird/munin conflict
- fix fourstorehttp{,d} typo
- fix ghostOne typo: the service module refers to gids.ghostone, so use that
  in ids
- memcached uid conflicts with users gid
- nagios uid conflicts with disks gid
- nscd uid conflicts with wheel gid
- ntp uid conflicts with tty gid
- resolve postfix/postdrop id uid
- redis uid conflicts with keys gid
- sshd uid conflicts with kmem gid
- tcryptd uid conflicts with openldap gid
- unifi uid conflicts with docker gid
- uptimed uid conflicts with utmp gid
- zope2 uid conflicts with connman gid
- tomcat uid/gid mismatch
 2015-03-16 09:58:13 +01:00
Austin Seipp
ef95600372 Merge pull request #6771 from joachifm/apparmor-2.9 
Apparmor 2.9
 2015-03-15 14:16:24 -05:00
Ricardo M. Correia
7c8247a8c5 grsecurity: Update stable and test patches 
stable: 3.1-3.14.35-201503071140 -> 3.1-3.14.35-201503092203
test:   3.1-3.18.9-201503071142  -> 3.1-3.19.1-201503122205
 2015-03-15 03:49:58 +01:00
William A. Kennington III
c200c1e0a1 Merge pull request #6813 from globin/fix/elantech-trackpoint-scrolling 
Add Elanthec PS/2 Trackpoint (Thinkpad L430)
 2015-03-14 17:01:13 -07:00
Robin Gloster
a8a350e679 Add Elanthec PS/2 Trackpoint (Thinkpad L430) 2015-03-15 00:09:04 +01:00
koral
9c4cbaa553 Fix mpd configuration (enclosing quotes needed). 2015-03-14 12:15:34 +00:00
lethalman
f72d1abb79 Merge pull request #5846 from arno01/nginx 
nginx service improvements
 2015-03-13 11:41:27 +01:00
Vladimír Čunát
208d1f24db xfce: more update fallout 
- forgotten mousepad update, including some wrapping magic
- dealing with panel plugins (either fix or mark as broken)
	CC maintainer @AndersonTorres.
- remove some libxfcegui4 occurrences, as it's being phased out
- minor stuff
 2015-03-12 23:02:15 +01:00
lethalman
14ed261fc7 Merge pull request #6765 from gebner/ibus-plugins 
Add ibus-qt and ibus-anthy.
 2015-03-12 14:35:23 +01:00
Joachim Fasting
7a9a24a95e Update AppArmor service module 
- Use AppArmor 2.9
- Enable PAM support
 2015-03-12 11:49:05 +01:00
Kirill Elagin
356810b178 cupsd: rename cupsd.service to cups.service 2015-03-12 09:00:56 +03:00
Gabriel Ebner
d23ed364b5 Add ibus-qt. 2015-03-11 21:54:04 +01:00
Gabriel Ebner
59da79c733 ibus: Enable XIM support. 
This allows firefox to use ibus.
 2015-03-11 21:54:04 +01:00
Gabriel Ebner
f222abea44 Add programs.ibus config option to enable ibus and plugins. 2015-03-11 21:53:34 +01:00
Thomas Tuegel
61cf7e1265 Merge branch 'kde5' 2015-03-11 11:49:45 -05:00
Thomas Tuegel
f370af91ad kde5: use ksshaskpass for SSH_ASKPASS 2015-03-11 11:49:29 -05:00
Thomas Tuegel
4b10907152 ssh: make askPassword an option 
By making askPassword an option, desktop environment modules can
override the default x11_ssh_askpassword with their own equivalent for
better integration. For example, KDE 5 uses plasma5.ksshaskpass instead.
 2015-03-11 11:49:29 -05:00
Thomas Tuegel
5b5b7aa951 kde5: add kde-workspace and kde-runtime to systemPackages 2015-03-11 11:49:28 -05:00
lethalman
fe79bf34a5 Merge pull request #6512 from bjornfor/nixos-haproxy-cleanup 
nixos/haproxy: remove broken default 'config'
 2015-03-11 16:29:06 +01:00
Eelco Dolstra
8a9e427174 Manual tweak 2015-03-11 15:34:57 +01:00
lethalman
c8ac069772 Merge pull request #6724 from anderspapitto/local 
Add x11 service for unclutter
 2015-03-11 15:32:40 +01:00
Arseniy Seroka
ef37154c82 Merge pull request #6739 from joachifm/refactor-tarsnap-service 
nixos: refactor tarsnap backup service module
 2015-03-11 11:22:32 +03:00
Arseniy Seroka
1c58c3a772 Merge pull request #6345 from puffnfresh/feature/mtrack-options 
Add more options to multitouch (mtrack) module
 2015-03-11 11:10:51 +03:00
William A. Kennington III
26020cfe8a nixos/lightdm: Add a background option 2015-03-10 15:57:46 -07:00
William A. Kennington III
e519414e1f nixos/lightdm: Fix data directory 2015-03-10 14:55:54 -07:00
William A. Kennington III
3a67a51689 nixos/lightdm: Small cleanup 2015-03-10 14:35:49 -07:00
William A. Kennington III
ffed8a85bc nixos/sddm: Hide users which don't have login shells 2015-03-10 14:32:53 -07:00
William A. Kennington III
5893d2ecd3 nixos/lightdm: More Cleanups 2015-03-10 14:23:43 -07:00
William A. Kennington III
7b6e2e1c68 lightdm: Fix rendering 2015-03-10 14:03:18 -07:00
Luca Bruno
6fdd92742c Document container@ systemd service 2015-03-10 16:23:00 +01:00
lethalman
27f3f254d3 Merge pull request #6540 from k0ral/transmission 
Simplify (and fix) settings for transmission module
 2015-03-10 13:26:03 +01:00
lethalman
70527b87a1 Merge pull request #6440 from k0ral/fcgiwrap 
Updated fcgiwrap's systemd unit to match upstream version.
 2015-03-10 13:18:46 +01:00
Joachim Fasting
1bdd12ed69 nixos: refactor tarsnap backup service module 
Major changes
- Port to systemd timers: for each archive configuration is created a
  tarsnap@archive-name.timer which triggers the instanced service unit
- Rename the `config` option to `archives`

Minor/superficial improvements
- Restrict tarsnap service capabilities
- Use dirOf builtin
- Set executable bit for owner of tarsnap cache directory
- Set IOSchedulingClass to idle
- Humanize numbers when printing stats
- Rewrite most option descriptions
- Simplify assertion
 2015-03-10 12:35:58 +01:00
William A. Kennington III
4940e643cc nixos/display-manager: Support configurable hidden users 2015-03-09 18:10:31 -07:00
William A. Kennington III
66bfdf6eb0 nixos/lightdm: We now use a global lightdm.conf 2015-03-09 17:59:21 -07:00
Eelco Dolstra
475df1a350 switch-to-configuration: Don't print already active target units 
Since we restart all active target units (of which there are many),
it's hard to see the units that actually matter. So don't print that
we're starting target units that are already active.
 2015-03-09 16:51:06 +01:00
Eelco Dolstra
a574065a81 nixos-rebuild: Add ‘dry-activate’ command 
‘nixos-rebuild dry-activate’ builds the new configuration and then
prints what systemd services would be stopped, restarted etc. if the
configuration were actually activated. This could be extended later to
show other activation actions (like uids being deleted).

To prevent confusion, ‘nixos-rebuild dry-run’ has been renamed to
‘nixos-rebuild dry-build’.
 2015-03-09 16:50:59 +01:00
Eelco Dolstra
8cb3e3b864 httpd: Disable insecure protocols/ciphers by default 
This makes us resistant to FREAK and similar attacks.
 2015-03-09 14:18:12 +01:00
Eelco Dolstra
d31202fba2 sshd: Enable seccomp sandboxing 2015-03-09 11:27:19 +01:00
lethalman
9867f4bdef Merge pull request #6720 from nslqqq/nmhooks 
New NetworkManager Dispatcher scripts options
 2015-03-09 10:36:10 +01:00
Anders Papitto
887a547ac9 Add x11 service for unclutter 
modeled after the redshift service
 2015-03-08 20:12:18 -07:00
William A. Kennington III
5b059416b8 Merge pull request #6699 from hakuch/fix_samba 
Samba: Fixed "syncPasswordsByPam".
 2015-03-08 16:09:29 -07:00
obadz
e5d4624420 PAM/eCryptfs now able to mount ecryptfs'd home directories on login 2015-03-08 16:03:51 -07:00
Nikita Mikhailov
579159c72b Add dispatcher configuration options to NetworkManager module 2015-03-08 20:24:53 +01:00
Unai Zalakain
581a90bad8 Optional user and group to run the MPD 2015-03-08 10:18:40 +00:00
Jesse Haber-Kucharsky
5a1950d985 Samba: Fixed "syncPasswordsByPam". 2015-03-07 17:56:46 +00:00
Vladimír Čunát
dfaded0b8e nixos docs: fix typo 2015-03-07 14:44:13 +01:00
Nikolay Amiantov
b802018482 stage-1: fix hibernation (close #6675) 
Fixes #6617.
 2015-03-07 13:00:08 +01:00
Arseniy Seroka
30e6f1b4ea slurm: impl basic configuration 2015-03-07 00:26:57 +03:00
Arseniy Seroka
0b1cc3cd51 slurm: impl simple service 2015-03-07 00:26:57 +03:00
Arseniy Seroka
69e59e9962 munge: add service 2015-03-07 00:26:52 +03:00
Eelco Dolstra
3b9b620656 Revert "linux: disable UEVENT_HELPER*" 
This reverts commit 9f87f3ccb0 because
it causes /proc/sys/kernel/hotplug to not be cleared on Linux <= 3.14.
 2015-03-06 15:59:06 +01:00
Nikolay Amiantov
4fde098eec Merge pull request #6677 from abbradar/sddm 
Add SDDM display manager
 2015-03-05 21:03:43 +03:00
Nikolay Amiantov
4f317767da lightdm: don't leave a shell running 2015-03-05 20:49:45 +03:00
Nikolay Amiantov
264c6892f2 nixos/uim: capitalize description 2015-03-05 20:49:45 +03:00
Nikolay Amiantov
db5b08cfaf nixos/sddm: add display manager 2015-03-05 20:49:26 +03:00
Eelco Dolstra
9bb586943a Deal with virtualisation.xen.stored in a more standard way 2015-03-05 12:46:50 +01:00
aszlig
19a7494600
nixos: Add VM test for i3 window manager. 
Currently just makes sure that by default it's possible to open a
terminal.

And exactly this should be the main point that might confuse users of i3
in NixOS, because i3 doesn't print a warning/error if it is unable to
start the terminal emulator.

Thanks to @waaaaargh for reporting this issue.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
 2015-03-05 05:21:36 +01:00
Luca Bruno
b93e8bab3a nixos/xen: do not use derivation in the default values 
The xen package is broken on i686, so this would break the generation
of the nixos manual.
 2015-03-04 12:05:58 +01:00
Eelco Dolstra
1002fb6433 Add "input" group 
This is required by systemd >= 215.
 2015-03-03 20:27:09 +01:00
Eelco Dolstra
8546ec7c74 Fix some uid/gid clashes 2015-03-03 20:26:36 +01:00
Eelco Dolstra
a4e0278fcd Create /dev/nvidia-uvm for CUDA support 2015-03-03 20:24:14 +01:00
Arseniy Seroka
7ce77b5752 slurm: add pkg 2015-03-02 22:10:58 +03:00
lethalman
c97d7819ab Merge pull request #6624 from joachifm/grsec-lock 
nixos: grsec-lock service fixes
 2015-03-02 18:49:39 +01:00
Joachim Fasting
18320d3b21 nixos: fix grsec-lock requires 2015-03-02 18:39:04 +01:00
Joachim Fasting
ccd6f5a313 nixos: make the grsec-lock unit depend on the path it writes to 
The grsec-lock unit fails unless /proc/sys/kernel/grsecurity/grsec_lock
exists and so prevents switching into a new configuration after enabling
grsecurity.sysctl.
 2015-03-02 18:39:01 +01:00
lethalman
373c4ce0ec Merge pull request #6605 from AndersonTorres/afterstep 
Adding Afterstep to nixos window manager modules
 2015-03-02 18:00:28 +01:00
Tobias Geerinckx-Rice
9f87f3ccb0 linux: disable UEVENT_HELPER* 
Deprecated since 2006: http://lwn.net/Articles/166954/
 2015-03-01 03:31:59 +01:00
Eelco Dolstra
307064ceb5 Don't use machinectl to shut down containers 
If the host is shutting down, machinectl may fail because it's
bus-activated and D-Bus will be shutting down. So just send a signal
to the leader process directly.

Fixes #6212.
 2015-02-28 19:23:00 +01:00
AndersonTorres
929485b645 Adding Afterstep to nixos modules 2015-02-28 11:14:33 -03:00
AndersonTorres
5472af91f2 Fluxbox: update to 1.3.7 2015-02-28 11:04:20 -03:00
Jaka Hudoklin
6dc0938a3e Merge pull request #6591 from lseppala/master 
Fix rebooting containers where resolv.conf is a symlink
 2015-02-28 12:19:01 +01:00
Joachim Fasting
0473b4ae8d nixos: citerefentry markup in lxc option descriptions 2015-02-28 09:21:48 +01:00
Joachim Fasting
d375550ead nixos: add a few missing type specifiers under boot.* 2015-02-28 09:19:23 +01:00
Eelco Dolstra
568df3f4a9 Disable the cjdns test 
The cjdns module uses "import from derivation", which is a bad thing
(it causes building at evaluation time).
 2015-02-27 20:55:44 +01:00
Lane Seppala
4106a3b74e Fix rebooting containers where resolv.conf is a symlink 2015-02-27 10:27:18 -07:00
Eelco Dolstra
22d2fc3657 Fix "systemctl reload container@" 
Fixes #5179.
 2015-02-27 14:32:54 +01:00
Rob Vermaas
24e0565407 Only start fetch-keys for GCE image after ip-up. 2015-02-27 10:48:15 +00:00
koral
c1cefa1a58 Simplify (and fix) settings for transmission module. 2015-02-26 22:21:27 +00:00
Rob Vermaas
e4928b8955 GCE image: Pass header to metadata service calls. 2015-02-26 19:20:43 +00:00
Sander van der Burg
7b27af61fb Add NixOS global binaries to the PATH 2015-02-26 17:29:49 +00:00
Eelco Dolstra
6177710ac7 Merge pull request #6046 from ts468/xen 
Update: Xen 4.5 + NixOS Xen modules
 2015-02-26 10:15:05 +01:00
lethalman
b6672f232a Merge pull request #6283 from mdorman/master 
Fix initial-install issues with couchdb.nix.
 2015-02-26 10:11:18 +01:00
lethalman
d791335ac2 Merge pull request #6518 from ehmry/u9fs 
U9fs
 2015-02-26 09:41:18 +01:00
William A. Kennington III
9ce0c1cb71 nixos/consul: Fix timeout bugs and json formatting 2015-02-25 15:42:43 -08:00
Thomas Strobel
3d4fbb874c Update: add new Xen versions + update NixOS Xen modules 
Versions of XEN:
- Xen 4.5
- Xen 4.5 + XenServer patches
- Xen 4.4.1
 2015-02-25 23:30:44 +01:00
William A. Kennington III
f27fa79aa9 nixos/dnsmasq: Fix service name typo 2015-02-25 09:22:16 -08:00
Eelco Dolstra
36d0f367de ssh-agent: Fix asking for confirmation via $SSH_ASKPASS 
This was lost back in
ffedee6ed5. Getting this to work is
slightly tricky because ssh-agent runs as a user unit, and so doesn't
know the user's $DISPLAY.
 2015-02-25 14:31:17 +01:00
Eelco Dolstra
93902ea108 nsswitch.conf: Omit ldap unless ldap is enabled 
This prevents programs from trying to find nss_ldap.
 2015-02-25 14:31:13 +01:00
William A. Kennington III
e453f99446 nixos/networkd: Add an assertion for unsupported rstp 2015-02-24 13:09:34 -08:00
lethalman
2fdad12a8d Merge pull request #6552 from nslqqq/master 
Correct NetworkManager documentation
 2015-02-24 18:32:24 +01:00
Nikita Mikhailov
25e29b3870 Correct NetworkManager documentation 2015-02-24 22:09:36 +05:00
Lluís Batlle i Rossell
b26e939111 fix pam (OATH related) 
the pam config was wrong.

Issue #6551
 2015-02-24 17:52:41 +01:00
Eelco Dolstra
16cf3ee9da Ensure that the home directory exists even if the user already exists 2015-02-24 11:57:38 +01:00
Eduard Bachmakov
4bf66ba89c ddclient module: fix module 
* rewrite to systemd.services
* disable forking to give systemd better control
* verifiably run as ddclient user
* expose ssl option
* unset default value for dyndns server
* rename option "web" to "use" to be consistent with ddclient docs
* add descriptions
* add types to options
* clean up formatting
 2015-02-23 22:37:20 -05:00
Jaka Hudoklin
1cddb5be20 mongodb: remove lock file on restart 2015-02-23 20:40:13 +01:00
Eelco Dolstra
b70bd0879b sshd: Generate a ed25519 host key 2015-02-23 17:00:07 +01:00
Emery Hemingway
446580f3cd nixos: u9fs service module 2015-02-22 12:16:58 -05:00
Bjørn Forsman
d5017499a2 nixos/redis: capitalize service description 2015-02-22 16:54:14 +01:00
Bjørn Forsman
25a6745310 nixos/fail2ban: capitalize service description 2015-02-22 16:54:14 +01:00