Jörg Thalheim
6838762997
Merge pull request #30477 from Lassulus/encrypted-devices
...
Encrypted devices: don't override crytpoModules, fix example
2017-10-16 19:00:41 +01:00
Bjørn Forsman
497108b456
nixos/atd: remove "batch" from setuid wrappers
...
"batch" is a shell script so invoking it via setuid wrapper never worked
anyway. (The kernel drops perms on executables with shebang.) A previous
nixpkgs commit made "batch" invoke the NixOS setuid "at" wrapper to gain
needed privileges.
Thanks to @yesbox for noticing.
2017-10-16 19:08:19 +02:00
lassulus
77be4d91f7
encrypted devices: provide working example
2017-10-16 17:46:46 +02:00
lassulus
f804a8ff98
encrypted devices: don't override default cryptoModules
2017-10-16 17:46:06 +02:00
Jason A. Donenfeld
f6d8a96993
nsswitch: use [NOTFOUND=return] for mdns
...
Commit 987aac7
and issue #18183 were intended to fix support for other
things, but in the process, changed mdns_minimal to use the wrong return
setting, resulting in permanent failures in early boot, affecting things
like issue #30459 .
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
2017-10-16 15:11:58 +02:00
Markus Mueller
60b0db0e08
gitlab: link tmp/ directory to writable path
2017-10-16 14:58:02 +02:00
Markus Mueller
f250015ea3
nixos/gitlab: fix uploades directory permissions
2017-10-16 14:58:02 +02:00
Graham Christensen
55bc53d1dd
Merge pull request #30258 from srhb/tz-nospace
...
nixos/config/timezone: Disallow spaces
2017-10-14 10:27:09 -04:00
Bjørn Forsman
0ff4bb5f87
nixos: run parted with --script option
...
-s, --script: never prompts for user intervention
Sometimes the NixOS installer tests fail when they invoke parted, e.g.
https://hydra.nixos.org/build/62513826/nixlog/1 . But instead of exiting
right there, the tests hang until the Nix builder times out (and kills
the build). With this change the tests would instead fail immediately,
which is preferred.
While at it, use "parted --script" treewide, so nobody gets build
timeout due to parted error (or misuse). (Only nixos/ use it, and only
non-interactive.)
A few instances already use the short option "-s", convert them to long
option "--short".
2017-10-14 15:29:02 +02:00
Peter Hoeg
07bc859e9a
Revert "ssh: deprecate use of old DSA keys"
...
This reverts commit 65b73d71cb
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
bdbba026f3
Revert "dnsmasq nixos: make sure it always runs"
...
This reverts commit 1917e69b54
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
e01bb0c0d0
Revert "smartd: set drive timeout"
...
This reverts commit 41306ca505
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
b366760cf5
Revert "hyperv-daemons: add nixos module"
...
This reverts commit 0944d44f1b
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
6fd4209594
Revert "networking: add option to toggle the wait-online service"
...
This reverts commit 8758f476b3
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
0f486c46b2
Revert "networkd: only wait for network to be online if configured to do so"
...
This reverts commit 8f21e089a8
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
2cd4ebfe93
Revert "display-manager: systemd-udev-settle serves no purpose"
...
This reverts commit 3571163858
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
3211098632
Revert "sshguard: make it run"
...
This reverts commit 69d8b81b4b
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
2b5aab4b0f
Revert "sensu: nixos module"
...
This reverts commit 707c3ac435
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
279ca5738a
Revert "nixos: kodi user"
...
This reverts commit 1faa5b6b36
.
2017-10-14 14:42:49 +08:00
Peter Hoeg
8df1c9ac17
Revert "firewalld: init at 0.4.4.4"
...
This reverts commit 178a96f99b
.
2017-10-14 14:42:48 +08:00
Peter Hoeg
ff3fd1027c
Revert "networkmanager: dns and extraConfig"
...
This reverts commit 0dd25e585f
.
2017-10-14 14:42:48 +08:00
Peter Hoeg
2c67873b7d
Revert "include firmware with enableAllFirmware"
...
This reverts commit bd5fd61967
.
2017-10-14 14:42:48 +08:00
Peter Hoeg
f359096210
Revert "sddm: silence error about missing wayland directory"
...
This reverts commit 46a92333e9
.
2017-10-14 14:42:48 +08:00
Peter Hoeg
46a92333e9
sddm: silence error about missing wayland directory
2017-10-14 14:38:04 +08:00
Peter Hoeg
bd5fd61967
include firmware with enableAllFirmware
2017-10-14 14:38:04 +08:00
Peter Hoeg
0dd25e585f
networkmanager: dns and extraConfig
2017-10-14 14:38:04 +08:00
Peter Hoeg
178a96f99b
firewalld: init at 0.4.4.4
...
Includes systemd module.
2017-10-14 14:38:04 +08:00
Peter Hoeg
1faa5b6b36
nixos: kodi user
2017-10-14 14:38:04 +08:00
Peter Hoeg
707c3ac435
sensu: nixos module
2017-10-14 14:38:04 +08:00
Peter Hoeg
69d8b81b4b
sshguard: make it run
2017-10-14 14:38:04 +08:00
Peter Hoeg
3571163858
display-manager: systemd-udev-settle serves no purpose
2017-10-14 14:38:04 +08:00
Peter Hoeg
8f21e089a8
networkd: only wait for network to be online if configured to do so
2017-10-14 14:38:04 +08:00
Peter Hoeg
8758f476b3
networking: add option to toggle the wait-online service
2017-10-14 14:38:04 +08:00
Peter Hoeg
0944d44f1b
hyperv-daemons: add nixos module
2017-10-14 14:38:04 +08:00
Peter Hoeg
41306ca505
smartd: set drive timeout
2017-10-14 14:38:04 +08:00
Peter Hoeg
1917e69b54
dnsmasq nixos: make sure it always runs
...
By default we only restart if the dnsmasq daemon fails but we introduce an
option to always keep it running.
2017-10-14 14:38:04 +08:00
Peter Hoeg
65b73d71cb
ssh: deprecate use of old DSA keys
...
They are not safe and shouldn't be used.
2017-10-14 14:38:04 +08:00
Jörg Thalheim
b90f50862f
Merge pull request #30324 from florianjacob/firewall-clarify-logging
...
nixos/firewall: Rename misleading rejected to refused in logging
2017-10-13 20:25:21 +01:00
Dan Peebles
56e18c50cc
Revert "Simple proof of concept for how to do other types of services"
...
This reverts commit 7c3253e519
.
I included this in another push by accident and never intended for it to
be in mainline. See https://github.com/NixOS/nixpkgs/pull/26075 if you
want more.
2017-10-13 09:17:13 -04:00
Franz Pletz
5ec10da86b
Merge pull request #30356 from bflyblue/plex-1.9.5
...
plex: 1.9.2 -> 1.9.5
2017-10-13 13:10:58 +02:00
Franz Pletz
c6218193dd
Merge pull request #30364 from Ma27/compton/opacity-rules-support
...
services.compton: add `opacityRules` option
2017-10-13 13:09:53 +02:00
Yegor Timoshenko
22505d8df4
connman: do not restart after suspend
2017-10-13 13:05:02 +02:00
Matt McHenry
bbec429f7a
djbdns: fix root server list at build time
...
as suggested by @peterhoeg in
1b7e5eaa79 (commitcomment-24560631)
fixes #30379
2017-10-13 10:29:12 +01:00
Profpatsch
2864bc8fd9
Revert "desktop-managers: do not leak feh to PATH"
2017-10-13 10:48:07 +02:00
Peter Hoeg
f7ba92bfa3
Merge pull request #30286 from yegortimoshenko/patch-2
...
desktop-managers: do not leak feh to PATH
2017-10-13 11:13:21 +08:00
Peter Hoeg
829730d38f
nixos user: reserve kodi
2017-10-13 10:34:27 +08:00
Maximilian Bosch
4b50d543bd
services.compton: add opacityRules
option
2017-10-12 21:14:01 +02:00
Shaun Sharples
caee93f3d4
Fix warning about unknown escape sequences
...
systemd warns about:
Ignoring unknown escape sequences: "/nix/store/8f0l1w9g7iv2gz63xzsxfl66ri1cfbkl-plex-1.9.5.4339/usr/lib/plexmediaserver/Plex\ Media\ Server
From a discussion on the forums it seems the 'sh -c' is not needed:
https://forums.plex.tv/discussion/216757/ubuntu-16-04-executable-path-contains-special-characters-error-with-systemd
2017-10-12 19:44:58 +02:00
Franz Pletz
e13d0c3435
Merge pull request #30172 from mayflower/cleanup/firmware-modules
...
nixos: clean up wifi firmware & default kernel modules
2017-10-12 16:32:01 +02:00
Patrick Chilton
e3675fedc7
mate-power-manager: init at 1.18.0
2017-10-12 08:22:21 +02:00