| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
| |
jq 1.7 updated it's behaviour and now throws an error
if the first argument is an empty string. It now needs
"." to pass the input through.
|
| |
|
|
| |
Reduces size of networkd module by moving unit file generation code into a util.
|
| |
|
|
|
|
|
|
| |
replaceStrings has been in nix since 2015(nix 1.10)
so it is safe to remove the fallback
https://github.com/nixos/nix/commit/d6d5885c1567454754a0d260521bafa0bd5e7fdb
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Before this patch, if we:
1. add a new user in the config,
2. mount /home seperately,
3. not set neededForBoot for /home,
4. and run `nixos-rebuild boot`,
the newly added user's home will not be created after a reboot. This
is because when nixos/modules/config/update-users-groups.pl is running
in stage 2 to setup users, /home is not mounted.
This patch fixes this issue.
|
| |
|
|
|
|
| |
names in systemd units
Co-authored-by: ajs124 <git@ajs124.de>
|
| |
|
|
| |
...and escape quotation marks and backslashes.
|
| | |
|
| | |
|
| | |
|
| |\
| |
| | |
nixos: add functions and documentation for escaping systemd Exec* directives
|
| | |
| |
| |
| |
| |
| |
| | |
it's really easy to accidentally write the wrong systemd Exec* directive, ones
that works most of the time but fails when users include systemd metacharacters
in arguments that are interpolated into an Exec* directive. add a few functions
analogous to escapeShellArg{,s} and some documentation on how and when to use them.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
With the previous change that enabled error propagation through
`inherit_errexit`, the script would fail if `errexit` was set, but
`inherit_errexit` was not. This is due to `shopt -p` exiting with an
error if the option is disabled. To work around this, use the exit
code instead of the text value returned by `shopt -p`.
Fixes #160869.
|
| |/
|
|
|
|
|
|
|
|
| |
If an error occurs while trying to read a secret file, we want that
error to propagate to the main shell context. That means we have to
set the `inherit_errexit` option, which allows errors from subshells
to propagate to the outer shell. Also, the subshell cannot run as part
of another command, such as `export`, since that will simply ignore
the subshell exit status and only respect `export`s exit status; first
assigning the value to a variable and then exporting it solves issue.
|
| | |
|
| |
|
|
|
| |
if /usr is split from root then it has to be mounted at boot
See https://github.com/NixOS/nixpkgs/issues/146115
|
| |\
| |
| | |
nixos/boot: add /var/lib/nixos to pathsNeededForBoot
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
/var/lib/nixos is used by update-users-groups.pl in the activation
script for storing uid/gid mappings. If this has its own mountpoint
(as is the case in some setups with fine-grained bind mounts pointing
into persistent storage), the mappings are written to /var/lib, /var,
or /. These may be backed by a tmpfs or (otherwise ephemeral storage),
resulting in the mappings not persisting between reboots.
|
| | |
| |
| |
| | |
This has been synonymous for ~5y.
|
| | | |
|
| |/
|
|
| |
option
|
| | |
|
| |
|
|
|
|
|
|
| |
- Give a more accurate description of how fileSystems.<name/>.neededForBoot
works
- Give a more detailed description of how fileSystems.<name/>.encrypted.keyFile
works
|
| | |
|
| | |
|
| |\
| |
| | |
nixos/gitlab: Add support for secure secrets and more
|
| | |
| |
| |
| |
| |
| | |
Introduce new functions which allows modules to define options where,
if the input is an attrset and the output is JSON, the user can define
arbitrary secrets.
|
| |/ |
|
| |
|
|
| |
is parent of mount point check (#51541)
|
| | |
|
| |
|
|
| |
And use new `config.system.build.fileSystems` property everywhere.
|
| |
|
|
| |
All shell packages must export the shellPath passthru
|
| |
|
|
| |
The string type is still available for backward-compatiblity.
|
| | |
|
| |
|