summary refs log tree commit diff
path: root/nixos/modules
Commit message (Collapse)AuthorAge
* smartd module: optionSet -> submoduleEric Sagnes2016-09-13
|
* rippled module: optionSet -> submoduleEric Sagnes2016-09-13
|
* logcheck module: optionSet -> submoduleEric Sagnes2016-09-13
|
* brscan4 module: optionSet -> submoduleEric Sagnes2016-09-13
|
* bacula module: optionSet -> submoduleEric Sagnes2016-09-13
|
* pam module: optionSet -> submoduleEric Sagnes2016-09-13
|
* acme module: optionSet -> submoduleEric Sagnes2016-09-13
|
* users-groups module: optionSet -> submoduleEric Sagnes2016-09-13
|
* audio services: use mkEnableOption (#18524)Langston Barrett2016-09-12
|
* prometheus service: move to separate folderFranz Pletz2016-09-11
|
* Merge pull request #18298 from teh/prometheus-serviceFranz Pletz2016-09-11
|\ | | | | Prometheus service
| * prometheus service: rename values to match prometheus 1.0 naming.Tom Hunger2016-09-04
| |
| * prometheus service: addBenjamin Staffin2016-09-04
| | | | | | | | | | This is based on @benleys work: https://github.com/NixOS/nixpkgs/pull/8216 I updated changed the user and group ids.
* | nixos/modules/rename: Remove docker-registryaszlig2016-09-11
| | | | | | | | | | | | | | | | | | | | | | | | | | This is a follow-up to 9c1cdedcba2fd5233c71f0988d2eb725cc8f32ad and fed3501b0722e187284f9f6e1532f5b6e0572d6e. Discussion: https://github.com/NixOS/nixpkgs/issues/18209#issuecomment-245968857 Signed-off-by: aszlig <aszlig@redmoonstudios.org> Cc: @domenkozar Issue: #18209
* | toxvpn service: doesn't require online networkFranz Pletz2016-09-11
| | | | | | | | Tested that it detects network changes quickly.
* | treewide: fix fallout of ip-up deprecationFranz Pletz2016-09-11
| | | | | | | | | | | | | | | | See #18319 for details. Starting network-online.target manually does not work as it hangs indefinitely. Additionally, don't treat avahi and dhcpcd special and sync their systemd units with the respective upstream suggestion.
* | mpd service: replace script with serviceConfig.ExecStartJoachim Fasting2016-09-10
| |
* | mpd service: add types to all optionsJoachim Fasting2016-09-10
| |
* | ympd service: init (#18371)Langston Barrett2016-09-10
| | | | | | | | | | | | | | ympd provides a web ui, it is suitable to be run as a service. Fixes #17878. service has no requirements b/c user might be using remote mpd instance.
* | treewide: deprecate ip-up.target (#18319)Alexander Ried2016-09-10
| | | | | | | | | | Systemd upstream provides targets for networking. This also includes a target network-online.target. In this PR I remove / replace most occurrences since some of them were even wrong and could delay startup.
* | Remove docker-registry as it's deprecated #18209Domen Kožar2016-09-09
| |
* | tomcat service: bump default tomcat to 8.5danbst2016-09-09
| | | | | | | | | | | | See migration changelogs at - 7.0 -> 8.0: https://tomcat.apache.org/migration-8.html - 8.0 -> 8.5: https://tomcat.apache.org/migration-85.html
* | tomcat: add danbst as maintainerdanbst2016-09-09
| |
* | tomcat service: call shutdown in preStop, because postStop is too late ↵danbst2016-09-09
| | | | | | | | (systemd kills process)
* | tomcat: split default webapps to separate output (~6M)danbst2016-09-09
| |
* | Linux-kernel: Workaround for https://github.com/NixOS/nixpkgs/issues/18451Lengyel Balázs2016-09-09
| | | | | | | | remove after upstream gets fixed
* | radicale service: use "simple" service type (#18406)Robert Helgesson2016-09-08
| | | | | | | | | | Radicale can run as a foreground service and will then emits logging and errors on the standard output. This helps the logging end up in the systemd journal.
* | Merge pull request #18244 from DamienCassou/emacs-gtk_data_prefixDamien Cassou2016-09-08
|\ \ | | | | | | emacs module: Fix to get properly themed GTK apps
| * | emacs module: Fix to get properly themed GTK appsDamien Cassou2016-09-03
| | |
* | | nixos/stage2: Fix mounting special filesystemsaszlig2016-09-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This partially reverts commit ab9537ca22ce3fd4efc1795c58105504022d0c48. From the manpage of systemd-nspawn(1): Note that systemd-nspawn will mount file systems private to the container to /dev, /run and similar. Testing this in a shell turns out: $ sudo systemd-nspawn --bind-ro=/nix/store "$(readlink "$(which ls)")" /proc Spawning container aszlig on /home/aszlig. Press ^] three times within 1s to kill container. /etc/localtime does not point into /usr/share/zoneinfo/, not updating container timezone. 1 execdomains kpageflags stat acpi fb loadavg swaps asound filesystems locks sys buddyinfo fs meminfo sysrq-trigger bus interrupts misc sysvipc cgroups iomem modules thread-self cmdline ioports mounts timer_list config.gz irq mtrr timer_stats consoles kallsyms net tty cpuinfo kcore pagetypeinfo uptime crypto key-users partitions version devices keys scsi vmallocinfo diskstats kmsg self vmstat dma kpagecgroup slabinfo zoneinfo driver kpagecount softirqs Container aszlig exited successfully. So the test on whether PID 1 exists in /proc is enough, because if we use PID namespaces there actually _is_ a PID 1 (as shown above) and the special file systems are already mounted. A test on the $containers variable actually mounts them twice. This unbreaks NixOS containers and I've tested this against the containers-imperative NixOS test. Signed-off-by: aszlig <aszlig@redmoonstudios.org> Cc: @rickynils, @shlevy, @edolstra
* | | NixOS 17.03 will be called GorillaRob Vermaas2016-09-07
| | |
* | | nixos: Fix ordering of firewall.serviceaszlig2016-09-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Follow-up to the following commits: abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4: Fix starting the firewall e090701e2d09aec3e8866ab9a8e53c37973ffeb4: Order before sysinit Solely use sysinit.target here instead of multi-user.target because we want to make sure that the iptables rules are applied *before* any socket units are started. The reason I've dropped the wantedBy on multi-user.target is that sysinit.target is already a part of the dependency chain of multi-user.target. To make sure that this holds true, I've added a small test case to ensure that during switch of the configuration the firewall.service is considered as well. Tested using the firewall NixOS test. Signed-off-by: aszlig <aszlig@redmoonstudios.org> Cc: @edolstra
* | | firewall: Order before sysinitEelco Dolstra2016-09-07
| | | | | | | | | | | | Suggested by @aszlig.
* | | Fix starting the firewallEelco Dolstra2016-09-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Probably as a result of 992c514a20cf2da897db68169d7dcab721e8c7b7, it was not being started anymore. My understanding of systemd.special(7) (section "Special passive system units") is that the firewall should want network-pre.target, rather than the other way around (not very intuitive...). This in itself does not cause the firewall to be wanted, which is why the wanted-by relationship with multi-user.target is necessary. http://hydra.nixos.org/build/39965589
* | | nfs module: Fix dependency on statd and idmapdEelco Dolstra2016-09-07
| | | | | | | | | | | | http://hydra.nixos.org/build/40038016
* | | nfs module: Improve descriptionsEelco Dolstra2016-09-07
| | |
* | | avahi-daemon: remove default browse-domainsAlexey Shmalko2016-09-07
| | | | | | | | | | | | | | | | | | These domains are not actually default but examples. See https://github.com/lathiat/avahi/blob/master/avahi-daemon/avahi-daemon.conf#L24 for default config.
* | | Merge branch 'stage2-generalise-containers' of ↵Shea Levy2016-09-07
|\ \ \ | | | | | | | | | | | | https://github.com/rickynils/nixpkgs
| * | | nixos: Generalise the container tests in stage-2 bootRickard Nilsson2016-09-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This way, stage-2 behaves correctly also for libvirt-lxc containers. Some more discussion on this: https://github.com/NixOS/nixpkgs/commit/a7a08188bf650ababa36300a9a6f34169e2a73bf https://github.com/NixOS/nixpkgs/commit/bfe46a653ba2f8ff9902128f485cbd87c49cbca7
* | | | Merge pull request #18365 from NixOS/fix-sshd-failureEelco Dolstra2016-09-07
|\ \ \ \ | | | | | | | | | | Make /var/empty immutable (with chattr +i)
| * | | | hardcode e2fsprogs, idempotent chmod, remove care conditionDomen Kožar2016-09-07
| | | | |
| * | | | Make /var/empty immutableDomen Kožar2016-09-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #14910 and #18358 Deployed to an existing server, restarted sshd and polkit to verify they don't fail.
* | | | | dovecot service: require mail{User,Group} with sieveScriptsLangston Barrett2016-09-07
| |/ / / |/| | | | | | | | | | | fixes #17702.
* | | | nixos containers: hopefully fix test failuresNikolay Amiantov2016-09-07
| | | | | | | | | | | | | | | | Closes #18377.
* | | | Merge pull request #18366 from groxxda/acme-loopFranz Pletz2016-09-06
|\ \ \ \ | | | | | | | | | | security.acme: require networking for client, remove loop without fallbackHost
| * | | | security.acme: remove loop when no fallbackHost is givenAlexander Ried2016-09-06
| | | | |
| * | | | security.acme: the client really needs networkingAlexander Ried2016-09-06
| | | | | | | | | | | | | | | | | | | | | | | | | Actually this can be improved since the client only needs network connectivity if it needs to renew the certificate.
* | | | | Merge pull request #18362 from ericsagnes/fix/im-descriptionThomas Tuegel2016-09-06
|\ \ \ \ \ | | | | | | | | | | | | input-methods modules: fix engine description
| * | | | | input-methods modules: fix engine descriptionEric Sagnes2016-09-06
| | | | | |
* | | | | | Enable the runuser command from util-linuxEelco Dolstra2016-09-06
| |_|/ / / |/| | | | | | | | | | | | | | Fixes #14701.
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-03 23:02:23 +0000