Age | Commit message (Collapse) | Author | Files | Lines |
|
MongoDB service: switch configuration format to YAML
|
|
|
|
Configuration format has changed from MongoDB 2.6 to
YAML and MongoDB 2.4 is EOL since March 2016.
|
|
See #17325.
|
|
|
|
https://github.com/NixOS/nixpkgs/pull/17254#issuecomment-245295541
* update docs to describe `deps.nix`
* include goDeps in nix-shell GOPATH
* NixOS 16.09 rel notes about replacing goPackages
|
|
This introduces VirtualBox version 5.1.6 along with a few refactored
stuff, notably:
* Kernel modules and user space applications are now separate
derivations.
* If config.pulseaudio doesn't exist in nixpkgs config, the default is
now to build with PulseAudio modules.
* A new updater to keep VirtualBox up to date.
All subtests in nixos/tests/virtualbox.nix succeed on my machine and
VirtualBox was reported to be working by @DamienCassou (although with
unrelated audio problems for another fix/branch) and @calbrecht.
|
|
|
|
|
|
The change is backwards-compatible for users of the NixOS module but not
if people were using the package directly, so let's warn users about
that.
Signed-off-by: aszlig <aszlig@redmoonstudios.org>
|
|
|
|
Major changes being pulled in:
- mesa: maintenance 12.0.1 -> 12.0.2
- texlive: 2015 -> 2016
|
|
Mirroring isn't finalized, but we'll have to fix that on the go.
|
|
from a discussion on #13293
|
|
* networkmanager: add information from wiki to docs
Specifically:
* mention nmcli, nmtui
* mention gtk and kde applets
fixes #13273
|
|
|
|
|
|
Before this commit updating /var/setuid-wrappers/ folder introduced
a small window where NixOS activation scripts could be terminated
and resulted into empty /var/setuid-wrappers/ folder.
That's very unfortunate because one might lose sudo binary.
Instead we use two atomic operations mv and ln (as described in
https://axialcorps.com/2013/07/03/atomically-replacing-files-and-directories/)
to achieve atomicity.
Since /var/setuid-wrappers is not a directory anymore, tmpfs mountpoints
were removed in installation scripts and in boot process.
Tested:
- upgrade /var/setuid-wrappers/ from folder to a symlink
- make sure /run/setuid-wrappers-dirs/ legacy symlink is really deleted
|
|
Brings in:
- changed output order for multiple outputs:
https://github.com/NixOS/nixpkgs/pull/14766
- audit disabled by default
https://github.com/NixOS/nixpkgs/pull/17916
Conflicts:
pkgs/development/libraries/openldap/default.nix
|
|
|
|
|
|
https://github.com/NixOS/nixpkgs/pull/14766
|
|
|
|
|
|
|
|
|
|
|
|
manual: automatically generate modules documentation
|
|
mkRemovedOptionModule: add replacement argument
|
|
This removes our hardcoded presets which weren't updated for quite some time.
Infinality now has new hardcoded presets in freetype, which can be overriden if
desired with environment variables (as before). Accordingly, updated NixOS
module to set the hardcoded preset.
Additionally used a more "right" type for substitutions.
|
|
Fixes #14293
|
|
|
|
|
|
|
|
The link to some (of course non-existing, i.e. freedesktop) “libinput”
documentation is replaced by a piece of the API documentation.
The default is changed since the documentation suggests `adaptive`
should be it.
https://wayland.freedesktop.org/libinput/doc/latest/group__config.html#gad63796972347f318b180e322e35cee79
Also fix a missing string conversion for `scrollButton`.
|
|
Fixes #13311
|
|
gitlab: 8.5.12 -> 8.10.3, update module
|
|
and --no-bootloader
Closes #17236
nix-build -A tests.installer.simple '<nixos/release.nix>' succeeds ✓
|
|
The name gitlab-runner clashes with a component of Gitlab CI with the
same name and only confuses people. It's now called gitlab-bundle and
a convenience-script gitlab-rake for easier invocation of rake tasks
was added. This was the primary use case of gitlab-runner.
|
|
grsecurity module: disable EFI runtime services by default
|
|
In light of Emacs packaging improvements such as those mentioned
in #11503, and with the addition of a systemd service (#15807
and #16356), and considering that the wiki page is completely
out of date (#13217), it seems that some documentation is in order.
|
|
Enabling EFI runtime services provides a venue for injecting code into
the kernel.
When grsecurity is enabled, we close this by default by disabling access
to EFI runtime services. The upshot of this is that
/sys/firmware/efi/efivars will be unavailable by default (and attempts
to mount it will fail).
This is not strictly a grsecurity related option, it could be made into
a general option, but it seems to be of particular interest to
grsecurity users (for non-grsecurity users, there are other, more
immediate kernel injection attack dangers to contend with anyway).
|
|
* Hydra doesn't like spaces in filenames.
* The zip file contained nix/store/.../OEBPS rather than OEBPS at
top-level, causing some programs (like okular) to barf.
* Remove the redundant $dst/epub directory.
|
|
PDF is very 20th century and nobody reads technical documentation this
way anymore.
|
|
|
|
|
|
manual: add chapter on Grsecurity/PaX
|
|
|
|
Explain the "what", "why", and "how" of grsecurity/PaX
on NixOS.
|
|
|