| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
These aliases should not be used inside nixpkgs and are only there for backward
compatibility.
|
|
nixos/binfmt: added assertion to prevent emulation of current system
|
|
This adds an implementation of switch-to-configuration that allows for
closer interaction with the lifecycle of systemd units by using DBus
APIs directly instead of using systemctl. It is disabled by default, but
can be enabled by specifying `{ system.switch = { enable = false; enableNg = true; }; }`.
|
|
nixos/networkd: allow IPv6PrivacyExtensions in networkd.conf
|
|
nixos/top-level: Turn `system.forbiddenDependenciesRegex` into a list
|
|
|
|
`system.forbiddenDependenciesRegexes`
and turn it in to a list.
The current setting of system.forbiddenDependenciesRegex is a string, meaning only one such regex as any additional setting would result in conflicts.
As maintainers have already started using this setting eg. in profiles, it would be good if this setting would accept a list of regex to allow the end
user to make use of it in addition to package maintainers.
|
|
Closes #233865. Currently, the documentation for `boot.loader.grub.theme` misleadingly implies that it needs a package for a grub theme instead of a path to a grub theme.
|
|
|
|
This change adds support for setting IPv6PrivacyExtensions= in
systemd.network.config.networkConfig.
https://www.freedesktop.org/software/systemd/man/latest/networkd.conf.html#IPv6PrivacyExtensions=
Added in systemd version 254.
|
|
* Mypy dependencies pull in quite a few packages, which makes it harder to create offline installers.
|
|
systemd: add a name option to all systemd units
|
|
This allows us to set things like dependencies in a way that we can
catch typos at eval time.
So instead of
```nix
systemd.services.foo.wants = [ "bar.service" ];
```
we can write
```nix
systemd.services.foo.wants = [ config.systemd.services.bar.name ];
```
which will throw an error if no such service has been defined.
Not all cases can be done like this (eg template services), but in a lot
of cases this will allow to avoid typos.
There is a matching option on the unit option
(`systemd.units."foo.service".name`) as well.
|
|
This setting was missing from netdev.
This commit additionally adds a test using the new
section, ensuring that STP can be enabled.
|
|
these changes were generated with nixq 0.0.2, by running
nixq ">> lib.mdDoc[remove] Argument[keep]" --batchmode nixos/**.nix
nixq ">> mdDoc[remove] Argument[keep]" --batchmode nixos/**.nix
nixq ">> Inherit >> mdDoc[remove]" --batchmode nixos/**.nix
two mentions of the mdDoc function remain in nixos/, both of which
are inside of comments.
Since lib.mdDoc is already defined as just id, this commit is a no-op as
far as Nix (and the built manual) is concerned.
|
|
extlinux-conf-builder: specialisations entries
|
|
|
|
nixos/systemd: Enable debug-shell.service.
|
|
|
|
nixos/initrd-ssh: Add authorizedKeyFiles option
|
|
This allows for correct highlighting and maybe future automatic
formatting. The AST was verified to work with nixfmt only.
|
|
This should help us with highlighting and future formatting.
|
|
nixos/systemd/initrd: make systemd mount root as `rw` when using gpt-auto to find it
|
|
nixos/plymouth: improving documentation of logo option
|
|
|
|
|
|
nixos/uki: add configFile option
|
|
nixos/boot: move name overwrite to pkgs.aggregateModules to option
|
|
This option makes it easier to reuse a system's ukify.conf without the
need for manually calling the generator on `settings` again to receive a
rendered configuration file.
Theoretically, a complete configuration file could now be provided by
users.
|
|
nixos.luksroot: fix assertion message to name correct option
|
|
|
|
nixos/systemd/initrd: follow init param symlinks
|
|
nixos/timesyncd: further document services.timesyncd.servers
|
|
Running systemd-timesyncd with an empty list of timeservers to sync from
does not work.
In case an empty list is configured here, systemd will fall back to its
compiled-in defaults, which NixOS sets to `{0..4}.nixos.pool.ntp.org`,
as per https://github.com/systemd/systemd/blob/main/docs/DISTRO_PORTING.md#ntp-pool
This has caused some confusion. Explicitly document this, and describe
how to disable timesyncd.
|
|
|
|
nixos: Support systemd-gpt-auto-root
|
|
nixos/networkd: allow RoutingPolicyRule port ranges
|
|
|
|
We need to make sure systemd-tmpfiles-setup.service ran before we
start systemd-binft.service. Otherwise it might fail to start
due to non-existant files
Fixes #295365
|
|
This ensures a ".dtb" PE section makes it into the UKI so systemd-stub
can install the correct devicetree for use by the Linux kernel. This is
often needed on systems that boot with u-boot since the devicetree used
by u-boot is often a paired down version of what the Linux kernel needs.
On those kinds of boards, the lack of this PE section means that u-boot
will end up installing its internal devicetree into the UEFI
configuration table, which is what the Linux kernel ends up using.
|
|
nixos/systemd: Only include systemd-boot-random-seed if the unit exists
|
|
|
|
The unit file is only present if systemd was built with bootloader support.
|
|
Linux and Systemd allow port ranges to be used in routing policy rules.
https://www.freedesktop.org/software/systemd/man/latest/systemd.network.html#SourcePort=
|
|
Without sort-keys specified on entries, the entries are sorted only by
file name (in decreasing order, so starting at the end of the alphabet!),
without taking any other fields into account (see
[the boot loader specification reference][1]).
Moreover, entries without a sort-key are always ordered after all
entries with a sort-key, so by not adding a sort-key to the NixOS ones,
we cannot add a sort-key to any other entry while keeping it below the
NixOS entries.
So currently we have options to set the file names for additional entries like
memtest and netbootxyz.
However, as mentioned above, the sorting by file name is not very intuitive and
actually sorts in the opposite order of what is currently mentioned in the option
descriptions.
With this commit, we set a configurable sort-key on all NixOS entries,
and add options for setting the sort-keys for the memtest and netbootxyz
entries.
The sorting by sort-key is more intuitive (it starts at the start of the
alphabet) and also takes into account the machine-id and version for entries
with identical sort-keys.
We use a bootspec extension to store the sort keys, which allows us to
redefine the sort key for individual specialisations without needing any
special casing.
[1]: https://uapi-group.org/specifications/specs/boot_loader_specification/#sorting
|
|
nixos/systemd: include systemd-boot-random-seed.service
|
|
Also:
- Add tests
- Treewide update
- Improve docs
|
|
This is necessary to properly refresh the boot loader random seed.
See https://www.freedesktop.org/software/systemd/man/latest/systemd-boot-random-seed.service.html#
|
|
This is already the upstream default.
|
|
nixos/systemd-repart: add assertion for partition label length
|
