about summary refs log tree commit diff
path: root/nixos
AgeCommit message (Collapse)AuthorFilesLines
2020-11-20Merge pull request #98544 from Mic92/unfuck-update-user-groupGraham Christensen1-10/+8
nixos/update-user-groups: Fix encoding issues + atomic writes
2020-11-20Merge pull request #104374 from adisbladis/dockertools-cross-aarch64adisbladis1-3/+3
dockerTools: Always cross compile for another arch in the cross example
2020-11-20nix: 2.3.8 -> 2.3.9Eelco Dolstra1-4/+4
2020-11-20dockerTools: Always cross compile for another arch in the cross exampleadisbladis1-3/+3
The example fails to build on aarch64, so lets cross build for gnu64.
2020-11-19nixos: release-combined: only build the amazon image for ↵Graham Christensen1-1/+1
x86_64,aarch64-linux -- exclude i686
2020-11-19Merge pull request #104322 from grahamc/amazon-imageGraham Christensen1-1/+1
nixos/release-small: add amazonImage
2020-11-19nixos/release-small: add amazonImageGraham Christensen1-1/+1
fixup breakage from #104193
2020-11-19Merge pull request #104193 from grahamc/ec2-metadata-imdsv2Graham Christensen6-6/+88
NixOS EC2 AMI: Support IMDSv2
2020-11-19Merge pull request #104271 from adisbladis/dockertools-crossRobert Hensing1-0/+12
dockerTools.buildLayeredImage: Fix cross compilation
2020-11-19nixos: release: add amazonImage as a channel blockerGraham Christensen2-0/+2
2020-11-19nixos ami: preflight the imds tokenGraham Christensen1-0/+21
According to Freenode's ##AWS, the metadata server can sometimes take a few moments to get its shoes on, and the very first boot of a machine can see failed requests for a few moments.
2020-11-19nixos: ec2 ami: support IMDSv2Graham Christensen2-5/+41
AWS's metadata service has two versions. Version 1 allowed plain HTTP requests to get metadata. However, this was frequently abused when a user could trick an AWS-hosted server in to proxying requests to the metadata service. Since the metadata service is frequently used to generate AWS access keys, this is pretty gnarly. Version two is identical except it requires the caller to request a token and provide it on each request. Today, starting a NixOS AMI in EC2 where the metadata service is configured to only allow v2 requests fails: the user's SSH key is not placed, and configuration provided by the user-data is not applied. The server is useless. This patch addresses that. Note the dependency on curl is not a joyful one, and it expand the initrd by 30M. However, see the added comment for more information about why this is needed. Note the idea of using `echo` and `nc` are laughable. Don't do that.
2020-11-19dockerTools: Add cross compilation testadisbladis1-0/+12
2020-11-19Merge pull request #104105 from spacefrogg/openafs-1.9Jörg Thalheim2-1/+6
2020-11-19Merge pull request #96371 from asdf8dfafjk/fcitx_commitRobert Hensing4-0/+159
fcitx: Add test (Unicode input, table input, m17n)
2020-11-18Merge pull request #98980 from JustinLovinger/idmapdSilvan Mosberger1-13/+35
nixos/nfs: add idmapd.settings option
2020-11-18nixos/telegraf: fix testJörg Thalheim1-2/+2
2020-11-18nixos/telegraf: make example a bit more compactJörg Thalheim1-10/+6
2020-11-18nixos/telegraf: null value for environmentFiles is invalidJörg Thalheim1-1/+1
it's also not needed given that empty list covers all use cases.
2020-11-18nixos: openstack: have its own metadata fetcher expressionGraham Christensen2-1/+24
These two APIs have diverged over time and are no longer compatible.
2020-11-18nixos: use nativeBuildInputs in make- iso9660-image and system-tarballEmery Hemingway2-2/+2
The tools used to create iso9660 images and tarballs are independent of the platform of the closure contained within.
2020-11-17openafs: remove 1.6; point to openafs_1_8Michael Raitza2-1/+6
2020-11-17Merge #103633: kresd service: switch .listenDoHVladimír Čunát1-8/+4
... to new implementation - and a couple other improvements.
2020-11-17kresd service: switch .listenDoH to new implementationVladimír Čunát1-8/+4
Beware: extraFeatures are not needed *for this* anymore, but their removal may still cause a regression in some configs (example: prefill module).
2020-11-17Merge pull request #104018 from NeQuissimus/xterm_updateTim Steinbach2-0/+24
xterm: 353 -> 362, add test, add update script
2020-11-17Merge pull request #103988 from NeQuissimus/nano_updateTim Steinbach3-0/+46
nano: Update script, test
2020-11-17maintainers: rename filalex77 -> Br1ght0neOleksii Filonenko3-3/+3
2020-11-16xterm: Add testTim Steinbach2-0/+24
2020-11-16nano: Add testTim Steinbach3-0/+46
2020-11-16Merge pull request #103876 from Mic92/lvm-generator-fixJörg Thalheim1-0/+4
nixos/lvm2-activation-generator: fix warnings on activation
2020-11-16Merge pull request #103966 from flokli/kernel-enable-ipv6Florian Klink1-1/+0
kernel config: explicitly enable CONFIG_IPV6
2020-11-16Merge pull request #103462 from NixOS/staging-nextFrederik Rietdijk1-0/+12
Staging next
2020-11-16Merge pull request #103717 from WilliButz/codimd/add-package-optionMaximilian Bosch1-4/+13
nixos/codimd: add package option, refactor prettyJSON
2020-11-16kernel config: explicitly enable CONFIG_IPV6Florian Klink1-1/+0
We currently build CONFIG_IPV6=m. This seems to be not really well-supported in mainline kernels - see https://lore.kernel.org/netdev/20201115224509.2020651-1-flokli@flokli.de/T/#u Compiling it as a module doesn't give too much benefit - even for people who did explicitly set `enableIPv6` to false, the `ipv6` module was still loaded, as soon as another module was loaded that requires it (bridge,br_netfilter,wireguard,ip6table_mangle,sctp,…). By compiling it in, we only loose the possibility to not add it to `boot.kernelModules` anymore (as it's part of the kernel directly). The space savings are negligible. People wanting to disable IPv6 still get the appropriate sysctls and options set (while having the kernel code loaded), nothing is really changing here.
2020-11-16Merge pull request #102916 from andir/nixos-helpAndreas Rammhold1-13/+21
nixos-help: fixup .desktop file & smaller refactoring
2020-11-16Merge master into staging-nextFrederik Rietdijk2-12/+35
2020-11-15nixos/lvm2-activation-generator: fix warnings on activationJörg Thalheim1-0/+4
2020-11-14Merge pull request #98025 from Mic92/telegrafJörg Thalheim2-12/+35
2020-11-14nixos/telegraf: allow multiple env filesJörg Thalheim2-8/+8
2020-11-14nixos/telegraf: switch to setting typesJörg Thalheim2-13/+13
This allows to split up configuration into multiple modules
2020-11-14nixos/telegraf: add environmentFile optionJörg Thalheim1-2/+23
2020-11-14nixos/telegraf: add support for native pingJörg Thalheim1-0/+2
2020-11-13Merge master into staging-nextFrederik Rietdijk12-115/+196
2020-11-13nixos/codimd: add package option, refactor prettyJSONWilliButz1-4/+13
This adds a `package` option to allow for easier overriding of the used CodiMD version and `runCommandLocal` with `nativeBuildInputs` is now used to pretty print the configuration.
2020-11-13Merge pull request #75615 from FSMaxB/patch-1Doron Behar1-0/+7
Add note about installing NixOS from distributions with /usr/sbin and…
2020-11-13nixos/doc: Add note about /usr/sbin and /sbinMax Bruckner1-0/+7
An installation from Debian buster may fail without adding /usr/sbin to $PATH because chroot is not in the PATH of a non-root user.
2020-11-12Merge pull request #103500 from chkno/nixos-YY.MM-not-in-nixpkgs-channelsMaximilian Bosch1-1/+11
doc: 20.09 release notes: nixos-YY.MM branches no longer in nixos-channels repo
2020-11-12postfix: add passthru testsMartin Weinelt1-3/+3
2020-11-12nixos/tests/postfix: migrate test to use tlsTrustedAuthoritiesMartin Weinelt1-1/+1
Fixes: 632104e ("postfix: deprecated `sslCACert` in favour of `tlsTrustedAuthorities`")
2020-11-12Merge pull request #103531 from gnidorah/acpilightElis Hirwing1-0/+1
nixos/acpilight: add to packages
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-14 07:18:57 +0000