nixpkgs

History

Maximilian Bosch 37e3cadb8b

nixos/systemd-networkd-vrf: implement working TCP test on a 5.x kernel

By design, VRFs allow route-leaking for forwarded packages, but not for
local processes using a socket. While it was possible to leak such TCP
traffic through a VRF on a 4.x kernel, this behavior was considered
wrong and got fixed in Linux 5.x[1].

From now on, local unix sockets must run in the VRF itself using
`ip vrf exec`[2] which basically injects a BPF program into the VRF and
drops elevated networking capabilities by default for the specified
command.

[1] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3c82a21f4320c8d54cf6456b27c8d49e5ffb722e
[2] https://man7.org/linux/man-pages/man8/ip-vrf.8.html

2020-07-31 21:06:00 +02:00

common

nixos/displayManager: make autoLogin options independent of DM type

2020-07-09 21:15:35 -04:00

dnscrypt-wrapper

nixos/tests/dnscrypt-wrapper: init

2020-05-25 09:16:23 +02:00

google-oslogin

…

hadoop

…

hitch

…

hocker-fetchdocker

…

hydra

hydra-unstable: 2020-04-16 -> 2020-06-01

2020-06-02 15:39:42 +02:00

initrd-network-openvpn

nixos/system/boot/initrd-openvpn: Add openvpn options for initrd

2020-07-01 00:08:55 +02:00

initrd-network-ssh

…

installed-tests

Merge pull request #93771 from jtojnar/flatpak-1.8

2020-07-26 13:56:16 +02:00

kerberos

…

krb5

…

kubernetes

nixos/tests/kubernetes: Don't re-import <nixpkgs>

2020-07-16 08:44:04 +02:00

lorri

lorri: 1.0 -> 1.1

2020-06-30 17:12:03 +02:00

mysql

nixos/tests/mysql80: add check with unix auth

2020-05-23 16:44:02 +03:00

nextcloud

nixos/nextcloud: add occ internal option

2020-06-20 09:59:27 +02:00

nfs

…

php

…

web-servers

unit: Expose PHP expressions used so it can easily be accessed for configs

2020-05-30 18:52:41 +02:00

wireguard

…

xmpp

nixosTests.prosodyMysql: fix

2020-05-04 00:14:42 +02:00

3proxy.nix

…

acme.nix

nixos/acme: Move regression test into acme.nix

2020-06-15 11:05:00 +02:00

agda.nix

agda: Added test

2020-05-14 20:54:12 +01:00

all-tests.nix

pt2-clone: add nixos test

2020-07-29 19:45:03 +02:00

ammonite.nix

…

atd.nix

…

avahi.nix

…

babeld.nix

…

bazarr.nix

nixos/bazarr: init

2020-05-22 11:23:31 +02:00

bcachefs.nix

…

beanstalkd.nix

…

bees.nix

…

bind.nix

…

bitcoind.nix

nixos/bitcoind: add tests

2020-07-23 12:05:52 +02:00

bittorrent.nix

…

blockbook-frontend.nix

nixos/blockbook-frontend: adjust tests to bitcoind

2020-07-29 12:58:25 +02:00

boot-stage1.nix

…

boot.nix

…

borgbackup.nix

…

buildbot.nix

…

buildkite-agents.nix

…

caddy.nix

…

cadvisor.nix

…

cage.nix

…

cassandra.nix

…

ceph-multi-node.nix

nixos/ceph: (test) ceph now has device monitoring and pg_autoscaler enabled by default

2020-07-11 14:12:42 +02:00

ceph-single-node.nix

nixos/ceph: (test) ceph now has device monitoring and pg_autoscaler enabled by default

2020-07-11 14:12:42 +02:00

certmgr.nix

…

cfssl.nix

…

chromium.nix

treewide: use https for nixos.org and hydra.nixos.org

2020-05-03 22:14:21 -07:00

cjdns.nix

…

clickhouse.nix

…

cloud-init.nix

…

cockroachdb.nix

…

codimd.nix

…

consul.nix

consul.passthru.tests: Add 2 more tests

2020-06-18 03:06:24 +02:00

containers-bridge.nix

…

containers-custom-pkgs.nix

…

containers-ephemeral.nix

…

containers-extra_veth.nix

…

containers-hosts.nix

…

containers-imperative.nix

…

containers-ip.nix

…

containers-macvlans.nix

…

containers-physical_interfaces.nix

…

containers-portforward.nix

…

containers-reloadable.nix

…

containers-restart_networking.nix

…

containers-tmpfs.nix

…

convos.nix

nixos/convos: add test

2020-06-22 13:58:35 +02:00

corerad.nix

nixos/corerad: add settings option to supersede configFile

2020-06-14 10:07:16 -04:00

couchdb.nix

…

deluge.nix

…

dhparams.nix

…

dnscrypt-proxy2.nix

…

doas.nix

nixos/doas: init

2020-05-04 15:56:06 -07:00

docker-edge.nix

…

docker-preloader.nix

…

docker-registry.nix

…

docker-tools-overlay.nix

…

docker-tools.nix

nixos/tests/dockerTools: add test for running non-root containers with buildLayeredImage

2020-07-31 10:14:07 +02:00

docker.nix

docker: use git tags instead of revs

2020-06-26 14:55:52 -07:00

documize.nix

…

dokuwiki.nix

maintainers: fix previously uncaught name issues

2020-06-26 16:38:27 +02:00

dovecot.nix

…

ec2.nix

treewide: use https for nixos.org and hydra.nixos.org

2020-05-03 22:14:21 -07:00

ecryptfs.nix

…

elk.nix

…

emacs-daemon.nix

…

engelsystem.nix

nixos/engelsystem: Add test

2020-05-24 15:45:22 +02:00

enlightenment.nix

nixos/tests/enlightenment: fix some steps in the first time wizard

2020-05-25 09:50:24 -03:00

env.nix

…

ergo.nix

tests/ergo: init

2020-05-26 21:47:31 +02:00

etcd-cluster.nix

…

etcd.nix

…

fancontrol.nix

…

fenics.nix

…

ferm.nix

…

firefox.nix

…

firewall.nix

…

fish.nix

…

flannel.nix

…

fluentd.nix

…

fontconfig-default-fonts.nix

…

freeswitch.nix

…

fsck.nix

…

gerrit.nix

…

gitdaemon.nix

nixos/tests/gitdaemon: fix spurious test failures due to flaky network

2020-05-10 15:58:54 +02:00

gitea.nix

…

gitlab.nix

…

gitolite-fcgiwrap.nix

…

gitolite.nix

…

glusterfs.nix

…

gnome3-xorg.nix

nixosTests.gnome3: enable debug mode

2020-07-14 04:35:15 +02:00

gnome3.nix

nixosTests.gnome3: enable debug mode

2020-07-14 04:35:15 +02:00

go-neb.nix

nixos/tests/go-neb: init

2020-06-04 01:44:33 +02:00

gocd-agent.nix

…

gocd-server.nix

…

gotify-server.nix

…

grafana.nix

…

graphite.nix

nixos/graphite: ensure graphite-api is properly tested

2020-06-29 22:04:23 +12:00

graylog.nix

…

grocy.nix

…

grub.nix

nixos/tests: add test for grub authentication

2020-06-24 10:22:53 +02:00

gvisor.nix

…

haka.nix

…

handbrake.nix

…

haproxy.nix

nixos/haproxy: add reloading support, use upstream service hardening

2020-05-31 22:35:27 +02:00

hardened.nix

…

hibernate.nix

…

home-assistant.nix

nixos/tests/home-assistant: replace internal mqtt broker with mosquitto

2020-07-07 01:43:44 +02:00

hostname.nix

nixos/tests/hostname: init (check system's host name)

2020-05-25 18:13:14 +02:00

hound.nix

…

i3wm.nix

…

icingaweb2.nix

…

iftop.nix

…

ihatemoney.nix

nixos/tests/ihatemoney: fix

2020-07-06 18:35:34 +02:00

incron.nix

…

influxdb.nix

…

initrd-network.nix

…

installer.nix

nixos/tests/installer lvm: increase partition size

2020-07-25 22:57:27 +02:00

iodine.nix

…

ipfs.nix

IPFS NixOS module: Socket unit file more precise

2020-06-17 21:43:04 +00:00

ipv6.nix

…

jackett.nix

…

jellyfin.nix

…

jenkins.nix

…

jirafeau.nix

…

k3s.nix

…

kafka.nix

…

keepalived.nix

…

kernel-latest.nix

…

kernel-lts.nix

…

kernel-testing.nix

…

kexec.nix

…

keymap.nix

…

knot.nix

…

leaps.nix

…

lidarr.nix

…

lightdm.nix

…

limesurvey.nix

…

loki.nix

…

lxd-nftables.nix

lxd: Add tests

2020-06-08 21:35:47 +02:00

lxd.nix

lxd: Add tests

2020-06-08 21:35:47 +02:00

magic-wormhole-mailbox-server.nix

…

magnetico.nix

…

mailcatcher.nix

…

make-test-python.nix

…

make-test.nix

…

mathics.nix

…

matomo.nix

…

matrix-synapse.nix

maintainers/teams: add matrix team

2020-06-17 21:55:29 +02:00

mediawiki.nix

…

memcached.nix

…

mesos_test.py

…

mesos.nix

…

metabase.nix

…

minidlna.nix

…

miniflux.nix

…

minio.nix

nixosTests.minio: update minio-client command

2020-05-02 04:20:00 -05:00

misc.nix

…

moinmoin.nix

…

molly-brown.nix

nixos/molly-brown: init

2020-07-24 11:04:33 +02:00

mongodb.nix

mongodb: 4.0.12 -> 4.2.8

2020-07-24 11:44:16 -04:00

moodle.nix

…

morty.nix

…

mosquitto.nix

…

mpd.nix

…

mpich-example.c

…

mumble.nix

…

munin.nix

…

mutable-users.nix

…

mxisd.nix

…

nagios.nix

…

nat.nix

…

ncdns.nix

nixos/tests/ncdns: add test

2020-06-14 01:09:33 +02:00

ndppd.nix

…

neo4j.nix

…

netdata.nix

…

networking-proxy.nix

…

networking.nix

nixos/tests/networking: fix macvlan tests

2020-07-26 12:44:05 +02:00

nexus.nix

…

nghttpx.nix

…

nginx-etag.nix

…

nginx-pubhtml.nix

nixos/tests: fix nginx-pubhtml test

2020-05-12 20:03:29 +03:00

nginx-sandbox.nix

nixos/nginx: add option enableSandbox

2020-05-12 20:03:29 +03:00

nginx-sso.nix

…

nginx-variants.nix

nixos/nginx: ensure all variants have a basic level of testing

2020-06-02 21:55:48 +12:00

nginx.nix

…

nix-ssh-serve.nix

…

nixos-generate-config.nix

…

novacomd.nix

…

nsd.nix

…

nzbget.nix

…

oci-containers.nix

nixos/docker-containers: Rename to virtualisation.oci-containers.containers.

2020-05-04 13:47:25 +01:00

openarena.nix

…

openldap.nix

…

opensmtpd.nix

…

openssh.nix

…

openstack-image.nix

…

orangefs.nix

…

os-prober.nix

…

osrm-backend.nix

…

overlayfs.nix

…

packagekit.nix

…

pam-oath-login.nix

…

pam-u2f.nix

…

pantheon.nix

…

paperless.nix

…

pdns-recursor.nix

…

peerflix.nix

…

pgjwt.nix

…

pgmanage.nix

…

plasma5.nix

nixos/displayManager: make autoLogin options independent of DM type

2020-07-09 21:15:35 -04:00

plotinus.nix

…

podman.nix

Revert "nixos/podman: use cgroupfs for rootless crun test"

2020-07-16 12:11:09 +10:00

postfix-raise-smtpd-tls-security-level.nix

postfix: Add submissions option for postfix and test (#91691 )

2020-07-06 03:37:56 +02:00

postfix.nix

postfix: Add submissions option for postfix and test (#91691 )

2020-07-06 03:37:56 +02:00

postgis.nix

…

postgresql-wal-receiver.nix

…

postgresql.nix

…

powerdns.nix

…

pppd.nix

…

predictable-interface-names.nix

…

printing.nix

…

privacyidea.nix

privacyidea: address reviews

2020-05-09 12:11:44 +02:00

prometheus-exporters.nix

nixos/prometheus-modemmanager-exporter: new module

2020-07-17 13:54:58 -04:00

prometheus.nix

prometheus: 2.17.2 -> 2.18.1

2020-05-08 07:40:38 -07:00

proxy.nix

…

pt2-clone.nix

pt2-clone: add nixos test

2020-07-29 19:45:03 +02:00

qboot.nix

nixos/qemu-vm: add option to use a non-standard BIOS

2020-06-08 11:21:53 +12:00

quagga.nix

…

quorum.nix

…

rabbitmq.nix

…

radarr.nix

…

radicale.nix

nixos/radicale: use radicale3

2020-06-23 12:02:27 +02:00

redis.nix

…

redmine.nix

…

resolv.nix

…

restic.nix

nixos/tests: Add rclone repository to restic test

2020-07-06 10:30:43 -04:00

riak.nix

…

roundcube.nix

…

rspamd.nix

…

rss2email.nix

…

rsyslogd.nix

…

run-in-machine.nix

…

rxe.nix

…

samba.nix

…

sanoid.nix

…

sddm.nix

nixos/displayManager: make autoLogin options independent of DM type

2020-07-09 21:15:35 -04:00

service-runner.nix

nixos/tests/service-runner: change paths to nginx logs and cache

2020-05-04 16:36:38 +03:00

shiori.nix

…

signal-desktop.nix

…

simple.nix

…

slurm.nix

nixos/slurm: add pmix to test and cleanup test

2020-07-02 15:39:47 +02:00

smokeping.nix

…

snapper.nix

…

sogo.nix

nixosTests.sogo: init test

2020-05-12 18:49:43 +02:00

solr.nix

…

sonarr.nix

…

spacecookie.nix

…

specialisation.nix

…

spike.nix

…

ssh-keys.nix

…

sslh.nix

nixos: add test for sslh

2020-06-20 13:24:19 +02:00

strongswan-swanctl.nix

…

sudo.nix

small treewide: his -> theirs/its

2020-06-23 16:49:50 +02:00

switch-test.nix

…

sympa.nix

…

syncthing-init.nix

…

syncthing-relay.nix

…

syncthing.nix

nixos/tests: Add test for syncthing

2020-07-24 15:51:14 -07:00

systemd-analyze.nix

…

systemd-binfmt.nix

nixosTests.systemd-binfmt: init

2020-05-18 11:28:03 +02:00

systemd-boot.nix

nixos/systemd-boot: test for EFI boot entry

2020-07-06 12:07:50 -07:00

systemd-confinement.nix

…

systemd-networkd-dhcpserver.nix

…

systemd-networkd-ipv6-prefix-delegation.nix

…

systemd-networkd-vrf.nix

nixos/systemd-networkd-vrf: implement working TCP test on a 5.x kernel

2020-07-31 21:06:00 +02:00

systemd-networkd.nix

…

systemd-nspawn.nix

…

systemd-timesyncd.nix

…

systemd.nix

Merge branch 'staging-next' into staging

2020-07-15 09:29:01 +02:00

taskserver.nix

tests/taskserver: fix gnutls invocation

2020-06-23 12:01:54 +02:00

teeworlds.nix

nixos/{modules,tests}/teeworlds: init

2020-06-06 17:06:23 +02:00

telegraf.nix

…

tiddlywiki.nix

…

timezone.nix

…

tinydns.nix

…

tor.nix

…

trac.nix

…

traefik.nix

…

transmission.nix

…

trezord.nix

maintainers: fix previously uncaught name issues

2020-06-26 16:38:27 +02:00

trickster.nix

maintainers: fix previously uncaught name issues

2020-06-26 16:38:27 +02:00

trilium-server.nix

…

tuptime.nix

…

udisks2.nix

treewide: use https for nixos.org and hydra.nixos.org

2020-05-03 22:14:21 -07:00

upnp.nix

…

uwsgi.nix

…

vault.nix

…

victoriametrics.nix

…

virtualbox.nix

…

wasabibackend.nix

tests/wasabibackend: init

2020-06-19 16:44:21 +02:00

wordpress.nix

…

xandikos.nix

nixosTests.xandikos: fix route-prefix

2020-05-08 19:00:00 +02:00

xautolock.nix

…

xfce.nix

nixos/displayManager: make autoLogin options independent of DM type

2020-07-09 21:15:35 -04:00

xmonad.nix

…

xrdp.nix

…

xss-lock.nix

…

yabar.nix

…

yggdrasil.nix

nixos/yggdrasil.nix: test 300::/7 addresses

2020-07-25 16:34:20 +02:00

zfs.nix

…

zigbee2mqtt.nix

nixos/zigbee2mqtt: add minimal test

2020-07-20 21:48:14 +02:00

zoneminder.nix

nixos/zoneminder: add minimal test

2020-05-17 14:14:30 -04:00

zookeeper.nix

…

zsh-history.nix

…