Skip to content
This repository has been archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
base: c37b4466c0fc
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
compare: bd2c1d72c5a7
Choose a head ref
  • 8 commits
  • 2 files changed
  • 4 contributors

Commits on Feb 22, 2020

  1. haskell shellFor: Fix hoogle

    @Ericson2314
    Ericson2314 committed Feb 22, 2020
    Copy the full SHA
    1c07ee7 View commit details
    Browse the repository at this point in the history

  2. Merge remote-tracking branch 'upstream/master' into work-on-multi-she… 

    …llFor
    @Ericson2314
    Ericson2314 committed Feb 22, 2020
    Copy the full SHA
    196682b View commit details
    Browse the repository at this point in the history

Commits on Feb 29, 2020

  1. nixos/acme: adjust renewal timer options 

    The current weekly setting causes every NixOS server to try to renew
its certificate at midnight on the dot on Monday. This contributes to
the general problem of periodic load spikes for Let's Encrypt; NixOS
is probably not a major contributor to that problem, but we can lead by
example by picking good defaults here.

The values here were chosen after consulting with @yuriks, an SRE at
Let's Encrypt:

* Randomize the time certificates are renewed within a 24 hour period.

* Check for renewal every 24 hours, to ensure the certificate is always
  renewed before an expiry notice is sent out.

* Increase the AccuracySec (thus lowering the accuracy(!)), so that
  systemd can coalesce the renewal with other timers being run.

  (You might be worried that this would defeat the purpose of the time
  skewing, but systemd is documented as avoiding this by picking a
  random time.)
    @emilazy
    emilazy committed Feb 29, 2020
    Copy the full SHA
    7b14bbd View commit details
    Browse the repository at this point in the history

  2. nixos/acme: add ocspMustStaple option

    @emilazy
    emilazy committed Feb 29, 2020
    Copy the full SHA
    b522aed View commit details
    Browse the repository at this point in the history

  3. nixos/acme: add extraLegoRenewFlags option

    @emilazy
    emilazy committed Feb 29, 2020
    Copy the full SHA
    ffb7b98 View commit details
    Browse the repository at this point in the history

Commits on Mar 3, 2020

  1. Merge pull request #80856 from emilazy/adjust-acme 

    nixos/acme: adjust renewal timer options
    @lukateras
    lukateras committed Mar 3, 2020
    Copy the full SHA
    31aefc7 View commit details
    Browse the repository at this point in the history

  2. Merge pull request #80900 from emilazy/acme-must-staple 

    nixos/acme: Must-Staple and extra flags
    @lukateras
    lukateras committed Mar 3, 2020
    Copy the full SHA
    c16f221 View commit details
    Browse the repository at this point in the history

  3. Merge pull request #80845 from obsidiansystems/work-on-multi-shellFor 

    haskell shellFor: Fix hoogle
    @cdepillabout
    cdepillabout committed Mar 3, 2020
    Copy the full SHA
    bd2c1d7 View commit details
    Browse the repository at this point in the history