From cefd6c05340dc6ebf881d89d2890d70132c70e69 Mon Sep 17 00:00:00 2001 From: Colin Date: Tue, 28 May 2024 13:35:54 +0000 Subject: [PATCH] documentation improvements --- TODO.md | 4 ++++ hosts/common/polyunfill.nix | 2 +- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/TODO.md b/TODO.md index e8323fcc..5e0a4254 100644 --- a/TODO.md +++ b/TODO.md @@ -1,4 +1,7 @@ ## BUGS +- `rmDbusServices` may break sandboxing + - e.g. if the package ships a systemd unit which references $out, then make-sandboxed won't properly update that unit. + - `rmDbusServicesInPlace` is not affected - moby: touchscreen input is still enabled when screen is off - when moby wlan is explicitly set down (via ip link set wlan0 down), /var/lib/trust-dns/dhcp-configs doesn't get reset - `ip monitor` can detect those manual link state changes (NM-dispatcher it seems cannot) @@ -153,6 +156,7 @@ - use `systemctl list-jobs` to show what's being waited on - i think it's `systemd-networkd-wait-online.service` that's blocking this? - i wonder what interface it's waiting for. i should use `--ignore=...` to ignore interfaces i don't care about. + - also `wireguard-wg-home.target` when net is offline - add `pkgs.impure-cached.` package set to build things with ccache enabled - every package here can be auto-generated, and marked with some env var so that it doesn't pollute the pure package set - would be super handy for package prototyping! diff --git a/hosts/common/polyunfill.nix b/hosts/common/polyunfill.nix index d379d0e0..f851aa36 100644 --- a/hosts/common/polyunfill.nix +++ b/hosts/common/polyunfill.nix @@ -19,7 +19,7 @@ in apply = lib.filterAttrs (name: _: !(builtins.elem name [ # from "pkexec" - "polkit-agent-helper-1" + "polkit-agent-helper-1" #< used by systemd; without this you'll have to `sudo systemctl daemon-reload` instead of unauth'd `systemctl daemon-reload` # from "dbus-daemon-launch-helper" # from