Commit graph

1096 commits

Author SHA1 Message Date
Peter Simons 7a69733704 Added 'networking.dhcpcd.denyInterfaces' to extend the list of network
interfaces black-listed for dhcpcd via configuration.nix. I use this option to
disable DHCP for "veth*" interfaces, which are created by LXC for use inside of
virtual machines.

svn path=/nixos/trunk/; revision=34018
2012-05-08 11:46:01 +00:00
Eelco Dolstra b603babd0f * Use PostgreSQL's fast shutdown mode. In the default
smart shutdown mode, Postgres waits until all 
  active connections have closed, which can take an
  unbounded amount of time.

svn path=/nixos/trunk/; revision=33959
2012-04-30 18:15:32 +00:00
Eelco Dolstra be189991e0 * Revert r33928: veth* can also be a bridged interface requiring dhcp.
See e.g. https://nixos.org/repos/nix/configurations/trunk/tud/stan.nix

  So we need a better solution for this...

svn path=/nixos/trunk/; revision=33957
2012-04-30 17:46:11 +00:00
Peter Simons 8b841505ff modules/services/networking/{dhclient,dhcpcd}.nix: ignore virtual veth* devices created by LXC/cgroups
svn path=/nixos/trunk/; revision=33928
2012-04-26 12:31:33 +00:00
Peter Simons 86ba0c52b3 modules/services/networking/ssh/sshd.nix: stripped trailing whitespace
svn path=/nixos/trunk/; revision=33926
2012-04-26 08:13:24 +00:00
Peter Simons ee2fcb645b modules/services/networking/ssh/sshd.nix: don't write debug output to /tmp/log
svn path=/nixos/trunk/; revision=33925
2012-04-26 08:13:21 +00:00
Eelco Dolstra e6fd0fa893 * Cleanup.
svn path=/nixos/trunk/; revision=33921
2012-04-25 15:44:47 +00:00
Eelco Dolstra 43215ff80f * In the implementation of the ‘authorizedKeys’, don't delete all
lines below a certain marker.  This is undesirable because commands
  like "ssh-copy-id" add keys to the end of the file.  Instead mark
  all automatically added lines individually.

svn path=/nixos/trunk/; revision=33918
2012-04-25 14:14:20 +00:00
Eelco Dolstra 6c1bb54483 * In the installation CD, make the NixOS/Nixpkgs available as if they
were obtained from the NixOS channel.  "nixos-install" copies this
  to the installed system as well.
* In the installation CD, set GC_INITIAL_HEAP_SIZE to a low value for
  the benefit of memory-constrained environments.

svn path=/nixos/trunk/; revision=33887
2012-04-23 00:41:37 +00:00
Eelco Dolstra 9195b1125f * Include the version number in the mingetty greeting line.
svn path=/nixos/trunk/; revision=33884
2012-04-22 23:35:34 +00:00
Arie Middelkoop 0cb5673400 Some additional synaptics settings.
svn path=/nixos/trunk/; revision=33837
2012-04-19 08:29:22 +00:00
Arie Middelkoop 298e0e1829 Some additional xinetd settings.
svn path=/nixos/trunk/; revision=33836
2012-04-19 08:28:54 +00:00
Mathijs Kwik 3bbaa3b60c slim display manager: enabled auto_login setting
useful for demo/kiosk mode

svn path=/nixos/trunk/; revision=33774
2012-04-13 14:52:25 +00:00
Sander van der Burg a34e20e292 deployment attribute does not exists anymore, will fix this later
svn path=/nixos/trunk/; revision=33747
2012-04-11 13:46:49 +00:00
Eelco Dolstra a7af5588b6 * Drop ugly reference to var/run/current-system/sw/sbin/wpa_cli, and
make it conditional.

svn path=/nixos/trunk/; revision=33717
2012-04-10 12:07:30 +00:00
Mathijs Kwik 9a91181be9 damn you shell syntax! :)
svn path=/nixos/trunk/; revision=33603
2012-04-05 08:20:43 +00:00
Lluís Batlle i Rossell 56d9e60bb7 Making bind start on started network-interfaces. It wasn't starting ever.
svn path=/nixos/trunk/; revision=33542
2012-04-02 18:28:42 +00:00
Mathijs Kwik a1e86494d0 made challenge-response authentication method configurable for openssh
challenge-response is an authentication method that does not need the
plain text password to be emitted over the (encrypted) connection.
This is nice if you don't fully trust the server.

It is enabled (upstream) by default.

To the end user, it still looks like normal password authentication,
but instead of sending it, it is used to hash some challenge.

This means that if you don't want passwords to be used ever at all,
and just stick to public key authentication, you probably want to
disable this option too.

svn path=/nixos/trunk/; revision=33513
2012-04-01 10:54:17 +00:00
Mathijs Kwik e216ce07df dhcpcd: ip-up and ip-down emit more info (like wifi access point)
useful to only start certain services (like vpn) on certain networks

svn path=/nixos/trunk/; revision=33512
2012-04-01 10:54:15 +00:00
Mathijs Kwik 7d4fd69b5f dhcpcd: wifi disconnect should also generate ip-down
svn path=/nixos/trunk/; revision=33511
2012-04-01 10:54:13 +00:00
Mathijs Kwik 7ba690add6 optionally allow normal users to control wpa_supplicant through
wpa_gui or wpa_cli.

Comes with a default wpa_supplicant.conf, which gets updated through
aforementioned utilities.

svn path=/nixos/trunk/; revision=33510
2012-04-01 10:54:10 +00:00
Mathijs Kwik 7f84957ff2 mongodb: allow running as a replicaset member
also useful for point-in time backups using mongodump --oplog

svn path=/nixos/trunk/; revision=33509
2012-04-01 10:54:08 +00:00
Mathijs Kwik de5b437004 assertions '.msg' doesn't exist => .message
svn path=/nixos/trunk/; revision=33508
2012-04-01 10:54:06 +00:00
Joachim Schiele bc6ca7944f fixed a upstart issue where upsd was never started
svn path=/nixos/trunk/; revision=33494
2012-03-31 11:39:30 +00:00
Eelco Dolstra 64241a3e90 * Flush nscd when switching to a new configuration.
svn path=/nixos/trunk/; revision=33441
2012-03-27 14:35:45 +00:00
Mathijs Kwik f31fefdfd9 splitted ssh/sshd X11 forwarding logic. Backward compatible change.
You can now set the forwardX11 config option for the ssh client and server separately.

For server, the option means "allow clients to request X11 forwarding".
For client, the option means "request X11 forwarding by default on all connections".

I don't think it made sense to couple them. I might not even run the server on some machines.
Also, I ssh to a lot of machines, and rarely want X11 forwarding. The times I want it,
I use the -X/-Y option, or set it in my ~/.ssh/config.

I also decoupled the 'XAuthLocation' logic from forwardX11.
For my case where ssh client doesn't want forwarding by default, it still wants to set the path for the cases I do need it.

As this flag is the one that pulls in X11 dependencies, I changed the minimal profile and the no-x-libs config to check that instead now.

svn path=/nixos/trunk/; revision=33407
2012-03-25 15:42:05 +00:00
Eelco Dolstra 326891443c * dhcpcd: Don't use the "persistent" option. With it, dhcpcd won't
delete routes and addresses when it quits.  This causes those routes
  and addresses to stick around forever, since dhcpcd won't delete
  them when it runs next (even if it acquires a new lease on the same
  interface).  This is bad; in particular the stale (default) routes
  can break networking.

  The downside to removing "persistent" is that you should never ever
  do "stop dhcpcd" on a remote machine configured by dhcpcd.

svn path=/nixos/trunk/; revision=33388
2012-03-23 21:00:32 +00:00
Eelco Dolstra 7c75b046ea * Fix the permissions on /dev/vboxuser in VirtualBox guests.
svn path=/nixos/trunk/; revision=33372
2012-03-23 11:52:06 +00:00
Eelco Dolstra 2a135eb4d4 * Remove the ‘services.nfs.client.enable’ flag; use
‘boot.supportedFilesystems = [ "nfs" ]’ if needed.

svn path=/nixos/trunk/; revision=33356
2012-03-22 12:24:23 +00:00
Eelco Dolstra 89a21f7a7d * GIDs are supposed to match UIDs.
svn path=/nixos/trunk/; revision=33346
2012-03-22 10:11:15 +00:00
Lluís Batlle i Rossell 5ddae4a83a Changing portmap by rpcbind on nfs services.
That could make rpc.statd work.

Patch by Rickard Nilsson.

I'm not sure we need that netconfig file in etc.


svn path=/nixos/trunk/; revision=33342
2012-03-21 20:37:37 +00:00
Lluís Batlle i Rossell 20edb255bd Adding idmapd, for NFSv4.
Patch by Rickard Nilsson.

This may fix rpc.statd start.


svn path=/nixos/trunk/; revision=33330
2012-03-21 11:58:06 +00:00
Shea Levy 70eb64c025 Pommed: find the 'eject' command in /var/setuid-wrappers:/home/shlevy/.nix-profile/bin:/home/shlevy/.nix-profile/sbin:/home/shlevy/.nix-profile/lib/kde4/libexec:/nix/var/nix/profiles/default/bin:/nix/var/nix/profiles/default/sbin:/nix/var/nix/profiles/default/lib/kde4/libexec:/var/run/current-system/sw/bin:/var/run/current-system/sw/sbin:/var/run/current-system/sw/lib/kde4/libexec
svn path=/nixos/trunk/; revision=33302
2012-03-20 18:28:32 +00:00
Eelco Dolstra 010578d8a4 * Restrict VirtualBox to users in the vboxusers group.
The VirtualBox build in Nixpkgs is insecure because it uses the
  "--disable-hardened" flag, which disables some checks in the
  VirtualBox kernel module.  Since getting rid of that flag looks like
  too much work, it's better to ensure that only explicitly permitted
  users have access to VirtualBox.

* Drop the 666 permission on "sonypi" because it's not clear why that
  device should be world-writable.

svn path=/nixos/trunk/; revision=33301
2012-03-20 16:30:43 +00:00
Shea Levy 11066067f7 Add nouveau xorg video driver
svn path=/nixos/trunk/; revision=33300
2012-03-20 16:29:22 +00:00
Shea Levy 0d67d95f32 Add a module for the pommed tool for Apple laptop keyboards.
svn path=/nixos/trunk/; revision=33286
2012-03-20 04:41:13 +00:00
Shea Levy 6435207dd1 Whoops, actually use the mtrack fork
svn path=/nixos/trunk/; revision=33285
2012-03-20 01:56:39 +00:00
Shea Levy 724b5abe42 xf86-input-multitouch seems to be abandoned, update it with the mtrack fork
svn path=/nixos/trunk/; revision=33283
2012-03-20 01:48:09 +00:00
Shea Levy 14dd95b692 xserver.nix: Automatically support xorg's own video drivers
svn path=/nixos/trunk/; revision=33281
2012-03-19 23:57:26 +00:00
Eelco Dolstra 6093b54b73 * Zabbix: use the path attribute.
svn path=/nixos/trunk/; revision=33278
2012-03-19 19:43:31 +00:00
Eelco Dolstra 533448ae37 * udev: don't set the STARTUP flag anymore, since LVM no longer uses
it.
* Don't call "vgscan" anymore; VG scans are supposed to be automatic.

svn path=/nixos/trunk/; revision=33275
2012-03-19 19:10:27 +00:00
Eelco Dolstra 31c93522d5 * Support PostgreSQL versions >= 8.4, which have a slightly different
pg_hba.conf format.

svn path=/nixos/trunk/; revision=33268
2012-03-19 18:06:18 +00:00
Eelco Dolstra f12950b8e0 * Improve the Postgres Upstart job: don't use pg_ctl, let Upstart
monitor the postgres process directly (so that it can be restarted
  if necessary), let Upstart send SIGTERM to postgres to shut it down
  gracefully.  Also drop the Mediawiki references.

svn path=/nixos/trunk/; revision=33262
2012-03-19 16:49:13 +00:00
Eelco Dolstra ebc6d7f435 * Attempt to fix the random "udevadm settle - timeout of 120 seconds
reached, the event queue contains: /sys/devices/virtual/tty/hvc1" VM
  failures.

svn path=/nixos/trunk/; revision=33259
2012-03-19 15:10:39 +00:00
Eelco Dolstra 2cc8d0363e * Move the implementation of boot.kernelModules to udev's postStart.
It needs udevd to be running because the modules may require
  firmware.  Thanks to Mathijs and Arie for pointing this out.

svn path=/nixos/trunk/; revision=33234
2012-03-18 14:03:42 +00:00
Eelco Dolstra 83f5d26a85 * Ignore the "No soundcards found" error.
svn path=/nixos/trunk/; revision=33224
2012-03-18 02:36:21 +00:00
Eelco Dolstra 86d8d62d16 * Allow Upstart jobs to declare that they shouldn't be restarted by
switch-to-configuration.  E.g. the X server shouldn't be restarted
  because that kills all the X clients.

svn path=/nixos/trunk/; revision=33223
2012-03-18 02:10:39 +00:00
Eelco Dolstra ed436179e1 * Improve some job names.
svn path=/nixos/trunk/; revision=33215
2012-03-17 19:22:22 +00:00
Eelco Dolstra ee6c9bb998 * Provide two utility functions in Upstart jobs: "ensure JOBNAME"
starts the given job and waits until it's running; "stop_check"
  checks that the current job hasn't been asked to stop.

svn path=/nixos/trunk/; revision=33214
2012-03-17 19:12:33 +00:00
Eelco Dolstra 07df536c42 * Fix comment.
svn path=/nixos/trunk/; revision=33213
2012-03-17 18:01:42 +00:00
Eelco Dolstra 53847ef665 * Don't use the non-existent "never" condition in stopOn.
svn path=/nixos/trunk/; revision=33212
2012-03-17 18:00:20 +00:00
Eelco Dolstra dd693fdc5e * Revert unintended commit.
svn path=/nixos/trunk/; revision=33209
2012-03-17 17:31:08 +00:00
Eelco Dolstra 573877c1ac * Use boot.kernelModules everywhere instead of explicit calls to
modprobe.
* Move the implementation of boot.kernelModules from the udev job to
  the activation script.  This prevents races with the udev job.
* Drop references to the "capability" kernel module, which no longer
  exists.

svn path=/nixos/trunk/; revision=33208
2012-03-17 17:26:17 +00:00
Eelco Dolstra 646d67465c * Upstart stupidly doesn't kill post-start scripts if we do "stop
JOB", but it does kill the job's main process.  So if the post-start
  script if waiting for the job's main process to reach some state, it
  may hang forever.  Thus, the post-start script should monitor
  whether its job has been requested to stop and exit in that case.

svn path=/nixos/trunk/; revision=33176
2012-03-16 21:24:51 +00:00
Eelco Dolstra 67a90c6d6f * Renamed services.nfsKernel to services.nfs. Unfortunately
rename.nix doesn't allow renaming sets of options...
* Renamed nfs-kernel.nix to nfsd.nix
* Move NFS client stuff from nfsd.nix to filesystems/nfs.nix.

svn path=/nixos/trunk/; revision=33174
2012-03-16 20:41:49 +00:00
Eelco Dolstra a395e46192 * Fix the NFS Upstart dependencies. Mountd is now started before
nfsd, as suggested by the nfs-utils README.

  Also, rather than relying on Upstart events (which have all sorts of
  problems, especially if you have jobs that have multiple
  dependencies), we know just let jobs start their on prerequisites.
  That is, nfsd starts mountd in its preStart script; mountd starts
  statd; statd starts portmap.  Likewise, mountall starts statd to
  ensure that it can mount NFS filesystems.  This means that doing
  something like "start nfsd" from the command line will Do The Right
  Thing and start the dependencies of nfsd.

svn path=/nixos/trunk/; revision=33172
2012-03-16 20:10:14 +00:00
Eelco Dolstra 823471a100 * portmap: add a postStart action that ensures that portmap is
actually listening.  Otherwise we have a race condition during boot
  where statd's start can be delayed, causing NFSv3 mounting to fail.

svn path=/nixos/trunk/; revision=33171
2012-03-16 19:49:47 +00:00
Eelco Dolstra 5a36c25e9f * nfsd and statd do not need to be stopped when portmap stops.
svn path=/nixos/trunk/; revision=33167
2012-03-16 17:43:18 +00:00
Eelco Dolstra c5ca681c06 * Drop the unnecessary "nfs-kernel-" prefix from the job names.
svn path=/nixos/trunk/; revision=33159
2012-03-16 13:56:51 +00:00
Eelco Dolstra 0c1ec805fc * In fact get rid of the whole nfs-kernel-exports job.
svn path=/nixos/trunk/; revision=33156
2012-03-16 13:40:02 +00:00
Eelco Dolstra d2b3c2cda4 * Start fixing the NFS mess. It was completely broken because the
exportfs job didn't work at all (so /var/lib/nfs/etab didn't get
  initialised).

svn path=/nixos/trunk/; revision=33153
2012-03-16 13:00:27 +00:00
Eelco Dolstra 53bd25c7fa * Automatically start VBoxClient-all when the X session starts. This
allows seamless windows, resizing of the desktop, cut and paster,
  etc.

svn path=/nixos/trunk/; revision=33131
2012-03-16 01:29:51 +00:00
Eelco Dolstra 3ddbe0f9fb * Drop references to activation scriptlets that no longer exist.
svn path=/nixos/trunk/; revision=33110
2012-03-15 14:21:17 +00:00
Yury G. Kudryashov 9bb1132525 NM: add IFACE to ip-up
svn path=/nixos/trunk/; revision=33107
2012-03-15 13:51:17 +00:00
Eelco Dolstra 1186167be2 * Fix xserver restart with cfg.driSupport32Bit. Contributed by Kirill
Elagin.

svn path=/nixos/trunk/; revision=33099
2012-03-15 10:26:08 +00:00
Yury G. Kudryashov 339d5b2b48 Add NetworkManager module
It works but it doesn't respect ignoredInterfaces etc.
Probably I forgotten to create some directories (all of them exist on my
laptop). Feel free to fix this module.

svn path=/nixos/trunk/; revision=33097
2012-03-15 07:19:17 +00:00
Yury G. Kudryashov 34c2f2cf58 gtkLibs.gtk moved to gtk
svn path=/nixos/trunk/; revision=33096
2012-03-15 07:19:12 +00:00
Eelco Dolstra f2870ea7b5 * tty1 needs to be treated specially because of the emergency-shell
job.

svn path=/nixos/trunk/; revision=33018
2012-03-12 14:42:52 +00:00
Eelco Dolstra 7f72dead3b * Fix the waitOnMounts option. For some reason we lost its
implementation.

svn path=/nixos/trunk/; revision=33017
2012-03-12 14:33:06 +00:00
Ludovic Courtès 5fad465261 BitlBee: Add `job.name'; cleanup white space.
svn path=/nixos/trunk/; revision=33012
2012-03-12 13:10:13 +00:00
Mathijs Kwik f68c95d1fe completely removed gw6c. use gogoclient
svn path=/nixos/trunk/; revision=32990
2012-03-11 14:36:39 +00:00
Florian Friesdorf 769cbaf56a fix postfix config, missing linebreak
svn path=/nixos/trunk/; revision=32980
2012-03-11 11:12:02 +00:00
Eelco Dolstra 03ebb883d1 * Modularize filesystem support. Filesystems such as btrfs and
reiserfs now have separate modules that are conditional on
  boot.supportedFilesystems and boot.initrd.supportedFilesystems.
  By default, these include the filesystems specified in the fsType
  attribute in fileSystems.  Ext2/3/4 support is currently
  unconditional.

  Also unbreak the installer test (http://hydra.nixos.org/build/2272302). 

svn path=/nixos/trunk/; revision=32954
2012-03-09 14:37:58 +00:00
Peter Simons 8708578181 services/printing/cupsd.nix: move the gstoraster.convs file from /etc/cups into the compiled backends directory in the store
svn path=/nixos/trunk/; revision=32951
2012-03-09 10:24:31 +00:00
Mathijs Kwik 7d964498b8 changed the way networking-providers plug themselves before "networking"
svn path=/nixos/trunk/; revision=32781
2012-03-04 18:44:47 +00:00
Mathijs Kwik 8bfe513e75 renamed "all-interfaces" to "networking"
svn path=/nixos/trunk/; revision=32780
2012-03-04 18:44:42 +00:00
Eelco Dolstra 29b6b8769f * On second thought, let's not enable user support in Upstart. The
first user job I put in ~/.init caused Upstart to crash with an
  assertion failure, taking down the system.  Given that Upstart has a
  non-trivial attack surface with this feature, it seems best to
  disable it.

svn path=/nixos/trunk/; revision=32779
2012-03-04 17:49:00 +00:00
Eelco Dolstra 835170fe19 * Remove debug statement.
svn path=/nixos/trunk/; revision=32778
2012-03-04 17:21:33 +00:00
Eelco Dolstra 356ff79400 * wpa_supplicant: automatically figure out the wireless interface(s)
on which to run wpa_supplicant, unless they're set explicitly.

svn path=/nixos/trunk/; revision=32777
2012-03-04 17:21:14 +00:00
Eelco Dolstra 2ac5df3a93 * Undo unintended commit.
svn path=/nixos/trunk/; revision=32771
2012-03-04 15:48:58 +00:00
Eelco Dolstra 6c792b3d9e * A more pragmatic solution to the missing tar manpage problem.
svn path=/nixos/trunk/; revision=32770
2012-03-04 15:47:44 +00:00
Eelco Dolstra 0d39390ad4 * ntpd: cleanup.
svn path=/nixos/trunk/; revision=32769
2012-03-04 15:34:44 +00:00
Eelco Dolstra 545f922e71 * Connect Upstart to the system bus so that non-root users can run
initctl.

svn path=/nixos/trunk/; revision=32768
2012-03-04 15:10:14 +00:00
Mathijs Kwik 3c957bd921 gogoclient: ipv6 tunnel module
meant to replace the obsolete gw6c module
builds fine on stdenv-updates branch

svn path=/nixos/trunk/; revision=32767
2012-03-04 12:58:22 +00:00
Mathijs Kwik 86bf5566fe many daemons: depend on all-interfaces instead of gw6c
svn path=/nixos/trunk/; revision=32766
2012-03-04 12:58:18 +00:00
Mathijs Kwik ce83d3580e gw6c: provide support for all-interfaces
svn path=/nixos/trunk/; revision=32765
2012-03-04 12:58:14 +00:00
Mathijs Kwik 6240825e27 mongodb: use the new upstart setuid option
svn path=/nixos/trunk/; revision=32763
2012-03-04 12:58:09 +00:00
Eelco Dolstra 742198c6ea * dhcpcd: Ignore vboxnet*.
svn path=/nixos/trunk/; revision=32716
2012-03-01 13:49:47 +00:00
Peter Simons e872efaa8d fixed mongodb upstart task
svn path=/nixos/trunk/; revision=32683
2012-02-28 17:43:54 +00:00
Eelco Dolstra 4f8d076ae7 * Allow the start/stop condition of OpenVPN jobs to be overriden
easily.

svn path=/nixos/trunk/; revision=32673
2012-02-28 10:30:12 +00:00
Eelco Dolstra d9d6fb58e4 * Prevent the VirtualBox guest additions from being restarted
constantly by Upstart.  Also move the module to a better location.

svn path=/nixos/trunk/; revision=32565
2012-02-25 20:10:53 +00:00
Eelco Dolstra acea54b3c6 * In the users...keyFiles option, the "string" type doesn't work very
well because elements could be paths, e.g.

    users.extraUsers.root.openssh.authorizedKeys.keyFiles =
      [ ./id_key.pub ];

  So disable the type check for now.

svn path=/nixos/trunk/; revision=32558
2012-02-25 17:31:39 +00:00
Peter Simons f0dfd7d06a made kde4's phonon backends configurable
svn path=/nixos/trunk/; revision=32481
2012-02-22 20:29:00 +00:00
Peter Simons 90adc800c5 sshd: choose host key type
svn path=/nixos/trunk/; revision=32479
2012-02-22 20:28:54 +00:00
Peter Simons fca4803a74 gw6c: no built-in log rotation, we use logrotate for that
svn path=/nixos/trunk/; revision=32478
2012-02-22 20:28:51 +00:00
Arie Middelkoop 57af9d74e2 Applied the patch of James Cook.
svn path=/nixos/trunk/; revision=32445
2012-02-21 10:02:58 +00:00
Eelco Dolstra b2910df04e * Various cleanups in the OpenVPN module. The option
‘services.openvpn.enable’ is now obsolete; specifying instances in
  ‘services.openvpn.servers’ is enough.

svn path=/nixos/trunk/; revision=32441
2012-02-20 20:10:07 +00:00
Eelco Dolstra 35734279ae * Fix incorrect default value.
svn path=/nixos/trunk/; revision=32431
2012-02-20 16:53:44 +00:00
Eelco Dolstra 4e9c8d0b9d * dhcpcd: restart ntpd and emit ip-up/ip-down events. Also attach the
interface name to the events, as suggested by Mathijs Kwik.

svn path=/nixos/trunk/; revision=32430
2012-02-20 15:19:46 +00:00
Eelco Dolstra a46fd58b3d * Use the networking.useDHCP out of the dhclient module.
svn path=/nixos/trunk/; revision=32428
2012-02-20 14:29:21 +00:00
Eelco Dolstra 7278e37072 * Don't set DBHost if the database is on localhost, otherwise Zabbix
will use TCP/IP instead of a Unix domain socket.
* Simplify Zabbix's start condition.  Zabbix now retries if the
  database is down instead of bailing out.

svn path=/nixos/trunk/; revision=32426
2012-02-20 13:40:47 +00:00
Eelco Dolstra 1770b5a400 * dhcpcd: use a configuration file. Use the "denyinterfaces" option
to simplify the start script.  Drop the ifplugd hook because dhcpcd
  monitors interface link status itself.

svn path=/nixos/trunk/; revision=32424
2012-02-20 13:13:29 +00:00
Eelco Dolstra ae27eafe4c * Added a module for dhcpcd, a DHCP client (not enabled by default
yet).  It's smaller than dhclient and has more features
  (e.g. automatically detects link status changes, supports
  openresolv, does IPv4LL, and supports IPv6 Router Advertisements).

svn path=/nixos/trunk/; revision=32413
2012-02-20 01:17:53 +00:00
Eelco Dolstra 1707d1130f * Move the dhclient/wpa_supplicant restart actions out of the ifplugd
module.

svn path=/nixos/trunk/; revision=32409
2012-02-19 22:53:25 +00:00
Sander van der Burg 3a9dfceb07 Implemented a very very dirty hack, which makes it possible to statically determine which activation types are supported, instead of determining this by the avahi service
svn path=/nixos/trunk/; revision=32089
2012-02-06 22:49:41 +00:00
Peter Simons 89d5aa4dd2 nixos support for nvidia optimus
currently, only support for fully disabling nvidia is provided, which
is helpful for saving power/heat.

In the future, this should be extended so we can choose:

- nvidia only  (choose between nouveau/nvidia driver)
- IGP only
- Hybrid (choose between nouveau/nvidia driver, use the "bumblebee" package/daemon)

svn path=/nixos/trunk/; revision=32085
2012-02-06 19:14:42 +00:00
Peter Simons 49a3e57d43 frandom: very fast kernel random number generator
svn path=/nixos/trunk/; revision=32084
2012-02-06 19:14:37 +00:00
Peter Simons 4f7985a1bd mongodb: workaround for shutdown issues
svn path=/nixos/trunk/; revision=32083
2012-02-06 19:14:33 +00:00
Sander van der Burg 4249f803ad Removed some tabs
svn path=/nixos/trunk/; revision=32051
2012-02-06 14:04:15 +00:00
Sander van der Burg 82ca072c23 Added extraWorkersProperties parameter, so that custom tweaks can be added
svn path=/nixos/trunk/; revision=32050
2012-02-06 13:11:48 +00:00
Sander van der Burg 5363c8b8ae Remove ugly pkgs.tomcat6 references
svn path=/nixos/trunk/; revision=32049
2012-02-06 13:03:56 +00:00
Eelco Dolstra b11a33717f * zabbix-server: don't require PostgreSQL to be started
if we're using a remote server.

svn path=/nixos/trunk/; revision=31852
2012-01-26 13:32:02 +00:00
Eelco Dolstra aca8225e3b * Invalidate the nscd hosts cache when an "ip-up" event occurs. This
event is emitted by dhclient and by the network-interfaces job in
  case of statically configured interfaces.  Invalidating the cache is
  necessary to get rid of negative queries.

svn path=/nixos/trunk/; revision=31779
2012-01-21 19:13:43 +00:00
Sander van der Burg 9a09051f4b Added MySQL 5.5 NixOS service
svn path=/nixos/trunk/; revision=31732
2012-01-20 10:43:18 +00:00
Peter Simons ec445fbee7 mongodb nixos module
svn path=/nixos/trunk/; revision=31658
2012-01-18 20:34:07 +00:00
Peter Simons 5144e94694 gw6c: fixed faulty path reference
svn path=/nixos/trunk/; revision=31657
2012-01-18 20:34:04 +00:00
Sander van der Burg 1e59a18f90 Only use mysqladmin authentication if we have supplied a root password
svn path=/nixos/trunk/; revision=31632
2012-01-18 15:21:11 +00:00
Sander van der Burg d4b6aa3553 The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption.
svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
Eelco Dolstra 5d12152b13 * Enable xfce4-appfinder.
svn path=/nixos/trunk/; revision=31612
2012-01-17 18:15:20 +00:00
Arie Middelkoop 609a02906e Another type error fix ("The example shouldn't be a string either").
svn path=/nixos/trunk/; revision=31538
2012-01-14 12:24:41 +00:00
Arie Middelkoop 2f49427e4f Fixed the default value for the palmDetect synaptics option (empty string -> false).
svn path=/nixos/trunk/; revision=31529
2012-01-14 09:40:08 +00:00
Arie Middelkoop bf1bf4957c Additional options for synaptics
How can you ever work with a touchpad while having finger taps on...

svn path=/nixos/trunk/; revision=31523
2012-01-13 22:23:18 +00:00
Peter Simons 036e585b42 modules/services/printing/cupsd.nix: tell cups to use 'gstoraster' instead of 'pstoraster'
The CUPS filter has been renamed in GNU Ghostscript 9.x. Fortunately,
Ghostscript ships with a MIME conversions file that informs CUPS about this,
so linking that file into /etc/cups works fine. I'm not sure whether it's a
particularly elegant solution, though.

svn path=/nixos/trunk/; revision=31489
2012-01-11 23:17:36 +00:00
Yury G. Kudryashov 98f5e3b3b2 Drop kde4.5-specific code
svn path=/nixos/trunk/; revision=31486
2012-01-11 22:58:32 +00:00
Peter Simons 70850268e0 Revert "modules/services/printing/cupsd.nix: fixed path to DataDir"
This reverts commit 2a1ce489154c8543bc146a7d99e1a397eb920e1f.

svn path=/nixos/trunk/; revision=31484
2012-01-11 20:48:40 +00:00
Peter Simons cab4a28361 synaptics: add 'additionalOptions' option
svn path=/nixos/trunk/; revision=31469
2012-01-10 18:40:02 +00:00
Peter Simons 6385d51f7e modules/services/printing/cupsd.nix: fixed path to DataDir
svn path=/nixos/trunk/; revision=31457
2012-01-09 16:03:43 +00:00
Florian Friesdorf 76986a24f9 enable noX11 on kernel cmdline to suppress start of X
xserver is started on start_xserver event, which is emitted by
check_for_xserver_start if there is no "noX11" on the kernel cmdline.

Thanks to viric for the general idea.

svn path=/nixos/trunk/; revision=31166
2011-12-31 00:24:48 +00:00
Florian Friesdorf 5b7e7bb429 services.xserver.xkbVariant
svn path=/nixos/trunk/; revision=31165
2011-12-30 23:26:11 +00:00
Florian Friesdorf eb755d4692 switched all mergeOptionString to pkgs.lib.types.string
pierron recommended the use of types.string over mergeOptionString, as
it is superior but might break things.

For my system the change evaluated to the exactly same.

svn path=/nixos/trunk/; revision=31138
2011-12-29 00:51:35 +00:00
Lluís Batlle i Rossell 5cf6543e6e Removing unused lines of the nfs-kernel script, and fixing some indentation.
svn path=/nixos/trunk/; revision=31120
2011-12-28 09:05:52 +00:00
Lluís Batlle i Rossell 99cca93398 Fixing the race condition on loading nfsd. It was not a modprobe thing like I
said on 31113, but again, upstart order.

I restore the usual modprobe procedure.


svn path=/nixos/trunk/; revision=31119
2011-12-28 08:44:24 +00:00
Lluís Batlle i Rossell ef1755f3c0 I had a bug in my nfs server... just after boot, all clients were receiving
"Permission denied" until I run "restart nfs-kernel-exports". "exportfs -ra" did not help.

I tracked that down to some race condition between loading the module nfsd and
starting the daemons. Therefore, I decided to add nfsd to the boot.kernelModules instead
of using modprove with it.

Now it works for my server. No more Permission denied after reboot.


svn path=/nixos/trunk/; revision=31113
2011-12-27 18:08:05 +00:00
Lluís Batlle i Rossell 8bc381c4cd Fixing the boot sequence in case of only having nfsKernel.client.enable = true, and not server.
svn path=/nixos/trunk/; revision=31109
2011-12-27 16:33:10 +00:00
Lluís Batlle i Rossell 2c77b292a6 I reworked the nfs upstart jobs, so they work better on the events of interest of nixos.
Related to http://yellowgrass.org/issue/NixOS/109 .


svn path=/nixos/trunk/; revision=31103
2011-12-26 16:06:20 +00:00
Yury G. Kudryashov a87a1bca04 wpa_supplicant: add D-Bus interface
svn path=/nixos/trunk/; revision=30972
2011-12-19 23:16:32 +00:00
Shea Levy e87764e327 Apply mornfall's SANE patches
Fix sane-backends to generate udev rules, add a snapshot of sane-backends's unstable repo, and add a SANE nixos module

svn path=/nixos/trunk/; revision=30764
2011-12-05 17:32:45 +00:00
Shea Levy 72d7401976 udev: Ignore commented lines when populating run_progs.
Patch by mornfall

svn path=/nixos/trunk/; revision=30763
2011-12-05 16:53:58 +00:00
Shea Levy 868c60c92b Add mpd module
There is room for improvement here. The options in conffile could be broken out into individual options and an extraConfig option added. But I think this looks right.
Patch by mornfall, slightly modified by me

svn path=/nixos/trunk/; revision=30731
2011-12-05 01:51:05 +00:00
Nicolas Pierron e264d1ab79 Convert users.extraUsers to an option set and add support for openssh
authorized_keys file generation.

svn path=/nixos/trunk/; revision=30611
2011-11-29 06:08:55 +00:00
Peter Simons 0cd9ff9fcc smartd: run smartd daemon using the given search path to improve readability of ps output
svn path=/nixos/trunk/; revision=30569
2011-11-25 17:09:44 +00:00
Peter Simons ef932017fc smartd: run the mail notification script with ${pkgs.stdenv.shell} rather than /bin/sh
svn path=/nixos/trunk/; revision=30568
2011-11-25 17:09:37 +00:00
Eelco Dolstra 8eba736da9 * Use the ‘path’ attribute in Upstart jobs in more places. It's a bit
more readable (also in "ps" output).

svn path=/nixos/trunk/; revision=30565
2011-11-25 16:32:54 +00:00
Eelco Dolstra 1d5d7036d0 * Add a module for managing cgroups.
svn path=/nixos/trunk/; revision=30551
2011-11-24 18:28:45 +00:00
Eelco Dolstra 48adcd5510 * Remove xdpyinfo from the $PATH.
svn path=/nixos/trunk/; revision=30388
2011-11-11 03:11:32 +00:00
Eelco Dolstra da542dc1ae * Added a module for oidentd.
svn path=/nixos/trunk/; revision=30381
2011-11-10 23:06:24 +00:00
Eelco Dolstra 21d808ee6c * Add a module that enables a x11vnc-based terminal server, allowing
users to login via VNC.  Xvfb servers are started as required to
  allow multiple concurrent users.

svn path=/nixos/trunk/; revision=30374
2011-11-10 20:52:23 +00:00
Lluís Batlle i Rossell d9356e9a35 Fixing documentation about the prayer module, and adding a port setting,
defaulting to something other than 80 at least.


svn path=/nixos/trunk/; revision=30363
2011-11-09 21:08:50 +00:00
Lluís Batlle i Rossell 578f83eef4 Adding a module for the prayer webmail.
svn path=/nixos/trunk/; revision=30361
2011-11-09 20:48:12 +00:00
Eelco Dolstra e348fbf7a4 * Allow logging in with an empty password in KDE. This is consistent
with SLiM and local console logins.

svn path=/nixos/trunk/; revision=30339
2011-11-08 18:50:42 +00:00
Eelco Dolstra 6f8e30313f * The "audio" group should always exist, even if the ALSA module is
disabled, because udev rules refer to it.

svn path=/nixos/trunk/; revision=30229
2011-11-04 17:40:00 +00:00
Lluís Batlle i Rossell 2825a3a6ae Allowing 'named' to have a config file apart, as it can have passwords.
svn path=/nixos/trunk/; revision=30213
2011-11-03 19:13:52 +00:00
Eelco Dolstra d77fc84d2f * For consistency, use /etc/nix/nix.conf instead of /nix/etc/nix/nix.conf.
There is really no reason to have a configuration file outside of /etc,
  and it's consistent with what the Fedora/Debian packages for Nix use.

svn path=/nixos/trunk/; revision=30212
2011-11-03 19:04:54 +00:00
Lluís Batlle i Rossell efc64042e0 Adding extraConfig to unbound
svn path=/nixos/trunk/; revision=30211
2011-11-03 18:49:54 +00:00
Eelco Dolstra aac71e8f95 * Add a module for DRBD.
svn path=/nixos/trunk/; revision=30202
2011-11-03 02:14:57 +00:00
Eelco Dolstra 0309f02fc5 * Add period.
svn path=/nixos/trunk/; revision=30201
2011-11-03 02:14:40 +00:00
Eelco Dolstra fe566d84ae * Remove references to the "safemode" boot option, which doesn't do
anything.

svn path=/nixos/trunk/; revision=30199
2011-11-03 00:46:29 +00:00
Lluís Batlle i Rossell 9489c5a02b Setting default of unbound.enable to disabled. Few may want it enabled.
svn path=/nixos/trunk/; revision=30198
2011-11-02 21:04:32 +00:00
Lluís Batlle i Rossell 5cb67ef832 Adding a module for unbound.
svn path=/nixos/trunk/; revision=30197
2011-11-02 20:59:12 +00:00
Eelco Dolstra 71e6f6ecdc * Start httpd after postgresql since the mediawiki subservice depends
on it.

svn path=/nixos/trunk/; revision=30161
2011-11-01 13:44:48 +00:00
Eelco Dolstra 07694cab46 * Doh. Never rename a variable *after* testing.
svn path=/nixos/trunk/; revision=30160
2011-11-01 02:53:37 +00:00
Eelco Dolstra cf03194d59 * Disable Nepomuk/Strigi by default because they cause problems
(e.g. segfaults whn loggin in to the NixOS graphical ISO) and don't
  really work very well (e.g. fail to find files).  They can be
  re-enabled in the KDE System Settings.

svn path=/nixos/trunk/; revision=30155
2011-10-31 21:04:39 +00:00
Evgeny Egorochkin 0d2ef63b84 Quassel: fix package name
svn path=/nixos/trunk/; revision=30142
2011-10-31 12:48:59 +00:00
Peter Simons 20b364f4de Reverting revisions 30103-30106: "always set nixpkgs.config.{state,store}Dir", etc.
After the change from revision 30103, nixos-rebuild suddenly consumed
freaky amounts of memory. I had to abort the process after it had
allocated well in excess of 30GB(!) of RAM. I'm not sure what is causing
this behavior, but undoing that assignment fixes the problem. The other
two commits needed to be revoked, too, because they depend on 30103.

svn path=/nixos/trunk/; revision=30127
2011-10-30 15:19:58 +00:00
Shea Levy 09cf6ce70c find modules | fgrep .nix | fgrep -v .svn | fgrep -v nixpkgs.nix | xargs sed -i -e 's|/nix/var|${config.nixpkgs.config.nix.stateDir}|g' -e 's|/nix/store|${config.nixpkgs.config.nix.storeDir}|g'
Don't assume /nix/store or /nix/var in NixOS modules, this is configurable

svn path=/nixos/trunk/; revision=30104
2011-10-29 21:03:57 +00:00
Lluís Batlle i Rossell 035ccb8faf Making dovecot2 authentication work (wrong pam module)
svn path=/nixos/trunk/; revision=30076
2011-10-27 22:04:08 +00:00
Lluís Batlle i Rossell 69a31a37e4 Adding a module for dovecot2. I've not tried it much.
svn path=/nixos/trunk/; revision=30072
2011-10-27 19:43:20 +00:00
Lluís Batlle i Rossell 1fe1481adf Fixing systemhealth for kernels 3.x
svn path=/nixos/trunk/; revision=30068
2011-10-27 18:06:54 +00:00
Lluís Batlle i Rossell c7f568dc06 Fixing the xserver.enableTCP for kdm.
svn path=/nixos/trunk/; revision=30056
2011-10-27 15:43:13 +00:00
Eelco Dolstra 6e809242e9 * Ensure that the "kde" PAM module exists whn KDE is enabled.
Previously, this was only enabled in the KDM module, so if you were
  using a different display manager than KDM, stuff like getting out
  of the screensaver didn't work correctly.

svn path=/nixos/trunk/; revision=30049
2011-10-26 21:47:03 +00:00
Lluís Batlle i Rossell b5baad31d2 The virtual consoles were launching a bash not aware of locales.
svn path=/nixos/trunk/; revision=29882
2011-10-18 21:44:35 +00:00
Lluís Batlle i Rossell 62dede7121 The system health url moved.
svn path=/nixos/trunk/; revision=29881
2011-10-18 21:44:06 +00:00
Joachim Schiele 298186fd06 added cntlm as a system service with its own user 'cntlm'
svn path=/nixos/trunk/; revision=29737
2011-10-09 22:34:32 +00:00
Eelco Dolstra 0f816374c7 * Use shm and posixsem for the SSL session cache.
svn path=/nixos/trunk/; revision=29658
2011-10-05 12:24:53 +00:00
Peter Simons 84a37365c2 modules/services/printing/cupsd.nix: ensure that /etc/cups exists before the daemon is run
CUPS is really unhappy when /etc/cups doesn't exist, and without that
directory it's going to mess up file permissions of /nix/store, the web
front-end won't work, and probably all kinds of other stuff is broken
that I didn't notice yet. :-(

svn path=/nixos/trunk/; revision=29452
2011-09-23 14:41:22 +00:00
David Guibert 7d982fd1bd cups: fix smb backend
svn path=/nixos/trunk/; revision=29393
2011-09-20 07:14:27 +00:00
David Guibert df1c3dda68 autofs: add sshfs to PATH
svn path=/nixos/trunk/; revision=29392
2011-09-20 07:14:24 +00:00
Marco Maggesi 91a6dc6168 Make VirtualBox Guest Additions use the configured kernel.
svn path=/nixos/trunk/; revision=29346
2011-09-19 13:20:09 +00:00
Eelco Dolstra 4fff0d2291 * Log sitecopy runs.
svn path=/nixos/trunk/; revision=29299
2011-09-15 15:33:34 +00:00
Eelco Dolstra 61072f8995 * Add a module for a Flash policy server.
svn path=/nixos/trunk/; revision=29296
2011-09-15 15:13:46 +00:00
Peter Simons 8abea71eaa modules/services/monitoring/smartd.nix: run the daemon with --no-fork to make life easier for upstart
svn path=/nixos/trunk/; revision=29287
2011-09-14 18:30:10 +00:00
Peter Simons d1cf78c756 modules/services/monitoring/smartd.nix: provide the implicitly set flag '-a' explicitly
svn path=/nixos/trunk/; revision=29286
2011-09-14 18:30:07 +00:00
Peter Simons eb6e1310b8 strip trailing whitespace; no functional change
svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
Peter Simons f5e8d35f8e modules/services/printing/cupsd.nix: /etc/cups/mime.{convs,types} are obsolete
Current versions of CUPS (1.4.7 or later, apparently) load these files
from ${cups}/share/mime, so we no longer need the symlinks in /etc.

svn path=/nixos/trunk/; revision=29284
2011-09-14 18:20:13 +00:00
Russell O'Connor 1744733be8 Revering CUPS update.
svn path=/nixos/trunk/; revision=29283
2011-09-14 17:58:57 +00:00
Peter Simons 02bb4eb289 modules/services/printing/cupsd.nix: MIME related config files have moved to share in cups 1.5
svn path=/nixos/trunk/; revision=29254
2011-09-13 20:42:21 +00:00
Eelco Dolstra 7dc59f0bb0 * Zabbix: only enable PostgreSQL if it's on the same machine.
svn path=/nixos/trunk/; revision=29185
2011-09-11 15:55:43 +00:00
Yury G. Kudryashov 7a858f2a89 Adjust DM/kde4.nix to latest changes in kde-4.7
svn path=/nixos/trunk/; revision=29181
2011-09-11 12:44:54 +00:00
Yury G. Kudryashov bcee582a74 Preserve <standard_session_service_dirs/> in dbus.conf
This way *session* dbus daemon loads services from XDG_DATA_DIRS

svn path=/nixos/trunk/; revision=29106
2011-09-07 23:07:05 +00:00
Eelco Dolstra 4a65eb6830 * Create /var/lib/upower, where upowerd keeps historical battery data.
svn path=/nixos/trunk/; revision=29057
2011-09-06 11:18:36 +00:00
Eelco Dolstra 5de82a6802 svn path=/nixos/trunk/; revision=29053 2011-09-05 23:33:29 +00:00
Eelco Dolstra 0de04bd4be * Xfce 4.6 fix.
svn path=/nixos/trunk/; revision=29046
2011-09-05 20:50:15 +00:00
Eelco Dolstra 8d8c250b8f * Enable gvfs in Xfce.
svn path=/nixos/trunk/; revision=29044
2011-09-05 20:37:06 +00:00
Eelco Dolstra 94014f4adc * Get the Virtuoso backend in Soprano/Nepomuk to work. Soprano tries
to find virtodbc_r.so in QT_PLUGIN_PATH (among other locations), so
  make sure that Virtuoso can be found there.

svn path=/nixos/trunk/; revision=29033
2011-09-05 17:55:53 +00:00
Yury G. Kudryashov 5ee15d4986 Fix hal evaluation
svn path=/nixos/trunk/; revision=28842
2011-08-26 17:30:53 +00:00
Yury G. Kudryashov c174554ad7 polkit_kde_agent is now kde4.polkit_kde_agent
svn path=/nixos/trunk/; revision=28834
2011-08-26 13:50:03 +00:00
Yury G. Kudryashov 42a03ef0eb Sync with dbus changes in nixpkgs
svn path=/nixos/trunk/; revision=28832
2011-08-26 13:46:59 +00:00
Yury G. Kudryashov ea4630bf97 Allow RUN+="socket:..." in udev rules
svn path=/nixos/trunk/; revision=28808
2011-08-25 08:06:09 +00:00
Yury G. Kudryashov e5917ea6fc Merge with udev-173
The only conflict was the addition of two different options at the same place.

svn path=/nixos/trunk/; revision=28801
2011-08-24 21:24:39 +00:00
Eelco Dolstra 1aa1c86afc * Enable upower and udisks for Xfce 4.8.
svn path=/nixos/trunk/; revision=28764
2011-08-22 23:10:24 +00:00
Eelco Dolstra 3b1c741f3f * Xfce 4.8 doesn't need HAL anymore.
svn path=/nixos/trunk/; revision=28762
2011-08-22 22:52:13 +00:00
Eelco Dolstra ecbfe0d9c0 * Cause KDE's Polkit authentication agent to be started at login.
You now get a nice popup window asking for the appropriate password
  if you try to do something that requires administrative privilege
  (e.g. "pkexec ls" in a terminal, unmounting devices that don't
  belong to you in Dolphin, or killing other people's processes in
  ksysguard).

svn path=/nixos/trunk/; revision=28735
2011-08-22 11:51:03 +00:00
Eelco Dolstra 13a2563d02 * Create /var/lib/udisks because that's where udisks keeps its mtab
file.  Without this, users are not able to unmount their own
  devices (because udisks doesn't remember who mounted them).

svn path=/nixos/trunk/; revision=28730
2011-08-21 21:03:02 +00:00
Peter Simons a84ada1d92 modules/services/monitoring/smartd.nix: pass TZ variable to smartd to ensure that notification e-mails have a proper time zone
svn path=/nixos/trunk/; revision=28702
2011-08-19 20:44:12 +00:00
Yury G. Kudryashov 9177fc455d Adjust nixos to latest changes in kde-4.7 in nixpkgs
svn path=/nixos/trunk/; revision=28598
2011-08-15 18:08:12 +00:00
Eelco Dolstra 4790c147bf * Revert r28400 because ConsoleKit got reverted to 0.4.1.
svn path=/nixos/trunk/; revision=28587
2011-08-15 14:48:32 +00:00
Eelco Dolstra 7e2ea4df32 * Xsession script: set the current directory to $HOME.
svn path=/nixos/trunk/; revision=28511
2011-08-12 10:04:43 +00:00
Shea Levy 38cab9070f synaptics module: By default, disable edge drag scrolling if two finger scrolling is enabled
svn path=/nixos/trunk/; revision=28472
2011-08-10 22:14:46 +00:00
David Guibert 96304c9afc make the virtualbox guest module loadable by modprobe.
svn path=/nixos/trunk/; revision=28436
2011-08-09 19:53:01 +00:00
Eelco Dolstra d75efe4aa1 * For security, don't mount the entire host filesystem.
svn path=/nixos/trunk/; revision=28429
2011-08-09 14:07:44 +00:00
Eelco Dolstra 45d8c418b5 * Some hackery to get ConsoleKit to work with the SLIM and "auto"
display managers.  This was broken due to a change in ConsoleKit
  0.4.2:

    https://bugs.freedesktop.org/show_bug.cgi?id=28377

  Using ConsoleKit's pam-ck-connector helps in that it creates local
  sessions; however, they're not marked as active because the
  x11-display-device property is not set.  As a workaround, calling
  ck-launch-session seems to work.

  More details:

    https://bugs.gentoo.org/show_bug.cgi?id=336634
    http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598150
    https://bugzilla.redhat.com/show_bug.cgi?id=585952

svn path=/nixos/trunk/; revision=28400
2011-08-08 19:28:17 +00:00
Eelco Dolstra 8b30a8f23f * In the VM tests, add "-m 0" to syslogd to kill the "-- MARK --"
messages.  These prevent hanging tests from being killed after 1
  hour of silence.

svn path=/nixos/trunk/; revision=28393
2011-08-08 14:40:16 +00:00
Shea Levy 843ccae5d5 multitouch: Use the right package name
svn path=/nixos/trunk/; revision=28375
2011-08-08 01:39:26 +00:00
Shea Levy 9464c99ce2 First attempt at a multitouch touchpad module.
Note that the Multitouch X Driver currently has no configuration beyond editing the source code, so the only option is enable or disable

svn path=/nixos/trunk/; revision=28373
2011-08-08 01:34:36 +00:00
Shea Levy 30861ecbc8 Create multitouch module based off synaptics module
svn path=/nixos/trunk/; revision=28372
2011-08-08 01:27:44 +00:00
Karn Kallio c36cf7b591 Reflect kdegraphics organization.
svn path=/nixos/trunk/; revision=28214
2011-08-07 00:52:35 +00:00
Eelco Dolstra 1df952182a * Only flush the POSTROUTING chain.
svn path=/nixos/trunk/; revision=28153
2011-08-04 15:33:40 +00:00
Eelco Dolstra d890e74d9c * Hacks to keep KDE 4.5 working. The latest D-Bus is more strict in
checking function arguments, so DBUS_FATAL_WARNINGS=0 is necessary
  to prevent KDE from aborting.  Also put the Phonon gstreamer backend
  in the environment if available.

svn path=/nixos/trunk/; revision=28113
2011-08-01 14:28:28 +00:00
Eelco Dolstra af22531d38 * Remove the hydra-mirror module from NixOS, it's too specialised.
svn path=/nixos/trunk/; revision=28024
2011-07-31 22:00:29 +00:00
Eelco Dolstra fc9f6d0395 svn path=/nixos/trunk/; revision=27991 2011-07-28 16:35:13 +00:00
Eelco Dolstra 31afd2bb2e * vsftpd: use /var/empty instead of /var/ftp/empty as the empty
chroot (the latter doesn't exist).
* vsftpd: make the anonymous user's home read-only, otherwise vsftpd
  will fail.

svn path=/nixos/trunk/; revision=27983
2011-07-28 09:42:20 +00:00
Nicolas Pierron 66ffeb3fd9 UPS: Make sure the driver pid files can be stored.
svn path=/nixos/trunk/; revision=27979
2011-07-27 20:55:39 +00:00
Nicolas Pierron e231543033 Add new services: freepops, fuppes and ups.
svn path=/nixos/trunk/; revision=27977
2011-07-27 20:55:28 +00:00
Eelco Dolstra abb2779840 * The write_cd_rules script in udev needs udev in its $PATH.
svn path=/nixos/trunk/; revision=27970
2011-07-26 21:01:36 +00:00
Eelco Dolstra d1f1cfcd41 * Don't make PulseAudio a requirement for KDE, it works fine without
it (especially now that KDE doesn't try to start PulseAudio
  automatically).

svn path=/nixos/trunk/; revision=27969
2011-07-26 18:34:59 +00:00
Eelco Dolstra 3b374ea326 * Move PulseAudio initialisation below the re-exec to prevent it from
being started twice.

svn path=/nixos/trunk/; revision=27968
2011-07-26 18:34:10 +00:00
Eelco Dolstra 3fdc209978 * Start PulseAudio from the X session script.
svn path=/nixos/trunk/; revision=27967
2011-07-26 18:16:24 +00:00
Eelco Dolstra 7bdaedb465 * Add a module to enable PulseAudio. It causes all ALSA applications
to be rerouted to PulseAudio.

  Note that this is distinct from the already existing module
  ‘services/audio/pulseaudio.nix’ that provides a system-wide
  PulseAudio daemon, which is usually not what you want.

svn path=/nixos/trunk/; revision=27958
2011-07-26 01:51:56 +00:00
Eelco Dolstra a1df35a590 * Don't enable HAL by default anymore. It's obsolete. It's still
enabled by modules that need it (KDE < 4.7, Xfce).
* Don't enable the PolicyKit module by default either, it's also
  obsolete (replaced by PolKit).  It's still enabled if HAL is
  enabled.

svn path=/nixos/trunk/; revision=27933
2011-07-25 00:52:59 +00:00
Eelco Dolstra 38fddb2243 * The X server doesn't actually depend on HAL anymore.
svn path=/nixos/trunk/; revision=27932
2011-07-25 00:50:46 +00:00
Eelco Dolstra 2e4acbcf8b * Add a NixOS module for upower.
svn path=/nixos/trunk/; revision=27931
2011-07-25 00:45:52 +00:00
Eelco Dolstra a9f599154a * Remove stupid ‘libraryPath’ entries from ~/.config/Trolltech.conf
that can randomly cause KDE to fail.

svn path=/nixos/trunk/; revision=27925
2011-07-24 22:07:58 +00:00
Eelco Dolstra 83846d8417 * NixOS module for Udisks.
svn path=/nixos/trunk/; revision=27909
2011-07-23 01:30:36 +00:00
Peter Simons 3a1b6266e4 modules/services/monitoring/smartd.nix: added services.smartd.devices option to configure list of devices to monitor
By default -- if this option is unset --, all connected devices will be
monitored. Hard-coding the list of devices is worth-while, though, because this
will also configure smartd to send e-mail messages to 'root' when a test fails.

svn path=/nixos/trunk/; revision=27888
2011-07-21 19:32:15 +00:00
Eelco Dolstra 7c6c50a3bf * Nuke the KDE icon cache on login.
svn path=/nixos/trunk/; revision=27867
2011-07-21 11:16:46 +00:00
Lluís Batlle i Rossell 4e73287456 Adding a syslog parameter to receive log from other devices through the network.
svn path=/nixos/trunk/; revision=27866
2011-07-21 07:42:05 +00:00
Eelco Dolstra 68350e646d * Support KDE 4.7.
svn path=/nixos/trunk/; revision=27818
2011-07-18 12:37:13 +00:00
Eelco Dolstra c45356769e * /var/lib/kdm needs to be owned by ‘kdm’.
* Set KDEDIRS properly in kdm.

svn path=/nixos/trunk/; revision=27817
2011-07-18 12:36:46 +00:00
Eelco Dolstra c971f2b1ac * Shut up some udev warnings.
svn path=/nixos/trunk/; revision=27806
2011-07-17 11:01:31 +00:00
Eelco Dolstra 6490c6ba21 * Don't use /tmp/kdm as the home directory for the kdm user - sounds
insecure.
* Create /var/lib/kdm.
* In kdmrc, set BootManager to "Grub2" if we're using GRUB 2.

svn path=/nixos/trunk/; revision=27805
2011-07-17 10:52:40 +00:00
Eelco Dolstra 14636ba057 * The Powers That Be have decided that there shall be a /run to
replace /var/run and /var/lock.  For instance, udev now keeps state
  in /run/udev instead of /dev/.udev.  See

    http://lists.fedoraproject.org/pipermail/devel/2011-March/150031.html
    http://bugs.freestandards.org/show_bug.cgi?id=718

  So this patch creates /run as a tmpfs, and symlinks /var/run to /run
  and /var/lock to /run/lock.

  TODO: create /run in stage 1 and propagate it to stage 2.    

svn path=/nixos/trunk/; revision=27803
2011-07-16 19:27:45 +00:00
Eelco Dolstra 23d7a822f1 * Fix the path to mount in the rule in 50-udev-default.rules that
mounts /sys/fs/fuse/connections.

svn path=/nixos/trunk/; revision=27802
2011-07-16 18:40:08 +00:00
Peter Simons aec0ee107c modules/services/logging/syslogd.nix: change type of 'tty' option to "uniq string"
svn path=/nixos/trunk/; revision=27774
2011-07-14 11:35:03 +00:00
Sander van der Burg c630e52873 Added MySQL replication support + 2 MySQL testcases (including replication)
svn path=/nixos/trunk/; revision=27771
2011-07-13 20:58:48 +00:00
Peter Simons d7c4900420 syslogd: extended configuration options
This commit adds the option 'services.syslogd.defaultConfig', which is
the main syslog.conf file used by the daemon. Like before, That file can
be extended by means of 'services.syslogd.extraConfig'. Users who want a
completely different configuration, however, can re-define defaultConfig
to their liking.

Furthermore, the option services.syslogd.tty' is now optional: setting
its value to the empty string "" disables logging to TTY altogether.

svn path=/nixos/trunk/; revision=27769
2011-07-13 18:24:53 +00:00
Peter Simons fb1b0c0372 modules/services/monitoring/smartd.nix: added support for running smart daemon
Set "services.smartd.enable = true" to enable the service.

svn path=/nixos/trunk/; revision=27767
2011-07-13 17:47:34 +00:00
Peter Simons 0ffb794d5d modules/services/networking/ssh/sshd.nix: strip trailing whitespace
svn path=/nixos/trunk/; revision=27733
2011-07-12 10:34:30 +00:00
Peter Simons ea84edd528 modules/services/networking/ssh/sshd.nix: added new boolean options usePAM and passwordAuthentication
Setting both of these options to 'false' configures the OpenSSH daemon to
reject password authentication, i.e. users must have an appropriate key in
~/.ssh/authorized_keys in order to be able to log in.

svn path=/nixos/trunk/; revision=27732
2011-07-12 10:34:27 +00:00
Eelco Dolstra 6857a28f0e * Postfix needs TZ to be set, otherwise the generated headers are
wrong (reported by Peter Simons).

svn path=/nixos/trunk/; revision=27639
2011-07-07 19:18:40 +00:00
Eelco Dolstra 466d798b15 * Oops.
svn path=/nixos/trunk/; revision=27608
2011-07-05 12:54:50 +00:00
Eelco Dolstra 3bc3dc3940 * Put the NixOS firewall ruleset in its own chain (‘nixos-fw’). This
should make it easier to compose with packages that set their own
  firewall rules, such as Nova or Libvirt.
* Provide a chain for accepted packets (‘nixos-fw-accept’), requested
  by Nicolas Pierron.

svn path=/nixos/trunk/; revision=27607
2011-07-05 12:51:46 +00:00
Eelco Dolstra 1d09ad240a * Don't set defaultSkin to "default" because that's a horrible skin
(does it even exist?).  Use "" instead (which is really "monobook").

svn path=/nixos/trunk/; revision=27604
2011-07-04 15:51:38 +00:00
Eelco Dolstra bf00977ce1 * Add an option ‘services.postgresql.extraConfig’.
svn path=/nixos/trunk/; revision=27550
2011-06-27 10:15:26 +00:00
Joachim Schiele 1ea24769a0 added support for two custom themes and also wrote a nice looking nixos theme
svn path=/nixos/trunk/; revision=27535
2011-06-23 20:56:37 +00:00
Eelco Dolstra 6719446d4b * Some hackery to get foomatic-filters to work.
svn path=/nixos/trunk/; revision=27471
2011-06-15 12:41:15 +00:00
Eelco Dolstra c2a3aa8e79 * Open UDP port 631 in the firewall to allow CUPS to discover
printers on the network.

svn path=/nixos/trunk/; revision=27399
2011-06-08 15:55:51 +00:00
Evgeny Egorochkin c734389e90 Virtuoso: add parameters section to config
svn path=/nixos/trunk/; revision=27342
2011-06-04 10:53:07 +00:00
Evgeny Egorochkin 733917db0f Virtuoso: add dirsAllowed option, minor cleanup
svn path=/nixos/trunk/; revision=27336
2011-05-31 14:56:56 +00:00
Evgeny Egorochkin b65a4840b8 Make virtuoso drop root privileges
svn path=/nixos/trunk/; revision=27334
2011-05-31 09:56:55 +00:00
Evgeny Egorochkin 14859264a9 Virtuoso database service: packaged
svn path=/nixos/trunk/; revision=27332
2011-05-31 07:44:17 +00:00
Eelco Dolstra 4984fa1ee6 * Fix the Nixpkgs mirror script (it didn't have the necessary
modules in the Perl search path).

svn path=/nixos/trunk/; revision=27261
2011-05-16 07:46:31 +00:00
Lluís Batlle i Rossell c4fe98706b Fixing the samba daemons. "smbd -i", as we were using, handles *one request* and exit.
When it was working more or less, it was through upstart respawn.


svn path=/nixos/trunk/; revision=27140
2011-05-04 12:34:26 +00:00
Michael Raskin a61015cfa1 IRCD expression needs recursive attrsets...
svn path=/nixos/trunk/; revision=27025
2011-04-28 08:23:09 +00:00
Lluís Batlle i Rossell 0af7c7bdcb Making the samba services get the timezone.
svn path=/nixos/trunk/; revision=27022
2011-04-28 08:07:17 +00:00
Eelco Dolstra 6739162d9a * Move ircd-hybrid stuff from the services tree to the nixos tree.
svn path=/nixos/trunk/; revision=27009
2011-04-27 16:27:05 +00:00
Eelco Dolstra aefa687b02 * Move the twiki module out of the NixOS tree.
svn path=/nixos/trunk/; revision=27001
2011-04-27 15:00:32 +00:00
Eelco Dolstra 56f1918e1c * Move the Subversion/Repoman module out of the NixOS tree.
svn path=/nixos/trunk/; revision=27000
2011-04-27 14:52:55 +00:00
Eelco Dolstra e3a2cd58e0 svn path=/nixos/trunk/; revision=26998 2011-04-27 14:10:33 +00:00
Eelco Dolstra 742881a0f9 svn path=/nixos/trunk/; revision=26997 2011-04-27 14:10:03 +00:00
Eelco Dolstra 257326915b * gw6c: don't depend on the services tree.
svn path=/nixos/trunk/; revision=26995
2011-04-27 14:03:46 +00:00
Eelco Dolstra e5966f96b7 * Fix the jboss module.
svn path=/nixos/trunk/; revision=26992
2011-04-27 13:33:06 +00:00
Eelco Dolstra 650d14be8d * Remove most references to the "services" tree.
svn path=/nixos/trunk/; revision=26990
2011-04-27 13:16:33 +00:00
Eelco Dolstra 76d3721a53 * `dnsmasq' shouldn't run by default.
svn path=/nixos/trunk/; revision=26890
2011-04-19 13:37:31 +00:00
Evgeny Egorochkin 23df246c9e 4Store SPARQL endpoint: packaged
svn path=/nixos/trunk/; revision=26853
2011-04-15 16:10:17 +00:00
Evgeny Egorochkin a094140655 4store database service: packaged
svn path=/nixos/trunk/; revision=26852
2011-04-15 16:10:13 +00:00
Lluís Batlle i Rossell 7a4685d28d Openldap needs a directory in /var/run to start, and it seems it's clean at every boot.
svn path=/nixos/trunk/; revision=26840
2011-04-14 09:54:46 +00:00
Lluís Batlle i Rossell d8a702f59f Making the samba daemons see the nss modules (needed for ldap-unix-pam integration)
svn path=/nixos/trunk/; revision=26830
2011-04-13 20:06:29 +00:00
Lluís Batlle i Rossell e7c9266a70 Adding a poor openldap server module.
svn path=/nixos/trunk/; revision=26822
2011-04-13 17:35:19 +00:00
Lluís Batlle i Rossell 6824866d6d Adding a dnsmasq simple module.
svn path=/nixos/trunk/; revision=26820
2011-04-13 14:09:02 +00:00
Eelco Dolstra e9b2ebcb99 * Send a TCP RST packet, rather than an ICMP port-unreachable packet,
for (apparently) open TCP connections that connection tracking 
  doesn't know about.  This prevents TCP connections to this machine
  from hanging in CLOSE_WAIT for a long time.

svn path=/nixos/trunk/; revision=26802
2011-04-12 11:25:57 +00:00
Lluís Batlle i Rossell 82a0aa0a8f Fixing a path in the trac ldap part. Too much slashes make things go wrong.
svn path=/nixos/trunk/; revision=26786
2011-04-11 19:43:48 +00:00
Lluís Batlle i Rossell 9c492e34bb Making the trac module ldap-aware (for the authentication) and sqlite aware.
svn path=/nixos/trunk/; revision=26768
2011-04-09 16:05:36 +00:00
Eelco Dolstra c4a2eeb9f8 * Added a module for the RabbitMQ server.
svn path=/nixos/trunk/; revision=26630
2011-03-31 17:04:05 +00:00
Nicolas Pierron 96fc9379ba Convert assertion option into mkAssert.
svn path=/nixos/trunk/; revision=26614
2011-03-30 17:52:34 +00:00
Eelco Dolstra 87a2c6d9c5 * Don't enable rdnssd by default for the moment.
svn path=/nixos/trunk/; revision=26505
2011-03-25 09:29:22 +00:00
Eelco Dolstra b2d6dfecbc * Add the rdnss daemon.
* Add the ndisc6 package to the system path if IPv6 is enabled.

svn path=/nixos/trunk/; revision=26496
2011-03-24 16:23:28 +00:00
Eelco Dolstra f71bd3f93c * dhclient: ignore libvirt's network interfaces.
svn path=/nixos/trunk/; revision=26327
2011-03-15 15:30:12 +00:00
Eelco Dolstra 3cb7a54dba * Added an option `networking.bridges' to allow Ethernet bridges to be
defined.

svn path=/nixos/trunk/; revision=26325
2011-03-15 15:13:48 +00:00
Eelco Dolstra 64d871c0d9 * Enable FTP connection tracking in the firewall.
svn path=/nixos/trunk/; revision=26275
2011-03-11 13:34:17 +00:00
Eelco Dolstra 005ca15f64 * Firewall: add an option to allow extra firewall rules to be added.
* Firewall: change the policy of the INPUT chain back to ACCEPT to
  prevent a lockup when the Nix store is mounted over the network
  (i.e. in our VM tests).  This is because as soon as the policy is
  set to DROP, the iptables modules that enable access to the network
  filesystem cannot be acccessed anymore.

svn path=/nixos/trunk/; revision=26274
2011-03-11 13:04:17 +00:00
Eelco Dolstra ab0ce6734b * firewall.nix: Only flush/delete the chains created by us.
svn path=/nixos/trunk/; revision=26271
2011-03-11 11:53:18 +00:00
Eelco Dolstra f672aa71bf * RFC 4890 says that local nodes should not filter pretty much any
ICMPv6 messages (including echo requests), so don't do that.

svn path=/nixos/trunk/; revision=26270
2011-03-11 11:08:16 +00:00
Eelco Dolstra 0ea9f6611a * Add some more rules to allow ICMPv6 router/neighbour advertisements
in.  Maybe we're better off accepting all ICMPv6 messages *except*
  echo requests.

svn path=/nixos/trunk/; revision=26260
2011-03-10 16:25:08 +00:00
Eelco Dolstra 53bc6d3efa * NAT module: support active FTP.
svn path=/nixos/trunk/; revision=26247
2011-03-10 13:03:47 +00:00
Eelco Dolstra 9bf4ac079e * Add a module for doing Network Address Translation.
svn path=/nixos/trunk/; revision=26246
2011-03-10 12:08:39 +00:00
Eelco Dolstra d6424efbfb * Cleanup.
svn path=/nixos/trunk/; revision=26244
2011-03-10 09:39:17 +00:00
Eelco Dolstra e884cbed7d * Add an option for opening UDP ports.
* Accept packets destined for link-local addresses (fe80::/10).

svn path=/nixos/trunk/; revision=26236
2011-03-09 16:37:16 +00:00
Eelco Dolstra 12161f3183 * Add a firewall option to allow pings. (Maybe this should
be enabled by default.)

svn path=/nixos/trunk/; revision=26233
2011-03-09 15:28:47 +00:00
Eelco Dolstra e4051e105c * Use a separate chain for logging and rejecting.
svn path=/nixos/trunk/; revision=26232
2011-03-09 15:11:01 +00:00
Eelco Dolstra 66716f9dd5 * Firewall: support IPv6.
svn path=/nixos/trunk/; revision=26231
2011-03-09 14:41:48 +00:00