Rob Vermaas
973fa21b52
Better support for HVM instances. Now the NixOS images can
...
be used on HVM instances without needing nixops. Previously
the grub setup was incorrect, so a plain 'nixos-rebuild switch'
and a reboot would result in a broken system.
Also added growing of the partition of the root disk in the initrd,
so you can run resize2fs after initial boot, without needing an
extra reboot. This is useful especially for nixops'
deployment.ec2.ebsInitialRootDiskSize option.
(cherry picked from commit 044a24e58bcf4cf48df02df936c542839fb08d90)
2014-05-21 16:37:55 +02:00
Rob Vermaas
cdfb8738a4
Use HVM instance for EBS creator, guarantees everything is created in the correct zone.
...
(cherry picked from commit c9763e20e5e793be5eef155601f59dd7639c7ba3)
2014-05-21 16:37:55 +02:00
Rob Vermaas
3da94435c0
Add option ec2.hvm, to set some boot configuration specific for EC2 HVM instances.
...
(cherry picked from commit 35c76d917307b7ac405486855cfe63021810dba5)
Conflicts:
nixos/modules/virtualisation/amazon-image.nix
2014-05-21 16:37:53 +02:00
Eelco Dolstra
f23231f198
Installer test: Don't wait for dhcpcd if we don't have a network
2014-05-21 15:55:50 +02:00
Eelco Dolstra
784503864b
Enable the xf86-video-modesetting driver
2014-05-21 15:55:50 +02:00
Eelco Dolstra
ca123bc274
Installer test: Get rid of a warning
2014-05-21 15:55:50 +02:00
Eelco Dolstra
c54eb79063
Don't kill unionfs-fuse during shutdown
...
Killing the daemon backing /nix/store prevents a clean shutdown. See
http://www.freedesktop.org/wiki/Software/systemd/RootStorageDaemons/
2014-05-21 15:55:50 +02:00
Eelco Dolstra
5e364503d5
NixOS ISO: Don't use a unionfs for /
...
We don't need a unionfs on /, we only need a tmpfs.
2014-05-21 15:55:50 +02:00
Eelco Dolstra
48601269a9
test-driver: Set context to include machines created by createMachine
2014-05-21 15:55:50 +02:00
Eelco Dolstra
d4ccfe3f6b
Don't create /media
...
It's obsolete - udisks2 uses /run/media/<username>.
2014-05-21 15:55:49 +02:00
Eelco Dolstra
1e2291f23a
nixos-install: Fix running it after again the activation script
2014-05-21 15:55:49 +02:00
Luca Bruno
6e13cc82df
Override glib_networking with gnome 3.12 scope
2014-05-21 13:40:35 +02:00
Luca Bruno
7da235a988
evolution-data-server: use the right gnome3 package set in the service
2014-05-21 13:40:35 +02:00
Eelco Dolstra
48768f3129
NixOS ISO: Set empty root password
2014-05-21 12:04:08 +02:00
Eelco Dolstra
e135e6b35b
nixos-install: Copy /etc/hosts
...
http://hydra.nixos.org/build/11130069
2014-05-21 11:20:33 +02:00
Eelco Dolstra
35925d7a76
Fix installer test
...
The installer now asks the user to set a root password if stdin is a
tty, which doesn't work for an interactive test.
http://hydra.nixos.org/build/11130072
2014-05-21 11:04:45 +02:00
lethalman
1b0b0d3bb2
Merge pull request #2675 from cstrahan/fix-useradd
...
Fix -G delimiter in call to useradd
2014-05-21 00:40:50 +02:00
Luca Bruno
af3d1ad06d
Add gnome 3.12 test
2014-05-20 13:41:41 +02:00
Luca Bruno
df95a8cc2f
upower: add 0.99 version for gnome 3.12
2014-05-20 13:41:39 +02:00
Luca Bruno
f07fd89111
Allow specifying the gnome3 packages to use for the xserver service
2014-05-20 13:41:39 +02:00
Eelco Dolstra
097f9c7e57
Fix udev rule required by gpm
...
Backport: 14.04
2014-05-20 13:09:41 +02:00
Eelco Dolstra
bddd10d75c
switch-to-configuration: Don't restart instances of user@.service
...
Restarting user@ instances is bad because it causes all user services
(such as ssh-agent.service) to be restarted. Maybe one day we can have
switch-to-configuration restart user units in a fine-grained way, but
for now we should just ignore user systemd instances.
Backport: 14.04
2014-05-20 11:12:56 +02:00
Austin Seipp
e31f212f6b
nixos/duosec: Add an option to allow TCP forwarding
...
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-20 02:42:38 -05:00
Austin Seipp
67c309fe75
Fix fallout from 4f27ad14
...
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-18 07:38:13 -05:00
Vladimír Čunát
bc792bda14
fix eval after previous commit
2014-05-18 14:27:41 +02:00
Vladimír Čunát
8e9ead8656
berlios.de probably shut down, replace it
...
The shutdown was announced years ago, only now it stopped working.
2014-05-18 13:30:27 +02:00
Rob Vermaas
3ce6ce149e
Fix dogstatsd, needs procps in path.
...
(cherry picked from commit ecdb0f7867007b2e5ae0d14a0994d3b502d90fa7)
2014-05-18 13:00:57 +02:00
Austin Seipp
a0c6f07be4
Merge pull request #2604 from wkennington/master.notbit
...
notbit: Bump version and add more configuration options
2014-05-17 16:44:27 -05:00
Austin Seipp
4f27ad14a1
grsec: refactor grsecurity packages
...
This now provides a handful of different grsecurity kernels for slightly
different 'flavors' of packages. This doesn't change the grsecurity
module to use them just yet, however.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-17 14:09:43 -05:00
Austin Seipp
92abc4c610
kernel: enable AppArmor by default
...
AppArmor only requires a few patches to the 3.2 and 3.4 kernels in order
to work properly (with the minor catch grsecurity -stable includes the
3.2 patches.) This adds them to the kernel builds by default, removes
features.apparmor (since it's always true) and makes it the default MAC
system.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-17 14:09:09 -05:00
Charles Strahan
5445132f73
fix -G delimiter in call to useradd
2014-05-17 00:45:16 -04:00
Austin Seipp
2558fa587b
Merge pull request #2629 from letac/master
...
Phabricator, a web application, snapshot of 2014-05-12
2014-05-14 14:57:36 -05:00
lethalman
8967d2d3b3
Merge pull request #2301 from bjornfor/graphite-fixes
...
nixos/graphite-service: fix startup
2014-05-14 21:44:43 +02:00
William A. Kennington III
08467c14de
notbit: Add additional options to the daemon
2014-05-13 20:20:19 -05:00
William A. Kennington III
042273e528
notbit: Don't include unecessary notbit binaries in the environment
2014-05-13 20:19:57 -05:00
William A. Kennington III
8915390bab
notbit: Use the correct default port
2014-05-13 20:19:27 -05:00
Athan Clark
5fc3df831c
Simple typo
2014-05-13 10:35:57 -06:00
lethalman
8051101362
Merge pull request #2375 from lethalman/gnome3
...
gtkhtml, evolution, gnome-photos, gnome-clocks, zeitgeist, bijiben
2014-05-13 12:04:11 +02:00
Corey O'Connor
5112e6476b
resolve issue #2308
2014-05-13 11:11:34 +02:00
Strahinja Popovic
25e0d51a67
Phabricator, a web application, snapshot of 2014-05-12
2014-05-12 19:59:40 +02:00
Wout Mertens
c927cee2c3
dhcpcd: Allow adding hook code
2014-05-12 15:03:42 +02:00
Rob Vermaas
7d3dcd9a8c
Set console=ttyS0 for Amazon EC2 instances, as suggested by Amazon.
2014-05-12 12:29:04 +02:00
Thomas Tuegel
8df521bf0f
sane: use mkSaneConfig to set system environment
2014-05-11 14:01:07 -05:00
Emery Hemingway
c96d5fe170
nixos: f2fs filesystem module support ( close #2085 )
2014-05-11 13:53:26 +02:00
mornfall
456ef924ba
Merge pull request #2497 from aristidb/sudo_terminfo
...
sudo: env_keep TERMINFO for urxvt
2014-05-10 19:34:14 +02:00
Rickard Nilsson
b87b6870f8
When auto-formatting ext devices, use the -F flag to make it work with unpartioned disks
2014-05-09 16:49:03 +02:00
Eelco Dolstra
253bbb8e2b
nixos-container: Ensure umask 022
...
Fixes #2585 .
2014-05-09 13:26:02 +02:00
Eelco Dolstra
1c4fd9b25d
nixos-install: Run in a separate UTS namespace
...
This prevents the activation script from clobbering our hostname.
2014-05-09 13:25:53 +02:00
Eelco Dolstra
c06786759c
/var/run -> /run
2014-05-09 00:52:02 +02:00
Eelco Dolstra
61bdad6775
nixos-install: Don't bind-mount all of /etc
...
We only need a copy of /etc/resolv.conf for networking, and
/etc/{passwd,group} for building.
2014-05-09 00:52:02 +02:00
Eelco Dolstra
3ef8d6ad5c
nixos-install: Add operation --chroot
...
"nixos-install --chroot" runs a command (by default a login shell) in
a chroot inside the NixOS installation in /mnt. This might useful for
poking around a new installation.
2014-05-09 00:52:02 +02:00
Eelco Dolstra
4fc151b5a3
nixos-install: Ask the user to set a root password
...
This removes the need to have an initially empty root password.
2014-05-09 00:52:02 +02:00
Eelco Dolstra
8919d736a0
nixos-install: Don't copy the bootstrap Nix if it's already there
...
This makes re-running nixos-install a bit faster.
2014-05-09 00:52:02 +02:00
Eelco Dolstra
22f102cbdc
nixos-install: Assume the build user group is "nixbld"
...
The build user group is always "nixbld", so no need to detect it.
2014-05-09 00:52:02 +02:00
Eelco Dolstra
171d43ba4f
nixos-install: Run in a private mount namespace
...
This ensures that all mounts are automatically cleaned up.
2014-05-09 00:52:02 +02:00
Eelco Dolstra
e0e656ef46
nixos-install: Don't pass --show-trace by default
2014-05-09 00:51:48 +02:00
Eelco Dolstra
4b7c606589
nixos-generator-config: Don't emit a double / in bind mounts
2014-05-09 00:51:48 +02:00
Eelco Dolstra
dc78ae327c
nixos-generate-config: Don't include /var/setuid-wrappers
2014-05-09 00:51:48 +02:00
Eelco Dolstra
91afe9eb8d
nixos-generate-config: Use stable device paths (e.g. /dev/disk/by-uuid/X)
2014-05-09 00:51:48 +02:00
Eelco Dolstra
1bd8ced9c0
Don't enable the NVIDIA driver by default because it's unfree
2014-05-09 00:51:48 +02:00
Vladimír Čunát
2aa3580a5e
nixos-generate-config.pl: add new PCI IDs for broadcom_sta
...
The last ID wasn't in official README,
but it was reported by third3ye on IRC.
2014-05-08 15:24:41 +02:00
Eelco Dolstra
30180e8a24
Fix incorrect comment
2014-05-08 12:29:59 +02:00
Eelco Dolstra
fae135b871
Installer test: Increase amount of RAM
...
On x86_64, 384 MB is not enough anymore for running "nix-env -i".
http://hydra.nixos.org/build/10865007
2014-05-07 18:24:15 +02:00
Eelco Dolstra
333bfe16c4
Containers: Support setting up macvlan interfaces
...
By setting a line like
MACVLANS="eno1"
in /etc/containers/<name>.conf, the container will get an Ethernet
interface named mv-eno1, which represents an additional MAC address on
the physical eno1 interface. Thus the container has direct access to
the physical network. You can specify multiple interfaces in MACVLANS.
Unfortunately, you can't do this with wireless interfaces.
Note that dhcpcd is disabled in containers by default, so you'll
probably want to set
networking.useDHCP = true;
in the container, or configure a static IP address.
To do: add a containers.* option for this, and a flag for
"nixos-container create".
2014-05-07 17:53:57 +02:00
Eelco Dolstra
6f7aaf10a5
Containers: Use systemd-nspawn's --network-veth flag
...
Note that this causes the name of the host-side interface to change
from c-<name> to ve-<name>.
2014-05-07 17:53:57 +02:00
Eelco Dolstra
810680bcae
Containers: Use systemd-nspawn's --keep-unit flag
...
This gets rid of some redundant scopes/slices.
2014-05-07 17:53:57 +02:00
Eelco Dolstra
5bfe944907
Don't run hwclock if /dev/rtc doesn't exist
...
E.g. on EC2 instances.
Backport: 14.04
2014-05-05 16:47:51 +02:00
Eelco Dolstra
4a08f37206
Don't start getty@tty1 on headless machines (like EC2)
...
Backport: 14.04
2014-05-05 16:47:36 +02:00
Eelco Dolstra
bac68f9747
switch-to-configuration: Honour RefuseManualStop
...
This prevents spurious errors about systemd-tmpfiles-setup.service.
Backport: 14.04
2014-05-05 16:46:58 +02:00
Rob Vermaas
d056d1d37b
Fix users.*.extraGroups for users.mutableUsers = true.
...
(cherry picked from commit eb222923054fdc895ab73ff5d0260c1e1fc689c7)
2014-05-05 15:35:16 +02:00
Aristid Breitkreuz
204fc0a397
sudo: env_keep TERMINFO for urxvt
2014-05-04 14:42:16 +02:00
Luca Bruno
4ca985a7e3
bijiben: new package
...
Note editor designed to remain simple to use
https://wiki.gnome.org/Apps/Bijiben
2014-05-02 17:43:18 +02:00
Luca Bruno
b3fe998fdb
gnome-clocks: new package
...
Clock application designed for GNOME 3
https://wiki.gnome.org/Apps/Clocks
2014-05-02 16:04:57 +02:00
Luca Bruno
fbfccea0e8
geoclue2: add dbus service
2014-05-02 16:04:57 +02:00
Luca Bruno
4229053cb0
gnome-photos: new package
...
Photos is an application to access, organize and share your photos with GNOME 3
https://wiki.gnome.org/Apps/Photos
2014-05-02 16:04:57 +02:00
Luca Bruno
d6206ccceb
evolution: new package
...
Personal information management application that provides integrated mail,
calendaring and address book functionality
https://wiki.gnome.org/Apps/Evolution
2014-05-02 16:04:57 +02:00
Michael Raskin
eef9a8ac2a
On my system OpenGL with bumblebee seems to require libudev in LD_LIBRARY_PATH. Fix that, fix bumblebee module loading and make the socket group configurable
2014-05-02 14:32:47 +04:00
Austin Seipp
368a677c97
nixos: overhaul datadog module
...
This overhauls the Datadog module a bit to be much more useful. In
particular, it adds support for nginx and postgresql monitoring
integrations to dd-agent. These have to exist in separate files under
/etc/dd-agent, so the module just exposes then as separate options. In
the future, more integrations could be added this way.
In the process of doing this, I also had to rename the dd-agent user to
datadog. Note the UIDs did not change, so this is strictly backwards
compatible. The reason for this is to make it easier to create a
'datadog' postgres user with access to pg_stats, as 'dd-agent' typically
isn't a valid username. This allows the out of the box configurations to
be used.
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-02 01:24:35 -05:00
Austin Seipp
b553d11616
btsync: Default to no login/password for the Web UI
...
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-02 00:41:47 -05:00
Austin Seipp
8946e91fad
btsync: remove unneeded assertion
...
Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-05-01 17:00:49 -05:00
William A. Kennington III
1396f624f4
sshd: Fix typing for options which take paths
2014-05-01 16:33:44 -05:00
William A. Kennington III
78c33177ce
ssh: Support knownHost public keys as strings
2014-05-01 16:21:25 -05:00
Domen Kožar
1a501134e8
Merge pull request #2467 from lethalman/release-notes
...
Added gnome 3.10 to the release notes
2014-05-01 18:37:08 +02:00
Luca Bruno
ea1a9445bb
Added gnome 3.10 to the release notes
2014-05-01 18:32:28 +02:00
Shea Levy
e4630c1d41
grub: Allow setting the boot root explicitly
...
If /boot is a btrfs subvolume, it will be on a different device than /
but not be at the root from grub's perspective. This should be fixed in
a nicer way by #2449 , but that can't go into 14.04.
2014-05-01 10:56:55 -04:00
Eelco Dolstra
0b091e1286
Mark builds from git explicitly
2014-05-01 15:05:14 +02:00
Eelco Dolstra
3b616e378a
release.nix: Drop officialRelease flag
2014-05-01 15:05:14 +02:00
Eelco Dolstra
c9ebb42573
Disable the rabbitmq test
...
It frequently gets stuck in an infinite loop, delaying releases for
many hours.
2014-04-30 23:19:50 +02:00
Eelco Dolstra
0ea20bef3c
Set release date
2014-04-30 23:13:45 +02:00
Eelco Dolstra
be0f5eb45c
qemu-guest.nix: Load virtio_rng
...
This allows the guest to have a paravirtualized RNG, if the host
provides it.
2014-04-30 18:23:42 +02:00
Eelco Dolstra
a96f4920d5
Don't make the EFI tests release-critical
...
They're failing on i686: http://hydra.nixos.org/build/10712961
2014-04-30 16:48:20 +02:00
Eelco Dolstra
1d8f7e63b0
Punctuation
2014-04-30 16:39:56 +02:00
Shea Levy
8e9de81857
Merge remote-tracking branch 'origin/modernize_nixos_generate_config'
...
modernize nixos-generate-config
2014-04-30 10:23:52 -04:00
Shea Levy
26d03000c2
Actually use services.mysql.port
...
Fixes #1315
2014-04-30 10:21:29 -04:00
Eelco Dolstra
05decd49ff
Handle Zabbix agent and server both being enabled
...
This gave an error about the zabbix user uid being defined multiple
times.
2014-04-30 16:18:03 +02:00
Domen Kozar
88a8ec37d3
modernize nixos-generate-config
2014-04-30 16:14:53 +02:00
Eelco Dolstra
27d47f3983
Fix the simple installer test
...
http://hydra.nixos.org/build/10712818
2014-04-30 15:07:34 +02:00
Eelco Dolstra
437962ebb2
Installer test: Unmount filesystems after installation
...
Hopefully fixes failures like:
http://hydra.nixos.org/build/10712833
This shouldn't be necessary, but it might be that the use of unionfs
is interfering with a clean shutdown.
2014-04-30 15:07:34 +02:00
Eelco Dolstra
728d3476ba
systemd: Require some more kernel features
2014-04-30 13:53:12 +02:00
Eelco Dolstra
9bb209a3bd
gummiboot: Automatically disable GRUB
2014-04-30 11:47:18 +02:00