philipp/nixpkgs
1
0
Fork 0
Code Issues Pull requests Projects Releases Activity
%!d() commits 3 branches 0 tags 1.4 GiB
Commit graph

333 commits

Author SHA1 Message Date
Eelco Dolstra 835170fe19 * Remove debug statement. 
svn path=/nixos/trunk/; revision=32778
 2012-03-04 17:21:33 +00:00
Eelco Dolstra 356ff79400 * wpa_supplicant: automatically figure out the wireless interface(s) 
on which to run wpa_supplicant, unless they're set explicitly.

svn path=/nixos/trunk/; revision=32777
 2012-03-04 17:21:14 +00:00
Eelco Dolstra 2ac5df3a93 * Undo unintended commit. 
svn path=/nixos/trunk/; revision=32771
 2012-03-04 15:48:58 +00:00
Eelco Dolstra 6c792b3d9e * A more pragmatic solution to the missing tar manpage problem. 
svn path=/nixos/trunk/; revision=32770
 2012-03-04 15:47:44 +00:00
Eelco Dolstra 0d39390ad4 * ntpd: cleanup. 
svn path=/nixos/trunk/; revision=32769
 2012-03-04 15:34:44 +00:00
Mathijs Kwik 3c957bd921 gogoclient: ipv6 tunnel module 
meant to replace the obsolete gw6c module
builds fine on stdenv-updates branch

svn path=/nixos/trunk/; revision=32767
 2012-03-04 12:58:22 +00:00
Mathijs Kwik 86bf5566fe many daemons: depend on all-interfaces instead of gw6c 
svn path=/nixos/trunk/; revision=32766
 2012-03-04 12:58:18 +00:00
Mathijs Kwik ce83d3580e gw6c: provide support for all-interfaces 
svn path=/nixos/trunk/; revision=32765
 2012-03-04 12:58:14 +00:00
Eelco Dolstra 742198c6ea * dhcpcd: Ignore vboxnet*. 
svn path=/nixos/trunk/; revision=32716
 2012-03-01 13:49:47 +00:00
Eelco Dolstra 4f8d076ae7 * Allow the start/stop condition of OpenVPN jobs to be overriden 
easily.

svn path=/nixos/trunk/; revision=32673
 2012-02-28 10:30:12 +00:00
Eelco Dolstra acea54b3c6 * In the users...keyFiles option, the "string" type doesn't work very 
well because elements could be paths, e.g.

    users.extraUsers.root.openssh.authorizedKeys.keyFiles =
      [ ./id_key.pub ];

  So disable the type check for now.

svn path=/nixos/trunk/; revision=32558
 2012-02-25 17:31:39 +00:00
Peter Simons 90adc800c5 sshd: choose host key type 
svn path=/nixos/trunk/; revision=32479
 2012-02-22 20:28:54 +00:00
Peter Simons fca4803a74 gw6c: no built-in log rotation, we use logrotate for that 
svn path=/nixos/trunk/; revision=32478
 2012-02-22 20:28:51 +00:00
Eelco Dolstra b2910df04e * Various cleanups in the OpenVPN module. The option 
‘services.openvpn.enable’ is now obsolete; specifying instances in
  ‘services.openvpn.servers’ is enough.

svn path=/nixos/trunk/; revision=32441
 2012-02-20 20:10:07 +00:00
Eelco Dolstra 35734279ae * Fix incorrect default value. 
svn path=/nixos/trunk/; revision=32431
 2012-02-20 16:53:44 +00:00
Eelco Dolstra 4e9c8d0b9d * dhcpcd: restart ntpd and emit ip-up/ip-down events. Also attach the 
interface name to the events, as suggested by Mathijs Kwik.

svn path=/nixos/trunk/; revision=32430
 2012-02-20 15:19:46 +00:00
Eelco Dolstra a46fd58b3d * Use the networking.useDHCP out of the dhclient module. 
svn path=/nixos/trunk/; revision=32428
 2012-02-20 14:29:21 +00:00
Eelco Dolstra 1770b5a400 * dhcpcd: use a configuration file. Use the "denyinterfaces" option 
to simplify the start script.  Drop the ifplugd hook because dhcpcd
  monitors interface link status itself.

svn path=/nixos/trunk/; revision=32424
 2012-02-20 13:13:29 +00:00
Eelco Dolstra ae27eafe4c * Added a module for dhcpcd, a DHCP client (not enabled by default 
yet).  It's smaller than dhclient and has more features
  (e.g. automatically detects link status changes, supports
  openresolv, does IPv4LL, and supports IPv6 Router Advertisements).

svn path=/nixos/trunk/; revision=32413
 2012-02-20 01:17:53 +00:00
Eelco Dolstra 1707d1130f * Move the dhclient/wpa_supplicant restart actions out of the ifplugd 
module.

svn path=/nixos/trunk/; revision=32409
 2012-02-19 22:53:25 +00:00
Eelco Dolstra aca8225e3b * Invalidate the nscd hosts cache when an "ip-up" event occurs. This 
event is emitted by dhclient and by the network-interfaces job in
  case of statically configured interfaces.  Invalidating the cache is
  necessary to get rid of negative queries.

svn path=/nixos/trunk/; revision=31779
 2012-01-21 19:13:43 +00:00
Peter Simons 5144e94694 gw6c: fixed faulty path reference 
svn path=/nixos/trunk/; revision=31657
 2012-01-18 20:34:04 +00:00
Yury G. Kudryashov a87a1bca04 wpa_supplicant: add D-Bus interface 
svn path=/nixos/trunk/; revision=30972
 2011-12-19 23:16:32 +00:00
Nicolas Pierron e264d1ab79 Convert users.extraUsers to an option set and add support for openssh 
authorized_keys file generation.

svn path=/nixos/trunk/; revision=30611
 2011-11-29 06:08:55 +00:00
Eelco Dolstra 8eba736da9 * Use the ‘path’ attribute in Upstart jobs in more places. It's a bit 
more readable (also in "ps" output).

svn path=/nixos/trunk/; revision=30565
 2011-11-25 16:32:54 +00:00
Eelco Dolstra da542dc1ae * Added a module for oidentd. 
svn path=/nixos/trunk/; revision=30381
 2011-11-10 23:06:24 +00:00
Lluís Batlle i Rossell d9356e9a35 Fixing documentation about the prayer module, and adding a port setting, 
defaulting to something other than 80 at least.


svn path=/nixos/trunk/; revision=30363
 2011-11-09 21:08:50 +00:00
Lluís Batlle i Rossell 578f83eef4 Adding a module for the prayer webmail. 
svn path=/nixos/trunk/; revision=30361
 2011-11-09 20:48:12 +00:00
Lluís Batlle i Rossell 2825a3a6ae Allowing 'named' to have a config file apart, as it can have passwords. 
svn path=/nixos/trunk/; revision=30213
 2011-11-03 19:13:52 +00:00
Lluís Batlle i Rossell efc64042e0 Adding extraConfig to unbound 
svn path=/nixos/trunk/; revision=30211
 2011-11-03 18:49:54 +00:00
Eelco Dolstra 0309f02fc5 * Add period. 
svn path=/nixos/trunk/; revision=30201
 2011-11-03 02:14:40 +00:00
Lluís Batlle i Rossell 9489c5a02b Setting default of unbound.enable to disabled. Few may want it enabled. 
svn path=/nixos/trunk/; revision=30198
 2011-11-02 21:04:32 +00:00
Lluís Batlle i Rossell 5cb67ef832 Adding a module for unbound. 
svn path=/nixos/trunk/; revision=30197
 2011-11-02 20:59:12 +00:00
Evgeny Egorochkin 0d2ef63b84 Quassel: fix package name 
svn path=/nixos/trunk/; revision=30142
 2011-10-31 12:48:59 +00:00
Peter Simons 20b364f4de Reverting revisions 30103-30106: "always set nixpkgs.config.{state,store}Dir", etc. 
After the change from revision 30103, nixos-rebuild suddenly consumed
freaky amounts of memory. I had to abort the process after it had
allocated well in excess of 30GB(!) of RAM. I'm not sure what is causing
this behavior, but undoing that assignment fixes the problem. The other
two commits needed to be revoked, too, because they depend on 30103.

svn path=/nixos/trunk/; revision=30127
 2011-10-30 15:19:58 +00:00
Shea Levy 09cf6ce70c find modules | fgrep .nix | fgrep -v .svn | fgrep -v nixpkgs.nix | xargs sed -i -e 's|/nix/var|${config.nixpkgs.config.nix.stateDir}|g' -e 's|/nix/store|${config.nixpkgs.config.nix.storeDir}|g' 
Don't assume /nix/store or /nix/var in NixOS modules, this is configurable

svn path=/nixos/trunk/; revision=30104
 2011-10-29 21:03:57 +00:00
Joachim Schiele 298186fd06 added cntlm as a system service with its own user 'cntlm' 
svn path=/nixos/trunk/; revision=29737
 2011-10-09 22:34:32 +00:00
Eelco Dolstra 61072f8995 * Add a module for a Flash policy server. 
svn path=/nixos/trunk/; revision=29296
 2011-09-15 15:13:46 +00:00
Peter Simons eb6e1310b8 strip trailing whitespace; no functional change 
svn path=/nixos/trunk/; revision=29285
 2011-09-14 18:20:50 +00:00
Eelco Dolstra 1df952182a * Only flush the POSTROUTING chain. 
svn path=/nixos/trunk/; revision=28153
 2011-08-04 15:33:40 +00:00
Eelco Dolstra 31afd2bb2e * vsftpd: use /var/empty instead of /var/ftp/empty as the empty 
chroot (the latter doesn't exist).
* vsftpd: make the anonymous user's home read-only, otherwise vsftpd
  will fail.

svn path=/nixos/trunk/; revision=27983
 2011-07-28 09:42:20 +00:00
Peter Simons 0ffb794d5d modules/services/networking/ssh/sshd.nix: strip trailing whitespace 
svn path=/nixos/trunk/; revision=27733
 2011-07-12 10:34:30 +00:00
Peter Simons ea84edd528 modules/services/networking/ssh/sshd.nix: added new boolean options usePAM and passwordAuthentication 
Setting both of these options to 'false' configures the OpenSSH daemon to
reject password authentication, i.e. users must have an appropriate key in
~/.ssh/authorized_keys in order to be able to log in.

svn path=/nixos/trunk/; revision=27732
 2011-07-12 10:34:27 +00:00
Eelco Dolstra 466d798b15 * Oops. 
svn path=/nixos/trunk/; revision=27608
 2011-07-05 12:54:50 +00:00
Eelco Dolstra 3bc3dc3940 * Put the NixOS firewall ruleset in its own chain (‘nixos-fw’). This 
should make it easier to compose with packages that set their own
  firewall rules, such as Nova or Libvirt.
* Provide a chain for accepted packets (‘nixos-fw-accept’), requested
  by Nicolas Pierron.

svn path=/nixos/trunk/; revision=27607
 2011-07-05 12:51:46 +00:00
Michael Raskin a61015cfa1 IRCD expression needs recursive attrsets... 
svn path=/nixos/trunk/; revision=27025
 2011-04-28 08:23:09 +00:00
Eelco Dolstra 6739162d9a * Move ircd-hybrid stuff from the services tree to the nixos tree. 
svn path=/nixos/trunk/; revision=27009
 2011-04-27 16:27:05 +00:00
Eelco Dolstra 742881a0f9 svn path=/nixos/trunk/; revision=26997 2011-04-27 14:10:03 +00:00
Eelco Dolstra 257326915b * gw6c: don't depend on the services tree. 
svn path=/nixos/trunk/; revision=26995
 2011-04-27 14:03:46 +00:00
Eelco Dolstra 650d14be8d * Remove most references to the "services" tree. 
svn path=/nixos/trunk/; revision=26990
 2011-04-27 13:16:33 +00:00
Eelco Dolstra 76d3721a53 * `dnsmasq' shouldn't run by default. 
svn path=/nixos/trunk/; revision=26890
 2011-04-19 13:37:31 +00:00
Lluís Batlle i Rossell 6824866d6d Adding a dnsmasq simple module. 
svn path=/nixos/trunk/; revision=26820
 2011-04-13 14:09:02 +00:00
Eelco Dolstra e9b2ebcb99 * Send a TCP RST packet, rather than an ICMP port-unreachable packet, 
for (apparently) open TCP connections that connection tracking 
  doesn't know about.  This prevents TCP connections to this machine
  from hanging in CLOSE_WAIT for a long time.

svn path=/nixos/trunk/; revision=26802
 2011-04-12 11:25:57 +00:00
Nicolas Pierron 96fc9379ba Convert assertion option into mkAssert. 
svn path=/nixos/trunk/; revision=26614
 2011-03-30 17:52:34 +00:00
Eelco Dolstra 87a2c6d9c5 * Don't enable rdnssd by default for the moment. 
svn path=/nixos/trunk/; revision=26505
 2011-03-25 09:29:22 +00:00
Eelco Dolstra b2d6dfecbc * Add the rdnss daemon. 
* Add the ndisc6 package to the system path if IPv6 is enabled.

svn path=/nixos/trunk/; revision=26496
 2011-03-24 16:23:28 +00:00
Eelco Dolstra f71bd3f93c * dhclient: ignore libvirt's network interfaces. 
svn path=/nixos/trunk/; revision=26327
 2011-03-15 15:30:12 +00:00
Eelco Dolstra 3cb7a54dba * Added an option `networking.bridges' to allow Ethernet bridges to be 
defined.

svn path=/nixos/trunk/; revision=26325
 2011-03-15 15:13:48 +00:00
Eelco Dolstra 64d871c0d9 * Enable FTP connection tracking in the firewall. 
svn path=/nixos/trunk/; revision=26275
 2011-03-11 13:34:17 +00:00
Eelco Dolstra 005ca15f64 * Firewall: add an option to allow extra firewall rules to be added. 
* Firewall: change the policy of the INPUT chain back to ACCEPT to
  prevent a lockup when the Nix store is mounted over the network
  (i.e. in our VM tests).  This is because as soon as the policy is
  set to DROP, the iptables modules that enable access to the network
  filesystem cannot be acccessed anymore.

svn path=/nixos/trunk/; revision=26274
 2011-03-11 13:04:17 +00:00
Eelco Dolstra ab0ce6734b * firewall.nix: Only flush/delete the chains created by us. 
svn path=/nixos/trunk/; revision=26271
 2011-03-11 11:53:18 +00:00
Eelco Dolstra f672aa71bf * RFC 4890 says that local nodes should not filter pretty much any 
ICMPv6 messages (including echo requests), so don't do that.

svn path=/nixos/trunk/; revision=26270
 2011-03-11 11:08:16 +00:00
Eelco Dolstra 0ea9f6611a * Add some more rules to allow ICMPv6 router/neighbour advertisements 
in.  Maybe we're better off accepting all ICMPv6 messages *except*
  echo requests.

svn path=/nixos/trunk/; revision=26260
 2011-03-10 16:25:08 +00:00
Eelco Dolstra 53bc6d3efa * NAT module: support active FTP. 
svn path=/nixos/trunk/; revision=26247
 2011-03-10 13:03:47 +00:00
Eelco Dolstra 9bf4ac079e * Add a module for doing Network Address Translation. 
svn path=/nixos/trunk/; revision=26246
 2011-03-10 12:08:39 +00:00
Eelco Dolstra d6424efbfb * Cleanup. 
svn path=/nixos/trunk/; revision=26244
 2011-03-10 09:39:17 +00:00
Eelco Dolstra e884cbed7d * Add an option for opening UDP ports. 
* Accept packets destined for link-local addresses (fe80::/10).

svn path=/nixos/trunk/; revision=26236
 2011-03-09 16:37:16 +00:00
Eelco Dolstra 12161f3183 * Add a firewall option to allow pings. (Maybe this should 
be enabled by default.)

svn path=/nixos/trunk/; revision=26233
 2011-03-09 15:28:47 +00:00
Eelco Dolstra e4051e105c * Use a separate chain for logging and rejecting. 
svn path=/nixos/trunk/; revision=26232
 2011-03-09 15:11:01 +00:00
Eelco Dolstra 66716f9dd5 * Firewall: support IPv6. 
svn path=/nixos/trunk/; revision=26231
 2011-03-09 14:41:48 +00:00
Eelco Dolstra 843e1f6c1e * Cleanup. 
svn path=/nixos/trunk/; revision=26228
 2011-03-09 12:28:44 +00:00
Eelco Dolstra b61c632006 * Add a module for radvd. 
svn path=/nixos/trunk/; revision=26035
 2011-02-19 19:19:55 +00:00
Yury G. Kudryashov 559834437a ejabberd: tabs->spaces, remove trailing whitespace 
svn path=/nixos/trunk/; revision=25996
 2011-02-16 21:03:14 +00:00
Ludovic Courtès 7edc419f65 lshd: Streamline first use. 
svn path=/nixos/trunk/; revision=25716
 2011-01-29 23:06:52 +00:00
Eelco Dolstra c65c03099f * Use "initctl restart". 
svn path=/nixos/trunk/; revision=25249
 2010-12-23 11:00:20 +00:00
Evgeny Egorochkin 3b28efd00d Git daemon: packaged. 
svn path=/nixos/trunk/; revision=25163
 2010-12-17 07:33:20 +00:00
Lluís Batlle i Rossell d5fb41795f Adding a wake on lan module. 
svn path=/nixos/trunk/; revision=24958
 2010-12-02 20:23:45 +00:00
Eelco Dolstra 29813b418c * Don't run dhclient on Xen's vif* and tap* interfaces. 
svn path=/nixos/trunk/; revision=24948
 2010-12-01 16:14:44 +00:00
Evgeny Egorochkin 2224d78b33 network-interfaces: MAC address support take 2: now it seems to work 
svn path=/nixos/trunk/; revision=24847
 2010-11-24 22:58:53 +00:00
Eelco Dolstra 341698c367 * OpenVPN: add it to the system path when enabled. 
svn path=/nixos/trunk/; revision=24343
 2010-10-18 10:40:08 +00:00
Eelco Dolstra 2bb4a618e2 * Added an option "services.openssh.extraConfig" that allows 
setting arbitrary options in sshd_config, e.g.,

    services.openssh.extraConfig = "PermitTunnel yes";

svn path=/nixos/trunk/; revision=24341
 2010-10-18 10:31:41 +00:00
Ludovic Courtès 8d88e37b27 avahi-daemon: Remove outdated and confusing comment. 
svn path=/nixos/trunk/; revision=24152
 2010-10-07 20:10:49 +00:00
Eelco Dolstra 102a1e15ba * Use the "iburst" flag. This makes ntpd synchronise in a few seconds rather than 
a few minutes by sending an initial burst of messages to the time servers.

svn path=/nixos/trunk/; revision=24119
 2010-10-06 16:03:37 +00:00
Eelco Dolstra 35562ea4a3 * Don't daemonize; otherwise Upstart will respawn it. 
svn path=/nixos/trunk/; revision=24081
 2010-10-05 15:17:09 +00:00
Evgeny Egorochkin 88b24ece7f Quassel: quick fix 
svn path=/nixos/trunk/; revision=23930
 2010-09-26 02:10:23 +00:00
Evgeny Egorochkin b766f8ac8d AMule: quick fix 
svn path=/nixos/trunk/; revision=23929
 2010-09-26 02:09:34 +00:00
Evgeny Egorochkin 3bca96e1bd AMule: create the user only if the user option is null, don't pollute the system profile with useless packages. 
svn path=/nixos/trunk/; revision=23928
 2010-09-26 02:04:06 +00:00
Evgeny Egorochkin d8c72719aa Quassel: Create quassel user only if cfg.user is left empty to avoid messing up existing users. 
This solution is still suboptimal but others are even worse.

svn path=/nixos/trunk/; revision=23927
 2010-09-26 01:58:44 +00:00
Evgeny Egorochkin c0751f83e9 Quassel: don't pollute profiles with useless files 
svn path=/nixos/trunk/; revision=23904
 2010-09-22 23:07:52 +00:00
Evgeny Egorochkin 36fe7f69c6 Quassel: get rid of custom logging remnants 
svn path=/nixos/trunk/; revision=23867
 2010-09-20 01:44:07 +00:00
Evgeny Egorochkin 764f5f34fd Quassel: use the generic logging for jobs instead of rolling your own. 
svn path=/nixos/trunk/; revision=23854
 2010-09-18 12:50:55 +00:00
Evgeny Egorochkin 259c007f70 Quassel: use the convenience daemon package. 
svn path=/nixos/trunk/; revision=23849
 2010-09-18 11:30:09 +00:00
Evgeny Egorochkin 1b4c811d41 Added AMule daemon service 
svn path=/nixos/trunk/; revision=23848
 2010-09-18 11:30:04 +00:00
Eelco Dolstra ea4d3e2c8c * Don't run dhclient on Xen's peth* devices. 
svn path=/nixos/trunk/; revision=23779
 2010-09-14 11:17:48 +00:00
David Guibert 6436ed1de4 nixos: kerberos services for the server. 
svn path=/nixos/trunk/; revision=22985
 2010-08-06 08:49:08 +00:00
Eelco Dolstra 793767870a * Disable writing dhclient debug info to /tmp/dhcp-exit. 
svn path=/nixos/trunk/; revision=22962
 2010-08-05 13:32:58 +00:00
Wouter den Breejen e058f7ea45 sabnzbd now really starts at boot 
svn path=/nixos/trunk/; revision=22579
 2010-07-13 14:45:44 +00:00
Eelco Dolstra 54a4eead20 * Typos. 
svn path=/nixos/trunk/; revision=22537
 2010-07-08 16:21:55 +00:00
Eelco Dolstra 54d201294b * Sync with the trunk. 
svn path=/nixos/branches/boot-order/; revision=22487
 2010-07-06 08:21:05 +00:00
Wouter den Breejen 2335cb65a3 Added sabnzbd :) 
SABnzbd makes Usenet as simple and streamlined as possible by automating everything we can. All you have to do is add an .nzb. SABnzbd takes over from there, where it will be automatically downloaded, verified, repaired, extracted and filed away with zero human interaction.

http://sabnzbd.org/

svn path=/nixos/trunk/; revision=22446
 2010-07-03 15:10:48 +00:00
Evgeny Egorochkin ebd9fb6cf3 Added Quassel IRC client service 
svn path=/nixos/trunk/; revision=22425
 2010-06-28 18:36:37 +00:00
Eelco Dolstra a5c433696c * Put all of /var/run (not just /var/run/nscd) on a tmpfs to simplify 
shutdown.  (Portmap and statd are needed during shutdown to unmount
  NFS volumes but have open files in /var/run.)
* In the shutdown job, don't kill PIDs belonging to Upstart jobs that
  are still running.  If they don't stop on the "starting shutdown"
  event, then they're needed during shutdown (such as portmap and
  statd).
* NFS test: test whether the shutdown quickly unmounts NFS volumes
  (i.e. whether portmap and statd are still running).

svn path=/nixos/branches/boot-order/; revision=22204
 2010-06-09 22:29:06 +00:00
Eelco Dolstra d837ae4914 * portmap: don't use the -f flag to ensure that when the job reaches 
the "started" state, portmap is actually up.

svn path=/nixos/branches/boot-order/; revision=22192
 2010-06-09 11:15:25 +00:00
Eelco Dolstra d67e6e6285 * Remove some `stopOn = "ip-down"' declarations since they probably 
don't do the right thing (e.g. they don't distinguish between
  network interfaces).

svn path=/nixos/trunk/; revision=22102
 2010-06-02 16:19:48 +00:00
Lluís Batlle i Rossell 8b69834669 Fixing a syntax error in the vsftpd module I added in a recent commit. 
svn path=/nixos/trunk/; revision=21687
 2010-05-09 15:38:48 +00:00
Lluís Batlle i Rossell 4ee2a8a29a Fixing the UTF-8 in openssh sshd (passing to it the LOCALE_ARCHIVE - that 
requieres a patch in openssh that I just commited to nixpkgs)

Before this, in the shell spawned, backspace could not work over UTF-8 strings in the readline.


svn path=/nixos/trunk/; revision=21679
 2010-05-09 12:45:57 +00:00
Ludovic Courtès 4c1af311e1 avahi-daemon: Ensure that /var/run/avahi-daemon exists. 
svn path=/nixos/trunk/; revision=21673
 2010-05-08 22:28:26 +00:00
Lluís Batlle i Rossell 0d92459fb5 Fixing vsftpd regarding the anonymous user (some script lines had to be run 
only in the case the anonymous user service were enabled)


svn path=/nixos/trunk/; revision=21669
 2010-05-08 19:12:36 +00:00
Lluís Batlle i Rossell e4e3789dad Make privoxy run with uid=privoxy. 
Patch by Russell O'Connor, sent to nix-dev.


svn path=/nixos/trunk/; revision=21551
 2010-05-02 04:38:45 +00:00
Eelco Dolstra 8874226fa3 * Add rfkill to the system path. 
svn path=/nixos/trunk/; revision=21201
 2010-04-21 11:37:52 +00:00
Eelco Dolstra 176f6c52dd * Change the name of the SSH privilege separation user account back to 
"sshd" because changing it to "opensshd" causes breakage (like the
  activation script saying "useradd: UID 2 is not unique.").  Also,
  OpenSSH requires it to be named "sshd", I think.

svn path=/nixos/trunk/; revision=20577
 2010-03-11 18:07:20 +00:00
Ludovic Courtès 8e16742b79 Update users of `services.sshd'. 
svn path=/nixos/trunk/; revision=20575
 2010-03-11 17:02:53 +00:00
Ludovic Courtès d1b4b7fd28 Rename services.sshd' to services.openssh'. 
svn path=/nixos/trunk/; revision=20574
 2010-03-11 17:02:49 +00:00
Eelco Dolstra 051e9342b3 * Use the moduli file. This shuts up the "WARNING: /etc/ssh/moduli 
does not exist, using fixed modulus" message in /var/log/messages.

svn path=/nixos/trunk/; revision=19754
 2010-02-01 17:05:02 +00:00
Ludovic Courtès 06aeb7d87f GNUnet: Add options; add as a system package; provide /etc/gnunetd.conf. 
svn path=/nixos/trunk/; revision=19630
 2010-01-23 15:47:33 +00:00
Eelco Dolstra 50430f19e1 * Only run dhclient on interfaces of type 1, otherwise it fails to 
start if the machine has weird network devices (e.g. "eql").

svn path=/nixos/trunk/; revision=19623
 2010-01-22 20:34:32 +00:00
Lluís Batlle i Rossell fa2a6f835f Adding wicd, taking in the patch sent by roconnor to nix-dev on 2010-01-07. 
svn path=/nixos/trunk/; revision=19298
 2010-01-07 17:53:03 +00:00
Eelco Dolstra 9c465fedfa * Reinstate the -s flag. 
svn path=/nixos/trunk/; revision=19055
 2009-12-20 22:03:32 +00:00
Eelco Dolstra 57f70db611 * Revert r19003 for now, because wpa_supplicant 0.6.9 (in the Nixpkgs 
trunk) doesn't have a -s flag.  0.7.0 in the stdenv branch
  presumably does, but it's marked as unstable upstream.

svn path=/nixos/trunk/; revision=19047
 2009-12-20 16:51:22 +00:00
Lluís Batlle i Rossell ee434cc3d6 Using wpa_supplicant feature to log to syslog, instead of stdout (which, 
in the actual upstart job, meant /dev/console)

svn path=/nixos/trunk/; revision=19003
 2009-12-16 19:45:19 +00:00
Ludovic Courtès 3f2348ef91 Start networking services on `ip-up' when it makes sense. 
svn path=/nixos/trunk/; revision=18962
 2009-12-15 13:02:23 +00:00
Marc Weber 4d7e344f69 Adding initial version of the nixos cd insallation test script using 
qemu_kvm. Installation doesn't take place yet. VM is started
printing a remote controlled "Hello".

This serves as example how to run a vm within a bulid job.

svn path=/nixos/trunk/; revision=18887
 2009-12-11 00:51:13 +00:00
Rob Vermaas 038180bab8 * sshd.nix: ports attribute, to allow listening to multiple ports 
svn path=/nixos/trunk/; revision=18877
 2009-12-10 14:45:41 +00:00
Lluís Batlle i Rossell b005e22952 Adding a not-very-nice option to allow setting the wpa_supplicant interface. 
(eth1 in my PC, instead of the previously hardcoded wlan0)

svn path=/nixos/trunk/; revision=18862
 2009-12-09 20:30:40 +00:00
Eelco Dolstra a21f18e81f * Synced with the trunk. 
svn path=/nixos/branches/upstart-0.6/; revision=18602
 2009-11-24 16:11:01 +00:00
Sander van der Burg ff177a01a7 Fixed ejabberd service so that it will be started on startup 
svn path=/nixos/branches/upstart-0.6/; revision=18557
 2009-11-23 13:29:47 +00:00
Sander van der Burg ebbde6f8d3 Added directory option for ejabberd dumps so that we can use derivations on a convenient way, e.g. loadDumps = [ myDumpDrvFun ]; 
svn path=/nixos/branches/upstart-0.6/; revision=18487
 2009-11-20 15:35:01 +00:00
Sander van der Burg dd0f8b36d5 Moved ejabberd initialization check loop inside the if statement, since we only have to check for it in the first startup 
svn path=/nixos/branches/upstart-0.6/; revision=18464
 2009-11-19 15:17:04 +00:00
Sander van der Burg 9b000b3dcf Added loadDumps option, which makes it possible to load a specific ejabberd configuration on the first startup 
svn path=/nixos/branches/upstart-0.6/; revision=18461
 2009-11-19 15:12:05 +00:00
Sander van der Burg a5cdfcbdb2 Removed the dirty sleep hack from the ejabberd service 
svn path=/nixos/branches/upstart-0.6/; revision=18456
 2009-11-19 13:15:15 +00:00
Michael Raskin ea2417ac87 Apply Eelco Dolstra's formatting suggestions 
svn path=/nixos/trunk/; revision=18436
 2009-11-18 15:11:54 +00:00
Michael Raskin 26f83d65e4 Adding GVPE service 
svn path=/nixos/trunk/; revision=18431
 2009-11-18 14:54:37 +00:00
Eelco Dolstra e9b2ef9fb7 * Restart wpa_supplicant and dhclient on resume. 
svn path=/nixos/branches/upstart-0.6/; revision=18360
 2009-11-15 20:40:41 +00:00
Eelco Dolstra 0755e228bf * Since "initctl stop" is now synchronous, the sleep is no longer 
needed.

svn path=/nixos/branches/upstart-0.6/; revision=18359
 2009-11-15 20:40:07 +00:00
Eelco Dolstra 83a9bf9a6a * Change all the startOn / stopOn attributes to the Upstart 0.6 syntax 
(e.g., startOn = "started foo" instead of startOn = "foo").

svn path=/nixos/branches/upstart-0.6/; revision=18230
 2009-11-06 22:19:17 +00:00
Eelco Dolstra a60d83d3b4 svn path=/nixos/branches/upstart-0.6/; revision=18228 2009-11-06 21:39:18 +00:00
Eelco Dolstra d545d08461 * In the network-interfaces task, emit an ip-up event if there is a 
statically configured interface (i.e. we're not running dhclient).
  Otherwise the ntpd job won't be triggered.
* Use the "-n" flag of "initctl emit" to send the event
  asynchronously.

svn path=/nixos/branches/upstart-0.6/; revision=18227
 2009-11-06 21:38:40 +00:00
Eelco Dolstra 9fa2f12cc2 * Do some more jobs. 
svn path=/nixos/branches/upstart-0.6/; revision=18212
 2009-11-06 15:46:56 +00:00
Eelco Dolstra b581a56d79 * Define the Upstart package to use in one place. 
svn path=/nixos/branches/upstart-0.6/; revision=18187
 2009-11-06 09:36:35 +00:00
Sander van der Burg 46558b31a0 Added ejabberd to the systemPackages and fixed some command line arguments. This will make the ejabberd service working again 
svn path=/nixos/trunk/; revision=18070
 2009-11-02 12:13:09 +00:00
Marc Weber 4f006e49bf openvpn was broken by jobAttrs. fixed 
svn path=/nixos/trunk/; revision=17940
 2009-10-23 11:30:54 +00:00
Eelco Dolstra eba8f94069 * jobAttrs -> jobs. 
svn path=/nixos/trunk/; revision=17769
 2009-10-12 18:09:34 +00:00
Eelco Dolstra d982f23f20 * Convert the remaining jobs to jobAttrs style. 
svn path=/nixos/trunk/; revision=17764
 2009-10-12 17:27:57 +00:00
Eelco Dolstra 9943e0762e * Update some more modules. 
svn path=/nixos/trunk/; revision=17763
 2009-10-12 17:09:38 +00:00
Eelco Dolstra e91d882a94 * Converted modules that were still using the old (concrete syntax) 
style of declaring Upstart jobs.  While at it, converted them to the
  current NixOS module style and improved some option descriptions.
  Hopefully I didn't break too much :-)

svn path=/nixos/trunk/; revision=17761
 2009-10-12 16:36:19 +00:00
Nicolas Pierron 2e34baba3b Rename environment.extraPackages to environment.systemPackages. 
svn path=/nixos/trunk/; revision=17705
 2009-10-07 17:14:25 +00:00
Marc Weber 7e72788a39 rewrite sshd using jobAtts serving as example 
svn path=/nixos/trunk/; revision=17651
 2009-10-05 18:31:30 +00:00
Rob Vermaas 0e2c160e2e added privoxy nixos module 
svn path=/nixos/trunk/; revision=17646
 2009-10-05 15:11:32 +00:00
Eelco Dolstra a5ad5a035e * Firewall: by default, only log rejected TCP connections. Otherwise 
you get a lot of garbage in the log.  Also, an option to reject
  instead of drop packets.

svn path=/nixos/trunk/; revision=17505
 2009-09-29 14:21:56 +00:00
Lluís Batlle i Rossell 4163ff95b4 Reverting r17459 - I had wpa_supplicant addapted to my system (nic device), and 
I didn't want to commit that for all nixos users. We may write some day a better
wpa_supplicant solution.

svn path=/nixos/trunk/; revision=17462
 2009-09-27 21:54:38 +00:00
Lluís Batlle i Rossell 852478ff79 Making supplicant work on eth1 
svn path=/nixos/trunk/; revision=17459
 2009-09-27 21:51:22 +00:00
Nicolas Pierron a701637f94 Use servicePath instead of relative paths. 
svn path=/nixos/trunk/; revision=17454
 2009-09-26 23:04:43 +00:00
Rob Vermaas bd6fbce0f3 * vsftpd typo 
svn path=/nixos/trunk/; revision=17215
 2009-09-17 07:39:21 +00:00
Rob Vermaas bb8c6b038d * use new job style for ddclient upstart 
svn path=/nixos/trunk/; revision=17184
 2009-09-16 11:57:41 +00:00
Rob Vermaas 44f99c64d4 * added ddclient module to allow synchronization of machine's ip address with dynamic dns provider 
svn path=/nixos/trunk/; revision=17180
 2009-09-16 11:22:45 +00:00
Nicolas Pierron ff7e67f2d3 Use the system hostname as default for the avahi daemon. 
svn path=/nixos/trunk/; revision=17104
 2009-09-13 22:13:07 +00:00
Ludovic Courtès 66ebc25eb9 Bitlbee: Change ownership of `/var/lib/bitlbee'. 
svn path=/nixos/trunk/; revision=17099
 2009-09-13 18:26:05 +00:00
Eelco Dolstra 8e6ad840f2 * Modularised the xinetd service. tftp has been factored out into a 
separate module, which just declares a configuration value that
  causes the xinetd module to add it to xinetd.conf.  Also Nixified
  the service declarations to abstract over the inetd implementation.
  
* Renamed the services.xinetd.tftpd options to services.tftpd.  The
  fact that the tftpd module uses xinetd is an implementation detail.

* xinetd: use -dontfork to let Upstart monitor it, and use -syslog to
  get error messages at startup.

svn path=/nixos/trunk/; revision=16803
 2009-08-21 13:05:45 +00:00
Lluís Batlle i Rossell f250f69ee8 Adding xinetd with a possible tftpd server. 
svn path=/nixos/trunk/; revision=16784
 2009-08-19 20:20:51 +00:00
Nicolas Pierron 5980d130c9 Check sshd.permitRootLogin values. 
svn path=/nixos/trunk/; revision=16769
 2009-08-19 15:04:05 +00:00
Eelco Dolstra 89ef5c979b * New nixos-rebuild action: "nixos-rebuild build-vm" builds a virtual 
machine containing a replica (minus the state) of the system
  configuration.  This is mostly useful for testing configuration
  changes prior to doing an actual "nixos-rebuild switch" (or even
  "nixos-rebuild test").  The VM can be started as follows:

  $ nixos-rebuild build-vm
  $ ./result/bin/run-*-vm

  which starts a KVM/QEMU instance.  Additional QEMU options can be
  passed through the QEMU_OPTS environment variable
  (e.g. QEMU_OPTS="-redir tcp:8080::80" to forward a host port to the
  guest).  The fileSystem attribute of the regular system
  configuration is ignored (using mkOverride), because obviously we
  can't allow the VM to access the host's block devices.  Instead, at
  startup the VM creates an empty disk image in ./<hostname>.qcow2 to
  store the VM's root filesystem.

  Building a VM in this way is efficient because the VM shares its Nix
  store with the host (through a CIFS mount).  However, because the
  Nix store of the host is mounted read-only in the guest, you cannot
  run Nix build actions inside the VM.  Therefore the VM can only be
  reconfigured by re-running "nixos-rebuild build-vm" on the host and
  restarting the VM.

svn path=/nixos/trunk/; revision=16662
 2009-08-11 01:35:56 +00:00
Eelco Dolstra 2331a5140d * Added a module for the bluetooth daemon. 
* Refactored some other modules (dbus, hal).

svn path=/nixos/trunk/; revision=16652
 2009-08-10 18:25:09 +00:00
Eelco Dolstra f0f5434eaa * Add an option to enable the firewall. It should eventually be 
enabled by default.

svn path=/nixos/branches/modular-nixos/; revision=16464
 2009-07-26 21:27:35 +00:00
Eelco Dolstra 264b49fce7 * A very basic firewall that rejects all incoming connections except 
for the ports defined in networking.firewall.allowedTCPPorts.

svn path=/nixos/branches/modular-nixos/; revision=16460
 2009-07-24 23:12:52 +00:00
Eelco Dolstra 38d594deec * wpa_supplicant: start/stop automatically. 
svn path=/nixos/branches/modular-nixos/; revision=16451
 2009-07-24 00:31:42 +00:00
Eelco Dolstra c4780a8953 * dhcp 4.1 requires IPv6 support. 
svn path=/nixos/branches/modular-nixos/; revision=16450
 2009-07-24 00:31:22 +00:00
Eelco Dolstra d591559609 * A simple module for running wpa_supplicant. 
svn path=/nixos/branches/modular-nixos/; revision=16409
 2009-07-16 21:08:32 +00:00
Eelco Dolstra 3abf509637 * Don't try to start dhclient on the wmaster0 interface. This just 
gets rid of endless dhclient log messages such as

    Jul 16 19:09:30 dutibo dhclient: DHCPDISCOVER on wmaster0 to 255.255.255.255 port 67 interval 19
    Jul 16 19:09:30 dutibo dhclient: send_packet: Network is down

svn path=/nixos/branches/modular-nixos/; revision=16407
 2009-07-16 17:25:50 +00:00
Eelco Dolstra b58682401e * Give a type to networking.interfaces. 
* Simplified the pre-start script of the network-interfaces module.
* Removed wireless support from the network-interfaces module.  It
  only worked for static WEP configurations anyway, and AFAIK nobody
  used it.

svn path=/nixos/branches/modular-nixos/; revision=16406
 2009-07-16 17:18:54 +00:00
Eelco Dolstra 7cb4503ad6 * More Upstart refactoring. 
svn path=/nixos/branches/modular-nixos/; revision=16394
 2009-07-16 13:55:11 +00:00
Eelco Dolstra 889311f4ca * Refactored the sshd module. 
svn path=/nixos/branches/modular-nixos/; revision=16377
 2009-07-15 15:53:39 +00:00
Eelco Dolstra 9d1e31117f * Get rid of the "users" and "groups" fields in jobs. 
svn path=/nixos/branches/modular-nixos/; revision=16371
 2009-07-15 11:34:55 +00:00
Eelco Dolstra ca8e00cafa * Got rid of the extraPath field in jobs (use 
environment.systemPackages instead).  Also renamed
  services.extraJobs to jobs.

svn path=/nixos/branches/modular-nixos/; revision=16370
 2009-07-15 11:19:11 +00:00
Michael Raskin 1118c4b6d1 Fix service tree paths 
svn path=/nixos/branches/modular-nixos/; revision=16235
 2009-07-08 09:09:57 +00:00
Ludovic Courtès 1f9d8f45ea lshd: Fix typo; comment on the seed generation. 
svn path=/nixos/branches/modular-nixos/; revision=16142
 2009-07-02 14:05:01 +00:00
Ludovic Courtès 74738de1f8 Make NSS modules visible to `avahi-daemon'. 
It allows it to know whether `libnss-mdns' is available, which clients
can ask via the `IsNSSSupportAvailable' D-Bus method.

svn path=/nixos/branches/modular-nixos/; revision=16125
 2009-07-01 12:27:35 +00:00
Ludovic Courtès e2e373b89c bitlbee: Fix `systemPackages' attribute. 
svn path=/nixos/branches/modular-nixos/; revision=16090
 2009-06-30 08:01:14 +00:00
Eelco Dolstra 116306c8dc * Restart ntpd when we get a new DHCP lease. Without this, if ntpd 
previously failed to resolve the NTP server hostnames in its config
  file, it will happily sit in a loop forever doing nothing.

svn path=/nixos/branches/modular-nixos/; revision=15830
 2009-06-02 19:42:31 +00:00
Eelco Dolstra 674d63e212 * Don't do a separate "ntp -q -g" to reset the system time in the ntp 
start script.  It's probably not necessary, but more importantly, it
  can hang forever if the network is down.  (Actually it will sit in a
  loop waiting for UDP packets that will never arrive.)  This causes
  the NixOS reboot to hang, since Upstart can't kill jobs stuck in
  their start script.

svn path=/nixos/branches/modular-nixos/; revision=15829
 2009-06-02 19:40:14 +00:00
Eelco Dolstra dba1d48b78 * Move the uid/gid mappings into a module. This allows other modules 
to use it through config.ids.{uids,gids} rather than `import
  relative-path/ids.nix'.

svn path=/nixos/branches/modular-nixos/; revision=15796
 2009-05-29 14:25:56 +00:00
Eelco Dolstra 05a08adf91 * Move the dhclient exit hooks file to the dhclient module, where it 
belongs.

svn path=/nixos/branches/modular-nixos/; revision=15755
 2009-05-27 23:30:29 +00:00
Eelco Dolstra 3c6ae39a0d * Refactoring: moved some options out of system/options.nix (almost 
empty now), do more of bashrc.sh declaratively, and moved nsswitch
  generation to modules/config/nsswitch.nix.

svn path=/nixos/branches/modular-nixos/; revision=15754
 2009-05-27 23:14:38 +00:00
Eelco Dolstra 5ebdee3577 * Continued refactoring the tree: moved most Upstart jobs (namely 
those that run daemons) to modules/services.  This probably broke
  some things since there are a few relative paths in modules
  (e.g. imports of system/ids.nix).
* Moved some PAM modules out of etc/pam.d to the directories of NixOS
  modules that use them.

svn path=/nixos/branches/modular-nixos/; revision=15717
 2009-05-24 23:13:23 +00:00