Commit graph

1576 commits

Author SHA1 Message Date
Russell O'Connor 1744733be8 Revering CUPS update.
svn path=/nixos/trunk/; revision=29283
2011-09-14 17:58:57 +00:00
Peter Simons 02bb4eb289 modules/services/printing/cupsd.nix: MIME related config files have moved to share in cups 1.5
svn path=/nixos/trunk/; revision=29254
2011-09-13 20:42:21 +00:00
Peter Simons a499049ce5 Strip trailing whitespace.
svn path=/nixos/trunk/; revision=29246
2011-09-13 18:49:50 +00:00
Peter Simons d3528a3c4e modules/system/boot/stage-1-init.sh: added "boot.runSize" option to determine the maximum size of the /run tmpfs
svn path=/nixos/trunk/; revision=29245
2011-09-13 18:49:47 +00:00
Peter Simons c01c41e2da modules/system/boot/kernel.nix: disable "elevator=cfq" boot parameter for the time being
This setting causes the init ram disk to hang indefinitely on some systems.

svn path=/nixos/trunk/; revision=29228
2011-09-12 18:01:18 +00:00
Eelco Dolstra 64340dc03c * Set OPENSSL_X509_CERT_FILE.
svn path=/nixos/trunk/; revision=29225
2011-09-12 17:01:43 +00:00
Eelco Dolstra 7dc59f0bb0 * Zabbix: only enable PostgreSQL if it's on the same machine.
svn path=/nixos/trunk/; revision=29185
2011-09-11 15:55:43 +00:00
Yury G. Kudryashov 7a858f2a89 Adjust DM/kde4.nix to latest changes in kde-4.7
svn path=/nixos/trunk/; revision=29181
2011-09-11 12:44:54 +00:00
Yury G. Kudryashov c56a8456ed Allow full ~/.nixpkgs/config.nix syntax in nixpkgs.config
Namely, allow {pkgs}: { packageOverrides = p: ...; };

svn path=/nixos/trunk/; revision=29180
2011-09-11 12:41:47 +00:00
Yury G. Kudryashov 9a096c9ee7 Partially revert r2903
The nepomuk&virtuoso problem is solved without polutting $QT_PLUGIN_PATH and/or
$LD_LIBRARY_PATH by patching soprano.

svn path=/nixos/trunk/; revision=29107
2011-09-07 23:11:04 +00:00
Yury G. Kudryashov bcee582a74 Preserve <standard_session_service_dirs/> in dbus.conf
This way *session* dbus daemon loads services from XDG_DATA_DIRS

svn path=/nixos/trunk/; revision=29106
2011-09-07 23:07:05 +00:00
Peter Simons 6c08bf40a6 modules/system/boot/kernel.nix: stripped trailing whitespace
svn path=/nixos/trunk/; revision=29101
2011-09-07 20:36:13 +00:00
Eelco Dolstra ed1bc1e180 * Handle the case where a symlink in /etc needs to change into a
directory.  This happened with /etc/polkit-1, which used to be a
  symlink to /etc/static/polkit-1, which was itself a symlink but now
  is a directory.  Not handling this correctly led to /etc/static
  being clobbered with symlinks pointing to themselves.

svn path=/nixos/trunk/; revision=29061
2011-09-06 12:32:07 +00:00
Eelco Dolstra 4a65eb6830 * Create /var/lib/upower, where upowerd keeps historical battery data.
svn path=/nixos/trunk/; revision=29057
2011-09-06 11:18:36 +00:00
Eelco Dolstra 5de82a6802 svn path=/nixos/trunk/; revision=29053 2011-09-05 23:33:29 +00:00
Eelco Dolstra 0de04bd4be * Xfce 4.6 fix.
svn path=/nixos/trunk/; revision=29046
2011-09-05 20:50:15 +00:00
Eelco Dolstra 8d8c250b8f * Enable gvfs in Xfce.
svn path=/nixos/trunk/; revision=29044
2011-09-05 20:37:06 +00:00
Eelco Dolstra 94014f4adc * Get the Virtuoso backend in Soprano/Nepomuk to work. Soprano tries
to find virtodbc_r.so in QT_PLUGIN_PATH (among other locations), so
  make sure that Virtuoso can be found there.

svn path=/nixos/trunk/; revision=29033
2011-09-05 17:55:53 +00:00
Eelco Dolstra 4b8275d2c4 * Force loading of the CFQ module, i.e. don't do it on demand — that
seems to cause weird modprobe hangs.

svn path=/nixos/trunk/; revision=29027
2011-09-05 14:58:26 +00:00
Eelco Dolstra 453675c5c1 * Allow literal examples to be included in the manual.
svn path=/nixos/trunk/; revision=29025
2011-09-05 10:14:42 +00:00
Eelco Dolstra 5813e99fb3 * Fix description.
svn path=/nixos/trunk/; revision=29022
2011-09-05 09:46:14 +00:00
Nicolas Pierron 6669cf61f4 Add merge capabilities to nixpkgs.config option.
svn path=/nixos/trunk/; revision=29021
2011-09-05 09:19:59 +00:00
Nicolas Pierron def746fcdd Add Intel firmwars (iwlwifi-6000g2{a,b}-ucode).
svn path=/nixos/trunk/; revision=29020
2011-09-05 09:19:55 +00:00
Eelco Dolstra 0cbdfb2bbf * Use boot.initrd.availableKernelModules for the QEMU modules.
svn path=/nixos/trunk/; revision=28973
2011-09-02 13:20:05 +00:00
Eelco Dolstra 8b3fd3ed49 * Use the CFQ I/O scheduler, rather than the ‘none’ scheduler. This
was already the case on Linux 2.6.32, but in newer kernels the CFQ
  scheduler is built as a module, so all block devices got the ‘none’
  scheduler instead.

svn path=/nixos/trunk/; revision=28972
2011-09-02 13:19:45 +00:00
Lluís Batlle i Rossell 8138feb630 The VM did not want to mount the CIFS without these two modules available in stage1.
svn path=/nixos/trunk/; revision=28947
2011-08-31 21:20:48 +00:00
Eelco Dolstra bd5ca54584 * Add fsck.vfat etc. to the default install. Useful for USB sticks
and stuff like that.

svn path=/nixos/trunk/; revision=28934
2011-08-30 18:25:54 +00:00
Yury G. Kudryashov 5ee15d4986 Fix hal evaluation
svn path=/nixos/trunk/; revision=28842
2011-08-26 17:30:53 +00:00
Yury G. Kudryashov c174554ad7 polkit_kde_agent is now kde4.polkit_kde_agent
svn path=/nixos/trunk/; revision=28834
2011-08-26 13:50:03 +00:00
Yury G. Kudryashov 42a03ef0eb Sync with dbus changes in nixpkgs
svn path=/nixos/trunk/; revision=28832
2011-08-26 13:46:59 +00:00
Yury G. Kudryashov ea4630bf97 Allow RUN+="socket:..." in udev rules
svn path=/nixos/trunk/; revision=28808
2011-08-25 08:06:09 +00:00
Shea Levy 25594961ad modprobe.nix: Blacklist snd_pcsp by default
svn path=/nixos/trunk/; revision=28805
2011-08-24 23:37:40 +00:00
Yury G. Kudryashov e5917ea6fc Merge with udev-173
The only conflict was the addition of two different options at the same place.

svn path=/nixos/trunk/; revision=28801
2011-08-24 21:24:39 +00:00
Eelco Dolstra 1aa1c86afc * Enable upower and udisks for Xfce 4.8.
svn path=/nixos/trunk/; revision=28764
2011-08-22 23:10:24 +00:00
Eelco Dolstra 3b1c741f3f * Xfce 4.8 doesn't need HAL anymore.
svn path=/nixos/trunk/; revision=28762
2011-08-22 22:52:13 +00:00
Eelco Dolstra ecbfe0d9c0 * Cause KDE's Polkit authentication agent to be started at login.
You now get a nice popup window asking for the appropriate password
  if you try to do something that requires administrative privilege
  (e.g. "pkexec ls" in a terminal, unmounting devices that don't
  belong to you in Dolphin, or killing other people's processes in
  ksysguard).

svn path=/nixos/trunk/; revision=28735
2011-08-22 11:51:03 +00:00
Eelco Dolstra d1ae2c2ac1 * Polkit: remove the wrapper since it's no longer needed (and didn't
really work as far as I can tell).

svn path=/nixos/trunk/; revision=28734
2011-08-22 11:46:32 +00:00
Eelco Dolstra 13a2563d02 * Create /var/lib/udisks because that's where udisks keeps its mtab
file.  Without this, users are not able to unmount their own
  devices (because udisks doesn't remember who mounted them).

svn path=/nixos/trunk/; revision=28730
2011-08-21 21:03:02 +00:00
Eelco Dolstra 7980c71d9c * Add some options to allow setting PolKit permissions.
svn path=/nixos/trunk/; revision=28729
2011-08-21 20:38:45 +00:00
Peter Simons a84ada1d92 modules/services/monitoring/smartd.nix: pass TZ variable to smartd to ensure that notification e-mails have a proper time zone
svn path=/nixos/trunk/; revision=28702
2011-08-19 20:44:12 +00:00
Yury G. Kudryashov 9177fc455d Adjust nixos to latest changes in kde-4.7 in nixpkgs
svn path=/nixos/trunk/; revision=28598
2011-08-15 18:08:12 +00:00
Eelco Dolstra 4790c147bf * Revert r28400 because ConsoleKit got reverted to 0.4.1.
svn path=/nixos/trunk/; revision=28587
2011-08-15 14:48:32 +00:00
Lluís Batlle i Rossell 4bc0bfec4c Making the system-tarball-pc boot fine with PXE, and include help files and a
readme file as examples for an easy PXE setup.

This allows booting the NixOS in the system tarball, and thus allows installing nixos.


svn path=/nixos/trunk/; revision=28585
2011-08-15 14:37:00 +00:00
Lluís Batlle i Rossell 8f6a4be721 Trying to make the system tarball for pc closer to PXE boot.
svn path=/nixos/trunk/; revision=28573
2011-08-14 22:01:58 +00:00
Eelco Dolstra 7e2ea4df32 * Xsession script: set the current directory to $HOME.
svn path=/nixos/trunk/; revision=28511
2011-08-12 10:04:43 +00:00
Shea Levy 38cab9070f synaptics module: By default, disable edge drag scrolling if two finger scrolling is enabled
svn path=/nixos/trunk/; revision=28472
2011-08-10 22:14:46 +00:00
David Guibert 96304c9afc make the virtualbox guest module loadable by modprobe.
svn path=/nixos/trunk/; revision=28436
2011-08-09 19:53:01 +00:00
Eelco Dolstra 74586fd2bb * Fix the permissions on /tmp.
svn path=/nixos/trunk/; revision=28435
2011-08-09 15:32:39 +00:00
Eelco Dolstra d75efe4aa1 * For security, don't mount the entire host filesystem.
svn path=/nixos/trunk/; revision=28429
2011-08-09 14:07:44 +00:00
Eelco Dolstra 45d8c418b5 * Some hackery to get ConsoleKit to work with the SLIM and "auto"
display managers.  This was broken due to a change in ConsoleKit
  0.4.2:

    https://bugs.freedesktop.org/show_bug.cgi?id=28377

  Using ConsoleKit's pam-ck-connector helps in that it creates local
  sessions; however, they're not marked as active because the
  x11-display-device property is not set.  As a workaround, calling
  ck-launch-session seems to work.

  More details:

    https://bugs.gentoo.org/show_bug.cgi?id=336634
    http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598150
    https://bugzilla.redhat.com/show_bug.cgi?id=585952

svn path=/nixos/trunk/; revision=28400
2011-08-08 19:28:17 +00:00
Eelco Dolstra eba6e0456b * Use the VESA driver. It seems to work better now. In particular,
it doesn't turn blue backgrounds into yellow (see
  e.g. http://hydra.nixos.org/build/1232626/download/1/screen.png).

svn path=/nixos/trunk/; revision=28395
2011-08-08 15:16:42 +00:00
Eelco Dolstra 8b30a8f23f * In the VM tests, add "-m 0" to syslogd to kill the "-- MARK --"
messages.  These prevent hanging tests from being killed after 1
  hour of silence.

svn path=/nixos/trunk/; revision=28393
2011-08-08 14:40:16 +00:00
Shea Levy 843ccae5d5 multitouch: Use the right package name
svn path=/nixos/trunk/; revision=28375
2011-08-08 01:39:26 +00:00
Shea Levy b17bb81765 multitouch: Actually add it to the module list
svn path=/nixos/trunk/; revision=28374
2011-08-08 01:37:49 +00:00
Shea Levy 9464c99ce2 First attempt at a multitouch touchpad module.
Note that the Multitouch X Driver currently has no configuration beyond editing the source code, so the only option is enable or disable

svn path=/nixos/trunk/; revision=28373
2011-08-08 01:34:36 +00:00
Shea Levy 30861ecbc8 Create multitouch module based off synaptics module
svn path=/nixos/trunk/; revision=28372
2011-08-08 01:27:44 +00:00
Karn Kallio c36cf7b591 Reflect kdegraphics organization.
svn path=/nixos/trunk/; revision=28214
2011-08-07 00:52:35 +00:00
Eelco Dolstra 2af368279c * Set NIX_PATH to something reasonable.
svn path=/nixos/trunk/; revision=28202
2011-08-06 18:55:00 +00:00
Eelco Dolstra 1df952182a * Only flush the POSTROUTING chain.
svn path=/nixos/trunk/; revision=28153
2011-08-04 15:33:40 +00:00
Eelco Dolstra 3fb6026191 * Add smartmontools.
svn path=/nixos/trunk/; revision=28121
2011-08-02 06:53:09 +00:00
Eelco Dolstra 8aad8c536f * Make virtualisation.qemu.options a list.
svn path=/nixos/trunk/; revision=28120
2011-08-02 06:52:10 +00:00
Eelco Dolstra d890e74d9c * Hacks to keep KDE 4.5 working. The latest D-Bus is more strict in
checking function arguments, so DBUS_FATAL_WARNINGS=0 is necessary
  to prevent KDE from aborting.  Also put the Phonon gstreamer backend
  in the environment if available.

svn path=/nixos/trunk/; revision=28113
2011-08-01 14:28:28 +00:00
Eelco Dolstra 7a7d781e6a * Allow the PulseAudio server to be overriden.
svn path=/nixos/trunk/; revision=28112
2011-08-01 13:26:51 +00:00
Eelco Dolstra 44725e50f0 * Apply the resource limits set by security.pam.loginLimits to all PAM
services (rather than just login(1)).  It's rather unexpected if
  resource limits are not applied to (say) users logged in via SSH or
  X11.

svn path=/nixos/trunk/; revision=28105
2011-08-01 10:17:18 +00:00
Eelco Dolstra af22531d38 * Remove the hydra-mirror module from NixOS, it's too specialised.
svn path=/nixos/trunk/; revision=28024
2011-07-31 22:00:29 +00:00
Eelco Dolstra 7d69a82b55 * Put the CA certificate bundle in /etc/ssl/certs because Qt expects
them there.

svn path=/nixos/trunk/; revision=28009
2011-07-29 19:06:27 +00:00
Rob Vermaas d0ad799582 bind mount /proc in chroot dureing image creation, to prevent some error
svn path=/nixos/trunk/; revision=28002
2011-07-29 14:55:42 +00:00
Eelco Dolstra fc9f6d0395 svn path=/nixos/trunk/; revision=27991 2011-07-28 16:35:13 +00:00
Eelco Dolstra 31afd2bb2e * vsftpd: use /var/empty instead of /var/ftp/empty as the empty
chroot (the latter doesn't exist).
* vsftpd: make the anonymous user's home read-only, otherwise vsftpd
  will fail.

svn path=/nixos/trunk/; revision=27983
2011-07-28 09:42:20 +00:00
Nicolas Pierron 66ffeb3fd9 UPS: Make sure the driver pid files can be stored.
svn path=/nixos/trunk/; revision=27979
2011-07-27 20:55:39 +00:00
Nicolas Pierron ef63ea98f4 Experiment with dual option types (list & attribute sets).
svn path=/nixos/trunk/; revision=27978
2011-07-27 20:55:35 +00:00
Nicolas Pierron e231543033 Add new services: freepops, fuppes and ups.
svn path=/nixos/trunk/; revision=27977
2011-07-27 20:55:28 +00:00
Eelco Dolstra abb2779840 * The write_cd_rules script in udev needs udev in its $PATH.
svn path=/nixos/trunk/; revision=27970
2011-07-26 21:01:36 +00:00
Eelco Dolstra d1f1cfcd41 * Don't make PulseAudio a requirement for KDE, it works fine without
it (especially now that KDE doesn't try to start PulseAudio
  automatically).

svn path=/nixos/trunk/; revision=27969
2011-07-26 18:34:59 +00:00
Eelco Dolstra 3b374ea326 * Move PulseAudio initialisation below the re-exec to prevent it from
being started twice.

svn path=/nixos/trunk/; revision=27968
2011-07-26 18:34:10 +00:00
Eelco Dolstra 3fdc209978 * Start PulseAudio from the X session script.
svn path=/nixos/trunk/; revision=27967
2011-07-26 18:16:24 +00:00
Eelco Dolstra 77c85b1de7 * Install /etc/pulse/default.pa and /etc/pulse/system.pa.
* If PulseAudio is disabled in the NixOS config, then disable
  autospawning of the PulseAudio server in /etc/pulse/client.conf.

svn path=/nixos/trunk/; revision=27966
2011-07-26 17:35:47 +00:00
Eelco Dolstra aa5f5ed2e5 * I should test first.
svn path=/nixos/trunk/; revision=27964
2011-07-26 14:19:06 +00:00
Eelco Dolstra 645205b600 * Add a module for rtkit. The PulseAudio module enables rtkit to
acquire real-time priority.

svn path=/nixos/trunk/; revision=27963
2011-07-26 14:14:10 +00:00
Eelco Dolstra 2aaff3aa06 * Restart polkitd in the activation script to force its configuration
to be reloaded.

svn path=/nixos/trunk/; revision=27962
2011-07-26 14:13:07 +00:00
Eelco Dolstra 8bf3c2c1bf * The implementation of the ALSA_PLUGIN_DIRS variable is buggy:
because it uses strtok() to modify the environment variable in
  place, it only works correctly the first time it's called.
  Subsequent calls only see the first directory listed in the
  variable.  This causes applications such as Audacious to fail
  because the Pulse plugin is not in the first directory.  However, we
  don't actually need $ALSA_PLUGIN_DIRS, because /etc/asound.conf
  allows the full path to the Pulse plugin to be specified.

svn path=/nixos/trunk/; revision=27960
2011-07-26 13:00:43 +00:00
Eelco Dolstra 7bdaedb465 * Add a module to enable PulseAudio. It causes all ALSA applications
to be rerouted to PulseAudio.

  Note that this is distinct from the already existing module
  ‘services/audio/pulseaudio.nix’ that provides a system-wide
  PulseAudio daemon, which is usually not what you want.

svn path=/nixos/trunk/; revision=27958
2011-07-26 01:51:56 +00:00
Eelco Dolstra a1df35a590 * Don't enable HAL by default anymore. It's obsolete. It's still
enabled by modules that need it (KDE < 4.7, Xfce).
* Don't enable the PolicyKit module by default either, it's also
  obsolete (replaced by PolKit).  It's still enabled if HAL is
  enabled.

svn path=/nixos/trunk/; revision=27933
2011-07-25 00:52:59 +00:00
Eelco Dolstra 38fddb2243 * The X server doesn't actually depend on HAL anymore.
svn path=/nixos/trunk/; revision=27932
2011-07-25 00:50:46 +00:00
Eelco Dolstra 2e4acbcf8b * Add a NixOS module for upower.
svn path=/nixos/trunk/; revision=27931
2011-07-25 00:45:52 +00:00
Eelco Dolstra fcc9cf2d85 svn path=/nixos/trunk/; revision=27930 2011-07-25 00:36:41 +00:00
Eelco Dolstra 1e5bd11a53 * Create /run in the initrd and bind-mount it into the target root.
This allows Udev to share its database between stage 1 and 2, which
  in turn is expected by the LVM Udev rules.

svn path=/nixos/trunk/; revision=27926
2011-07-24 23:36:30 +00:00
Eelco Dolstra a9f599154a * Remove stupid ‘libraryPath’ entries from ~/.config/Trolltech.conf
that can randomly cause KDE to fail.

svn path=/nixos/trunk/; revision=27925
2011-07-24 22:07:58 +00:00
Shea Levy d121bb15b5 Add a NixOS module for the rtl8192c firmware
svn path=/nixos/trunk/; revision=27913
2011-07-23 23:01:39 +00:00
Shea Levy e5dacbe6a8 Only turn ttyBackgrounds on by default when the kernel has splashutils
This way users won't need to add ttyBackgrounds.enable = false when upgrading to a new kernel, and if the kernel gets splashutils in the future ttyBackgrounds will be enabled automatically.

svn path=/nixos/trunk/; revision=27911
2011-07-23 18:46:16 +00:00
Shea Levy 5a2d438f24 splashutils is already let-bound to kernelPackages.splashutils, so let's take advantage of it.
svn path=/nixos/trunk/; revision=27910
2011-07-23 18:15:55 +00:00
Eelco Dolstra 83846d8417 * NixOS module for Udisks.
svn path=/nixos/trunk/; revision=27909
2011-07-23 01:30:36 +00:00
Peter Simons 3a1b6266e4 modules/services/monitoring/smartd.nix: added services.smartd.devices option to configure list of devices to monitor
By default -- if this option is unset --, all connected devices will be
monitored. Hard-coding the list of devices is worth-while, though, because this
will also configure smartd to send e-mail messages to 'root' when a test fails.

svn path=/nixos/trunk/; revision=27888
2011-07-21 19:32:15 +00:00
Eelco Dolstra 7c6c50a3bf * Nuke the KDE icon cache on login.
svn path=/nixos/trunk/; revision=27867
2011-07-21 11:16:46 +00:00
Lluís Batlle i Rossell 4e73287456 Adding a syslog parameter to receive log from other devices through the network.
svn path=/nixos/trunk/; revision=27866
2011-07-21 07:42:05 +00:00
Eelco Dolstra 68350e646d * Support KDE 4.7.
svn path=/nixos/trunk/; revision=27818
2011-07-18 12:37:13 +00:00
Eelco Dolstra c45356769e * /var/lib/kdm needs to be owned by ‘kdm’.
* Set KDEDIRS properly in kdm.

svn path=/nixos/trunk/; revision=27817
2011-07-18 12:36:46 +00:00
Eelco Dolstra 63e9ece771 * Support booting into another GRUB boot entry via ‘grub-reboot’.
This requires grub.conf to honour the saved_entry GRUB environment
  variable.

svn path=/nixos/trunk/; revision=27807
2011-07-17 11:42:44 +00:00
Eelco Dolstra c971f2b1ac * Shut up some udev warnings.
svn path=/nixos/trunk/; revision=27806
2011-07-17 11:01:31 +00:00
Eelco Dolstra 6490c6ba21 * Don't use /tmp/kdm as the home directory for the kdm user - sounds
insecure.
* Create /var/lib/kdm.
* In kdmrc, set BootManager to "Grub2" if we're using GRUB 2.

svn path=/nixos/trunk/; revision=27805
2011-07-17 10:52:40 +00:00
Eelco Dolstra 6e7ce112bb * Create /etc/shells. KDM in KDE 4.7 requires it.
svn path=/nixos/trunk/; revision=27804
2011-07-17 10:45:49 +00:00
Eelco Dolstra 14636ba057 * The Powers That Be have decided that there shall be a /run to
replace /var/run and /var/lock.  For instance, udev now keeps state
  in /run/udev instead of /dev/.udev.  See

    http://lists.fedoraproject.org/pipermail/devel/2011-March/150031.html
    http://bugs.freestandards.org/show_bug.cgi?id=718

  So this patch creates /run as a tmpfs, and symlinks /var/run to /run
  and /var/lock to /run/lock.

  TODO: create /run in stage 1 and propagate it to stage 2.    

svn path=/nixos/trunk/; revision=27803
2011-07-16 19:27:45 +00:00
Eelco Dolstra 23d7a822f1 * Fix the path to mount in the rule in 50-udev-default.rules that
mounts /sys/fs/fuse/connections.

svn path=/nixos/trunk/; revision=27802
2011-07-16 18:40:08 +00:00
Peter Simons aec0ee107c modules/services/logging/syslogd.nix: change type of 'tty' option to "uniq string"
svn path=/nixos/trunk/; revision=27774
2011-07-14 11:35:03 +00:00
Sander van der Burg c630e52873 Added MySQL replication support + 2 MySQL testcases (including replication)
svn path=/nixos/trunk/; revision=27771
2011-07-13 20:58:48 +00:00
Peter Simons d7c4900420 syslogd: extended configuration options
This commit adds the option 'services.syslogd.defaultConfig', which is
the main syslog.conf file used by the daemon. Like before, That file can
be extended by means of 'services.syslogd.extraConfig'. Users who want a
completely different configuration, however, can re-define defaultConfig
to their liking.

Furthermore, the option services.syslogd.tty' is now optional: setting
its value to the empty string "" disables logging to TTY altogether.

svn path=/nixos/trunk/; revision=27769
2011-07-13 18:24:53 +00:00
Peter Simons fb1b0c0372 modules/services/monitoring/smartd.nix: added support for running smart daemon
Set "services.smartd.enable = true" to enable the service.

svn path=/nixos/trunk/; revision=27767
2011-07-13 17:47:34 +00:00
Peter Simons e056880dc4 base.nix: strip trailing whitespace
svn path=/nixos/trunk/; revision=27755
2011-07-13 12:18:25 +00:00
Peter Simons 0c68a3440a modules/profiles/base.nix: add 'pkgs.sshfsFuse'
The sshfsFuse package -- which is part of the system profile already -- doesn't
work without fuse. It tries to run /var/setuid-wrappers/fusermount, which then
can't find fusermount. Adding fuse to the system profile remedies this problem.

svn path=/nixos/trunk/; revision=27754
2011-07-13 12:18:23 +00:00
Eelco Dolstra c548597976 * Allow Git to find the CA bundle.
svn path=/nixos/trunk/; revision=27735
2011-07-12 12:45:48 +00:00
Peter Simons 0ffb794d5d modules/services/networking/ssh/sshd.nix: strip trailing whitespace
svn path=/nixos/trunk/; revision=27733
2011-07-12 10:34:30 +00:00
Peter Simons ea84edd528 modules/services/networking/ssh/sshd.nix: added new boolean options usePAM and passwordAuthentication
Setting both of these options to 'false' configures the OpenSSH daemon to
reject password authentication, i.e. users must have an appropriate key in
~/.ssh/authorized_keys in order to be able to log in.

svn path=/nixos/trunk/; revision=27732
2011-07-12 10:34:27 +00:00
Eelco Dolstra 6857a28f0e * Postfix needs TZ to be set, otherwise the generated headers are
wrong (reported by Peter Simons).

svn path=/nixos/trunk/; revision=27639
2011-07-07 19:18:40 +00:00
Eelco Dolstra 466d798b15 * Oops.
svn path=/nixos/trunk/; revision=27608
2011-07-05 12:54:50 +00:00
Eelco Dolstra 3bc3dc3940 * Put the NixOS firewall ruleset in its own chain (‘nixos-fw’). This
should make it easier to compose with packages that set their own
  firewall rules, such as Nova or Libvirt.
* Provide a chain for accepted packets (‘nixos-fw-accept’), requested
  by Nicolas Pierron.

svn path=/nixos/trunk/; revision=27607
2011-07-05 12:51:46 +00:00
Eelco Dolstra 1d09ad240a * Don't set defaultSkin to "default" because that's a horrible skin
(does it even exist?).  Use "" instead (which is really "monobook").

svn path=/nixos/trunk/; revision=27604
2011-07-04 15:51:38 +00:00
Eelco Dolstra bf00977ce1 * Add an option ‘services.postgresql.extraConfig’.
svn path=/nixos/trunk/; revision=27550
2011-06-27 10:15:26 +00:00
Eelco Dolstra 010a2a7555 * Support creating non-system user accounts.
svn path=/nixos/trunk/; revision=27545
2011-06-27 08:50:30 +00:00
Sander van der Burg ab70d480ab The machines in the network should be accessed by the node function parameter
svn path=/nixos/trunk/; revision=27538
2011-06-24 12:35:58 +00:00
Joachim Schiele 1ea24769a0 added support for two custom themes and also wrote a nice looking nixos theme
svn path=/nixos/trunk/; revision=27535
2011-06-23 20:56:37 +00:00
Eelco Dolstra c41b01ea23 * Canonicalize boot.loader.grub.device before calling grub-install to
ensure that values such as /dev/disk/by-id/ata-WDC... work.

svn path=/nixos/trunk/; revision=27519
2011-06-22 18:22:58 +00:00
Eelco Dolstra a2ad688a63 * Handle the case where networking.hostName is empty.
svn path=/nixos/trunk/; revision=27510
2011-06-21 10:46:21 +00:00
Eelco Dolstra 59355bafe5 * Initialise bridges before doing the configuration specified in
networking.interfaces and networking.localCommands.

svn path=/nixos/trunk/; revision=27505
2011-06-20 18:12:47 +00:00
Eelco Dolstra 3cb5ea79bd * Add an option virtualisation.nova.extraConfig.
svn path=/nixos/trunk/; revision=27504
2011-06-20 14:27:06 +00:00
Eelco Dolstra 545431003b * Create some virtual consoles in Nova VMs because it provides VNC
access.

svn path=/nixos/trunk/; revision=27483
2011-06-16 14:15:37 +00:00
Eelco Dolstra e25843d01c * Add an option to distinguish between EC2 and Nova targets.
svn path=/nixos/trunk/; revision=27482
2011-06-16 14:14:50 +00:00
Eelco Dolstra 6719446d4b * Some hackery to get foomatic-filters to work.
svn path=/nixos/trunk/; revision=27471
2011-06-15 12:41:15 +00:00
Eelco Dolstra e9a567f8d2 * Update the Nova module for the Cactus release.
svn path=/nixos/trunk/; revision=27410
2011-06-09 17:11:56 +00:00
Eelco Dolstra c2a3aa8e79 * Open UDP port 631 in the firewall to allow CUPS to discover
printers on the network.

svn path=/nixos/trunk/; revision=27399
2011-06-08 15:55:51 +00:00
Evgeny Egorochkin c734389e90 Virtuoso: add parameters section to config
svn path=/nixos/trunk/; revision=27342
2011-06-04 10:53:07 +00:00
Evgeny Egorochkin 733917db0f Virtuoso: add dirsAllowed option, minor cleanup
svn path=/nixos/trunk/; revision=27336
2011-05-31 14:56:56 +00:00
Evgeny Egorochkin b65a4840b8 Make virtuoso drop root privileges
svn path=/nixos/trunk/; revision=27334
2011-05-31 09:56:55 +00:00
Evgeny Egorochkin 14859264a9 Virtuoso database service: packaged
svn path=/nixos/trunk/; revision=27332
2011-05-31 07:44:17 +00:00
Michael Raskin be85cdacfd Fix space-containing name processing
svn path=/nixos/trunk/; revision=27313
2011-05-28 20:08:49 +00:00
Michael Raskin 25bb8b3d55 Link TrueType/OpenType fonts to all-fonts directory, too
svn path=/nixos/trunk/; revision=27312
2011-05-28 19:58:43 +00:00
Eelco Dolstra 4984fa1ee6 * Fix the Nixpkgs mirror script (it didn't have the necessary
modules in the Perl search path).

svn path=/nixos/trunk/; revision=27261
2011-05-16 07:46:31 +00:00
Eelco Dolstra 95dc49a89d * Add an option ‘deployment.ec2.keyPair’.
svn path=/nixos/trunk/; revision=27238
2011-05-12 15:30:56 +00:00
Eelco Dolstra 862fe5ad78 * Generate a nova.conf file.
* Provide a configuration.nix in Nova images.

svn path=/nixos/trunk/; revision=27224
2011-05-11 13:52:49 +00:00
Eelco Dolstra 7579933824 * Don't mount /dev/cgroup with the "ns" subsystem. If it's mounted,
then every unshare(CLONE_NEWNS) system call causes a new entry to be
  created in /dev/cgroup/<pid>, which is not removed automatically.
  This can cause subsequent calls to unshare() to fail if the PID has
  wrapped around.  Worse, a large number of entries in /dev/cgroup
  causes a very substantial system slowdown: doing 10,000
  fork()/unshare(CLONE_NEWNS)/exit() calls took 21s without the "ns"
  subsystem, but 2m43s with it, and the system slows down permanently
  until the entries in /dev/cgroup are removed (going to a load of > 6
  on my laptop).

  This is particularly important for Nix because its chroot feature
  uses unshare(CLONE_NEWNS).  (http://yellowgrass.org/issue/Nix/219)

svn path=/nixos/trunk/; revision=27216
2011-05-11 09:33:24 +00:00
Eelco Dolstra 6bc3a76439 * Add an option ‘deployment.adhoc.destroyVMCommand’.
svn path=/nixos/trunk/; revision=27211
2011-05-10 13:12:35 +00:00
Eelco Dolstra d72ba42187 * Revert to GRUB 1 as the default. The switch to GRUB 2 seems to
cause more problems than expected, so we should probably think about
  the proper migration path for a while.  In the meantime, of course,
  everybody is encouraged to set boot.loader.grub.version = 2.

svn path=/nixos/trunk/; revision=27209
2011-05-10 10:35:20 +00:00
Michael Raskin f24a78fe35 Fix typo in emergency grub config
svn path=/nixos/trunk/; revision=27196
2011-05-09 14:21:02 +00:00
Eelco Dolstra f35011e59a svn path=/nixos/trunk/; revision=27187 2011-05-08 20:51:40 +00:00
Ludovic Courtès 9c3d72cf8e Default to GRUB version 2.
svn path=/nixos/trunk/; revision=27165
2011-05-05 15:07:37 +00:00
Lluís Batlle i Rossell c4fe98706b Fixing the samba daemons. "smbd -i", as we were using, handles *one request* and exit.
When it was working more or less, it was through upstart respawn.


svn path=/nixos/trunk/; revision=27140
2011-05-04 12:34:26 +00:00
Eelco Dolstra 07820cb8cb svn path=/nixos/trunk/; revision=27049 2011-04-29 13:24:24 +00:00
Eelco Dolstra 311b702c70 * A bunch of options for the new nixos-deploy-network. Completely
unimplemented of course.

svn path=/nixos/trunk/; revision=27048
2011-04-29 11:28:43 +00:00
Sander van der Burg deb6cce4bb Adapted deploy-network to accept multiple network configurations which are zipped together. With this you can run the tool like this:
$ nixos-deploy-network network1.nix network2.nix


svn path=/nixos/trunk/; revision=27028
2011-04-28 11:02:58 +00:00
Michael Raskin a61015cfa1 IRCD expression needs recursive attrsets...
svn path=/nixos/trunk/; revision=27025
2011-04-28 08:23:09 +00:00
Lluís Batlle i Rossell 0af7c7bdcb Making the samba services get the timezone.
svn path=/nixos/trunk/; revision=27022
2011-04-28 08:07:17 +00:00
Eelco Dolstra 6739162d9a * Move ircd-hybrid stuff from the services tree to the nixos tree.
svn path=/nixos/trunk/; revision=27009
2011-04-27 16:27:05 +00:00
Eelco Dolstra 3ae283e8c3 * Remove installer2 and nixos-bootstrap-archive for lack of
documentation / maintenance / clear use cases.

svn path=/nixos/trunk/; revision=27008
2011-04-27 16:16:47 +00:00
Eelco Dolstra b8a1e98180 * nixos-checkout depends on subversion. (The original nixos-checkout
did a "nix-env -i subversion", which may be preferable to a static
  dependency.)

svn path=/nixos/trunk/; revision=27006
2011-04-27 15:42:14 +00:00
Eelco Dolstra 41a8f23189 * Revert to the old (r10556) version of the nixos-checkout script. It
was never intended as a generic "check out anything" script; it's
  just a convenience script to obtain the NixOS trunk after
  installation.  So that's what it should do.

svn path=/nixos/trunk/; revision=27005
2011-04-27 15:34:33 +00:00
Eelco Dolstra aefa687b02 * Move the twiki module out of the NixOS tree.
svn path=/nixos/trunk/; revision=27001
2011-04-27 15:00:32 +00:00
Eelco Dolstra 56f1918e1c * Move the Subversion/Repoman module out of the NixOS tree.
svn path=/nixos/trunk/; revision=27000
2011-04-27 14:52:55 +00:00
Eelco Dolstra e3a2cd58e0 svn path=/nixos/trunk/; revision=26998 2011-04-27 14:10:33 +00:00
Eelco Dolstra 742881a0f9 svn path=/nixos/trunk/; revision=26997 2011-04-27 14:10:03 +00:00
Eelco Dolstra 257326915b * gw6c: don't depend on the services tree.
svn path=/nixos/trunk/; revision=26995
2011-04-27 14:03:46 +00:00
Eelco Dolstra 1fd2e71c8d * Don't add nixos-gui to the installation CD (for now) because 1)
xulrunner is a big package (> 105 MiB); 2) it breaks the CD build
  (http://hydra.nixos.org/build/1057258); 3) currently it doesn't do
  much yet.

  Note that if we do add it, we might as well add Firefox to the CD
  (since it's only a few MiB more on top of xulrunner).

svn path=/nixos/trunk/; revision=26993
2011-04-27 13:54:23 +00:00
Eelco Dolstra e5966f96b7 * Fix the jboss module.
svn path=/nixos/trunk/; revision=26992
2011-04-27 13:33:06 +00:00
Eelco Dolstra 650d14be8d * Remove most references to the "services" tree.
svn path=/nixos/trunk/; revision=26990
2011-04-27 13:16:33 +00:00
Eelco Dolstra be7a7a5b78 * nixos-build-vms/build-vms.nix: drop the "nixos" function argument,
since the path to the NixOS source tree is known.

svn path=/nixos/trunk/; revision=26989
2011-04-27 13:01:42 +00:00
Nicolas Pierron 6839bddd1b modules/installer/tools: nixos-gui: Fix derivation.
svn path=/nixos/trunk/; revision=26972
2011-04-25 17:48:59 +00:00
Nicolas Pierron 921231b555 Add nixos-gui among the installer tools.
Add it as a default for the graphical profile.

svn path=/nixos/trunk/; revision=26960
2011-04-25 01:03:57 +00:00
Nicolas Pierron 66eed7681d nixos-option: Add xml output to reduce the effort in nixos-gui.
svn path=/nixos/trunk/; revision=26950
2011-04-24 15:30:25 +00:00
Nicolas Pierron ba2d96cf85 nixos-option: Handle Lambdas in the injection of previously pretty-printed
output.

svn path=/nixos/trunk/; revision=26936
2011-04-23 17:53:05 +00:00
Lluís Batlle i Rossell 8dfc5d041a Adding 'ethers' on nsswitch.
svn path=/nixos/trunk/; revision=26913
2011-04-20 20:59:07 +00:00
Eelco Dolstra ee3269cbbd * Put "minimal" or "graphical" in the ISO name to distinguish between
the files.

svn path=/nixos/trunk/; revision=26901
2011-04-20 10:48:52 +00:00
Eelco Dolstra 76d3721a53 * `dnsmasq' shouldn't run by default.
svn path=/nixos/trunk/; revision=26890
2011-04-19 13:37:31 +00:00
Eelco Dolstra 37562ea864 * Remove a debug statement.
svn path=/nixos/trunk/; revision=26889
2011-04-19 13:23:45 +00:00
Evgeny Egorochkin 23df246c9e 4Store SPARQL endpoint: packaged
svn path=/nixos/trunk/; revision=26853
2011-04-15 16:10:17 +00:00
Evgeny Egorochkin a094140655 4store database service: packaged
svn path=/nixos/trunk/; revision=26852
2011-04-15 16:10:13 +00:00
Lluís Batlle i Rossell 7a4685d28d Openldap needs a directory in /var/run to start, and it seems it's clean at every boot.
svn path=/nixos/trunk/; revision=26840
2011-04-14 09:54:46 +00:00
Lluís Batlle i Rossell 84bea7a351 I change the ldap settings so pam_unix and 'files' always go in front of ldap,
instead of the opposite. Thus, /etc/passwd has priority over ldap.


svn path=/nixos/trunk/; revision=26834
2011-04-13 20:48:50 +00:00
Lluís Batlle i Rossell d8a702f59f Making the samba daemons see the nss modules (needed for ldap-unix-pam integration)
svn path=/nixos/trunk/; revision=26830
2011-04-13 20:06:29 +00:00
Lluís Batlle i Rossell e7c9266a70 Adding a poor openldap server module.
svn path=/nixos/trunk/; revision=26822
2011-04-13 17:35:19 +00:00
Lluís Batlle i Rossell 6824866d6d Adding a dnsmasq simple module.
svn path=/nixos/trunk/; revision=26820
2011-04-13 14:09:02 +00:00
Eelco Dolstra e9b2ebcb99 * Send a TCP RST packet, rather than an ICMP port-unreachable packet,
for (apparently) open TCP connections that connection tracking 
  doesn't know about.  This prevents TCP connections to this machine
  from hanging in CLOSE_WAIT for a long time.

svn path=/nixos/trunk/; revision=26802
2011-04-12 11:25:57 +00:00
Lluís Batlle i Rossell 82a0aa0a8f Fixing a path in the trac ldap part. Too much slashes make things go wrong.
svn path=/nixos/trunk/; revision=26786
2011-04-11 19:43:48 +00:00
Lluís Batlle i Rossell 9c492e34bb Making the trac module ldap-aware (for the authentication) and sqlite aware.
svn path=/nixos/trunk/; revision=26768
2011-04-09 16:05:36 +00:00
Eelco Dolstra 97a37f7c12 * "stage1panic" -> "stage1panic=1" to get rid of a harmless warning.
svn path=/nixos/trunk/; revision=26756
2011-04-08 14:42:35 +00:00
Eelco Dolstra 05ff7baf48 * /var/lib/nova/networks should be readable by the `nobody' user,
because dnsmasq runs as nobody and reads its host list from there.

svn path=/nixos/trunk/; revision=26740
2011-04-07 12:47:20 +00:00
Eelco Dolstra 3836e8eb02 * Properly initialise Nova's state.
svn path=/nixos/trunk/; revision=26735
2011-04-07 09:59:11 +00:00
Eelco Dolstra 4c2a0dc531 * Add multipath-tools (specifically, kpartx) to nova-compute's $PATH
so that it can inject SSH keys into disk images.
* Use the injected key if available.

svn path=/nixos/trunk/; revision=26724
2011-04-06 15:53:03 +00:00
Eelco Dolstra 2e2282bd5e * Added a module to create a disk image for Nova.
svn path=/nixos/trunk/; revision=26721
2011-04-06 15:09:34 +00:00
Eelco Dolstra 84be6235c3 * Get rid of a cyclic symlink to the default theme.
svn path=/nixos/trunk/; revision=26712
2011-04-06 11:58:13 +00:00
Eelco Dolstra d9cf1c2da0 * Install ~/.bashrc as a regular file rather than as a symlink.
svn path=/nixos/trunk/; revision=26690
2011-04-05 11:24:36 +00:00
Shea Levy 2ddda472c4 Put vim on the live cd in place of nvi
svn path=/nixos/trunk/; revision=26679
2011-04-04 13:45:16 +00:00
Eelco Dolstra fcaec58d27 * Add a module for setting up a basic (single-node) OpenStack Compute
(Nova) cloud.

svn path=/nixos/trunk/; revision=26664
2011-04-01 18:09:57 +00:00
Eelco Dolstra 2c1084b21b * libvirtd job: wait until libvirtd is accepting connections.
svn path=/nixos/trunk/; revision=26663
2011-04-01 18:08:53 +00:00
Eelco Dolstra 403accc71f * Some hackery to make sure that router solicitations get through
after creating a bridge.
* Ignore errors (set +e) so that we can get rid of all the "|| true"
  clauses.

svn path=/nixos/trunk/; revision=26660
2011-04-01 15:05:42 +00:00
Shea Levy 8dd6f42a91 Fixed formatting
svn path=/nixos/trunk/; revision=26647
2011-03-31 23:06:36 +00:00
Shea Levy f269206972 Update iso-image.nix to work with kernels that use AUFS 2.1 instead of AUFS 2. Older kernels are unaffected.
svn path=/nixos/trunk/; revision=26646
2011-03-31 23:03:54 +00:00
Eelco Dolstra 1e2c0d6284 * Try to hack around libvirt's stateful use of /etc/libvirt. (Routine
operations such as creating VMs modify the contents of
  /etc/libvirt.)

svn path=/nixos/trunk/; revision=26644
2011-03-31 22:10:26 +00:00
Eelco Dolstra ef80abc886 * Remove some dead code.
svn path=/nixos/trunk/; revision=26634
2011-03-31 21:21:55 +00:00
Eelco Dolstra c4a2eeb9f8 * Added a module for the RabbitMQ server.
svn path=/nixos/trunk/; revision=26630
2011-03-31 17:04:05 +00:00
Eelco Dolstra e174562ee1 * Put ebtables in libvirtd's PATH.
svn path=/nixos/trunk/; revision=26629
2011-03-31 15:24:13 +00:00
Nicolas Pierron 96fc9379ba Convert assertion option into mkAssert.
svn path=/nixos/trunk/; revision=26614
2011-03-30 17:52:34 +00:00
Eelco Dolstra 87a2c6d9c5 * Don't enable rdnssd by default for the moment.
svn path=/nixos/trunk/; revision=26505
2011-03-25 09:29:22 +00:00
Eelco Dolstra b2d6dfecbc * Add the rdnss daemon.
* Add the ndisc6 package to the system path if IPv6 is enabled.

svn path=/nixos/trunk/; revision=26496
2011-03-24 16:23:28 +00:00
Eelco Dolstra c430bf5cc3 * Add virtio_console to the CD because the backdoor requires it.
* The booted CD no longer requires "-net user".

svn path=/nixos/trunk/; revision=26427
2011-03-19 08:58:56 +00:00
Eelco Dolstra 6c55079ab0 * nixos-hardware-scan: It's not necessary to detect Intel graphics
cards because the default X config contains the Intel driver.
  Likewise, there is no need for the "vesa" default.
* nixos-hardware-scan: Clean up the output a bit.

svn path=/nixos/trunk/; revision=26423
2011-03-18 13:52:09 +00:00
Eelco Dolstra ef07a945c4 * Don't echo characters on /dev/hvc0, otherwise the stdout of commands
gets screwed up.

svn path=/nixos/trunk/; revision=26422
2011-03-18 13:16:40 +00:00
Eelco Dolstra be0fca5781 * Use QEMU/KVM's paravirtualised console device for the backdoor.
This has the advantage that it doesn't depend on networking being
  up.
* Move common QEMU/KVM guest configuration to profiles/qemu-guest.nix.

svn path=/nixos/trunk/; revision=26421
2011-03-18 12:38:22 +00:00
Eelco Dolstra 6ee609a0a3 * On the installation CD, set the overcommit heuristic to "always
overcommit".  This makes it less likely that the installer fails
  randomly in low memory environments.

svn path=/nixos/trunk/; revision=26369
2011-03-16 15:17:54 +00:00
Eelco Dolstra a19849914a * libvirtd: Remove the pid on startup. If it exists, libvirtd
tends to segfault.

svn path=/nixos/trunk/; revision=26365
2011-03-16 13:52:52 +00:00
Eelco Dolstra 8add655028 * Add qemu_kvm to the system path.
svn path=/nixos/trunk/; revision=26359
2011-03-16 12:31:06 +00:00
Eelco Dolstra 6646268c95 * This should no longer be needed.
svn path=/nixos/trunk/; revision=26331
2011-03-15 18:47:56 +00:00
Eelco Dolstra f71bd3f93c * dhclient: ignore libvirt's network interfaces.
svn path=/nixos/trunk/; revision=26327
2011-03-15 15:30:12 +00:00
Eelco Dolstra 3cb7a54dba * Added an option `networking.bridges' to allow Ethernet bridges to be
defined.

svn path=/nixos/trunk/; revision=26325
2011-03-15 15:13:48 +00:00
Eelco Dolstra f45866d0e7 * The NAT networking in libvirt requires the "tun" module.
svn path=/nixos/trunk/; revision=26314
2011-03-15 10:52:44 +00:00
Eelco Dolstra f833492c68 * Add dnsmasq to libvirtd's PATH. This is required for networking.
svn path=/nixos/trunk/; revision=26313
2011-03-15 09:42:49 +00:00
Eelco Dolstra cd30b40da7 * Replace ifconfig by ip in the initrd of VM tests.
svn path=/nixos/trunk/; revision=26280
2011-03-11 14:59:36 +00:00
Eelco Dolstra 8ce36ffb3a * Use "ip" instead of "ifconfig" for setting up network interfaces,
since the latter is rather deprecated and has been unmaintained
  since 2001.  Note that "ip" doesn't know about classful addressing,
  so you can no longer get away with not specifying the subnet mask
  for explicitly configured interfaces.  So if you had

    networking.interfaces =
      [ { name = "eth0"; ipAddress = "192.168.1.1"; } ];

  this should be changed to

    networking.interfaces =
      [ { name = "eth0";
          ipAddress = "192.168.1.1";
          subnetMask = "255.255.255.0";
        }
     ];

  otherwise you end up with a subnet mask of 255.255.255.255.

svn path=/nixos/trunk/; revision=26279
2011-03-11 14:50:11 +00:00
Eelco Dolstra 7205c31ea3 * Remove "modprobe af_packet". It's loaded automatically when needed.
svn path=/nixos/trunk/; revision=26277
2011-03-11 13:57:48 +00:00
Eelco Dolstra ee4e004cc4 * Add a test for the firewall.
svn path=/nixos/trunk/; revision=26276
2011-03-11 13:38:52 +00:00
Eelco Dolstra 64d871c0d9 * Enable FTP connection tracking in the firewall.
svn path=/nixos/trunk/; revision=26275
2011-03-11 13:34:17 +00:00
Eelco Dolstra 005ca15f64 * Firewall: add an option to allow extra firewall rules to be added.
* Firewall: change the policy of the INPUT chain back to ACCEPT to
  prevent a lockup when the Nix store is mounted over the network
  (i.e. in our VM tests).  This is because as soon as the policy is
  set to DROP, the iptables modules that enable access to the network
  filesystem cannot be acccessed anymore.

svn path=/nixos/trunk/; revision=26274
2011-03-11 13:04:17 +00:00
Eelco Dolstra 6160100a9a * Don't run klogd in tests to prevent duplicate kernel messages in the
log output.  (It wasn't running anyway because the preStart command
  was broken.)  Note that "dmesg -c" doesn't have an effect on klogd,
  and "klogd -o" is broken.

svn path=/nixos/trunk/; revision=26273
2011-03-11 12:56:04 +00:00
Eelco Dolstra ab0ce6734b * firewall.nix: Only flush/delete the chains created by us.
svn path=/nixos/trunk/; revision=26271
2011-03-11 11:53:18 +00:00
Eelco Dolstra f672aa71bf * RFC 4890 says that local nodes should not filter pretty much any
ICMPv6 messages (including echo requests), so don't do that.

svn path=/nixos/trunk/; revision=26270
2011-03-11 11:08:16 +00:00
Eelco Dolstra 0ea9f6611a * Add some more rules to allow ICMPv6 router/neighbour advertisements
in.  Maybe we're better off accepting all ICMPv6 messages *except*
  echo requests.

svn path=/nixos/trunk/; revision=26260
2011-03-10 16:25:08 +00:00
Eelco Dolstra 53bc6d3efa * NAT module: support active FTP.
svn path=/nixos/trunk/; revision=26247
2011-03-10 13:03:47 +00:00
Eelco Dolstra 9bf4ac079e * Add a module for doing Network Address Translation.
svn path=/nixos/trunk/; revision=26246
2011-03-10 12:08:39 +00:00
Eelco Dolstra e2e7b689b4 * Fix `nixos-rebuild build-vm-with-bootloader': QEMU now requires the
`readonly' flag if the disk image is not writable.

svn path=/nixos/trunk/; revision=26245
2011-03-10 11:39:37 +00:00
Eelco Dolstra d6424efbfb * Cleanup.
svn path=/nixos/trunk/; revision=26244
2011-03-10 09:39:17 +00:00
Eelco Dolstra e884cbed7d * Add an option for opening UDP ports.
* Accept packets destined for link-local addresses (fe80::/10).

svn path=/nixos/trunk/; revision=26236
2011-03-09 16:37:16 +00:00
Eelco Dolstra d8b69f2fad * grub-mkimage now requires a format flag. Also, the "sh" module has
disappeared.  Hopefully it's not important :-)

svn path=/nixos/trunk/; revision=26234
2011-03-09 16:26:03 +00:00
Eelco Dolstra 12161f3183 * Add a firewall option to allow pings. (Maybe this should
be enabled by default.)

svn path=/nixos/trunk/; revision=26233
2011-03-09 15:28:47 +00:00
Eelco Dolstra e4051e105c * Use a separate chain for logging and rejecting.
svn path=/nixos/trunk/; revision=26232
2011-03-09 15:11:01 +00:00
Eelco Dolstra 66716f9dd5 * Firewall: support IPv6.
svn path=/nixos/trunk/; revision=26231
2011-03-09 14:41:48 +00:00
Eelco Dolstra 843e1f6c1e * Cleanup.
svn path=/nixos/trunk/; revision=26228
2011-03-09 12:28:44 +00:00
Eelco Dolstra 6f1068b0b7 * Remove the unnecessary warning printed by `nixos-rebuild test'. The
current configuration (/var/run/current-system) is always a GC root.

svn path=/nixos/trunk/; revision=26227
2011-03-09 12:14:06 +00:00
Eelco Dolstra f300833ebc * Add iproute to the path used by networking.localCommands.
svn path=/nixos/trunk/; revision=26222
2011-03-09 11:48:29 +00:00
Eelco Dolstra f1277862cd * Handle --cores.
svn path=/nixos/trunk/; revision=26188
2011-03-07 12:12:53 +00:00
Eelco Dolstra 5cff6eda3d * Revert r21410 because it breaks handling of "--max-jobs".
svn path=/nixos/trunk/; revision=26187
2011-03-07 12:12:39 +00:00
Eelco Dolstra 908a025b22 * Die tabs die.
svn path=/nixos/trunk/; revision=26184
2011-03-07 08:21:39 +00:00
Eelco Dolstra 10e8a801b6 * Refactor: extraChrootPaths -> chrootDirs. This allows disabling the
default chroot paths using mkOverride.

svn path=/nixos/trunk/; revision=26183
2011-03-07 08:20:24 +00:00
Michael Raskin 00f3a816a9 Adding a possibility to add more paths to chroots used by nix-daemons. The use-case is building the latest version from repository with very large checkouts. That way you do not get extra copy in store every time you rebuild, and you can implement a saner version checking than checksumming all the data
svn path=/nixos/trunk/; revision=26174
2011-03-06 15:39:05 +00:00
Eelco Dolstra c31c4290cc * Style fix.
svn path=/nixos/trunk/; revision=26140
2011-03-03 12:00:54 +00:00
Eelco Dolstra 08426fb717 * Add an Upstart job for libvirt-guests.
svn path=/nixos/trunk/; revision=26121
2011-02-25 15:56:49 +00:00
Eelco Dolstra 6fd7f8e0e6 * Add an Upstart job for libvirtd.
svn path=/nixos/trunk/; revision=26114
2011-02-25 15:07:52 +00:00
Eelco Dolstra e46fca2185 * Mount /dev/cgroup to enable cgroup support.
svn path=/nixos/trunk/; revision=26112
2011-02-25 14:31:15 +00:00
Eelco Dolstra e0fef9c333 * Drop the unnecessary boot=on flag.
svn path=/nixos/trunk/; revision=26103
2011-02-24 21:47:56 +00:00
Eelco Dolstra 34dea57f8a * Add wicd to the NixOS CD.
svn path=/nixos/trunk/; revision=26083
2011-02-23 19:11:32 +00:00
Eelco Dolstra e740badcc6 * Revert unintended commit.
svn path=/nixos/trunk/; revision=26082
2011-02-23 19:06:59 +00:00
Eelco Dolstra 9fca36bfa3 * Add the Intel 5000/6000 firmwares to the installation media.
svn path=/nixos/trunk/; revision=26081
2011-02-23 19:06:14 +00:00
Karn Kallio 0ea15a8f76 Strigi has moved out of kde4
svn path=/nixos/trunk/; revision=26061
2011-02-22 16:39:40 +00:00
Eelco Dolstra b61c632006 * Add a module for radvd.
svn path=/nixos/trunk/; revision=26035
2011-02-19 19:19:55 +00:00