nixpkgs/nixos/modules/module-list.nix

666 lines
22 KiB
Nix
Raw Normal View History

[
./config/debug-info.nix
./config/fonts/corefonts.nix
./config/fonts/fontconfig-ultimate.nix
./config/fonts/fontconfig.nix
./config/fonts/fontdir.nix
./config/fonts/fonts.nix
./config/fonts/ghostscript.nix
./config/gnu.nix
./config/i18n.nix
./config/krb5.nix
./config/ldap.nix
./config/networking.nix
./config/no-x-libs.nix
./config/nsswitch.nix
./config/power-management.nix
./config/pulseaudio.nix
./config/shells-environment.nix
./config/swap.nix
./config/sysctl.nix
2014-07-16 21:16:34 +01:00
./config/system-environment.nix
./config/system-path.nix
./config/timezone.nix
./config/unix-odbc-drivers.nix
./config/users-groups.nix
./config/vpnc.nix
./config/zram.nix
./hardware/all-firmware.nix
./hardware/ckb.nix
./hardware/cpu/amd-microcode.nix
2014-07-16 21:16:34 +01:00
./hardware/cpu/intel-microcode.nix
./hardware/ksm.nix
2012-07-14 04:54:41 +01:00
./hardware/network/b43.nix
./hardware/network/intel-2100bg.nix
./hardware/network/intel-2200bg.nix
./hardware/network/intel-3945abg.nix
./hardware/network/ralink.nix
./hardware/network/rtl8192c.nix
./hardware/opengl.nix
./hardware/pcmcia.nix
./hardware/video/amdgpu.nix
2016-09-22 02:42:16 +01:00
./hardware/video/amdgpu-pro.nix
./hardware/video/ati.nix
./hardware/video/bumblebee.nix
2016-08-27 17:55:56 +01:00
./hardware/video/displaylink.nix
./hardware/video/nvidia.nix
2015-12-29 18:02:36 +00:00
./hardware/video/webcam/facetimehd.nix
2016-04-12 11:46:12 +01:00
./i18n/input-method/default.nix
./i18n/input-method/fcitx.nix
./i18n/input-method/ibus.nix
./i18n/input-method/nabi.nix
./i18n/input-method/uim.nix
./installer/tools/auto-upgrade.nix
./installer/tools/tools.nix
./misc/assertions.nix
./misc/crashdump.nix
./misc/extra-arguments.nix
./misc/ids.nix
./misc/lib.nix
./misc/locate.nix
./misc/meta.nix
./misc/nixpkgs.nix
./misc/passthru.nix
./misc/version.nix
2016-10-31 10:25:50 +00:00
./programs/adb.nix
./programs/atop.nix
./programs/bash/bash.nix
./programs/blcr.nix
2015-02-10 10:52:46 +00:00
./programs/cdemu.nix
./programs/chromium.nix
./programs/command-not-found/command-not-found.nix
./programs/dconf.nix
./programs/environment.nix
./programs/fish.nix
2016-09-05 13:16:33 +01:00
./programs/freetds.nix
./programs/gphoto2.nix
2016-09-05 13:16:33 +01:00
./programs/info.nix
./programs/java.nix
./programs/kbdlight.nix
2014-11-10 02:32:11 +00:00
./programs/light.nix
./programs/man.nix
2016-03-26 03:22:52 +00:00
./programs/mosh.nix
./programs/nano.nix
2016-10-23 10:45:30 +01:00
./programs/oblogout.nix
2014-07-16 21:16:34 +01:00
./programs/screen.nix
./programs/shadow.nix
./programs/shell.nix
./programs/spacefm.nix
./programs/ssh.nix
./programs/ssmtp.nix
./programs/tmux.nix
2013-07-23 21:41:52 +01:00
./programs/venus.nix
2016-10-10 21:49:43 +01:00
./programs/vim.nix
./programs/wvdial.nix
./programs/xfs_quota.nix
2016-07-20 23:55:36 +01:00
./programs/xonsh.nix
./programs/zsh/zsh.nix
./rename.nix
2015-12-11 16:42:17 +00:00
./security/acme.nix
2012-07-17 00:47:41 +01:00
./security/apparmor.nix
./security/apparmor-suid.nix
./security/audit.nix
./security/ca.nix
./security/chromium-suid-sandbox.nix
./security/duosec.nix
nixos: add grsecurity module (#1875) This module implements a significant refactoring in grsecurity configuration for NixOS, making it far more usable by default and much easier to configure. - New security.grsecurity NixOS attributes. - All grsec kernels supported - Allows default 'auto' grsec configuration, or custom config - Supports custom kernel options through kernelExtraConfig - Defaults to high-security - user must choose kernel, server/desktop mode, and any virtualisation software. That's all. - kptr_restrict is fixed under grsecurity (it's unwriteable) - grsecurity patch creation is now significantly abstracted - only need revision, version, and SHA1 - kernel version requirements are asserted for sanity - built kernels can have the uname specify the exact grsec version for development or bug reports. Off by default (requires `security.grsecurity.config.verboseVersion = true;`) - grsecurity sysctl support - By default, disabled. - For people who enable it, NixOS deploys a 'grsec-lock' systemd service which runs at startup. You are expected to configure sysctl through NixOS like you regularly would, which will occur before the service is started. As a result, changing sysctl settings requires a reboot. - New default group: 'grsecurity' - Root is a member by default - GRKERNSEC_PROC_GID is implicitly set to the 'grsecurity' GID, making it possible to easily add users to this group for /proc access - AppArmor is now automatically enabled where it wasn't before, despite implying features.apparmor = true The most trivial example of enabling grsecurity in your kernel is by specifying: security.grsecurity.enable = true; security.grsecurity.testing = true; # testing 3.13 kernel security.grsecurity.config.system = "desktop"; # or "server" This specifies absolutely no virtualisation support. In general, you probably at least want KVM host support, which is a little more work. So: security.grsecurity.enable = true; security.grsecurity.stable = true; # enable stable 3.2 kernel security.grsecurity.config = { system = "server"; priority = "security"; virtualisationConfig = "host"; virtualisationSoftware = "kvm"; hardwareVirtualisation = true; } This module has primarily been tested on Hetzner EX40 & VQ7 servers using NixOps. Signed-off-by: Austin Seipp <aseipp@pobox.com>
2014-04-06 20:18:12 +01:00
./security/grsecurity.nix
./security/hidepid.nix
./security/oath.nix
./security/pam.nix
./security/pam_usb.nix
./security/pam_mount.nix
./security/polkit.nix
./security/prey.nix
./security/rngd.nix
./security/rtkit.nix
2017-02-14 13:38:45 +00:00
./security/wrappers/default.nix
./security/sudo.nix
2013-02-25 15:50:10 +00:00
./services/amqp/activemq/default.nix
./services/amqp/rabbitmq.nix
./services/audio/alsa.nix
2015-03-16 14:10:16 +00:00
./services/audio/icecast.nix
2014-11-20 22:30:24 +00:00
./services/audio/liquidsoap.nix
./services/audio/mpd.nix
./services/audio/mopidy.nix
2016-06-11 13:46:02 +01:00
./services/audio/squeezelite.nix
./services/audio/ympd.nix
2013-03-27 10:47:28 +00:00
./services/backup/almir.nix
2013-03-15 15:10:21 +00:00
./services/backup/bacula.nix
./services/backup/crashplan.nix
./services/backup/mysql-backup.nix
./services/backup/postgresql-backup.nix
2013-10-06 21:22:25 +01:00
./services/backup/rsnapshot.nix
./services/backup/sitecopy-backup.nix
./services/backup/tarsnap.nix
2016-03-24 09:52:13 +00:00
./services/backup/znapzend.nix
./services/cluster/fleet.nix
./services/cluster/kubernetes.nix
2014-12-08 09:02:57 +00:00
./services/cluster/panamax.nix
./services/computing/boinc/client.nix
./services/computing/torque/server.nix
./services/computing/torque/mom.nix
2015-02-28 17:11:13 +00:00
./services/computing/slurm/slurm.nix
./services/continuous-integration/buildbot/master.nix
./services/continuous-integration/buildbot/worker.nix
./services/continuous-integration/buildkite-agent.nix
./services/continuous-integration/hydra/default.nix
2016-09-17 12:08:18 +01:00
./services/continuous-integration/gitlab-runner.nix
./services/continuous-integration/gocd-agent/default.nix
./services/continuous-integration/gocd-server/default.nix
./services/continuous-integration/jenkins/default.nix
./services/continuous-integration/jenkins/job-builder.nix
./services/continuous-integration/jenkins/slave.nix
./services/databases/4store-endpoint.nix
./services/databases/4store.nix
./services/databases/couchdb.nix
./services/databases/firebird.nix
2014-11-20 11:29:07 +00:00
./services/databases/hbase.nix
2014-07-16 21:16:34 +01:00
./services/databases/influxdb.nix
2013-06-10 21:45:24 +01:00
./services/databases/memcached.nix
./services/databases/mongodb.nix
./services/databases/mysql.nix
2014-11-09 08:44:47 +00:00
./services/databases/neo4j.nix
./services/databases/openldap.nix
2014-11-20 12:00:53 +00:00
./services/databases/opentsdb.nix
./services/databases/postgresql.nix
2014-07-16 21:16:34 +01:00
./services/databases/redis.nix
2015-07-21 11:16:18 +01:00
./services/databases/riak.nix
./services/databases/riak-cs.nix
2016-11-03 16:49:36 +00:00
./services/databases/stanchion.nix
./services/databases/virtuoso.nix
./services/desktops/accountsservice.nix
2014-04-24 22:32:32 +01:00
./services/desktops/geoclue2.nix
./services/desktops/gnome3/at-spi2-core.nix
./services/desktops/gnome3/evolution-data-server.nix
./services/desktops/gnome3/gnome-documents.nix
2014-04-10 23:41:51 +01:00
./services/desktops/gnome3/gnome-keyring.nix
./services/desktops/gnome3/gnome-online-accounts.nix
./services/desktops/gnome3/gnome-online-miners.nix
./services/desktops/gnome3/gnome-terminal-server.nix
./services/desktops/gnome3/gnome-user-share.nix
./services/desktops/gnome3/gvfs.nix
./services/desktops/gnome3/seahorse.nix
./services/desktops/gnome3/sushi.nix
./services/desktops/gnome3/tracker.nix
./services/desktops/profile-sync-daemon.nix
./services/desktops/telepathy.nix
2016-04-12 21:31:47 +01:00
./services/development/hoogle.nix
2016-06-20 05:45:27 +01:00
./services/editors/emacs.nix
./services/editors/infinoted.nix
2016-04-12 05:17:05 +01:00
./services/games/factorio.nix
./services/games/ghost-one.nix
./services/games/minecraft-server.nix
2015-04-04 11:36:43 +01:00
./services/games/minetest-server.nix
2016-08-07 02:58:38 +01:00
./services/games/terraria.nix
./services/hardware/acpid.nix
./services/hardware/actkbd.nix
./services/hardware/amd-hybrid-graphics.nix
./services/hardware/bluetooth.nix
2015-04-29 22:02:09 +01:00
./services/hardware/brltty.nix
2015-01-08 22:38:10 +00:00
./services/hardware/freefall.nix
2017-01-25 16:25:36 +00:00
./services/hardware/illum.nix
2016-01-03 17:05:18 +00:00
./services/hardware/irqbalance.nix
./services/hardware/nvidia-optimus.nix
./services/hardware/pcscd.nix
./services/hardware/pommed.nix
./services/hardware/sane.nix
./services/hardware/tcsd.nix
2015-01-02 15:12:11 +00:00
./services/hardware/tlp.nix
./services/hardware/thinkfan.nix
2017-02-08 16:18:22 +00:00
./services/hardware/trezord.nix
./services/hardware/udev.nix
./services/hardware/udisks2.nix
./services/hardware/upower.nix
./services/hardware/thermald.nix
./services/logging/awstats.nix
2015-03-18 19:33:52 +00:00
./services/logging/fluentd.nix
./services/logging/graylog.nix
./services/logging/journalbeat.nix
./services/logging/klogd.nix
2012-08-25 10:11:37 +01:00
./services/logging/logcheck.nix
./services/logging/logrotate.nix
./services/logging/logstash.nix
./services/logging/rsyslogd.nix
2014-07-16 21:16:34 +01:00
./services/logging/syslogd.nix
2014-08-11 14:05:59 +01:00
./services/logging/syslog-ng.nix
./services/mail/dovecot.nix
2016-01-07 01:17:42 +00:00
./services/mail/dspam.nix
./services/mail/exim.nix
./services/mail/freepops.nix
./services/mail/mail.nix
2014-07-08 23:43:26 +01:00
./services/mail/mlmmj.nix
./services/mail/offlineimap.nix
2016-01-06 22:10:56 +00:00
./services/mail/opendkim.nix
2013-07-30 09:20:56 +01:00
./services/mail/opensmtpd.nix
./services/mail/postfix.nix
2016-01-06 03:04:50 +00:00
./services/mail/postsrsd.nix
./services/mail/postgrey.nix
./services/mail/spamassassin.nix
2016-01-12 09:06:46 +00:00
./services/mail/rspamd.nix
2016-01-14 09:17:27 +00:00
./services/mail/rmilter.nix
./services/misc/apache-kafka.nix
./services/misc/autofs.nix
./services/misc/bepasty.nix
./services/misc/canto-daemon.nix
2015-09-28 04:31:17 +01:00
./services/misc/calibre-server.nix
2016-01-17 12:11:09 +00:00
./services/misc/cfdyndns.nix
./services/misc/cpuminer-cryptonight.nix
2013-06-16 17:20:22 +01:00
./services/misc/cgminer.nix
2015-04-25 15:10:49 +01:00
./services/misc/confd.nix
2017-01-16 11:53:53 +00:00
./services/misc/couchpotato.nix
2015-07-19 13:22:04 +01:00
./services/misc/devmon.nix
2012-10-27 22:11:54 +01:00
./services/misc/dictd.nix
./services/misc/dysnomia.nix
./services/misc/disnix.nix
2014-11-21 16:20:14 +00:00
./services/misc/docker-registry.nix
2016-04-23 14:49:33 +01:00
./services/misc/emby.nix
2016-10-11 14:17:44 +01:00
./services/misc/errbot.nix
2014-11-15 15:27:27 +00:00
./services/misc/etcd.nix
./services/misc/felix.nix
./services/misc/folding-at-home.nix
2016-02-13 19:19:31 +00:00
./services/misc/gammu-smsd.nix
nixos/geoip-updater: new service The GeoIP databases from MaxMind have no stable URLs and change every month (or so). Our current method of packaging these database in Nix and playing catch-up with ever-changing file hashes is a bad idea. For instance, it makes it impossible to realize old NixOS configurations. This patch adds a NixOS service that periodically updates the GeoIP databases in /var/lib/geoip-databases. Moving NixOS modules over can be done in later patches. I tried adding MD5 check, but not all databases have them, so i skipped it. We are downloading over HTTPS though, it should be good. I also tried adding zip support, but the first zip file I extracted had a different filename inside than the archive name, which breaks an assumption in this service, so I skipped that too. Changes v9 -> v10: - Pass "--max-time" to curl to set upper bound on downloads (ensures no indefinite hanging if there's problem with networking). Timeout for network connectivity check: 60s. Timeout for geoip database (each): 15m. Changes v8 -> v9: - Mention the random timer delay in the documentation for the 'interval' option. Changes v7 -> v8: - Add "RemainAfterExit=true" for the setup service, so it won't be restarted needlessly. (Thanks @danbst!) Changes v6 -> v7: - Add --skip-existing flag to geoip-updater, which skips updating existing database files. Pass that flag when we run the service on boot (and on any NixOS configuration change). (IMHO, this is somewhat a workaround for systemd persistent timers not being triggered immediately when a timer has never expired before. But it does have the nice side effect of ensuring that the installed databases always correspond to the configured ones, since the service is now always run after configuration changes.) Changes v5 -> v6: - Update database files atomically (per DB) - If a database is removed from the configuration, it'll be removed from /var/lib/geoip-databases too (on next run). - Add NixOS module assertion so that if user inputs non- .gz or .xz file there will be a build time error instead of runtime. - Run updater as user "nobody" instead of "root". - Rename NixOS service from "geoip-databases" to "geoip-updater". - Drop RemainAfterExit, or else the timer won't trigger the unit. - Bring back "curl --fail", or else we won't catch and log curl failures. Changes v4 -> v5: - Add "GeoLite2-City.mmdb.gz" to default database list. Changes v3 -> v4: - Remove unneeded geoip-updater-setup.service after adding 'wantedBy = [ "multi-user.target" ]' directly to geoip-updater.service - Drop unneeded "Service" name from service descriptions. Changes v2 -> v3: - Network may be down when starting from a cold boot, so try a few times. Possibly, if using systemd-networkd, it'll pass on the first try. But with default DHCP on NixOS, the service is started before hostnames can be resolved and thus we need a few extra seconds. - Add error handling and mark service as failed if fatal error. - Add proper syslog log levels. - Add RandomizedDelaySec=3600 to the timer to not put high load on the MaxMind servers. Suggested by @Mic92. - Set RemainAfterExit on geoip-updater.service instead of geoip-updater-setup.service. (The latter is only a proxy that pulls in the former service). Changes v1 -> v2: From Данило Глинський (Danylo Hlynskyi) <abcz2.uprola@gmail.com>: nixos/geoip-databases: add `databases` option and fix initial setup There were two great issues when using this service: - When you just enable service, databases aren't downloaded, they are downloaded when timer triggers. Fixed this with automatic download on first system activation. - When there is no internet, updater outputs nothing to logs, which is IMO misbehavior. Fixed this with removing `--fail` option, better be explicit here.
2016-06-06 16:38:51 +01:00
./services/misc/geoip-updater.nix
#./services/misc/gitit.nix
./services/misc/gitlab.nix
./services/misc/gitolite.nix
2016-10-09 18:04:42 +01:00
./services/misc/gogs.nix
./services/misc/gpsd.nix
#./services/misc/ihaskell.nix
2016-11-06 09:33:21 +00:00
./services/misc/leaps.nix
./services/misc/mantisbt.nix
2015-09-08 08:17:21 +01:00
./services/misc/mathics.nix
2016-01-08 14:12:00 +00:00
./services/misc/matrix-synapse.nix
2015-05-01 02:15:19 +01:00
./services/misc/mbpfan.nix
2015-03-27 10:48:50 +00:00
./services/misc/mediatomb.nix
2014-08-26 19:56:54 +01:00
./services/misc/mesos-master.nix
./services/misc/mesos-slave.nix
./services/misc/mwlib.nix
./services/misc/nix-daemon.nix
./services/misc/nix-gc.nix
./services/misc/nix-optimise.nix
./services/misc/nixos-manual.nix
2014-07-16 21:16:34 +01:00
./services/misc/nix-ssh-serve.nix
./services/misc/nzbget.nix
2016-02-14 11:58:09 +00:00
./services/misc/octoprint.nix
./services/misc/packagekit.nix
2014-10-12 21:56:01 +01:00
./services/misc/parsoid.nix
./services/misc/phd.nix
./services/misc/plex.nix
2014-10-07 09:53:01 +01:00
./services/misc/redmine.nix
./services/misc/rippled.nix
2015-06-08 11:58:33 +01:00
./services/misc/ripple-rest.nix
./services/misc/ripple-data-api.nix
./services/misc/rogue.nix
2014-07-10 19:08:38 +01:00
./services/misc/siproxd.nix
2016-06-02 20:00:00 +01:00
./services/misc/sonarr.nix
./services/misc/spice-vdagentd.nix
2017-02-13 04:01:28 +00:00
./services/misc/ssm-agent.nix
./services/misc/sssd.nix
./services/misc/subsonic.nix
2015-07-02 02:18:56 +01:00
./services/misc/sundtek.nix
./services/misc/svnserve.nix
./services/misc/synergy.nix
./services/misc/taskserver
2014-07-18 18:27:55 +01:00
./services/misc/uhub.nix
2014-08-24 16:43:45 +01:00
./services/misc/zookeeper.nix
./services/monitoring/apcupsd.nix
2017-01-01 16:45:26 +00:00
./services/monitoring/arbtt.nix
2014-11-20 14:49:45 +00:00
./services/monitoring/bosun.nix
2014-12-28 19:21:41 +00:00
./services/monitoring/cadvisor.nix
2014-09-13 01:03:15 +01:00
./services/monitoring/collectd.nix
2015-05-25 16:40:16 +01:00
./services/monitoring/das_watchdog.nix
2013-01-08 21:19:51 +00:00
./services/monitoring/dd-agent.nix
2015-04-25 15:02:44 +01:00
./services/monitoring/grafana.nix
./services/monitoring/graphite.nix
2016-02-24 20:43:38 +00:00
./services/monitoring/hdaps.nix
2015-11-16 14:26:07 +00:00
./services/monitoring/heapster.nix
2015-11-01 10:22:58 +00:00
./services/monitoring/longview.nix
./services/monitoring/monit.nix
./services/monitoring/munin.nix
./services/monitoring/nagios.nix
2016-11-05 12:09:29 +00:00
./services/monitoring/netdata.nix
./services/monitoring/prometheus/default.nix
2016-11-27 08:15:19 +00:00
./services/monitoring/prometheus/alertmanager.nix
./services/monitoring/prometheus/blackbox-exporter.nix
2016-12-26 05:36:16 +00:00
./services/monitoring/prometheus/json-exporter.nix
2016-07-26 15:43:45 +01:00
./services/monitoring/prometheus/nginx-exporter.nix
./services/monitoring/prometheus/node-exporter.nix
2016-11-27 08:15:19 +00:00
./services/monitoring/prometheus/snmp-exporter.nix
./services/monitoring/prometheus/varnish-exporter.nix
./services/monitoring/riemann.nix
./services/monitoring/riemann-dash.nix
./services/monitoring/riemann-tools.nix
2014-11-20 14:38:04 +00:00
./services/monitoring/scollector.nix
./services/monitoring/smartd.nix
./services/monitoring/statsd.nix
./services/monitoring/sysstat.nix
./services/monitoring/systemhealth.nix
2015-04-05 15:19:19 +01:00
./services/monitoring/teamviewer.nix
./services/monitoring/telegraf.nix
./services/monitoring/ups.nix
./services/monitoring/uptime.nix
2017-01-24 13:45:01 +00:00
./services/monitoring/vnstat.nix
./services/monitoring/zabbix-agent.nix
./services/monitoring/zabbix-server.nix
2016-10-16 17:56:13 +01:00
./services/network-filesystems/cachefilesd.nix
./services/network-filesystems/drbd.nix
./services/network-filesystems/glusterfs.nix
./services/network-filesystems/ipfs.nix
./services/network-filesystems/netatalk.nix
./services/network-filesystems/nfsd.nix
./services/network-filesystems/openafs-client/default.nix
./services/network-filesystems/rsyncd.nix
./services/network-filesystems/samba.nix
./services/network-filesystems/tahoe.nix
2014-09-03 01:30:04 +01:00
./services/network-filesystems/diod.nix
2015-02-22 15:07:30 +00:00
./services/network-filesystems/u9fs.nix
./services/network-filesystems/yandex-disk.nix
2015-09-13 13:49:19 +01:00
./services/network-filesystems/xtreemfs.nix
2015-03-20 17:46:38 +00:00
./services/networking/aiccu.nix
./services/networking/amuled.nix
2015-04-16 23:53:26 +01:00
./services/networking/asterisk.nix
2014-06-12 06:36:16 +01:00
./services/networking/atftpd.nix
./services/networking/avahi-daemon.nix
./services/networking/bind.nix
./services/networking/autossh.nix
./services/networking/bird.nix
./services/networking/bitlbee.nix
./services/networking/btsync.nix
2015-05-09 20:35:29 +01:00
./services/networking/charybdis.nix
2014-07-16 21:16:34 +01:00
./services/networking/chrony.nix
./services/networking/cjdns.nix
./services/networking/cntlm.nix
2014-07-16 21:16:34 +01:00
./services/networking/connman.nix
2014-09-15 09:26:26 +01:00
./services/networking/consul.nix
2016-06-21 11:59:29 +01:00
./services/networking/coturn.nix
2016-10-14 06:07:59 +01:00
./services/networking/dante.nix
./services/networking/ddclient.nix
./services/networking/dhcpcd.nix
./services/networking/dhcpd.nix
2015-09-10 17:10:06 +01:00
./services/networking/dnschain.nix
./services/networking/dnscrypt-proxy.nix
2017-01-20 00:36:55 +00:00
./services/networking/dnscrypt-wrapper.nix
./services/networking/dnsmasq.nix
./services/networking/ejabberd.nix
./services/networking/fan.nix
2016-11-21 20:04:46 +00:00
./services/networking/fakeroute.nix
2016-08-21 22:12:19 +01:00
./services/networking/ferm.nix
2014-12-11 22:48:15 +00:00
./services/networking/firefox/sync-server.nix
./services/networking/firewall.nix
2016-09-27 21:56:58 +01:00
./services/networking/flannel.nix
./services/networking/flashpolicyd.nix
2013-04-21 08:27:41 +01:00
./services/networking/freenet.nix
2015-08-03 18:04:10 +01:00
./services/networking/gale.nix
2015-07-31 05:22:44 +01:00
./services/networking/gateone.nix
./services/networking/gdomap.nix
./services/networking/git-daemon.nix
./services/networking/gnunet.nix
./services/networking/gogoclient.nix
./services/networking/gvpe.nix
2014-07-16 21:16:34 +01:00
./services/networking/haproxy.nix
2015-07-13 14:56:53 +01:00
./services/networking/heyefi.nix
2012-10-06 05:39:56 +01:00
./services/networking/hostapd.nix
2016-08-02 23:57:20 +01:00
./services/networking/htpdate.nix
2014-11-09 08:44:47 +00:00
./services/networking/i2pd.nix
2015-04-15 19:49:19 +01:00
./services/networking/i2p.nix
./services/networking/iodine.nix
./services/networking/ircd-hybrid/default.nix
2014-01-11 22:15:11 +00:00
./services/networking/kippo.nix
./services/networking/kresd.nix
2015-04-14 00:06:37 +01:00
./services/networking/lambdabot.nix
./services/networking/libreswan.nix
./services/networking/logmein-hamachi.nix
2014-09-26 09:03:29 +01:00
./services/networking/mailpile.nix
./services/networking/mfi.nix
2016-03-12 14:38:13 +00:00
./services/networking/mjpg-streamer.nix
./services/networking/minidlna.nix
2015-12-08 09:40:43 +00:00
./services/networking/miniupnpd.nix
./services/networking/mosquitto.nix
2016-12-31 20:03:27 +00:00
./services/networking/miredo.nix
./services/networking/mstpd.nix
./services/networking/murmur.nix
2015-09-08 18:24:40 +01:00
./services/networking/namecoind.nix
./services/networking/nat.nix
./services/networking/networkmanager.nix
2014-03-20 02:04:35 +00:00
./services/networking/ngircd.nix
./services/networking/nix-serve.nix
2016-02-26 14:19:46 +00:00
./services/networking/nntp-proxy.nix
./services/networking/nsd.nix
./services/networking/ntopng.nix
./services/networking/ntpd.nix
./services/networking/nylon.nix
./services/networking/oidentd.nix
./services/networking/openfire.nix
./services/networking/openntpd.nix
./services/networking/openvpn.nix
./services/networking/ostinato.nix
2016-02-11 11:02:11 +00:00
./services/networking/pdnsd.nix
2014-07-15 15:16:58 +01:00
./services/networking/polipo.nix
2016-09-17 22:30:27 +01:00
./services/networking/powerdns.nix
2017-01-17 23:29:59 +00:00
./services/networking/pdns-recursor.nix
2016-06-18 00:17:00 +01:00
./services/networking/pptpd.nix
./services/networking/prayer.nix
./services/networking/privoxy.nix
./services/networking/prosody.nix
2016-04-20 15:38:57 +01:00
./services/networking/quagga.nix
./services/networking/quassel.nix
2015-04-25 14:31:27 +01:00
./services/networking/racoon.nix
2014-05-27 21:27:31 +01:00
./services/networking/radicale.nix
./services/networking/radvd.nix
./services/networking/rdnssd.nix
./services/networking/redsocks.nix
./services/networking/rpcbind.nix
./services/networking/sabnzbd.nix
2014-03-07 19:09:59 +00:00
./services/networking/searx.nix
2014-10-06 20:25:10 +01:00
./services/networking/seeks.nix
2015-06-08 12:36:05 +01:00
./services/networking/skydns.nix
./services/networking/shairport-sync.nix
2015-08-01 00:15:18 +01:00
./services/networking/shout.nix
2016-05-11 05:18:38 +01:00
./services/networking/sniproxy.nix
./services/networking/smokeping.nix
2015-08-19 08:37:20 +01:00
./services/networking/softether.nix
./services/networking/spiped.nix
2015-02-04 23:36:27 +00:00
./services/networking/sslh.nix
./services/networking/ssh/lshd.nix
./services/networking/ssh/sshd.nix
2014-11-22 18:27:23 +00:00
./services/networking/strongswan.nix
./services/networking/supplicant.nix
2014-07-16 21:16:34 +01:00
./services/networking/supybot.nix
./services/networking/syncthing.nix
./services/networking/tcpcrypt.nix
./services/networking/teamspeak3.nix
2014-08-24 01:33:31 +01:00
./services/networking/tinc.nix
./services/networking/tftpd.nix
2014-12-20 15:10:28 +00:00
./services/networking/tlsdated.nix
2014-12-20 22:38:52 +00:00
./services/networking/tox-bootstrapd.nix
./services/networking/toxvpn.nix
2015-06-20 21:33:57 +01:00
./services/networking/tvheadend.nix
./services/networking/unbound.nix
2014-08-05 22:00:30 +01:00
./services/networking/unifi.nix
./services/networking/vsftpd.nix
./services/networking/wakeonlan.nix
2013-02-15 02:50:41 +00:00
./services/networking/websockify.nix
./services/networking/wicd.nix
2016-08-23 05:34:31 +01:00
./services/networking/wireguard.nix
./services/networking/wpa_supplicant.nix
./services/networking/xinetd.nix
./services/networking/xl2tpd.nix
2016-04-20 08:32:11 +01:00
./services/networking/zerobin.nix
2015-06-07 05:10:52 +01:00
./services/networking/zerotierone.nix
./services/networking/znc.nix
./services/printing/cupsd.nix
./services/scheduling/atd.nix
2014-12-03 14:49:14 +00:00
./services/scheduling/chronos.nix
./services/scheduling/cron.nix
./services/scheduling/fcron.nix
2015-02-19 09:32:02 +00:00
./services/scheduling/marathon.nix
./services/search/elasticsearch.nix
2016-10-12 23:58:56 +01:00
./services/search/hound.nix
2015-09-18 23:18:43 +01:00
./services/search/kibana.nix
./services/search/solr.nix
./services/security/clamav.nix
./services/security/fail2ban.nix
./services/security/fprintd.nix
./services/security/fprot.nix
./services/security/frandom.nix
2016-01-18 04:54:19 +00:00
./services/security/haka.nix
2014-07-16 21:16:34 +01:00
./services/security/haveged.nix
./services/security/hologram-server.nix
./services/security/hologram-agent.nix
2015-02-28 21:23:07 +00:00
./services/security/munge.nix
2016-05-06 20:54:51 +01:00
./services/security/oauth2_proxy.nix
2015-04-21 01:13:42 +01:00
./services/security/physlock.nix
./services/security/torify.nix
2014-07-16 21:16:34 +01:00
./services/security/tor.nix
./services/security/torsocks.nix
2016-12-02 12:38:41 +00:00
./services/system/cgmanager.nix
2014-10-17 16:01:12 +01:00
./services/system/cloud-init.nix
./services/system/dbus.nix
./services/system/kerberos.nix
./services/system/nscd.nix
./services/system/uptimed.nix
2013-02-24 16:33:48 +00:00
./services/torrent/deluge.nix
./services/torrent/flexget.nix
2016-10-02 22:41:48 +01:00
./services/torrent/opentracker.nix
2014-12-01 15:40:42 +00:00
./services/torrent/peerflix.nix
./services/torrent/transmission.nix
2012-06-18 22:55:27 +01:00
./services/ttys/agetty.nix
2014-07-16 21:16:34 +01:00
./services/ttys/gpm.nix
./services/ttys/kmscon.nix
2016-10-09 10:45:10 +01:00
./services/web-apps/atlassian/confluence.nix
2016-10-11 14:21:43 +01:00
./services/web-apps/atlassian/crowd.nix
2016-10-09 11:26:25 +01:00
./services/web-apps/atlassian/jira.nix
2017-01-24 19:24:03 +00:00
./services/web-apps/frab.nix
2016-08-15 02:17:53 +01:00
./services/web-apps/mattermost.nix
2016-10-08 15:56:09 +01:00
./services/web-apps/nixbot.nix
./services/web-apps/pump.io.nix
2016-06-05 19:55:46 +01:00
./services/web-apps/tt-rss.nix
2016-09-09 13:09:57 +01:00
./services/web-apps/selfoss.nix
2016-10-21 22:31:50 +01:00
./services/web-apps/quassel-webserver.nix
./services/web-servers/apache-httpd/default.nix
2016-04-05 02:30:21 +01:00
./services/web-servers/caddy.nix
./services/web-servers/fcgiwrap.nix
./services/web-servers/jboss/default.nix
./services/web-servers/lighttpd/cgit.nix
2014-07-16 21:16:34 +01:00
./services/web-servers/lighttpd/default.nix
./services/web-servers/lighttpd/gitweb.nix
2016-06-09 01:19:50 +01:00
./services/web-servers/lighttpd/inginious.nix
2013-03-02 22:40:56 +00:00
./services/web-servers/nginx/default.nix
./services/web-servers/phpfpm/default.nix
./services/web-servers/shellinabox.nix
./services/web-servers/tomcat.nix
2014-12-10 01:41:25 +00:00
./services/web-servers/uwsgi.nix
2013-05-15 13:36:17 +01:00
./services/web-servers/varnish/default.nix
./services/web-servers/winstone.nix
2013-10-02 14:14:35 +01:00
./services/web-servers/zope2.nix
2016-03-10 22:24:10 +00:00
./services/x11/colord.nix
./services/x11/compton.nix
./services/x11/unclutter.nix
./services/x11/unclutter-xfixes.nix
./services/x11/desktop-managers/default.nix
./services/x11/display-managers/auto.nix
./services/x11/display-managers/default.nix
./services/x11/display-managers/gdm.nix
./services/x11/display-managers/lightdm.nix
2015-03-02 17:58:35 +00:00
./services/x11/display-managers/sddm.nix
2014-07-16 21:16:34 +01:00
./services/x11/display-managers/slim.nix
./services/x11/hardware/libinput.nix
./services/x11/hardware/multitouch.nix
./services/x11/hardware/synaptics.nix
./services/x11/hardware/wacom.nix
2014-07-16 21:16:34 +01:00
./services/x11/redshift.nix
./services/x11/urxvtd.nix
./services/x11/window-managers/awesome.nix
#./services/x11/window-managers/compiz.nix
./services/x11/window-managers/default.nix
./services/x11/window-managers/fluxbox.nix
./services/x11/window-managers/icewm.nix
2014-08-09 22:31:05 +01:00
./services/x11/window-managers/bspwm.nix
./services/x11/window-managers/metacity.nix
./services/x11/window-managers/none.nix
./services/x11/window-managers/twm.nix
./services/x11/window-managers/windowlab.nix
./services/x11/window-managers/wmii.nix
./services/x11/window-managers/xmonad.nix
2016-04-20 07:24:53 +01:00
./services/x11/xbanish.nix
./services/x11/xfs.nix
./services/x11/xserver.nix
./system/activation/activation-script.nix
./system/activation/top-level.nix
./system/boot/coredump.nix
./system/boot/emergency-mode.nix
2015-10-16 18:35:18 +01:00
./system/boot/initrd-network.nix
./system/boot/initrd-ssh.nix
./system/boot/kernel.nix
./system/boot/kexec.nix
./system/boot/loader/efi.nix
./system/boot/loader/generations-dir/generations-dir.nix
generic-extlinux-compatible: Add new bootloader for ARM This module generates a /boot/extlinux/extlinux.conf bootloader configuration file that is supported by e.g. U-Boot: http://git.denx.de/?p=u-boot.git;a=blob;f=doc/README.distro;hb=refs/heads/master With this, all ARM boards supported by U-Boot can be booted in a common way (a single boot file generator, all boards booting via initrd like x86) and with same boot menu functionality as GRUB has. -- sample extlinux.conf file -- # Generated file, all changes will be lost on nixos-rebuild! # Change this to e.g. nixos-42 to temporarily boot to an older configuration. DEFAULT nixos-default TIMEOUT 50 LABEL nixos-default MENU LABEL NixOS - Default LINUX ../nixos/n7vxfk60nb5h0mcbhkwwxhcz2q2nvxzv-linux-4.1.0-rc3-cpufreq-zImage INITRD ../nixos/0ss2zs8sb6d1qn4gblxpwlxkfjsgs5f0-initrd-initrd FDTDIR ../nixos/n7vxfk60nb5h0mcbhkwwxhcz2q2nvxzv-linux-4.1.0-rc3-cpufreq-dtbs APPEND systemConfig=/nix/store/469qvr43ln8bfsnk5lzcz6m6jfcgdd4r-nixos-15.06.git.0b7a7a6M init=/nix/store/469qvr43ln8bfsnk5lzcz6m6jfcgdd4r-nixos-15.06.git.0b7a7a6M/init loglevel=8 console=ttyS0,115200n8 drm.debug=0xf LABEL nixos-71 MENU LABEL NixOS - Configuration 71 (2015-05-17 21:32 - 15.06.git.0b7a7a6M) LINUX ../nixos/n7vxfk60nb5h0mcbhkwwxhcz2q2nvxzv-linux-4.1.0-rc3-cpufreq-zImage INITRD ../nixos/0ss2zs8sb6d1qn4gblxpwlxkfjsgs5f0-initrd-initrd FDTDIR ../nixos/n7vxfk60nb5h0mcbhkwwxhcz2q2nvxzv-linux-4.1.0-rc3-cpufreq-dtbs APPEND systemConfig=/nix/store/469qvr43ln8bfsnk5lzcz6m6jfcgdd4r-nixos-15.06.git.0b7a7a6M init=/nix/store/469qvr43ln8bfsnk5lzcz6m6jfcgdd4r-nixos-15.06.git.0b7a7a6M/init loglevel=8 console=ttyS0,115200n8 drm.debug=0xf
2015-05-02 03:56:48 +01:00
./system/boot/loader/generic-extlinux-compatible
./system/boot/loader/grub/grub.nix
./system/boot/loader/grub/ipxe.nix
./system/boot/loader/grub/memtest.nix
2012-07-25 16:30:16 +01:00
./system/boot/loader/init-script/init-script.nix
./system/boot/loader/loader.nix
Add support for lightweight NixOS containers You can now say: systemd.containers.foo.config = { services.openssh.enable = true; services.openssh.ports = [ 2022 ]; users.extraUsers.root.openssh.authorizedKeys.keys = [ "ssh-dss ..." ]; }; which defines a NixOS instance with the given configuration running inside a lightweight container. You can also manage the configuration of the container independently from the host: systemd.containers.foo.path = "/nix/var/nix/profiles/containers/foo"; where "path" is a NixOS system profile. It can be created/updated by doing: $ nix-env --set -p /nix/var/nix/profiles/containers/foo \ -f '<nixos>' -A system -I nixos-config=foo.nix The container configuration (foo.nix) should define boot.isContainer = true; to optimise away the building of a kernel and initrd. This is done automatically when using the "config" route. On the host, a lightweight container appears as the service "container-<name>.service". The container is like a regular NixOS (virtual) machine, except that it doesn't have its own kernel. It has its own root file system (by default /var/lib/containers/<name>), but shares the Nix store of the host (as a read-only bind mount). It also has access to the network devices of the host. Currently, if the configuration of the container changes, running "nixos-rebuild switch" on the host will cause the container to be rebooted. In the future we may want to send some message to the container so that it can activate the new container configuration without rebooting. Containers are not perfectly isolated yet. In particular, the host's /sys/fs/cgroup is mounted (writable!) in the guest.
2013-11-27 15:54:20 +00:00
./system/boot/loader/raspberrypi/raspberrypi.nix
2016-06-01 11:54:03 +01:00
./system/boot/loader/systemd-boot/systemd-boot.nix
./system/boot/luksroot.nix
./system/boot/modprobe.nix
./system/boot/networkd.nix
2016-07-06 21:00:44 +01:00
./system/boot/plymouth.nix
./system/boot/resolved.nix
./system/boot/shutdown.nix
./system/boot/stage-1.nix
./system/boot/stage-2.nix
./system/boot/systemd.nix
./system/boot/systemd-nspawn.nix
./system/boot/timesyncd.nix
./system/boot/tmp.nix
./system/etc/etc.nix
./tasks/bcache.nix
./tasks/cpu-freq.nix
2014-07-16 21:16:34 +01:00
./tasks/encrypted-devices.nix
./tasks/filesystems.nix
./tasks/filesystems/btrfs.nix
./tasks/filesystems/cifs.nix
./tasks/filesystems/exfat.nix
./tasks/filesystems/ext.nix
./tasks/filesystems/f2fs.nix
./tasks/filesystems/jfs.nix
./tasks/filesystems/nfs.nix
./tasks/filesystems/ntfs.nix
./tasks/filesystems/reiserfs.nix
./tasks/filesystems/unionfs-fuse.nix
./tasks/filesystems/vboxsf.nix
./tasks/filesystems/vfat.nix
./tasks/filesystems/xfs.nix
2012-12-04 18:17:54 +00:00
./tasks/filesystems/zfs.nix
./tasks/kbd.nix
./tasks/lvm.nix
./tasks/network-interfaces.nix
./tasks/network-interfaces-systemd.nix
./tasks/network-interfaces-scripted.nix
./tasks/scsi-link-power-management.nix
./tasks/swraid.nix
./tasks/trackpoint.nix
./testing/service-runner.nix
./virtualisation/container-config.nix
Add support for lightweight NixOS containers You can now say: systemd.containers.foo.config = { services.openssh.enable = true; services.openssh.ports = [ 2022 ]; users.extraUsers.root.openssh.authorizedKeys.keys = [ "ssh-dss ..." ]; }; which defines a NixOS instance with the given configuration running inside a lightweight container. You can also manage the configuration of the container independently from the host: systemd.containers.foo.path = "/nix/var/nix/profiles/containers/foo"; where "path" is a NixOS system profile. It can be created/updated by doing: $ nix-env --set -p /nix/var/nix/profiles/containers/foo \ -f '<nixos>' -A system -I nixos-config=foo.nix The container configuration (foo.nix) should define boot.isContainer = true; to optimise away the building of a kernel and initrd. This is done automatically when using the "config" route. On the host, a lightweight container appears as the service "container-<name>.service". The container is like a regular NixOS (virtual) machine, except that it doesn't have its own kernel. It has its own root file system (by default /var/lib/containers/<name>), but shares the Nix store of the host (as a read-only bind mount). It also has access to the network devices of the host. Currently, if the configuration of the container changes, running "nixos-rebuild switch" on the host will cause the container to be rebooted. In the future we may want to send some message to the container so that it can activate the new container configuration without rebooting. Containers are not perfectly isolated yet. In particular, the host's /sys/fs/cgroup is mounted (writable!) in the guest.
2013-11-27 15:54:20 +00:00
./virtualisation/containers.nix
./virtualisation/docker.nix
./virtualisation/ecs-agent.nix
./virtualisation/libvirtd.nix
./virtualisation/lxc.nix
2016-12-02 12:39:04 +00:00
./virtualisation/lxcfs.nix
2015-09-14 07:27:31 +01:00
./virtualisation/lxd.nix
./virtualisation/amazon-options.nix
./virtualisation/openvswitch.nix
2014-11-10 23:32:05 +00:00
./virtualisation/parallels-guest.nix
2015-12-09 04:46:02 +00:00
./virtualisation/rkt.nix
./virtualisation/virtualbox-guest.nix
./virtualisation/virtualbox-host.nix
./virtualisation/vmware-guest.nix
./virtualisation/xen-dom0.nix
./virtualisation/xe-guest-utilities.nix
./virtualisation/openstack/keystone.nix
./virtualisation/openstack/glance.nix
]