Commit Graph

1158 Commits

Author SHA1 Message Date
Eelco Dolstra
005ca15f64 * Firewall: add an option to allow extra firewall rules to be added.
* Firewall: change the policy of the INPUT chain back to ACCEPT to
  prevent a lockup when the Nix store is mounted over the network
  (i.e. in our VM tests).  This is because as soon as the policy is
  set to DROP, the iptables modules that enable access to the network
  filesystem cannot be acccessed anymore.

svn path=/nixos/trunk/; revision=26274
2011-03-11 13:04:17 +00:00
Eelco Dolstra
6160100a9a * Don't run klogd in tests to prevent duplicate kernel messages in the
log output.  (It wasn't running anyway because the preStart command
  was broken.)  Note that "dmesg -c" doesn't have an effect on klogd,
  and "klogd -o" is broken.

svn path=/nixos/trunk/; revision=26273
2011-03-11 12:56:04 +00:00
Eelco Dolstra
ab0ce6734b * firewall.nix: Only flush/delete the chains created by us.
svn path=/nixos/trunk/; revision=26271
2011-03-11 11:53:18 +00:00
Eelco Dolstra
f672aa71bf * RFC 4890 says that local nodes should not filter pretty much any
ICMPv6 messages (including echo requests), so don't do that.

svn path=/nixos/trunk/; revision=26270
2011-03-11 11:08:16 +00:00
Eelco Dolstra
0ea9f6611a * Add some more rules to allow ICMPv6 router/neighbour advertisements
in.  Maybe we're better off accepting all ICMPv6 messages *except*
  echo requests.

svn path=/nixos/trunk/; revision=26260
2011-03-10 16:25:08 +00:00
Eelco Dolstra
53bc6d3efa * NAT module: support active FTP.
svn path=/nixos/trunk/; revision=26247
2011-03-10 13:03:47 +00:00
Eelco Dolstra
9bf4ac079e * Add a module for doing Network Address Translation.
svn path=/nixos/trunk/; revision=26246
2011-03-10 12:08:39 +00:00
Eelco Dolstra
e2e7b689b4 * Fix `nixos-rebuild build-vm-with-bootloader': QEMU now requires the
`readonly' flag if the disk image is not writable.

svn path=/nixos/trunk/; revision=26245
2011-03-10 11:39:37 +00:00
Eelco Dolstra
d6424efbfb * Cleanup.
svn path=/nixos/trunk/; revision=26244
2011-03-10 09:39:17 +00:00
Eelco Dolstra
e884cbed7d * Add an option for opening UDP ports.
* Accept packets destined for link-local addresses (fe80::/10).

svn path=/nixos/trunk/; revision=26236
2011-03-09 16:37:16 +00:00
Eelco Dolstra
d8b69f2fad * grub-mkimage now requires a format flag. Also, the "sh" module has
disappeared.  Hopefully it's not important :-)

svn path=/nixos/trunk/; revision=26234
2011-03-09 16:26:03 +00:00
Eelco Dolstra
12161f3183 * Add a firewall option to allow pings. (Maybe this should
be enabled by default.)

svn path=/nixos/trunk/; revision=26233
2011-03-09 15:28:47 +00:00
Eelco Dolstra
e4051e105c * Use a separate chain for logging and rejecting.
svn path=/nixos/trunk/; revision=26232
2011-03-09 15:11:01 +00:00
Eelco Dolstra
66716f9dd5 * Firewall: support IPv6.
svn path=/nixos/trunk/; revision=26231
2011-03-09 14:41:48 +00:00
Eelco Dolstra
843e1f6c1e * Cleanup.
svn path=/nixos/trunk/; revision=26228
2011-03-09 12:28:44 +00:00
Eelco Dolstra
6f1068b0b7 * Remove the unnecessary warning printed by `nixos-rebuild test'. The
current configuration (/var/run/current-system) is always a GC root.

svn path=/nixos/trunk/; revision=26227
2011-03-09 12:14:06 +00:00
Eelco Dolstra
f300833ebc * Add iproute to the path used by networking.localCommands.
svn path=/nixos/trunk/; revision=26222
2011-03-09 11:48:29 +00:00
Eelco Dolstra
f1277862cd * Handle --cores.
svn path=/nixos/trunk/; revision=26188
2011-03-07 12:12:53 +00:00
Eelco Dolstra
5cff6eda3d * Revert r21410 because it breaks handling of "--max-jobs".
svn path=/nixos/trunk/; revision=26187
2011-03-07 12:12:39 +00:00
Eelco Dolstra
908a025b22 * Die tabs die.
svn path=/nixos/trunk/; revision=26184
2011-03-07 08:21:39 +00:00
Eelco Dolstra
10e8a801b6 * Refactor: extraChrootPaths -> chrootDirs. This allows disabling the
default chroot paths using mkOverride.

svn path=/nixos/trunk/; revision=26183
2011-03-07 08:20:24 +00:00
Michael Raskin
00f3a816a9 Adding a possibility to add more paths to chroots used by nix-daemons. The use-case is building the latest version from repository with very large checkouts. That way you do not get extra copy in store every time you rebuild, and you can implement a saner version checking than checksumming all the data
svn path=/nixos/trunk/; revision=26174
2011-03-06 15:39:05 +00:00
Eelco Dolstra
c31c4290cc * Style fix.
svn path=/nixos/trunk/; revision=26140
2011-03-03 12:00:54 +00:00
Eelco Dolstra
08426fb717 * Add an Upstart job for libvirt-guests.
svn path=/nixos/trunk/; revision=26121
2011-02-25 15:56:49 +00:00
Eelco Dolstra
6fd7f8e0e6 * Add an Upstart job for libvirtd.
svn path=/nixos/trunk/; revision=26114
2011-02-25 15:07:52 +00:00
Eelco Dolstra
e46fca2185 * Mount /dev/cgroup to enable cgroup support.
svn path=/nixos/trunk/; revision=26112
2011-02-25 14:31:15 +00:00
Eelco Dolstra
e0fef9c333 * Drop the unnecessary boot=on flag.
svn path=/nixos/trunk/; revision=26103
2011-02-24 21:47:56 +00:00
Eelco Dolstra
34dea57f8a * Add wicd to the NixOS CD.
svn path=/nixos/trunk/; revision=26083
2011-02-23 19:11:32 +00:00
Eelco Dolstra
e740badcc6 * Revert unintended commit.
svn path=/nixos/trunk/; revision=26082
2011-02-23 19:06:59 +00:00
Eelco Dolstra
9fca36bfa3 * Add the Intel 5000/6000 firmwares to the installation media.
svn path=/nixos/trunk/; revision=26081
2011-02-23 19:06:14 +00:00
Karn Kallio
0ea15a8f76 Strigi has moved out of kde4
svn path=/nixos/trunk/; revision=26061
2011-02-22 16:39:40 +00:00
Eelco Dolstra
b61c632006 * Add a module for radvd.
svn path=/nixos/trunk/; revision=26035
2011-02-19 19:19:55 +00:00
Eelco Dolstra
9f755eb3a4 * Enable IPv6 support by default. (Note that most NixOS systems
already had the ipv6 kernel module loaded, because dhclient needs
  it.)

svn path=/nixos/trunk/; revision=26034
2011-02-19 17:21:29 +00:00
Eelco Dolstra
8f5f70b292 * We don't really need a display manager on the installation CD. Just
log in as root automatically.

svn path=/nixos/trunk/; revision=26014
2011-02-17 14:38:02 +00:00
Yury G. Kudryashov
559834437a ejabberd: tabs->spaces, remove trailing whitespace
svn path=/nixos/trunk/; revision=25996
2011-02-16 21:03:14 +00:00
Eelco Dolstra
63bd2744b7 * Partially revert r25991 because it depends on the x-updates branch.
svn path=/nixos/trunk/; revision=25995
2011-02-16 16:48:34 +00:00
Eelco Dolstra
5427b0f837 * Use kdm on the installation CD.
svn path=/nixos/trunk/; revision=25994
2011-02-16 15:33:54 +00:00
Eelco Dolstra
131f3c8e63 * Because cdrom_id now links against libpthread, LD_LIBRARY_PATH must
be set when udevd calls external programs.  (The udev manpage claims
  that udevd passes its own environment variables, but this is not the
  case.)
* Get rid of some udev rule hacks that no longer seem needed.

svn path=/nixos/trunk/; revision=25991
2011-02-16 14:38:52 +00:00
Eelco Dolstra
fce06b0a2e svn path=/nixos/trunk/; revision=25989 2011-02-16 12:29:05 +00:00
Eelco Dolstra
44ea6a7e4d * Typo.
svn path=/nixos/trunk/; revision=25987
2011-02-16 10:24:25 +00:00
Florian Friesdorf
433679537b intel wifi 6000 firmware
svn path=/nixos/trunk/; revision=25889
2011-02-10 17:36:56 +00:00
Eelco Dolstra
163769ace5 * Write hypervisor log messages to /var/log/xen/console.
svn path=/nixos/trunk/; revision=25882
2011-02-10 12:27:12 +00:00
Eelco Dolstra
7104acfa8b * Set the checkwinsize option in interactive shells. Otherwise
bash may miss resize events (I guess SIGWINCH is only sent to
  the foreground process).

svn path=/nixos/trunk/; revision=25815
2011-02-08 14:58:41 +00:00
Eelco Dolstra
28e4ac1af2 * Generically handle the case where $out/share/mime/packages or one of
its parents is a symlink.

svn path=/nixos/trunk/; revision=25776
2011-02-05 06:58:15 +00:00
Sander van der Burg
aa2e768fe4 Another strange error, which I fixed
svn path=/nixos/trunk/; revision=25730
2011-01-30 17:27:24 +00:00
Sander van der Burg
f30f71b7fa Fixed a syntax error
svn path=/nixos/trunk/; revision=25727
2011-01-30 16:13:47 +00:00
Ludovic Courtès
9d984837c9 GNU: Disable GRUB by default on ARM.
svn path=/nixos/trunk/; revision=25719
2011-01-29 23:07:06 +00:00
Ludovic Courtès
0513b31f73 Improve the documentation of `generationsDir'.
svn path=/nixos/trunk/; revision=25718
2011-01-29 23:07:02 +00:00
Ludovic Courtès
ebb8f55a10 Mingetty: Default to `ttyS0' for ARM devices.
svn path=/nixos/trunk/; revision=25717
2011-01-29 23:06:57 +00:00
Ludovic Courtès
7edc419f65 lshd: Streamline first use.
svn path=/nixos/trunk/; revision=25716
2011-01-29 23:06:52 +00:00