Eelco Dolstra
9ee30cd9b5
Add support for lightweight NixOS containers
...
You can now say:
systemd.containers.foo.config =
{ services.openssh.enable = true;
services.openssh.ports = [ 2022 ];
users.extraUsers.root.openssh.authorizedKeys.keys = [ "ssh-dss ..." ];
};
which defines a NixOS instance with the given configuration running
inside a lightweight container.
You can also manage the configuration of the container independently
from the host:
systemd.containers.foo.path = "/nix/var/nix/profiles/containers/foo";
where "path" is a NixOS system profile. It can be created/updated by
doing:
$ nix-env --set -p /nix/var/nix/profiles/containers/foo \
-f '<nixos>' -A system -I nixos-config=foo.nix
The container configuration (foo.nix) should define
boot.isContainer = true;
to optimise away the building of a kernel and initrd. This is done
automatically when using the "config" route.
On the host, a lightweight container appears as the service
"container-<name>.service". The container is like a regular NixOS
(virtual) machine, except that it doesn't have its own kernel. It has
its own root file system (by default /var/lib/containers/<name>), but
shares the Nix store of the host (as a read-only bind mount). It also
has access to the network devices of the host.
Currently, if the configuration of the container changes, running
"nixos-rebuild switch" on the host will cause the container to be
rebooted. In the future we may want to send some message to the
container so that it can activate the new container configuration
without rebooting.
Containers are not perfectly isolated yet. In particular, the host's
/sys/fs/cgroup is mounted (writable!) in the guest.
2013-11-27 17:14:10 +01:00
Eelco Dolstra
57f145a7f8
When setting $NIX_REMOTE, check whether /nix/var/nix/db is writable
...
In NixOS containers, root doesn't have write permission to
/nix/var/nix/db, so it has to use the daemon.
2013-11-27 17:09:17 +01:00
Eelco Dolstra
c6529ac9eb
postgresql: Fix the port option
...
Also clarify the description of the enableTCPIP option.
2013-11-27 17:09:17 +01:00
Peter Simons
469ce846c3
Merge pull request #1286 from ocharles/haskell-odbc
...
haskellPackages.HDBCodbc: Do not build Haddocks
2013-11-27 07:18:30 -08:00
Shea Levy
77c26d3f9f
Add posix nodePackage
...
Signed-off-by: Shea Levy <shea@shealevy.com>
2013-11-27 09:04:08 -05:00
Rickard Nilsson
ce2732f2f2
New Haskell package: CodecImageDevIL, bindings to libdevil
2013-11-27 13:46:57 +01:00
Oliver Charles
82265ee89d
haskellPackages.HDBCodbc: Do not build Haddocks
...
The Haddocks currently fail to build, which means that HDBC-ODBC
cannot be install.
2013-11-27 12:37:23 +00:00
Peter Simons
9d02e36ec7
Merge pull request #1285 from ocharles/foldl
...
haskellPackages.foldl: New expression
2013-11-27 04:34:42 -08:00
Peter Simons
e15f6bcecb
haskell-diagrams-contrib: jailbreak to support semigroups 0.12
2013-11-27 13:32:42 +01:00
Peter Simons
45f78c667d
haskell-wai-logger: update to version 0.3.2
2013-11-27 13:32:41 +01:00
Peter Simons
76a25e937e
haskell-stringsearch: update to version 0.3.6.5
2013-11-27 13:32:41 +01:00
Peter Simons
51b633bcf6
haskell-semigroups: update to version 0.12
2013-11-27 13:32:41 +01:00
Oliver Charles
6bf6769ae4
haskellPackages.foldl: New expression
2013-11-27 12:22:28 +00:00
Lluís Batlle i Rossell
6f4c08b0b7
Adding fontconfig support to ffmpeg.
2013-11-27 12:37:59 +01:00
Peter Simons
b641c4fac7
Merge pull request #1283 from ocharles/indexed-free
...
haskellPackages.indexedFree: New expression
2013-11-27 02:39:23 -08:00
Oliver Charles
46445a3295
haskellPackages.indexedFree: New expression
2013-11-27 08:57:17 +00:00
Moritz Ulrich
9b609beec1
Ledger3: Update to latest git.
...
Works good here.
Signed-off-by: Moritz Ulrich <moritz@tarn-vedra.de>
2013-11-27 01:53:06 +01:00
Ricardo M. Correia
2106191003
grsecurity: Fix module loading during boot due to path restrictions
2013-11-27 01:32:50 +01:00
Ricardo M. Correia
36955aa721
grsecurity: Update to 3.0-3.2.52-201311261307 and add patch for 3.12
2013-11-27 01:32:14 +01:00
Moritz Ulrich
a14eaaa9f0
ino: update to 0.3.6
...
Signed-off-by: Moritz Ulrich <moritz@tarn-vedra.de>
2013-11-26 23:55:31 +01:00
Peter Simons
25116b7b63
haskell-statestack: add version 0.2
2013-11-26 21:09:24 +01:00
Peter Simons
99a4fcfc1b
haskell-hdevtools: re-generate expression with cabal2nix
2013-11-26 21:09:24 +01:00
Peter Simons
a5e6f9c09e
haskell-hslua: update to version 0.3.9
2013-11-26 21:09:24 +01:00
Peter Simons
7abb8e4bcd
haskell-diagrams-svg: update to version 1.0
2013-11-26 21:09:24 +01:00
Peter Simons
9b89e3a47a
haskell-diagrams-lib: update to version 1.0
2013-11-26 21:09:24 +01:00
Peter Simons
ba11016555
haskell-diagrams: update to version 1.0
2013-11-26 21:09:24 +01:00
Peter Simons
35380a7591
haskell-diagrams-core: update to version 1.0
2013-11-26 21:09:24 +01:00
Peter Simons
1f802fb2f5
haskell-diagrams-contrib: update to version 1.0
2013-11-26 21:09:24 +01:00
Peter Simons
1bd3d139b7
haskell-diagrams-cairo: update to version 1.0
2013-11-26 21:09:24 +01:00
Peter Simons
144872c9b4
haskell-conduit: update to version 1.0.9.3
2013-11-26 21:09:23 +01:00
Peter Simons
bd73c33b27
haskell-bert: update to version 1.2.2
2013-11-26 21:09:23 +01:00
Peter Simons
6385ac407a
haskell-asn1-types: update to version 0.2.2
2013-11-26 21:09:23 +01:00
Peter Simons
6cd81e146a
haskell-yesod-static: update to version 1.2.1.1
2013-11-26 21:09:23 +01:00
Peter Simons
50a2395bdf
haskell-yaml: update to version 0.8.5.2
2013-11-26 21:09:23 +01:00
Peter Simons
58ebe9eae3
haskell-tabular: update to version 0.2.2.5
2013-11-26 21:09:23 +01:00
Peter Simons
15a805b114
haskell-shelly: update to version 1.3.2
2013-11-26 21:09:23 +01:00
Peter Simons
ed1225b0d9
haskell-pipes-network: update to version 0.6.1
2013-11-26 21:09:23 +01:00
Peter Simons
df3a1cd691
haskell-mersenne-random-pure64: update to version 0.2.0.4
2013-11-26 21:09:23 +01:00
Peter Simons
e7fd532cd8
haskell-language-java: update to version 0.2.6
2013-11-26 21:09:22 +01:00
Peter Simons
2fb6ec7033
haskell-http-conduit: update to version 1.9.5.2
2013-11-26 21:09:22 +01:00
Peter Simons
94be3f6ea1
haskell-highlighting-kate: update to version 0.5.5.1
2013-11-26 21:09:22 +01:00
Peter Simons
7428b4c6f7
haskell-digestive-functors-heist: update to version 0.8.1.0
2013-11-26 21:09:22 +01:00
Peter Simons
06b3ee931f
haskell-conduit: update to version 1.0.9.2
2013-11-26 21:09:21 +01:00
Peter Simons
704f8b7fbc
haskell-cereal-conduit: update to version 0.7.2
2013-11-26 21:09:21 +01:00
Peter Simons
70b50fe963
haskell-ListLike: update to version 4.0.1
2013-11-26 21:09:21 +01:00
Peter Simons
a9986874c0
xmobar: re-generate expression with cabal2nix
2013-11-26 21:09:21 +01:00
Peter Simons
55fcd713b8
haskell-yesod-bin: update to version 1.2.4.1
2013-11-26 21:09:21 +01:00
Peter Simons
1767a37a98
haskell-xml-conduit: update to version 1.1.0.8
2013-11-26 21:09:21 +01:00
Peter Simons
1ab18e5281
haskell-wai: update to version 1.4.1
2013-11-26 21:09:21 +01:00
Peter Simons
dfc2345559
haskell-wai-handler-launch: update to version 1.3.1.5
2013-11-26 21:09:20 +01:00