fetch-ec2-data: Don't restart

This service only needs to run once on system startup, so it doesn't need to be restarted by switch-to-configuration.
2024-11-18 19:51:17 +00:00 · 2015-05-04 16:56:46 +02:00 · 2015-05-04 16:56:46 +02:00 · 4239e276ea
parent 63efc2ee38
commit 4239e276ea
1 changed files with 8 additions and 4 deletions
--- a/nixos/modules/virtualisation/ec2-data.nix
+++ b/nixos/modules/virtualisation/ec2-data.nix
@ -35,8 +35,8 @@ with lib;

            wget="wget -q --retry-connrefused -O -"

-            echo "setting host name..."
            ${optionalString (config.networking.hostName == "") ''
+              echo "setting host name..."
              ${pkgs.nettools}/bin/hostname $($wget http://169.254.169.254/1.0/meta-data/hostname)
            ''}

@ -69,14 +69,18 @@ with lib;
            fi

            ${optionalString (! config.ec2.metadata) ''
-            # Since the user data is sensitive, prevent it from being
-            # accessed from now on.
-            ip route add blackhole 169.254.169.254/32
+              # Since the user data is sensitive, prevent it from
+              # being accessed from now on. FIXME: remove at some
+              # point, since current NixOps no longer relies on
+              # metadata secrecy.
+              ip route add blackhole 169.254.169.254/32
            ''}
          '';

        serviceConfig.Type = "oneshot";
        serviceConfig.RemainAfterExit = true;
+
+        restartIfChanged = false;
      };

    systemd.services."print-host-key" =