volth
2e979e8ceb
[bot] nixos/*: remove unused arguments in lambdas
2018-07-20 20:56:59 +00:00
xeji
f4ec18aaac
nixos/cjdns: fix service for i686 ( #40740 )
...
service failed to start because of MemoryDenyWriteExecute = true,
which seems not to work on i686
2018-05-20 01:01:42 +02:00
Joachim Fasting
2628597e76
cjdns service: allow daemon to drop privileges
...
The service can run certain components with reduced privileges, but for
that it needs the setuid capability.
2017-02-05 04:54:26 +01:00
Joachim Fasting
a0338afe5f
cjdns service: allow writing keys to /etc
...
20e81f7c0d
prevented key generation in
`preStart`, leaving the service broken for the case where the user has
no pre-existing key.
Eventually, we ought to store the state elsewhere so that `/etc` can be
read-only but for now we fix this the easy way.
2017-02-05 04:54:18 +01:00
Tomas Hlavaty
bdb9cd1e17
cjdns service: optionally add cjdns hosts to networking.extraHosts
...
Enabling this incurs a heavy eval-time cost, but it's a nice usability
enhancement; satisfy both concerns by making it optional (default
false).
2017-01-02 19:31:37 +01:00
Joachim Fasting
237af1853a
Revert "nixos/cjdns: do not ammend /etc/hosts"
...
This reverts commit 60ded3f363
.
We want to make this optional instead.
2017-01-02 19:31:11 +01:00
Sophie Taylor
016fa06c71
cjdns: Improving systemd unit description
2016-11-27 22:07:51 -05:00
Emery Hemingway
60ded3f363
nixos/cjdns: do not ammend /etc/hosts
...
Generating IPv6 addresses at eval time required building cjdns.
Fix #20422
2016-11-18 18:41:50 +01:00
Sophie Taylor
20e81f7c0d
nixos/cjdns: tightened permissions via systemd, added caps
2016-11-04 17:00:23 +01:00
Joachim Fasting
222cfd3233
cjdns module: fix typo
2016-11-04 13:44:48 +01:00
Joachim Fasting
8180922d23
cjdns service: refactor cjdns hosts builder
...
The old version would export two lists to a bash builder and do pairwise
processing on the bash side. In the new version we instead generate a
logic free builder on the Nix side. This is not only conceptually
simpler but reduces the amount of code and intermediate values.
2016-10-27 14:15:54 +02:00
Joachim Fasting
9654e09b5a
cjdns service: ensure that generated passwd has requested length
...
`head -cNUM ... | tr -dc SET` might generate output containing fewer
than NUM characters. Given the limited alphabet, this could result in a
fairly weak passphrase. The construction `tr </dev/urandom | head
-cNUM`, however, is sure to give us the full `NUM`.
2016-10-27 14:15:53 +02:00
Joachim Fasting
e94bd6f31d
cjdns service: protect /home and /tmp
2016-10-27 14:15:52 +02:00
Joachim Fasting
5fba586650
cjdns service: better types
...
- types.string -> str, string is deprecated
- change type of confFile option to nullOr path, makes more sense
2016-10-27 14:15:52 +02:00
Joachim Fasting
afe67f28a3
cjdns service: use cfg.enable shortcut
2016-10-27 14:15:51 +02:00
Joachim Fasting
79d216b8f4
cjdns service: whitespace cleanup
2016-10-27 14:15:51 +02:00
Alexander Ried
3ada966bd5
treewide: minor format / style / documentation fixes
2016-09-13 11:19:22 +02:00
Joachim Fasting
ae71667451
cjdns service: network-interfaces.target -> network.target
2016-09-13 11:19:22 +02:00
Carles Pagès
3374aa25bc
cjdns: fix assertion.
2016-08-25 08:57:18 +02:00
Emery Hemingway
34f1c39fe0
nixos: fix cjdns json config
...
filter extraneous attributes from config modules
2015-04-25 09:40:44 -04:00
Emery Hemingway
67a2a58314
cjdns: service tweaks, new NixOS test
2014-11-08 23:39:02 +01:00
Emery Hemingway
a3338abcfe
cjdns: add peer hostnames to extraHosts, option for external config
2014-10-21 13:16:04 -04:00
Emery Hemingway
61f0d9b251
cjdns: update from 20140919 20140922
...
package installs to .../bin
fix service module to look in .../bin
Closes #4240
2014-09-23 22:30:53 +01:00
Emery Hemingway
f60ac82cac
cjdns: new declarative service expression
...
systemd service wants network-interfaces.target rather than network.target
assertion on config.networking.enableIPv6
2014-08-31 18:14:16 -04:00
Eelco Dolstra
29027fd1e1
Rewrite ‘with pkgs.lib’ -> ‘with lib’
...
Using pkgs.lib on the spine of module evaluation is problematic
because the pkgs argument depends on the result of module
evaluation. To prevent an infinite recursion, pkgs and some of the
modules are evaluated twice, which is inefficient. Using ‘with lib’
prevents this problem.
2014-04-14 16:26:48 +02:00
Emery Hemingway
316e809ff8
cjdns: update to 20130303
...
build system is now nodejs based
new nixos module to start cjdns
2014-04-09 10:30:57 -04:00