summary refs log tree commit diff
path: root/nixos/modules/virtualisation
Commit message (Collapse)AuthorAge
* ec2-data: ensure providing a SSH host key is actually optionalTanner Doshier2016-02-25
| | | | 27016659046a8f8e7b4fd61ecbceaf9f5e306258 broke this.
* Merge pull request #13114 from colemickens/azurezimbatm2016-02-23
|\ | | | | azure: package qemu 2.2.0 to fix VHD creation
| * azure: package qemu @ 2.2.0Cole Mickens2016-02-18
| | | | | | | | | | This commit packages qemu-220. This package is qemu-2.2.0 and is only used with Azure.
* | azure-agent: switch back to upstream WALinuxAgentCole Mickens2016-02-18
|/
* Fix azure image, by adding subformat=fixed to disk generation.Rob Vermaas2016-02-17
|
* Merge branch 'master' into stagingVladimír Čunát2016-02-17
|\
| * Add FIXMEEelco Dolstra2016-02-09
| |
| * Fix waagent revision, previous did not exist anymore.Rob Vermaas2016-02-09
| |
* | Merge branch 'master' into stagingVladimír Čunát2016-02-07
|\|
| * filesystems: use list of strings for fs optionsAneesh Agrawal2016-02-06
| | | | | | | | | | | | | | | | | | | | | | | | Allow usage of list of strings instead of a comma-separated string for filesystem options. Deprecate the comma-separated string style with a warning message; convert this to a hard error after 16.09. 15.09 was just released, so this provides a deprecation period during the 16.03 release. closes #10518 Signed-off-by: Robin Gloster <mail@glob.in>
| * Fetch all EC2 metadata / user data in the initrdEelco Dolstra2016-02-04
| | | | | | | | | | | | Since we're already fetching one datum, we may as well fetch the others needed by fetch-ec2-data. This also eliminates the dependency on wget.
| * amazon-init.nix: Be less spammyEelco Dolstra2016-02-04
| |
| * amazon-init.nix: Don't run nixos-rebuild if we don't have toEelco Dolstra2016-02-04
| |
| * Revert "Do not relocate /nix and /tmp to small disks on AWS"Eelco Dolstra2016-02-02
| | | | | | | | | | | | This reverts commit f10bead8fd068f2cb82cbdc1a938a67bd967974c because it doesn't work - there is no lsblk in the initrd, and there is a missing backslash.
| * boot.initrd.network: Support DHCPEelco Dolstra2016-02-02
| | | | | | | | This allows us to use it for EC2 instances.
| * ec2: Don't use ephemeral disks for /nix unionfsEelco Dolstra2016-02-02
| | | | | | | | | | | | | | | | | | | | | | | | | | This is a regression introduced by merging the EBS and S3 images. The EBS images had a special marker /.ebs to prevent the initrd from using ephemeral storage for the unionfs, but this marker was missing in the consolidated image. The fix is to check the file ami-manifest-path on the metadata server to see if we're an S3-based instance. This does require networking in the initrd. Issue #12613.
| * Do not relocate /nix and /tmp to small disks on AWScransom user2016-02-02
| | | | | | | | | | | | | | | | | | | | The default behavior with an m3.medium instance is to relocate /nix and /tmp to /disk0 because an assumption is made that any ephemeral disk is larger than the root volume. Rather than make that assumption, add a check to see if the disk is larger, and only then relocate /nix and /tmp. This addresses https://github.com/NixOS/nixpkgs/issues/12613
* | Configure a default trust store for opensslGuillaume Maudoux2016-02-03
|/
* audit: Disable in containersEelco Dolstra2016-01-26
| | | | | | This barfs: Jan 18 12:46:32 machine 522i0x9l80z7gw56iahxjjsdjp0xi10q-audit-start[506]: The audit system is disabled
* Merge pull request #12323 from kragniz/rkt-v0.15.0Domen Kožar2016-01-21
|\ | | | | rkt: 0.14.0 -> 0.15.0
| * rkt: 0.14.0 -> 0.15.0Louis Taylor2016-01-15
| |
* | multipath_tools: Rename to multipath-toolsaszlig2016-01-21
| | | | | | | | | | | | | | | | | | See http://nixos.org/nixpkgs/manual/#sec-package-naming I've added an alias for multipath_tools to make sure that we don't break existing configurations referencing the old name. Signed-off-by: aszlig <aszlig@redmoonstudios.org>
* | If container name is already unique, don't append "-0"Peter Jones2016-01-20
| | | | | | | | | | | | | | | | | | | | | | When using `--ensure-unique-name`, don't needlessly append `"-0"` if the container name is already unique. This is especially helpful with NixOps since when it deploys to a container it uses `--ensure-unique-name`. This means that the container name will never match the deployment host due to the `"-0"`. Having the container name and the host name match isn't exactly a requirement, but it's nice to have and a small change.
* | Add missing 'type', 'defaultText' and 'literalExample' in module definitionsThomas Strobel2016-01-17
| | | | | | | | | | | | - add missing types in module definitions - add missing 'defaultText' in module definitions - wrap example with 'literalExample' where necessary in module definitions
* | libvirtd service: Move mutable configs to /varTristan Helmich2016-01-15
|/ | | | | | | | Modifies libvirt package to search for configs in /var/lib and changes libvirtd service to copy the default configs to the new location. This enables the user to change e.g. the networking configuration with virsh or virt-manager and keep those settings.
* Revert "nixos/qemu-vm: Disable cache for $NIX_DISK_IMAGE"Domen Kožar2016-01-11
| | | | | | | | | | This reverts commit 6353f580f90c0fdd2b418fa853a78ec508bda2a5. Unfortunately cache=none doesn't work with all filesystem options. Hydra tests error out with: file system may not support O_DIRECT See http://hydra.nixos.org/build/30323625/
* azure-image: azure resource manager doesn't base64-encode custom data, ↵Evgeny Egorochkin2016-01-10
| | | | unlike azure service manager
* Merge pull request #10996 from oxij/nixos-labelArseniy Seroka2016-01-09
|\ | | | | nixos: introduce system.nixosLabel support
| * nixos: introduce system.nixosLabel option and use it where appropriateJan Malakhovski2016-01-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Setting nixosVersion to something custom is useful for meaningful GRUB menus and /nix/store paths, but actuallly changing it rebulids the whole system path (because of `nixos-version` script and manual pages). Also, changing it is not a particularly good idea because you can then be differentitated from other NixOS users by a lot of programs that read /etc/os-release. This patch introduces an alternative option that does all you want from nixosVersion, but rebuilds only the very top system level and /etc while using your label in the names of system /nix/store paths, GRUB and other boot loaders' menus, getty greetings and so on.
* | jobs -> systemd.servicesRobin Gloster2016-01-07
| |
* | btrfsProgs -> canonical btrfs-progsTobias Geerinckx-Rice2016-01-03
| |
* | amazon-image: enable configure-from-userdata and the corresponding VM testDan Peebles2015-12-30
| |
* | Force rebuild of some corrupted filesEelco Dolstra2015-12-29
| |
* | docker module: fix kernel module loadingBenno Fünfstück2015-12-24
| | | | | | | | | | | | | | | | | | The docker module used different code for socket-activated docker daemon than for the non-socket activated daemon. In particular, if the socket-activated daemon is used, then modprobe wasn't set up to be usable and in PATH for the docker daemon, which resulted in a failure to start the daemon with overlayfs as storageDriver if the `overlay` kernel module wasn't already loaded. This commit fixes that bug (which only appears if socket activation is used), and also reduces the duplication between code paths so that it's easier to keep both in sync in future.
* | azure agent service: provide SSL certificates pathEvgeny Egorochkin2015-12-19
| |
* | nixos/qemu-vm: Disable cache for $NIX_DISK_IMAGEaszlig2015-12-14
| | | | | | | | | | | | | | | | | | | | | | | | As @domenkozar noted in #10828, cache=writeback seems to do more harm than good: https://github.com/NixOS/nixpkgs/issues/10828#issuecomment-164426821 He has tested it using the openstack NixOS tests and found that cache=none significantly improves startup performance. Signed-off-by: aszlig <aszlig@redmoonstudios.org>
* | nixos/vm-tests: Remove msize mount optionaszlig2015-12-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This seems to be the root cause of the random page allocation failures and @wizeman did a very good job on not only finding the root problem but also giving a detailed explanation of it in #10828. Here is an excerpt: The problem here is that the kernel is trying to allocate a contiguous section of 2^7=128 pages, which is 512 KB. This is way too much: kernel pages tend to get fragmented over time and kernel developers often go to great lengths to try allocating at most only 1 contiguous page at a time whenever they can. From the error message, it looks like the culprit is unionfs, but this is misleading: unionfs is the name of the userspace process that was running when the system ran out of memory, but it wasn't unionfs who was allocating the memory: it was the kernel; specifically it was the v9fs_dir_readdir_dotl() function, which is the code for handling the readdir() function in the 9p filesystem (the filesystem that is used to share a directory structure between a qemu host and its VM). If you look at the code, here's what it's doing at the moment it tries to allocate memory: buflen = fid->clnt->msize - P9_IOHDRSZ; rdir = v9fs_alloc_rdir_buf(file, buflen); If you look into v9fs_alloc_rdir_buf(), you will see that it will try to allocate a contiguous buffer of memory (using kzalloc(), which is a wrapper around kmalloc()) of size buflen + 8 bytes or so. So in reality, this code actually allocates a buffer of size proportional to fid->clnt->msize. What is this msize? If you follow the definition of the structures, you will see that it's the negotiated buffer transfer size between 9p client and 9p server. On the client side, it can be controlled with the msize mount option. What this all means is that, the reason for running out of memory is that the code (which we can't easily change) tries to allocate a contiguous buffer of size more or less equal to "negotiated 9p protocol buffer size", which seems to be way too big (in our NixOS tests, at least). After that initial finding, @lethalman tested the gnome3 gdm test without setting the msize parameter at all and it seems to have resolved the problem. The reason why I'm committing this without testing against all of the NixOS VM test is basically that I think we can only go better but not worse than the current state. Signed-off-by: aszlig <aszlig@redmoonstudios.org>
* | virtualisation.qemu.options: specify typeDomen Kožar2015-12-13
| |
* | Merge pull request #11565 from jgillich/rktArseniy Seroka2015-12-11
|\ \ | | | | | | rkt: add service
| * | rkt: add serviceJakob Gillich2015-12-11
| | |
* | | Azure image: update ssh key type, start before the Azure agentEvgeny Egorochkin2015-12-09
| | |
* | | Azure image: package and add azure agentEvgeny Egorochkin2015-12-09
|/ /
* | nova-image: don't use ec2-data since it delays the bootup timeDomen Kožar2015-12-03
| |
* | Merge pull request #7993 from wavewave/extra-bindslethalman2015-11-29
|\ \ | | | | | | nixos-container: support user-defined extra binds
| * \ Merge branch 'master' into extra-bindsIan-Woo Kim2015-09-28
| |\ \
| * | | minor changesIan-Woo Kim2015-09-28
| | | |
| * | | nixos-containers: bindMounts: change default to readOnly. use EXTRA_NSPAWN_FLAGSIan-Woo Kim2015-05-26
| | | |
| * | | nixos-container: rename extraBinds to bindMounts and use attribute set format.Ian-Woo Kim2015-05-26
| | | |
| * | | unify extraBindsRW/RO into extraBinds. Now arbitrary mount point is supported.Ian-Woo Kim2015-05-25
| | | |
| * | | extraBindsRO/extraBindsRWIan-Woo Kim2015-05-24
| | | |
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-08-02 01:26:40 +0000