| Commit message (Collapse) | Author | Age |
|---|
| |\
| |
| | |
kvmgt module: add restart on failure
|
| | | |
|
| |\ \
| | |
| | |
| | |
| | | |
aneeshusa/make-container-journals-available-from-host
containers: Make systemd journals available from the host
|
| | | |
| | |
| | |
| | | |
This is set by default if using the upstream systemd-nspawn@ units.
|
| | | |
| | |
| | |
| | | |
This reduces the system closure by 89 MiB.
|
| | | | |
|
| | |/
|/|
| | |
there is no top-level pkgs.kvm
|
| |\ \
| | |
| | | |
nixos: correct improper uses of mkEnableOption, clarify service descr…
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Several service definitions used `mkEnableOption` with text starting
with "Whether to", which produced funny option descriptions like
"Whether to enable Whether to run the rspamd daemon..".
This commit corrects this, and adds short descriptions of services
to affected service definitions.
|
| | | | |
|
| |\ \ \
| |_|/
|/| | |
Fix imperative containers
|
| | |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
When logging into a container by using
nixos-container root-login
all nix-related commands in the container would fail, as they
tried to modify the nix db and nix store, which are mounted
read-only in the container. We want nixos-container to not
try to modify the nix store at all, but instead delegate
any build commands to the nix daemon of the host operating system.
This already works for non-root users inside a nixos-container,
as it doesn't 'own' the nix-store, and thus defaults
to talking to the daemon socket at /nix/var/nix/daemon-socket/,
which is bind-mounted to the host daemon-socket, causing all nix
commands to be delegated to the host.
However, when we are the root user inside the container, we have the
same uid as the nix store owner, eventhough it's not actually
the same root user (due to user namespaces). Nix gets confused,
and is convinced it's running in single-user mode, and tries
to modify the nix store directly instead.
By setting `NIX_REMOTE=daemon` in `/etc/profile`, we force nix
to operate in multi-user mode, so that it will talk to the host
daemon instead, which will modify the nix store for the container.
This fixes #40355
|
| |\ \
| |/
|/| |
Increase Virtualbox disk image size
|
| | |
| |
| |
| | |
10G is not enough for a desktop installation, and resizing a Virtualbox disk image is a pain.
Let's increase the default disk size to 100G. It does not require more storage space, since the empty bits are left out.
|
| | | |
|
| | | |
|
| | |
| |
| |
| | |
The list of corresponding NixOS services are also updated
|
| | |
| |
| |
| |
| |
| |
| | |
This reverts commit f777d2b719be0db4cb7819d5b6dbdd121db29a37.
cc #34409
This breaks evaluation of the tested job:
attribute 'diskInterface' missing, at /nix/store/5k9kk52bv6zsvsyyvpxhm8xmwyn2yjvx-source/pkgs/build-support/vm/default.nix:316:24
|
| |/ |
|
| |
|
|
| |
It is deprecated and will be removed after 18.09.
|
| |
|
|
|
|
|
|
|
| |
And don't need to source the uevent files anymore either since $MAJOR
or $MINOR aren't used elsewhere.
[dezgeg: The reason these are no longer needed is that 0d27df280f7ed5
switched /tmp to a devtmpfs which automatically creates such device
nodes]
|
| |\ |
|
| | | |
|
| | |
| |
| |
| |
| |
| | |
New option virtualisation.libvirtd.qemuRunAsRoot (default: true).
If false, qemu is run as non-privileged user qemu-libvirtd,
reducing security risk
|
| |/
|
|
| |
if enabled.
|
| |
|
|
|
|
|
|
|
|
|
| |
This reverts commit 095fe5b43def40279a243e663c662b02caac5318.
Pointless renames considered harmful. All they do is force people to
spend extra work updating their configs for no benefit, and hindering
the ability to switch between unstable and stable versions of NixOS.
Like, what was the value of having the "nixos." there? I mean, by
definition anything in a NixOS module has something to do with NixOS...
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* nixos/virtualbox: Adds more options to virtualbox-image.nix
Previously you could only set the size of the disk.
This change adds the ability to change the amount of memory
that the image gets, along with the name / derivation name /
file name for the VM.
* Incorporates some review feedback
|
| | |
|
| | |
|
| |\
| |
| | |
GCE image: properly remove the temporary ssh host keys files/directory
|
| | | |
|
| | |
| |
| |
| | |
the temporary ssh host keys file/directory.
|
| |\ \
| |/
|/| |
linux: enable support for iGVT-g VGPU
|
| | | |
|
| |/
|
|
| |
(cherry picked from commit 8aa385069f830fc801c8a04d2bd8a70a02be3de4)
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Regression introduced by d4468bedb52bf03ff125d721634f83604bddd589.
No systemd messages are shown anymore during VM test runs, which is not
very helpful if you want to find out about failures.
There is a bit of a conflict between testing and the change that
introduced the regression. While the mentioned commit makes sure that
the primary console is tty0 for virtualisation.graphics = false, our VM
tests need to have the serial console as primary console.
So in order to support both, I added a new virtualisation.qemu.consoles
option, which allows to specify those options using the module system.
The default of this option is to use the changes that were introduced
and in test-instrumentation.nix we use only the serial console the same
way as before.
For test-instrumentation.nix I didn't add a baudrate to the serial
console because I can't find a reason on top of my head why it should
need it. There also wasn't a reason stated when that was introduced in
7499e4a5b917227696b7292ae1bd728d6b1978b0.
Signed-off-by: aszlig <aszlig@nix.build>
Cc: @flokli, @dezgeg, @edolstra
|
| |\
| |
| | |
qemu-guest-agent: init module
|
| | |
| |
| |
| |
| |
| |
| | |
Allow out of band communication between qemu VMs and the host.
Useful to retrieve IPs of VMs from the host (for instance when libvirt can't analyze
DHCP requests because VMs are configured with static addresses or when
there is connectivity default).
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Always enable both tty and serial console, but set preferred console
depending on cfg.graphical.
Even in qemu graphical mode, you can switch to the serial console via
Ctrl+Alt+3.
With that being done, you also don't need to specify
`systemd.services."serial-getty@ttyS0".enable = true;` either as described in
https://nixos.wiki/wiki/Cheatsheet#Building_a_service_as_a_VM_.28for_testing.29,
as systemd automatically spawns a getty on consoles passwd via cmdline.
This also means, vms built by 'nixos-rebuild build-vm' can simply be run
properly in nographic mode by appending `-nographic` to `result/bin/run-*-vm`,
without the need to explicitly add platform-specific QEMU_KERNEL_PARAMS.
|
| | |
| |
| |
| | |
unused.
|
| | | |
|
| |\ \
| | |
| | | |
GCE: pull the ssh host keys from the metadata service as expected by NixOps.
|
| | | | |
|