Branch: refs/heads/containers
Home: https://github.com/NixOS/nixops
Commit: c409619ce5c85a11eb89cece6bc7576592d279b6
https://github.com/NixOS/nixops/commit/c409619ce5c85a11eb89cece6bc7576592d279b6
Author: Vladimir Kirillov <[email protected]>
Date: 2014-03-26 (Wed, 26 Mar 2014)
Changed paths:
M nixops/backends/virtualbox.py
Log Message:
-----------
virtualbox: corrected type coercion
Commit: 9079bb471c84c7999a76e26a9f58ee82e377dca6
https://github.com/NixOS/nixops/commit/9079bb471c84c7999a76e26a9f58ee82e377dca6
Author: aszlig <[email protected]>
Date: 2014-03-31 (Mon, 31 Mar 2014)
Changed paths:
M nixops/deployment.py
Log Message:
-----------
deployment: Fix hard reset for reboot to rescue.
This is particularly annoying if you have a dead server and want to put
it in rescue, so in order to do that you either needed to change the
deyloyment state or reboot manually into rescue using the robot
interface or something like hetznerctl.
Now it's possible to do that simply by:
nixops reboot --hard --rescue --include=deadmachine
Signed-off-by: aszlig <[email protected]>
Commit: d7b46d9508ddd6e26f1fb6ab3b75490d77ebff30
https://github.com/NixOS/nixops/commit/d7b46d9508ddd6e26f1fb6ab3b75490d77ebff30
Author: aszlig <[email protected]>
Date: 2014-03-31 (Mon, 31 Mar 2014)
Changed paths:
M nixops/backends/hetzner.py
Log Message:
-----------
hetzner: Always hard reset on destroying machine.
We're going to kill off the machine anyway, so why should we try to send
a reboot command using SSH?
Especially useful for getting rid of dead machines.
Signed-off-by: aszlig <[email protected]>
Commit: 735f6f68d0c2f752646376d3a9edd0329b466357
https://github.com/NixOS/nixops/commit/735f6f68d0c2f752646376d3a9edd0329b466357
Author: Rickard Nilsson <[email protected]>
Date: 2014-04-04 (Fri, 04 Apr 2014)
Changed paths:
M nix/virtualbox.nix
M nixops/backends/virtualbox.py
Log Message:
-----------
Add support for shared folders in VirtualBox
You can mount host folder on the guest by setting the
deployment.virtualbox.sharedFolders option.
Commit: c5fd8e9f2bec074213807d38cf6ef3e20ffde71c
https://github.com/NixOS/nixops/commit/c5fd8e9f2bec074213807d38cf6ef3e20ffde71c
Author: Oliver Charles <[email protected]>
Date: 2014-04-07 (Mon, 07 Apr 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
Retry setting Route53 DNS records on PriorRequestNotComplete
For NixOps-managed networks with a lot of machines, the Route53
processing can often be too fast. As mentioned in the documentation [1],
Route53 can only process one request at a time per hosted zone, and
changes.commit() returning does not necessarily imply the request has
been processed.
Instead, we use a retry loop with 3 retries with a 500ms sleep between
each request. This should give AWS enough time to process the
requests. If not, an exception is thrown, which matches the current
behaviour.
[1]:
http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/DNSLimitations.html
Commit: 96a7d42582f1c1277b25b8c130f6b3873c78a3b1
https://github.com/NixOS/nixops/commit/96a7d42582f1c1277b25b8c130f6b3873c78a3b1
Author: Vladimir Kirillov <[email protected]>
Date: 2014-04-07 (Mon, 07 Apr 2014)
Changed paths:
M nixops/statefile.py
Log Message:
-----------
try prefix match if no uuid is found in Deployments
allows to run stuff like
% nixops deploy -d 63 # while uuid is 63147f87-bbb4-11e3-b8ac-8c2937e6c6de
Commit: f7c21da8191e9b5f22d29b7b42861302aeb6df84
https://github.com/NixOS/nixops/commit/f7c21da8191e9b5f22d29b7b42861302aeb6df84
Author: Rob Vermaas <[email protected]>
Date: 2014-04-07 (Mon, 07 Apr 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
Merge pull request #177 from ocharles/master
Retry setting Route53 DNS records on PriorRequestNotComplete
Commit: c0c40fc848200ffbda26cfb00a11f1e1ec3adb0b
https://github.com/NixOS/nixops/commit/c0c40fc848200ffbda26cfb00a11f1e1ec3adb0b
Author: Rob Vermaas <[email protected]>
Date: 2014-04-07 (Mon, 07 Apr 2014)
Changed paths:
M nixops/statefile.py
Log Message:
-----------
Merge branch 'uuid-prefix-match' of https://github.com/proger/nixops into
proger-uuid-prefix-match
Commit: aece09cd95f602dd9a79a9f406163c09834bd605
https://github.com/NixOS/nixops/commit/aece09cd95f602dd9a79a9f406163c09834bd605
Author: Vladimir Kirillov <[email protected]>
Date: 2014-04-08 (Tue, 08 Apr 2014)
Changed paths:
M nixops/backends/virtualbox.py
Log Message:
-----------
virtualbox: allow destroy if the VM is gone already
Commit: 7ae4b271af776f8fc5c5f0dbfe2086e2f78bb166
https://github.com/NixOS/nixops/commit/7ae4b271af776f8fc5c5f0dbfe2086e2f78bb166
Author: Rob Vermaas <[email protected]>
Date: 2014-04-08 (Tue, 08 Apr 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
Change default value of deployment.storeKeysOnMachine to false. The previous
default value is the less secure option, better to use the more secure option.
Commit: 2a5697137ad54dc85e1f5bcaea5c8a2d6af75cad
https://github.com/NixOS/nixops/commit/2a5697137ad54dc85e1f5bcaea5c8a2d6af75cad
Author: Rob Vermaas <[email protected]>
Date: 2014-04-10 (Thu, 10 Apr 2014)
Changed paths:
M nixops/deployment.py
Log Message:
-----------
Remove evaluation from backup/backup-status, as it is unnecessary and
harmfull (when eval fails).
Commit: c23d3d52b6f39761ff0ddeeeaa8a8e72b8e64c83
https://github.com/NixOS/nixops/commit/c23d3d52b6f39761ff0ddeeeaa8a8e72b8e64c83
Author: Rob Vermaas <[email protected]>
Date: 2014-04-10 (Thu, 10 Apr 2014)
Changed paths:
M nixops/deployment.py
Log Message:
-----------
Revert "Remove evaluation from backup/backup-status, as it is unnecessary and
harmfull (when eval fails)."
This reverts commit 2a5697137ad54dc85e1f5bcaea5c8a2d6af75cad.
Commit: d03c3b9f317a87f742c3df3dba27a87c7416a166
https://github.com/NixOS/nixops/commit/d03c3b9f317a87f742c3df3dba27a87c7416a166
Author: Rob Vermaas <[email protected]>
Date: 2014-04-11 (Fri, 11 Apr 2014)
Changed paths:
M doc/manual/release-notes.xml
Log Message:
-----------
Gathering release notes for 1.2 release.
Commit: 8233e257eb9fca27e7d0b4939065167b067bb917
https://github.com/NixOS/nixops/commit/8233e257eb9fca27e7d0b4939065167b067bb917
Author: Rob Vermaas <[email protected]>
Date: 2014-04-14 (Mon, 14 Apr 2014)
Changed paths:
M release.nix
Log Message:
-----------
postHook -> shellHook
Commit: ebf7748ae58f49f08c3d88f96f5185cce3a0fefc
https://github.com/NixOS/nixops/commit/ebf7748ae58f49f08c3d88f96f5185cce3a0fefc
Author: Rob Vermaas <[email protected]>
Date: 2014-04-16 (Wed, 16 Apr 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
Prevent restore from failing when choosing to keep volume around.
Commit: a676f7c9c1bd155e1403a6d3e6ab808216acb3e4
https://github.com/NixOS/nixops/commit/a676f7c9c1bd155e1403a6d3e6ab808216acb3e4
Author: Your Name <[email protected]>
Date: 2014-04-16 (Wed, 16 Apr 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
Make show-physical --backup consistent for pvgrub and hvm instances.
Commit: 656bb1bde82314d080fe22170bfc8f3b60690cf5
https://github.com/NixOS/nixops/commit/656bb1bde82314d080fe22170bfc8f3b60690cf5
Author: Rob Vermaas <[email protected]>
Date: 2014-04-16 (Wed, 16 Apr 2014)
Changed paths:
M doc/manual/release-notes.xml
Log Message:
-----------
Fix release date.
Commit: a9e040aaa8ac7b01aecaf44313893b6ab3b420c7
https://github.com/NixOS/nixops/commit/a9e040aaa8ac7b01aecaf44313893b6ab3b420c7
Author: Vladimir Kirillov <[email protected]>
Date: 2014-04-22 (Tue, 22 Apr 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
route53: match zones with less components in it
allows to match zone 'example.com.' for a hostname 'service.staging.example.com'
if there's no hosted zone called 'staging.example.com.'
Commit: 150d0a55fab48d97d68114eebbc725e956484f4f
https://github.com/NixOS/nixops/commit/150d0a55fab48d97d68114eebbc725e956484f4f
Author: Rob Vermaas <[email protected]>
Date: 2014-04-24 (Thu, 24 Apr 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
Merge pull request #180 from proger/route53-hostedzone-submatch
route53: match zones with less components in it
Commit: 9bffbb71c7fbd68ea66d38a2027881ee21df66cb
https://github.com/NixOS/nixops/commit/9bffbb71c7fbd68ea66d38a2027881ee21df66cb
Author: Rob Vermaas <[email protected]>
Date: 2014-04-24 (Thu, 24 Apr 2014)
Changed paths:
M nixops/backends/virtualbox.py
Log Message:
-----------
Merge pull request #179 from proger/virtualbox-destroy-even-if-gone
virtualbox: allow destroy if the VM is gone already
Commit: 31c53a4e7e1c20e1d75227712f0582605f45a4ea
https://github.com/NixOS/nixops/commit/31c53a4e7e1c20e1d75227712f0582605f45a4ea
Author: Rob Vermaas <[email protected]>
Date: 2014-04-24 (Thu, 24 Apr 2014)
Changed paths:
M doc/manual/release-notes.xml
Log Message:
-----------
More release notes.
Commit: 9963241080e40a5d52d158a1c87930d2f6ce7ecd
https://github.com/NixOS/nixops/commit/9963241080e40a5d52d158a1c87930d2f6ce7ecd
Author: aszlig <[email protected]>
Date: 2014-04-25 (Fri, 25 Apr 2014)
Changed paths:
M nixops/backends/__init__.py
Log Message:
-----------
backends: Check units with systemctl --no-legend.
If legend is enabled, the unit names are indented by two spaces in
systemd 212. But if used with --no-legend we not only get something that
resembles the old behaviour, we also can be sure that we don't match
anything in the legend and/or additional descriptions around the actual
content.
Signed-off-by: aszlig <[email protected]>
Commit: 1aefdd3c6dc6470c48f0dd3f172abf32c9b30ec3
https://github.com/NixOS/nixops/commit/1aefdd3c6dc6470c48f0dd3f172abf32c9b30ec3
Author: Rob Vermaas <[email protected]>
Date: 2014-04-25 (Fri, 25 Apr 2014)
Changed paths:
M nixops/backends/__init__.py
Log Message:
-----------
Merge pull request #181 from aszlig/systemd-212-fix
backends: Check units with systemctl --no-legend.
Commit: 209033840753522904d758a62ba66a0cb41d9ee7
https://github.com/NixOS/nixops/commit/209033840753522904d758a62ba66a0cb41d9ee7
Author: Rob Vermaas <[email protected]>
Date: 2014-04-30 (Wed, 30 Apr 2014)
Changed paths:
M doc/manual/release-notes.xml
Log Message:
-----------
Fix release date, today is the day...
Commit: 1518e5c4cd219fd239b9947ea2d4524a591edd56
https://github.com/NixOS/nixops/commit/1518e5c4cd219fd239b9947ea2d4524a591edd56
Author: Rob Vermaas <[email protected]>
Date: 2014-04-30 (Wed, 30 Apr 2014)
Changed paths:
M nix/ec2.nix
Log Message:
-----------
Amazon EC2 r3 instances are HVM instances as well.
Commit: fdad672a4bfeaf3cb6184bc9d6d7f29b3dc78c24
https://github.com/NixOS/nixops/commit/fdad672a4bfeaf3cb6184bc9d6d7f29b3dc78c24
Author: Rob Vermaas <[email protected]>
Date: 2014-05-01 (Thu, 01 May 2014)
Changed paths:
M doc/manual/overview.xml
Log Message:
-----------
Allow traffic on port 80 of httpd example in manual.
Commit: c6a7df6988f4d9e0f9ce4aa3da5414171e41fc5e
https://github.com/NixOS/nixops/commit/c6a7df6988f4d9e0f9ce4aa3da5414171e41fc5e
Author: Rob Vermaas <[email protected]>
Date: 2014-05-02 (Fri, 02 May 2014)
Changed paths:
M nixops/resources/ec2_keypair.py
Log Message:
-----------
Add work-around for weird DescribeKeyPairs behaviour in EC2.
Commit: d7c698c22b6ca41e4e54ad874a427f7dda0e58fe
https://github.com/NixOS/nixops/commit/d7c698c22b6ca41e4e54ad874a427f7dda0e58fe
Author: Rob Vermaas <[email protected]>
Date: 2014-05-08 (Thu, 08 May 2014)
Changed paths:
M nixops/deployment.py
Log Message:
-----------
Fix renaming resources with a dash in the name.
Commit: 64f0e6ee2a5d3b10b2054e0e24c227ca718f7884
https://github.com/NixOS/nixops/commit/64f0e6ee2a5d3b10b2054e0e24c227ca718f7884
Author: Vladimir Kirillov <[email protected]>
Date: 2014-05-15 (Thu, 15 May 2014)
Changed paths:
M nixops/deployment.py
Log Message:
-----------
keep $NIX_REMOTE_SYSTEMS if present
allows to define some other faster machine (and perhaps with lower
latency) to perform the build
Commit: fa80713855f8ffe1638ebee44a520affa462b1d1
https://github.com/NixOS/nixops/commit/fa80713855f8ffe1638ebee44a520affa462b1d1
Author: Rob Vermaas <[email protected]>
Date: 2014-05-21 (Wed, 21 May 2014)
Changed paths:
M nix/ec2-amis.nix
M nix/ec2.nix
Log Message:
-----------
New AMIs for NixOS 14.04+
Commit: ed29da7d2cbb2f2f3551efa36657ddeb98ff1e2b
https://github.com/NixOS/nixops/commit/ed29da7d2cbb2f2f3551efa36657ddeb98ff1e2b
Author: Eelco Dolstra <[email protected]>
Date: 2014-05-28 (Wed, 28 May 2014)
Changed paths:
M scripts/nixops
Log Message:
-----------
Typo
Commit: 005ea067192d0c35a491b214b966acc18bf356ea
https://github.com/NixOS/nixops/commit/005ea067192d0c35a491b214b966acc18bf356ea
Author: Shea Levy <[email protected]>
Date: 2014-05-29 (Thu, 29 May 2014)
Changed paths:
M nix/hetzner-bootstrap.nix
Log Message:
-----------
Allow building hetzner-bootstrap on any host
Commit: 5faccc790715445160f13882d5da4a99216feae3
https://github.com/NixOS/nixops/commit/5faccc790715445160f13882d5da4a99216feae3
Author: Domen Kožar <[email protected]>
Date: 2014-06-02 (Mon, 02 Jun 2014)
Changed paths:
M nix/eval-machine-info.nix
M nix/options.nix
M nixops/backends/__init__.py
M nixops/backends/none.py
Log Message:
-----------
add deployment.targetPort option
Commit: 75a1a98ca11dcdcf9af2de72f7c4e5dbf75aaa79
https://github.com/NixOS/nixops/commit/75a1a98ca11dcdcf9af2de72f7c4e5dbf75aaa79
Author: Eelco Dolstra <[email protected]>
Date: 2014-06-04 (Wed, 04 Jun 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
Disable nixops-keys.service if there are no keys
Otherwise, when a machine is rebooted outside of NixOps, services like
httpd won't get started because they'll wait forever on keys.target.
Commit: 2c9960f514ddaaab6810101c9b415ab81729cef9
https://github.com/NixOS/nixops/commit/2c9960f514ddaaab6810101c9b415ab81729cef9
Author: Rob Vermaas <[email protected]>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M nix/hetzner-bootstrap.nix
Log Message:
-----------
Merge pull request #190 from shlevy/hetzner-from-osx
Allow building hetzner-bootstrap on any host
Commit: 5238d10544bb47167e0bb8cb66dd9845c2cf31c3
https://github.com/NixOS/nixops/commit/5238d10544bb47167e0bb8cb66dd9845c2cf31c3
Author: Eelco Dolstra <[email protected]>
Date: 2014-06-13 (Fri, 13 Jun 2014)
Changed paths:
M examples/apache-ec2-multizone.nix
M examples/apache-ec2.nix
M examples/apache.nix
M examples/drbd.nix
M examples/mediawiki-ec2.nix
M examples/terminal-server-ec2.nix
M examples/terminal-server.nix
M examples/trivial-ec2-ebs.nix
M examples/trivial-ec2.nix
M examples/trivial.nix
Log Message:
-----------
Update examples
Commit: 162abf1c93b56469f7ffdc665bb4e14bf9070c7b
https://github.com/NixOS/nixops/commit/162abf1c93b56469f7ffdc665bb4e14bf9070c7b
Author: Eelco Dolstra <[email protected]>
Date: 2014-06-13 (Fri, 13 Jun 2014)
Changed paths:
M doc/manual/overview.xml
M doc/manual/release-notes.xml
M examples/apache-ec2-multizone.nix
M examples/apache-ec2.nix
M examples/apache.nix
M examples/drbd.nix
M examples/mediawiki-ec2.nix
M examples/terminal-server-ec2.nix
M examples/terminal-server.nix
M examples/trivial-ec2-ebs.nix
M examples/trivial-ec2.nix
M examples/trivial.nix
M nix/ec2-amis.nix
M nix/ec2.nix
M nix/hetzner-bootstrap.nix
M nix/keys.nix
M nix/virtualbox.nix
M nixops/backends/__init__.py
M nixops/backends/ec2.py
M nixops/backends/hetzner.py
M nixops/backends/virtualbox.py
M nixops/deployment.py
M nixops/resources/ec2_keypair.py
M nixops/statefile.py
M release.nix
M scripts/nixops
Log Message:
-----------
Merge branch 'master' into containers
Commit: 48ae8de9a1ce7906d7e31a008e0953040066afa1
https://github.com/NixOS/nixops/commit/48ae8de9a1ce7906d7e31a008e0953040066afa1
Author: Rob Vermaas <[email protected]>
Date: 2014-06-16 (Mon, 16 Jun 2014)
Changed paths:
M nix/eval-machine-info.nix
M nix/options.nix
M nixops/backends/__init__.py
M nixops/backends/none.py
Log Message:
-----------
Merge pull request #191 from iElectric/targetPort
add deployment.targetPort option
Commit: a00b3b942cb5e9b6bbed7c2d622cd36d59ff00fc
https://github.com/NixOS/nixops/commit/a00b3b942cb5e9b6bbed7c2d622cd36d59ff00fc
Author: Rob Vermaas <[email protected]>
Date: 2014-06-16 (Mon, 16 Jun 2014)
Changed paths:
M nix/options.nix
Log Message:
-----------
Per Eelco's suggestion, use first configured SSH port as default for
deployment.targetPort.
Commit: ced3a4849b9420364e2f8a55ea902c8ea887d829
https://github.com/NixOS/nixops/commit/ced3a4849b9420364e2f8a55ea902c8ea887d829
Author: Eelco Dolstra <[email protected]>
Date: 2014-06-16 (Mon, 16 Jun 2014)
Changed paths:
M examples/nix-homepage.nix
Log Message:
-----------
Update nix-homepage example
In particular, open the firewall.
Commit: 54cfa4a6123a53f92faa4d9d777c1e2383213828
https://github.com/NixOS/nixops/commit/54cfa4a6123a53f92faa4d9d777c1e2383213828
Author: Eelco Dolstra <[email protected]>
Date: 2014-06-16 (Mon, 16 Jun 2014)
Changed paths:
M nix/container.nix
M nixops/backends/container.py
Log Message:
-----------
Don't run dhcpcd in containers
Commit: d889d58bce0eba6c1f8c9e06f4b65872d7f54844
https://github.com/NixOS/nixops/commit/d889d58bce0eba6c1f8c9e06f4b65872d7f54844
Author: Rob Vermaas <[email protected]>
Date: 2014-06-17 (Tue, 17 Jun 2014)
Changed paths:
M examples/trivial-ec2-ebs.nix
M nix/ec2.nix
M nix/options.nix
M nixops/backends/ec2.py
Log Message:
-----------
Support Amazon EBS SSD disks
(http://aws.amazon.com/blogs/aws/new-ssd-backed-elastic-block-storage/).
Commit: cc3861e259025d63a231ff543e24c50697887a8b
https://github.com/NixOS/nixops/commit/cc3861e259025d63a231ff543e24c50697887a8b
Author: Eelco Dolstra <[email protected]>
Date: 2014-06-17 (Tue, 17 Jun 2014)
Changed paths:
M nixops/backends/container.py
Log Message:
-----------
Add /etc/hosts entries for containers
Commit: d1d1de160b74ba3952166b79dc98f4f1b2273b14
https://github.com/NixOS/nixops/commit/d1d1de160b74ba3952166b79dc98f4f1b2273b14
Author: David Guibert <[email protected]>
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
A nix/ec2-placement-group.nix
M nix/ec2.nix
M nix/eval-machine-info.nix
M nixops/backends/__init__.py
M nixops/backends/ec2.py
M nixops/deployment.py
A nixops/resources/ec2_placement_group.py
Log Message:
-----------
add placement group
Commit: c3ec52c2feec8c5f2342243636e0859e94ff4bb7
https://github.com/NixOS/nixops/commit/c3ec52c2feec8c5f2342243636e0859e94ff4bb7
Author: Rob Vermaas <[email protected]>
Date: 2014-06-19 (Thu, 19 Jun 2014)
Changed paths:
A nix/ec2-placement-group.nix
M nix/ec2.nix
M nix/eval-machine-info.nix
M nixops/backends/__init__.py
M nixops/backends/ec2.py
M nixops/deployment.py
A nixops/resources/ec2_placement_group.py
Log Message:
-----------
Merge pull request #199 from dguibert/dg/placement-group
add placement group
Commit: 7e7407b10f514e680a60b91da22f375ef79c71a0
https://github.com/NixOS/nixops/commit/7e7407b10f514e680a60b91da22f375ef79c71a0
Author: Chris Forno <[email protected]>
Date: 2014-06-22 (Sun, 22 Jun 2014)
Changed paths:
M nix/hetzner-bootstrap.nix
Log Message:
-----------
Use GNU stat (BSD stat doesn't support -c).
Commit: 58cdd2794c97eaf92b293d650fa64fd540ed76a8
https://github.com/NixOS/nixops/commit/58cdd2794c97eaf92b293d650fa64fd540ed76a8
Author: Shea Levy <[email protected]>
Date: 2014-06-23 (Mon, 23 Jun 2014)
Changed paths:
M nixops/ssh_util.py
Log Message:
-----------
echo -n is not sh-compatible
Fixes #203
Commit: 51cafce31ea356940f2bb810335ea61e7351470e
https://github.com/NixOS/nixops/commit/51cafce31ea356940f2bb810335ea61e7351470e
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nix/keys.nix
M nixops/backends/__init__.py
Log Message:
-----------
Allow users in group "keys" to access /run/keys.
This makes it at least possible to access the keys directory if a
particular service is in the keys group, which has been introduced by
NixOS/nixpkgs@4ab5646417e3cc606281f71027c12ddced8b65b4.
However, to let specific users access a particular key, you still need
to work around it by adding an additional systemd service that sets the
right permissions. But at least with this we should have some
consistency with what is actually done in <nixpkgs>.
Signed-off-by: aszlig <[email protected]>
Commit: 3adc3597571f0906ca0902c33775e22590236b0e
https://github.com/NixOS/nixops/commit/3adc3597571f0906ca0902c33775e22590236b0e
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nix/keys.nix
M nixops/backends/__init__.py
Log Message:
-----------
Turn "keys" option into an attrset of attrsets.
This now provides options for each key and also converts old style
string-only keys into the new format while emitting a warning.
At the moment only the "text" option is actually supported.
For applying the keys for string-values the permissions attribute is set
to "0600" instead of the default value "0640" in keyOptionsType in order
to correctly replicate the old behaviour even when we implement
permissions and ownership.
Signed-off-by: aszlig <[email protected]>
Commit: 1a3b226231d85e4fe3dc55d071e8f42dc74fded3
https://github.com/NixOS/nixops/commit/1a3b226231d85e4fe3dc55d071e8f42dc74fded3
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nixops/backends/__init__.py
Log Message:
-----------
MachineState: Implement permissions for keys.
This however only implements setting permissions if "storeKeysOnMachine" is
set to false right now, because if the value is set to true the keys are
symlinked from the store and we actually have to find a way to control
permisions on it, which for the store is only possible if NixOS/nix#8 is
implemented.
Also, this ensures that the key filename is properly escaped.
Signed-off-by: aszlig <[email protected]>
Commit: ed2ba39a0cdd999e87e6d90f3954ed1959f07cff
https://github.com/NixOS/nixops/commit/ed2ba39a0cdd999e87e6d90f3954ed1959f07cff
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
nix/keys: Fix keyOptionsType submodule type.
First, forgot about specifying options.* and even if it would be there,
the option values wouldn't be merged because keyType was not properly
inheriting the merge function from keyOptionsType.
Signed-off-by: aszlig <[email protected]>
Commit: b4dfa057190f805c75cca6bc0dc8aa2775e581b7
https://github.com/NixOS/nixops/commit/b4dfa057190f805c75cca6bc0dc8aa2775e581b7
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
nix/keys: Use 0600 as the default permissions.
Only using this for legacy options could introduce unexpected behaviour
when switching to the new configuration if the user just appends a .text
to its configuration values and could possibly lead to services that
refuse to work, especially when it comes to OpenSSH.
Signed-off-by: aszlig <[email protected]>
Commit: 3b16f5dfad6fbc72be88c18d2442828928fd12c0
https://github.com/NixOS/nixops/commit/3b16f5dfad6fbc72be88c18d2442828928fd12c0
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
nix/keys: Fix eval if storeKeysOnMachine is true.
This currently only fixes evaluation but actually doesn't apply the
correct permissions on the key files because they're just links to world
readable files in the Nix store.
Signed-off-by: aszlig <[email protected]>
Commit: fb1307bb6eeff388c5d6713b9db438ac4ca53e43
https://github.com/NixOS/nixops/commit/fb1307bb6eeff388c5d6713b9db438ac4ca53e43
Author: aszlig <[email protected]>
Date: 2014-06-24 (Tue, 24 Jun 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
nix/keys: Fix description of storeKeysOnMachine.
As storeKeysOnMachine no longer is true by default (7ae4b27), we
shouldn't say so in the description. Especially because the default
value is already shown in the generated manual along with the
description.
Signed-off-by: aszlig <[email protected]>
Commit: b0b71582e76d109efafef95159f2cdca9381837b
https://github.com/NixOS/nixops/commit/b0b71582e76d109efafef95159f2cdca9381837b
Author: aszlig <[email protected]>
Date: 2014-06-27 (Fri, 27 Jun 2014)
Changed paths:
M nixops/backends/__init__.py
Log Message:
-----------
MachineState: Don't send keys within state.RESCUE.
This will store keys on the machine's disk when you try to deploy a
machine expression that has deployment.keys set, because in rescue state
we don't have /run mounted.
If you want to manually get rid of /run/keys from your disk you can
access the files that are covered by another mount using a bind mount of
the parent directory, so you can delete the keys using something like
this:
mkdir /delkeys
mount --bind / /delkeys
rm -r /delkeys/run/keys
umount /delkeys
rmdir /delkeys
But that's no longer necessary since release 14.04, because the stage 2
init script does a "rm -rf /run/keys" on bootup already.
Signed-off-by: aszlig <[email protected]>
Commit: 3f81862cbd3b316acb2404b6f97fc5c3e5fbc133
https://github.com/NixOS/nixops/commit/3f81862cbd3b316acb2404b6f97fc5c3e5fbc133
Author: aszlig <[email protected]>
Date: 2014-06-27 (Fri, 27 Jun 2014)
Changed paths:
M tests/hetzner-backend.nix
M tests/none-backend.nix
Log Message:
-----------
Fix evaluation of VM tests for all backends.
Signed-off-by: aszlig <[email protected]>
Commit: db68b365ea3538541ca0bbada1caa47afb40294b
https://github.com/NixOS/nixops/commit/db68b365ea3538541ca0bbada1caa47afb40294b
Author: aszlig <[email protected]>
Date: 2014-06-27 (Fri, 27 Jun 2014)
Changed paths:
M tests/hetzner-backend.nix
M tests/none-backend.nix
Log Message:
-----------
tests: Add Archive::Cpio to all the coordinators.
This is needed in order to build the initrd for the target machines and
we don't have access to external network resources within the VM test.
Signed-off-by: aszlig <[email protected]>
Commit: c5ddb9565f3c50ec3ee0ed84246476e36dfc6a29
https://github.com/NixOS/nixops/commit/c5ddb9565f3c50ec3ee0ed84246476e36dfc6a29
Author: aszlig <[email protected]>
Date: 2014-06-27 (Fri, 27 Jun 2014)
Changed paths:
M tests/hetzner-backend.nix
M tests/none-backend.nix
Log Message:
-----------
tests: Disable packet filtering on all VM tests.
This is only a source for more errors, confusion, more complexity and we
really don't want to test the packet filter here, because we already
have tests in NixOS directly.
Signed-off-by: aszlig <[email protected]>
Commit: 38871166212b6f18c103f676353fc2a2ba4a552c
https://github.com/NixOS/nixops/commit/38871166212b6f18c103f676353fc2a2ba4a552c
Author: Rob Vermaas <[email protected]>
Date: 2014-06-27 (Fri, 27 Jun 2014)
Changed paths:
M tests/hetzner-backend.nix
M tests/none-backend.nix
Log Message:
-----------
Merge pull request #208 from aszlig/fix-vm-tests
Fix VM tests.
Commit: a4e6a9a1231077916e6acca9d6b5b694d1121fdc
https://github.com/NixOS/nixops/commit/a4e6a9a1231077916e6acca9d6b5b694d1121fdc
Author: Rob Vermaas <[email protected]>
Date: 2014-06-27 (Fri, 27 Jun 2014)
Changed paths:
M nixops/backends/__init__.py
Log Message:
-----------
Merge pull request #207 from aszlig/fix-rescue-sendkeys
MachineState: Don't send keys within state.RESCUE.
Commit: 21c21df6e054b42e7c3ba58f71fe5351d56c5315
https://github.com/NixOS/nixops/commit/21c21df6e054b42e7c3ba58f71fe5351d56c5315
Author: Rob Vermaas <[email protected]>
Date: 2014-07-03 (Thu, 03 Jul 2014)
Changed paths:
M doc/manual/Makefile
Log Message:
-----------
Use docbook xhtml output for nixops manual.
Commit: 11a127cf953fdabd92b83a14aebf1ca59268977c
https://github.com/NixOS/nixops/commit/11a127cf953fdabd92b83a14aebf1ca59268977c
Author: Rob Vermaas <[email protected]>
Date: 2014-07-04 (Fri, 04 Jul 2014)
Changed paths:
M nixops/backends/__init__.py
M nixops/backends/ec2.py
M nixops/deployment.py
M scripts/nixops
Log Message:
-----------
Add option --keep-physical to remove backups just from nixops state, and
leave the physical copy as-is.
When using --force with 'nixops backup' do not perform status checks on
existing backups.
Commit: f250e19cbaea7d6666271721c4cfe4f5e129bef8
https://github.com/NixOS/nixops/commit/f250e19cbaea7d6666271721c4cfe4f5e129bef8
Author: aszlig <[email protected]>
Date: 2014-07-04 (Fri, 04 Jul 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
nix/keys: Add a warning for storeKeysOnMachine.
This warning should be annoying enough so people will eventually set it
to false in case they ever used it. Especially if we want to set key
permissions, setting this option is pointless anyway because keys in
/run/keys are just symlinks to the world-readably store paths.
Signed-off-by: aszlig <[email protected]>
Commit: 8b3c27b470aecbb3a0c439de3172faa0ccde8584
https://github.com/NixOS/nixops/commit/8b3c27b470aecbb3a0c439de3172faa0ccde8584
Author: aszlig <[email protected]>
Date: 2014-07-04 (Fri, 04 Jul 2014)
Changed paths:
M nix/keys.nix
Log Message:
-----------
nix/keys: Correctly merge/convert deployment.keys.
So far we only used the apply function in order to convert keys as
string values into the new format. But if you have several keys defined,
mixing old and new format, the evaluation will fail because the apply
function is only evaluated once everything is merged.
So, we now use the same function we're using for apply to merge the
consecutive option values.
Signed-off-by: aszlig <[email protected]>
Commit: 966626da34ffa8654e81e045d108fff0a6581c68
https://github.com/NixOS/nixops/commit/966626da34ffa8654e81e045d108fff0a6581c68
Author: aszlig <[email protected]>
Date: 2014-07-04 (Fri, 04 Jul 2014)
Changed paths:
M nix/hetzner-bootstrap.nix
Log Message:
-----------
hetzner-bootstrap: Fix eval for latest <nixpkgs>.
The commit NixOS/nixpkgs@b3cfb90 added a lib argument to the function
attrset of <nixpkgs/nixos/modules/installer/tools/tools.nix>, so we need
to pass it on our side as well.
Signed-off-by: aszlig <[email protected]>
Commit: 1786c2494186f3dc3ffe66bdb1e105a0423d00f7
https://github.com/NixOS/nixops/commit/1786c2494186f3dc3ffe66bdb1e105a0423d00f7
Author: Rob Vermaas <[email protected]>
Date: 2014-07-04 (Fri, 04 Jul 2014)
Changed paths:
M nix/hetzner-bootstrap.nix
Log Message:
-----------
Merge pull request #210 from aszlig/fix-hetzner-bootstrap
hetzner-bootstrap: Fix evaluation for latest <nixpkgs>.
Commit: da140d85c05a3ea5e1f5f1ad6e314cf0fe6ae504
https://github.com/NixOS/nixops/commit/da140d85c05a3ea5e1f5f1ad6e314cf0fe6ae504
Author: Rob Vermaas <[email protected]>
Date: 2014-07-04 (Fri, 04 Jul 2014)
Changed paths:
M nix/keys.nix
M nixops/backends/__init__.py
Log Message:
-----------
Merge pull request #206 from aszlig/keys-permissions
Improve setting permissions on /run/keys.
Commit: 07ca187639f7b33c3f6a39b361894561dea28f45
https://github.com/NixOS/nixops/commit/07ca187639f7b33c3f6a39b361894561dea28f45
Author: Eelco Dolstra <[email protected]>
Date: 2014-07-15 (Tue, 15 Jul 2014)
Changed paths:
M release.nix
Log Message:
-----------
Typo
Commit: 8b99b1ead64e76bc8fa45bb6dcd398f6028369d6
https://github.com/NixOS/nixops/commit/8b99b1ead64e76bc8fa45bb6dcd398f6028369d6
Author: Eelco Dolstra <[email protected]>
Date: 2014-07-16 (Wed, 16 Jul 2014)
Changed paths:
M nix/virtualbox-image-nixops.nix
M nix/virtualbox.nix
Log Message:
-----------
Update VirtualBox image to NixOS 14.04.371.735bfb9
Commit: e5056390f653cc7a6ba4ca8384983d250c9e2317
https://github.com/NixOS/nixops/commit/e5056390f653cc7a6ba4ca8384983d250c9e2317
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-11 (Mon, 11 Aug 2014)
Changed paths:
M doc/manual/Makefile
M examples/trivial-ec2-ebs.nix
A nix/ec2-placement-group.nix
M nix/ec2.nix
M nix/eval-machine-info.nix
M nix/hetzner-bootstrap.nix
M nix/keys.nix
M nix/options.nix
M nix/virtualbox-image-nixops.nix
M nix/virtualbox.nix
M nixops/backends/__init__.py
M nixops/backends/ec2.py
M nixops/backends/none.py
M nixops/deployment.py
A nixops/resources/ec2_placement_group.py
M nixops/ssh_util.py
M release.nix
M scripts/nixops
M tests/hetzner-backend.nix
M tests/none-backend.nix
Log Message:
-----------
Merge remote-tracking branch 'origin/master' into containers
Commit: f07cda0c756c4ec3de5f77e2d244e104b06c1cfd
https://github.com/NixOS/nixops/commit/f07cda0c756c4ec3de5f77e2d244e104b06c1cfd
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-18 (Mon, 18 Aug 2014)
Changed paths:
M nixops/backends/container.py
Log Message:
-----------
Container backend: Properly check container status
Commit: 77f052d3d6dc34dcab8bd5067b00c49728880c6c
https://github.com/NixOS/nixops/commit/77f052d3d6dc34dcab8bd5067b00c49728880c6c
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/backends/container.py
Log Message:
-----------
Container backend: Drop unnecessary wait_for_ssh
Commit: d3d7a0293faa829a6ffe3d52520240cd5d86553b
https://github.com/NixOS/nixops/commit/d3d7a0293faa829a6ffe3d52520240cd5d86553b
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nix/ec2.nix
M nix/eval-machine-info.nix
M nix/options.nix
M nix/resource.nix
Log Message:
-----------
Use types.either
Commit: ca50be54266a6174960ef2460cea4627e6ce707c
https://github.com/NixOS/nixops/commit/ca50be54266a6174960ef2460cea4627e6ce707c
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/util.py
Log Message:
-----------
Missing parenthesis
Commit: b958c46942c785d6791697bbd3ed744e01c2eec8
https://github.com/NixOS/nixops/commit/b958c46942c785d6791697bbd3ed744e01c2eec8
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/backends/ec2.py
M nixops/deployment.py
M nixops/resources/__init__.py
M nixops/resources/ec2_placement_group.py
M nixops/resources/ec2_security_group.py
M nixops/resources/iam_role.py
Log Message:
-----------
create_after: Pass in the machine definition
Needed for resources that need to be ordered after specific other
resources based on their definition (e.g. a container needs to be
ordered after its host).
Commit: 93001df3ac569d2a5d7933ebd6cd9f02d7b0d9d5
https://github.com/NixOS/nixops/commit/93001df3ac569d2a5d7933ebd6cd9f02d7b0d9d5
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/deployment.py
M nixops/util.py
Log Message:
-----------
Add utility function write_file
Commit: cea005ddf0ea22b21d38e262175d60173bc40c5f
https://github.com/NixOS/nixops/commit/cea005ddf0ea22b21d38e262175d60173bc40c5f
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/backends/ec2.py
Log Message:
-----------
Layout
Commit: 0ee735bc94787451f00f536240674f8906aa7037
https://github.com/NixOS/nixops/commit/0ee735bc94787451f00f536240674f8906aa7037
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nix/container.nix
M nixops/backends/container.py
M nixops/deployment.py
Log Message:
-----------
Start a container after its host
Commit: 0b4cd58a41bcfe6c80b6a184069e846763495208
https://github.com/NixOS/nixops/commit/0b4cd58a41bcfe6c80b6a184069e846763495208
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
A nix/container-base.nix
M nix/container.nix
M nixops/backends/container.py
Log Message:
-----------
Container backend: Use ‘nixos-container create --system-path’
This way, the host does not need to have a copy of Nixpkgs.
Commit: d671acff09eacfec6b247699c9bbc425c7196df0
https://github.com/NixOS/nixops/commit/d671acff09eacfec6b247699c9bbc425c7196df0
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/backends/container.py
Log Message:
-----------
Container backend: Get the host key of the container
Commit: d30baca4dc1d699c5dba015b215d774b2dc33bf0
https://github.com/NixOS/nixops/commit/d30baca4dc1d699c5dba015b215d774b2dc33bf0
Author: Eelco Dolstra <[email protected]>
Date: 2014-08-19 (Tue, 19 Aug 2014)
Changed paths:
M nixops/backends/__init__.py
M nixops/backends/container.py
Log Message:
-----------
Container backend: Support a host other than "localhost"
Compare: https://github.com/NixOS/nixops/compare/9af204d32da4...d30baca4dc1d_______________________________________________
nix-commits mailing list
[email protected]
http://lists.science.uu.nl/mailman/listinfo/nix-commits
