public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
nixpkgs/nixos/modules/services/databases/mysql.nix

432 lines
15 KiB
Nix
Raw Normal View History

Rewrite ‘with pkgs.lib’ -> ‘with lib’ Using pkgs.lib on the spine of module evaluation is problematic because the pkgs argument depends on the result of module evaluation. To prevent an infinite recursion, pkgs and some of the modules are evaluated twice, which is inefficient. Using ‘with lib’ prevents this problem.
2014-04-14 16:26:48 +02:00
{ config, lib, pkgs, ... }:
* Convert the remaining jobs to jobAttrs style. svn path=/nixos/trunk/; revision=17764
2009-10-12 17:27:57 +00:00
Rewrite ‘with pkgs.lib’ -> ‘with lib’ Using pkgs.lib on the spine of module evaluation is problematic because the pkgs argument depends on the result of module evaluation. To prevent an infinite recursion, pkgs and some of the modules are evaluated twice, which is inefficient. Using ‘with lib’ prevents this problem.
2014-04-14 16:26:48 +02:00
with lib;
Convert "mysql" svn path=/nixos/branches/fix-style/; revision=14389
2009-03-06 12:27:00 +00:00
Added MySQL to NixOS svn path=/nixos/trunk/; revision=10306
2008-01-28 14:34:29 +00:00
let
* mysql: merged the mysql expression in the services tree. * mysql: run under a separate user ("mysql"), not under "nobody". * mysql: put the PID under /var/run. svn path=/nixos/trunk/; revision=12189
2008-06-25 21:58:51 +00:00
cfg = config.services.mysql;
mysql.mysql becomes mysql.package because eelco likes it better svn path=/nixos/trunk/; revision=18994
2009-12-16 15:24:15 +00:00
mysql = cfg.package;
mysql module: cleanup obsolete checks
2017-12-28 14:06:03 +01:00
treewide: Get rid of most `parseDrvName` without breaking compat That is because this commit should be merged to both master and release-19.09.
2019-11-24 17:22:28 +00:00
isMariaDB = lib.getName mysql == lib.getName pkgs.mariadb;
nixos/mysql: support package=mysql57
2018-11-18 12:25:18 +07:00
isMysqlAtLeast57 =
treewide: Get rid of most `parseDrvName` without breaking compat That is because this commit should be merged to both master and release-19.09.
2019-11-24 17:22:28 +00:00
(lib.getName mysql == lib.getName pkgs.mysql57)
&& (builtins.compareVersions mysql.version "5.7" >= 0);
* mysql: merged the mysql expression in the services tree. * mysql: run under a separate user ("mysql"), not under "nobody". * mysql: put the PID under /var/run. svn path=/nixos/trunk/; revision=12189
2008-06-25 21:58:51 +00:00
mysqldOptions =
nixos/mysql: drop services.mysql.pidDir mysql already has its socket path hardcoded to to /run/mysqld/mysqld.sock. There's not much value in making the pidDir configurable, which also points to /run/mysqld by default. We only seem to use `services.mysql.pidDir` in the wordpress startup script, to wait for mysql to boot up, but we can also simply wait on the (hardcoded) socket location too. A much nicer way to accomplish that would be to properly describe a dependency on mysqld.service. This however is not easily doable, due to how the apache-httpd module was designed.
2019-05-17 14:12:52 +02:00
"--user=${cfg.user} --datadir=${cfg.dataDir} --basedir=${mysql}";
nixos/mysql: support package=mysql57
2018-11-18 12:25:18 +07:00
# For MySQL 5.7+, --insecure creates the root user without password
# (earlier versions and MariaDB do this by default).
installOptions =
nixos/mysql: drop services.mysql.pidDir mysql already has its socket path hardcoded to to /run/mysqld/mysqld.sock. There's not much value in making the pidDir configurable, which also points to /run/mysqld by default. We only seem to use `services.mysql.pidDir` in the wordpress startup script, to wait for mysql to boot up, but we can also simply wait on the (hardcoded) socket location too. A much nicer way to accomplish that would be to properly describe a dependency on mysqld.service. This however is not easily doable, due to how the apache-httpd module was designed.
2019-05-17 14:12:52 +02:00
"${mysqldOptions} ${lib.optionalString isMysqlAtLeast57 "--insecure"}";
Added MySQL to NixOS svn path=/nixos/trunk/; revision=10306
2008-01-28 14:34:29 +00:00
in
* mysql: merged the mysql expression in the services tree. * mysql: run under a separate user ("mysql"), not under "nobody". * mysql: put the PID under /var/run. svn path=/nixos/trunk/; revision=12189
2008-06-25 21:58:51 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
{
nixos/treewide: Move rename.nix imports to their respective modules A centralized list for these renames is not good because: - It breaks disabledModules for modules that have a rename defined - Adding/removing renames for a module means having to find them in the central file - Merge conflicts due to multiple people editing the central file
2019-12-10 02:51:19 +01:00
imports = [
(mkRemovedOptionModule [ "services" "mysql" "pidDir" ] "Don't wait for pidfiles, describe dependencies through systemd")
(mkRemovedOptionModule [ "services" "mysql" "rootPassword" ] "Use socket authentication or set the password outside of the nix store.")
];
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
###### interface
options = {
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
services.mysql = {
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
enable = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.bool;
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
default = false;
description = "
Whether to enable the MySQL server.
";
};
mysql.mysql becomes mysql.package because eelco likes it better svn path=/nixos/trunk/; revision=18994
2009-12-16 15:24:15 +00:00
package = mkOption {
Merge mysql55 module into mysql This also removes the default for services.mysql.package, as this should not generally be updated automatically if we change the mysql attribute
2014-02-26 07:54:04 -05:00
type = types.package;
Revert "mysql service: specify defaultText for package option" This reverts commit 52d12b473af0dfbf7f5af1bd75ac5a5f2366f887.
2016-12-17 22:30:05 +01:00
example = literalExample "pkgs.mysql";
* allow configuration of mysql version svn path=/nixos/trunk/; revision=18993
2009-12-16 14:54:36 +00:00
description = "
mysql module: fix flaky check Comparing packages via equality will lead to different results when package and module are from different `nixpkgs` checkouts. Also, because MariaDB is actually supported, added a note to option description to make this knowledge more discover-able.
2017-11-14 03:08:15 +02:00
Which MySQL derivation to use. MariaDB packages are supported too.
* allow configuration of mysql version svn path=/nixos/trunk/; revision=18993
2009-12-16 14:54:36 +00:00
";
};
mysql module: add option to bind to an address
2017-06-15 15:10:14 +02:00
bind = mkOption {
type = types.nullOr types.str;
default = null;
example = literalExample "0.0.0.0";
nixos/mysql: fix typo in description of mysql.bind option
2017-11-06 22:33:37 +01:00
description = "Address to bind to. The default is to bind to all addresses";
mysql module: add option to bind to an address
2017-06-15 15:10:14 +02:00
};
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
port = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.int;
default = 3306;
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
description = "Port of MySQL";
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
};
user = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.str;
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
default = "mysql";
description = "User account under which MySQL runs";
};
dataDir = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.path;
mysql service: change default data directory for 17.09 The new directory is now moved to /var/lib/mysql. This makes it consistent with with upstream.
2017-05-20 00:30:51 +02:00
example = "/var/lib/mysql";
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
description = "Location where MySQL stores its table files";
};
mysql/mysql55: Log to stderr instead of logfile. This should integrate the logging more tightly into systemd, so for example "systemctl status mysql" actually gives an overview about what's actually going on. This removes the logError option attribute, so in case you still want to write into a logfile, I've introduced an option called extraOptions, so you can use something like: services.mysql*.extraOptions = '' log-error = /var/log/mysql_err.log ''; Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2013-07-14 01:47:40 +02:00
extraOptions = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.lines;
mysql/mysql55: Log to stderr instead of logfile. This should integrate the logging more tightly into systemd, so for example "systemctl status mysql" actually gives an overview about what's actually going on. This removes the logError option attribute, so in case you still want to write into a logfile, I've introduced an option called extraOptions, so you can use something like: services.mysql*.extraOptions = '' log-error = /var/log/mysql_err.log ''; Signed-off-by: aszlig <aszlig@redmoonstudios.org>
2013-07-14 01:47:40 +02:00
default = "";
example = ''
key_buffer_size = 6G
table_cache = 1600
log-error = /var/log/mysql_err.log
'';
description = ''
Provide extra options to the MySQL configuration file.
Please note, that these options are added to the
<literal>[mysqld]</literal> section so you don't need to explicitly
state it again.
'';
};
Added initialDatabases option to the MySQL service. This is useful for e.g. automatically intialing databases in a test VM svn path=/nixos/branches/upstart-0.6/; revision=18437
2009-11-18 16:19:04 +00:00
initialDatabases = mkOption {
nixos/mysql: specify option types
2019-03-12 18:08:23 +01:00
type = types.listOf (types.submodule {
options = {
name = mkOption {
type = types.str;
description = ''
The name of the database to create.
'';
};
schema = mkOption {
type = types.nullOr types.path;
default = null;
description = ''
The initial schema of the database; if null (the default),
an empty database is created.
'';
};
};
});
Added initialDatabases option to the MySQL service. This is useful for e.g. automatically intialing databases in a test VM svn path=/nixos/branches/upstart-0.6/; revision=18437
2009-11-18 16:19:04 +00:00
default = [];
mysql service: Make initialDatabases.schema attribute optional
2017-05-20 23:57:07 +02:00
description = ''
List of database names and their initial schemas that should be used to create databases on the first startup
of MySQL. The schema attribute is optional: If not specified, an empty database is created.
'';
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
example = [
Remove dependencies on the Nixpkgs location
2013-10-23 20:06:39 +02:00
{ name = "foodatabase"; schema = literalExample "./foodatabase.sql"; }
mysql service: Make initialDatabases.schema attribute optional
2017-05-20 23:57:07 +02:00
{ name = "bardatabase"; }
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
];
Added initialDatabases option to the MySQL service. This is useful for e.g. automatically intialing databases in a test VM svn path=/nixos/branches/upstart-0.6/; revision=18437
2009-11-18 16:19:04 +00:00
};
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
- Implemented rootPassword option to automatically configure the root password (by default it's empty, which you usually don't want) - Implemented initialScript option to configure database properties on first startup (such as granting permissions) svn path=/nixos/trunk/; revision=21135
2010-04-16 18:06:23 +00:00
initialScript = mkOption {
nixos/mysql: fix initialScript option which was wrongly specified as types.lines Prevent it from getting copied to nix store as people might use it for credentials, and make the tests cover it.
2019-04-01 21:08:47 +02:00
type = types.nullOr types.path;
- Implemented rootPassword option to automatically configure the root password (by default it's empty, which you usually don't want) - Implemented initialScript option to configure database properties on first startup (such as granting permissions) svn path=/nixos/trunk/; revision=21135
2010-04-16 18:06:23 +00:00
default = null;
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
description = "A file containing SQL statements to be executed on the first startup. Can be used for granting certain permissions on the database";
- Implemented rootPassword option to automatically configure the root password (by default it's empty, which you usually don't want) - Implemented initialScript option to configure database properties on first startup (such as granting permissions) svn path=/nixos/trunk/; revision=21135
2010-04-16 18:06:23 +00:00
};
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
nixos/mysql: declarative users & databases using Unix socket authentication, ensured on every rebuild.
2017-09-10 17:58:52 +02:00
ensureDatabases = mkOption {
nixos/mysql: specify option types
2019-03-12 18:08:23 +01:00
type = types.listOf types.str;
nixos/mysql: declarative users & databases using Unix socket authentication, ensured on every rebuild.
2017-09-10 17:58:52 +02:00
default = [];
description = ''
Ensures that the specified databases exist.
This option will never delete existing databases, especially not when the value of this
option is changed. This means that databases created once through this option or
otherwise have to be removed manually.
'';
example = [
"nextcloud"
nixos/piwik: rename to matomo
2018-01-16 18:44:27 +01:00
"matomo"
nixos/mysql: declarative users & databases using Unix socket authentication, ensured on every rebuild.
2017-09-10 17:58:52 +02:00
];
};
ensureUsers = mkOption {
nixos/mysql: specify option types
2019-03-12 18:08:23 +01:00
type = types.listOf (types.submodule {
options = {
name = mkOption {
type = types.str;
description = ''
Name of the user to ensure.
'';
};
ensurePermissions = mkOption {
type = types.attrsOf types.str;
default = {};
description = ''
Permissions to ensure for the user, specified as attribute set.
The attribute names specify the database and tables to grant the permissions for,
separated by a dot. You may use wildcards here.
The attribute values specfiy the permissions to grant.
You may specify one or multiple comma-separated SQL privileges here.
For more information on how to specify the target
and on which privileges exist, see the
<link xlink:href="https://mariadb.com/kb/en/library/grant/">GRANT syntax</link>.
The attributes are used as <code>GRANT ''${attrName} ON ''${attrValue}</code>.
'';
example = literalExample ''
{
"database.*" = "ALL PRIVILEGES";
"*.*" = "SELECT, LOCK TABLES";
}
'';
};
};
});
nixos/mysql: declarative users & databases using Unix socket authentication, ensured on every rebuild.
2017-09-10 17:58:52 +02:00
default = [];
description = ''
Ensures that the specified users exist and have at least the ensured permissions.
The MySQL users will be identified using Unix socket authentication. This authenticates the Unix user with the
same name only, and that without the need for a password.
This option will never delete existing users or remove permissions, especially not when the value of this
option is changed. This means that users created and permissions assigned once through this option or
otherwise have to be removed manually.
'';
nixos/mysql: specify option types
2019-03-12 18:08:23 +01:00
example = literalExample ''
[
{
name = "nextcloud";
ensurePermissions = {
"nextcloud.*" = "ALL PRIVILEGES";
};
}
{
name = "backup";
ensurePermissions = {
"*.*" = "SELECT, LOCK TABLES";
};
}
]
'';
nixos/mysql: declarative users & databases using Unix socket authentication, ensured on every rebuild.
2017-09-10 17:58:52 +02:00
};
Added MySQL replication support + 2 MySQL testcases (including replication) svn path=/nixos/trunk/; revision=27771
2011-07-13 20:58:48 +00:00
replication = {
role = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.enum [ "master" "slave" "none" ];
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
default = "none";
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
description = "Role of the MySQL server instance.";
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
};
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
Added MySQL replication support + 2 MySQL testcases (including replication) svn path=/nixos/trunk/; revision=27771
2011-07-13 20:58:48 +00:00
serverId = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.int;
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
default = 1;
description = "Id of the MySQL server instance. This number must be unique for each instance";
};
masterHost = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.str;
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
description = "Hostname of the MySQL master server";
};
MySQL Replication (that actually works) (#7198) Improves replication functionality by: * adding slaveHost on the 'master' role * adds slave user to master with replication only permissions
2016-07-20 17:15:55 -07:00
slaveHost = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.str;
MySQL Replication (that actually works) (#7198) Improves replication functionality by: * adding slaveHost on the 'master' role * adds slave user to master with replication only permissions
2016-07-20 17:15:55 -07:00
description = "Hostname of the MySQL slave server";
};
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
masterUser = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.str;
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
description = "Username of the MySQL replication user";
};
masterPassword = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.str;
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
description = "Password of the MySQL replication user";
};
masterPort = mkOption {
mysql service: add some option types Note that this changes the type and default value of port to int (previously default was a string, no type).
2016-10-02 22:34:29 +02:00
type = types.int;
The MySQL upstart job does not monitor the mysqld process anymore. Instead it is shut down by mysqladmin tool in the postStop phase. Under high load, upstart may send a KILL signal to the mysql daemon, which may cause data corruption. svn path=/nixos/trunk/; revision=31621
2012-01-18 15:01:44 +00:00
default = 3306;
description = "Port number on which the MySQL master server runs";
};
Added MySQL replication support + 2 MySQL testcases (including replication) svn path=/nixos/trunk/; revision=27771
2011-07-13 20:58:48 +00:00
};
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
};
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
};
Convert "mysql" svn path=/nixos/branches/fix-style/; revision=14389
2009-03-06 12:27:00 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
###### implementation
* mysql: merged the mysql expression in the services tree. * mysql: run under a separate user ("mysql"), not under "nobody". * mysql: put the PID under /var/run. svn path=/nixos/trunk/; revision=12189
2008-06-25 21:58:51 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
config = mkIf config.services.mysql.enable {
mysql service: change default data directory for 17.09 The new directory is now moved to /var/lib/mysql. This makes it consistent with with upstream.
2017-05-20 00:30:51 +02:00
services.mysql.dataDir =
Revert "nixos: rename system.{stateVersion,defaultChannel} -> system.nixos.\1" This reverts commit 095fe5b43def40279a243e663c662b02caac5318. Pointless renames considered harmful. All they do is force people to spend extra work updating their configs for no benefit, and hindering the ability to switch between unstable and stable versions of NixOS. Like, what was the value of having the "nixos." there? I mean, by definition anything in a NixOS module has something to do with NixOS...
2018-07-25 23:22:54 +03:00
mkDefault (if versionAtLeast config.system.stateVersion "17.09" then "/var/lib/mysql"
mysql service: change default data directory for 17.09 The new directory is now moved to /var/lib/mysql. This makes it consistent with with upstream.
2017-05-20 00:30:51 +02:00
else "/var/mysql");
nixos/modules: users.(extraUsers|extraGroup->users|group)
2018-06-30 01:58:35 +02:00
users.users.mysql = {
Add some more missing uids/gids
2013-08-26 15:20:25 +02:00
description = "MySQL server user";
group = "mysql";
uid = config.ids.uids.mysql;
};
nixos/modules: users.(extraUsers|extraGroup->users|group)
2018-06-30 01:58:35 +02:00
users.groups.mysql.gid = config.ids.gids.mysql;
Convert "mysql" svn path=/nixos/branches/fix-style/; revision=14389
2009-03-06 12:27:00 +00:00
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
environment.systemPackages = [mysql];
Convert "mysql" svn path=/nixos/branches/fix-style/; revision=14389
2009-03-06 12:27:00 +00:00
mariadb: change location configuration file to /etc/my.cnf
2018-12-01 15:10:27 +03:00
environment.etc."my.cnf".text =
''
[mysqld]
port = ${toString cfg.port}
datadir = ${cfg.dataDir}
${optionalString (cfg.bind != null) "bind-address = ${cfg.bind}" }
nixos/mysql: fix mysqlReplication test
2019-08-09 22:21:31 +03:00
${optionalString (cfg.replication.role == "master" || cfg.replication.role == "slave")
''
log-bin=mysql-bin-${toString cfg.replication.serverId}
log-bin-index=mysql-bin-${toString cfg.replication.serverId}.index
relay-log=mysql-relay-bin
server-id = ${toString cfg.replication.serverId}
''}
mariadb: change location configuration file to /etc/my.cnf
2018-12-01 15:10:27 +03:00
${optionalString (cfg.ensureUsers != [])
''
plugin-load-add = auth_socket.so
''}
${cfg.extraOptions}
'';
nixos/mysql: use systemd.tmpfiles to setup dataDir and pidDir We need to keep using `RuntimeDirectory=mysqld`, which translates to `/run/mysqld`, as this is used for the location of the file socket, that could differ with what is configured via `cfg.pidDir`.
2019-05-17 00:10:34 +02:00
systemd.tmpfiles.rules = [
"d '${cfg.dataDir}' 0700 ${cfg.user} mysql -"
];
nixos mysql: make start-up more robust (#41010) 1) Change start-type to ```notify``` when running MariaDB so that we don't have to busy-wait for the socket to appear. 2) Do not manually create the directory under /run as we can get systemd to do that for us. This opens up the possibility later for not having to launch as root.
2018-05-24 22:42:16 +08:00
systemd.services.mysql = let
hasNotify = (cfg.package == pkgs.mariadb);
in {
description = "MySQL Server";
* mysql: merged the mysql expression in the services tree. * mysql: run under a separate user ("mysql"), not under "nobody". * mysql: put the PID under /var/run. svn path=/nixos/trunk/; revision=12189
2008-06-25 21:58:51 +00:00
mysql service: order after network.target
2016-10-02 22:17:20 +02:00
after = [ "network.target" ];
mysql: Port to systemd
2012-12-18 13:40:04 +01:00
wantedBy = [ "multi-user.target" ];
mysql: add restartTrigger for my.cnf
2019-01-22 21:05:21 +03:00
restartTriggers = [ config.environment.etc."my.cnf".source ];
mysql: Port to systemd
2012-12-18 13:40:04 +01:00
unitConfig.RequiresMountsFor = "${cfg.dataDir}";
* mysql: merged the mysql expression in the services tree. * mysql: run under a separate user ("mysql"), not under "nobody". * mysql: put the PID under /var/run. svn path=/nixos/trunk/; revision=12189
2008-06-25 21:58:51 +00:00
mysql: add nettools to path The mysql_install_db command, called in preStart, needs the hostname command.
2015-09-07 17:05:56 +02:00
path = [
# Needed for the mysql_install_db command in the preStart script
# which calls the hostname command.
pkgs.nettools
];
nixos/mysql: reformat, move logical steps into variables define commands like "waiting for the mysql socket to appear" or "setup initial databases" in a let expression, so the main control flow becomes more readable.
2019-05-17 00:12:20 +02:00
preStart = ''
if ! test -e ${cfg.dataDir}/mysql; then
${mysql}/bin/mysql_install_db --defaults-file=/etc/my.cnf ${installOptions}
touch /tmp/mysql_init
fi
'';
strip trailing whitespace; no functional change svn path=/nixos/trunk/; revision=29285
2011-09-14 18:20:50 +00:00
nixos mysql: make start-up more robust (#41010) 1) Change start-type to ```notify``` when running MariaDB so that we don't have to busy-wait for the socket to appear. 2) Do not manually create the directory under /run as we can get systemd to do that for us. This opens up the possibility later for not having to launch as root.
2018-05-24 22:42:16 +08:00
serviceConfig = {
nixos/mysql: run as mysql user and group As we don't need to setup data directories from ExecStartPre= scripts anymore, which required root, but use systemd.tmpfiles.rules instead, everything can be run as just the mysql user.
2019-05-17 00:13:29 +02:00
User = cfg.user;
Group = "mysql";
nixos mysql: make start-up more robust (#41010) 1) Change start-type to ```notify``` when running MariaDB so that we don't have to busy-wait for the socket to appear. 2) Do not manually create the directory under /run as we can get systemd to do that for us. This opens up the possibility later for not having to launch as root.
2018-05-24 22:42:16 +08:00
Type = if hasNotify then "notify" else "simple";
RuntimeDirectory = "mysqld";
nixos/mysql: use systemd.tmpfiles to setup dataDir and pidDir We need to keep using `RuntimeDirectory=mysqld`, which translates to `/run/mysqld`, as this is used for the location of the file socket, that could differ with what is configured via `cfg.pidDir`.
2019-05-17 00:10:34 +02:00
RuntimeDirectoryMode = "0755";
nixos/mysql: Support bootstrapping a Galera cluster The default galera_new_cluster script tries to set this environment variable using systemctl set-environment which doesn't work if the variable is not being used in the unit file ;)
2018-10-31 00:02:27 +01:00
# The last two environment variables are used for starting Galera clusters
ExecStart = "${mysql}/bin/mysqld --defaults-file=/etc/my.cnf ${mysqldOptions} $_WSREP_NEW_CLUSTER $_WSREP_START_POSITION";
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
ExecStartPost =
let
nixos/mysql: make ExecStartPost script fail on error
2019-07-03 08:50:21 +02:00
setupScript = pkgs.writeScript "mysql-setup" ''
#!${pkgs.runtimeShell} -e
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
${optionalString (!hasNotify) ''
# Wait until the MySQL server is available for use
count=0
while [ ! -e /run/mysqld/mysqld.sock ]
do
if [ $count -eq 30 ]
then
echo "Tried 30 times, giving up..."
exit 1
fi
echo "MySQL daemon not yet started. Waiting for 1 second..."
count=$((count++))
sleep 1
done
''}
if [ -f /tmp/mysql_init ]
then
${concatMapStrings (database: ''
# Create initial databases
if ! test -e "${cfg.dataDir}/${database.name}"; then
echo "Creating initial database: ${database.name}"
( echo 'create database `${database.name}`;'
${optionalString (database.schema != null) ''
echo 'use `${database.name}`;'
# TODO: this silently falls through if database.schema does not exist,
# we should catch this somehow and exit, but can't do it here because we're in a subshell.
if [ -f "${database.schema}" ]
then
cat ${database.schema}
elif [ -d "${database.schema}" ]
then
cat ${database.schema}/mysql-databases/*.sql
fi
''}
) | ${mysql}/bin/mysql -u root -N
fi
'') cfg.initialDatabases}
${optionalString (cfg.replication.role == "master")
''
# Set up the replication master
( echo "use mysql;"
echo "CREATE USER '${cfg.replication.masterUser}'@'${cfg.replication.slaveHost}' IDENTIFIED WITH mysql_native_password;"
echo "SET PASSWORD FOR '${cfg.replication.masterUser}'@'${cfg.replication.slaveHost}' = PASSWORD('${cfg.replication.masterPassword}');"
echo "GRANT REPLICATION SLAVE ON *.* TO '${cfg.replication.masterUser}'@'${cfg.replication.slaveHost}';"
) | ${mysql}/bin/mysql -u root -N
''}
${optionalString (cfg.replication.role == "slave")
''
# Set up the replication slave
( echo "stop slave;"
echo "change master to master_host='${cfg.replication.masterHost}', master_user='${cfg.replication.masterUser}', master_password='${cfg.replication.masterPassword}';"
nixos/mysql: fix mysqlReplication test
2019-08-09 22:21:31 +03:00
echo "set global slave_exec_mode='IDEMPOTENT';"
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
echo "start slave;"
) | ${mysql}/bin/mysql -u root -N
''}
${optionalString (cfg.initialScript != null)
''
# Execute initial script
# using toString to avoid copying the file to nix store if given as path instead of string,
# as it might contain credentials
cat ${toString cfg.initialScript} | ${mysql}/bin/mysql -u root -N
''}
rm /tmp/mysql_init
fi
${optionalString (cfg.ensureDatabases != []) ''
(
${concatMapStrings (database: ''
echo "CREATE DATABASE IF NOT EXISTS \`${database}\`;"
'') cfg.ensureDatabases}
nixos/mysql: reformat, move logical steps into variables define commands like "waiting for the mysql socket to appear" or "setup initial databases" in a let expression, so the main control flow becomes more readable.
2019-05-17 00:12:20 +02:00
) | ${mysql}/bin/mysql -u root -N
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
''}
MySQL Replication (that actually works) (#7198) Improves replication functionality by: * adding slaveHost on the 'master' role * adds slave user to master with replication only permissions
2016-07-20 17:15:55 -07:00
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
${concatMapStrings (user:
MySQL Replication (that actually works) (#7198) Improves replication functionality by: * adding slaveHost on the 'master' role * adds slave user to master with replication only permissions
2016-07-20 17:15:55 -07:00
''
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
( echo "CREATE USER IF NOT EXISTS '${user.name}'@'localhost' IDENTIFIED WITH ${if isMariaDB then "unix_socket" else "auth_socket"};"
${concatStringsSep "\n" (mapAttrsToList (database: permission: ''
echo "GRANT ${permission} ON ${database} TO '${user.name}'@'localhost';"
'') user.ensurePermissions)}
Merge mysql55 module into mysql This also removes the default for services.mysql.package, as this should not generally be updated automatically if we change the mysql attribute
2014-02-26 07:54:04 -05:00
) | ${mysql}/bin/mysql -u root -N
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
'') cfg.ensureUsers}
'';
in
nixos/mysql: run ExecStartPost as root (again) to preserve compatibility with installs that have been secured
2019-06-30 21:59:47 -04:00
# ensureDatbases & ensureUsers depends on this script being run as root
# when the user has secured their mysql install
"+${setupScript}";
nixos/mysql: turn ExecStartPost into a shell script and simplify code
2019-06-30 21:58:27 -04:00
};
* Start mysql automatically on startup. svn path=/nixos/trunk/; revision=17755
2009-10-12 11:30:43 +00:00
};
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
Convert "mysql" svn path=/nixos/branches/fix-style/; revision=14389
2009-03-06 12:27:00 +00:00
};
* Got rid of the extraPath field in jobs (use environment.systemPackages instead). Also renamed services.extraJobs to jobs. svn path=/nixos/branches/modular-nixos/; revision=16370
2009-07-15 11:19:11 +00:00
Added MySQL to NixOS svn path=/nixos/trunk/; revision=10306
2008-01-28 14:34:29 +00:00
}
Reference in New Issue Copy Permalink