public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nixos: fix linux containers (systemd-nspawn, lxc, lxc-libvirt)

Browse Source 
- Make dhcp work, use dhcpcd without udev in container
- Make login shell work, patch getty to not wait for /dev/tty0
- Make ssh work, sshd/pam do not start session
This commit is contained in:
Jaka Hudoklin 2014-03-20 08:51:08 +01:00
parent a1a167bc8b
commit 70a4c7b1df
6 changed files with 20 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
nixos/modules/services/networking/dhcpcd.nix
View File

@ -4,7 +4,7 @@ with pkgs.lib;
let let
inherit (pkgs) dhcpcd; dhcpcd = if !config.boot.isContainer then pkgs.dhcpcd else pkgs.dhcpcd_without_udev;
# Don't start dhcpcd on explicitly configured interfaces or on # Don't start dhcpcd on explicitly configured interfaces or on
# interfaces that are part of a bridge. # interfaces that are part of a bridge.

2
nixos/modules/services/networking/ssh/sshd.nix
View File

@ -285,7 +285,7 @@ in
networking.firewall.allowedTCPPorts = cfg.ports; networking.firewall.allowedTCPPorts = cfg.ports;
security.pam.services.sshd = security.pam.services.sshd =
{ startSession = true; { startSession = !config.boot.isContainer;
showMotd = true; showMotd = true;
unixAuth = cfg.passwordAuthentication; unixAuth = cfg.passwordAuthentication;
}; };

1
pkgs/os-specific/linux/systemd/default.nix
View File

@ -22,6 +22,7 @@ stdenv.mkDerivation rec {
[ # These are all changes between upstream and [ # These are all changes between upstream and
# https://github.com/edolstra/systemd/tree/nixos-v203. # https://github.com/edolstra/systemd/tree/nixos-v203.
./fixes.patch ./fixes.patch
./fix_console_in_containers.patch
] ]
++ stdenv.lib.optional stdenv.isArm ./libc-bug-accept4-arm.patch; ++ stdenv.lib.optional stdenv.isArm ./libc-bug-accept4-arm.patch;

14
pkgs/os-specific/linux/systemd/fix_console_in_containers.patch Normal file
View File

@ -0,0 +1,14 @@
diff -ruN systemd-203/units/getty@.service.m4 systemd-203-patched/units/getty@.service.m4
--- systemd-203/units/getty@.service.m4 2013-01-07 22:50:49.083315575 +0100
+++ systemd-203-patched/units/getty@.service.m4 2014-03-18 09:54:40.002476232 +0100
@@ -23,7 +23,9 @@
# On systems without virtual consoles, don't start any getty. (Note
# that serial gettys are covered by serial-getty@.service, not this
# unit
-ConditionPathExists=/dev/tty0
+ConditionPathExists=|/dev/tty0
+ConditionVirtualization=|lxc
+ConditionVirtualization=|lxc-libvirt
[Service]
# the VT is cleared by TTYVTDisallocate

2
pkgs/tools/networking/dhcpcd/default.nix
View File

@ -21,7 +21,7 @@ stdenv.mkDerivation rec {
installFlags = "DBDIR=\${TMPDIR}/db SYSCONFDIR=$(out)/etc"; installFlags = "DBDIR=\${TMPDIR}/db SYSCONFDIR=$(out)/etc";
# Check that the udev plugin got built. # Check that the udev plugin got built.
postInstall = "[ -e $out/lib/dhcpcd/dev/udev.so ]"; postInstall = stdenv.lib.optional (udev != null) "[ -e $out/lib/dhcpcd/dev/udev.so ]";
meta = { meta = {
description = "A client for the Dynamic Host Configuration Protocol (DHCP)"; description = "A client for the Dynamic Host Configuration Protocol (DHCP)";

2
pkgs/top-level/all-packages.nix
View File

@ -823,6 +823,8 @@ let
dhcpcd = callPackage ../tools/networking/dhcpcd { }; dhcpcd = callPackage ../tools/networking/dhcpcd { };
dhcpcd_without_udev = callPackage ../tools/networking/dhcpcd { udev = null; };
diffstat = callPackage ../tools/text/diffstat { }; diffstat = callPackage ../tools/text/diffstat { };
diffutils = callPackage ../tools/text/diffutils { }; diffutils = callPackage ../tools/text/diffutils { };