971d688a72
propellor spin
2015-03-11 22:24:09 -04:00
bd8efb76a3
propellor spin
2015-03-11 22:18:50 -04:00
09435e9bcc
propellor spin
2015-03-11 22:06:08 -04:00
164f78ca05
propellor spin
2015-03-06 15:40:38 -04:00
1a62575d3d
propellor spin
2015-02-27 19:17:42 -04:00
d67d59a25a
propellor spin
2015-02-27 19:14:20 -04:00
f0a4e642c4
propellor spin
2015-02-27 19:01:11 -04:00
e8b0e7c6ca
propellor spin
2015-02-27 18:55:51 -04:00
fa7656f743
Add shebang to cron.daily etc files.
2015-02-25 14:58:40 -04:00
5b56a416c1
endpoint
2015-02-19 18:40:50 -04:00
fac02a6a82
propellor spin
2015-02-13 15:59:50 -04:00
da77276378
ssh user perm fixes
...
* Ssh.authorizedKey: Make the authorized_keys file and .ssh directory
be owned by the user, not root.
* Ssh.knownHost: Make the .ssh directory be owned by the user, not root.
2015-02-12 12:35:15 -04:00
ca2640d037
propellor spin
2015-02-10 22:31:00 -04:00
a407af3f03
propellor spin
2015-02-10 21:55:39 -04:00
8f813dc875
propellor spin
2015-02-10 21:46:31 -04:00
f5c82083fe
propellor spin
2015-02-10 21:39:16 -04:00
b2dccb5fb5
propellor spin
2015-02-10 21:21:51 -04:00
920b7bf56d
propellor spin
2015-02-10 21:18:41 -04:00
e32f157374
Fix Git.daemonRunning to restart inetd after enabling the git server.
2015-02-10 21:04:32 -04:00
8d73419dbe
propellor spin
2015-02-10 21:01:38 -04:00
5ae2a1dc3c
propellor spin
2015-02-10 20:58:47 -04:00
0119bf8531
propellor spin
2015-02-10 20:56:57 -04:00
d08c98d8b3
propellor spin
2015-02-10 20:29:04 -04:00
824ebdd76f
propellor spin
2015-02-10 19:57:18 -04:00
057509c5cd
propellor spin
2015-02-10 15:09:57 -04:00
d1ebc7c145
propellor spin
2015-02-10 10:02:37 -04:00
991249185c
propellor spin
2015-02-09 18:51:07 -04:00
162df37da4
propellor spin
2015-02-01 17:38:05 -04:00
8edc7ed3ae
propellor spin
2015-02-01 17:34:04 -04:00
30c8621f5c
propellor spin
2015-02-01 17:01:32 -04:00
2e2e30fc39
propellor spin
2015-02-01 16:58:32 -04:00
b3bdb95ed0
propellor spin
2015-02-01 16:51:55 -04:00
8ff2b77385
propellor spin
2015-02-01 16:40:03 -04:00
db7a9aa9f6
propellor spin
2015-02-01 16:19:37 -04:00
0ea9794324
propellor spin
2015-02-01 15:08:30 -04:00
3c7c40dd67
propellor spin
2015-02-01 14:50:54 -04:00
bcdc5754fc
propellor spin
2015-02-01 14:48:13 -04:00
f276466cf2
propellor spin
2015-02-01 13:36:58 -04:00
1b7a00372b
propellor spin
2015-02-01 13:14:45 -04:00
3585f14d4e
propellor spin
2015-01-29 01:37:53 -04:00
d7697a4b25
propellor spin
2015-01-29 01:04:59 -04:00
e9d5d9aff1
remove toSimpleProp
...
It didn't do what I thought it did with a RevertableProperty; it always
returned Nothing because even if the input properties to <!> are NoInfo, it
casts them to HasInfo.
Even if it had worked, it lost type safety. Better to export the
Property NoInfo that is used in a RevertableProperty, so it can be used
directly.
2015-01-25 14:47:57 -04:00
0ee04ecc43
GADT properties seem to work (untested)
...
* Property has been converted to a GADT, and will be Property NoInfo
or Property HasInfo.
This was done to make sure that ensureProperty is only used on
properties that do not have Info.
Transition guide:
- Change all "Property" to "Property NoInfo" or "Property WithInfo"
(The compiler can tell you if you got it wrong!)
- To construct a RevertableProperty, it is useful to use the new
(<!>) operator
- Constructing a list of properties can be problimatic, since
Property NoInto and Property WithInfo are different types and cannot
appear in the same list. To deal with this, "props" has been added,
and can built up a list of properties of different types,
using the same (&) and (!) operators that are used to build
up a host's properties.
2015-01-24 22:38:51 -04:00
414ee7eee6
added GADT to determine between a property with info and without
...
Not yet used
2015-01-24 16:53:59 -04:00
38eec6fc37
OS.preserveNetwork finally written
2015-01-23 01:30:50 -04:00
d156a1e9ba
Added more network interface configuration properties.
2015-01-23 01:18:47 -04:00
bbac845900
propellor spin
2015-01-22 16:10:22 -04:00
4d34b837d2
reorg
2015-01-21 23:28:47 -04:00
a37e0a6bc3
propellor spin
2015-01-21 23:22:42 -04:00
fa66cb49d6
Added journald configuration properties.
2015-01-21 23:21:24 -04:00
88082c7293
Added systemd configuration properties.
2015-01-21 22:49:03 -04:00
a738a20d79
export
2015-01-19 15:15:22 -04:00
603e6d3406
split out types to improve haddock for Propellor.Types
2015-01-19 15:09:03 -04:00
a2a97cbeb2
avoid haddock warnings
2015-01-19 14:26:18 -04:00
1ae21965aa
rename HostLike to PropAccum
...
This is more general; it doesn't need to contain a Host.
It would, for example, be possible to make Property itself be an instance
of PropAccum.
2015-01-19 14:15:49 -04:00
afee550e70
Property tree
...
Properties now form a tree, instead of the flat list used before.
This simplifies propigation of Info from the Properties used inside a
container to the outer host; the Property that docks the container on the
host can just have as child properties all the inner Properties, and their
Info can then be gathered recursively. (Although in practice it still needs
to be filtered, since not all Info should propigate out of a container.)
Note that there is no change to how Properties are actually satisfied.
Just because a Property lists some child properties, this does not mean
they always have their propertySatisfy actions run. It's still up to the
parent property to run those actions.
That's necessary so that a container's properties can be satisfied inside
it, not outside. It also allows property combinators to
add the combined Properties to their childProperties list, even if,
like onChange, they don't always run the child properties at all.
Testing: I tested that the exact same Info is calculated before and after
this change, for every Host in my config file.
2015-01-18 18:46:38 -04:00
042b3bee01
propellor spin
2015-01-09 21:21:06 -04:00
2e2f8b4fdd
propellor spin
2015-01-08 23:08:16 -04:00
5585778e54
propellor spin
2015-01-08 23:02:06 -04:00
8e6e40abc4
propellor spin
2015-01-08 22:44:36 -04:00
ad8e318c34
propellor spin
2015-01-08 22:01:12 -04:00
660b5d7f93
propellor spin
2015-01-08 21:41:55 -04:00
dd022c917b
propellor spin
2015-01-08 21:17:06 -04:00
16a5f561f5
Merge Utiity modules from git-annex.
...
Except for a few that are using the other exception handling library,
that propellor has not switched to yet.
2015-01-06 19:07:40 -04:00
f4a57ca27d
refactor dns settings!
2015-01-06 01:20:56 -04:00
ff7f70d280
add update-server-info, so the repo has all current branches published over http
2015-01-06 01:00:48 -04:00
4c2c2785c8
SSHFP records are also generated for CNAMES of hosts.
2015-01-04 21:31:44 -04:00
66e42a2a5b
prep
2015-01-04 19:51:42 -04:00
09e9b793dd
propellor spin
2015-01-04 19:43:06 -04:00
570bcde9ed
propellor spin
2015-01-04 19:32:15 -04:00
8e442f0656
DNS records for hosts with known ssh public keys now automatically include SSHFP records.
2015-01-04 19:24:18 -04:00
ef2f3d33de
Fix bug that prevented deploying ssh host keys when the file for the key didn't already exist.
...
This is not a new bug.
2015-01-04 18:20:02 -04:00
93e89c7200
cleanup
2015-01-04 18:12:19 -04:00
ab8ff9a00e
randomHostKeys is removed from CloudAtCost.deCruft.
2015-01-04 17:15:59 -04:00
fd1e01c853
avoid ever removing all host keys
2015-01-04 17:14:07 -04:00
f0b6ce9702
propellor spin
2015-01-04 17:04:26 -04:00
08b45ad6f6
propellor spin
2015-01-04 17:00:08 -04:00
0af7629c98
propellor spin
2015-01-04 16:54:43 -04:00
a2bb647827
Ssh.hostKey and Ssh.hostKeys no longer install public keys from the privdata.
...
Instead, the public keys of a host should be set using Ssh.pubKey.
2015-01-04 16:10:36 -04:00
84685f24c9
Ssh.hostKeys now also installs any available SshEd25519 keys.
2015-01-04 15:59:54 -04:00
f1a1d0001a
sshPubKey is renamed to Ssh.pubKey, and has an added SshKeyType parameter.
2015-01-04 15:57:27 -04:00
52664e6220
sshPubKey is renamed to Ssh.pubKey
2015-01-04 15:36:53 -04:00
0f41071cb5
transition docs
2015-01-04 15:22:22 -04:00
ad984e74e4
propellor spin
2015-01-04 15:00:40 -04:00
bb7b8e7891
add $INCLUDE of pubkeys before zone file is written, to avoid pogoing
2015-01-04 14:22:44 -04:00
43e15c8add
fix serial incrementing
2015-01-04 14:17:33 -04:00
f36443755e
propellor spin
2015-01-04 14:05:42 -04:00
8c1006c654
propellor spin
2015-01-04 13:56:55 -04:00
ce7f14b9b3
propellor spin
2015-01-04 13:52:59 -04:00
bf34d6f423
propellor spin
2015-01-04 13:42:01 -04:00
e67901a77b
use separate directory for dnssec files
2015-01-04 13:22:23 -04:00
d6c8ddb955
resign zone if keys change
2015-01-04 13:13:06 -04:00
8172f243d7
DNS WIP
2015-01-04 12:44:05 -04:00
a1f61e09b8
stub signedPrimary
2015-01-03 19:10:28 -04:00
4dd6596919
add DnsSec module
2015-01-03 19:10:17 -04:00
932cb7c5d6
add hasPrivContentFrom
2015-01-03 19:07:59 -04:00
d5cfadd899
Detect #774376 and refuse to use docker if the system is so broken that docker exec doesn't enter a chroot.
2015-01-01 15:41:31 -04:00
858ded043b
more cruft from new image
2015-01-01 15:15:44 -04:00
c7aac0b35e
remove screen workaround
...
Turns out elephant's oldusenet shellbox docker instance somehow had a
non-setguid screen binary. Dunno how; reinstall fixed it.
2014-12-23 15:45:35 -04:00
35ccb0fac6
fix screen dir mode
2014-12-23 15:29:23 -04:00
Joey Hess