Joey Hess
fa7656f743
Add shebang to cron.daily etc files.
2015-02-25 14:58:40 -04:00
Joey Hess
5b56a416c1
endpoint
2015-02-19 18:40:50 -04:00
Joey Hess
fac02a6a82
propellor spin
2015-02-13 15:59:50 -04:00
Joey Hess
da77276378
ssh user perm fixes
...
* Ssh.authorizedKey: Make the authorized_keys file and .ssh directory
be owned by the user, not root.
* Ssh.knownHost: Make the .ssh directory be owned by the user, not root.
2015-02-12 12:35:15 -04:00
Joey Hess
ca2640d037
propellor spin
2015-02-10 22:31:00 -04:00
Joey Hess
a407af3f03
propellor spin
2015-02-10 21:55:39 -04:00
Joey Hess
8f813dc875
propellor spin
2015-02-10 21:46:31 -04:00
Joey Hess
f5c82083fe
propellor spin
2015-02-10 21:39:16 -04:00
Joey Hess
b2dccb5fb5
propellor spin
2015-02-10 21:21:51 -04:00
Joey Hess
920b7bf56d
propellor spin
2015-02-10 21:18:41 -04:00
Joey Hess
e32f157374
Fix Git.daemonRunning to restart inetd after enabling the git server.
2015-02-10 21:04:32 -04:00
Joey Hess
8d73419dbe
propellor spin
2015-02-10 21:01:38 -04:00
Joey Hess
5ae2a1dc3c
propellor spin
2015-02-10 20:58:47 -04:00
Joey Hess
0119bf8531
propellor spin
2015-02-10 20:56:57 -04:00
Joey Hess
d08c98d8b3
propellor spin
2015-02-10 20:29:04 -04:00
Joey Hess
824ebdd76f
propellor spin
2015-02-10 19:57:18 -04:00
Joey Hess
057509c5cd
propellor spin
2015-02-10 15:09:57 -04:00
Joey Hess
d1ebc7c145
propellor spin
2015-02-10 10:02:37 -04:00
Joey Hess
991249185c
propellor spin
2015-02-09 18:51:07 -04:00
Joey Hess
162df37da4
propellor spin
2015-02-01 17:38:05 -04:00
Joey Hess
8edc7ed3ae
propellor spin
2015-02-01 17:34:04 -04:00
Joey Hess
30c8621f5c
propellor spin
2015-02-01 17:01:32 -04:00
Joey Hess
2e2e30fc39
propellor spin
2015-02-01 16:58:32 -04:00
Joey Hess
b3bdb95ed0
propellor spin
2015-02-01 16:51:55 -04:00
Joey Hess
8ff2b77385
propellor spin
2015-02-01 16:40:03 -04:00
Joey Hess
db7a9aa9f6
propellor spin
2015-02-01 16:19:37 -04:00
Joey Hess
0ea9794324
propellor spin
2015-02-01 15:08:30 -04:00
Joey Hess
3c7c40dd67
propellor spin
2015-02-01 14:50:54 -04:00
Joey Hess
bcdc5754fc
propellor spin
2015-02-01 14:48:13 -04:00
Joey Hess
f276466cf2
propellor spin
2015-02-01 13:36:58 -04:00
Joey Hess
1b7a00372b
propellor spin
2015-02-01 13:14:45 -04:00
Joey Hess
3585f14d4e
propellor spin
2015-01-29 01:37:53 -04:00
Joey Hess
d7697a4b25
propellor spin
2015-01-29 01:04:59 -04:00
Joey Hess
e9d5d9aff1
remove toSimpleProp
...
It didn't do what I thought it did with a RevertableProperty; it always
returned Nothing because even if the input properties to <!> are NoInfo, it
casts them to HasInfo.
Even if it had worked, it lost type safety. Better to export the
Property NoInfo that is used in a RevertableProperty, so it can be used
directly.
2015-01-25 14:47:57 -04:00
Joey Hess
0ee04ecc43
GADT properties seem to work (untested)
...
* Property has been converted to a GADT, and will be Property NoInfo
or Property HasInfo.
This was done to make sure that ensureProperty is only used on
properties that do not have Info.
Transition guide:
- Change all "Property" to "Property NoInfo" or "Property WithInfo"
(The compiler can tell you if you got it wrong!)
- To construct a RevertableProperty, it is useful to use the new
(<!>) operator
- Constructing a list of properties can be problimatic, since
Property NoInto and Property WithInfo are different types and cannot
appear in the same list. To deal with this, "props" has been added,
and can built up a list of properties of different types,
using the same (&) and (!) operators that are used to build
up a host's properties.
2015-01-24 22:38:51 -04:00
Joey Hess
414ee7eee6
added GADT to determine between a property with info and without
...
Not yet used
2015-01-24 16:53:59 -04:00
Joey Hess
38eec6fc37
OS.preserveNetwork finally written
2015-01-23 01:30:50 -04:00
Joey Hess
d156a1e9ba
Added more network interface configuration properties.
2015-01-23 01:18:47 -04:00
Joey Hess
bbac845900
propellor spin
2015-01-22 16:10:22 -04:00
Joey Hess
4d34b837d2
reorg
2015-01-21 23:28:47 -04:00
Joey Hess
a37e0a6bc3
propellor spin
2015-01-21 23:22:42 -04:00
Joey Hess
fa66cb49d6
Added journald configuration properties.
2015-01-21 23:21:24 -04:00
Joey Hess
88082c7293
Added systemd configuration properties.
2015-01-21 22:49:03 -04:00
Joey Hess
a738a20d79
export
2015-01-19 15:15:22 -04:00
Joey Hess
603e6d3406
split out types to improve haddock for Propellor.Types
2015-01-19 15:09:03 -04:00
Joey Hess
a2a97cbeb2
avoid haddock warnings
2015-01-19 14:26:18 -04:00
Joey Hess
1ae21965aa
rename HostLike to PropAccum
...
This is more general; it doesn't need to contain a Host.
It would, for example, be possible to make Property itself be an instance
of PropAccum.
2015-01-19 14:15:49 -04:00
Joey Hess
afee550e70
Property tree
...
Properties now form a tree, instead of the flat list used before.
This simplifies propigation of Info from the Properties used inside a
container to the outer host; the Property that docks the container on the
host can just have as child properties all the inner Properties, and their
Info can then be gathered recursively. (Although in practice it still needs
to be filtered, since not all Info should propigate out of a container.)
Note that there is no change to how Properties are actually satisfied.
Just because a Property lists some child properties, this does not mean
they always have their propertySatisfy actions run. It's still up to the
parent property to run those actions.
That's necessary so that a container's properties can be satisfied inside
it, not outside. It also allows property combinators to
add the combined Properties to their childProperties list, even if,
like onChange, they don't always run the child properties at all.
Testing: I tested that the exact same Info is calculated before and after
this change, for every Host in my config file.
2015-01-18 18:46:38 -04:00
Joey Hess
042b3bee01
propellor spin
2015-01-09 21:21:06 -04:00
Joey Hess
2e2f8b4fdd
propellor spin
2015-01-08 23:08:16 -04:00
Joey Hess
5585778e54
propellor spin
2015-01-08 23:02:06 -04:00
Joey Hess
8e6e40abc4
propellor spin
2015-01-08 22:44:36 -04:00
Joey Hess
ad8e318c34
propellor spin
2015-01-08 22:01:12 -04:00
Joey Hess
660b5d7f93
propellor spin
2015-01-08 21:41:55 -04:00
Joey Hess
dd022c917b
propellor spin
2015-01-08 21:17:06 -04:00
Joey Hess
16a5f561f5
Merge Utiity modules from git-annex.
...
Except for a few that are using the other exception handling library,
that propellor has not switched to yet.
2015-01-06 19:07:40 -04:00
Joey Hess
f4a57ca27d
refactor dns settings!
2015-01-06 01:20:56 -04:00
Joey Hess
ff7f70d280
add update-server-info, so the repo has all current branches published over http
2015-01-06 01:00:48 -04:00
Joey Hess
4c2c2785c8
SSHFP records are also generated for CNAMES of hosts.
2015-01-04 21:31:44 -04:00
Joey Hess
66e42a2a5b
prep
2015-01-04 19:51:42 -04:00
Joey Hess
09e9b793dd
propellor spin
2015-01-04 19:43:06 -04:00
Joey Hess
570bcde9ed
propellor spin
2015-01-04 19:32:15 -04:00
Joey Hess
8e442f0656
DNS records for hosts with known ssh public keys now automatically include SSHFP records.
2015-01-04 19:24:18 -04:00
Joey Hess
ef2f3d33de
Fix bug that prevented deploying ssh host keys when the file for the key didn't already exist.
...
This is not a new bug.
2015-01-04 18:20:02 -04:00
Joey Hess
93e89c7200
cleanup
2015-01-04 18:12:19 -04:00
Joey Hess
ab8ff9a00e
randomHostKeys is removed from CloudAtCost.deCruft.
2015-01-04 17:15:59 -04:00
Joey Hess
fd1e01c853
avoid ever removing all host keys
2015-01-04 17:14:07 -04:00
Joey Hess
f0b6ce9702
propellor spin
2015-01-04 17:04:26 -04:00
Joey Hess
08b45ad6f6
propellor spin
2015-01-04 17:00:08 -04:00
Joey Hess
0af7629c98
propellor spin
2015-01-04 16:54:43 -04:00
Joey Hess
a2bb647827
Ssh.hostKey and Ssh.hostKeys no longer install public keys from the privdata.
...
Instead, the public keys of a host should be set using Ssh.pubKey.
2015-01-04 16:10:36 -04:00
Joey Hess
84685f24c9
Ssh.hostKeys now also installs any available SshEd25519 keys.
2015-01-04 15:59:54 -04:00
Joey Hess
f1a1d0001a
sshPubKey is renamed to Ssh.pubKey, and has an added SshKeyType parameter.
2015-01-04 15:57:27 -04:00
Joey Hess
52664e6220
sshPubKey is renamed to Ssh.pubKey
2015-01-04 15:36:53 -04:00
Joey Hess
0f41071cb5
transition docs
2015-01-04 15:22:22 -04:00
Joey Hess
ad984e74e4
propellor spin
2015-01-04 15:00:40 -04:00
Joey Hess
bb7b8e7891
add $INCLUDE of pubkeys before zone file is written, to avoid pogoing
2015-01-04 14:22:44 -04:00
Joey Hess
43e15c8add
fix serial incrementing
2015-01-04 14:17:33 -04:00
Joey Hess
f36443755e
propellor spin
2015-01-04 14:05:42 -04:00
Joey Hess
8c1006c654
propellor spin
2015-01-04 13:56:55 -04:00
Joey Hess
ce7f14b9b3
propellor spin
2015-01-04 13:52:59 -04:00
Joey Hess
bf34d6f423
propellor spin
2015-01-04 13:42:01 -04:00
Joey Hess
e67901a77b
use separate directory for dnssec files
2015-01-04 13:22:23 -04:00
Joey Hess
d6c8ddb955
resign zone if keys change
2015-01-04 13:13:06 -04:00
Joey Hess
8172f243d7
DNS WIP
2015-01-04 12:44:05 -04:00
Joey Hess
a1f61e09b8
stub signedPrimary
2015-01-03 19:10:28 -04:00
Joey Hess
4dd6596919
add DnsSec module
2015-01-03 19:10:17 -04:00
Joey Hess
932cb7c5d6
add hasPrivContentFrom
2015-01-03 19:07:59 -04:00
Joey Hess
d5cfadd899
Detect #774376 and refuse to use docker if the system is so broken that docker exec doesn't enter a chroot.
2015-01-01 15:41:31 -04:00
Joey Hess
858ded043b
more cruft from new image
2015-01-01 15:15:44 -04:00
Joey Hess
c7aac0b35e
remove screen workaround
...
Turns out elephant's oldusenet shellbox docker instance somehow had a
non-setguid screen binary. Dunno how; reinstall fixed it.
2014-12-23 15:45:35 -04:00
Joey Hess
35ccb0fac6
fix screen dir mode
2014-12-23 15:29:23 -04:00
Joey Hess
a48f5916e1
propellor spin
2014-12-23 14:22:50 -04:00
Joey Hess
b8be8c244e
propellor spin
2014-12-22 17:16:52 -04:00
Joey Hess
26a4c164e4
gitriddance
2014-12-22 15:05:05 -04:00
Joey Hess
dc36a98fc1
Revert ensureProperty warning message, too many false positives in places where Info is correctly propigated. Better approach needed.
2014-12-21 21:33:03 -04:00
Joey Hess
d194765e10
propellor spin
2014-12-21 21:14:11 -04:00
Joey Hess
23399416f1
broke up big function to describe PrivDataField
2014-12-14 16:14:05 -04:00
Joey Hess
71723ca09f
support for crypted passwords in privdata
...
* Added CryptPassword to PrivDataField, for password hashes as produced
by crypt(3).
* User.hasPassword and User.hasSomePassword will now use either
a CryptPassword or a Password from privdata, depending on which is set.
2014-12-14 15:24:10 -04:00
Joey Hess
2e2438ae66
improve haddock formating of filenames
2014-12-09 14:22:37 -04:00