summaryrefslogtreecommitdiff
path: root/gnu/services/virtualization.scm
Commit message (Expand)AuthorAgeFilesLines
* services: guix: Make /etc/guix/acl really declarative by default.•••Fixes <https://bugs.gnu.org/39819>. Reported by Maxim Cournoyer <maxim.cournoyer@gmail.com>. * gnu/services/base.scm (substitute-key-authorization): Symlink DEFAULT-ACL to /etc/guix/acl unconditionally. Add code to optionally back up /etc/guix/acl if it was possibly modified by hand. * doc/guix.texi (Base Services): Clarify the effect of setting 'authorize-keys?' to true. Mention the backup. Give an example showing how to authorize substitutes from another server. Ludovic Courtès2020-10-251-1/+10
* services: hurd-vm: Add 'gdb-minimal' to the default OS.•••* gnu/services/virtualization.scm (%hurd-vm-operating-system)[packages]: New field. Ludovic Courtès2020-10-091-0/+4
* services: hurd-vm: Add childhurd user to kvm group.•••This is a follow-up to commit d692ebf98077d6b651d426aba92bf2a38599c4dc. * gnu/services/virtualization.scm (%hurd-vm-accounts)[supplementary-groups]: Add ’kvm’. * gnu/services/virtualization.scm (hurd-vm-shepherd-service): Use #:group "kvm" Jan (janneke) Nieuwenhuizen2020-09-301-1/+4
* services: virtualization: Use a compressed qcow2 hurd disk-image.•••* gnu/services/virtualization.scm (hurd-vm-disk-image): Use 'compressed-qcow2 format. Mathieu Othacehe2020-09-301-0/+1
* services: secret-service: Add initial client/server handshake.•••This allows the client running on the host to know when it's actually connect to the server running in the guest. Failing that, the client would connect right away to QEMU and send secrets even though the server is not running yet in the guest, which is unreliable. * gnu/build/secret-service.scm (secret-service-send-secrets): Add #:handshake-timeout. Read from SOCK an initial message from the server. Return #f on error. (secret-service-receive-secrets): Send 'secret-service-server' message to the client. Close SOCK upon timeout. * gnu/services/virtualization.scm (hurd-vm-shepherd-service): 'start' method returns #f when 'secret-service-send-secrets' returns #f. Ludovic Courtès2020-09-291-2/+9
* services: secret-service: Move instance last in the list of services.•••* gnu/services/virtualization.scm (secret-service-operating-system): Add the SECRET-SERVICE-TYPE instance to the end of the list. Ludovic Courtès2020-09-291-2/+6
* services: hurd-vm: Pass "-no-reboot" when spawning the Hurd VM.•••* gnu/services/virtualization.scm (hurd-vm-shepherd-service)[vm-command]: Add "--no-reboot". Ludovic Courtès2020-09-291-1/+6
* services: hurd-vm: Initialize the guest's SSH/Guix keys at activation time.•••* gnu/services/virtualization.scm (initialize-hurd-vm-substitutes) (hurd-vm-activation): New procedures. (hurd-vm-service-type)[extensions]: Add ACTIVATION-SERVICE-TYPE extension. * doc/guix.texi (Transparent Emulation with QEMU): Mention GNU/Hurd. (The Hurd in a Virtual Machine): Explain which files are automatically installed and mention offloading. Ludovic Courtès2020-09-291-1/+66
* services: hurd-vm: Check whether /dev/kvm exists at run time.•••This change allows a childhurd to run within Guix System in a VM. * gnu/services/virtualization.scm (hurd-vm-shepherd-service)[vm-command]: Stage the 'file-exists?' call. Ludovic Courtès2020-09-291-7/+8
* services: childhurd: Tweak description.•••* gnu/services/virtualization.scm (hurd-vm-service-type)[description]: Mention "childhurd". Ludovic Courtès2020-09-291-1/+2
* services: hurd-vm: Run QEMU as an unprivileged user.•••Until qemu was running as "root", which is unnecessary. * gnu/services/virtualization.scm (%hurd-vm-accounts): New variable. (hurd-vm-service-type)[extensions]: Add ACCOUNT-SERVICE-TYPE extension. Ludovic Courtès2020-09-291-13/+30
* services: childhurd: Always include the secret-service.•••* gnu/services/virtualization.scm (secret-service-operating-system): New procedure. (hurd-vm-disk-image): Use it to ensure a Childhurd always includes the secret-service. (%hurd-vm-operating-system): Remove secret-service. Co-authored-by: Ludovic Courtès <ludo@gnu.org> Jan (janneke) Nieuwenhuizen2020-09-021-4/+11
* services: childhurd: Support installing secrets from the host.•••* gnu/services/virtualization.scm (%hurd-vm-operating-system): Add secret-service. (hurd-vm-shepherd-service): Use it to install secrets. * doc/guix.texi (The Hurd in a Virtual Machine): Document it. Jan (janneke) Nieuwenhuizen2020-09-011-11/+49
* services: Add secret-service-type.•••This adds a "secret-service" that can be added to a Childhurd VM to receive out-of-band secrets (keys) sent from the host. Co-authored-by: Ludovic Courtès <ludo@gnu.org> * gnu/services/virtualization.scm (secret-service-activation): New procedure. (secret-service-type): New variable. * gnu/build/secret-service.scm: New file. * gnu/local.mk (GNU_SYSTEM_MODULES): Add it. Jan (janneke) Nieuwenhuizen2020-09-011-1/+28
* services: virtualization: Export hurd-vm-configuration accessors.•••* gnu/services/virtualization.scm (hurd-vm-id, hurd-vm-options): Rename export to ... (hurd-vm-configuration-id, hurd-vm-configuration-options): ... these correct accessor names. (hurd-vm-configuration?, hurd-vm-configuration-os, hurd-vm-configuration-qemu, hurd-vm-configuration-image, hurd-vm-configuration-disk-size, hurd-vm-configuration-memory-size, hurd-vm-configuration-options, hurd-vm-configuration-id, hurd-vm-configuration-net-options): Export record predicate and accessors. Jan (janneke) Nieuwenhuizen2020-06-281-2/+9
* services: childhurd: Adjust for hurd-disk-image move.•••This is a follow-up to commit b904b59ce592c89dfb4675a8c06757afed6738a0. * gnu/services/virtualization.scm: Import (gnu system images hurd). Marius Bakke2020-06-251-0/+1
* services: childhurd: Support more than one instance.•••* gnu/services/virtualization.scm (<hurd-vm-configuration>)[options]: Remove "--hda" option. [id,net-options]: New fields. (hurd-vm-net-options): New procedure. Parameterize port forwarding with ID. * gnu/services/virtualization.scm (hurd-vm-shepherd-service): Use them. Parameterize provision with ID, if set. Hardcode "--hda" option for image. * doc/guix.texi (Virtualization Services): Document new fields. Update for hardcoding of "--hda". Jan (janneke) Nieuwenhuizen2020-06-211-11/+32
* services: Add 'hurd-vm service-type'.•••* gnu/services/virtualization.scm (hurd-vm-shepherd-service, hurd-vm-disk-image): New procedures. (%hurd-vm-operating-system, hurd-vm-service-type): New variables. (<hurd-vm-configuration>): New record type. * doc/guix.texi (Virtualization Services): Document it. * gnu/services/shepherd.scm (scm->go): Use let-system, remove FIXME. Fixes fixes cross-building of shepherd modules for the Hurd image. Jan (janneke) Nieuwenhuizen2020-06-141-7/+117
* services: libvirt-configuration: Fix grammar of "allows to select" to "allows•••selecting". * gnu/services/virtualization (libvirt-configuration): Fix grammar. Vagrant Cascadian2020-04-121-1/+1
* services: virtualization: Add riscv32 and riscv64 to qemu platforms.•••* gnu/services/virtualization (%riscv32): New variable. (%riscv64): New variable. (%qemu-platforms): Add riscv32 and riscv64. Vagrant Cascadian2020-02-011-1/+11
* services: libvirtd: Provide ip binary at runtime.•••* gnu/services/virtualization.scm (libvirt-shepherd-service): Add sbin to the PATH variable, as ip binary is installed there. Signed-off-by: Ludovic Courtès <ludo@gnu.org> Miguel Ángel Arruga Vivas2019-11-051-2/+4
* services: virtualization: Change libvirtd use syslog by default.•••As defaulting by stderr, along with the shepherd service not directing the output to a log file makes seeing the output difficult, compared to logging to syslog. * gnu/services/virtualization.scm (libvirt-configuration)[log-outputs]: Change default from "3:stderr" to "3:syslog:libvirtd". Christopher Baines2019-09-211-1/+1
* services: libvirtd: Use '/run/current-system/profile/bin' as PATH.•••This is a followup to ef640db2f509f51ebfe3a6a66ba837ef3103bbb7. * gnu/services/virtualization.scm (libvirt-shepherd-service): Set '#:environment-variables' for 'make-forkexec-constructor'. 宋文武2019-09-111-1/+4
* gnu: libvirt: Don't wrap with PATH.•••This reverts commit 903e051a71467bc96a054c9b4ed89348fdae8977 to fix <https://bugs.gnu.org/31365>. The full path of the 'ip' command is already embedded, and we want to search 'qemu' in PATH. * gnu/packages/virtualization.scm (libvirt): Remove 'wrap-libvirtd phase. Add configure flags to run qemu as 'nobody:kvm'. * gnu/services/virtualization.scm (libvirt-service-type): Add 'qemu' to the system profile. 宋文武2019-09-111-2/+4
* gnu: services: Export virtlog-configuration.•••* gnu/services/virtualization.scm (virtlog-configuration): Export. Julien Lepiller2018-07-141-0/+1
* services: qemu-binfmt: Extend guix-daemon with extra chroot directories.•••Fixes <https://bugs.gnu.org/20239>. * gnu/services/virtualization.scm (<qemu-binfmt-configuration>)[guix-support?]: New field. (qemu-binfmt-guix-chroot): New procedure. (qemu-binfmt-service-type)[extensions]: Add GUIX-SERVICE-TYPE. * doc/guix.texi (Virtualization Services): Document 'guix-support?'. (Additional Build Options): Mention binfmt_misc and offloading under '--system'. Ludovic Courtès2018-01-111-2/+19
* services: Add qemu-binfmt.•••* gnu/services/virtualization.scm (<qemu-platform>): New record type. (bv): New macro. (%i386, %i486, %alpha, %arm, %armeb, %sparc, %sparc32plus) (%ppc, %ppc64, %ppc64le, %m68k, %mips, %mipsel, %mipsn32el) (%mips64, %mips64el, %sh4, %sh4eb, %s390x, %aarch64, %hppa) (%qemu-platforms): New variables. (lookup-qemu-platforms): New procedure. (<qemu-binfmt-configuration>): New record type. (qemu-platform->binfmt): New procedures. (%binfmt-mount-point, %binfmt-register-file, %binfmt-file-system) (qemu-binfmt-service-type): New variables. (qemu-binfmt-shepherd-services): New procedures. * doc/guix.texi (Virtualization Services): Add "Transparent Emulation with QEMU" heading. binfmt fixlet Ludovic Courtès2018-01-111-1/+249
* services: Add libvirt services•••* gnu/services/virtualization.scm: New file. * doc/guix.texi (Virtualization Services): Document it. * gnu/local.mk (GNU_SYSTEM_MODULES): Add it. Signed-off-by: Christopher Baines <mail@cbaines.net> Ryan Moe2017-08-231-0/+492