2007-01-16 16:09:43 +00:00
|
|
|
{config, pkgs, upstartJobs, systemPath, wrapperDir}:
|
2006-12-11 15:32:10 +00:00
|
|
|
|
2007-01-16 16:09:43 +00:00
|
|
|
let
|
|
|
|
|
|
|
|
optional = option: file:
|
|
|
|
if config.get option then [file] else [];
|
|
|
|
|
|
|
|
in
|
|
|
|
|
2006-12-11 15:32:10 +00:00
|
|
|
import ../helpers/make-etc.nix {
|
|
|
|
inherit (pkgs) stdenv;
|
|
|
|
|
|
|
|
configFiles = [
|
|
|
|
|
|
|
|
{ # TCP/UDP port assignments.
|
|
|
|
source = pkgs.iana_etc + "/etc/services";
|
|
|
|
target = "services";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # IP protocol numbers.
|
|
|
|
source = pkgs.iana_etc + "/etc/protocols";
|
|
|
|
target = "protocols";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # Hostname-to-IP mappings.
|
|
|
|
source = ./etc/hosts;
|
|
|
|
target = "hosts";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # Name Service Switch configuration file. Required by the C library.
|
|
|
|
source = ./etc/nsswitch.conf;
|
|
|
|
target = "nsswitch.conf";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # Configuration file for the system logging daemon.
|
|
|
|
source = ./etc/syslog.conf;
|
|
|
|
target = "syslog.conf";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # Friendly greeting on the virtual consoles.
|
|
|
|
source = ./etc/issue;
|
|
|
|
target = "issue";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # Configuration for pwdutils (login, passwd, useradd, etc.).
|
|
|
|
# You cannot login without it!
|
|
|
|
source = ./etc/login.defs;
|
|
|
|
target = "login.defs";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # The Upstart events defined above.
|
|
|
|
source = upstartJobs + "/etc/event.d";
|
|
|
|
target = "event.d";
|
|
|
|
}
|
|
|
|
|
|
|
|
{ # Configuration for passwd and friends (e.g., hash algorithm
|
|
|
|
# for /etc/passwd).
|
|
|
|
source = ./etc/default/passwd;
|
|
|
|
target = "default/passwd";
|
|
|
|
}
|
|
|
|
|
2006-12-22 17:28:25 +00:00
|
|
|
{ # Dhclient hooks for emitting ip-up/ip-down events.
|
|
|
|
source = pkgs.substituteAll {
|
|
|
|
src = ./etc/dhclient-exit-hooks;
|
|
|
|
inherit (pkgs) upstart;
|
|
|
|
};
|
|
|
|
target = "dhclient-exit-hooks";
|
|
|
|
}
|
2007-01-15 14:43:56 +00:00
|
|
|
|
|
|
|
{ # Script executed when the shell starts.
|
|
|
|
source = pkgs.substituteAll {
|
|
|
|
src = ./etc/profile.sh;
|
|
|
|
inherit systemPath wrapperDir;
|
|
|
|
inherit (pkgs) kernel;
|
2007-01-17 12:33:23 +00:00
|
|
|
timeZone = config.get ["time" "timeZone"];
|
2007-01-15 14:43:56 +00:00
|
|
|
};
|
|
|
|
target = "profile";
|
|
|
|
}
|
2007-01-16 16:09:43 +00:00
|
|
|
|
2006-12-11 15:32:10 +00:00
|
|
|
]
|
|
|
|
|
2007-01-16 16:09:43 +00:00
|
|
|
# LDAP configuration.
|
|
|
|
++ (optional ["users" "ldap" "enable"] {
|
|
|
|
source = import etc/ldap.conf.nix {
|
|
|
|
inherit (pkgs) writeText;
|
|
|
|
inherit config;
|
|
|
|
};
|
|
|
|
target = "ldap.conf";
|
|
|
|
})
|
|
|
|
|
2006-12-11 15:32:10 +00:00
|
|
|
# A bunch of PAM configuration files for various programs.
|
|
|
|
++ (map
|
|
|
|
(program:
|
|
|
|
{ source = pkgs.substituteAll {
|
|
|
|
src = ./etc/pam.d + ("/" + program);
|
2007-01-16 16:09:43 +00:00
|
|
|
inherit (pkgs) pam_unix2;
|
|
|
|
pam_ldap =
|
|
|
|
if config.get ["users" "ldap" "enable"]
|
|
|
|
then pkgs.pam_ldap
|
|
|
|
else "/no-such-path";
|
2007-01-16 22:25:28 +00:00
|
|
|
inherit (pkgs.xorg) xauth;
|
2006-12-11 15:32:10 +00:00
|
|
|
};
|
|
|
|
target = "pam.d/" + program;
|
|
|
|
}
|
|
|
|
)
|
|
|
|
[
|
|
|
|
"login"
|
2007-01-11 15:32:48 +00:00
|
|
|
"su"
|
2006-12-16 21:48:12 +00:00
|
|
|
"other"
|
2006-12-11 15:32:10 +00:00
|
|
|
"passwd"
|
2006-12-16 21:48:12 +00:00
|
|
|
"shadow"
|
|
|
|
"sshd"
|
2006-12-11 15:32:10 +00:00
|
|
|
"useradd"
|
2007-01-16 13:30:59 +00:00
|
|
|
"common-auth"
|
|
|
|
"common-account"
|
|
|
|
"common-password"
|
|
|
|
"common-session"
|
2006-12-11 15:32:10 +00:00
|
|
|
]
|
|
|
|
);
|
|
|
|
}
|