motiejus/config
1
Fork 0
Code Packages Releases Activity
3,310 Commits 1 Branch 0 Tags
main
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Deployerbot Main 11f9ca0633 flake.lock: Update 
Flake lock file updates:

• Updated input 'home-manager':
    'github:nix-community/home-manager/080657a04188aca25f8a6c70a0fb2ea7e37f1865?narHash=sha256-SO7JapRy2HPhgmqiLbfnW1kMx5rakPMKZ9z3wtRLQjI%3D' (2026-03-04)
  → 'github:nix-community/home-manager/8f736f007139d7f70752657dff6a401a585d6cbc?narHash=sha256-FdrNykOoY9VStevU4zjSUdvsL9SzJTcXt4omdEDZDLk%3D' (2026-03-08)
• Updated input 'nix-index-database':
    'github:Mic92/nix-index-database/a2051ff239ce2e8a0148fa7a152903d9a78e854f?narHash=sha256-/PQ0ubBCMj/MVCWEI/XMStn55a8dIKsvztj4ZVLvUrQ%3D' (2026-03-01)
  → 'github:Mic92/nix-index-database/1c1d8ea87b047788fd7567adf531418c5da321ec?narHash=sha256-PMt48sEQ8cgCeljQ9I/32uoBq/8t8y%2B7W/nAZhf72TQ%3D' (2026-03-08)
• Updated input 'nixos-hardware':
    'github:NixOS/nixos-hardware/41c6b421bdc301b2624486e11905c9af7b8ec68e?narHash=sha256-qwcDBtrRvJbrrnv1lf/pREQi8t2hWZxVAyeMo7/E9sw%3D' (2026-02-24)
  → 'github:NixOS/nixos-hardware/3966ce987e1a9a164205ac8259a5fe8a64528f72?narHash=sha256-mUJxsNOrBMNOUJzN0pfdVJ1r2pxeqm9gI/yIKXzVVbk%3D' (2026-03-08)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/fabb8c9deee281e50b1065002c9828f2cf7b2239?narHash=sha256-YaHht/C35INEX3DeJQNWjNaTcPjYmBwwjFJ2jdtr%2B5U%3D' (2026-03-04)
  → 'github:NixOS/nixpkgs/71caefce12ba78d84fe618cf61644dce01cf3a96?narHash=sha256-yf3iYLGbGVlIthlQIk5/4/EQDZNNEmuqKZkQssMljuw%3D' (2026-03-06)
• Updated input 'nixpkgs-unstable':
    'github:NixOS/nixpkgs/80bdc1e5ce51f56b19791b52b2901187931f5353?narHash=sha256-QKyJ0QGWBn6r0invrMAK8dmJoBYWoOWy7lN%2BUHzW1jc%3D' (2026-03-04)
  → 'github:NixOS/nixpkgs/aca4d95fce4914b3892661bcb80b8087293536c6?narHash=sha256-E1bxHxNKfDoQUuvriG71%2Bf%2Bs/NT0qWkImXsYZNFFfCs%3D' (2026-03-06)
• Updated input 'nur':
    'github:nix-community/NUR/edfffc507af21949e5a39c7aa71d1231436c1030?narHash=sha256-pdHXxEvp3CmPrUVyjJiaBFfOEHaeGv7Z7/tczaL9DqY%3D' (2026-03-07)
  → 'github:nix-community/NUR/ff8832affe32415725b6c3049343e1afa06c64d5?narHash=sha256-13ExTjImBJ6%2BOqowfEwC/uzfPX9mfQNmkrZ3SSQOmhk%3D' (2026-03-09)
• Updated input 'nur/nixpkgs':
    'github:nixos/nixpkgs/80bdc1e5ce51f56b19791b52b2901187931f5353?narHash=sha256-QKyJ0QGWBn6r0invrMAK8dmJoBYWoOWy7lN%2BUHzW1jc%3D' (2026-03-04)
  → 'github:nixos/nixpkgs/aca4d95fce4914b3892661bcb80b8087293536c6?narHash=sha256-E1bxHxNKfDoQUuvriG71%2Bf%2Bs/NT0qWkImXsYZNFFfCs%3D' (2026-03-06)
• Updated input 'pre-commit-hooks':
    'github:cachix/pre-commit-hooks.nix/39f53203a8458c330f61cc0759fe243f0ac0d198?narHash=sha256-XmjUDG/J8Z8lY5DVNVUf5aoZGc400FxcjsNCqHKiKtc%3D' (2026-03-04)
  → 'github:cachix/pre-commit-hooks.nix/8baab586afc9c9b57645a734c820e4ac0a604af9?narHash=sha256-JDqZMgxUTCq85ObSaFw0HhE%2BlvdOre1lx9iI6vYyOEs%3D' (2026-03-07)
2026-03-09 08:55:08 +00:00
hosts
rolandas.jakstys.lt
2026-03-01 21:33:58 +02:00
jakstys.lt
jakstys.lt: +Rolandas
2026-03-02 15:54:07 +00:00
modules
rolandas.jakstys.lt
2026-03-01 21:33:58 +02:00
pkgs
codex; allow more tokens in claudes
2026-02-26 12:11:50 +02:00
scripts
nixos
2026-01-28 20:34:48 +00:00
secrets
sqq2-desk2 -> vno2-desk2
2025-12-07 19:19:15 +02:00
shared
rm delta
2026-02-19 20:36:16 +00:00
.envrc
direnv: bump to 3.0.4
2024-03-10 17:20:09 +02:00
.gitattributes
Configure git repository for gpg file diff.
2023-01-03 13:41:30 +02:00
.gitignore
enable some checks in pre-commit hooks
2023-10-02 00:00:30 +03:00
data.nix
dns: +rolandas
2026-03-01 21:32:43 +02:00
dhcp-proxy.md
dhcp-proxy plan
2026-02-10 07:15:42 +00:00
flake.lock
flake.lock: Update
2026-03-09 08:55:08 +00:00
flake.nix
remove unused override
2026-02-20 17:46:11 +02:00
LICENSE
relicense
2024-01-15 18:18:45 +02:00
README.md
a bit more cpu:
2026-02-09 12:30:02 +00:00
secrets.nix
sqq2-desk2 -> vno2-desk2
2025-12-07 19:19:15 +02:00

README.md

Config

Flakes:

$ deploy --interactive '#fwminex'

$ nix build .#deploy.nodes.fra1-c.profiles.system.path

Other:

$ nix build .#nixosConfigurations.vno3-rp3b.config.system.build.toplevel
$ nix eval .#nixosConfigurations.fwminex.config.services.nsd
$ nix why-depends .#nixosConfigurations.vno1-gdrx.config.system.build.toplevel .#legacyPackages.x86_64-linux.mbedtls_2

Encoding host-only secrets

Encode a secret on host:

rage -e -r "$(cat /etc/ssh/ssh_host_ed25519_key.pub)" -o secret.age /path/to/plaintext

Decode a secret on host (to test things out):

rage -d -i /etc/ssh/ssh_host_ed25519_key secret.age

Borg

BORG_PASSCOMMAND="cat /run/agenix/borgbackup-fwminex" borg --remote-path=borg1 list zh2769@zh2769.rsync.net:fwminex.jakst.vpn-home-motiejus-annex2

netboot

  1. dmesg | grep enp0 <- find the usb interface
  2. Disable power saving: echo -1 | sudo tee /sys/bus/usb/devices/2-1/power/autosuspend.

Testing netboot

sudo ip tuntap add dev tap0 mode tap user "$USER"
sudo ip link set dev tap0 up
sudo ip link set dev tap0 master br0
sudo brctl addif br0 tap0

efi:

qemu-system-x86_64 \
    -enable-kvm \
    -cpu host \
    -smp 4 \
    -m 1024 \
    -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
    -device e1000,netdev=net0 \
    -boot order=n \
    -bios $(nix build .#nixosConfigurations.mtworx.pkgs.OVMF.fd --no-link --print-out-paths)/FV/OVMF.fd

bios:

qemu-system-x86_64 \
    -enable-kvm \
    -cpu host \
    -smp 4 \
    -m 8192 \
    -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
    -device e1000,netdev=net0 \
    -boot order=n
View Git Blame Copy Permalink
Description
My configuration. Probably nothing to look for here.
Readme 6.7 MiB
Languages
Nix 81.6%
Lua 10.1%
Shell 3.4%
Go 3.1%
Vim Script 0.9%
Other 0.9%