motiejus/config
1
Fork 0
Code Packages Releases Activity
3,307 Commits 1 Branch 0 Tags
main
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Deployerbot Main a78b111595 flake.lock: Update 
Flake lock file updates:

• Updated input 'home-manager':
    'github:nix-community/home-manager/a07a44a839eb036e950bf397d9b782916f8dcab3?narHash=sha256-8C%2By46xA9bxcchj9GeDPJaRUDApaA3sy2fhJr1bTbUw%3D' (2026-03-01)
  → 'github:nix-community/home-manager/080657a04188aca25f8a6c70a0fb2ea7e37f1865?narHash=sha256-SO7JapRy2HPhgmqiLbfnW1kMx5rakPMKZ9z3wtRLQjI%3D' (2026-03-04)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/c581273b8d5bdf1c6ce7e0a54da9841e6a763913?narHash=sha256-ywy9troNEfpgh0Ee%2BzaV1UTgU8kYBVKtvPSxh6clYGU%3D' (2026-03-02)
  → 'github:NixOS/nixpkgs/fabb8c9deee281e50b1065002c9828f2cf7b2239?narHash=sha256-YaHht/C35INEX3DeJQNWjNaTcPjYmBwwjFJ2jdtr%2B5U%3D' (2026-03-04)
• Updated input 'nur':
    'github:nix-community/NUR/a62c064fa91a9e1f062efe5a549db6ae80c73a8d?narHash=sha256-SeUDrzA1b9F2bnCak19BWGBFhdtDAtC%2BgEmbxjVFGGo%3D' (2026-03-04)
  → 'github:nix-community/NUR/6ce6e11abe20fcf579e523e274e75bd66cee8765?narHash=sha256-HGssAcJ9FuDI5LMKxwOw/SGIyUn99EWbCxj%2BqrhtLGs%3D' (2026-03-05)
• Updated input 'pre-commit-hooks':
    'github:cachix/pre-commit-hooks.nix/6e34e97ed9788b17796ee43ccdbaf871a5c2b476?narHash=sha256-%2BeXlIc4/7dE6EcPs9a2DaSY3fTA9AE526hGqkNID3Wg%3D' (2026-02-25)
  → 'github:cachix/pre-commit-hooks.nix/39f53203a8458c330f61cc0759fe243f0ac0d198?narHash=sha256-XmjUDG/J8Z8lY5DVNVUf5aoZGc400FxcjsNCqHKiKtc%3D' (2026-03-04)
2026-03-05 07:00:24 +00:00
hosts
rolandas.jakstys.lt
2026-03-01 21:33:58 +02:00
jakstys.lt
jakstys.lt: +Rolandas
2026-03-02 15:54:07 +00:00
modules
rolandas.jakstys.lt
2026-03-01 21:33:58 +02:00
pkgs
codex; allow more tokens in claudes
2026-02-26 12:11:50 +02:00
scripts
nixos
2026-01-28 20:34:48 +00:00
secrets
sqq2-desk2 -> vno2-desk2
2025-12-07 19:19:15 +02:00
shared
rm delta
2026-02-19 20:36:16 +00:00
.envrc
direnv: bump to 3.0.4
2024-03-10 17:20:09 +02:00
.gitattributes
Configure git repository for gpg file diff.
2023-01-03 13:41:30 +02:00
.gitignore
enable some checks in pre-commit hooks
2023-10-02 00:00:30 +03:00
data.nix
dns: +rolandas
2026-03-01 21:32:43 +02:00
dhcp-proxy.md
dhcp-proxy plan
2026-02-10 07:15:42 +00:00
flake.lock
flake.lock: Update
2026-03-05 07:00:24 +00:00
flake.nix
remove unused override
2026-02-20 17:46:11 +02:00
LICENSE
relicense
2024-01-15 18:18:45 +02:00
README.md
a bit more cpu:
2026-02-09 12:30:02 +00:00
secrets.nix
sqq2-desk2 -> vno2-desk2
2025-12-07 19:19:15 +02:00

README.md

Config

Flakes:

$ deploy --interactive '#fwminex'

$ nix build .#deploy.nodes.fra1-c.profiles.system.path

Other:

$ nix build .#nixosConfigurations.vno3-rp3b.config.system.build.toplevel
$ nix eval .#nixosConfigurations.fwminex.config.services.nsd
$ nix why-depends .#nixosConfigurations.vno1-gdrx.config.system.build.toplevel .#legacyPackages.x86_64-linux.mbedtls_2

Encoding host-only secrets

Encode a secret on host:

rage -e -r "$(cat /etc/ssh/ssh_host_ed25519_key.pub)" -o secret.age /path/to/plaintext

Decode a secret on host (to test things out):

rage -d -i /etc/ssh/ssh_host_ed25519_key secret.age

Borg

BORG_PASSCOMMAND="cat /run/agenix/borgbackup-fwminex" borg --remote-path=borg1 list zh2769@zh2769.rsync.net:fwminex.jakst.vpn-home-motiejus-annex2

netboot

  1. dmesg | grep enp0 <- find the usb interface
  2. Disable power saving: echo -1 | sudo tee /sys/bus/usb/devices/2-1/power/autosuspend.

Testing netboot

sudo ip tuntap add dev tap0 mode tap user "$USER"
sudo ip link set dev tap0 up
sudo ip link set dev tap0 master br0
sudo brctl addif br0 tap0

efi:

qemu-system-x86_64 \
    -enable-kvm \
    -cpu host \
    -smp 4 \
    -m 1024 \
    -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
    -device e1000,netdev=net0 \
    -boot order=n \
    -bios $(nix build .#nixosConfigurations.mtworx.pkgs.OVMF.fd --no-link --print-out-paths)/FV/OVMF.fd

bios:

qemu-system-x86_64 \
    -enable-kvm \
    -cpu host \
    -smp 4 \
    -m 8192 \
    -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
    -device e1000,netdev=net0 \
    -boot order=n
View Git Blame Copy Permalink
Description
My configuration. Probably nothing to look for here.
Readme 6.7 MiB
Languages
Nix 81.6%
Lua 10.1%
Shell 3.4%
Go 3.1%
Vim Script 0.9%
Other 0.9%