motiejus/config
1
Fork 0
Code Packages Releases Activity
3,463 Commits 1 Branch 0 Tags
main
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Deployerbot Main 1254207ca5 flake.lock: Update 
Flake lock file updates:

• Updated input 'nur':
    'github:nix-community/NUR/bb720b1e7b9a16bd972a25528e635f363591ba3f?narHash=sha256-ssvviMCfYZG3PKXTuxq/9TiML4aI9dqGOA73pBdSq6A%3D' (2026-05-06)
  → 'github:nix-community/NUR/2237d585a2173a7b1cb839cb2ef7c64afb91738e?narHash=sha256-yu4bxXbNT1h4hkiHV9aQtQror5pMvO37kPw%2BQeOkr1w%3D' (2026-05-07)
• Updated input 'zig':
    'github:mitchellh/zig-overlay/e58052b0deeacf7d7731467355fc8c8a610c7a35?narHash=sha256-bGgaMaBphP4iAZMNII0Yu%2BUvNVF/i7N%2BdFBgYQV9rg0%3D' (2026-05-05)
  → 'github:mitchellh/zig-overlay/05e2d0bc25fba6d67b3439d864b81cb96dcbce30?narHash=sha256-BbG2mZ5FYBhdgujRAgcIreYGt1UkvVHqPX7aV1Y1ZlA%3D' (2026-05-06)
2026-05-07 06:00:06 +00:00
hosts
vno1-gdrx: disable ipxe for now
2026-05-05 10:29:34 +03:00
jakstys.lt
jakstys.lt: +Rolandas
2026-03-02 15:54:07 +00:00
modules
ghostty
2026-05-04 18:26:03 +03:00
pkgs
screen savers
2026-04-14 15:08:06 +03:00
scripts
nixos
2026-01-28 20:34:48 +00:00
secrets
ssh from macworx
2026-04-08 08:28:40 +00:00
shared
clean up gui
2026-04-27 08:15:21 +00:00
.envrc
direnv: bump to 3.0.4
2024-03-10 17:20:09 +02:00
.gitattributes
Configure git repository for gpg file diff.
2023-01-03 13:41:30 +02:00
.gitignore
enable some checks in pre-commit hooks
2023-10-02 00:00:30 +03:00
data.nix
trying to throttle caddy/gitea
2026-05-03 20:22:51 +00:00
dhcp-proxy.md
dhcp-proxy plan
2026-02-10 07:15:42 +00:00
flake.lock
flake.lock: Update
2026-05-07 06:00:06 +00:00
flake.nix
no dotnet
2026-04-17 10:14:46 +03:00
LICENSE
relicense
2024-01-15 18:18:45 +02:00
README.md
a bit more cpu:
2026-02-09 12:30:02 +00:00
secrets.nix
ssh from macworx
2026-04-08 08:28:40 +00:00

README.md

Config

Flakes:

$ deploy --interactive '#fwminex'

$ nix build .#deploy.nodes.fra1-c.profiles.system.path

Other:

$ nix build .#nixosConfigurations.vno3-rp3b.config.system.build.toplevel
$ nix eval .#nixosConfigurations.fwminex.config.services.nsd
$ nix why-depends .#nixosConfigurations.vno1-gdrx.config.system.build.toplevel .#legacyPackages.x86_64-linux.mbedtls_2

Encoding host-only secrets

Encode a secret on host:

rage -e -r "$(cat /etc/ssh/ssh_host_ed25519_key.pub)" -o secret.age /path/to/plaintext

Decode a secret on host (to test things out):

rage -d -i /etc/ssh/ssh_host_ed25519_key secret.age

Borg

BORG_PASSCOMMAND="cat /run/agenix/borgbackup-fwminex" borg --remote-path=borg1 list zh2769@zh2769.rsync.net:fwminex.jakst.vpn-home-motiejus-annex2

netboot

  1. dmesg | grep enp0 <- find the usb interface
  2. Disable power saving: echo -1 | sudo tee /sys/bus/usb/devices/2-1/power/autosuspend.

Testing netboot

sudo ip tuntap add dev tap0 mode tap user "$USER"
sudo ip link set dev tap0 up
sudo ip link set dev tap0 master br0
sudo brctl addif br0 tap0

efi:

qemu-system-x86_64 \
    -enable-kvm \
    -cpu host \
    -smp 4 \
    -m 1024 \
    -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
    -device e1000,netdev=net0 \
    -boot order=n \
    -bios $(nix build .#nixosConfigurations.mtworx.pkgs.OVMF.fd --no-link --print-out-paths)/FV/OVMF.fd

bios:

qemu-system-x86_64 \
    -enable-kvm \
    -cpu host \
    -smp 4 \
    -m 8192 \
    -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
    -device e1000,netdev=net0 \
    -boot order=n
View Git Blame Copy Permalink
Description
My configuration. Probably nothing to look for here.
Readme 7.5 MiB
Languages
Nix 82.3%
Lua 9.7%
Shell 3.2%
Go 3%
Vim Script 0.9%
Other 0.9%