config

NixOS config
Log | Files | Refs | README | LICENSE

README.md (2168B) - Raw

      1 Config
      2 ------
      3 
      4 Flakes:
      5 
      6     $ deploy --interactive '#fwminex'
      7 
      8     $ nix build .#deploy.nodes.fra1-c.profiles.system.path
      9 
     10 Other:
     11 
     12     $ nix build .#nixosConfigurations.vno3-rp3b.config.system.build.toplevel
     13     $ nix eval .#nixosConfigurations.fwminex.config.services.nsd
     14     $ nix why-depends .#nixosConfigurations.vno1-gdrx.config.system.build.toplevel .#legacyPackages.x86_64-linux.mbedtls_2
     15 
     16 git
     17 -------
     18 
     19 Create a new repo:
     20 
     21     ssh fwminex 'sudo -u git git-new-repo motiejus/newrepo "Short description"'
     22 
     23 Wipe stagit cache:
     24 
     25     sudo rm -rf /var/www/git.jakstys.lt/{.cache,motiejus/*/{commit,blob,tree,raw}}
     26 
     27 Install hook and regenerate all repos:
     28 
     29     for r in /var/lib/git/motiejus/*.git; do sudo -u git git-new-repo "motiejus/$(basename "$r" .git)"; done
     30     for r in /var/lib/git/motiejus/*.git; do (cd "$r" && sudo -u git hooks/post-receive); done
     31 
     32 Encoding host-only secrets
     33 --------------------------
     34 
     35 Encode a secret on host:
     36 
     37     rage -e -r "$(cat /etc/ssh/ssh_host_ed25519_key.pub)" -o secret.age /path/to/plaintext
     38 
     39 Decode a secret on host (to test things out):
     40 
     41     rage -d -i /etc/ssh/ssh_host_ed25519_key secret.age
     42 
     43 Borg
     44 ----
     45 
     46     BORG_PASSCOMMAND="cat /run/agenix/borgbackup-fwminex" borg --remote-path=borg1 list zh2769@zh2769.rsync.net:fwminex.jakst.vpn-home-motiejus-annex2
     47 
     48 netboot
     49 -------
     50 
     51 1. `dmesg | grep enp0` <- find the usb interface
     52 2. Disable power saving: `echo -1 | sudo tee /sys/bus/usb/devices/2-1/power/autosuspend`.
     53 
     54 Testing netboot
     55 ---------------
     56 
     57 ```
     58 sudo ip tuntap add dev tap0 mode tap user "$USER"
     59 sudo ip link set dev tap0 up
     60 sudo ip link set dev tap0 master br0
     61 sudo brctl addif br0 tap0
     62 ```
     63 
     64 efi:
     65 
     66 ```
     67 qemu-system-x86_64 \
     68     -enable-kvm \
     69     -cpu host \
     70     -smp 4 \
     71     -m 1024 \
     72     -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
     73     -device e1000,netdev=net0 \
     74     -boot order=n \
     75     -bios $(nix build .#nixosConfigurations.vno1-gdrx.pkgs.OVMF.fd --no-link --print-out-paths)/FV/OVMF.fd
     76 ```
     77 
     78 bios:
     79 
     80 ```
     81 qemu-system-x86_64 \
     82     -enable-kvm \
     83     -cpu host \
     84     -smp 4 \
     85     -m 8192 \
     86     -netdev tap,id=net0,ifname=tap0,script=no,downscript=no \
     87     -device e1000,netdev=net0 \
     88     -boot order=n
     89 ```