hektor/nix
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: hektor:f5ed623d53adf0b250fb1f4ee390b6b21373b024
Branches Tags
hektor:main
..
compare: hektor:757d5e5c81a0c07fde0c282d2df0e4bd836c033a
Branches Tags
hektor:main

4 Commits
f5ed623d53 ... 757d5e5c81

Author SHA1 Message Date
Hektor Misplon
757d5e5c81 feat: set up 'storage' module 2026-02-22 16:43:15 +01:00
Hektor Misplon
7b13880be2 fix: resolve nix build warnings 2026-02-22 16:40:20 +01:00
Hektor Misplon
b895e85953 chore: disable syncthing module 2026-02-22 16:22:55 +01:00
Hektor Misplon
ee3b95d986 fix: remove 'nix.settings' from 'hecuba' host 2026-02-22 16:20:52 +01:00
12 changed files with 34 additions and 39 deletions
Expand all files Collapse all files

2
deploy/colmena.nix
View File

@@ -17,7 +17,7 @@ in
inputs.colmena.lib.makeHive {
meta = {
nixpkgs = import inputs.nixpkgs {
system = "x86_64-linux";
localSystem = "x86_64-linux";
};
nodeNixpkgs = builtins.mapAttrs (_: v: v.pkgs) self.nixosConfigurations;

30
flake.nix
View File

@@ -77,8 +77,10 @@
(lib.genAttrs hostDirNames (
host:
nixpkgs.lib.nixosSystem {
system = import ./hosts/${host}/system.nix;
modules = [ ./hosts/${host} ];
modules = [
./hosts/${host}
{ nixpkgs.hostPlatform = import ./hosts/${host}/system.nix; }
];
specialArgs = {
inherit inputs outputs dotsPath;
};
@@ -86,14 +88,12 @@
))
// {
sd-image-orange-pi-aarch64 = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
modules = [
"${nixpkgs}/nixos/modules/installer/sd-card/sd-image-aarch64.nix"
./images/sd-image-orange-pi-aarch64.nix
{
nixpkgs.crossSystem = {
system = "aarch64-linux";
};
nixpkgs.buildPlatform = "x86_64-linux";
nixpkgs.hostPlatform = "aarch64-linux";
}
];
specialArgs = {
@@ -101,14 +101,12 @@
};
};
sd-image-raspberry-pi-aarch64 = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
modules = [
"${nixpkgs}/nixos/modules/installer/sd-card/sd-image-aarch64.nix"
./images/sd-image-raspberry-pi-aarch64.nix
{
nixpkgs.crossSystem = {
system = "aarch64-linux";
};
nixpkgs.buildPlatform = "x86_64-linux";
nixpkgs.hostPlatform = "aarch64-linux";
}
];
specialArgs = {
@@ -130,8 +128,10 @@
};
};
apps.${system}.colmena = inputs.colmena.apps.${system}.default;
colmenaHive = import ./deploy/colmena.nix {
apps.${system}.colmena = inputs.colmena.apps.${system}.default // {
meta.description = "Colmena deployment tool";
};
colmena = import ./deploy/colmena.nix {
inherit
self
inputs
@@ -142,9 +142,11 @@
formatter.${system} = gitHooks.formatter;
devShells.${system} = gitHooks.devShells;
images.sd-image-orange-pi-aarch64 =
legacyPackages.${system} = {
sd-image-orange-pi-aarch64 =
self.nixosConfigurations.sd-image-orange-pi-aarch64.config.system.build.sdImage;
images.sd-image-raspberry-pi-aarch64 =
sd-image-raspberry-pi-aarch64 =
self.nixosConfigurations.sd-image-raspberry-pi-aarch64.config.system.build.sdImage;
};
};
}

5
git-hooks.nix
View File

@@ -10,7 +10,10 @@ let
pre-commit-check = git-hooks.lib.${system}.run {
inherit src;
hooks = {
nixfmt.enable = true;
nixfmt = {
enable = true;
package = pkgs.nixfmt;
};
statix.enable = true;
deadnix.enable = true;
};

1
home/hosts/packages.nix
View File

@@ -8,7 +8,6 @@ with pkgs;
fzf
htop
jq
nixfmt-rfc-style
nmap
nodejs_24
nvimpager

2
home/modules/browser/firefox-base.nix
View File

@@ -26,7 +26,7 @@ in
};
extensions = {
force = true;
packages = with inputs.firefox-addons.packages.${pkgs.system}; [
packages = with inputs.firefox-addons.packages.${pkgs.stdenv.hostPlatform.system}; [
duckduckgo-privacy-essentials
firefox-color
istilldontcareaboutcookies

2
home/modules/nvim.nix
View File

@@ -3,7 +3,7 @@
{
config = {
home.packages = [
inputs.nvim.packages.${pkgs.system}.nvim
inputs.nvim.packages.${pkgs.stdenv.hostPlatform.system}.nvim
];
};
}

4
hosts/andromache/default.nix
View File

@@ -35,6 +35,7 @@ in
../../modules/localization
../../modules/fonts
../../modules/ssh/hardened-openssh.nix
../../modules/storage
../../modules/stylix
(import ../../modules/secrets { inherit lib inputs config; })
../../modules/docker
@@ -86,7 +87,7 @@ in
boot.binfmt.emulatedSystems = [ "aarch64-linux" ];
environment.systemPackages = [
inputs.colmena.packages.${pkgs.system}.colmena
inputs.colmena.packages.${pkgs.stdenv.hostPlatform.system}.colmena
];
services = {
@@ -100,7 +101,6 @@ in
harden = true;
};
my.syncthing.enable = true;
networking = {
# TODO: generate unique hostId on actual host with: head -c 8 /etc/machine-id

6
hosts/astyanax/default.nix
View File

@@ -35,10 +35,10 @@ in
../../modules/localization
../../modules/fonts
../../modules/ssh/hardened-openssh.nix
../../modules/storage
../../modules/stylix
(import ../../modules/secrets { inherit lib inputs config; })
../../modules/docker
../../modules/syncthing
../../modules/nfc
];
@@ -81,7 +81,7 @@ in
};
environment.systemPackages = [
inputs.colmena.packages.${pkgs.system}.colmena
inputs.colmena.packages.${pkgs.stdenv.hostPlatform.system}.colmena
(pkgs.writeShellApplication {
name = "wol-andromache";
runtimeInputs = [ pkgs.wakeonlan ];
@@ -109,6 +109,4 @@ in
package = pkgs.plocate;
};
};
my.syncthing.enable = true;
}

11
hosts/hecuba/default.nix
View File

@@ -83,15 +83,4 @@ in
enable = true;
harden = true;
};
nix.settings = {
trusted-public-keys = [
"cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="
"astyanax:JY2qJkZUFSax47R3c1nq53AZ8GnLfNqz6mSnJ60cLZ4="
"andromache:XM4VLrEw63RB/3v/56OxzH/Yw+kKXKMBLKCb7UGAXzo="
];
auto-optimise-store = true;
keep-derivations = false;
keep-outputs = false;
};
}

1
hosts/vm/default.nix
View File

@@ -25,6 +25,7 @@ in
../../modules/x
../../modules/fonts
../../modules/ssh/hardened-openssh.nix
../../modules/storage
(import ../../modules/secrets {
inherit lib inputs config;
})

2
images/sd-image-raspberry-pi-aarch64.nix
View File

@@ -31,7 +31,7 @@ in
hardware.enableRedistributableFirmware = true;
hardware.pulseaudio.enable = true;
services.pulseaudio.enable = true;
networking.wireless.enable = true;

3
modules/storage/default.nix Normal file
View File

@@ -0,0 +1,3 @@
{
services.udisks2.enable = true;
}