nix-config/hosts/rpi-netboot/default.nix

{ hostRegistry, nixpkgs, config, lib, pkgs, modulesPath, ... }:

{
  c3d2 = {
    isInHq = true;
    mergeHostsFile = true;
    hq.interface = "eth0";
    hq.statistics.enable = false;
    audioServer.enable = true;
    k-ot.enable = true;
    autoUpdate = false;
    hq.journalToMqtt = false;
  };

  boot.kernelParams = [ "verbose" "console=tty0" ];

  swapDevices = [ ];

  hardware = {
    bluetooth.enable = true;
    enableRedistributableFirmware = true;
  };

  powerManagement.cpuFreqGovernor = lib.mkDefault "performance";

  networking = {
    hostName = "rpi-netboot";
    useDHCP = false;
    interfaces.eth0.useDHCP = true;
    firewall.enable = false;
  };

  fileSystems = {
    "/" = {
      fsType = "tmpfs";
      options = [ "mode=0755" ];
    };
    "/etc" = {
      fsType = "tmpfs";
      options = [ "mode=0755" ];
    };
     # mount the server's /nix/store
    "/nix/store" = {
      device = "${hostRegistry.hosts.nfsroot.ip4}:/nix/store";
      fsType = "nfs";
      options = [ "nfsvers=3" "proto=tcp" "nolock" "hard" "async" "ro" ];
      neededForBoot = true;
    };
    "/var" = {
      fsType = "tmpfs";
      options = [ "mode=0755" ];
    };
  };

  environment.systemPackages = with pkgs; [
    libraspberrypi
    raspberrypi-eeprom
    iw
    libva-utils
    mpv
    vlc
    yt-dlp
    ncpamixer
    pulseaudio # required for pactl
    chromium
    firefox
    pavucontrol
    glxinfo
    projectm
    # tracer-game
    bevy_julia
    bevy_mandelbrot
    allcolors
  ];

  programs.tmux.enable = true;

  nix.gc.automatic = lib.mkForce false;

  security.sudo = {
    enable = true;
    wheelNeedsPassword = false;
  };

  console = {
    font = "${pkgs.terminus_font}/share/consolefonts/ter-u28n.psf.gz";
    keyMap = "de";
  };

  services = {
    # Do not log to flash
    journald.extraConfig = ''
      Storage=volatile
    '';
    openssh.enable = true;
    xserver = {
      enable = true;
      layout = "de";
      xkbOptions = "eurosign:e";
      displayManager = {
        lightdm.enable = true;
        autoLogin = {
          enable = true;
          user = "k-ot";
        };
        defaultSession = "gnome-xorg";
      };
      desktopManager.gnome.enable = true;
    };
  };

  systemd = {
    # r/o /nix/store
    services = {
      nix-daemon.enable = false;
      nix-gc.enable = false;
    };
    sockets.nix-daemon.enable = false;

    user.services.x11vnc = {
      description = "X11 VNC server";
      wantedBy = [ "graphical-session.target" ];
      partOf = [ "graphical-session.target" ];
      serviceConfig = {
        ExecStart = ''
          ${pkgs.x11vnc}/bin/x11vnc -shared -forever -passwd k-ot
        '';
        RestartSec = 3;
        Restart = "always";
      };
    };
  };

  system.stateVersion = "21.11"; # Did you read the comment?
}
rpi-netboot: fix 2022-06-09 01:43:26 +02:00			`{ hostRegistry, nixpkgs, config, lib, pkgs, modulesPath, ... }:`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00
			`{`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`c3d2 = {`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`isInHq = true;`
			`mergeHostsFile = true;`
			`hq.interface = "eth0";`
			`hq.statistics.enable = false;`
			`audioServer.enable = true;`
			`k-ot.enable = true;`
			`autoUpdate = false;`
rpi-netboot: disable hq.journalToMqtt due to lack of ssh key for sops-nix 2022-09-07 20:11:38 +02:00			`hq.journalToMqtt = false;`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`

rpi-netboot: set console param 2022-09-14 20:10:15 +02:00			`boot.kernelParams = [ "verbose" "console=tty0" ];`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00
			`swapDevices = [ ];`

			`hardware = {`
			`bluetooth.enable = true;`
			`enableRedistributableFirmware = true;`
rpi-netboot: add dtb, use linuxPackages_latest 2022-03-17 18:32:42 +01:00			`};`
The big format and cleanup 2022-06-12 17:26:32 +02:00
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`powerManagement.cpuFreqGovernor = lib.mkDefault "performance";`

			`networking = {`
Cleanup default packages 2022-06-13 20:36:41 +02:00			`hostName = "rpi-netboot";`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`useDHCP = false;`
			`interfaces.eth0.useDHCP = true;`
			`firewall.enable = false;`
			`};`

dacbert: mount / via nfs to store ssh host key :) 2022-03-17 00:24:23 +01:00			`fileSystems = {`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`"/" = {`
dacbert: mount / via nfs to store ssh host key :) 2022-03-17 00:24:23 +01:00			`fsType = "tmpfs";`
			`options = [ "mode=0755" ];`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
dacbert: mount / via nfs to store ssh host key :) 2022-03-17 00:24:23 +01:00			`"/etc" = {`
			`fsType = "tmpfs";`
			`options = [ "mode=0755" ];`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
dacbert: move nfsroot, remove separate /nix/store mount 2022-06-09 01:41:33 +02:00			`# mount the server's /nix/store`
			`"/nix/store" = {`
nix-build: remove 2022-06-22 00:16:03 +02:00			`device = "${hostRegistry.hosts.nfsroot.ip4}:/nix/store";`
dacbert: move nfsroot, remove separate /nix/store mount 2022-06-09 01:41:33 +02:00			`fsType = "nfs";`
			`options = [ "nfsvers=3" "proto=tcp" "nolock" "hard" "async" "ro" ];`
			`neededForBoot = true;`
dacbert: mount / via nfs to store ssh host key :) 2022-03-17 00:24:23 +01:00			`};`
			`"/var" = {`
			`fsType = "tmpfs";`
			`options = [ "mode=0755" ];`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
dacbert: mount / via nfs to store ssh host key :) 2022-03-17 00:24:23 +01:00			`};`

rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`environment.systemPackages = with pkgs; [`
			`libraspberrypi`
			`raspberrypi-eeprom`
rpi-netboot: add dtb, use linuxPackages_latest 2022-03-17 18:32:42 +01:00			`iw`
dacbert, rpi-netboot: install libva-utils 2022-03-29 00:02:26 +02:00			`libva-utils`
Revert "dacbert, rpi-netboot: add omxplayer" This reverts commit 9d4afa5870c2d5bbd4b73935976d85a7e1c2d087. 2022-03-23 22:47:30 +01:00			`mpv`
dacbert, rpi-netboot: install vlc, yt-dlp instead of youtube-dl 2022-03-29 00:02:52 +02:00			`vlc`
			`yt-dlp`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`ncpamixer`
			`pulseaudio # required for pactl`
rpi-netboot, dacbert: add default packages 2022-03-17 00:47:00 +01:00			`chromium`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`firefox`
			`pavucontrol`
rpi-netboot, dacbert: add default packages 2022-03-17 00:47:00 +01:00			`glxinfo`
rpi-netboot: add projectm 2022-09-17 19:31:10 +02:00			`projectm`
overlay: remove tracer-game for now 2022-09-28 23:59:34 +02:00			`# tracer-game`
dacbert, rpi-netboot: reenable bevy_julia 2022-09-17 22:15:05 +02:00			`bevy_julia`
rpi-netboot: enable bevy_mandelbrot 2022-09-16 00:10:48 +02:00			`bevy_mandelbrot`
rpi-netboot, overlay: add polygon's allcolors 2022-09-15 16:38:18 +02:00			`allcolors`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`];`

rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`programs.tmux.enable = true;`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00
rpi-netboot: move r/o nix/store config 2022-06-09 02:02:44 +02:00			`nix.gc.automatic = lib.mkForce false;`

rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`security.sudo = {`
			`enable = true;`
			`wheelNeedsPassword = false;`
			`};`

			`console = {`
			`font = "${pkgs.terminus_font}/share/consolefonts/ter-u28n.psf.gz";`
			`keyMap = "de";`
			`};`

rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`services = {`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00			`# Do not log to flash`
			`journald.extraConfig = ''`
			`Storage=volatile`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`'';`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`openssh.enable = true;`
			`xserver = {`
fixes 2022-06-13 15:48:05 +02:00			`enable = true;`
			`layout = "de";`
			`xkbOptions = "eurosign:e";`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`displayManager = {`
			`lightdm.enable = true;`
			`autoLogin = {`
			`enable = true;`
			`user = "k-ot";`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`defaultSession = "gnome-xorg";`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`desktopManager.gnome.enable = true;`
			`};`
			`};`
The big format and cleanup 2022-06-12 17:26:32 +02:00
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`systemd = {`
rpi-netboot: move r/o nix/store config 2022-06-09 02:02:44 +02:00			`# r/o /nix/store`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`services = {`
rpi-netboot: move r/o nix/store config 2022-06-09 02:02:44 +02:00			`nix-daemon.enable = false;`
fixes 2022-06-13 15:48:05 +02:00			`nix-gc.enable = false;`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
rpi-netboot: move r/o nix/store config 2022-06-09 02:02:44 +02:00			`sockets.nix-daemon.enable = false;`
The big format and cleanup 2022-06-12 17:26:32 +02:00
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`user.services.x11vnc = {`
			`description = "X11 VNC server";`
			`wantedBy = [ "graphical-session.target" ];`
			`partOf = [ "graphical-session.target" ];`
			`serviceConfig = {`
			`ExecStart = ''`
			`${pkgs.x11vnc}/bin/x11vnc -shared -forever -passwd k-ot`
			`'';`
			`RestartSec = 3;`
			`Restart = "always";`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
rpi-netboot: add gnome, firefox, x11vnc 2022-03-15 17:10:14 +01:00			`};`
			`};`
rpi-netboot: prepare 2022-03-13 23:49:12 +01:00
			`system.stateVersion = "21.11"; # Did you read the comment?`
			`}`