dump-dvb/nix-config
dump-dvb
/
nix-config
mirror of https://github.com/dump-dvb/nix-config.git
3
0
Fork 0
Code Issues Projects Releases Wiki Activity
nix-config/flake.nix

270 lines
8.9 KiB
Nix
Raw Normal View History

basic config
2022-04-23 03:01:58 +02:00
{
add ssh keys
2022-04-23 13:41:36 +02:00
inputs = {
switch overlays to dump-dvb.nix
2022-07-06 19:59:25 +02:00
dump-dvb = {
url = github:dump-dvb/dump-dvb.nix;
add nixpkgs follow to every input
2022-06-06 22:41:04 +02:00
inputs.nixpkgs.follows = "nixpkgs";
basic config
2022-04-23 03:01:58 +02:00
};
add ssh keys
2022-04-23 13:41:36 +02:00
staging: add microvm
2022-05-14 22:47:54 +02:00
microvm = {
url = github:astro/microvm.nix;
add nixpkgs follow to every input
2022-06-06 22:41:04 +02:00
inputs.nixpkgs.follows = "nixpkgs";
staging: add microvm
2022-05-14 22:47:54 +02:00
};
yeet out inputs that are now provided by dump-dvb.nix
2022-07-06 22:12:28 +02:00
nixpkgs.url = github:NixOS/nixpkgs/nixos-22.05;
Secret Management via Sops (#6) * sops: init * add my gpg keys * sops: add @revol-xut key * add gpg pub key * update gpg keys * .sops.yaml: add marenz * sops: add secrets for traffix-stop-box-3 and 4 * build sops-install-secrets on hydra * sops: add keys for traffic-stop-box-{3,4} Co-authored-by: revol-xut <revol-xut@protonmail.com> Co-authored-by: Markus Schmidl <markus.schmidl@mailbox.tu-dresden.de>
2022-05-31 18:56:43 +02:00
sops-nix = {
url = github:Mic92/sops-nix;
inputs.nixpkgs.follows = "nixpkgs";
};
overhauled system deployment
2022-04-28 14:43:40 +02:00
};
add ssh keys
2022-04-23 13:41:36 +02:00
YOLO, LOL
2022-07-06 20:58:15 +02:00
outputs =
inputs@{ self
, dump-dvb
, microvm
yeet out inputs that are now provided by dump-dvb.nix
2022-07-06 22:12:28 +02:00
, nixpkgs
YOLO, LOL
2022-07-06 20:58:15 +02:00
, sops-nix
, ...
}:
add more files for rpi4b
2022-04-30 23:41:24 +02:00
let
script for updating all stations at once
2022-05-14 01:33:50 +02:00
pkgs = nixpkgs.legacyPackages."x86_64-linux";
lib = pkgs.lib;
refactor nix configs (#2)
2022-05-28 06:12:39 +02:00
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
data-hoarder-modules = [
./modules/base.nix
start yeeting out stuff from data-hoarder
2022-07-07 15:55:50 +02:00
./modules/data-hoarder
refactor gnuradio and telegram-decoder options (#9) Create user-stop-box for dell wyse, first steps to rpi4 image. Refactor parameters passed to gnuradio and telegram-decoder into proper options, make configs stateful (so users can edit them). Rearrage files a bit.
2022-06-09 20:11:05 +02:00
./modules/dump-dvb
Secret Management via Sops (#6) * sops: init * add my gpg keys * sops: add @revol-xut key * add gpg pub key * update gpg keys * .sops.yaml: add marenz * sops: add secrets for traffix-stop-box-3 and 4 * build sops-install-secrets on hydra * sops: add keys for traffic-stop-box-{3,4} Co-authored-by: revol-xut <revol-xut@protonmail.com> Co-authored-by: Markus Schmidl <markus.schmidl@mailbox.tu-dresden.de>
2022-05-31 18:56:43 +02:00
sops-nix.nixosModules.sops
YOLO, LOL
2022-07-06 20:58:15 +02:00
dump-dvb.nixosModules.default
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
{
nixpkgs.overlays = [
switch overlays to dump-dvb.nix
2022-07-06 19:59:25 +02:00
dump-dvb.overlays.default
using nice options docs
2022-09-03 22:14:43 +02:00
(final: pref: {
options-docs = (pkgs.nixosOptionsDoc {
add nixos options docs
2022-09-04 15:06:02 +02:00
options = self.nixosConfigurations.data-hoarder.options.dump-dvb;
using nice options docs
2022-09-03 22:14:43 +02:00
}).optionsCommonMark;
})
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
];
}
];
refactor nix configs (#2)
2022-05-28 06:12:39 +02:00
move mobile box common modules into it's own list
2022-09-23 17:26:27 +02:00
stop-box-modules = [
Secret Management via Sops (#6) * sops: init * add my gpg keys * sops: add @revol-xut key * add gpg pub key * update gpg keys * .sops.yaml: add marenz * sops: add secrets for traffix-stop-box-3 and 4 * build sops-install-secrets on hydra * sops: add keys for traffic-stop-box-{3,4} Co-authored-by: revol-xut <revol-xut@protonmail.com> Co-authored-by: Markus Schmidl <markus.schmidl@mailbox.tu-dresden.de>
2022-05-31 18:56:43 +02:00
sops-nix.nixosModules.sops
YOLO, LOL
2022-07-06 20:58:15 +02:00
dump-dvb.nixosModules.default
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
./hosts/traffic-stop-box
refactor nix configs (#2)
2022-05-28 06:12:39 +02:00
./modules/base.nix
refactor gnuradio and telegram-decoder options (#9) Create user-stop-box for dell wyse, first steps to rpi4 image. Refactor parameters passed to gnuradio and telegram-decoder into proper options, make configs stateful (so users can edit them). Rearrage files a bit.
2022-06-09 20:11:05 +02:00
./modules/dump-dvb
add more files for rpi4b
2022-04-30 23:41:24 +02:00
{
switch overlays to dump-dvb.nix
2022-07-06 19:59:25 +02:00
nixpkgs.overlays = [
dump-dvb.overlays.default
];
move mobile box common modules into it's own list
2022-09-23 17:26:27 +02:00
}
];
# function that generates a system with the given number
generate_system = (id: arch: extraModules:
{
"traffic-stop-box-${toString id}" = nixpkgs.lib.nixosSystem {
system = arch;
specialArgs = inputs;
modules = [
{
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
dump-dvb.systemNumber = id;
add more files for rpi4b
2022-04-30 23:41:24 +02:00
}
move mobile box common modules into it's own list
2022-09-23 17:26:27 +02:00
] ++ extraModules ++ stop-box-modules;
add more files for rpi4b
2022-04-30 23:41:24 +02:00
};
}
overhauled system deployment
2022-04-28 14:43:40 +02:00
);
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
id_list = [
nixpkgs-fmt
2022-08-24 18:48:33 +02:00
{
# Barkhausen Bau
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
id = 0;
arch = "x86_64-linux";
extraModules = [
fix naming
2022-08-24 18:47:03 +02:00
./hardware/dell-wyse-3040.nix
move disk-module to dump-dvb.nix
2022-09-10 15:50:09 +02:00
dump-dvb.nixosModules.disk-module
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
];
}
nixpkgs-fmt
2022-08-24 18:48:33 +02:00
{
# Zentralwerk
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
id = 1;
arch = "x86_64-linux";
extraModules = [
fix naming
2022-08-24 18:47:03 +02:00
./hardware/dell-wyse-3040.nix
move disk-module to dump-dvb.nix
2022-09-10 15:50:09 +02:00
dump-dvb.nixosModules.disk-module
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
];
}
nixpkgs-fmt
2022-08-24 18:48:33 +02:00
{
# Chemnitz
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
id = 2;
arch = "x86_64-linux";
extraModules = [
fix naming
2022-08-24 18:47:03 +02:00
./hardware/dell-wyse-3040.nix
move disk-module to dump-dvb.nix
2022-09-10 15:50:09 +02:00
dump-dvb.nixosModules.disk-module
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
];
}
{
move mobile box common modules into it's own list
2022-09-23 17:26:27 +02:00
# unused
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
id = 3;
arch = "aarch64-linux";
extraModules = [
fix naming
2022-08-24 18:47:03 +02:00
./hardware/rpi-3b-4b.nix
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
];
}
add traffic-stop-box-4
2022-08-30 16:55:40 +02:00
{
# Wundstr. 9
id = 4;
arch = "x86_64-linux";
extraModules = [
./hardware/dell-wyse-3040.nix
move disk-module to dump-dvb.nix
2022-09-10 15:50:09 +02:00
dump-dvb.nixosModules.disk-module
traffic-stop-box-3: move network override to flake
2022-09-10 19:26:10 +02:00
{
networking = nixpkgs.lib.mkForce {
useDHCP = false;
defaultGateway = "141.30.30.129";
nameservers = [ "141.30.1.1" ];
interfaces.enp1s0 = {
useDHCP = false;
ipv4.addresses = [
{
address = "141.30.30.149";
prefixLength = 25;
}
];
};
};
}
add traffic-stop-box-4
2022-08-30 16:55:40 +02:00
];
}
adding münsterbox
2022-09-22 17:12:56 +02:00
{
id = 6;
arch = "x86_64-linux";
extraModules = [
./hardware/dell-wyse-3040.nix
make flake evaluate again
2022-09-26 01:36:05 +02:00
dump-dvb.nixosModules.disk-module
add felix ssh key to box 6 and 7
2022-09-27 00:17:11 +02:00
{
add keys directly
2022-09-27 00:28:30 +02:00
users.users.root.openssh.authorizedKeys.keys = [
"sk-ssh-ed25519@openssh.com aaaagnnrlxnzac1lzdi1nte5qg9wzw5zc2guy29taaaaili3ylty7fwvohtwx8511v+gbtlzzmuv505fi1pj53v6aaaabhnzado="
"sk-ssh-ed25519@openssh.com aaaagnnrlxnzac1lzdi1nte5qg9wzw5zc2guy29taaaaipzbd00cbfpxzuc8eb6sljaafnf1hgs6vci1rzcncyocaaaabhnzado="
add felix ssh key to box 6 and 7
2022-09-27 00:17:11 +02:00
];
}
add cors allow all
2022-09-26 00:55:23 +02:00
];
}
add box 7
2022-09-26 21:21:44 +02:00
{
id = 7;
arch = "x86_64-linux";
extraModules = [
./hardware/dell-wyse-3040.nix
dump-dvb.nixosModules.disk-module
add felix ssh key to box 6 and 7
2022-09-27 00:17:11 +02:00
{
add keys directly
2022-09-27 00:28:30 +02:00
users.users.root.openssh.authorizedKeys.keys = [
"sk-ssh-ed25519@openssh.com aaaagnnrlxnzac1lzdi1nte5qg9wzw5zc2guy29taaaaili3ylty7fwvohtwx8511v+gbtlzzmuv505fi1pj53v6aaaabhnzado="
"sk-ssh-ed25519@openssh.com aaaagnnrlxnzac1lzdi1nte5qg9wzw5zc2guy29taaaaipzbd00cbfpxzuc8eb6sljaafnf1hgs6vci1rzcncyocaaaabhnzado="
add felix ssh key to box 6 and 7
2022-09-27 00:17:11 +02:00
];
}
add box 7
2022-09-26 21:21:44 +02:00
];
}
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
];
Refactor deployment (#8) * move deployment scripts * refactor deployment
2022-05-30 20:50:18 +02:00
add more files for rpi4b
2022-04-30 23:41:24 +02:00
# attribute set of all traffic stop boxes
cleanup
2022-08-24 15:26:19 +02:00
stop_boxes = nixpkgs.lib.foldl (x: y: nixpkgs.lib.mergeAttrs x (generate_system y.id y.arch y.extraModules)) { } id_list;
add remote deploy scripts
2022-05-14 20:47:17 +02:00
Move modules
2022-05-29 01:57:24 +02:00
packages = {
split dvb api into two seperate services
2022-06-26 00:01:56 +02:00
default = self.nixosConfigurations.traffic-stop-box-0.config.system.build.vm;
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
traffic-stop-box = self.nixosConfigurations.traffic-stop-box-0.config.system.build.vm;
nix flake update
2022-06-05 19:09:35 +02:00
staging-data-hoarder = self.nixosConfigurations.staging-data-hoarder.config.system.build.vm;
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
data-hoarder = self.nixosConfigurations.data-hoarder.config.system.build.vm;
muensterbox
2022-09-25 21:36:26 +02:00
mobile-box-dresden-vm = self.nixosConfigurations.mobile-box-dresden.config.system.build.vm;
mobile-box-dresden-disk = self.nixosConfigurations.mobile-box-dresden.config.system.build.diskImage;
mobile-box-muenster-vm = self.nixosConfigurations.mobile-box-muenster.config.system.build.vm;
mobile-box-muenster-disk = self.nixosConfigurations.mobile-box-muenster.config.system.build.diskImage;
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
staging-microvm = self.nixosConfigurations.staging-data-hoarder.config.microvm.declaredRunner;
rework traffic-stop-box system generator, add new rpi3 station
2022-08-22 18:51:00 +02:00
data-hoarder-microvm = self.nixosConfigurations.data-hoarder.config.microvm.declaredRunner;
add nixos options docs
2022-09-04 15:06:02 +02:00
docs = pkgs.callPackage ./pkgs/documentation.nix {
options-docs = (pkgs.nixosOptionsDoc {
options = self.nixosConfigurations.data-hoarder.options.dump-dvb;
}).optionsCommonMark;
};
Refactor deployment (#8) * move deployment scripts * refactor deployment
2022-05-30 20:50:18 +02:00
} // (import ./pkgs/deployment.nix { inherit self pkgs; systems = stop_boxes; });
muensterbox
2022-09-25 21:36:26 +02:00
mobile-box-modules = [
dump-dvb.nixosModules.disk-module
dump-dvb.nixosModules.default
./hosts/mobile-box/configuration.nix
./hosts/mobile-box/hardware-configuration.nix
./hardware/dell-wyse-3040.nix
./modules/base.nix
./modules/user-stop-box/user.nix
./modules/dump-dvb
sops-nix.nixosModules.sops
];
add more files for rpi4b
2022-04-30 23:41:24 +02:00
in
{
add remote deploy scripts
2022-05-14 20:47:17 +02:00
packages."x86_64-linux" = packages;
overhauled system deployment
2022-04-28 14:43:40 +02:00
refactor nix configs (#2)
2022-05-28 06:12:39 +02:00
nixosConfigurations = stop_boxes // {
muensterbox
2022-09-25 21:36:26 +02:00
mobile-box-dresden = nixpkgs.lib.nixosSystem {
redirect to https
2022-05-09 16:50:23 +02:00
system = "x86_64-linux";
use diesel for database migrations
2022-09-03 18:46:35 +02:00
specialArgs = inputs;
make flake evaluate again
2022-09-26 01:36:05 +02:00
modules = mobile-box-modules ++ [
./modules/mobile-box/dresden.nix
redirect to https
2022-05-09 16:50:23 +02:00
{
muensterbox
2022-09-25 21:36:26 +02:00
dump-dvb.telegramDecoder.configFile = "${self}/configs/mobile_box_dresden.json";
redirect to https
2022-05-09 16:50:23 +02:00
}
];
};
muensterbox
2022-09-25 21:36:26 +02:00
mobile-box-muenster = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
specialArgs = inputs;
make flake evaluate again
2022-09-26 01:36:05 +02:00
modules = mobile-box-modules ++ [
./modules/mobile-box/muenster.nix
muensterbox
2022-09-25 21:36:26 +02:00
{
dump-dvb.telegramDecoder.configFile = "${self}/configs/mobile_box_muenster.json";
}
];
};
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
data-hoarder = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
use diesel for database migrations
2022-09-03 18:46:35 +02:00
specialArgs = inputs;
Move modules
2022-05-29 01:57:24 +02:00
modules = [
flake.nix: add nixosModules.microvm to data-hoarder
2022-07-10 21:58:02 +02:00
microvm.nixosModules.microvm
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
./hosts/data-hoarder/configuration.nix
wireguard server is non-reusable config, move to hosts
2022-08-22 17:17:58 +02:00
./hosts/data-hoarder/wireguard_server.nix
Move modules
2022-05-29 01:57:24 +02:00
] ++ data-hoarder-modules;
refactor nix configs (#2)
2022-05-28 06:12:39 +02:00
};
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
staging-data-hoarder = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
use diesel for database migrations
2022-09-03 18:46:35 +02:00
specialArgs = inputs;
Move modules
2022-05-29 01:57:24 +02:00
modules = [
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
./hosts/staging/configuration.nix
microvm.nixosModules.microvm
add tcpdump
2022-06-14 21:00:00 +02:00
{
split dvb api into two seperate services
2022-06-26 00:01:56 +02:00
environment.systemPackages = with pkgs; [ tcpdump ];
add tcpdump
2022-06-14 21:00:00 +02:00
}
Move modules
2022-05-29 01:57:24 +02:00
] ++ data-hoarder-modules;
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
};
add display
2022-09-16 19:30:47 +02:00
display = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
specialArgs = inputs;
modules = [
dump-dvb.nixosModules.default
dump-dvb.nixosModules.disk-module
./hosts/display
./modules/base.nix
./hardware/dell-wyse-3040.nix
];
};
nixpkgs-fmt
2022-05-28 21:24:15 +02:00
};
add hydra jobs
2022-04-29 11:52:57 +02:00
nix magic for hydraJobs
2022-09-04 20:28:08 +02:00
hydraJobs = (lib.mapAttrs (name: value: { ${value.config.system.build.toplevel.system} = value.config.system.build.toplevel; }) self.nixosConfigurations) // {
debugging
2022-08-24 15:01:35 +02:00
traffic-stop-box-3-disk."aarch64-linux" = self.nixosConfigurations.traffic-stop-box-3.config.system.build.sdImage;
muensterbox
2022-09-25 21:36:26 +02:00
mobile-box-disk."x86_64-linux" = self.nixosConfigurations.mobile-box-dresden.config.system.build.diskImage;
add display
2022-09-16 19:30:47 +02:00
display-disk."x86_64-linux" = self.nixosConfigurations.display.config.system.build.diskImage;
Secret Management via Sops (#6) * sops: init * add my gpg keys * sops: add @revol-xut key * add gpg pub key * update gpg keys * .sops.yaml: add marenz * sops: add secrets for traffix-stop-box-3 and 4 * build sops-install-secrets on hydra * sops: add keys for traffic-stop-box-{3,4} Co-authored-by: revol-xut <revol-xut@protonmail.com> Co-authored-by: Markus Schmidl <markus.schmidl@mailbox.tu-dresden.de>
2022-05-31 18:56:43 +02:00
sops-binaries."x86_64-linux" = sops-nix.packages."x86_64-linux".sops-install-secrets;
add hydra jobs
2022-04-29 11:52:57 +02:00
};
nixpkgs-fmt
2022-08-24 18:48:33 +02:00
};
basic config
2022-04-23 03:01:58 +02:00
}