mirror of
https://git.pvv.ntnu.no/Drift/pvv-nixos-config.git
synced 2026-07-04 17:51:48 +02:00
Compare commits
5 Commits
8a290d30e7
...
e6a3d43493
| Author | SHA1 | Date | |
|---|---|---|---|
| e6a3d43493 | |||
| cafc95db8f | |||
| 2d6b09cb32 | |||
| ce0af2f6e4 | |||
| 88892115b5 |
@@ -1,4 +1,5 @@
|
|||||||
{
|
{
|
||||||
|
config,
|
||||||
pkgs,
|
pkgs,
|
||||||
lib,
|
lib,
|
||||||
inputs,
|
inputs,
|
||||||
@@ -56,6 +57,8 @@
|
|||||||
boot.loader.systemd-boot.enable = lib.mkDefault true;
|
boot.loader.systemd-boot.enable = lib.mkDefault true;
|
||||||
boot.loader.efi.canTouchEfiVariables = lib.mkDefault true;
|
boot.loader.efi.canTouchEfiVariables = lib.mkDefault true;
|
||||||
|
|
||||||
|
services.btrfs.autoScrub.enable = lib.mkDefault (lib.any ({ fsType, ... }: fsType == "btrfs") (lib.attrValues config.fileSystems));
|
||||||
|
|
||||||
time.timeZone = "Europe/Oslo";
|
time.timeZone = "Europe/Oslo";
|
||||||
|
|
||||||
i18n.defaultLocale = "en_US.UTF-8";
|
i18n.defaultLocale = "en_US.UTF-8";
|
||||||
|
|||||||
@@ -95,6 +95,18 @@
|
|||||||
];
|
];
|
||||||
});
|
});
|
||||||
|
|
||||||
|
apps = forAllSystems (system: let
|
||||||
|
pkgs = nixpkgs.legacyPackages.${system};
|
||||||
|
in {
|
||||||
|
gitea-workflows = {
|
||||||
|
type = "app";
|
||||||
|
meta.description = "Run all gitea workflows locally";
|
||||||
|
program = toString (pkgs.writeShellScript "pvv-nixos-config-run-gitea-worflows" ''
|
||||||
|
${lib.getExe pkgs.gitea-actions-runner} exec -i node:current-trixie
|
||||||
|
'');
|
||||||
|
};
|
||||||
|
});
|
||||||
|
|
||||||
nixosConfigurations = let
|
nixosConfigurations = let
|
||||||
nixosConfig = nixpkgs: name: configurationPath: extraArgs @ {
|
nixosConfig = nixpkgs: name: configurationPath: extraArgs @ {
|
||||||
localSystem ? "x86_64-linux", # buildPlatform
|
localSystem ? "x86_64-linux", # buildPlatform
|
||||||
@@ -190,6 +202,12 @@
|
|||||||
(final: prev: {
|
(final: prev: {
|
||||||
inherit (self.packages.${prev.stdenv.hostPlatform.system}) out-of-your-element;
|
inherit (self.packages.${prev.stdenv.hostPlatform.system}) out-of-your-element;
|
||||||
})
|
})
|
||||||
|
(final: prev: {
|
||||||
|
# See https://git.pvv.ntnu.no/Drift/issues/issues/369
|
||||||
|
mjolnir = prev.mjolnir.override {
|
||||||
|
nodejs = prev.nodejs_22;
|
||||||
|
};
|
||||||
|
})
|
||||||
];
|
];
|
||||||
};
|
};
|
||||||
bekkalokk = stableNixosConfig "bekkalokk" {
|
bekkalokk = stableNixosConfig "bekkalokk" {
|
||||||
|
|||||||
@@ -25,8 +25,6 @@
|
|||||||
address = with values.hosts.bekkalokk; [ (ipv4 + "/25") (ipv6 + "/64") ];
|
address = with values.hosts.bekkalokk; [ (ipv4 + "/25") (ipv6 + "/64") ];
|
||||||
};
|
};
|
||||||
|
|
||||||
services.btrfs.autoScrub.enable = true;
|
|
||||||
|
|
||||||
# Don't change (even during upgrades) unless you know what you are doing.
|
# Don't change (even during upgrades) unless you know what you are doing.
|
||||||
# See https://search.nixos.org/options?show=system.stateVersion
|
# See https://search.nixos.org/options?show=system.stateVersion
|
||||||
system.stateVersion = "25.11";
|
system.stateVersion = "25.11";
|
||||||
|
|||||||
@@ -29,7 +29,29 @@
|
|||||||
firewall = {
|
firewall = {
|
||||||
enable = true;
|
enable = true;
|
||||||
# Allow SSH and HTTP and ports for email and irc
|
# Allow SSH and HTTP and ports for email and irc
|
||||||
allowedTCPPorts = [ 80 22 194 994 6665 6666 6667 6668 6669 6697 995 993 25 465 587 110 143 993 995 ];
|
allowedTCPPorts = [
|
||||||
|
22 # SSH
|
||||||
|
80 # HTTP
|
||||||
|
|
||||||
|
# IRC
|
||||||
|
194 # IRC
|
||||||
|
994 # IRC (TLS)
|
||||||
|
6697 # IRC (SSL)
|
||||||
|
6665
|
||||||
|
6666
|
||||||
|
6667
|
||||||
|
6668
|
||||||
|
6669
|
||||||
|
|
||||||
|
# EMAIL
|
||||||
|
25 # STMP
|
||||||
|
465 # STMP (SSL)
|
||||||
|
587 # STMP (TLS/STARTTLS)
|
||||||
|
110 # POP3
|
||||||
|
995 # POP3 (SSL/TLS)
|
||||||
|
143 # IMAP
|
||||||
|
993 # IMAP (SSL/TLS)
|
||||||
|
];
|
||||||
allowedUDPPorts = [ 80 22 194 994 6665 6666 6667 6668 6669 6697 995 993 25 465 587 110 143 993 995 ];
|
allowedUDPPorts = [ 80 22 194 994 6665 6666 6667 6668 6669 6697 995 993 25 465 587 110 143 993 995 ];
|
||||||
};
|
};
|
||||||
# Use systemd-resolved inside the container
|
# Use systemd-resolved inside the container
|
||||||
|
|||||||
@@ -15,8 +15,6 @@
|
|||||||
address = with values.hosts.kommode; [ (ipv4 + "/25") (ipv6 + "/64") ];
|
address = with values.hosts.kommode; [ (ipv4 + "/25") (ipv6 + "/64") ];
|
||||||
};
|
};
|
||||||
|
|
||||||
services.btrfs.autoScrub.enable = true;
|
|
||||||
|
|
||||||
services.qemuGuest.enable = true;
|
services.qemuGuest.enable = true;
|
||||||
|
|
||||||
# Don't change (even during upgrades) unless you know what you are doing.
|
# Don't change (even during upgrades) unless you know what you are doing.
|
||||||
|
|||||||
@@ -157,7 +157,7 @@ in
|
|||||||
config = "/etc/dibbler/dibbler.toml";
|
config = "/etc/dibbler/dibbler.toml";
|
||||||
};
|
};
|
||||||
in lib.optionals cfg.dibbler.enable [
|
in lib.optionals cfg.dibbler.enable [
|
||||||
"screen -t worblehat ${lib.getExe cfg.dibbler.package} ${dibblerArgs} loop"
|
"screen -t dibbler ${lib.getExe cfg.dibbler.package} ${dibblerArgs} loop"
|
||||||
|
|
||||||
])
|
])
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user