ahuston-0/nix-dotfiles
1
0
Fork 0
Code Issues Pull Requests 4 Actions Packages Projects Releases Wiki Activity

and palatine-hill is booting!

Browse Source 
Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
This commit is contained in:
ahuston-0 2024-08-24 00:34:09 -04:00
parent f780780523
commit 12555ebc3a
No known key found for this signature in database
GPG Key ID: 1316487BA407ECAF
5 changed files with 31 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
systems/artemision/configuration.nix
View File

@ -73,7 +73,6 @@
fprintd.enable = lib.mkForce false; fprintd.enable = lib.mkForce false;
openssh.enable = lib.mkForce false; openssh.enable = lib.mkForce false;
journald.storage = "volatile";
spotifyd = { spotifyd = {
enable = true; enable = true;
settings = { settings = {

4
systems/artemision/hardware.nix
View File

@ -52,7 +52,6 @@
options = [ options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
]; ];
}; };
@ -62,7 +61,6 @@
options = [ options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
]; ];
}; };
@ -72,7 +70,6 @@
options = [ options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
]; ];
}; };
@ -82,7 +79,6 @@
options = [ options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
]; ];
}; };
}; };

1
systems/palatine-hill/configuration.nix
View File

@ -64,7 +64,6 @@
nfs.server.enable = true; nfs.server.enable = true;
openssh.ports = [ 666 ]; openssh.ports = [ 666 ];
smartd.enable = true; smartd.enable = true;
journald.storage = "volatile";
postgresql = { postgresql = {
enable = true; enable = true;

32
systems/palatine-hill/hardware-changes.nix
View File

@ -1,9 +1,11 @@
{ ... }: { lib, ... }:
{ {
boot.initrd.services.lvm.enable = true; boot.zfs.requestEncryptionCredentials = lib.mkForce false;
boot.initrd.luks.devices = { boot.initrd = {
services.lvm.enable = true;
luks.devices = {
"nixos-pv" = { "nixos-pv" = {
device = "/dev/disk/by-uuid/614787a6-784a-4932-b787-cb6424725444"; device = "/dev/disk/by-uuid/614787a6-784a-4932-b787-cb6424725444";
preLVM = true; preLVM = true;
@ -11,23 +13,41 @@
}; };
}; };
postResumeCommands = ''
# let root mount and everything, then manually unlock stuff
load_zfs_nix() {
local device="/dev/disk/by-uuid/8bfaa32b-09dd-45c8-831e-05e80be82f9e"
local mountPoint="/"
local options="x-initrd.mount,noatime,nodiratime"
local fsType="ext4"
echo "manually mounting key location, then unmounting"
udevadm settle
mountFS "$device" "$(escapeFstab "$mountPoint")" "$(escapeFstab "$options")" "$fsType"
zfs load-key -L "file://$targetRoot/crypto/keys/zfs-nix-store-key" "ZFS-primary/nix"
umount "$targetRoot/"
}
load_zfs_nix
'';
};
fileSystems = { fileSystems = {
"/".options = [ "/".options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
]; ];
"/home".options = [ "/home".options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
]; ];
"/boot".options = [ "/boot".options = [
"noatime" "noatime"
"nodiratime" "nodiratime"
"discard"
"fmask=0077" "fmask=0077"
"dmask=0077" "dmask=0077"
]; ];

2
users/alice/default.nix
View File

@ -13,6 +13,6 @@ import ../default.nix {
name name
; ;
publicKeys = [ publicKeys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPvF14bwJtV3r6O4KPydaIHmeiwJAYBs17nGDQUZgd5P alice@artemision" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP7oJjIYNRCRrUlhdGJgst6bzqubbKH0gjZYulQ1eVcZ alice@artemision"
]; ];
} }