From 50287c1e0b2424c24af46d17c922ea7f8d39d959 Mon Sep 17 00:00:00 2001 From: lassulus Date: Wed, 21 Dec 2016 00:16:58 +0100 Subject: l 1 helios: enable pulseaudio systemWide --- lass/1systems/helios.nix | 1 + 1 file changed, 1 insertion(+) (limited to 'lass') diff --git a/lass/1systems/helios.nix b/lass/1systems/helios.nix index 4472816e..298c9083 100644 --- a/lass/1systems/helios.nix +++ b/lass/1systems/helios.nix @@ -30,6 +30,7 @@ with import ; networking.wireless.enable = true; hardware.pulseaudio = { enable = true; + systemWide = true; }; users.users.ferret = { uid = genid "ferret"; -- cgit v1.2.3 From 4038d526bc817c2a80b1a3ec274943ec0f81d682 Mon Sep 17 00:00:00 2001 From: lassulus Date: Wed, 21 Dec 2016 00:17:20 +0100 Subject: l 2: add lass to audio group --- lass/2configs/default.nix | 1 + 1 file changed, 1 insertion(+) (limited to 'lass') diff --git a/lass/2configs/default.nix b/lass/2configs/default.nix index 21a2ec03..900dd36b 100644 --- a/lass/2configs/default.nix +++ b/lass/2configs/default.nix @@ -32,6 +32,7 @@ with import ; createHome = true; useDefaultShell = true; extraGroups = [ + "audio" "fuse" ]; openssh.authorizedKeys.keys = [ -- cgit v1.2.3 From 50d26e86f92dfd8835bfb24a6793e4d0f1609b80 Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:14:53 +0100 Subject: l 1: add icarus --- lass/1systems/icarus.nix | 59 ++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 59 insertions(+) create mode 100644 lass/1systems/icarus.nix (limited to 'lass') diff --git a/lass/1systems/icarus.nix b/lass/1systems/icarus.nix new file mode 100644 index 00000000..9a665464 --- /dev/null +++ b/lass/1systems/icarus.nix @@ -0,0 +1,59 @@ +{ config, pkgs, ... }: + +with import ; +{ + imports = [ + ../. + ../2configs/retiolum.nix + ../2configs/hw/tp-x220.nix + ../2configs/baseX.nix + ../2configs/git.nix + ../2configs/exim-retiolum.nix + ../2configs/browsers.nix + ../2configs/programs.nix + ../2configs/fetchWallpaper.nix + ../2configs/backups.nix + #{ + # users.extraUsers = { + # root = { + # openssh.authorizedKeys.keys = map readFile [ + # ../../krebs/Zpubkeys/uriel.ssh.pub + # ]; + # }; + # }; + #} + ]; + + krebs.build.host = config.krebs.hosts.icarus; + + boot = { + loader.grub.enable = true; + loader.grub.version = 2; + loader.grub.device = "/dev/sda"; + + initrd.luks.devices = [ { name = "luksroot"; device = "/dev/sda2"; } ]; + initrd.luks.cryptoModules = [ "aes" "sha512" "sha1" "xts" ]; + initrd.availableKernelModules = [ "xhci_hcd" "ehci_pci" "ahci" "usb_storage" ]; + #kernelModules = [ "kvm-intel" "msr" ]; + }; + fileSystems = { + "/" = { + device = "/dev/pool/nix"; + fsType = "btrfs"; + }; + + "/boot" = { + device = "/dev/sda1"; + }; + "/tmp" = { + device = "tmpfs"; + fsType = "tmpfs"; + options = ["nosuid" "nodev" "noatime"]; + }; + }; + + services.udev.extraRules = '' + SUBSYSTEM=="net", ATTR{address}=="a0:88:b4:29:26:bc", NAME="wl0" + SUBSYSTEM=="net", ATTR{address}=="f0:de:f1:0c:a7:63", NAME="et0" + ''; +} -- cgit v1.2.3 From e92e1b0b30ed047eeffa512e0709f22acb49d489 Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:16:53 +0100 Subject: l 2 builbot: add icarus to test-hosts --- lass/2configs/buildbot-standalone.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'lass') diff --git a/lass/2configs/buildbot-standalone.nix b/lass/2configs/buildbot-standalone.nix index 72cd6642..7057d0c3 100644 --- a/lass/2configs/buildbot-standalone.nix +++ b/lass/2configs/buildbot-standalone.nix @@ -102,7 +102,7 @@ in { ] ) - for i in [ "mors", "uriel", "shodan", "helios", "cloudkrebs", "echelon", "dishfire", "prism" ]: + for i in [ "mors", "uriel", "shodan", "helios", "icarus", "cloudkrebs", "echelon", "dishfire", "prism" ]: addShell(f,name="build-{}".format(i),env=env_lass, command=nixshell + \ ["mkdir -p /tmp/testbuild/$LOGNAME && touch /tmp/testbuild/$LOGNAME/.populate; \ -- cgit v1.2.3 From af6223f8b9aa0208deefedcf8bc3f2ff554d05e9 Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:17:43 +0100 Subject: l 2 git: uriel -> shodan --- lass/2configs/git.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'lass') diff --git a/lass/2configs/git.nix b/lass/2configs/git.nix index 57950e1b..ded0922b 100644 --- a/lass/2configs/git.nix +++ b/lass/2configs/git.nix @@ -75,7 +75,7 @@ let with git // config.krebs.users; repo: singleton { - user = [ lass lass-uriel ]; + user = [ lass lass-shodan ]; repo = [ repo ]; perm = push "refs/*" [ non-fast-forward create delete merge ]; } ++ -- cgit v1.2.3 From d25fb2374453ff645559ee6198b4dd85b1f4c667 Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:22:42 +0100 Subject: l 2 weechat: add icarus to authorized_keys --- lass/2configs/weechat.nix | 1 + 1 file changed, 1 insertion(+) (limited to 'lass') diff --git a/lass/2configs/weechat.nix b/lass/2configs/weechat.nix index ae07b9a2..1e5f2d17 100644 --- a/lass/2configs/weechat.nix +++ b/lass/2configs/weechat.nix @@ -16,6 +16,7 @@ in { openssh.authorizedKeys.keys = [ config.krebs.users.lass.pubkey config.krebs.users.lass-shodan.pubkey + config.krebs.users.lass-icarus.pubkey ]; }; -- cgit v1.2.3 From 3d96bcf846f7eeef23e349ce088741aa25d81f11 Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:23:59 +0100 Subject: l 1 mors: expose public_html to LAN --- lass/1systems/mors.nix | 18 +++++++++++++----- 1 file changed, 13 insertions(+), 5 deletions(-) (limited to 'lass') diff --git a/lass/1systems/mors.nix b/lass/1systems/mors.nix index 594f342d..4553cc15 100644 --- a/lass/1systems/mors.nix +++ b/lass/1systems/mors.nix @@ -68,11 +68,19 @@ with import ; { krebs.nginx = { enable = true; - servers.default.locations = [ - (nameValuePair "~ ^/~(.+?)(/.*)?\$" '' - alias /home/$1/public_html$2; - '') - ]; + servers.default = { + server-names = [ + "localhost" + "${config.krebs.build.host.name}" + "${config.krebs.build.host.name}.r" + "${config.krebs.build.host.name}.retiolum" + ]; + locations = [ + (nameValuePair "~ ^/~(.+?)(/.*)?\$" '' + alias /home/$1/public_html$2; + '') + ]; + }; }; } { -- cgit v1.2.3 From 44d0907ba5459e5814f8a4417a119b24002fed2d Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:24:31 +0100 Subject: l 2 power-action: lower batter-warning limit --- lass/2configs/power-action.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'lass') diff --git a/lass/2configs/power-action.nix b/lass/2configs/power-action.nix index c83dc80d..f22bf451 100644 --- a/lass/2configs/power-action.nix +++ b/lass/2configs/power-action.nix @@ -14,8 +14,8 @@ in { krebs.power-action = { enable = true; plans.low-battery = { - upperLimit = 30; - lowerLimit = 25; + upperLimit = 10; + lowerLimit = 15; charging = false; action = pkgs.writeDash "warn-low-battery" '' ${speak "power level low"} -- cgit v1.2.3 From 9b639370a370b9eeae7da2e907c368d590665e7c Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:25:38 +0100 Subject: l 1 prism: add lass to libvirtd group --- lass/1systems/prism.nix | 1 + 1 file changed, 1 insertion(+) (limited to 'lass') diff --git a/lass/1systems/prism.nix b/lass/1systems/prism.nix index 269f9452..6c11a2f6 100644 --- a/lass/1systems/prism.nix +++ b/lass/1systems/prism.nix @@ -230,6 +230,7 @@ in { } { virtualisation.libvirtd.enable = true; + users.users.mainUser.extraGroups = [ "libvirtd" ]; } ]; -- cgit v1.2.3 From 1d2c9377bc7b21ff7d27c6c04873a46df083d655 Mon Sep 17 00:00:00 2001 From: lassulus Date: Thu, 22 Dec 2016 23:26:49 +0100 Subject: l 2 zsh: set default shell of mainUser --- lass/2configs/zsh.nix | 1 + 1 file changed, 1 insertion(+) (limited to 'lass') diff --git a/lass/2configs/zsh.nix b/lass/2configs/zsh.nix index aa159be0..442a1d4d 100644 --- a/lass/2configs/zsh.nix +++ b/lass/2configs/zsh.nix @@ -118,4 +118,5 @@ fi ''; }; + users.users.${config.krebs.build.user.name}.shell = "/run/current-system/sw/bin/zsh"; } -- cgit v1.2.3