2022-05-21 00:07:49 +00:00
|
|
|
# docs:
|
2022-08-25 02:46:10 +00:00
|
|
|
# - <https://nixos.wiki/wiki/Flakes>
|
|
|
|
# - <https://serokell.io/blog/practical-nix-flakes>
|
2022-05-21 00:07:49 +00:00
|
|
|
|
|
|
|
{
|
|
|
|
inputs = {
|
2022-12-14 22:32:41 +00:00
|
|
|
nixpkgs-stable.url = "nixpkgs/nixos-22.11";
|
2023-01-10 17:00:43 +00:00
|
|
|
nixpkgs-unpatched.url = "nixpkgs/nixos-unstable";
|
|
|
|
nixpkgs = {
|
2023-01-10 17:44:58 +00:00
|
|
|
url = "path:nixpatches";
|
2023-01-10 17:00:43 +00:00
|
|
|
inputs.nixpkgs.follows = "nixpkgs-unpatched";
|
|
|
|
};
|
2022-05-23 02:45:54 +00:00
|
|
|
mobile-nixos = {
|
2022-05-24 05:47:32 +00:00
|
|
|
url = "github:nixos/mobile-nixos";
|
|
|
|
flake = false;
|
2022-05-23 02:45:54 +00:00
|
|
|
};
|
2022-05-22 01:05:32 +00:00
|
|
|
home-manager = {
|
2022-06-03 08:39:34 +00:00
|
|
|
url = "github:nix-community/home-manager/release-22.05";
|
2022-05-22 01:05:32 +00:00
|
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
|
|
};
|
2022-10-11 00:19:57 +00:00
|
|
|
sops-nix = {
|
|
|
|
url = "github:Mic92/sops-nix";
|
|
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
|
|
};
|
2022-10-11 10:22:40 +00:00
|
|
|
uninsane = {
|
|
|
|
url = "git+https://git.uninsane.org/colin/uninsane";
|
|
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
|
|
};
|
2022-05-21 00:07:49 +00:00
|
|
|
};
|
2022-05-21 07:30:29 +00:00
|
|
|
|
2022-10-27 10:20:29 +00:00
|
|
|
outputs = {
|
|
|
|
self,
|
|
|
|
nixpkgs,
|
|
|
|
nixpkgs-stable,
|
2023-01-10 17:00:43 +00:00
|
|
|
nixpkgs-unpatched,
|
2022-10-27 10:20:29 +00:00
|
|
|
mobile-nixos,
|
|
|
|
home-manager,
|
|
|
|
sops-nix,
|
|
|
|
uninsane
|
2023-01-11 05:58:07 +00:00
|
|
|
}:
|
2022-06-23 22:57:20 +00:00
|
|
|
let
|
2023-01-11 05:58:07 +00:00
|
|
|
nixpkgsCompiledBy = local: nixpkgs.legacyPackages."${local}";
|
2022-12-14 12:27:24 +00:00
|
|
|
|
2023-01-11 05:58:07 +00:00
|
|
|
decl-host = { name, local, target }:
|
|
|
|
let
|
|
|
|
# XXX: we'd prefer to use `nixosSystem = (nixpkgsCompiledBy local).nixos`
|
|
|
|
# but it doesn't propagate config to the underlying pkgs, meaning it doesn't let you use
|
|
|
|
# non-free packages even after setting nixpkgs.allowUnfree.
|
|
|
|
nixosSystem = import ((nixpkgsCompiledBy local).path + "/nixos/lib/eval-config.nix");
|
|
|
|
in
|
|
|
|
(nixosSystem {
|
|
|
|
# we use pkgs built for and *by* the target, i.e. emulation, by default.
|
|
|
|
# cross compilation only happens on explicit access to `pkgs.cross`
|
|
|
|
system = target;
|
|
|
|
modules = [
|
|
|
|
./modules
|
|
|
|
(import ./hosts/instantiate.nix name)
|
|
|
|
home-manager.nixosModule
|
|
|
|
sops-nix.nixosModules.sops
|
|
|
|
{
|
|
|
|
nixpkgs.overlays = [
|
|
|
|
(import "${mobile-nixos}/overlay/overlay.nix")
|
|
|
|
uninsane.overlay
|
2023-01-11 07:22:21 +00:00
|
|
|
(next: prev: {
|
2023-01-11 07:37:01 +00:00
|
|
|
# for local != target we by default just emulate the target while building.
|
|
|
|
# provide a `pkgs.cross.<pkg>` alias that consumers can use instead of `pkgs.<foo>`
|
|
|
|
# to explicitly opt into non-emulated cross compilation for any specific package.
|
|
|
|
# this is most beneficial for large packages with few pre-requisites -- like Linux.
|
2023-01-11 07:22:21 +00:00
|
|
|
cross = next.crossFrom."${local}";
|
2023-01-11 05:58:07 +00:00
|
|
|
})
|
2023-01-11 07:37:01 +00:00
|
|
|
] ++ (builtins.attrValues self.overlays);
|
2023-01-11 05:58:07 +00:00
|
|
|
}
|
|
|
|
];
|
|
|
|
});
|
|
|
|
|
|
|
|
decl-bootable-host = { name, local, target }: rec {
|
|
|
|
nixosConfiguration = decl-host { inherit name local target; };
|
|
|
|
# this produces a EFI-bootable .img file (GPT with a /boot partition and a system (/ or /nix) partition).
|
|
|
|
# after building this:
|
|
|
|
# - flash it to a bootable medium (SD card, flash drive, HDD)
|
|
|
|
# - resize the root partition (use cfdisk)
|
|
|
|
# - mount the part
|
|
|
|
# - chown root:nixbld <part>/nix/store
|
|
|
|
# - chown root:root -R <part>/nix/store/*
|
|
|
|
# - chown root:root -R <part>/persist # if using impermanence
|
|
|
|
# - populate any important things (persist/, home/colin/.ssh, etc)
|
|
|
|
# - boot
|
|
|
|
# - if fs wasn't resized automatically, then `sudo btrfs filesystem resize max /`
|
|
|
|
# - checkout this flake into /etc/nixos AND UPDATE THE FS UUIDS.
|
|
|
|
# - `nixos-rebuild --flake './#<host>' switch`
|
|
|
|
img = nixosConfiguration.config.system.build.img;
|
|
|
|
};
|
|
|
|
hosts = {
|
|
|
|
servo = decl-bootable-host { name = "servo"; local = "x86_64-linux"; target = "x86_64-linux"; };
|
|
|
|
desko = decl-bootable-host { name = "desko"; local = "x86_64-linux"; target = "x86_64-linux"; };
|
|
|
|
lappy = decl-bootable-host { name = "lappy"; local = "x86_64-linux"; target = "x86_64-linux"; };
|
|
|
|
moby = decl-bootable-host { name = "moby"; local = "aarch64-linux"; target = "aarch64-linux"; };
|
|
|
|
# special cross-compiled variant, to speed up deploys from an x86 box to the arm target
|
|
|
|
# note that these *do* produce different store paths, because the closure for the tools used to cross compile
|
|
|
|
# v.s. emulate differ.
|
|
|
|
# so deploying foo-cross and then foo incurs some rebuilding.
|
|
|
|
moby-cross = decl-bootable-host { name = "moby"; local = "x86_64-linux"; target = "aarch64-linux"; };
|
|
|
|
rescue = decl-bootable-host { name = "rescue"; local = "x86_64-linux"; target = "x86_64-linux"; };
|
2022-10-11 10:22:40 +00:00
|
|
|
};
|
2022-10-27 10:20:29 +00:00
|
|
|
in {
|
2023-01-11 05:58:07 +00:00
|
|
|
nixosConfigurations = builtins.mapAttrs (name: value: value.nixosConfiguration) hosts;
|
|
|
|
imgs = builtins.mapAttrs (name: value: value.img) hosts;
|
|
|
|
|
2023-01-11 07:22:21 +00:00
|
|
|
overlays = rec {
|
|
|
|
pkgs = (import ./pkgs/overlay.nix);
|
|
|
|
stable = (next: prev: {
|
|
|
|
stable = nixpkgs-stable.legacyPackages."${prev.stdenv.hostPlatform}";
|
|
|
|
});
|
|
|
|
cross = (next: prev: {
|
|
|
|
# non-emulated packages build *from* local *for* target.
|
|
|
|
# for large packages like the linux kernel which are expensive to build under emulation,
|
|
|
|
# the config can explicitly pull such packages from `pkgs.cross` to do more efficient cross-compilation.
|
|
|
|
crossFrom."x86_64-linux" = (prev.forceSystem "x86_64-linux" null).appendOverlays next.overlays;
|
2023-01-11 07:51:19 +00:00
|
|
|
crossFrom."aarch64-linux" = (prev.forceSystem "aarch64-linux" null).appendOverlays next.overlays;
|
2023-01-11 07:22:21 +00:00
|
|
|
});
|
|
|
|
};
|
|
|
|
|
2023-01-11 05:58:07 +00:00
|
|
|
packages =
|
|
|
|
let
|
2023-01-11 07:50:32 +00:00
|
|
|
allPkgsFor = sys:
|
|
|
|
let pkgs = nixpkgsCompiledBy sys; in {
|
|
|
|
nixpkgs = pkgs;
|
|
|
|
uninsane = uninsane.packages."${sys}";
|
|
|
|
} // (self.overlays.pkgs pkgs pkgs);
|
2023-01-11 05:58:07 +00:00
|
|
|
in {
|
|
|
|
x86_64-linux = allPkgsFor "x86_64-linux";
|
|
|
|
aarch64-linux = allPkgsFor "aarch64-linux";
|
|
|
|
};
|
|
|
|
|
|
|
|
templates = {
|
|
|
|
python-data = {
|
|
|
|
# initialize with:
|
|
|
|
# - `nix flake init -t '/home/colin/dev/nixos/#python-data'`
|
|
|
|
# then enter with:
|
|
|
|
# - `nix develop`
|
|
|
|
path = ./templates/python-data;
|
|
|
|
description = "python environment for data processing";
|
|
|
|
};
|
2022-11-30 00:48:27 +00:00
|
|
|
};
|
|
|
|
};
|
2022-05-21 00:07:49 +00:00
|
|
|
}
|
|
|
|
|