nix-files

top-level configurations for all my NixOS machines

Go to file

colin 933996d34e ship fluffychat (Matrix client) this works on lappy and is fairly responsive. want to try it on moby.		2022-09-15 20:29:27 -07:00
helpers	port helpers/home-manager-gen-colin.nix to modules system	2022-06-09 14:50:24 -07:00
machines	desko: enable nix-serve	2022-09-14 14:45:07 -07:00
modules	ship fluffychat (Matrix client)	2022-09-15 20:29:27 -07:00
nixpatches	ship fluffychat (Matrix client)	2022-09-15 20:29:27 -07:00
pkgs	sane-scripts: fix missing `file` input	2022-09-06 19:46:07 -07:00
secrets	desko: enable nix-serve	2022-09-14 14:45:07 -07:00
.gitignore	move secrets to a subdirectory, for improved overrides	2022-05-26 23:52:08 -07:00
.sops.yaml	secrets: update `moby` keys	2022-08-31 17:01:41 -07:00
flake.lock	update nixpkgs 2022-09-11 -> 2022-09-13	2022-09-14 00:43:51 -07:00
flake.nix	formatting nits	2022-08-24 19:46:10 -07:00
readme.md	formatting nits	2022-08-24 19:46:10 -07:00
TODO.md	moby: cross-compile the kernel	2022-08-08 20:36:35 -07:00

readme.md

to deploy:

nixos-rebuild --flake "./#servo" {build,switch}

more options (like building packages defined in this repo):

nix flake show

secrets

i use sops for secrets. see modules/universal/secrets.nix for some tips.

building images

to build a distributable image (GPT-formatted image with rootfs and /boot partition):

nix build ./#imgs.lappy

this can then be dd'd onto a disk and directly booted from a EFI system. there's some post-processing to do before running a rebuild on the deployed system (deploying ssh keys, optionally changing fs UUIDs, etc). refer to flake.nix for more details.