No description
29525dc308
Flake lock file updates:
• Updated input 'gomod2nix':
'github:nix-community/gomod2nix/2cbd7fdd6eeab65c494cc426e18f4e4d2a5e35c0?narHash=sha256-0YkWCS13jpoo3%2BsX/3kcgdxBNt1VZTmvF%2BFhZb4rFKI%3D' (2025-04-28)
→ 'github:nix-community/gomod2nix/a5f75f563748599d448a4a076816041d7b0fc07e?narHash=sha256-SjpXWEeB%2BUIMzuCAF94PuyAXpJdnBLF45JvI6o4wKIU%3D' (2025-06-19)
• Updated input 'nixos-hardware':
'github:nixos/nixos-hardware/61837d2a33ccc1582c5fabb7bf9130d39fee59ad?narHash=sha256-ynqbgIYrg7P1fAKYqe8I/PMiLABBcNDYG9YaAP/d/C4%3D' (2025-06-16)
→ 'github:nixos/nixos-hardware/1552a9f4513f3f0ceedcf90320e48d3d47165712?narHash=sha256-vnzzBDbCGvInmfn2ijC4HsIY/3W1CWbwS/YQoFgdgPg%3D' (2025-06-20)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/36ab78dab7da2e4e27911007033713bab534187b?narHash=sha256-urV51uWH7fVnhIvsZIELIYalMYsyr2FCalvlRTzqWRw%3D' (2025-06-17)
→ 'github:nixos/nixpkgs/9ba04bda9249d5d5e5238303c9755de5a49a79c5?narHash=sha256-H8J4H2XCIMEJ5g6fZ179QfQvsc2dUqhqfBjC8RAHNRY%3D' (2025-06-18)
• Updated input 'nixpkgsMaster':
'github:NixOS/nixpkgs/b95bc4d285032de7842cc8396e55fb21f70f3bce?narHash=sha256-66zezez0HO30aYAyA63%2BHLCA%2BarVAIwFohEeE4nNl9I%3D' (2025-06-18)
→ 'github:NixOS/nixpkgs/4fab5e9fe91c7c26c31eb4d936e24737def51508?narHash=sha256-R8L8tE/pxn%2BzEZVHvs2ZY8vCKovr1DZjLl%2B0VkTVTR8%3D' (2025-06-20)
• Updated input 'nur':
'github:nix-community/NUR/8d9894966f0c06b8e36f1ed1268ca3f080094302?narHash=sha256-N%2B716O0Wgrs3px24zm8Kvh2W8j6HEdfxw1jHBpSnQvU%3D' (2025-06-18)
→ 'github:nix-community/NUR/de5be5d9770e5f95d0a2717455a9acb0f7ddec60?narHash=sha256-VVZClU2AbfG0mpczqn91R9h4It/jgjt0EkTGe8GB2DA%3D' (2025-06-20)
• Updated input 'nur/nixpkgs':
'github:nixos/nixpkgs/9e83b64f727c88a7711a2c463a7b16eedb69a84c?narHash=sha256-v263g4GbxXv87hMXMCpjkIxd/viIF7p3JpJrwgKdNiI%3D' (2025-06-17)
→ 'github:nixos/nixpkgs/08f22084e6085d19bcfb4be30d1ca76ecb96fe54?narHash=sha256-XE/lFNhz5lsriMm/yjXkvSZz5DfvKJLUjsS6pP8EC50%3D' (2025-06-19)
• Updated input 'vesc-tool':
'github:vedderb/vesc_tool/6b979dc7285d6b54850840c4c4d24a06a032b9cb?narHash=sha256-YD%2BSt6iUa6R5Mi6TFRhvsRKGTrp/dBps74/7hlPXjoc%3D' (2025-06-17)
→ 'github:vedderb/vesc_tool/967347297c137b5ec1c3704fe2e7a21958f82f14?narHash=sha256-fNVZaAvptaF99BlTVED4oTX64PguJFFXlzVUSR7wrpU%3D' (2025-06-19)
|
||
|---|---|---|
| .git-crypt | ||
| custom-utils | ||
| hosts | ||
| modules | ||
| pkgs | ||
| users | ||
| .editorconfig | ||
| .envrc | ||
| .gitattributes | ||
| .gitignore | ||
| .sops.yaml | ||
| flake.lock | ||
| flake.nix | ||
| justfile | ||
| README.md | ||
jalr's NixOS Configuration
Install a new host
This installs nixos on host somehost:
NixOS Anywhere
nix run github:nix-community/nixos-anywhere -- --flake .#<somehost> root@<somehost>
The traditional way
nix-shell -p nixUnstable --run 'nixos-install --flake https://gitlab.jalr.de/jalr/nixos-configuration#somehost --no-channel-copy'
Build a configuration
nix build .#nixosConfigurations.iron.config.system.build.toplevel
setting up sops
Get the host key and convert it.
ssh-keyscan -t ed25519 $host | ssh-to-age
Then add the key to .sops.yaml
If the key changed, you might want to run
sops updatekeys hosts/$host/secrets.yaml
nix repl
start an interactive environment for evaluating Nix expressions
$ nix repl
nix-repl> a=builtins.getFlake (toString ./.)
$ nix repl
nix-repl> :lf .#
Import GPG public key
gpg --card-edit
gpg/card> fetch
gpg --edit-key $key
gpg> trust
Your decision? 5
Debugging boot issues
- Add
rd.systemd.debug_shellkernel parameter - Press CTRL+ALT+F9 to switch to root shell