karaolidis/nix
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add lanzaboote

Browse Source 
Signed-off-by: Nikolaos Karaolidis <nick@karaolidis.com>
This commit is contained in:
Nick Karaolidis
2025-08-09 18:09:43 +02:00
parent 6873ecc0df
commit 1234d7d455
17 changed files with 338 additions and 46 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
hosts/installer/README.md
View File

@@ -1,12 +1,16 @@
# installer
I have automated myself out of a job. How to use:
I have automated myself out of a job. Here's how to use the installer to create a new host:
1. Boot into installer
1. Enable Secure Boot Setup Mode on the target device's UEFI menu - this will vary depending on the manufacturer
2. Connect to the internet with `sudo nmcli device wifi connect "<SSID>" [--ask]`
2. Boot into the installer
3. Run `sudo nix-install /etc/nixos -m install|repair -h host [-k key] [-c] [-r]"`
3. Connect to the internet with `sudo nmcli device wifi connect "<SSID>" [--ask]`
4. Run `sudo nix-install /etc/nixos -m install|repair -s -h host [-k key] [-c] [-r]"`
5. Enable Secure Boot on the device's UEFI menu.
## Reinstalling the Installer
@@ -65,4 +69,4 @@ I have automated myself out of a job. How to use:
6. I really hope you had a backup of the keys, because you must copy them to the repository before the next step.
7. Run `nix --experimental-features "nix-command flakes" shell nixpkgs#disko nixpkgs#jq -c bash hosts/common/configs/system/nix-install/install.sh nix -m install -h installer -k personal -c`
7. Run `nix --experimental-features "nix-command flakes" shell nixpkgs#disko nixpkgs#sbctl nixpkgs#jq -c bash hosts/common/configs/system/nix-install/install.sh . -m install -h installer -k personal -c`

14
hosts/installer/configs/ssh/default.nix Normal file
View File

@@ -0,0 +1,14 @@
{ inputs, ... }:
{
sops.secrets."ssh/key" = {
sopsFile = "${inputs.secrets}/personal/secrets.yaml";
path = "/root/.ssh/ssh_personal_ed25519_key";
};
programs.ssh.extraConfig = ''
Host karaolidis.com
User git
HostName karaolidis.com
IdentityFile /root/.ssh/ssh_personal_ed25519_key
'';
}

3
hosts/installer/default.nix
View File

@@ -15,6 +15,7 @@
../common/configs/system/git
../common/configs/system/gpg-agent
../common/configs/system/impermanence
../common/configs/system/lanzaboote
../common/configs/system/neovim
../common/configs/system/networkmanager
../common/configs/system/nix
@@ -35,6 +36,8 @@
../common/configs/system/users
../common/configs/system/zsh
./configs/ssh
./users/nick
];