doloro/dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: doloro:e7a1f7a13c61aaccf8ef945b936e4f8f494b4578
Branches Tags
doloro:main
..
compare: doloro:6c298aee355f156af8e25b4e59b7029a3c879fc5
Branches Tags
doloro:main

5 Commits
e7a1f7a13c ... 6c298aee35

Author SHA1 Message Date
Doloro1978
6c298aee35 modules: added builders 2025-12-28 23:07:51 +00:00
Doloro1978
73e7fb50c7 secrets: reencrypted 2025-12-28 23:07:37 +00:00
Doloro1978
19c65f7f11 sops: system key pc added 2025-12-28 23:07:24 +00:00
Doloro1978
51ca720683 more nix flake update? 2025-12-28 23:07:07 +00:00
Doloro1978
f55324846a nix flake update.. 2025-12-28 19:57:13 +00:00
8 changed files with 211 additions and 88 deletions
Expand all files Collapse all files

3
.sops.yaml
View File

@@ -4,5 +4,6 @@ creation_rules:
- encrypted_regex: '^(data|stringData)$' # Encrypt data and stringData by default (useful for Kubernetes secrets) - encrypted_regex: '^(data|stringData)$' # Encrypt data and stringData by default (useful for Kubernetes secrets)
path_regex: secrets/.*\.yaml$ # Applies to all files in the secrets/ directory path_regex: secrets/.*\.yaml$ # Applies to all files in the secrets/ directory
age: age:
- "age1ykcy2r4kk729e7adqxu8s24ujc60z5eux7ma0ca4ruzydwgm5p6qmdp838" # pc - "age1ykcy2r4kk729e7adqxu8s24ujc60z5eux7ma0ca4ruzydwgm5p6qmdp838" # pc-user-doloro
- "age1e6vws55p0g23qzthm4qa93hpt6lqmck6670gkygph0sc0j7my4uq5wqjfh" # pc-system
- "age1x3lahhkefkap67cdmdjcqaxan9hp62er78akr79v9m73nvgugpeqk0y32a" # laptop - "age1x3lahhkefkap67cdmdjcqaxan9hp62er78akr79v9m73nvgugpeqk0y32a" # laptop

148
flake.lock generated
View File

@@ -20,11 +20,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1764714051, "lastModified": 1765900596,
"narHash": "sha256-AjcMlM3UoavFoLzr0YrcvsIxALShjyvwe+o7ikibpCM=", "narHash": "sha256-+hn8v9jkkLP9m+o0Nm5SiEq10W0iWDSotH2XfjU45fA=",
"owner": "hyprwm", "owner": "hyprwm",
"repo": "aquamarine", "repo": "aquamarine",
"rev": "a43bedcceced5c21ad36578ed823e6099af78214", "rev": "d83c97f8f5c0aae553c1489c7d9eff3eadcadace",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -54,17 +54,17 @@
"base16-fish": { "base16-fish": {
"flake": false, "flake": false,
"locked": { "locked": {
"lastModified": 1754405784, "lastModified": 1765809053,
"narHash": "sha256-l9xHIy+85FN+bEo6yquq2IjD1rSg9fjfjpyGP1W8YXo=", "narHash": "sha256-XCUQLoLfBJ8saWms2HCIj4NEN+xNsWBlU1NrEPcQG4s=",
"owner": "tomyun", "owner": "tomyun",
"repo": "base16-fish", "repo": "base16-fish",
"rev": "23ae20a0093dca0d7b39d76ba2401af0ccf9c561", "rev": "86cbea4dca62e08fb7fd83a70e96472f92574782",
"type": "github" "type": "github"
}, },
"original": { "original": {
"owner": "tomyun", "owner": "tomyun",
"repo": "base16-fish", "repo": "base16-fish",
"rev": "23ae20a0093dca0d7b39d76ba2401af0ccf9c561", "rev": "86cbea4dca62e08fb7fd83a70e96472f92574782",
"type": "github" "type": "github"
} }
}, },
@@ -193,11 +193,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1763759067, "lastModified": 1765835352,
"narHash": "sha256-LlLt2Jo/gMNYAwOgdRQBrsRoOz7BPRkzvNaI/fzXi2Q=", "narHash": "sha256-XswHlK/Qtjasvhd1nOa1e8MgZ8GS//jBoTqWtrS1Giw=",
"owner": "hercules-ci", "owner": "hercules-ci",
"repo": "flake-parts", "repo": "flake-parts",
"rev": "2cccadc7357c0ba201788ae99c4dfa90728ef5e0", "rev": "a34fae9c08a15ad73f295041fec82323541400a9",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -214,11 +214,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1763759067, "lastModified": 1765835352,
"narHash": "sha256-LlLt2Jo/gMNYAwOgdRQBrsRoOz7BPRkzvNaI/fzXi2Q=", "narHash": "sha256-XswHlK/Qtjasvhd1nOa1e8MgZ8GS//jBoTqWtrS1Giw=",
"owner": "hercules-ci", "owner": "hercules-ci",
"repo": "flake-parts", "repo": "flake-parts",
"rev": "2cccadc7357c0ba201788ae99c4dfa90728ef5e0", "rev": "a34fae9c08a15ad73f295041fec82323541400a9",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -366,11 +366,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1765337252, "lastModified": 1766949189,
"narHash": "sha256-HuWQp8fM25fyWflbuunQkQI62Hg0ecJxWD52FAgmxqY=", "narHash": "sha256-t4lRzHDaAvSNIPcZO4NrjnfeYv+Yvr2BUWkUnoCbuzs=",
"owner": "nix-community", "owner": "nix-community",
"repo": "home-manager", "repo": "home-manager",
"rev": "13cc1efd78b943b98c08d74c9060a5b59bf86921", "rev": "398bc87bc89fc05a3c3731884b16e819c52e2b00",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -454,11 +454,11 @@
"xdph": "xdph" "xdph": "xdph"
}, },
"locked": { "locked": {
"lastModified": 1765319435, "lastModified": 1766929444,
"narHash": "sha256-9EU73XoTJNYiflVFDeplxE6BhAVg4TGPdiB4vbdJmXQ=", "narHash": "sha256-mGk+mk/miObjivy+6qMqQm+Jyl8R7t6B/1SaiBkUUyY=",
"owner": "hyprwm", "owner": "hyprwm",
"repo": "Hyprland", "repo": "Hyprland",
"rev": "f58c80fd3942034d58934ec4e4d93bfcfa3c786e", "rev": "6a055fc747a5a899b97f9b4c1d1a52229a805b1e",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -500,11 +500,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1764812575, "lastModified": 1765643131,
"narHash": "sha256-1bK1yGgaR82vajUrt6z+BSljQvFn91D74WJ/vJsydtE=", "narHash": "sha256-CCGohW5EBIRy4B7vTyBMqPgsNcaNenVad/wszfddET0=",
"owner": "hyprwm", "owner": "hyprwm",
"repo": "hyprland-guiutils", "repo": "hyprland-guiutils",
"rev": "fd321368a40c782cfa299991e5584ca338e36ebe", "rev": "e50ae912813bdfa8372d62daf454f48d6df02297",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -525,11 +525,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1759610243, "lastModified": 1765214753,
"narHash": "sha256-+KEVnKBe8wz+a6dTLq8YDcF3UrhQElwsYJaVaHXJtoI=", "narHash": "sha256-P9zdGXOzToJJgu5sVjv7oeOGPIIwrd9hAUAP3PsmBBs=",
"owner": "hyprwm", "owner": "hyprwm",
"repo": "hyprland-protocols", "repo": "hyprland-protocols",
"rev": "bd153e76f751f150a09328dbdeb5e4fab9d23622", "rev": "3f3860b869014c00e8b9e0528c7b4ddc335c21ab",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -631,11 +631,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1764962281, "lastModified": 1766160771,
"narHash": "sha256-rGbEMhTTyTzw4iyz45lch5kXseqnqcEpmrHdy+zHsfo=", "narHash": "sha256-roINUGikWRqqgKrD4iotKbGj3ZKJl3hjMz5l/SyKrHw=",
"owner": "hyprwm", "owner": "hyprwm",
"repo": "hyprutils", "repo": "hyprutils",
"rev": "fe686486ac867a1a24f99c753bb40ffed338e4b0", "rev": "5ac060bfcf2f12b3a6381156ebbc13826a05b09f",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -685,11 +685,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1764872015, "lastModified": 1766253200,
"narHash": "sha256-INI9AVrQG5nJZFvGPSiUZ9FEUZJLfGdsqjF1QSak7Gc=", "narHash": "sha256-26qPwrd3od+xoYVywSB7hC2cz9ivN46VPLlrsXyGxvE=",
"owner": "hyprwm", "owner": "hyprwm",
"repo": "hyprwire", "repo": "hyprwire",
"rev": "7997451dcaab7b9d9d442f18985d514ec5891608", "rev": "1079777525b30a947c8d657fac158e00ae85de9d",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -705,11 +705,11 @@
"nixpkgs": "nixpkgs_3" "nixpkgs": "nixpkgs_3"
}, },
"locked": { "locked": {
"lastModified": 1765325056, "lastModified": 1766880341,
"narHash": "sha256-CyJhdoAyToF6Uv3oGicXloHoQjcq7b56i42AepBSEJ0=", "narHash": "sha256-yYh/TNwR9GsJUT8d73nsK39lZ/j240jDwNr6807lx60=",
"owner": "nix-community", "owner": "nix-community",
"repo": "neovim-nightly-overlay", "repo": "neovim-nightly-overlay",
"rev": "ac9bde3d5fcec88383a16a63dc1bdb1702f7233e", "rev": "7e6bb31ced1de2c6360122173f63c44113223622",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -721,11 +721,11 @@
"neovim-src": { "neovim-src": {
"flake": false, "flake": false,
"locked": { "locked": {
"lastModified": 1765306746, "lastModified": 1766877615,
"narHash": "sha256-xOCKI2adwCfZmhnKoA+tUIOXRu+g5S02erNVP7X47J0=", "narHash": "sha256-iojFwrzLMqEaOLkXVjIVLWFW5DU1Vhh40Xndx3fR/Xs=",
"owner": "neovim", "owner": "neovim",
"repo": "neovim", "repo": "neovim",
"rev": "bc0635a9fc9c15a2423d4eb35f627d127d00fa46", "rev": "ab5a92bff67d654c543d89b4803a64b2e648253a",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -774,11 +774,11 @@
}, },
"locked": { "locked": {
"dir": "blender", "dir": "blender",
"lastModified": 1763587309, "lastModified": 1766785730,
"narHash": "sha256-thH+603iAFvKojLbI+LiJXtrR0WwlikZpyp68C2nD1A=", "narHash": "sha256-R0SImlpvVtp4gBCjWtrjyWlir2vMEs03XdVBJtsryUU=",
"owner": "edolstra", "owner": "edolstra",
"repo": "nix-warez", "repo": "nix-warez",
"rev": "9417de2cd97c03c12cd063e01e95eda790177dcb", "rev": "32a73188c4026cea3f8ed97078ace45bf9f7f578",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -794,11 +794,11 @@
"nixpkgs": "nixpkgs_6" "nixpkgs": "nixpkgs_6"
}, },
"locked": { "locked": {
"lastModified": 1765376994, "lastModified": 1765841014,
"narHash": "sha256-dsgdFdj8+qh81XPB/9SlwvuhJMHPjqsf7Zk0AnsdVpY=", "narHash": "sha256-55V0AJ36V5Egh4kMhWtDh117eE3GOjwq5LhwxDn9eHg=",
"owner": "nix-community", "owner": "nix-community",
"repo": "NixOS-WSL", "repo": "NixOS-WSL",
"rev": "30f6a14293df4938c35173a73efdeba450653d0a", "rev": "be4af8042e7a61fa12fda58fe9a3b3babdefe17b",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -839,11 +839,11 @@
}, },
"nixpkgs_2": { "nixpkgs_2": {
"locked": { "locked": {
"lastModified": 1764950072, "lastModified": 1766070988,
"narHash": "sha256-BmPWzogsG2GsXZtlT+MTcAWeDK5hkbGRZTeZNW42fwA=", "narHash": "sha256-G/WVghka6c4bAzMhTwT2vjLccg/awmHkdKSd2JrycLc=",
"owner": "NixOS", "owner": "NixOS",
"repo": "nixpkgs", "repo": "nixpkgs",
"rev": "f61125a668a320878494449750330ca58b78c557", "rev": "c6245e83d836d0433170a16eb185cefe0572f8b8",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -855,11 +855,11 @@
}, },
"nixpkgs_3": { "nixpkgs_3": {
"locked": { "locked": {
"lastModified": 1765270179, "lastModified": 1766840161,
"narHash": "sha256-g2a4MhRKu4ymR4xwo+I+auTknXt/+j37Lnf0Mvfl1rE=", "narHash": "sha256-Ss/LHpJJsng8vz1Pe33RSGIWUOcqM1fjrehjUkdrWio=",
"owner": "NixOS", "owner": "NixOS",
"repo": "nixpkgs", "repo": "nixpkgs",
"rev": "677fbe97984e7af3175b6c121f3c39ee5c8d62c9", "rev": "3edc4a30ed3903fdf6f90c837f961fa6b49582d1",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -902,11 +902,11 @@
}, },
"nixpkgs_6": { "nixpkgs_6": {
"locked": { "locked": {
"lastModified": 1764950072, "lastModified": 1765472234,
"narHash": "sha256-BmPWzogsG2GsXZtlT+MTcAWeDK5hkbGRZTeZNW42fwA=", "narHash": "sha256-9VvC20PJPsleGMewwcWYKGzDIyjckEz8uWmT0vCDYK0=",
"owner": "NixOS", "owner": "NixOS",
"repo": "nixpkgs", "repo": "nixpkgs",
"rev": "f61125a668a320878494449750330ca58b78c557", "rev": "2fbfb1d73d239d2402a8fe03963e37aab15abe8b",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -918,11 +918,11 @@
}, },
"nixpkgs_7": { "nixpkgs_7": {
"locked": { "locked": {
"lastModified": 1765186076, "lastModified": 1766651565,
"narHash": "sha256-hM20uyap1a0M9d344I692r+ik4gTMyj60cQWO+hAYP8=", "narHash": "sha256-QEhk0eXgyIqTpJ/ehZKg9IKS7EtlWxF3N7DXy42zPfU=",
"owner": "nixos", "owner": "nixos",
"repo": "nixpkgs", "repo": "nixpkgs",
"rev": "addf7cf5f383a3101ecfba091b98d0a1263dc9b8", "rev": "3e2499d5539c16d0d173ba53552a4ff8547f4539",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -950,11 +950,11 @@
}, },
"nixpkgs_9": { "nixpkgs_9": {
"locked": { "locked": {
"lastModified": 1764950072, "lastModified": 1766651565,
"narHash": "sha256-BmPWzogsG2GsXZtlT+MTcAWeDK5hkbGRZTeZNW42fwA=", "narHash": "sha256-QEhk0eXgyIqTpJ/ehZKg9IKS7EtlWxF3N7DXy42zPfU=",
"owner": "NixOS", "owner": "NixOS",
"repo": "nixpkgs", "repo": "nixpkgs",
"rev": "f61125a668a320878494449750330ca58b78c557", "rev": "3e2499d5539c16d0d173ba53552a4ff8547f4539",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -973,11 +973,11 @@
"systems": "systems_3" "systems": "systems_3"
}, },
"locked": { "locked": {
"lastModified": 1765387814, "lastModified": 1766941632,
"narHash": "sha256-+Vem9v3dVV9IJ75T1GJjeyY6Qhs/bHFsCcZLMdueCys=", "narHash": "sha256-QB8XEoY5D2iRYntcKzJ5wlvgpqqQSe0P0h5CvBO/rUk=",
"owner": "nix-community", "owner": "nix-community",
"repo": "nixvim", "repo": "nixvim",
"rev": "c50d50b1688672a9ca567c9f884adb76654bda9c", "rev": "ff75a5d3cc674391814c4703464ea1a3db204078",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -1021,11 +1021,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1765016596, "lastModified": 1765911976,
"narHash": "sha256-rhSqPNxDVow7OQKi4qS5H8Au0P4S3AYbawBSmJNUtBQ=", "narHash": "sha256-t3T/xm8zstHRLx+pIHxVpQTiySbKqcQbK+r+01XVKc0=",
"owner": "cachix", "owner": "cachix",
"repo": "git-hooks.nix", "repo": "git-hooks.nix",
"rev": "548fc44fca28a5e81c5d6b846e555e6b9c2a5a3c", "rev": "b68b780b69702a090c8bb1b973bab13756cc7a27",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -1041,11 +1041,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1764663772, "lastModified": 1766725085,
"narHash": "sha256-sHqLmm0wAt3PC4vczJeBozI1/f4rv9yp3IjkClHDXDs=", "narHash": "sha256-O2aMFdDUYJazFrlwL7aSIHbUSEm3ADVZjmf41uBJfHs=",
"ref": "refs/heads/master", "ref": "refs/heads/master",
"rev": "26531fc46ef17e9365b03770edd3fb9206fcb460", "rev": "41828c4180fb921df7992a5405f5ff05d2ac2fff",
"revCount": 713, "revCount": 715,
"type": "git", "type": "git",
"url": "https://git.outfoxxed.me/outfoxxed/quickshell" "url": "https://git.outfoxxed.me/outfoxxed/quickshell"
}, },
@@ -1121,11 +1121,11 @@
"systems": "systems_5" "systems": "systems_5"
}, },
"locked": { "locked": {
"lastModified": 1765082296, "lastModified": 1766897356,
"narHash": "sha256-EcefoixU9ht+P6QB/TfjLY9E3MdJVfeSec6G8Ges0pA=", "narHash": "sha256-oKp9luuuXuMoUwpGUKUdt0G7lZGovcyOEI3guG0rNCw=",
"owner": "Gerg-L", "owner": "Gerg-L",
"repo": "spicetify-nix", "repo": "spicetify-nix",
"rev": "ac4927ea1ec7e7ea3635a1d8b933106a596c4356", "rev": "6b49c4094e93629af2fcf789e0897450f57e2551",
"type": "github" "type": "github"
}, },
"original": { "original": {
@@ -1155,11 +1155,11 @@
"tinted-zed": "tinted-zed" "tinted-zed": "tinted-zed"
}, },
"locked": { "locked": {
"lastModified": 1765386911, "lastModified": 1766603026,
"narHash": "sha256-YLjQpnTZCMjCho7ZDs5O1yFVw+fDlXq4lSJDuLWHHeA=", "narHash": "sha256-J2DDdRqSU4w9NNgkMfmMeaLIof5PXtS9RG7y6ckDvQE=",
"owner": "nix-community", "owner": "nix-community",
"repo": "stylix", "repo": "stylix",
"rev": "cb6bbed75eaca21deb8950c2ec0036ae5cde18ca", "rev": "551df12ee3ebac52c5712058bd97fd9faa4c3430",
"type": "github" "type": "github"
}, },
"original": { "original": {

7
hosts/doloro-laptop/nixos.nix
View File

@@ -24,6 +24,7 @@ in
stylix.enable = true; stylix.enable = true;
steam.enable = false; steam.enable = false;
Hyprland.enable = true; Hyprland.enable = true;
builder.use-remote-builders = true;
wivrn.enable = false; wivrn.enable = false;
fonts.enable = true; fonts.enable = true;
}; };
@@ -62,10 +63,12 @@ in
}; };
hardware.graphics = { hardware.graphics = {
enable = true; enable = true;
# https://github.com/intel/libvpl?tab=readme-ov-file#dispatcher-behavior-when-targeting-intel-gpus
extraPackages = with pkgs; [ extraPackages = with pkgs; [
intel-media-driver # VA-API (iHD) userspace vpl-gpu-rt
# intel-media-driver # VA-API (iHD) userspace
# vpl-gpu-rt # oneVPL (QSV) runtime # vpl-gpu-rt # oneVPL (QSV) runtime
intel-compute-runtime # OpenCL (NEO) + Level Zero for Arc/Xe # intel-compute-runtime # OpenCL (NEO) + Level Zero for Arc/Xe
]; ];
}; };
services.openssh = { services.openssh = {

5
hosts/doloro/nixos.nix
View File

@@ -24,6 +24,7 @@ in
steam.enable = true; steam.enable = true;
Hyprland.enable = true; Hyprland.enable = true;
wivrn.enable = true; wivrn.enable = true;
remoteBuild.become-remote-builder = true;
fonts.enable = true; fonts.enable = true;
}; };
@@ -43,10 +44,12 @@ in
"https://nix-community.cachix.org" "https://nix-community.cachix.org"
"https://cache.nixos.org/" "https://cache.nixos.org/"
"https://attic.scug.io/pkgs" "https://attic.scug.io/pkgs"
"https://cache.nixos-cuda.org"
]; ];
trusted-public-keys = [ trusted-public-keys = [
"nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs=" "nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
"pkgs:+sRbfiZMMX5R3PuAPtIRz/emowDoGZNpozibrnrAvuc=" "pkgs:+sRbfiZMMX5R3PuAPtIRz/emowDoGZNpozibrnrAvuc="
"cache.nixos-cuda.org:74DUi4Ye579gUqzH4ziL9IyiJBlDpMRn9MBN8oNan9M="
]; ];
experimental-features = [ experimental-features = [
"flakes" "flakes"
@@ -83,7 +86,7 @@ in
security.rtkit.enable = true; security.rtkit.enable = true;
sops = { sops = {
age.keyFile = "/home/doloro/.config/sops/age/keys.txt"; # age.keyFile = "/etc/ssh/ssh_host_ed25519_key";
defaultSopsFile = builtins.toPath "${nix-meow.flakeRoot}/secrets/users.yaml"; defaultSopsFile = builtins.toPath "${nix-meow.flakeRoot}/secrets/users.yaml";
secrets = { secrets = {
root-hashed_password = { root-hashed_password = {

4
modules/builder/default.nix Normal file
View File

@@ -0,0 +1,4 @@
_: {
# home = ./home.nix;
nixos = ./nixos.nix;
}

48
modules/builder/home.nix Normal file
View File

@@ -0,0 +1,48 @@
# {
# config,
# lib,
# pkgs,
# fetchFromGitHub,
# ...
# }:
# let
# cfg = config.modules.fish;
# in
# {
# options.modules.fish = {
# enable = lib.mkEnableOption "Fish";
# };
# config = lib.mkIf cfg.enable {
# home.shell.enableFishIntegration = true;
# programs = {
# fish = {
# enable = true;
# shellInit = ''
# set -g theme_nerd_fonts yes
# set -g theme_color_scheme nord
# set -g theme_display_user yes
# set -g fish_color_autosuggestion 6F6578
# alias nik 'nix'
# '';
# plugins = [
# {
# name = "bobthefish";
# src = pkgs.fetchFromGitHub {
# owner = "oh-my-fish";
# repo = "theme-bobthefish";
# rev = "e3b4d4eafc23516e35f162686f08a42edf844e40";
# sha256 = "sha256-cXOYvdn74H4rkMWSC7G6bT4wa9d3/3vRnKed2ixRnuA=";
# };
# }
# ];
# };
# eza = {
# enable = true;
# enableFishIntegration = true;
# icons = "auto";
# git = true;
# extraOptions = [ ];
# };
# };
# };
# }

55
modules/builder/nixos.nix Normal file
View File

@@ -0,0 +1,55 @@
{
config,
lib,
pkgs,
...
}:
let
cfg = config.modules.remoteBuild;
in
{
options.modules.remoteBuild = {
use-remote-builders = lib.mkEnableOption "remoteBuild";
become-remote-builder = lib.mkEnableOption "remoteBuild";
};
config =
lib.mkIf cfg.become-remote-builder {
users.users.remotebuild = {
isSystemUser = true;
group = "remotebuild";
useDefaultShell = true;
# ssh-keygen -f /root/.ssh/remotebuild
openssh.authorizedKeys.keyFiles = [ ./remotebuild.pub ];
openssh.authorizedKeys.keys = [
# Laptop
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE/4h+WCBBW82puv8SMdUbkWymF4amEMuZitgFztB6oZ doloroo@proton.me"
];
};
users.groups.remotebuild = { };
nix.settings.trusted-users = [ "remotebuild" ];
}
// lib.mkIf cfg.use-remote-builders {
nix.distributedBuilds = true;
nix.settings.builders-use-substitutes = true;
# Define every build machine here..
nix.buildMachines = [
{
# Main desktop pc
# ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKqsFEgtcTDw89GaZJg8P/FE1xngIXmiUZl8j0b+V7n+ root@doloroo-main
hostName = "doloroo-main";
sshUser = "remotebuild";
sshKey = "/root/.ssh/remotebuild";
system = "x86_64-linux";
supportedFeatures = [
"nixos-test"
"big-parallel"
"kvm"
];
}
];
};
}

29
secrets/users.yaml
View File

@@ -7,20 +7,29 @@ sops:
- recipient: age1ykcy2r4kk729e7adqxu8s24ujc60z5eux7ma0ca4ruzydwgm5p6qmdp838 - recipient: age1ykcy2r4kk729e7adqxu8s24ujc60z5eux7ma0ca4ruzydwgm5p6qmdp838
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBzOTBuVmJrSk1Lb2FyeDhx YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBHeW1BYk1VREdwZURJdmRV
QUtENmVsbmpvVU1FcW9URWFrSGErclNGT0dFCndIMEdKTjBWYmNTQ3NxcHVNUVNW aFgvcnNxdHI2VUNkOG1uV0FCd29LYnFMaGg4CkZPWUtob2svNWhtSVZrRHJpNFhh
UkNDTzRNTWF4WFB0bytNKzVxOTVmVFUKLS0tIE8zWGRsMERKZzM2bWFJMkszNWJl ak1iWDFCSm5GWEF4Q1YzUVlWVUVkUXcKLS0tIDRLVWkwMEJtQk4zR0gxSXNnWmZO
TlM5OFJNOGRvNVZoUlZmNFJBaGxVK3MKU2FLj/uh8jpxb8i9KMEfExJLJoxysLNN cHUyN2d0UTQrSy9xS2N2eGordjJLTWMKe+AY98bJIE5XKvdr3J7a2lYYRCuaxOEA
BRQ29QAx+Ew4Tu9RsIAWrfB3RK2SbyJSMjofc2awJdDsy3vVn7/LQg== saDQMckO90wJH/jXvrQbu6NQyvreto3D9Je2vflojRKrMV50NwwBJA==
-----END AGE ENCRYPTED FILE-----
- recipient: age1e6vws55p0g23qzthm4qa93hpt6lqmck6670gkygph0sc0j7my4uq5wqjfh
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZejNYMDc0eWM1L3pXcUhv
K1AvU25KWkVQUkVTMkdnSjZlb1Y2VGF2aUJvCnZKNEFUTWdMVVZwWVZtYkxHVmFL
MTlaMVFoRzhPOWlnUWY2MkhMSFQ1blUKLS0tIGIyZjJKQW9WUFlmM29Od25JeEdT
WlNXemxwM0Naa1gyYzAxVStvMFl0NmsKajwuz2C1Mj+oM5oGOhNhXUCuF9pwCogk
FlzMSvEb8gxuUEoa2P5QMKA1nVbjlKm2xtK4hY6XD9wgx7g7Wa9+eA==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
- recipient: age1x3lahhkefkap67cdmdjcqaxan9hp62er78akr79v9m73nvgugpeqk0y32a - recipient: age1x3lahhkefkap67cdmdjcqaxan9hp62er78akr79v9m73nvgugpeqk0y32a
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBmRXYxbXl6Q2g2RHl4ZkVB YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBCZUp2RWUvbStTUWxBVGNx
UWUycUhjYWFETU9Cd1QzNERFT05wSERSUldRCmlERmZ2a3pxa0VoWVg5cGVubUlU VmVoOHl0c3hUSk45WmNqOWhOL0dPT0FleGxJCml3d3ByMjZQVng2R3k5ZzlKdnVz
Ump5M09QZjhxeVFXdFlDYW0rME5ZVWcKLS0tIFQ5YWR1WFk2VHJpTFI1M3d1eGJh NkpYT2V1Z2VVWEM1V2ZGek9xNWdvdkUKLS0tIDF2TFVESHZDWjE1eFg3REhaUTln
TTNyWDlrM09jcHNVMjkydEVod0xyU3MK0UhbWouZQepwno9bIxk0US2UebDrSduu SFVvWGp3dUlrVFl6WmlvLzF4ekl0NDQKKZ1ubcQTDE1CZlkrFLacXcDw+0wCSP7E
EX38WMwH9BwKBU5hag79zcAPbTQnWg5CIY1I1Xl+J27a5YGy9U3tTA== kIS7ocOC2s5js7MAktY72zJVBzw34SXHpQA/dUyFWd5y4OUPziNEkA==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
lastmodified: "2025-12-28T17:02:38Z" lastmodified: "2025-12-28T17:02:38Z"
mac: ENC[AES256_GCM,data:uWBbdr10CpCUsn6TcaqewwqnXlICizTGW+arCLZz5S0b+Nc8iznq98Ev/G4M9mg4f79JRSwXnL6KgtVyf0Hd5LJuEhmViv2wTNfOTBffN3AV/Bvz2qCuwhD14GzPGUH3oYijfx+EB1LaGLniE2rx85h+q1hasRUlUY8UE/ndzus=,iv:rIM5T3PkzTsJYRjvWWbJyEcKu3evRcYJhVNeGCtOlms=,tag:pCYvDaI0qLIvJJzwT08nwQ==,type:str] mac: ENC[AES256_GCM,data:uWBbdr10CpCUsn6TcaqewwqnXlICizTGW+arCLZz5S0b+Nc8iznq98Ev/G4M9mg4f79JRSwXnL6KgtVyf0Hd5LJuEhmViv2wTNfOTBffN3AV/Bvz2qCuwhD14GzPGUH3oYijfx+EB1LaGLniE2rx85h+q1hasRUlUY8UE/ndzus=,iv:rIM5T3PkzTsJYRjvWWbJyEcKu3evRcYJhVNeGCtOlms=,tag:pCYvDaI0qLIvJJzwT08nwQ==,type:str]