eduardotenholder
/
defenestrate
forked from M-Labs/defenestrate
1
0
Fork 0
Code Pull Requests Activity

Compare commits

base: eduardotenholder:9921e719edc430fea58d4ba5a0bbfa51ca4e3f60
Branches Tags
eduardotenholder:master
eduardotenholder:quartiq
M-Labs:master
..
compare: eduardotenholder:c13047636f9a2cf35d7b7968cb0d57c1ec2869db
Branches Tags
eduardotenholder:quartiq
eduardotenholder:master
M-Labs:master

No commits in common. "9921e719edc430fea58d4ba5a0bbfa51ca4e3f60" and "c13047636f9a2cf35d7b7968cb0d57c1ec2869db" have entirely different histories.
9921e719ed ... c13047636f

4 changed files with 27 additions and 36 deletions
Show Stats Expand all files Collapse all files

10
README
View File

@ -1,16 +1,8 @@
On build device:
* nix-build
* (for LAN builds) nix-build --arg mlabs true
On target device:
* Enter BIOS, disable secure boot, enable UEFI PXE network boot * Enter BIOS, disable secure boot, enable UEFI PXE network boot
* sudo auto-install * sudo auto-install
* sudo reboot
* Run memtest86 * Run memtest86
* Copy device database to ~/artiq * Copy device database to ~/artiq
* Set timezone and kb layout * Set timezone and kb layout
* Comment out openssh.authorizedKeys.keys * Comment out openssh.authorizedKeys.keys
* sudo seal-off
* history clear * history clear
On build device:
* cat sealoff.sh | ssh rabi@artiq "sudo sh"

13
default.nix
View File

@ -41,28 +41,23 @@ let
nixos-generate-config --root /mnt nixos-generate-config --root /mnt
cp ${./final}/* /mnt/etc/nixos cp ${./final}/* /mnt/etc/nixos
nixos-install --no-root-password --flake /mnt/etc/nixos#artiq nixos-install --no-root-password --flake /mnt/etc/nixos#artiq
reboot
''; '';
customModule = mlabs: customModule = {
let storeUrl = "https://nixbld.m-labs.hk" + (if mlabs then "?priority=10" else "");
in
{
system.stateVersion = "24.05"; system.stateVersion = "24.05";
environment.systemPackages = [ autoInstall pkgs.git ]; environment.systemPackages = [ autoInstall pkgs.git ];
documentation.info.enable = false; # https://github.com/NixOS/nixpkgs/issues/124215 documentation.info.enable = false; # https://github.com/NixOS/nixpkgs/issues/124215
documentation.man.enable = false; documentation.man.enable = false;
nix.settings.trusted-public-keys = ["nixbld.m-labs.hk-1:5aSRVA5b320xbNvu30tqxVPXpld73bhtOeH6uAjRyHc="]; nix.settings.trusted-public-keys = ["nixbld.m-labs.hk-1:5aSRVA5b320xbNvu30tqxVPXpld73bhtOeH6uAjRyHc="];
nix.settings.substituters = [ storeUrl ]; nix.settings.substituters = ["https://nixbld.m-labs.hk"];
}; };
in
{ mlabs ? false }:
let module = customModule mlabs;
in in
makeNetboot { makeNetboot {
modules = [ modules = [
<nixpkgs/nixos/modules/installer/netboot/netboot-minimal.nix> <nixpkgs/nixos/modules/installer/netboot/netboot-minimal.nix>
module customModule
]; ];
system = "x86_64-linux"; system = "x86_64-linux";
} }

11
final/configuration.nix
View File

@ -1,6 +1,14 @@
{ config, pkgs, artiq, ... }: { config, pkgs, artiq, ... }:
{ let
sealOff = pkgs.writeShellScriptBin "seal-off"
''
set -e
nixos-rebuild boot
nix-collect-garbage -d
'';
in {
imports = imports =
[ [
./hardware-configuration.nix ./hardware-configuration.nix
@ -36,6 +44,7 @@
nixpkgs.config.allowUnfree = true; nixpkgs.config.allowUnfree = true;
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
sealOff
wget wget
vim vim
gitAndTools.gitFull gitAndTools.gitFull

5
sealoff.sh
View File

@ -1,5 +0,0 @@
#!/bin/sh
set -e
nixos-rebuild boot
nix-collect-garbage -d