resolved merge conflicts

2022-11-11 16:41:15 +01:00 · 2022-11-11 16:41:15 +01:00 · 3ac8ef4490
commit 3ac8ef4490
parent 31b584f054 7279ea13e9
11 changed files with 280 additions and 80 deletions
--- a/modules/base.nix
+++ b/modules/base.nix
@ -29,6 +29,7 @@
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAmb1kv+7HU1QKE53+gNxUhrggbwomC40Xjxd9hACkoo bennofs@d-cube"
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA0X6L7NwTHiOmFzo8mJBCy6H+DKUePAAXU4amm32DAQ fugi@arch"
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHD1ZkrAmC9g5eJPDgv4zuEM+UIIEWromDzM1ltHt4TM fugi@macbook"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICBtP2ltExnQL5llOvfSKp6OCZKbPWsa2s6P0i00XyrH helene_emilia.hausmann@mailbox.tu-dresden.de"
    ];
    keyFiles = [
      ../keys/ssh/marcus-sapphire
@ -38,6 +39,7 @@
      ../keys/ssh/tassilo
      ../keys/ssh/jonasga
      ../keys/ssh/rouven
+      ../keys/ssh/helene
    ];
  };

@ -66,18 +68,18 @@
 	dig
 	ethtool
 	iftop
-ipcalc
-iperf3
-ipv6calc
-lsof
-ltrace
-strace
-mtr
-traceroute
-smartmontools
-sysstat
-tree
-whois
+    ipcalc
+    iperf3
+    ipv6calc
+    lsof
+    ltrace
+    strace
+    mtr
+    traceroute
+    smartmontools
+    sysstat
+    tree
+    whois
 	exa
 	zsh	
  ];
--- a/modules/vm.nix
+++ b/modules/vm.nix
@ -0,0 +1,43 @@
+{ config, lib, pkgs, buildVM, ... }:
+
+{
+  assertions = [
+    { assertion = buildVM; message = "this module may only be used when building a VM!"; }
+  ];
+
+  users.users.root.hashedPassword = "";
+  users.users.root.initialPassword = "";
+  users.mutableUsers = false;
+
+  networking.useDHCP = lib.mkForce false;
+  networking.interfaces = lib.mkForce {
+    eth0.useDHCP = true;
+  };
+  networking.defaultGateway = lib.mkForce null;
+
+  sops.defaultSopsFile = lib.mkForce ../secrets/test.yaml;
+  sops.age.sshKeyPaths = lib.mkForce [ ];
+  sops.gnupg.sshKeyPaths = lib.mkForce [ ];
+  sops.age.keyFile = lib.mkForce "${../keys/test.age}";
+  sops.age.generateKey = lib.mkForce false;
+
+
+  # don't use production endpoint for test vm, to avoid rate limiting
+  security.acme.defaults.server = "https://acme-staging-v02.api.letsencrypt.org/directory";
+
+  # Set VM disk size (in MB)
+  virtualisation.diskSize = 2048;
+
+  # Set VM ram amount (in MB)
+  virtualisation.memorySize = 2048;
+
+  virtualisation.forwardPorts = [
+    { from = "host"; host.port = 2222; guest.port = 22; }
+  ];
+  virtualisation.graphics = false;
+
+  # show systemd logs on console
+  services.journald.extraConfig = ''
+    ForwardToConsole=yes
+  '';
+}