Use efi; fix nixinate; fix automount

J-Swift · J-Swift · commit a5a9bda59ed4 · 2024-08-26T01:20:11.000-04:00
diff --git a/Makefile b/Makefile
@@ -10,14 +10,16 @@ qcow: qcow-build qcow-copy
 #time nix build .#nixosConfigurations.$(TARGET).config.formats.qcow --eval-store auto --store 'ssh-ng://$(BUILD_STORE)' --json -L | tee $(BUILD_OUT_FILE); exit "$${PIPESTATUS[0]}"
 # IMG_PATH=$(shell cat $(BUILD_OUT_FILE) | jq .[].outputs.out -r ); [ ! -z "$$IMG_PATH" ] && time scp $(BUILD_STORE):"$$IMG_PATH/"*.qcow2 ./"$(TARGET).qcow2"
 #time nix build .#nixosConfigurations.$(TARGET).config.formats.qcow --eval-store auto --json -L | tee $(BUILD_OUT_FILE); exit "$${PIPESTATUS[0]}"
+#time nix build .#nixosConfigurations.$(TARGET).config.formats.qcow --eval-store auto --store 'ssh-ng://$(BUILD_STORE)' --json -L | tee $(BUILD_OUT_FILE); exit "$${PIPESTATUS[0]}"
+
 qcow-build: ensure-target
-	time nix build .#nixosConfigurations.$(TARGET).config.formats.qcow --json -L | tee $(BUILD_OUT_FILE); exit "$${PIPESTATUS[0]}"
+	time nix build .#nixosConfigurations.$(TARGET).config.formats.qcow-efi --json --print-build-logs --verbose | tee $(BUILD_OUT_FILE); exit "$${PIPESTATUS[0]}"
 qcow-copy: ensure-target
 	[ -f "./result/nixos.qcow2" ] && rm -f ./_utm/"$(TARGET).qcow2" && cp -L "./result/nixos.qcow2" ./_utm/"$(TARGET).qcow2"
 	utm-rebuild
 
 deploy: ensure-target
-	time nix run .#apps.nixinate.$(TARGET)
+	time nix run .#nixinate.$(TARGET)
 
 ################################################################################
 # Helpers
diff --git a/flake.lock b/flake.lock
diff --git a/flake.nix b/flake.nix
@@ -13,7 +13,7 @@
 
     nixinate = {
       # url = "github:MatthewCroughan/nixinate";
-      url = "github:J-Swift/nixinate/feature/allow-ssh-config-hostnames";
+      url = "github:J-Swift/nixinate/fix/macos-shm";
       inputs.nixpkgs.follows = "nixpkgs";
     };
   };
@@ -28,14 +28,16 @@
           apps = nixinate.nixinate.${eachSystem} self;
           devShell = import ./shell.nix { inherit pkgs; };
         }
-      ) // {
+      ) //
+    {
       nixosConfigurations =
         let
           bato-system = "x86_64-linux";
-          stateVersion = "23.11";
+          hostname = "bato-nix";
+          stateVersion = "24.11";
         in
         {
-          bato-nix =
+          ${hostname} =
             let
             in nixpkgs.lib.nixosSystem
               rec {
@@ -49,17 +51,80 @@
 
                 modules = [
                   {
+                    _module.args.nixinate = {
+                      host = "192.168.64.9";
+                      sshUser = "root";
+                      buildOn = "remote";
+                      substituteOnTarget = true;
+                      hermetic = false;
+                    };
+                  }
+
+                  {
+                    imports = [
+                      nixos-generators.nixosModules.all-formats
+                    ];
+                  }
+
+                  # boot loader
+                  {
+                    boot.initrd.availableKernelModules = [ "xhci_pci" "uhci_hcd" "ehci_pci" "ahci" "usbhid" "sd_mod" ];
+                    boot.initrd.kernelModules = [ ];
+                    boot.kernelModules = [ ];
+                    boot.extraModulePackages = [ ];
+
+                    boot.growPartition = true;
+
+                    boot.loader.grub = {
+                      enable = true;
+                      device = "nodev";
+                      efiSupport = true;
+                      efiInstallAsRemovable = true;
+
+                      useOSProber = false;
+                      configurationLimit = 10;
+                    };
+                  }
+
+                  {
+                    fileSystems."/" = {
+                      device = "/dev/disk/by-label/nixos";
+                      fsType = "ext4";
+                      autoResize = true;
+                    };
+
+                    fileSystems."/boot" = {
+                      device = "/dev/disk/by-label/ESP";
+                      fsType = "vfat";
+                    };
+
+                    swapDevices = [ ];
+
+                    # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
+                    # (the default) this is the recommended approach. When using systemd-networkd it's
+                    # still possible to use this option, but it's recommended to use it in conjunction
+                    # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
+                    networking.useDHCP = true;
+                    # networking.interfaces.enp0s1.useDHCP = lib.mkDefault true;
+
+                    nixpkgs.hostPlatform = "x86_64-linux";
+
+                    boot.loader.grub.enable = true;
+
                     system.stateVersion = stateVersion;
                     boot.kernelPackages = pkgs.linuxPackages_6_10;
 
-                    users.users.root.password = "linux";
+                    users.users.root = {
+                      password = "linux";
 
-                    time.timeZone = "America/New_York";
-                    services.openssh = {
-                      enable = true;
-                      settings.PermitRootLogin = "yes";
+                      openssh.authorizedKeys.keys = [
+                        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINpmysyMziDLKjj2Faps0jl0aTZETR67zlJmeuSLOR75 jimmy@MbpHal.local"
+                      ];
                     };
-                    networking.hostName = "bato-nix";
+
+                    services.openssh.enable = true;
+                    time.timeZone = "America/New_York";
+                    networking.hostName = hostname;
 
                     i18n.defaultLocale = "en_US.UTF-8";
 
@@ -98,11 +163,11 @@
                         what = "http://localhost:9843";
                         where = "/mnt/utm-shared";
 
-                        wantedBy = [ "multi-user.target" ];
+                        after = [ "network-online.target" ];
+                        wants = [ "network-online.target" ];
 
                         type = "davfs";
-                        # options = "noauto,_netdev,x-systemd.automount,cache=none,credentials=/etc/davfs${secretsPath}/cifs-credentials.txt";
-                        options = "noauto,x-systemd.automount";
+                        options = "x-systemd.automount";
 
                         mountConfig = {
                           DirectoryMode = "0777";
@@ -115,11 +180,9 @@
                       {
                         where = "/mnt/utm-shared";
 
-                        after = [ "remote-fs-pre.target" ];
-                        wants = [ "remote-fs-pre.target" ];
-                        conflicts = [ "umount.target" ];
-                        before = [ "umount.target" ];
-                        wantedBy = [ "remote-fs.target" ];
+                        after = [ "network-online.target" ];
+                        wants = [ "network-online.target" ];
+                        wantedBy = [ "multi-user.target" ];
 
                         unitConfig = {
                           DefaultDependencies = "no";
@@ -133,14 +196,6 @@
                     ];
                   }
 
-                  {
-                    imports = [
-                      nixos-generators.nixosModules.all-formats
-                    ];
-
-                    formatConfigs.qcow = { config, lib, ... }: { };
-                  }
-
                   {
                     services.displayManager.autoLogin = {
                       enable = true;
diff --git a/shell.nix b/shell.nix
@@ -16,7 +16,7 @@ let
       set baseVm to virtual machine named "bato-base"
       set qcow to POSIX file "/Users/jimmy/Developer/bato-nix/_utm/bato-nix.qcow2"
 
-      duplicate baseVm with properties {configuration:{name:"bato-nix", architecture:"x86_64", uefi:false, drives:{{source:qcow}}}}
+      duplicate baseVm with properties {configuration:{name:"bato-nix", architecture:"x86_64", uefi:true, drives:{{source:qcow}}}}
     end tell
   '';
 in
