58446db110
sops: fix secret path generation
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m53s
checks / checks (pull_request) Successful in 3m46s
2024-04-12 13:12:31 +02:00
82aafc287e
also enable LLMNR
2024-04-10 15:14:30 +00:00
0d4e1f870b
factstore: secret backends now can return the path to a secret dynamically
...
try to move path function out
2024-04-10 15:14:30 +00:00
faaf6649c5
fix multicast dns for ethernet
2024-04-10 15:14:30 +00:00
a8718b92d4
enable multicast fore default dhcp network
2024-04-09 13:35:51 +00:00
19a62817f2
sops: strip out clanCore.machineName instead of networking.hostName
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m54s
checks / checks (pull_request) Successful in 3m50s
2024-04-09 15:10:27 +02:00
e8ebfb2e2a
drop custom systemd-networkd unit
...
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m49s
checks / checks (pull_request) Successful in 5m21s
We no longer use multicast dns. This one doesn't
conflict with nixos-generate-config.
2024-04-09 12:31:57 +02:00
1e0d73e8a9
Improve documentation
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m53s
checks / checks (pull_request) Successful in 4m34s
2024-04-07 21:07:02 +02:00
4faba7c8e1
template: Reverted systemd-boot in installer. EF02 partition on wrong second place
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m53s
checks / checks (pull_request) Failing after 4m36s
2024-04-07 17:09:44 +02:00
5b838c0d9c
sops: fix decrypte path on machine
2024-04-02 13:50:24 +02:00
e0bdf1ce39
docs: render module options docs
...
checks / check-links (pull_request) Successful in 14s
checks / checks (pull_request) Successful in 3m46s
checks / checks-impure (pull_request) Successful in 1m49s
fix errors while rendering some modules
2024-03-31 00:26:08 +07:00
72cc85cd2f
secrets: improve description of generator script
checks / checks (pull_request) Successful in 3m33s
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m45s
2024-03-30 17:16:26 +07:00
65d116ec28
migrate secrets to new api
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m48s
checks / checks (pull_request) Successful in 3m35s
2024-03-28 11:02:14 +01:00
a8d35d37e7
refactor clanCore.secrets -> clanCore.facts
checks / check-links (pull_request) Successful in 14s
checks / checks-impure (pull_request) Successful in 1m49s
checks / checks (pull_request) Successful in 3m33s
2024-03-27 16:03:16 +01:00
3771be2110
checks: add check for rendering docs
checks / check-links (pull_request) Successful in 15s
checks / checks-impure (pull_request) Successful in 1m52s
checks / checks (pull_request) Successful in 3m32s
2024-03-27 16:59:42 +07:00
4b8b1107ba
clanCore/packages.nix: add gitMinimal
...
checks / check-links (pull_request) Successful in 13s
checks / checks-impure (pull_request) Successful in 1m56s
checks / checks (pull_request) Successful in 4m53s
WIthout this, deployment via `clan machines update` will fail on the remote machine if the flake.nix has a git input
2024-03-25 11:47:32 +07:00
f16667e25a
refactor secrets & facts -> secret_facts & public_facts
checks / check-links (pull_request) Successful in 14s
checks / checks (pull_request) Successful in 33s
checks / checks-impure (pull_request) Successful in 1m49s
2024-03-23 05:46:54 +01:00
539df08706
backups: skip preRestore and postRestore if not specified by a service
2024-03-20 09:32:01 +01:00
92ac151292
rework backup interface to no longer need to list backups to restore them
2024-03-20 09:32:01 +01:00
e296a3019d
re-format with nixfmt
checks / check-links (pull_request) Successful in 21s
checks / checks-impure (pull_request) Successful in 1m50s
checks / checks (pull_request) Successful in 4m23s
2024-03-17 19:48:49 +01:00
77c0e6b31a
make installer nixos module stand-alone
checks / check-links (pull_request) Successful in 21s
checks / checks-impure (pull_request) Successful in 1m49s
checks / checks (pull_request) Successful in 3m37s
2024-03-17 19:38:50 +01:00
2dcdcd98e9
installer: also match qemu and serial consoles for prompting qrcode
checks / check-links (pull_request) Successful in 21s
checks / checks-impure (pull_request) Successful in 1m54s
checks / checks (pull_request) Successful in 4m24s
2024-03-17 19:14:24 +01:00
a6c3e15aca
don't use impure builtins.storePath
2024-03-17 18:10:23 +01:00
377302ff6c
change facts path to be reachable as a store path
2024-03-17 18:10:23 +01:00
a6d52a669d
fix openssh secrets
...
checks / check-links (pull_request) Successful in 20s
checks / checks-impure (pull_request) Successful in 1m52s
checks / checks (pull_request) Successful in 3m55s
change facts path to be the full path
sshd: fixup store path
2024-03-13 14:59:46 +01:00
c2e43a4e65
allow fact-only secrets
2024-03-13 11:08:36 +01:00
5d5f504013
enable: spice-vdagent if xserver is enable
2024-03-12 16:00:54 +00:00
dd73406a92
installer: switch to systemd-boot
...
grub is not able to boot from the disks that we flash for weird reasons.
Since BIOS-boot is on life-support, we may as well just use systemd-boot.
2024-03-07 14:13:11 +01:00
0481746198
drop meshnamed from repository
...
checks / check-links (pull_request) Successful in 21s
checks / checks-impure (pull_request) Successful in 1m55s
checks / checks (pull_request) Successful in 2m47s
It's not super useful and we can always add it back later if we need it.
2024-03-06 10:02:21 +01:00
603893872e
secrets: fix typo
checks / check-links (pull_request) Successful in 22s
checks / checks-impure (pull_request) Successful in 1m52s
checks / checks (pull_request) Successful in 2m22s
2024-03-05 11:59:55 +01:00
a1dcddf9b4
clan-cli: add interactive secrets/fact generation
2024-03-03 04:06:18 +01:00
f500aee786
clanCore secrets: rename toplevel secret to service
2024-03-02 11:43:20 +01:00
4cfd580447
outputs: pass secretsData directly
2024-03-02 11:43:20 +01:00
57e9b27ff8
add option to set defaultGroups for secrets
2024-02-16 17:26:20 +01:00
6871b29d15
vms: use vm fact/secret-store
checks-impure / test (pull_request) Successful in 1m56s
checks / test (pull_request) Successful in 2m17s
2024-02-15 10:41:25 +01:00
98139ac48d
add factsStore modules
2024-02-15 10:41:25 +01:00
7cab50c088
optimize filesystem mount flags
...
checks-impure / test (pull_request) Successful in 2m8s
checks / test (pull_request) Successful in 2m41s
perf!
2024-02-14 13:01:47 +01:00
7a3fcd3deb
vms: enable sysusers
checks-impure / test (pull_request) Successful in 1m49s
checks / test (pull_request) Successful in 2m17s
2024-02-13 14:14:54 +01:00
952f976ea7
fix virtiofsd in CIs
checks-impure / test (pull_request) Successful in 1m41s
checks / test (pull_request) Successful in 2m40s
2024-02-13 13:57:52 +01:00
11ac50c17b
format rootfs in vm itself
2024-02-13 11:45:42 +01:00
07caab537f
drop unused mounts
2024-02-13 11:45:42 +01:00
a56dc3bf8c
simplify vmstate directory
2024-02-13 11:45:42 +01:00
d6b3e03d70
vms: integrate virtiofsd
2024-02-13 11:44:17 +01:00
10cbe11e53
nixosModules clanCore: fix iso format
2024-02-10 13:27:51 +01:00
02dd132e08
vms: init graceful shutdown for GUI
...
checks-impure / test (pull_request) Successful in 1m43s
checks / test (pull_request) Successful in 2m44s
- add python modules for qemu protocols: QMP (hardware interactions) and QGA (guest service interaction)
- refactor state directory: remove name from path (already contains url)
- add impure vm test for basic qmp interaction
- simplify existing vm persistance test (factor out shared code)
- integrate graceful shutdown into GUI
the GUI integration still needs to be improved later:
- add fallback in case system doesn't react to powerdown button
- shutdown GUI switch fails if VM hasn't been started yet, and then remains in a wrong position
2024-02-09 19:55:18 +07:00
67d264263c
nixosModules zerotier: remove unneeded default
checks-impure / test (pull_request) Successful in 1m36s
checks / test (pull_request) Successful in 2m40s
2024-02-07 05:26:01 +01:00
b780754621
clan-cli: add simple flash command
2024-02-07 05:26:01 +01:00
6fe6229498
add requireExplicitUpdate option for mobile devices
checks-impure / test (pull_request) Successful in 1m46s
checks / test (pull_request) Successful in 3m1s
2024-02-06 17:55:34 +01:00
ad1a87fc14
move checks if targetHost/buildHost is set to cli
checks-impure / test (pull_request) Successful in 1m39s
checks / test (pull_request) Successful in 2m45s
2024-02-06 14:51:44 +01:00
4d18ce2366
Merge pull request 'cli,nix: Add machine_icon, machine_description to vm' ( #812 ) from Qubasa-main into main
checks-impure / test (push) Successful in 1m37s
checks / test (push) Successful in 2m16s
2024-02-06 12:29:32 +00:00
