alyraffauf/nixcfg
1
0
Fork 0
mirror of https://github.com/alyraffauf/nixcfg.git synced 2024-11-25 22:51:54 -05:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity

mauville: reorg and document initrd ssh key generator

Browse source
This commit is contained in:
Aly Raffauf 2024-07-17 00:09:41 -04:00
parent 5ff89ab016
commit 1467fd3a8f
1 changed files with 20 additions and 16 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

36
hosts/mauville/default.nix
View file

@ -48,21 +48,6 @@ in {
syncthingKey.file = ../../secrets/syncthing/mauville/key.age; syncthingKey.file = ../../secrets/syncthing/mauville/key.age;
}; };
system.activationScripts.gen-initrd-ssh.text = ''
KEY_PATH="/etc/secrets/initrd/ssh_host_ed25519_key"
mkdir -p /etc/secrets/initrd
# Check if the file already exists
if [ -f "$KEY_PATH" ]; then
echo "Key already exists at $KEY_PATH. Skipping ssh-keygen."
else
# Generate the SSH key if it doesn't exist
${pkgs.openssh}/bin/ssh-keygen -t ed25519 -N "" -f "$KEY_PATH"
echo "SSH key generated at $KEY_PATH."
fi
'';
boot = { boot = {
initrd = { initrd = {
availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid" "sd_mod" "r8169"]; availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid" "sd_mod" "r8169"];
@ -134,7 +119,26 @@ in {
}; };
environment.variables.GDK_SCALE = "1.25"; environment.variables.GDK_SCALE = "1.25";
system.stateVersion = "24.05";
system = {
activationScripts.gen-initrd-ssh.text = ''
KEY_PATH="/etc/secrets/initrd/ssh_host_ed25519_key"
mkdir -p /etc/secrets/initrd
# Check if the file already exists
if [ -f "$KEY_PATH" ]; then
echo "[initrd] ssh key exists at $KEY_PATH."
else
# Generate the SSH key if it doesn't exist
${pkgs.openssh}/bin/ssh-keygen -t ed25519 -N "" -f "$KEY_PATH"
echo "[initrd] ssh key generated at $KEY_PATH."
fi
'';
stateVersion = "24.05";
};
zramSwap.memoryPercent = 100; zramSwap.memoryPercent = 100;
ar = { ar = {