diff options
author | Alex Auvolat <alex@adnab.me> | 2024-01-31 20:06:22 +0100 |
---|---|---|
committer | Alex Auvolat <alex@adnab.me> | 2024-02-06 17:46:55 +0100 |
commit | 47d33c177371f669ab9010bffe2d986de6a17846 (patch) | |
tree | 0992de060760a3ad254baee9569b160b9c337d61 /nix | |
parent | 9d77b5863a0c12d99bf15095a6ab2a9848327b5a (diff) | |
download | nixcfg-47d33c177371f669ab9010bffe2d986de6a17846.tar.gz nixcfg-47d33c177371f669ab9010bffe2d986de6a17846.zip |
remove unused remote-unlock.nix
Diffstat (limited to 'nix')
-rw-r--r-- | nix/remote-unlock.nix | 45 |
1 files changed, 0 insertions, 45 deletions
diff --git a/nix/remote-unlock.nix b/nix/remote-unlock.nix deleted file mode 100644 index 3c3e4c8..0000000 --- a/nix/remote-unlock.nix +++ /dev/null @@ -1,45 +0,0 @@ -{ config, pkgs, ... }: - - -let - cfg = config.deuxfleurs.remoteUnlock; -in - with builtins; - with pkgs.lib; -{ - options.deuxfleurs.remoteUnlock = { - networkInterface = mkOption { - description = "Network interface to configure with static IP"; - type = types.str; - }; - staticIP = mkOption { - description = "IP address (with prefix length) of this node on the local network interface"; - type = types.str; - }; - defaultGateway = mkOption { - description = "IP address of default gateway"; - type = types.str; - }; - }; - - config = { - boot.initrd.availableKernelModules = [ "pps_core" "ptp" "e1000e" ]; - boot.initrd.network.enable = true; - boot.initrd.network.ssh = { - enable = true; - port = 222; - authorizedKeys = concatLists (mapAttrsToList (name: user: user) config.deuxfleurs.adminAccounts); - hostKeys = [ "/var/lib/deuxfleurs/remote-unlock/ssh_host_ed25519_key" ]; - }; - boot.initrd.network.postCommands = '' - ip addr add ${cfg.staticIP} dev ${cfg.networkInterface} - ip link set dev ${cfg.networkInterface} up - ip route add default via ${cfg.defaultGateway} dev ${cfg.networkInterface} - ip a - ip route - ping -c 4 ${cfg.defaultGateway} - echo 'echo run cryptsetup-askpass to unlock drives' >> /root/.profile - ''; - }; -} - |