aboutsummaryrefslogtreecommitdiff
path: root/nix
diff options
context:
space:
mode:
authorAlex Auvolat <alex@adnab.me>2024-01-31 20:06:22 +0100
committerAlex Auvolat <alex@adnab.me>2024-02-06 17:46:55 +0100
commit47d33c177371f669ab9010bffe2d986de6a17846 (patch)
tree0992de060760a3ad254baee9569b160b9c337d61 /nix
parent9d77b5863a0c12d99bf15095a6ab2a9848327b5a (diff)
downloadnixcfg-47d33c177371f669ab9010bffe2d986de6a17846.tar.gz
nixcfg-47d33c177371f669ab9010bffe2d986de6a17846.zip
remove unused remote-unlock.nix
Diffstat (limited to 'nix')
-rw-r--r--nix/remote-unlock.nix45
1 files changed, 0 insertions, 45 deletions
diff --git a/nix/remote-unlock.nix b/nix/remote-unlock.nix
deleted file mode 100644
index 3c3e4c8..0000000
--- a/nix/remote-unlock.nix
+++ /dev/null
@@ -1,45 +0,0 @@
-{ config, pkgs, ... }:
-
-
-let
- cfg = config.deuxfleurs.remoteUnlock;
-in
- with builtins;
- with pkgs.lib;
-{
- options.deuxfleurs.remoteUnlock = {
- networkInterface = mkOption {
- description = "Network interface to configure with static IP";
- type = types.str;
- };
- staticIP = mkOption {
- description = "IP address (with prefix length) of this node on the local network interface";
- type = types.str;
- };
- defaultGateway = mkOption {
- description = "IP address of default gateway";
- type = types.str;
- };
- };
-
- config = {
- boot.initrd.availableKernelModules = [ "pps_core" "ptp" "e1000e" ];
- boot.initrd.network.enable = true;
- boot.initrd.network.ssh = {
- enable = true;
- port = 222;
- authorizedKeys = concatLists (mapAttrsToList (name: user: user) config.deuxfleurs.adminAccounts);
- hostKeys = [ "/var/lib/deuxfleurs/remote-unlock/ssh_host_ed25519_key" ];
- };
- boot.initrd.network.postCommands = ''
- ip addr add ${cfg.staticIP} dev ${cfg.networkInterface}
- ip link set dev ${cfg.networkInterface} up
- ip route add default via ${cfg.defaultGateway} dev ${cfg.networkInterface}
- ip a
- ip route
- ping -c 4 ${cfg.defaultGateway}
- echo 'echo run cryptsetup-askpass to unlock drives' >> /root/.profile
- '';
- };
-}
-