mynix
/
nixos-infect
mirror of https://github.com/elitak/nixos-infect.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
165 Commits 1 Branch 0 Tags 950 KiB
Commit Graph

104 Commits

Author SHA1 Message Date
Jean-François Roche 69819871dc
Add option to use a custom nix install URL (#195) 
This change allow users to specify a custom nix install URL to use
another nix version than the latest stable or to use another
installer script.
 2024-03-11 08:40:15 -07:00
Jonah Dahlquist 45e2361a9e
Resolved symlink to nixpkgs channel before passing to nix-env command (#191) 
Co-authored-by: Jonah Bron <hi@jonah.id>
 2024-03-11 08:34:49 -07:00
Dominik Gleich bbe94a1175
fix: Authorized keys parsing and extraction (#187) 
* add support for SK authorized keys

nixos-infect incorrectly handles

* Update nixos-infect

* Replace space with [[:space:]]

* Fix possible security issue
 2024-03-11 08:34:16 -07:00
iosmanthus 095fcbc28d
change lightsail boot device to /dev/nvme0n1 (#186) 
* change lightsail boot device to /dev/nvme0n1

Signed-off-by: iosmanthus <myosmanthustree@gmail.com>

* fix missing import

Signed-off-by: iosmanthus <myosmanthustree@gmail.com>

---------

Signed-off-by: iosmanthus <myosmanthustree@gmail.com>
 2024-03-11 08:33:32 -07:00
Donovan Glover 20b43baa2a
chore: Rename boot.cleanTmpDir to boot.tmp.cleanOnBoot (#181) 2024-03-11 08:32:24 -07:00
Maciej Krüger 6712970770
Add provider autodetection for hetzner (#174) 2024-03-11 08:30:14 -07:00
Jonah Dahlquist 9c5b46d78e
Added explicit system.stateVersion to match channel set (#194) 
* Added explicit system.stateVersion to match channel set

* Channel and state version are not the same thing, pinning a recent state version.
 2024-01-31 08:16:15 -08:00
Shyim 6a72f0bff6
use 23.05 as default version (#172) 2023-09-24 06:25:18 -07:00
Xert f66088f486
Removing whitespaces - end and start (#171) 2023-09-21 05:12:12 -07:00
MicroBlock b8a97173e0
automatically trim keys (#165) 2023-09-14 07:28:25 -07:00
Sheran Gunasekera d52253d559
eth1 does not get configured on DigitalOcean when using a VPC (#163) 
* fixed issue where interfaces1 isn't set on DigitalOcean with VPC

* missing curly bracket
 2023-09-14 07:26:37 -07:00
Michael Ashton 7d06597023
Fix DigitalOcean install (#152) 
DigitalOcean now adds an SSH key containing double-quotes, which
breaks nixos-infect.  This commit fixes this by using two single-quotes
instead of a double-quote to wrap the SSH public key lines.
 2023-06-05 02:15:00 -07:00
Johan Bloemberg e01d2272dc
check if ssh keys variable is populated after parsing file (#148) 2023-06-05 02:12:51 -07:00
Arnout Engelen 1a2f458c03
Allow getting configuration from http (#157) 2023-06-05 02:07:00 -07:00
Kid d0a219013c
Update default nixpkgs version to 22.11 (#143) 
Co-authored-by: Eric Litak <elitak@gmail.com>
 2023-04-10 17:11:41 -07:00
Kid dbdbc7b4e2
Do not add channel when installing Nix (#142) 2023-04-10 17:06:33 -07:00
Gabriel Arazas c898a3169d
Fix ESP backup file path (#134) 2023-02-03 11:39:45 -08:00
Arek Kalandyk 5e110b972f
fix: generate network config for Hetzner Cloud (#133) 2023-02-03 11:38:37 -08:00
Scott Stephens e72cd89d99
Add support for AWS Lightsail (#125) 
Co-authored-by: Eric Litak <elitak@gmail.com>
 2022-12-19 21:31:13 -08:00
Shaun Smiley febf5a09cd
add ServArica (#123) 
* add ServArica

* fix spacing

Co-authored-by: Eric Litak <elitak@gmail.com>
 2022-12-19 21:26:47 -08:00
David Morgan f4e57410dc
Fix ssh host key permissions on Oracle Linux (#120) 2022-11-14 19:31:49 -08:00
Astrid Yu 3317b8a82b
Fix installation with FQDNs (#122) 2022-11-14 19:30:52 -08:00
Eric Litak 18a03664f3 missing parentheses 2022-11-09 14:23:49 -08:00
David Morgan c364d49d9d
Only include vmw_pvscsi on x64_64 (#118) 2022-11-09 08:19:00 -08:00
Sandro b771fe1afa
Add vmw_pvscsi kernel module (#115) 
This is required when infecting VMs based on VMware Paravirtual SCSI on VMware vSphere ESXi hosts
 2022-11-03 22:01:23 -07:00
Jairo Llopis 318fc516d1
feat: respect old machine ssh host keys (#107) 
When lustrating another machine, you usually are already connected by SSH. Thus, you usually already trusted that machine's keys.

With this patch, those keys are kept, so after booting into nixos, you still connect to the same trusted IP+Keys combination.

@moduon MT-904
 2022-07-11 10:25:21 -07:00
Kid fc470491a5
Update default nixpkgs version to 22.05 (#102) 2022-06-12 16:18:23 -07:00
Cabia Rangris 95c32c17ae
Added cockbox support and documentation (#103) 
* Added required modules for Cockbox

* Added cockbox to the docs
 2022-06-12 16:17:46 -07:00
Keith 90dbc4b073
Improve flexibility, enable pre-setting NIXOS_CONFIG, & NIXOS_LUSTRATE (#100) 
* Improve flexibility, enable pre-setting of NIXOS_CONFIG, and NIXOS_LUSTRATE

* Added success/failure to table

* Use existing swap

* Use existing swap

* Check for exisitng Swap device

* typo fix

* typo fix
 2022-04-20 01:17:21 -07:00
Vincent Bernat d9012e22d3
Using sh instead of $SHELL (#96) 
Nix install script should be parsed by a Bourne-like shell, like bash
or sh. If the user invokes the script using a Korn shell or a Z Shell,
the script won't work. Nix documentation says to use "sh".
 2022-04-03 10:22:32 -07:00
Matthias Tafelmeier 36e19e3b30
infect: have swap usage optional (#91) 
Doesn't work everywhere with swapon, e.g. osuosl openstack cluster.

Without swap it can succeed though, it's not a hard prerequisite for the
infection to take effect.
 2022-01-03 09:26:23 -08:00
Kid 2ec52a0ede
Enable `zramSwap.enable` by default (#86) 2021-12-30 21:59:08 -08:00
Vincent Bernat be0cbff9e0
Also check for /dev/xvda (Xen) (#88) 2021-12-30 21:58:42 -08:00
Kid 1fa358ed0a
Update default nixpkgs version to 21.11 (#85) 
* Update default nixpkgs version to 21.11

* Remove unnecessary `networking.firewall.allowPing` option

It is a default: https://search.nixos.org/options?channel=21.05&show=networking.firewall.allowPing&from=0&size=50&sort=relevance&type=packages&query=networking.firewall.allowPing
 2021-12-03 10:53:33 -08:00
asdfasdf 1e2ab19808
Add a search path /home/$SUDO_USER/ for ssh keys (#79) 2021-07-31 10:32:35 -07:00
José Albornoz d4b99a21bf
Update default nix to latest stable 21.05 (#78) 2021-06-19 12:17:08 -07:00
ilian f9dcc164a3
Add support for Oracle Cloud Infrastructure (#77) 
* Check environment before making any changes

* Ignore missing dnf in checkEnv

* Add EFI support

* Generate correct file system type config

* Fix XFS tools build error on AArch64 by updating channel

* Add test results for Oracle Cloud Infrastructure

* Fix spacing
 2021-06-09 13:45:06 -07:00
Johannes Spangenberg 58edeb3933
Fix prefixLength for gateway6 route (#73) 2021-05-03 23:32:42 -07:00
Robert Scott 69fa0226d3
Add basic NVMe support (#74) 
* grubdev detection: also check for /dev/nvme0n1

* add nvme to boot.initrd.kernelModules
 2021-05-03 23:21:50 -07:00
mschwaig bdfc7b6a8d
avoid using NIX_PATH in resulting hardware-configuration.nix (#65) 
This makes the resulting hardware-configuration.nix usable from a system
that is a nix flake without having to replace that usage of NIX_PATH first.
 2020-12-31 22:50:30 -08:00
Akshay Mankar dfc6f222da
Prefer to if to '&&' (#64) 
doNetConf check always true

Co-authored-by: Eric Litak <elitak@gmail.com>
 2020-12-25 21:35:33 -08:00
Eric Litak a688bfaa0a rewrite loopback namservers to 8.8.8.8 2020-12-10 14:29:38 -08:00
Eric Litak 8df82582c0 removing some cruft 2020-11-27 22:13:34 -08:00
Eric Litak 1f4ca1ba1a nameserver parsing fix 2020-11-24 14:54:19 -08:00
Eric Litak 10e8dfe80a xzcat dep check 2020-11-24 14:23:30 -08:00
Jonas Chevalier f42e554a40
random fixes (#63) 
* use the nameservers

That variable was being set, but not used

* fix shellcheck issues
 2020-11-23 16:47:55 -08:00
DavHau 30441b1236
Improve providers fix dns (#58) 
* remove digitalocean as default; fix digitalocean dns; update channels

fixes #53
fixes #49

* fix doNetConf check
 2020-08-21 08:57:57 -07:00
peeech a78d378528
nixos-infect: curl -L to follow 301 redirect (#55) 2020-06-21 14:46:22 -07:00
jleeuwes f5da2577dd
Debian 10 fixes (#51) 
* Fix missing curl/wget not being detected

If `which curl` failed, a function `curl` would always be created, whether or not `wget` is present.
So `req curl || req wget` (or even `req curl`) would never trigger `ERROR: Missing both curl and wget`.

* Install curl on Debian

In newer versions of Debian, wget is not installed by default and neither is curl.
So install curl if wget is missing and apt-get is present.
Behavior on other platforms should stay the same with this change.
 2020-04-05 13:31:17 -07:00
DavHau 613fa20813
improve authorized_keys parsing (#46) 2020-02-19 15:22:02 -08:00