From fd49ab67dff5b601fc673edc156bc3160cbc0fad Mon Sep 17 00:00:00 2001 From: tv Date: Sat, 5 Mar 2016 12:40:20 +0100 Subject: krebs os-release: init --- Makefile | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/Makefile b/Makefile index 12a60a9..226c0f2 100644 --- a/Makefile +++ b/Makefile @@ -1,5 +1,12 @@ stockholm ?= . +export STOCKHOLM_VERSION ?= $(shell \ + version=git.$$(git describe --always --dirty); \ + case $$version in (*-dirty) version=$$version@$$(hostname); esac; \ + date=$$(date +%y.%m); \ + printf '%s' "$$date.$$version"; \ +) + ifndef nixos-config $(if $(system),,$(error unbound variable: system)) nixos-config = ./$(LOGNAME)/1systems/$(system).nix @@ -60,7 +67,8 @@ deploy: ssh ?= ssh deploy: $(call execute,populate) $(ssh) $(target_user)@$(target_host) -p $(target_port) \ - nixos-rebuild switch --show-trace -I $(target_path) + env STOCKHOLM_VERSION="$$STOCKHOLM_VERSION" \ + nixos-rebuild switch --show-trace -I $(target_path) # usage: make LOGNAME=shared system=wolf eval.config.krebs.build.host.name eval eval.:;@$(call evaluate,$${expr-eval}) @@ -75,6 +83,7 @@ install: target_path=/mnt$(target_path) $(call execute,populate) $(ssh) $(target_user)@$(target_host) -p $(target_port) \ env NIXOS_CONFIG=$(target_path)/nixos-config \ + STOCKHOLM_VERSION="$$STOCKHOLM_VERSION" \ nixos-install # usage: make test system=foo [target=bar] [method={eval,build}] -- cgit v1.2.3 From 9f5ce4c77abab41930c3890d1e191a07209abd33 Mon Sep 17 00:00:00 2001 From: tv Date: Sat, 5 Mar 2016 12:57:46 +0100 Subject: tv nginx: expose /etc/os-release --- tv/1systems/nomic.nix | 2 +- tv/1systems/wu.nix | 2 +- tv/1systems/xu.nix | 2 +- tv/2configs/default.nix | 1 + tv/2configs/nginx-public_html.nix | 15 --------------- tv/2configs/nginx/default.nix | 17 +++++++++++++++++ tv/2configs/nginx/public_html.nix | 15 +++++++++++++++ 7 files changed, 36 insertions(+), 18 deletions(-) delete mode 100644 tv/2configs/nginx-public_html.nix create mode 100644 tv/2configs/nginx/default.nix create mode 100644 tv/2configs/nginx/public_html.nix diff --git a/tv/1systems/nomic.nix b/tv/1systems/nomic.nix index fa9c908..fed67a1 100644 --- a/tv/1systems/nomic.nix +++ b/tv/1systems/nomic.nix @@ -12,7 +12,7 @@ with config.krebs.lib; ../2configs/git.nix ../2configs/im.nix ../2configs/mail-client.nix - ../2configs/nginx-public_html.nix + ../2configs/nginx/public_html.nix ../2configs/pulse.nix ../2configs/retiolum.nix ../2configs/wu-binary-cache/client.nix diff --git a/tv/1systems/wu.nix b/tv/1systems/wu.nix index 0bf2421..f64918a 100644 --- a/tv/1systems/wu.nix +++ b/tv/1systems/wu.nix @@ -13,7 +13,7 @@ with config.krebs.lib; ../2configs/im.nix ../2configs/mail-client.nix ../2configs/man.nix - ../2configs/nginx-public_html.nix + ../2configs/nginx/public_html.nix ../2configs/pulse.nix ../2configs/retiolum.nix ../2configs/wu-binary-cache diff --git a/tv/1systems/xu.nix b/tv/1systems/xu.nix index 46fb59f..6ab8f2d 100644 --- a/tv/1systems/xu.nix +++ b/tv/1systems/xu.nix @@ -12,7 +12,7 @@ with config.krebs.lib; ../2configs/git.nix ../2configs/mail-client.nix ../2configs/man.nix - ../2configs/nginx-public_html.nix + ../2configs/nginx/public_html.nix ../2configs/pulse.nix ../2configs/retiolum.nix ../2configs/wu-binary-cache/client.nix diff --git a/tv/2configs/default.nix b/tv/2configs/default.nix index 0a3e40a..df5d5da 100644 --- a/tv/2configs/default.nix +++ b/tv/2configs/default.nix @@ -26,6 +26,7 @@ with config.krebs.lib; imports = [ ./backup.nix + ./nginx ./vim.nix { # stockholm dependencies diff --git a/tv/2configs/nginx-public_html.nix b/tv/2configs/nginx-public_html.nix deleted file mode 100644 index 15a3b54..0000000 --- a/tv/2configs/nginx-public_html.nix +++ /dev/null @@ -1,15 +0,0 @@ -{ config, lib, ... }: - -with config.krebs.lib; - -{ - krebs.nginx = { - enable = true; - servers.default.locations = [ - (nameValuePair "~ ^/~(.+?)(/.*)?\$" '' - alias /home/$1/public_html$2; - '') - ]; - }; - tv.iptables.input-internet-accept-new-tcp = singleton "http"; -} diff --git a/tv/2configs/nginx/default.nix b/tv/2configs/nginx/default.nix new file mode 100644 index 0000000..1fac65a --- /dev/null +++ b/tv/2configs/nginx/default.nix @@ -0,0 +1,17 @@ +{ config, lib, ... }: + +with config.krebs.lib; + +{ + krebs.nginx = { + servers.default.locations = [ + (nameValuePair "= /etc/os-release" '' + default_type text/plain; + alias /etc/os-release; + '') + ]; + }; + tv.iptables = optionalAttrs config.krebs.nginx.enable { + input-retiolum-accept-new-tcp = singleton "http"; + }; +} diff --git a/tv/2configs/nginx/public_html.nix b/tv/2configs/nginx/public_html.nix new file mode 100644 index 0000000..15a3b54 --- /dev/null +++ b/tv/2configs/nginx/public_html.nix @@ -0,0 +1,15 @@ +{ config, lib, ... }: + +with config.krebs.lib; + +{ + krebs.nginx = { + enable = true; + servers.default.locations = [ + (nameValuePair "~ ^/~(.+?)(/.*)?\$" '' + alias /home/$1/public_html$2; + '') + ]; + }; + tv.iptables.input-internet-accept-new-tcp = singleton "http"; +} -- cgit v1.2.3 From 6ff99fa513bda5810bb5770d816f341dc3ccda84 Mon Sep 17 00:00:00 2001 From: tv Date: Sat, 5 Mar 2016 19:54:18 +0100 Subject: tv exim-smarthost: set dkim.domain --- tv/2configs/exim-smarthost.nix | 3 +++ 1 file changed, 3 insertions(+) diff --git a/tv/2configs/exim-smarthost.nix b/tv/2configs/exim-smarthost.nix index 3ea0105..2beaa28 100644 --- a/tv/2configs/exim-smarthost.nix +++ b/tv/2configs/exim-smarthost.nix @@ -5,6 +5,9 @@ with config.krebs.lib; { krebs.exim-smarthost = { enable = true; + dkim = { + domain = "viljetic.de"; + }; sender_domains = [ "krebsco.de" "shackspace.de" -- cgit v1.2.3 From 1ed639c20d39b3e8f43080903909e06e52cb4814 Mon Sep 17 00:00:00 2001 From: tv Date: Sat, 5 Mar 2016 20:28:08 +0100 Subject: krebs.exim-smarthost.dkim: support multiple domains --- tv/2configs/exim-smarthost.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/tv/2configs/exim-smarthost.nix b/tv/2configs/exim-smarthost.nix index 2beaa28..280d857 100644 --- a/tv/2configs/exim-smarthost.nix +++ b/tv/2configs/exim-smarthost.nix @@ -5,9 +5,9 @@ with config.krebs.lib; { krebs.exim-smarthost = { enable = true; - dkim = { - domain = "viljetic.de"; - }; + dkim = [ + { domain = "viljetic.de"; } + ]; sender_domains = [ "krebsco.de" "shackspace.de" -- cgit v1.2.3 From 20ad35c90045b51bc2e83587d0650a33467ea896 Mon Sep 17 00:00:00 2001 From: tv Date: Sat, 5 Mar 2016 22:27:54 +0100 Subject: nq: RIP --- mv/1systems/stro.nix | 1 - tv/1systems/wu.nix | 1 - tv/1systems/xu.nix | 1 - 3 files changed, 3 deletions(-) diff --git a/mv/1systems/stro.nix b/mv/1systems/stro.nix index f251cb0..520bf14 100644 --- a/mv/1systems/stro.nix +++ b/mv/1systems/stro.nix @@ -56,7 +56,6 @@ with config.krebs.lib; netcat nix-repl nmap - nq p7zip pass posix_man_pages diff --git a/tv/1systems/wu.nix b/tv/1systems/wu.nix index f64918a..27dd125 100644 --- a/tv/1systems/wu.nix +++ b/tv/1systems/wu.nix @@ -46,7 +46,6 @@ with config.krebs.lib; netcat nix-repl nmap - nq p7zip push qrencode diff --git a/tv/1systems/xu.nix b/tv/1systems/xu.nix index 6ab8f2d..96a0545 100644 --- a/tv/1systems/xu.nix +++ b/tv/1systems/xu.nix @@ -58,7 +58,6 @@ with config.krebs.lib; netcat nix-repl nmap - nq p7zip pass qrencode -- cgit v1.2.3