talexander/machine_setup
1
0
Fork 0
Code Issues Pull Requests Releases Activity
1,314 Commits 9 Branches 0 Tags
70773fd4f3f01b2b49d4aca466c85e45061b8ab0
Commit Graph

606 Commits

Author SHA1 Message Date
Tom Alexander
3a5ada6049 Generic secrets for ssh keys. 2026-06-14 08:47:11 -04:00
Tom Alexander
8d572a5cce Generic secrets for pgp keys. 2026-06-14 08:47:11 -04:00
Tom Alexander
c26fa59408 Generate kubernetes secrets for ssh keys. 2026-06-14 08:47:11 -04:00
Tom Alexander
2e0c97bbf9 Install CoreDNS. 2026-06-14 08:47:11 -04:00
Tom Alexander
3197868a7b Generate pgp keys for sops. 2026-06-14 08:47:11 -04:00
Tom Alexander
c9f483dd98 Generate ssh keys for flux bootstrap. 2026-06-14 08:47:11 -04:00
Tom Alexander
dbeb98112b Move the cluster bootstrap into the keys flake. 
Bootstrapping the cluster needs access to secrets, so I am moving it into the keys flake.
 2026-06-14 08:47:10 -04:00
Tom Alexander
958ae2b694 Set up flux. 2026-06-14 08:47:10 -04:00
Tom Alexander
925eb99406 Add a bootstrap role. 2026-06-14 08:47:10 -04:00
Tom Alexander
3cdaf980b5 Add a bootstrap role to load manifests into the cluster. 2026-06-14 08:47:10 -04:00
Tom Alexander
c4caf5d103 Fix launching of containers. 2026-06-14 08:47:10 -04:00
Tom Alexander
eab42023a9 Create a debugging role. 2026-06-14 08:47:10 -04:00
Tom Alexander
fe6056cee7 Some networking fixes. 2026-06-14 08:47:10 -04:00
Tom Alexander
64ad4430bb Add cilium bootstrap. 2026-06-14 08:47:09 -04:00
Tom Alexander
dd2d0b23e4 Installing the cni plugins. 2026-06-14 08:47:09 -04:00
Tom Alexander
eb82e8e5e3 Add kube-proxy. 2026-06-14 08:47:09 -04:00
Tom Alexander
f1382cfbb7 Add kubelet. 2026-06-14 08:47:09 -04:00
Tom Alexander
43df118e4f Add worker nodes. 2026-06-14 08:47:09 -04:00
Tom Alexander
f3797b5c42 Add kube-scheduler. 2026-06-14 08:47:09 -04:00
Tom Alexander
593929598a Add kube-controller-manager. 2026-06-14 08:47:08 -04:00
Tom Alexander
3a8569b0de Fix launching kube-apiserver. 2026-06-14 08:47:08 -04:00
Tom Alexander
84738f7266 Move the encryption config into a package. 2026-06-14 08:47:08 -04:00
Tom Alexander
45b7ce369e Switch to generating certs with openssl. 2026-06-14 08:47:08 -04:00
Tom Alexander
c863bfe136 Add controller proxy certs. 2026-06-14 08:47:08 -04:00
Tom Alexander
98a0d78e45 Add requestheader-client-ca. 2026-06-14 08:47:08 -04:00
Tom Alexander
87312b19fa Add service account. 2026-06-14 08:47:07 -04:00
Tom Alexander
cb312752ba Install kubernetes. 2026-06-14 08:47:07 -04:00
Tom Alexander
321d215a57 Add additional controllers. 2026-06-14 08:47:07 -04:00
Tom Alexander
21d5002e7f Add configs for a new kubernetes cluster on NixOS. 2026-06-14 08:47:05 -04:00
Tom Alexander
9e4c079258 Update packages. 2026-06-13 22:05:23 -04:00
Tom Alexander
3ab7a6e460 Update packages. 2026-06-13 22:05:23 -04:00
Tom Alexander
49f75408ae Move kernel config to its own role. 2026-06-13 22:05:23 -04:00
Tom Alexander
0fa170c57e Preserve .vscode-shared. 
The latest vscode is storing data in ~/.vscode-shared that contains the "Open Recent" entries and the settings on which folders are trusted.
 2026-05-27 13:24:16 -04:00
Tom Alexander
3050cece0c Do not force import the root zfs pool. 2026-05-25 22:20:08 -04:00
Tom Alexander
6d070ddbb4 Update packages. 2026-05-25 22:20:08 -04:00
Tom Alexander
f99fa54d60 Revert "Update only the kernel." 
This reverts commit d52b5db39b.
 2026-05-21 20:31:54 -04:00
Tom Alexander
d52b5db39b Update only the kernel. 2026-05-21 20:31:27 -04:00
Tom Alexander
003c3cc41a Fix rnnoise after latest update. 2026-05-07 17:00:03 -04:00
Tom Alexander
d83652bb9c Add rsync_clone script. 2026-05-06 10:02:20 -04:00
Tom Alexander
6fd09a712e Add git_fix_author script. 2026-05-06 10:00:02 -04:00
Tom Alexander
d9c4f824d2 Add git_find_merged_branches script. 2026-05-06 09:56:18 -04:00
Tom Alexander
856e4daee6 Add the decode_jwt script. 2026-05-06 09:49:47 -04:00
Tom Alexander
9a9268f8cc Disable shipwright. 
The hash is not matching, so the build is broken.
 2026-05-05 22:42:17 -04:00
Tom Alexander
8d3ebf7ba2 Update packages. 2026-05-01 20:16:45 -04:00
Tom Alexander
d35cfaacbd Add nix-pin-revision script. 2026-04-26 08:32:17 -04:00
Tom Alexander
8b1212e182 Support hardware accelerated RNG in qemurc. 2026-04-26 08:32:17 -04:00
Tom Alexander
7f0250cb9d Sync to the store before registering paths. 2026-04-26 08:32:17 -04:00
Tom Alexander
bc2636a54c New VPN address for home server. 2026-04-26 08:32:17 -04:00
Tom Alexander
c8147b5e9e Use direct paths for hydra's nix store. 
I was getting corrupted builds, so as a test I am using the direct path where the drive is mounted rather than going through bind mounts.
 2026-04-26 08:32:17 -04:00
Tom Alexander
4115e95bb6 Add a build of nixbsd to nix_builder. 2026-04-26 08:32:17 -04:00