machine_setup

talexander/machine_setup

Fork 0

Commit Graph

Select branches

Hide Pull Requests

install_files_mixin

kubernetes

main

mt7927

nix

pixelbook

starship

upstream_amd_debug_tools

yubipi

ef21e0125e Disable the nixbsd build due to onetbb test bugs. nix Tom Alexander 2026-06-23 15:08:44 -04:00
e30a2ddb9e Disable oneTBB tests. Tom Alexander 2026-06-21 22:14:14 -04:00
53b3717b6c Fix branch for family disks target in nix_builder. Tom Alexander 2026-06-17 15:10:20 -04:00
0cf4139392 Fix launching shikane. Tom Alexander 2026-06-18 10:38:23 -04:00
6094fee196 Enable the thunderbolt service. Tom Alexander 2026-06-17 13:08:11 -04:00
794cce9a50 Configure kernel preemption. kubernetes Tom Alexander 2026-05-30 21:40:12 -04:00
01fff9b60a Update kubernetes packages and update to gateway API 1.5.1. Tom Alexander 2026-05-30 19:35:06 -04:00
70773fd4f3 Add secret for homepage-staging. Tom Alexander 2026-05-03 17:03:04 -04:00
407bc13bc2 Add a secret for the harbor webhooks to flux. Tom Alexander 2026-05-03 16:25:01 -04:00
9db4b0ea5c Update flux and install the image automation controller. Tom Alexander 2026-05-03 14:52:53 -04:00
6d44d6e6c9 Add IP addresses to worker certs for the metrics server. Tom Alexander 2026-05-02 20:35:13 -04:00
87aca6ef61 Delete images after 24 hours of being unused. Tom Alexander 2026-05-02 15:53:35 -04:00
b302a14893 Set up containerd use harbor.fizz.buzz. Tom Alexander 2026-05-02 12:50:36 -04:00
9c8c17f028 Add secrets for archive-box, webhook-bridge, and tekton. Tom Alexander 2026-04-28 17:45:02 -04:00
fe5465f2d8 Allow node-to-node communication. Tom Alexander 2026-04-26 12:44:24 -04:00
914d6b071e Use numbers for folder order. Tom Alexander 2026-04-26 09:28:31 -04:00
aadcf13442 Add harbor secrets. Tom Alexander 2026-04-26 09:11:35 -04:00
b2f9889b0c Switch to the experimental gateway CRDs for TCPRoute support. Tom Alexander 2026-04-18 19:20:16 -04:00
b444e37e3c Add oauth2 proxy secrets. Tom Alexander 2026-04-18 17:45:47 -04:00
54b097ae69 Add dex secrets. Tom Alexander 2026-04-18 16:22:47 -04:00
c7502af7e8 Enable the firewall. Tom Alexander 2026-04-18 15:49:08 -04:00
f5da063952 Add gitea secrets. Tom Alexander 2026-04-16 20:33:54 -04:00
3b1b78c0b5 Add generation for in-repo secrets. Tom Alexander 2026-03-19 18:16:20 -04:00
8dfd4f27f6 Enforce cilium network policies. Tom Alexander 2026-03-16 19:04:56 -04:00
6d4550c93a Downgrade to gateway 1.4.1. Tom Alexander 2026-03-15 12:22:26 -04:00
cf72a26942 Update packages in kubernetes/keys. Tom Alexander 2026-03-07 20:14:07 -05:00
0429f19364 Fix network for updated nix. Tom Alexander 2026-02-14 12:34:24 -05:00
2a70d24603 Fix proxy auth tls Tom Alexander 2026-01-11 13:03:20 -05:00
8054db8cfb Generate certificates for the aggregation layer. Tom Alexander 2026-01-09 18:19:34 -05:00
4b4934b4c4 Add a note for the cilium connectivity test. Tom Alexander 2026-01-09 17:32:28 -05:00
d611f0fe5a Temporarily disable the firewall for debugging. Tom Alexander 2026-01-04 22:27:46 -05:00
a665cae379 Enable gateway support. Tom Alexander 2026-01-04 22:27:00 -05:00
4c59dfd8b2 Enable hubble. Tom Alexander 2026-01-04 12:13:58 -05:00
8a08714522 Temporarily drop flux interval to 1 minute during early development. Tom Alexander 2026-01-03 15:00:44 -05:00
8c35971357 Install deferred manifests. Tom Alexander 2026-01-03 14:57:26 -05:00
53fe030d97 Add a custom nftables firewall config. Tom Alexander 2026-01-02 23:28:29 -05:00
724c05f03a Enable the firewall. Tom Alexander 2026-01-01 10:21:36 -05:00
8b2916189b Fix CoreDNS IPv4 connectivity. Tom Alexander 2025-12-31 20:12:56 -05:00
a95f24af0d Increase timeout for coredns cache. Tom Alexander 2025-12-30 21:57:09 -05:00
1528ae0764 More changes to try to fix coredns. Tom Alexander 2025-12-29 22:44:04 -05:00
30f817dfe8 Move the kubelet yaml config into nix. Tom Alexander 2025-12-29 21:54:27 -05:00
efd21f715f Implement a generic helm templater package. Tom Alexander 2025-12-29 21:41:23 -05:00
23372d763f Switch to generating the coredns manifests via nix. Tom Alexander 2025-12-29 21:19:50 -05:00
e55ece9dad Use CoreDNS for in-cluster DNS requests and caching. Tom Alexander 2025-12-29 21:15:29 -05:00
05f1c518fd Enable native routing. Tom Alexander 2025-12-29 20:45:01 -05:00
43633597fc Build the cilium manifest automatically in nix. Tom Alexander 2025-12-29 19:11:55 -05:00
90c88adb73 Allow pods to directly speak to the public internet on their own public IPv6 addresses. Tom Alexander 2025-12-29 18:35:20 -05:00
cd78dc4680 Enable ipv4 and tunnel routing. Tom Alexander 2025-12-29 17:00:23 -05:00
c37723ca81 Switch to kubernetes ipam mode. Tom Alexander 2025-12-29 15:59:00 -05:00
1da8e20d5b Fix service cluster ip range. Tom Alexander 2025-12-29 04:58:49 -05:00
8584577327 Fix trailing line break in kubernetes encryption config. Tom Alexander 2025-12-27 21:22:06 -05:00
a3afb104cd Move the yaml functions to their own file. Tom Alexander 2025-12-27 21:15:00 -05:00
d4620e8ac9 Introduce functions to generate yaml. Tom Alexander 2025-12-27 21:03:25 -05:00
ebe4505a6f Add missing cidr declarations. Tom Alexander 2025-12-23 06:48:06 -05:00
f962c679ca Fix DNS resolution. Tom Alexander 2025-12-22 00:14:17 -05:00
4fe58c4d6c Apply the git repo to the cluster. Tom Alexander 2025-12-21 23:48:17 -05:00
570424f5b1 Trust flux's ssh key in the yaml git repo. Tom Alexander 2025-12-21 23:26:15 -05:00
3a5ada6049 Generic secrets for ssh keys. Tom Alexander 2025-12-21 22:41:21 -05:00
8d572a5cce Generic secrets for pgp keys. Tom Alexander 2025-12-21 19:43:43 -05:00
c26fa59408 Generate kubernetes secrets for ssh keys. Tom Alexander 2025-12-21 18:45:49 -05:00
2e0c97bbf9 Install CoreDNS. Tom Alexander 2025-12-21 18:23:27 -05:00
3197868a7b Generate pgp keys for sops. Tom Alexander 2025-12-21 14:17:31 -05:00
c9f483dd98 Generate ssh keys for flux bootstrap. Tom Alexander 2025-12-21 00:01:57 -05:00
dbeb98112b Move the cluster bootstrap into the keys flake. Tom Alexander 2025-12-20 23:13:51 -05:00
958ae2b694 Set up flux. Tom Alexander 2025-12-20 23:01:19 -05:00
925eb99406 Add a bootstrap role. Tom Alexander 2025-12-20 22:14:28 -05:00
3cdaf980b5 Add a bootstrap role to load manifests into the cluster. Tom Alexander 2025-12-20 20:49:40 -05:00
c4caf5d103 Fix launching of containers. Tom Alexander 2025-12-19 22:49:32 -05:00
eab42023a9 Create a debugging role. Tom Alexander 2025-12-19 21:21:57 -05:00
fe6056cee7 Some networking fixes. Tom Alexander 2025-12-18 22:28:03 -05:00
64ad4430bb Add cilium bootstrap. Tom Alexander 2025-12-16 21:48:44 -05:00
dd2d0b23e4 Installing the cni plugins. Tom Alexander 2025-12-18 00:27:18 -05:00
eb82e8e5e3 Add kube-proxy. Tom Alexander 2025-12-16 21:07:39 -05:00
f1382cfbb7 Add kubelet. Tom Alexander 2025-12-16 19:31:33 -05:00
43df118e4f Add worker nodes. Tom Alexander 2025-12-15 22:32:32 -05:00
f3797b5c42 Add kube-scheduler. Tom Alexander 2025-12-15 20:09:46 -05:00
593929598a Add kube-controller-manager. Tom Alexander 2025-12-15 19:47:35 -05:00
3a8569b0de Fix launching kube-apiserver. Tom Alexander 2025-12-14 23:24:23 -05:00
84738f7266 Move the encryption config into a package. Tom Alexander 2025-12-14 20:28:48 -05:00
45b7ce369e Switch to generating certs with openssl. Tom Alexander 2025-12-14 18:24:24 -05:00
c863bfe136 Add controller proxy certs. Tom Alexander 2025-12-14 14:48:53 -05:00
98a0d78e45 Add requestheader-client-ca. Tom Alexander 2025-12-14 13:44:56 -05:00
87312b19fa Add service account. Tom Alexander 2025-12-14 13:37:46 -05:00
cb312752ba Install kubernetes. Tom Alexander 2025-12-08 20:33:41 -05:00
321d215a57 Add additional controllers. Tom Alexander 2025-12-07 15:48:08 -05:00
21d5002e7f Add configs for a new kubernetes cluster on NixOS. Tom Alexander 2025-11-30 14:32:36 -05:00
9e4c079258 Update packages. Tom Alexander 2026-06-12 12:09:33 -04:00
3ab7a6e460 Update packages. Tom Alexander 2026-06-02 22:16:08 -04:00
49f75408ae Move kernel config to its own role. Tom Alexander 2026-05-31 02:03:49 -04:00
00806d4963 Fix firewall rules for certificate renewal. main Tom Alexander 2026-05-30 17:02:01 -04:00
0fa170c57e Preserve .vscode-shared. Tom Alexander 2026-05-27 13:24:16 -04:00
3050cece0c Do not force import the root zfs pool. Tom Alexander 2026-05-22 20:38:27 -04:00
6d070ddbb4 Update packages. Tom Alexander 2026-05-21 20:33:04 -04:00
f99fa54d60 Revert "Update only the kernel." Tom Alexander 2026-05-21 20:31:54 -04:00
d52b5db39b Update only the kernel. Tom Alexander 2026-05-21 20:31:27 -04:00
003c3cc41a Fix rnnoise after latest update. Tom Alexander 2026-05-07 17:00:03 -04:00
d83652bb9c Add rsync_clone script. Tom Alexander 2026-05-06 10:02:20 -04:00
6fd09a712e Add git_fix_author script. Tom Alexander 2026-05-06 10:00:02 -04:00
d9c4f824d2 Add git_find_merged_branches script. Tom Alexander 2026-05-06 09:56:18 -04:00
856e4daee6 Add the decode_jwt script. Tom Alexander 2026-05-06 09:49:47 -04:00

1 2 3 4 5 ...

Commit Graph Select branches Hide Pull Requests install_files_mixin kubernetes main mt7927 nix pixelbook starship upstream_amd_debug_tools yubipi Mono Color

Commit Graph

Select branches

Hide Pull Requests

install_files_mixin

kubernetes

main

mt7927

nix

pixelbook

starship

upstream_amd_debug_tools

yubipi