forked from Fediversity/Fediversity
693e21b1a8
for now, had to get rid of vmVariant. we can figure out how to add it back when we understand how we should actually distinguish between real machines and VMs
68 lines
1.7 KiB
Nix
68 lines
1.7 KiB
Nix
{ pkgs, ... }: {
|
|
# customize nixos-rebuild build-vm to be a bit more convenient
|
|
virtualisation.vmVariant = {
|
|
# let us log in
|
|
users.mutableUsers = false;
|
|
users.users.root.hashedPassword = "";
|
|
services.openssh = {
|
|
enable = true;
|
|
settings = {
|
|
PermitRootLogin = "yes";
|
|
PermitEmptyPasswords = "yes";
|
|
UsePAM = "no";
|
|
};
|
|
};
|
|
|
|
# automatically log in
|
|
services.getty.autologinUser = "root";
|
|
services.getty.helpLine = ''
|
|
Type `C-a c` to access the qemu console
|
|
Type `C-a x` to quit
|
|
'';
|
|
# access to convenient things
|
|
environment.systemPackages = with pkgs; [
|
|
w3m
|
|
python3
|
|
xterm # for `resize`
|
|
];
|
|
environment.loginShellInit = ''
|
|
eval "$(resize)"
|
|
'';
|
|
nix.extraOptions = ''
|
|
extra-experimental-features = nix-command flakes
|
|
'';
|
|
|
|
# no graphics. see nixos-shell
|
|
virtualisation = {
|
|
graphics = false;
|
|
qemu.consoles = [ "tty0" "hvc0" ];
|
|
qemu.options = [
|
|
"-serial null"
|
|
"-device virtio-serial"
|
|
"-chardev stdio,mux=on,id=char0,signal=off"
|
|
"-mon chardev=char0,mode=readline"
|
|
"-device virtconsole,chardev=char0,nr=0"
|
|
];
|
|
};
|
|
|
|
|
|
# we can't forward port 80 or 443, so let's run nginx on a different port
|
|
networking.firewall.allowedTCPPorts = [ 8443 8080 ];
|
|
services.nginx.defaultSSLListenPort = 8443;
|
|
services.nginx.defaultHTTPListenPort = 8080;
|
|
virtualisation.forwardPorts = [
|
|
{
|
|
from = "host";
|
|
host.port = 8080;
|
|
guest.port = 8080;
|
|
}
|
|
{
|
|
from = "host";
|
|
host.port = 8443;
|
|
guest.port = 8443;
|
|
}
|
|
];
|
|
|
|
};
|
|
}
|