Guix (not working)

2025-11-14 14:44:58 +01:00 · 2025-11-14 14:44:58 +01:00 · e99fb387cb
commit e99fb387cb
parent d6ec2c7f4d
5 changed files with 119 additions and 1 deletions
--- a/systems/x86_64-linux/stargate/disko.nix
+++ b/systems/x86_64-linux/stargate/disko.nix
@ -37,6 +37,11 @@
 in {
  disko.devices = {
    disk = {
+      #main.content.partitions.luks.content.content.subvolumes."/gnu" = {
+      #	mountpoint = "/gnu";
+      #       mountOptions = ["subvol=guix" "compress=zstd" "noatime"];
+      #    };
+
      hdd1 = addHdd "/dev/sda" "crypt-hdd1";
      hdd2 = addHdd "/dev/sdb" "crypt-hdd2";
      hdd3 = addHdd "/dev/sdc" "crypt-hdd3";
--- a/systems/x86_64-linux/stargate/guix-substitute.nix
+++ b/systems/x86_64-linux/stargate/guix-substitute.nix
@ -0,0 +1,59 @@
+{
+  pkgs,
+  lib,
+  config,
+  ...
+}:
+with lib.custom; let
+  enable = false;
+in {
+  custom.services.guix = {inherit enable;};
+  systemd.timers."guix-build" = {
+    inherit enable;
+    wantedBy = ["timers.target"];
+    timerConfig = {
+      OnBootSec = "120m";
+      OnUnitActiveSec = "120m";
+      Unit = "guix-build.service";
+    };
+  };
+
+  systemd.services."guix-build" = {
+    inherit enable;
+    script = let
+      gitRepo = "/root/dotfiles";
+      git = "${pkgs.git}/bin/git";
+      echo = "${pkgs.coreutils}/bin/echo";
+      repoUrl = "https://git.kylekrein.com/kylekrein/dotfiles.git";
+      guix = "${pkgs.guix}/bin/guix time-machine -C ${gitRepo}/guix-config/channels-lock.scm --";
+    in ''
+      if [ ! -d "${gitRepo}" ]; then
+              ${echo} "dotfiles repo not found, cloning..."
+              ${git} clone "${repoUrl}" "${gitRepo}"
+            else
+              ${echo} "Updating repo..."
+              cd "${gitRepo}"
+              ${git} fetch --all
+              ${git} reset --hard origin/master
+            fi
+
+            cd "${gitRepo}"
+
+            ${echo} "Building packages..."
+            ${guix} build -L "${gitRepo}" ${gitRepo}/guix-config/packages/*
+
+            ${echo} "Building system config..."
+            ${guix} system build -L "${gitRepo}" ${gitRepo}/guix-config/system/anaconda.scm
+
+            ${echo} "Building home config..."
+            ${guix} home build -L "${gitRepo}" ${gitRepo}/guix-config/home/workstation.scm
+
+            ${echo} "All builds complete!"
+    '';
+    serviceConfig = {
+      Type = "oneshot";
+      User = "root";
+      WorkingDirectory = "/root";
+    };
+  };
+}
--- a/systems/x86_64-linux/stargate/services/nginx.nix
+++ b/systems/x86_64-linux/stargate/services/nginx.nix
@ -195,6 +195,13 @@ in {
          proxyWebsockets = true;
        };
      };
+      "guix.kylekrein.com" = {
+        forceSSL = true;
+        enableACME = true;
+        locations."/" = {
+          proxyPass = "http://localhost:${toString config.services.guix.publish.port}";
+        };
+      };
      "paperless.kylekrein.com" = {
        enableACME = true;
        forceSSL = true;