aciceri/nixfleet
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

rock5b as remote builder

Browse source
This commit is contained in:
Andrea Ciceri 2023-04-13 18:10:52 +02:00
parent fcea81b962
commit 545d968d20
Signed by: aciceri
SSH key fingerprint: SHA256:/AagBweyV4Hlfg9u092n8hbHwD5fcB6A3qhDiDA65Rg
2 changed files with 19 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
modules/nix/default.nix
View file

@ -38,5 +38,18 @@
dates = "weekly"; dates = "weekly";
options = "--delete-older-than 30d"; options = "--delete-older-than 30d";
}; };
buildMachines = [
{
hostName = "rock5b.fleet";
system = "aarch64-linux";
maxJobs = 6;
speedFactor = 2;
supportedFeatures = ["nixos-test" "benchmark" "big-parallel" "kvm"];
mandatoryFeatures = [];
sshKey = "/etc/ssh/ssh_host_ed25519_key";
}
];
distributedBuilds = true;
}; };
} }

7
modules/ssh/default.nix
View file

@ -1,10 +1,15 @@
{fleetFlake, ...}: { {fleetFlake, ...}: {
services = { services = {
sshd.enable = true; sshd.enable = true;
fail2ban = { fail2ban = {
enable = true; enable = true;
maxretry = 10; maxretry = 10;
ignoreIP = [
"88.198.49.106"
"10.100.0.1/24"
];
}; };
}; };
users.users.root.openssh.authorizedKeys.keys = builtins.attrValues (import "${fleetFlake}/lib").keys.users; users.users.root.openssh.authorizedKeys.keys = builtins.attrValues (with (import "${fleetFlake}/lib"); keys.users // keys.hosts);
} }