README.md 1.34 KB
Newer Older
1
navi
2
=====
3
navi(NixOS Advanced Virtual Infrastructure) is a set of NixOS configuration
4
files handling my own internal infrastructure.
5
6
7

Currently the machines populated by this configuration are:

8
* alastor
9
10
* xanadu

11
12
WARNING: This is a very heavily WIP project and has an uncommon threat model, as
such you might want to really document yourself before using parts of this
13
software! Please read `docs/README.txt` at the very least!
14
15


16
17
## Development Notes

18
19
20
21
22
23
24
To setup navi you'll first need to bootstrap it:

```
cd bootstrap && ./bootstrap.sh
```
This will setup secrets needed for the entire infrastructure to work.

25

26
If you want to test the setup before installing it on a real machine you can 
27
28

```
29
30
31
32
33
34
35
36
37
38
39
40
sudo nixos-rebuild build-vm -I nixos-config=./configuration.sample.nix
```

If you want to install navi on a live machine, you'll need to run the
bootstrapper again to generate device-specific keys, paths, and other required
components. It will generate a default configuration which you should tailor to
your needs. Installing is then as simple as running

```
sudo nixos-install
```

41
42
43
44
Don't forget to change your initial hashed password at boot for headfull, they
are written to the world readable nix store! Someone could try to LPE by
brute-forcing them.

45
46
47
48
## Contributing

Do not forget to run `pre-commit install` to get the formatting hooks running
before contributing!