[WIP] Big pile of changes to be amended next

Author: 573

.gitignore

@@ -3,3 +3,4 @@ nixos.qcow2
 result
 result-*
 *.elc
+*.pem

files/nix/rpi-image.nix

@@ -1,4 +1,4 @@
-{ nixpkgs, rootPath }:
+{ nixpkgs, rootPath, nixos-hardware }:
 
 let
   configuration =
@@ -7,6 +7,7 @@ let
     {
       imports = [
         (modulesPath + "/installer/sd-card/sd-image-aarch64.nix")
+	nixos-hardware.nixosModules.raspberry-pi-4
       ];
 
       networking = {

flake.lock

@@ -27,6 +27,8 @@
     nixos-2211-small.url = "github:NixOS/nixpkgs/nixos-22.11-small";
     nixos-2311.url = "github:NixOS/nixpkgs/nixos-23.11";
 
+    nixos-hardware.url = "github:NixOS/nixos-hardware";
+
     deploy-rs = {
       url = "github:serokell/deploy-rs";
       inputs = {
@@ -444,6 +446,11 @@
       url = "github:numtide/nixpkgs-unfree";
       inputs.nixpkgs.follows = "nixpkgs";
     };
+
+    catppuccin-yazi = {
+      url = "github:catppuccin/yazi";
+      flake = false;
+    };
   };
 
   outputs =
@@ -527,6 +534,7 @@
         mkHome
         mkNixOnDroid
         mkNixos
+	mkRaspiNixos
         mkDeploy
         mkDevenvJvmLang
         mkDevenvDeno
@@ -597,6 +605,15 @@
         ];
       };
 
+
+      /**
+        Sample queries:
+       nix-repl> :p nixOnDroidConfigurations.sams9.config.home-manager.config.home.username
+       nix-repl> :p homeConfigurations."dani@maiziedemacchiato".config.home.username
+       nix-repl> :p nixosConfigurations.DANIELKNB1.config.home-manager.users.nixos.home.username
+       nix eval --json .#raspberries.twopi.config.system.build.sdImage --show-trace
+       nix eval --json .#raspberries.twopi.config.system.build.toplevel --show-trace
+      */
       homeConfigurations = listToAttrs [
         /**
                	calls `mkHome` as defined in ./flake/default.nix (`[system]` and `[name]` parameters) and ./flake/builders/mkHome.nix, latter the place where `extraSpecialArgs` would also go
@@ -611,9 +628,12 @@
 
       nixosConfigurations = listToAttrs [
         (mkNixos "x86_64-linux" "DANIELKNB1")
-        (mkNixos "aarch64-linux" "twopi")
       ];
 
+      raspberries = listToAttrs [
+	(mkRaspiNixos "aarch64-linux" "twopi")
+	(mkRaspiNixos "x86_64-linux" "twopivm")
+      ];
       # Expose the necessary information in your flake so agenix-rekey
       # knows where it has too look for secrets and paths.
       #
@@ -882,7 +902,7 @@
           {
             aarch64-linux = {
               rpi-firmware = import ./files/nix/rpi-firmware.nix { inherit nixpkgs; };
-              rpi-image = import ./files/nix/rpi-image.nix { inherit nixpkgs rootPath; };
+              rpi-image = import ./files/nix/rpi-image.nix { inherit nixpkgs rootPath; inherit (inputs) nixos-hardware; };
             };
             armv7l-linux = {
               # TODO try https://github.com/n8henrie/nixos-btrfs-pi/blob/master/flake.nix
@@ -892,7 +912,24 @@
               run-in-vm = import ./files/nix/run-in-vm.nix { inherit nixpkgs rootPath; };
             };
 
-            x86_64-linux.installer-image = import ./files/nix/installer-image.nix { inherit nixpkgs; };
+            x86_64-linux = {
+	      installer-image = import ./files/nix/installer-image.nix { inherit nixpkgs; };
+	      # https://discourse.nixos.org/t/get-qemu-guest-integration-when-running-nixos-rebuild-build-vm/22621
+	      # https://mattwidmann.net/notes/running-nixos-in-a-vm/
+	      # https://blog.yaymukund.com/posts/nixos-raspberry-pi-nixbuild-headless/
+	      # nix build --max-jobs 1 .#packages.x86_64-linux.demo-with-automatic-vm-integration
+	      demo-with-automatic-vm-integration = nixpkgs.legacyPackages.x86_64-linux.pkgs.writeShellApplication {
+          name = "run-nixos-vm";
+          runtimeInputs = [ nixpkgs.legacyPackages.x86_64-linux.pkgs.virt-viewer ];
+          text = ''
+	    echo hi
+            ${self.raspberries.twopivm.config.system.build.vm}/bin/run-twopi-vm & PID_QEMU="$!"
+            sleep 1 # I think some tools have an option to wait like -w
+            remote-viewer spice://127.0.0.1:5930
+            kill $PID_QEMU
+          '';
+        };
+	    };
           }
           (
             nixpkgs.lib.mapAttrsToList cachixDeployOutputNixos self.nixosConfigurations

flake.nix

@@ -59,6 +59,7 @@ inputs.home-manager.lib.homeManagerConfiguration {
         inputs.emacs-overlay.lib.${system}.emacsWithPackagesFromUsePackage;
 
     homeDir =
+      # should not break with raspberry as it concerns only non-nixos
       if isLinux && isAarch64 then
         "/data/data/com.termux.nix/files/home"
       else

flake/builders/mkHome.nix

@@ -0,0 +1,46 @@
+{
+  inputs,
+  rootPath,
+  system,
+  pkgsFor,
+  customLibFor,
+  homeModulesFor,
+  name,
+  ...
+}:
+let
+  inherit (pkgsFor.${system}.stdenv) isLinux isAarch64;
+  inherit (pkgsFor.${system}.lib) removeSuffix hasSuffix;
+in
+inputs.nixpkgs.lib.nixosSystem {
+  inherit system;
+
+  /**
+    see ./../../flake.nix attribute `specialArgs` and `flakeLib`
+
+    IDEA inject `specialArgs` there get from this functions (./mkNixos.nix) parameters and attach here via `// specialArgs`
+  */
+  specialArgs = {
+    inherit inputs rootPath;
+    homeModules = homeModulesFor.${system};
+    #image = true;
+  };
+
+  modules = [
+    /**
+      anything in `specialArgs` should be available via i. e. ./../../hosts/DANIELKNB1/configuration.nix function's parameters set, i. e. `{ ..., unstable, ... }:` when `unstable =` declared in `specialArgs`
+    */
+    "${rootPath}/hosts/${if hasSuffix "vm" name then (removeSuffix "vm" name) else name}/configuration.nix"
+    "${rootPath}/hosts/${if hasSuffix "vm" name then (removeSuffix "vm" name) else name}/hardware-configuration.nix"
+
+    {
+      _file = ./mkImage.nix;
+
+      custom.base.general.hostname = if hasSuffix "vm" name then (removeSuffix "vm" name) else name;
+
+      lib.custom = customLibFor.${system};
+
+      nixpkgs.pkgs = pkgsFor.${system};
+    }
+  ] ++ customLibFor.${system}.listNixFilesRecursive "${rootPath}/nixos";
+}

flake/builders/mkRaspiNixos.nix

@@ -1,7 +1,7 @@
 {
   inputs,
   rootPath,
-  forEachSystem
+  forEachSystem,
 }:
 
 let
@@ -145,6 +145,7 @@ in
   mkNixOnDroid = simpleWrapper ./builders/mkNixOnDroid.nix;
   mkNixos = simpleWrapper ./builders/mkNixos.nix;
   mkDeploy = simpleWrapper ./builders/mkDeploy.nix;
+  mkRaspiNixos = simpleWrapper ./builders/mkRaspiNixos.nix;
 
   mkApp = wrapper ./builders/mkApp.nix;
   mkDevShellJdk = wrapper ./builders/mkDevShellJdk.nix;

flake/default.nix

@@ -4,6 +4,7 @@
   system,
   pkgsSet ? inputs.nixpkgs,
   nixOnDroid ? false,
+  # raspberry ? false,
   config ? {
     # FIXME https://discourse.nixos.org/t/unexpected-11h-build-after-auto-update/39907/9
     allowAliases = false;
@@ -136,5 +137,10 @@ import pkgsSet {
       inputs.nix-on-droid.overlays.default
       # prevent uploads to remote builder, https://ryantm.github.io/nixpkgs/functions/prefer-remote-fetch
       (final: prev: prev.prefer-remote-fetch final prev)
-    ];
+    ] ++ # https://github.com/nix-community/nixos-generators/issues/266 TODO parameter raspberry analog nixOnDroid
+    [ (final: prev: {
+	makeModulesClosure = x:
+	prev.makeModulesClosure (x // { allowMissing = true; });
+        }) ]
+    ;
 }

flake/nixpkgs.nix

@@ -76,10 +76,7 @@ in
           # not inherit not same attr
           lightWeight = cfg.lightWeight;
         };
-	shell.shellAliases = {
-	  nixbuild-shell = "nix run nixpkgs#rlwrap ssh eu.nixbuild.net shell";
-	};
-      };
+	      };
 
 	programs = {
 	zoxide = {

home/base/general.nix

@@ -13,9 +13,12 @@ let
     concatStringsSep
     mkEnableOption
     mkIf
+    mkMerge
     mkOption
+    optional
     optionals
     types
+    unique
     ;
 
   cfg = config.custom.base.non-nixos;
@@ -38,9 +41,8 @@ in
 
       builders = mkOption {
         type = types.listOf types.str;
-        default = [
-	  "ssh://eu.nixbuild.net aarch64-linux,armv7l-linux - 100 1 benchmark,big-parallel - -"
-        ];
+	# DONE Make configurable the other way around in nixbuild dependent on this builders here, explainer https://gist.github.com/573/1ff0527f8b42b0123dc3a13bc523f487
+        default = [];# ++ optional config.custom.programs.nixbuild.enable "ssh://[email protected] aarch64-linux,armv7l-linux /home/${config.home.username}/.ssh/my-nixbuild-key 100 2 benchmark,big-parallel - c3NoLWVkMjU1MTkgQUFBQUMzTnphQzFsWkRJMU5URTVBQUFBSVBJUUNaYzU0cG9KOHZxYXdkOFRyYU5yeVFlSm52SDFlTHBJRGdiaXF5bU0K";
         description = "Nix remote builders.";
       };
     };

home/base/non-nixos.nix

@@ -475,9 +475,9 @@ let
         autostart = true;
       };
 
-nixd = {
+      nixd = {
         # Nix LS
-        enable = false; # FIXME re-enable when crashes on termux are fixed
+        enable = true; # FIXME re-enable when crashes on termux are fixed
         settings =
         let
             flake = ''(builtins.getFlake "${inputs.self}")'';
@@ -820,6 +820,10 @@ in
             makeWrapper ${minimalPackage.outPath}/bin/nvim $out/bin/vi --argv0 nvim
           '')
         ];
+
+      custom.programs.shell.shellAliases = {
+        f2clip = ''vi '+execute "normal ggVG\"+y"' +wq'';
+      };
     }
 
     (mkIf (!cfg.lightWeight) {

home/programs/neovim.nix

@@ -12,10 +12,12 @@ let
     mkMerge
     ;
 
+  nixbuild-builder = lib.optionalString config.custom.base.non-nixos.enable "ssh-ng://[email protected] aarch64-linux,armv7l-linux ${config.home.homeDirectory}/.ssh/my-nixbuild-key 100 2 benchmark,big-parallel - c3NoLWVkMjU1MTkgQUFBQUMzTnphQzFsWkRJMU5URTVBQUFBSVBJUUNaYzU0cG9KOHZxYXdkOFRyYU5yeVFlSm52SDFlTHBJRGdiaXF5bU0K";
+
   cfg = config.custom.programs.nixbuild;
 in
 
-{
+{ # FIXME overlap with ../../home/base/non-nixos.nix
 
   ###### interface
 
@@ -27,26 +29,34 @@ in
 
   ###### implementation
   config = mkIf cfg.enable (mkMerge [
-    (mkIf (cfg.custom.base.non-nixos) {
-      programs.ssh.extraConfig = ''
-        Host eu.nixbuild.net
-          PubkeyAcceptedKeyTypes ssh-ed25519	
-          ServerAliveInterval 60
-          IPQoS throughput
-          IdentityFile /root/.ssh/my-nixbuild-key
-      '';
-
-      #        custom.base.non-nixos.builders = [
-      #	"eu.nixbuild.net aarch64-linux - 100 1 benchmark big-parallel"
-      #        ];
+    (mkIf (config.custom.base.non-nixos.enable) {
+      programs.ssh.matchBlocks.nixbuild = lib.debug.traceIf (config.custom.base.non-nixos.builders != []) ''setting builder entry: ${builtins.toString nixbuild-builder}'' {
+	  hostname = "eu.nixbuild.net";
+	  user = "root";
+	  extraOptions = {
+	    "PubkeyAcceptedKeyTypes" = "ssh-ed25519";
+	    "IPQoS" = "throughput";
+	  };
+          serverAliveInterval = 60;
+	  identitiesOnly = true;
+          identityFile = "${config.home.homeDirectory}/.ssh/my-nixbuild-key";
+      };
+
+      # explainer why lib.debug.traceIf (...) here would give infinite recursion: here, with potential workaround `mkMergeTopLevel` function https://gist.github.com/udf uses: https://gist.github.com/573/1ff0527f8b42b0123dc3a13bc523f487
+      custom.base.non-nixos.builders = [ nixbuild-builder ];
     })
 
     {
-      home.packages = builtins.attrValues {
+ home.packages = builtins.attrValues {
         inherit (pkgs)
           rlwrap
           ;
       };
+
+custom.programs.shell.shellAliases = {
+	  nixbuild-shell = "nix run nixpkgs#rlwrap ssh nixbuild shell";
+	};
+
     }
   ]);
 }

home/programs/nixbuild.nix

@@ -65,6 +65,9 @@ in
           }
         ];
       };
+
+      theme = builtins.fromTOML (builtins.readFile "${inputs.catppuccin-yazi}/themes/latte/catppuccin-latte-lavender.toml");
+
       # https://yazi-rs.github.io/docs/resources
       # https://sourcegraph.com/search?q=context:global+file:%5E*yazi.toml%24+content:zathura&patternType=standard&sm=1
       settings = {