From 56f88cf6d6f7afd0042811d83bf6f32e9244bc51 Mon Sep 17 00:00:00 2001
From: Nydragon <contact@ccnlc.eu>
Date: Thu, 10 Oct 2024 19:40:27 +0200
Subject: [PATCH] feat(nihilus): add rsync modules and allow brontes to build
 for aarch64

---
 hosts/brontes/configuration.nix          | 10 ++++++-
 hosts/default.nix                        |  4 ++-
 hosts/nihilus/configuration.nix          | 36 ++++++++++++++++++++++--
 hosts/nihilus/hardware-configuration.nix | 22 +++++++++++++++
 4 files changed, 68 insertions(+), 4 deletions(-)
 create mode 100644 hosts/nihilus/hardware-configuration.nix

diff --git a/hosts/brontes/configuration.nix b/hosts/brontes/configuration.nix
index b269fd8..0e3d3e1 100644
--- a/hosts/brontes/configuration.nix
+++ b/hosts/brontes/configuration.nix
@@ -1,5 +1,10 @@
 # vim:fileencoding=utf-8:foldmethod=marker
-{ pkgs, username, ... }:
+{
+  pkgs,
+  username,
+  config,
+  ...
+}:
 {
   imports = [
     ./hardware-configuration.nix
@@ -115,5 +120,8 @@
 
   services.rpcbind.enable = true; # necessary for nfs
 
+  boot.binfmt.emulatedSystems = [ "aarch64-linux" ];
+  nix.settings.extra-platforms = config.boot.binfmt.emulatedSystems;
+
   system.stateVersion = "24.05";
 }
diff --git a/hosts/default.nix b/hosts/default.nix
index b7db1d6..7209447 100644
--- a/hosts/default.nix
+++ b/hosts/default.nix
@@ -43,7 +43,9 @@ in
     (mkSystem' {
       hostname = "nihilus";
       system = "aarch64-linux";
-      extraModules = [ ];
+      extraModules = [
+        inputs.nixos-hardware.nixosModules.raspberry-pi-4
+      ];
     })
   ];
 }
diff --git a/hosts/nihilus/configuration.nix b/hosts/nihilus/configuration.nix
index 8af4b3f..32da320 100644
--- a/hosts/nihilus/configuration.nix
+++ b/hosts/nihilus/configuration.nix
@@ -1,9 +1,41 @@
-{ }:
+{ pubkeys, ... }:
 {
+  imports = [
+    ./hardware-configuration.nix
+  ];
+
   modules = {
     services.tailscale = {
       enable = true;
-      tags = [ "server" ];
+      tags = [
+        "server"
+        "backup"
+      ];
+      extraFlags = [ "--accept-dns=false" ]; # Want to disable that since *server* can't access the private dns... for now
+    };
+    services = {
+      rsync-daemon = {
+        enable = true;
+        port = 9523;
+        openFirewall = true;
+        address = "100.64.0.6";
+        modules = [
+          {
+            name = "image-backup";
+            comment = "ftp export area";
+            mode = "write";
+          }
+          {
+            name = "brontes-backup";
+            comment = "brontes's backup space";
+            mode = "write";
+          }
+        ];
+      };
     };
   };
+
+  boot.initrd.systemd.tpm2.enable = false;
+
+  system.stateVersion = "24.11";
 }
diff --git a/hosts/nihilus/hardware-configuration.nix b/hosts/nihilus/hardware-configuration.nix
new file mode 100644
index 0000000..e29247a
--- /dev/null
+++ b/hosts/nihilus/hardware-configuration.nix
@@ -0,0 +1,22 @@
+{ lib, modulesPath, ... }:
+{
+  imports = [
+    (modulesPath + "/installer/scan/not-detected.nix")
+  ];
+
+  boot.initrd.availableKernelModules = [ "xhci_pci" ];
+  boot.initrd.kernelModules = [ ];
+  boot.kernelModules = [ ];
+  boot.extraModulePackages = [ ];
+
+  fileSystems."/" = {
+    device = "/dev/disk/by-uuid/44444444-4444-4444-8888-888888888888";
+    fsType = "ext4";
+  };
+
+  swapDevices = [ ];
+
+  networking.useDHCP = lib.mkDefault true;
+
+  nixpkgs.hostPlatform = lib.mkDefault "aarch64-linux";
+}