| Age | Commit message (Expand) | Author |
|---|
| 2024-06-30 | balg02: Use AnonIP service for nginx access log files | Collin J. Doering |
| 2024-06-04 | balg02: Configure guix-deamon to build in parallel...* .guix/guix-na/config/balg02.scm (guix-daemon-config): New function.
(balg02): Modify guix-daemon service to enable build parallelism, and using substitutes from
the local build server if available.
| Collin J. Doering |
| 2024-05-31 | balg02: Re-enable https (that was disabled in 4230616)...- https was initially disabled as nginx failed to start due to a missing certificate
- Worth noting that dhparam's were manually generated on balg02
| Collin J. Doering |
| 2024-05-31 | balg02: Send nginx logs to /var/run/nginx/... | Collin J. Doering |
| 2024-05-31 | balg02: Temporarily disable https until letsencrypt certs can be generated | Collin J. Doering |
| 2024-05-31 | balg02: Correct typos | Collin J. Doering |
| 2024-05-31 | balg02: Initial implementation of Guix build farm...* .guix/guix-na/config/balg02.scm (%automation-user): Removed variable (only used in one place).
(%cuirass-specs): New variable. (Initial) Cuirass specifications that are run by the guix-na build farm.
(publish-robots.txt): New variable. Used in nginx configuration.
(publish-locations): New function. Defines nginx publish locations (used for http and https servers).
(balg02-locations): New function. Defines nginx publish locations used for guix-na.
(%publish-url): New variable. String representing local publish URL.
(%tls-settings): New variable. Captures nginx tls settings used in nginx configuration.
(le): New function. Generates lets encrypt path given a host and optionally a private key.
(languages-to-accept): New variable. Languages for i8ln.
(accept-languages): New function.
(%balg02-servers): New variable. balg02 nginx servers.
(%extra-content): New variable. Extra nginx configuration content.
(%nginx-configuration): New variable. Capture nginx configuration given all previous helper
functions and variables.
(%nginx-cache-activation): New variable. Service the ensures /var/cache/nginx exists on the
first run.
(%nginx-deploy-hook): New variable. Hook used upon cerbot certificate updates.
(balg02 (packages)): Add btrfs-progs.
(balg02): Remove root ssh key (not necessary as ssh root login is disabled).
(balg02 (services)): Add cuirass, certbot, nginx, and guix-publish services.
| Collin J. Doering |
| 2024-05-27 | balg02: Add additional ssh key for user arun...* .guix/guix-na/config/balg02.scm: New ssh key for arun
* .pubkeys/arun-ed25519.pub: New file: Arun's ssh public key
| Collin J. Doering |
| 2024-05-27 | balg02: Add new users, and ssh keys for Arun and Pjotr | Collin J. Doering |
| 2024-05-25 | balg02: Add megaraid_sas to initrd-modules | Collin J. Doering |
| 2024-04-10 | balg02: Disable root logins over ssh | Collin J. Doering |
| 2024-04-09 | balg02: openssh: permit root login with key; enable agent-forwarding...* .guix/guix-na/config/balg02.scm: This is in response to feedback provided by Pjotr and
Arun.
| Collin J. Doering |
| 2024-04-05 | balg02: Mount efi partition; expose balg02 function...* .guix/guix-na/config/balg02.scm: New function: balg02; this is necessary as the efi
partition UUID changes between testing and the deployed system. Additionally, mount the efi
partition.
Its useful to note that when testing, I found a bug in guix that resulting in a partial
system upgrade! Namely, grub/kernel stuff appears to have been updated, but the `guix system
reconfigure ...` never completed. This was because the efi system partition was not mounted.
However the odd part was that even if I manually mounted the efi partition and retried `guix
system reconfigure ..` the command update would still hang. I suspect this is because for
some reason the efi system partition must be explicitly specified in the operating-system configuration.
| Collin J. Doering |
| 2024-04-01 | balg02: Specify console kernel argument for ttyS0...* .guix/guix-na/config/balg02.scm: Remove export of temporary balg02 function
| Collin J. Doering |
| 2024-03-21 | balg02: Use efi bootloader instead of bios...* .guix/guix-na/config/balg02.scm: Correct the above mistake.
| Collin J. Doering |
| 2024-03-21 | balg02: Make minor adjusting to allow for testing...* .guix/guix-na/config/balg02.scm (guix-na): Add function balg02 which parameterized the disk
that the bootloader (grub) is installed to. This enables testing in a vm where the disk may
not match what is used on the physical server.
| Collin J. Doering |
| 2024-03-21 | balg02: Minor adjustment and reformatting...* .guix/guix-na/config/balg02.scm: Move swap-devices to be after file-systems (file-systems
is referenced from within swap-devices). Other changes are just noop reformatting.
| Collin J. Doering |
| 2024-03-12 | Initial setup (not yet bootstrapped or thoroughly tested)...* .gitignore: Ignore files used by 'guix deploy'
* .guix/guix-na/config/balg02.scm: Initial balg02 guix configuration (sans cuirass)
* .pubkeys/collin.pub: Public key of Collin Doering
* .pubkeys/deploy-key.pub: Public key used for 'guix deploy' usage
* README.org: Various updates to how balg02 (guix-north-america) is setup
| Collin J. Doering |
