Update to NixOS 23.05

2025-12-25 05:36:59 +01:00 · 2023-07-10 19:19:25 +02:00 · 2023-07-10 19:19:25 +02:00 · 27462b9e7e
commit 27462b9e7e
parent e4c0ab4b3e
7 changed files with 142 additions and 143 deletions
--- a/flake.nix
+++ b/flake.nix
@ -1,36 +1,32 @@
 {
  inputs = {
-    nixpkgs.url = "github:nixos/nixpkgs/nixos-22.11";
+    nixpkgs.url = "github:nixos/nixpkgs/nixos-23.05";
    nixpkgs-unstable.url = "github:nixos/nixpkgs/nixos-unstable";
    sops-nix.url = "github:Mic92/sops-nix";
    sops-nix.inputs.nixpkgs.follows = "nixpkgs";
    deploy-rs.url = "github:serokell/deploy-rs";
-    simple-nixos-mailserver.url = "gitlab:simple-nixos-mailserver/nixos-mailserver/nixos-22.11";
+    simple-nixos-mailserver.url =
+      "gitlab:simple-nixos-mailserver/nixos-mailserver/nixos-23.05";
  };

-  outputs = { self, nixpkgs, nixpkgs-unstable, deploy-rs, sops-nix, simple-nixos-mailserver }:
+  outputs = { self, nixpkgs, nixpkgs-unstable, deploy-rs, sops-nix
+    , simple-nixos-mailserver }:
    let
      pkgs = nixpkgs.legacyPackages.x86_64-linux;
      pkgs-unstable = nixpkgs-unstable.legacyPackages.x86_64-linux;
      defaultModuleArgs = { pkgs, ... }: {
        _module.args.pkgs-unstable = import nixpkgs-unstable {
          inherit (pkgs.stdenv.targetPlatform) system;
-          config.allowUnfreePredicate = pkg: builtins.elem (pkgs.lib.getName pkg) [
-            "minecraft-server"
-          ];
+          config.allowUnfreePredicate = pkg:
+            builtins.elem (pkgs.lib.getName pkg) [ "minecraft-server" ];
        };
      };
-    in
-    {
+    in {
      devShells.x86_64-linux.default = pkgs.mkShell {
-        sopsPGPKeyDirs = [
-          "./keys/hosts"
-          "./keys/users"
-        ];
+        sopsPGPKeyDirs = [ "./keys/hosts" "./keys/users" ];

-        nativeBuildInputs = [
-          (pkgs.callPackage sops-nix { }).sops-import-keys-hook
-        ];
+        nativeBuildInputs =
+          [ (pkgs.callPackage sops-nix { }).sops-import-keys-hook ];

        buildInputs = with pkgs-unstable; [
          nixpkgs-fmt
@ -48,16 +44,14 @@
          modules = [
            sops-nix.nixosModules.sops
            ./profiles/db.nix
-            (
-              {
-                sops.defaultSopsFile = ./secrets.enc.yml;
-                networking.hostName = "db1";
-                networking.domain = "banditlair.com";
-                nix.registry.nixpkgs.flake = nixpkgs;
+            ({
+              sops.defaultSopsFile = ./secrets.enc.yml;
+              networking.hostName = "db1";
+              networking.domain = "banditlair.com";
+              nix.registry.nixpkgs.flake = nixpkgs;

-                system.stateVersion = "21.05";
-              }
-            )
+              system.stateVersion = "21.05";
+            })
          ];
        };
        backend1 = nixpkgs.lib.nixosSystem {
@ -66,16 +60,14 @@
          modules = [
            sops-nix.nixosModules.sops
            ./profiles/backend.nix
-            (
-              {
-                sops.defaultSopsFile = ./secrets.enc.yml;
-                networking.hostName = "backend1";
-                networking.domain = "banditlair.com";
-                nix.registry.nixpkgs.flake = nixpkgs;
+            ({
+              sops.defaultSopsFile = ./secrets.enc.yml;
+              networking.hostName = "backend1";
+              networking.domain = "banditlair.com";
+              nix.registry.nixpkgs.flake = nixpkgs;

-                system.stateVersion = "21.05";
-              }
-            )
+              system.stateVersion = "21.05";
+            })
          ];
        };
        storage1 = nixpkgs.lib.nixosSystem {
@ -86,43 +78,42 @@
            sops-nix.nixosModules.sops
            simple-nixos-mailserver.nixosModule
            ./profiles/storage.nix
-            (
-              {
-                sops.defaultSopsFile = ./secrets.enc.yml;
-                networking.hostName = "storage1";
-                networking.domain = "banditlair.com";
-                nix.registry.nixpkgs.flake = nixpkgs;
+            ({
+              sops.defaultSopsFile = ./secrets.enc.yml;
+              networking.hostName = "storage1";
+              networking.domain = "banditlair.com";
+              nix.registry.nixpkgs.flake = nixpkgs;

-                system.stateVersion = "21.05";
-              }
-            )
+              system.stateVersion = "21.05";
+            })
          ];
        };
      };

-      deploy.nodes =
-        let
-          createSystemProfile = configuration: {
-            user = "root";
-            sshUser = "root";
-            path = deploy-rs.lib.x86_64-linux.activate.nixos configuration;
-          };
-        in
-        {
-          db1 = {
-            hostname = "db1.banditlair.com";
-            profiles.system = createSystemProfile self.nixosConfigurations.db1;
-          };
-          backend1 = {
-            hostname = "backend1.banditlair.com";
-            profiles.system = createSystemProfile self.nixosConfigurations.backend1;
-          };
-          storage1 = {
-            hostname = "78.46.96.243";
-            profiles.system = createSystemProfile self.nixosConfigurations.storage1;
-          };
+      deploy.nodes = let
+        createSystemProfile = configuration: {
+          user = "root";
+          sshUser = "root";
+          path = deploy-rs.lib.x86_64-linux.activate.nixos configuration;
        };
+      in {
+        db1 = {
+          hostname = "db1.banditlair.com";
+          profiles.system = createSystemProfile self.nixosConfigurations.db1;
+        };
+        backend1 = {
+          hostname = "backend1.banditlair.com";
+          profiles.system =
+            createSystemProfile self.nixosConfigurations.backend1;
+        };
+        storage1 = {
+          hostname = "78.46.96.243";
+          profiles.system =
+            createSystemProfile self.nixosConfigurations.storage1;
+        };
+      };

-      checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks self.deploy) deploy-rs.lib;
+      checks = builtins.mapAttrs
+        (system: deployLib: deployLib.deployChecks self.deploy) deploy-rs.lib;
    };
 }