do password stuff for virtual machines

2026-01-11 01:34:08 -05:00 · 2025-08-25 14:58:02 -04:00 · 2025-08-25 14:58:02 -04:00 · f7e969fdf3
commit f7e969fdf3
parent b7f0fed007
3 changed files with 66 additions and 1 deletions
--- a/hosts/common/users/primary/nixos.nix
+++ b/hosts/common/users/primary/nixos.nix
@ -11,6 +11,7 @@

  # Decrypt password to /run/secrets-for-users/ so it can be used to create the user
  sopsHashedPasswordFile = lib.optionalString (!config.hostSpec.isMinimal) config.sops.secrets."passwords/${hostSpec.username}".path;
+  virtPass = pkgs.writeText "password" "$y$j9T$ZbQbNHUSFsePoP0X.TdwR/$.EKJWDSY7ZO/nqf4FxgUYA3a47CYAKLzaV7ZAy745R/";
 in {
  users = {
    mutableUsers = false; # Only allow declarative credentials; Required for password to be set via sops during system activation!
@ -19,7 +20,10 @@ in {
      ${hostSpec.username} = {
        home = "/home/${hostSpec.username}";
        isNormalUser = true;
-        hashedPasswordFile = sopsHashedPasswordFile; # Blank if sops is not working.
+        hashedPasswordFile =
+          if config.hostSpec.isVirtual
+          then virtPass
+          else sopsHashedPasswordFile;
        linger = true;

        extraGroups = lib.flatten [
--- a/hosts/nixos/Dragneel/default.nix
+++ b/hosts/nixos/Dragneel/default.nix
@ -3,3 +3,59 @@
 # Dragneel - Desktop #
 #                    #
 ######################
+{
+  inputs,
+  lib,
+  pkgs,
+  ...
+}: {
+  imports = lib.flatten [
+    # Disks
+    inputs.disko.nixosModules.disko
+    (lib.custom.relativeToRoot "hosts/common/disks/btrfs-disk.nix")
+    {
+      _module.args = {
+        disk = "/dev/nvme0n1";
+        withSwap = true;
+        swapSize = "8";
+      };
+    }
+
+    # Misc
+
+    (map lib.custom.relativeToRoot [
+      # Required configs
+      "hosts/common/core"
+
+      # Optional configs
+      "hosts/common/optional/audio.nix"
+      "hosts/common/optional/bluetooth.nix"
+      "hosts/common/optional/pentesting.nix"
+      "hosts/common/optional/gaming.nix"
+      "hosts/common/optional/printing.nix"
+    ])
+  ];
+
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+
+  hostSpec = {
+    hostName = "Dragneel";
+    isVirtual = true;
+    persistFolder = "/persist";
+  };
+
+  networking = {
+    networkmanager.enable = true;
+    enableIPv6 = false;
+  };
+
+  boot.loader = {
+    limine = {
+      enable = true;
+      efiSupport = true;
+    };
+    efi = {
+      canTouchEfiVariables = true;
+    };
+  };
+}