feat: add larva

Author: Lord-Valen

.editorconfig

@@ -1,35 +1,27 @@
-# Editor configuration, see http://editorconfig.org
-root = true
+root=true
 
 [*]
-end_of_line = lf
-insert_final_newline = true
-trim_trailing_whitespace = true
-charset = utf-8
-indent_style = space
-indent_size = unset
+charset=utf-8
+end_of_line=lf
+indent_size=2
+indent_style=space
+insert_final_newline=true
+trim_trailing_whitespace=true
 
-[*.{js,ts,rs}]
-indent_size = 4
-
-[*.{nix,nu,hs,sh}]
-indent_size = 2
-
-# Ignore diffs/patches
-[*.{lock,diff,patch}]
-end_of_line = unset
-insert_final_newline = unset
-trim_trailing_whitespace = unset
-indent_size = unset
+[*.md]
+max_line_length=off
+trim_trailing_whitespace=false
 
-[{.*,secrets}/**]
-end_of_line = unset
-insert_final_newline = unset
-trim_trailing_whitespace = unset
-charset = unset
-indent_style = unset
-indent_size = unset
+[*.{diff,patch}]
+end_of_line=unset
+indent_size=unset
+insert_final_newline=unset
+trim_trailing_whitespace=unset
 
-[*.md]
-max_line_length = off
-trim_trailing_whitespace = false
+[{LICENSES/**,LICENSE}]
+charset=unset
+end_of_line=unset
+indent_size=unset
+indent_style=unset
+insert_final_newline=unset
+trim_trailing_whitespace=unset

.envrc

@@ -1,2 +1,6 @@
-watch_file shell/* flake.nix flake.lock
-use flake || use nix
+#!/bin/sh
+
+source_url \
+  "https://raw.githubusercontent.com/divnix/std/main/direnv_lib.sh" \
+    "sha256-VUQ8udjXodlT6JyUZ+0Nq3T6NBVhyoU34vzWVux79wo="
+use std . //_queen/devshells:default

.gitignore

@@ -3,3 +3,10 @@ result
 doc/index.html
 
 pkgs/_sources/.shake*
+
+.std
+
+# nixago: ignore-linked-files
+.conform.yaml
+lefthook.yml
+treefmt.toml

comb/_queen/colmenaConfigurations.nix

@@ -0,0 +1,19 @@
+{
+  inputs,
+  cell,
+}: let
+  inherit (cell) nixosSuites;
+in {
+  larva = {
+    bee.system = "x86_64-linux";
+    bee.pkgs = inputs.nixpkgs.legacyPackages;
+    deployment = {
+      targetHost = "fe80::47";
+      targetPort = 22;
+      targetUser = "root";
+      allowLocalDeployment = false;
+      buildOnTarget = false;
+    };
+    imports = [nixosSuites.larva];
+  };
+}

comb/_queen/devshells.nix

@@ -0,0 +1,38 @@
+{
+  inputs,
+  cell,
+}: let
+  lib = inputs.nixpkgs.lib // builtins;
+in
+  lib.mapAttrs (_: inputs.std.lib.dev.mkShell) {
+    default = {...}: {
+      name = "Hive";
+      nixago = with inputs.std-data-collection.data.configs; [
+        treefmt
+        lefthook
+        editorconfig
+        (conform {data = {inherit (inputs) cells;};})
+      ];
+      commands = let
+        inherit (inputs) disko nixos-generators colmena;
+        hexagon = attrset: attrset // {category = "hexagon";};
+      in [
+        (hexagon {package = disko.packages.disko;})
+        (hexagon {package = colmena.packages.colmena;})
+        (hexagon {package = nixos-generators.packages.nixos-generate;})
+        (hexagon {
+          name = "spawn-larva";
+          help = "Spawns larva, the x86_64-linux iso bootstrapper.";
+          command = ''
+            echo "Boostrap image is building..."
+            if path=$(nix build $PRJ_ROOT#nixosConfigurations._queen-o-larva.config.system.build.isoImage --print-out-paths);
+            then
+               echo "Boostrap image build finished."
+            else
+               echo "Boostrap image build failed."
+            fi
+          '';
+        })
+      ];
+    };
+  }

comb/_queen/nixosConfigurations.nix

@@ -0,0 +1,12 @@
+{
+  inputs,
+  cell,
+}: let
+  inherit (cell) nixosSuites;
+in {
+  larva = {
+    bee.system = "x86_64-linux";
+    bee.pkgs = inputs.nixpkgs;
+    imports = [nixosSuites.larva];
+  };
+}

comb/_queen/nixosProfiles.nix

@@ -0,0 +1,84 @@
+{
+  inputs,
+  cell,
+}: let
+  inherit (inputs) nixpkgs nixos-generators;
+  lib = nixpkgs.lib // builtins;
+in {
+  bootstrap = {
+    config,
+    options,
+    pkgs,
+    ...
+  }: {
+    imports = [
+      nixos-generators.nixosModules.install-iso
+    ];
+
+    nix = {
+      # only part of ./modules/profiles/channels.nix since 22.11
+      registry.nixpkgs.flake.outPath = builtins.path {
+        name = "source";
+        path = pkgs.path;
+      };
+      package = nixpkgs.nix;
+      extraOptions = ''
+        experimental-features = nix-command flakes recursive-nix
+      '';
+    };
+
+    networking.domain = "local";
+
+    # Provide networkmanager for easy wireless configuration.
+    networking.networkmanager.enable = true;
+    networking.networkmanager.wifi.backend = "iwd";
+    networking.wireless.enable = lib.mkForce false;
+    networking.wireless.iwd.enable = true;
+    services.getty.helpLine =
+      ''
+        The "nixos" and "root" accounts have empty passwords.
+
+        An ssh daemon is running. You then must set a password
+        for either "root" or "nixos" with `passwd` or add an ssh key
+        to /home/nixos/.ssh/authorized_keys be able to login.
+      ''
+      + lib.optionalString config.services.xserver.enable ''
+
+        Type `sudo systemctl start display-manager' to
+        start the graphical user interface.
+      '';
+
+    isoImage = {
+      isoBaseName = "bootstrap-hive-from-queen";
+      contents = [
+        {
+          source = inputs.self;
+          target = "/hive/";
+        }
+      ];
+    };
+
+    systemd.network = {
+      # https://www.freedesktop.org/software/systemd/man/systemd.network.html
+      networks."boostrap-link-local" = {
+        matchConfig = {
+          Name = "en* wl* ww*";
+        };
+        networkConfig = {
+          Description = "Link-local host bootstrap network";
+          MulticastDNS = true;
+          LinkLocalAddressing = "ipv6";
+          DHCP = "yes";
+        };
+        address = [
+          # fall back well-known link-local for situations where MulticastDNS is not available
+          "fe80::47" # 47: n=14 i=9 x=24; n+i+x
+        ];
+        extraConfig = ''
+          # Unique, yet stable. Based off the MAC address.
+          IPv6LinkLocalAddressGenerationMode = "eui64"
+        '';
+      };
+    };
+  };
+}

comb/_queen/nixosSuites.nix

@@ -0,0 +1,12 @@
+{
+  inputs,
+  cell,
+}: let
+  inherit (cell) nixosProfiles;
+in {
+  larva = {
+    imports = [
+      nixosProfiles.bootstrap
+    ];
+  };
+}