nixfiles/nixos/default.nix

{ lib, pkgsFlakes, hmFlakes, inputs, pkgs', config, ... }:
let
  inherit (builtins) attrValues mapAttrs;
  inherit (lib) substring flatten optional optionals mkDefault mkForce mkOption mkOptionType;
  inherit (lib.my) naiveIPv4Gateway homeStateVersion mkOpt' mkBoolOpt' commonOpts inlineModule';

  cfg = config.nixos;

  allAssignments = mapAttrs (_: c: c.assignments) cfg.systems;

  mkSystem =
    {
      name,
      config',
      defs,
    }:
    let
      # The flake contains `nixosSystem`, so we do need it
      pkgsFlake = pkgsFlakes.${config'.nixpkgs};

      pkgs = pkgs'.${config'.nixpkgs}.${config'.system};
      allPkgs = mapAttrs (_: p: p.${config'.system}) pkgs';

      modules' = [ hmFlakes.${config'.home-manager}.nixosModule ] ++ (attrValues cfg.modules);
    in
    pkgsFlake.lib.nixosSystem {
      # Gotta override lib here unforunately, eval-config.nix likes to import its own (unextended) lib. We explicitly
      # don't pass pkgs so that it'll be imported with modularly applied config and overlays.
      lib = pkgs.lib;

      # Put the inputs in specialArgs to avoid infinite recursion when modules try to do imports
      specialArgs = { inherit inputs allAssignments; inherit (cfg) systems; };

      # `baseModules` informs the manual which modules to document
      baseModules =
        (import "${pkgsFlake}/nixos/modules/module-list.nix") ++ (optionals config'.docCustom modules');
      modules = (optionals (!config'.docCustom) modules') ++ [
        (sysModArgs: {
          warnings = flatten [
            (optional (sysModArgs.config.home-manager.useGlobalPkgs && (config'.nixpkgs != config'.home-manager))
            ''
              Using global nixpkgs ${config'.nixpkgs} with home-manager ${config'.home-manager} may cause problems.
            '')
          ];

          _module.args = {
            inherit (cfg) secretsPath;
            inherit (config') assignments;
            pkgs' = allPkgs;
          };

          system.name = name;
          networking.hostName = mkDefault (config'.assignments.internal.name or name);
          nixpkgs = {
            inherit (config') system;
            # Make sure any previously set overlays (e.g. lib which will be inherited by home-manager down the
            # line) are passed on when nixpkgs is imported. We don't inherit config anymore because apparently it
            # doesn't seem to merge properly... (https://github.com/NixOS/nixpkgs/blob/14a348fcc6c0d28804f640375f058d5491c2e1ee/nixos/modules/misc/nixpkgs.nix#L34)
            # TODO: Possible this behaviour will be fixed in future?
            inherit (pkgs) overlays;
          };

          # Unfortunately it seems there's no way to fully decouple home-manager's lib from NixOS's pkgs.lib. :(
          # https://github.com/nix-community/home-manager/blob/7c2ae0bdd20ddcaafe41ef669226a1df67f8aa06/nixos/default.nix#L22
          home-manager = {
            extraSpecialArgs = { inherit inputs; };
            # Optimise if system and home-manager nixpkgs are the same
            useGlobalPkgs = mkDefault (config'.nixpkgs == config'.hmNixpkgs);
            sharedModules = (attrValues config.home-manager.modules) ++ [
              {
                warnings = flatten [
                  (optional (!sysModArgs.config.home-manager.useGlobalPkgs && (config'.hmNixpkgs != config'.home-manager))
                  ''
                    Using per-user nixpkgs ${config'.hmNixpkgs} with home-manager ${config'.home-manager}
                    may cause issues.
                  '')
                ];

                # pkgsPath is used by home-manager's nixpkgs module to import nixpkgs (i.e. if !useGlobalPkgs)
                _module.args = {
                  pkgsPath = toString pkgsFlakes.${config'.hmNixpkgs};
                  pkgs' = allPkgs;
                };
              }
              (homeStateVersion config'.home-manager)
            ];
          };
        })
      ] ++ defs;
    };

  assignmentOpts = with lib.types; { name, config, ... }: {
    options = {
      name = mkOpt' str name "Name of assignment.";
      altNames = mkOpt' (listOf str) [ ] "Extra names to assign.";
      visible = mkBoolOpt' true "Whether or not this assignment should be visible.";
      ipv4 = {
        address = mkOpt' str null "IPv4 address.";
        mask = mkOpt' ints.u8 24 "Network mask.";
        gateway = mkOpt' (nullOr str) (naiveIPv4Gateway config.ipv4.address) "IPv4 gateway.";
      };
      ipv6 = {
        address = mkOpt' str null "IPv6 address.";
        mask = mkOpt' ints.u8 64 "Network mask.";
        gateway = mkOpt' (nullOr str) null "IPv6 gateway.";
      };
    };
  };

  systemOpts = with lib.types; { name, config, ... }: {
    options = {
      inherit (commonOpts) system nixpkgs home-manager;
      hmNixpkgs = commonOpts.nixpkgs;
      # This causes a (very slow) docs rebuild on every change to a module's options it seems
      # TODO: Currently broken with infinite recursion...
      docCustom = mkBoolOpt' false "Whether to document nixfiles' custom NixOS modules.";

      assignments = mkOpt' (attrsOf (submoduleWith {
        modules = [ assignmentOpts { _module.args.name = mkForce name; } ];
      })) { } "Network assignments.";

      configuration = mkOption {
        description = "NixOS configuration module.";
        # Based on the definition of containers.<name>.config
        type = mkOptionType {
          name = "Toplevel NixOS config";
          merge = _: defs: mkSystem {
            inherit name;
            config' = config;
            defs = map (d: inlineModule' d.file d.value) defs;
          };
        };
      };
    };

    config = {
      home-manager = mkDefault config.nixpkgs;
      hmNixpkgs = mkDefault config.nixpkgs;
    };
  };
in
{
  imports = [ modules/_list.nix ];

  options = with lib.types; {
    nixos = {
      secretsPath = mkOpt' path null "Path to encrypted secret files.";
      modules = mkOpt' (attrsOf commonOpts.moduleType) { } "NixOS modules to be exported by nixfiles.";
      systems = mkOpt' (attrsOf (submodule systemOpts)) { } "NixOS systems to be exported by nixfiles.";
    };
  };
}
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`{ lib, pkgsFlakes, hmFlakes, inputs, pkgs', config, ... }:`
Apply nixpkgs-fmt 2022-02-13 13:10:21 +00:00			`let`
			`inherit (builtins) attrValues mapAttrs;`
nixos: Tweak networking and prepare for more VMs 2022-05-28 15:30:12 +01:00			`inherit (lib) substring flatten optional optionals mkDefault mkForce mkOption mkOptionType;`
nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`inherit (lib.my) naiveIPv4Gateway homeStateVersion mkOpt' mkBoolOpt' commonOpts inlineModule';`
Initial basic setup 2022-02-06 00:06:26 +00:00
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`cfg = config.nixos;`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00
nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`allAssignments = mapAttrs (_: c: c.assignments) cfg.systems;`

Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`mkSystem =`
			`{`
			`name,`
			`config',`
			`defs,`
Initial basic setup 2022-02-06 00:06:26 +00:00			`}:`
Apply nixpkgs-fmt 2022-02-13 13:10:21 +00:00			`let`
Move NixOS and home-manager stable to 22.05 2022-05-28 18:38:03 +01:00			# The flake contains `nixosSystem`, so we do need it
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`pkgsFlake = pkgsFlakes.${config'.nixpkgs};`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`pkgs = pkgs'.${config'.nixpkgs}.${config'.system};`
			`allPkgs = mapAttrs (_: p: p.${config'.system}) pkgs';`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`modules' = [ hmFlakes.${config'.home-manager}.nixosModule ] ++ (attrValues cfg.modules);`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`in`
Move NixOS and home-manager stable to 22.05 2022-05-28 18:38:03 +01:00			`pkgsFlake.lib.nixosSystem {`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`# Gotta override lib here unforunately, eval-config.nix likes to import its own (unextended) lib. We explicitly`
			`# don't pass pkgs so that it'll be imported with modularly applied config and overlays.`
			`lib = pkgs.lib;`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00
			`# Put the inputs in specialArgs to avoid infinite recursion when modules try to do imports`
nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`specialArgs = { inherit inputs allAssignments; inherit (cfg) systems; };`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			# `baseModules` informs the manual which modules to document
			`baseModules =`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`(import "${pkgsFlake}/nixos/modules/module-list.nix") ++ (optionals config'.docCustom modules');`
			`modules = (optionals (!config'.docCustom) modules') ++ [`
			`(sysModArgs: {`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`warnings = flatten [`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`(optional (sysModArgs.config.home-manager.useGlobalPkgs && (config'.nixpkgs != config'.home-manager))`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`''`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`Using global nixpkgs ${config'.nixpkgs} with home-manager ${config'.home-manager} may cause problems.`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`'')`
			`];`

			`_module.args = {`
Add secret support 2022-02-22 00:59:57 +00:00			`inherit (cfg) secretsPath;`
nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`inherit (config') assignments;`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`pkgs' = allPkgs;`
			`};`

Set `system.name` from systems key 2022-02-13 13:48:11 +00:00			`system.name = name;`
nixos: Internal network tidying 2022-05-18 23:29:52 +01:00			`networking.hostName = mkDefault (config'.assignments.internal.name or name);`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`nixpkgs = {`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`inherit (config') system;`
Update nixpkgs and home-manager And fix weird nixpkgs config behaviour 2022-05-07 15:12:29 +01:00			`# Make sure any previously set overlays (e.g. lib which will be inherited by home-manager down the`
			`# line) are passed on when nixpkgs is imported. We don't inherit config anymore because apparently it`
			`# doesn't seem to merge properly... (https://github.com/NixOS/nixpkgs/blob/14a348fcc6c0d28804f640375f058d5491c2e1ee/nixos/modules/misc/nixpkgs.nix#L34)`
			`# TODO: Possible this behaviour will be fixed in future?`
			`inherit (pkgs) overlays;`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`};`

			`# Unfortunately it seems there's no way to fully decouple home-manager's lib from NixOS's pkgs.lib. :(`
			`# https://github.com/nix-community/home-manager/blob/7c2ae0bdd20ddcaafe41ef669226a1df67f8aa06/nixos/default.nix#L22`
			`home-manager = {`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`extraSpecialArgs = { inherit inputs; };`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`# Optimise if system and home-manager nixpkgs are the same`
Move NixOS and home-manager stable to 22.05 2022-05-28 18:38:03 +01:00			`useGlobalPkgs = mkDefault (config'.nixpkgs == config'.hmNixpkgs);`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`sharedModules = (attrValues config.home-manager.modules) ++ [`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`{`
			`warnings = flatten [`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`(optional (!sysModArgs.config.home-manager.useGlobalPkgs && (config'.hmNixpkgs != config'.home-manager))`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`''`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`Using per-user nixpkgs ${config'.hmNixpkgs} with home-manager ${config'.home-manager}`
			`may cause issues.`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`'')`
			`];`

Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`# pkgsPath is used by home-manager's nixpkgs module to import nixpkgs (i.e. if !useGlobalPkgs)`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`_module.args = {`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`pkgsPath = toString pkgsFlakes.${config'.hmNixpkgs};`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`pkgs' = allPkgs;`
			`};`
			`}`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`(homeStateVersion config'.home-manager)`
Add capability to choose home-manager branch 2022-02-15 20:50:27 +00:00			`];`
			`};`
			`})`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`] ++ defs;`
			`};`

nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`assignmentOpts = with lib.types; { name, config, ... }: {`
			`options = {`
			`name = mkOpt' str name "Name of assignment.";`
			`altNames = mkOpt' (listOf str) [ ] "Extra names to assign.";`
			`visible = mkBoolOpt' true "Whether or not this assignment should be visible.";`
			`ipv4 = {`
			`address = mkOpt' str null "IPv4 address.";`
			`mask = mkOpt' ints.u8 24 "Network mask.";`
			`gateway = mkOpt' (nullOr str) (naiveIPv4Gateway config.ipv4.address) "IPv4 gateway.";`
			`};`
			`ipv6 = {`
			`address = mkOpt' str null "IPv6 address.";`
			`mask = mkOpt' ints.u8 64 "Network mask.";`
			`gateway = mkOpt' (nullOr str) null "IPv6 gateway.";`
			`};`
			`};`
			`};`

Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`systemOpts = with lib.types; { name, config, ... }: {`
			`options = {`
			`inherit (commonOpts) system nixpkgs home-manager;`
			`hmNixpkgs = commonOpts.nixpkgs;`
			`# This causes a (very slow) docs rebuild on every change to a module's options it seems`
Re-enable installer documentation 2022-02-21 01:15:27 +00:00			`# TODO: Currently broken with infinite recursion...`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`docCustom = mkBoolOpt' false "Whether to document nixfiles' custom NixOS modules.";`

nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`assignments = mkOpt' (attrsOf (submoduleWith {`
nixos: Tweak networking and prepare for more VMs 2022-05-28 15:30:12 +01:00			`modules = [ assignmentOpts { _module.args.name = mkForce name; } ];`
nixos: Reworked network assignments 2022-05-17 23:27:14 +01:00			`})) { } "Network assignments.";`

Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`configuration = mkOption {`
			`description = "NixOS configuration module.";`
			`# Based on the definition of containers.<name>.config`
			`type = mkOptionType {`
			`name = "Toplevel NixOS config";`
			`merge = _: defs: mkSystem {`
			`inherit name;`
			`config' = config;`
			`defs = map (d: inlineModule' d.file d.value) defs;`
			`};`
			`};`
			`};`
Initial basic setup 2022-02-06 00:06:26 +00:00			`};`
Move NixOS and home-manager stable to 22.05 2022-05-28 18:38:03 +01:00
			`config = {`
			`home-manager = mkDefault config.nixpkgs;`
			`hmNixpkgs = mkDefault config.nixpkgs;`
			`};`
Apply nixpkgs-fmt 2022-02-13 13:10:21 +00:00			`};`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`in`
			`{`
			`imports = [ modules/_list.nix ];`
Add initial installer 2022-02-17 15:47:24 +00:00
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`options = with lib.types; {`
			`nixos = {`
Add secret support 2022-02-22 00:59:57 +00:00			`secretsPath = mkOpt' path null "Path to encrypted secret files.";`
Modularise NixOS and home-manager configs 2022-02-20 15:59:07 +00:00			`modules = mkOpt' (attrsOf commonOpts.moduleType) { } "NixOS modules to be exported by nixfiles.";`
			`systems = mkOpt' (attrsOf (submodule systemOpts)) { } "NixOS systems to be exported by nixfiles.";`
			`};`
Add initial installer 2022-02-17 15:47:24 +00:00			`};`
Apply nixpkgs-fmt 2022-02-13 13:10:21 +00:00			`}`