nixos_config/nixos/hosts/tesla-nixos/configuration.nix

{ pkgs, ... }:
let
  modpack = pkgs.fetchPackwizModpack {
    url = "https://git.malice.zone/alisceon/tfcpack/-/raw/main/pack.toml";
    packHash = "sha256-AKmS+CLiex+N2YipHNbOJpOS+cUut4fcG2oKCWuXBwY=";
  };
in
{
  imports = [ ./hardware-configuration.nix ];

  security.sudo.wheelNeedsPassword = false;
  networking.hostName = "tesla-nixos";

  boot = {
    initrd.enable = true;
    loader.systemd-boot.enable = true;
  };

  environment.systemPackages = with pkgs; [ tmux ];

  virtualisation.podman.dockerCompat = false;
  virtualisation.docker = {
    enable = true;
    autoPrune = {
      enable = true;
      dates = "daily";
    };
    daemon.settings = {
      runtimes.crun.path = "${pkgs.crun}/bin/crun";
      default-runtime = "crun";
    };
  };

  networking.firewall.allowedTCPPorts = [
    8100
  ];

  services.minecraft-servers = {
    enable = true;
    eula = true;
    openFirewall = true;
    servers.tfcpack = {
      enable = true;
      package = pkgs.neoforgeServers.neoforge-1_21_1-21_1_219;
      autoStart = true;
      serverProperties = {
        motd = "TFC Pack - Tesla Nixos";
        max-players = "20";
        view-distance = "32";
        level-type = "tfc\\:overworld";
        spawn-protection = "0";
        max-tick-time = "-1";
      };
      jvmOpts = [
        "-Xmx24G"
        "-Xms24G"
        "-XX:+UseZGC"
        "-XX:+ZGenerational"
      ];
      symlinks.mods = "${modpack}/mods";
      files."config/bluemap/core.conf" = "${modpack}/config/bluemap/core.conf";
    };
  };

  users.users.gitlab-runner = {
    isNormalUser = true;
    home = "/var/lib/gitlab-runner";
    createHome = true;
    shell = pkgs.bashInteractive;
    extraGroups = [ "docker" "wheel" ];
    group = "gitlab-runner";
  };

  users.groups.gitlab-runner = { };
  users.groups.docker = { };

  systemd.services.enable-linger-gitlab-runner = {
    description = "Enable linger for gitlab-runner";
    wantedBy = [ "multi-user.target" ];
    serviceConfig = {
      Type = "oneshot";
      ExecStart = "${pkgs.systemd}/bin/loginctl enable-linger gitlab-runner";
      RemainAfterExit = true;
    };
  };

  services.gitlab-runner = {
    enable = true;
    services.ci-nspawn-docker = {
      authenticationTokenConfigFile = "/var/lib/gitlab-runner/token-env";
      executor = "docker";
      dockerImage = "alpine:3";
      dockerPrivileged = true;
      dockerVolumes = [
        "/var/lib/gitlab-runner/cache:/cache"
      ];
    };
  };
}
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`{ pkgs, ... }:`
sha issues abound 2026-02-01 15:53:16 +01:00			`let`
			`modpack = pkgs.fetchPackwizModpack {`
			`url = "https://git.malice.zone/alisceon/tfcpack/-/raw/main/pack.toml";`
bump hash 2026-02-05 13:05:25 +01:00			`packHash = "sha256-AKmS+CLiex+N2YipHNbOJpOS+cUut4fcG2oKCWuXBwY=";`
sha issues abound 2026-02-01 15:53:16 +01:00			`};`
			`in`
server v1 2025-08-12 21:00:01 +02:00			`{`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`imports = [ ./hardware-configuration.nix ];`

known bronken 2025-09-29 15:56:43 +02:00			`security.sudo.wheelNeedsPassword = false;`
server v1 2025-08-12 21:00:01 +02:00			`networking.hostName = "tesla-nixos";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
			`boot = {`
			`initrd.enable = true;`
			`loader.systemd-boot.enable = true;`
			`};`

			`environment.systemPackages = with pkgs; [ tmux ];`

SPELLING WAS ALWAYS OVERRATED 2025-09-30 20:03:13 +02:00			`virtualisation.podman.dockerCompat = false;`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`virtualisation.docker = {`
networking fix 2025-09-29 17:51:11 +02:00			`enable = true;`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`autoPrune = {`
			`enable = true;`
			`dates = "daily";`
first gitlab-runner experiment 2025-09-29 11:23:45 +02:00			`};`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`daemon.settings = {`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`runtimes.crun.path = "${pkgs.crun}/bin/crun";`
			`default-runtime = "crun";`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`};`
			`};`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
allow bluemap 2026-02-03 19:12:40 +01:00			`networking.firewall.allowedTCPPorts = [`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`8100`
allow bluemap 2026-02-03 19:12:40 +01:00			`];`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
sha issues abound 2026-02-01 15:53:16 +01:00			`services.minecraft-servers = {`
			`enable = true;`
			`eula = true;`
			`openFirewall = true;`
little twaekies 2026-02-01 16:10:29 +01:00			`servers.tfcpack = {`
sha issues abound 2026-02-01 15:53:16 +01:00			`enable = true;`
missmatched braces 2026-02-01 17:01:59 +01:00			`package = pkgs.neoforgeServers.neoforge-1_21_1-21_1_219;`
little twaekies 2026-02-01 16:10:29 +01:00			`autoStart = true;`
			`serverProperties = {`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`motd = "TFC Pack - Tesla Nixos";`
			`max-players = "20";`
			`view-distance = "32";`
			`level-type = "tfc\\:overworld";`
			`spawn-protection = "0";`
			`max-tick-time = "-1";`
sha issues abound 2026-02-01 15:53:16 +01:00			`};`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`jvmOpts = [`
advanced crash prevention 2026-02-01 20:12:11 +01:00			`"-Xmx24G"`
little twaekies 2026-02-01 16:10:29 +01:00			`"-Xms24G"`
stabilize them flags! 2026-02-01 18:46:55 +01:00			`"-XX:+UseZGC"`
			`"-XX:+ZGenerational"`
little twaekies 2026-02-01 16:10:29 +01:00			`];`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`symlinks.mods = "${modpack}/mods";`
			`files."config/bluemap/core.conf" = "${modpack}/config/bluemap/core.conf";`
			`};`
			`};`
sha issues abound 2026-02-01 15:53:16 +01:00
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`users.users.gitlab-runner = {`
im tired, leave me alone 2025-09-30 20:02:47 +02:00			`isNormalUser = true;`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`home = "/var/lib/gitlab-runner";`
			`createHome = true;`
			`shell = pkgs.bashInteractive;`
			`extraGroups = [ "docker" "wheel" ];`
			`group = "gitlab-runner";`
			`};`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`users.groups.gitlab-runner = { };`
			`users.groups.docker = { };`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
			`systemd.services.enable-linger-gitlab-runner = {`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`description = "Enable linger for gitlab-runner";`
			`wantedBy = [ "multi-user.target" ];`
			`serviceConfig = {`
			`Type = "oneshot";`
			`ExecStart = "${pkgs.systemd}/bin/loginctl enable-linger gitlab-runner";`
			`RemainAfterExit = true;`
			`};`
			`};`
first gitlab-runner experiment 2025-09-29 11:23:45 +02:00
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`services.gitlab-runner = {`
			`enable = true;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`services.ci-nspawn-docker = {`
			`authenticationTokenConfigFile = "/var/lib/gitlab-runner/token-env";`
			`executor = "docker";`
			`dockerImage = "alpine:3";`
			`dockerPrivileged = true;`
			`dockerVolumes = [`
			`"/var/lib/gitlab-runner/cache:/cache"`
			`];`
switch to docker 2025-09-29 17:32:31 +02:00			`};`
NO MORE NSPAWN DOCKER NESTING I CANT TAKE THIS 2025-09-30 19:59:18 +02:00			`};`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`}`