very temp

FlafyDev · FlafyDev · commit f9c547a68877 · 2025-04-02T03:16:38.000+03:00
diff --git a/flake.lock b/flake.lock
diff --git a/flake.nix b/flake.nix
@@ -56,7 +56,7 @@
     impermanence.url = "github:nix-community/impermanence";
     microvm = {
       inputs.nixpkgs.follows = "nixpkgs";
-      url = "path:/home/flafy/repos/astro/microvm.nix";
+      url = "github:FlafyDev/microvm.nix/flafy-main";
     };
     mobile-nixos = {
       flake = false;
diff --git a/hosts/ope/modules/test.py b/hosts/ope/modules/test.py
@@ -0,0 +1,58 @@
+import sys
+import io
+import select
+from subprocess import Popen, PIPE
+from sys import argv
+
+
+def kill_when_found(process, needle, size=io.DEFAULT_BUFFER_SIZE):
+    if isinstance(needle, str):
+        needle = needle.encode()
+    assert isinstance(needle, bytes)
+
+    streams = [process.stdout, process.stderr]
+    poll = select.poll()
+    for stream in streams:
+        if stream:
+            poll.register(stream, select.POLLIN)
+
+    output_buffers = {stream: b"" for stream in streams if stream}
+
+    while process.poll() is None:
+        events = poll.poll(100)
+        if not events:
+            continue
+
+        for fd, _ in events:
+            for stream in streams:
+                if stream and stream.fileno() == fd:
+                    output = stream.read1(size)
+                    sys.stdout.buffer.write(output)
+                    sys.stdout.buffer.flush()
+                    output_buffers[stream] += output
+
+                    if needle in output_buffers[stream]:
+                        process.kill()
+                        return process.poll()
+
+                    if len(output_buffers[stream]) >= len(needle):
+                        output_buffers[stream] = output_buffers[stream][
+                            -len(needle):
+                        ]
+
+    return process.poll()
+
+
+if __name__ == "__main__":
+    if len(argv) <= 3:
+        print(
+            """
+Usage: Pass in at least 2 arguments. The first argument is the search string;
+the remaining arguments form the command to be executed (and watched over).
+"""
+        )
+        sys.exit(0)
+    else:
+        process = Popen(argv[2:], stdout=PIPE, stderr=PIPE)
+        retcode = kill_when_found(process, argv[1])
+        sys.exit(retcode)
diff --git a/hosts/ope/modules/vm0.nix b/hosts/ope/modules/vm0.nix
@@ -1,10 +1,27 @@
-{utils, ...}: let
+{utils, pkgs, config, ...}: let
   inherit (utils) resolveHostname domains;
 in {
+  os.microvm.vms.vm0.autostart = false;
+  os.microvm.vms.vm0.restartIfChanged = false;
+
+  os.environment.systemPackages = [
+    config.setupVM.vms.vm0.config.config.microvm.declaredRunner
+  ];
+
+  # TODO: still not working...
+  os.security.wrappers.player_binary_suid = {
+    source = "${config.setupVM.vms.vm0.config.config.microvm.declaredRunner}/bin/microvm-run";
+    owner = "root";
+    group = "root";
+    # setuid = true;
+    permissions = "u+rx,g+rx,o+rx";
+    capabilities = "cap_net_admin+ep";
+  };
+
   setupVM = {
     vms = {
       vm0 = {
-        gateway = "vpn";
+        gateway = null;
         inputRules = ''
           # Accept all packets from vm0 to host
           iifname vm0 meta mark set 88
@@ -20,6 +37,74 @@ in {
           # tcp dport 8080 dnat ip to ${resolveHostname "vm.vm0"}
         '';
         config = {
+          # TODO make wine exit instantly instead of showing a crash window
+          os.systemd.services.taskAndShutdown = {
+            description = "Service that performs a task and then shuts down the system";
+
+            after = [ "network.target" ];
+
+            serviceConfig = {
+              Type = "oneshot";
+              ExecStart = let
+                runUntilText = pkgs.writers.writePython3Bin "run_until_text" {} (builtins.readFile ./test.py);
+              in pkgs.writeShellScript "bot-gd" ''
+                set +e # Don't exit on error
+                export WINEDLLOVERRIDES="XInput1_4.dll=n,b;mscoree=d;winemono=d;winemenubuilder.exe=d"
+                export WINEDEBUG=+warn
+                export WLR_BACKENDS=headless
+                export WINEPREFIX=/home/vm0/geometry-dash/.wine
+                export XDG_RUNTIME_DIR=/run/user/1000
+                export WINARCH=win64
+                mkdir -p /run/user/1000
+                chown -R vm0:users /run/user/1000
+                chmod -R 700 /run/user/1000
+                ${pkgs.sudo}/bin/sudo -Eu vm0 env -C /home/vm0/geometry-dash ${pkgs.cage}/bin/cage ${runUntilText}/bin/run_until_text -- "fixme:dbghelp_msc:dump" "${pkgs.wineWowPackages.stable}/bin/wine" ./GeometryDash.exe
+                echo Powering off...
+                echo o >/proc/sysrq-trigger
+                echo Done
+              '';
+              # RemainAfterExit = true;
+              # ExecStop = "${pkgs.systemd}/bin/systemctl poweroff";
+            };
+
+            wantedBy = [ "multi-user.target" ];
+          };
+
+          os.networking.nftables.tables.allow = {
+            family = "inet";
+            content = ''
+              chain input {
+                type filter hook input priority 0; policy accept;
+                meta mark set 88 # Accept all
+              }
+            '';
+          };
+
+          os.boot.kernelModules = [ "drm" "qxl" "bochs_drm" ];
+
+          os.microvm.qemu.extraArgs = [
+            "-device" "virtio-gpu-gl"
+            "-display" "egl-headless,rendernode=/dev/dri/renderD128"
+            # "-spice" "port=5902,disable-ticketing=on"
+          ];
+
+          os.environment.systemPackages = with pkgs; [
+            wineWowPackages.stable
+          ];
+
+          os.microvm.shares = [
+            {
+              source = "/home/flafy/Games/data/windows/geometry-dash";
+              mountPoint = "/home/vm0/geometry-dash";
+              tag = "gd";
+              proto = "9p";
+            }
+          ];
+
+          os.hardware.graphics.enable = true;
+          os.microvm.graphics.enable = true;
+          os.microvm.mem = 1024;
+          os.microvm.vcpu = 2;
           os.system.stateVersion = "23.11";
           hm.home.stateVersion = "23.11";
         };
@@ -37,6 +122,27 @@ in {
           iifname vm1 meta mark set 89
         '';
         config = {
+          os.networking.nftables.tables.allow = {
+            family = "inet";
+            content = ''
+              chain input {
+                type filter hook input priority 0; policy accept;
+                meta mark set 88 # Accept all
+              }
+            '';
+          };
+
+          # os.environment.systemPackages = [
+          #   config.setupVM.vms.vm0.config.config.microvm.declaredRunner
+          # ];
+
+          # os.security.wrappers.suid_binary = {
+          #   source = config.setupVM.vms.vm0.config.config.microvm.declaredRunner;
+          #   owner = "root";
+          #   group = "root";
+          #   mode = "u+s,g+x";
+          # };
+
           os.system.stateVersion = "23.11";
           hm.home.stateVersion = "23.11";
         };
diff --git a/modules/misc/games/default.nix b/modules/misc/games/default.nix
@@ -269,7 +269,7 @@ in {
               winePrefix = "geometry-dash";
               script = {data, ...}: ''
                 export WINEDLLOVERRIDES="XInput1_4.dll=n,b"
-                env -C ${data} wine64 GeometryDash.exe
+                env -C ${data} wine GeometryDash.exe
               '';
               networking = true;
               pathPackages = [pkgs.wineWowPackages.unstable pkgs.gamescope];
diff --git a/modules/misc/microvm.nix b/modules/misc/microvm.nix
@@ -3,7 +3,7 @@
   lib,
   config,
   ...
-}: let 
+}: let
   inherit (lib) mkOption types mkIf;
 in {
   options = {
@@ -17,10 +17,9 @@ in {
   };
   config = {
     inputs = {
-      microvm.url = "path:/home/flafy/repos/astro/microvm.nix";
+      microvm.url = "github:FlafyDev/microvm.nix/flafy-main";
       microvm.inputs.nixpkgs.follows = "nixpkgs";
     };
     osModules = mkIf config.microvm.host [inputs.microvm.nixosModules.host];
   };
 }
-
diff --git a/modules/misc/networking/server-microvm.nix b/modules/misc/networking/server-microvm.nix
@@ -48,6 +48,11 @@ in {
               default = null;
               description = "Name";
             };
+            # package = mkOption {
+            #   type = types.anything;
+            #   default = cfg.vms.${vmName}.config.config.microvm.declaredRunner;
+            #   description = "Package";
+            # };
             inputRules = mkOption {
               type = str;
               default = "";
@@ -146,7 +151,7 @@ in {
                                 source = "/nix/store";
                                 mountPoint = "/nix/.ro-store";
                                 tag = "ro-store";
-                                proto = "virtiofs";
+                                proto = "9p";
                               }
                             ];
                           };
@@ -233,8 +238,8 @@ in {
     };
 
     os.microvm.vms = mapAttrs (vmName: vmCfg: {
-      autostart = true;
-      restartIfChanged = true;
+      autostart = lib.mkDefault true;
+      restartIfChanged = lib.mkDefault true;
       evaluatedConfig = vmCfg.config;
     }) cfg.vms;
 
diff --git a/secrets/ssh-keys/ope/ope_to_glint/private.age b/secrets/ssh-keys/ope/ope_to_glint/private.age
diff --git a/secrets/ssh-keys/ope/ope_to_glint/public b/secrets/ssh-keys/ope/ope_to_glint/public
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDEjZ8Ky8qWbkhnu9LVkGk1YTt3qBBsmo5s572v7LOfq glint

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDEjZ8Ky8qWbkhnu9LVkGk1YTt3qBBsmo5s572v7LOfq glint`