DGNum/infrastructure
10
5
Fork 3
Code Issues 31 Pull requests 30 Projects 1 Releases Packages Wiki Activity Actions

WIP: ap v02 #592

Draft
mdebray wants to merge 31 commits from mdebray/ap-dev into main
pull from: mdebray/ap-dev
merge into: DGNum:main
Conversation 7 Commits 31 Files changed 36 +1052 -165
mdebray commented 2025-08-18 23:13:43 +02:00
Owner
Copy link
No description provided. 
Put DHCPv4 on the default VLAN now.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
We should use the right DHCPv4.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
This makes the experience nicer.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
This is useful when reflashing the system from scratch in the levitation
mode.

Note that doing this will reset the UBI counter to zero, this is bad for
wear leveling.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
This script requires manual efforts on the operator end not to fuck up
too hard.

This adds min-copy-closure and min-garbage-collect to the development
shell.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
This is useful to reconfigure A/B in memory.

Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
This is a hack, please fix it in the next iteration of the project
Else we would need to change the switch config when rebuilding the AP
TODO: rewrite history to include these changes at the right place
fix(liminix/hostapd): More verbose logging
All checks were successful
Run pre-commit on all files / pre-commit (push) Successful in 24s
Details
c5c8ec9879
feat(ap-v01): upgrade image and deploy on more aps
Some checks failed
Check meta / check_dns (pull_request) Successful in 16s
Details
Check meta / check_meta (pull_request) Failing after 19s
Details
Check workflows / check_workflows (pull_request) Failing after 21s
Details
Build all the nodes / ap01 (pull_request) Failing after 21s
Details
Build all the nodes / Jaccess01 (pull_request) Successful in 24s
Details
Build all the nodes / Jaccess04 (pull_request) Successful in 28s
Details
Run pre-commit on all files / pre-commit (pull_request) Successful in 33s
Details
Build all the nodes / netcore02 (pull_request) Successful in 23s
Details
Build all the nodes / netcore01 (pull_request) Successful in 26s
Details
Build all the nodes / bridge01 (pull_request) Successful in 47s
Details
Build all the nodes / cof02 (pull_request) Successful in 56s
Details
Build all the nodes / geo01 (pull_request) Successful in 57s
Details
Build all the nodes / hypervisor01 (pull_request) Successful in 57s
Details
Build all the nodes / hypervisor03 (pull_request) Successful in 1m0s
Details
Build all the nodes / hypervisor02 (pull_request) Successful in 1m1s
Details
Build all the nodes / geo02 (pull_request) Successful in 1m2s
Details
Build all the nodes / build01 (pull_request) Successful in 1m3s
Details
Build all the nodes / iso (pull_request) Successful in 1m4s
Details
Build all the nodes / lab-router01 (pull_request) Successful in 53s
Details
Build all the nodes / compute01 (pull_request) Successful in 1m24s
Details
Build all the nodes / storage01 (pull_request) Successful in 1m2s
Details
Build all the nodes / tower01 (pull_request) Successful in 59s
Details
Build all the nodes / krz01 (pull_request) Successful in 1m27s
Details
Build all the nodes / rescue01 (pull_request) Successful in 1m7s
Details
Build the shell / build-shell (pull_request) Successful in 30s
Details
Build all the nodes / web02 (pull_request) Successful in 49s
Details
Build all the nodes / vault01 (pull_request) Successful in 58s
Details
Build all the nodes / zulip01 (pull_request) Successful in 53s
Details
Build all the nodes / web01 (pull_request) Successful in 1m7s
Details
Build all the nodes / web03 (pull_request) Successful in 56s
Details
91d0e9dbaf
ecoppens commented 2025-08-18 23:16:33 +02:00
Owner
Copy link

Faudrait essayer de le rendre mergeable à terme pour éviter d'avoir "2 branches main".

Faudrait essayer de le rendre mergeable à terme pour éviter d'avoir "2 branches main".
ecoppens reviewed 2025-08-18 23:31:24 +02:00
machines/liminix/ap-v01/exporter.nix Outdated
@ -0,0 +8,4 @@
in
{
services.prom-exporter = svc.openwrt-prometheus-exporter.build {
httpPorts = [ "192.168.1.148:8888" ];
ecoppens commented 2025-08-18 23:21:51 +02:00
Owner
Copy link

L'IP est bonne?

L'IP est bonne?
mdebray commented 2025-08-18 23:42:47 +02:00
Author
Owner
Copy link

ça n'a pas l'air hehe

ça n'a pas l'air hehe
mdebray marked this conversation as resolved
machines/liminix/ap-v01/lan.nix
@ -0,0 +8,4 @@
in
{
# Our bridging is a bit complicated, therefore, we need iproute2.
programs.iproute2.enable = true;
ecoppens commented 2025-08-18 23:22:38 +02:00
Owner
Copy link

déjà défini autre part

déjà défini autre part
mdebray marked this conversation as resolved
machines/liminix/ap-v01/management.nix
@ -0,0 +11,4 @@
dgn-access-control.enable = true;
users.root = {
# TODO: Change this well-known password
passwd = "$6$Z2MiaMXkpUJRPl2/$fxVE3iD/n208CISM2F6OnWj0Qq0QG2tTQqLCjU80PFJJGIwNLLyOp6SeYH3dH20OvJX1loZRETrThZfIPw.rb/";
ecoppens commented 2025-08-18 23:23:15 +02:00
Owner
Copy link

On a besoin du mot de passe si tout le monde a accès avec clés SSH?

On a besoin du mot de passe si tout le monde a accès avec clés SSH?
mdebray commented 2025-08-18 23:55:15 +02:00
Author
Owner
Copy link

Oui ok mais ducoup ça veut dire qu'on pourra plus se ssh depuis les vault

Oui ok mais ducoup ça veut dire qu'on pourra plus se ssh depuis les vault
ecoppens commented 2025-08-19 10:32:29 +02:00
Owner
Copy link

En proxy jumpant? mais au pire laisse

En proxy jumpant? mais au pire laisse
mdebray commented 2025-08-19 10:33:50 +02:00
Author
Owner
Copy link

Je vais mettre un mdp un peu plus sûr et on pourra le copier coller

Je vais mettre un mdp un peu plus sûr et on pourra le copier coller
👍 1
mdebray marked this conversation as resolved
ecoppens reviewed 2025-08-18 23:34:57 +02:00
machines/liminix/ap-v01/wlan.nix Outdated
@ -0,0 +20,4 @@
hex = x: lib.fixedWidthString 2 "0" (lib.toHexString x);
mac-1 = "02:5B:6A:00:00:${hex apIndex}";
ecoppens commented 2025-08-18 23:34:57 +02:00
Owner
Copy link

On a bien moins que 256 APs?

On a bien moins que 256 APs?
mdebray commented 2025-08-18 23:42:02 +02:00
Author
Owner
Copy link

oui, 102 ou un truc comme ça

oui, 102 ou un truc comme ça
mdebray marked this conversation as resolved
mdebray force-pushed mdebray/ap-dev from 91d0e9dbaf to 079298aa6e 2025-08-18 23:46:35 +02:00 Compare
chore(ap-v02): Rotate password
Some checks failed
Check meta / check_dns (pull_request) Successful in 19s
Details
Build all the nodes / ap01 (pull_request) Failing after 21s
Details
Check workflows / check_workflows (pull_request) Failing after 24s
Details
Build all the nodes / Jaccess01 (pull_request) Successful in 24s
Details
Build all the nodes / Jaccess04 (pull_request) Successful in 26s
Details
Run pre-commit on all files / pre-commit (push) Successful in 31s
Details
Run pre-commit on all files / pre-commit (pull_request) Successful in 34s
Details
Build all the nodes / bridge01 (pull_request) Successful in 45s
Details
Build all the nodes / build01 (pull_request) Successful in 52s
Details
Build all the nodes / cof02 (pull_request) Successful in 49s
Details
Build all the nodes / hypervisor01 (pull_request) Successful in 47s
Details
Build all the nodes / geo01 (pull_request) Successful in 56s
Details
Build all the nodes / geo02 (pull_request) Successful in 58s
Details
Build all the nodes / hypervisor03 (pull_request) Successful in 53s
Details
Build all the nodes / compute01 (pull_request) Successful in 1m8s
Details
Build all the nodes / hypervisor02 (pull_request) Successful in 59s
Details
Build all the nodes / netcore01 (pull_request) Successful in 21s
Details
Build all the nodes / netcore02 (pull_request) Successful in 21s
Details
Build all the nodes / iso (pull_request) Successful in 54s
Details
Build all the nodes / lab-router01 (pull_request) Successful in 44s
Details
Build all the nodes / krz01 (pull_request) Successful in 1m9s
Details
Build all the nodes / storage01 (pull_request) Successful in 50s
Details
Build all the nodes / tower01 (pull_request) Successful in 52s
Details
Build all the nodes / vault01 (pull_request) Successful in 56s
Details
Build all the nodes / rescue01 (pull_request) Successful in 1m2s
Details
Build all the nodes / web02 (pull_request) Successful in 45s
Details
Build all the nodes / web01 (pull_request) Successful in 1m5s
Details
Build the shell / build-shell (pull_request) Successful in 26s
Details
Build all the nodes / web03 (pull_request) Successful in 52s
Details
Build all the nodes / zulip01 (pull_request) Successful in 42s
Details
ca9b2c208c
mdebray commented 2025-08-19 10:48:21 +02:00
Author
Owner
Copy link

@ecoppens wrote in #592 (comment):

Faudrait essayer de le rendre mergeable à terme pour éviter d'avoir "2 branches main".

Ouais, j'ai déjà rebase là mais il y a pas mal de taf. En particulier je pense il faut arriver à upgrade nixpkgs et proprifier tous les hacks qu'on a ici et là (vraiment il y en a plein). C'est out of scope pour le déploiement là (en tout cas je le ferai pas)

@ecoppens wrote in https://git.dgnum.eu/DGNum/infrastructure/pulls/592#issuecomment-17269: > Faudrait essayer de le rendre mergeable à terme pour éviter d'avoir "2 branches main". Ouais, j'ai déjà rebase là mais il y a pas mal de taf. En particulier je pense il faut arriver à upgrade nixpkgs et proprifier tous les hacks qu'on a ici et là (vraiment il y en a plein). C'est out of scope pour le déploiement là (en tout cas je le ferai pas)
ecoppens requested changes 2025-08-22 19:05:57 +02:00
machines/liminix/ap-v01/wlan.nix Outdated
@ -0,0 +122,4 @@
baseParams // clientRadius // externalRadius // radiusKeyMgmt
) config.hardware.networkInterfaces.wlan0 secrets-1
);
hostap-1-ready = lib.mkIf (!is5GOnly) svc.hostapd-ready.build {
ecoppens commented 2025-08-22 19:05:51 +02:00
Owner
Copy link

Erreur: il y a 3 arguments à mkIf

Erreur: il y a 3 arguments à mkIf
ecoppens requested changes 2025-08-22 22:09:44 +02:00
meta/nodes/liminix.nix Outdated
@ -21,0 +157,4 @@
ap-range = mkRange 0 3;
}
# Tour B
// (mkDualAp "AP-MB705" self."AP-MB716".channelIndex)
ecoppens commented 2025-08-22 22:09:42 +02:00
Owner
Copy link

Il manque un tiret.

Il manque un tiret.
ecoppens commented 2025-08-22 22:11:08 +02:00
Owner
Copy link

et MB716 n'existe pas

et MB716 n'existe pas
feat(ap-v01): add Jourdan APs
Some checks failed
Build all the nodes / ap01 (pull_request) Failing after 18s
Details
Check meta / check_dns (pull_request) Successful in 19s
Details
Check workflows / check_workflows (pull_request) Failing after 21s
Details
Build all the nodes / Jaccess01 (pull_request) Successful in 21s
Details
Run pre-commit on all files / pre-commit (push) Successful in 26s
Details
Build all the nodes / Jaccess04 (pull_request) Successful in 26s
Details
Run pre-commit on all files / pre-commit (pull_request) Successful in 32s
Details
Build all the nodes / netcore01 (pull_request) Successful in 23s
Details
Build all the nodes / netcore02 (pull_request) Successful in 25s
Details
Build all the nodes / geo01 (pull_request) Successful in 52s
Details
Build all the nodes / build01 (pull_request) Successful in 54s
Details
Build all the nodes / geo02 (pull_request) Successful in 55s
Details
Build all the nodes / hypervisor01 (pull_request) Successful in 55s
Details
Build all the nodes / cof02 (pull_request) Successful in 57s
Details
Build all the nodes / bridge01 (pull_request) Successful in 58s
Details
Build all the nodes / compute01 (pull_request) Successful in 1m11s
Details
Build all the nodes / hypervisor02 (pull_request) Successful in 58s
Details
Build all the nodes / hypervisor03 (pull_request) Successful in 57s
Details
Build all the nodes / lab-router01 (pull_request) Successful in 53s
Details
Build all the nodes / iso (pull_request) Successful in 57s
Details
Build all the nodes / krz01 (pull_request) Successful in 1m15s
Details
Build the shell / build-shell (pull_request) Successful in 25s
Details
Build all the nodes / tower01 (pull_request) Successful in 45s
Details
Build all the nodes / storage01 (pull_request) Successful in 52s
Details
Build all the nodes / rescue01 (pull_request) Successful in 1m4s
Details
Build all the nodes / web02 (pull_request) Successful in 56s
Details
Build all the nodes / zulip01 (pull_request) Successful in 1m2s
Details
Build all the nodes / vault01 (pull_request) Successful in 1m5s
Details
Build all the nodes / web03 (pull_request) Successful in 1m4s
Details
Build all the nodes / web01 (pull_request) Successful in 1m8s
Details
a72aa89e5c
ecoppens reviewed 2025-08-23 17:27:19 +02:00
meta/nodes/liminix.nix
@ -21,0 +191,4 @@
# Jourdan
#
# Hypnos-1
// alignedFloors {
ecoppens commented 2025-08-23 17:27:19 +02:00
Owner
Copy link

il faut bien set les channel index pour hypnos (cc @mdebray)

il faut bien set les channel index pour hypnos (cc @mdebray)
Some checks failed
Check meta / check_meta (pull_request) Successful in 15s
Required
Details
Build all the nodes / ap01 (pull_request) Failing after 18s
Required
Details
Check meta / check_dns (pull_request) Successful in 19s
Required
Details
Check workflows / check_workflows (pull_request) Failing after 21s
Required
Details
Build all the nodes / Jaccess01 (pull_request) Successful in 21s
Required
Details
Run pre-commit on all files / pre-commit (push) Successful in 26s
Required
Details
Build all the nodes / Jaccess04 (pull_request) Successful in 26s
Required
Details
Run pre-commit on all files / pre-commit (pull_request) Successful in 32s
Required
Details
Build all the nodes / netcore01 (pull_request) Successful in 23s
Required
Details
Build all the nodes / netcore02 (pull_request) Successful in 25s
Required
Details
Build all the nodes / geo01 (pull_request) Successful in 52s
Required
Details
Build all the nodes / build01 (pull_request) Successful in 54s
Required
Details
Build all the nodes / geo02 (pull_request) Successful in 55s
Required
Details
Build all the nodes / hypervisor01 (pull_request) Successful in 55s
Required
Details
Build all the nodes / cof02 (pull_request) Successful in 57s
Required
Details
Build all the nodes / bridge01 (pull_request) Successful in 58s
Required
Details
Build all the nodes / compute01 (pull_request) Successful in 1m11s
Required
Details
Build all the nodes / hypervisor02 (pull_request) Successful in 58s
Required
Details
Build all the nodes / hypervisor03 (pull_request) Successful in 57s
Required
Details
Build all the nodes / lab-router01 (pull_request) Successful in 53s
Required
Details
Build all the nodes / iso (pull_request) Successful in 57s
Required
Details
Build all the nodes / krz01 (pull_request) Successful in 1m15s
Required
Details
Build the shell / build-shell (pull_request) Successful in 25s
Required
Details
Build all the nodes / tower01 (pull_request) Successful in 45s
Required
Details
Build all the nodes / storage01 (pull_request) Successful in 52s
Required
Details
Build all the nodes / rescue01 (pull_request) Successful in 1m4s
Required
Details
Build all the nodes / web02 (pull_request) Successful in 56s
Required
Details
Build all the nodes / zulip01 (pull_request) Successful in 1m2s
Required
Details
Build all the nodes / vault01 (pull_request) Successful in 1m5s
Required
Details
Build all the nodes / web03 (pull_request) Successful in 1m4s
Required
Details
Build all the nodes / web01 (pull_request) Successful in 1m8s
Required
Details
This pull request has changes conflicting with the target branch.
  • hive.nix
  • meta/options.nix
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin mdebray/ap-dev:mdebray/ap-dev
git switch mdebray/ap-dev
Sign in to join this conversation.
Reviewers
No reviewers
ecoppens
Labels
Clear labels   
awaiting
awaiting-author
Awaiting for the author interaction (e.g. QA/confirmation/final merge)

  
awaiting
awaiting-reviewer
Awaiting for a privileged reviewer to approve this PR

  
bot

Pull Request opened by a bot

  
deployed

This PR is currently deployed on the infra

  
bug

Something is not working

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
question

More information is needed

  
wontfix

This won't be fixed

No labels
awaiting
awaiting-author
awaiting
awaiting-reviewer
bot
deployed
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: DGNum/infrastructure#592
No description provided.
Delete branch "mdebray/ap-dev"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?