From eb8a71a8d8bfd54d486b4c9b0f63914b7e614d63 Mon Sep 17 00:00:00 2001
From: Ingolf Wagner <contact@ingolf-wagner.de>
Date: Mon, 12 Jun 2023 11:42:30 +0200
Subject: [PATCH 1/4] retiolum: add centauri machine

---
 kartei/palo/default.nix | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/kartei/palo/default.nix b/kartei/palo/default.nix
index 6fc9a594f..d57b15923 100644
--- a/kartei/palo/default.nix
+++ b/kartei/palo/default.nix
@@ -42,6 +42,31 @@ in
         };
       };
     };
+    centauri = {
+      owner = config.krebs.users.palo;
+      nets = {
+        retiolum = {
+          tinc.port = 720;
+          aliases = [ "centauri.r" ];
+          tinc.pubkey = ''
+            -----BEGIN RSA PUBLIC KEY-----
+            MIICCgKCAgEAxrvdMSAcOJXM1TbIIDZ+zPojrcRG3RVMfPC2/0DasRpBFSuS+L60
+            mQEs0l0ptAL6Sbr4+9gfaHkdETfYpeKB4Q4lCPahMq88YfTyB1f3tEOqW3vP22nC
+            Z+Yf+W/sTLWVRoDoS/Eok6wS95R1IQ74vr37YXdbJTD/eeX6sAJkn2I2RV5PD6Bu
+            lHsMuunAj+PyhAgqb2P393h7FN4exL0xM6UbHbgsd9OSp5qKTjZE3jeOyWmounK1
+            7n+8pyRjI0VE47ontnj/GANwpsxRFFtRGmG/S5KhUBXMv7wZr/vaVETRphAu+KhT
+            NqdclmGkQlB/YBodzJID7C21Zz4b33kcn12TU3nc6AL5u9j3sU2sEu/22fAZBWLV
+            yOZ9l/Qe4aJkIbdL70Gvp9G8m7+M4vkdM+e/nA5cZT0N9ArI2D5ltJRd7VLVzxef
+            Y0t/bS9bVOcNt2Sgd81Ubg0OmF2paHGGboAAMqXhf3afwCMyXcDsP6sgPXOIEu7Q
+            hjuo5rg6Fu8eK9edAAQ2afl52GiFUawzjHbjGANwVyea1JTQ3uR6eBtxGOEaYpkr
+            vbl75CxLwE0YA0L3VwhJTNLMVldTrUi2M76QedjzyePkJHMijHT5+0nqTlsmjcNg
+            uv89Mh9shNKdqulfGjTAFyKjTCuUe/rCprJ5CeZWBaEuQKYkcZuMkJsCAwEAAQ==
+            -----END RSA PUBLIC KEY-----
+          '';
+          tinc.pubkey_ed25519 = "qCJvjlNz5YNOz5IEiwGaoK3InSVCL76uNl+xVBUa/AP";
+        };
+      };
+    };
   };
   users = {
     palo = {

From 03dfaa6549cf97514de779a33e090feb7ef4d501 Mon Sep 17 00:00:00 2001
From: lassulus <git@lassul.us>
Date: Wed, 5 Jul 2023 12:18:15 +0200
Subject: [PATCH 2/4] hotdog.r: define old privkey

---
 krebs/1systems/hotdog/config.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/krebs/1systems/hotdog/config.nix b/krebs/1systems/hotdog/config.nix
index e5cfad564..f3c0d4440 100644
--- a/krebs/1systems/hotdog/config.nix
+++ b/krebs/1systems/hotdog/config.nix
@@ -22,6 +22,7 @@
   ];
 
   krebs.build.host = config.krebs.hosts.hotdog;
+  krebs.hosts.hotdog.ssh.privkey.path = <secrets/ssh.id_ed25519>;
   krebs.pages.enable = true;
 
   boot.isContainer = true;

From 342f4ff06802c273d8df152b5e628311c11c26eb Mon Sep 17 00:00:00 2001
From: Janik H <janik@aq0.de>
Date: Thu, 6 Jul 2023 17:01:31 +0200
Subject: [PATCH 3/4] kartei janik: init hertz

---
 kartei/janik/default.nix | 38 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)
 create mode 100644 kartei/janik/default.nix

diff --git a/kartei/janik/default.nix b/kartei/janik/default.nix
new file mode 100644
index 000000000..44ec9b0a8
--- /dev/null
+++ b/kartei/janik/default.nix
@@ -0,0 +1,38 @@
+with import ../../lib;
+{ config, ... }: let
+  hostDefaults = hostName: host: flip recursiveUpdate host ({
+    ci = false;
+    external = true;
+    monitoring = false;
+  } // optionalAttrs (host.nets?retiolum) {
+    nets.retiolum.ip6.addr =
+      (krebs.genipv6 "retiolum" "external" { inherit hostName; }).address;
+  });
+in {
+  users.janik = {
+    mail = "retiolum.janik@aq0.de";
+  };
+  hosts.hertz = {
+    owner = config.krebs.users.janik;
+    nets.retiolum = {
+      aliases = [ "hertz.janik.r" ];
+      ip6.addr = (lib.krebs.genipv6 "retiolum" "janik" { hostName = "hertz"; }).address;
+      tinc.pubkey = ''
+        -----BEGIN RSA PUBLIC KEY-----
+        MIICCgKCAgEA0mqxrdVU9wFhNZYGWEknJpKV4yIodNlaCIKDPVhU5wmlzh2szKUS
+        V3PzyEAo4DaQCZXdpj1jS9ddN+yLj68K4k4LRLuCyXep0GcFM1mUKQTBOxa3VF+W
+        oRaSUAVHib/jUiX08BIxYBDwiCUPSdEBUHWftnc8WYvjthPkOOuGAvs1w9ZBs6qC
+        ftkVJT5rt8cU9VsXPqRRauVHb9wH1M41p5/3HtBAgVBtCDp/qXmABW0rbXEKtwmv
+        +hzZoMvxTm05cAE7O2UlluERdnheKkBXWuBYR4aC9BQQH54kIShByOZYYACWuGGA
+        oHHqITYwWh+42wacAKCkTZ6kHoIQrU+uDypQ24YBhxbqUiGTspGbfO/jDHxxjgrd
+        Aauxil2YNQNclEZuWFD4Hlt2Y29jDh7uQwBbOl3dmTLvXr8qTA5HQIsf9uuOrvu9
+        uejj8VMIUHxdSZi8oH3+4XOH43DAGWM2pZogE+jeZtc2hPjqz1XZ40tXBPfEeUr4
+        VE4l1q4m9ynEMZbMZjyDGxX4Yo9htgJmKGk3LQ0ufbOo5CQM/lqzAZVYDKBlW7ka
+        rTgh9ZwMmd3/5ije3nI94Bd+2x+TLJ8ESCloqLYGZ0HaIRU1b5JX5a44+OPq5obB
+        sClD3CzaqMDkoEDBWrEyst8VkqZUWKmicnWtZapNWW67mjXBtzUQmOUCAwEAAQ==
+        -----END RSA PUBLIC KEY-----
+      '';
+      tinc.pubkey_ed25519 = "iT84cW45GuGqsEGgtVwGwe36iGFAha/orKcyZp8VbxH";
+    };
+  };
+}

From 8e959cc72db31fad948c12e29d9345276013b8a6 Mon Sep 17 00:00:00 2001
From: lassulus <git@lassul.us>
Date: Thu, 6 Jul 2023 20:26:25 +0200
Subject: [PATCH 4/4] lass: change default mail to green.r

---
 kartei/lass/default.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kartei/lass/default.nix b/kartei/lass/default.nix
index e5b12f1cb..d4806534f 100644
--- a/kartei/lass/default.nix
+++ b/kartei/lass/default.nix
@@ -29,7 +29,7 @@ in {
   users = rec {
     lass = lass-yubikey;
     lass-yubikey = {
-      mail = "lass@lassul.us";
+      mail = "lass@green.r";
       pubkey = builtins.readFile ./ssh/yubikey.rsa;
       pgp.pubkeys.default = builtins.readFile ./pgp/yubikey.pgp;
     };