···
51
+
## running knots and spindles in a VM
An end-to-end knot setup requires setting up a machine with
`sshd`, `AuthorizedKeysCommand`, and git user, which is
quite cumbersome. So the nix flake provides a
`nixosConfiguration` to do so.
58
+
### Mac-specific: setting up a Nix builder
60
+
In order to build Tangled's dev VM on macOS, you will first need to set up a
61
+
Linux Nix builder. The recommended way to do so is to run a
62
+
[`darwin.linux-builder` VM][darwin builder vm] and to register it in `nix.conf`
63
+
as a builder for Linux with the same architecture as your Mac (`linux-aarch64`
64
+
if you are using Apple Silicon).
66
+
> IMPORTANT: You must build `darwin.linux-builder` somewhere other than inside
67
+
> the tangled repo so that it doesn't conflict with the other VM. For example,
71
+
> cd $(mktemp -d buildervm.XXXXX) && nix run nixpkgs#darwin.linux-builder
74
+
> to store the builder VM in a temporary dir.
76
+
> You should read and follow [all the other intructions][darwin builder vm] to
77
+
> avoid subtle problems.
79
+
Alternatively, you can use any other method to set up a Linux machine with `nix`
80
+
installed that you can `sudo ssh` into (in other words, root user on your Mac
81
+
has to be able to ssh into the Linux machine without entering a password) and
82
+
that has the same architecture as your Mac. See [remote builder instructions]
83
+
for how to register such a builder in `nix.conf`.
85
+
> WARNING: If you'd like to use
86
+
> [`nixos-lima`](https://github.com/nixos-lima/nixos-lima) or
87
+
> [Orbstack](https://orbstack.dev/), note that setting them up so that `sudo
88
+
> ssh` works can be tricky. It seems to be [possible with
89
+
> Orbstack](https://github.com/orgs/orbstack/discussions/1669).
91
+
[darwin builder vm]:
92
+
https://nixos.org/manual/nixpkgs/unstable/#sec-darwin-builder
93
+
[remote builder instructions]:
94
+
https://nix.dev/manual/nix/2.28/advanced-topics/distributed-builds.html#requirements
96
+
### Running a knot on a dev VM
To begin, head to `http://localhost:3000/knots` in the browser
and create a knot with hostname `localhost:6000`. This will
generate a knot secret. Set `$TANGLED_VM_KNOT_SECRET` to it,
···
98
-
## running a spindle
138
+
### running a spindle
You will need to find out your DID by entering your login handle into
101
-
<https://pdsls.dev/>. Set `$TANGLED_VM_SPINDLE_OWNER` to your DID.
141
+
<https://pdsls.dev/>. Set `$TANGLED_VM_SPINDLE_OWNER` to your DID and follow the
142
+
instructions in the previous section.
103
-
The above VM should already be running a spindle on `localhost:6555`.
104
-
You can head to the spindle dashboard on `http://localhost:3000/spindles`,
105
-
and register a spindle with hostname `localhost:6555`. It should instantly
106
-
be verified. You can then configure each repository to use this spindle
144
+
The dev VM should be running a spindle on `localhost:6555`. You can head to the
145
+
spindle dashboard on `http://localhost:3000/spindles`, and register a spindle
146
+
with hostname `localhost:6555`. It should instantly be verified. You can then
147
+
configure each repository to use this spindle and run CI jobs.
Of interest when debugging spindles:
ilyagr.bsky.social
targeting
master
from
ilyagr.bsky.social/core:
machacking