2023-07-15 01:02:41 +00:00
|
|
|
{ pkgs, ... }:
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-08-02 21:08:19 +00:00
|
|
|
let
|
|
|
|
declPackageSet = pkgs: {
|
|
|
|
package = null;
|
|
|
|
suggestedPrograms = pkgs;
|
|
|
|
};
|
|
|
|
in
|
2023-07-03 07:49:44 +00:00
|
|
|
{
|
|
|
|
sane.programs = {
|
|
|
|
# PACKAGE SETS
|
2023-08-02 21:08:19 +00:00
|
|
|
"sane-scripts.backup" = declPackageSet [
|
|
|
|
"sane-scripts.backup-ls"
|
|
|
|
"sane-scripts.backup-restore"
|
|
|
|
];
|
|
|
|
"sane-scripts.bittorrent" = declPackageSet [
|
|
|
|
"sane-scripts.bt-add"
|
|
|
|
"sane-scripts.bt-rm"
|
|
|
|
"sane-scripts.bt-search"
|
|
|
|
"sane-scripts.bt-show"
|
|
|
|
];
|
|
|
|
"sane-scripts.dev" = declPackageSet [
|
|
|
|
"sane-scripts.dev-cargo-loop"
|
|
|
|
"sane-scripts.git-init"
|
|
|
|
];
|
|
|
|
"sane-scripts.cli" = declPackageSet [
|
|
|
|
"sane-scripts.deadlines"
|
|
|
|
"sane-scripts.find-dotfiles"
|
|
|
|
"sane-scripts.ip-check"
|
|
|
|
"sane-scripts.ip-reconnect"
|
|
|
|
"sane-scripts.private-change-passwd"
|
|
|
|
"sane-scripts.private-do"
|
|
|
|
"sane-scripts.private-init"
|
|
|
|
"sane-scripts.private-lock"
|
|
|
|
"sane-scripts.private-unlock"
|
|
|
|
"sane-scripts.rcp"
|
|
|
|
"sane-scripts.reboot"
|
|
|
|
"sane-scripts.reclaim-boot-space"
|
|
|
|
"sane-scripts.reclaim-disk-space"
|
|
|
|
"sane-scripts.secrets-dump"
|
|
|
|
"sane-scripts.secrets-unlock"
|
|
|
|
"sane-scripts.secrets-update-keys"
|
|
|
|
"sane-scripts.shutdown"
|
|
|
|
"sane-scripts.ssl-dump"
|
|
|
|
"sane-scripts.sudo-redirect"
|
|
|
|
"sane-scripts.sync-from-servo"
|
|
|
|
"sane-scripts.vpn-down"
|
|
|
|
"sane-scripts.vpn-up"
|
|
|
|
"sane-scripts.which"
|
|
|
|
"sane-scripts.wipe-browser"
|
|
|
|
];
|
|
|
|
"sane-scripts.sys-utils" = declPackageSet [
|
|
|
|
"sane-scripts.ip-port-forward"
|
|
|
|
];
|
|
|
|
|
|
|
|
|
2023-08-02 21:11:49 +00:00
|
|
|
sysadminUtils = declPackageSet [
|
|
|
|
"btrfs-progs"
|
|
|
|
"cacert.unbundled" # some services require unbundled /etc/ssl/certs
|
|
|
|
"cryptsetup"
|
|
|
|
"dig"
|
|
|
|
"efibootmgr"
|
|
|
|
"fatresize"
|
|
|
|
"fd"
|
|
|
|
"file"
|
2023-08-04 07:47:00 +00:00
|
|
|
# "fwupd"
|
2023-08-02 21:11:49 +00:00
|
|
|
"gawk"
|
|
|
|
"git"
|
|
|
|
"gptfdisk"
|
|
|
|
"hdparm"
|
|
|
|
"htop"
|
|
|
|
"iftop"
|
|
|
|
"inetutils" # for telnet
|
|
|
|
"iotop"
|
|
|
|
"iptables"
|
|
|
|
"jq"
|
|
|
|
"killall"
|
|
|
|
"lsof"
|
|
|
|
"miniupnpc"
|
|
|
|
"nano"
|
|
|
|
# "ncdu" # ncurses disk usage. doesn't cross compile (zig)
|
|
|
|
"neovim"
|
|
|
|
"netcat"
|
|
|
|
"nethogs"
|
|
|
|
"nmap"
|
|
|
|
"openssl"
|
|
|
|
"parted"
|
|
|
|
"pciutils"
|
|
|
|
"powertop"
|
|
|
|
"pstree"
|
|
|
|
"ripgrep"
|
|
|
|
"screen"
|
|
|
|
"smartmontools"
|
|
|
|
"socat"
|
|
|
|
"strace"
|
|
|
|
"subversion"
|
|
|
|
"tcpdump"
|
|
|
|
"tree"
|
|
|
|
"usbutils"
|
|
|
|
"wget"
|
|
|
|
"wirelesstools" # iwlist
|
|
|
|
];
|
|
|
|
sysadminExtraUtils = declPackageSet [
|
|
|
|
"backblaze-b2"
|
|
|
|
"duplicity"
|
|
|
|
"sane-scripts.backup"
|
|
|
|
"sqlite" # to debug sqlite3 databases
|
|
|
|
];
|
2023-07-03 07:58:02 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# TODO: split these into smaller groups.
|
|
|
|
# - moby doesn't want a lot of these.
|
|
|
|
# - categories like
|
|
|
|
# - dev?
|
|
|
|
# - debugging?
|
2023-08-02 21:11:49 +00:00
|
|
|
consoleUtils = declPackageSet [
|
|
|
|
"alsaUtils" # for aplay, speaker-test
|
|
|
|
# "cdrtools"
|
|
|
|
"clinfo"
|
|
|
|
"dmidecode"
|
|
|
|
"dtrx" # `unar` alternative, "Do The Right eXtraction"
|
|
|
|
"efivar"
|
|
|
|
# "flashrom"
|
|
|
|
"git" # needed as a user package, for config.
|
|
|
|
# "gnupg"
|
|
|
|
# "gocryptfs"
|
|
|
|
# "gopass"
|
|
|
|
# "gopass-jsonapi"
|
|
|
|
"helix" # text editor
|
|
|
|
"kitty" # TODO: move to GUI, but `ssh servo` from kitty sets `TERM=xterm-kitty` in the remove and breaks things
|
|
|
|
"libsecret" # for managing user keyrings. TODO: what needs this? lift into the consumer
|
|
|
|
"lm_sensors" # for sensors-detect. TODO: what needs this? lift into the consumer
|
|
|
|
"lshw"
|
|
|
|
# "memtester"
|
|
|
|
"neovim" # needed as a user package, for swap persistence
|
|
|
|
# "nettools"
|
|
|
|
# "networkmanager"
|
|
|
|
# "nixos-generators"
|
|
|
|
"nmon"
|
|
|
|
# "node2nix"
|
|
|
|
# "oathToolkit" # for oathtool
|
|
|
|
# "ponymix"
|
|
|
|
"pulsemixer"
|
|
|
|
"python3"
|
|
|
|
# "python3Packages.eyeD3" # music tagging
|
|
|
|
"ripgrep" # needed as a user package so that its user-level config file can be installed
|
|
|
|
"rsync"
|
|
|
|
"sane-scripts.bittorrent"
|
|
|
|
"sane-scripts.cli"
|
|
|
|
"snapper"
|
|
|
|
"sops"
|
|
|
|
"speedtest-cli"
|
|
|
|
# "ssh-to-age"
|
|
|
|
"sudo"
|
|
|
|
# "tageditor" # music tagging
|
|
|
|
# "unar"
|
|
|
|
"wireguard-tools"
|
|
|
|
"xdg-terminal-exec"
|
|
|
|
"xdg-utils" # for xdg-open
|
|
|
|
# "yarn"
|
|
|
|
"zsh"
|
|
|
|
];
|
2023-07-03 07:58:02 +00:00
|
|
|
|
2023-08-02 21:11:49 +00:00
|
|
|
desktopConsoleUtils = declPackageSet [
|
|
|
|
"gh" # MS GitHub cli
|
|
|
|
"nix-index"
|
|
|
|
"nixpkgs-review"
|
|
|
|
"sane-scripts.dev"
|
|
|
|
"sequoia"
|
|
|
|
];
|
2023-07-30 11:59:38 +00:00
|
|
|
|
2023-08-02 21:11:49 +00:00
|
|
|
consoleMediaUtils = declPackageSet [
|
|
|
|
"ffmpeg"
|
|
|
|
"imagemagick"
|
|
|
|
"sox"
|
|
|
|
"yt-dlp"
|
|
|
|
];
|
2023-07-03 07:58:02 +00:00
|
|
|
|
2023-08-02 21:11:49 +00:00
|
|
|
tuiApps = declPackageSet [
|
|
|
|
"aerc" # email client
|
|
|
|
"msmtp" # sendmail
|
|
|
|
"offlineimap" # email mailbox sync
|
|
|
|
"sfeed" # RSS fetcher
|
|
|
|
"visidata" # TUI spreadsheet viewer/editor
|
|
|
|
"w3m" # web browser
|
|
|
|
];
|
2023-07-03 07:58:02 +00:00
|
|
|
|
2023-08-02 21:11:49 +00:00
|
|
|
iphoneUtils = declPackageSet [
|
|
|
|
"ifuse"
|
|
|
|
"ipfs"
|
|
|
|
"libimobiledevice"
|
|
|
|
"sane-scripts.sync-from-iphone"
|
|
|
|
];
|
2023-07-03 07:58:02 +00:00
|
|
|
|
2023-08-02 21:11:49 +00:00
|
|
|
devPkgs = declPackageSet [
|
|
|
|
"clang"
|
|
|
|
"nodejs"
|
|
|
|
"tree-sitter"
|
|
|
|
];
|
2023-07-04 10:27:59 +00:00
|
|
|
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# INDIVIDUAL PACKAGE DEFINITIONS
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
dino.persist.private = [ ".local/share/dino" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# creds, but also 200 MB of node modules, etc
|
|
|
|
discord.persist.private = [ ".config/discord" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# `emote` will show a first-run dialog based on what's in this directory.
|
|
|
|
# mostly, it just keeps a LRU of previously-used emotes to optimize display order.
|
|
|
|
# TODO: package [smile](https://github.com/mijorus/smile) for probably a better mobile experience.
|
|
|
|
emote.persist.plaintext = [ ".local/share/Emote" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 08:03:55 +00:00
|
|
|
fluffychat-moby.persist.plaintext = [ ".local/share/chat.fluffy.fluffychat" ];
|
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# MS GitHub stores auth token in .config
|
|
|
|
# TODO: we can populate gh's stuff statically; it even lets us use the same oauth across machines
|
|
|
|
gh.persist.private = [ ".config/gh" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# actual monero blockchain (not wallet/etc; safe to delete, just slow to regenerate)
|
|
|
|
# XXX: is it really safe to persist this? it doesn't have info that could de-anonymize if captured?
|
|
|
|
monero-gui.persist.plaintext = [ ".bitmonero" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
mumble.persist.private = [ ".local/share/Mumble" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# settings (electron app)
|
|
|
|
obsidian.persist.plaintext = [ ".config/obsidian" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# creds, media
|
|
|
|
signal-desktop.persist.private = [ ".config/Signal" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# printer/filament settings
|
|
|
|
slic3r.persist.plaintext = [ ".Slic3r" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# creds, widevine .so download. TODO: could easily manage these statically.
|
|
|
|
spotify.persist.plaintext = [ ".config/spotify" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
tdesktop.persist.private = [ ".local/share/TelegramDesktop" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
tokodon.persist.private = [ ".cache/KDE/tokodon" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-15 00:44:24 +00:00
|
|
|
# hardenedMalloc solves an "unable to connect to Tor" error when pressing the "connect" button
|
|
|
|
# - still required as of 2023/07/14
|
2023-07-03 07:49:44 +00:00
|
|
|
tor-browser-bundle-bin.package = pkgs.tor-browser-bundle-bin.override {
|
|
|
|
useHardenedMalloc = false;
|
|
|
|
};
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
whalebird.persist.private = [ ".config/Whalebird" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
yarn.persist.plaintext = [ ".cache/yarn" ];
|
2023-06-09 00:36:47 +00:00
|
|
|
|
2023-07-03 07:49:44 +00:00
|
|
|
# zcash coins. safe to delete, just slow to regenerate (10-60 minutes)
|
|
|
|
zecwallet-lite.persist.private = [ ".zcash" ];
|
|
|
|
};
|
2023-06-09 00:36:47 +00:00
|
|
|
}
|