0d99293b2f
servo: split the doof/ovpns netns config into its own module
...
a big thing this gets me is that the attributes (like IP addresses) are now accessible via 'config' an i won't have to hardcode them so much
2024-06-17 09:25:10 +00:00
acc9a9cb48
modules/users: make it a directory
2024-03-21 17:16:11 +00:00
d7be5da483
warnings.nix: port to a proper module
2024-02-20 11:19:12 +00:00
0dc3f4f7f2
modules/programs: move to subdir
...
this will help me factor out helpers
2024-01-23 01:02:04 +00:00
ce35330923
vpn.nix: factor into a proper module
...
this will allow for better integration with 'sane.programs'
2024-01-21 00:49:34 +00:00
6acd363f55
sane.persist.root-on-tmpfs -> sane.root-on-tmpfs
2023-11-09 00:15:04 +00:00
742ed50960
moby: configure wake-on-lan
2023-09-27 01:04:53 +00:00
4fd4efa22f
DNS: split the zone generation out of trust-dns
...
this is in preparation for upstreaming parts of this into nixpkgs
2023-06-08 00:32:28 +00:00
287817056f
refactor: sane.services.wan-ports -> sane.ports
2023-05-31 04:25:39 +00:00
fb427e55e8
secrets: define these by crawling the repo to decrease duplication
2023-05-14 09:50:01 +00:00
2450bb6f06
refactor package layout to conform better with NUR expectations
2023-05-02 01:27:51 +00:00
afb006f6ec
programs: port last users & remove the old packages.nix
2023-02-03 05:26:57 +00:00
46285852d0
modules: add a sane.programs
interface which i can use going forward in place of sane.packages
2023-02-03 03:38:23 +00:00
7c81df00df
move nixcache.nix from modules -> hosts/modules
2023-01-30 11:25:46 +00:00
870afec07e
add which is shorthand to define a fs entry inside that user's home
2023-01-30 08:32:55 +00:00
216c812f7b
remove config.sane.home-manager.enable as it was always set anyway
2023-01-30 02:10:12 +00:00
cb3e7623ae
refactor: modules/gui/default.nix: fold into hosts/modules/gui/default.nix
2023-01-30 01:49:51 +00:00
cdc881e887
feeds: write the basis for a module which reads feed metadata from disk and can (in the future) update it
2023-01-10 03:52:33 +00:00
b2774a4004
move pubkeys out a modules/data/ directory
2023-01-09 02:40:25 +00:00
fb57e9aa5b
cleanup the 'every user/group has an id' enforcement
2023-01-08 06:46:07 +00:00
e8f778fecd
feeds: convert to module
2023-01-08 05:24:56 +00:00
72d589cb2d
ssh: port to modules system
2023-01-08 03:07:57 +00:00
8217b22c86
rename impermanence -> persist
2023-01-06 10:04:51 +00:00
93f1411522
fs: split helpers out into sane-lib
module
2023-01-03 14:20:02 +00:00
fbc39d0584
modules: fs: move to subdir
2023-01-03 08:27:28 +00:00
528ffdb58e
add a new 'fs.nix' file i'll use to factor the impermanence stuff better
2022-12-30 14:45:34 +00:00
08dfc80c98
impermanence: split out sops setup
2022-12-30 04:31:24 +00:00
aa1c1f40cb
WIP: impermanence rework (gut 3rd-party lib)
2022-12-29 16:38:58 +00:00
eccb5ff3d6
rename home-packages
-> packages
2022-11-22 04:31:55 +00:00
0c6b949a72
lift some more files out of modules -> hosts
2022-11-22 04:29:17 +00:00
e0612ccfa8
move allocations
out of universal
...
it doesn't cause any changes to the system
2022-11-22 03:35:11 +00:00
84a17f4599
move hardware
out of modules
into hosts/common
...
i want for `modules/` to behave like a more typical `modules` directory,
where functionality is opt-in.
2022-11-22 02:52:07 +00:00
36d8a711ac
modules/services: abstract behind default.nix
2022-10-24 06:13:04 -07:00
cdbde672d8
lift nix-serve
out of servo
...
i'm going to enable it on desktop
2022-09-14 14:32:31 -07:00
408e817c39
rename modules/{nix -> nixcache}.nix
2022-08-01 15:10:40 -07:00
fd48880a0a
nixcache: only enable on moby
...
it's annoying to rebuild on desko/lappy, and have that fail when servo
is offline/unreachable.
and it's really silly to have servo use its own cache *over the
network*.
long-term would be better to do properly distributed builds instead of
the cache.
2022-06-28 03:44:10 -07:00
835036fc6a
make image.nix a first-class module
2022-06-23 15:31:19 -07:00
fa131fe39f
lappy: enable impermanence
...
it mostly went smooth, though i lost a .ssh key.
probably the best upgrade process is to do most of the heavy work in the
initrd:
write the new nix config, notably, configuring a tmpfs / mount
and moving the previous / to /nix.
then boot and in the initrd, move all the `/nix/nix/...` items
up a level.
2022-06-20 03:28:01 -07:00
7da3d48272
migrate duplicity config to a module
...
this will let other machines reuse it
2022-06-10 01:30:57 -07:00
bc51244c52
move helpers/universal -> modules/universal
2022-06-09 14:06:31 -07:00
d33d5a4582
hardware-x86_64: port to modules system
2022-06-06 17:51:35 -07:00
d28738eb0e
gui/sway: port to module system
2022-06-06 17:35:28 -07:00
a7259279bb
port raspberry pi bootloader fixes to a nixpkgs patch
2022-06-02 14:18:41 -07:00
1064867194
migrate the nix install to an external USB drive.
...
this requires a patch to uboot:
- uboot thinks the drive has a capacity of 0 (i.e. 'unknown'). unclear precisely why. could be noncompliant drive firmware, or a timeout somewhere.
and a patch to the rpi bootloader:
- in order to trampoline into the rpi-4 uboot.
and custom kernel modules in the initrd:
- in order to detect the USB hub (rpi fw).
additionally, i'm MANUALLY placing `bcm2711-rpi-400.dtb` into `/boot/nixos/..-linux-5.10.111-dtbs/broadcom`.
i'll want to do this automatically over time.
i hope to simplify much of this over time: this is just the first thing which works after a couple days of hacking at it.
2022-05-17 01:58:12 +00:00