94366d4bf6
browserpass: patch to support OTP codes better
2022-11-06 02:00:41 -08:00
12b5e68b25
servo: don't ship custom linux kernel packages anymore
...
it's probably not necessary. i confirmed the kernel provides rpi400 dtb
by default.
2022-11-05 22:29:20 -07:00
a0d332766a
nixcache: always trust my own caches, even if not enabled by default
2022-11-05 20:13:17 -07:00
cdd9672654
libreoffice: disable first-run dialog
2022-11-05 17:24:19 -07:00
887a431956
podcasts: add The Verge - Decoder
2022-11-05 06:16:20 -07:00
502ebafb0a
update: nixpkgs
2022-11-05 05:42:11 -07:00
57ada6af4f
tokodon: fix segfault on launch
...
also persist the ~/.cache/KDE/tokodon directory.
since the login form isn't working yet (partially the fault of my
Pleroma install?), i can't tell if this is where tokens are stashed or
not.
2022-11-04 06:52:18 -07:00
d1d64b7376
import and update Tokodon package from < https://github.com/NixOS/nixpkgs/pull/170466 >
...
this hangs and then segfaults at start. i suppose i should `gdb` it.
2022-11-03 22:23:14 -07:00
f2188be9f2
flake update: nixpkgs 2022-10-31 -> 2022-11-02
, home-manager, sops, mobile-nixos
...
```
• Updated input 'home-manager':
'github:nix-community/home-manager/f0ecd4b1db5e15103e955b18cb94bea4296e5c45' (2022-11-01)
→ 'github:nix-community/home-manager/d78b3488a76d251701ab58a9b7f0dd092b806c1e' (2022-11-03)
• Updated input 'mobile-nixos':
'github:nixos/mobile-nixos/da56c338a2b00c868697b75bdbd388f60d50c820' (2022-10-30)
→ 'github:nixos/mobile-nixos/0b69b36c989d13f08c3bc563253f68c9d6ed7244' (2022-11-01)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/d40fea9aeb8840fea0d377baa4b38e39b9582458' (2022-10-31)
→ 'github:NixOS/nixpkgs/636051e353461f073ac55d5d42c1ed062a345046' (2022-11-02)
• Updated input 'nixpkgs-stable':
'github:NixOS/nixpkgs/1b4722674c315de0e191d0d79790b4eac51570a1' (2022-10-31)
→ 'github:NixOS/nixpkgs/b3a8f7ed267e0a7ed100eb7d716c9137ff120fe3' (2022-11-01)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/448ec3e7eb7c7e4563cc2471db748a71baaf9698' (2022-10-30)
→ 'github:Mic92/sops-nix/486b4455da16272c1ed31bc82adcdbe7af829465' (2022-11-02)
```
2022-11-03 17:31:47 -07:00
6d52c0e8ab
new option: sane.gui.plasma.enable
to enable desktop KDE plasma
...
this is useful for testing applications which are designed for KDE
first.
2022-11-03 03:09:14 -07:00
14b334ff55
new script: sane-reboot
, to prevent me from rebooting the wrong machine when working with multiple hosts
2022-11-03 01:27:56 -07:00
730fa8ba4b
moby: fix lightdm-mobile-greeter config to work again
2022-11-02 04:59:36 -07:00
8817f661ac
browser: temporarily switch back to firefox
...
recompiling librewolf is not practical -- until the addon signing is
upstreamed
2022-11-02 04:21:55 -07:00
3b0f505864
moby: move lightdm-mobile-greeter stuff into nixpkgs
2022-11-02 04:14:00 -07:00
b559d334c3
librewolf: work toward upstreaming the MOZ_REQUIRE_SIGNING patch
2022-11-02 02:39:56 -07:00
f6e4c0058c
add mercurial
to dev packages
2022-11-01 22:20:05 -07:00
775fc979fc
browser: fix Extensions.Uninstall
+ refactor nits
2022-11-01 19:29:33 -07:00
ad6daa4e5b
librewolf: allow sideloading unsigned addons
...
still defaulting to firefox, because this requires a recompilation of
the browser -- particularly expensive for moby.
2022-11-01 19:17:49 -07:00
3ecfea158a
browser: make more easily swappable between firefox and librewolf
2022-11-01 16:23:50 -07:00
5ff47b3719
remove unused rycee
flake input
...
it was previously used for browser addons: i've since moved those
in-house for technical reasons.
2022-11-01 16:07:57 -07:00
03ea7e7fa5
flake update: nixpkgs 2022-10-30 -> 2022-10-31
and stable home-manager
...
```
• Updated input 'home-manager':
'github:nix-community/home-manager/d8b233ad03dd3d82424561512b40971569b2e5d2' (2022-10-31)
→ 'github:nix-community/home-manager/f0ecd4b1db5e15103e955b18cb94bea4296e5c45' (2022-11-01)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/412b9917cea092f3d39f9cd5dead4effd5bc4053' (2022-10-30)
→ 'github:NixOS/nixpkgs/d40fea9aeb8840fea0d377baa4b38e39b9582458' (2022-10-31)
• Updated input 'nixpkgs-stable':
'github:NixOS/nixpkgs/26eb67abc9a7370a51fcb86ece18eaf19ae9207f' (2022-10-30)
→ 'github:NixOS/nixpkgs/1b4722674c315de0e191d0d79790b4eac51570a1' (2022-10-31)
```
2022-11-01 05:09:04 -07:00
ca93518dda
browser: switch from librewolf to firefox-esr
...
librewolf doesn't allow unsigned addons. i believe this is a bug, as the
nixpkg build file looks like it *meant* to allow addons (and maybe at
some point did)
2022-11-01 04:58:45 -07:00
7f7041351b
browserpass-extension: init at 3.7.2
...
bringing this in-tree instead of fetching it from the mozilla addons
webpage because i plan to develop on it.
2022-11-01 04:57:34 -07:00
1c62bcd50c
lightdm-mobile-greeter: update git rev & remove the Cargo.lock patch
...
Raatty was kind enough to upstream the Cargo.lock fix.
2022-11-01 01:15:36 -07:00
bad4fe0e76
browserpass: add support for totp, and auto-unlock the secrets store on first run
...
note that one needs to manually enable the TOTP setting in the
browserpass settings for this to work -- TOTP parsing is disabled by
default
2022-10-31 23:57:47 -07:00
8b473ff88f
neovim: fix python tree-sitter plugin
...
which was otherwise yielding parsing errors.
2022-10-31 23:05:27 -07:00
ad54b9c5fb
flake update: rycee: 2022-10-29 -> 2022-11-01
...
```
• Updated input 'rycee':
'gitlab:rycee/nur-expressions/5fb3c4733c00a7e7be69877d057f6760d85cecb8' (2022-10-29)
→ 'gitlab:rycee/nur-expressions/f4bf327807f86c85e85050101467835a65754b51' (2022-11-01)
```
2022-10-31 23:04:39 -07:00
b805a101ba
flake update: nixpkgs 2022-10-29 -> 2022-10-30; home-manager
...
wouldn't ordinarily update so regularly, but on the lookout for that
openssl CVE...
```
• Updated input 'home-manager':
'github:nix-community/home-manager/b81e128fc053ab3159d7b464d9b7dedc9d6a6891' (2022-10-17)
→ 'github:nix-community/home-manager/d8b233ad03dd3d82424561512b40971569b2e5d2' (2022-10-31)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/fdebb81f45a1ba2c4afca5fd9f526e1653ad0949' (2022-10-29)
→ 'github:NixOS/nixpkgs/412b9917cea092f3d39f9cd5dead4effd5bc4053' (2022-10-30)
```
2022-10-31 20:54:11 -07:00
69a3aaa086
new script: sane-private-lock
...
this is handy esp for `servo`, where i don't want my keys to be
accessible after i logout.
longterm, i suppose i could run this automatically on session close
(pam-umount or something i think exists for that?)
2022-10-31 04:21:25 -07:00
9acf2dfde1
gocryptfs: cross-compile for aarch64
2022-10-31 03:05:24 -07:00
4b5accac88
flake update: nixpkgs: 2022-10-22 -> 2022-10-29
and others
...
```
• Updated input 'mobile-nixos':
'github:nixos/mobile-nixos/1351091d2537040454fa232d8b94e745ab0eb5a3' (2022-10-24)
→ 'github:nixos/mobile-nixos/da56c338a2b00c868697b75bdbd388f60d50c820' (2022-10-30)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/95aeaf83c247b8f5aa561684317ecd860476fcd6' (2022-10-22)
→ 'github:NixOS/nixpkgs/fdebb81f45a1ba2c4afca5fd9f526e1653ad0949' (2022-10-29)
• Updated input 'nixpkgs-stable':
'github:NixOS/nixpkgs/3933d8bb9120573c0d8d49dc5e890cb211681490' (2022-10-22)
→ 'github:NixOS/nixpkgs/26eb67abc9a7370a51fcb86ece18eaf19ae9207f' (2022-10-30)
• Updated input 'rycee':
'gitlab:rycee/nur-expressions/43d3a363c126968db46585b88b8eb97dd32634ad' (2022-10-27)
→ 'gitlab:rycee/nur-expressions/5fb3c4733c00a7e7be69877d057f6760d85cecb8' (2022-10-29)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/1b5f9512a265f0c9687dbff47893180f777f4809' (2022-10-23)
→ 'github:Mic92/sops-nix/448ec3e7eb7c7e4563cc2471db748a71baaf9698' (2022-10-30)
• Updated input 'sops-nix/nixpkgs-22_05':
'github:NixOS/nixpkgs/f9115594149ebcb409a42e303bec4956814a8419' (2022-10-23)
→ 'github:NixOS/nixpkgs/6440d13df2327d2db13d3b17e419784020b71d22' (2022-10-30)
• Updated input 'uninsane':
'git+https://git.uninsane.org/colin/uninsane?ref=refs%2fheads%2fmaster&rev=4ad1801f6cecd678bbeae5dfe5933448dd7b3360 ' (2022-10-14)
→ 'git+https://git.uninsane.org/colin/uninsane?ref=refs%2fheads%2fmaster&rev=80c6ec95bd430e29d231cf745f19279bb76fb382 ' (2022-10-27)
```
2022-10-30 23:47:29 -07:00
cb00ae4f92
update nautilus gtk4 patch SHA
...
it's been merged into nixpkgs; manual patch will likely go away after
next nixpkgs update
2022-10-30 21:33:58 -07:00
7c38c1dbe9
de-persist /etc/machine-id, and generate it from the ssh key instead
...
note that /etc/machine-id now contains a different value than before,
meaning `journalctl` will not show logs from before the time of this
change.
2022-10-30 21:02:41 -07:00
b3b45ec0f2
fix host ssh key persistence
2022-10-30 20:03:00 -07:00
34d77542e7
impermanence: ensure /etc/ssh is populated before we decode machine secrets during activation
...
the impermanence activation scripts don't appear to mount folders --
only files. rather, the impermanence module creates fstab entries for
each bind mount folder, and *something* (systemd?) mounts these *after*
/run/current-system/activate is run.
therefore, if we want access to a bind-mounted directory during
activateion, we have to manually mount it.
i.e. `mount /etc/ssh/host_keys`.
2022-10-30 05:59:55 -07:00
6236c14def
vendor librewolf addons instead of fetching them on first run
...
this obviously speeds up startup, it's hopefully also less likely to
break surprisingly, and i hope it's the path to me shipping forks of
official extensions.
2022-10-27 03:20:29 -07:00
0c0f8c44bd
Merge branch 'master' of git.uninsane.org:colin/nix-files
2022-10-26 07:18:41 -07:00
7f97786a88
librewolf: use browserpass
password store
...
this is working -- forked to support sops as a backend --
without totp support yet. it's possible in theory: i might just need to
write some adapter logic.
upstream discussion about genericizing backend support:
- <https://github.com/browserpass/browserpass-native/issues/127 >
2022-10-26 07:13:55 -07:00
db2e156f15
home: enable celluloid mpv frontend
...
i want to test this on mobile
2022-10-26 05:31:11 -07:00
43efec495e
librewolf: integrate with gopass
...
it's able to list passwords, but not decrypt them:
i think i can solve this on the store side?
2022-10-26 00:10:54 -07:00
279f9ce614
lightdm-mobile-greeter: point directly to upstream, with a patch for their Cargo.lock
2022-10-25 22:05:49 -07:00
7d02652e08
servo: freshrss: fix ExecStart path
2022-10-25 06:31:18 -07:00
10e224be0d
ssh: set known hosts via ~/.ssh/config
...
this prevents the ssh agent from updating the known_hosts file
and confusing home-manager.
2022-10-25 05:17:28 -07:00
e25c92794f
refactor: split ssh settings out of home-manager/default.nix
2022-10-25 05:06:33 -07:00
a8d2b7196d
statically populate ssh known_hosts
2022-10-25 05:01:32 -07:00
a6cbecbc74
Merge branch 'staging/pleroma-update'
2022-10-25 04:18:25 -07:00
518d2f60c0
pleroma: port ExifTool config
...
the old path is deprecated, if my syslog is to be believed.
2022-10-25 04:11:47 -07:00
70e5ccc968
upgrade pleroma, thereby fixing servo build
2022-10-25 03:44:45 -07:00
c44cad9c16
fractal: persist data in ~/private
2022-10-25 02:12:55 -07:00
e3bf585382
persist ssh host keys in a subdirectory
2022-10-25 02:09:27 -07:00