022d15c2c7
swaync: increase font size of service icons
2024-05-17 03:42:32 +00:00
908a2ca6c3
swaync: fix a bug that i couldnt see all icons on the same row
2024-05-17 03:21:41 +00:00
42fb79b025
swaync: improve gnome-calls icon
2024-05-17 00:49:40 +00:00
4265ea9b99
calls: auto-start
2024-05-17 00:41:32 +00:00
a7d376778e
gnome-calls: re-enable
2024-05-17 00:36:56 +00:00
157af52112
feeds: add Grumpy.website
2024-05-16 19:25:22 +00:00
5924d092f4
coturn: expand documentation
2024-05-16 09:41:53 +00:00
a5f6aae6f5
desko: use stock systemd resolver
...
i need a backup system to use when things are broken, and this helps with debugging as well
2024-05-16 03:12:30 +00:00
fd94422982
distcc: purge
2024-05-16 02:51:38 +00:00
55a7119e3f
ccache: purge
2024-05-16 02:51:03 +00:00
d258d4ddd5
desko: re-enable firewall
2024-05-16 02:49:03 +00:00
9d725a0974
servo: disable unused nixcache.uninsane.org
2024-05-16 02:46:23 +00:00
4a15339e0e
desko: re-introduce the nix_serve key, which is actually needed for SSH deployements, not just nix-serve
2024-05-16 02:43:32 +00:00
df4ef0ce5a
desko: disable nix-serve
2024-05-16 02:35:27 +00:00
3bb5546aaf
systemd-logind: fix to not sleep when i close the lid (again)
2024-05-16 02:13:02 +00:00
b4229ecb1e
sanebox: load the link cache from a static /etc path instead of via CLI args
2024-05-15 23:55:15 +00:00
17eaa7446a
sanebox: remove all profile-related features except for direct, path-based profile loading
2024-05-15 09:13:20 +00:00
ee43fcdb89
rename LG TV -> Cuddlevision
2024-05-15 07:50:38 +00:00
bc73a16475
networkmanager: fix to be compatible when systemd-resolved is enabled
2024-05-15 02:57:40 +00:00
adfaa7f9c1
sane-sandboxed -> sanebox
2024-05-15 01:41:40 +00:00
f9a6873ee9
signal-desktop: remove NIXOS_OZONE_WL=1 hack (no longer required)
2024-05-15 00:10:00 +00:00
d5e8974a4a
refactor: trust-dns: listenAddrs -> listenAddrsIpv4
2024-05-14 23:22:50 +00:00
e040a5b0c5
servo: trust-dns: remove hn-resolver
...
my hosts run their own recursive DNS resolvers now, so there's no need for the wireguard VPN to provide them with that
2024-05-14 23:20:19 +00:00
1f405fb2ba
element-desktop: update electron_28 -> electron_29
2024-05-14 22:32:56 +00:00
f3cf9e0bed
trust-dns: set it to NOT be the system resolver for servo
...
trust-dns recursor is too beta for servo
2024-05-14 09:03:10 +00:00
2a199bf373
trust-dns: recursor: merge DHCP DNS servers from all non-downed connections
...
otherwise overwriting the toml configs gets messy, when interfaces come up in unpredictable order
2024-05-14 08:25:59 +00:00
53198128e8
trust-dns: hook NetworkManager for state changes
...
there may be some edgecases to sort out around e.g. first-run,
but so far it seems to be importing the DHCP search zones :)
2024-05-14 07:42:41 +00:00
1e202baa8a
networkmanager: tune config
...
mostly just pruning unused features
2024-05-14 04:18:29 +00:00
39eb1d150a
dns: deploy trust-dns as the default recursive resolver
...
outstanding issues: native.uninsane.org doesn't resolve. appears possibly to be an issue with following CNAMEs
2024-05-14 04:18:29 +00:00
447e1feb9c
sway: fix Super+L shortcut to actually lock
2024-05-14 04:17:05 +00:00
26e3c3e5b7
s6-rc: fix persist.byStore.persist
typo
2024-05-14 04:16:50 +00:00
3557994cbb
gnome-clocks: fix sound an sandboxing artifacts
2024-05-14 01:21:37 +00:00
f3106ee316
programs: maxBuildCost: fix to actually build everything by default
2024-05-13 22:57:40 +00:00
be84ab1f45
programs: set buildCost=1
for assorted low-priority programs
2024-05-13 22:45:33 +00:00
43d32641f3
programs: buildCost: introduce a new level between min
and light
2024-05-13 22:45:33 +00:00
9bf0dbabae
gnome.seahorse: disable
2024-05-13 22:45:33 +00:00
8c7880774e
monero-gui: disable
2024-05-13 22:45:33 +00:00
5774aa4a8f
zulip: dont ship
2024-05-13 22:45:33 +00:00
14202a5bcc
neovim: wrap in such a way as to avoid cross-compilation-specific patching
2024-05-13 22:45:33 +00:00
a05fa53ee1
curlftpfs: EXPERIMENT: double the connect timeout to see if this reduces dropped conns
2024-05-13 07:52:43 +00:00
89135d08cb
rofi: file browser: include an entry to open the app launcher
2024-05-12 19:46:51 +00:00
15a5afd2c4
sane-open: special-case how i open .desktop files to be compatible with portals
2024-05-12 19:46:03 +00:00
3c1a74998e
applications: hide .desktop files which arent meant to be user-visible
2024-05-12 17:43:07 +00:00
eadf85f66d
sane-open: associate as the default launcher for .desktop files
2024-05-12 17:41:00 +00:00
4b04c283b6
fcitx5: temporarily disable
2024-05-10 17:51:37 +00:00
a40f05260a
unl0kr: simplify the crash edge-case handling
2024-05-09 08:42:41 +00:00
2b539fafcd
unl0kr: handle some crashy edgecases
2024-05-09 08:38:22 +00:00
2a8ecf0423
nixpkgs: 2024-04-28 -> 2024-05-08; nixpkgs-wayland, sops-nix
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/0e395f4da1693e39239ffac7abf73a0a6931c961' (2024-04-28)
→ 'github:nixos/nixpkgs/c8e3f684443d7c2875ff169f6ef2533534105e7b' (2024-05-08)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/93909e9c7b05634ad924ff97c259ae0859b81756' (2024-04-28)
→ 'github:nixos/nixpkgs/a751e2faa2fc94c1337c32aaf6a6e417afe90be9' (2024-05-08)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/4e58e2cf22d11426ed2f997551f3650de0639e3a' (2024-04-28)
→ 'github:nix-community/nixpkgs-wayland/7dc8fb2aa7db995ac1ce2a8f2f8d8784b2af591c' (2024-05-08)
• Updated input 'nixpkgs-wayland/lib-aggregate':
'github:nix-community/lib-aggregate/49d9b510614b9bd137e067eb31445a8feca83313' (2024-04-28)
→ 'github:nix-community/lib-aggregate/26fabca301e1133abd3d9192b1bcb6fb45b30f1d' (2024-05-05)
• Updated input 'nixpkgs-wayland/lib-aggregate/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/ade4fb7bbf04cd52bc1705734d5dc67755d77ec9' (2024-04-28)
→ 'github:nix-community/nixpkgs.lib/4b620020fd73bdd5104e32c702e65b60b6869426' (2024-05-05)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/f1b0adc27265274e3b0c9b872a8f476a098679bd' (2024-04-23)
→ 'github:Mic92/sops-nix/893e3df091f6838f4f9d71c61ab079d5c5dedbd1' (2024-05-06)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/74574c38577914733b4f7a775dd77d24245081dd' (2024-04-20)
→ 'github:NixOS/nixpkgs/b980b91038fc4b09067ef97bbe5ad07eecca1e76' (2024-05-04)
```
2024-05-09 05:26:23 +00:00
f58bcb4767
swaylock, schlock: convert to services
2024-05-07 15:02:46 +00:00
32e06ce998
programs: gnome-disk-utility: grant sandbox access to ~/tmp
2024-05-06 05:15:28 +00:00
8c04023eba
sway: fix sane-open integration to not mistake it as a file
2024-05-05 05:04:25 +00:00
a1625ea41d
programs: ship zulip
2024-05-04 08:28:48 +00:00
6544b9aca4
doc: dns: fix typo
2024-05-02 10:27:38 +00:00
08a9b838e5
sane-input-handler: fix log bog
2024-04-30 19:22:37 +00:00
b7dd40e558
sane-open-desktop -> sane-open and have it auto-open/close the keyboard based on what an app wants
2024-04-30 19:22:37 +00:00
7f2abf7e6e
sane-input-handler: fix missing newline when logging
2024-04-30 15:30:39 +00:00
825812e511
sane-input-handler: reset rofi directory to ~ when using the app + fsbrowser
2024-04-30 15:29:00 +00:00
69e5495cc9
sane-input-handler: set keyboard as appropriate for file/app browser
2024-04-30 15:16:59 +00:00
b422f15b59
sane-input-handler: swap volup tap/hold actions
2024-04-30 14:38:17 +00:00
889b332ade
trust-dns: split the parts which are generalizable into their own file
...
i can try to build this into a recursive resolver for *all* my hosts
2024-04-30 14:35:56 +00:00
46d1a49f0f
servo: enable sane-cast
program
2024-04-29 21:50:03 +00:00
1b156dcb0a
networkmanager: fix eval error when not enabled
2024-04-29 05:58:32 +00:00
39d31c3ffd
swaync-service-dispatcher: add -b
to block on service state query, to avoid incorrect responses when run in parallel
2024-04-27 12:32:12 +00:00
c50ef59102
swaync: fix service state tracking for oneshot services
2024-04-27 12:13:34 +00:00
5fc4ca6dad
modemmanager: ship udev rules
2024-04-27 12:01:01 +00:00
35c7527946
modemmanager: fix so it's active on boot
2024-04-27 11:54:08 +00:00
7e8a014f37
NetworkManager: use the upstream service file
2024-04-27 10:58:21 +00:00
4ce951bbed
wpa_supplicant: re-enable
2024-04-27 10:34:25 +00:00
f784550b9b
networkmanager: migrate from nixpkgs service to my own
2024-04-27 09:51:55 +00:00
1f2bbd4aec
refactor: split modemmanager stuff into own file
2024-04-27 08:32:15 +00:00
547d71c19a
nixpkgs: 2024-04-24 -> 2024-04-26, nixpkgs-wayland
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/acba655f267a49327f2cea95003f17b8540909c0' (2024-04-24)
→ 'github:nixos/nixpkgs/7d3f4eadec32d447a5f20d87fa309f00986cb288' (2024-04-26)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/1eb9a6980dee3970850f47ba8139c7402f54a9a0' (2024-04-24)
→ 'github:nixos/nixpkgs/0b868df4ced96400774414f5baf30b696215b98f' (2024-04-26)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/80659e4b2805654de851996e682b063a5d7eea5e' (2024-04-24)
→ 'github:nix-community/nixpkgs-wayland/ca9d278400c170935a95dd75e7e2537c2afd1cb7' (2024-04-26)
```
2024-04-27 06:33:24 +00:00
19115dfb65
eg25-control: port to s6 (hopefully)
2024-04-26 21:44:13 +00:00
34842c00fe
moby: make the modem powerable by the user, without root
...
this should allow migrating eg25-control to a user service
2024-04-26 17:19:38 +00:00
46a513b263
feeds: subscribe to SamuelDR
2024-04-26 17:19:38 +00:00
6129fbf2b3
lemmy: upstream the proxy headers
2024-04-26 16:44:43 +00:00
f3d2dee470
lemmy: fix federation (broke due to invalid HTTP signatures)
2024-04-26 10:31:47 +00:00
3d207ab7bb
coturn: allocate 256 ports instead of 16
2024-04-26 08:47:52 +00:00
95447eb765
goaccess: fix missing state dir
2024-04-26 08:47:09 +00:00
593268f620
coturn: run inside ovpns namespace
2024-04-26 08:01:34 +00:00
5c98a51cd6
dino: build without echo cancelation
...
this reduces CPU load on moby; it may also have implications for incoming call audio though, still sorting that out
2024-04-26 05:11:43 +00:00
4453bde815
dino: increase buffering 20ms -> 100ms (closer to 82ms, actually)
2024-04-25 11:28:22 +00:00
7843f9650a
feeds: subscribe to The Amp Hour (podcast)
2024-04-25 05:54:10 +00:00
82dce71b9c
feeds: add microarch.club podcast
2024-04-25 05:51:52 +00:00
9c00c2c5cc
zsh: add exit
aliases: ecit
, exi5
2024-04-25 01:51:45 +00:00
d01e49f566
pipewire: switch back to bwrap
sandboxing and document limitations
2024-04-24 13:14:35 +00:00
7447d4879e
pipewire: man: link to docs
2024-04-24 10:33:23 +00:00
215864e3d4
pipewire: reduce realtime priority so it doesnt crash moby gpu driver
2024-04-24 09:36:22 +00:00
0cbb81cfea
WIP: pipewire: trying to tune so lima doesnt crash
2024-04-24 09:20:13 +00:00
9d7816a1cd
koreader: fix sandboxing so that i can open links again
2024-04-24 01:02:02 +00:00
461aa5ede0
htop: include "PRIORITY" column
2024-04-23 12:01:15 +00:00
10fc7bbb84
curlftpfs: document sandbox attempt
2024-04-23 09:08:05 +00:00
87e3f2a9ef
pipewire: split rtkit into own file, and use defaults from pipewire project
2024-04-23 09:08:05 +00:00
9481131daf
pipewire: sandbox with landlock (so that rtkit integration works) and split rtkit into own file
2024-04-23 09:08:05 +00:00
ae418fb2d1
valgrind: mark as not sandboxable
2024-04-23 09:08:05 +00:00
c174eddddf
wireplumber: sandbox such that it gets higher sched priority
2024-04-23 09:08:05 +00:00
6d74c6616c
pipewire: shrink the mount sandbox
2024-04-23 09:08:05 +00:00
7db40fbf47
sane-cast: add a menu for choosing which device to cast to whenever there are multiple
2024-04-23 08:10:05 +00:00
152a5d4c92
sane-cast: integrate with mpv
2024-04-23 07:52:48 +00:00
fd771cdb2c
fs: mount media/torrents instead of media/freeleech (the latter was removed)
2024-04-23 01:25:57 +00:00
4c7cd06212
go2tv: clarify compatibility
2024-04-22 12:45:55 +00:00
d0de6a9254
sftpgo: reduce the passive port range
...
hopefully this eases the load on the upstream firewall's UPNP service
2024-04-22 12:08:23 +00:00
12f2798140
servo: sftpgo: move to own directory
2024-04-22 12:05:16 +00:00
bd92076291
fontconfig: populate the cache directory even when cross compiling
2024-04-22 09:47:20 +00:00
9cbe774c5a
sane-input-handler: fix power_hold -> power_tap_1_hold when inhibited by rofi
2024-04-22 06:27:33 +00:00
b4653b20a2
moby: button map: move vol{up,down}_hold to only act in power-off, else they may falsely trigger during other power-on actions
2024-04-22 05:13:29 +00:00
2c011df252
moby: tweak button mappings
...
- power hold: toggle media
- power x1 -> hold: kill
now nothing in screenoff uses power x2, which means we can get to
screen-on without waiting for any timeout.
2024-04-22 05:10:35 +00:00
9d472bb290
sane-input-handler: clean up suggestedPrograms
2024-04-22 04:13:56 +00:00
95b21cbed9
moby: update improve button mappings
...
- power + volup: screenshot
- power + voldown: camera
- volup_hold: file browser
- remove modal media controls
2024-04-22 04:05:52 +00:00
82007c9b40
bonsai: store the config in ~/.config to allow easier online editing
2024-04-22 04:05:15 +00:00
50c72de4f9
megapixels: fix folder icon to actually open ~/Pictures/Photos
2024-04-22 00:16:46 +00:00
36237a3201
megapixels: remove unnecessary ~/tmp
directory from sandbox
2024-04-22 00:16:14 +00:00
eb9df628e6
megapixels: remove unnecessary ~/.local/share/applications from sandbox
2024-04-21 23:49:29 +00:00
a92960d778
megapixels: place photos in ~/Pictures/Photos instead of directly in ~/Pictures
2024-04-21 23:13:49 +00:00
ef9b0e9309
megapixels: fix .dng -> .jpg conversion
2024-04-21 21:59:05 +00:00
350e00e0cd
firefox: decrease scrollbar width 20px -> 14px
2024-04-21 21:08:07 +00:00
b77e811ad4
blast-to-default: leverage sane-die-with-parent
2024-04-21 11:09:23 +00:00
a000a722ba
mpv: fix so sane-sysvol doesnt hang exit
2024-04-21 10:08:46 +00:00
4dde01245e
mpv: sane_sysvol: fix non_blocking_popen to use metatables and be more readable
2024-04-21 03:47:01 +00:00
f50c0a98c2
sane-sysvol -> sane_sysvol, sane-cast -> sane_cast
...
when a script contains a dash, mpv silently renames *parts* of it to _, which causes confusion
2024-04-21 00:27:30 +00:00
0625bfdd10
mpv: sane-cast: fix crash due to missing table.concat
function
2024-04-21 00:24:46 +00:00
4dfee58d09
sops: fix sandbox path
2024-04-20 21:43:13 +00:00
a7b8eb179b
pipewire: move the clock quantum config into sane.programs proper
...
this ensures it's available in the sandbox
2024-04-20 09:09:05 +00:00
f10bb6c86c
sftpgo: adjust file mode to be compatible with Kodi
2024-04-20 08:07:00 +00:00
a59a7b5346
feeds: podcasts: add Tech Tales
2024-04-19 21:46:03 +00:00
1bd715e57e
nixpkgs: 2024-04-18 -> 2024-04-19; nixpkgs-wayland, sops-nix
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/19d2eb80a0e23daf1c4a8cf25b1011fbdb2260fb' (2024-04-18)
→ 'github:nixos/nixpkgs/6ad1fe08582fcdfedb2cb7c31b4a016a227bd38a' (2024-04-19)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/457c34178411e0072e59564ee7986e86255a6eff' (2024-04-18)
→ 'github:nixos/nixpkgs/40d15ed86dd08eff6a29e0a9abc416001d19cd67' (2024-04-19)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/7867aa617c6eb205b1ac1b71d98cd18a2561bb18' (2024-04-17)
→ 'github:nix-community/nixpkgs-wayland/ab0f8d391a960764348935e6497fc62ba0d2378d' (2024-04-19)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/cc535d07cbcdd562bcca418e475c7b1959cefa4b' (2024-04-15)
→ 'github:Mic92/sops-nix/b94c6edbb8355756c53efc8ca3874c63622f287a' (2024-04-18)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/c27f3b6d8e29346af16eecc0e9d54b1071eae27e' (2024-04-13)
→ 'github:NixOS/nixpkgs/8494ae076b7878d61a7d2d25e89a847fe8f8364c' (2024-04-18)
```
2024-04-19 20:33:48 +00:00
317996b609
clightning-sane: document the status
command more
2024-04-19 07:29:20 +00:00
135f63480b
clightning-sane: add a help message
2024-04-19 07:29:20 +00:00
d9ffa5bb5a
wike: fix sandboxing for 3.0
2024-04-19 01:26:58 +00:00
f59f13588f
jackett/transmission/slskd: validate public IP address before starting
2024-04-18 20:05:59 +00:00
40af93a7fb
feeds: add apenwarr
2024-04-18 17:29:50 +00:00
a36ff517e7
servo: slskd: disable
2024-04-18 06:55:56 +00:00
60c370df3f
sftpgo: fix domain name in banner
2024-04-18 05:01:57 +00:00
d80852c6c1
sftpgo: re-enable password login
2024-04-18 04:58:59 +00:00
62b3047fff
sftpgo: support FTPS
2024-04-18 04:34:41 +00:00
de2c3a30ff
programs: ship lftp ftp client
2024-04-18 04:17:10 +00:00
c08280589d
lsof: fix sandboxing
2024-04-17 23:43:42 +00:00
9a9ffcbea9
transmission: fix faulty "find" expression (thanks shellcheck!)
2024-04-17 23:32:00 +00:00
733efcfaf7
servo: nginx: forceSSL for anything media related
2024-04-17 22:49:24 +00:00
b34d984572
servo: transmission: remove noisy files upon torrent completion
2024-04-17 20:47:00 +00:00
e2b58e1b77
servo: transmission: be extra strict about requiring VPN
2024-04-17 19:52:11 +00:00
b7e5bc5972
servo: sftpgo: disable external access
2024-04-17 19:41:57 +00:00
54cefa247a
dino: record another bug
2024-04-17 09:53:08 +00:00
b7fd5e78cc
swaync: show volume-per-app (TODO: stylize it better)
2024-04-17 01:37:03 +00:00
79985ff009
dino: docs: update notes about BUGS
2024-04-16 20:50:00 +00:00
62f5b9276f
pwvucontrol: whitelist DRI inside the sandbox, for better perf
2024-04-16 20:49:33 +00:00
13c1f01a6b
servo: pleroma: migrate port 4000 -> 4040
...
port 4000 is used by NFS
2024-04-16 18:57:54 +00:00
5f281f57de
servo: transmission: inline nested torrent directories
2024-04-16 18:25:41 +00:00
089e434e3f
servo: transmission: fix group permissions of media when copying them to public dir
2024-04-16 16:31:10 +00:00
539fe48947
swaync: cleanup
2024-04-16 04:14:07 +00:00
259c3af526
swaync-fbcli: fix CPU pegging when canceling a phone ringer
2024-04-16 02:18:51 +00:00
6b5e0e57bc
swaync: unify the *DEBUG variables
2024-04-15 21:29:17 +00:00
4f06f0dc5e
unl0kr: disable animations
2024-04-15 21:10:55 +00:00
c0dde0e540
unl0kr: populate config file with upstream defaults
2024-04-15 21:05:21 +00:00
0385c09f23
sane-sandboxed: split out into an actual package
2024-04-15 18:57:22 +00:00
bd57b95598
swaync-fbcli: fix so that the child actually exits when killed (critical is to use SIGINT)
2024-04-15 18:32:50 +00:00
465da7c939
swaync-fbcli: migrate an "echo" to a "log"
2024-04-15 18:22:30 +00:00
44f76e656a
swaync-fbcli: fix that pkill expression wouldn't work for wrapped binaries
2024-04-15 18:21:27 +00:00
824046aca1
swaync-fbcli: fix CPU pegging
2024-04-15 18:09:21 +00:00
827c50ff43
swaync: cleanup the swaync-fbcli helper
2024-04-15 18:00:51 +00:00
0230291bb2
swaync: move the pkill logic into swaync-fbcli
2024-04-15 17:46:40 +00:00
3d3618256d
swaync: split the fbcli wrapper into its own file
2024-04-15 17:46:40 +00:00
590cb2dd7f
feeds: sort the list
2024-04-15 16:21:31 +00:00
d9dcab544c
feeds: unsubscribe from Profectus
2024-04-15 16:20:17 +00:00
4ee0f0c659
feeds: disable TheSideView
2024-04-15 14:59:50 +00:00
2af5bb3d78
i-still-dont-care-about-cookies: enable
2024-04-15 03:36:49 +00:00
2d8fe1d3e5
bonsai: tune niceness to hopefully be more responsive
2024-04-15 01:46:32 +00:00
0741d87bcb
rofi: theme so that i can read more text on narrow moby display
2024-04-15 00:04:10 +00:00
2587c27f89
font-manager: fix sandboxing
2024-04-14 21:55:52 +00:00
2d74d0725d
feeds: podcasts: add Money Stuff
2024-04-14 20:39:53 +00:00
7804236499
xdg-terminal-exec: remove upstreamed patched
2024-04-14 14:16:50 +00:00
feb36d19ac
programs: ship cups
2024-04-14 03:33:55 +00:00
a8915661a7
style: refine the base pink color for mpv and sway/waybar
...
this matches swaync a little better. mpv had to be made lighter, i think because of transparency stuff. probably sway/waybar could be made normal lightness
2024-04-13 20:29:24 +00:00
dd58ba8b00
gvfs: enable as part of nautilus, not sway
2024-04-13 20:29:24 +00:00
0a888e205e
programs: ship objdump
2024-04-13 20:29:24 +00:00
4b22fd95bf
introduce 'moby-min' host variant for the quickest deployment (no webkitgtk)
2024-04-13 20:29:24 +00:00
527a9e7612
feeds: add The Side View
2024-04-10 04:47:34 +00:00
3686e6e508
feeds: subscribe to Future of Coding
2024-04-10 03:06:30 +00:00
cda50db23b
loupe: associate with avif filetype
2024-04-09 19:22:59 +00:00
9be6960bbf
sway: disable shortcuts for creating sub-splits
...
i'm just always accidentally triggering them
2024-04-09 16:24:02 +00:00
a45aabfb72
sway: todo: load background from a more traditional path
2024-04-09 16:19:56 +00:00
876103ff7b
mpv: remove legacy ao=alsa and volume-max config
2024-04-09 16:10:05 +00:00
46cda87d5e
notejot: fix sandboxing
2024-04-09 15:44:01 +00:00
d728dfcd70
mpv: uosc: tweak the maximize button to actually act as a fullscreen toggle
2024-04-09 10:14:40 +00:00
19fcd0318c
mpv: remove the double-click-to-fullscreen shortcut
2024-04-09 10:09:17 +00:00
030f6d1a99
mpv: fix so pseudo-gui mode doesnt break logging
2024-04-09 09:58:16 +00:00
86b495cb9f
mpv: sane-sysvol: integrate with uosc mute button
2024-04-09 08:05:00 +00:00
c897f4fa4b
mpv: sane-sysvol: fix pipewire mute to reflect onto uosc volume level
...
ideally it would actually show up as the mute parameter!
2024-04-09 08:05:00 +00:00
8181a0664d
mpv: sane-sysvol: remove the unused id tracking
2024-04-09 08:05:00 +00:00
c37e94493f
mpv: sane-sysvol: optimize
2024-04-09 08:05:00 +00:00
b9e107510d
mpv: sane-sysvol: dont force system volume to zero on init
2024-04-09 08:05:00 +00:00
0f4c1ccfe3
mpv: update input.conf for sane-cast rename
2024-04-09 08:05:00 +00:00
9d9413c790
mpv: announce pipewire volume changes so uosc can listen for them
2024-04-09 08:05:00 +00:00
64c28ae657
mpv: don't need to force uosc volume state to 0 by default; nil is OK
2024-04-09 08:05:00 +00:00
1f4c885748
mpv: sane-sysvol script: init
...
it's a one-way volume control, but that's a start
2024-04-09 08:05:00 +00:00
0545b178af
mpv: rename plugin: sane -> sane-cast
2024-04-09 08:04:51 +00:00
fe4b6c36c4
feeds: subscribe to jwz.org
2024-04-09 03:55:25 +00:00
fce3436c88
servo: expose Milkbags to the internet :)
2024-04-08 06:55:09 +00:00
3aba91b360
mpv: fix race condition in uosc/ao-volume monitoring
2024-04-06 23:41:59 +00:00
907933612d
htop: statically populate config
2024-04-06 23:41:59 +00:00
b4877a488e
discord: add media into sandbox
2024-04-06 09:36:55 +00:00
4b3975367a
fix warnings: remove xdg-desktop-portal patch; fix mautrix-meta enable logic
2024-04-05 21:40:42 +00:00
28110c3e85
fix system hang during vim ctrl+z (disable io_uring in libuv)
2024-04-05 07:29:55 +00:00
43aa498ff9
mpv: fix uosc touch controls
2024-04-05 07:29:15 +00:00
f7e4504764
pict-rs: remove no-transcoding patch (it doesnt apply anymore)
2024-04-04 19:09:12 +00:00
7ab148ea58
servo: migrate /var/media to be 100% on zfs pool
2024-04-04 06:20:50 +00:00
0dfeec3260
mpv-uosc: 5.2.0 -> 5.2.0-unstable-2024-03-13
2024-04-04 06:19:15 +00:00
eb2317a743
mpv: 0.37.0 -> 0.37.0-unstable-2024-03-31
2024-04-04 06:19:15 +00:00
7c3ad85d75
sane-bt-add: fix sandboxing
2024-04-03 09:48:21 +00:00
410097480f
docs: servo: fs: fix setfacl typo
2024-04-03 09:48:10 +00:00
f5fadbe4cf
transmission: place torrents in a separate directory, and copy them to the main media directory on completion
2024-04-03 09:48:10 +00:00
a0550660e7
feeds: add The Corresponding Source podcast
2024-04-02 22:10:36 +00:00
a814832e48
feeds: add Hacker Public Radio podcast
2024-04-02 19:34:42 +00:00
747032d9a4
dino: run with higher scheduling priority
2024-04-02 09:02:44 +00:00
9b2e35b93f
pipewire: ship rtkit and unlock better scheduling priority
2024-04-02 09:02:06 +00:00
d2751237c1
xdg-desktop-portal-wlr: propery document its dependency on pipewire
2024-04-02 09:01:35 +00:00
ae87160de3
dino: 0.4.3 -> 0.4.3-unstable-2024-04-01
2024-04-02 04:57:11 +00:00
a90a213cc0
apps: gui: disable under-used "blanket" noise generator
2024-04-02 04:18:53 +00:00
24c04b8fc0
docs: xdg-desktop-portal: link to Door Knocker debugging tool
2024-04-02 04:18:53 +00:00
9d9791814a
audacity: fix sandboxing
2024-04-02 02:56:51 +00:00
331e673589
common/fs: mount /mnt/servo/media/* directories more granularly
...
this benefits sandboxing
2024-04-01 07:31:25 +00:00
bbb93600b7
/mnt/servo/*: mount in a way which doesn't block sandboxes
2024-04-01 06:00:17 +00:00
c0de54c11a
curlftpfs: exit on timeout error
2024-04-01 04:02:32 +00:00
0d29722443
common/fs: refactor and DRY
2024-04-01 02:12:06 +00:00
1c2a375b6d
common/fs: split curlftpfs into sane.programs
...
this makes it easier to build outside of /etc/fstab context, and opens a future path to sandboxing
2024-04-01 00:50:14 +00:00
b6840a3ed4
curlftpfs: build via my own repo
2024-04-01 00:43:07 +00:00
74e994598e
feeds: add David Revoy
2024-03-31 20:28:41 +00:00
856b6fcd7a
feeds: add Willow
2024-03-31 18:20:49 +00:00
cd6a91e995
sway: tune sandboxing
2024-03-31 05:59:10 +00:00
ade680d9d2
unl0kr: remove legacy wayland stuff (it's handled by s6 now)
2024-03-31 05:20:33 +00:00
6d4a43fa0d
sway: warn when needed runtime dirs dont exist
2024-03-31 05:20:20 +00:00
d3ad661970
servo: zfs: enable reflink support
2024-03-31 03:48:34 +00:00
1e7de43da8
docs: sway: mention that hotplugging is broken
2024-03-31 03:24:33 +00:00
eff37765ae
sane.image: fix so imgs.moby
includes a working bootloader
2024-03-31 03:24:33 +00:00
a65673847a
superTux, superTuxKard: don't ship on moby
...
i don't use it there; it wastes deploy time
2024-03-31 03:24:33 +00:00
930c5e2412
delfin: don't ship
...
i don't use it; it wastes deploy time
2024-03-31 03:24:33 +00:00
e855be4796
hosts/common: port /mnt/servo/* from NFS -> FTP
...
fuse ftp seems to be easier to debug than kernel nfs so far
2024-03-28 23:15:05 +00:00
701e10b121
hosts/common/fs: optimize NFS options
2024-03-28 23:15:05 +00:00
eadb2057d9
sane-wipe: port from systemd -> s6
2024-03-28 23:15:05 +00:00
5ed29ceb47
servo: /var/media: fixup permissions so everything is r/w by "media" group, including sftpgo
2024-03-28 23:14:40 +00:00
725ab13628
servo: nfs: allow UDP NFSv3 connections
2024-03-27 00:54:58 +00:00
32e691b85b
feeds: add Hardcore Software by Steven Sinofsky
2024-03-26 14:08:13 +00:00
0108502055
feedbackd: fix so it depends on pipewire before launch
2024-03-26 13:48:13 +00:00
c6a1f310a0
servo: net: actually assert that ovpns exists if we fail to add it
2024-03-26 11:13:10 +00:00
1d494513a9
slskd: document common errors/flakiness
2024-03-26 11:04:21 +00:00
fb79ca4c8e
programs: iproute: use a less restrictive sandbox
2024-03-26 10:54:29 +00:00
3cf42db7dc
slskd: fix for more recent nixpkgs
2024-03-26 10:47:20 +00:00
5ecabc57bf
feeds: add low<-tech magazine
2024-03-25 13:13:41 +00:00
48a4c1bd26
feeds: add nixpkgs.news
2024-03-25 13:13:03 +00:00
febedb9323
nits: update --replace
uses to --replace-{fail,quiet}
as appropriate
2024-03-24 12:49:18 +00:00
4e74ba5bab
swaync-service-dispatcher: fix start/stop inversion
2024-03-24 12:22:54 +00:00
9c0b175260
swaync: allow toggling of s6 services
2024-03-24 11:54:12 +00:00
774066e53c
swaync: factor out a "service-dispatcher"
2024-03-24 09:21:07 +00:00
86400f45d6
swaync: port to s6
2024-03-24 08:56:06 +00:00
ddef2d0bfc
swaync: rename: print-is-active -> print-systemd-active
2024-03-24 08:54:27 +00:00
0172aa0b69
swaync: refactor
2024-03-24 08:54:27 +00:00
ce991c8887
swaync: refactor
2024-03-24 08:54:27 +00:00
92d8d42997
swaync: split the buttons out of the main config file
2024-03-24 08:54:27 +00:00
1c4ef84ec7
swaync: remove legacy sxmo-specific notification visibility rules
2024-03-24 08:54:27 +00:00
a820ae57c0
swaync: remove sxmo timer rules
2024-03-24 08:54:27 +00:00
89f913cadc
xdg-desktop-portal: 1.18.2 -> 1.18.2-unstable-2024-03-11
...
this will *hopefully* improve stability
2024-03-24 08:08:48 +00:00
d14fda2e62
engrampa: remove custom patch (upstream released a new version)
2024-03-24 07:46:22 +00:00
f680a4a25c
engrampa: patch the package via sane.programs, not nixpkgs overlay
2024-03-24 07:44:30 +00:00
47d37b4ce5
xdg-desktop-portal: enable logging
2024-03-24 07:19:33 +00:00
a1cc045837
waybar: update persistent_workspaces -> persistent-workspaces
...
the former is deprecated
2024-03-24 06:17:43 +00:00
7f8cae42ff
s6: migrate to /run/user/$id/s6
2024-03-23 21:33:08 +00:00
5b83d4d944
s6-rc: patch to use /run/user/$id/s6 as the default live dir
2024-03-23 20:52:42 +00:00
f16a68f5bb
element-desktop: use native wayland, not Xwayland
2024-03-23 18:51:41 +00:00
46fe6c690b
sway: fix WAYLAND_DISPLAY to be relative
2024-03-23 17:59:37 +00:00
dd7b1dae5f
sway: remove unnecessary pidspace sandbox exception
...
i guess this was from when SWAYSOCK was named after the pid?
2024-03-23 17:35:39 +00:00
2e58353b0e
refactor: users/services: have waitExists
support waiting on multiple paths
2024-03-23 17:28:29 +00:00
f65d3d04dc
sway: do the WAYLAND_DISPLAY moving inside sway config itself
2024-03-23 17:09:57 +00:00
6102a0301d
sway: move $WAYLAND_DISPLAY into a subdir to make it easier to sandbox
2024-03-23 16:37:22 +00:00
39de5b84c2
sway: fix readiness check
2024-03-23 15:54:20 +00:00
5205251f6f
programs: xwayland: sandbox it without exposing net access
2024-03-23 15:33:23 +00:00
8c48adefa5
pipewire: move sockets into a subdirectory for easier sandboxing
2024-03-23 13:34:13 +00:00
db2801c652
sway: don't launch s6 from within the sway session
2024-03-23 13:11:14 +00:00
36ea5b53ad
sway: place SWAYSOCK in a subdirectory
2024-03-23 11:33:58 +00:00
c404c8b2ae
xdg-terminal-exec: fix bad interaction with TERMINAL
2024-03-23 09:28:26 +00:00
8d45aad534
xdg-dirs: populate env vars at login
...
otherwise i believe they dont actually take effect?
2024-03-22 19:31:04 +00:00
267d374b19
xdg-dirs: specify XDG_SCREENSHOTS_DIR
2024-03-22 19:23:14 +00:00
96c330813f
xterm: remove
...
xdg-terminal-exec updated recently, and it seems to prefer xterm over alacritty for some reason
2024-03-22 17:28:26 +00:00
1e25f37774
nixpkgs: 2024-03-21 -> 2024-03-22
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/33cddc79aa062e243c59d3ac36b8b938f267748a' (2024-03-21)
→ 'github:nixos/nixpkgs/86b5ff8306a63bb266590018b21d2ae502a74880' (2024-03-22)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/783b241f949bea90e3347ce516ad8af84bde3126' (2024-03-21)
→ 'github:nixos/nixpkgs/6e147dce88054c47dd90c0be8c33500e023f8261' (2024-03-22)
```
2024-03-22 11:56:51 +00:00
cdac23211c
nixpkgs: 2024-03-13 -> 2024-03-21; others
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/4ee0840ba2ecc50458ab1677d108afcd691f4815' (2024-03-13)
→ 'github:nixos/nixpkgs/33cddc79aa062e243c59d3ac36b8b938f267748a' (2024-03-21)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/2dbc8f62d8af7a1ab962e4b20d12b25ddcb86ced' (2024-03-13)
→ 'github:nixos/nixpkgs/783b241f949bea90e3347ce516ad8af84bde3126' (2024-03-21)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/771cb198c281db6918829651f194bf4db32e342d' (2024-03-13)
→ 'github:nix-community/nixpkgs-wayland/7d053c33b7a130ddada43ba09b089244390b3a23' (2024-03-19)
• Updated input 'nixpkgs-wayland/lib-aggregate':
'github:nix-community/lib-aggregate/45b75bf534592c0c1c881a1c447f7fdb37a87eaf' (2024-03-11)
→ 'github:nix-community/lib-aggregate/f890211817b941d9ed9de48d62ba8553fa2c20f3' (2024-03-17)
• Updated input 'nixpkgs-wayland/lib-aggregate/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/630ebdc047ca96d8126e16bb664c7730dc52f6e6' (2024-03-10)
→ 'github:nix-community/nixpkgs.lib/fa827dda806c5aa98f454da4c567991ab8ce422c' (2024-03-17)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/e52d8117b330f690382f1d16d81ae43daeb4b880' (2024-03-11)
→ 'github:Mic92/sops-nix/83b68a0e8c94b72cdd0a6e547a14ca7eb1c03616' (2024-03-17)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/b17375d3bb7c79ffc52f3538028b2ec06eb79ef8' (2024-03-10)
→ 'github:NixOS/nixpkgs/6dc11d9859d6a18ab0c5e5829a5b8e4810658de3' (2024-03-16)
• Updated input 'uninsane-dot-org':
'git+https://git.uninsane.org/colin/uninsane?ref=refs/heads/master&rev=bb10cd8853d05191e4d62947d93687c462e92c30 ' (2024-02-15)
→ 'git+https://git.uninsane.org/colin/uninsane?ref=refs/heads/master&rev=9a3b2d74c3e6d177fd1317d03f4e3eecca7beb7b ' (2024-03-19)
```
2024-03-21 18:03:37 +00:00
e6c00e6215
users/services: implement dbus readiness checks for s6-rc
2024-03-21 17:16:11 +00:00
16ca71188f
users/services: simplify the before/after/wantedBy criteria, to match s6 concepts
2024-03-21 17:16:11 +00:00
d2f6648bce
users/services: refactor: replace ExecStart/ExecStopPost with command/cleanupCommand
...
note that this completely breaks the systemd backend (though easily fixable if wanted)
2024-03-21 17:16:11 +00:00
e7153ce4a1
users/services: remove ExecStartPre option
2024-03-21 17:16:11 +00:00
b13e7c38c7
users/services: remove script
option
2024-03-21 17:16:11 +00:00
058c95bb2c
sysvol: remove autostart option (assume true)
2024-03-21 17:16:11 +00:00
9b793ef4b8
programs: services: no need to fully-qualify paths anymore (s6 doesn't require)
2024-03-21 17:16:11 +00:00
1417497001
users/services: remove serviceConfig.Type option
2024-03-21 17:16:11 +00:00
db12e03f64
users/services: remove oneshot
service type
2024-03-21 17:16:11 +00:00
81a6c53c26
users/services: remove RemainAfterExit option
2024-03-21 17:16:11 +00:00
9afd9725d1
users: services: remove no-longer-needed Restart
and RestartSec
options
2024-03-21 17:16:11 +00:00
384bc9e816
xdg-desktop-portal: fix to not over-escape $HOME in s6 service definition
2024-03-21 17:16:11 +00:00
6c6e10e470
s6: install manpages
2024-03-21 17:16:11 +00:00
dcdf58e1ab
sway: simplify wrapper
2024-03-21 17:16:11 +00:00
48b2280f2e
feedbackd: fix over-escaping of $HOME
2024-03-21 17:16:11 +00:00
291e704477
programs: replace systemd-specific 'environment' option with generic 'env'
...
note, these services no longer work with systemd, because systemd expects absolute paths
2024-03-21 17:16:11 +00:00
d199e9df99
programs: wob (and wob-audio): remove
...
i don't use it, and its service file was no longer compatible with s6 (it used 'environment')
2024-03-21 17:16:11 +00:00
2336767059
port service manager to s6
...
still a lot of cleanup to do (e.g. support dbus service types), but it boots to a usable desktop
2024-03-21 17:16:11 +00:00
63af94383b
sane-input-handler: only inhibit controls if screen is on
2024-03-21 17:16:11 +00:00
0335b89a12
fractal: stop persisting old directories
2024-03-21 17:16:01 +00:00
0a6b0cbec7
gtkcord4: rename to dissent
2024-03-21 17:16:01 +00:00
df2310d590
gnome-keyring: ensure the keyring directory is created before entering the sandbox
2024-03-21 17:16:01 +00:00
098cd2051e
sftpgo: expose to the WAN
2024-03-14 13:11:44 +00:00
691a7d7ff7
sftpgo: configure for credential-gated r/w access
2024-03-14 13:11:44 +00:00
c7c2785ad8
sftpgo_external_auth_hook: refactor
2024-03-14 13:11:44 +00:00
4c1a7fc910
sftpgo: port auth program to python
2024-03-14 13:11:44 +00:00
3c43fba878
feeds: add NativLang per Ben's rec
2024-03-14 07:53:19 +00:00
7904957544
give self cap_sys_nice
2024-03-14 07:02:57 +00:00
d08f318e4b
pmos: move to correct section
2024-03-13 23:51:24 +00:00
288d57e5d5
feeds: subscribe to pmOS blog
2024-03-13 23:20:45 +00:00
6595d177be
gimp: fix sandboxing
2024-03-13 11:36:57 +00:00
d194abb4bf
swaync: stylize the actual notifications
2024-03-13 11:29:05 +00:00
eaf45e2366
swaync: re-theme (pink/black)
2024-03-13 11:07:17 +00:00
66e04857b6
swaync: fix dimensions to be compatible with pinephone
2024-03-13 08:29:23 +00:00
fa0dcdc5be
swaync: splie style.css out to own file
2024-03-13 08:18:34 +00:00
23b87a283a
swaync: move to own directory
2024-03-13 08:17:14 +00:00
849ca59f68
swaync: fix styling of toggle buttons
2024-03-13 08:16:47 +00:00
5e1a6062af
swaync: ensure it starts *after* pipewire-pulse so that the mpris plugin can function
2024-03-13 07:53:45 +00:00
8dacb93861
fontconfig: remove no-longer-needed cache; disable Font Awesome (emoji seem well-covered by Noto Color Emoji)
2024-03-13 05:28:57 +00:00
eafabe87c4
xdg-desktop-portal: tell systemd the BusName of the service so that it won't consider it started until after said bus name is acquired
...
this partially fixes an error in sandboxed gtk apps where they would try to connect to org.freedesktop.portal to query settings, and then fall back to bad default fonts when the endpoint errored (because xdp-gtk wasn't ready)
2024-03-13 05:27:43 +00:00
ac22b36d78
dconf: invoke it ourselves instead of letting dbus do it for us
2024-03-13 04:49:48 +00:00
4439491bf0
dconf: fix over-restrictive sandboxing (because previously it was being run unsandboxed...)
2024-03-13 04:49:48 +00:00
546482dc80
dconf: disable GIO_EXTRA_MODULES patch
2024-03-13 02:41:39 +00:00
2f07fff084
dconf: migrate to sane.programs
2024-03-13 02:33:02 +00:00
294563c655
dbus: fix to only search /run/current-system/sw/share/dbus-1 for service files
2024-03-13 02:04:02 +00:00
7513811111
blast: minor cleanups
2024-03-12 12:06:57 +00:00
eabd113262
mpv: blast: shut it down properly even when sandboxed
...
it only cost everything. also, blast doesnt reliably clean up its pseudo devices
2024-03-12 11:51:15 +00:00
01fa9919fd
mpv: route casting through a lua script
...
this lets me use `subcprocess` instead of `run`, and so the command terminate alongside mpv
2024-03-12 05:01:45 +00:00
56a2c4e49f
mpv: split conf files out of main nix code
2024-03-12 03:32:07 +00:00
bf953fbdb5
mpv: move to own dir
2024-03-12 03:27:20 +00:00
4f2d0f2e56
mpv: tune uosc options
2024-03-12 03:05:56 +00:00
08ee0375cc
mpv: blast-to-default: remove unnecessary xdg-terminal-exec indirection
2024-03-11 12:07:08 +00:00
afd1a42ec7
mpv: refer to xdg-terminal-exec by name, not full path
2024-03-11 11:56:53 +00:00
21691fc2fd
mpv: add a menu option to cast just the audio, via Blast
2024-03-11 11:43:53 +00:00
c1edf96ce0
blast-ugjka: introduce a helper blast-to-default
program
2024-03-11 11:43:29 +00:00
21714849cf
sway: get Celeste to run in fullscreen again
2024-03-11 08:04:21 +00:00
379f3ef9e0
zsh: deref alias: make the result writable
2024-03-11 08:01:27 +00:00
f44a4c84ee
moby: don't ship fcitx5 (doesn't cross compile)
2024-03-11 07:54:49 +00:00
6822dad9c0
splatmoji: remove from config
2024-03-11 07:53:48 +00:00
9f8e42ef92
fcitx5: enable
2024-03-11 07:44:21 +00:00
bda374db13
sway: ship the nightly version
2024-03-11 05:53:14 +00:00
180a217744
cleanup: remove unnecessary config = { ... }
scope
2024-03-11 04:31:11 +00:00
f13ece2212
sway: tune resize more shortcuts; enable natural scrolling
2024-03-11 04:30:28 +00:00
0905a658ad
rofi: cherry-pick my patches instead of pinning to a fork
...
wayland upstream released 1.7.5+wayland3, which is compatible with my patches
2024-03-10 23:43:34 +00:00
90b9d00f37
swaync: remove mpris icon patch (upstreamed)
2024-03-10 23:16:33 +00:00
573a50fedc
doc: pipewire: mention some debug env vars
2024-03-10 04:59:51 +00:00
f8797a77ff
blast: ship it!
...
TODO: integrate into mpv :)
2024-03-10 04:09:34 +00:00