7e490f5c07
remove lingering references to sxmo
2024-05-27 00:38:30 +00:00
10a985e7f9
hosts/modules/gui/sxmo: remove
2024-05-27 00:27:53 +00:00
f3c3df2ca7
sxmo_suspend.sh: lift out of hosts/modules/gui/sxmo/hooks
...
i want to preserve this script for the future, while deleting the rest of my (unused) SXMO config
2024-05-27 00:23:50 +00:00
f477604063
hosts/modules/gui: remove gnome
2024-05-27 00:13:19 +00:00
d46fa8a242
swaync-fbcli: sandbox (experimental)
2024-05-27 00:11:20 +00:00
62b2eb874c
swaync-service-dispatcher: sandbox
2024-05-27 00:07:30 +00:00
133c1b3699
swaync: remove unused systemd integrations
...
it's all s6 now
2024-05-27 00:06:03 +00:00
1b4300dbeb
swaync: remove unused vpn
button
2024-05-27 00:00:44 +00:00
b159240b7f
servo: import ovpn privkey
2024-05-26 14:37:33 +00:00
8a9f96eefc
moby: import own OVPN privkey
2024-05-26 14:31:08 +00:00
b1c7061b21
vpn: fix typos from previous 2 commits
2024-05-26 14:26:47 +00:00
c528bb3ec9
desko: add to OVPN
2024-05-26 14:07:32 +00:00
002639cc76
ovpn: use a single key per-device
...
this should fix the traffic collisions i'm seeing with the existing setup
2024-05-26 14:04:52 +00:00
45967fde7b
brave: fix sandboxing under pasta/netns
2024-05-26 13:05:44 +00:00
3a045f4d88
doc: polyunfill: point to https://github.com/NixOS/nixpkgs/pull/314791
2024-05-26 08:00:18 +00:00
57d6a9a4c3
polyunfill: simplify pam hacks
2024-05-26 07:04:12 +00:00
2ee39ca0cc
poly_unfill: remove /run/wrappers/bin/unix_chkpwd
...
non-privileged users don't need to check passwords
well, maybe they do (for desktop unlockers), but i've already solved that :)
2024-05-26 06:37:59 +00:00
9d9211c5fa
polyunfill: distribute /run/wrappers/bin/unix_chkpwd without suid bit
2024-05-26 01:18:30 +00:00
9ce7dcd57a
/run/wrappers: remove unused newgidmap,newuidmap,newgrp binaries
2024-05-26 01:18:30 +00:00
efa1ee6c69
iproute2: disable sandbox and fix ip
commands
2024-05-26 01:18:30 +00:00
6a15434cc6
net/vpn: remove the bridge devices from my VPN setup
2024-05-26 01:18:30 +00:00
6365bb7594
desko: disable wpa_supplicant/wireless networking again
2024-05-26 01:18:17 +00:00
8cb73687ce
unl0kr: don't add extra deps to user's PATH
2024-05-26 01:17:42 +00:00
73f5c9608e
sanebox: tighter dependency handling, to not rely on @BACKEND_FALLBACK@
2024-05-25 10:26:36 +00:00
b035d312aa
firejail: purge
2024-05-25 10:21:31 +00:00
a5e1a804c9
sane-vpn: port to sanebox/pasta (no more firejail)
2024-05-25 10:09:10 +00:00
7b1bc210fd
sanebox: integrate with pasta
(passt) for better net sandboxing
2024-05-25 09:39:18 +00:00
842651efd5
mpv: tune webm.conf
2024-05-25 02:05:18 +00:00
27b4d4da16
mpv: ship a music visualizer
...
note that it doesnt show in `webm` exports
2024-05-25 02:05:09 +00:00
e407467e55
mpv: ship mpv-webm
tool for clipping videos
2024-05-25 00:55:40 +00:00
30c677fafc
feeds: subscribe to weekinethereumnews.com
2024-05-25 00:52:39 +00:00
49b48b24fc
ship linux/posix manpages
2024-05-24 06:57:20 +00:00
844a128d60
iproute2: fix sandboxing (hopefully)
2024-05-24 06:41:12 +00:00
309797fe23
sane-input-handler: fix unrecoverable terminal state
...
bonsai is prone to miss inputs during high CPU load.
2024-05-24 04:29:34 +00:00
a6b10244eb
sane-input-handler: set vim filetype hint
2024-05-24 04:06:53 +00:00
18ec5505c4
servo: re-enable slskd
...
routing seems stable
2024-05-24 02:58:09 +00:00
2ccb4d94c5
nixpkgs: 2024-05-16 -> 2024-05-23, nixpkgs-wayland, sops-nix, uninsane-dot-org
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/1887e39d7e68bb191eb804c0f976ad25b3980595' (2024-05-16)
→ 'github:nixos/nixpkgs/?' (2024-05-23)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/977a49df312d89b7dfbb3579bf13b7dfe23e7878' (2024-05-16)
→ 'github:nixos/nixpkgs/?' (2024-05-23)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/5e2c5345f3204c867c9d4183cbb68069d0f7a951' (2024-05-16)
→ 'github:nix-community/nixpkgs-wayland/?' (2024-05-23)
• Updated input 'nixpkgs-wayland/lib-aggregate':
'github:nix-community/lib-aggregate/09883ca828e8cfaacdb09e29190a7b84ad1d9925' (2024-05-12)
→ 'github:nix-community/lib-aggregate/5fa64b174daa22fe0d20ebbcc0ec2c7905b503f1' (2024-05-19)
• Updated input 'nixpkgs-wayland/lib-aggregate/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/58e03b95f65dfdca21979a081aa62db0eed6b1d8' (2024-05-12)
→ 'github:nix-community/nixpkgs.lib/0df131b5ee4d928a4b664b6d0cd99cf134d6ab6b' (2024-05-19)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/b6cb5de2ce57acb10ecdaaf9bbd62a5ff24fa02e' (2024-05-12)
→ 'github:Mic92/sops-nix/b549832718b8946e875c016a4785d204fcfc2e53' (2024-05-22)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/8e47858badee5594292921c2668c11004c3b0142' (2024-05-11)
→ 'github:NixOS/nixpkgs/e7cc61784ddf51c81487637b3031a6dd2d6673a2' (2024-05-18)
• Updated input 'uninsane-dot-org':
'git+https://git.uninsane.org/colin/uninsane?ref=refs/heads/master&rev=af8420d1c256d990b5e24de14ad8592a5d85bf77 ' (2024-04-15)
→ 'git+https://git.uninsane.org/colin/uninsane?ref=refs/heads/master&rev=e6f88f563bdd1700c04018951de4f69862646dd1 ' (2024-05-16)
```
2024-05-24 02:57:53 +00:00
ca57fd692f
sane-input-handler: simplify the volume button controls; reduce vol-hold repeat count to 3
2024-05-23 02:50:38 +00:00
e6a8f5bae8
eg25-control: fix --enable-gps
and --ensure-agps
commands
...
these were failing due to pathing changes from systemd -> s6
2024-05-23 02:50:38 +00:00
d9922f8aa8
moby: tidy up the initrd kernel modules
2024-05-23 02:07:30 +00:00
03dab63042
moby: ship a bunch of kernel modules in the initrd: this allows the postmarketos kernel to boot to graphics!
2024-05-22 22:35:04 +00:00
5952c275a0
moby: document kernel compatibility
2024-05-21 22:54:11 +00:00
ea8eaaa91a
moby: un-blacklist stk3310
...
i don't know if blacklisting it is maybe interfering with other stuff
2024-05-21 22:47:12 +00:00
14a92b3f64
moby: disable iio sensor
...
this relaxes kernel requirements, allowing the pmOS kernel to pass eval checks
2024-05-21 22:47:12 +00:00
c5e7ef7b0c
polyunfill: don't ship x86-only kernel modules to moby's initrd
...
notably, this relaxes some constraints on the kernel so that e.g.
postmarketOS kernel actually passes eval checks (and boots to ssh!
no graphics yet)
2024-05-21 22:47:12 +00:00
d0734947bf
polyunfill: disable swraid
2024-05-21 22:47:12 +00:00
41b385b6ca
moby: refactor the kernel config into the actual kernel package and do less of that in the module system
...
this makes it easier to swap Kconfigs verbatim from other distros, e.g.
2024-05-21 22:47:12 +00:00
2e07797065
megapixels: document how to debug
2024-05-21 10:12:20 +00:00
3d295e8757
gst-device-monitor: bundle more gstreamer plugins to improve node detection
2024-05-20 09:59:08 +00:00
e3a20477f7
gst-device-monitor: wrap with required gst-plugins-base
runtime dependency
2024-05-20 06:17:11 +00:00
c21ddca1fd
servo: doof tunnel: enable IPv6 and forward-DNS records
2024-05-20 05:47:04 +00:00
47da8e55f3
servo: disable jackett/slskd/transmission temporarily
2024-05-20 05:08:58 +00:00
3b99bb497b
servo: bridge to doof.net
2024-05-20 05:08:32 +00:00
cfedcc91bd
gst-device-monitor: fix so manpages are bundled
2024-05-20 03:00:23 +00:00
9873353d00
refactor: replace --replace
substitutions with --replace-fail
where applicable
2024-05-19 23:31:54 +00:00
f20a0ac409
fractal-latest: purge (unused package)
2024-05-19 21:16:06 +00:00
87c84f0e2e
ship libcamera, snapshot
...
note that properly packaging these is still a WIP
2024-05-19 10:41:09 +00:00
c0a6313023
home/mime: micro-opt: use toString
instead of string coercion
2024-05-19 10:40:15 +00:00
26e347f38c
moby: ship with way higher CMA by default
2024-05-19 10:40:15 +00:00
5619bb3334
pkgs: ship gst-device-monitor binary
2024-05-19 10:40:15 +00:00
0fc4f83fc9
sane-input-handler: bump volume hold time from 600ms -> 750ms
...
hopefully this decreases the number of volup inputs which are misread as volup-hold (which happens a lot when the screen is off...?)
2024-05-19 00:34:23 +00:00
1b24bd50f9
errno: ship
2024-05-19 00:21:30 +00:00
58ef2cf863
calls/callaudiod: update documentation
2024-05-18 20:55:16 +00:00
41bc4ac7b4
callaudiod: fix repo URL
2024-05-18 08:10:34 +00:00
3361f2bbe7
zsh: port to sane.programs
2024-05-18 08:10:34 +00:00
c987f13ef0
calls: split callaudiod out and run it manually
2024-05-18 07:14:42 +00:00
ee36f2f052
sway: fix display names
2024-05-18 06:57:24 +00:00
09457bee5a
sway: position gnome-calls on workspace 1
2024-05-18 06:55:39 +00:00
278631b59e
calls: sandbox
2024-05-18 06:52:53 +00:00
4d09cce1aa
calls: fix latency so moby doesnt underrun
2024-05-18 06:47:26 +00:00
b2f2f88dc6
calls: exit on UI close
2024-05-18 06:32:23 +00:00
afb9d273ab
servo: re-enable slskd
2024-05-17 22:00:46 +00:00
9c27b8e864
swaync: sort icons
2024-05-17 08:42:35 +00:00
af34d395fc
swaync: fix Discord icon
2024-05-17 07:18:23 +00:00
008b659a10
swaync: reorder icons
2024-05-17 05:49:28 +00:00
1ce2839df9
swaync: clean up icons a bit more
2024-05-17 05:45:15 +00:00
022d15c2c7
swaync: increase font size of service icons
2024-05-17 03:42:32 +00:00
908a2ca6c3
swaync: fix a bug that i couldnt see all icons on the same row
2024-05-17 03:21:41 +00:00
42fb79b025
swaync: improve gnome-calls icon
2024-05-17 00:49:40 +00:00
4265ea9b99
calls: auto-start
2024-05-17 00:41:32 +00:00
a7d376778e
gnome-calls: re-enable
2024-05-17 00:36:56 +00:00
157af52112
feeds: add Grumpy.website
2024-05-16 19:25:22 +00:00
5924d092f4
coturn: expand documentation
2024-05-16 09:41:53 +00:00
a5f6aae6f5
desko: use stock systemd resolver
...
i need a backup system to use when things are broken, and this helps with debugging as well
2024-05-16 03:12:30 +00:00
fd94422982
distcc: purge
2024-05-16 02:51:38 +00:00
55a7119e3f
ccache: purge
2024-05-16 02:51:03 +00:00
d258d4ddd5
desko: re-enable firewall
2024-05-16 02:49:03 +00:00
9d725a0974
servo: disable unused nixcache.uninsane.org
2024-05-16 02:46:23 +00:00
4a15339e0e
desko: re-introduce the nix_serve key, which is actually needed for SSH deployements, not just nix-serve
2024-05-16 02:43:32 +00:00
df4ef0ce5a
desko: disable nix-serve
2024-05-16 02:35:27 +00:00
3bb5546aaf
systemd-logind: fix to not sleep when i close the lid (again)
2024-05-16 02:13:02 +00:00
b4229ecb1e
sanebox: load the link cache from a static /etc path instead of via CLI args
2024-05-15 23:55:15 +00:00
17eaa7446a
sanebox: remove all profile-related features except for direct, path-based profile loading
2024-05-15 09:13:20 +00:00
ee43fcdb89
rename LG TV -> Cuddlevision
2024-05-15 07:50:38 +00:00
bc73a16475
networkmanager: fix to be compatible when systemd-resolved is enabled
2024-05-15 02:57:40 +00:00
adfaa7f9c1
sane-sandboxed -> sanebox
2024-05-15 01:41:40 +00:00
f9a6873ee9
signal-desktop: remove NIXOS_OZONE_WL=1 hack (no longer required)
2024-05-15 00:10:00 +00:00
d5e8974a4a
refactor: trust-dns: listenAddrs -> listenAddrsIpv4
2024-05-14 23:22:50 +00:00
e040a5b0c5
servo: trust-dns: remove hn-resolver
...
my hosts run their own recursive DNS resolvers now, so there's no need for the wireguard VPN to provide them with that
2024-05-14 23:20:19 +00:00
1f405fb2ba
element-desktop: update electron_28 -> electron_29
2024-05-14 22:32:56 +00:00
f3cf9e0bed
trust-dns: set it to NOT be the system resolver for servo
...
trust-dns recursor is too beta for servo
2024-05-14 09:03:10 +00:00
2a199bf373
trust-dns: recursor: merge DHCP DNS servers from all non-downed connections
...
otherwise overwriting the toml configs gets messy, when interfaces come up in unpredictable order
2024-05-14 08:25:59 +00:00
53198128e8
trust-dns: hook NetworkManager for state changes
...
there may be some edgecases to sort out around e.g. first-run,
but so far it seems to be importing the DHCP search zones :)
2024-05-14 07:42:41 +00:00
1e202baa8a
networkmanager: tune config
...
mostly just pruning unused features
2024-05-14 04:18:29 +00:00
39eb1d150a
dns: deploy trust-dns as the default recursive resolver
...
outstanding issues: native.uninsane.org doesn't resolve. appears possibly to be an issue with following CNAMEs
2024-05-14 04:18:29 +00:00
447e1feb9c
sway: fix Super+L shortcut to actually lock
2024-05-14 04:17:05 +00:00
26e3c3e5b7
s6-rc: fix persist.byStore.persist
typo
2024-05-14 04:16:50 +00:00
3557994cbb
gnome-clocks: fix sound an sandboxing artifacts
2024-05-14 01:21:37 +00:00
f3106ee316
programs: maxBuildCost: fix to actually build everything by default
2024-05-13 22:57:40 +00:00
be84ab1f45
programs: set buildCost=1
for assorted low-priority programs
2024-05-13 22:45:33 +00:00
43d32641f3
programs: buildCost: introduce a new level between min
and light
2024-05-13 22:45:33 +00:00
9bf0dbabae
gnome.seahorse: disable
2024-05-13 22:45:33 +00:00
8c7880774e
monero-gui: disable
2024-05-13 22:45:33 +00:00
5774aa4a8f
zulip: dont ship
2024-05-13 22:45:33 +00:00
14202a5bcc
neovim: wrap in such a way as to avoid cross-compilation-specific patching
2024-05-13 22:45:33 +00:00
a05fa53ee1
curlftpfs: EXPERIMENT: double the connect timeout to see if this reduces dropped conns
2024-05-13 07:52:43 +00:00
89135d08cb
rofi: file browser: include an entry to open the app launcher
2024-05-12 19:46:51 +00:00
15a5afd2c4
sane-open: special-case how i open .desktop files to be compatible with portals
2024-05-12 19:46:03 +00:00
3c1a74998e
applications: hide .desktop files which arent meant to be user-visible
2024-05-12 17:43:07 +00:00
eadf85f66d
sane-open: associate as the default launcher for .desktop files
2024-05-12 17:41:00 +00:00
4b04c283b6
fcitx5: temporarily disable
2024-05-10 17:51:37 +00:00
a40f05260a
unl0kr: simplify the crash edge-case handling
2024-05-09 08:42:41 +00:00
2b539fafcd
unl0kr: handle some crashy edgecases
2024-05-09 08:38:22 +00:00
2a8ecf0423
nixpkgs: 2024-04-28 -> 2024-05-08; nixpkgs-wayland, sops-nix
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/0e395f4da1693e39239ffac7abf73a0a6931c961' (2024-04-28)
→ 'github:nixos/nixpkgs/c8e3f684443d7c2875ff169f6ef2533534105e7b' (2024-05-08)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/93909e9c7b05634ad924ff97c259ae0859b81756' (2024-04-28)
→ 'github:nixos/nixpkgs/a751e2faa2fc94c1337c32aaf6a6e417afe90be9' (2024-05-08)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/4e58e2cf22d11426ed2f997551f3650de0639e3a' (2024-04-28)
→ 'github:nix-community/nixpkgs-wayland/7dc8fb2aa7db995ac1ce2a8f2f8d8784b2af591c' (2024-05-08)
• Updated input 'nixpkgs-wayland/lib-aggregate':
'github:nix-community/lib-aggregate/49d9b510614b9bd137e067eb31445a8feca83313' (2024-04-28)
→ 'github:nix-community/lib-aggregate/26fabca301e1133abd3d9192b1bcb6fb45b30f1d' (2024-05-05)
• Updated input 'nixpkgs-wayland/lib-aggregate/nixpkgs-lib':
'github:nix-community/nixpkgs.lib/ade4fb7bbf04cd52bc1705734d5dc67755d77ec9' (2024-04-28)
→ 'github:nix-community/nixpkgs.lib/4b620020fd73bdd5104e32c702e65b60b6869426' (2024-05-05)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/f1b0adc27265274e3b0c9b872a8f476a098679bd' (2024-04-23)
→ 'github:Mic92/sops-nix/893e3df091f6838f4f9d71c61ab079d5c5dedbd1' (2024-05-06)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/74574c38577914733b4f7a775dd77d24245081dd' (2024-04-20)
→ 'github:NixOS/nixpkgs/b980b91038fc4b09067ef97bbe5ad07eecca1e76' (2024-05-04)
```
2024-05-09 05:26:23 +00:00
f58bcb4767
swaylock, schlock: convert to services
2024-05-07 15:02:46 +00:00
32e06ce998
programs: gnome-disk-utility: grant sandbox access to ~/tmp
2024-05-06 05:15:28 +00:00
8c04023eba
sway: fix sane-open integration to not mistake it as a file
2024-05-05 05:04:25 +00:00
a1625ea41d
programs: ship zulip
2024-05-04 08:28:48 +00:00
6544b9aca4
doc: dns: fix typo
2024-05-02 10:27:38 +00:00
08a9b838e5
sane-input-handler: fix log bog
2024-04-30 19:22:37 +00:00
b7dd40e558
sane-open-desktop -> sane-open and have it auto-open/close the keyboard based on what an app wants
2024-04-30 19:22:37 +00:00
7f2abf7e6e
sane-input-handler: fix missing newline when logging
2024-04-30 15:30:39 +00:00
825812e511
sane-input-handler: reset rofi directory to ~ when using the app + fsbrowser
2024-04-30 15:29:00 +00:00
69e5495cc9
sane-input-handler: set keyboard as appropriate for file/app browser
2024-04-30 15:16:59 +00:00
b422f15b59
sane-input-handler: swap volup tap/hold actions
2024-04-30 14:38:17 +00:00
889b332ade
trust-dns: split the parts which are generalizable into their own file
...
i can try to build this into a recursive resolver for *all* my hosts
2024-04-30 14:35:56 +00:00
46d1a49f0f
servo: enable sane-cast
program
2024-04-29 21:50:03 +00:00
1b156dcb0a
networkmanager: fix eval error when not enabled
2024-04-29 05:58:32 +00:00
39d31c3ffd
swaync-service-dispatcher: add -b
to block on service state query, to avoid incorrect responses when run in parallel
2024-04-27 12:32:12 +00:00
c50ef59102
swaync: fix service state tracking for oneshot services
2024-04-27 12:13:34 +00:00
5fc4ca6dad
modemmanager: ship udev rules
2024-04-27 12:01:01 +00:00
35c7527946
modemmanager: fix so it's active on boot
2024-04-27 11:54:08 +00:00
7e8a014f37
NetworkManager: use the upstream service file
2024-04-27 10:58:21 +00:00
4ce951bbed
wpa_supplicant: re-enable
2024-04-27 10:34:25 +00:00
f784550b9b
networkmanager: migrate from nixpkgs service to my own
2024-04-27 09:51:55 +00:00
1f2bbd4aec
refactor: split modemmanager stuff into own file
2024-04-27 08:32:15 +00:00
547d71c19a
nixpkgs: 2024-04-24 -> 2024-04-26, nixpkgs-wayland
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/acba655f267a49327f2cea95003f17b8540909c0' (2024-04-24)
→ 'github:nixos/nixpkgs/7d3f4eadec32d447a5f20d87fa309f00986cb288' (2024-04-26)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/1eb9a6980dee3970850f47ba8139c7402f54a9a0' (2024-04-24)
→ 'github:nixos/nixpkgs/0b868df4ced96400774414f5baf30b696215b98f' (2024-04-26)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/80659e4b2805654de851996e682b063a5d7eea5e' (2024-04-24)
→ 'github:nix-community/nixpkgs-wayland/ca9d278400c170935a95dd75e7e2537c2afd1cb7' (2024-04-26)
```
2024-04-27 06:33:24 +00:00
19115dfb65
eg25-control: port to s6 (hopefully)
2024-04-26 21:44:13 +00:00
34842c00fe
moby: make the modem powerable by the user, without root
...
this should allow migrating eg25-control to a user service
2024-04-26 17:19:38 +00:00
46a513b263
feeds: subscribe to SamuelDR
2024-04-26 17:19:38 +00:00
6129fbf2b3
lemmy: upstream the proxy headers
2024-04-26 16:44:43 +00:00
f3d2dee470
lemmy: fix federation (broke due to invalid HTTP signatures)
2024-04-26 10:31:47 +00:00
3d207ab7bb
coturn: allocate 256 ports instead of 16
2024-04-26 08:47:52 +00:00
95447eb765
goaccess: fix missing state dir
2024-04-26 08:47:09 +00:00
593268f620
coturn: run inside ovpns namespace
2024-04-26 08:01:34 +00:00
5c98a51cd6
dino: build without echo cancelation
...
this reduces CPU load on moby; it may also have implications for incoming call audio though, still sorting that out
2024-04-26 05:11:43 +00:00
4453bde815
dino: increase buffering 20ms -> 100ms (closer to 82ms, actually)
2024-04-25 11:28:22 +00:00
7843f9650a
feeds: subscribe to The Amp Hour (podcast)
2024-04-25 05:54:10 +00:00
82dce71b9c
feeds: add microarch.club podcast
2024-04-25 05:51:52 +00:00
9c00c2c5cc
zsh: add exit
aliases: ecit
, exi5
2024-04-25 01:51:45 +00:00
d01e49f566
pipewire: switch back to bwrap
sandboxing and document limitations
2024-04-24 13:14:35 +00:00
7447d4879e
pipewire: man: link to docs
2024-04-24 10:33:23 +00:00
215864e3d4
pipewire: reduce realtime priority so it doesnt crash moby gpu driver
2024-04-24 09:36:22 +00:00
0cbb81cfea
WIP: pipewire: trying to tune so lima doesnt crash
2024-04-24 09:20:13 +00:00
9d7816a1cd
koreader: fix sandboxing so that i can open links again
2024-04-24 01:02:02 +00:00
461aa5ede0
htop: include "PRIORITY" column
2024-04-23 12:01:15 +00:00
10fc7bbb84
curlftpfs: document sandbox attempt
2024-04-23 09:08:05 +00:00
87e3f2a9ef
pipewire: split rtkit into own file, and use defaults from pipewire project
2024-04-23 09:08:05 +00:00
9481131daf
pipewire: sandbox with landlock (so that rtkit integration works) and split rtkit into own file
2024-04-23 09:08:05 +00:00
ae418fb2d1
valgrind: mark as not sandboxable
2024-04-23 09:08:05 +00:00
c174eddddf
wireplumber: sandbox such that it gets higher sched priority
2024-04-23 09:08:05 +00:00
6d74c6616c
pipewire: shrink the mount sandbox
2024-04-23 09:08:05 +00:00
7db40fbf47
sane-cast: add a menu for choosing which device to cast to whenever there are multiple
2024-04-23 08:10:05 +00:00
152a5d4c92
sane-cast: integrate with mpv
2024-04-23 07:52:48 +00:00
fd771cdb2c
fs: mount media/torrents instead of media/freeleech (the latter was removed)
2024-04-23 01:25:57 +00:00
4c7cd06212
go2tv: clarify compatibility
2024-04-22 12:45:55 +00:00
d0de6a9254
sftpgo: reduce the passive port range
...
hopefully this eases the load on the upstream firewall's UPNP service
2024-04-22 12:08:23 +00:00
12f2798140
servo: sftpgo: move to own directory
2024-04-22 12:05:16 +00:00
bd92076291
fontconfig: populate the cache directory even when cross compiling
2024-04-22 09:47:20 +00:00
9cbe774c5a
sane-input-handler: fix power_hold -> power_tap_1_hold when inhibited by rofi
2024-04-22 06:27:33 +00:00
b4653b20a2
moby: button map: move vol{up,down}_hold to only act in power-off, else they may falsely trigger during other power-on actions
2024-04-22 05:13:29 +00:00
2c011df252
moby: tweak button mappings
...
- power hold: toggle media
- power x1 -> hold: kill
now nothing in screenoff uses power x2, which means we can get to
screen-on without waiting for any timeout.
2024-04-22 05:10:35 +00:00
9d472bb290
sane-input-handler: clean up suggestedPrograms
2024-04-22 04:13:56 +00:00
95b21cbed9
moby: update improve button mappings
...
- power + volup: screenshot
- power + voldown: camera
- volup_hold: file browser
- remove modal media controls
2024-04-22 04:05:52 +00:00
82007c9b40
bonsai: store the config in ~/.config to allow easier online editing
2024-04-22 04:05:15 +00:00
50c72de4f9
megapixels: fix folder icon to actually open ~/Pictures/Photos
2024-04-22 00:16:46 +00:00
36237a3201
megapixels: remove unnecessary ~/tmp
directory from sandbox
2024-04-22 00:16:14 +00:00
eb9df628e6
megapixels: remove unnecessary ~/.local/share/applications from sandbox
2024-04-21 23:49:29 +00:00
a92960d778
megapixels: place photos in ~/Pictures/Photos instead of directly in ~/Pictures
2024-04-21 23:13:49 +00:00
ef9b0e9309
megapixels: fix .dng -> .jpg conversion
2024-04-21 21:59:05 +00:00
350e00e0cd
firefox: decrease scrollbar width 20px -> 14px
2024-04-21 21:08:07 +00:00
b77e811ad4
blast-to-default: leverage sane-die-with-parent
2024-04-21 11:09:23 +00:00
a000a722ba
mpv: fix so sane-sysvol doesnt hang exit
2024-04-21 10:08:46 +00:00
4dde01245e
mpv: sane_sysvol: fix non_blocking_popen to use metatables and be more readable
2024-04-21 03:47:01 +00:00
f50c0a98c2
sane-sysvol -> sane_sysvol, sane-cast -> sane_cast
...
when a script contains a dash, mpv silently renames *parts* of it to _, which causes confusion
2024-04-21 00:27:30 +00:00
0625bfdd10
mpv: sane-cast: fix crash due to missing table.concat
function
2024-04-21 00:24:46 +00:00
4dfee58d09
sops: fix sandbox path
2024-04-20 21:43:13 +00:00
a7b8eb179b
pipewire: move the clock quantum config into sane.programs proper
...
this ensures it's available in the sandbox
2024-04-20 09:09:05 +00:00
f10bb6c86c
sftpgo: adjust file mode to be compatible with Kodi
2024-04-20 08:07:00 +00:00
a59a7b5346
feeds: podcasts: add Tech Tales
2024-04-19 21:46:03 +00:00
1bd715e57e
nixpkgs: 2024-04-18 -> 2024-04-19; nixpkgs-wayland, sops-nix
...
```
• Updated input 'nixpkgs-next-unpatched':
'github:nixos/nixpkgs/19d2eb80a0e23daf1c4a8cf25b1011fbdb2260fb' (2024-04-18)
→ 'github:nixos/nixpkgs/6ad1fe08582fcdfedb2cb7c31b4a016a227bd38a' (2024-04-19)
• Updated input 'nixpkgs-unpatched':
'github:nixos/nixpkgs/457c34178411e0072e59564ee7986e86255a6eff' (2024-04-18)
→ 'github:nixos/nixpkgs/40d15ed86dd08eff6a29e0a9abc416001d19cd67' (2024-04-19)
• Updated input 'nixpkgs-wayland':
'github:nix-community/nixpkgs-wayland/7867aa617c6eb205b1ac1b71d98cd18a2561bb18' (2024-04-17)
→ 'github:nix-community/nixpkgs-wayland/ab0f8d391a960764348935e6497fc62ba0d2378d' (2024-04-19)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/cc535d07cbcdd562bcca418e475c7b1959cefa4b' (2024-04-15)
→ 'github:Mic92/sops-nix/b94c6edbb8355756c53efc8ca3874c63622f287a' (2024-04-18)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/c27f3b6d8e29346af16eecc0e9d54b1071eae27e' (2024-04-13)
→ 'github:NixOS/nixpkgs/8494ae076b7878d61a7d2d25e89a847fe8f8364c' (2024-04-18)
```
2024-04-19 20:33:48 +00:00
317996b609
clightning-sane: document the status
command more
2024-04-19 07:29:20 +00:00
135f63480b
clightning-sane: add a help message
2024-04-19 07:29:20 +00:00
d9ffa5bb5a
wike: fix sandboxing for 3.0
2024-04-19 01:26:58 +00:00
f59f13588f
jackett/transmission/slskd: validate public IP address before starting
2024-04-18 20:05:59 +00:00
40af93a7fb
feeds: add apenwarr
2024-04-18 17:29:50 +00:00
a36ff517e7
servo: slskd: disable
2024-04-18 06:55:56 +00:00
60c370df3f
sftpgo: fix domain name in banner
2024-04-18 05:01:57 +00:00
d80852c6c1
sftpgo: re-enable password login
2024-04-18 04:58:59 +00:00
62b3047fff
sftpgo: support FTPS
2024-04-18 04:34:41 +00:00
de2c3a30ff
programs: ship lftp ftp client
2024-04-18 04:17:10 +00:00
c08280589d
lsof: fix sandboxing
2024-04-17 23:43:42 +00:00
9a9ffcbea9
transmission: fix faulty "find" expression (thanks shellcheck!)
2024-04-17 23:32:00 +00:00
733efcfaf7
servo: nginx: forceSSL for anything media related
2024-04-17 22:49:24 +00:00
b34d984572
servo: transmission: remove noisy files upon torrent completion
2024-04-17 20:47:00 +00:00
e2b58e1b77
servo: transmission: be extra strict about requiring VPN
2024-04-17 19:52:11 +00:00
b7e5bc5972
servo: sftpgo: disable external access
2024-04-17 19:41:57 +00:00
54cefa247a
dino: record another bug
2024-04-17 09:53:08 +00:00
b7fd5e78cc
swaync: show volume-per-app (TODO: stylize it better)
2024-04-17 01:37:03 +00:00
79985ff009
dino: docs: update notes about BUGS
2024-04-16 20:50:00 +00:00
62f5b9276f
pwvucontrol: whitelist DRI inside the sandbox, for better perf
2024-04-16 20:49:33 +00:00
13c1f01a6b
servo: pleroma: migrate port 4000 -> 4040
...
port 4000 is used by NFS
2024-04-16 18:57:54 +00:00
5f281f57de
servo: transmission: inline nested torrent directories
2024-04-16 18:25:41 +00:00
089e434e3f
servo: transmission: fix group permissions of media when copying them to public dir
2024-04-16 16:31:10 +00:00
539fe48947
swaync: cleanup
2024-04-16 04:14:07 +00:00
259c3af526
swaync-fbcli: fix CPU pegging when canceling a phone ringer
2024-04-16 02:18:51 +00:00
6b5e0e57bc
swaync: unify the *DEBUG variables
2024-04-15 21:29:17 +00:00
4f06f0dc5e
unl0kr: disable animations
2024-04-15 21:10:55 +00:00
c0dde0e540
unl0kr: populate config file with upstream defaults
2024-04-15 21:05:21 +00:00
0385c09f23
sane-sandboxed: split out into an actual package
2024-04-15 18:57:22 +00:00
bd57b95598
swaync-fbcli: fix so that the child actually exits when killed (critical is to use SIGINT)
2024-04-15 18:32:50 +00:00
465da7c939
swaync-fbcli: migrate an "echo" to a "log"
2024-04-15 18:22:30 +00:00
44f76e656a
swaync-fbcli: fix that pkill expression wouldn't work for wrapped binaries
2024-04-15 18:21:27 +00:00
824046aca1
swaync-fbcli: fix CPU pegging
2024-04-15 18:09:21 +00:00
827c50ff43
swaync: cleanup the swaync-fbcli helper
2024-04-15 18:00:51 +00:00
0230291bb2
swaync: move the pkill logic into swaync-fbcli
2024-04-15 17:46:40 +00:00
3d3618256d
swaync: split the fbcli wrapper into its own file
2024-04-15 17:46:40 +00:00
590cb2dd7f
feeds: sort the list
2024-04-15 16:21:31 +00:00
d9dcab544c
feeds: unsubscribe from Profectus
2024-04-15 16:20:17 +00:00
4ee0f0c659
feeds: disable TheSideView
2024-04-15 14:59:50 +00:00
2af5bb3d78
i-still-dont-care-about-cookies: enable
2024-04-15 03:36:49 +00:00
2d8fe1d3e5
bonsai: tune niceness to hopefully be more responsive
2024-04-15 01:46:32 +00:00
0741d87bcb
rofi: theme so that i can read more text on narrow moby display
2024-04-15 00:04:10 +00:00
2587c27f89
font-manager: fix sandboxing
2024-04-14 21:55:52 +00:00
2d74d0725d
feeds: podcasts: add Money Stuff
2024-04-14 20:39:53 +00:00
7804236499
xdg-terminal-exec: remove upstreamed patched
2024-04-14 14:16:50 +00:00
feb36d19ac
programs: ship cups
2024-04-14 03:33:55 +00:00
a8915661a7
style: refine the base pink color for mpv and sway/waybar
...
this matches swaync a little better. mpv had to be made lighter, i think because of transparency stuff. probably sway/waybar could be made normal lightness
2024-04-13 20:29:24 +00:00
dd58ba8b00
gvfs: enable as part of nautilus, not sway
2024-04-13 20:29:24 +00:00
0a888e205e
programs: ship objdump
2024-04-13 20:29:24 +00:00