065d139cbc
add a package which populates a /boot dir with everything needed to read extlinux.conf on x86
...
this will replace our weird generic-extlinux-compatible wrapper in
future patches.
2022-06-23 23:43:38 -07:00
d1aa9d190e
expose packages
to the toplevel flake
...
this lets us build custom packages, separately from the entire system.
i also change the overlay slightly, just because it doesn't make sense
to induce the recursive case or relying on `next` when not necessary.
2022-06-23 23:26:51 -07:00
0780b2f04c
tow-boot-rpi4: fix hash
2022-06-23 23:26:27 -07:00
e7f05fa2ec
*/fs.nix: remove extraneous mkDefault
s
...
these are no longer needed with the new image builder.
2022-06-23 21:21:01 -07:00
66534fed25
pkgs: add tow-boot-rpi4
...
NB: haven't tested the build
2022-06-23 21:17:47 -07:00
bf6ac1b7ae
moby: enable boot.loader.generic-extlinux-compatible.enable
2022-06-23 19:56:40 -07:00
4ea5b6244f
pkgs/overlay: fix extra pkgs/
ref
2022-06-23 19:04:45 -07:00
b244e8e845
moby: properly flash firmware as part of the image build
2022-06-23 19:01:04 -07:00
7bf962942e
kaiteki: update hash
2022-06-23 17:47:01 -07:00
0edf62a31f
extlinux-builder: handle the case that /boot/EFI/BOOT is not empty
2022-06-23 17:46:41 -07:00
69cad1ca55
update nixpkgs 2022-06-20 -> 2022-06-22; nurpkgs 2022-06-22 -> 2022-06-23
2022-06-23 16:29:19 -07:00
187c2f2406
lappy: switch back to the existing fs uuids
2022-06-23 16:28:12 -07:00
ac050ac390
move the canTouchEfiVars into the right place
2022-06-23 16:26:46 -07:00
c6f2eaca45
extlinux-builder: respect target directory CLI arg
2022-06-23 16:24:39 -07:00
a299f111a4
move patch list out of flake.nix
2022-06-23 16:03:58 -07:00
fe51bb9ab4
flake: remove extraneous toplevel items from outputs
2022-06-23 15:57:20 -07:00
f7da8e2218
flake: simplify decl-bootable-machine
2022-06-23 15:53:35 -07:00
5fe65a1c52
flake: remove unused parameters
2022-06-23 15:49:59 -07:00
6801e934af
move the custom packages overlay into pkgs/overlay.nix
2022-06-23 15:47:35 -07:00
f0857181c0
decrease the moby-specific stuff in flake.nix
2022-06-23 15:42:20 -07:00
835036fc6a
make image.nix a first-class module
2022-06-23 15:31:19 -07:00
46dc2fb521
extend image builder to support btrfs
2022-06-23 15:28:33 -07:00
ea04b86a68
image builder: make aware of impermanence
...
now you can boot an impermanent install fully unattended.
2022-06-23 04:48:33 -07:00
0acb2e138b
image building: enable impermanence
...
note that it still needs an interactive `mkdir /mnt-root/nix/var/{lib,log}`
in the initrd.
2022-06-23 03:39:09 -07:00
0579faaf89
get an image which can boot to a login prompt unattended
...
NB: this breaks compat with the existing lappy install.
need to switch back to impermanence, and switch the disk uuids too.
2022-06-23 02:24:52 -07:00
d80bd7d162
inline image building, and (for lappy) use a generic-extlinux-compatible bootloader
...
the generic bootloader will allow more code-sharing with rpi and
pinephone. desko should soon use the generic bootloader as well.
problems: lappy can't boot from USB stick. it makes it to the initrd,
but there's no dev nodes for the USB drive.
unsure if this is how it was before, too.
2022-06-23 00:24:39 -07:00
19f00b1ae9
update nixpkgs 2022-06-17 -> 2022-06-20
2022-06-22 17:09:52 -07:00
1d7dc6761f
scripts for connecting/disconnecting to my VPN
2022-06-22 16:14:16 -07:00
44f63c31da
move nixos config from /etc/nixos to /home/colin/dev/nixos
2022-06-21 02:23:19 -07:00
1dd791874a
remove himalaya: we're using aerc now
2022-06-21 02:02:04 -07:00
aefd31b1f6
impermanence: granualize the /home/colin mounts
2022-06-21 01:59:31 -07:00
924b91564e
fix aerc connection settings
2022-06-21 00:21:32 -07:00
55f82260d5
impermanence: persist /etc/machine-id
2022-06-21 00:02:57 -07:00
ceef35af96
add aerc accounts.conf to secret store (and home-manager)
2022-06-20 23:55:43 -07:00
27ce21cda4
add aerc: a better terminal mail client
...
TODO: home-manager integration. its config file doesn't obviously
support passwords, but i could possibly encode it as a secret and
bind-mount the secret location, or symlink it?
2022-06-20 17:55:17 -07:00
6c810bc82c
update lappy key
2022-06-20 16:03:52 -07:00
2228be615e
fix sane-secrets-update-keys script to work on shallow folders
2022-06-20 16:03:30 -07:00
4d0509af5d
new script to update all sops secrets in a directory
...
also, rename secrets scripts to be grouped
2022-06-20 15:57:13 -07:00
c0dad51c6a
add sane script to convert ssh -> sops key
2022-06-20 15:40:17 -07:00
b6de07a731
ddns-he: start timer on boot
2022-06-20 15:36:48 -07:00
69e9cbae96
update lappy ssh key.
...
TODO: this means its sops key has also changed.
2022-06-20 03:30:17 -07:00
fa131fe39f
lappy: enable impermanence
...
it mostly went smooth, though i lost a .ssh key.
probably the best upgrade process is to do most of the heavy work in the
initrd:
write the new nix config, notably, configuring a tmpfs / mount
and moving the previous / to /nix.
then boot and in the initrd, move all the `/nix/nix/...` items
up a level.
2022-06-20 03:28:01 -07:00
68f066229b
tool to dump SOPS account info (including totp)
2022-06-19 23:54:36 -07:00
786282d9c4
new script to clean space from the nix store
2022-06-19 20:18:57 -07:00
e6a88b41b2
replace whalebird patch with upstream patch
2022-06-19 16:15:07 -07:00
324e9c9b56
add some useful utilities (to initrd and home-manager)
2022-06-19 15:57:20 -07:00
878b5ed1b6
update nixpkgs, nurpkgs, sops
2022-06-19 15:55:57 -07:00
a91914053d
transmission: disable the anti-brute-force option
...
this should allow me to more reliably login from anywhere.
2022-06-18 18:47:22 -07:00
d0209cb80f
sway: add xdg-open
...
this lets applications (Discord, etc) open links in the correct
application instead of me manually copy/pasting them.
2022-06-18 18:10:11 -07:00
09d071dd53
nixpatches: update Whalebird patch to upstream PR
2022-06-18 17:41:27 -07:00