colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
892 Commits 123 Branches 1 Tag 18 MiB
b658b93c64
Commit Graph

39 Commits

Author SHA1 Message Date
colin
b658b93c64 lappy: store the hashed user passwd in git and decrypt it into /etc/passwd on boot 
this approach lets me persist the password. persisting /etc/shadow
directly wasn't so feasible. populating /etc/shadow at activation time
is something nix already does and is easy to plug into.
so we store the passwd hash in this repo, but encrypt it to the
destination machine's ssh pubkey to add enough entropy that it's not
brute-forceable through the public git repo.
 2022-10-23 06:53:06 -07:00
colin
e11f903aec create/deply ~/private: an encrypted filesystem 
it uses gocryptfs -- a newer alternative to EncFS -- to encrypt
paths and data (but not metadata) onto an underlying backing filesystem
 2022-10-18 05:29:36 -07:00
colin
8ff7e22ac8 lappy: enable the LAN nix cache 
might want to be smarter about this, but for now it lets us reuse large
packages built on desko instead of rebuilding them locally.
 2022-09-18 02:07:34 -07:00
colin
65bcaa939e make some shared boot/hardware settings universal 2022-08-03 01:39:19 -07:00
colin
40bc4098ad lappy: disable guest account 2022-08-01 00:25:08 -07:00
colin
451816f623 rename config.{colinsane -> sane} 2022-08-01 00:23:49 -07:00
colin
18bb89ded0 lappy: enable guest account 2022-07-31 11:35:15 -07:00
colin
eb8cfc682f remove opengl modules 
they don't seem to be necessary:
- still able to run spirv/vulkan-accelerated stuff at the same rate.
- still able to watch videos at the same CPU load.

i think mesa packages solid drivers that make this part mostly
irrelevant.
 2022-07-06 02:00:12 -07:00
colin
5a10805287 hardware.opengl.extraPackages: move to machine-specific files 2022-07-02 23:53:55 -07:00
colin
d0ff605f19 lappy: setup snapper (automated btrfs snapshots) 2022-06-27 01:28:17 -07:00
colin
436ade540f tune /var/lib impermanence (for lappy) 2022-06-24 21:10:49 -07:00
colin
d38f17207b remove extlinux bootloader wrapper: use colinsane.extraBootFiles 2022-06-24 00:10:07 -07:00
colin
187c2f2406 lappy: switch back to the existing fs uuids 2022-06-23 16:28:12 -07:00
colin
ac050ac390 move the canTouchEfiVars into the right place 2022-06-23 16:26:46 -07:00
colin
0acb2e138b image building: enable impermanence 
note that it still needs an interactive `mkdir /mnt-root/nix/var/{lib,log}`
in the initrd.
 2022-06-23 03:39:09 -07:00
colin
0579faaf89 get an image which can boot to a login prompt unattended 
NB: this breaks compat with the existing lappy install.
need to switch back to impermanence, and switch the disk uuids too.
 2022-06-23 02:24:52 -07:00
colin
d80bd7d162 inline image building, and (for lappy) use a generic-extlinux-compatible bootloader 
the generic bootloader will allow more code-sharing with rpi and
pinephone. desko should soon use the generic bootloader as well.

problems: lappy can't boot from USB stick. it makes it to the initrd,
but there's no dev nodes for the USB drive.
unsure if this is how it was before, too.
 2022-06-23 00:24:39 -07:00
colin
fa131fe39f lappy: enable impermanence 
it mostly went smooth, though i lost a .ssh key.
probably the best upgrade process is to do most of the heavy work in the
initrd:

write the new nix config, notably, configuring a tmpfs / mount
and moving the previous / to /nix.
then boot and in the initrd, move all the `/nix/nix/...` items
up a level.
 2022-06-20 03:28:01 -07:00
colin
51bf327290 port helpers/home-manager-gen-colin.nix to modules system 2022-06-09 14:50:24 -07:00
colin
bc51244c52 move helpers/universal -> modules/universal 2022-06-09 14:06:31 -07:00
colin
ed50ea4b4b sway: configure emoji fonts 2022-06-08 13:02:28 -07:00
colin
d33d5a4582 hardware-x86_64: port to modules system 2022-06-06 17:51:35 -07:00
colin
d28738eb0e gui/sway: port to module system 2022-06-06 17:35:28 -07:00
colin
fa7a2186ca lappy: switch to sway 2022-06-06 01:17:08 -07:00
colin
8ef29966b3 cleanup: remove unecessary arguments from nix config 2022-06-05 23:44:01 -07:00
colin
524e9749be desko/lappy: explicitly set system.stateVersion 2022-05-28 13:14:48 -07:00
colin
52bf4f5b67 put all gui helpers under helpers/gui/ subdir 2022-05-27 01:14:36 -07:00
colin
9c290e0a03 move 'machines/common' into helpers/ 2022-05-26 22:16:16 -07:00
colin
17174a1f6e omit unnecessary inputs from some imports 2022-05-23 17:16:56 -07:00
colin
ecac3d71e3 rename common/{hardware.nix -> hardware-x86_64.nix} to signal its platform dependence 2022-05-23 00:55:26 -07:00
colin
a12560c8b4 machines/common: put some of these files behind all/, indicating that they're expected to be used by *all* machines 2022-05-23 00:46:58 -07:00
colin
dc6f949c4d rename gui.nix -> gnome.nix 2022-05-23 00:43:27 -07:00
colin
5060669738 machines/uninsane: define 'colin' user via the helper 2022-05-23 00:26:46 -07:00
colin
617fb9fff0 rename homes.nix -> home-manager.nix 2022-05-23 00:08:14 -07:00
colin
56a0d5bab8 machines: lappy/desko: port to use the new homes helper 2022-05-23 00:07:08 -07:00
colin
2603dc590d moby: populate from lappy config (gnome, firefox, etc) 
it's not the best: probably want to replace with phosh
 2022-05-22 19:45:54 -07:00
colin
3b8c76f46c desko/lappy: factor out common hardware 2022-05-22 02:03:25 -07:00
colin
e9dbbb764f desko/lappy: factor out some easy commonalities 
i'm sure this will change as i mess with the rpi image
 2022-05-22 01:59:04 -07:00
colin
e0b0fe065b move all machines into a subdirectory 2022-05-22 01:29:56 -07:00