3fd5e15e93
linux-postmarketos-exynos5: init
...
i'll need this for a default chromebook install
2024-06-07 07:24:48 +00:00
e61549d917
moby: split remaining polyfill into roles.handheld
2024-06-04 14:38:32 +00:00
1448cb4444
sane-reboot: fix operation on servo
2024-06-03 09:33:35 +00:00
c6bb6e2e3c
megapixels-next: fix broken eval of metadata
2024-06-03 05:35:09 +00:00
f875db916d
sandboxing: fix checkSandboxed to handle packages with multiple outputs
2024-06-01 12:12:46 +00:00
539d9e45a2
networkmanager/modemmanager: ship separate packages for the daemon and CLI tools
...
they require fundamentally different sandboxing approaches. the daemon *can't* always use bwrap if it wants to run as non-root. meanwhile the CLI tools would mostly *prefer* to run under bwrap.
in the long term i'll maybe upstream the systemd sandboxing into nixpkgs, where there looks to be desire for it
2024-05-31 23:26:16 +00:00
a380bd04c4
trivial-builders: init deepLinkIntoOwnPackage
2024-05-31 23:26:16 +00:00
2233622bb7
landlock-sandboxer: remove startup messages for 6.9
2024-05-30 08:55:13 +00:00
95dc395925
hosts/modules/gui/theme: lift my sway background up into its own package
2024-05-28 15:48:37 +00:00
dcedb8d3f0
sanebox: handle --flag=path style of autodetected paths
2024-05-28 03:04:02 +00:00
747d6c876d
sane-vpn: add a "dns-fix" subcommand to open a shell using an external DNS resolver
...
this is hopefully temporary, until i can cleanup my trust-dns recursive resolver
2024-05-28 01:23:22 +00:00
f38d2d52d2
alsa-ucm-pinephone-pmos: prefer the earpiece over the "internal speaker"
2024-05-27 14:13:56 +00:00
04bbf54385
alsa-ucm-conf: switch to postmarketos version
2024-05-27 13:41:03 +00:00
f2271180dd
alsa-ucm-conf: split the patched alsa confs out into their own package
2024-05-27 12:53:33 +00:00
db3636641d
sxmo-utils: disable update script
2024-05-27 07:51:56 +00:00
54a891504d
delfin: 0.4.2 -> 0.4.4
2024-05-27 07:51:56 +00:00
8ea5061bef
firefox-extensions: update to latest
2024-05-27 07:51:56 +00:00
b6d19a7a09
firefox-extensions.ctrl-shift-c-should-copy: update version field to use unstable idioms
2024-05-27 07:51:56 +00:00
439be20be7
lemmy-lemonade: 2024.03.20 -> 2024.04.22
2024-05-27 07:51:56 +00:00
abb65e55c6
uassets: fix updateScript
2024-05-27 07:16:50 +00:00
f6f1a6e136
firefox: uBlock Origin: ship filter lists statically
2024-05-27 06:54:52 +00:00
f3c3df2ca7
sxmo_suspend.sh: lift out of hosts/modules/gui/sxmo/hooks
...
i want to preserve this script for the future, while deleting the rest of my (unused) SXMO config
2024-05-27 00:23:50 +00:00
a03099569c
sanebox: fix bwrap+pasta DNS forwarding for hosts not using trust-dns
2024-05-26 14:26:56 +00:00
ed97a81ef3
sane-vpn: use bwrap instead of just pasta so that the uids get mapped and programs can be happy
2024-05-26 13:04:13 +00:00
f158842c70
sanebox: fix uid mapping when bwrap uses the pasta backend
2024-05-26 13:03:50 +00:00
90d428be7f
sane-vpn: allow sane-vpn do to work with no additional arguments
2024-05-26 11:33:12 +00:00
9d7b68eeb4
sane-tag-music: rewrite empty tracknumber tag to delete the tracknumber tag
2024-05-26 10:44:25 +00:00
8951df2e2c
sane-scripts: set vim tags for python scripts
2024-05-26 10:42:12 +00:00
59e4256dd8
sane-vpn: lint
2024-05-26 01:18:30 +00:00
b035d312aa
firejail: purge
2024-05-25 10:21:31 +00:00
a5e1a804c9
sane-vpn: port to sanebox/pasta (no more firejail)
2024-05-25 10:09:10 +00:00
7c6813ff37
sanebox: add a new method pastaonly
2024-05-25 10:08:49 +00:00
7b1bc210fd
sanebox: integrate with pasta (passt) for better net sandboxing
2024-05-25 09:39:18 +00:00
118ed5f950
sanebox: populate --sanebox-net-dev with the actual net device -- not the bridge
2024-05-25 08:17:38 +00:00
ffe599e5cb
sanebox: rename --sanebox-net to --sanebox-net-dev
2024-05-25 08:13:35 +00:00
d25fb31767
sanebox: fix qoute error in linkCache array test
2024-05-24 06:14:08 +00:00
a9e31539ea
koreader-from-src: avoid a runtime dep on cmake
2024-05-24 02:58:09 +00:00
e6a8f5bae8
eg25-control: fix --enable-gps and --ensure-agps commands
...
these were failing due to pathing changes from systemd -> s6
2024-05-23 02:50:38 +00:00
c51dcb30a2
linux-postmarketos: add an option for building *with* modem power feature
2024-05-23 02:07:30 +00:00
293af36d25
linux-postmarketos: ship landlock
2024-05-22 22:33:40 +00:00
0a1b1ae52f
linux-megous: remove some unneeded options (i.e. PCI)
2024-05-22 20:25:17 +00:00
b6d31e127d
linux-megous: dont auto-enable SELINUX
...
i think maybe it's disabled for a reason: systemd is built without it, and either it or SUN8I_DE2_CCU seems to be the difference between working drm and non-working drm
2024-05-21 22:47:12 +00:00
7f71a47d3b
linux-postmarketos: build in a manner such that nixpkgs eval-time assertions pass
...
nixpkgs needs to know the config as an actual nix expression => have to vendor the pmos config then
2024-05-21 22:47:12 +00:00
42d11998e8
linux-postmarketos: init
2024-05-21 22:47:12 +00:00
41b385b6ca
moby: refactor the kernel config into the actual kernel package and do less of that in the module system
...
this makes it easier to swap Kconfigs verbatim from other distros, e.g.
2024-05-21 22:47:12 +00:00
cda70b2a16
sane-reclaim-disk-space: tell the user about nix profile options
2024-05-20 20:45:58 +00:00
4834b61188
linux-megous: trim config (RC_CORE, DRM_KMS_HELPER)
...
it still boots to a working desktop without these
2024-05-20 19:40:54 +00:00
134b27f70e
linux-megous: remove unnecessary SYSFB_SIMPLEFB config
...
seems to still work without it
2024-05-20 19:14:48 +00:00
a47102e152
linux-megous: simplify the Kconfig further
2024-05-20 18:08:42 +00:00
6eb75b3841
linux-megous: re-enable OV8858 now that it compiles
2024-05-20 10:04:00 +00:00
7fd527c9d6
trivial-builders: add runCommandLocalOverridable, like runCommand, but supports standard hooks like postBuild, etc.
2024-05-20 06:14:35 +00:00
9873353d00
refactor: replace --replace substitutions with --replace-fail where applicable
2024-05-19 23:31:54 +00:00
f20a0ac409
fractal-latest: purge (unused package)
2024-05-19 21:16:06 +00:00
2d67b78ca4
linux-megous: configure with better DMABUF_HEAPS/CMA flags, which seems to help libcamera?
2024-05-19 10:40:15 +00:00
38c2db0333
libmegapixels: 2024-05-11 -> 2024-05-18 and patch some observed errors
...
not enough that it works completely though
2024-05-19 10:40:15 +00:00
5619bb3334
pkgs: ship gst-device-monitor binary
2024-05-19 10:40:15 +00:00
e9d94f2c71
linux-firmware-megous: 2023-05-06 -> 2024-02-28
...
nothing really changed here
2024-05-19 07:55:22 +00:00
67f0d22ec6
linux-megous: 6.8.4 -> 6.9.0 (orange-pi-6.8-20240405-1842 -> orange-pi-6.9-20240514-1047)
2024-05-19 07:54:48 +00:00
f481ef077c
megapixels-next: init at unstable-2024-05-11
...
i might need to still do some wrapping with graphicsmagick/exiftool, not sure
2024-05-18 22:52:20 +00:00
1952e210f0
libmegapixels: init at 0.1.0-unstable-2024-05-11
2024-05-18 22:33:17 +00:00
6365a58c3e
sanebox: avert a subshell in removeSubpaths
2024-05-18 08:10:34 +00:00
68275eeb85
rmDbusServices: preserve package meta
2024-05-18 06:31:44 +00:00
7bb7a24b22
sanebox: tidy up the quoting in a few more edge-cases
2024-05-18 00:00:03 +00:00
795786f46b
sanebox: prefer case statments over if/elif/elif... constructs
2024-05-17 23:32:51 +00:00
26aa68ee59
sanebox: replace short-circuit eval idiom with if/else
2024-05-17 23:21:36 +00:00
85c0e72bf1
sanebox: remove unnecessary quotes in case statement
2024-05-17 23:15:00 +00:00
bf98da0061
sanebox: remove extraneous quotes
...
probably some still remain
2024-05-17 23:01:24 +00:00
76434b6970
sanebox: make it more obvious what we substitute at build-time
2024-05-17 22:27:55 +00:00
0698d4be24
landlock-sandboxer: define meta.mainProgram
2024-05-17 22:26:55 +00:00
0003d79324
sane-tag-music: add a print-missing subcommand
2024-05-17 09:41:50 +00:00
e9bfc6cebd
sane-tag-music: fix help message formatting
2024-05-17 09:20:33 +00:00
aeed9ffd5b
sane-sync-music: prune directories left empty by sync
2024-05-17 08:59:36 +00:00
4de3c6d664
sanebox: fix tab typo when parsing the link cache
2024-05-16 00:15:57 +00:00
b5502ea401
sanebox: remove --sanebox-cache-symlink flag
2024-05-15 23:59:38 +00:00
b4229ecb1e
sanebox: load the link cache from a static /etc path instead of via CLI args
2024-05-15 23:55:15 +00:00
348837ff4a
programs: sandboxing: replace profiles with raw CLI args
2024-05-15 09:13:20 +00:00
17eaa7446a
sanebox: remove all profile-related features except for direct, path-based profile loading
2024-05-15 09:13:20 +00:00
d97f0f7300
sanebox: implement --sanebox-home-path and --sanebox-run-path flags
2024-05-15 08:05:00 +00:00
ee43fcdb89
rename LG TV -> Cuddlevision
2024-05-15 07:50:38 +00:00
adfaa7f9c1
sane-sandboxed -> sanebox
2024-05-15 01:41:40 +00:00
f9a6873ee9
signal-desktop: remove NIXOS_OZONE_WL=1 hack (no longer required)
2024-05-15 00:10:00 +00:00
b534af5203
signal-desktop: use nixpkgs' nodejs instead of the signal pin
...
it still seems stable
2024-05-14 23:12:41 +00:00
b06b75441c
signal-desktop: 7.0.0 -> 7.8.0
2024-05-14 23:05:00 +00:00
ffe9dcedf7
koreader: 2024.03 -> 2024.04
2024-05-14 22:12:23 +00:00
fc649de64c
fractal: remove dead code
2024-05-14 20:56:50 +00:00
1210696e3a
fractal: re-enable jpeg decoding
2024-05-14 20:56:37 +00:00
47ced34c84
fractal: 6-unstable-2024-01-31 -> 7
2024-05-14 20:15:27 +00:00
38c038f4f7
sane-sandboxed: fix typo in linkCache queries, which would otherwise break for paths containing spaces
2024-05-14 01:22:08 +00:00
9346a066d1
sane-sandboxed: fix typo in derefOnce
2024-05-13 06:49:43 +00:00
567531727e
sane-sandboxed: fix typos in normPath
2024-05-13 06:32:13 +00:00
6c65e4b313
sane-sandboxed: be a little more careful with out vars
2024-05-13 04:00:15 +00:00
e6b13adb61
sane-open: associate rofi-applications.desktop with keyboard
2024-05-13 03:19:03 +00:00
bd3e06982b
sane-sandboxed: tweak symlink caching to allow /run/current-system to be bind-mounted instead of symlinked
2024-05-13 02:11:47 +00:00
660ba94c7c
sane-sandboxed: introduce a symlink cache to reduce readlink calls even more
...
it's all a bit silly. i still do a bunch of -L tests: i just avoid the costly readlink fork :|
2024-05-13 01:31:30 +00:00
11ddce043d
sane-sandboxed: reduce forking (use out vars)
2024-05-12 22:35:05 +00:00
980fe6b33c
sane-sandboxed: use local where applicable
2024-05-12 22:15:34 +00:00
016df3ff74
sane-open: launch some .desktop files even when they point outside ~/.local/share/applications
...
an unfortunate reality is that symlinks tend to get dereferenced too
early by other programs.
2024-05-12 22:13:28 +00:00
d827235d31
sane-sandboxed: be more strict internally about keeping paths var as absolute-paths
2024-05-12 21:44:33 +00:00
f7a25d1421
sane-sandboxed: bwrap: expose symlinks to the sandbox directly, instead of binding
...
some things (e.g. `sane-open`) require the symlink, and lose too much
info when working only with the bind. having the sandboxed environment
stay similar to the out env sould make debugging things simpler
2024-05-12 21:42:31 +00:00
d148b19767
sane-sandboxed: expand symlinks before binding them into the sandbox
2024-05-12 21:41:49 +00:00
