colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
6,818 Commits 125 Branches 1 Tag 13 MiB
ef0adb5689
Commit Graph

2196 Commits

Author SHA1 Message Date
Colin
075418eda1 git: add alias git com to commit 2024-06-17 22:01:58 +00:00
Colin
1f6f2399d6 nwg-panel: fix swaync icon 2024-06-16 06:35:32 +00:00
Colin
a6d268ca72 nwg-panel: disable the brightness indicator 2024-06-16 05:42:58 +00:00
Colin
1ecc033ff5 nwg-panel: re-add missing style.css 2024-06-16 05:27:32 +00:00
Colin
53139a7cdf nwg-panel: address some TODOs 2024-06-16 04:59:23 +00:00
Colin
f37014a856 nwg-panel: minor tweaks & simplifications 2024-06-15 22:52:52 +00:00
Colin
0237d3a144 nwg-panel: fix broken JSON generation 
heh, whoops
 2024-06-15 22:24:41 +00:00
Colin
656ad76f25 nwg-panel/config: sort keys 2024-06-15 22:04:08 +00:00
Colin
b7c71dc67b nwg-panel: add a few comments/TODOs to the config 2024-06-15 21:56:41 +00:00
Colin
aaa40eae04 nwg-panel: port config to Nix 
this makes it easier to plumb config into it, and also to comment it
 2024-06-15 21:52:38 +00:00
Colin
c50a4d1d71 static-nix-shell: fix mkBash scripts to actually be invokable from the CLI 
they need the `bash` package! how did this work before?
 2024-06-15 07:42:04 +00:00
Colin
aadbeab3ac doc: nwg-panel: point out that it really is ok to build w/o wlr-randr 2024-06-15 06:53:38 +00:00
Colin
aafcf7b478 lift sane-battery-estimate out of conky, rename to sane-sysinfo 2024-06-15 06:52:54 +00:00
Colin
a78b840215 nwg-panel: enable per-app volume controls 2024-06-15 03:59:36 +00:00
Colin
3c2347faba nwg-panel: fixup the formatting 
especially, make it fit on moby
 2024-06-15 03:49:01 +00:00
Colin
1515f01384 zsh: add alias: :fg -> fg 2024-06-15 03:26:36 +00:00
Colin
2e0a3dc8ef nwg-panel: fix cross-compiled result to not ship build-time dependencies 2024-06-15 00:52:31 +00:00
Colin
3165c95d0f sysvol: 2024-06-09 -> 2024-06-13 2024-06-15 00:28:03 +00:00
Colin
46f5a7e37d nwg-panel: patch it to cross compile (by purging bluetooth/randr) 2024-06-14 09:34:17 +00:00
Colin
88a487f565 /etc/nixos: link in such a way that i dont pick up a whole bunch of garbage 
it seemed to also be causing some non-determinism when deploying to crappy

ideally i would seal the whole nix build, by only evaluating all this config *after* building 'sane-nix-files'
 2024-06-14 09:18:15 +00:00
Colin
654858f8ff nwg-panel: theme the calendar 2024-06-14 09:17:46 +00:00
Colin
5abcc7d399 nwg-panel: fix @workspaceNumbers typo 2024-06-14 08:50:28 +00:00
Colin
65823507ad nwg-panel: make workspace numbers/hiding configurable 2024-06-14 08:47:24 +00:00
Colin
734da36639 nwg-panel: make configurable through nix 2024-06-14 08:47:24 +00:00
Colin
49ccf95fb3 nwg-panel: style.css: fix line endings? 
idk, i just copied + pasted the contents back, and now the file is 200B smaller and i dont see ^M in git
 2024-06-14 08:47:24 +00:00
Colin
e70d0f3c8e nwg-panel: style.css: fix indentation 2024-06-14 08:47:24 +00:00
Colin
c00cccd429 nwg-panel: disable the green border hover for *all* items 2024-06-14 08:47:24 +00:00
Colin
02fdc91237 sway: switch from waybar -> nwg-panel (except for moby) 2024-06-14 08:47:24 +00:00
Colin
14616f9b61 nwg-panel: stylize 2024-06-14 08:47:24 +00:00
Colin
f9d856b3bb waybar: fix typo 2024-06-14 08:47:24 +00:00
Colin
d52db06ffe nwg-panel: implement, but dont ship by default 2024-06-14 08:47:24 +00:00
Colin
52322e3207 switchboard: fix cross compilation 2024-06-14 03:29:02 +00:00
Colin
e0c741427e ship "switchboard" program, for configuring bluetooth/network/sound 2024-06-13 19:51:19 +00:00
Colin
330a64d820 feeds: add xorvoid.com 2024-06-13 04:46:12 +00:00
Colin
3e35210e4b systemd: allow wheel users to start/stop any service 2024-06-13 01:30:18 +00:00
Colin
04f4d330a8 programs: enable free 2024-06-13 01:09:48 +00:00
Colin
ce60e53b9a programs: add ps 2024-06-13 01:04:24 +00:00
Colin
3ff9f974a6 programs: enable watch 2024-06-13 00:59:34 +00:00
Colin
11e9ad5eca unl0kr.conf: fix formatting 2024-06-13 00:13:33 +00:00
Colin
bf99a64b89 unl0kr: fix that unl0kr wasnt always visible (so, wait for /dev/fb0 to appear before launch) 2024-06-13 00:13:19 +00:00
Colin
e34a9957e3 hosts/common/nix: migrate the nixpkgs-overlay integration point (part 2) 2024-06-12 23:32:18 +00:00
Colin
ea1a0b72b5 hosts/common/nix: migrate the nixpkgs-overlay integration point (part 1) 
this has to be done in two steps to avoid nix-daemon bugs
 2024-06-12 23:20:37 +00:00
Colin
aab9ed0d35 zsh: switch: pass through args 2024-06-12 23:09:35 +00:00
Colin
86adc38537 zsh: fix switch alias for a post-flake world 2024-06-12 08:29:08 +00:00
Colin
63f3b8e89b handbrake: disable until i fix the build 2024-06-12 07:40:29 +00:00
Colin
9fc4119275 mesa-demos: deploy 2024-06-12 07:11:41 +00:00
Colin
c8e73d3f76 crappy: add user to "render" group 2024-06-12 07:11:41 +00:00
Colin
a5cb989c59 hosts/common: add remote /mnt/crappy/home mount 2024-06-11 00:36:18 +00:00
Colin
8e7401955f hosts/common: add crappy's pubkey/lan IP 2024-06-11 00:27:14 +00:00
Colin
fa605768e7 hosts/common: enable ALL firmware -- not just the "redistributable" stuff 2024-06-11 00:26:52 +00:00
Colin
3c279edd31 feeds: unsubscribe from Vsauce 2024-06-11 00:26:17 +00:00
Colin
ec29ec76f0 swayidle: fix that input events werent suppressed during screen-off 2024-06-09 18:36:57 +00:00
Colin
0f97e3d7ed sane-input-handler: fix that input events werent suppressed during screen-off 
note that this doesn't fix input gating during the
screenoff-after-inactivity case.
 2024-06-09 18:28:31 +00:00
Colin
b24b68a6bd mpv: switch to mainline mpv 2024-06-09 06:48:43 +00:00
Colin
cb32dc99cd sysvol: fix background transparency 2024-06-09 01:50:39 +00:00
Colin
502c9d1db3 nixpkgs: 24.05-unstable-2024-06-xx -> 24.05-unstable-2024-06-08 2024-06-09 00:48:52 +00:00
Colin
f219c59ad5 nixpkgs: acquire via builtins.fetchGit instead of flake 
i'll probably delete this toplevel flake at some point as well
 2024-06-08 01:37:47 +00:00
Colin
6b8371c32b nixpkgs-wayland: import by fetchFromGitHub instead of via flake 2024-06-07 21:29:45 +00:00
Colin
50450fe7fe brave: fix eval error on armv7l 2024-06-07 07:32:24 +00:00
Colin
8807140c83 neovim: fix cross to armv7l 2024-06-07 07:31:44 +00:00
Colin
d8fed884d0 programs: steam: move from pcGuiApps -> pcGameApps 2024-06-07 07:30:56 +00:00
Colin
8105e00b39 refactor: make system.stateVersion common across all hosts. 
otherwise it's hairy to share nixos configs/modules between them

note that this alters the stateVersion for desko/lappy/rescue, but unlikely to matter
 2024-06-04 15:58:53 +00:00
Colin
7e32fab5d4 refactor: moby: split more stuff out of the toplevel config and hide behind roles/etc 2024-06-04 15:58:51 +00:00
Colin
b334db28c6 refactor: hide x86_64-specific host config in a module 2024-06-04 14:26:24 +00:00
Colin
b52057e317 refactor: split "quirks.nix" out of hosts/common/hardware/default.nix 2024-06-04 14:14:22 +00:00
Colin
414ab85e20 refactor: move hosts/common/hardware/default.nix into hosts/common/boot.nix 2024-06-04 14:12:28 +00:00
Colin
82133a8f16 refactor: move logind config into systemd.nix 2024-06-04 14:09:58 +00:00
Colin
394259fe21 modemmanager: harden systemd service 2024-06-03 16:41:51 +00:00
Colin
8c256c629b networkmanager: harden further with NoNewPrivileges and PrivateTmp 2024-06-03 16:23:22 +00:00
Colin
0e2d86ac96 NetworkManager-dispatcher: note why we cant use DynamicUser 2024-06-03 15:57:41 +00:00
Colin
e2a1e6730d NetworkManager-dispatcher: harden systemd service 2024-06-03 15:44:22 +00:00
Colin
a1e923f999 networkmanager: tighten ProtectSystem to "strict" 2024-06-03 15:10:14 +00:00
Colin
09333c992c wpa_supplicant: harden systemd service 2024-06-03 15:09:32 +00:00
Colin
80eb385c64 networkmanager: restrict service (using systemd options) 2024-06-03 14:27:00 +00:00
Colin
f6725f60b9 networkmanager: re-introduce my polkit patches 2024-06-03 13:04:48 +00:00
Colin
42fed64b75 NetworkManager: split specific config options out of my main net/default.nix file 2024-06-03 11:24:38 +00:00
Colin
682143d47f NetworkManager: 1.46.0 -> 1.48.0 
mostly so i can review the PR and get this update mainlined sooner :)
 2024-06-03 11:23:33 +00:00
Colin
9d109644b7 nixpkgs: 2024-06-01 -> 2024-06-03; sops-nix -> 2024-06-02 
```
• Updated input 'nixpkgs-next-unpatched':
    'github:nixos/nixpkgs/f7de25c01e4c073c06e0525226a0c2311d530cee' (2024-06-01)
  → 'github:nixos/nixpkgs/c987c730bbf2121264ebd68921b443db5bb28543' (2024-06-03)
• Updated input 'nixpkgs-unpatched':
    'github:nixos/nixpkgs/61c1d282153dbfcb5fe413c228d172d0fe7c2a7e' (2024-06-01)
  → 'github:nixos/nixpkgs/77a51024c0f953d503eb3ed364aa4bff378649f8' (2024-06-03)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/962797a8d7f15ed7033031731d0bb77244839960' (2024-05-26)
  → 'github:Mic92/sops-nix/ab2a43b0d21d1d37d4d5726a892f714eaeb4b075' (2024-06-02)
• Updated input 'sops-nix/nixpkgs-stable':
    'github:NixOS/nixpkgs/59a450646ec8ee0397f5fa54a08573e8240eb91f' (2024-05-25)
  → 'github:NixOS/nixpkgs/3b1b4895b2c5f9f5544d02132896aeb9ceea77bc' (2024-06-01)
```
 2024-06-03 05:31:28 +00:00
Colin
e4bcbab224 hosts: networking: switch to using nixos NetworkManager/ModemManager/etc, just patched for hardening 2024-06-02 11:22:03 +00:00
Colin
1b85aa0441 networkmanager/modemmanager: get closer to nixpkgs upstream 
i've seen enough, that there's a path toward getting nixos proper to sandbox this in a way i'm happy with -- in time
 2024-06-02 08:56:38 +00:00
Colin
f5e5d1bcc4 networkmanager: fix polkit integrations when running not as root 
now nmcli/etc work
 2024-06-02 05:10:11 +00:00
Colin
30d41f82f2 refactor: networkmanager: use substitute instead of sed when patching 2024-06-01 22:16:18 +00:00
Colin
62dbad3486 polyunfill: remove a few more default systemPackages 2024-06-01 21:06:40 +00:00
Colin
4287ecf0ed polyfill: don't ship unused mtools package 2024-06-01 20:15:04 +00:00
Colin
b13ca92b72 polyfill: remove boot.{enableContainers,bcache} 2024-06-01 20:14:49 +00:00
Colin
53bbd611da nixpkgs-review: persist the ~/.cache/nixpkgs-review directory 2024-06-01 17:15:54 +00:00
Colin
cb1d5d53c6 feeds: add mintcast podcast 2024-06-01 16:28:42 +00:00
Colin
6fe3d26b30 modemmanager: fix missing mmcli binary in service definition 2024-06-01 15:41:14 +00:00
Colin
8340cf059f nixpkgs-review: fix sandboxing 2024-06-01 15:26:23 +00:00
Colin
e0da3ece60 errno: simplify 2024-06-01 14:48:55 +00:00
Colin
8ea379d53b errno: ship on all platforms 2024-06-01 14:04:45 +00:00
Colin
c7dd49af91 errno: fix cross compilation by not building *all* of moreutils 2024-06-01 14:03:59 +00:00
Colin
8657cf1fcf ship ausyscall binary 2024-06-01 12:17:08 +00:00
Colin
e3e86a43a9 brightnessctl: disable unused dbus access 2024-06-01 12:09:51 +00:00
Colin
05986d363d brightnessctl: fix udev rules so i can run it again 2024-06-01 12:02:24 +00:00
Colin
539d9e45a2 networkmanager/modemmanager: ship separate packages for the daemon and CLI tools 
they require fundamentally different sandboxing approaches. the daemon *can't* always use bwrap if it wants to run as non-root. meanwhile the CLI tools would mostly *prefer* to run under bwrap.

in the long term i'll maybe upstream the systemd sandboxing into nixpkgs, where there looks to be desire for it
 2024-05-31 23:26:16 +00:00
Colin
326bf045b0 networkmanager/wpa_supplicant: switch user back to "networkmanager" 
root gives too much power, even with bwrap/namespaces
 2024-05-31 23:26:16 +00:00
Colin
a1181a10ea networkmanager: install parallel dbus .conf files to allow the services to be run as *either* networkmanager or root user (hopefully!) 2024-05-31 23:26:16 +00:00
Colin
9bb6a903bb wpa_supplicant: get it to run under bwrap 2024-05-31 23:26:16 +00:00
Colin
214f963d89 networkmanager: run all services as root instead of networkmanager user 
i believe this may allow using bwrap instead of landlock
 2024-05-31 23:26:16 +00:00