Commit graph

182 commits

Author SHA1 Message Date
chayleaf a624526c5b
add prometheus-ping-exporter; misc changes 2023-12-15 06:04:29 +07:00
chayleaf a212573774
server: postgresql_13 -> postgresql_16 2023-12-09 13:50:56 +07:00
chayleaf 863599b614
devices/{workstation,server}: change drive configuration 2023-12-09 00:42:45 +07:00
chayleaf 767420bfd1
server: add jellyfin 2023-12-01 23:45:17 +07:00
chayleaf 9e11d15be9
server/maubot: move impermanence config to impermanence module 2023-11-29 01:56:51 +07:00
chayleaf 3250edc21c
server/maubot: cleanup 2023-11-29 01:52:15 +07:00
chayleaf 28010a5ebe
server: add qbittorrent-nox 2023-11-29 01:50:24 +07:00
chayleaf 1524c347d6
router: work around faulty hardware 2023-11-27 02:52:48 +07:00
chayleaf 29fb2315a6
home: add coop-ofd 2023-11-27 00:40:17 +07:00
chayleaf 3891aa6596
bpi-r3: fix kernel config 2023-11-26 02:58:23 +07:00
chayleaf 9bd6cce282
server: switch to bcachefs 2023-11-25 02:37:10 +07:00
chayleaf dcbef373c4
update inputs 2023-11-25 00:30:25 +07:00
chayleaf ebab2df5c1
scanservjs: 2.27.0 -> 3.0.3 2023-11-19 01:31:01 +07:00
chayleaf 7f829af357
home: neomutt->alot; mpv: add libaribcaption; misc fixes 2023-11-08 11:47:14 +07:00
chayleaf 0cc3ec10b3
pleroma: fix config
email and manual activation cant coexist (plus i didnt configure email
activation)
2023-10-27 02:01:00 +07:00
chayleaf ceeb526ec5
flake.packages: dont export stuff from nixpkgs package sets 2023-10-26 22:22:39 +07:00
chayleaf 598044863f
server: reorganize 2023-10-26 07:26:03 +07:00
chayleaf 7535990be0 server/certspotter: check tbs instead of pubkey 2023-10-26 02:02:48 +07:00
chayleaf 91a8a50c7b router/kea: update runtime dir 2023-10-25 18:04:07 +07:00
chayleaf 5b0b925fe3 server/certspotter: fix state path 2023-10-25 14:54:46 +07:00
chayleaf ece8104cf2 server/gitea: further increase timeout 2023-10-25 06:30:32 +07:00
chayleaf 891fa83f01 certspotter: switch to using StateDirectory 2023-10-25 04:34:15 +07:00
chayleaf 8948db4dac server/gitea: enable federation, etc 2023-10-25 03:43:39 +07:00
chayleaf 1ccdb2bd47 server: gitea->forgejo 2023-10-25 00:04:46 +07:00
chayleaf 1d77aed15f certspotter: fix cert check 2023-10-24 16:49:40 +07:00
chayleaf 67f43298e8 server: add certspotter 2023-10-24 00:19:12 +07:00
chayleaf eda0322bc7 nixmsi: switch to latest kernel again 2023-10-24 00:17:53 +07:00
chayleaf ce2d2e4a78 router: allow assigning ips per duid 2023-10-24 00:16:14 +07:00
chayleaf 73b1b3b47d restructure packages; change akkoma domain 2023-10-23 10:36:50 +07:00
chayleaf 0aa8ba4345 hydra: increase cpu usage limit; add minimal fish config 2023-10-19 12:15:25 +07:00
chayleaf e99c3dafec ccache code reorg 2023-10-19 02:02:47 +07:00
chayleaf 57d08c6c0e hydra: fix ssh connection to remote builder 2023-10-18 21:14:46 +07:00
chayleaf 2909ae6367 hydra: disable binfmt 2023-10-18 21:03:59 +07:00
chayleaf d9b81b4cdc hydra: add laptop public key 2023-10-18 20:25:13 +07:00
chayleaf 6ff68289d6 hydra: fix eval? (again) 2023-10-18 19:36:18 +07:00
chayleaf 0888579272 hydra: add nixmsi as builder 2023-10-18 19:35:32 +07:00
chayleaf 5376be449f fix (?) hydra eval 2023-10-18 18:47:35 +07:00
chayleaf f6b22a776e work around https://github.com/NixOS/hydra/issues/1186 2023-10-18 18:35:41 +07:00
chayleaf 04f3546f6e server: add swap 2023-10-17 23:12:08 +07:00
chayleaf 18d471c2ec nixserver->server; start working on phone config 2023-10-17 20:25:03 +07:00
chayleaf b7137a836f nixserver: enable hydra & misc hw code reorg 2023-10-08 08:24:29 +07:00
chayleaf bb180360b9 add Radxa Rock 5A; update inputs 2023-10-08 04:41:50 +07:00
chayleaf 12c27384df router: small routing tables tweak
TODO: find a way to filter by SNI so I don't have to keep this ugly hack
2023-09-13 16:44:50 +07:00
chayleaf 32ea4fdd8d server: add keycloak 2023-08-28 00:46:51 +07:00
chayleaf 9e70d53ee5 server: add scanservjs, nixmsi: refix boot 2023-08-24 18:32:47 +07:00
chayleaf dd45e51bc1 router: fix dnat 2023-08-16 05:10:07 +07:00
chayleaf 5fed5f56c5 update inputs 2023-08-16 00:59:50 +07:00
chayleaf e97457bea0 router: block some random ip address 2023-08-15 06:19:39 +07:00
chayleaf 0d497d0e07 mss clamp in both directions... maybe? 2023-08-14 05:50:48 +07:00
chayleaf 6804ed705f router: hijack some dns requests 2023-08-13 22:47:57 +07:00
chayleaf ea1d12da4f router/metrics: denoise kea logs 2023-08-13 18:08:34 +07:00
chayleaf 4f650b2091 router: small port 25 changes
technically this is relevant for security since it blocks requests to
port 25 over ipv6 from clients other than the server, but it doesn't
matter on my network because i don't have ipv6
2023-08-13 16:40:21 +07:00
chayleaf fc95bb1e97 router: fix mailserver
and other misc changes
2023-08-13 04:59:20 +07:00
chayleaf 67509d0801 system/common: misc nix-related changes 2023-08-12 17:40:51 +07:00
chayleaf aa6fef1d9c router: mss clamping
also other misc changes such as fix boot on the laptop
2023-08-09 23:43:17 +07:00
chayleaf 5272bf603a add vim config for minimal systems
(also revert making fish the default shell on non-minimal systems)
2023-08-05 03:10:33 +07:00
chayleaf 9bf71ca13a nix: 2.16->2.15; home/fish/atuin: remove up key binding
nix-plugins built for a newer nix versions than pkgs.nix makes using
pkgs.nix impossible, and overriding pkgs.nix globally breaks some
derivations, so I have to do per-app overrides (couldn't find a way to
revert it for a single app for some reason). This reverts a nix-plugins
update to 2.16 so I can build it for 2.15 and escape the "symbol not
found" hell.

also override nixVersions.unstable to be 2.15 as well

finally, use custom code for atuin integration because I hate the way it
normally hijacks my up key
2023-08-04 08:30:16 +07:00
chayleaf 44877e1d59 update inputs 2023-07-31 02:17:16 +07:00
chayleaf fe587594ff server/home/hydra: set cpu/io scheduler to idle 2023-07-29 01:19:56 +07:00
chayleaf 5d21e5281e system/common: minor build optimizations 2023-07-29 00:53:28 +07:00
chayleaf e50348731e server/home/hydra: probably fix remaining visual errors 2023-07-28 22:35:31 +07:00
chayleaf 4d19f773df server/home/hydra: add queue runner to nix allowed users 2023-07-28 22:18:32 +07:00
chayleaf 50279b7c0f server/home/metrics: listen on 127.0.0.1 only 2023-07-28 21:56:34 +07:00
chayleaf ed333d5999 server/home: fix /etc/nixos/private 2023-07-28 21:15:28 +07:00
chayleaf e12b0a756d more ci fixes 2023-07-28 14:12:55 +07:00
chayleaf 443c52a29e further ci fixes 2023-07-28 13:51:25 +07:00
chayleaf 9f93d0cbcf ci: some fixes
more fixes are still needed
2023-07-28 13:19:43 +07:00
chayleaf 6e9682800f small random fixes 2023-07-28 12:02:37 +07:00
chayleaf db2c8d7c3d server/home: init; router/unbound: fix avahi resolver
this has binary cache, hydra, metrics, etc
2023-07-28 09:59:47 +07:00
chayleaf 7f5711eb8d router: fix comment 2023-07-21 01:55:12 +07:00
chayleaf ae8efef7b0 set router wlan channel; add home/{tmpfiles,nix-index.service} 2023-07-21 01:51:34 +07:00
chayleaf a6edc08515 update inputs
and remove some workarounds
2023-07-12 20:48:20 +07:00
chayleaf ab6e49cab5 vfio/lookingGlass: more robust way of applying overlay 2023-07-12 14:59:52 +07:00
chayleaf d2377ffb5d router: bikeshedding 2023-07-12 14:27:16 +07:00
chayleaf 0ac1502979 router: small update
Since I have to rebuild unbound and Linux anyway, might as well change
it a bit
2023-07-12 04:05:05 +07:00
chayleaf 64ff8be357 (mostly) update inputs
also add rz-ghidra, fix fdroid update script, and some other stuff
2023-07-12 03:26:50 +07:00
chayleaf f99ae26285 router/update-rkn-blacklist: verify json before committing 2023-07-02 17:12:29 +07:00
chayleaf 496dea4b00 router/unbound: allow temporary dynamic query modification 2023-07-02 17:01:41 +07:00
chayleaf 74b244ff22 router/unbound: fix dynamic set update inconsistency 2023-06-29 20:43:34 +07:00
chayleaf 4513390fca remove maubot package in favor of maubot.nix 2023-06-29 03:10:41 +07:00
chayleaf 25f54c7df6 server: btrfs->bcachefs; add maubot.nix; update searxng
router: add remote query editing support
2023-06-29 01:11:31 +07:00
chayleaf 5211eb8d71 router: fix unbound restarting on any flake update 2023-06-24 15:04:45 +07:00
chayleaf 2bdc0f1c8c router: fix iot blocking
for whatever reason the empty rtable didnt work
but i need some domains to work anyway so whatever
2023-06-24 14:52:13 +07:00
chayleaf f119df524c split system/hosts into hosts and devices 2023-06-24 13:07:42 +07:00
chayleaf 561a481f1a router: final fixes, it's now in production 2023-06-24 10:28:15 +07:00
chayleaf 8894e0d89c router: finally works 2023-06-24 07:12:11 +07:00
chayleaf a7c308a5f6 router: more progress 2023-06-20 15:47:36 +07:00
chayleaf 818ba92987 virtiofsd: replace with C package
The Rust package doesn't work due to this bug:
https://gitlab.com/virtio-fs/virtiofsd/-/issues
2023-06-15 15:36:35 +07:00
chayleaf 9b06667b57 bpi-r3: working config 2023-06-14 17:26:54 +07:00
chayleaf 683e9a747f ccache: use preprocessor mode; system76-scheduler: add osu! to games 2023-06-12 20:12:15 +07:00
chayleaf 26f1d0a864 bpi-r3: working boot 2023-06-12 17:07:38 +07:00
chayleaf 1adde1ba0e update inputs; bpi-r3: build kernel from source 2023-06-11 21:48:35 +07:00
chayleaf a96bd4bbcd bpi-r3: more work on booting
(still doesnt boot)

also some misc changes not related to bpi-r3
2023-06-11 18:02:38 +07:00
chayleaf ebc7241725 small cleanup; blender->blender-hip; linux-zen->linux_latest
the latter one is for system76-scheduler compatibility since they broke
stuff for zen kernel users
2023-05-30 10:05:41 +07:00
chayleaf b60e204f1e Revert "switch to mainline system76-scheduler module"
This partially reverts commit ac312dec98.
New version seems to mess with my laptop quite a bit (it hangs at rmmod
kheaders and breaks suspend).
2023-05-26 06:23:43 +07:00
chayleaf 1d3876bdca remove redundant mailserver config 2023-05-26 01:42:55 +07:00
chayleaf 1f0800986e don't put private files to store by default 2023-05-26 01:38:17 +07:00
chayleaf febfcb416b more polish for hm nixos module integration
still, it makes system config eval too slow so i'd like to avoid using
it
2023-05-25 11:34:27 +07:00
chayleaf ac312dec98 switch to mainline system76-scheduler module (and fix eval) 2023-05-25 06:32:52 +07:00
chayleaf 6a329dab38 refactor pkgs, allow NixOS HM module to be used 2023-05-25 06:26:52 +07:00