Commit graph

172 commits

Author SHA1 Message Date
chayleaf 4d19f773df server/home/hydra: add queue runner to nix allowed users 2023-07-28 22:18:32 +07:00
chayleaf 50279b7c0f server/home/metrics: listen on 127.0.0.1 only 2023-07-28 21:56:34 +07:00
chayleaf ed333d5999 server/home: fix /etc/nixos/private 2023-07-28 21:15:28 +07:00
chayleaf e12b0a756d more ci fixes 2023-07-28 14:12:55 +07:00
chayleaf 6d456e0483 nvfetcher: override nix version 2023-07-28 14:04:06 +07:00
chayleaf 443c52a29e further ci fixes 2023-07-28 13:51:25 +07:00
chayleaf 9f93d0cbcf ci: some fixes
more fixes are still needed
2023-07-28 13:19:43 +07:00
chayleaf 86c5ee4e05 fix ci (?) 2023-07-28 12:16:03 +07:00
chayleaf 6e9682800f small random fixes 2023-07-28 12:02:37 +07:00
chayleaf 64707b8084 add hydra jobs 2023-07-28 10:04:49 +07:00
chayleaf db2c8d7c3d server/home: init; router/unbound: fix avahi resolver
this has binary cache, hydra, metrics, etc
2023-07-28 09:59:47 +07:00
chayleaf 7f5711eb8d router: fix comment 2023-07-21 01:55:12 +07:00
chayleaf ae8efef7b0 set router wlan channel; add home/{tmpfiles,nix-index.service} 2023-07-21 01:51:34 +07:00
chayleaf a6edc08515 update inputs
and remove some workarounds
2023-07-12 20:48:20 +07:00
chayleaf ab6e49cab5 vfio/lookingGlass: more robust way of applying overlay 2023-07-12 14:59:52 +07:00
chayleaf d2377ffb5d router: bikeshedding 2023-07-12 14:27:16 +07:00
chayleaf 0ac1502979 router: small update
Since I have to rebuild unbound and Linux anyway, might as well change
it a bit
2023-07-12 04:05:05 +07:00
chayleaf 64ff8be357 (mostly) update inputs
also add rz-ghidra, fix fdroid update script, and some other stuff
2023-07-12 03:26:50 +07:00
chayleaf f99ae26285 router/update-rkn-blacklist: verify json before committing 2023-07-02 17:12:29 +07:00
chayleaf 496dea4b00 router/unbound: allow temporary dynamic query modification 2023-07-02 17:01:41 +07:00
chayleaf 74b244ff22 router/unbound: fix dynamic set update inconsistency 2023-06-29 20:43:34 +07:00
chayleaf 32b448eda6 home/{kakoune,helix}: small maintenance 2023-06-29 08:17:19 +07:00
chayleaf f1f95891c7 home: small formatting change 2023-06-29 07:50:49 +07:00
chayleaf ab604c45b1 home: random maintenance 2023-06-29 07:45:34 +07:00
chayleaf 4513390fca remove maubot package in favor of maubot.nix 2023-06-29 03:10:41 +07:00
chayleaf 25f54c7df6 server: btrfs->bcachefs; add maubot.nix; update searxng
router: add remote query editing support
2023-06-29 01:11:31 +07:00
chayleaf 5211eb8d71 router: fix unbound restarting on any flake update 2023-06-24 15:04:45 +07:00
chayleaf 2bdc0f1c8c router: fix iot blocking
for whatever reason the empty rtable didnt work
but i need some domains to work anyway so whatever
2023-06-24 14:52:13 +07:00
chayleaf db6a82f23f gitignore: add /result 2023-06-24 13:19:00 +07:00
chayleaf f119df524c split system/hosts into hosts and devices 2023-06-24 13:07:42 +07:00
chayleaf 561a481f1a router: final fixes, it's now in production 2023-06-24 10:28:15 +07:00
chayleaf 8894e0d89c router: finally works 2023-06-24 07:12:11 +07:00
chayleaf a7c308a5f6 router: more progress 2023-06-20 15:47:36 +07:00
chayleaf 818ba92987 virtiofsd: replace with C package
The Rust package doesn't work due to this bug:
https://gitlab.com/virtio-fs/virtiofsd/-/issues
2023-06-15 15:36:35 +07:00
chayleaf 9b06667b57 bpi-r3: working config 2023-06-14 17:26:54 +07:00
chayleaf 683e9a747f ccache: use preprocessor mode; system76-scheduler: add osu! to games 2023-06-12 20:12:15 +07:00
chayleaf 26f1d0a864 bpi-r3: working boot 2023-06-12 17:07:38 +07:00
chayleaf ecc746c284 linux_bpiR3: fix build 2023-06-12 03:48:33 +07:00
chayleaf 5ba32d4b74 bpi-r3: random kernel config changes 2023-06-12 03:38:17 +07:00
chayleaf 1adde1ba0e update inputs; bpi-r3: build kernel from source 2023-06-11 21:48:35 +07:00
chayleaf a96bd4bbcd bpi-r3: more work on booting
(still doesnt boot)

also some misc changes not related to bpi-r3
2023-06-11 18:02:38 +07:00
chayleaf ebc7241725 small cleanup; blender->blender-hip; linux-zen->linux_latest
the latter one is for system76-scheduler compatibility since they broke
stuff for zen kernel users
2023-05-30 10:05:41 +07:00
chayleaf b60e204f1e Revert "switch to mainline system76-scheduler module"
This partially reverts commit ac312dec98.
New version seems to mess with my laptop quite a bit (it hangs at rmmod
kheaders and breaks suspend).
2023-05-26 06:23:43 +07:00
chayleaf 1d3876bdca remove redundant mailserver config 2023-05-26 01:42:55 +07:00
chayleaf 1f0800986e don't put private files to store by default 2023-05-26 01:38:17 +07:00
chayleaf 69ce2ffdbc store secrets separate from this flake
This uses a native plugin (pkgs.nix-plugins) to avoid using --impure,
other options involving secret files are too limited for my use case as
I need eval-time access to secrets. Moving it to a private flake is
another option, but Nix flakes are poorly suited for non-monorepos.
Previously I just renamed .git to .git.bak to make sure Nix pulls the
"private" subdir into store as well, but this new system may be more
robust and can be extended to way be more secure in the future (e.g.
right now I copy the secret .nix files to store, but in general there's
no need to do that).

Of course the main drawback is that now I require a plugin for this
flake to work.
2023-05-26 00:46:38 +07:00
chayleaf febfcb416b more polish for hm nixos module integration
still, it makes system config eval too slow so i'd like to avoid using
it
2023-05-25 11:34:27 +07:00
chayleaf ac312dec98 switch to mainline system76-scheduler module (and fix eval) 2023-05-25 06:32:52 +07:00
chayleaf 6a329dab38 refactor pkgs, allow NixOS HM module to be used 2023-05-25 06:26:52 +07:00
chayleaf d86b83c319 update private config sample 2023-05-25 05:09:17 +07:00