commit d80c442a57e56868ce62447109e91c581cdce3d9 · ryan.freumh.org/nixos

+19 -36

flake.lock

···

       134
       134
        
               ]

     

       135
       135
        
             },

     

       136
       136
        
             "locked": {

     

       137
       137
       -
               "lastModified": 1732635161,

     

       138
       138
       -
               "narHash": "sha256-B0oHgnVyXJndyIA8uiOW/CwW5hP/GsrrzV1UGNHNSAw=",

     

       137
       137
       +
               "lastModified": 1733054177,

     

       138
       138
       +
               "narHash": "sha256-Jq/EAXsXO1Ul5iqLx71H2/ffGvmE3GTWDlujpbwdXIY=",

     

       139
       139
        
               "owner": "RyanGibb",

     

       140
       140
        
               "repo": "eilean-nix",

     

       141
       141
       -
               "rev": "bba3719f32b57b853247e299ea44500938d69166",

     

       141
       141
       +
               "rev": "7b05921dc47248b4a87cba67a1e53a642adee1fc",

     

       142
       142
        
               "type": "github"

     

       143
       143
        
             },

     

       144
       144
        
             "original": {

     
···

       450
       450
        
               ]

     

       451
       451
        
             },

     

       452
       452
        
             "locked": {

     

       453
       453
       -
               "lastModified": 1726989464,

     

       454
       454
       -
               "narHash": "sha256-Vl+WVTJwutXkimwGprnEtXc/s/s8sMuXzqXaspIGlwM=",

     

       453
       453
       +
               "lastModified": 1732466619,

     

       454
       454
       +
               "narHash": "sha256-T1e5oceypZu3Q8vzICjv1X/sGs9XfJRMW5OuXHgpB3c=",

     

       455
       455
        
               "owner": "nix-community",

     

       456
       456
        
               "repo": "home-manager",

     

       457
       457
       -
               "rev": "2f23fa308a7c067e52dfcc30a0758f47043ec176",

     

       457
       457
       +
               "rev": "f3111f62a23451114433888902a55cf0692b408d",

     

       458
       458
        
               "type": "github"

     

       459
       459
        
             },

     

       460
       460
        
             "original": {

     

       461
       461
        
               "owner": "nix-community",

     

       462
       462
       -
               "ref": "release-24.05",

     

       462
       462
       +
               "ref": "release-24.11",

     

       463
       463
        
               "repo": "home-manager",

     

       464
       464
        
               "type": "github"

     

       465
       465
        
             }

     
···

       594
       594
        
               "nmd": "nmd_2"

     

       595
       595
        
             },

     

       596
       596
        
             "locked": {

     

       597
       597
       -
               "lastModified": 1709879753,

     

       598
       598
       -
               "narHash": "sha256-zEpy3eweBus/cW/oRMBINps6Bnlazpa7TadonwWibHA=",

     

       597
       597
       +
               "lastModified": 1720396533,

     

       598
       598
       +
               "narHash": "sha256-UFzk/hZWO1VkciIO5UPaSpJN8s765wsngUSvtJM6d5Q=",

     

       599
       599
        
               "owner": "nix-community",

     

       600
       600
        
               "repo": "nix-on-droid",

     

       601
       601
       -
               "rev": "7b3cc6e3f9919b2d23003cfafb60c146c3f45793",

     

       601
       601
       +
               "rev": "f3d3b8294039f2f9a8fb7ea82c320f29c6b0fe25",

     

       602
       602
        
               "type": "github"

     

       603
       603
        
             },

     

       604
       604
        
             "original": {

     

       605
       605
        
               "owner": "nix-community",

     

       606
       606
       -
               "ref": "release-23.11",

     

       606
       606
       +
               "ref": "release-24.05",

     

       607
       607
        
               "repo": "nix-on-droid",

     

       608
       608
        
               "type": "github"

     

       609
       609
        
             }

     
···

       715
       715
        
           },

     

       716
       716
        
           "nixpkgs-for-bootstrap": {

     

       717
       717
        
             "locked": {

     

       718
       718
       -
               "lastModified": 1708105575,

     

       719
       719
       -
               "narHash": "sha256-sS4AItZeUnAei6v8FqxNlm+/27MPlfoGym/TZP0rmH0=",

     

       718
       718
       +
               "lastModified": 1720244366,

     

       719
       719
       +
               "narHash": "sha256-WrDV0FPMVd2Sq9hkR5LNHudS3OSMmUrs90JUTN+MXpA=",

     

       720
       720
        
               "owner": "NixOS",

     

       721
       721
        
               "repo": "nixpkgs",

     

       722
       722
       -
               "rev": "1d1817869c47682a6bee85b5b0a6537b6c0fba26",

     

       722
       722
       +
               "rev": "49ee0e94463abada1de470c9c07bfc12b36dcf40",

     

       723
       723
        
               "type": "github"

     

       724
       724
        
             },

     

       725
       725
        
             "original": {

     

       726
       726
        
               "owner": "NixOS",

     

       727
       727
        
               "repo": "nixpkgs",

     

       728
       728
       -
               "rev": "1d1817869c47682a6bee85b5b0a6537b6c0fba26",

     

       729
       729
       -
               "type": "github"

     

       730
       730
       -
             }

     

       731
       731
       -
           },

     

       732
       732
       -
           "nixpkgs-neovim": {

     

       733
       733
       -
             "locked": {

     

       734
       734
       -
               "lastModified": 1721818836,

     

       735
       735
       -
               "narHash": "sha256-oN8i9xd91okESBjp2LqXpVI61x3X23F3Y/FIS8bv4Xo=",

     

       736
       736
       -
               "owner": "nixos",

     

       737
       737
       -
               "repo": "nixpkgs",

     

       738
       738
       -
               "rev": "a76212122970925d09aa2021a93e00d359e631dd",

     

       739
       739
       -
               "type": "github"

     

       740
       740
       -
             },

     

       741
       741
       -
             "original": {

     

       742
       742
       -
               "owner": "nixos",

     

       743
       743
       -
               "repo": "nixpkgs",

     

       744
       744
       -
               "rev": "a76212122970925d09aa2021a93e00d359e631dd",

     

       728
       728
       +
               "rev": "49ee0e94463abada1de470c9c07bfc12b36dcf40",

     

       745
       729
        
               "type": "github"

     

       746
       730
        
             }

     

       747
       731
        
           },

     
···

       841
       825
        
           },

     

       842
       826
        
           "nixpkgs_7": {

     

       843
       827
        
             "locked": {

     

       844
       844
       -
               "lastModified": 1731797254,

     

       845
       845
       -
               "narHash": "sha256-df3dJApLPhd11AlueuoN0Q4fHo/hagP75LlM5K1sz9g=",

     

       828
       828
       +
               "lastModified": 1732981179,

     

       829
       829
       +
               "narHash": "sha256-F7thesZPvAMSwjRu0K8uFshTk3ZZSNAsXTIFvXBT+34=",

     

       846
       830
        
               "owner": "nixos",

     

       847
       831
        
               "repo": "nixpkgs",

     

       848
       848
       -
               "rev": "e8c38b73aeb218e27163376a2d617e61a2ad9b59",

     

       832
       832
       +
               "rev": "62c435d93bf046a5396f3016472e8f7c8e2aed65",

     

       849
       833
        
               "type": "github"

     

       850
       834
        
             },

     

       851
       835
        
             "original": {

     

       852
       836
        
               "owner": "nixos",

     

       853
       853
       -
               "ref": "nixos-24.05",

     

       837
       837
       +
               "ref": "nixos-24.11",

     

       854
       838
        
               "repo": "nixpkgs",

     

       855
       839
        
               "type": "github"

     

       856
       840
        
             }

     
···

       1097
       1081
        
               "nix-rpi5": "nix-rpi5",

     

       1098
       1082
        
               "nixos-hardware": "nixos-hardware",

     

       1099
       1083
        
               "nixpkgs": "nixpkgs_7",

     

       1100
       1100
       -
               "nixpkgs-neovim": "nixpkgs-neovim",

     

       1101
       1084
        
               "nixpkgs-unstable": "nixpkgs-unstable"

     

       1102
       1085
        
             }

     

       1103
       1086
        
           },

+6 -33

flake.nix

···

       1
       1
        
       {

     

       2
       2
        
         inputs = {

     

       3
       3
       -
           nixpkgs.url = "github:nixos/nixpkgs/nixos-24.05";

     

       3
       3
       +
           nixpkgs.url = "github:nixos/nixpkgs/nixos-24.11";

     

       4
       4
        
           nixpkgs-unstable.url = "github:nixos/nixpkgs/nixos-unstable";

     

       5
       5
       -
           nixpkgs-neovim.url =

     

       6
       6
       -
             "github:nixos/nixpkgs/a76212122970925d09aa2021a93e00d359e631dd";

     

       7
       5
        
           nixos-hardware.url = "github:nixos/nixos-hardware";

     

       8
       8
       -
           home-manager.url = "github:nix-community/home-manager/release-24.05";

     

       6
       6
       +
           home-manager.url = "github:nix-community/home-manager/release-24.11";

     

       9
       7
        
           home-manager-unstable.url = "github:nix-community/home-manager/master";

     

       10
       8
        
           agenix.url = "github:ryantm/agenix";

     

       11
       9
        
           deploy-rs.url = "github:serokell/deploy-rs";

     

       12
       12
       -
           nix-on-droid.url = "github:nix-community/nix-on-droid/release-23.11";

     

       10
       10
       +
           nix-on-droid.url = "github:nix-community/nix-on-droid/release-24.05";

     

       13
       11
        
           eon.url = "github:RyanGibb/eon";

     

       14
       12
        
           eilean.url = "github:RyanGibb/eilean-nix/main";

     

       15
       13
        
           alec-website.url = "github:alexanderhthompson/website";

     
···

       34
       32
        
           hyperbib-eeg.inputs.nixpkgs.follows = "nixpkgs";

     

       35
       33
        
         };

     

       36
       34
        
       

     

       37
       37
       -
         outputs = { self, nixpkgs, nixpkgs-unstable, nixpkgs-neovim, home-manager

     

       35
       35
       +
         outputs = { self, nixpkgs, nixpkgs-unstable, home-manager

     

       38
       36
        
           , home-manager-unstable, agenix, deploy-rs, nix-on-droid, eilean, ...

     

       39
       37
        
           }@inputs:

     

       40
       38
        
           let

     
···

       55
       53
        
                   # to override attributes of a package

     

       56
       54
        
                   # package = prev.package.overrideAttrs

     

       57
       55
        
                   #  (_: { patches = [ ./pkgs/package.patch ]; });

     

       58
       58
       -
                   neovim-unwrapped =

     

       59
       59
       -
                     (import nixpkgs-neovim { inherit system; }).neovim-unwrapped;

     

       60
       60
       -
                   sway-unwrapped = prev.callPackage ./pkgs/sway-im/package.nix {

     

       61
       61
       -
                     libdrm = prev.libdrm;

     

       62
       62
       -
                     wlroots = prev.callPackage ./pkgs/wlroots/default.nix {

     

       63
       63
       -
                       # for libdrm >=2.4.120

     

       64
       64
       -
                       mesa = prev.mesa;

     

       65
       65
       -
                       wayland-protocols = prev.wayland-protocols.overrideAttrs

     

       66
       66
       -
                         (old: rec {

     

       67
       67
       -
                           pname = "wayland-protocols";

     

       68
       68
       -
                           version = "1.33";

     

       69
       69
       -
                           src = prev.fetchurl {

     

       70
       70
       -
                             url =

     

       71
       71
       -
                               "https://gitlab.freedesktop.org/wayland/${pname}/-/releases/${version}/downloads/${pname}-${version}.tar.xz";

     

       72
       72
       -
                             hash =

     

       73
       73
       -
                               "sha256-lPDFCwkNbmGgP2IEhGexmrvoUb5OEa57NvZfi5jDljo=";

     

       74
       74
       -
                           };

     

       75
       75
       -
                         });

     

       76
       76
       -
                     };

     

       77
       77
       -
                   };

     

       78
       78
       -
                   gnome-calendar = final.overlay-unstable.gnome-calendar;

     

       79
       56
        
                   opam = final.overlay-unstable.opam.overrideAttrs (_: {

     

       80
       57
        
                     src = final.fetchurl {

     

       81
       58
        
                       url =

     
···

       91
       68
        
             nixosConfigurations = let

     

       92
       69
        
               mkMode = mode: host:

     

       93
       70
        
                 let

     

       94
       94
       -
                   host-nixpkgs =

     

       95
       95
       -
                     if host == "elephant" then nixpkgs-unstable else nixpkgs;

     

       96
       96
       -
                   host-home-manager = if host == "elephant" then

     

       97
       97
       -
                     home-manager-unstable

     

       98
       98
       -
                   else

     

       99
       99
       -
                     home-manager;

     

       71
       71
       +
                   host-nixpkgs = nixpkgs;

     

       72
       72
       +
                   host-home-manager = home-manager;

     

       100
       73
        
                 in host-nixpkgs.lib.nixosSystem {

     

       101
       74
        
                   # use system from config.localSystem

     

       102
       75
        
                   # see https://github.com/NixOS/nixpkgs/blob/5297d584bcc5f95c8e87c631813b4e2ab7f19ecc/nixos/lib/eval-config.nix#L55

+1 -1

home/gui.nix

···

       32
       32
        
             };

     

       33
       33
        
             pointerCursor = {

     

       34
       34
        
               name = "Adwaita";

     

       35
       35
       -
               package = pkgs.gnome.adwaita-icon-theme;

     

       35
       35
       +
               package = pkgs.adwaita-icon-theme;

     

       36
       36
        
               size = 32;

     

       37
       37
        
             };

     

       38
       38
        
             file = {

+2 -2

home/i3.nix

···

       19
       19
        
           displays = "arandr";

     

       20
       20
        
           bar = "i3bar";

     

       21
       21
        
           notification_deamon = "dunst";

     

       22
       22
       -
           i3-workspace-history = "${i3-workspace-history}";

     

       23
       23
       -
           i3-workspace-history-args = "";

     

       22
       22
       +
           i3_workspace_history = "${i3-workspace-history}";

     

       23
       23
       +
           i3_workspace_history_args = "";

     

       24
       24
        
         };

     

       25
       25
        
         util = import ./util.nix { inherit pkgs lib; };

     

       26
       26
        
         cfg = config.custom.gui.i3;

+1 -1

home/nvim/default.nix

···

       61
       61
        
             vimAlias = true;

     

       62
       62
        
             extraPackages = with pkgs;

     

       63
       63
        
               [ ripgrep nixd ] ++ lib.lists.optionals cfg.nvim-lsps [

     

       64
       64
       -
                 nixfmt

     

       64
       64
       +
                 nixfmt-rfc-style

     

       65
       65
        
                 # stop complaining when launching but a devshell is better

     

       66
       66
        
                 ocamlPackages.ocaml-lsp

     

       67
       67
        
                 ocamlPackages.ocamlformat

+1 -1

home/nvim/lsp.lua

···

       37
       37
        
       local lspconfig = require('lspconfig')

     

       38
       38
        
       

     

       39
       39
        
       -- Enable some language servers with the additional completion capabilities offered by nvim-cmp

     

       40
       40
       -
       local servers = { 'nixd', 'ocamllsp', 'clangd', 'rust_analyzer', 'pyright', 'tsserver', 'gopls', 'typst_lsp' }

     

       40
       40
       +
       local servers = { 'nixd', 'ocamllsp', 'clangd', 'rust_analyzer', 'pyright', 'gopls', 'typst_lsp' }

     

       41
       41
        
       for _, lsp in ipairs(servers) do

     

       42
       42
        
       	lspconfig[lsp].setup {

     

       43
       43
        
       		on_attach = On_attach,

+2 -2

home/sway.nix

···

       21
       21
        
           displays = "wdisplays";

     

       22
       22
        
           bar = "swaybar";

     

       23
       23
        
           notification_deamon = "dunst";

     

       24
       24
       -
           i3-workspace-history = "${i3-workspace-history}";

     

       25
       25
       -
           i3-workspace-history-args = "-sway";

     

       24
       24
       +
           i3_workspace_history = "${i3-workspace-history}";

     

       25
       25
       +
           i3_workspace_history_args = "-sway";

     

       26
       26
        
         };

     

       27
       27
        
         util = import ./util.nix { inherit pkgs lib; };

     

       28
       28
        
         cfg = config.custom.gui.sway;

+2 -2

home/wm/config.d/bindings

···

       275
       275
        
       

     

       276
       276
        
       bindsym button2 kill

     

       277
       277
        
       

     

       278
       278
       -
       bindsym $mod+i exec i3-workspace-history -mode=forward @i3-workspace-history-args@; exec st workspace -t 500

     

       279
       279
       -
       bindsym $mod+o exec i3-workspace-history -mode=back    @i3-workspace-history-args@; exec st workspace -t 500

     

       278
       278
       +
       bindsym $mod+i exec @i3_workspace_history@ -mode=forward @i3_workspace_history_args@; exec st workspace -t 500

     

       279
       279
       +
       bindsym $mod+o exec @i3_workspace_history@ -mode=back    @i3_workspace_history_args@; exec st workspace -t 500

     

       280
       280
        
       

     

       281
       281
        
       set $mode_gaps gaps

     

       282
       282
        
       mode "$mode_gaps" {

+1 -1

home/wm/config.d/exec

···

       6
       6
        
       

     

       7
       7
        
       exec --no-startup-id fcitx5 -d

     

       8
       8
        
       

     

       9
       9
       -
       exec i3-workspace-history @i3-workspace-history-args@

     

       9
       9
       +
       exec @i3_workspace_history@ @i3_workspace_history_args@

+2 -2

hosts/elephant/default.nix

···

       49
       49
        
       

     

       50
       50
        
         # Add hardware transcoding support to `ffmpeg_6` and derived packages (like jellyfin-ffmpeg)

     

       51
       51
        
         # for Intel Alder Lake N100's Quick Sync Video (QSV) using Intel OneVPL.

     

       52
       52
       -
         hardware.opengl = {

     

       52
       52
       +
         hardware.graphics = {

     

       53
       53
        
           enable = true;

     

       54
       54
        
           extraPackages = with pkgs; [

     

       55
       55
        
             # Video Acceleration API (VA-API) user mode driver

     

       56
       56
        
             intel-media-driver

     

       57
       57
        
             # Intel Video Processing Library (VPL) API runtime implementation

     

       58
       58
        
             # replace with`onevpl-intel-gpu` after https://github.com/NixOS/nixpkgs/pull/264621

     

       59
       59
       -
             onevpl-intel-gpu

     

       59
       59
       +
             vpl-gpu-rt

     

       60
       60
        
           ];

     

       61
       61
        
         };

     

       62
       62
        
         nixpkgs.config.packageOverrides = prev: {

-2

hosts/elephant/hardware-configuration.nix

···

       9
       9
        
         boot.kernelModules = [ "kvm-intel" ];

     

       10
       10
        
         boot.extraModulePackages = [ ];

     

       11
       11
        
       

     

       12
       12
       -
         boot.kernelPackages = config.boot.zfs.package.latestCompatibleLinuxPackages;

     

       13
       13
       -
       

     

       14
       12
        
         fileSystems."/" = {

     

       15
       13
        
           device = "/dev/disk/by-uuid/d1b7f032-9c43-4a57-b531-4b1d6f88c999";

     

       16
       14
        
           fsType = "ext4";

+1 -1

hosts/elephant/owntracks.nix

···

       21
       21
        
             default = 8083;

     

       22
       22
        
           };

     

       23
       23
        
           domain = lib.mkOption {

     

       24
       24
       -
             type = lib.types.nullOr lib.types.string;

     

       24
       24
       +
             type = lib.types.nullOr lib.types.str;

     

       25
       25
        
             default = null;

     

       26
       26
        
           };

     

       27
       27
        
         };

+6 -8

hosts/elephant/services.nix

···

       28
       28
        
           virtualHosts = {

     

       29
       29
        
             "nix-cache.vpn.freumh.org" = { listenAddresses = [ "100.64.0.9" ]; };

     

       30
       30
        
             "jellyfin.vpn.freumh.org" = {

     

       31
       31
       -
               enableSSL = true;

     

       31
       31
       +
               onlySSL = true;

     

       32
       32
        
               listenAddresses = [ "100.64.0.9" ];

     

       33
       33
        
               locations."/" = {

     

       34
       34
        
                 proxyPass = ''

     
···

       38
       38
        
               };

     

       39
       39
        
             };

     

       40
       40
        
             "transmission.vpn.freumh.org" = {

     

       41
       41
       -
               enableSSL = true;

     

       41
       41
       +
               onlySSL = true;

     

       42
       42
        
               listenAddresses = [ "100.64.0.9" ];

     

       43
       43
        
               locations."/" = {

     

       44
       44
        
                 proxyPass = with config.services.transmission.settings; ''

     
···

       47
       47
        
               };

     

       48
       48
        
             };

     

       49
       49
        
             "nextcloud.vpn.freumh.org" = {

     

       50
       50
       -
               enableSSL = true;

     

       50
       50
       +
               onlySSL = true;

     

       51
       51
        
               listenAddresses = [ "100.64.0.9" ];

     

       52
       52
        
             };

     

       53
       53
        
             "owntracks.vpn.freumh.org" = {

     

       54
       54
       -
               enableSSL = true;

     

       54
       54
       +
               onlySSL = true;

     

       55
       55
        
               listenAddresses = [ "100.64.0.9" ];

     

       56
       56
        
             };

     

       57
       57
        
             "immich.vpn.freumh.org" = {

     

       58
       58
       -
               enableSSL = true;

     

       58
       58
       +
               onlySSL = true;

     

       59
       59
        
               listenAddresses = [ "100.64.0.9" ];

     

       60
       60
        
               locations."/" = {

     

       61
       61
        
                 proxyPass = with config.services.immich; ''

     
···

       94
       94
        
         services.samba = {

     

       95
       95
        
           enable = true;

     

       96
       96
        
           openFirewall = true;

     

       97
       97
       -
           securityType = "user";

     

       98
       97
        
           settings = {

     

       99
       98
        
             global = {

     

       100
       99
        
               workgroup = "WORKGROUP";

     
···

       110
       109
        
               "guest account" = "nobody";

     

       111
       110
        
               "map to guest" = "bad user";

     

       112
       111
        
             };

     

       113
       113
       -
           };

     

       114
       114
       -
           shares = {

     

       115
       112
        
             tank = {

     

       116
       113
        
               path = "/tank/";

     

       117
       114
        
               browseable = "yes";

     
···

       140
       137
        
         services.transmission = {

     

       141
       138
        
           enable = true;

     

       142
       139
        
           openRPCPort = true;

     

       140
       140
       +
           package = pkgs.transmission_3;

     

       143
       141
        
           settings = {

     

       144
       142
        
             download-dir = "/tank/media";

     

       145
       143
        
             incomplete-dir-enabled = false;

+4 -4

hosts/gecko/default.nix

···

       50
       50
        
       

     

       51
       51
        
         environment.systemPackages = with pkgs; [

     

       52
       52
        
           dell-command-configure

     

       53
       53
       -
           gnome.file-roller

     

       53
       53
       +
           file-roller

     

       54
       54
        
           unzip

     

       55
       55
       -
           gnome.cheese

     

       55
       55
       +
           cheese

     

       56
       56
        
           gparted

     

       57
       57
        
           chromium

     

       58
       58
        
           calibre

     
···

       71
       71
        
           evince

     

       72
       72
        
           pdfpc

     

       73
       73
        
           krop

     

       74
       74
       -
           transmission

     

       75
       75
       -
           transmission-gtk

     

       74
       74
       +
           transmission_4

     

       75
       75
       +
           transmission_4-gtk

     

       76
       76
        
           libreoffice

     

       77
       77
        
           obs-studio

     

       78
       78
        
           xournalpp

+5 -8

hosts/owl/default.nix

···

       93
       93
        
           owner = "${config.systemd.services.matrix-synapse.serviceConfig.User}";

     

       94
       94
        
           group = "${config.systemd.services.matrix-synapse.serviceConfig.Group}";

     

       95
       95
        
         };

     

       96
       96
       -
         age.secrets.matrix-sliding-sync = {

     

       97
       97
       -
           file = ../../secrets/matrix-sliding-sync.age;

     

       98
       98
       -
         };

     

       99
       96
        
         eilean.matrix = {

     

       100
       97
        
           enable = true;

     

       101
       98
        
           registrationSecretFile = config.age.secrets.matrix-shared-secret.path;

     
···

       103
       100
        
           bridges.signal = true;

     

       104
       101
        
           bridges.instagram = true;

     

       105
       102
        
           bridges.messenger = true;

     

       106
       106
       -
           slidingSync = {

     

       107
       107
       -
             enable = true;

     

       108
       108
       -
             secretFile = config.age.secrets.matrix-sliding-sync.path;

     

       109
       109
       -
           };

     

       110
       103
        
         };

     

       111
       104
        
         eilean.turn.enable = true;

     

       112
       105
        
         eilean.mastodon.enable = true;

     
···

       412
       405
        
           "net.ipv6.conf.all.forwarding" = 1;

     

       413
       406
        
         };

     

       414
       407
        
       

     

       415
       415
       -
         services.headscale.settings.dns_config.extra_records = vpnRecords;

     

       408
       408
       +
         services.headscale.settings.dns = {

     

       409
       409
       +
           extra_records = vpnRecords;

     

       410
       410
       +
           base_domain = "vpn.freumh.org";

     

       411
       411
       +
           nameservers.global = config.networking.nameservers;

     

       412
       412
       +
         };

     

       416
       413
        
       

     

       417
       414
        
         age.secrets.restic-owl.file = ../../secrets/restic-owl.age;

     

       418
       415
        
         services.restic.backups.${config.networking.hostName} = {

+3 -1

hosts/shrew/hardware-configuration.nix

···

       36
       36
        
         powerManagement.cpuFreqGovernor = lib.mkDefault "ondemand";

     

       37
       37
        
       

     

       38
       38
        
         hardware.raspberry-pi."4".fkms-3d.enable = true;

     

       39
       39
       -
         boot.loader.raspberryPi.firmwareConfig = "config_hdmi_boost=5";

     

       39
       39
       +
         # TODO use https://github.com/nix-community/raspberry-pi-nix?tab=readme-ov-file#configtxt-generation

     

       40
       40
       +
         # https://github.com/NixOS/nixpkgs/pull/241534#issuecomment-2495645336

     

       41
       41
       +
         #boot.loader.raspberryPi.firmwareConfig = "config_hdmi_boost=5";

     

       40
       42
        
       

     

       41
       43
        
         nixpkgs.hostPlatform = "aarch64-linux";

     

       42
       44
        
       }

+2 -2

hosts/vulpine/default.nix

···

       41
       41
        
       

     

       42
       42
        
         environment.systemPackages = with pkgs; [

     

       43
       43
        
           pciutils

     

       44
       44
       -
           gnome.file-roller

     

       44
       44
       +
           file-roller

     

       45
       45
        
           unzip

     

       46
       46
       -
           gnome.cheese

     

       46
       46
       +
           cheese

     

       47
       47
        
           chromium

     

       48
       48
        
           calibre

     

       49
       49
        
           zotero

+2 -1

modules/gui/default.nix

···

       17
       17
        
           i18n = {

     

       18
       18
        
             defaultLocale = "en_GB.UTF-8";

     

       19
       19
        
             inputMethod = {

     

       20
       20
       -
               enabled = "fcitx5";

     

       20
       20
       +
               enable = true;

     

       21
       21
       +
               type = "fcitx5";

     

       21
       22
        
               fcitx5.addons = with pkgs; [

     

       22
       23
        
                 fcitx5-rime

     

       23
       24
        
                 fcitx5-chinese-addons

+3 -1

modules/gui/i3.nix

···

       34
       34
        
             xf86_input_wacom

     

       35
       35
        
           ];

     

       36
       36
        
       

     

       37
       37
       +
           # TODO read this

     

       38
       38
       +
           # https://github.com/flatpak/xdg-desktop-portal/blob/1.18.1/doc/portals.conf.rst.in

     

       37
       39
        
           xdg.portal = {

     

       38
       40
        
             enable = true;

     

       39
       41
        
             wlr.enable = true;

     

       40
       40
       -
             gtkUsePortal = false;

     

       42
       42
       +
             config.common.default = "*";

     

       41
       43
        
           };

     

       42
       44
        
       

     

       43
       45
        
           services.geoclue2.appConfig.redshift = {

+3 -1

modules/gui/sway.nix

···

       34
       34
        
             ];

     

       35
       35
        
           };

     

       36
       36
        
       

     

       37
       37
       +
           # TODO read this

     

       38
       38
       +
           # https://github.com/flatpak/xdg-desktop-portal/blob/1.18.1/doc/portals.conf.rst.in

     

       37
       39
        
           xdg.portal = {

     

       38
       40
        
             enable = true;

     

       39
       41
        
             wlr.enable = true;

     

       40
       40
       -
             gtkUsePortal = false;

     

       42
       42
       +
             config.common.default = "*";

     

       41
       43
        
           };

     

       42
       44
        
       

     

       43
       45
        
           services.geoclue2.appConfig.gammastep = {

-7

secrets/matrix-sliding-sync.age

···

       1
       1
       -
       age-encryption.org/v1

     

       2
       2
       -
       -> ssh-ed25519 2wDnOw yIGmMdEnqCDU+aJKKDd1pCHi/sNKDqKWD40Otgpzzhc

     

       3
       3
       -
       XzXUgmSfXdam//SxQRGIQEhwXVnzBaO95tDlUavkcvw

     

       4
       4
       -
       -> ssh-ed25519 suwb0g PtiPoAcltY6fV6eDGIu0UHBLd6nrf9fHlQTiA3U5tk4

     

       5
       5
       -
       KTCz34YWgak1vRzp1s8tS+uU3WCdLNf3Oj/SMuXSyno

     

       6
       6
       -
       --- nrf3xTg5+L32y7n8VHZEcNCkB9aDbgc8pNVvT22jwxI

     

       7
       7
       -
       �G�i91_���4M�c�I�-m_<�Bk"!������{wi!��#W�غ�L�4r���3����
m�8voe�CO��0�jάg� �?���"����x͸.���RՊ���܅L��

-1

secrets/secrets.nix

···

       31
       31
        
         "eon-capnp.age".publicKeys = user ++ [ owl ];

     

       32
       32
        
         "eon-vpn.freumh.org.cap.age".publicKeys = user ++ [ elephant ];

     

       33
       33
        
         "eon-sirref-primary.cap.age".publicKeys = user ++ [ owl ];

     

       34
       34
       -
         "matrix-sliding-sync.age".publicKeys = user ++ [ owl ];

     

       35
       34
        
       }