comparing 5cfee059f640bb85ad04947969f686f0e0f33b39 and master on ryan.freumh.org/nixos

+4 -7

README.md

···

       26
       26
        
       2. Clone this repository and follow the [Home Manager manual](https://nix-community.github.io/home-manager/index.xhtml#sec-install-standalone).

     

       27
       27
        
       3. Deploy the profile with `home-manager switch`.

     

       28
       28
        
       

     

       29
       29
       -
       Alternatively, use the home-manager command after installing it:

     

       30
       30
       -
       `home-manager --flake /path/to/repo#<username>@<hostname> switch`

     

       31
       31
       -
       

     

       32
       29
        
       ### Nix-on-Droid

     

       33
       30
        
       

     

       34
       31
        
       See [upstream](https://github.com/nix-community/nix-on-droid/).

     
···

       44
       41
        
             - SBCs are small mammals ([Eulipotyphla](https://en.wikipedia.org/wiki/Eulipotyphla)), e.g. the [Home Assistant](https://www.home-assistant.io/) server and [Zigbee](https://en.wikipedia.org/wiki/Zigbee) bridge [`shrew`](./hosts/shrew).

     

       45
       42
        
             - Desktops are carnivores ([Carnivora](https://en.wikipedia.org/wiki/Carnivora)), e.g. the tower PC [`vulpine`](./hosts/vulpine).

     

       46
       43
        
           - Mobile (battery powered) hosts are reptiles, e.g. the laptop [`gecko`](./hosts/gecko).

     

       47
       47
       -
           - Virtual hosts are birds, e.g. the virtual private server [`owl`](./hosts/owl).

     

       48
       48
       -
           - Work-associated hosts are aquatic.

     

       44
       44
       +
           - Virtual hosts are birds, e.g. the virtual private server (VPS) [`owl`](./hosts/owl).

     

       45
       45
       +
           - Work-associated hosts are aquatic, e.g. the VPSs for [Eon](https://github.com/RyanGibb/eon) experiments [`duck`](./hosts/duck), and running the [EEG](https://www.cst.cam.ac.uk/research/eeg) infrastructure including using the federated [Shibboleth](https://www.shibboleth.net/) identity server to provision [Matrix](https://matrix.org/) accounts [`swan`](./hosts/swan).

     

       49
       46
        
           - [`barnacle`](./hosts/barnacle/default.nix) builds an ISO image that can be written to media like a USB flash drive to create a read-only live USB that can be booted to provide the custom environment on all my other hosts and used to, for example, install an operating system, with the [`install.sh`](./hosts/barnacle/install.sh) script.

     

       50
       47
        
         - Each host directory typically contains,

     

       51
       48
        
           - `default.nix` - Main configuration entry point that imports other modules.

     

       52
       49
        
           - `hardware-configuration.nix` - Hardware-specific configuration generated by `nixos-generate-config`.

     

       53
       53
       -
           - `minimal.nix` - A minimal configuration that can be useful when updating with insuffient disk space.

     

       50
       50
       +
           - `minimal.nix` - A minimal configuration that can be useful when updating with insufficient disk space.

     

       54
       51
        
             The minimal configuration can be build, the `default.nix` system garbage collected, and then the updated configuration built.

     

       55
       52
        
             Note this precludes trivial rollback.

     

       56
       56
       -
           - Other modules seperating functionality, such as `services.nix`.

     

       53
       53
       +
           - Other modules separating functionality, such as `services.nix`.

     

       57
       54
        
       - [`modules/`](./modules/) - NixOS modules of common functionality extracted into modular components which can be enabled by host configurations.

     

       58
       55
        
       - [`pkgs/`](./pkgs/) - Custom package definitions for packages not available in nixpkgs or requiring modifications.

     

       59
       56
        
       - [`home/`](./home/) - Home-manager NixOS modules configurations.

+60 -38

flake.lock

···

       102
       102
        
               "type": "github"

     

       103
       103
        
             }

     

       104
       104
        
           },

     

       105
       105
       +
           "disko": {

     

       106
       106
       +
             "inputs": {

     

       107
       107
       +
               "nixpkgs": [

     

       108
       108
       +
                 "nixpkgs"

     

       109
       109
       +
               ]

     

       110
       110
       +
             },

     

       111
       111
       +
             "locked": {

     

       112
       112
       +
               "lastModified": 1743598667,

     

       113
       113
       +
               "narHash": "sha256-ViE7NoFWytYO2uJONTAX35eGsvTYXNHjWALeHAg8OQY=",

     

       114
       114
       +
               "owner": "nix-community",

     

       115
       115
       +
               "repo": "disko",

     

       116
       116
       +
               "rev": "329d3d7e8bc63dd30c39e14e6076db590a6eabe6",

     

       117
       117
       +
               "type": "github"

     

       118
       118
       +
             },

     

       119
       119
       +
             "original": {

     

       120
       120
       +
               "owner": "nix-community",

     

       121
       121
       +
               "repo": "disko",

     

       122
       122
       +
               "type": "github"

     

       123
       123
       +
             }

     

       124
       124
       +
           },

     

       105
       125
        
           "eilean": {

     

       106
       126
        
             "inputs": {

     

       107
       127
        
               "eon": [

     
···

       136
       156
        
               "opam-nix": "opam-nix"

     

       137
       157
        
             },

     

       138
       158
        
             "locked": {

     

       139
       139
       -
               "lastModified": 1738667109,

     

       140
       140
       -
               "narHash": "sha256-BDTEsrdmS/V4Kpjx7yBafqMEtw629xJCZel9jbT7dlg=",

     

       159
       159
       +
               "lastModified": 1743149102,

     

       160
       160
       +
               "narHash": "sha256-pW24ij8CqAdU8m5OFD1amwNmovf25YRygl1bv+s390o=",

     

       141
       161
        
               "owner": "RyanGibb",

     

       142
       162
        
               "repo": "eon",

     

       143
       143
       -
               "rev": "5a56fd3173a3f123d99cb674cb28c133e0cfc263",

     

       163
       163
       +
               "rev": "81bdd51d1e2651c46df2a1ce38b7df5661e7eef1",

     

       144
       164
        
               "type": "github"

     

       145
       165
        
             },

     

       146
       166
        
             "original": {

     
···

       437
       457
        
               ]

     

       438
       458
        
             },

     

       439
       459
        
             "locked": {

     

       440
       440
       -
               "lastModified": 1739757849,

     

       441
       441
       -
               "narHash": "sha256-Gs076ot1YuAAsYVcyidLKUMIc4ooOaRGO0PqTY7sBzA=",

     

       460
       460
       +
               "lastModified": 1743387206,

     

       461
       461
       +
               "narHash": "sha256-24N3NAuZZbYqZ39NgToZgHUw6M7xHrtrAm18kv0+2Wo=",

     

       442
       462
        
               "owner": "nix-community",

     

       443
       463
        
               "repo": "home-manager",

     

       444
       444
       -
               "rev": "9d3d080aec2a35e05a15cedd281c2384767c2cfe",

     

       464
       464
       +
               "rev": "15c5f9d04fabd176f30286c8f52bbdb2c853a146",

     

       445
       465
        
               "type": "github"

     

       446
       466
        
             },

     

       447
       467
        
             "original": {

     
···

       544
       564
        
           "lucide-src": {

     

       545
       565
        
             "flake": false,

     

       546
       566
        
             "locked": {

     

       547
       547
       -
               "narHash": "sha256-5ipNSxTlQ7627lGgsyZxk7vS1sr9RkrlR8/QMj2Zg6s=",

     

       548
       548
       -
               "type": "file",

     

       549
       549
       -
               "url": "https://unpkg.com/lucide@0.482.0"

     

       567
       567
       +
               "lastModified": 1742302029,

     

       568
       568
       +
               "narHash": "sha256-OyPVtpnC4/AAmPq84Wt1r1Gcs48d9KG+UBCtZK87e9k=",

     

       569
       569
       +
               "type": "tarball",

     

       570
       570
       +
               "url": "https://github.com/lucide-icons/lucide/releases/download/0.483.0/lucide-icons-0.483.0.zip"

     

       550
       571
        
             },

     

       551
       572
        
             "original": {

     

       552
       552
       -
               "type": "file",

     

       553
       553
       -
               "url": "https://unpkg.com/lucide@0.482.0"

     

       573
       573
       +
               "type": "tarball",

     

       574
       574
       +
               "url": "https://github.com/lucide-icons/lucide/releases/download/0.483.0/lucide-icons-0.483.0.zip"

     

       554
       575
        
             }

     

       555
       576
        
           },

     

       556
       577
        
           "mirage-opam-overlays": {

     
···

       660
       681
        
           },

     

       661
       682
        
           "nixos-hardware": {

     

       662
       683
        
             "locked": {

     

       663
       663
       -
               "lastModified": 1740646007,

     

       664
       664
       -
               "narHash": "sha256-dMReDQobS3kqoiUCQIYI9c0imPXRZnBubX20yX/G5LE=",

     

       684
       684
       +
               "lastModified": 1743420942,

     

       685
       685
       +
               "narHash": "sha256-b/exDDQSLmENZZgbAEI3qi9yHkuXAXCPbormD8CSJXo=",

     

       665
       686
        
               "owner": "nixos",

     

       666
       687
        
               "repo": "nixos-hardware",

     

       667
       667
       -
               "rev": "009b764ac98a3602d41fc68072eeec5d24fc0e49",

     

       688
       688
       +
               "rev": "de6fc5551121c59c01e2a3d45b277a6d05077bc4",

     

       668
       689
        
               "type": "github"

     

       669
       690
        
             },

     

       670
       691
        
             "original": {

     
···

       828
       849
        
           },

     

       829
       850
        
           "nixpkgs-unstable": {

     

       830
       851
        
             "locked": {

     

       831
       831
       -
               "lastModified": 1741851582,

     

       832
       832
       -
               "narHash": "sha256-cPfs8qMccim2RBgtKGF+x9IBCduRvd/N5F4nYpU0TVE=",

     

       852
       852
       +
               "lastModified": 1743448293,

     

       853
       853
       +
               "narHash": "sha256-bmEPmSjJakAp/JojZRrUvNcDX2R5/nuX6bm+seVaGhs=",

     

       833
       854
        
               "owner": "nixos",

     

       834
       855
        
               "repo": "nixpkgs",

     

       835
       835
       -
               "rev": "6607cf789e541e7873d40d3a8f7815ea92204f32",

     

       856
       856
       +
               "rev": "77b584d61ff80b4cef9245829a6f1dfad5afdfa3",

     

       836
       857
        
               "type": "github"

     

       837
       858
        
             },

     

       838
       859
        
             "original": {

     
···

       844
       865
        
           },

     

       845
       866
        
           "nixpkgs_2": {

     

       846
       867
        
             "locked": {

     

       847
       847
       -
               "lastModified": 1741048562,

     

       848
       848
       -
               "narHash": "sha256-W4YZ3fvWZiFYYyd900kh8P8wU6DHSiwaH0j4+fai1Sk=",

     

       868
       868
       +
               "lastModified": 1743501102,

     

       869
       869
       +
               "narHash": "sha256-7PCBQ4aGVF8OrzMkzqtYSKyoQuU2jtpPi4lmABpe5X4=",

     

       849
       870
        
               "owner": "nixos",

     

       850
       871
        
               "repo": "nixpkgs",

     

       851
       851
       -
               "rev": "6af28b834daca767a7ef99f8a7defa957d0ade6f",

     

       872
       872
       +
               "rev": "02f2af8c8a8c3b2c05028936a1e84daefa1171d4",

     

       852
       873
        
               "type": "github"

     

       853
       874
        
             },

     

       854
       875
        
             "original": {

     
···

       952
       973
        
               "opam2json": "opam2json"

     

       953
       974
        
             },

     

       954
       975
        
             "locked": {

     

       955
       955
       -
               "lastModified": 1732617437,

     

       956
       956
       -
               "narHash": "sha256-jj25fziYrES8Ix6HkfSiLzrN6MZjiwlHUxFSIuLRjgE=",

     

       976
       976
       +
               "lastModified": 1741156005,

     

       977
       977
       +
               "narHash": "sha256-JBPvXe5g1V2xpmPVMlf5CP5+T1E+TCK73lqeqV89EJE=",

     

       957
       978
        
               "owner": "tweag",

     

       958
       979
        
               "repo": "opam-nix",

     

       959
       959
       -
               "rev": "ea8b9cb81fe94e1fc45c6376fcff15f17319c445",

     

       980
       980
       +
               "rev": "e71936b31658f0b039a7d26b0c9c7a461d949ba4",

     

       960
       981
        
               "type": "github"

     

       961
       982
        
             },

     

       962
       983
        
             "original": {

     
···

       1030
       1051
        
           "opam-repository": {

     

       1031
       1052
        
             "flake": false,

     

       1032
       1053
        
             "locked": {

     

       1033
       1033
       -
               "lastModified": 1732612513,

     

       1034
       1034
       -
               "narHash": "sha256-kju4NWEQo4xTxnKeBIsmqnyxIcCg6sNZYJ1FmG/gCDw=",

     

       1054
       1054
       +
               "lastModified": 1740730647,

     

       1055
       1055
       +
               "narHash": "sha256-6veU2WjUGcWDAzLDjoAI1L6GWZd0KIUq19sHcbJS+u8=",

     

       1035
       1056
        
               "owner": "ocaml",

     

       1036
       1057
        
               "repo": "opam-repository",

     

       1037
       1037
       -
               "rev": "3d52b66b04788999a23f22f0d59c2dfc831c4f32",

     

       1058
       1058
       +
               "rev": "f1f75fef5fbf1e8bd1cc9544e50b89ba59f625e2",

     

       1038
       1059
        
               "type": "github"

     

       1039
       1060
        
             },

     

       1040
       1061
        
             "original": {

     
···

       1108
       1129
        
               "agenix": "agenix",

     

       1109
       1130
        
               "alec-website": "alec-website",

     

       1110
       1131
        
               "deploy-rs": "deploy-rs",

     

       1132
       1132
       +
               "disko": "disko",

     

       1111
       1133
        
               "eilean": "eilean",

     

       1112
       1134
        
               "eon": "eon",

     

       1113
       1135
        
               "fn06-website": "fn06-website",

     
···

       1267
       1289
        
               ]

     

       1268
       1290
        
             },

     

       1269
       1291
        
             "locked": {

     

       1270
       1270
       -
               "lastModified": 1742406297,

     

       1271
       1271
       -
               "narHash": "sha256-cgvmt451qgo44nLYdYkxs02btGyCROj9esDzZRRRU10=",

     

       1272
       1272
       -
               "owner": "RyanGibb",

     

       1273
       1273
       -
               "repo": "tangled",

     

       1274
       1274
       -
               "rev": "396ea88e0c5e7e50de3bc77a3fb72bcb19b64e85",

     

       1275
       1275
       -
               "type": "github"

     

       1292
       1292
       +
               "lastModified": 1743620557,

     

       1293
       1293
       +
               "narHash": "sha256-w7a9Qn/IUdCe+gk5cMvSUS+YKItK2iTiu2Qcq49a+zU=",

     

       1294
       1294
       +
               "ref": "refs/heads/master",

     

       1295
       1295
       +
               "rev": "19ee94f42ab259c218762e6f0ed87952f80b5162",

     

       1296
       1296
       +
               "revCount": 420,

     

       1297
       1297
       +
               "type": "git",

     

       1298
       1298
       +
               "url": "https://tangled.sh/@tangled.sh/core"

     

       1276
       1299
        
             },

     

       1277
       1300
        
             "original": {

     

       1278
       1278
       -
               "owner": "RyanGibb",

     

       1279
       1279
       -
               "repo": "tangled",

     

       1280
       1280
       -
               "type": "github"

     

       1301
       1301
       +
               "type": "git",

     

       1302
       1302
       +
               "url": "https://tangled.sh/@tangled.sh/core"

     

       1281
       1303
        
             }

     

       1282
       1304
        
           },

     

       1283
       1305
        
           "timewall": {

     
···

       1288
       1310
        
               "rust-overlay": "rust-overlay"

     

       1289
       1311
        
             },

     

       1290
       1312
        
             "locked": {

     

       1291
       1291
       -
               "lastModified": 1740819101,

     

       1292
       1292
       -
               "narHash": "sha256-E2YADfdQt3q4QWU5ieftfoJ+tQnFxIDvn/T8b4CNlFk=",

     

       1313
       1313
       +
               "lastModified": 1743524557,

     

       1314
       1314
       +
               "narHash": "sha256-0rNcLtKWbjI0VqlusrqPMcpPgdkkZGkOIt9s3CnsCao=",

     

       1293
       1315
        
               "owner": "bcyran",

     

       1294
       1316
        
               "repo": "timewall",

     

       1295
       1295
       -
               "rev": "9f2c12b3ee55b7fe7cc24e83ec283248906872b1",

     

       1317
       1317
       +
               "rev": "789befef40bf0d45e48285f17f512b41924cfeb7",

     

       1296
       1318
        
               "type": "github"

     

       1297
       1319
        
             },

     

       1298
       1320
        
             "original": {

+4 -2

flake.nix

···

       20
       20
        
           nix-rpi5.url = "gitlab:vriska/nix-rpi5?ref=main";

     

       21
       21
        
           nur.url = "github:nix-community/NUR/e9e77b7985ef9bdeca12a38523c63d47555cc89b";

     

       22
       22
        
           timewall.url = "github:bcyran/timewall/";

     

       23
       23
       -
           tangled.url = "github:RyanGibb/tangled/";

     

       23
       23
       +
           tangled.url = "git+https://tangled.sh/@tangled.sh/core";

     

       24
       24
       +
           disko.url = "github:nix-community/disko";

     

       24
       25
        
       

     

       25
       26
        
           # deduplicate flake inputs

     

       26
       27
        
           eilean.inputs.nixpkgs.follows = "nixpkgs";

     
···

       38
       39
        
           nur.inputs.nixpkgs.follows = "nixpkgs";

     

       39
       40
        
           timewall.inputs.nixpkgs.follows = "nixpkgs";

     

       40
       41
        
           tangled.inputs.nixpkgs.follows = "nixpkgs";

     

       42
       42
       +
           disko.inputs.nixpkgs.follows = "nixpkgs";

     

       41
       43
        
         };

     

       42
       44
        
       

     

       43
       45
        
         outputs =

     
···

       116
       118
        
                       (

     

       117
       119
        
                         { config, ... }:

     

       118
       120
        
                         {

     

       119
       119
       -
                           networking.hostName = "${host}";

     

       121
       121
       +
                           networking.hostName = host-nixpkgs.lib.mkDefault "${host}";

     

       120
       122
        
                           # pin nix command's nixpkgs flake to the system flake to avoid unnecessary downloads

     

       121
       123
        
                           nix.registry.nixpkgs.flake = host-nixpkgs;

     

       122
       124
        
                           system.stateVersion = "24.05";

+4 -45

home/calendar.nix

···

       12
       12
        
         options.custom.calendar.enable = lib.mkEnableOption "calendar";

     

       13
       13
        
       

     

       14
       14
        
         config = lib.mkIf cfg.enable {

     

       15
       15
       +
           home.packages = with pkgs; [

     

       16
       16
       +
             vdirsyncer

     

       17
       17
       +
           ];

     

       18
       18
       +
       

     

       15
       19
        
           programs = {

     

       16
       20
        
             password-store.enable = true;

     

       17
       21
        
             gpg.enable = true;

     

       18
       18
       -
             vdirsyncer.enable = true;

     

       19
       19
       -
             khal = {

     

       20
       20
       -
               enable = true;

     

       21
       21
       -
               locale = {

     

       22
       22
       -
                 timeformat = "%I:%M%p";

     

       23
       23
       -
                 dateformat = "%y-%m-%d";

     

       24
       24
       -
                 longdateformat = "%Y-%m-%d";

     

       25
       25
       -
                 datetimeformat = "%y-%m-%d %I:%M%p";

     

       26
       26
       -
                 longdatetimeformat = "%Y-%m-%d %I:%M%p";

     

       27
       27
       -
               };

     

       28
       28
       -
               settings = {

     

       29
       29
       -
                 default.default_calendar = "ryan_freumh_org";

     

       30
       30
       -
                 keybindings.external_edit = "ctrl e";

     

       31
       31
       -
                 keybindings.save = "ctrl s";

     

       32
       32
       -
               };

     

       33
       33
       -
             };

     

       34
       22
        
           };

     

       35
       23
        
       

     

       36
       24
        
           services = {

     

       37
       25
        
             gpg-agent.enable = true;

     

       38
       38
       -
           };

     

       39
       39
       -
       

     

       40
       40
       -
           accounts.calendar = {

     

       41
       41
       -
             basePath = "calendar";

     

       42
       42
       -
             accounts = {

     

       43
       43
       -
               "ryan_freumh_org" = {

     

       44
       44
       -
                 khal = {

     

       45
       45
       -
                   enable = true;

     

       46
       46
       -
                   color = "white";

     

       47
       47
       -
                 };

     

       48
       48
       -
                 vdirsyncer = {

     

       49
       49
       -
                   enable = true;

     

       50
       50
       -
                 };

     

       51
       51
       -
                 remote = {

     

       52
       52
       -
                   type = "caldav";

     

       53
       53
       -
                   url = "https://cal.freumh.org/ryan/f497c073-d027-2aa5-1e58-cbec1bf5a8c7/";

     

       54
       54
       -
                   passwordCommand = [

     

       55
       55
       -
                     "${pkgs.pass}/bin/pass"

     

       56
       56
       -
                     "show"

     

       57
       57
       -
                     "calendar/ryan@freumh.org"

     

       58
       58
       -
                   ];

     

       59
       59
       -
                   userName = "ryan";

     

       60
       60
       -
                 };

     

       61
       61
       -
                 local = {

     

       62
       62
       -
                   type = "filesystem";

     

       63
       63
       -
                   fileExt = ".ics";

     

       64
       64
       -
                 };

     

       65
       65
       -
               };

     

       66
       66
       -
             };

     

       67
       26
        
           };

     

       68
       27
        
         };

     

       69
       28
        
       }

+1 -7

home/default.nix

···

       231
       231
        
                 unbind C-b

     

       232
       232
        
                 set-option -g prefix C-a

     

       233
       233
        
                 bind-key C-a send-prefix

     

       234
       234
       -
       

     

       235
       234
        
                 set-window-option -g mode-keys vi

     

       236
       235
        
                 set-option -g mouse on

     

       237
       236
        
                 set-option -g set-titles on

     
···

       245
       244
        
                 # https://stackoverflow.com/questions/62182401/neovim-screen-lagging-when-switching-mode-from-insert-to-normal

     

       246
       245
        
                 # locking

     

       247
       246
        
                 set -s escape-time 0

     

       248
       248
       -
                 set -g lock-command ${pkgs.vlock}/bin/vlock

     

       249
       249
       -
                 set -g lock-after-time 0 # Seconds; 0 = never

     

       250
       250
       -
                 bind L lock-session

     

       251
       247
        
                 # for .zprofile display environment starting https://github.com/tmux/tmux/issues/3483

     

       252
       248
        
                 set-option -g update-environment XDG_VTNR

     

       253
       249
        
                 # Allow clipboard with OSC-52 work

     
···

       258
       254
        
                 bind -T copy-mode-vi v send-keys -X begin-selection

     

       259
       255
        
                 bind -T copy-mode-vi y send-keys -X copy-selection-and-cancel

     

       260
       256
        
                 # find

     

       261
       261
       -
                 bind-key -r f run-shell tmux-sessionizer

     

       257
       257
       +
                 bind-key -r f run-shell "tmux neww tmux-sessionizer"

     

       262
       258
        
                 # reload

     

       263
       259
        
                 bind-key r source-file ~/.config/tmux/tmux.conf

     

       264
       264
       -
                 # kill unattached

     

       265
       265
       -
                 bind-key K run-shell 'tmux ls | grep -v attached | cut -d: -f1 | xargs -I {} tmux kill-window -t {}'

     

       266
       260
        
               '';

     

       267
       261
        
           };

     

       268
       262

-1

home/gui/sway.nix

···

       63
       63
        
               export MOZ_ENABLE_WAYLAND=1

     

       64
       64
        
               export MOZ_DBUS_REMOTE=1

     

       65
       65
        
               export QT_STYLE_OVERRIDE="Fusion"

     

       66
       66
       -
               export WLR_NO_HARDWARE_CURSORS=1

     

       67
       66
        
               export NIXOS_OZONE_WL=1

     

       68
       67
        
       

     

       69
       68
        
               # for intellij

home/zsh.cfg

···

       1
       1
       +
       

     

       2
       2
       +
       # https://www.emacswiki.org/emacs/TrampMode#h5o-9

     

       3
       3
       +
       [[ $TERM == "dumb" ]] && unsetopt zle && PS1='$ ' && return

     

       1
       4
        
       

     

       2
       5
        
       setopt autocd nomatch notify interactive_comments inc_append_history 

     

       3
       6
        
       unsetopt beep extendedglob share_history

     
···

       111
       114
        
       	source /run/current-system/sw/share/bash-completion/completions/ledger.bash

     

       112
       115
        
       fi

     

       113
       116
        
       

     

       117
       117
       +
       eval $(opam env)

+4 -1

hosts/gecko/default.nix

···

       41
       41
        
             emacs.enable = true;

     

       42
       42
        
           };

     

       43
       43
        
           home.sessionVariables = {

     

       44
       44
       -
             LEDGER_FILE = "~/vault/finances.ledger";

     

       44
       44
       +
             LEDGER_FILE = "$HOME/vault/finances.ledger";

     

       45
       45
       +
             CALENDAR_DIR = "$HOME/calendar";

     

       45
       46
        
           };

     

       46
       47
        
           programs.git.extraConfig.commit.gpgSign = true;

     

       47
       48
        
           programs.direnv = {

     
···

       157
       158
        
           # other

     

       158
       159
        
           ltex-ls

     

       159
       160
        
           typst-lsp

     

       161
       161
       +
       

     

       162
       162
       +
           overlay-unstable.claude-code

     

       160
       163
        
         ];

     

       161
       164
        
       

     

       162
       165
        
         services.gnome.gnome-keyring.enable = true;

+31

hosts/hippo/default.nix

···

       1
       1
       +
       {

     

       2
       2
       +
         pkgs,

     

       3
       3
       +
         config,

     

       4
       4
       +
         lib,

     

       5
       5
       +
         disko,

     

       6
       6
       +
         ...

     

       7
       7
       +
       }:

     

       8
       8
       +
       

     

       9
       9
       +
       {

     

       10
       10
       +
         imports = [

     

       11
       11
       +
           ./hardware-configuration.nix

     

       12
       12
       +
           disko.nixosModules.disko

     

       13
       13
       +
           ./disk-config.nix

     

       14
       14
       +
         ];

     

       15
       15
       +
       

     

       16
       16
       +
         custom = {

     

       17
       17
       +
           enable = true;

     

       18
       18
       +
           autoUpgrade.enable = true;

     

       19
       19
       +
           homeManager.enable = true;

     

       20
       20
       +
         };

     

       21
       21
       +
       

     

       22
       22
       +
         home-manager.users.${config.custom.username}.config.custom.machineColour = "blue";

     

       23
       23
       +
       

     

       24
       24
       +
         networking.hostName = "iphito";

     

       25
       25
       +
       

     

       26
       26
       +
         services.openssh.openFirewall = true;

     

       27
       27
       +
       

     

       28
       28
       +
         users.users.root.openssh.authorizedKeys.keys = [

     

       29
       29
       +
           "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA7UrJmBFWR3c7jVzpoyg4dJjON9c7t9bT9acfrj6G7i mtelvers"

     

       30
       30
       +
         ];

     

       31
       31
       +
       }

+33

hosts/hippo/disk-config.nix

···

       1
       1
       +
       { lib, ... }:

     

       2
       2
       +
       

     

       3
       3
       +
       {

     

       4
       4
       +
         disko.devices = {

     

       5
       5
       +
           disk.disk1 = {

     

       6
       6
       +
             device = lib.mkDefault "/dev/sda";

     

       7
       7
       +
             type = "disk";

     

       8
       8
       +
             content = {

     

       9
       9
       +
               type = "gpt";

     

       10
       10
       +
               partitions = {

     

       11
       11
       +
                 ESP = {

     

       12
       12
       +
                   type = "EF00";

     

       13
       13
       +
                   size = "500M";

     

       14
       14
       +
                   content = {

     

       15
       15
       +
                     type = "filesystem";

     

       16
       16
       +
                     format = "vfat";

     

       17
       17
       +
                     mountpoint = "/boot";

     

       18
       18
       +
                     mountOptions = [ "umask=0077" ];

     

       19
       19
       +
                   };

     

       20
       20
       +
                 };

     

       21
       21
       +
                 root = {

     

       22
       22
       +
                   size = "100%";

     

       23
       23
       +
                   content = {

     

       24
       24
       +
                     type = "filesystem";

     

       25
       25
       +
                     format = "ext4";

     

       26
       26
       +
                     mountpoint = "/";

     

       27
       27
       +
                   };

     

       28
       28
       +
                 };

     

       29
       29
       +
               };

     

       30
       30
       +
             };

     

       31
       31
       +
           };

     

       32
       32
       +
         };

     

       33
       33
       +
       }

+40

hosts/hippo/hardware-configuration.nix

···

       1
       1
       +
       {

     

       2
       2
       +
         config,

     

       3
       3
       +
         lib,

     

       4
       4
       +
         pkgs,

     

       5
       5
       +
         modulesPath,

     

       6
       6
       +
         ...

     

       7
       7
       +
       }:

     

       8
       8
       +
       

     

       9
       9
       +
       {

     

       10
       10
       +
         imports = [

     

       11
       11
       +
           (modulesPath + "/installer/scan/not-detected.nix")

     

       12
       12
       +
         ];

     

       13
       13
       +
       

     

       14
       14
       +
         boot.initrd.availableKernelModules = [

     

       15
       15
       +
           "megaraid_sas"

     

       16
       16
       +
           "xhci_pci"

     

       17
       17
       +
           "nvme"

     

       18
       18
       +
           "ahci"

     

       19
       19
       +
           "sd_mod"

     

       20
       20
       +
         ];

     

       21
       21
       +
         boot.initrd.kernelModules = [ "dm-snapshot" ];

     

       22
       22
       +
         boot.kernelModules = [ "kvm-amd" ];

     

       23
       23
       +
         boot.extraModulePackages = [ ];

     

       24
       24
       +
       

     

       25
       25
       +
         networking.useDHCP = lib.mkDefault true;

     

       26
       26
       +
       

     

       27
       27
       +
         nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";

     

       28
       28
       +
         hardware.cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;

     

       29
       29
       +
       

     

       30
       30
       +
         boot.loader.grub = {

     

       31
       31
       +
           enable = true;

     

       32
       32
       +
           device = "nodev";

     

       33
       33
       +
           efiSupport = true;

     

       34
       34
       +
           efiInstallAsRemovable = true;

     

       35
       35
       +
         };

     

       36
       36
       +
       

     

       37
       37
       +
         boot.kernelParams = [

     

       38
       38
       +
           "console=ttyS1,115200n8"

     

       39
       39
       +
         ];

     

       40
       40
       +
       }

+38 -2

hosts/owl/services.nix

···

       93
       93
        
           "capybara.fn06.org"

     

       94
       94
        
           "shrew.freumh.org"

     

       95
       95
        
           "knot.freumh.org"

     

       96
       96
       +
           "enki.freumh.org"

     

       96
       97
        
         ];

     

       97
       98
        
       

     

       98
       99
        
         # VPN

     
···

       268
       269
        
             proxyWebsockets = true;

     

       269
       270
        
           };

     

       270
       271
        
         };

     

       271
       271
       -
         

     

       272
       272
       +
       

     

       273
       273
       +
         services.nginx.virtualHosts."enki.freumh.org" = {

     

       274
       274
       +
           forceSSL = true;

     

       275
       275
       +
           locations."/" = {

     

       276
       276
       +
             proxyPass = ''

     

       277
       277
       +
               http://localhost:8000

     

       278
       278
       +
             '';

     

       279
       279
       +
             proxyWebsockets = true;

     

       280
       280
       +
             extraConfig = ''

     

       281
       281
       +
               # SSE-specific settings

     

       282
       282
       +
               proxy_buffering off;

     

       283
       283
       +
               proxy_read_timeout 3600s;

     

       284
       284
       +
               proxy_send_timeout 3600s;

     

       285
       285
       +
               proxy_connect_timeout 60s;

     

       286
       286
       +
       

     

       287
       287
       +
               # Forward headers

     

       288
       288
       +
               proxy_set_header Connection "";

     

       289
       289
       +
               proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

     

       290
       290
       +
               proxy_set_header X-Forwarded-Proto $scheme;

     

       291
       291
       +
               proxy_set_header Host $host;

     

       292
       292
       +
             '';

     

       293
       293
       +
           };

     

       294
       294
       +
         };

     

       295
       295
       +
       

     

       272
       296
        
         # minecraft server

     

       273
       297
        
         services.minecraft-server = {

     

       274
       298
        
           enable = true;

     
···

       359
       383
        
                 name = "knot";

     

       360
       384
        
                 type = "CNAME";

     

       361
       385
        
                 value = "vps";

     

       386
       386
       +
               }

     

       387
       387
       +
       

     

       388
       388
       +
               {

     

       389
       389
       +
                 name = "enki";

     

       390
       390
       +
                 type = "CNAME";

     

       391
       391
       +
                 value = "vps";

     

       392
       392
       +
               }

     

       393
       393
       +
       

     

       394
       394
       +
               {

     

       395
       395
       +
                 name = "hippo";

     

       396
       396
       +
                 type = "A";

     

       397
       397
       +
                 value = "128.232.124.251";

     

       362
       398
        
               }

     

       363
       399
        
       

     

       364
       400
        
               # generate with

     
···

       479
       515
        
             ];

     

       480
       516
        
           };

     

       481
       517
        
         };

     

       482
       482
       -
       }
     

       518
       518
       +
       }

Compare changes