Commit Graph

87 Commits

Author SHA1 Message Date
Donovan Glover
d7f4e3fccc
containers: fix internet not working inside container
The wg-mullvad interface was at some point renamed to wg0-mullvad.

Note that in the future this method can be used to prevent certain
containers from accessing the internet in a similar way.
2024-10-11 16:55:44 -04:00
Donovan Glover
1aa3163acb
system(nix): keep going during builds
Prevents an issue where previously it'd be possible for a nixos-rebuild
to stop during the middle of compilation during a build failure, which
is problematic for longer builds.
2024-10-11 11:57:15 -04:00
Donovan Glover
140e61b54b
system: fix systemd-boot not applying for non-aarch64 2024-10-11 11:55:42 -04:00
Donovan Glover
8e3a8568e3
system: only emulate aarch64-linux if x86_64-linux 2024-10-10 14:24:07 -04:00
Donovan Glover
60401813e6
meta: prefer isPhone over mkForce 2024-10-10 14:21:42 -04:00
Donovan Glover
e663c397a7
system: use latest nix version 2024-10-10 08:17:27 -04:00
Donovan Glover
5465e572f4
nix: Downgrade from nix 2.24.4 to 2.22.3
https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493
2024-09-10 11:39:47 -04:00
Donovan Glover
fc11acbe79
meta: Move phone config to separate module
Makes it possible to enable phone support for different devices in the
future.

Note that programs.man.generateCaches in home-manager is handled at the
system level to avoid having to later override it with mkForce.
2024-09-09 13:23:41 -04:00
Donovan Glover
5790f1bbde
system: Determine isPhone from programs.calls.enable
Removes the redundant phone option and enables the usage of isPhone in
other modules besides system without having to import it.
2024-09-09 11:52:08 -04:00
Donovan Glover
21cd3e96da
meta(home-manager): Remove dependency on extraSpecialArgs
Makes copy/pasting easier and removes non-standard arguments in
home-manager modules.
2024-09-09 10:30:00 -04:00
Donovan Glover
4b5d240ebd
meta(home-manager): Determine isPhone from nixosConfig
Simplifies things a bit since we no longer depend on a phone variable,
thus making the individual files easier to copy/paste.
2024-09-08 23:14:43 -04:00
Donovan Glover
1b71076ca1
system: Disable root for containers by default
Notably removes the ability for non-containers to easily have root
disabled, although this shouldn't be wanted in most cases.
2024-09-02 12:18:39 -04:00
Donovan Glover
b4adc570d0
meta: Replace firefox-addons with packages in flake
This simplifies things a bit since we're no longer relying on another
input and can add extensions not in the firefox-addons repository.
2024-08-30 13:34:00 -04:00
Donovan Glover
83a82ab655
chore: Expand single item lists and attribute sets
These aren't collapsed by nix fmt anymore.
2024-08-27 13:05:29 -04:00
Donovan Glover
dd5eef5b77
virtualization: Drop WLR_NO_HARDWARE_CURSORS
Doesn't seem to be needed anymore for Hyprland.
2024-08-25 13:28:20 -04:00
Donovan Glover
2b8602125f
system: Set default phone password to 1234 2024-08-18 16:59:55 -04:00
Donovan Glover
40aca5aff6
system: Don't inherit firefox-addons directly
Fixes an issue where firefox-addons wasn't available in the example
config.
2024-08-16 18:58:44 -04:00
Donovan Glover
d38ef7b296
system: Always allow dnsmasq ports
Simplifies things a bit.
2024-08-16 15:13:41 -04:00
Donovan Glover
d012e06731
librewolf: Only enable friendlyfox on phone
Fixes an issue where the user interface would break on desktop devices.
2024-08-16 00:28:04 -04:00
Donovan Glover
d523816621
librewolf: Install yomitan by default
This works, which is great.
2024-08-15 23:41:07 -04:00
Donovan Glover
de7df4e114
hyprland: Drop unused mpv playerctl keybindings
I never ended up using these as much as I thought I would and getting
rid of them helps to simplify the code base a bit.
2024-08-15 22:40:20 -04:00
Donovan Glover
5c7a272877
system: Switch to mullvad package without gui
The GUI isn't needed anymore now that I'm able to deploy mullvad to new
phone systems without using it.
2024-08-15 21:48:01 -04:00
Donovan Glover
de6eb60ecb
system: Update from nix 2.22.3 to 2.24.2
Should enable us to take advantage of the new language features.
2024-08-15 21:35:15 -04:00
Donovan Glover
b14eca2c55
system: Open dnsmasq ports with hotspot option
Makes it possible to connect to mobile hotspots. Now the PinePhone is
a lot more useful.
2024-08-15 11:04:35 -04:00
Donovan Glover
1344cf0c3e
system(ssh): Disable keyboard interactive authentication
Not necessary since we're using key pairs 100% now.
2024-08-12 06:39:19 -04:00
Donovan Glover
a3a8766ada
system: Enable ssh for all systems 2024-08-11 18:47:05 -04:00
Donovan Glover
1c668bde68
chore: Format with nix fmt
nixfmt-rfc-style collapses lists like these.
2024-08-03 15:27:04 -04:00
Donovan Glover
a32f73a388
modules: Format with nixfmt-rfc-style 2024-08-03 14:40:07 -04:00
Donovan Glover
e45b3b6af1
nix: Downgrade from nix 2.23.3 to 2.22.3
It turns out that nixVersions.latest is actually 2.23.3 now and this
version conveniently doesn't have the new homeModules attribute for
flake check backported yet, so we have to downgrade to 2.22.3 anyway.

See: 0a78a55d51
2024-07-18 19:39:03 -04:00
Donovan Glover
2de95cbfaf
Revert "nix: Use flake-programs-sqlite for command-not-found"
Would rather not deal with an additional flake input here to keep things
simple.
2024-07-18 14:32:14 -04:00
Donovan Glover
f1ee89ddc8
nix: Use flake-programs-sqlite for command-not-found
This was my attempt at using flake-programs-sqlite, which worked, but
requires an additional flake input in order to function properly.
2024-07-18 14:29:39 -04:00
Donovan Glover
26d01911e4
chore: Clean up nix code
- Added missing `services` prefix to xserver option
- Simplified options in system.nix
- Removed unused `optionals` binding
2024-07-18 13:31:13 -04:00
Donovan Glover
16258b3374
nix: Update version from 2.18 to 2.22
This should fix a few issues with Nix that were fixed in newer
versions.
2024-07-18 12:55:35 -04:00
Donovan Glover
86a786cf1f
phone: Move phone-specific config out of system 2024-07-17 06:49:59 -04:00
Donovan Glover
3621b63e20
Revert "system: Generate man page caches on phone"
This actually increases the build time from about 1 minute and 45
seconds to 19 minutes and 15 seconds, which is a bit too long for
my tastes.
2024-07-17 06:44:05 -04:00
Donovan Glover
a177b0d9d8
system: Generate man page caches on phone
Shouldn't be too bad now hopefully.
2024-07-17 06:16:01 -04:00
Donovan Glover
2050b758ab
home-manager: Use string variable for notify-send
Since the variable has to be a string anyway, wrapping the entire
command in it reduces complexity a bit.
2024-07-06 11:17:57 -04:00
Donovan Glover
307a7fb543
home-manager: Use extraSpecialArgs for shared variables
Makes it possible to avoid inconsistencies with duplicate code.
2024-07-06 11:15:13 -04:00
Donovan Glover
26c79b093b
system: Use systemd config for phone
Should decrease startup times and prevent shutdowns from hanging.
2024-06-23 13:53:21 -04:00
Donovan Glover
8bfc0ebf36
system: Always exclude gnome-tour
Should prevent gnome-tour from showing in phosh.
2024-06-23 09:46:56 -04:00
Donovan Glover
83740051ea
phone: Enable 100% zram
Shouldn't break anything. This is mostly a safeguard to ensure that
systemd didn't SIGSEGV and freeze last time due to memory concerns.
2024-06-23 09:45:10 -04:00
Donovan Glover
31ab36fe78
phone: Add mullvad support by disabling checkReversePath
`networking.firewall.checkReversePath` was being set to "loose" from
Mullvad VPN, which was causing an issue with the kernel used by the
PinePhone with Mobile NixOS.

By changing this option to `false`, we get rid of the "This kernel does
not support rpfilter" error, which seems to be inaccurate due to the
result of `sysctl -a | grep \\.rp_filter` on the phone being consistent
with the result on the laptop.
2024-06-21 20:34:09 -04:00
Donovan Glover
79401e029b
system(nix): Forbid import from derivation
Helps prevent issues where we accidentally use an import from derivation
and cause flakes with multiple platforms to fail when running things
like `nix flake check`.
2024-06-20 22:33:59 -04:00
Donovan Glover
a9bebdc5f6
system: Only add phone groups when necessary 2024-06-20 13:18:39 -04:00
Donovan Glover
c48a01ae7f
system: Don't generate man cache on mobile
Significantly improves build times with aarch64 emulation.
2024-06-20 12:16:03 -04:00
Donovan Glover
8bb6a8a24e
system: Add groups from phone
Might reduce this later.
2024-06-19 02:04:47 -04:00
Donovan Glover
6ff271d4e2
system: Disable zram on phone for now
Testing whether or not SIGSEGVs are reduced as a result of disabling
zram.
2024-06-19 02:01:51 -04:00
Donovan Glover
16da2fd144
system: Add phone support 2024-06-19 02:00:34 -04:00
Donovan Glover
fb5c7849d0
system: Add wheel group to trusted users
Should prevent issues we ran into previously with things like
nixos-rebuild on remote hosts through ssh with non-root accounts.
2024-06-17 11:25:00 -04:00
Donovan Glover
000c9f2d90
system: Enable aarch64-linux emulation
This makes it possible to build the phone on the laptop, useful to
significantly reduce build times.
2024-06-16 07:43:56 -04:00