Donovan Glover
d7f4e3fccc
containers: fix internet not working inside container
...
The wg-mullvad interface was at some point renamed to wg0-mullvad.
Note that in the future this method can be used to prevent certain
containers from accessing the internet in a similar way.
2024-10-11 16:55:44 -04:00
Donovan Glover
1aa3163acb
system(nix): keep going during builds
...
Prevents an issue where previously it'd be possible for a nixos-rebuild
to stop during the middle of compilation during a build failure, which
is problematic for longer builds.
2024-10-11 11:57:15 -04:00
Donovan Glover
140e61b54b
system: fix systemd-boot not applying for non-aarch64
2024-10-11 11:55:42 -04:00
Donovan Glover
8e3a8568e3
system: only emulate aarch64-linux if x86_64-linux
2024-10-10 14:24:07 -04:00
Donovan Glover
60401813e6
meta: prefer isPhone over mkForce
2024-10-10 14:21:42 -04:00
Donovan Glover
e663c397a7
system: use latest nix version
2024-10-10 08:17:27 -04:00
Donovan Glover
5465e572f4
nix: Downgrade from nix 2.24.4 to 2.22.3
...
https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493
2024-09-10 11:39:47 -04:00
Donovan Glover
fc11acbe79
meta: Move phone config to separate module
...
Makes it possible to enable phone support for different devices in the
future.
Note that programs.man.generateCaches in home-manager is handled at the
system level to avoid having to later override it with mkForce.
2024-09-09 13:23:41 -04:00
Donovan Glover
5790f1bbde
system: Determine isPhone from programs.calls.enable
...
Removes the redundant phone option and enables the usage of isPhone in
other modules besides system without having to import it.
2024-09-09 11:52:08 -04:00
Donovan Glover
21cd3e96da
meta(home-manager): Remove dependency on extraSpecialArgs
...
Makes copy/pasting easier and removes non-standard arguments in
home-manager modules.
2024-09-09 10:30:00 -04:00
Donovan Glover
4b5d240ebd
meta(home-manager): Determine isPhone from nixosConfig
...
Simplifies things a bit since we no longer depend on a phone variable,
thus making the individual files easier to copy/paste.
2024-09-08 23:14:43 -04:00
Donovan Glover
1b71076ca1
system: Disable root for containers by default
...
Notably removes the ability for non-containers to easily have root
disabled, although this shouldn't be wanted in most cases.
2024-09-02 12:18:39 -04:00
Donovan Glover
b4adc570d0
meta: Replace firefox-addons with packages in flake
...
This simplifies things a bit since we're no longer relying on another
input and can add extensions not in the firefox-addons repository.
2024-08-30 13:34:00 -04:00
Donovan Glover
83a82ab655
chore: Expand single item lists and attribute sets
...
These aren't collapsed by nix fmt anymore.
2024-08-27 13:05:29 -04:00
Donovan Glover
dd5eef5b77
virtualization: Drop WLR_NO_HARDWARE_CURSORS
...
Doesn't seem to be needed anymore for Hyprland.
2024-08-25 13:28:20 -04:00
Donovan Glover
2b8602125f
system: Set default phone password to 1234
2024-08-18 16:59:55 -04:00
Donovan Glover
40aca5aff6
system: Don't inherit firefox-addons directly
...
Fixes an issue where firefox-addons wasn't available in the example
config.
2024-08-16 18:58:44 -04:00
Donovan Glover
d38ef7b296
system: Always allow dnsmasq ports
...
Simplifies things a bit.
2024-08-16 15:13:41 -04:00
Donovan Glover
d012e06731
librewolf: Only enable friendlyfox on phone
...
Fixes an issue where the user interface would break on desktop devices.
2024-08-16 00:28:04 -04:00
Donovan Glover
d523816621
librewolf: Install yomitan by default
...
This works, which is great.
2024-08-15 23:41:07 -04:00
Donovan Glover
de7df4e114
hyprland: Drop unused mpv playerctl keybindings
...
I never ended up using these as much as I thought I would and getting
rid of them helps to simplify the code base a bit.
2024-08-15 22:40:20 -04:00
Donovan Glover
5c7a272877
system: Switch to mullvad package without gui
...
The GUI isn't needed anymore now that I'm able to deploy mullvad to new
phone systems without using it.
2024-08-15 21:48:01 -04:00
Donovan Glover
de6eb60ecb
system: Update from nix 2.22.3 to 2.24.2
...
Should enable us to take advantage of the new language features.
2024-08-15 21:35:15 -04:00
Donovan Glover
b14eca2c55
system: Open dnsmasq ports with hotspot option
...
Makes it possible to connect to mobile hotspots. Now the PinePhone is
a lot more useful.
2024-08-15 11:04:35 -04:00
Donovan Glover
1344cf0c3e
system(ssh): Disable keyboard interactive authentication
...
Not necessary since we're using key pairs 100% now.
2024-08-12 06:39:19 -04:00
Donovan Glover
a3a8766ada
system: Enable ssh for all systems
2024-08-11 18:47:05 -04:00
Donovan Glover
1c668bde68
chore: Format with nix fmt
...
nixfmt-rfc-style collapses lists like these.
2024-08-03 15:27:04 -04:00
Donovan Glover
a32f73a388
modules: Format with nixfmt-rfc-style
2024-08-03 14:40:07 -04:00
Donovan Glover
e45b3b6af1
nix: Downgrade from nix 2.23.3 to 2.22.3
...
It turns out that nixVersions.latest is actually 2.23.3 now and this
version conveniently doesn't have the new homeModules attribute for
flake check backported yet, so we have to downgrade to 2.22.3 anyway.
See: 0a78a55d51
2024-07-18 19:39:03 -04:00
Donovan Glover
2de95cbfaf
Revert "nix: Use flake-programs-sqlite for command-not-found"
...
Would rather not deal with an additional flake input here to keep things
simple.
2024-07-18 14:32:14 -04:00
Donovan Glover
f1ee89ddc8
nix: Use flake-programs-sqlite for command-not-found
...
This was my attempt at using flake-programs-sqlite, which worked, but
requires an additional flake input in order to function properly.
2024-07-18 14:29:39 -04:00
Donovan Glover
26d01911e4
chore: Clean up nix code
...
- Added missing `services` prefix to xserver option
- Simplified options in system.nix
- Removed unused `optionals` binding
2024-07-18 13:31:13 -04:00
Donovan Glover
16258b3374
nix: Update version from 2.18 to 2.22
...
This should fix a few issues with Nix that were fixed in newer
versions.
2024-07-18 12:55:35 -04:00
Donovan Glover
86a786cf1f
phone: Move phone-specific config out of system
2024-07-17 06:49:59 -04:00
Donovan Glover
3621b63e20
Revert "system: Generate man page caches on phone"
...
This actually increases the build time from about 1 minute and 45
seconds to 19 minutes and 15 seconds, which is a bit too long for
my tastes.
2024-07-17 06:44:05 -04:00
Donovan Glover
a177b0d9d8
system: Generate man page caches on phone
...
Shouldn't be too bad now hopefully.
2024-07-17 06:16:01 -04:00
Donovan Glover
2050b758ab
home-manager: Use string variable for notify-send
...
Since the variable has to be a string anyway, wrapping the entire
command in it reduces complexity a bit.
2024-07-06 11:17:57 -04:00
Donovan Glover
307a7fb543
home-manager: Use extraSpecialArgs for shared variables
...
Makes it possible to avoid inconsistencies with duplicate code.
2024-07-06 11:15:13 -04:00
Donovan Glover
26c79b093b
system: Use systemd config for phone
...
Should decrease startup times and prevent shutdowns from hanging.
2024-06-23 13:53:21 -04:00
Donovan Glover
8bfc0ebf36
system: Always exclude gnome-tour
...
Should prevent gnome-tour from showing in phosh.
2024-06-23 09:46:56 -04:00
Donovan Glover
83740051ea
phone: Enable 100% zram
...
Shouldn't break anything. This is mostly a safeguard to ensure that
systemd didn't SIGSEGV and freeze last time due to memory concerns.
2024-06-23 09:45:10 -04:00
Donovan Glover
31ab36fe78
phone: Add mullvad support by disabling checkReversePath
...
`networking.firewall.checkReversePath` was being set to "loose" from
Mullvad VPN, which was causing an issue with the kernel used by the
PinePhone with Mobile NixOS.
By changing this option to `false`, we get rid of the "This kernel does
not support rpfilter" error, which seems to be inaccurate due to the
result of `sysctl -a | grep \\.rp_filter` on the phone being consistent
with the result on the laptop.
2024-06-21 20:34:09 -04:00
Donovan Glover
79401e029b
system(nix): Forbid import from derivation
...
Helps prevent issues where we accidentally use an import from derivation
and cause flakes with multiple platforms to fail when running things
like `nix flake check`.
2024-06-20 22:33:59 -04:00
Donovan Glover
a9bebdc5f6
system: Only add phone groups when necessary
2024-06-20 13:18:39 -04:00
Donovan Glover
c48a01ae7f
system: Don't generate man cache on mobile
...
Significantly improves build times with aarch64 emulation.
2024-06-20 12:16:03 -04:00
Donovan Glover
8bb6a8a24e
system: Add groups from phone
...
Might reduce this later.
2024-06-19 02:04:47 -04:00
Donovan Glover
6ff271d4e2
system: Disable zram on phone for now
...
Testing whether or not SIGSEGVs are reduced as a result of disabling
zram.
2024-06-19 02:01:51 -04:00
Donovan Glover
16da2fd144
system: Add phone support
2024-06-19 02:00:34 -04:00
Donovan Glover
fb5c7849d0
system: Add wheel group to trusted users
...
Should prevent issues we ran into previously with things like
nixos-rebuild on remote hosts through ssh with non-root accounts.
2024-06-17 11:25:00 -04:00
Donovan Glover
000c9f2d90
system: Enable aarch64-linux emulation
...
This makes it possible to build the phone on the laptop, useful to
significantly reduce build times.
2024-06-16 07:43:56 -04:00