simon
/
nixos-config
1
1
Fork 0
Code Issues 8 Pull Requests Projects Releases Activity
1,666 Commits
15 Branches
0 Tags
6.6 MiB
Commit Graph

62 Commits (master)

Author SHA1 Message Date
Simon Bruder 013511c1c9
sops: Switch to new PGP key 2024-01-22 17:32:02 +01:00
Simon Bruder 10b8d432d5
Relicense 
This applies the REUSE specification to the repository, so the licensing
information can be tracked for every file individually.
 2024-01-13 14:39:22 +01:00
Simon Bruder 816004e80b
restic: Use QoS instead of uploadLimit 
This implements a crude mechanism for signalling my router to add the
packets to its own qdisc.

The way in which this is implemented with nftables is hacky because of
NixOS’ limitations on build-time checking (which obviously can’t know
about the existence of cgroups on the target).
 2023-10-07 22:49:47 +02:00
Simon Bruder 7b836dd65b
Drastically lower restic upload limit 
Welcome in the year 2023, where it apparently is acceptable to offer
internet connectivity with not even 5 Mbit/s upload speed.
 2023-10-04 23:42:00 +02:00
Simon Bruder e31c264c92
restic: Do not limit upload by default 
This allows servers that have a fast internet connection to complete
their backup in seconds instead of minutes.
 2022-08-25 23:22:17 +02:00
Simon Bruder b948f46fad
nunotaba: Re-init 2022-06-10 00:03:03 +02:00
Simon Bruder d52084a79b
nunotaba: Remove 2021-10-10 11:40:20 +02:00
Simon Bruder a0e52ea7b6
{nunotaba,sayuri}: Use qemu_kvm for libvirt 
I don’t emulate any architectures besides x86_64 anyway.
 2021-08-28 11:23:57 +02:00
Simon Bruder 8b9eb54806
games: Conditionally add emulators 
This uses a crude arbitrary number to only install them onto machines
that can actually run them.
 2021-07-26 20:44:46 +02:00
Simon Bruder 56b9c6c37f
Add module for on-demand usage of mullvad 
Since wg-quick does not require the configuration file to include a
private key and local addresses, they can be added after the execution
of wg-quick.

Fixes #32.
 2021-05-31 23:02:11 +02:00
Simon Bruder 7d7da189d0
nunotaba: Reinstall on btrfs filesystem 2021-05-28 14:05:14 +02:00
Simon Bruder 6cb59d0149
nunotaba: Use performance cpuFreqGovernor 
With kernel 5.10 powersave is stuck at 798 MHz for some reason.
 2021-05-28 14:05:13 +02:00
Simon Bruder 091f6b0e14
Update to 21.05 
This still uses the relase-21.05 branch which should later be changed to
nixos-21.05.
 2021-05-28 14:04:53 +02:00
Simon Bruder 400b55a293
Convert to flake 
Fixes #3.
 2021-05-01 17:36:58 +02:00
Simon Bruder 4a8a7e0a4f
Use sops for secrets 
Since I currently do not have access to sayuri, sayuri’s migration is
not done yet. The host keys and wg-home-private-key secret still have to
be added.
 2021-04-06 14:05:48 +02:00
Simon Bruder 7cb3142526
nunotaba: Disable docker 
Fixes #15.
 2021-03-13 10:59:43 +01:00
Simon Bruder 83f1c69713
restic/system: Constantly use system for naming 
In the future I may create add other backup jobs, so it should be clear,
that this only backs up the system.
 2021-02-28 12:22:43 +01:00
Simon Bruder be7e67cf1f
wireguard/home: Make vueko central server 
This also restructures the wireguard/home configuration, since now
better peer management is possible.
 2021-02-20 19:57:04 +01:00
Simon Bruder 0ec1fb5257
Make aesni_intel module available on boot 
This should increase LUKS performance significantly. In reality,
however, it doesn’t work that well. The difference of raw vs encrypted
block device speed still ist ~ 100 MiB/s. Even more confusing is that
nunotaba’s Intel DC SSD only manages ~ 350 MiB/s **without** encryption.
 2021-02-17 15:33:10 +01:00
Simon Bruder a02d3cb883
Use separate state version for every machine 
This also uses the system state version as the home-manager state
version.

Fixes #35.
 2021-01-31 12:21:05 +01:00
Simon Bruder 05a72217aa
Use nixos-hardware for hardware configuration 
This removes the manual modules that use options to activate hardware
configuration. It seems to general (e.g. newer Intel GPUs require
different opencl icd) or not flexible enough (in case of the ssd
module).

Closes #21.
 2021-01-29 15:50:16 +01:00
Simon Bruder d8b8e5de93
libvirt: Remove custom option 2021-01-20 16:31:59 +01:00
Simon Bruder 64ef37badd
Move global lidSwitchDocked setting to nunotaba 2021-01-20 16:27:51 +01:00
Simon Bruder 21a8f5a358
Make docker optional 2021-01-17 19:32:01 +01:00
Simon Bruder 7152112076
home/games: Add module and option 2021-01-07 18:29:18 +01:00
Simon Bruder 131d0cc1a5
Add options for unfree software and assets 2021-01-03 17:11:22 +01:00
Simon Bruder cb913a9b00
Add media-proxy 
This also adds secrets management for nginx. It is far from perfect
(e.g. nginx does not get reloaded when a secret changes).
 2020-12-31 15:44:24 +01:00
Simon Bruder e6b770875c
nunotaba,sayuri: Add tor client 2020-12-31 12:55:20 +01:00
Simon Bruder c63305cb6b
Restructure krops deployments 2020-12-17 09:50:26 +01:00
Simon Bruder 903041b6e1
Use pass for secrets management 
Fixes #4
 2020-12-13 17:57:08 +01:00
Simon Bruder f53b777a7e
Use krops for deployments 2020-12-12 16:12:38 +01:00
Simon Bruder 61e61f0908
Reorganise hardware configuration 
Fixes #6.
 2020-12-06 13:58:48 +01:00
Simon Bruder 30a54af123
nunotaba: Use auto nix jobs 2020-12-06 13:58:47 +01:00
Simon Bruder b6bc87a6ee
Reformat hardware configuration 2020-12-06 13:58:47 +01:00
Simon Bruder e499e9236d
Remove depdendency on <nixpkgs> in hardware-configuration 2020-12-06 13:58:47 +01:00
Simon Bruder acc9940043
Remove dev profile 
Profiles are deprecated in favour of options.

For rust development, use nix-shell instead.
 2020-12-05 16:09:10 +01:00
Simon Bruder fca069698a
Reformat imports in configuration.nix 2020-12-05 16:05:26 +01:00
Simon Bruder 73021c1a94
Parameterise cpu config 2020-12-05 16:00:34 +01:00
Simon Bruder 76bd3a4bc8
Parameterise gpu config 2020-12-05 15:57:23 +01:00
Simon Bruder 9b22c91170
config.sbruder.gui → config.sbruder.gui.enable 2020-12-05 15:44:58 +01:00
Simon Bruder a23c3801cb
Parameterise libvirt 2020-12-05 15:40:54 +01:00
Simon Bruder ab39c6035c
Parameterise ssd module 2020-12-05 15:40:49 +01:00
Simon Bruder 74ddf83617
Parameterise wireguard 2020-12-05 15:40:44 +01:00
Simon Bruder 8a63f8aac4
Parameterise restic 2020-12-05 15:40:31 +01:00
Simon Bruder 6d0f3a9964
Reorganise profiles/options 2020-12-05 14:43:01 +01:00
Simon Bruder 00fc2f38cc
Remove tlp module and laptop profile 2020-12-05 13:49:03 +01:00
Simon Bruder 29ef4d90dd
Remove texlive module 2020-12-05 13:48:37 +01:00
Simon Bruder 6a2a9c48bc
Make gui global option 2020-12-05 13:48:06 +01:00
Simon Bruder 3191c9119f
user: base.nix → default.nix 2020-11-07 19:22:33 +01:00
Simon Bruder eeae580fae
nunotaba: Enable intel cpu module 2020-10-17 13:20:24 +02:00