Commit graph

135 commits

Author SHA1 Message Date
Simon Bruder 603a006df8
Make routing all traffic over wireguard tunnel work
Fixes #26 (regression introduced in
126a0dad4b)

This is not an ideal solution, since it disables some features of the
firewall. Ideally, the mullvad configuration would be declaratively
managed and include a PostUp and PreDown command that adds routes to the
tunnel endpoint to the physical interface.
2021-01-24 14:44:00 +01:00
Simon Bruder bcbd5e772a
gui: Use better way to enable 32bit opengl support 2021-01-24 12:51:56 +01:00
Simon Bruder 428e8103d9
tools/adb: Use proper way to determine if x86_64 2021-01-20 16:40:36 +01:00
Simon Bruder d8b8e5de93
libvirt: Remove custom option 2021-01-20 16:31:59 +01:00
Simon Bruder e5f90116e8
network-manager: Reformat module 2021-01-20 16:28:52 +01:00
Simon Bruder 64ef37badd
Move global lidSwitchDocked setting to nunotaba 2021-01-20 16:27:51 +01:00
Simon Bruder c1283b6ffa
Add option to disable large packages
Fixes #27

This adds the `sbruder.full` option (enabled by default), which disables
some otherwise enabled packages/modules when disabled. When setting it
to false on a full gui system it reduces the size of the system closure
by over 50%. It is intended for systems with low (main) disk space.
2021-01-20 16:23:18 +01:00
Simon Bruder 9cdf89fe15
firewall: Trust wg-home
Fixes regression introduced in 126a0dad4b.
2021-01-18 00:05:18 +01:00
Simon Bruder 21a8f5a358
Make docker optional 2021-01-17 19:32:01 +01:00
Simon Bruder 126a0dad4b
Enable firewall by default
Fixes #25
2021-01-17 11:03:54 +01:00
Simon Bruder 39742c8fbd
restic: Remove hostname from service name 2021-01-08 21:33:45 +01:00
Simon Bruder 7152112076
home/games: Add module and option 2021-01-07 18:29:18 +01:00
Simon Bruder 37c54887b9
Add custom overlay
Fixes #20
2021-01-07 17:10:32 +01:00
Simon Bruder a44f1fd1ac
Add optional ssh server to initrd 2021-01-07 13:39:25 +01:00
Simon Bruder 9a65a81c3c
tools: Only enable adb on x86_64-linux
Since it at least fails to build on aarch64.
2021-01-06 23:40:52 +01:00
Simon Bruder 7b2da0349c
Overhaul secrets management 2021-01-06 13:09:29 +01:00
Simon Bruder 3d73519a76
Make building without unfree software/assets work
This either removes the packages or replaces them with free packages.
2021-01-03 17:11:22 +01:00
Simon Bruder 131d0cc1a5
Add options for unfree software and assets 2021-01-03 17:11:22 +01:00
Simon Bruder 337ef729e1
sway: wallpaper: Specify license 2021-01-03 15:46:08 +01:00
Simon Bruder 9c51d36c4d
Use fetchpatch to fetch patches 2021-01-02 10:58:08 +01:00
Simon Bruder fa8323bddc
Enable rar support of p7zip 2021-01-01 13:00:38 +01:00
Simon Bruder a16b0e260c
gui: Add 32bit OpenGL 2021-01-01 12:33:13 +01:00
Simon Bruder 58d667f6b8
sway: Rename to gui 2021-01-01 12:32:55 +01:00
Simon Bruder cb913a9b00
Add media-proxy
This also adds secrets management for nginx. It is far from perfect
(e.g. nginx does not get reloaded when a secret changes).
2020-12-31 15:44:24 +01:00
Simon Bruder a34d5a110a
Disable command-not-found 2020-12-25 16:41:48 +01:00
Simon Bruder e487cf4720
Only enable node exporter when wg-home is enabled 2020-12-22 12:09:14 +01:00
Simon Bruder b435e1a182
restic: Parameterise extra paths and excludes 2020-12-21 13:09:25 +01:00
Simon Bruder 5937065d0e
restic: Clean up excludes 2020-12-21 13:08:22 +01:00
Simon Bruder 931c7ee91b
restic: Add restic-auth authentication wrapper 2020-12-21 12:54:33 +01:00
Simon Bruder 3d146db55c
restic: Make repository variable (in module) 2020-12-21 12:50:30 +01:00
Simon Bruder f0e2843d19
Reformat restic module 2020-12-21 12:33:46 +01:00
Simon Bruder 5f56b5a3a7
Set monetary locale to use Euro 2020-12-20 17:10:22 +01:00
Simon Bruder 208922d9f9
Fix nix run
It requires an explicit `nixpkgs=` entry in `NIX_PATH` to work.
2020-12-13 17:57:09 +01:00
Simon Bruder 94d625784a
Pin unstable nixpkgs version 2020-12-13 17:57:09 +01:00
Simon Bruder 903041b6e1
Use pass for secrets management
Fixes #4
2020-12-13 17:57:08 +01:00
Simon Bruder 049e02089f
Set NIX_PATH to krops sources 2020-12-12 16:15:43 +01:00
Simon Bruder 91cd41286b
Add video4linux2loopback 2020-12-08 18:55:33 +01:00
Simon Bruder 0bbfafcafb
Make nix keep output of derivations with gc root 2020-12-06 13:58:46 +01:00
Simon Bruder e53f2882f4
Disable system-wide sway extra packages 2020-12-06 13:58:45 +01:00
Simon Bruder 29cfc3750d
Move most tools to user environment
Fixes #1.
2020-12-05 19:44:41 +01:00
Simon Bruder bdc1c12f9c
Refactor pubkey configuration 2020-12-05 16:42:49 +01:00
Simon Bruder acc9940043
Remove dev profile
Profiles are deprecated in favour of options.

For rust development, use nix-shell instead.
2020-12-05 16:09:10 +01:00
Simon Bruder 73021c1a94
Parameterise cpu config 2020-12-05 16:00:34 +01:00
Simon Bruder 76bd3a4bc8
Parameterise gpu config 2020-12-05 15:57:23 +01:00
Simon Bruder 9b22c91170
config.sbruder.gui → config.sbruder.gui.enable 2020-12-05 15:44:58 +01:00
Simon Bruder a23c3801cb
Parameterise libvirt 2020-12-05 15:40:54 +01:00
Simon Bruder ab39c6035c
Parameterise ssd module 2020-12-05 15:40:49 +01:00
Simon Bruder 74ddf83617
Parameterise wireguard 2020-12-05 15:40:44 +01:00
Simon Bruder 8a63f8aac4
Parameterise restic 2020-12-05 15:40:31 +01:00
Simon Bruder 6d0f3a9964
Reorganise profiles/options 2020-12-05 14:43:01 +01:00