Commit graph

96 commits

Author SHA1 Message Date
William Carroll
42ff8ccf5f feat(wpcarro/marcus): Disable auto-reboot
This only somewhat works, and I don't really need it.

Change-Id: I4e78e5fd49ec07e6cb90a3feef8a4c87cb7b7707
Reviewed-on: https://cl.tvl.fyi/c/depot/+/6047
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-08-06 22:21:25 +00:00
William Carroll
1cd505e834 feat(wpcarro/marcus): Enable Tailscale daemon
:)

Change-Id: I5b2cd7a25c074a7e76bf97ffadd76c98577527bc
Reviewed-on: https://cl.tvl.fyi/c/depot/+/6046
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-08-06 20:50:13 +00:00
William Carroll
cdb4ecf5c0 fix(wpcarro/marcus): Fix fstab
Labels `NIXROOT` and `NIXBOOT` don't exist, but `nixos` and `boot` do...

Change-Id: I14296f1e03ed4b8953b360977921c3930c8907a6
Reviewed-on: https://cl.tvl.fyi/c/depot/+/6045
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-08-06 20:50:13 +00:00
William Carroll
70a13db93b fix(wpcarro/emacs): Fix load order for ava, tarasco
Looks like the everything after the `window-manager-init` call doesn't run.

Change-Id: Ib5d81c5f079152bda658d213a39c07276b4ef6e6
Reviewed-on: https://cl.tvl.fyi/c/depot/+/6036
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-08-03 20:23:25 +00:00
William Carroll
33f6419d7e refactor(wpcarro/nixos): Define shared nopn.nix module
Shared between `ava` and `tarasco`. Also define `lib/default.nix` to share
utility functions like `usermod` between NixOS configurations.

Change-Id: I65b8d37520426e164c9d5f722bee4731a3c6e641
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5942
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-07-22 03:02:21 +00:00
William Carroll
3297d01f0a fix(wpcarro/website): Redirect wpcarro.dev traffic
To https://billandhiscomputer.com (instead of the nginx default landing page).

Change-Id: Id08a3a54c0753c20370a45ff6344128f180d52dd
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5904
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-07-12 20:42:43 +00:00
William Carroll
ab0cca019b feat(wpcarro/nixos): Support laptop.nix module
Define shared laptop configuration. The primary impetus of this change was
`powerManagement.powertop`.

Change-Id: Icbd04a252005ab391dc8f7d5ebf0968af91f2e0c
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5910
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-07-12 04:13:22 +00:00
William Carroll
6d99b93f1a feat(wpcarro/website): Support SSL certs for wpcarro.dev
This has been sloppy for awhile...

While I'm at it modularize some of my Nginx configuration.

Side note: might be time to decouple the Terraform provisioning stuffs from the
NixOS configuration, and this feels *too* tightly coupled.

Change-Id: Ida0da5462d938b956571321a67ba1f026fb0a7de
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5902
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-06-28 17:37:40 +00:00
William Carroll
cf91baa938 feat(ava): Set firewall.checkReversePath to "loose"
I was being warned while running `sudo rebuild-system`.

Change-Id: Ie8b730760e069086c2ef88f8edf00887cbbb5c93
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5627
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-06-21 19:56:37 +00:00
William Carroll
8e72ab6f42 feat(ava): Install ec2-api-tools
For AWS things (I'm finding the web UI pretty irritating).

Change-Id: Ic144a71eb6a6ca46f808f33b5d468eb5efe52355
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5626
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-06-21 19:56:36 +00:00
William Carroll
deb8796cc5 feat(wpcarro/tarasco): firewall.checkReversePath = loose
Tailscale is warning about this in `nix-build` via `trace`.

Change-Id: Ia44100f5a3cd12fbf9fd10dbf40bef10805aff12
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5749
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-27 23:31:34 +00:00
William Carroll
932a03e224 feat(wpcarro/tarasco): Enable earlyoom
See the comment or other CLs I've made in the past about earlyoom.

Change-Id: Ia4c0c61784aa3e76644de91a95e8b9fbdd743b54
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5748
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-27 23:31:33 +00:00
William Carroll
3dbfa04f21 fix(wpcarro/tarasco): Blacklist rtw88_8821ce
This naughty RealTek wireless module crashes my machine. I'm also moving other
`boot`-prefixed options out of `hardware.nix` and into `default.nix`. In
general, I'm not *really* a fan of the distinction between the two files in the
first place.

Change-Id: Iabdc776afc78f00971f426c5931b7235c8c0ee20
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5747
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-27 23:27:31 +00:00
William Carroll
8adf2c3740 feat(wpcarro/emacs): Add wpcarro@tarasco to ssh-hosts
For `M-x ssh-cd-home`

Change-Id: I8c16d9d0c420cb9feafcb466c4a416a04a4b1a26
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5746
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-27 23:27:30 +00:00
William Carroll
1f96143f48 feat(wpcarro/emacs): Add wpcarro@ava to ssh-hosts
For `M-x ssh-cd-home`

Change-Id: Iacb236793414b905071284e72d64e9dab3116319
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5745
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-27 23:27:30 +00:00
William Carroll
11a8eea0e3 feat(wpcarro/tarasco): Support tarasco 🇲🇽
Named after the Mexican restaurant, El Tarasco, in El Porto, which I live 3m
walking distance from.

Change-Id: I2cd4b68eaa974ad6c8fec73e0566bc0b831c57a8
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5743
Reviewed-by: wpcarro <wpcarro@gmail.com>
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-27 23:21:25 +00:00
William Carroll
e3530149c5 refactor(wpcarro/ava): Prefer disk/by-label to disk/by-uuid
I broke LVM (Logical Volume Manager - maybe?) when I did the following:

```shell
$ HOSTNAME=ava sudo rebuild-system
$ sudo reboot now
```

I had to rollback to the initial NixOS version and try again.

Change-Id: If90e5e23767392202425181be986f81deb5ddff7
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5742
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-27 22:41:16 +00:00
Vincent Ambo
46d71fbff8 refactor(wpcarro): Prepare for restricted-eval
Change-Id: Ieb3b28d56ecd2819c3a7c08c22e33493d9e0be7f
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5687
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Reviewed-by: sterni <sternenseemann@systemli.org>
2022-05-26 16:50:25 +00:00
William Carroll
d100c1f49f feat(wpcarro/ava): Support earlyoom
Strange start to my Monday where I spent ~2h debugging my hanging
NixOS. Strangely I'm not sure I made any changes to my configuration to trigger
this, and I was finding this hard to reproduce:
- graphical X sessions hung (once when opening Chrome)
- TTYs hung (during `nix-build` and `rebuild-system`)

Per kn's recommendations whenever a system is hanging, see if it's reachable
over the network (e.g. SSH). Since I didn't have my laptop, I downloaded Termius
on my iPhone, which I used to mosh into ava, which is a surprisingly nice UX.

I suspect my machine (with only 8GB of RAM) was OOMing, but I'm not
certain. Thanks to grfn I installed `earlyoom`. For more commentary, check-out
Profpatsch's blog post about this: https://profpatsch.de/notes/preventing-oom

What went well:
- Thankfully I installed a Matrix client on my iPhone last week, which allowed
  me to troubleshoot with the #tvl folks

AIs:
- I'd like some instrumentation like Prometheus, Loki (`journald`, `dmesg`), so
  that I can accumulate troubleshooting information that isn't destroyed when I
  reboot my machine (which I did 1/2-dozen times today).
- Consider adding `git` metadata to `system.nixos.label` to get more useful
  information in a GRUB/EFI context.

More unknowns:
- Why can't I switch back to EFI (from GRUB) for my bootloader?

Change-Id: Ie2a5a15f5c0ead346d50e331fa2937f8f3453960
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5625
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-26 16:48:53 +00:00
William Carroll
b296462448 feat(wpcarro/emacs): Expand workspaces
Also define a hadrian bookmark.

Change-Id: Ic8d7dc94eaa557d3a87ad252e90fdf8996a397fe
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5562
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-05-10 02:00:15 +00:00
William Carroll
399f963a24 feat(wpcarro/ava): Support mosh
SSH is feeling a bit too laggy; let's try `mosh`.

Change-Id: I0a4c0b7513543876defcfa243323fa3c5d4588f7
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5560
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-10 01:53:21 +00:00
William Carroll
a0fff9f00e feat(wpcarro/ava): Support virtualbox
This has been useful while developing my NixOS installer.

Change-Id: I45fd5e1647248a6ebf277ffff3638587d8cc695d
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5559
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-09 17:48:47 +00:00
William Carroll
e0585128ae feat(wpcarro/ava): Support httpie
I like httpie's UX better than `curl`'s.

Change-Id: I2f7d650df10ca9e651c110e4d486406fe846fef0
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5558
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-09 17:48:47 +00:00
William Carroll
2129c683e1 feat(wpcarro/ava): Support remmina
More tools I didn't know I'd ever become acquainted with until I started
supporting Windows Servers: remmina - for RDPing.

Change-Id: Id861535c4a6bc6d6223ce21e5da60c627c8995b3
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5557
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-09 17:45:45 +00:00
William Carroll
7ca3af914e feat(wpcarro/ava): Enable Tailscale
Joining the Holy Tailnet

Change-Id: I16c00e74be633d19277a38bd421e296b32307960
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5556
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-09 17:45:45 +00:00
William Carroll
3e411cd81a feat(wpcarro/ava): Support IP-forwarding
This allows me to use my device as a router (or in Tailscale terms: as an "exit
node").

Change-Id: I994e6c104c246364118155e934b11969a4d7066e
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5555
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-05-09 17:45:45 +00:00
William Carroll
04204c3863 feat(wpcarro/ava): Set timezone on ava to L.A.
ava isn't a laptop, so we shouldn't support roaming timezones. Let's hard-code
this to L.A. for now.

Change-Id: I06fa98909e4db8788b2ff8f0855f630beb54d882
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5456
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-04-16 01:09:28 +00:00
William Carroll
095e1028ef feat(wpcarro/ssh): Give nathan access to ava
Strange commit title, but true. Make sure nathan (my MBP) can SSH into ava (my
NixOS box at work).

Change-Id: Iaf79cdd1b8633a091c706c7cb84522e2023585c0
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5455
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-04-16 01:09:28 +00:00
William Carroll
b411deed41 feat(wpcarro/ava): Support docker
Run the Docker daemon on ava. Again: because startup.

Change-Id: I944ae097a1ba239715c153777177a09579a6e186
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5454
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-04-16 01:09:27 +00:00
William Carroll
e48b0cc84f feat(wpcarro/emacs): Support calling sudo on a remote buffer
While pattern-matching in Elisp is a bit unsightly, it works :)

Change-Id: I6766147095823f1a4e233832b0ef21f4c486e023
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5452
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-04-16 01:09:26 +00:00
William Carroll
d843f0bf4c feat(wpcarro/ava): Support new machine
ava is my new (NixOS!) work machine :)

Change-Id: I1f089f00c02519d5d1d93d011f29075d53500e74
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5450
Reviewed-by: wpcarro <wpcarro@gmail.com>
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-04-15 19:07:51 +00:00
William Carroll
a37584a562 chore(wpcarro): Drop support for monsterpoker
This never really got off the ground...

Change-Id: I3e712174c83c74e78e2886ea80264652e36ea27a
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5457
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-04-15 18:02:35 +00:00
William Carroll
79f93f3d85 feat(wpcarro/nix): Hard-code billandhiscomputer.com
...into the rebuild-diogenes script.

Change-Id: Ib5ae5e3fcf7534f5aa5fdd366b41500aa3a85f9e
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5291
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-02-14 22:30:43 +00:00
William Carroll
9b267dbe99 fix(wpcarro/nix): Restore cleanup code for deploy-diogenes
This was temporarily commented-out and never uncommented.

Change-Id: If770721aa10c65c5601b9f53a2d1810aef57b61d
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5290
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-02-14 22:27:42 +00:00
William Carroll
4bb144542c chore(wpcarro/docs): wpcarro.dev -> billandhiscomputer.com
Stale documentation...

Change-Id: I1761b865fa8b62b64acff8664d265997201ebb8f
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5181
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-02-12 20:52:59 +00:00
William Carroll
8fb1ff3f25 feat(wpcarro/diogenes): Support rebuild-diogenes
- deploy-diogenes: terraform updates + NixOS rebuilds
- rebuild-diogenes: NixOS rebuilds

Change-Id: Ibd6db7115d9919fa44ee9d318f88e1bf29e2bdce
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5160
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-02-12 20:47:57 +00:00
Vincent Ambo
2ffea01c03 chore(wpcarro): move meta.targets definitions to meta.ci.targets
Change-Id: If45c9c939c607d02c1c636f9b54962aa527eed0e
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5254
Tested-by: BuildkiteCI
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: wpcarro <wpcarro@gmail.com>
2022-02-08 00:19:55 +00:00
William Carroll
8cfd97c9b5 feat(wpcarro/redshift): Support redshift (again) 🎉
So it turns out that there's a NixOS *and* a home-manager module for
redshift. While I couldn't get the NixOS module to WAI, the home-manager version
seems to work just fine.

I'm hard-coding the lat/lon for now, because I still can't get "geoclue2" to
work, but I'm not interested in debugging that at the moment.

Change-Id: I7b44df44dc845ec3ad49e649019df459fc0bca56
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5154
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-02-01 07:49:54 +00:00
William Carroll
7b29f3c7f2 fix(wpcarro/redshift): Drop support for redshift
After spending ~1h trying to debug NixOS's redshift module, I'm nuking it for my
own sanity.

Change-Id: I38403d758db81e5917d1d06e1492efe2013232c2
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5153
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-02-01 07:35:52 +00:00
William Carroll
f4be357508 feat(wpcarro/marcus): Enable redshift 👀
Should be easier on my eyes.

Change-Id: I183d2516ecdb582264b2a2548a05723d87274a83
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5152
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-02-01 06:18:40 +00:00
William Carroll
3220b38d03 feat(wpcarro/marcus): Schedule daily upgrades
1x/d rebuild marcus with the latest state from depot's `origin/canon`.

Change-Id: Ibeb40587e8f615d25e0819171fc00e08eda13d0b
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5148
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-31 22:09:28 +00:00
William Carroll
10de2798a0 feat(wpcarro/marcus): Schedule daily reboots
Every day at 3AM reboot marcus.

Change-Id: Ia076b937a110039077add13360bd4fac3d7aa9d2
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5147
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-31 22:05:27 +00:00
Vincent Ambo
aa122cbae7 style: format entire depot with nixpkgs-fmt
This CL can be used to compare the style of nixpkgs-fmt against other
formatters (nixpkgs, alejandra).

Change-Id: I87c6abff6bcb546b02ead15ad0405f81e01b6d9e
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4397
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
Reviewed-by: lukegb <lukegb@tvl.fyi>
Reviewed-by: wpcarro <wpcarro@gmail.com>
Reviewed-by: Profpatsch <mail@profpatsch.de>
Reviewed-by: kanepyork <rikingcoding@gmail.com>
Reviewed-by: tazjin <tazjin@tvl.su>
Reviewed-by: cynthia <cynthia@tvl.fyi>
Reviewed-by: edef <edef@edef.eu>
Reviewed-by: eta <tvl@eta.st>
Reviewed-by: grfn <grfn@gws.fyi>
2022-01-31 16:11:53 +00:00
William Carroll
aa502c3baf feat(wpcarro/emacs): Support marcus.el
Sometimes I need device-specific Elisp. This is similar to what I'm doing in
google-briefcase (my gLinux-specific configuration).

Change-Id: Idc4031e74d31a91fb8d943acfaeb90b8742fbfc4
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5084
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
Tested-by: BuildkiteCI
2022-01-29 01:13:08 +00:00
sterni
d99132f45a fix: resolve remaining security.acme.email warnings
These were missed in cl/4784.

Change-Id: I01a5827900c1b3bdfdf9b1c36dcca8d6b59073a1
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4866
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: sterni <sternenseemann@systemli.org>
2022-01-12 18:30:34 +00:00
William Carroll
c022f2ba2e feat(wpcarro/diogenes): Support monsterpoker.app
Deploy dummy Shopify site as both a learning exercise and proof-of-concept for
Raf's card game, Monster Poker.

Change-Id: I7bc91dcbf4e171c5e169140f5e9d811303e1285f
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4787
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 05:33:06 +00:00
William Carroll
9ea66aee06 chore(wpcarro/diogenes): Update README to consume deploy-diogenes
Fixing stale documentation

Change-Id: I607dc69377a4db6f9a4a35e39793486c20a8cb4c
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4786
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 05:33:05 +00:00
William Carroll
f9e3ff80af fix(wpcarro/diogenes): Ensure PTR has trailing dot
For example see how Google does it:

```shell
$ dig google.com
142.250.64.206
$ dig -x 142.250.64.206
mia07s56-in-f14.1e100.net. # <- trailing dot
```

Change-Id: I300ffdc03cc740628a4f07f7822e8fadaf12a57a
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4755
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 05:33:03 +00:00
William Carroll
44f20ea810 feat(wpcarro/diogenes): Support PTR record configuration
This support reverse-DNS lookups.

I encountered a problem where I accidentally deleted my instance's
`nat_ip` (external, ephemeral IP). I needed to run...

```shell
terraform apply -replace=google_compute_instance.diogenes
```

...which invalidates terraform's local cache of the state. I believe this used
to be called `terraform taint`. Things are mostly WAI, with one known issue:
quasselcore and billandhiscomputer.com complain about missing SSL certs, but I
believe this is a race-condition. Calling...

```shell
systemctl restart quassel.service
```

...resolves the issue for quassel. Unfortunately the same doesn't work for
nginx.service, but after a bit of time https://billandhiscomputer.com "just
works". Clearly I'm not sure what's going on here. At least not yet...

Change-Id: I9f059655cb6e83d56618b77cfe4ed38283614ef6
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4753
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 05:33:01 +00:00
William Carroll
d6725296ca fix(wpcarro/diogenes): Ensure quassel can read ACME cert
Add quassel to the nginx group because only user=acme and group=nginx can read
/var/lib/acme/*

Change-Id: If456b8ebf43ee098cd8007c3c6235c78c1071250
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4752
Tested-by: BuildkiteCI
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 05:33:01 +00:00