Commit graph

161 commits

Author SHA1 Message Date
Vincent Ambo
988ac68100 refactor(tazjin/nixos): First step to extracting shared config
There's some configuration shared betwene my physical machines which
is just duplicated all over the place right now. What's the point of
having Nix if you don't use it fully?

Change-Id: Ic7e89f918d2517637b3d49617b4dc1a2cc6023b9
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5536
Tested-by: BuildkiteCI
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: tazjin <tazjin@tvl.su>
2022-05-10 13:41:33 +00:00
sterni
1dd67af10e chore(users): reflect emacsGcc -> emacsNativeComp rename
Change-Id: I0217b1e316767b48b79f23e9d644b00b7fcc2df2
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5518
Reviewed-by: tazjin <tazjin@tvl.su>
Reviewed-by: sterni <sternenseemann@systemli.org>
Autosubmit: sterni <sternenseemann@systemli.org>
Tested-by: BuildkiteCI
2022-05-04 15:59:47 +00:00
Vincent Ambo
36966736fa chore(tazjin/tverskoy): Persist ~/.config/unity3d
Change-Id: I88cd9590be69cf1e018438d4f55460f18dfa572a
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5503
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-04-23 20:53:11 +00:00
Vincent Ambo
c05c4995ab chore(3p/sources): Bump channels and overlays
Changes:

* updated keycloak configuration for new version
* migrate to emacs28 outside of //users, re-add emacs27 but with a
  warning attached urging people to migrate

Change-Id: I3e5765a63934541f72f6c4a8673d3b4671850c93
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5501
Tested-by: BuildkiteCI
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: wpcarro <wpcarro@gmail.com>
2022-04-21 16:54:07 +00:00
Vincent Ambo
865b88a3a2 chore(tazjin/keys): Update set of active SSH keys
Change-Id: Ic3725ec88a3b1b5f9eb2dd52ba4ff8232906cbb1
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5490
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-04-21 12:38:41 +00:00
Vincent Ambo
78c966dc78 feat(tazjin/polyanka): deploy a tgsa instance
Change-Id: I8a32c093eb0ac8f6a0c3cfbb358d46d97d0c3b17
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5469
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-04-16 20:35:01 +00:00
Vincent Ambo
5f78e8e868 feat(tazjin/polyanka): Grow root partition on boot
Change-Id: I17e5a988b4be0ac764ce4cf6db243728165e753b
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5449
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-04-15 12:23:57 +00:00
Vincent Ambo
2c54c8cfaa feat(tazjin/tverskoy): Include open_eid module
Change-Id: I61e46db75ccfdc4bbe7cd5d66ab7921e8d87d599
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5432
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-04-09 08:49:06 +00:00
Vincent Ambo
cc88081abf feat(tazjin/tverskoy): Support local configuration
I need this for some work config which I can't put in public git :/

Change-Id: Id6a160d9dd9c1aedace68aca732744da22e413c5
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5427
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-31 13:24:27 +00:00
Vincent Ambo
c24dde74cc feat(tazjin/tverskoy): Install & persist electrum
Change-Id: If17587cd84b501741ad1a58c761473b5a2268deb
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5423
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
2022-03-30 09:31:38 +00:00
Vincent Ambo
98371362f2 fix(tazjin/tverskoy): Persist zerotier and tailscale state
Change-Id: Iede2e6afaa7484edbd98a8df08eb83d181650ddf
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5399
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-03-22 10:22:12 +00:00
Vincent Ambo
3563639909 feat(tazjin/tverskoy): Enable tailscale service
Change-Id: Ib3102defc8a6027e924067876505ca0532f24b86
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5388
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-03-21 12:08:44 +00:00
sterni
508a62b603 chore(3p/sources): Bump channels & overlays
* Remove use of aliases that have been removed in nixpkgs commit
  a36f455905d55838a0d284656e096fbdb857cf3a:

  - ncat
  - x11
  - nologin
  - dbus_libs
  - emacsPackagesGen
  - man-pages
  - pulseaudioLight

Change-Id: Ide603bf48bc7f77e10e4aa715ba025aece3644fd
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5387
Tested-by: BuildkiteCI
Autosubmit: sterni <sternenseemann@systemli.org>
Reviewed-by: tazjin <tazjin@tvl.su>
Reviewed-by: grfn <grfn@gws.fyi>
Reviewed-by: wpcarro <wpcarro@gmail.com>
2022-03-19 17:11:59 +00:00
Vincent Ambo
648e18d142 feat(tazjin/polyanka): Enable VMWare guest configuration
Change-Id: I47057976712fdfa0e0eb276b45ddbd8bacec55d3
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5385
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-11 21:38:40 +00:00
Vincent Ambo
c5306ec8ba feat(tazjin/polyanka): Reenable firewall
This will be needed for manual NAT configuration in the next step.

Change-Id: I466265f436377e128416ea9a4b8017d78bd1ddd0
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5383
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-11 21:38:40 +00:00
Vincent Ambo
a0a79f493d fix(tazjin/polyanka): Apply strongswan workaround
Change-Id: If2ec62923fd262922d11be16e2cb0afe6360b785
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5381
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
2022-03-11 15:16:40 +00:00
Vincent Ambo
b2ad7ccad9 fix(tazjin/polyanka): Mark myself as a trusted user
Change-Id: I1406d752283798c6c7323088e50686d9d1cb0fad
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5360
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-10 15:02:33 +00:00
Vincent Ambo
e5f87c9f81 feat(tazjin/polyanka): Enable mosh support
Change-Id: Idb9e98f10e004c77ab6e88b4e1614e2947e3fc10
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5359
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-10 15:02:33 +00:00
Vincent Ambo
a645f86f3b feat(tazjin/polyanka): Join zerotier network
Change-Id: I025cfdcce0799c6eed60ba925ba01a1349fc3381
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5358
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-10 15:02:33 +00:00
Vincent Ambo
480a71c10f feat(tazjin/polyanka): Check in host configuration
This host was previously managed manually, now adding it to depot
because doing that was a huge hassle.

Change-Id: I1e212fce13da735b5329578d9b2dd8f370f25cbc
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5357
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-10 15:02:33 +00:00
Vincent Ambo
88c61b4877 feat(tazjin/tverskoy): Join zerotier network
Change-Id: I7ea821ae54af6fb9c322a4e96f361f6f3d6e0eff
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5356
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-10 15:02:33 +00:00
Vincent Ambo
c1d0163783 chore(tazjin/tverskoy): Remove tlp charge threshold configuration
While in Egypt, I am on the go more often and actually having the
machine charge fully is quite useful.

Change-Id: I45109057936a0b1d8075f9eb5dcd77c45fce893d
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5352
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-03-07 11:35:46 +00:00
Vincent Ambo
50e6d3d77e chore(tazjin/tverskoy): Timezone -> Africa/Cairo
أهلاً

Change-Id: Ic73cd6de116c505cdf8add79dad52e8beb7706b6
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5351
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-03-05 04:51:28 +00:00
Vincent Ambo
b36c1a6da5 fix(tazjin/tverskoy): Add myself to nix.trustedUsers
Change-Id: I0d7f8413e01aba68485e9ed450ada3152b4650f8
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5350
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-03-05 04:51:28 +00:00
Vincent Ambo
3318982f81 chore: move some meta.targets definitions to meta.ci.targets
Change-Id: Icdec1dec89158fb596c5185ac7105892081947f5
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5252
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
Autosubmit: tazjin <tazjin@tvl.su>
2022-02-08 12:06:10 +00:00
Vincent Ambo
cf5f9d5ead chore(tazjin/tverskoy): Remove some unused software
Change-Id: I1b6766a2c92a6ef8c93dfdbd7913923752de2513
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5222
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-02-03 23:13:13 +00:00
Vincent Ambo
8099c11a12 fix(tazjin/tverskoy): Downgrade strongswan to 5.9.4
Comments contain all the relevant info.

Change-Id: I6d4a715889b562dc79148314092f698ceefcac88
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5221
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-02-03 23:08:38 +00:00
Vincent Ambo
7fcede0c5b fix(tazjin/tverskoy): Keep only one copy of Emacs
Change-Id: I88994777f4191efe4a4f297780bf9477638b87d2
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5204
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-02-03 16:28:46 +00:00
Vincent Ambo
af0c761553 chore(tazjin/tverskoy): Remove Spotify and Steam
They're big and I don't use them.

Change-Id: I87978c93ecf6cb5b5dd9935da61b0671522b06fa
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5203
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-02-03 16:28:46 +00:00
Vincent Ambo
3122cdf0c4 fix(tazjin/tverskoy): copy & paste some l2tp fix from nixpkgs#64965
Change-Id: Ib6375cd2281ce7eff87d9a1f8bd8f811ed180a87
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5155
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-02-01 09:23:09 +00:00
Vincent Ambo
aa122cbae7 style: format entire depot with nixpkgs-fmt
This CL can be used to compare the style of nixpkgs-fmt against other
formatters (nixpkgs, alejandra).

Change-Id: I87c6abff6bcb546b02ead15ad0405f81e01b6d9e
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4397
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
Reviewed-by: lukegb <lukegb@tvl.fyi>
Reviewed-by: wpcarro <wpcarro@gmail.com>
Reviewed-by: Profpatsch <mail@profpatsch.de>
Reviewed-by: kanepyork <rikingcoding@gmail.com>
Reviewed-by: tazjin <tazjin@tvl.su>
Reviewed-by: cynthia <cynthia@tvl.fyi>
Reviewed-by: edef <edef@edef.eu>
Reviewed-by: eta <tvl@eta.st>
Reviewed-by: grfn <grfn@gws.fyi>
2022-01-31 16:11:53 +00:00
tazjin
0b4d8ed626 revert: "feat(tazjin/tverskoy): Enable & persist gnome-keyring"
This reverts commit 24b6fe0e10.

Reason for revert: gnome-keyring coredumps constantly and blocks PAM
logins, also it doesn't actually work.

Change-Id: I437a78b2476928004ed3672de0b33fc002f218f9
Reviewed-on: https://cl.tvl.fyi/c/depot/+/5161
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
2022-01-31 10:00:38 +00:00
Vincent Ambo
e5181a13ed chore(tazjin/tverskoy): Reduce systemd stop timeout to 10s
Change-Id: Id477c50489fa45fae63120c201839a95aa21bd36
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4987
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-01-18 07:43:59 +00:00
Vincent Ambo
749266288e feat(tazjin/tverskoy): persist keyring data across reboots
Change-Id: I9602ae6c8fcd56fb9bbccc7ceacb08d23cd99a4f
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4986
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-01-18 06:19:50 +00:00
Vincent Ambo
1d281151de feat(tazjin/tverskoy): Install fractal system-wide
Change-Id: Ie29c7e9fe8187dd632742d6c923805743db03339
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4945
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
2022-01-17 13:57:06 +00:00
Vincent Ambo
24b6fe0e10 feat(tazjin/tverskoy): Enable & persist gnome-keyring
Required by Fractal.

Change-Id: Ic82b0d83f6d7c30639c2e149dad79ba4c1a30e88
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4943
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
2022-01-17 13:57:06 +00:00
sterni
f48d655021 chore(3p): bump NixOS channels to 2022-01-12
Temporarily use a master commit as some interesting failures have been
fixed there (yubikey-manager and notmuch).

* //users/tazjin/nixos/camden: The acme module was moved around, so we
  need to adjust the disabled module path.

Change-Id: I21c6a1963ffe4205f3577f531ce10b778a82e2ff
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4865
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
2022-01-12 14:30:24 +00:00
Vincent Ambo
e1044c1559 chore(tazjin/tverskoy): persist audacity directories
mostly to persist the configuration, which pins the tmpdir to a
sensible (persistent) location

Change-Id: I69693ed3a198b4aec281e53c5f7add4d0d8df657
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4834
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2022-01-09 09:08:31 +00:00
Vincent Ambo
bae8e8d26c feat(tazjin/tverskoy): Install audacity
Change-Id: I49b0bc23d83f7aac3d60ed72dcc759cdf9779154
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4831
Tested-by: BuildkiteCI
Autosubmit: tazjin <tazjin@tvl.su>
Reviewed-by: tazjin <tazjin@tvl.su>
2022-01-08 16:30:44 +00:00
Vincent Ambo
1935b41620 feat(tazjin/emacs): Use Emacs input methods in X11 buffers
This is much easier than the shitty keyboard layout switcher which
caused all kinds of terrifying bugs.

Unfortunately the layout switcher remains additionally because this
doesn't work with Quassel (Qt dropped support for XIM).

Change-Id: I7c58cebf9391216b6e7134d8c283d52cb18332de
Reviewed-on: https://cl.tvl.fyi/c/depot/+/3497
Tested-by: BuildkiteCI
Autosubmit: tazjin <mail@tazj.in>
Reviewed-by: tazjin <mail@tazj.in>
2021-12-24 19:33:50 +00:00
Vincent Ambo
e25ef08c45 chore(tazjin/tverskoy): Increase / tmpfs size to 8G
Any less and building 'awscli' is not possible ...

Change-Id: I99105b767f4afa4cf0d072d57b08963bc12ff994
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4391
Reviewed-by: tazjin <mail@tazj.in>
Autosubmit: tazjin <mail@tazj.in>
Tested-by: BuildkiteCI
2021-12-17 10:35:33 +00:00
Griffin Smith
d85c6a1b56 feat(ops/modules): Provide some modules to all nixoses
For modules that are gated behind a mkEnableOption, it's reasonable to
just provide them to all Depot-built nixos systems without requiring
people to explicitly import them. This defines a special module called
`default-imports.nix` which imports these modules (currently just
tvl-cache.nix and automatic-gc.nix, as I'm being rather conservative
adding things here to avoid breaking anyone's system), then provides
that module as one of the `modules` passed at the top-level
nixos/eval-config invocation.

Change-Id: I3be299ab10ae4c451ef11c514edb3c89318a2278
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4345
Tested-by: BuildkiteCI
Autosubmit: grfn <grfn@gws.fyi>
Reviewed-by: tazjin <mail@tazj.in>
2021-12-16 14:17:35 +00:00
Griffin Smith
0f5cc25697 feat(ops/modules): Add shared module for TVL cache
Add a shared nixos module for configuring whitby as a binary nix cache,
and refactor tverskoy to use this module.

This is enabled via an option to pave the way for including it as an
import in all depot-generated nixos configs at some point in the future.

Change-Id: I6dcc0e8eb48b1ac34457666dceebeedd5da6c526
Reviewed-on: https://cl.tvl.fyi/c/depot/+/4344
Tested-by: BuildkiteCI
Reviewed-by: tazjin <mail@tazj.in>
Reviewed-by: wpcarro <wpcarro@gmail.com>
Autosubmit: grfn <grfn@gws.fyi>
2021-12-15 23:36:22 +00:00
Vincent Ambo
53f8a04b33 feat(tazjin/tverskoy): Ensure ~/screenshots exists
Change-Id: Icae43b17a95c638429351273bb16111097c3e594
2021-12-13 16:24:37 +03:00
Vincent Ambo
214f422572 feat(3p/agenix): Import latest version from GitHub
It's time to automate secrets deployment on hosts like whitby.

Change-Id: If7006124b4b5fec16b4c3570488c11e484f93888
2021-12-07 18:27:54 +00:00
Vincent Ambo
9df5e1da19 feat(tazjin/tverskoy): Configure tlp to keep battery between 40-70%
This is supposedly better for battery health, and since the machine is
usually plugged in while in the office it might be a good idea.

Note for myself: `sudo tlp fullcharge` ~30 min before needing to leave
with a fully charged battery.

Change-Id: I3664264403f56c15e055822190f30c3a90c93ead
2021-12-06 16:18:06 +03:00
Vincent Ambo
465f3d3f14 chore(tazjin/tverskoy): Minor config cleanups
Change-Id: I434c0b8d5e5ce2d077630de2dd71de309b7d076f
2021-11-27 20:56:21 +03:00
Vincent Ambo
67d7bc2fa8 fix(tazjin/tverskoy): Persist Zoxide state between reboots
Change-Id: Ib1e1fe9749e56eefc83016b1946e6fe0b1f72339
2021-11-27 17:53:24 +03:00
Vincent Ambo
a935570a22 feat(tazjin/tverskoy): Install some more frequently used tools
... rather than nix-shelling them every time.

Change-Id: I9ab6ad67efbd6c16c7fd8cc9938d86d35f8418bc
2021-11-24 10:58:06 +03:00
Vincent Ambo
1ef8a6c153 feat(tazjin/tverskoy): Enable picom by default
... rather than launching it manually in a shell when I need it, which
is more often now that I have a large screen.

Change-Id: Ia526af98e513d29e70aeb093442465dce256c333
Reviewed-on: https://cl.tvl.fyi/c/depot/+/3874
Tested-by: BuildkiteCI
Reviewed-by: tazjin <mail@tazj.in>
2021-11-13 21:09:12 +00:00