Commit graph

471 commits

Author SHA1 Message Date
b12f f4c509b3de
Merge pull request 'docker-ci-runner: fix stop hanging for 120s' (#217) from fix/ci-runner-docker-stop into main
All checks were successful
continuous-integration/drone/push Build is passing
Reviewed-on: #217
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
2023-04-24 12:51:07 +02:00
Akshay Mankar 91353938af
modules/networking: Use mkDefault for caddy config
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-04-17 20:05:42 +02:00
teutat3s 24587194e9
docker-ci-runner: fix stop hanging for 120s
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-04-17 14:42:42 +02:00
teutat3s 19785f035c
docker-ci-runner: fix stop hanging for 120s
All checks were successful
continuous-integration/drone/push Build is passing
2023-04-15 21:13:45 +02:00
teutat3s 029be00eab
Merge pull request 'cachix: remove unused binary caches' (#209) from cachix/remove-unused-caches into main
All checks were successful
continuous-integration/drone/push Build is passing
Reviewed-on: #209
Reviewed-by: hensoko <hensoko@gssws.de>
2023-04-15 19:03:51 +02:00
teutat3s 76d8af7c3a
Merge pull request 'audio: disable useless bluetooth sap plugin' (#208) from audio/disable-bluetooth-sap-plugin into main
Some checks reported errors
continuous-integration/drone/pr Build is failing
continuous-integration/drone/push Build was killed
Reviewed-on: #208
Reviewed-by: hensoko <hensoko@gssws.de>
2023-04-15 19:01:55 +02:00
teutat3s 6547aa92cf
bash: want CTRL+c to cancel and discard current
All checks were successful
continuous-integration/drone/push Build is passing
line when in ble.sh vim insert mode
2023-04-15 12:44:45 +02:00
teutat3s bc519e213d
crypto: add fwknop to installed packages 2023-04-07 15:57:40 +02:00
teutat3s 3ea141d445
cachix: remove unused binary caches from drone
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
runner
2023-03-28 14:03:41 +02:00
teutat3s 52c2ca9f13
nix.conf: add back required experimental features
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-03-27 18:54:29 +02:00
teutat3s 22302c6256
nix.conf: add back required experimental features
All checks were successful
continuous-integration/drone/push Build is passing
2023-03-27 18:53:54 +02:00
teutat3s 972e3f1569
cachix: default binary cache is nixos.org, no need
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
to specify it explicitly (results in double entry in nix.conf)

Also force our nix.extraOptions because digga tries real hard to put
their binary caches there:
0595ae70cd/modules/nix-config.nix (L19-L23)
2023-03-27 18:09:46 +02:00
teutat3s 92201e4a79
bash: move secrets customization to user teuat3s 2023-03-27 18:06:16 +02:00
teutat3s cc35703d17
cachix: default binary cache is nixos.org, no need
to specify it explicitly (results in double entry in nix.conf)

Also force our nix.extraOptions because digga tries real hard to put
their binary caches there:
0595ae70cd/modules/nix-config.nix (L19-L23)
2023-03-27 18:03:28 +02:00
teutat3s b01c5f9fce
audio: disable useless bluetooth sap plugin
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-03-27 13:51:12 +02:00
teutat3s d0470d5aaf
flake: pull in changes from digga upstream
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
See:
54ede8e591...0595ae70cd?diff=unified
2023-03-27 13:48:39 +02:00
teutat3s 2332577d73
flake: pull in changes from digga upstream
See:
54ede8e591...0595ae70cd?diff=unified
2023-03-27 13:43:33 +02:00
teutat3s b3711c5ec2
Merge branch 'main' into teutat3s
All checks were successful
continuous-integration/drone/push Build is passing
2023-03-27 10:45:49 +02:00
teutat3s 06f8062fd0
audio: disable useless bluetooth sap plugin 2023-03-27 10:38:24 +02:00
teutat3s 4d4bf4abc6
networking: caddy file_server without etag header 2023-03-27 10:33:50 +02:00
teutat3s b9031dbd7c
core: reload caddy instead of always restarting
when config file changes
2023-03-16 11:49:36 +01:00
teutat3s 5b1f2dcc23
core: use latest linux kernel 6.2 2023-03-16 11:49:12 +01:00
teutat3s a1d46324ea
terminal-life: add tree 2023-03-14 14:27:32 +01:00
teutat3s 7b62e887cb
Use linux kernel 6.1 (LTS) 2023-03-14 14:27:08 +01:00
Hendrik Sokolowski 25126fd8ca
Make resumeDevice optional
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-02-26 21:51:25 +01:00
Hendrik Sokolowski 1c6a726d01
remove packages from lite mode 2023-02-26 21:51:19 +01:00
Hendrik Sokolowski 858fd257a4
define settings as defaults 2023-02-26 21:51:13 +01:00
teutat3s a476b72916
bash: disable ble.sh calculating time after each
All checks were successful
continuous-integration/drone/push Build is passing
command
2023-02-26 00:19:17 +01:00
teutat3s a383385724
bash: fix starship color in prompt
All checks were successful
continuous-integration/drone/push Build is passing
2023-02-24 18:35:06 +01:00
teutat3s d1d9495f77
bash: ble.sh use desc menu style for completion 2023-02-24 18:23:36 +01:00
teutat3s c8435976eb
nvim: fix file preview for names containing spaces
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-02-24 18:11:09 +01:00
teutat3s d94adfb3b8
nvim: fix file preview for names containing spaces 2023-02-24 17:58:21 +01:00
teutat3s 32a6b9a016
bash: disable ble.sh history share
complete on first TAB if there's a single matching filename
with show-all-if-ambiguous on

enable history search with arrow up after starting to type a command
2023-02-24 17:56:17 +01:00
Benjamin Bädorf 0e84e1ef2a
bash: add ble.sh changed vi keybindings 2023-02-07 13:28:26 +01:00
teutat3s db6ff53243
bash: ble.sh tweaks and starship ricing 2023-02-02 17:28:43 +01:00
teutat3s d9e56cbb47
devops: add flyctl, tea 2023-02-02 17:27:53 +01:00
teutat3s 001a1de2e8
Merge branch 'main' into teutat3s-bash 2023-02-01 19:05:57 +01:00
Hendrik Sokolowski 25ad234f2a
add default for nix store path
All checks were successful
continuous-integration/drone/push Build is passing
continuous-integration/drone/pr Build is passing
2023-01-29 18:06:40 +01:00
Hendrik Sokolowski 5f6988291c
Fix wording 2023-01-29 18:06:35 +01:00
Hendrik Sokolowski 289b58198c
NixOS module for a drone ci runner in docker 2023-01-29 18:06:16 +01:00
teutat3s 778ef916ca
Merge branch 'main' into teutat3s-bash 2023-01-28 22:51:33 +01:00
teutat3s 8f77eef79a
terminal-life: switch from zsh to bash & starship 2023-01-28 22:05:02 +01:00
teutat3s dca0bd978d
Apply treefmt 2023-01-28 21:49:10 +01:00
teutat3s 00677fb11f
Merge branch 'main' into feature/alejandra-treefmt 2023-01-28 21:40:44 +01:00
teutat3s ea6d2caa9d
networking: don't wait for network-online
It failed upon deployment with deploy-rs and caused it to rollback
2023-01-28 15:22:10 +01:00
teutat3s 601642cb68 Merge pull request 'audio: enable security.rtkit for pipewire' (#152) from fix/audio-stutter-pipewire into main
Reviewed-on: #152
Reviewed-by: hensoko <hensoko@gssws.de>
2023-01-28 15:11:25 +01:00
Hendrik Sokolowski 215a55e145
rename terraform, remove version 2022-11-26 15:42:44 +01:00
Hendrik Sokolowski fd58c1b1a3
rename deprecated property 2022-11-26 15:42:28 +01:00
teutat3s 6a343e7540
sway: don't use gtkUsePortal, it's deprecated
see: ebde08adf3
2022-11-26 04:44:54 +01:00
teutat3s e7ef245e32
docker-compose default to version 2 now 2022-11-26 04:42:16 +01:00
teutat3s 8a6ee0a53e
alacritty: remove use_thin_strokes
see: https://github.com/alacritty/alacritty/pull/6186
2022-11-26 04:42:11 +01:00
teutat3s d6236d0b0d
neovim: config updates for 0.8.x
use default_capabilities

set mouse= to disable new default mouse behaviour
2022-11-26 04:42:03 +01:00
teutat3s f97cf1d0e9
nix: use new nix.settings syntax 2022-11-26 04:40:22 +01:00
teutat3s 6c83d67887
sway: don't use gtkUsePortal, it's deprecated
see: ebde08adf3
2022-11-22 12:36:32 +01:00
teutat3s e815ca1293
docker-compose default to version 2 now 2022-11-22 12:35:42 +01:00
teutat3s e76cbabad9
alacritty: remove use_thin_strokes
see: https://github.com/alacritty/alacritty/pull/6186
2022-11-22 12:32:54 +01:00
teutat3s 1a13960d54
neovim: config updates for 0.8.x
use default_capabilities

set mouse= to disable new default mouse behaviour
2022-11-22 12:31:45 +01:00
teutat3s 0db272c260
nix: use new nix.settings syntax 2022-11-22 12:30:54 +01:00
Hendrik Sokolowski cc3979d724
Make resume_offset optional 2022-11-21 13:34:43 +01:00
teutat3s 805df1c2f1
audio: enable security.rtkit for pipewire
This should avoid stuttering audio when CPU is busy

See: https://nixos.wiki/wiki/PipeWire
2022-11-20 23:40:24 +01:00
teutat3s 73bf158392
Run treefmt command 2022-11-20 23:28:23 +01:00
teutat3s 24b8b9f060
Switch to alejandra for formatting
Use treefmt

For context, see upstream PR: https://github.com/divnix/digga/pull/491
2022-11-20 23:23:28 +01:00
teutat3s 5ea57eaea6
audio: enable security.rtkit for pipewire
This should avoid stuttering audio when CPU is busy
2022-11-20 23:14:51 +01:00
teutat3s 5ad5c9bae6
Switch to alejandra for formatting
Use treefmt

For context, see upstream PR: https://github.com/divnix/digga/pull/491
2022-11-20 23:10:39 +01:00
Benjamin Bädorf e26ffd2725
Merge pull request 'Embrace nvfetcher' (#145) from feature/embrace-nvfetcher into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/145
Reviewed-by: Benjamin Bädorf <hello@benjaminbaedorf.eu>
2022-10-29 00:43:30 +00:00
teutat3s c0f991010f
Fix zsh z plugin script path 2022-10-24 15:29:12 +02:00
teutat3s ea6233f57e
zsh: fetch plugins using nvfetcher 2022-10-24 15:24:52 +02:00
Hendrik Sokolowski eece344083
Make resume_offset optional 2022-10-23 18:33:52 +02:00
teutat3s cf2b9e2c54
swaynotificationcenter: use version from nixpkgs-unstable 2022-10-19 17:13:18 +02:00
teutat3s 4520dece5f
neovim: use nvfetcher for custom plugins 2022-10-18 16:55:51 +02:00
teutat3s 5bfbbebcc6
zsh: fetch plugins using nvfetcher 2022-10-18 16:46:16 +02:00
teutat3s 1cf3fad5b7
neovim: use nvfetcher for custom plugins 2022-10-18 16:24:43 +02:00
teutat3s 2d92c9d6a3
devops: use terraform 1.2.x 2022-10-17 22:15:44 +02:00
teutat3s b8273742e3
wifi: switch backend back to wpa_supplicant 2022-10-17 22:15:22 +02:00
teutat3s 28f1bd66f0
swayidle: adjust brightness after resume 2022-10-17 22:14:18 +02:00
teutat3s c88016af85
overlays: add gurk-rs, thunderbird, yubikey-agent 2022-10-17 22:12:44 +02:00
teutat3s 2b69ea89a4
Merge branch 'main' into teutat3s 2022-10-05 14:45:37 +02:00
teutat3s d43bd80580
core: disable SSH passwordAuthentication by default 2022-10-05 11:58:26 +02:00
teutat3s f28d05e24e
Change user.publicKeys to a SSH keys string list 2022-10-05 11:57:51 +02:00
Benjamin Bädorf f3a5b2233a
Merge branch 'main' into feature/more-paranoia 2022-10-03 02:55:25 +00:00
Benjamin Bädorf 5da560ef56
Open up SSH by default 2022-10-03 04:55:14 +02:00
teutat3s b23e1e16a4
alacritty: improve selection and cursor colors 2022-10-03 04:11:16 +02:00
Benjamin Bädorf 6f3885d0ca
Remove doubled openssh configs in paranoia module 2022-10-03 04:07:48 +02:00
Benjamin Bädorf 8529a15177
Be more paranoid
The paranoia mode now also enables the firewall and closes down a couple
of small openSSH holes. `noexec` on the whole FS is left out as it will
make every existing PubSolarOS installation panic.
2022-10-03 04:03:09 +02:00
teutat3s aa65a39eff
Merge branch 'main' into teutat3s 2022-10-03 03:10:48 +02:00
teutat3s 986680cc26
bootstrap iso: add PubSolarOS naming, drone pipeline
adjustments to include a symlink to the latest iso built
2022-10-03 01:30:34 +02:00
teutat3s 9457435388
Merge branch 'main' into teutat3s 2022-10-02 04:09:22 +02:00
hensoko 1181cd6fea
Improve core module (#132)
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/132
Reviewed-by: Benjamin Bädorf <hello@benjaminbaedorf.eu>
2022-10-02 01:17:34 +00:00
teutat3s 0ff91df7fe
Merge branch 'fix/swayidle-waybar-menu' into teutat3s 2022-10-02 01:22:27 +02:00
teutat3s 612e5e35c0
Fix swayidle, lock, waybar menu 2022-10-02 01:19:48 +02:00
teutat3s 76f3890de1
zsh: bump powerlevel10k, F-Sy-H to latest commit
on main branch
2022-09-06 11:57:23 +02:00
teutat3s ff0ff0b7ba
neovim: bump instant.nvim, Apprentice to latest
commit on main branch
2022-09-06 11:56:50 +02:00
teutat3s 63080c4d4f
Merge branch 'main' into teutat3s 2022-09-01 15:29:52 +02:00
teutat3s 1767dcb076
Fix swayidle service
- add missing \
- reference swaylock-bg script from pkgs
2022-09-01 14:38:10 +02:00
teutat3s 9ef3d58d2e
Merge branch 'main' into teutat3s 2022-08-29 15:39:48 +02:00
teutat3s c1b672fe70
Fix conflicting definition values, force use of
our defined value.

error: The option 'services.getty.autologinUser' has conflicting definition values:
       - In '/nix/store/zyh8f18z0m1r9jppvdcdivfvfxg0j3fv-source/nixos/modules/profiles/installation-device.nix': "nixos"
       - In '/nix/store/w82qigr5jqv9c6jhdrpdwixydk3rmbzw-source/modules/graphical': "pub-solar"
2022-08-29 11:55:20 +02:00
teutat3s 72cc501e5f
Merge branch 'main' into teutat3s 2022-08-25 16:18:24 +02:00
Benjamin Bädorf 8fc8ac2d58
Fix service startup for ci-runner 2022-08-25 15:25:34 +02:00
Benjamin Bädorf a643701e49
Merge branch 'main' into feature/ci-runner-onecommit 2022-08-25 13:20:52 +00:00
Benjamin Bädorf b16299965c
Merge pull request 'Fix hibernation' (#120) from fix/hibernation into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/120
Reviewed-by: hensoko <hensoko@noreply.example.org>
2022-08-25 09:58:20 +00:00
Benjamin Bädorf 6d1d683b23
Fix swayidle command, add hibernation on lid close, fix env
The swayidle command in the service was straight up broken, this commit
fixes that.

Environment Variables set in the `session-variables` file are now
correctly imported across the system. This fixes `EDITOR` defaulting to
`nano`.
2022-08-25 00:13:23 +02:00
Benjamin Bädorf 40799ed5b6
Merge pull request 'feature/pin-zsh-plugins-to-deterministic-versions' (#123) from feature/pin-zsh-plugins-to-deterministic-versions into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/123
Reviewed-by: Benjamin Bädorf <hello@benjaminbaedorf.eu>
2022-08-24 22:05:08 +00:00
teutat3s de03f0f42f
zsh: correctly pin plugins to commits instead of
branch names, to prevent errors like:
error: hash mismatch in fixed-output derivation '/nix/store/n7w9jd46zx4rzy9a24abxv3lcx1ikn1j-source.drv':
         specified: sha256-0pzkKPdzyQXTe8usaSaM1Iivi2UHQrSJrh5V2pRd0Gg=
            got:    sha256-9vc4cMBCNOmPOyzGwnPeMrXXyQUq4pC9Du3AWl9+Rys=
2022-08-24 23:19:18 +02:00
teutat3s f7eda8ca1c
zsh: bundle plugins within our config 2022-08-24 23:19:13 +02:00
hensoko ad0402fd93
Merge pull request 'Disable NetworkManager-wait-online system service' (#121) from feature/disable-networkmanager-wait-online into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/121
Reviewed-by: Benjamin Bädorf <hello@benjaminbaedorf.eu>
2022-08-24 20:50:45 +00:00
Hendrik Sokolowski 8efc4c2f9e
Use iwd as wifi backend
iwd is a lightweight wireless connection backend that was initiated by
developers of intel. It is supposed to be faster.
2022-08-24 21:49:59 +02:00
Hendrik Sokolowski 57f608ecde
Disable NetworkManager-wait-online system service
This service is presumably useful for devices that need to ensure there
is an active internet connection before starting other systemd units.
This is neither the case for end-user devices as the an active internet
connection is only needed after login nor the case for server-like
systems as they normally have a static / dhcp-based network configuration
which does not require switchable network configuration profiles.
2022-08-24 21:47:58 +02:00
teutat3s b4c782e65a
Merge branch 'main' into teutat3s 2022-08-24 20:32:28 +02:00
Benjamin Bädorf dc8257f31f
Fix hibernation
The resumeDevice and kernel `resume` parameter were being used wrong.

Only `boot.resumeDevice` is necessary, and it should point at the _block
device_ that holds the swapfile. If you are running on encrypted
volumes, this means you will need to use the name of the *decrypted
block device* on which the swapfile sits.
2022-08-24 18:46:35 +02:00
teutat3s c63c3da345
nix: set nix.package to force overlays/
overrides.nix to apply

use nix as default version alias in devshell as well
2022-08-24 00:55:57 +02:00
teutat3s 63102f33e5
nix: set nix.package to force overlays/
overrides.nix to apply

use nix as default version alias in devshell as well
2022-08-24 00:53:38 +02:00
Benjamin Bädorf 9c5bcc6a2f
Merge branch 'main' into feature/ci-runner-onecommit 2022-08-14 22:17:19 +02:00
Benjamin Bädorf 14ba701061
Don't use libvirt in ci-runner 2022-08-14 20:28:18 +02:00
Benjamin Bädorf c5362c0453
Fix path in drone runner exec 2022-08-14 20:25:43 +02:00
Benjamin Bädorf f9b7c9e3c9
Fix build 2022-08-14 20:09:38 +02:00
Benjamin Bädorf 46992c46d6
Add parameter for swapfile offset 2022-08-14 19:59:01 +02:00
Benjamin Bädorf ba6dfdcf53
Fix sway mode_system config import 2022-08-14 19:48:45 +02:00
Benjamin Bädorf 963212893e
Merge branch 'main' into feat/hibernate-always 2022-08-14 19:15:25 +02:00
Benjamin Bädorf aabe96a335
Fix hibernation config 2022-08-14 18:11:25 +02:00
Benjamin Bädorf 043178172b
Improve help and screen recording keybindings in sway
This commit shuffles around some sway keybindings and improves the
screen recording experience by adding a small wrapper around `slurp` and
`wf-recorder` conveniently called `record-screen`.

* `$mod+F5` now reload the sway configuration,
* `$mod+Ctrl+r` starts a screen recording (to stop it, go to workspace 7
  and kill the process),
* `record-screen` and the firefox sharing indicator are both on
  workspace 7 now, making it the "trash" workspace,
* `$mod+F1` and `$mod+Shift+h` now open Firefox with the docs of our
repository availabe under `help.local`.
* To not infuriate `qMasterPassword` users, that is now available under
`$mod+Shift+m` instead of `$mod+F1`.
2022-08-14 18:03:32 +02:00
teutat3s b263ca4c45
Merge branch 'main' into teutat3s 2022-08-14 17:21:34 +02:00
Benjamin Bädorf 26803ccf4f
Merge branch 'feat/hibernate-always' of git.b12f.io:pub-solar/os into feat/hibernate-always 2022-08-14 17:20:14 +02:00
Benjamin Bädorf ca4262b84f
Fix hibernation enabling in paranoia mode 2022-08-14 17:20:09 +02:00
Benjamin Bädorf 63435d6e59
Merge branch 'main' into feature/ci-runner-onecommit 2022-08-14 15:18:58 +00:00
Benjamin Bädorf 932bd05c41
Merge branch 'main' into feat/hibernate-always 2022-08-14 15:18:01 +00:00
hensoko cb5c75b1cc
feature/terminal-life-lite-mode (#117)
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/117
Reviewed-by: Benjamin Bädorf <hello@benjaminbaedorf.eu>
2022-08-14 15:17:35 +00:00
Benjamin Bädorf 762e78677b
Fix hibernation enabling in paranoia mode 2022-08-14 17:15:50 +02:00
Benjamin Bädorf 4c0991c7e1
Put always hibernate behind a flag
Hibernation is now a core option:
```
pub-solar.core.hibernation.enable = true;
```

And there's a paranoia mode, that keeps the disk encrypted as much as
possible by enabling hibernation and removing the options for sleep,
screen locking.

Idle locking now hibernates, and it does it on very short notice.
2022-08-14 17:10:30 +02:00
teutat3s 820cc40356
Merge branch 'main' into teutat3s 2022-08-14 16:46:33 +02:00
teutat3s c400f58ce8
Merge branch 'main' into feature/ci-runner-onecommit 2022-08-14 16:33:57 +02:00
Benjamin Bädorf d3d4c6f498
Merge remote-tracking branch 'origin/main' into feat/hibernate-always 2022-08-14 16:28:59 +02:00
teutat3s 5dd0a5badb
Merge branch 'main' into fix/set-nix-dram-default 2022-08-14 15:54:51 +02:00
hensoko c43b96c4d5 Fix core module (#116)
Co-authored-by: Hendrik Sokolowski <hensoko@gssws.de>
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/116
Reviewed-by: teutat3s <teutates@mailbox.org>
2022-08-14 13:54:19 +00:00
Benjamin Bädorf 98a537d287
Merge branch 'main' into feat/hibernate-always 2022-08-14 15:27:01 +02:00
teutat3s 71a47f35b4
Merge branch 'main' into fix/set-nix-dram-default 2022-08-14 15:18:55 +02:00
Benjamin Bädorf e436443bd2 Merge pull request 'Rework of x-os module / core profile' (#115) from feature/integrate-core-profile-into-x-os-and-rename-x-os-to-core into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/115
Reviewed-by: Benjamin Bädorf <b12f@noreply.example.org>
2022-08-14 13:13:27 +00:00
teutat3s bf581d1e9c
nix-dram: remove nix-dram as default nix binary
nix-dram as default nix binary isn't worth the
maintenance work anymore, CI builds started
failing because of it:
https://ci.b12f.io/pub-solar/os/533/1/2

Automatic builds still happen each night and can be
checked in our fork of nix-dram:
https://github.com/pub-solar/nix-dram/actions

Users of nix-dram can continue to use it via devshells
or nix run github:dramforever/nix-dram -- --version
2022-08-14 15:12:23 +02:00
Hendrik Sokolowski 7785744d73 Move some packages from full to default set, move options for modules to
default.nix
2022-08-14 15:11:01 +02:00
Benjamin Bädorf e3bfdc71fc
Merge branch 'main' into feat/hibernate-always 2022-08-14 15:05:32 +02:00
Hendrik Sokolowski 4190818304 Rework of x-os module / core profile
* move core settings to x-os
* add option to only install a lite core
* rename x-os module to core
* remove core profile from flake.nix
2022-08-14 14:47:44 +02:00
Benjamin Bädorf be016c44fb Merge pull request 'Remove nonfree software' (#113) from feat/fucking-free into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/113
Reviewed-by: teutat3s <teutates@mailbox.org>
2022-08-14 12:47:32 +00:00
Benjamin Bädorf 552b2ee53e
Remove nonfree software
This commit removes the default, global `allowUnfree = true;` setting
and removes nonfree packages where I could find them. Tested by building
the `PubSolarOS` host once.
2022-08-14 14:15:02 +02:00
hensoko 18e9b4a009 feature/restructure-core-profile (#109)
Co-authored-by: Hendrik Sokolowski <hensoko@gssws.de>
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/109
Reviewed-by: Benjamin Bädorf <b12f@noreply.example.org>
Reviewed-by: teutat3s <teutates@mailbox.org>
2022-08-13 20:35:43 +00:00
Benjamin Bädorf e3d76f1999
Move ci-runner to user and add git, virsh and nix to path 2022-08-13 22:31:30 +02:00
Benjamin Bädorf 0b229a771e
Barebones ci-runner module
This adds a barebones CI-runner module with the following option:

`pub-solar.ci-runner.enable`

If enabled, this will start a systemd service on boot that runs
`drone-runner-exec`. The configuration expects you to have a file called
`secrets/drone-runner-exec-config` handled by agenix that gets put into
`/run/agenix/drone-runner-exec-config` and is owned by root.

This file should contain a configuration similar to the following:

```
CLIENT_DRONE_RPC_PROTO=https
CLIENT_DRONE_RPC_HOST=drone.company.com
CLIENT_DRONE_RPC_SECRET=super-duper-secret
```
2022-08-13 22:08:02 +02:00
teutat3s 6d5025b17b
Merge branch 'main' into teutat3s 2022-08-13 17:43:58 +02:00
teutat3s e11c91f86e
Merge branch 'main' into fix/neovim-cherry-picks 2022-08-13 17:35:16 +02:00
Benjamin Bädorf 93aaab2685
Make cryptroot optional 2022-08-13 12:32:37 +02:00
Benjamin Bädorf 9375fc4aae Merge pull request 'Add denols to nvim' (#88) from feature/denols into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/88
2022-08-12 22:45:13 +00:00
Benjamin Bädorf ebfd447037 Merge pull request 'Add Arduino module' (#98) from feature/arduino into main
Reviewed-on: https://git.b12f.io/pub-solar/os/pulls/98
Reviewed-by: hensoko <hensoko@noreply.example.org>
2022-08-12 22:44:28 +00:00