diff --git a/ada/boot/initrd.nix b/ada/boot/initrd.nix index 98d1980..6924fac 100644 --- a/ada/boot/initrd.nix +++ b/ada/boot/initrd.nix @@ -1,4 +1,4 @@ -{lib, ...}: { +_: { boot = { initrd = { availableKernelModules = [ @@ -14,9 +14,9 @@ ]; supportedFilesystems = { + ntfs = true; vfat = true; btrfs = true; - zfs = lib.mkForce true; }; kernelModules = [ diff --git a/ada/boot/kernel.nix b/ada/boot/kernel.nix index 19888ed..c3a04ac 100644 --- a/ada/boot/kernel.nix +++ b/ada/boot/kernel.nix @@ -1,7 +1,6 @@ { config, pkgs, - lib, ... }: { boot = { @@ -17,7 +16,7 @@ }; }; - kernelPackages = pkgs.linuxPackages_cachyos-gcc; + kernelPackages = pkgs.linuxPackages_latest; extraModulePackages = with config.boot.kernelPackages; [ zenpower v4l2loopback @@ -32,7 +31,6 @@ ]; kernelParams = [ - "video=DP-1:2560x1440@165" "amd_pstate=guided" "udev.log_priority=3" "quiet" @@ -45,6 +43,7 @@ "page_alloc.shuffle=1" "page_poison=1" "slab_nomerge" + "zswap.enabled=0" "kernel.watchdog=0" "oops=panic" @@ -68,6 +67,7 @@ "hfs" "hpfs" "jfs" + "zfs" "minix" "nilfs2" "ntfs" @@ -81,9 +81,9 @@ ]; supportedFilesystems = { + ntfs = true; vfat = true; btrfs = true; - zfs = lib.mkForce true; }; consoleLogLevel = 0; diff --git a/ada/boot/lanzaboote.nix b/ada/boot/lanzaboote.nix index 08d07df..8036b8a 100644 --- a/ada/boot/lanzaboote.nix +++ b/ada/boot/lanzaboote.nix @@ -1,4 +1,4 @@ -{...}: { +_: { boot = { lanzaboote = { enable = true; diff --git a/ada/boot/loader/systemd-boot.nix b/ada/boot/loader/systemd-boot.nix index 8e2989c..d8ebe95 100644 --- a/ada/boot/loader/systemd-boot.nix +++ b/ada/boot/loader/systemd-boot.nix @@ -1,4 +1,4 @@ -{...}: { +_: { boot = { loader = { systemd-boot = { diff --git a/ada/boot/tmp.nix b/ada/boot/tmp.nix index ac46b34..904e141 100644 --- a/ada/boot/tmp.nix +++ b/ada/boot/tmp.nix @@ -1,4 +1,4 @@ -{...}: { +_: { boot = { tmp = { useTmpfs = true; diff --git a/ada/boot/zfs.nix b/ada/boot/zfs.nix deleted file mode 100644 index 58db7ab..0000000 --- a/ada/boot/zfs.nix +++ /dev/null @@ -1,9 +0,0 @@ -{pkgs, ...}: { - boot = { - zfs = { - package = pkgs.zfs_cachyos; - allowHibernation = false; - removeLinuxDRM = false; - }; - }; -} diff --git a/ada/console/console.nix b/ada/console/console.nix index 1e60d13..e3a24c9 100644 --- a/ada/console/console.nix +++ b/ada/console/console.nix @@ -1,4 +1,4 @@ -{...}: { +_: { console = { useXkbConfig = true; }; diff --git a/ada/default.nix b/ada/default.nix index 27db235..483d476 100644 --- a/ada/default.nix +++ b/ada/default.nix @@ -6,7 +6,6 @@ "${self}/ada/boot/plymouth.nix" "${self}/ada/boot/tmp.nix" "${self}/ada/boot/loader/systemd-boot.nix" - "${self}/ada/boot/zfs.nix" "${self}/ada/disko/disk.nix" "${self}/ada/disko/lvm_vg.nix" @@ -19,9 +18,10 @@ "${self}/ada/hardware/amdgpu.nix" "${self}/ada/hardware/cpu.nix" "${self}/ada/hardware/graphics.nix" - "${self}/ada/hardware/openrazer.nix" "${self}/ada/hardware/qmk.nix" "${self}/ada/hardware/zram.nix" + "${self}/ada/hardware/bluetooth.nix" + "${self}/ada/hardware/" "${self}/ada/home-manager/users.nix" @@ -70,14 +70,12 @@ "${self}/ada/services/qmk.nix" "${self}/ada/services/scx.nix" "${self}/ada/services/xserver.nix" - "${self}/ada/services/zapret.nix" - "${self}/ada/services/zerotier.nix" - "${self}/ada/services/yggdrasil.nix" "${self}/ada/services/sunshine.nix" "${self}/ada/services/usbmuxd.nix" "${self}/ada/services/irqbalance.nix" "${self}/ada/services/yubikey-agent.nix" "${self}/ada/services/resolved.nix" + "${self}/ada/services/firewalld.nix" "${self}/ada/sops/defaults.nix" "${self}/ada/sops/secrets.nix" @@ -102,8 +100,6 @@ "${self}/ada/users/users/root.nix" "${self}/ada/users/mutableUsers.nix" - "${self}/ada/virtualisation/docker.nix" - "${self}/ada/xdg/icons.nix" "${self}/ada/xdg/mime.nix" "${self}/ada/xdg/portal.nix" diff --git a/ada/disko/disk.nix b/ada/disko/disk.nix index 63762ae..3152264 100644 --- a/ada/disko/disk.nix +++ b/ada/disko/disk.nix @@ -22,6 +22,7 @@ ]; }; }; + luks = { size = "100%"; content = { diff --git a/ada/environment/variables.nix b/ada/environment/variables.nix index 2cd14c2..9c47685 100644 --- a/ada/environment/variables.nix +++ b/ada/environment/variables.nix @@ -1,7 +1,7 @@ {config, ...}: { environment = { variables = { - AMD_VULKAN_ICD = "RADV"; + AMD_VULKAN_ICD = "AMDVLK"; HOSTNAME = config.networking.hostName; QT_QPA_PLATFORM = "wayland"; SDL_VIDEODRIVER = "wayland"; diff --git a/ada/hardware/amdgpu.nix b/ada/hardware/amdgpu.nix index dce6d88..3dd1d56 100644 --- a/ada/hardware/amdgpu.nix +++ b/ada/hardware/amdgpu.nix @@ -1,4 +1,4 @@ -{...}: { +_: { hardware = { amdgpu = { initrd = { diff --git a/ada/hardware/bluetooth.nix b/ada/hardware/bluetooth.nix new file mode 100644 index 0000000..d3576ae --- /dev/null +++ b/ada/hardware/bluetooth.nix @@ -0,0 +1,7 @@ +_: { + hardware = { + bluetooth = { + enable = true; + }; + }; +} diff --git a/ada/hardware/cpu.nix b/ada/hardware/cpu.nix index dc5fd00..abd6460 100644 --- a/ada/hardware/cpu.nix +++ b/ada/hardware/cpu.nix @@ -1,6 +1,5 @@ -{...}: { +_: { hardware = { - enableRedistributableFirmware = true; cpu = { amd = { updateMicrocode = true; diff --git a/ada/hardware/default.nix b/ada/hardware/default.nix new file mode 100644 index 0000000..9f37847 --- /dev/null +++ b/ada/hardware/default.nix @@ -0,0 +1,8 @@ +_: { + hardware = { + enableAllFirmware = true; + enableAllHardware = true; + enableRedistributableFirmware = true; + firmwareCompression = "zstd"; + }; +} diff --git a/ada/hardware/graphics.nix b/ada/hardware/graphics.nix index f81ccb7..76c79bf 100644 --- a/ada/hardware/graphics.nix +++ b/ada/hardware/graphics.nix @@ -1,4 +1,4 @@ -{...}: { +_: { hardware = { graphics = { enable = true; diff --git a/ada/hardware/openrazer.nix b/ada/hardware/openrazer.nix deleted file mode 100644 index af74569..0000000 --- a/ada/hardware/openrazer.nix +++ /dev/null @@ -1,15 +0,0 @@ -{...}: { - hardware = { - openrazer = { - enable = false; - users = [ - "hand7s" - ]; - - batteryNotifier = { - enable = true; - percentage = 15; - }; - }; - }; -} diff --git a/ada/hardware/qmk.nix b/ada/hardware/qmk.nix index 543ece2..8742a19 100644 --- a/ada/hardware/qmk.nix +++ b/ada/hardware/qmk.nix @@ -1,4 +1,4 @@ -{...}: { +_: { hardware = { keyboard = { qmk = { diff --git a/ada/hardware/zram.nix b/ada/hardware/zram.nix index b973787..0d77537 100644 --- a/ada/hardware/zram.nix +++ b/ada/hardware/zram.nix @@ -1,4 +1,4 @@ -{...}: { +_: { zramSwap = { enable = true; algorithm = "zstd"; diff --git a/ada/home-manager/users.nix b/ada/home-manager/users.nix index be5338e..6590188 100644 --- a/ada/home-manager/users.nix +++ b/ada/home-manager/users.nix @@ -1,20 +1,17 @@ -{ - inputs, - self, - ... -}: { +{self, ...}: { home-manager = { users = { - hand7s = { + "hand7s" = { imports = [ "${self}/hand7s/" - inputs.spicetify-nix.homeManagerModules.default - inputs.hyprland.homeManagerModules.default - inputs.chaotic.homeManagerModules.default - inputs.sops-nix.homeManagerModules.sops + self.inputs.agenix.homeManagerModules.default + self.inputs.spicetify-nix.homeManagerModules.default + self.inputs.hyprland.homeManagerModules.default + self.inputs.chaotic.homeManagerModules.default + self.inputs.sops-nix.homeManagerModules.sops - inputs.nix-index-database.homeModules.nix-index - inputs.noctalia.homeModules.default + self.inputs.nix-index-database.homeModules.nix-index + self.inputs.noctalia.homeModules.default ]; }; }; @@ -23,7 +20,6 @@ extraSpecialArgs = { inherit - inputs self ; }; diff --git a/ada/i18n/locales.nix b/ada/i18n/locales.nix index 09234a5..f456740 100644 --- a/ada/i18n/locales.nix +++ b/ada/i18n/locales.nix @@ -1,4 +1,4 @@ -{...}: { +_: { i18n = { defaultLocale = "en_US.UTF-8"; supportedLocales = [ diff --git a/ada/networking/firewall.nix b/ada/networking/firewall.nix index 17f2917..b85bbd4 100644 --- a/ada/networking/firewall.nix +++ b/ada/networking/firewall.nix @@ -1,30 +1,14 @@ -{...}: { +_: { networking = { firewall = { allowPing = true; - enable = true; + enable = false; checkReversePath = false; + }; - interfaces = { - eno1 = rec { - allowedTCPPortRanges = [ - { - from = 1714; - to = 1764; - } - ]; - - allowedUDPPortRanges = allowedTCPPortRanges; - }; - - salt-hand7s-pc = rec { - allowedTCPPorts = [ - 6567 - ]; - - allowedUDPPorts = allowedTCPPorts; - }; - }; + nftables = { + enable = true; + flattenRulesetFile = true; }; }; } diff --git a/ada/networking/hostId.nix b/ada/networking/hostId.nix index a771b6b..585868c 100644 --- a/ada/networking/hostId.nix +++ b/ada/networking/hostId.nix @@ -1,4 +1,4 @@ -{...}: { +_: { networking = { hostId = "5c79d468"; }; diff --git a/ada/networking/hostname.nix b/ada/networking/hostname.nix index 95bc424..f8b1373 100644 --- a/ada/networking/hostname.nix +++ b/ada/networking/hostname.nix @@ -1,5 +1,5 @@ -{...}: { +_: { networking = { - hostName = "s0mePC-nix"; + hostName = "ada"; }; } diff --git a/ada/networking/hosts.nix b/ada/networking/hosts.nix index 04747e5..e42e2b1 100644 --- a/ada/networking/hosts.nix +++ b/ada/networking/hosts.nix @@ -1,4 +1,4 @@ -{...}: { +_: { networking = { hosts = { # nope diff --git a/ada/networking/nameservers.nix b/ada/networking/nameservers.nix index a4d22c1..31726b9 100644 --- a/ada/networking/nameservers.nix +++ b/ada/networking/nameservers.nix @@ -1,4 +1,4 @@ -{...}: { +_: { networking = { nameservers = [ # cf dns diff --git a/ada/networking/networkmanager.nix b/ada/networking/networkmanager.nix index 3d66f30..474d212 100644 --- a/ada/networking/networkmanager.nix +++ b/ada/networking/networkmanager.nix @@ -1,4 +1,4 @@ -{...}: { +_: { networking = { networkmanager = { enable = false; diff --git a/ada/networking/timeServers.nix b/ada/networking/timeServers.nix index 88e14c4..9289ea6 100644 --- a/ada/networking/timeServers.nix +++ b/ada/networking/timeServers.nix @@ -1,4 +1,4 @@ -{...}: { +_: { networking = { timeServers = [ "0.nixos.pool.ntp.org" diff --git a/ada/networking/wireguard.nix b/ada/networking/wireguard.nix index 2ee5c02..bd2336c 100644 --- a/ada/networking/wireguard.nix +++ b/ada/networking/wireguard.nix @@ -1,4 +1,4 @@ -{...}: { +_: { networking = { wireguard = { enable = true; diff --git a/ada/nix/settings/allowed-users.nix b/ada/nix/settings/allowed-users.nix index d483d0c..0239519 100644 --- a/ada/nix/settings/allowed-users.nix +++ b/ada/nix/settings/allowed-users.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { sandbox = true; diff --git a/ada/nix/settings/auto-optimise-store.nix b/ada/nix/settings/auto-optimise-store.nix index 14f13c5..cb7a22a 100644 --- a/ada/nix/settings/auto-optimise-store.nix +++ b/ada/nix/settings/auto-optimise-store.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { auto-optimise-store = true; diff --git a/ada/nix/settings/experimental-features.nix b/ada/nix/settings/experimental-features.nix index 7ce7e89..9c45bc4 100644 --- a/ada/nix/settings/experimental-features.nix +++ b/ada/nix/settings/experimental-features.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { experimental-features = [ diff --git a/ada/nix/settings/substituters.nix b/ada/nix/settings/substituters.nix index 762ec5c..da0035f 100644 --- a/ada/nix/settings/substituters.nix +++ b/ada/nix/settings/substituters.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { substituters = [ @@ -9,10 +9,10 @@ # cachix "https://nix-community.cachix.org/" "https://chaotic-nyx.cachix.org/" - "https://ags.cachix.org" "https://hyprland.cachix.org" "https://chaotic-nyx.cachix.org/" - "https://colmena.cachix.org" + # nix-community + "https://hydra.nix-community.org/" ]; }; }; diff --git a/ada/nix/settings/trusted-public-keys.nix b/ada/nix/settings/trusted-public-keys.nix index e8710cb..4a128cb 100644 --- a/ada/nix/settings/trusted-public-keys.nix +++ b/ada/nix/settings/trusted-public-keys.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { trusted-public-keys = [ diff --git a/ada/nix/settings/trusted-substituters.nix b/ada/nix/settings/trusted-substituters.nix index a5927a2..b5d0387 100644 --- a/ada/nix/settings/trusted-substituters.nix +++ b/ada/nix/settings/trusted-substituters.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { trusted-substituters = [ @@ -13,7 +13,6 @@ "https://ags.cachix.org" "https://hyprland.cachix.org" "https://chaotic-nyx.cachix.org/" - "https://colmena.cachix.org" ]; }; }; diff --git a/ada/nix/settings/trusted-users.nix b/ada/nix/settings/trusted-users.nix index e4a9dae..4eee825 100644 --- a/ada/nix/settings/trusted-users.nix +++ b/ada/nix/settings/trusted-users.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nix = { settings = { trusted-users = [ diff --git a/ada/nixpkgs/config.nix b/ada/nixpkgs/config.nix index 27b79b0..b93e4ef 100644 --- a/ada/nixpkgs/config.nix +++ b/ada/nixpkgs/config.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nixpkgs = { config = { allowUnfree = true; diff --git a/ada/nixpkgs/overlays.nix b/ada/nixpkgs/overlays.nix index 2881eba..8db0844 100644 --- a/ada/nixpkgs/overlays.nix +++ b/ada/nixpkgs/overlays.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nixpkgs = { overlays = [ ]; diff --git a/ada/nixpkgs/system.nix b/ada/nixpkgs/system.nix index 63fda3b..3cbe59a 100644 --- a/ada/nixpkgs/system.nix +++ b/ada/nixpkgs/system.nix @@ -1,4 +1,4 @@ -{...}: { +_: { nixpkgs = { system = "x86_64-linux"; hostPlatform = "x86_64-linux"; diff --git a/ada/programs/gamemode.nix b/ada/programs/gamemode.nix index 3a6acb9..4d197e1 100644 --- a/ada/programs/gamemode.nix +++ b/ada/programs/gamemode.nix @@ -1,4 +1,4 @@ -{...}: { +_: { programs = { gamemode = { enable = true; diff --git a/ada/programs/gamescope.nix b/ada/programs/gamescope.nix index 7e6c94c..44be34d 100644 --- a/ada/programs/gamescope.nix +++ b/ada/programs/gamescope.nix @@ -2,7 +2,7 @@ programs = { gamescope = { enable = true; - package = pkgs.gamescope_git; + package = pkgs.gamescope; args = [ "-e" ]; diff --git a/ada/programs/nekoray.nix b/ada/programs/nekoray.nix index b5cfb36..6eb2421 100644 --- a/ada/programs/nekoray.nix +++ b/ada/programs/nekoray.nix @@ -1,6 +1,6 @@ -{...}: { +_: { programs = { - nekoray = { + throne = { enable = true; tunMode = { enable = true; diff --git a/ada/programs/nh.nix b/ada/programs/nh.nix index f43fb06..6d9937d 100644 --- a/ada/programs/nh.nix +++ b/ada/programs/nh.nix @@ -1,4 +1,4 @@ -{...}: { +_: { programs = { nh = { enable = true; diff --git a/ada/programs/ssh.nix b/ada/programs/ssh.nix index 0f8bd7b..017f4c9 100644 --- a/ada/programs/ssh.nix +++ b/ada/programs/ssh.nix @@ -1,4 +1,4 @@ -{...}: { +_: { programs = { ssh = { startAgent = true; diff --git a/ada/programs/yubikey-touch-detector.nix b/ada/programs/yubikey-touch-detector.nix index c9815c5..92fe31f 100644 --- a/ada/programs/yubikey-touch-detector.nix +++ b/ada/programs/yubikey-touch-detector.nix @@ -1,4 +1,4 @@ -{...}: { +_: { programs = { yubikey-touch-detector = { enable = true; diff --git a/ada/security/pam/yubico.nix b/ada/security/pam/yubico.nix index a17999d..cd8a4a1 100644 --- a/ada/security/pam/yubico.nix +++ b/ada/security/pam/yubico.nix @@ -1,4 +1,4 @@ -{...}: { +_: { security = { pam = { yubico = { diff --git a/ada/security/polkit.nix b/ada/security/polkit.nix index 7604e82..77e04d1 100644 --- a/ada/security/polkit.nix +++ b/ada/security/polkit.nix @@ -1,4 +1,4 @@ -{...}: { +_: { security = { polkit = { enable = true; diff --git a/ada/security/rtkit.nix b/ada/security/rtkit.nix index d3604df..dd40f89 100644 --- a/ada/security/rtkit.nix +++ b/ada/security/rtkit.nix @@ -1,4 +1,4 @@ -{...}: { +_: { security = { rtkit = { enable = true; diff --git a/ada/security/sudo-rs.nix b/ada/security/sudo-rs.nix index 772460d..4f270c9 100644 --- a/ada/security/sudo-rs.nix +++ b/ada/security/sudo-rs.nix @@ -1,4 +1,4 @@ -{...}: { +_: { security = { sudo-rs = { enable = true; diff --git a/ada/services/firewalld.nix b/ada/services/firewalld.nix new file mode 100644 index 0000000..7cd83ae --- /dev/null +++ b/ada/services/firewalld.nix @@ -0,0 +1,15 @@ +{...}: { + services = { + firewalld = { + enable = true; + + settings = { + # nope + }; + + zones = { + # nope + }; + }; + }; +} diff --git a/ada/services/greetd.nix b/ada/services/greetd.nix index 812845d..83d2431 100644 --- a/ada/services/greetd.nix +++ b/ada/services/greetd.nix @@ -9,7 +9,7 @@ restart = false; settings = { default_session = { - command = "${lib.getExe pkgs.tuigreet} -r -t -c ${lib.getExe pkgs.hyprland} --greet-align center"; + command = "${lib.getExe pkgs.tuigreet} -r -t -c ${lib.getExe' pkgs.hyprland "start-hyprland"} --greet-align center"; user = "greeter"; }; }; diff --git a/ada/services/irqbalance.nix b/ada/services/irqbalance.nix index 2b3b1dd..ee8472e 100644 --- a/ada/services/irqbalance.nix +++ b/ada/services/irqbalance.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { irqbalance = { enable = true; diff --git a/ada/services/libinput.nix b/ada/services/libinput.nix index d859d7f..23c2953 100644 --- a/ada/services/libinput.nix +++ b/ada/services/libinput.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { libinput = { enable = true; diff --git a/ada/services/netbird.nix b/ada/services/netbird.nix index 071330a..f375f14 100644 --- a/ada/services/netbird.nix +++ b/ada/services/netbird.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { netbird = { enable = true; diff --git a/ada/services/openssh.nix b/ada/services/openssh.nix index eecdb2e..71ee4c2 100644 --- a/ada/services/openssh.nix +++ b/ada/services/openssh.nix @@ -5,7 +5,7 @@ allowSFTP = true; openFirewall = true; ports = [ - 45734 + 53864 ]; settings = { diff --git a/ada/services/pipewire.nix b/ada/services/pipewire.nix index c4bad1e..43a9f4e 100644 --- a/ada/services/pipewire.nix +++ b/ada/services/pipewire.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { pipewire = { enable = true; @@ -25,6 +25,7 @@ extraConfig = { pipewire = { + # PIPEWIRE_PROPS=node.force-rate=0 "92-low-latency" = { "context.properties" = { "default.clock.rate" = 48000; diff --git a/ada/services/resolved.nix b/ada/services/resolved.nix index 90df2ad..8c268e8 100644 --- a/ada/services/resolved.nix +++ b/ada/services/resolved.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { resolved = { enable = true; diff --git a/ada/services/scx.nix b/ada/services/scx.nix index 2500bba..2ab435e 100644 --- a/ada/services/scx.nix +++ b/ada/services/scx.nix @@ -1,8 +1,7 @@ -{...}: { +_: { services = { scx = { enable = true; - # package = pkgs.scx_git.full; scheduler = "scx_cosmos"; }; }; diff --git a/ada/services/sunshine.nix b/ada/services/sunshine.nix index ae9299a..25a9a56 100644 --- a/ada/services/sunshine.nix +++ b/ada/services/sunshine.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { sunshine = { enable = true; diff --git a/ada/services/yggdrasil.nix b/ada/services/yggdrasil.nix index c7fc99d..c24275b 100644 --- a/ada/services/yggdrasil.nix +++ b/ada/services/yggdrasil.nix @@ -1,63 +1,10 @@ -{...}: { +_: { services = { yggdrasil = { - enable = true; + enable = false; persistentKeys = false; settings = { - PrivateKey = "${yggKeyPC}"; - - Peers = [ - # Germany :Erm: - "tcp://s-fra-0.sergeysedoy97.ru:65533" - "tls://s-fra-0.sergeysedoy97.ru:65534" - "tcp://x-fra-0.sergeysedoy97.ru:65533" - "tls://x-fra-0.sergeysedoy97.ru:65534" - "quic://x-fra-0.sergeysedoy97.ru:65535" - "tls://helium.avevad.com:13378" - "tcp://bode.theender.net:42069" - "tls://bode.theender.net:42169?key=f91b909f43829f8b20732b3bcf80cbc4bb078dd47b41638379a078e35984c9a4" - - # Russia - "tcp://s-mow-0.sergeysedoy97.ru:65533" - "tls://s-mow-0.sergeysedoy97.ru:65534" - "tcp://x-mow-0.sergeysedoy97.ru:65533" - "tls://x-mow-0.sergeysedoy97.ru:65534" - "quic://x-mow-0.sergeysedoy97.ru:65535" - "tcp://s-mow-1.sergeysedoy97.ru:65533" - "tls://s-mow-1.sergeysedoy97.ru:65534" - "tcp://x-mow-1.sergeysedoy97.ru:65533" - "tls://x-mow-1.sergeysedoy97.ru:65534" - "quic://x-mow-1.sergeysedoy97.ru:65535" - "quic://kursk.cleverfox.org:15015" - "tls://kursk.cleverfox.org:15015" - "ws://kursk.cleverfox.org:15016" - "tcp://kzn1.neonxp.ru:7991" - "tls://kzn1.neonxp.ru:7992" - "ws://kzn1.neonxp.ru:7993" - "quic://kzn1.neonxp.ru:7994" - ]; - - Listen = [ - # - ]; - - MulticastInterfaces = [ - { - Regex = ".*"; - Beacon = true; - Listen = false; - Password = ""; - } - ]; - - AllowedPublicKeys = [ - # - ]; - - IfName = "auto"; - - IfMTU = 65535; - NodeInfoPrivacy = false; + # nope }; }; }; diff --git a/ada/services/zapret.nix b/ada/services/zapret.nix deleted file mode 100644 index ad671e1..0000000 --- a/ada/services/zapret.nix +++ /dev/null @@ -1,145 +0,0 @@ -{...}: { - services = { - zapret = { - enable = true; - configureFirewall = true; - qnum = 350; - params = [ - "--wssize 1:6" - - "--filter-tcp=80" - "--dpi-desync=multisplit" - "--dpi-desync-split-pos=10" - "--dpi-desync-repeats=6" - "--new" - - "--filter-tcp=443" - "--dpi-desync=multidisorder" - "--dpi-desync-split-pos=1,midsld" - "--new" - - "--filter-tcp=443" - "--dpi-desync=syndata" - "--dpi-desync-fake-syndata=0x00000000" - "--dpi-desync-ttl=10" - "--new" - - "--filter-udp=443" - "--dpi-desync=fake" - "--dpi-desync-repeats=6" - "--dpi-desync-fake-quic=0x00000000" - "--new" - - "--filter-udp=443" - "--dpi-desync=fake,udplen" - "--dpi-desync-udplen-increment=5" - "--dpi-desync-fake-tls=0x00000000" - "--dpi-desync-cutoff=n3" - "--dpi-desync-repeats=2" - "--new" - - "--filter-tcp=443" - "--dpi-desync=split" - "--dpi-desync-fooling=md5sig,badseq" - "--dpi-desync-fake-tls=0x00000000" - "--dpi-desync-split-pos=1" - "--dpi-desync-repeats=10" - "--new" - - "--filter-tcp=443" - "--dpi-desync=fake,split2" - "--dpi-desync-fooling=md5sig" - "--dpi-desync-fake-tls=0x00000000" - "--dpi-desync-split-seqovl=2" - "--dpi-desync-split-pos=2" - - "--dpi-desync-autottl" - "--new" - "--filter-tcp=443" - "--dpi-desync=fake,split2" - "--dpi-desync-fooling=md5sig" - "--dpi-desync-fake-tls=0x00000000" - "--dpi-desync-split-seqovl=2" - "--dpi-desync-split-pos=2" - "--dpi-desync-autottl" - "--new" - - "--filter-tcp=80" - "--dpi-desync=fake,split2" - "--dpi-desync-fooling=md5sig" - "--dpi-desync-fake-tls=0x00000000" - "--dpi-desync-autottl" - "--new" - - "--filter-tcp=80" - "--dpi-desync-ttl=1" - "--dpi-desync-autottl=2" - "--dpi-desync-fake-tls=0x00000000" - "--dpi-desync-split-pos=1" - "--dpi-desync=fake,split2" - "--dpi-desync-repeats=6" - "--dpi-desync-fooling=md5sig" - "--new" - ]; - - whitelist = [ - "googlevideo.com" - "youtu.be" - "youtube.com" - "youtubei.googleapis.com" - "googlevideo.com" - "youtu.be" - "youtube.com" - "youtubei.googleapis.com" - "youtubeembeddedplayer.googleapis.com" - "ytimg.l.google.com" - "ytimg.com" - "jnn-pa.googleapis.com" - "youtube-nocookie.com" - "youtube-ui.l.google.com" - "yt-video-upload.l.google.com" - "wide-youtube.l.google.com" - "youtubekids.com" - "ggpht.com" - "music.youtube.com" - "test.googlevideo.com" - "discord.com" - "gateway.discord.gg" - "cdn.discordapp.com" - "discordapp.net" - "discordapp.com" - "discord.gg" - "media.discordapp.net" - "images-ext-1.discordapp.net" - "discord.app" - "discord.media" - "discordcdn.com" - "discord.dev" - "discord.new" - "discord.gift" - "discordstatus.com" - "dis.gd" - "discord.co" - "discord-attachments-uploads-prd.storage.googleapis.com" - "7tv.app" - "7tv.io" - "10tv.app" - "x.com" - "t.co" - "ads-twitter.com" - "twimg.com" - "twitter.com" - "pscp.tv" - "twtrdns.net" - "twttr.com" - "periscope.tv" - "tweetdeck.com" - "twitpic.com" - "twitter.co" - "twitterinc.com" - "twitteroauth.com" - "twitterstat.us" - ]; - }; - }; -} diff --git a/ada/services/zerotier.nix b/ada/services/zerotier.nix index f58210f..b864ebf 100644 --- a/ada/services/zerotier.nix +++ b/ada/services/zerotier.nix @@ -1,4 +1,4 @@ -{...}: { +_: { services = { zerotierone = { enable = true; diff --git a/ada/systemd/oomd.nix b/ada/systemd/oomd.nix index cbd28f2..bb9a200 100644 --- a/ada/systemd/oomd.nix +++ b/ada/systemd/oomd.nix @@ -1,4 +1,4 @@ -{...}: { +_: { systemd = { oomd = { enable = true; diff --git a/ada/systemd/slices/root-slice.nix b/ada/systemd/slices/root-slice.nix index 118ca0b..6a386e9 100644 --- a/ada/systemd/slices/root-slice.nix +++ b/ada/systemd/slices/root-slice.nix @@ -1,4 +1,4 @@ -{...}: { +_: { systemd = { slices = { root = { diff --git a/ada/systemd/slices/system-slice.nix b/ada/systemd/slices/system-slice.nix index 148f19b..4de4bba 100644 --- a/ada/systemd/slices/system-slice.nix +++ b/ada/systemd/slices/system-slice.nix @@ -1,4 +1,4 @@ -{...}: { +_: { systemd = { slices = { system = { diff --git a/ada/systemd/slices/user-slice.nix b/ada/systemd/slices/user-slice.nix index 21d74d8..311e668 100644 --- a/ada/systemd/slices/user-slice.nix +++ b/ada/systemd/slices/user-slice.nix @@ -1,4 +1,4 @@ -{...}: { +_: { systemd = { slices = { user = { diff --git a/ada/time/timeZone.nix b/ada/time/timeZone.nix index 57bca35..cef1656 100644 --- a/ada/time/timeZone.nix +++ b/ada/time/timeZone.nix @@ -1,4 +1,4 @@ -{...}: { +_: { time = { timeZone = "Europe/Moscow"; hardwareClockInLocalTime = true; diff --git a/ada/users/mutableUsers.nix b/ada/users/mutableUsers.nix index 54415f1..9bb56d0 100644 --- a/ada/users/mutableUsers.nix +++ b/ada/users/mutableUsers.nix @@ -1,4 +1,4 @@ -{...}: { +_: { users = { mutableUsers = false; }; diff --git a/ada/users/users/hand7s.nix b/ada/users/users/hand7s.nix index 8c0df47..39aed35 100644 --- a/ada/users/users/hand7s.nix +++ b/ada/users/users/hand7s.nix @@ -1,15 +1,13 @@ -{...}: { +_: { users = { users = { - hand7s = { + "hand7s" = { description = "me"; isSystemUser = false; isNormalUser = true; initialHashedPassword = "$6$ckgRhNWmJgSwOUpJ$kfeAdokd5fa76HWbTmWN2YXx4M/PQVOTJku1ODbqbBhEkUFiLftdaJFRnNXfIM3Jtz0ShoRMSVCB7mDkxDrdi/"; extraGroups = [ "wheel" - "networkmanager" - "docker" ]; }; }; diff --git a/ada/users/users/root.nix b/ada/users/users/root.nix index 595a6f6..faa89b7 100644 --- a/ada/users/users/root.nix +++ b/ada/users/users/root.nix @@ -1,7 +1,7 @@ -{...}: { +_: { users = { users = { - root = { + "root" = { initialHashedPassword = "$6$n4OLMvYHHStHvtmr$6OL0NV1dEM2b6oJRewkhuoFxM80lI67tfbJ6QkCg8WAA1gbeKrcwDAuJjm8zvpY4zcDR3Z5Zbo8uebfOi6XXF0"; }; }; diff --git a/ada/virtualisation/docker.nix b/ada/virtualisation/docker.nix deleted file mode 100644 index 1edae88..0000000 --- a/ada/virtualisation/docker.nix +++ /dev/null @@ -1,10 +0,0 @@ -{...}: { - virtualisation = { - docker = { - enable = true; - rootless = { - enable = true; - }; - }; - }; -} diff --git a/ada/xdg/icons.nix b/ada/xdg/icons.nix index 53ccd0b..7c75adf 100644 --- a/ada/xdg/icons.nix +++ b/ada/xdg/icons.nix @@ -1,4 +1,4 @@ -{...}: { +_: { xdg = { icons = { enable = true; diff --git a/ada/xdg/mime.nix b/ada/xdg/mime.nix index 4b6af20..9197f59 100644 --- a/ada/xdg/mime.nix +++ b/ada/xdg/mime.nix @@ -1,4 +1,4 @@ -{...}: { +_: { xdg = { mime = { enable = true; diff --git a/ada/xdg/portal.nix b/ada/xdg/portal.nix index da6b70a..ff26e0a 100644 --- a/ada/xdg/portal.nix +++ b/ada/xdg/portal.nix @@ -5,12 +5,18 @@ config = { common = { + "org.freedesktop.impl.portal.FileChooser" = "termfilechooser"; + default = [ "gtk" ]; }; hyprland = { + "org.freedesktop.impl.portal.FileChooser" = [ + "termfilechooser" + ]; + preferred = [ "gtk" "hyprland" @@ -22,6 +28,7 @@ xdg-desktop-portal xdg-desktop-portal-gtk xdg-desktop-portal-hyprland + xdg-desktop-portal-termfilechooser ]; }; }; diff --git a/flake.nix b/flake.nix index 7123fba..4df3072 100644 --- a/flake.nix +++ b/flake.nix @@ -617,41 +617,6 @@ ]; }; }; - - # deploy-rs - deploy = { - user = "hand7s"; - interactiveSudo = true; - autoRollback = true; - magicRollback = true; - remoteBuild = false; - sshOpts = [ - "-p" - "6969" - ]; - - nodes = { - "s0mev1rtn0de-nix" = { - hostname = "100.109.213.170"; - profiles = { - main = { - path = inputs.deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.s0mev1rtn0de-nix; - profilePath = "/nix/var/nix/profiles/system"; - }; - }; - }; - - "s0meMiniPC-nix" = { - hostname = "100.109.71.194"; - profiles = { - main = { - path = inputs.deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.s0mev1rtn0de-nix; - profilePath = "/nix/var/nix/profiles/system"; - }; - }; - }; - }; - }; }; perSystem = {