3d7830f47f
base/vm: disable graphics for vms by default
2026-02-17 08:41:17 +01:00
84ca4a55f2
base/auto-upgrade: don't install flake-inputs.json when disabled
2026-02-17 08:41:17 +01:00
ec9fedfea5
base/acme: remove deprecated argument
2026-02-17 08:41:17 +01:00
bf90da496e
Remove global packages from users, skrott: remove neovim properly
2026-02-17 08:41:17 +01:00
f4d10c21e3
base: re-enable mutableUsers (absolute state)
2026-02-17 08:41:16 +01:00
07d9f76d5a
base: configure sops
2026-02-17 08:41:16 +01:00
c6dbf8b586
base: don't install dynamic loader stub
2026-02-17 08:41:16 +01:00
d7eda3f667
base: OOM early on nixos rebuilds
2026-02-17 08:41:16 +01:00
307c48b21c
hosts/various: enable qemu guest agent, disable smartd for vms by default
2026-02-17 08:41:16 +01:00
ad74a3e377
hosts/various: use systemd-boot as default bootloader
2026-02-17 08:41:16 +01:00
6024d02bac
base: move package list to separate file
2026-02-17 08:41:16 +01:00
bd816899e4
base: provide reasoning for packages, add a few new ones
2026-02-17 08:41:16 +01:00
a322a66121
modules/grzegorz: override base certificate config
2026-02-17 08:41:16 +01:00
9f3524e8dd
base: disable fontconfig by default
2026-02-17 08:41:16 +01:00
2378f7840d
base: disable hibernation and sleep
2026-02-17 08:41:16 +01:00
846deb4185
base: no mutable users by default
2026-02-17 08:41:16 +01:00
b34a2f0332
base/nginx: return 444 on fqdn virtualHost by default
2026-02-17 08:41:16 +01:00
7c0a233f7e
base/polkit: default to username if in group wheel
2026-02-17 08:41:16 +01:00
c34c3415c1
base/packages: add net-tools
2026-02-17 08:41:16 +01:00
7df87c61d5
journald-upload: use ipv4 temporarily, restrict firewall to ildkule
2026-02-17 08:41:16 +01:00
7278e57edf
journald-{remote,upload}: init
2026-02-17 08:41:16 +01:00
45d463f7de
base/auto-upgrade: display build logs in journalctl
2026-02-17 08:41:16 +01:00
8cd99c1057
base/roowho2: traffic filter to PVV IP-space
2026-02-17 08:41:15 +01:00
e1d5bee187
base/roowho2: init
2026-02-17 08:41:15 +01:00
a9cc479445
misc/metrics-exporters: move to base
2026-02-17 08:41:15 +01:00
6c08d88049
base/nginx: enable extra listen paramenters by default
2026-02-17 08:41:15 +01:00
ca45470969
flake-input-exporter: replace hardcoded ip space with ones from values
2026-02-17 08:41:15 +01:00
1331b699e3
base/nix: use auto allocated users
2026-02-17 08:41:15 +01:00
2d179f3a29
base/postfix: migrate config to new format
2026-02-17 08:41:14 +01:00
3faad36418
base/nixos-exporter: allow localhost to fetch
2025-10-13 06:41:28 +02:00
9e51bdb373
base/nixos-exporter: listen on own server block
2025-10-12 16:42:42 +02:00
c7930b793a
base: create flake input exporter
2025-10-12 05:23:54 +02:00
8dcd471a6f
base: don't lock kernel modules lmao
Eval nix flake / evals (push) Failing after 39s
2025-08-03 04:36:10 +02:00
da7cb17f9e
base: stabilize system.build.toplevel.outPath for vmVariant
...
Eval nix flake / evals (push) Has been cancelled
Eval nix flake / evals (pull_request) Has been cancelled
This is done by not depending on the flake itself, allowing the bits of a dirty tree to not affect the hash.
This enables equivalence testing with `just eval-vm bob` and checking if the system closure hash changes or not.
2025-05-31 19:13:33 +02:00
1caa0cc7be
Merge pull request 'base: add option config.virtualisation.vmVariant' ( !101 ) from vm into main
...
Eval nix flake / evals (push) Has been cancelled
Reviewed-on: #101
Reviewed-by: Oystein Kristoffer Tveit <oysteikt@pvv.ntnu.no >
2025-05-31 19:01:47 +02:00
752141f97f
base: add option config.virtualisation.vmVariant
Eval nix flake / evals (push) Has been cancelled
Eval nix flake / evals (pull_request) Has been cancelled
2025-05-31 18:53:04 +02:00
9560eab82b
Merge pull request 'flake: switch to nixos.org nixpkgs tarballs' ( !103 ) from switch-inputs into main
...
Eval nix flake / evals (push) Has been cancelled
Reviewed-on: #103
Reviewed-by: Oystein Kristoffer Tveit <oysteikt@pvv.ntnu.no >
2025-05-31 18:35:28 +02:00
7fb3e29d7b
base/uptimed: init
Eval nix flake / evals (push) Has been cancelled
2025-05-31 14:05:43 +02:00
e387656be8
base/auto-upgrade: fetch input urls from flake
2025-05-30 19:05:24 +02:00
13a270b8ed
disable nginx jit and multi_accept
Eval nix flake / evals (push) Has been cancelled
2025-05-10 11:13:51 +02:00
3a707b00d3
base: source ~/.bashrc
...
Eval nix flake / evals (push) Has been cancelled
Eval nix flake / evals (pull_request) Has been cancelled
Now by default we source .bashrc and .profile unless the user has actually read the manual.
Tested in vm
2025-03-18 22:57:18 +01:00
6372a4111e
common/userdbd: init
2025-03-15 01:47:10 +01:00
bdfb7384c2
common/userborn: init
2025-03-15 01:46:52 +01:00
2be9eb16fe
base/nix: defer store optimization
2025-03-15 01:20:34 +01:00
64bd33a213
base: enable fwupd
2025-03-15 01:19:59 +01:00
7b5e114944
base: use dbus-broker as dbus implementation
2025-03-15 01:19:33 +01:00
ee8965e18c
base: use latest kernel by default
2025-03-15 01:18:28 +01:00
4507ffe2ab
base/auto-upgrade: switch ref back to main
Eval nix flake / evals (push) Successful in 4m34s
2024-12-22 23:04:08 +01:00
fd81d61a56
common/logrotate: remove custom hardening now that nixpkgs provides it
2024-12-10 21:05:21 +01:00
ebc5b269ef
24.11
2024-12-10 21:05:20 +01:00
