Merge remote-tracking branch 'ni/master'
This commit is contained in:
commit
879b6d319a
|
@ -13,7 +13,7 @@ in {
|
||||||
});
|
});
|
||||||
default = {};
|
default = {};
|
||||||
};
|
};
|
||||||
config = {
|
config = mkIf (cfg != {}) {
|
||||||
environment = {
|
environment = {
|
||||||
etc =
|
etc =
|
||||||
mapAttrs'
|
mapAttrs'
|
||||||
|
|
|
@ -27,6 +27,7 @@ let
|
||||||
"tinc.conf" = pkgs.writeText "${netname}-tinc.conf" ''
|
"tinc.conf" = pkgs.writeText "${netname}-tinc.conf" ''
|
||||||
Name = ${tinc.config.host.name}
|
Name = ${tinc.config.host.name}
|
||||||
Interface = ${netname}
|
Interface = ${netname}
|
||||||
|
Broadcast = no
|
||||||
${concatMapStrings (c: "ConnectTo = ${c}\n") tinc.config.connectTo}
|
${concatMapStrings (c: "ConnectTo = ${c}\n") tinc.config.connectTo}
|
||||||
PrivateKeyFile = ${tinc.config.privkey.path}
|
PrivateKeyFile = ${tinc.config.privkey.path}
|
||||||
Port = ${toString tinc.config.host.nets.${netname}.tinc.port}
|
Port = ${toString tinc.config.host.nets.${netname}.tinc.port}
|
||||||
|
|
|
@ -20,6 +20,7 @@ with import <stockholm/lib>;
|
||||||
<stockholm/tv/2configs/br.nix>
|
<stockholm/tv/2configs/br.nix>
|
||||||
<stockholm/tv/2configs/xp-332.nix>
|
<stockholm/tv/2configs/xp-332.nix>
|
||||||
<stockholm/tv/2configs/xserver>
|
<stockholm/tv/2configs/xserver>
|
||||||
|
<stockholm/tv/2configs/xserver/xkiller.nix>
|
||||||
{
|
{
|
||||||
environment.systemPackages = with pkgs; [
|
environment.systemPackages = with pkgs; [
|
||||||
|
|
||||||
|
@ -156,10 +157,5 @@ with import <stockholm/lib>;
|
||||||
# The NixOS release to be compatible with for stateful data such as databases.
|
# The NixOS release to be compatible with for stateful data such as databases.
|
||||||
system.stateVersion = "15.09";
|
system.stateVersion = "15.09";
|
||||||
|
|
||||||
tv.nixpkgs-overlays = {
|
|
||||||
krebs = "/home/tv/stockholm/krebs/5pkgs";
|
|
||||||
tv = "/home/tv/stockholm/tv/5pkgs";
|
|
||||||
};
|
|
||||||
|
|
||||||
virtualisation.virtualbox.host.enable = true;
|
virtualisation.virtualbox.host.enable = true;
|
||||||
}
|
}
|
||||||
|
|
|
@ -60,7 +60,7 @@ with import <stockholm/lib>;
|
||||||
};
|
};
|
||||||
xu-pull-ni-ejabberd = {
|
xu-pull-ni-ejabberd = {
|
||||||
method = "pull";
|
method = "pull";
|
||||||
src = { host = config.krebs.hosts.ni; path = "/var/ejabberd"; };
|
src = { host = config.krebs.hosts.ni; path = "/var/lib/ejabberd"; };
|
||||||
dst = { host = config.krebs.hosts.xu; path = "/bku/ni-ejabberd"; };
|
dst = { host = config.krebs.hosts.xu; path = "/bku/ni-ejabberd"; };
|
||||||
startAt = "07:00";
|
startAt = "07:00";
|
||||||
};
|
};
|
||||||
|
@ -78,7 +78,7 @@ with import <stockholm/lib>;
|
||||||
};
|
};
|
||||||
zu-pull-ni-ejabberd = {
|
zu-pull-ni-ejabberd = {
|
||||||
method = "pull";
|
method = "pull";
|
||||||
src = { host = config.krebs.hosts.ni; path = "/var/ejabberd"; };
|
src = { host = config.krebs.hosts.ni; path = "/var/lib/ejabberd"; };
|
||||||
dst = { host = config.krebs.hosts.zu; path = "/bku/ni-ejabberd"; };
|
dst = { host = config.krebs.hosts.zu; path = "/bku/ni-ejabberd"; };
|
||||||
startAt = "06:00";
|
startAt = "06:00";
|
||||||
};
|
};
|
||||||
|
|
|
@ -92,7 +92,6 @@ with import <stockholm/lib>;
|
||||||
environment.variables = {
|
environment.variables = {
|
||||||
NIX_PATH = mkForce (concatStringsSep ":" [
|
NIX_PATH = mkForce (concatStringsSep ":" [
|
||||||
"secrets=/var/src/stockholm/null"
|
"secrets=/var/src/stockholm/null"
|
||||||
"nixpkgs-overlays=${config.tv.nixpkgs-overlays}"
|
|
||||||
"/var/src"
|
"/var/src"
|
||||||
]);
|
]);
|
||||||
};
|
};
|
||||||
|
|
|
@ -67,10 +67,12 @@ let {
|
||||||
cgit.desc = "source code installer";
|
cgit.desc = "source code installer";
|
||||||
};
|
};
|
||||||
q = {};
|
q = {};
|
||||||
|
reaktor2 = {};
|
||||||
regfish = {};
|
regfish = {};
|
||||||
stockholm = {
|
stockholm = {
|
||||||
cgit.desc = "NixOS configuration";
|
cgit.desc = "NixOS configuration";
|
||||||
};
|
};
|
||||||
|
with-ssh = {};
|
||||||
} // mapAttrs (_: recursiveUpdate { cgit.section = "2. Host configurations"; }) {
|
} // mapAttrs (_: recursiveUpdate { cgit.section = "2. Host configurations"; }) {
|
||||||
ni = {
|
ni = {
|
||||||
};
|
};
|
||||||
|
@ -102,6 +104,7 @@ let {
|
||||||
nixos-infest = {};
|
nixos-infest = {};
|
||||||
painload = {};
|
painload = {};
|
||||||
push = {};
|
push = {};
|
||||||
|
Reaktor = {};
|
||||||
with-tmpdir = {};
|
with-tmpdir = {};
|
||||||
get = {};
|
get = {};
|
||||||
load-env = {};
|
load-env = {};
|
||||||
|
|
|
@ -22,7 +22,7 @@ with import <stockholm/lib>;
|
||||||
highlight_megabytes=1
|
highlight_megabytes=1
|
||||||
highlight_threads=1
|
highlight_threads=1
|
||||||
tree_view=1
|
tree_view=1
|
||||||
header_margin=1
|
header_margin=0
|
||||||
detailed_cpu_time=0
|
detailed_cpu_time=0
|
||||||
cpu_count_from_zero=0
|
cpu_count_from_zero=0
|
||||||
update_process_names=0
|
update_process_names=0
|
||||||
|
|
|
@ -17,6 +17,7 @@ pkgs.writeText "Xmodmap" ''
|
||||||
keycode 39 = s S ssharp
|
keycode 39 = s S ssharp
|
||||||
|
|
||||||
keycode 33 = p P Greek_pi Greek_PI
|
keycode 33 = p P Greek_pi Greek_PI
|
||||||
|
keycode 40 = d D Greek_delta Greek_DELTA
|
||||||
keycode 46 = l L Greek_lambda Greek_LAMBDA
|
keycode 46 = l L Greek_lambda Greek_LAMBDA
|
||||||
|
|
||||||
keycode 54 = c C cacute Cacute
|
keycode 54 = c C cacute Cacute
|
||||||
|
|
14
tv/2configs/xserver/xkiller.nix
Normal file
14
tv/2configs/xserver/xkiller.nix
Normal file
|
@ -0,0 +1,14 @@
|
||||||
|
{ pkgs, ... }: {
|
||||||
|
|
||||||
|
services.acpid.enable = true;
|
||||||
|
services.acpid.handlers.xkiller = {
|
||||||
|
action = /* sh */ ''
|
||||||
|
event=($1)
|
||||||
|
if test "''${event[2]}" = 00000080; then
|
||||||
|
${pkgs.systemd}/bin/systemd-cat -t xkiller ${pkgs.xkiller}
|
||||||
|
fi
|
||||||
|
'';
|
||||||
|
event = "button/prog1";
|
||||||
|
};
|
||||||
|
|
||||||
|
}
|
|
@ -5,7 +5,6 @@
|
||||||
./ejabberd
|
./ejabberd
|
||||||
./hosts.nix
|
./hosts.nix
|
||||||
./iptables.nix
|
./iptables.nix
|
||||||
./nixpkgs-overlays.nix
|
|
||||||
./slock.nix
|
./slock.nix
|
||||||
./x0vncserver.nix
|
./x0vncserver.nix
|
||||||
];
|
];
|
||||||
|
|
|
@ -67,7 +67,7 @@ in {
|
||||||
type = types.user;
|
type = types.user;
|
||||||
default = {
|
default = {
|
||||||
name = "ejabberd";
|
name = "ejabberd";
|
||||||
home = "/var/ejabberd";
|
home = "/var/lib/ejabberd";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
|
@ -1,23 +0,0 @@
|
||||||
with import <stockholm/lib>;
|
|
||||||
{ config, pkgs, ... }: {
|
|
||||||
|
|
||||||
options.tv.nixpkgs-overlays = mkOption {
|
|
||||||
apply = src:
|
|
||||||
pkgs.runCommand "nixpkgs-overlays" {} ''
|
|
||||||
mkdir $out
|
|
||||||
${concatStringsSep "\n" (mapAttrsToList (name: path:
|
|
||||||
"ln -s ${shell.escape path} $out/${shell.escape name}"
|
|
||||||
) src)}
|
|
||||||
'' // {
|
|
||||||
inherit src;
|
|
||||||
};
|
|
||||||
type = types.attrsOf types.absolute-pathname;
|
|
||||||
};
|
|
||||||
|
|
||||||
config = {
|
|
||||||
tv.nixpkgs-overlays = {
|
|
||||||
krebs = mkDefault "/var/src/stockholm/krebs/5pkgs";
|
|
||||||
tv = mkDefault "/var/src/stockholm/tv/5pkgs";
|
|
||||||
};
|
|
||||||
};
|
|
||||||
}
|
|
|
@ -5,10 +5,12 @@ in {
|
||||||
options.tv.slock = {
|
options.tv.slock = {
|
||||||
enable = mkEnableOption "tv.slock";
|
enable = mkEnableOption "tv.slock";
|
||||||
package = mkOption {
|
package = mkOption {
|
||||||
default = pkgs.execBin "slock" rec {
|
default = pkgs.writeDashBin "slock" ''
|
||||||
filename = "${pkgs.systemd}/bin/systemctl";
|
set -efu
|
||||||
argv = [ filename "start" "slock-${cfg.user.name}.service" ];
|
display=''${DISPLAY#:}
|
||||||
};
|
service=slock-$LOGNAME@$display.service
|
||||||
|
exec ${pkgs.systemd}/bin/systemctl start "$service"
|
||||||
|
'';
|
||||||
type = types.package;
|
type = types.package;
|
||||||
};
|
};
|
||||||
user = mkOption {
|
user = mkOption {
|
||||||
|
@ -18,16 +20,16 @@ in {
|
||||||
config = mkIf cfg.enable {
|
config = mkIf cfg.enable {
|
||||||
security.polkit.extraConfig = /* js */ ''
|
security.polkit.extraConfig = /* js */ ''
|
||||||
polkit.addRule(function(action, subject) {
|
polkit.addRule(function(action, subject) {
|
||||||
if (action.id == "org.freedesktop.systemd1.manage-units" &&
|
if (action.id === "org.freedesktop.systemd1.manage-units" &&
|
||||||
action.lookup("unit") == "slock-${cfg.user.name}.service" &&
|
subject.user === ${toJSON cfg.user.name} &&
|
||||||
subject.user == ${toJSON cfg.user.name}) {
|
/^slock-${cfg.user.name}@[0-9]+\.service$/.test(action.lookup("unit")) ) {
|
||||||
return polkit.Result.YES;
|
return polkit.Result.YES;
|
||||||
}
|
}
|
||||||
});
|
});
|
||||||
'';
|
'';
|
||||||
systemd.services."slock-${cfg.user.name}" = {
|
systemd.services."slock-${cfg.user.name}@" = {
|
||||||
environment = {
|
environment = {
|
||||||
DISPLAY = ":${toString config.services.xserver.display}";
|
DISPLAY = ":%I";
|
||||||
LD_PRELOAD = pkgs.runCommandCC "slock-${cfg.user.name}.so" {
|
LD_PRELOAD = pkgs.runCommandCC "slock-${cfg.user.name}.so" {
|
||||||
passAsFile = ["text"];
|
passAsFile = ["text"];
|
||||||
text = /* c */ ''
|
text = /* c */ ''
|
||||||
|
|
|
@ -24,6 +24,12 @@ foldl' mergeAttrs {}
|
||||||
"$@"
|
"$@"
|
||||||
'';
|
'';
|
||||||
|
|
||||||
|
dhcpcd = overrideDerivation super.dhcpcd (old: {
|
||||||
|
configureFlags = old.configureFlags ++ [
|
||||||
|
"--dbdir=/var/lib/dhcpcd"
|
||||||
|
];
|
||||||
|
});
|
||||||
|
|
||||||
gitAndTools = super.gitAndTools // {
|
gitAndTools = super.gitAndTools // {
|
||||||
inherit (self) diff-so-fancy;
|
inherit (self) diff-so-fancy;
|
||||||
};
|
};
|
||||||
|
|
25
tv/5pkgs/simple/xkiller.nix
Normal file
25
tv/5pkgs/simple/xkiller.nix
Normal file
|
@ -0,0 +1,25 @@
|
||||||
|
{ pkgs }:
|
||||||
|
pkgs.writeDash "xkiller" ''
|
||||||
|
set -efu
|
||||||
|
exec >&2
|
||||||
|
${pkgs.iproute}/bin/ss -lp src unix:/tmp/.X11-unix/X* |
|
||||||
|
${pkgs.gnused}/bin/sed -n '
|
||||||
|
s|.*/tmp/.X11-unix/X\([0-9]\+\)\>.*("X[^"]*",pid=\([0-9]\+\)\>.*|\1 \2|p
|
||||||
|
' |
|
||||||
|
while read -r display pid; do
|
||||||
|
{
|
||||||
|
exit_code=$(
|
||||||
|
DISPLAY=:$display ${pkgs.coreutils}/bin/timeout 1 \
|
||||||
|
${pkgs.xorg.xset}/bin/xset q >/dev/null 2>&1 &&
|
||||||
|
echo 0 || echo $?
|
||||||
|
)
|
||||||
|
if test $exit_code = 124; then
|
||||||
|
echo "X on display :$display is locked up; killing PID $pid..."
|
||||||
|
${pkgs.coreutils}/bin/kill -SIGKILL "$pid"
|
||||||
|
else
|
||||||
|
echo "X on display :$display is healthy"
|
||||||
|
fi
|
||||||
|
} &
|
||||||
|
done
|
||||||
|
wait
|
||||||
|
''
|
Loading…
Reference in a new issue