nom-nom-nix-gc/machines/trantor.nix

{ config, pkgs, lib, ... }:
let
  myusers = import ../users.nix { inherit pkgs; };
  mypkgs = import ../packages.nix { inherit pkgs; };
  i3 = import ../modules/software-config/i3.nix { inherit pkgs; };
  vimInit = import ../modules/software-config/neovim.nix { inherit pkgs; };
  sources = import ../nix/sources.nix { };
  keys    = import ../keys.nix  { inherit lib; };

  nixos-hardware = sources.nixos-hardware;
  temp-probe = pkgs.callPackage ../custom-pkgs/temp-probe.nix { };
  desktop-status-bar = pkgs.callPackage ../custom-pkgs/desktop-status-bar.nix {
    temp-probe = temp-probe;
  };
  pomodoro = pkgs.writers.writeBashBin "pomodoro" ''
    sleep 1500
    ${pkgs.alsa-utils}/bin/aplay ~/Musique/bell.wav &
    ${pkgs.libnotify}/bin/notify-send "Pomodoro: " "TIME'S UP!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!"'';

in {
  imports = [
    ../modules/core.nix
    ../modules/core-graphical-computers.nix
    ../modules/dev-services.nix
    ../modules/gitea-runner.nix
#    ../modules/sockburp.nix
    "${nixos-hardware}/common/pc/ssd/default.nix"
    "${nixos-hardware}/common/cpu/amd/default.nix"
    "${nixos-hardware}/common/gpu/amd/default.nix"
    "${sources.sops-nix}/modules/sops"
    ./trantor-hardware.nix
  ];

  sops = {
    defaultSopsFile = ../secrets/trantor.yaml;
    gnupg.sshKeyPaths = [ ];
    age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
    secrets = {
      gitea-token = {
        mode = "0400";
      };
    };
  };

  programs.firefox = {
    nativeMessagingHosts.ff2mpv = true;
  };

  hardware.nvidia.nvidiaSettings = false;
  services.xserver = {
    enable = true;
    videoDrivers = [ "amdgpu" ];
    displayManager = {
      sddm.enable = true;
      defaultSession = "plasmawayland";
    };
    desktopManager = {
      xterm.enable = false;
      plasma5.enable = true;
    };
    windowManager.i3 = {
      enable = true;
      configFile = builtins.toPath (pkgs.writeText "desktop-i3-config" (i3.desktop-config desktop-status-bar));
    };
  };

  services.usbmuxd.enable = true;
  services.nscd.enableNsncd = true;

  hardware.opengl = {
    enable = true;
    driSupport = true;
  };

  hardware.rtl-sdr.enable = true;

  fonts.packages = with pkgs; [

    noto-fonts
    noto-fonts-cjk
    noto-fonts-emoji
    liberation_ttf
    fira-code
    fira-code-symbols
    dina-font
    proggyfonts
  ];

  boot = {
    initrd.kernelModules = [ "amdgpu" ];
    loader.systemd-boot = {
      enable = true;
      memtest86.enable = true;
    };
    loader.systemd-boot.configurationLimit = 10;
    initrd.systemd.enable = true;
  };

  programs.bcc.enable = true;
  programs.kdeconnect.enable = true;

  services.printing = {
    enable = true;
    drivers = [ pkgs.cups-brother-hll2350dw ];
  };

  services.openssh= {
    enable = true;
    settings = {
      PasswordAuthentication = false;
      KbdInteractiveAuthentication = false;
      PermitRootLogin = "no";
    };
  };

  boot.initrd.systemd.network.wait-online.enable = false;
  home-manager.users.ninjatrappeur = {
    home.stateVersion = "18.09";

    home.file = {
      ".config/msmtp/config".source = ../raw-conf-files/email/msmtp;
      ".notmuch-config".source = ../raw-conf-files/email/notmuch-config;
      ".config/waybar".source = ../raw-conf-files/waybar-trantor;
    };
    systemd.user = {
      services = {
        sync-mail = {
          Unit = { Description = "Synchronize notmuch mailboxes"; };
          Service = {
            Type = "oneshot";
            ExecStart = "${pkgs.ninjatrappeur-pkgs.sync-mail}/bin/sync-mail";
          };
        };
#       multimedia-sshfs-fuse-mount = {
#         Unit = {
#           Description = "Home multimedia network share";
#           After = [ "network.target" "nss-lookup.target" "graphical-session.target" ];
#         };
#         Install = {
#           WantedBy = [ "default.target" ];
#         };
#         Service = {
#           Type = "simple";
#           ExecStart = ''${pkgs.sshfs}/bin/sshfs -f -oIdentityFile=/home/ninjatrappeur/.ssh/id_ed25519 "sftpUser@home.alternativebit.fr:/" /home/ninjatrappeur/multimedia-sshfs'';
#           ExecStop = ''${pkgs.fuse}/bin/fusermount -u /home/ninjatrappeur/multimedia-sshfs'';
#           # Race condition: The service will fail to resolve the DNS name at login.
#           # We restart it on failure as a workaround.
#           Restart="on-failure";
#           RestartSec="10s";
#         };
#       };
      };
      timers = {
        sync-mail = {
          Unit = { Description = "Syncs the mailboxes"; };
          Timer = {
            OnBootSec = "3m";
            OnUnitActiveSec = "30m";
            Unit = "sync-mail.service";
          };
          Install = { WantedBy = [ "timers.target" ]; };
        };
      };
    };
  };

  networking = {
    extraHosts = ''
        #127.0.0.1 youtube.com youtu.be www.youtube.com
        10.25.3.41 gitlab.clearpath.ai gitlab.clearpathrobotics.com
        10.25.3.105 hydra.clearpath.ai
        10.25.11.150 prod-vm-hydra-02.clearpath.ai
        #10.25.11.168 prod-vm-hydra-worker-01.clearpath.ai
        10.25.3.105 prod-vm-hydra-main-01.clearpath.ai
        10.25.3.241 prod-vm-hydra-worker-01.clearpath.ai
        #10.25.11.167 prod-vm-hydra-worker-02.clearpath.ai
        10.25.3.242 prod-vm-hydra-worker-02.clearpath.ai
        10.26.3.91 prod-vm-devops-monitoring-01.clearpath.ai devops.clearpath.ai
        10.25.0.169 jira.clearpathrobotics.com wiki.clearpathrobotics.com
        10.25.3.101 jfrog.clearpathrobotics.com
        10.25.0.224 reset.clearpath.ai
        10.25.3.191 prod-vm-docker-registry-01.clearpathrobotics.com
        10.25.3.191 harbor.clearpathrobotics.com
        10.25.3.60 bundles.clearpath.ai
        10.25.20.15 vsphere.clearpath.ai

        # Framework via local VPN
        192.168.166.3 framework

    '';
    hosts = {
      #"127.0.0.1" = [ "www.youtube.com" "youtube.com" "youtu.be" "twitter.com" ];
    };
    hostName = "trantor";
    domain = "alternativebit.fr";

    firewall = {
      enable = false;
      allowedTCPPorts = [
        # Random HTTP stuff
        8000
        # Patchwork
        8008
        8989
        # Syncthing
        22000
        # VNC
        5900
      ];
      allowedUDPPorts = [
        # Patchwork local discovery
        8008
        # Syncthing
        21027
        # Avahi
        5353
      ];
    };
  };

  services.avahi.enable = true;

  services.resolved = { enable = false; };

  services.emacs = {
    enable = true;
    defaultEditor = true;
    package = pkgs.ninjatrappeur-pkgs.configured-emacs;
  };

  security.pam.loginLimits = [
    {
      domain = "*";
      type = "-";
      item = "nofile";
      value = "9192";
    }
  ];
# services.gnome = {
#   core-utilities.enable = true;
#   core-shell.enable = true;
#   gnome-keyring.enable = true;
# };

  services.udev.packages = [ pkgs.yubikey-personalization ];
  services.pcscd.enable = true;
  services.syncthing = {
    user = "ninjatrappeur";
    dataDir = "/home/ninjatrappeur/.config/syncthing";
  };

  users = {
    groups.nfs.gid = 8;
    extraUsers.ninjatrappeur = {
      isNormalUser = true;
      home = myusers.ninjatrappeur.home;
      extraGroups = myusers.ninjatrappeur.extraGroups ++ [ "nfs" "libvirtd" "plugdev" ];
      shell = myusers.ninjatrappeur.shell;
      openssh.authorizedKeys.keys = pkgs.lib.attrsets.attrValues keys.ninjatrappeur;
    };
    extraGroups.vboxusers.members = [ "ninjatrappeur" ];
    extraUsers.nfs = {
      isSystemUser = true;
      uid = 7;
      group = "nfs";
    };
  };

  services.dbus.packages = [ pkgs.gcr ];
  programs.wireshark.enable = true;
  programs.gnupg.agent = {
    enable = true;
    pinentryFlavor = "qt";
  };

  services.pipewire = {
    enable = true;
    alsa.enable = true;
    alsa.support32Bit = true;
    pulse.enable = true;
  };

  environment.etc."sway/config".source = builtins.toPath
    (pkgs.writeText "desktop-sway-config"
      (i3.desktop-config desktop-status-bar));

  systemd.network = {
    enable = true;
    networks = {
      "98-nope" = {
        matchConfig = { Name = "enp*"; };
        linkConfig.Unmanaged = true;
      };
      "80-lan" = {
        matchConfig = { Name = "enp8s0"; };
        DHCP = "yes";
        networkConfig = {
          IPv6AcceptRA = true;
          IPv6PrivacyExtensions = "yes";
        };
      };
    };
  };

  services.gvfs.enable = true;

  environment.systemPackages = mypkgs.common ++ mypkgs.dev ++ mypkgs.media
  ++ mypkgs.graphic-apps ++ [
    pomodoro
    temp-probe
    (pkgs.wrapOBS { plugins = [ pkgs.obs-studio-plugins.wlrobs ];})
    pkgs.virt-manager
    pkgs.gnome.nautilus
    pkgs.gnome.eog
    pkgs.gnome.gvfs
    pkgs.cambalache
    pkgs.jmtpfs
    pkgs.element-desktop
    pkgs.gpsbabel
    pkgs.josm
    pkgs.gnome.polari
    pkgs.libimobiledevice
    pkgs.ifuse
    pkgs.gh
    pkgs.strawberry
    pkgs.ninjatrappeur-pkgs.picobak
    pkgs.ninjatrappeur-pkgs.backup-iphone
    pkgs.file

    # KDE
    pkgs.korganizer
    pkgs.kalendar
    pkgs.akonadi
    pkgs.plasma5Packages.kdepim-runtime
    pkgs.plasma5Packages.kdepim-addons
    pkgs.plasma5Packages.akonadi-calendar
    pkgs.plasma5Packages.akonadi-calendar-tools
    pkgs.plasma5Packages.akonadi-contacts
    pkgs.plasma5Packages.akonadi-import-wizard
    pkgs.plasma5Packages.akonadi-mime
    pkgs.plasma5Packages.akonadi-notes
    pkgs.plasma5Packages.akonadi-search
    pkgs.plasma5Packages.akonadiconsole
    pkgs.plasma5Packages.akonadiconsole

    # Rust
    pkgs.cargo
    pkgs.rustc
    pkgs.rust-analyzer
    pkgs.gcc
    pkgs.valgrind
    pkgs.gdb
  ];


  system = { stateVersion = "19.09"; };

  nix = {
    settings = {
      trusted-users = [ "root" "${myusers.ninjatrappeur.name}" ];
      sandbox = "relaxed";
      substituters = [
#        "http://hydra.clearpath.ai"
        "https://cache.nixos.org"
      ];
      trusted-public-keys = [
#        "hydra.clearpath.ai:VkmY4UV6HIDct2ZwjlvJniEQNZ1C7ZLglQweQpt6vE4="
        "cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="
      ];
      experimental-features = [
        "flakes"
        "nix-command"
        "repl-flake"
      ];
     # substituters = [
     #   "http://seldon.alternativebit.fr:5555?priority=30"
     # ];
      # Seldon pubkey
     # trusted-public-keys = [ "binarycache.example.com:GjvB/hNEEYW+Gzlz1zJHxQQpk+EYUUu0WNYxbxhbmzs=" ];
    };
    nixPath = [
      "nixpkgs=${sources.nixpkgs}"
      "nixos-config=/etc/nixos/configuration.nix"
    ];
  };

  virtualisation = {
    libvirtd = { enable = true; };
    podman = {
      enable = true;
      extraPackages = [ pkgs.zfs ];
    };
  };
}
trantor: update gnupg config 2021-03-19 18:19:55 +01:00			`{ config, pkgs, lib, ... }:`
Add trantor config. 2019-12-18 09:38:49 +01:00			`let`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`myusers = import ../users.nix { inherit pkgs; };`
			`mypkgs = import ../packages.nix { inherit pkgs; };`
			`i3 = import ../modules/software-config/i3.nix { inherit pkgs; };`
Tree-wide: reshaping this repository's tree This configuration grew kinda organically. It got pretty messy, it was time to cleanup everything. There are now 3 new top-level important directories: - machines: containing the top-level machines definitions. - modules: containing the various nixos modules I'm using. - custom-pkgs: containing the home made pkgs. 2020-05-02 18:25:47 +02:00			`vimInit = import ../modules/software-config/neovim.nix { inherit pkgs; };`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`sources = import ../nix/sources.nix { };`
Dundies: setup public share 2023-03-21 11:59:13 +01:00			`keys = import ../keys.nix { inherit lib; };`
Add trantor config. 2019-12-18 09:38:49 +01:00
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`nixos-hardware = sources.nixos-hardware;`
			`temp-probe = pkgs.callPackage ../custom-pkgs/temp-probe.nix { };`
			`desktop-status-bar = pkgs.callPackage ../custom-pkgs/desktop-status-bar.nix {`
			`temp-probe = temp-probe;`
			`};`
Trantor: add notification system Enabling the dunst notification system together with a pomodoro timer. 2020-09-21 18:09:40 +02:00			`pomodoro = pkgs.writers.writeBashBin "pomodoro" ''`
			`sleep 1500`
nixpkgs: update 2022-09-28 19:05:18 +02:00			`${pkgs.alsa-utils}/bin/aplay ~/Musique/bell.wav &`
Trantor: add notification system Enabling the dunst notification system together with a pomodoro timer. 2020-09-21 18:09:40 +02:00			`${pkgs.libnotify}/bin/notify-send "Pomodoro: " "TIME'S UP!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!"'';`
Add trantor config. 2019-12-18 09:38:49 +01:00
			`in {`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`imports = [`
			`../modules/core.nix`
			`../modules/core-graphical-computers.nix`
			`../modules/dev-services.nix`
Gitea: setup action runner on desktop 2023-09-25 14:25:30 +02:00			`../modules/gitea-runner.nix`
Nixpkgs: bump 2023-10-24 18:16:55 +02:00			`# ../modules/sockburp.nix`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`"${nixos-hardware}/common/pc/ssd/default.nix"`
			`"${nixos-hardware}/common/cpu/amd/default.nix"`
Trantor: add AMP GPU settings 2023-01-17 11:16:03 +01:00			`"${nixos-hardware}/common/gpu/amd/default.nix"`
Gitea: setup action runner on desktop 2023-09-25 14:25:30 +02:00			`"${sources.sops-nix}/modules/sops"`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`./trantor-hardware.nix`
			`];`
sftp: migrate to a sftp filesystem share Decomissioning NFS and vsftpd 2021-10-30 13:21:20 +02:00
Gitea: setup action runner on desktop 2023-09-25 14:25:30 +02:00			`sops = {`
			`defaultSopsFile = ../secrets/trantor.yaml;`
			`gnupg.sshKeyPaths = [ ];`
			`age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];`
			`secrets = {`
			`gitea-token = {`
			`mode = "0400";`
			`};`
			`};`
			`};`
Trantor: update 2022-12-18 08:54:10 +01:00
Trantor: add ff2mpv 2023-11-06 18:17:08 +01:00			`programs.firefox = {`
			`nativeMessagingHosts.ff2mpv = true;`
			`};`

Trantor: update 2022-12-18 08:54:10 +01:00			`hardware.nvidia.nvidiaSettings = false;`
update trantor 2022-01-21 11:51:02 +01:00			`services.xserver = {`
trantor: use xfce under i3 2022-04-04 10:30:04 +02:00			`enable = true;`
Trantor: update 2022-12-18 08:54:10 +01:00			`videoDrivers = [ "amdgpu" ];`
Trantor: default plasmawayland session 2023-09-02 22:01:48 +02:00			`displayManager = {`
			`sddm.enable = true;`
			`defaultSession = "plasmawayland";`
			`};`
trantor: use xfce under i3 2022-04-04 10:30:04 +02:00			`desktopManager = {`
			`xterm.enable = false;`
Trantor: move to KDE + update nixpkgs 2023-05-15 21:57:35 +02:00			`plasma5.enable = true;`
trantor: use xfce under i3 2022-04-04 10:30:04 +02:00			`};`
update trantor 2022-01-21 11:51:02 +01:00			`windowManager.i3 = {`
			`enable = true;`
			`configFile = builtins.toPath (pkgs.writeText "desktop-i3-config" (i3.desktop-config desktop-status-bar));`
			`};`
			`};`

Trantor: update 2022-09-04 09:38:18 +02:00			`services.usbmuxd.enable = true;`
Enable Nsncd 2022-12-30 10:32:04 +01:00			`services.nscd.enableNsncd = true;`
Trantor: update 2022-09-04 09:38:18 +02:00
update trantor 2022-01-21 11:51:02 +01:00			`hardware.opengl = {`
			`enable = true;`
			`driSupport = true;`
			`};`

Trantor: update 2022-09-04 09:38:18 +02:00			`hardware.rtl-sdr.enable = true;`

Nixpkgs: bump 2023-10-24 18:16:55 +02:00			`fonts.packages = with pkgs; [`
nixpkgs: update 2022-09-28 19:05:18 +02:00
trantor: move to waybar 2020-11-15 18:08:38 +01:00			`noto-fonts`
			`noto-fonts-cjk`
			`noto-fonts-emoji`
			`liberation_ttf`
			`fira-code`
			`fira-code-symbols`
			`dina-font`
			`proggyfonts`
			`];`
Trantor: update 2022-12-18 08:54:10 +01:00
			`boot = {`
			`initrd.kernelModules = [ "amdgpu" ];`
			`loader.systemd-boot = {`
			`enable = true;`
			`memtest86.enable = true;`
			`};`
			`loader.systemd-boot.configurationLimit = 10;`
			`initrd.systemd.enable = true;`
			`};`
Add trantor config. 2019-12-18 09:38:49 +01:00
nixpkgs: update 2022-09-28 19:05:18 +02:00			`programs.bcc.enable = true;`
Trantor: update 2023-08-26 14:05:24 +02:00			`programs.kdeconnect.enable = true;`
nixpkgs: update 2022-09-28 19:05:18 +02:00
Trantor: add printer/osm tools 2022-06-15 09:24:31 +02:00			`services.printing = {`
			`enable = true;`
			`drivers = [ pkgs.cups-brother-hll2350dw ];`
			`};`
nixpkgs: update 2022-09-28 19:05:18 +02:00
Update seldon 2021-05-13 10:51:11 +02:00			`services.openssh= {`
			`enable = true;`
nixpkgs: bump 2023-04-20 10:20:39 +02:00			`settings = {`
			`PasswordAuthentication = false;`
			`KbdInteractiveAuthentication = false;`
			`PermitRootLogin = "no";`
			`};`
			`};`
Update seldon 2021-05-13 10:51:11 +02:00
Gitea: setup action runner on desktop 2023-09-25 14:25:30 +02:00			`boot.initrd.systemd.network.wait-online.enable = false;`
home-manager: tracking the email config 2020-05-02 17:58:30 +02:00			`home-manager.users.ninjatrappeur = {`
trantor: add state 2022-10-07 07:28:49 +02:00			`home.stateVersion = "18.09";`
nixpkgs: update 2022-09-28 19:05:18 +02:00
home-manager: tracking the email config 2020-05-02 17:58:30 +02:00			`home.file = {`
Trantor: add notification system Enabling the dunst notification system together with a pomodoro timer. 2020-09-21 18:09:40 +02:00			`".config/msmtp/config".source = ../raw-conf-files/email/msmtp;`
			`".notmuch-config".source = ../raw-conf-files/email/notmuch-config;`
trantor: add temperature to waybar 2020-11-21 17:53:53 +01:00			`".config/waybar".source = ../raw-conf-files/waybar-trantor;`
home-manager: tracking the email config 2020-05-02 17:58:30 +02:00			`};`
sync-mail: run the sync in a systemd user service. 2020-06-22 17:18:11 +02:00			`systemd.user = {`
			`services = {`
			`sync-mail = {`
nixos-hardware: introduce on trantor 2020-06-22 19:30:51 +02:00			`Unit = { Description = "Synchronize notmuch mailboxes"; };`
sync-mail: run the sync in a systemd user service. 2020-06-22 17:18:11 +02:00			`Service = {`
			`Type = "oneshot";`
			`ExecStart = "${pkgs.ninjatrappeur-pkgs.sync-mail}/bin/sync-mail";`
			`};`
			`};`
update trantor 2022-01-21 11:51:02 +01:00			`# multimedia-sshfs-fuse-mount = {`
			`# Unit = {`
			`# Description = "Home multimedia network share";`
			`# After = [ "network.target" "nss-lookup.target" "graphical-session.target" ];`
			`# };`
			`# Install = {`
			`# WantedBy = [ "default.target" ];`
			`# };`
			`# Service = {`
			`# Type = "simple";`
			`# ExecStart = ''${pkgs.sshfs}/bin/sshfs -f -oIdentityFile=/home/ninjatrappeur/.ssh/id_ed25519 "sftpUser@home.alternativebit.fr:/" /home/ninjatrappeur/multimedia-sshfs'';`
			`# ExecStop = ''${pkgs.fuse}/bin/fusermount -u /home/ninjatrappeur/multimedia-sshfs'';`
			`# # Race condition: The service will fail to resolve the DNS name at login.`
			`# # We restart it on failure as a workaround.`
			`# Restart="on-failure";`
			`# RestartSec="10s";`
			`# };`
			`# };`
sync-mail: run the sync in a systemd user service. 2020-06-22 17:18:11 +02:00			`};`
			`timers = {`
			`sync-mail = {`
nixos-hardware: introduce on trantor 2020-06-22 19:30:51 +02:00			`Unit = { Description = "Syncs the mailboxes"; };`
sync-mail: run the sync in a systemd user service. 2020-06-22 17:18:11 +02:00			`Timer = {`
nixos-hardware: introduce on trantor 2020-06-22 19:30:51 +02:00			`OnBootSec = "3m";`
sync-mail: run the sync in a systemd user service. 2020-06-22 17:18:11 +02:00			`OnUnitActiveSec = "30m";`
			`Unit = "sync-mail.service";`
			`};`
nixos-hardware: introduce on trantor 2020-06-22 19:30:51 +02:00			`Install = { WantedBy = [ "timers.target" ]; };`
sync-mail: run the sync in a systemd user service. 2020-06-22 17:18:11 +02:00			`};`
			`};`
			`};`
home-manager: tracking the email config 2020-05-02 17:58:30 +02:00			`};`
Add trantor config. 2019-12-18 09:38:49 +01:00
			`networking = {`
seldon/trantor: add flokli + clearpath setup 2022-10-17 13:20:31 +02:00			`extraHosts = ''`
Nixpkgs: bump 2023-06-12 20:32:21 +02:00			`#127.0.0.1 youtube.com youtu.be www.youtube.com`
seldon/trantor: add flokli + clearpath setup 2022-10-17 13:20:31 +02:00			`10.25.3.41 gitlab.clearpath.ai gitlab.clearpathrobotics.com`
Dundies: setup public share 2023-03-21 11:59:13 +01:00			`10.25.3.105 hydra.clearpath.ai`
Trantor: clearpath hosts update 2023-03-02 10:36:45 +01:00			`10.25.11.150 prod-vm-hydra-02.clearpath.ai`
			`#10.25.11.168 prod-vm-hydra-worker-01.clearpath.ai`
			`10.25.3.105 prod-vm-hydra-main-01.clearpath.ai`
			`10.25.3.241 prod-vm-hydra-worker-01.clearpath.ai`
			`#10.25.11.167 prod-vm-hydra-worker-02.clearpath.ai`
			`10.25.3.242 prod-vm-hydra-worker-02.clearpath.ai`
nixpkgs: bump 2023-04-20 10:20:39 +02:00			`10.26.3.91 prod-vm-devops-monitoring-01.clearpath.ai devops.clearpath.ai`
seldon/trantor: add flokli + clearpath setup 2022-10-17 13:20:31 +02:00			`10.25.0.169 jira.clearpathrobotics.com wiki.clearpathrobotics.com`
			`10.25.3.101 jfrog.clearpathrobotics.com`
Trantor: add AMP GPU settings 2023-01-17 11:16:03 +01:00			`10.25.0.224 reset.clearpath.ai`
Clearpath: add harbor 2023-04-27 15:10:05 +02:00			`10.25.3.191 prod-vm-docker-registry-01.clearpathrobotics.com`
			`10.25.3.191 harbor.clearpathrobotics.com`
Clearpath: add depot 2023-05-22 19:56:14 +02:00			`10.25.3.60 bundles.clearpath.ai`
nixpkgs: bump 2023-06-30 16:14:13 +02:00			`10.25.20.15 vsphere.clearpath.ai`
Nixpkgs: bump 2023-11-22 15:37:32 +01:00
			`# Framework via local VPN`
			`192.168.166.3 framework`

seldon/trantor: add flokli + clearpath setup 2022-10-17 13:20:31 +02:00			`'';`
Add trantor config. 2019-12-18 09:38:49 +01:00			`hosts = {`
ninjatrappeur-pkgs: add emacs daemon setup 2020-08-03 10:24:21 +02:00			`#"127.0.0.1" = [ "www.youtube.com" "youtube.com" "youtu.be" "twitter.com" ];`
Add trantor config. 2019-12-18 09:38:49 +01:00			`};`
			`hostName = "trantor";`
Nixpkgs: bump 2023-10-24 18:16:55 +02:00			`domain = "alternativebit.fr";`

Add trantor config. 2019-12-18 09:38:49 +01:00			`firewall = {`
Trantor: setup VNC + extended lan VPN 2022-11-08 15:37:40 +01:00			`enable = false;`
Add trantor config. 2019-12-18 09:38:49 +01:00			`allowedTCPPorts = [`
			`# Random HTTP stuff`
			`8000`
			`# Patchwork`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`8008`
			`8989`
Add trantor config. 2019-12-18 09:38:49 +01:00			`# Syncthing`
			`22000`
Trantor: setup VNC + extended lan VPN 2022-11-08 15:37:40 +01:00			`# VNC`
			`5900`
Add trantor config. 2019-12-18 09:38:49 +01:00			`];`
			`allowedUDPPorts = [`
			`# Patchwork local discovery`
			`8008`
			`# Syncthing`
			`21027`
seldon: pulse stream 2023-05-13 00:10:48 +02:00			`# Avahi`
			`5353`
Add trantor config. 2019-12-18 09:38:49 +01:00			`];`
			`};`
			`};`

seldon: pulse stream 2023-05-13 00:10:48 +02:00			`services.avahi.enable = true;`

Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`services.resolved = { enable = false; };`
trantor: disable resolved 2020-09-21 12:02:51 +02:00
ninjatrappeur-pkgs: add emacs daemon setup 2020-08-03 10:24:21 +02:00			`services.emacs = {`
			`enable = true;`
			`defaultEditor = true;`
			`package = pkgs.ninjatrappeur-pkgs.configured-emacs;`
			`};`

nixpkgs: bump Required to fix the matrix config to perform the bump :/ 2022-03-08 18:11:25 +01:00			`security.pam.loginLimits = [`
			`{`
			`domain = "*";`
			`type = "-";`
			`item = "nofile";`
			`value = "9192";`
			`}`
			`];`
Trantor: move to KDE + update nixpkgs 2023-05-15 21:57:35 +02:00			`# services.gnome = {`
			`# core-utilities.enable = true;`
			`# core-shell.enable = true;`
			`# gnome-keyring.enable = true;`
			`# };`
trantor: move to waybar 2020-11-15 18:08:38 +01:00
Trantor: setup yubikey 2020-10-25 15:09:21 +01:00			`services.udev.packages = [ pkgs.yubikey-personalization ];`
			`services.pcscd.enable = true;`
Add trantor config. 2019-12-18 09:38:49 +01:00			`services.syncthing = {`
			`user = "ninjatrappeur";`
			`dataDir = "/home/ninjatrappeur/.config/syncthing";`
			`};`

			`users = {`
trantor: mount seldon NFS share. 2020-11-15 16:50:27 +01:00			`groups.nfs.gid = 8;`
Add trantor config. 2019-12-18 09:38:49 +01:00			`extraUsers.ninjatrappeur = {`
			`isNormalUser = true;`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`home = myusers.ninjatrappeur.home;`
Trantor: update 2022-09-04 09:38:18 +02:00			`extraGroups = myusers.ninjatrappeur.extraGroups ++ [ "nfs" "libvirtd" "plugdev" ];`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`shell = myusers.ninjatrappeur.shell;`
update trantor config 2021-06-24 18:53:29 +02:00			`openssh.authorizedKeys.keys = pkgs.lib.attrsets.attrValues keys.ninjatrappeur;`
Add trantor config. 2019-12-18 09:38:49 +01:00			`};`
Trantor: move to nix-flakes 2020-10-08 22:04:52 +02:00			`extraGroups.vboxusers.members = [ "ninjatrappeur" ];`
trantor: mount seldon NFS share. 2020-11-15 16:50:27 +01:00			`extraUsers.nfs = {`
bump nixpkgs 2021-05-13 08:51:17 +02:00			`isSystemUser = true;`
trantor: mount seldon NFS share. 2020-11-15 16:50:27 +01:00			`uid = 7;`
Add sftp server 2021-10-13 11:10:50 +02:00			`group = "nfs";`
trantor: mount seldon NFS share. 2020-11-15 16:50:27 +01:00			`};`
Add trantor config. 2019-12-18 09:38:49 +01:00			`};`
bump nixpkgs 2021-05-13 08:51:17 +02:00
trantor: update gnupg config 2021-03-19 18:19:55 +01:00			`services.dbus.packages = [ pkgs.gcr ];`
trantor: wireshark config 2020-11-21 17:34:13 +01:00			`programs.wireshark.enable = true;`
trantor: update gnupg config 2021-03-19 18:19:55 +01:00			`programs.gnupg.agent = {`
			`enable = true;`
Trantor: setup OBS for screen sharing 2021-08-17 13:45:32 +02:00			`pinentryFlavor = "qt";`
trantor: update gnupg config 2021-03-19 18:19:55 +01:00			`};`

Trantor: pipewire 2023-07-26 08:57:26 +02:00			`services.pipewire = {`
			`enable = true;`
			`alsa.enable = true;`
			`alsa.support32Bit = true;`
			`pulse.enable = true;`
			`};`

Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`environment.etc."sway/config".source = builtins.toPath`
			`(pkgs.writeText "desktop-sway-config"`
			`(i3.desktop-config desktop-status-bar));`
trantor: disable resolved 2020-09-21 12:02:51 +02:00
Add trantor config. 2019-12-18 09:38:49 +01:00			`systemd.network = {`
			`enable = true;`
			`networks = {`
			`"98-nope" = {`
			`matchConfig = { Name = "enp*"; };`
			`linkConfig.Unmanaged = true;`
			`};`
			`"80-lan" = {`
			`matchConfig = { Name = "enp8s0"; };`
			`DHCP = "yes";`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`networkConfig = {`
			`IPv6AcceptRA = true;`
			`IPv6PrivacyExtensions = "yes";`
			`};`
Add trantor config. 2019-12-18 09:38:49 +01:00			`};`
			`};`
			`};`

trantor: fix MTP mounts 2022-03-25 16:29:09 +01:00			`services.gvfs.enable = true;`

Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`environment.systemPackages = mypkgs.common ++ mypkgs.dev ++ mypkgs.media`
Packages: closure cleanup 2021-10-30 15:38:34 +02:00			`++ mypkgs.graphic-apps ++ [`
			`pomodoro`
			`temp-probe`
			`(pkgs.wrapOBS { plugins = [ pkgs.obs-studio-plugins.wlrobs ];})`
			`pkgs.virt-manager`
nixpkgs: update 2022-09-28 19:05:18 +02:00			`pkgs.gnome.nautilus`
			`pkgs.gnome.eog`
			`pkgs.gnome.gvfs`
Trantor: move to gnome 2022-07-08 12:19:53 +02:00			`pkgs.cambalache`
update trantor 2022-01-21 11:51:02 +01:00			`pkgs.jmtpfs`
Trantor: install element desktop 2022-04-16 08:42:00 +02:00			`pkgs.element-desktop`
Trantor: add printer/osm tools 2022-06-15 09:24:31 +02:00			`pkgs.gpsbabel`
			`pkgs.josm`
nixpkgs: update 2022-09-28 19:05:18 +02:00			`pkgs.gnome.polari`
Trantor: update 2022-09-04 09:38:18 +02:00			`pkgs.libimobiledevice`
			`pkgs.ifuse`
nixpkgs: bump 2023-04-20 10:20:39 +02:00			`pkgs.gh`
nixpkgs: bump 2023-06-30 16:14:13 +02:00			`pkgs.strawberry`
Trantor: update 2023-08-26 14:05:24 +02:00			`pkgs.ninjatrappeur-pkgs.picobak`
			`pkgs.ninjatrappeur-pkgs.backup-iphone`
Nixpkgs: bump 2023-12-01 10:09:25 +01:00			`pkgs.file`
Dundies: setup public share 2023-03-21 11:59:13 +01:00
Trantor: move to KDE + update nixpkgs 2023-05-15 21:57:35 +02:00			`# KDE`
			`pkgs.korganizer`
Plasma: setup packages 2023-05-22 19:56:23 +02:00			`pkgs.kalendar`
			`pkgs.akonadi`
			`pkgs.plasma5Packages.kdepim-runtime`
			`pkgs.plasma5Packages.kdepim-addons`
			`pkgs.plasma5Packages.akonadi-calendar`
			`pkgs.plasma5Packages.akonadi-calendar-tools`
			`pkgs.plasma5Packages.akonadi-contacts`
			`pkgs.plasma5Packages.akonadi-import-wizard`
			`pkgs.plasma5Packages.akonadi-mime`
			`pkgs.plasma5Packages.akonadi-notes`
			`pkgs.plasma5Packages.akonadi-search`
			`pkgs.plasma5Packages.akonadiconsole`
			`pkgs.plasma5Packages.akonadiconsole`
Trantor: move to KDE + update nixpkgs 2023-05-15 21:57:35 +02:00
Dundies: setup public share 2023-03-21 11:59:13 +01:00			`# Rust`
			`pkgs.cargo`
			`pkgs.rustc`
			`pkgs.rust-analyzer`
Plasma: setup packages 2023-05-22 19:56:23 +02:00			`pkgs.gcc`
			`pkgs.valgrind`
			`pkgs.gdb`
Packages: closure cleanup 2021-10-30 15:38:34 +02:00			`];`
Add trantor config. 2019-12-18 09:38:49 +01:00
Nixpkgs: bump 2023-10-24 18:16:55 +02:00
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`system = { stateVersion = "19.09"; };`
Nixpkgs: bump 2023-10-24 18:16:55 +02:00
Add trantor config. 2019-12-18 09:38:49 +01:00			`nix = {`
Update nixpkgs 2022-03-01 16:50:54 +01:00			`settings = {`
			`trusted-users = [ "root" "${myusers.ninjatrappeur.name}" ];`
seldon: pulse stream 2023-05-13 00:10:48 +02:00			`sandbox = "relaxed";`
Trantor: update 2022-12-18 08:54:10 +01:00			`substituters = [`
Nixpkgs: bump 2023-11-14 11:57:13 +01:00			`# "http://hydra.clearpath.ai"`
Trantor: clearpath hosts update 2023-03-02 10:36:45 +01:00			`"https://cache.nixos.org"`
Trantor: update 2022-12-18 08:54:10 +01:00			`];`
			`trusted-public-keys = [`
Nixpkgs: bump 2023-11-14 11:57:13 +01:00			`# "hydra.clearpath.ai:VkmY4UV6HIDct2ZwjlvJniEQNZ1C7ZLglQweQpt6vE4="`
Trantor: update 2022-12-18 08:54:10 +01:00			`"cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="`
			`];`
Nixpkgs: bump 2023-09-18 09:19:09 +02:00			`experimental-features = [`
			`"flakes"`
			`"nix-command"`
			`"repl-flake"`
			`];`
Trantor: add printer/osm tools 2022-06-15 09:24:31 +02:00			`# substituters = [`
			`# "http://seldon.alternativebit.fr:5555?priority=30"`
			`# ];`
trantor: add seldon trusted key 2022-03-28 10:09:12 +02:00			`# Seldon pubkey`
Trantor: add printer/osm tools 2022-06-15 09:24:31 +02:00			`# trusted-public-keys = [ "binarycache.example.com:GjvB/hNEEYW+Gzlz1zJHxQQpk+EYUUu0WNYxbxhbmzs=" ];`
Update nixpkgs 2022-03-01 16:50:54 +01:00			`};`
Add trantor config. 2019-12-18 09:38:49 +01:00			`nixPath = [`
Trantor: correctly set <nixpkgs> in $NIX_PATH 2021-04-22 13:09:57 +02:00			`"nixpkgs=${sources.nixpkgs}"`
Add trantor config. 2019-12-18 09:38:49 +01:00			`"nixos-config=/etc/nixos/configuration.nix"`
			`];`
			`};`
nixpkgs: update 2022-09-28 19:05:18 +02:00
trantor: add libvirt-based virtualization setup 2020-05-02 16:32:00 +02:00			`virtualisation = {`
Nixfmt: trantor 2020-12-12 15:06:35 +01:00			`libvirtd = { enable = true; };`
trantor: Remove fractal, enable podman 2023-03-30 11:08:26 +02:00			`podman = {`
			`enable = true;`
Gitea runner update 2023-09-26 17:00:23 +02:00			`extraPackages = [ pkgs.zfs ];`
trantor: Remove fractal, enable podman 2023-03-30 11:08:26 +02:00			`};`
trantor: add libvirt-based virtualization setup 2020-05-02 16:32:00 +02:00			`};`
Add trantor config. 2019-12-18 09:38:49 +01:00			`}`