From 04bcd9eba111dd661662e28222341f034116a7a1 Mon Sep 17 00:00:00 2001 From: cy Date: Mon, 19 May 2025 11:14:34 -0400 Subject: [PATCH 01/12] only exclude libvirt/images --- hosts/ytnix/default.nix | 18 +++++++++++++----- modules/backup.nix | 2 +- 2 files changed, 14 insertions(+), 6 deletions(-) diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index e59abc3..f75138d 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -87,7 +87,11 @@ resolvconf.enable = true; firewall = { enable = true; - trustedInterfaces = [ "tailscale0" "virbr0" "virbr1" ]; + trustedInterfaces = [ + "tailscale0" + "virbr0" + "virbr1" + ]; # allowedTCPPorts = [ # 8080 # mitmproxy # 22000 # syncthing @@ -213,10 +217,14 @@ }; fonts = { - packages = with pkgs; [ - nerd-fonts.roboto-mono - ibm-plex - ]; + packages = + (with pkgs; [ + ibm-plex + ]) + ++ (with pkgs.nerd-fonts; [ + roboto-mono + jetbrains-mono + ]); enableDefaultPackages = true; }; diff --git a/modules/backup.nix b/modules/backup.nix index a07542d..b9d43c1 100644 --- a/modules/backup.nix +++ b/modules/backup.nix @@ -21,7 +21,7 @@ let "/var/lib/docker" "/var/lib/containers" # podman "/var/lib/systemd" - "/var/lib/libvirt" + "/var/lib/libvirt/images" "**/.rustup" "**/.cargo" "**/.docker" From f280227e5d2a60acd6d427334001b28709c881eb Mon Sep 17 00:00:00 2001 From: cy Date: Tue, 20 May 2025 14:51:57 -0400 Subject: [PATCH 02/12] use nftables --- hosts/chunk/default.nix | 28 +--------------------------- hosts/common.nix | 1 + 2 files changed, 2 insertions(+), 27 deletions(-) diff --git a/hosts/chunk/default.nix b/hosts/chunk/default.nix index 6f73eaf..8a7139e 100644 --- a/hosts/chunk/default.nix +++ b/hosts/chunk/default.nix @@ -1,6 +1,5 @@ { pkgs, - lib, ... }: { @@ -79,32 +78,6 @@ allowedUDPPorts = [ 443 ]; - extraCommands = - let - ethtool = lib.getExe pkgs.ethtool; - tc = lib.getExe' pkgs.iproute2 "tc"; - in - '' - # disable TCP segmentation offload (https://wiki.archlinux.org/title/Advanced_traffic_control#Prerequisites) - ${ethtool} -K ens18 tso off - - # clear existing rules - ${tc} qdisc del dev ens18 root || true - - # create HTB hierarchy - ${tc} qdisc add dev ens18 root handle 1: htb default 10 - ${tc} class add dev ens18 parent 1: classid 1:1 htb rate 100% ceil 100% - # rest - ${tc} class add dev ens18 parent 1:1 classid 1:10 htb rate 60% ceil 100% - # caddy - ${tc} class add dev ens18 parent 1:1 classid 1:30 htb rate 40% ceil 100% - - # mark traffic - iptables -t mangle -A OUTPUT -m cgroup --path "system.slice/caddy.service" -j MARK --set-mark 3 - - # route marked packets - ${tc} filter add dev ens18 parent 1: protocol ip prio 1 handle 3 fw flowid 1:30 - ''; }; interfaces.ens18 = { ipv6.addresses = [ @@ -157,6 +130,7 @@ environment.systemPackages = with pkgs; [ vim + neovim wget curl tree diff --git a/hosts/common.nix b/hosts/common.nix index b1989b1..fe6e1c6 100644 --- a/hosts/common.nix +++ b/hosts/common.nix @@ -56,6 +56,7 @@ "nts.teambelgium.net" "c.st1.ntp.br" ]; + nftables.enable = true; }; services.chrony = { enable = true; From 24ea763f2aa36c7df57bcb89e34773be66b5ce41 Mon Sep 17 00:00:00 2001 From: cy Date: Tue, 20 May 2025 14:54:24 -0400 Subject: [PATCH 03/12] install pavucontrol; fix pw.conf; updateMicrocode to true --- home/yt/ytnix.nix | 1 + hosts/ytnix/default.nix | 26 ++++++++++++++------------ hosts/ytnix/hardware-configuration.nix | 2 +- 3 files changed, 16 insertions(+), 13 deletions(-) diff --git a/home/yt/ytnix.nix b/home/yt/ytnix.nix index ffc0360..d97e4bf 100644 --- a/home/yt/ytnix.nix +++ b/home/yt/ytnix.nix @@ -84,6 +84,7 @@ jujutsu ffmpeg typst + pavucontrol # reversing radare2 diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index f75138d..ac0db6d 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -127,18 +127,20 @@ }; # https://wiki.archlinux.org/title/Bluetooth_headset#Connecting_works,_sound_plays_fine_until_headphones_become_idle,_then_stutters wireplumber.extraConfig.disableSuspend = { - "monitor.bluez.rules" = { - matches = [ - { - "node.name" = "bluez_output.*"; - } - ]; - }; - actions = { - update-props = { - "session.suspend-timeout-seconds" = 0; - }; - }; + "monitor.bluez.rules" = [ + { + matches = [ + { + "node.name" = "bluez_output.*"; + } + ]; + actions = { + update-props = { + "session.suspend-timeout-seconds" = 0; + }; + }; + } + ]; }; }; diff --git a/hosts/ytnix/hardware-configuration.nix b/hosts/ytnix/hardware-configuration.nix index c98a8c5..cd1c283 100644 --- a/hosts/ytnix/hardware-configuration.nix +++ b/hosts/ytnix/hardware-configuration.nix @@ -82,5 +82,5 @@ # networking.interfaces.wlp2s0.useDHCP = lib.mkDefault true; nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux"; - hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware; + hardware.cpu.intel.updateMicrocode = lib.mkDefault true; } From deef6be2276a49282099346adba9b852b45d4760 Mon Sep 17 00:00:00 2001 From: cy Date: Tue, 20 May 2025 18:00:35 -0400 Subject: [PATCH 04/12] flake update MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit • Updated input 'home-manager': 'github:nix-community/home-manager/8d832ddfda9facf538f3dda9b6985fb0234f151c' (2025-05-13) → 'github:nix-community/home-manager/29dda415f5b2178278283856c6f9f7b48a2a4353' (2025-05-20) • Updated input 'nix-index-database': 'github:nix-community/nix-index-database/e9b21b01e4307176b9718a29ac514838e7f6f4ff' (2025-05-11) → 'github:nix-community/nix-index-database/ec179dd13fb7b4c6844f55be91436f7857226dce' (2025-05-18) • Updated input 'nix-ld': 'github:nix-community/nix-ld/90316ea7ffa3336547b85b3b2827d9d4552a4a79' (2025-05-12) → 'github:nix-community/nix-ld/14ad0c0a26dae752c93fa9fa59437bfd2b8aaf69' (2025-05-19) • Updated input 'nixpkgs': 'github:nixos/nixpkgs/d89fc19e405cb2d55ce7cc114356846a0ee5e956' (2025-05-10) → 'github:nixos/nixpkgs/292fa7d4f6519c074f0a50394dbbe69859bb6043' (2025-05-18) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/fe36c63649875f391949e8b2ec33949d0cd8aa95' (2025-05-13) → 'github:oxalica/rust-overlay/3e7b002daad1ff342b223af3a9de7b2a4b6fdc7d' (2025-05-20) • Updated input 'sops-nix': 'github:Mic92/sops-nix/e93ee1d900ad264d65e9701a5c6f895683433386' (2025-05-05) → 'github:Mic92/sops-nix/8d215e1c981be3aa37e47aeabd4e61bb069548fd' (2025-05-18) • Updated input 'vscode-extensions': 'github:nix-community/nix-vscode-extensions/1830b606ba0a839ab60f8465c23613620e9982de' (2025-05-13) → 'github:nix-community/nix-vscode-extensions/d096058275e83be4133081e53dcd53e029a5ad80' (2025-05-20) --- flake.lock | 42 +++++++++++++++++++++--------------------- 1 file changed, 21 insertions(+), 21 deletions(-) diff --git a/flake.lock b/flake.lock index 1fd0e8b..069a535 100644 --- a/flake.lock +++ b/flake.lock @@ -189,11 +189,11 @@ ] }, "locked": { - "lastModified": 1747155932, - "narHash": "sha256-NnPzzXEqfYjfrimLzK0JOBItfdEJdP/i6SNTuunCGgw=", + "lastModified": 1747763032, + "narHash": "sha256-9j3oCbemeH7bTVXJ3pDWxOptbxDx2SdK1jY2AHpjQiw=", "owner": "nix-community", "repo": "home-manager", - "rev": "8d832ddfda9facf538f3dda9b6985fb0234f151c", + "rev": "29dda415f5b2178278283856c6f9f7b48a2a4353", "type": "github" }, "original": { @@ -257,11 +257,11 @@ ] }, "locked": { - "lastModified": 1746934494, - "narHash": "sha256-3n6i+F0sDASjkhbvgFDpPDZGp7z19IrRtjfF9TwJpCA=", + "lastModified": 1747540584, + "narHash": "sha256-cxCQ413JTUuRv9Ygd8DABJ1D6kuB/nTfQqC0Lu9C0ls=", "owner": "nix-community", "repo": "nix-index-database", - "rev": "e9b21b01e4307176b9718a29ac514838e7f6f4ff", + "rev": "ec179dd13fb7b4c6844f55be91436f7857226dce", "type": "github" }, "original": { @@ -277,11 +277,11 @@ ] }, "locked": { - "lastModified": 1747037786, - "narHash": "sha256-nhOupZpHdrUYK2a2y1y238VEPVpUmJw/nEd212wyG0c=", + "lastModified": 1747646130, + "narHash": "sha256-B4+JyeF6u7FINPD1Fzc7QiDlmG1L06z/34MqMlBfPDQ=", "owner": "nix-community", "repo": "nix-ld", - "rev": "90316ea7ffa3336547b85b3b2827d9d4552a4a79", + "rev": "14ad0c0a26dae752c93fa9fa59437bfd2b8aaf69", "type": "github" }, "original": { @@ -292,11 +292,11 @@ }, "nixpkgs": { "locked": { - "lastModified": 1746904237, - "narHash": "sha256-3e+AVBczosP5dCLQmMoMEogM57gmZ2qrVSrmq9aResQ=", + "lastModified": 1747542820, + "narHash": "sha256-GaOZntlJ6gPPbbkTLjbd8BMWaDYafhuuYRNrxCGnPJw=", "owner": "nixos", "repo": "nixpkgs", - "rev": "d89fc19e405cb2d55ce7cc114356846a0ee5e956", + "rev": "292fa7d4f6519c074f0a50394dbbe69859bb6043", "type": "github" }, "original": { @@ -417,11 +417,11 @@ ] }, "locked": { - "lastModified": 1747103809, - "narHash": "sha256-a3Yk+CoFmNw7V8J/si/AM8WuI/qTxQhiJpuQ7HFl774=", + "lastModified": 1747708620, + "narHash": "sha256-eqQ6D9o7WUpwarjmkzW/20bfqmhhKqGgPOhDdvJddxw=", "owner": "oxalica", "repo": "rust-overlay", - "rev": "fe36c63649875f391949e8b2ec33949d0cd8aa95", + "rev": "3e7b002daad1ff342b223af3a9de7b2a4b6fdc7d", "type": "github" }, "original": { @@ -437,11 +437,11 @@ ] }, "locked": { - "lastModified": 1746485181, - "narHash": "sha256-PxrrSFLaC7YuItShxmYbMgSuFFuwxBB+qsl9BZUnRvg=", + "lastModified": 1747603214, + "narHash": "sha256-lAblXm0VwifYCJ/ILPXJwlz0qNY07DDYdLD+9H+Wc8o=", "owner": "Mic92", "repo": "sops-nix", - "rev": "e93ee1d900ad264d65e9701a5c6f895683433386", + "rev": "8d215e1c981be3aa37e47aeabd4e61bb069548fd", "type": "github" }, "original": { @@ -503,11 +503,11 @@ ] }, "locked": { - "lastModified": 1747101711, - "narHash": "sha256-VJ6NkQAIXvNr+THN6TlNqlSY3lB1hv/o4yvfG82sHQI=", + "lastModified": 1747706401, + "narHash": "sha256-GbNsCBxX2zMMckvlY7SPgUkxL9IaVT49p/gbdwqvyuE=", "owner": "nix-community", "repo": "nix-vscode-extensions", - "rev": "1830b606ba0a839ab60f8465c23613620e9982de", + "rev": "d096058275e83be4133081e53dcd53e029a5ad80", "type": "github" }, "original": { From cd88edf75935be8c6e9ae7392c14c6ba7cb7a6e1 Mon Sep 17 00:00:00 2001 From: cy Date: Tue, 20 May 2025 18:00:35 -0400 Subject: [PATCH 05/12] fix podman firewall and bluetooth --- hosts/chunk/default.nix | 5 ++++- hosts/ytnix/default.nix | 14 +++++++------- 2 files changed, 11 insertions(+), 8 deletions(-) diff --git a/hosts/chunk/default.nix b/hosts/chunk/default.nix index 8a7139e..eeb62c9 100644 --- a/hosts/chunk/default.nix +++ b/hosts/chunk/default.nix @@ -69,7 +69,10 @@ networkmanager.enable = true; firewall = { enable = true; - trustedInterfaces = [ "tailscale0" ]; + trustedInterfaces = [ + "tailscale0" + "podman1" + ]; allowedTCPPorts = [ 22 80 diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index ac0db6d..a592e2f 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -44,7 +44,7 @@ efi.canTouchEfiVariables = true; }; tmp.cleanOnBoot = true; - kernelPackages = pkgs.linuxKernel.packages.linux_zen; + kernelPackages = pkgs.linuxPackages_latest; extraModulePackages = with config.boot.kernelPackages; [ rtl8821ce ]; @@ -109,8 +109,10 @@ pulse.enable = true; alsa.enable = true; alsa.support32Bit = true; - wireplumber.extraConfig.bluetoothEnhancements = { - # https://julian.pages.freedesktop.org/wireplumber/daemon/configuration/bluetooth.html#bluetooth-configuration + wireplumber.extraConfig."10-bluetooth-enhancements" = { + "wireplumber.settings" = { + "bluetooth.autoswitch-to-headset-profile" = false; + }; "monitor.bluez.properties" = { "bluez5.enable-sbc-xq" = true; "bluez5.enable-msbc" = true; @@ -118,20 +120,18 @@ "bluez5.roles" = [ "a2dp_sink" "a2dp_source" - "hsp_hs" - "hsp_ag" "hfp_hf" "hfp_ag" ]; }; }; # https://wiki.archlinux.org/title/Bluetooth_headset#Connecting_works,_sound_plays_fine_until_headphones_become_idle,_then_stutters - wireplumber.extraConfig.disableSuspend = { + wireplumber.extraConfig."11-disable-suspend" = { "monitor.bluez.rules" = [ { matches = [ { - "node.name" = "bluez_output.*"; + "device.name" = "bluez_card.*"; } ]; actions = { From 5a5638b7d7274e2657c887ae9c92c57031ffe7f3 Mon Sep 17 00:00:00 2001 From: cy Date: Thu, 22 May 2025 21:41:29 -0400 Subject: [PATCH 06/12] install vmware --- hosts/ytnix/default.nix | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index a592e2f..d669142 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -48,6 +48,7 @@ extraModulePackages = with config.boot.kernelPackages; [ rtl8821ce ]; + kernelModules = [ "8821ce" ]; kernelParams = [ # see https://github.com/tomaspinho/rtl8821ce#pcie-active-state-power-management "pcie_aspm=off" @@ -90,7 +91,6 @@ trustedInterfaces = [ "tailscale0" "virbr0" - "virbr1" ]; # allowedTCPPorts = [ # 8080 # mitmproxy @@ -277,6 +277,10 @@ enable = true; qemu.vhostUserPackages = with pkgs; [ virtiofsd ]; }; + virtualisation.vmware.host = { + enable = true; + package = pkgs.vmware-workstation; + }; programs.virt-manager.enable = true; my.containerization.enable = true; From 202966d58abb6cedbec13d438e2a31c0901abc59 Mon Sep 17 00:00:00 2001 From: cy Date: Sat, 24 May 2025 15:01:30 -0400 Subject: [PATCH 07/12] fix firewall with vms --- hosts/common.nix | 2 +- hosts/ytnix/default.nix | 19 ++++++++----------- 2 files changed, 9 insertions(+), 12 deletions(-) diff --git a/hosts/common.nix b/hosts/common.nix index fe6e1c6..c125822 100644 --- a/hosts/common.nix +++ b/hosts/common.nix @@ -39,7 +39,7 @@ i18n.defaultLocale = "en_US.UTF-8"; time.timeZone = "America/New_York"; networking = { - firewall.logRefusedConnections = false; + firewall.logRefusedConnections = true; nameservers = [ # quad9 (unfiltered) "2620:fe::10" diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index d669142..1cbc5c1 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -61,7 +61,10 @@ enable = true; pkiBundle = "/var/lib/sbctl"; }; - kernel.sysctl."kernel.sysrq" = 1; + kernel.sysctl = { + "kernel.sysrq" = 1; + # "net.ipv4.ip_forward" = 1; + }; binfmt.emulatedSystems = [ "aarch64-linux" ]; }; @@ -90,13 +93,7 @@ enable = true; trustedInterfaces = [ "tailscale0" - "virbr0" ]; - # allowedTCPPorts = [ - # 8080 # mitmproxy - # 22000 # syncthing - # 3003 # immich-ml - # ]; }; hosts = { "100.122.132.30" = [ "s3.cy7.sh" ]; @@ -277,10 +274,10 @@ enable = true; qemu.vhostUserPackages = with pkgs; [ virtiofsd ]; }; - virtualisation.vmware.host = { - enable = true; - package = pkgs.vmware-workstation; - }; + # virtualisation.vmware.host = { + # enable = true; + # package = pkgs.vmware-workstation; + # }; programs.virt-manager.enable = true; my.containerization.enable = true; From 10749634ee3645b60aae70369481ecea11bdf838 Mon Sep 17 00:00:00 2001 From: cy Date: Mon, 26 May 2025 08:08:03 -0400 Subject: [PATCH 08/12] kitty set oapacity = 0.9 --- home/kitty.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home/kitty.nix b/home/kitty.nix index 40f25ef..df48225 100644 --- a/home/kitty.nix +++ b/home/kitty.nix @@ -13,7 +13,7 @@ # for confirmation confirm_os_window_close = 0; clear_all_shortcuts = true; - background_opacity = 0.85; + background_opacity = 0.9; # will probably lower this later but the max allowed is actually 4GB # this is NOT stored in memory and can only be viewed with scrollback_pager From e174c25353222f8f8fdf802206a904481f19d872 Mon Sep 17 00:00:00 2001 From: cy Date: Tue, 27 May 2025 11:28:57 -0400 Subject: [PATCH 09/12] install ghidra as nixos option --- home/yt/ytnix.nix | 1 - hosts/ytnix/default.nix | 11 +++++++++++ 2 files changed, 11 insertions(+), 1 deletion(-) diff --git a/home/yt/ytnix.nix b/home/yt/ytnix.nix index d97e4bf..b81e3e3 100644 --- a/home/yt/ytnix.nix +++ b/home/yt/ytnix.nix @@ -57,7 +57,6 @@ gdb fuzzel hugo - ghidra sccache awscli2 p7zip diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index 1cbc5c1..f5ff1bc 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -94,6 +94,9 @@ trustedInterfaces = [ "tailscale0" ]; + extraInputRules = '' + ip saddr 192.168.100.0/24 tcp dport 9234 accept + ''; }; hosts = { "100.122.132.30" = [ "s3.cy7.sh" ]; @@ -417,4 +420,12 @@ wl-clipboard ]; }; + + programs.ghidra = { + enable = true; + package = pkgs.ghidra.withExtensions (p: with p; [ + findcrypt + ret-sync + ]); + }; } From f9ede8a0fca97cc6c6d2ec93981bf2e9ba2d1063 Mon Sep 17 00:00:00 2001 From: cy Date: Thu, 29 May 2025 11:53:32 -0400 Subject: [PATCH 10/12] don't change kitty scroll multiplier --- home/kitty.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home/kitty.nix b/home/kitty.nix index df48225..aedaf96 100644 --- a/home/kitty.nix +++ b/home/kitty.nix @@ -21,7 +21,7 @@ # see https://github.com/sharkdp/bat/issues/1077#issuecomment-652785399 "scrollback_pager" = "bat --pager='less -FR +G'"; # "scrollback_lines" = 20000; - wheel_scroll_multiplier = 50; + # wheel_scroll_multiplier = 50; }; keybindings = { # kitty_mod is ctrl+shift by default From 842f67c75e2949f4016fc912885bcd497020aed6 Mon Sep 17 00:00:00 2001 From: cy Date: Thu, 29 May 2025 11:58:35 -0400 Subject: [PATCH 11/12] flake update MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit • Updated input 'garage': 'github:deuxfleurs-org/garage/a2a9e3cec4945c4f6bb93622b860ef696ed3c075' (2025-05-09) → 'github:deuxfleurs-org/garage/37e5621dde5c25ccac4f6da4d7c60f45fc71ff88' (2025-05-23) • Updated input 'home-manager': 'github:nix-community/home-manager/29dda415f5b2178278283856c6f9f7b48a2a4353' (2025-05-20) → 'github:nix-community/home-manager/da282034f4d30e787b8a10722431e8b650a907ef' (2025-05-29) • Updated input 'nix-index-database': 'github:nix-community/nix-index-database/ec179dd13fb7b4c6844f55be91436f7857226dce' (2025-05-18) → 'github:nix-community/nix-index-database/a98adbf54d663395df0b9929f6481d4d80fc8927' (2025-05-25) • Updated input 'nixpkgs': 'github:nixos/nixpkgs/292fa7d4f6519c074f0a50394dbbe69859bb6043' (2025-05-18) → 'github:nixos/nixpkgs/4faa5f5321320e49a78ae7848582f684d64783e9' (2025-05-27) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/3e7b002daad1ff342b223af3a9de7b2a4b6fdc7d' (2025-05-20) → 'github:oxalica/rust-overlay/4bf1892eb81113e868efe67982b64f1da15c8c5a' (2025-05-29) • Updated input 'vscode-extensions': 'github:nix-community/nix-vscode-extensions/d096058275e83be4133081e53dcd53e029a5ad80' (2025-05-20) → 'github:nix-community/nix-vscode-extensions/ac4fc8eb9a1ee5eeb3c0a30f57652e4c5428d3a5' (2025-05-28) --- flake.lock | 36 ++++++++++++++++++------------------ 1 file changed, 18 insertions(+), 18 deletions(-) diff --git a/flake.lock b/flake.lock index 069a535..2af1d4d 100644 --- a/flake.lock +++ b/flake.lock @@ -147,11 +147,11 @@ "rust-overlay": "rust-overlay" }, "locked": { - "lastModified": 1746786847, - "narHash": "sha256-QKb+8DHlceK62uPHd+KTI22efwUMJ8zI2eD6HOSw99s=", + "lastModified": 1748012719, + "narHash": "sha256-s6VG70nqLCzAOLRgZ3oETQ8VJcsrEUol2vjTiYyesK4=", "owner": "deuxfleurs-org", "repo": "garage", - "rev": "a2a9e3cec4945c4f6bb93622b860ef696ed3c075", + "rev": "37e5621dde5c25ccac4f6da4d7c60f45fc71ff88", "type": "github" }, "original": { @@ -189,11 +189,11 @@ ] }, "locked": { - "lastModified": 1747763032, - "narHash": "sha256-9j3oCbemeH7bTVXJ3pDWxOptbxDx2SdK1jY2AHpjQiw=", + "lastModified": 1748529677, + "narHash": "sha256-MJEX3Skt5EAIs/aGHD8/aXXZPcceMMHheyIGSjvxZN0=", "owner": "nix-community", "repo": "home-manager", - "rev": "29dda415f5b2178278283856c6f9f7b48a2a4353", + "rev": "da282034f4d30e787b8a10722431e8b650a907ef", "type": "github" }, "original": { @@ -257,11 +257,11 @@ ] }, "locked": { - "lastModified": 1747540584, - "narHash": "sha256-cxCQ413JTUuRv9Ygd8DABJ1D6kuB/nTfQqC0Lu9C0ls=", + "lastModified": 1748145500, + "narHash": "sha256-t9fx0l61WOxtWxXCqlXPWSuG/0XMF9DtE2T7KXgMqJw=", "owner": "nix-community", "repo": "nix-index-database", - "rev": "ec179dd13fb7b4c6844f55be91436f7857226dce", + "rev": "a98adbf54d663395df0b9929f6481d4d80fc8927", "type": "github" }, "original": { @@ -292,11 +292,11 @@ }, "nixpkgs": { "locked": { - "lastModified": 1747542820, - "narHash": "sha256-GaOZntlJ6gPPbbkTLjbd8BMWaDYafhuuYRNrxCGnPJw=", + "lastModified": 1748370509, + "narHash": "sha256-QlL8slIgc16W5UaI3w7xHQEP+Qmv/6vSNTpoZrrSlbk=", "owner": "nixos", "repo": "nixpkgs", - "rev": "292fa7d4f6519c074f0a50394dbbe69859bb6043", + "rev": "4faa5f5321320e49a78ae7848582f684d64783e9", "type": "github" }, "original": { @@ -417,11 +417,11 @@ ] }, "locked": { - "lastModified": 1747708620, - "narHash": "sha256-eqQ6D9o7WUpwarjmkzW/20bfqmhhKqGgPOhDdvJddxw=", + "lastModified": 1748486227, + "narHash": "sha256-veMuFa9cq/XgUXp1S57oC8K0TIw3XyZWL2jIyGWlW0c=", "owner": "oxalica", "repo": "rust-overlay", - "rev": "3e7b002daad1ff342b223af3a9de7b2a4b6fdc7d", + "rev": "4bf1892eb81113e868efe67982b64f1da15c8c5a", "type": "github" }, "original": { @@ -503,11 +503,11 @@ ] }, "locked": { - "lastModified": 1747706401, - "narHash": "sha256-GbNsCBxX2zMMckvlY7SPgUkxL9IaVT49p/gbdwqvyuE=", + "lastModified": 1748397853, + "narHash": "sha256-tudGoP5caIJ5TzkV6wnsmUk7Spx21oWMKpkmPbjRNZc=", "owner": "nix-community", "repo": "nix-vscode-extensions", - "rev": "d096058275e83be4133081e53dcd53e029a5ad80", + "rev": "ac4fc8eb9a1ee5eeb3c0a30f57652e4c5428d3a5", "type": "github" }, "original": { From 06f9548c86d5a97c65815106b95b35ea6ec8c19e Mon Sep 17 00:00:00 2001 From: cy Date: Fri, 30 May 2025 13:56:07 -0400 Subject: [PATCH 12/12] rm ida-free and pin kernel to 6.14 --- home/yt/ytnix.nix | 1 - hosts/ytnix/default.nix | 2 +- 2 files changed, 1 insertion(+), 2 deletions(-) diff --git a/home/yt/ytnix.nix b/home/yt/ytnix.nix index b81e3e3..db3dfb2 100644 --- a/home/yt/ytnix.nix +++ b/home/yt/ytnix.nix @@ -87,7 +87,6 @@ # reversing radare2 - ida-free jadx frida-tools mitmproxy diff --git a/hosts/ytnix/default.nix b/hosts/ytnix/default.nix index f5ff1bc..763c51e 100644 --- a/hosts/ytnix/default.nix +++ b/hosts/ytnix/default.nix @@ -44,7 +44,7 @@ efi.canTouchEfiVariables = true; }; tmp.cleanOnBoot = true; - kernelPackages = pkgs.linuxPackages_latest; + kernelPackages = pkgs.linuxPackages_6_14; extraModulePackages = with config.boot.kernelPackages; [ rtl8821ce ];