diff --git a/fido-cred b/fido-cred new file mode 100644 index 0000000..dc447f7 --- /dev/null +++ b/fido-cred @@ -0,0 +1 @@ +f2c755a88323585ed3811d4f3bde06c411f8082f73f8bf12b8b677ec9540e1df44ea3fec2463525aa9488c7bcf980c90 diff --git a/flake.lock b/flake.lock index c01aac0..ede333e 100644 --- a/flake.lock +++ b/flake.lock @@ -8,11 +8,11 @@ "utils": "utils" }, "locked": { - "lastModified": 1663328500, - "narHash": "sha256-7n+J/exp8ky4dmk02y5a9R7CGmJvHpzrHMzfEkMtSWA=", + "lastModified": 1663932797, + "narHash": "sha256-IH8ZBW99W2k7wKLS+Sat9HiKX1TPZjFTnsPizK5crok=", "owner": "nix-community", "repo": "home-manager", - "rev": "5427f3d1f0ea4357cd4af0bffee7248d640c6ffc", + "rev": "de3758e31a3a1bc79d569f5deb5dac39791bf9b6", "type": "github" }, "original": { @@ -29,11 +29,11 @@ "wlroots": "wlroots" }, "locked": { - "lastModified": 1663501249, - "narHash": "sha256-OyLmS7oSM1VQvXXMD0PwuKoWpp+eWRYqBPQijaWrnZA=", + "lastModified": 1664050038, + "narHash": "sha256-Q+dLA0bPW0RqYs9ONiu5/KalJYVjoFX2kG6p9G/hzDc=", "owner": "vaxerski", "repo": "Hyprland", - "rev": "dd61f88ed15ab81d634652eed66bdd7e18834863", + "rev": "fad5fc587d4281a5d399e61dc1243bc333d94d4d", "type": "github" }, "original": { @@ -44,11 +44,11 @@ }, "nixpkgs": { "locked": { - "lastModified": 1663357389, - "narHash": "sha256-oYA2nVRSi6yhCBqS5Vz465Hw+3BQOVFEhfbfy//3vTs=", + "lastModified": 1663850217, + "narHash": "sha256-tp9nXo1/IdN/xN9m06ryy0QUAEfoN6K56ObM/1QTAjc=", "owner": "nixos", "repo": "nixpkgs", - "rev": "da6a05816e7fa5226c3f61e285ef8d9dfc868f3c", + "rev": "ae1dc133ea5f1538d035af41e5ddbc2ebcb67b90", "type": "github" }, "original": { @@ -60,11 +60,11 @@ }, "nur": { "locked": { - "lastModified": 1663485210, - "narHash": "sha256-FkpQBG88vqMzWON6iDKDwQWaU9P6qJX9FE6SaRqbd08=", + "lastModified": 1664047237, + "narHash": "sha256-Z65A8hQkGZEC/TNoraT/AA65EHvfvxboADVkpBt6Ky0=", "owner": "nix-community", "repo": "NUR", - "rev": "6fa90295fc02d44b74dd2c2a266ef6405eda6d1a", + "rev": "443dfda0172850616842b84ce146c0b99ca69813", "type": "github" }, "original": { @@ -100,11 +100,11 @@ "flake": false, "locked": { "host": "gitlab.freedesktop.org", - "lastModified": 1661882030, - "narHash": "sha256-Kw0MG4rXdTnbndVLLCNwkXDmNszwdQZmm7pwI1R3Kds=", + "lastModified": 1663507239, + "narHash": "sha256-LISZtkPVe8lQ2N8YwVe+KxCkXWLP9mdw6Q2kG93wE8A=", "owner": "wlroots", "repo": "wlroots", - "rev": "fd0b0276c9ecc159549acff48b932b83ec3b4f12", + "rev": "2ad25b1460400e66ea26bd6489b04072be7d9dbb", "type": "gitlab" }, "original": { diff --git a/hosts/configuration.nix b/hosts/configuration.nix index 020dab4..b9bb568 100644 --- a/hosts/configuration.nix +++ b/hosts/configuration.nix @@ -23,13 +23,13 @@ extraGroups = [ "wheel" "video" "audio" "camera" "networkmanager" "lp" "kvm" "libvirtd" ]; shell = pkgs.zsh; # Default shell uid = 2000; - initialPassword = "password95"; - openssh.authorizedKeys = [ - "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIANmaraVJ/o20c4dqVnGLp/wGck9QNHFPvO9jcEbKS29AAAABHNzaDo= kabbone@kabc" - "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIIgo4IP8ISUohyAMiDc3zEe6ESUE3un7eN5FhVtxZHmcAAAABHNzaDo= kabbone@kabc" - "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIKVDApb3vZ+i97V4xLJh8rUF6z5OVYfORlXYbLhdQO15AAAABHNzaDo= kabbone@hades.home.opel-online.de" - "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIB0q++epdX7feQxvmC2m/CJEoJbkqtAJy6Ml6WKHxryZAAAABHNzaDo= kabbone@hades.home.opel-online.de" - ]; +# initialPassword = "password95"; +# openssh.authorizedKeys = [ +# "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIANmaraVJ/o20c4dqVnGLp/wGck9QNHFPvO9jcEbKS29AAAABHNzaDo= kabbone@kabc" +# "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIIgo4IP8ISUohyAMiDc3zEe6ESUE3un7eN5FhVtxZHmcAAAABHNzaDo= kabbone@kabc" +# "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIKVDApb3vZ+i97V4xLJh8rUF6z5OVYfORlXYbLhdQO15AAAABHNzaDo= kabbone@hades.home.opel-online.de" +# "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIB0q++epdX7feQxvmC2m/CJEoJbkqtAJy6Ml6WKHxryZAAAABHNzaDo= kabbone@hades.home.opel-online.de" +# ]; }; #security.sudo.wheelNeedsPassword = true; # User does not need to give password when using sudo. diff --git a/hosts/home.nix b/hosts/home.nix index 597902c..1382623 100644 --- a/hosts/home.nix +++ b/hosts/home.nix @@ -19,7 +19,7 @@ { imports = # Home Manager Modules - (import ../modules/editors) ++ +# (import ../modules/editors) ++ (import ../modules/programs) ++ (import ../modules/services) ++ (import ../modules/shell); @@ -71,7 +71,7 @@ #doom emacs # Text Editor #flameshot # Screenshot #libnotify # Dep for Dunst - #neovim # Text Editor + neovim # Text Editor #rofi # Menu #udiskie # Auto Mounting #vim # Text Editor diff --git a/hosts/laptop/hardware-configuration.nix b/hosts/laptop/hardware-configuration.nix index 2e9033c..1950aee 100644 --- a/hosts/laptop/hardware-configuration.nix +++ b/hosts/laptop/hardware-configuration.nix @@ -17,25 +17,34 @@ [ (modulesPath + "/installer/scan/not-detected.nix") ]; - boot.initrd.availableKernelModules = [ "xhci_pci" "ehci_pci" "ahci" "usbhid" "usb_storage" "sd_mod" "rtsx_usb_sdmmc" ]; + boot.initrd.availableKernelModules = [ "ahci" "xhci_pci" "usb_storage" "usbhid" "sd_mod" "sdhci_pci" "rtsx_usb_sdmmc" ]; boot.initrd.kernelModules = [ ]; boot.kernelModules = [ "kvm-intel" ]; boot.extraModulePackages = [ ]; fileSystems."/" = - { device = "/dev/disk/by-label/ROOT"; + { device = "/dev/mapper/root"; fsType = "btrfs"; options = [ "compress=zstd,space_cache=v2,ssd,noatime,subvol=@" ]; }; + boot.initrd.luks.devices."root".device = "/dev/disk/by-uuid/75eccc7f-30b0-4fe8-8f82-90edaf284cd5"; + boot.initrd.luks.fido2Support = true; + fileSystems."/home" = - { device = "/dev/disk/by-label/ROOT"; + { device = "/dev/mapper/root"; fsType = "btrfs"; options = [ "compress=zstd,space_cache=v2,ssd,noatime,subvol=@home" ]; }; + fileSystems."/opt" = + { device = "/dev/mapper/root"; + fsType = "btrfs"; + options = [ "compress=zstd,space_cache=v2,ssd,noatime,subvol=@opt" ]; + }; + fileSystems."/srv" = - { device = "/dev/disk/by-label/ROOT"; + { device = "/dev/mapper/root"; fsType = "btrfs"; options = [ "compress=zstd,space_cache=v2,ssd,noatime,subvol=@srv" ]; }; @@ -52,7 +61,7 @@ hostName = "nbf5"; networkmanager.enable = true; interfaces = { - enp0s25 = { + wlp1s0 = { useDHCP = true; # For versatility sake, manually edit IP on nm-applet. #ipv4.addresses = [ { # address = "192.168.0.51"; diff --git a/modules/shell/zsh.nix b/modules/shell/zsh.nix index b9ba319..bc5b284 100644 --- a/modules/shell/zsh.nix +++ b/modules/shell/zsh.nix @@ -18,11 +18,11 @@ plugins = [ "git" ]; custom = "$HOME/.config/zsh_nix/custom"; }; - shellInit = '' - export GPG_TTY="$(tty)" - gpg-connect-agent /bye - export SSH_AUTH_SOCK="/run/user/$UID/gnupg/S.gpg-agent.ssh" - ''; +# shellInit = '' +# export GPG_TTY="$(tty)" +# gpg-connect-agent /bye +# export SSH_AUTH_SOCK="/run/user/$UID/gnupg/S.gpg-agent.ssh" +# ''; initExtra = '' # Zsh theme # Spaceship source ${pkgs.spaceship-prompt}/share/zsh/site-functions/prompt_spaceship_setup