Merge remote-tracking branch 'prism/master'

2017-11-02 21:44:31 +01:00 · 2017-11-02 21:44:31 +01:00 · 7f342406b7
commit 7f342406b7
parent ab98a1be65 6934b5d83f
7 changed files with 55 additions and 2 deletions
--- a/lass/1systems/mors/config.nix
+++ b/lass/1systems/mors/config.nix
@ -29,6 +29,7 @@ with import <stockholm/lib>;
    <stockholm/lass/2configs/syncthing.nix>
    <stockholm/lass/2configs/otp-ssh.nix>
    <stockholm/lass/2configs/c-base.nix>
    <stockholm/tv/2configs/br.nix>
    {
      #risk of rain port
      krebs.iptables.tables.filter.INPUT.rules = [
--- a/lass/2configs/br.nix
+++ b/lass/2configs/br.nix
@ -0,0 +1,48 @@
 with import <stockholm/lib>;
 { config, pkgs, ... }: {
  imports = [
    <nixpkgs/nixos/modules/services/hardware/sane_extra_backends/brscan4.nix>
  ];
  krebs.nixpkgs.allowUnfreePredicate = pkg: any (flip hasPrefix pkg.name) [
    "brother-udev-rule-type1-"
    "brscan4-"
    "mfcl2700dnlpr-"
  ];
  hardware.sane = {
    enable = true;
    brscan4 = {
      enable = true;
      netDevices = {
        bra = {
          model = "MFCL2700DN";
          ip = "10.23.42.221";
        };
      };
    };
  };
  services.saned.enable = true;
  # usage: scanimage -d "$(find-scanner bra)" --batch --format=tiff --resolution 150  -x 211 -y 298
  environment.systemPackages = [
    (pkgs.writeDashBin "find-scanner" ''
      set -efu
      name=$1
      ${pkgs.sane-backends}/bin/scanimage -f '%m %d
      ' \
      | ${pkgs.gawk}/bin/awk -v dev="*$name" '$1 == dev { print $2; exit }' \
      | ${pkgs.gnugrep}/bin/grep .
    '')
  ];
  services.printing = {
    enable = true;
    drivers = [
      pkgs.mfcl2700dncupswrapper
    ];
  };
 }
--- a/lass/2configs/default.nix
+++ b/lass/2configs/default.nix
@ -210,6 +210,7 @@ with import <stockholm/lib>;
        { predicate = "-p tcp -i retiolum"; target = "REJECT --reject-with tcp-reset"; precedence = -10000; }
        { predicate = "-p udp -i retiolum"; target = "REJECT --reject-with icmp-port-unreachable"; v6 = false; precedence = -10000; }
        { predicate = "-i retiolum"; target = "REJECT --reject-with icmp-proto-unreachable"; v6 = false; precedence = -10000; }
        { predicate = "-i retiolum -p udp -m udp --dport 53"; target = "ACCEPT"; }
      ];
    };
  };
--- a/lass/2configs/exim-smarthost.nix
+++ b/lass/2configs/exim-smarthost.nix
@ -45,6 +45,7 @@ with import <stockholm/lib>;
      { from = "raf@lassul.us"; to = lass.mail; }
      { from = "apple@lassul.us"; to = lass.mail; }
      { from = "coinbase@lassul.us"; to = lass.mail; }
      { from = "tomtop@lassul.us"; to = lass.mail; }
    ];
    system-aliases = [
      { from = "mailer-daemon"; to = "postmaster"; }
--- a/lass/2configs/websites/domsen.nix
+++ b/lass/2configs/websites/domsen.nix
@ -126,6 +126,8 @@ in {
      { from = "dominik@apanowicz.de"; to = "dominik_a@gmx.de"; }
      { from = "dma@ubikmedia.de"; to = "domsen"; }
      { from = "dma@ubikmedia.eu"; to = "domsen"; }
      { from = "mail@habsys.de"; to = "domsen"; }
      { from = "mail@habsys.eu"; to = "domsen"; }
      { from = "bruno@apanowicz.de"; to = "bruno"; }
      { from = "mail@jla-trading.com"; to = "jla-trading"; }
      { from = "jms@ubikmedia.eu"; to = "jms"; }
--- a/lass/3modules/screenlock.nix
+++ b/lass/3modules/screenlock.nix
@ -11,7 +11,7 @@ let
  };
  api = {
-    enable = mkEnableOption "news";
+    enable = mkEnableOption "screenlock";
    command = mkOption {
      type = types.str;
      default = "${pkgs.i3lock}/bin/i3lock -i /var/lib/wallpaper/wallpaper -f";
--- a/lass/source.nix
+++ b/lass/source.nix
@ -10,7 +10,7 @@ in
      nixos-config.symlink = "stockholm/lass/1systems/${name}/config.nix";
      nixpkgs.git = {
        url = https://github.com/nixos/nixpkgs;
-        ref = "c99239b";
+        ref = "6a0a00d";
      };
      secrets.file = getAttr builder {
        buildbot = toString <stockholm/lass/2configs/tests/dummy-secrets>;