[2] WIP: home: tmux: fix undercurl rendering

home: tmux: fix undercurl rendering
home: tmux: refactor 'mkTerminalFlags'
2025-04-16 21:28:17 +01:00 · 2025-04-16 21:28:17 +01:00 · 2025-04-16 21:28:17 +01:00 · 2025-04-16 21:28:17 +01:00 · 2025-04-16 21:28:17 +01:00 · 2025-04-16 16:05:14 +00:00
16 changed files with 177 additions and 42 deletions
--- a/flake.lock
+++ b/flake.lock
@ -175,11 +175,11 @@
    },
    "nixpkgs": {
      "locked": {
-        "lastModified": 1743689281,
-        "narHash": "sha256-y7Hg5lwWhEOgflEHRfzSH96BOt26LaYfrYWzZ+VoVdg=",
+        "lastModified": 1744777043,
+        "narHash": "sha256-O6jgTxz9BKUiaJl03JsVHvSjtCOC8gHfDvC2UCfcLMc=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "2bfc080955153be0be56724be6fa5477b4eefabb",
+        "rev": "7a6f7f4c1c69eee05641beaa40e7f85da8e69fb0",
        "type": "github"
      },
      "original": {
--- a/flake/home-manager.nix
+++ b/flake/home-manager.nix
@ -3,6 +3,11 @@ let
  defaultModules = [
    # Include generic settings
    "${self}/modules/home"
+    {
+      nixpkgs.overlays = (lib.attrValues self.overlays) ++ [
+        inputs.nur.overlays.default
+      ];
+    }
    {
      # Basic user information defaults
      home.username = lib.mkDefault "ambroisie";
@ -21,18 +26,15 @@ let
    # * not letting me set `lib` as an extraSpecialArgs
    # * not respecting `nixpkgs.overlays` [1]
    # [1]: https://github.com/nix-community/home-manager/issues/2954
-    pkgs = import inputs.nixpkgs {
-      inherit system;
-
-      overlays = (lib.attrValues self.overlays) ++ [
-        inputs.nur.overlays.default
-      ];
-    };
+    pkgs = inputs.nixpkgs.legacyPackages.${system};

    modules = defaultModules ++ [
      "${self}/hosts/homes/${name}"
    ];

+    # Use my extended lib in NixOS configuration
+    inherit (self) lib;
+
    extraSpecialArgs = {
      # Inject inputs to use them in global registry
      inherit inputs;
--- a/hosts/homes/ambroisie@bazin/default.nix
+++ b/hosts/homes/ambroisie@bazin/default.nix
@ -13,8 +13,8 @@
      enablePassthrough = true;

      terminalFeatures = {
-        # HTerm uses `xterm-256color` as its `$TERM`, so use that here
-        xterm-256color = { };
+        # HTerm configured to use a more accurate terminfo entry than `xterm-256color`
+        hterm-256color = { };
      };
    };

--- a/hosts/homes/ambroisie@mousqueton/default.nix
+++ b/hosts/homes/ambroisie@mousqueton/default.nix
@ -19,8 +19,8 @@
      enableResurrect = true;

      terminalFeatures = {
-        # HTerm uses `xterm-256color` as its `$TERM`, so use that here
-        xterm-256color = { };
+        # HTerm configured to use a more accurate terminfo entry than `xterm-256color`
+        hterm-256color = { };
      };
    };
  };
--- a/hosts/nixos/porthos/secrets/secrets.nix
+++ b/hosts/nixos/porthos/secrets/secrets.nix
@ -81,6 +81,7 @@ in
  "pyload/credentials.age".publicKeys = all;

  "servarr/autobrr/session-secret.age".publicKeys = all;
+  "servarr/cross-seed/configuration.json.age".publicKeys = all;

  "sso/auth-key.age" = {
    owner = "nginx-sso";
--- a/hosts/nixos/porthos/secrets/servarr/cross-seed/configuration.json.age
+++ b/hosts/nixos/porthos/secrets/servarr/cross-seed/configuration.json.age
--- a/hosts/nixos/porthos/services.nix
+++ b/hosts/nixos/porthos/services.nix
@ -51,6 +51,10 @@ in
        passwordFile = secrets."forgejo/mail-password".path;
      };
    };
+    # Home inventory
+    homebox = {
+      enable = true;
+    };
    # Jellyfin media server
    jellyfin.enable = true;
    # Gitea mirrorig service
@ -144,6 +148,9 @@ in
      autobrr = {
        sessionSecretFile = secrets."servarr/autobrr/session-secret".path;
      };
+      cross-seed = {
+        secretSettingsFile = secrets."servarr/cross-seed/configuration.json".path;
+      };
      # ... But not Lidarr because I don't care for music that much
      lidarr = {
        enable = false;
--- a/modules/home/atuin/default.nix
+++ b/modules/home/atuin/default.nix
@ -8,6 +8,10 @@ in

    # I want the full experience by default
    package = mkPackageOption pkgs "atuin" { };
+
+    daemon = {
+      enable = my.mkDisableOption "atuin daemon";
+    };
  };

  config = lib.mkIf cfg.enable {
@ -15,12 +19,18 @@ in
      enable = true;
      inherit (cfg) package;

+      daemon = lib.mkIf cfg.daemon.enable {
+        enable = true;
+      };
+
      flags = [
        # I *despise* this hijacking of the up key, even though I use Ctrl-p
        "--disable-up-arrow"
      ];

      settings = {
+        # Reasonable date format
+        dialect = "uk";
        # The package is managed by Nix
        update_check = false;
        # I don't care for the fancy display
--- a/modules/home/tmux/default.nix
+++ b/modules/home/tmux/default.nix
@ -6,13 +6,16 @@ let
    (config.my.home.wm.windowManager != null)
  ];

-  mkTerminalFlags = opt: flag:
+  mkTerminalFlags = tmuxVar: opt: flag:
    let
-      mkFlag = term: ''set -as terminal-features ",${term}:${flag}"'';
+      mkFlag = term: ''set -as ${tmuxVar} ",${term}:${flag}"'';
      enabledTerminals = lib.filterAttrs (_: v: v.${opt}) cfg.terminalFeatures;
      terminals = lib.attrNames enabledTerminals;
    in
    lib.concatMapStringsSep "\n" mkFlag terminals;
+
+  mkTerminalFeatures = mkTerminalFlags "terminal-features";
+  mkTerminalOverrides = mkTerminalFlags "terminal-overrides";
 in
 {
  options.my.home.tmux = with lib; {
@ -28,6 +31,8 @@ in
          hyperlinks = my.mkDisableOption "hyperlinks through OSC8";

          trueColor = my.mkDisableOption "24-bit (RGB) color support";
+
+          underscoreStyle = my.mkDisableOption "underscore style/color support";
        };
      });

@ -54,6 +59,20 @@ in
    terminal = "tmux-256color"; # I want accurate termcap info
    aggressiveResize = true; # Automatic resize when switching client size

+    # FIXME
+    # * Sixel support
+    # * OSC 133 prompt integration
+    # FIXME: when sensible-on-top is disabled: check if any of those are unset
+    # * tmux bind-key $prefix_without_ctrl last-window
+    # *
+    # * tmux bind-key C-b send-prefix: included
+    # * aggressive resize? done
+    # * tmux bind-key C-p previous-window: done
+    # * tmux bind-key C-n next-window: done
+    # * C-r to refresh my config: done
+    # * tmux set-option -g focus-events on: done
+
+    # FIXME: make PRs for `bind-key` description
    plugins = with pkgs.tmuxPlugins; builtins.filter (attr: attr != { }) [
      # Open high-lighted files in copy mode
      open
@ -123,9 +142,14 @@ in
      }

      # Force OSC8 hyperlinks for each relevant $TERM
-      ${mkTerminalFlags "hyperlinks" "hyperlinks"}
+      ${mkTerminalFeatures "hyperlinks" "hyperlinks"}
      # Force 24-bit color for each relevant $TERM
-      ${mkTerminalFlags "trueColor" "RGB"}
+      ${mkTerminalFeatures "trueColor" "RGB"}
+      # Force underscore style/color for each relevant $TERM
+      ${mkTerminalFeatures "underscoreStyle" "usstyle"}
+      # FIXME: see https://github.com/folke/tokyonight.nvim#fix-undercurls-in-tmux for additional overrides
+      # ${mkTerminalOverrides "underscoreStyle" "Smulx=\\E[4::%p1%dm"}
+      # ${mkTerminalOverrides "underscoreStyle" "Setulc=\\E[58::2::::%p1%{65536}%/%d::%p1%{256}%/%{255}%&%d::%p1%{255}%&%d%;m"}
    '';
  };
 }
--- a/modules/home/vim/plugin/numbertoggle.lua
+++ b/modules/home/vim/plugin/numbertoggle.lua
@ -22,13 +22,3 @@ vim.api.nvim_create_autocmd({ "BufLeave", "FocusLost", "InsertEnter", "WinLeave"
        end
    end,
 })
-
-- Never show the sign column in a terminal buffer
-vim.api.nvim_create_autocmd({ "TermOpen" }, {
-    pattern = "*",
-    group = numbertoggle,
-    callback = function()
-        vim.opt.number = false
-        vim.opt.relativenumber = false
-    end,
-})
--- a/modules/home/vim/plugin/signtoggle.lua
+++ b/modules/home/vim/plugin/signtoggle.lua
@ -1,26 +1,21 @@
 local signtoggle = vim.api.nvim_create_augroup("signtoggle", { clear = true })

-- Only show sign column for the currently focused buffer
+-- Only show sign column for the currently focused buffer, if it has a number column
 vim.api.nvim_create_autocmd({ "BufEnter", "FocusGained", "WinEnter" }, {
    pattern = "*",
    group = signtoggle,
    callback = function()
-        vim.opt.signcolumn = "yes"
+        if vim.opt.number:get() then
+            vim.opt.signcolumn = "yes"
+        end
    end,
 })
 vim.api.nvim_create_autocmd({ "BufLeave", "FocusLost", "WinLeave" }, {
    pattern = "*",
    group = signtoggle,
    callback = function()
-        vim.opt.signcolumn = "no"
-    end,
-})
-
-- Never show the sign column in a terminal buffer
-vim.api.nvim_create_autocmd({ "TermOpen" }, {
-    pattern = "*",
-    group = signtoggle,
-    callback = function()
-        vim.opt.signcolumn = "no"
+        if vim.opt.number:get() then
+            vim.opt.signcolumn = "no"
+        end
    end,
 })
--- a/modules/nixos/services/homebox/default.nix
+++ b/modules/nixos/services/homebox/default.nix
@ -19,6 +19,11 @@ in
    services.homebox = {
      enable = true;

+      # Automatic PostgreSQL provisioning
+      database = {
+        createLocally = true;
+      };
+
      settings = {
        # FIXME: mailer?
        HBOX_WEB_PORT = toString cfg.port;
@ -28,6 +33,7 @@ in
    my.services.nginx.virtualHosts = {
      homebox = {
        inherit (cfg) port;
+        websocketsLocations = [ "/api" ];
      };
    };

--- a/modules/nixos/services/servarr/autobrr.nix
+++ b/modules/nixos/services/servarr/autobrr.nix
@ -1,4 +1,4 @@
-# IRC-based
+# IRC-based indexer
 { config, lib, ... }:
 let
  cfg = config.my.services.servarr.autobrr;
@ -40,6 +40,7 @@ in
    my.services.nginx.virtualHosts = {
      autobrr = {
        inherit (cfg) port;
+        websocketsLocations = [ "/api" ];
      };
    };

@ -54,7 +55,7 @@ in
    environment.etc = {
      "fail2ban/filter.d/autobrr.conf".text = ''
        [Definition]
-        failregex = ^.*Auth: invalid login \[.*\] from: <HOST>$
+        failregex = "message":"Auth: Failed login attempt username: \[.*\] ip: <HOST>"
        journalmatch = _SYSTEMD_UNIT=autobrr.service
      '';
    };
--- a/modules/nixos/services/servarr/cross-seed.nix
+++ b/modules/nixos/services/servarr/cross-seed.nix
@ -0,0 +1,96 @@
+# Automatic cross-seeding for video media
+{ config, lib, ... }:
+let
+  cfg = config.my.services.servarr.cross-seed;
+in
+{
+  options.my.services.servarr.cross-seed = with lib; {
+    enable = mkEnableOption "cross-seed daemon" // {
+      default = config.my.services.servarr.enableAll;
+    };
+
+    port = mkOption {
+      type = types.port;
+      default = 2468;
+      example = 8080;
+      description = "Internal port for daemon";
+    };
+
+    linkDirectory = mkOption {
+      type = types.str;
+      default = "/data/downloads/complete/links";
+      example = "/var/lib/cross-seed/links";
+      description = "Link directory";
+    };
+
+    secretSettingsFile = mkOption {
+      type = types.str;
+      example = "/run/secrets/cross-seed-secrets.json";
+      description = ''
+        File containing secret settings.
+      '';
+    };
+  };
+
+  config = lib.mkIf cfg.enable {
+    services.cross-seed = {
+      enable = true;
+      group = "media";
+
+      # Rely on recommended defaults for tracker snatches etc...
+      useGenConfigDefaults = true;
+
+      settings = {
+        inherit (cfg) port;
+        host = "127.0.0.1";
+
+        # Inject torrents to client directly
+        action = "inject";
+        # Query the client for torrents to match
+        useClientTorrents = true;
+        # Use hardlinks
+        linkType = "hardlink";
+        # Use configured link directory
+        linkDirs = [ cfg.linkDirectory ];
+        # Match as many torrents as possible
+        matchMode = "partial";
+        # Cross-seed full season if at least 50% of episodes are already downloaded
+        seasonFromEpisodes = 0.5;
+      };
+
+      settingsFile = cfg.secretSettingsFile;
+    };
+
+    systemd.services.cross-seed = {
+      serviceConfig = {
+        # Loose umask to make cross-seed links readable by `media`
+        UMask = "0002";
+      };
+    };
+
+    # Set-up media group
+    users.groups.media = { };
+
+    my.services.nginx.virtualHosts = {
+      cross-seed = {
+        inherit (cfg) port;
+      };
+    };
+
+    services.fail2ban.jails = {
+      cross-seed = ''
+        enabled = true
+        filter = cross-seed
+        action = iptables-allports
+      '';
+    };
+
+    environment.etc = {
+      "fail2ban/filter.d/cross-seed.conf".text = ''
+        [Definition]
+        failregex = ^.*Unauthorized API access attempt to .* from <HOST>$
+        journalmatch = _SYSTEMD_UNIT=cross-seed.service
+      '';
+    };
+  };
+}
--- a/modules/nixos/services/servarr/default.nix
+++ b/modules/nixos/services/servarr/default.nix
@ -7,6 +7,7 @@
  imports = [
    ./autobrr.nix
    ./bazarr.nix
+    ./cross-seed.nix
    ./jackett.nix
    ./nzbhydra.nix
    ./prowlarr.nix
--- a/modules/nixos/services/transmission/default.nix
+++ b/modules/nixos/services/transmission/default.nix
@ -65,6 +65,8 @@ in
        # Proxied behind Nginx.
        rpc-whitelist-enabled = true;
        rpc-whitelist = "127.0.0.1";
+
+        umask = "002"; # To go with `downloadDirPermissions`
      };
    };
Author	SHA1	Message	Date
Bruno BELANYI	29ae755d41	[2] WIP: home: tmux: fix undercurl rendering All checks were successful ci/woodpecker/push/check Pipeline was successful Details	2025-04-16 21:28:17 +01:00
Bruno BELANYI	ecd65c5e86	home: tmux: fix undercurl rendering	2025-04-16 21:28:17 +01:00
Bruno BELANYI	7c52c6a6d4	home: tmux: refactor 'mkTerminalFlags' I'm about to add a similar helper for `terminal-overrides`, hence making `mkTerminalFlags` the helper and `mkTerminalFeatures` the new function.	2025-04-16 21:28:17 +01:00
Bruno BELANYI	19ba9e9442	hosts: homes: bazin: fix terminal name Turns out I can use a more accurate terminfo entry for HTerm. This fixes undercurl rendering in that terminal.	2025-04-16 21:28:17 +01:00
Bruno BELANYI	ea5d240d83	hosts: homes: mousqueton: fix terminal name Turns out I can use a more accurate terminfo entry for HTerm. This fixes undercurl rendering in that terminal.	2025-04-16 21:28:17 +01:00
Bruno BELANYI	135cef2536	home: atuin: add daemon All checks were successful ci/woodpecker/push/check Pipeline was successful Details Enabled by default, I probably won't have a reason not to use it.	2025-04-16 16:05:14 +00:00
Bruno BELANYI	ee1139713c	hosts: nixos: porthos: services: enable cross-seed All checks were successful ci/woodpecker/push/check Pipeline was successful Details	2025-04-16 17:26:10 +02:00
Bruno BELANYI	058096079e	hosts: nixos: porthos: secrets: add cross-seed	2025-04-16 17:26:10 +02:00
Bruno BELANYI	c40090d176	nixos: services: servarr: add cross-seed	2025-04-16 17:26:10 +02:00
Bruno BELANYI	1b6a48d6c2	flake: bump inputs	2025-04-16 17:07:38 +02:00
Bruno BELANYI	e4bc0444bf	nixos: services: transmission: fix umask I want downloads to be readable by the `media` group. The permissions weren't correctly applied without `umask`.	2025-04-16 17:01:18 +02:00
Bruno BELANYI	c69aaa7adb	nixos: services: servarr: autobrr: fix websockets I found some logs complaining about websockets before enabling this.	2025-04-16 17:01:18 +02:00
Bruno BELANYI	26ee59ef6e	home: atuin: use 'uk' dialect for dates All checks were successful ci/woodpecker/push/check Pipeline was successful Details This should be for date parsing, from my looking at the code. Unlikely to be relevant, but might as well set it to the saner of the two options.	2025-04-14 13:54:57 +00:00
Bruno BELANYI	6f5ac4e55f	home: vim: signtoggle: only show signs if 'number' All checks were successful ci/woodpecker/push/check Pipeline was successful Details If a buffer doesn't show a number column, I probably also don't want a sign column to be toggled on/off in there.	2025-04-14 10:24:33 +00:00
Bruno BELANYI	67936af4c7	home: vim: signtoggle: remove 'TermOpen' event It's now part of upstream's default setup.	2025-04-14 10:20:02 +00:00
Bruno BELANYI	e82ae4a219	home: vim: numbertoggle: remove 'TermOpen' event It's now part of upstream's default setup.	2025-04-14 10:20:02 +00:00
Bruno BELANYI	a0473a5c6c	nixos: services: servarr: autobrr: fix fail2ban All checks were successful ci/woodpecker/push/check Pipeline was successful Details The log line for authentication failures has been updated since the original PR. It also happens to be logged in JSON, and I'm a bit too lazy to match it more properly than this.	2025-04-12 11:30:14 +02:00
Bruno BELANYI	a28295da27	nixos: services: servarr: autobrr: fix comment All checks were successful ci/woodpecker/push/check Pipeline was successful Details	2025-04-11 19:01:08 +02:00
Bruno BELANYI	bd55ecc016	hosts: nixos: porthos: services: enable homebox All checks were successful ci/woodpecker/push/check Pipeline was successful Details	2025-04-09 12:29:27 +02:00
Bruno BELANYI	1dd1dbb917	nixos: services: homebox: proxy websockets Should avoid a bunch of error logs, and ensure that e.g: adding a label does not require a refresh to show it in a list.	2025-04-09 12:29:27 +02:00
Bruno BELANYI	439a6bc930	nixos: services: homebox: use postgres	2025-04-09 12:29:27 +02:00
Bruno BELANYI	e5bf5a3ba1	flake: bump inputs	2025-04-09 12:29:27 +02:00
Bruno BELANYI	a1cab7f606	flake: home-manager: set overlays in module All checks were successful ci/woodpecker/push/check Pipeline was successful Details I need to inherit `lib` to make sure it picks up my version, not the one from `pkgs`. I can't use `extraSpecialArgs` like NixOS, due to it missing from upstream [1]. [1]: https://github.com/nix-community/home-manager/pull/3969	2025-04-07 16:16:41 +00:00