jpcx
/
cfg
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
A collection of various Gentoo config files, scripts, and SELinux policies
46 Commits
1 Branch
0 Tags
161 KiB
Vim Script 52.4%
Shell 47.6%
 
 
Go to file
Justin Collier 215a8a319a
added docker AVC rules 		2023-09-25 14:17:49 -07:00
editor added skip_folds, re-arranged sections 2023-09-19 15:00:56 -07:00
geninitramfs added header subtitle, builtin kernel conf patch 2023-08-23 09:35:06 -07:00
kconf add kvm-guest 2023-09-04 16:37:35 -07:00
selinux added docker AVC rules 2023-09-25 14:17:49 -07:00
sway added header subtitle, builtin kernel conf patch 2023-08-23 09:35:06 -07:00
theme added skip_folds, re-arranged sections 2023-09-19 15:00:56 -07:00
LICENSE git init 2023-08-21 06:55:51 -07:00
README.md added docker AVC rules 2023-09-25 14:17:49 -07:00

README.md 

        _____
  _____/ ____\____
_/ ___\   __\/ ___\
\  \___|  | / /_/  >
 \___  >__| \___  /
     \/    /_____/
 configs for gentoo

A collection of various configuration files, scripts, and SELinux policies used by my Gentoo systems.

Synopsis

  • editor: various NeoVim configs
  • geninitramfs: a simple initramfs sources generator
    • allow.te: allow rules for a strict SELinux policy
    • package.use: USE flags for static busybox and cryptsetup
  • kconf: a set of kernel configuration patches
    • zen2: AMD Ryzen Zen2 CPU optimizations
    • navi10: AMD Navi10 GPU optimizations
    • builtin: sets all modules to built-ins, without disabling modules support
    • seforce: forces SELinux to be active at all times and disables selinux=0 bootparam
    • camera: adds USB camera support
    • rawinit: builds a custom, uncompressed initramfs into the kernel
    • iptables-cli: adds iptables client support
    • iptables-srv: adds iptables server support
    • iptables: adds iptables client/server support
    • dmcrypt: adds dm-crypt support
    • kvm-amd-host: adds QEMU/KVM host support for AMD machines
    • raid: adds RAID support
    • libvirt: adds libvirtd support
    • nvme: adds basic NVMe support
    • kvm-guest: adds QEMU/KVM guest support
    • all-soft: all cfg patches except for hardware-restrictive ones (zen2/navi10/kvm-amd-host)
    • all: all cfg patches
  • selinux: a collection of SELinux policies, generated by jpcx/seutl.
    • docker: AVC rules for docker
    • efibootmgr: AVC rules for efibootmgr
    • keepasscx: sandboxed cache, config, data, and execution types for keepassxc
    • gpg: a restrictive gpg secrets type and gpg-related rules
    • portage: AVC rules for portage
  • sway: utilities and configurations for SwayWM
    • sway-focused: gets the JSON representation of the currently-focused window
    • sway-wait-for: waits for the desired window to become focused (after automated opening)
  • theme: theme customizations
    • ter-112n-cust: a Terminus derivative with a few custom characters used by my NeoVim TTY listchars configuration
    • tty.vim: a TTY colorscheme for NeoVim and lualine.
Copyright (C) 2023 Justin Collier <m@jpcx.dev>
License  AGPLv3+:  GNU  Affero GPL  version 3 or later
<https://gnu.org/licenses/agpl-3.0.html>. This is free
software:  you are free to change and redistribute it.
There is NO WARRANTY,  to the extent permitted by law.