dotfiles-ansible/TODO.md

TODO

Plans for the future of this dotfiles.

General

• Add GuixWL workflow
• Disk layout declarative configuration using disko
  • Update README instruction to include AlpineLinux installation

System

Configuration

• /etc/security/access.conf
• Filesystem snapshot:
  • zrepl (rootfs=zfs)
• Root on tmpfs
• Filesystem backup (I don't have spare hard drives -_- so not supported for now):
  • Local incremental backups (to spare disk)
  • Remote backups
• incron
• bees
• kea as another option for dhcp client
• booster and dracut options for initramfs_generator
• i915.enable_guc=3 (/etc/modprobe.d/kms.conf)
• turnstile as an alternative to pam-rundir/elogind

Cosmetic

• Packer + Terraform / Pulumi (zfs + btrfs VMs) for testing the playbook

Just in case I forget

• nftables with rootful podman (https://github.com/greenpau/cni-plugins)
• Write docs about AlpineLinux installation:
  • BTRFS on LUKS (no encrypted /boot) / ZFS on root
  • Bootloader configuration:
    • limine / grub (BTRFS)
    • gummyboot (a.k.a systemd-boot) / stubbyboot / direct efistub (ZFS)
    • APK post-commit hook in the case of gummyboot, stubbyboot, efistub and limine
    • EFI secure boot (also sign fwupd efi binary)
    • Add EFI entries for EFI shell and fwupd
  • Common kernel parameters: init_on_free=1 page_alloc.shuffle=1 lockdown=integrity quiet
    • ZFS: root=ZFS=rpool/ROOT/alpine
    • BTRFS: modules=sd-mod,usb-storage,btrfs,nvme rootfstype=btrfs cryptroot=UUID=<...> cryptdm=alpine

Dotfiles

Software

• wayout
• Use bubblewrap for some applications ==> replace with rootless podman and apptainer
• eww
• swhkd
• senpai
• ripgrep -> ugrep
• vieb
• wolfssh
• AutoSub
• fnm
• asdf
• userspace-tablet-driver for my XP-PEN Artist 16 Pro
• lite-xl / helix / kakoune
• Wayland compositors: japokwm, dwl, labwc, vivarium, qtile (also revaluate hikari and wayfire)
• tremc / rtorrent ==> I use qbt with qbittorrent-nox daemon now
• Other terminals (contour, wezterm)
• CopyQ (config, themes + superd service + clipboard menu script)
• mangal
• musikcube
• vimiv-qt
• mpd-mpris (as an alternative to mpDris2)

Cosmetic

• GTK/Icons/Cursor theme, Sarasa font bootstrapping
• Waybar config file for River
• catppuccin theme
• Remove pipewire-pulse entirely (is there alternative to pavucontrol for pipewire??)
• qBittorrent themes
• vivid themes
• waybar: pulseaudio module -> wireplumber module (wait for more features, e.g. scrolling)
• html2text, html2org
• Build podman container images with ansible-bender or stacker
• Add target-determinator and aspect-cli to packages (or containers, with underlying bazel)

Sandboxing

• Dockerfile for animdl + mpv
• podman rootless with dbus access (without ANONYMOUS authentication) + socket permissions (wayland / dbus/ pipewire / pulseaudio) in container (777 is no good)