2024-08-02 14:09:42 +02:00
|
|
|
{
|
|
|
|
|
inputs,
|
|
|
|
|
outputs,
|
|
|
|
|
lib,
|
|
|
|
|
config,
|
|
|
|
|
pkgs,
|
|
|
|
|
modulesPath,
|
|
|
|
|
...
|
|
|
|
|
}:
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
|
|
|
|
|
|
|
|
|
|
boot = {
|
|
|
|
|
initrd = {
|
|
|
|
|
availableKernelModules = [
|
|
|
|
|
"xhci_pci"
|
|
|
|
|
"thunderbolt"
|
|
|
|
|
"nvme"
|
|
|
|
|
"usb_storage"
|
|
|
|
|
"sd_mod"
|
|
|
|
|
];
|
|
|
|
|
kernelModules = [ ];
|
|
|
|
|
luks.devices."enc".device = "/dev/disk/by-uuid/e7c7a230-b321-4e6d-869c-6c2d858455d2";
|
|
|
|
|
systemd.enable = true;
|
|
|
|
|
};
|
|
|
|
|
kernelModules = [ "kvm-intel" ];
|
|
|
|
|
kernelParams = [ "mitigations=off" ];
|
|
|
|
|
extraModulePackages = [ ];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
fileSystems."/" = {
|
|
|
|
|
device = "/dev/disk/by-uuid/81e5205d-fe1e-458f-82e1-d60ab03c0a1d";
|
|
|
|
|
fsType = "btrfs";
|
|
|
|
|
options = [
|
|
|
|
|
"noatime"
|
|
|
|
|
"nodiratime"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
fileSystems."/boot" = {
|
|
|
|
|
device = "/dev/disk/by-uuid/D6C0-1A05";
|
|
|
|
|
fsType = "vfat";
|
|
|
|
|
options = [
|
|
|
|
|
"fmask=0022"
|
|
|
|
|
"dmask=0022"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
|
|
|
|
|
hardware.graphics = {
|
|
|
|
|
enable = true;
|
|
|
|
|
extraPackages = with pkgs; [
|
|
|
|
|
vpl-gpu-rt
|
|
|
|
|
intel-media-driver
|
|
|
|
|
vaapiVdpau
|
|
|
|
|
libvdpau-va-gl
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
|
2024-08-14 21:32:48 +02:00
|
|
|
hardware.enableAllFirmware = true;
|
2024-08-02 14:09:42 +02:00
|
|
|
hardware.nitrokey.enable = true;
|
|
|
|
|
|
|
|
|
|
swapDevices = [ { device = "/dev/disk/by-uuid/c9cc5270-87b0-4ed4-9891-7df924b0f55a"; } ];
|
|
|
|
|
|
|
|
|
|
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
|
|
|
|
|
|
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
|
mullvad-vpn
|
|
|
|
|
];
|
|
|
|
|
|
2024-09-27 18:56:13 +02:00
|
|
|
services.printing.enable = lib.mkForce false;
|
2024-08-02 14:09:42 +02:00
|
|
|
services.printing.drivers = [ pkgs.brlaser ];
|
|
|
|
|
|
2024-09-27 18:56:13 +02:00
|
|
|
services.udev.packages = [ pkgs.nitrokey-udev-rules ];
|
|
|
|
|
|
2024-08-02 14:09:42 +02:00
|
|
|
programs.adb.enable = true;
|
|
|
|
|
|
|
|
|
|
networking = {
|
|
|
|
|
hostName = "dinky";
|
2024-12-10 15:30:04 +01:00
|
|
|
domain = "aarn.patagia.net";
|
2024-08-18 23:33:07 +02:00
|
|
|
search = [
|
2024-12-10 15:30:04 +01:00
|
|
|
"patagia.net"
|
|
|
|
|
"aarn.patagia.net"
|
2024-08-18 23:33:07 +02:00
|
|
|
];
|
2024-08-02 14:09:42 +02:00
|
|
|
useDHCP = lib.mkDefault true;
|
|
|
|
|
};
|
|
|
|
|
|
2024-08-18 23:33:07 +02:00
|
|
|
networking.networkmanager.wifi.backend = "iwd";
|
|
|
|
|
|
2024-08-02 14:09:42 +02:00
|
|
|
services.mullvad-vpn.enable = true;
|
|
|
|
|
|
|
|
|
|
users.users.dln = {
|
|
|
|
|
isNormalUser = true;
|
|
|
|
|
description = "Daniel Lundin";
|
|
|
|
|
extraGroups = [
|
|
|
|
|
"adbusers"
|
|
|
|
|
"lp"
|
|
|
|
|
"nitrokey"
|
|
|
|
|
"wheel"
|
|
|
|
|
];
|
|
|
|
|
openssh.authorizedKeys.keys = [
|
|
|
|
|
"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAILwakA+EeuR23vRhjvjMkzK+FtWIhpnbs7z1pfnBehCUAAAABHNzaDo= dln@dinky"
|
|
|
|
|
"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIJNOBFoU7Cdsgi4KpYRcv7EhR/8kD4DYjEZnwk6urRx7AAAABHNzaDo= dln@nemo"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
|
2024-09-02 14:43:17 +02:00
|
|
|
patagia = {
|
2024-08-02 14:09:42 +02:00
|
|
|
desktop.enable = true;
|
|
|
|
|
laptop.enable = true;
|
|
|
|
|
plymouth.enable = true;
|
|
|
|
|
podman.enable = true;
|
|
|
|
|
};
|
|
|
|
|
|
2024-08-08 00:40:49 +02:00
|
|
|
services.displayManager.autoLogin.enable = true;
|
|
|
|
|
services.displayManager.autoLogin.user = "dln";
|
2024-08-02 14:09:42 +02:00
|
|
|
systemd.services."getty@tty1".enable = false;
|
|
|
|
|
systemd.services."autovt@tty1".enable = false;
|
|
|
|
|
|
2024-10-15 18:12:56 +02:00
|
|
|
nix.settings.trusted-users = [ "dln" ];
|
2024-08-09 21:05:58 +02:00
|
|
|
nix.buildMachines = [
|
|
|
|
|
{
|
2024-12-10 15:30:04 +01:00
|
|
|
hostName = "nemo.aarn.patagia.net";
|
2024-08-09 21:05:58 +02:00
|
|
|
sshUser = "nixremote";
|
2024-10-15 18:12:56 +02:00
|
|
|
sshKey = "/root/.ssh/id_ed25519";
|
2024-08-09 21:05:58 +02:00
|
|
|
system = "x86_64-linux";
|
|
|
|
|
protocol = "ssh-ng";
|
|
|
|
|
maxJobs = 32;
|
|
|
|
|
speedFactor = 2;
|
2024-10-15 18:12:56 +02:00
|
|
|
supportedFeatures = [
|
|
|
|
|
"nixos-test"
|
|
|
|
|
"big-parallel"
|
|
|
|
|
"kvm"
|
|
|
|
|
];
|
2024-08-09 21:05:58 +02:00
|
|
|
mandatoryFeatures = [ ];
|
|
|
|
|
}
|
|
|
|
|
];
|
|
|
|
|
nix.distributedBuilds = true;
|
2024-10-15 18:12:56 +02:00
|
|
|
nix.settings.builders-use-substitutes = true;
|
|
|
|
|
nix.settings.trusted-substituters = [
|
2024-12-10 15:30:04 +01:00
|
|
|
"ssh-ng://nemo.aarn.patagia.net"
|
2024-10-15 18:12:56 +02:00
|
|
|
];
|
2024-08-09 21:05:58 +02:00
|
|
|
|
2024-08-02 14:09:42 +02:00
|
|
|
system.stateVersion = "24.05"; # Did you read the comment?
|
|
|
|
|
}
|
