diff options
author | Kenny Ballou <kballou@devnulllabs.io> | 2019-07-29 07:07:39 -0600 |
---|---|---|
committer | Kenny Ballou <kballou@devnulllabs.io> | 2019-07-29 07:07:39 -0600 |
commit | 43fbde9744aaa7b45f2133a9d966529d47214cc8 (patch) | |
tree | c8bd746572e61c87aef50c6ecac24d823cc2ef66 /eligos | |
parent | 21434ac0fdfd0084638653664d0c7c43e8c44d06 (diff) | |
download | cfg.nix-43fbde9744aaa7b45f2133a9d966529d47214cc8.tar.gz cfg.nix-43fbde9744aaa7b45f2133a9d966529d47214cc8.tar.xz |
eligos: initial machine configuration
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
Diffstat (limited to 'eligos')
-rw-r--r-- | eligos/configuration.nix | 90 | ||||
-rw-r--r-- | eligos/hardware-configuration.nix | 60 |
2 files changed, 150 insertions, 0 deletions
diff --git a/eligos/configuration.nix b/eligos/configuration.nix new file mode 100644 index 0000000..5ac9491 --- /dev/null +++ b/eligos/configuration.nix @@ -0,0 +1,90 @@ +# Edit this configuration file to define what should be installed on +# your system. Help is available in the configuration.nix(5) man page +# and in the NixOS manual (accessible by running ‘nixos-help’). + +{ config, pkgs, ... }: + +{ + imports = + [ ./hardware-configuration.nix + ../secrets.nix + ../overlays.nix + ../services/clamav.nix + ../services/firewall.nix + ../services/docker.nix + ../services/dnsmasq.nix + ../services/sound.nix + ../services/x11.nix + ../services/x11-laptop.nix + ../services/kde.nix + ../services/compton.nix + ../services/haveged.nix + ../system/ca.nix + ../system/fonts.nix + ../system/i18n.nix + ../system/networking.nix + ../system/packages.nix + ../system/timezone.nix + ../system/users.nix + ../system/wireshark.nix + ../system/yubikey-gpg.nix + ]; + + networking.hostName = "eligos"; + + # Use the GRUB 2 boot loader. + boot.loader.systemd-boot = { + enable = true; + editor = false; + }; + boot.loader.efi = { + canTouchEfiVariables = false; + }; + boot.loader.grub = { + enable = true; + copyKernels = true; + efiInstallAsRemovable = true; + efiSupport = true; + fsIdentifier = "uuid"; + splashMode = "stretch"; + version = 2; + device = "nodev"; + extraEntries = '' + menuentry "Reboot" { + reboot + } + menuentry "Poweroff" { + halt + } + ''; + }; + + boot.initrd.luks = { + reusePassphrases = true; + devices = { + cvg0.device = "/dev/disk/by-uuid/5cd9cc98-a22c-48f3-87ef-00a04f6d3500"; + cvg1 = { + device = "/dev/disk/by-uuid/93479577-1b78-4b2c-b7c3-a1f905d19e54"; + keyFile = "/etc/cvg1"; + fallbackToPassword = true; + }; + cvg2 = { + device = "/dev/disk/by-uuid/4520c49c-12da-47ba-a9d1-1f53cd586cdd"; + keyFile = "/etc/cvg2"; + fallbackToPassword = true; + }; + }; + }; + + # Some programs need SUID wrappers, can be configured further or are + # started in user sessions. + programs.mtr.enable = true; + programs.gnupg.agent = { enable = true; enableSSHSupport = true; }; + + # This value determines the NixOS release with which your system is to be + # compatible, in order to avoid breaking some software such as database + # servers. You should change this only after NixOS release notes say you + # should. + system.stateVersion = "19.03"; # Did you read the comment? + +} diff --git a/eligos/hardware-configuration.nix b/eligos/hardware-configuration.nix new file mode 100644 index 0000000..739e8cf --- /dev/null +++ b/eligos/hardware-configuration.nix @@ -0,0 +1,60 @@ +# Do not modify this file! It was generated by ‘nixos-generate-config’ +# and may be overwritten by future invocations. Please make changes +# to /etc/nixos/configuration.nix instead. +{ config, lib, pkgs, ... }: + +{ + imports = + [ <nixpkgs/nixos/modules/installer/scan/not-detected.nix> + ]; + + boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "nvme" "usb_storage" "usbhid" "sd_mod" "sr_mod" ]; + boot.kernelModules = [ "kvm-amd" ]; + boot.extraModulePackages = [ ]; + + fileSystems."/" = + { device = "/dev/disk/by-uuid/b9019bd0-f3e9-4ca7-b4ce-6501bb9375ca"; + fsType = "ext4"; + }; + + fileSystems."/boot" = + { device = "/dev/disk/by-uuid/F1C8-D159"; + fsType = "vfat"; + }; + + fileSystems."/nix" = + { device = "/dev/disk/by-uuid/cae6ee5b-7018-4b5a-bd1d-f1e332bf716a"; + fsType = "xfs"; + }; + + fileSystems."/guix" = + { device = "/dev/disk/by-uuid/af35eb7e-4cb0-474b-b484-ced68d1a3376"; + fsType = "xfs"; + }; + + fileSystems."/opt" = + { device = "/dev/disk/by-uuid/0a128753-562f-49bb-a777-a652b40df00e"; + fsType = "ext4"; + }; + + fileSystems."/var" = + { device = "/dev/disk/by-uuid/e3cee56f-f7cc-4057-97da-d87aee15e013"; + fsType = "ext4"; + }; + + fileSystems."/var/lib/docker" = + { device = "/dev/disk/by-uuid/a3f59b43-08d0-40dc-be35-a459644843d6"; + fsType = "btrfs"; + }; + + fileSystems."/home" = + { device = "/dev/disk/by-uuid/ab6dfc76-2a9c-4ba5-937c-9a76659d5113"; + fsType = "xfs"; + }; + + swapDevices = + [ { device = "/dev/disk/by-uuid/3aa22856-74ad-49a2-a606-9a1562fc9ffc"; } + ]; + + nix.maxJobs = lib.mkDefault 32; +} |