eligos: initial machine configuration

Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
author: Kenny Ballou <kballou@devnulllabs.io> 2019-07-29 07:07:39 -0600
committer: Kenny Ballou <kballou@devnulllabs.io> 2019-07-29 07:07:39 -0600
commit: 43fbde9744aaa7b45f2133a9d966529d47214cc8 (patch)
tree: c8bd746572e61c87aef50c6ecac24d823cc2ef66 /eligos
parent: 21434ac0fdfd0084638653664d0c7c43e8c44d06 (diff)
download: cfg.nix-43fbde9744aaa7b45f2133a9d966529d47214cc8.tar.gz
cfg.nix-43fbde9744aaa7b45f2133a9d966529d47214cc8.tar.xz
2 files changed, 150 insertions, 0 deletions
diff --git a/eligos/configuration.nix b/eligos/configuration.nix
new file mode 100644
index 0000000..5ac9491
--- /dev/null
+++ b/eligos/configuration.nix
@@ -0,0 +1,90 @@
+# Edit this configuration file to define what should be installed on
+# your system.  Help is available in the configuration.nix(5) man page
+# and in the NixOS manual (accessible by running ‘nixos-help’).
+
+{ config, pkgs, ... }:
+
+{
+  imports =
+    [ ./hardware-configuration.nix
+      ../secrets.nix
+      ../overlays.nix
+      ../services/clamav.nix
+      ../services/firewall.nix
+      ../services/docker.nix
+      ../services/dnsmasq.nix
+      ../services/sound.nix
+      ../services/x11.nix
+      ../services/x11-laptop.nix
+      ../services/kde.nix
+      ../services/compton.nix
+      ../services/haveged.nix
+      ../system/ca.nix
+      ../system/fonts.nix
+      ../system/i18n.nix
+      ../system/networking.nix
+      ../system/packages.nix
+      ../system/timezone.nix
+      ../system/users.nix
+      ../system/wireshark.nix
+      ../system/yubikey-gpg.nix
+    ];
+
+  networking.hostName = "eligos";
+
+  # Use the GRUB 2 boot loader.
+  boot.loader.systemd-boot = {
+    enable = true;
+    editor = false;
+  };
+  boot.loader.efi = {
+    canTouchEfiVariables = false;
+  };
+  boot.loader.grub = {
+    enable = true;
+    copyKernels = true;
+    efiInstallAsRemovable = true;
+    efiSupport = true;
+    fsIdentifier = "uuid";
+    splashMode = "stretch";
+    version = 2;
+    device = "nodev";
+    extraEntries = ''
+      menuentry "Reboot" {
+        reboot
+      }
+      menuentry "Poweroff" {
+        halt
+      }
+    '';
+  };
+
+  boot.initrd.luks = {
+    reusePassphrases = true;
+    devices = {
+      cvg0.device = "/dev/disk/by-uuid/5cd9cc98-a22c-48f3-87ef-00a04f6d3500";
+      cvg1 = {
+        device = "/dev/disk/by-uuid/93479577-1b78-4b2c-b7c3-a1f905d19e54";
+        keyFile = "/etc/cvg1";
+        fallbackToPassword = true;
+      };
+      cvg2 = {
+        device = "/dev/disk/by-uuid/4520c49c-12da-47ba-a9d1-1f53cd586cdd";
+        keyFile = "/etc/cvg2";
+        fallbackToPassword = true;
+      };
+    };    
+  };
+
+  # Some programs need SUID wrappers, can be configured further or are
+  # started in user sessions.
+  programs.mtr.enable = true;
+  programs.gnupg.agent = { enable = true; enableSSHSupport = true; };
+
+  # This value determines the NixOS release with which your system is to be
+  # compatible, in order to avoid breaking some software such as database
+  # servers. You should change this only after NixOS release notes say you
+  # should.
+  system.stateVersion = "19.03"; # Did you read the comment?
+
+}
diff --git a/eligos/hardware-configuration.nix b/eligos/hardware-configuration.nix
new file mode 100644
index 0000000..739e8cf
--- /dev/null
+++ b/eligos/hardware-configuration.nix
@@ -0,0 +1,60 @@
+# Do not modify this file!  It was generated by ‘nixos-generate-config’
+# and may be overwritten by future invocations.  Please make changes
+# to /etc/nixos/configuration.nix instead.
+{ config, lib, pkgs, ... }:
+
+{
+  imports =
+    [ <nixpkgs/nixos/modules/installer/scan/not-detected.nix>
+    ];
+
+  boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "nvme" "usb_storage" "usbhid" "sd_mod" "sr_mod" ];
+  boot.kernelModules = [ "kvm-amd" ];
+  boot.extraModulePackages = [ ];
+
+  fileSystems."/" =
+    { device = "/dev/disk/by-uuid/b9019bd0-f3e9-4ca7-b4ce-6501bb9375ca";
+      fsType = "ext4";
+    };
+
+  fileSystems."/boot" =
+    { device = "/dev/disk/by-uuid/F1C8-D159";
+      fsType = "vfat";
+    };
+
+  fileSystems."/nix" =
+    { device = "/dev/disk/by-uuid/cae6ee5b-7018-4b5a-bd1d-f1e332bf716a";
+      fsType = "xfs";
+    };
+
+  fileSystems."/guix" =
+    { device = "/dev/disk/by-uuid/af35eb7e-4cb0-474b-b484-ced68d1a3376";
+      fsType = "xfs";
+    };
+
+  fileSystems."/opt" =
+    { device = "/dev/disk/by-uuid/0a128753-562f-49bb-a777-a652b40df00e";
+      fsType = "ext4";
+    };
+
+  fileSystems."/var" =
+    { device = "/dev/disk/by-uuid/e3cee56f-f7cc-4057-97da-d87aee15e013";
+      fsType = "ext4";
+    };
+
+  fileSystems."/var/lib/docker" =
+    { device = "/dev/disk/by-uuid/a3f59b43-08d0-40dc-be35-a459644843d6";
+      fsType = "btrfs";
+    };
+
+  fileSystems."/home" =
+    { device = "/dev/disk/by-uuid/ab6dfc76-2a9c-4ba5-937c-9a76659d5113";
+      fsType = "xfs";
+    };
+
+  swapDevices =
+    [ { device = "/dev/disk/by-uuid/3aa22856-74ad-49a2-a606-9a1562fc9ffc"; }
+    ];
+
+  nix.maxJobs = lib.mkDefault 32;
+}
author	Kenny Ballou <kballou@devnulllabs.io>	2019-07-29 07:07:39 -0600
committer	Kenny Ballou <kballou@devnulllabs.io>	2019-07-29 07:07:39 -0600
commit	43fbde9744aaa7b45f2133a9d966529d47214cc8 (patch)
tree	c8bd746572e61c87aef50c6ecac24d823cc2ef66 /eligos
parent	21434ac0fdfd0084638653664d0c7c43e8c44d06 (diff)
download	cfg.nix-43fbde9744aaa7b45f2133a9d966529d47214cc8.tar.gz cfg.nix-43fbde9744aaa7b45f2133a9d966529d47214cc8.tar.xz