Mirror/nix-git
Mirror/nix-git
1
0
Fork 0
mirror of https://codeberg.org/privacy1st/nix-git synced 2025-02-02 07:45:16 +01:00
Code Issues Packages Projects Releases Wiki Activity

base and base-minimal

Browse Source
This commit is contained in:
Daniel Langbein 2025-01-31 12:19:42 +01:00
parent 8fdf89c78e
commit 24c5c9f86b
Signed by: langfingaz
GPG Key ID: 6C47C753F0823002
3 changed files with 95 additions and 85 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
hosts/yodaTuxHeadless/configuration.nix
View File

@ -6,7 +6,7 @@
#../../modules/tuxedo-rs.nix #../../modules/tuxedo-rs.nix
#../../modules/gpu-amd.nix #../../modules/gpu-amd.nix
../../modules/base.nix ../../modules/base-minimal.nix
../../modules/base-efi-systemd.nix ../../modules/base-efi-systemd.nix
../../modules/headless.nix ../../modules/headless.nix

89
modules/base-minimal.nix Normal file
View File

@ -0,0 +1,89 @@
{ config, pkgs, ... }:
{
imports = [
# Filesystem settings.
./btrfs-mount-options.nix
# Shell settings.
./bash.nix # bash settings.
./zsh.nix # zsh as default shell for yoda and root.
./fzf.nix # Fuzzy command history and file search.
# nixpkgs config
./home-manager.nix
./nur-and-unstable.nix
# Helper
./unfree.nix
];
# Firmware.
#
# The list of hardware.enableAllFirmware contains non-redistributable licensed firmware files.
# This requires nixpkgs.config.allowUnfree to be true.
# An alternative is to use the hardware.enableRedistributableFirmware option.
hardware.enableAllFirmware = false;
#
# Enables e.g. Intel microcode updates.
# Defaults to `config.hardware.enableAllFirmware`.
hardware.enableRedistributableFirmware = true;
# Allow **all** unfree packages.
# To whitelist individual unfree packages, see ./unfree.nix
nixpkgs.config.allowUnfree = false;
# Set your time zone.
time.timeZone = "Europe/Berlin";
# Select internationalisation properties.
i18n.defaultLocale = "en_US.UTF-8";
i18n.extraLocaleSettings = {
LC_ADDRESS = "de_DE.UTF-8";
LC_IDENTIFICATION = "de_DE.UTF-8";
LC_MEASUREMENT = "de_DE.UTF-8";
LC_MONETARY = "de_DE.UTF-8";
LC_NAME = "de_DE.UTF-8";
LC_NUMERIC = "de_DE.UTF-8";
LC_PAPER = "de_DE.UTF-8";
LC_TELEPHONE = "de_DE.UTF-8";
LC_TIME = "de_DE.UTF-8";
};
console = {
#font = "Lat2-Terminus16";
# Configure console keymap.
keyMap = "de-latin1-nodeadkeys";
};
# Define a user account.
# Don't forget to set a password with `passwd`.
users.users.yoda = {
isNormalUser = true;
description = "Yoda";
extraGroups = [ "wheel" ];
};
# SystemMaxFileSize: Defaults to one eighth of the values configured with SystemMaxUse= and RuntimeMaxUse=, so that usually seven rotated journal files are kept as history.
# MaxFileSec: To ensure that not too much data is lost at once when old journal files are deleted, it might make sense to change this value from the default of one month.
# https://www.freedesktop.org/software/systemd/man/journald.conf.html
services.journald.extraConfig = ''
SystemMaxUse=800M
MaxFileSec=7day
'';
# Delete all files in /tmp during boot.
boot.tmp.cleanOnBoot = true;
# Whether to install NixOS's own documentation.
documentation.nixos.enable = false;
# Options only for build.system.vm - they wont get applied when building build.system.toplevel aka the normal system config.
# https://discourse.nixos.org/t/wayland-compositors-an-build-vm-not-working/46486/2
virtualisation.vmVariant = {
users.users.yoda.initialPassword = "asdf";
virtualisation.qemu.options = [
"-device virtio-vga-gl"
"-display sdl,gl=on,show-cursor=off"
"-m 8G"
];
};
}

89
modules/base.nix
View File

@ -1,14 +1,10 @@
{ config, pkgs, ... }: { config, pkgs, ... }:
{ {
imports = [ imports = [
./base-minimal.nix
# Filesystem settings. # Filesystem settings.
./btrfs-scrub.nix ./btrfs-scrub.nix
./btrfs-mount-options.nix
# Shell settings.
./bash.nix # bash settings.
./zsh.nix # zsh as default shell for yoda and root.
./fzf.nix # Fuzzy command history and file search.
# DNS settings. # DNS settings.
# #
@ -16,101 +12,26 @@
./dns.nix # Encrypted DNS queries to custom name servers. ./dns.nix # Encrypted DNS queries to custom name servers.
#./dns-unencrypted.nix # Custom name servers. #./dns-unencrypted.nix # Custom name servers.
# nixpkgs config
./home-manager.nix
./nur-and-unstable.nix
# Helper
./unfree.nix
# Nix garbage collection. # Nix garbage collection.
./nix-gc.nix ./nix-gc.nix
# Display contact information during boot. # Display contact information during boot.
./initrd-contact-info.nix ./initrd-contact-info.nix
]; ];
# Firmware.
#
# The list of hardware.enableAllFirmware contains non-redistributable licensed firmware files.
# This requires nixpkgs.config.allowUnfree to be true.
# An alternative is to use the hardware.enableRedistributableFirmware option.
hardware.enableAllFirmware = false;
#
# Enables e.g. Intel microcode updates.
# Defaults to `config.hardware.enableAllFirmware`.
hardware.enableRedistributableFirmware = true;
# Allow **all** unfree packages.
# To whitelist individual unfree packages, see ./unfree.nix
nixpkgs.config.allowUnfree = false;
# Enables wireless support via wpa_supplicant. # Enables wireless support via wpa_supplicant.
# networking.wireless.enable = true; # networking.wireless.enable = true;
#
# Enable networking. # Enable networking.
networking.networkmanager.enable = true; networking.networkmanager.enable = true;
#
# Set your time zone.
time.timeZone = "Europe/Berlin";
# Select internationalisation properties.
i18n.defaultLocale = "en_US.UTF-8";
i18n.extraLocaleSettings = {
LC_ADDRESS = "de_DE.UTF-8";
LC_IDENTIFICATION = "de_DE.UTF-8";
LC_MEASUREMENT = "de_DE.UTF-8";
LC_MONETARY = "de_DE.UTF-8";
LC_NAME = "de_DE.UTF-8";
LC_NUMERIC = "de_DE.UTF-8";
LC_PAPER = "de_DE.UTF-8";
LC_TELEPHONE = "de_DE.UTF-8";
LC_TIME = "de_DE.UTF-8";
};
console = {
#font = "Lat2-Terminus16";
# Configure console keymap.
keyMap = "de-latin1-nodeadkeys";
};
# Define a user account.
# Don't forget to set a password with `passwd`.
users.users.yoda = { users.users.yoda = {
isNormalUser = true; extraGroups = [ "networkmanager" ];
description = "Yoda";
extraGroups = [ "networkmanager" "wheel" ];
packages = with pkgs; [
];
}; };
# SystemMaxFileSize: Defaults to one eighth of the values configured with SystemMaxUse= and RuntimeMaxUse=, so that usually seven rotated journal files are kept as history.
# MaxFileSec: To ensure that not too much data is lost at once when old journal files are deleted, it might make sense to change this value from the default of one month.
# https://www.freedesktop.org/software/systemd/man/journald.conf.html
services.journald.extraConfig = ''
SystemMaxUse=800M
MaxFileSec=7day
'';
nix.settings.auto-optimise-store = true; nix.settings.auto-optimise-store = true;
# Delete all files in /tmp during boot.
boot.tmp.cleanOnBoot = true;
# Whether to install NixOS's own documentation.
documentation.nixos.enable = false;
# Firewall. # Firewall.
# https://nixos.wiki/wiki/Firewall # https://nixos.wiki/wiki/Firewall
# Note: Firewall rules may be bypassed/overwritten by Docker, as per https://github.com/NixOS/nixpkgs/issues/111852 # Note: Firewall rules may be bypassed/overwritten by Docker, as per https://github.com/NixOS/nixpkgs/issues/111852
networking.firewall.enable = true; networking.firewall.enable = true;
# Options only for build.system.vm - they wont get applied when building build.system.toplevel aka the normal system config.
# https://discourse.nixos.org/t/wayland-compositors-an-build-vm-not-working/46486/2
virtualisation.vmVariant = {
users.users.yoda.initialPassword = "asdf";
virtualisation.qemu.options = [
"-device virtio-vga-gl"
"-display sdl,gl=on,show-cursor=off"
"-m 8G"
];
};
} }