81 lines
1.8 KiB
Nix
81 lines
1.8 KiB
Nix
{ pkgs, ... }:
|
|
|
|
let
|
|
myEmacs = pkgs.callPackage ../../configs/emacs.nix { };
|
|
pubKeys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO7v+/xS8832iMqJHCWsxUZ8zYoMWoZhjj++e26g1fLT europa"
|
|
];
|
|
in {
|
|
_module.args.isUnstable = false;
|
|
imports = [ ./hardware-configuration.nix ];
|
|
|
|
# Bootloader.
|
|
boot.loader.systemd-boot.enable = true;
|
|
boot.loader.efi.canTouchEfiVariables = true;
|
|
boot.loader.efi.efiSysMountPoint = "/boot/efi";
|
|
boot.kernelPackages = pkgs.linuxPackages_latest;
|
|
|
|
boot.binfmt.emulatedSystems = [ "aarch64-linux" "riscv64-linux" ];
|
|
nixpkgs.config.allowUnsupportedSystem = true;
|
|
|
|
networking = {
|
|
hostName = "pwntie";
|
|
networkmanager.enable = true;
|
|
firewall = {
|
|
enable = true;
|
|
allowedTCPPorts = [ 22 ];
|
|
checkReversePath = "loose";
|
|
};
|
|
};
|
|
|
|
virtualisation.libvirtd.enable = true;
|
|
|
|
environment.sessionVariables = {
|
|
XDG_BIN_HOME = "\${HOME}/.local/bin";
|
|
XDG_CACHE_HOME = "\${HOME}/.cache";
|
|
XDG_CONFIG_HOME = "\${HOME}/.config";
|
|
XDG_DATA_HOME = "\${HOME}/.local/share";
|
|
|
|
STEAM_EXTRA_COMPAT_TOOLS_PATHS =
|
|
"\${HOME}/.steam/root/compatibilitytools.d";
|
|
PATH = [ "\${XDG_BIN_HOME}" ];
|
|
};
|
|
|
|
users.users.qbit.extraGroups = [ "dialout" "libvirtd" "docker" ];
|
|
|
|
nixpkgs.config.allowUnfree = true;
|
|
|
|
programs = {
|
|
steam.enable = true;
|
|
_1password.enable = true;
|
|
_1password-gui = {
|
|
enable = true;
|
|
polkitPolicyOwners = [ "qbit" ];
|
|
};
|
|
dconf.enable = true;
|
|
};
|
|
|
|
xinCI = {
|
|
user = "qbit";
|
|
enable = true;
|
|
};
|
|
|
|
services = {
|
|
emacs = {
|
|
enable = true;
|
|
package = myEmacs;
|
|
install = true;
|
|
};
|
|
fwupd = {
|
|
enable = true;
|
|
enableTestRemote = true;
|
|
};
|
|
|
|
};
|
|
|
|
users.users.root = { openssh.authorizedKeys.keys = pubKeys; };
|
|
users.users.qbit = { openssh.authorizedKeys.keys = pubKeys; };
|
|
|
|
system.stateVersion = "22.11";
|
|
}
|