move all expressions to nix/; include modularized home-manager config

2018-10-31 19:52:39 +01:00 · 2018-10-31 19:52:39 +01:00 · 13bd5e9000
commit 13bd5e9000
parent d76a7f963b
65 changed files with 1726 additions and 511 deletions
--- a/nix/os/profiles/removable-medium/boot.nix
+++ b/nix/os/profiles/removable-medium/boot.nix
@ -0,0 +1,37 @@
+{ lib
+, ...
+}:
+
+{
+  boot.loader.grub.efiInstallAsRemovable = lib.mkForce true;
+  boot.loader.efi.canTouchEfiVariables = lib.mkForce false; 
+
+  boot.initrd.availableKernelModules = [ 
+    "xhci_pci"
+    "ahci"
+    "usb_storage"
+    "sd_mod"
+    "rtsx_pci_sdmmc"
+    "aes_x86_64"
+    "aesni_intel"
+    "cryptd"
+  ];
+
+  boot.kernelModules = [ 
+    "kvm-intel"
+
+    # Workaround for nm-pptp to enforce module load
+    "nf_conntrack_proto_gre"
+    "nf_conntrack_pptp"
+  ];
+
+  boot.extraModprobeConfig = ''
+    options kvm-intel nested=1
+    options kvm-intel enable_shadow_vmcs=1
+    options kvm-intel enable_apicv=1
+    options kvm-intel ept=1
+  '';
+  boot.extraModulePackages = [ ];
+
+  boot.loader.systemd-boot.enable = true;
+}
--- a/nix/os/profiles/removable-medium/configuration.nix
+++ b/nix/os/profiles/removable-medium/configuration.nix
@ -0,0 +1,12 @@
+{ ... }:
+
+{
+  imports = [ 
+    ../../modules/encryptedDisk.nix
+
+    ./pkg.nix
+    ./hw.nix
+    ./system.nix
+    ./boot.nix
+  ];
+}
--- a/nix/os/profiles/removable-medium/hw.nix
+++ b/nix/os/profiles/removable-medium/hw.nix
@ -0,0 +1,7 @@
+{ ... }:
+
+{
+  hardware.encryptedDisk.enable = true;
+  hardware.enableAllFirmware = true;
+  hardware.trackpoint.emulateWheel = true;
+}
--- a/nix/os/profiles/removable-medium/pkg.nix
+++ b/nix/os/profiles/removable-medium/pkg.nix
@ -0,0 +1,27 @@
+{ 
+...
+}:
+
+{
+  imports = [
+    "${builtins.fetchGit { url = "https://github.com/rycee/home-manager.git"; ref = "master"; }}/nixos"
+  ];
+  
+  nixpkgs.config = {
+    allowBroken = false;
+    allowUnfree = true;
+
+    packageOverrides = pkgs: with pkgs; {
+      busyboxStatic =  busybox.override {
+        enableStatic = true;
+        extraConfig = ''
+           CONFIG_STATIC y
+           CONFIG_INSTALL_APPLET_DONT y
+           CONFIG_INSTALL_APPLET_SYMLINKS n
+         '';
+      };
+    };
+  };
+
+  home-manager.users.steveej = import ../../../home-manager/configuration/removable-desktop.nix;
+}
--- a/nix/os/profiles/removable-medium/system.nix
+++ b/nix/os/profiles/removable-medium/system.nix
@ -0,0 +1,16 @@
+{ config, lib, pkgs, ... }:
+
+
+let
+
+in {
+  services.printing = {
+    enable = false;
+  };
+
+  virtualisation = {
+    libvirtd.enable = false;
+    virtualbox.host.enable = false;
+    docker.enable = true;
+  };
+}