From e515d26fbfeb5410955c38c48faac77c78d77cb3 Mon Sep 17 00:00:00 2001
From: Stefan Junker <mail@stefanjunker.de>
Date: Fri, 22 Nov 2019 16:38:49 +0100
Subject: [PATCH] WIP nix/os/devices: add NUC for work

---
 .../steveej-nuc7pjyh-work/configuration.nix   | 11 +++++++
 nix/os/devices/steveej-nuc7pjyh-work/hw.nix   |  9 ++++++
 .../devices/steveej-nuc7pjyh-work/system.nix  | 31 +++++++++++++++++++
 .../steveej-nuc7pjyh-work/versions.nix        | 20 ++++++++++++
 4 files changed, 71 insertions(+)
 create mode 100644 nix/os/devices/steveej-nuc7pjyh-work/configuration.nix
 create mode 100644 nix/os/devices/steveej-nuc7pjyh-work/hw.nix
 create mode 100644 nix/os/devices/steveej-nuc7pjyh-work/system.nix
 create mode 100644 nix/os/devices/steveej-nuc7pjyh-work/versions.nix

diff --git a/nix/os/devices/steveej-nuc7pjyh-work/configuration.nix b/nix/os/devices/steveej-nuc7pjyh-work/configuration.nix
new file mode 100644
index 0000000..5901da0
--- /dev/null
+++ b/nix/os/devices/steveej-nuc7pjyh-work/configuration.nix
@@ -0,0 +1,11 @@
+{ ... }:
+
+{
+  imports = [
+    ../../profiles/common/configuration.nix
+    ../../profiles/graphical/configuration.nix
+
+    ./system.nix
+    ./hw.nix
+  ];
+}
diff --git a/nix/os/devices/steveej-nuc7pjyh-work/hw.nix b/nix/os/devices/steveej-nuc7pjyh-work/hw.nix
new file mode 100644
index 0000000..30186d1
--- /dev/null
+++ b/nix/os/devices/steveej-nuc7pjyh-work/hw.nix
@@ -0,0 +1,9 @@
+{ ... }:
+
+{
+  # TASK: new device
+  hardware.encryptedDisk = {
+    enable = true;
+    diskId = "ata-KINGSTON_SV100S2128G_08BAB0020855";
+  };
+}
diff --git a/nix/os/devices/steveej-nuc7pjyh-work/system.nix b/nix/os/devices/steveej-nuc7pjyh-work/system.nix
new file mode 100644
index 0000000..045c53d
--- /dev/null
+++ b/nix/os/devices/steveej-nuc7pjyh-work/system.nix
@@ -0,0 +1,31 @@
+{ pkgs, lib, ... }:
+
+let
+  sgx_linuxpackages = let
+      linux_sgx_pkg = { stdenv, fetchurl, buildLinux, ... } @ args:
+
+        with stdenv.lib;
+
+        buildLinux (args // rec {
+          version = "5.4.0-rc3";
+          modDirVersion = "5.4.0-rc3";
+
+          src = fetchurl {
+            url = "https://github.com/jsakkine-intel/linux-sgx/archive/v23.tar.gz";
+            sha256 = "11rwlwv7s071ia889dk1dgrxprxiwgi7djhg47vi56dj81jgib20";
+          };
+          kernelPatches = [];
+
+          extraConfig = ''
+            INTEL_SGX y
+          '';
+
+          extraMeta.branch = "5.4";
+        } // (args.argsOverride or {}));
+      linux_sgx = pkgs.callPackage linux_sgx_pkg{};
+    in 
+      pkgs.recurseIntoAttrs (pkgs.linuxPackagesFor linux_sgx);
+in {
+  networking.hostName = "steveej-nuc7pjyh-work-"; # Define your hostname.
+  boot.kernelPackages = lib.mkForce sgx_linuxpackages;
+}
diff --git a/nix/os/devices/steveej-nuc7pjyh-work/versions.nix b/nix/os/devices/steveej-nuc7pjyh-work/versions.nix
new file mode 100644
index 0000000..f96fccc
--- /dev/null
+++ b/nix/os/devices/steveej-nuc7pjyh-work/versions.nix
@@ -0,0 +1,20 @@
+{
+  channelsNixosStable = {
+    ref = "nixos-19.09";
+    rev = "e6d584f6dd22b587d5cdf5019f5e7dd2be370f61";
+  };
+  channelsNixosUnstable = {
+    ref = "nixos-unstable";
+    rev = "41d921292e922a6cd1aba64259341c244d4c2cc7";
+  };
+  nixpkgsMaster = {
+    url = "https://github.com/NixOS/nixpkgs/";
+    ref = "master";
+    rev = "a6934e36534f8a87a78f877eee65c08fa9867ba5";
+  };
+  homeManagerModule = {
+    url = "https://github.com/rycee/home-manager";
+    ref = "master";
+    rev = "286dd9b3088298e5a4625b517f8e72b1c62e4f74";
+  };
+}