shahab/nix-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: flake update 04-07-2026

Browse Source
This commit is contained in:
Shahab Dogar
2026-04-07 13:56:05 +05:00
parent 044e1e415e
commit cf4842a5b6
83 changed files with 581 additions and 352 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
hosts/nixos/aamil-1/default.nix
View File

@@ -3,9 +3,11 @@
pkgs,
lib,
...
}: let
}:
let
hostName = "aamil-1";
in {
in
{
imports = lib.flatten [
#
# ========= Hardware =========
@@ -21,17 +23,16 @@ in {
#
# ========= Required Configs =========
#
(map lib.custom.relativeToRoot ["hosts/common/core"])
(map lib.custom.relativeToRoot [ "hosts/common/core" ])
#
# ========= Services =========
#
(map
(s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"k3s"
"openiscsi"
"openssh"
])
(map (s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"k3s"
"openiscsi"
"openssh"
])
];
#
@@ -52,7 +53,10 @@ in {
nix = {
settings = {
require-sigs = false;
experimental-features = ["nix-command" "flakes"];
experimental-features = [
"nix-command"
"flakes"
];
};
};
@@ -74,11 +78,11 @@ in {
security.sudo.extraRules = [
{
users = ["shahab"];
users = [ "shahab" ];
commands = [
{
command = "ALL";
options = ["NOPASSWD"];
options = [ "NOPASSWD" ];
}
];
}

19
hosts/nixos/aamil-1/hardware-configuration.nix
View File

@@ -6,8 +6,9 @@
lib,
modulesPath,
...
}: {
imports = [(modulesPath + "/installer/scan/not-detected.nix")];
}:
{
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
boot = {
loader = {
@@ -19,11 +20,17 @@
efi.canTouchEfiVariables = true;
};
initrd = {
availableKernelModules = ["ahci" "xhci_pci" "usbhid" "usb_storage" "sd_mod"];
kernelModules = [];
availableKernelModules = [
"ahci"
"xhci_pci"
"usbhid"
"usb_storage"
"sd_mod"
];
kernelModules = [ ];
};
kernelModules = ["kvm-amd"];
extraModulePackages = [];
kernelModules = [ "kvm-amd" ];
extraModulePackages = [ ];
};
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";

28
hosts/nixos/aamil-2/default.nix
View File

@@ -3,9 +3,11 @@
pkgs,
lib,
...
}: let
}:
let
hostName = "aamil-2";
in {
in
{
imports = lib.flatten [
#
# ========= Hardware =========
@@ -21,17 +23,16 @@ in {
#
# ========= Required Configs =========
#
(map lib.custom.relativeToRoot ["hosts/common/core"])
(map lib.custom.relativeToRoot [ "hosts/common/core" ])
#
# ========= Services =========
#
(map
(s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"k3s"
"openiscsi"
"openssh"
])
(map (s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"k3s"
"openiscsi"
"openssh"
])
];
#
@@ -52,7 +53,10 @@ in {
nix = {
settings = {
require-sigs = false;
experimental-features = ["nix-command" "flakes"];
experimental-features = [
"nix-command"
"flakes"
];
};
};
@@ -74,11 +78,11 @@ in {
security.sudo.extraRules = [
{
users = ["shahab"];
users = [ "shahab" ];
commands = [
{
command = "ALL";
options = ["NOPASSWD"];
options = [ "NOPASSWD" ];
}
];
}

19
hosts/nixos/aamil-2/hardware-configuration.nix
View File

@@ -6,8 +6,9 @@
lib,
modulesPath,
...
}: {
imports = [(modulesPath + "/installer/scan/not-detected.nix")];
}:
{
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
boot = {
loader = {
@@ -19,11 +20,17 @@
efi.canTouchEfiVariables = true;
};
initrd = {
availableKernelModules = ["nvme" "xhci_pci" "usbhid" "usb_storage" "sd_mod"];
kernelModules = [];
availableKernelModules = [
"nvme"
"xhci_pci"
"usbhid"
"usb_storage"
"sd_mod"
];
kernelModules = [ ];
};
kernelModules = ["kvm-amd"];
extraModulePackages = [];
kernelModules = [ "kvm-amd" ];
extraModulePackages = [ ];
};
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";

28
hosts/nixos/aamil-3/default.nix
View File

@@ -3,9 +3,11 @@
pkgs,
lib,
...
}: let
}:
let
hostName = "aamil-3";
in {
in
{
imports = lib.flatten [
#
# ========= Hardware =========
@@ -21,17 +23,16 @@ in {
#
# ========= Required Configs =========
#
(map lib.custom.relativeToRoot ["hosts/common/core"])
(map lib.custom.relativeToRoot [ "hosts/common/core" ])
#
# ========= Services =========
#
(map
(s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"k3s"
"openiscsi"
"openssh"
])
(map (s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"k3s"
"openiscsi"
"openssh"
])
];
#
@@ -52,7 +53,10 @@ in {
nix = {
settings = {
require-sigs = false;
experimental-features = ["nix-command" "flakes"];
experimental-features = [
"nix-command"
"flakes"
];
};
};
@@ -74,11 +78,11 @@ in {
security.sudo.extraRules = [
{
users = ["shahab"];
users = [ "shahab" ];
commands = [
{
command = "ALL";
options = ["NOPASSWD"];
options = [ "NOPASSWD" ];
}
];
}

19
hosts/nixos/aamil-3/hardware-configuration.nix
View File

@@ -6,8 +6,9 @@
lib,
modulesPath,
...
}: {
imports = [(modulesPath + "/installer/scan/not-detected.nix")];
}:
{
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
boot = {
loader = {
@@ -19,11 +20,17 @@
efi.canTouchEfiVariables = true;
};
initrd = {
availableKernelModules = ["nvme" "xhci_pci" "usbhid" "usb_storage" "sd_mod"];
kernelModules = [];
availableKernelModules = [
"nvme"
"xhci_pci"
"usbhid"
"usb_storage"
"sd_mod"
];
kernelModules = [ ];
};
kernelModules = ["kvm-amd"];
extraModulePackages = [];
kernelModules = [ "kvm-amd" ];
extraModulePackages = [ ];
};
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";

30
hosts/nixos/blueocean/default.nix
View File

@@ -3,7 +3,8 @@
lib,
config,
...
}: {
}:
{
imports = lib.flatten [
#
# ========= Hardware =========
@@ -32,7 +33,7 @@
#
# ========= Required Configs =========
#
(map lib.custom.relativeToRoot ["hosts/common/core"])
(map lib.custom.relativeToRoot [ "hosts/common/core" ])
#
# ========= Optional Configs =========
@@ -54,17 +55,16 @@
#
# ========= Optional Services =========
#
(map
(s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"audio"
"bluetooth"
"firmware"
"greetd"
"openssh"
"printing"
"smart-card"
"vpn"
])
(map (s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"audio"
"bluetooth"
"firmware"
"greetd"
"openssh"
"printing"
"smart-card"
"vpn"
])
];
#
@@ -74,7 +74,9 @@
hostName = "blueocean";
username = "dogar";
handle = "shadogar";
email = {user = "shahab.dogar@blueocean.ai";};
email = {
user = "shahab.dogar@blueocean.ai";
};
useYubikey = lib.mkForce true;
};

16
hosts/nixos/blueocean/hardware-configuration.nix
View File

@@ -6,8 +6,9 @@
lib,
modulesPath,
...
}: {
imports = [(modulesPath + "/installer/scan/not-detected.nix")];
}:
{
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
boot = {
initrd = {
@@ -20,12 +21,12 @@
"usb_storage"
"sd_mod"
];
kernelModules = [];
kernelModules = [ ];
};
kernelModules = ["kvm-amd"];
extraModulePackages = [];
binfmt.emulatedSystems = ["aarch64-linux"]; # Add other target architectures as needed
kernelModules = [ "kvm-amd" ];
extraModulePackages = [ ];
binfmt.emulatedSystems = [ "aarch64-linux" ]; # Add other target architectures as needed
};
# Enables DHCP on each ethernet and wireless interface. In case of scripted networking
@@ -38,8 +39,7 @@
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
hardware = {
cpu.amd.updateMicrocode =
lib.mkDefault config.hardware.enableRedistributableFirmware;
cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
graphics = {
enable = true;
};

43
hosts/nixos/rihla/default.nix
View File

@@ -4,7 +4,8 @@
lib,
config,
...
}: {
}:
{
imports = lib.flatten [
#
# ========= Hardware =========
@@ -37,7 +38,7 @@
#
# ========= Required Configs =========
#
(map lib.custom.relativeToRoot ["hosts/common/core"])
(map lib.custom.relativeToRoot [ "hosts/common/core" ])
#
# ========= Optional Configs =========
@@ -58,17 +59,16 @@
#
# ========= Optional Services =========
#
(map
(s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"audio"
"bluetooth"
"firmware"
"greetd"
"openssh"
"printing"
"smart-card"
"vpn"
])
(map (s: lib.custom.relativeToRoot "hosts/common/optional/services/${s}.nix") [
"audio"
"bluetooth"
"firmware"
"greetd"
"openssh"
"printing"
"smart-card"
"vpn"
])
#
# ========= Specialisations ========
@@ -90,7 +90,9 @@
impermanance = false;
username = "shahab";
handle = "shahab96";
email = {user = "shahab@dogar.dev";};
email = {
user = "shahab@dogar.dev";
};
};
networking = {
@@ -108,9 +110,8 @@
efi.canTouchEfiVariables = true;
};
initrd.postResumeCommands =
lib.mkIf config.hostSpec.impermanance
(lib.mkAfter ''
initrd.postResumeCommands = lib.mkIf config.hostSpec.impermanance (
lib.mkAfter ''
mkdir /btrfs_tmp
mount /dev/crypt_vg/root /btrfs_tmp
if [[ -e /btrfs_tmp/root ]]; then
@@ -133,7 +134,8 @@
btrfs subvolume create /btrfs_tmp/root
umount /btrfs_tmp
'');
''
);
lanzaboote = {
enable = config.hostSpec.secureBoot;
@@ -143,7 +145,10 @@
security.rtkit.enable = true;
environment.systemPackages = with pkgs; [pciutils bc];
environment.systemPackages = with pkgs; [
pciutils
bc
];
system.stateVersion = "25.05";
}

13
hosts/nixos/rihla/hardware-configuration.nix
View File

@@ -5,8 +5,9 @@
lib,
modulesPath,
...
}: {
imports = [(modulesPath + "/installer/scan/not-detected.nix")];
}:
{
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
boot = {
initrd = {
@@ -19,12 +20,12 @@
"usb_storage"
"sd_mod"
];
kernelModules = [];
kernelModules = [ ];
};
kernelModules = ["kvm-amd"];
extraModulePackages = [];
binfmt.emulatedSystems = ["aarch64-linux"]; # Add other target architectures as needed
kernelModules = [ "kvm-amd" ];
extraModulePackages = [ ];
binfmt.emulatedSystems = [ "aarch64-linux" ]; # Add other target architectures as needed
};
# Enables DHCP on each ethernet and wireless interface. In case of scripted networking