Init

2026-02-18 21:23:56 +01:00
commit 11ce3ba32f
41 changed files with 2422 additions and 0 deletions
--- a/nixos/default.nix
+++ b/nixos/default.nix
@@ -0,0 +1,113 @@
+{
+  pkgs,
+  primaryUser,
+  ...
+}:
+
+{
+  imports = [
+    ./hardware.nix
+    ./settings.nix
+    ./packages.nix
+  ];
+
+  nixpkgs.config.allowUnfree = true;
+
+  # Speeding up builds
+  documentation = {
+    enable = false;
+    man = {
+      enable = false;
+      generateCaches = false;
+    };
+    doc.enable = false;
+    info.enable = false;
+    nixos.enable = false;
+  };
+
+  # Override python-lsp-server to skip tests (flaky tests cause timeout)
+  nixpkgs.config.packageOverrides = pkgs: {
+    python3 = pkgs.python3.override {
+      packageOverrides = self: super: {
+        python-lsp-server = super.python-lsp-server.overridePythonAttrs (old: {
+          doCheck = false;
+        });
+      };
+    };
+  };
+
+  networking = {
+    hostName = "cyper-server"; # overridden per host
+    useDHCP = false; # overridden per host
+    networkmanager.enable = false;
+    enableIPv6 = false;
+
+    firewall = {
+      enable = true;
+      allowPing = true;
+    };
+  };
+
+  # SSH configuration
+  services.openssh = {
+    enable = true;
+    settings.PermitRootLogin = "no";
+    settings.PasswordAuthentication = true;
+  };
+
+  # User configuration
+  users.users.${primaryUser} = {
+    isNormalUser = true;
+    home = "/home/${primaryUser}";
+    description = "Phil";
+    hashedPassword = "$6$TqAclAMz/DFP90Ve$HEN4t1pqK36rACeWctJOmLArkTWb/rIBYamu4sY8bPuDnqkVVyfOLqXKkgX8zBf9LKz02.mo4EKFRnYWIzcAX1";
+    extraGroups = [
+      "wheel"
+    ];
+    shell = pkgs.fish;
+    openssh.authorizedKeys.keys = [
+      "ssh-rsa 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 phil@web.cyperpunk.de"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEuYuGhqRC/QLoRBH91c3DG5JHlAdRLQsvde18k5ipY2 phil@cyperpunk.de"
+    ];
+  };
+
+  # Shell
+  programs.zsh.enable = true;
+  programs.fish.enable = true;
+
+  # Nix settings
+  nix = {
+    settings = {
+      experimental-features = [
+        "nix-command"
+        "flakes"
+      ];
+      auto-optimise-store = true;
+      builders-use-substitutes = true;
+      trusted-substituters = [ "ssh://phil@192.168.2.2" ];
+    };
+    gc = {
+      automatic = true;
+      dates = "weekly";
+      options = "--delete-older-than 30d";
+    };
+    buildMachines = [
+      {
+        hostName = "192.168.2.2";
+        system = "x86_64-linux";
+        sshUser = "phil";
+        maxJobs = 8;
+        speedFactor = 2;
+        supportedFeatures = [
+          "nixos-test"
+          "benchmark"
+          "big-parallel"
+          "kvm"
+        ];
+        mandatoryFeatures = [ ];
+      }
+    ];
+  };
+
+  system.stateVersion = "25.11";
+}
--- a/nixos/hardware.nix
+++ b/nixos/hardware.nix
@@ -0,0 +1,58 @@
+{
+  config,
+  lib,
+  pkgs,
+  modulesPath,
+  ...
+}:
+
+{
+  imports = [
+    (modulesPath + "/profiles/qemu-guest.nix")
+  ];
+
+  # Bootloader
+  boot = {
+    kernelPackages = pkgs.linuxPackages_latest;
+    initrd.availableKernelModules = [
+      "ahci"
+      "xhci_pci"
+      "virtio_pci"
+      "virtio_scsi"
+      "sd_mod"
+      "sr_mod"
+    ];
+    initrd.kernelModules = [ ];
+    kernelModules = [ "kvm-intel" ];
+    extraModulePackages = [ ];
+
+    loader = {
+      systemd-boot.enable = true;
+      efi.canTouchEfiVariables = true;
+    };
+  };
+
+  # File systems
+  fileSystems."/" = {
+    device = "/dev/disk/by-label/nixos";
+    fsType = "ext4";
+    options = [ "noatime" ];
+  };
+
+  fileSystems."/boot" = {
+    device = "/dev/disk/by-label/boot";
+    fsType = "vfat";
+  };
+
+  # Swap
+  swapDevices = [
+    {
+      device = "/swapfile";
+      size = 4096;
+    }
+  ];
+
+  # x86_64 hardware
+  hardware.enableRedistributableFirmware = true;
+  hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
+}
--- a/nixos/packages.nix
+++ b/nixos/packages.nix
@@ -0,0 +1,19 @@
+{ config, pkgs, ... }:
+
+{
+  environment.systemPackages = with pkgs; [
+    git
+    curl
+    wget
+    htop
+    neovim
+    tmux
+    ripgrep
+    fd
+    bat
+    eza
+    fzf
+    tree
+    fish
+  ];
+}
--- a/nixos/settings.nix
+++ b/nixos/settings.nix
@@ -0,0 +1,21 @@
+{ config, pkgs, ... }:
+
+{
+  # Localization
+  time.timeZone = "Europe/Berlin";
+  i18n.defaultLocale = "en_US.UTF-8";
+  i18n.extraLocaleSettings = {
+    LC_ADDRESS = "de_DE.UTF-8";
+    LC_IDENTIFICATION = "de_DE.UTF-8";
+    LC_MEASUREMENT = "de_DE.UTF-8";
+    LC_MONETARY = "de_DE.UTF-8";
+    LC_NAME = "de_DE.UTF-8";
+    LC_NUMERIC = "de_DE.UTF-8";
+    LC_PAPER = "de_DE.UTF-8";
+    LC_TELEPHONE = "de_DE.UTF-8";
+    LC_TIME = "de_DE.UTF-8";
+  };
+
+  # System settings
+  console.keyMap = "de";
+}