# Edit this configuration file to define what should be installed on # your system. Help is available in the configuration.nix(5) man page, on # https://search.nixos.org/options and in the NixOS manual (`nixos-help`). { config, lib, pkgs, self, paths, keys, ... }: { # NAS Mounting hoardingcow-mount.enable = true; # Flakesss nix.settings.experimental-features = [ "nix-command" "flakes" ]; nix.settings.trusted-users = [ "root" "gortium" ]; # Garbage collection nix.gc = { automatic = true; dates = "daily"; # You can also use "daily" or a cron-like spec options = "--delete-older-than 7d"; # Keep only 7 days of unreferenced data }; nix.settings = { keep-derivations = true; keep-outputs = true; auto-optimise-store = true; }; # Use the systemd-boot EFI boot loader. boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = false; boot.kernelModules = [ "nct6775" "lm63" ]; boot.blacklistedKernelModules = [ "eeepc_wmi" ]; networking.hostName = "lazyworkhorse"; # Define your hostname. # Pick only one of the below networking options. # networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. networking.networkmanager.enable = true; # Easiest to use and most distros use this by default. networking.hostId = "deadbeef"; # Set your time zone. time.timeZone = "America/Montreal"; # Locales i18n.defaultLocale = "en_CA.UTF-8"; i18n.supportedLocales = [ "en_CA.UTF-8/UTF-8" ]; i18n.extraLocaleSettings = { LC_ADDRESS = "en_CA.UTF-8"; LC_IDENTIFICATION = "en_CA.UTF-8"; LC_MEASUREMENT = "en_CA.UTF-8"; LC_MONETARY = "en_CA.UTF-8"; LC_NAME = "en_CA.UTF-8"; LC_NUMERIC = "en_CA.UTF-8"; LC_PAPER = "en_CA.UTF-8"; LC_TELEPHONE = "en_CA.UTF-8"; LC_TIME = "en_CA.UTF-8"; LC_CTYPE = "en_CA.UTF-8"; }; # Configure network proxy if necessary # networking.proxy.default = "http://user:password@proxy:port/"; # networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain"; # Select internationalisation properties. # i18n.defaultLocale = "en_US.UTF-8"; # console = { # font = "Lat2-Terminus16"; # keyMap = "us"; # useXkbConfig = true; # use xkb.options in tty. # }; # Configure keymap in X11 # services.xserver.xkb.layout = "us"; # services.xserver.xkb.options = "eurosign:e,caps:escape"; # Enable CUPS to print documents. services.printing.enable = true; # Enable sound. # services.pulseaudio.enable = true; # OR services.pipewire = { enable = true; pulse.enable = true; }; environment.sessionVariables = { NH_FLAKE = paths.flake; }; # Enable touchpad support (enabled default in most desktopManager). # services.libinput.enable = true; # nvim please environment.variables.EDITOR = "nvim"; # programs.firefox.enable = true; # List packages installed in system profile. # You can use https://Search.nixos.org/ to find more packages (and options). environment.systemPackages = with pkgs; [ agenix neovim docker-compose wget age git nh lm_sensors ]; # Some programs need SUID wrappers, can be configured further or are # started in user sessions. # programs.mtr.enable = true; # programs.gnupg.agent = { # enable = true; # enableSSHSupport = true; # }; # List services that you want to enable: # Enable the OpenSSH daemon services.openssh = { enable = true; settings.PermitRootLogin = "no"; hostKeys = [ { path = "/etc/ssh/ssh_host_ed25519_key"; type = "ed25519"; } ]; }; # Private host ssh key managed by agenix age = { identityPaths = paths.identities; secrets = { containers_env = { file = ../../secrets/containers.env.age; path = "/run/secrets/containers.env"; owner = "root"; group = "root"; mode = "0400"; }; lazyworkhorse_host_ssh_key = { file = ../../secrets/lazyworkhorse_host_ssh_key.age; owner = "root"; group = "root"; mode = "0600"; path = "/etc/ssh/ssh_host_ed25519_key"; }; }; }; # Public host ssh key (kept in sync with the private one) environment.etc."ssh/ssh_host_ed25519_key.pub".text = "${keys.hosts.lazyworkhorse.main}"; services.fstrim.enable = true; services.zfs.autoSnapshot.enable = true; services.zfs.autoScrub.enable = true; hardware.graphics = { enable = true; enable32Bit = true; extraPackages = with pkgs; [ rocmPackages.clr rocmPackages.rocblas rocmPackages.rocrand rocmPackages.rocminfo rocmPackages.hipcc rocmPackages.hiprt ]; }; # Open ports in the firewall. # networking.firewall.allowedTCPPorts = [ ... ]; # networking.firewall.allowedUDPPorts = [ ... ]; # Or disable the firewall altogether. # networking.firewall.enable = false; # Copy the NixOS configuration file and link it from the resulting system # (/run/current-system/configuration.nix). This is useful in case you # accidentally delete configuration.nix. # system.copySystemConfiguration = true; # This option defines the first version of NixOS you have installed on this particular machine, # and is used to maintain compatibility with application data (e.g. databases) created on older NixOS versions. # # Most users should NEVER change this value after the initial install, for any reason, # even if you've upgraded your system to a new NixOS release. # # This value does NOT affect the Nixpkgs version your packages and OS are pulled from, # so changing it will NOT upgrade your system - see https://nixos.org/manual/nixos/stable/#sec-upgrading for how # to actually do that. # # This value being lower than the current NixOS release does NOT mean your system is # out of date, out of support, or vulnerable. # # Do NOT change this value unless you have manually inspected all the changes it would make to your configuration, # and migrated your data accordingly. # # For more information, see `man configuration.nix` or https://nixos.org/manual/nixos/stable/options#opt-system.stateVersion . system.stateVersion = "25.05"; # Did you read the comment? }