harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
nixcfg/systems/x86_64-linux/t15/hardware-configuration.nix

112 lines
2.7 KiB
Nix
Raw Normal View History

A new start
2024-03-21 15:00:36 +01:00
# Do not modify this file! It was generated by nixos-generate-config
# and may be overwritten by future invocations. Please make changes
# to /etc/nixos/configuration.nix instead.
{ config, lib, pkgs, modulesPath, ... }:
{
imports = [
(modulesPath + "/installer/scan/not-detected.nix")
];
boot.kernelModules = [ "kvm-intel" ];
boot.initrd.availableKernelModules = [
"ahci"
"nvme"
"rng_core"
"sd_mod"
"sdhci_pci"
"thunderbolt"
"tpm"
"tpm_crb"
"tpm_tis"
"tpm_tis_core"
"trusted"
"uas"
"usb_storage"
"usbhid"
"xhci_pci"
"uas"
];
boot.initrd.kernelModules = [ ];
boot.kernelParams = [
"lockdown=confidentiality"
"intel_iommu=on"
"quiet"
"splash"
"video=efifb:nobgrt"
feat: Add several boot options in hardware config Multiple boot options have been added in the hardware-configuration for the x86_64-linux system. This includes unsafe secrets mitigation options, such as 'noibrs', 'noibpb', 'nopti', etc., to potentially enhance system performance.
2024-07-18 10:06:41 +02:00
# unsafe, but no secrets on that machine
"noibrs"
"noibpb"
"nopti"
"nospectre_v2"
"nospectre_v1"
"l1tf=off"
"nospec_store_bypass_disable"
"no_stf_barrier"
"mds=off"
"tsx=on"
"tsx_async_abort=off"
"mitigations=off"
];
A new start
2024-03-21 15:00:36 +01:00
boot.extraModulePackages = [ ];
services.btrfs.autoScrub.enable = true;
swapDevices = [{ device = "/swapfile"; }];
boot.initrd.luks.devices.crypted = {
device = "/dev/nvme0n1p2";
preLVM = true;
};
fileSystems = {
"/" =
{
device = "/dev/mapper/crypted";
fsType = "btrfs";
options = [ "subvol=/rootfs" ];
neededForBoot = true;
};
"/nix" = {
device = "/dev/mapper/crypted";
fsType = "btrfs";
options = [ "subvol=/nix" ];
neededForBoot = true;
};
"/home" = {
device = "/dev/mapper/crypted";
fsType = "btrfs";
options = [ "subvol=/home" ];
};
"/persist" = {
device = "/dev/mapper/crypted";
fsType = "btrfs";
options = [ "subvol=/persist" ];
neededForBoot = true;
};
"/boot" =
{
device = "/dev/disk/by-partlabel/disk-one-ESP";
fsType = "vfat";
};
};
console.keyMap = "de-latin1-nodeadkeys";
refactor: Update xserver keymap configuration in hardware configuration file This commit updates the hardware configuration file for the x86_64-linux system. Specifically, it modifies the xserver keymap settings, ensuring proper keymap configuration for 'de' layout with 'nodeadkeys' variant in the x86_64-linux system.
2024-07-18 10:15:45 +02:00
services.xserver.xkb = {
feat: Modify keyboard layout in x86_64-linux hardware configuration The configuration update for the x86_64-linux t15 hardware adds a US layout variant to the existing German keyboard configuration. This change will allow switching between US and German keyboard layouts as per user requirements.
2024-07-19 11:45:24 +02:00
layout = "de,de+us";
refactor: Update xserver keymap configuration in hardware configuration file This commit updates the hardware configuration file for the x86_64-linux system. Specifically, it modifies the xserver keymap settings, ensuring proper keymap configuration for 'de' layout with 'nodeadkeys' variant in the x86_64-linux system.
2024-07-18 10:15:45 +02:00
variant = "nodeadkeys";
A new start
2024-03-21 15:00:36 +01:00
};
# Enables DHCP on each ethernet and wireless interface. In case of scripted networking
# (the default) this is the recommended approach. When using systemd-networkd it's
# still possible to use this option, but it's recommended to use it in conjunction
# with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
networking.useDHCP = lib.mkDefault true;
# networking.interfaces.enp82s0u1u3u4.useDHCP = lib.mkDefault true;
# networking.interfaces.wlp0s20f3.useDHCP = lib.mkDefault true;
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
}
Reference in a new issue Copy permalink