# Edit this configuration file to define what should be installed on # your system. Help is available in the configuration.nix(5) man page # and in the NixOS manual (accessible by running ‘nixos-help’). { nixos-hardware, config, pkgs, musnix, ... }: { imports = [ # Include the results of the hardware scan. ./hardware-configuration.nix ]; # Allow unfree packages nixpkgs.config.allowUnfree = true; # List packages installed in system profile. To search, run: environment.systemPackages = with pkgs; [ wget home-manager curl #git git-lfs tailscale rsync kmonad gnupg openrazer-daemon clinfo ]; # Bootloader. boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = true; boot.kernelPackages = pkgs.linuxPackages_6_10; boot = { # TODO: confirm this works # https://forums.developer.nvidia.com/t/550-54-14-cannot-create-sg-table-for-nvkmskapimemory-spammed-when-launching-chrome-on-wayland/284775/26 initrd.kernelModules = [ "nvidia" "nvidia_modeset" "nvidia_uvm" "nvidia_drm" ]; # "i915" # extraModulePackages = [ config.boot.kernelPackages.nvidia_x11 ]; kernelParams = [ "nvidia-drm.fbdev=1" "nvidia_drm.modeset=1" ]; }; systemd.services.tailscaled.after = ["NetworkManager-wait-online.service"]; hardware = { openrazer.enable = true; openrazer.users = [ "emenel" ]; graphics = { enable = true; enable32Bit = true; extraPackages = [ pkgs.rocmPackages.clr.icd ]; }; enableAllFirmware = true; nvidia = { # Modesetting is required. modesetting.enable = true; powerManagement.enable = true; powerManagement.finegrained = true; open = true; forceFullCompositionPipeline = true; prime = { amdgpuBusId = "PCI:0:2:0"; nvidiaBusId = "PCI:41:0:0"; offload = { enable = true; enableOffloadCmd = true; }; #reverseSync.enable = true; #sync.enable = true; }; nvidiaSettings = true; }; }; musnix = { enable = true; alsaSeq.enable = true; rtcqs.enable = true; }; services.udev.extraRules = '' DEVPATH=="/devices/virtual/misc/cpu_dma_latency", OWNER="root", GROUP="audio", MODE="0660" ''; security.polkit.enable = true; services.xserver.videoDrivers = [ "nvidia" ]; networking.hostName = "eddie"; # Enable networking networking.networkmanager.enable = true; # Set your time zone. time.timeZone = "America/Toronto"; # Select internationalisation properties. i18n.defaultLocale = "en_CA.UTF-8"; nix.nixPath = [ "nixos-config=/home/emenel/source/nixos-config" "nixpkgs=/nix/var/nix/profiles/per-user/root/channels/nixos" ]; nix.package = pkgs.nixFlakes; nix.settings.experimental-features = [ "nix-command" "flakes" "repl-flake" ]; services.xserver.enable = true; # Enable the GNOME Desktop Environment. services.xserver.displayManager.gdm.enable = true; services.xserver.desktopManager.gnome.enable = true; services.xserver.deviceSection = ''Option "TearFree" "true"''; # For amdgpu. programs.dconf.enable = true; services.xserver.xkb = { layout = "us"; variant = ""; }; services.printing.enable = true; services.tailscale.enable = true; #services.emacs = { # enable = true; # package = pkgs.emacs; #}; # Enable sound with pipewire. hardware.pulseaudio.enable = false; security.rtkit.enable = true; services.pipewire = { enable = true; alsa.enable = true; alsa.support32Bit = true; pulse.enable = true; jack.enable = true; wireplumber.enable = true; }; users.users.emenel = { isNormalUser = true; description = "emenel"; extraGroups = [ "networkmanager" "wheel" "uinput" "input" "audio" "video" "libvirtd" "nvidia" "cups" "openrazer"]; openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFvtBCUQEi7r6mXdaULEaMMvGH1IWZBX9tXpjbIECar2 matt@emenel.ca" ]; packages = with pkgs; [ git ]; }; # enable fish and launch it from bash for interactive shells programs.fish.enable = true; environment.pathsToLink = [ "/share/fish" ]; programs.bash = { interactiveShellInit = '' if [[ $(${pkgs.procps}/bin/ps --no-header --pid=$PPID --format=comm) != "fish" && -z ''${BASH_EXECUTION_STRING} ]] then shopt -q login_shell && LOGIN_OPTION='--login' || LOGIN_OPTION="" exec ${pkgs.fish}/bin/fish $LOGIN_OPTION fi ''; }; services.flatpak.enable = true; services.dbus.implementation = "broker"; #programs.gnupg.enable = true; programs.git.enable = true; services.gnome.core-developer-tools.enable = true; environment.gnome.excludePackages = with pkgs; [ cheese geary seahorse gnome-music gnome-tour ]; services.kmonad = { enable = true; keyboards = { quefrency = { device = "/dev/input/by-id/usb-Keebio_Quefrency_Rev._5-event-kbd"; config = builtins.readFile ../../dotfiles/dot_config/kmonad/quefrency.kbd; }; razer = { device = "/dev/input/by-id/usb-Razer_Razer_Blade-if01-event-kbd"; config = builtins.readFile ../../dotfiles/dot_config/kmonad/razer.kbd; }; }; }; programs.virt-manager.enable = true; virtualisation = { libvirtd = { enable = true; qemu = { package = pkgs.qemu_kvm; swtpm.enable = true; ovmf.enable = true; ovmf.packages = [ pkgs.OVMFFull.fd ]; }; }; spiceUSBRedirection.enable = true; }; services.qemuGuest.enable = true; services.spice-vdagentd.enable = true; programs.steam = { enable = true; extraCompatPackages = [ pkgs.proton-ge-bin ]; }; powerManagement.enable = true; services.power-profiles-daemon.enable = false; services.auto-cpufreq = { enable = true; settings = { battery = { governor = "powersave"; turbo = "never"; }; charger = { governor = "performance"; turbo = "auto"; }; }; }; # powerManagement.powertop.enable = true; # services.thermald.enable = true; # enable the OpenSSH daemon. services.openssh.enable = true; #serivces.openssh.permitRootLogin = "no"; #services.openssh.passwordAuthentication = true; # Open ports in the firewall. # networking.firewall.allowedTCPPorts = [ ... ]; # networking.firewall.allowedUDPPorts = [ ... ]; # Or disable the firewall altogether. # networking.firewall.enable = false; #do not change system.stateVersion = "24.05"; }