62 lines
1.1 KiB
Nix
62 lines
1.1 KiB
Nix
{
|
|
inputs,
|
|
pkgs,
|
|
lib,
|
|
...
|
|
}:
|
|
{
|
|
networking.hostName = "fw";
|
|
|
|
age.identityPaths = [
|
|
"/root/.ssh/id_ed25519"
|
|
];
|
|
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
inputs.disko.nixosModules.disko
|
|
./disko.nix
|
|
inputs.nixos-hardware.nixosModules.framework-amd-ai-300-series
|
|
inputs.lanzaboote.nixosModules.lanzaboote
|
|
];
|
|
|
|
environment.systemPackages = [
|
|
pkgs.sbctl
|
|
];
|
|
|
|
services.fprintd.enable = true;
|
|
# security.pam.enableFscrypt = true;
|
|
|
|
boot = {
|
|
lanzaboote = {
|
|
enable = true;
|
|
pkiBundle = "/var/lib/sbctl";
|
|
};
|
|
loader = {
|
|
systemd-boot.enable = lib.mkForce false;
|
|
efi.canTouchEfiVariables = true;
|
|
# grub = {
|
|
# enable = false;
|
|
# efiSupport = true;
|
|
# };
|
|
};
|
|
|
|
kernelPackages = pkgs.linuxPackages_6_12;
|
|
kernel.sysctl."kernel.sysrq" = 1;
|
|
|
|
initrd.systemd.network.wait-online.enable = false;
|
|
};
|
|
|
|
powerManagement = {
|
|
enable = true;
|
|
cpuFreqGovernor = "ondemand";
|
|
};
|
|
|
|
hd.desktop.enable = true;
|
|
|
|
networking.firewall = {
|
|
enable = true;
|
|
};
|
|
|
|
# ====== DON'T CHANGE ======
|
|
system.stateVersion = "25.05";
|
|
}
|