diff options
| author | Tyler Murphy <tylerm@tylerm.dev> | 2023-09-04 23:21:01 -0400 |
|---|---|---|
| committer | Tyler Murphy <tylerm@tylerm.dev> | 2023-09-04 23:21:01 -0400 |
| commit | db49f683129771d95828b01594c69431a717e8e8 (patch) | |
| tree | d2cb1c0b865e4d81ce81f9a3176b8ad93a864950 /modules/home-config/base-system.scm | |
| download | dotfiles-guix-db49f683129771d95828b01594c69431a717e8e8.tar.gz dotfiles-guix-db49f683129771d95828b01594c69431a717e8e8.tar.bz2 dotfiles-guix-db49f683129771d95828b01594c69431a717e8e8.zip | |
guix
Diffstat (limited to 'modules/home-config/base-system.scm')
| -rw-r--r-- | modules/home-config/base-system.scm | 182 |
1 files changed, 182 insertions, 0 deletions
diff --git a/modules/home-config/base-system.scm b/modules/home-config/base-system.scm new file mode 100644 index 0000000..0276bfd --- /dev/null +++ b/modules/home-config/base-system.scm @@ -0,0 +1,182 @@ +(define-module (home-config base-system) + #:use-module (gnu) + #:use-module (nongnu packages linux) + #:use-module (gnu system setuid) + #:use-module (gnu packages admin) + #:use-module (gnu packages avahi) + #:use-module (gnu packages) + #:use-module (guix packages) + #:use-module (gnu packages shells) + #:use-module (guix build-system trivial) + #:use-module (guix licenses) + #:use-module (gnu packages tls) + #:use-module (srfi srfi-1) + #:use-module (home-packages wm) + #:use-module (gnu packages security-token) + #:use-module (gnu services security-token) + #:use-module (gnu services cups) + #:use-module (gnu services desktop) + #:use-module (gnu services networking) + #:use-module (gnu services xorg) + #:use-module (gnu services ssh) + #:use-module (gnu services nix) + #:use-module (gnu services sound) + #:use-module (gnu services docker) + #:use-module (gnu services avahi) + #:use-module (gnu services authentication) + #:use-module (gnu services virtualization)) + +(define %my-base-packages + (remove (lambda (package) + (member (package-name package) + (list "sudo" "nano"))) + %base-packages)) + +(define %backlight-udev-rule + (udev-rule + "90-backlight.rules" + (string-append "ACTION==\"add\", SUBSYSTEM==\"backlight\", " + "RUN+=\"/run/current-system/profile/bin/chgrp video /sys/class/backlight/%k/brightness\"" + "\n" + "ACTION==\"add\", SUBSYSTEM==\"backlight\", " + "RUN+=\"/run/current-system/profile/bin/chmod g+w /sys/class/backlight/%k/brightness\""))) + +(define-public base-operating-system + (operating-system + (kernel linux) + (firmware (list linux-firmware intel-microcode sof-firmware)) + (locale "en_US.utf8") + (timezone "America/New_York") + (keyboard-layout (keyboard-layout "us")) + (host-name "ThisWillChange") + + ;; The list of user accounts ('root' is implicit). + (users (cons* (user-account + (name "tylerm") + (comment "Tyler") + (group "users") + (home-directory "/home/tylerm") + (shell (file-append zsh "/bin/zsh")) + (supplementary-groups '("wheel" "audio" "lp" "docker" "plugdev" "libvirt" "kvm" "netdev" "video" "tty"))) + %base-user-accounts)) + + (packages (append (map specification->package (list "swayfx" + "swaybg" + "wlogout" + "sof-firmware" + "intel-microcode" + "alsa-utils" + "swayidle" + ;"swaylock" + "alacritty" + "gnome-themes-extra" + "adwaita-icon-theme" + "hicolor-icon-theme" + "git" + "nss-certs" + "gnupg" + "light" + "waybar" + "avahi" + "mako" + "grim" + "slurp" + "wl-clipboard" + "bluez" + "blueman" + "opendoas" + "xdg-desktop-portal" + "xdg-desktop-portal-wlr" + "v4l2loopback-linux-module" + "docker" + "linux-pam" + "pulseaudio" + ;;"pipewire" + "fprintd" + "wireplumber" + "virt-manager" + "wireshark" + "zsh" + "neovim")) + (list swaylock-effects-new) + %my-base-packages)) + + ;; Below is the list of system services. TO search for available + ;; services. run 'guix system search KEYWORD' in a terminal. + (services + (append (list + + ;; To configure OpenSSH, pass an 'openssh-configuration' + ;; record as a second argument to 'service' below. + (service openssh-service-type) + (service pcscd-service-type) + (service cups-service-type + (cups-configuration + (web-interface? #t))) + ;; Avahi is only present for CUPS to support "automagic" printing + (service avahi-service-type + (avahi-configuration + (publish? #f) ;; do not advertise this machiene + (publish-workstation? #f))) ; do not advertise, I want this to be as silent as possible + (service docker-service-type) + (service nix-service-type) + (service libvirt-service-type + (libvirt-configuration + (unix-sock-group "libvirt"))) + (service virtlog-service-type) + (service bluetooth-service-type) + (service pam-limits-service-type) + (service fprintd-service-type) + (udev-rules-service 'fido2 libfido2 #:groups '("plugdev"))) + + ;; This is the default list of services we + ;; are appending to. + (modify-services %desktop-services + (guix-service-type config => + (guix-configuration + (inherit config) + (substitute-urls + (append (list "https://substitutes.nonguix.org") + %default-substitute-urls)) + (authorized-keys + (cons* (plain-file "non-guix.pub" + "(public-key + (ecc + (curve Ed25519) + (q #C1FD53E5D4CE971933EC50C9F307AE2171A2D3B52C804642A7A35F84F3A4EA98#) + ) + )" ) %default-authorized-guix-keys)))) + (udev-service-type config => + (udev-configuration + (inherit config))) + (delete pulseaudio-service-type) + (delete gdm-service-type) + (delete avahi-service-type) + (delete alsa-service-type)))) + + (name-service-switch %mdns-host-lookup-nss) + + (setuid-programs + (append (list (file-like->setuid-program + (file-append + ;;(specification->package "swaylock") + swaylock-effects-new + "/bin/swaylock")) + (file-like->setuid-program + (file-append + (specification->package "opendoas") + "/bin/doas"))) + (delete sudo %setuid-programs))) + + (file-systems (cons* + (file-system + (mount-point "/tmp") + (device "none") + (type "tmpfs") + (check? #f)) + %base-file-systems)) + + (bootloader (bootloader-configuration + (bootloader grub-efi-bootloader) + (targets (list "/boot/efi")) + (keyboard-layout keyboard-layout))))) |