summaryrefslogtreecommitdiff
path: root/modules/home-config/base-system.scm
diff options
context:
space:
mode:
Diffstat (limited to 'modules/home-config/base-system.scm')
-rw-r--r--modules/home-config/base-system.scm182
1 files changed, 182 insertions, 0 deletions
diff --git a/modules/home-config/base-system.scm b/modules/home-config/base-system.scm
new file mode 100644
index 0000000..0276bfd
--- /dev/null
+++ b/modules/home-config/base-system.scm
@@ -0,0 +1,182 @@
+(define-module (home-config base-system)
+ #:use-module (gnu)
+ #:use-module (nongnu packages linux)
+ #:use-module (gnu system setuid)
+ #:use-module (gnu packages admin)
+ #:use-module (gnu packages avahi)
+ #:use-module (gnu packages)
+ #:use-module (guix packages)
+ #:use-module (gnu packages shells)
+ #:use-module (guix build-system trivial)
+ #:use-module (guix licenses)
+ #:use-module (gnu packages tls)
+ #:use-module (srfi srfi-1)
+ #:use-module (home-packages wm)
+ #:use-module (gnu packages security-token)
+ #:use-module (gnu services security-token)
+ #:use-module (gnu services cups)
+ #:use-module (gnu services desktop)
+ #:use-module (gnu services networking)
+ #:use-module (gnu services xorg)
+ #:use-module (gnu services ssh)
+ #:use-module (gnu services nix)
+ #:use-module (gnu services sound)
+ #:use-module (gnu services docker)
+ #:use-module (gnu services avahi)
+ #:use-module (gnu services authentication)
+ #:use-module (gnu services virtualization))
+
+(define %my-base-packages
+ (remove (lambda (package)
+ (member (package-name package)
+ (list "sudo" "nano")))
+ %base-packages))
+
+(define %backlight-udev-rule
+ (udev-rule
+ "90-backlight.rules"
+ (string-append "ACTION==\"add\", SUBSYSTEM==\"backlight\", "
+ "RUN+=\"/run/current-system/profile/bin/chgrp video /sys/class/backlight/%k/brightness\""
+ "\n"
+ "ACTION==\"add\", SUBSYSTEM==\"backlight\", "
+ "RUN+=\"/run/current-system/profile/bin/chmod g+w /sys/class/backlight/%k/brightness\"")))
+
+(define-public base-operating-system
+ (operating-system
+ (kernel linux)
+ (firmware (list linux-firmware intel-microcode sof-firmware))
+ (locale "en_US.utf8")
+ (timezone "America/New_York")
+ (keyboard-layout (keyboard-layout "us"))
+ (host-name "ThisWillChange")
+
+ ;; The list of user accounts ('root' is implicit).
+ (users (cons* (user-account
+ (name "tylerm")
+ (comment "Tyler")
+ (group "users")
+ (home-directory "/home/tylerm")
+ (shell (file-append zsh "/bin/zsh"))
+ (supplementary-groups '("wheel" "audio" "lp" "docker" "plugdev" "libvirt" "kvm" "netdev" "video" "tty")))
+ %base-user-accounts))
+
+ (packages (append (map specification->package (list "swayfx"
+ "swaybg"
+ "wlogout"
+ "sof-firmware"
+ "intel-microcode"
+ "alsa-utils"
+ "swayidle"
+ ;"swaylock"
+ "alacritty"
+ "gnome-themes-extra"
+ "adwaita-icon-theme"
+ "hicolor-icon-theme"
+ "git"
+ "nss-certs"
+ "gnupg"
+ "light"
+ "waybar"
+ "avahi"
+ "mako"
+ "grim"
+ "slurp"
+ "wl-clipboard"
+ "bluez"
+ "blueman"
+ "opendoas"
+ "xdg-desktop-portal"
+ "xdg-desktop-portal-wlr"
+ "v4l2loopback-linux-module"
+ "docker"
+ "linux-pam"
+ "pulseaudio"
+ ;;"pipewire"
+ "fprintd"
+ "wireplumber"
+ "virt-manager"
+ "wireshark"
+ "zsh"
+ "neovim"))
+ (list swaylock-effects-new)
+ %my-base-packages))
+
+ ;; Below is the list of system services. TO search for available
+ ;; services. run 'guix system search KEYWORD' in a terminal.
+ (services
+ (append (list
+
+ ;; To configure OpenSSH, pass an 'openssh-configuration'
+ ;; record as a second argument to 'service' below.
+ (service openssh-service-type)
+ (service pcscd-service-type)
+ (service cups-service-type
+ (cups-configuration
+ (web-interface? #t)))
+ ;; Avahi is only present for CUPS to support "automagic" printing
+ (service avahi-service-type
+ (avahi-configuration
+ (publish? #f) ;; do not advertise this machiene
+ (publish-workstation? #f))) ; do not advertise, I want this to be as silent as possible
+ (service docker-service-type)
+ (service nix-service-type)
+ (service libvirt-service-type
+ (libvirt-configuration
+ (unix-sock-group "libvirt")))
+ (service virtlog-service-type)
+ (service bluetooth-service-type)
+ (service pam-limits-service-type)
+ (service fprintd-service-type)
+ (udev-rules-service 'fido2 libfido2 #:groups '("plugdev")))
+
+ ;; This is the default list of services we
+ ;; are appending to.
+ (modify-services %desktop-services
+ (guix-service-type config =>
+ (guix-configuration
+ (inherit config)
+ (substitute-urls
+ (append (list "https://substitutes.nonguix.org")
+ %default-substitute-urls))
+ (authorized-keys
+ (cons* (plain-file "non-guix.pub"
+ "(public-key
+ (ecc
+ (curve Ed25519)
+ (q #C1FD53E5D4CE971933EC50C9F307AE2171A2D3B52C804642A7A35F84F3A4EA98#)
+ )
+ )" ) %default-authorized-guix-keys))))
+ (udev-service-type config =>
+ (udev-configuration
+ (inherit config)))
+ (delete pulseaudio-service-type)
+ (delete gdm-service-type)
+ (delete avahi-service-type)
+ (delete alsa-service-type))))
+
+ (name-service-switch %mdns-host-lookup-nss)
+
+ (setuid-programs
+ (append (list (file-like->setuid-program
+ (file-append
+ ;;(specification->package "swaylock")
+ swaylock-effects-new
+ "/bin/swaylock"))
+ (file-like->setuid-program
+ (file-append
+ (specification->package "opendoas")
+ "/bin/doas")))
+ (delete sudo %setuid-programs)))
+
+ (file-systems (cons*
+ (file-system
+ (mount-point "/tmp")
+ (device "none")
+ (type "tmpfs")
+ (check? #f))
+ %base-file-systems))
+
+ (bootloader (bootloader-configuration
+ (bootloader grub-efi-bootloader)
+ (targets (list "/boot/efi"))
+ (keyboard-layout keyboard-layout)))))
generated by cgit v1.2.3-freya (git 2.51.0) at 2025-09-23 02:16:55 +0000