2021-10-06 19:01:32 +02:00
|
|
|
|
(define-module (hosts kirsty system)
|
|
|
|
|
|
#:use-module (gnu)
|
|
|
|
|
|
#:use-module (gnu packages bash)
|
|
|
|
|
|
#:use-module (gnu packages certs)
|
|
|
|
|
|
#:use-module (gnu packages linux)
|
|
|
|
|
|
#:use-module (gnu packages ncurses)
|
|
|
|
|
|
#:use-module (gnu packages rsync)
|
2022-06-22 21:03:54 +02:00
|
|
|
|
#:use-module (gnu packages wm)
|
2021-10-06 19:01:32 +02:00
|
|
|
|
#:use-module (gnu services desktop)
|
|
|
|
|
|
#:use-module (gnu services networking)
|
|
|
|
|
|
#:use-module (gnu services security-token)
|
2023-09-16 11:29:16 +02:00
|
|
|
|
#:use-module (gnu services shepherd)
|
2021-10-06 19:01:32 +02:00
|
|
|
|
#:use-module (gnu services sound)
|
|
|
|
|
|
#:use-module (gnu services virtualization)
|
2023-08-16 14:25:40 +02:00
|
|
|
|
#:use-module (gnu services xorg)
|
2021-10-06 19:01:32 +02:00
|
|
|
|
#:use-module (gnu system locale)
|
|
|
|
|
|
#:use-module (gnu system setuid)
|
|
|
|
|
|
#:use-module (nongnu packages linux)
|
2023-05-22 09:45:07 +02:00
|
|
|
|
#:use-module (nongnu system linux-initrd)
|
2023-09-16 11:29:16 +02:00
|
|
|
|
#:use-module (packages shepherd)
|
2023-08-16 14:25:40 +02:00
|
|
|
|
#:use-module (config base))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
|
2022-08-12 12:16:47 +02:00
|
|
|
|
(define host-dir (dirname (module-filename (current-module))))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
|
|
|
|
|
|
(operating-system
|
2022-08-12 12:16:47 +02:00
|
|
|
|
(host-name "kirsty")
|
2021-10-06 19:01:32 +02:00
|
|
|
|
(timezone "Europe/Ljubljana")
|
|
|
|
|
|
|
|
|
|
|
|
(locale-definitions
|
|
|
|
|
|
(cons*
|
|
|
|
|
|
(locale-definition (name "sl_SI.utf8") (source "sl_SI"))
|
|
|
|
|
|
%default-locale-definitions))
|
|
|
|
|
|
(locale "en_US.utf8")
|
|
|
|
|
|
|
2022-12-27 13:23:14 +01:00
|
|
|
|
(kernel (customize-linux #:linux linux #:defconfig (local-file (string-append host-dir "/kernel.config"))))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
(kernel-arguments '("mitigations=auto"))
|
|
|
|
|
|
|
|
|
|
|
|
(firmware
|
|
|
|
|
|
(cons* intel-microcode linux-firmware wireless-regdb %base-firmware))
|
|
|
|
|
|
|
|
|
|
|
|
(initrd microcode-initrd)
|
|
|
|
|
|
(initrd-modules '("dm-crypt"))
|
|
|
|
|
|
|
|
|
|
|
|
(bootloader
|
|
|
|
|
|
(bootloader-configuration
|
|
|
|
|
|
(bootloader grub-bootloader)
|
|
|
|
|
|
(targets '("/dev/nvme0n1"))))
|
|
|
|
|
|
|
|
|
|
|
|
(mapped-devices
|
|
|
|
|
|
(list
|
|
|
|
|
|
(mapped-device
|
2022-06-22 21:04:56 +02:00
|
|
|
|
(source (uuid "c725b7b7-b4d9-49e0-8c2c-3624b3cde7e3"))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
(target "root")
|
|
|
|
|
|
(type luks-device-mapping))))
|
|
|
|
|
|
|
|
|
|
|
|
(file-systems
|
|
|
|
|
|
(cons*
|
|
|
|
|
|
(file-system
|
|
|
|
|
|
(device "/dev/mapper/root")
|
|
|
|
|
|
(mount-point "/")
|
|
|
|
|
|
(type "ext4"))
|
|
|
|
|
|
%base-file-systems))
|
|
|
|
|
|
|
2022-06-22 21:04:56 +02:00
|
|
|
|
(swap-devices (list (swap-space (target "/swap"))))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
|
|
|
|
|
|
(users
|
|
|
|
|
|
(cons*
|
|
|
|
|
|
(user-account
|
|
|
|
|
|
(name "timotej")
|
|
|
|
|
|
(comment "Timotej Lazar")
|
|
|
|
|
|
(group "users")
|
2023-08-16 14:25:40 +02:00
|
|
|
|
(supplementary-groups '("audio" "cdrom" "dialout" "kvm" "netdev" "seat" "wheel"))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
(home-directory "/home/timotej"))
|
|
|
|
|
|
%base-user-accounts))
|
|
|
|
|
|
|
|
|
|
|
|
(packages
|
2023-12-24 10:54:48 +01:00
|
|
|
|
(cons* ncurses nftables nss-certs rsync %base-packages))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
|
2023-09-16 11:29:16 +02:00
|
|
|
|
(essential-services
|
|
|
|
|
|
(modify-services
|
|
|
|
|
|
(operating-system-default-essential-services this-operating-system)
|
|
|
|
|
|
(shepherd-root-service-type
|
|
|
|
|
|
config => (shepherd-configuration
|
|
|
|
|
|
(shepherd shepherd/fibers-1.1)))))
|
|
|
|
|
|
|
2021-10-06 19:01:32 +02:00
|
|
|
|
(services
|
|
|
|
|
|
(cons*
|
|
|
|
|
|
(extra-special-file "/usr/bin/env" (file-append coreutils "/bin/env"))
|
|
|
|
|
|
(extra-special-file "/bin/bash" (file-append bash "/bin/bash"))
|
|
|
|
|
|
|
2023-08-16 14:25:40 +02:00
|
|
|
|
(service seatd-service-type)
|
|
|
|
|
|
(service greetd-service-type
|
|
|
|
|
|
(greetd-configuration
|
|
|
|
|
|
(greeter-supplementary-groups '("input" "video"))
|
|
|
|
|
|
(terminals
|
|
|
|
|
|
(map (lambda (tty)
|
|
|
|
|
|
(greetd-terminal-configuration
|
|
|
|
|
|
(terminal-vt tty)
|
|
|
|
|
|
(terminal-switch #t)))
|
|
|
|
|
|
'("1" "2" "3" "4" "5" "6")))))
|
|
|
|
|
|
|
2021-10-06 19:01:32 +02:00
|
|
|
|
;; Networking.
|
|
|
|
|
|
(service network-manager-service-type)
|
|
|
|
|
|
(service wpa-supplicant-service-type)
|
|
|
|
|
|
(service modem-manager-service-type)
|
|
|
|
|
|
(service usb-modeswitch-service-type)
|
2023-08-16 14:25:40 +02:00
|
|
|
|
(service tor-service-type
|
|
|
|
|
|
(tor-configuration
|
|
|
|
|
|
(config-file (plain-file "torrc" "SocksPort 127.0.0.1:9050 IsolateDestAddr"))))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
|
|
|
|
|
|
;; Desktop.
|
2023-03-19 11:32:50 +01:00
|
|
|
|
(service udisks-service-type)
|
2021-10-06 19:01:32 +02:00
|
|
|
|
(service upower-service-type)
|
|
|
|
|
|
(service alsa-service-type)
|
|
|
|
|
|
(service pcscd-service-type)
|
2023-08-16 14:25:40 +02:00
|
|
|
|
|
|
|
|
|
|
(service screen-locker-service-type
|
|
|
|
|
|
(screen-locker-configuration
|
|
|
|
|
|
(name "swaylock")
|
|
|
|
|
|
(program (file-append swaylock "/bin/swaylock"))
|
|
|
|
|
|
(using-pam? #t)
|
|
|
|
|
|
(using-setuid? #f)))
|
2021-10-06 19:01:32 +02:00
|
|
|
|
|
|
|
|
|
|
(service qemu-binfmt-service-type
|
|
|
|
|
|
(qemu-binfmt-configuration
|
|
|
|
|
|
(platforms (lookup-qemu-platforms "arm" "aarch64" "mips64el" "x86"))))
|
|
|
|
|
|
|
2023-08-16 14:25:40 +02:00
|
|
|
|
(modify-services (base-services)
|
|
|
|
|
|
(delete login-service-type)
|
|
|
|
|
|
(delete mingetty-service-type)
|
2021-10-06 19:01:32 +02:00
|
|
|
|
;; Don’t use up all CPU (and RAM) when compiling.
|
|
|
|
|
|
(guix-service-type config =>
|
|
|
|
|
|
(guix-configuration
|
|
|
|
|
|
(inherit config)
|
|
|
|
|
|
(extra-options '("--cores=2"))))))))
|
