mirror of
https://github.com/CHN-beta/nixos.git
synced 2024-10-23 15:29:10 +08:00
54 lines
1.4 KiB
Nix
54 lines
1.4 KiB
Nix
{ hostName }: inputs:
|
|
{
|
|
config =
|
|
{
|
|
nixpkgs.hostPlatform = inputs.lib.mkDefault "x86_64-linux";
|
|
nix =
|
|
{
|
|
settings =
|
|
{
|
|
experimental-features = [ "nix-command" "flakes" ];
|
|
keep-outputs = true;
|
|
system-features = [ "big-parallel" ];
|
|
keep-failed = true;
|
|
auto-optimise-store = true;
|
|
};
|
|
daemonIOSchedClass = "idle";
|
|
daemonCPUSchedPolicy = "idle";
|
|
};
|
|
networking.hostName = hostName;
|
|
time.timeZone = "Asia/Shanghai";
|
|
system =
|
|
{
|
|
stateVersion = "22.11";
|
|
configurationRevision = inputs.topInputs.self.rev or "dirty";
|
|
};
|
|
nixpkgs.config.allowUnfree = true;
|
|
systemd =
|
|
{
|
|
extraConfig =
|
|
"
|
|
DefaultTimeoutStopSec=10s
|
|
DefaultLimitNOFILE=1048576:1048576
|
|
";
|
|
user.extraConfig = "DefaultTimeoutStopSec=10s";
|
|
sleep.extraConfig = "SuspendState=freeze";
|
|
services.nix-daemon.serviceConfig = { Slice = "-.slice"; Nice = "19"; };
|
|
};
|
|
programs.nix-ld.enable = true;
|
|
boot = { supportedFilesystems = [ "ntfs" ]; consoleLogLevel = 7; };
|
|
hardware.enableAllFirmware = true;
|
|
security.pam =
|
|
{
|
|
u2f = { enable = true; cue = true; authFile = ./u2f_keys; };
|
|
services = builtins.listToAttrs (builtins.map (name: { inherit name; value = { u2fAuth = true; }; })
|
|
[ "login" "sudo" "su" "kde" "polkit-1" ]);
|
|
};
|
|
systemd.nspawn.arch =
|
|
{
|
|
execConfig.PrivateUsers = false;
|
|
networkConfig.VirtualEthernet = false;
|
|
};
|
|
};
|
|
}
|