Move linux into its own directory

2022-09-04 01:59:56 -04:00 · 2022-09-04 01:59:56 -04:00 · 9817f1998f
parent 8f231ab2ab
commit 9817f1998f
20 changed files with 122 additions and 115 deletions
--- a/flake.nix
+++ b/flake.nix
@ -86,7 +86,7 @@
        modules = [
          sops-nix.nixosModules.sops
          home-manager.nixosModules.home-manager
-          ./modules/default.nix
+          ./modules/linux/default.nix
          ({ pkgs, lib, config, ... }: {
            # Configure hostname
            networking = {
--- a/modules/base.nix
+++ b/modules/base.nix
@ -1,14 +0,0 @@
-{ config, lib, pkgs, ... }:
-
-with lib; {
-
-  config = {
-    nix = mkIf config.nathan.config.nix.autoGC {
-      gc = {
-        automatic = true;
-        dates = "weekly";
-        options = "--delete-older-than 7d";
-      };
-    };
-  };
-}
--- a/modules/linux/base.nix
+++ b/modules/linux/base.nix
@ -1,59 +1,14 @@
-{ config, lib, pkgs, inputs, ... }@attrs:
-with lib;
-{
-  config = mkMerge [
-    (mkIf pkgs.stdenv.isLinux
-      {
-        zramSwap = mkIf config.nathan.services.zramSwap
-          {
-            enable = true;
-            algorithm = "lz4";
-            memoryPercent = 25;
-          };
-        nix = mkIf config.nathan.config.nix.autoGC {
-          autoOptimiseStore = true;
-        };
-      })
-    (mkIf config.nathan.config.harden (import "${inputs.nixpkgs}/nixos/modules/profiles/hardened.nix" attrs))
-    (mkIf config.nathan.config.harden {
-      boot.kernelPackages = pkgs.linuxPackages_5_18_hardened;
-      security = {
-        allowSimultaneousMultithreading = true;
-        unprivilegedUsernsClone = true;
+{ config, lib, pkgs, ... }:
+
+with lib; {
+
+  config = {
+    nix = mkIf config.nathan.config.nix.autoGC {
+      gc = {
+        automatic = true;
+        dates = "weekly";
+        options = "--delete-older-than 7d";
      };
-    })
-    (mkIf ((! config.nathan.config.harden) && config.nathan.config.isDesktop) {
-      # Use the zen kernel with muqss turned on
-      boot.kernelPackages =
-        let
-          linuxZenWMuQSS = pkgs.linuxPackagesFor (pkgs.linuxPackages_zen.kernel.override {
-            structuredExtraConfig = with lib.kernel; {
-              SCHED_MUQSS = yes;
-            };
-            ignoreConfigErrors = true;
-          }
-          );
-        in
-        linuxZenWMuQSS;
-    })
-    (mkIf
-      (config.nathan.config.nix.autoUpdate && pkgs.stdenv.isLinux)
-      {
-        # Auto update daily at 2 am
-        system.autoUpgrade = {
-          enable = true;
-          allowReboot = true;
-          # Update from the flake
-          flake = "github:nathans-flakes/system";
-          # Attempt to update daily at 2AM
-          dates = "2:00";
-        };
-      })
-    # Systemd user service cludge
-    {
-      systemd.user.extraConfig = ''
-        DefaultEnvironment="PATH=/run/current-system/sw/bin:/etc/profiles/per-user/${config.nathan.config.user}/bin"
-      '';
-    }
-  ];
+    };
+  };
 }
--- a/modules/linux/default.nix
+++ b/modules/linux/default.nix
@ -0,0 +1,44 @@
+{ config, lib, pkgs, ... }:
+let
+  inherit (import ../lib.nix { inherit lib; inherit pkgs; }) nLib;
+in
+{
+  imports = [
+    ../options.nix
+    ./base.nix
+    ./user.nix
+    ./desktop.nix
+    ./swaywm.nix
+    ./hardware.nix
+    ./virtualization.nix
+    ./windows.nix
+    ./programs/games.nix
+    ./programs/gpg.nix
+    ./programs/utils.nix
+    ./services/ssh.nix
+    ./services/tailscale.nix
+    ./services/borg.nix
+    ./services/nginx.nix
+    ./services/matrix.nix
+    ./linux/base.nix
+  ];
+
+  config = {
+    # Enable the firewall
+    networking.firewall.enable = true;
+    # Enable unfree packages
+    nixpkgs.config.allowUnfree = config.nathan.config.enableUnfree;
+    # Work around for discord jank ugh
+    nixpkgs.config.permittedInsecurePackages = [
+      "electron-13.6.9"
+    ];
+    # Set system state version
+    system.stateVersion = "22.05";
+    # Enable flakes
+    # Enable nix flakes
+    nix.package = pkgs.nixFlakes;
+    nix.extraOptions = ''
+      experimental-features = nix-command flakes
+    '';
+  };
+}
--- a/modules/linux/desktop.nix
+++ b/modules/linux/desktop.nix
--- a/modules/linux/hardware.nix
+++ b/modules/linux/hardware.nix
--- a/modules/linux/linux/base.nix
+++ b/modules/linux/linux/base.nix
@ -0,0 +1,59 @@
+{ config, lib, pkgs, inputs, ... }@attrs:
+with lib;
+{
+  config = mkMerge [
+    (mkIf pkgs.stdenv.isLinux
+      {
+        zramSwap = mkIf config.nathan.services.zramSwap
+          {
+            enable = true;
+            algorithm = "lz4";
+            memoryPercent = 25;
+          };
+        nix = mkIf config.nathan.config.nix.autoGC {
+          autoOptimiseStore = true;
+        };
+      })
+    (mkIf config.nathan.config.harden (import "${inputs.nixpkgs}/nixos/modules/profiles/hardened.nix" attrs))
+    (mkIf config.nathan.config.harden {
+      boot.kernelPackages = pkgs.linuxPackages_5_18_hardened;
+      security = {
+        allowSimultaneousMultithreading = true;
+        unprivilegedUsernsClone = true;
+      };
+    })
+    (mkIf ((! config.nathan.config.harden) && config.nathan.config.isDesktop) {
+      # Use the zen kernel with muqss turned on
+      boot.kernelPackages =
+        let
+          linuxZenWMuQSS = pkgs.linuxPackagesFor (pkgs.linuxPackages_zen.kernel.override {
+            structuredExtraConfig = with lib.kernel; {
+              SCHED_MUQSS = yes;
+            };
+            ignoreConfigErrors = true;
+          }
+          );
+        in
+        linuxZenWMuQSS;
+    })
+    (mkIf
+      (config.nathan.config.nix.autoUpdate && pkgs.stdenv.isLinux)
+      {
+        # Auto update daily at 2 am
+        system.autoUpgrade = {
+          enable = true;
+          allowReboot = true;
+          # Update from the flake
+          flake = "github:nathans-flakes/system";
+          # Attempt to update daily at 2AM
+          dates = "2:00";
+        };
+      })
+    # Systemd user service cludge
+    {
+      systemd.user.extraConfig = ''
+        DefaultEnvironment="PATH=/run/current-system/sw/bin:/etc/profiles/per-user/${config.nathan.config.user}/bin"
+      '';
+    }
+  ];
+}
--- a/modules/linux/programs/games.nix
+++ b/modules/linux/programs/games.nix
@ -10,8 +10,8 @@ with lib;
        # https://github.com/Admicos/minecraft-wayland
        glfw-patched = pkgs.glfw-wayland.overrideAttrs (attrs: {
          patches = attrs.patches ++ [
-            ../../patches/minecraft/0003-Don-t-crash-on-calls-to-focus-or-icon.patch
-            ../../patches/minecraft/0004-wayland-fix-broken-opengl-screenshots-on-mutter.patch
+            ../../../patches/minecraft/0003-Don-t-crash-on-calls-to-focus-or-icon.patch
+            ../../../patches/minecraft/0004-wayland-fix-broken-opengl-screenshots-on-mutter.patch
          ];
        });
        stable-packages = with pkgs; [
--- a/modules/linux/programs/gpg.nix
+++ b/modules/linux/programs/gpg.nix
--- a/modules/linux/programs/utils.nix
+++ b/modules/linux/programs/utils.nix
--- a/modules/linux/services/borg.nix
+++ b/modules/linux/services/borg.nix
--- a/modules/linux/services/matrix.nix
+++ b/modules/linux/services/matrix.nix
--- a/modules/linux/services/nginx.nix
+++ b/modules/linux/services/nginx.nix
--- a/modules/linux/services/ssh.nix
+++ b/modules/linux/services/ssh.nix
--- a/modules/linux/services/tailscale.nix
+++ b/modules/linux/services/tailscale.nix
@ -16,7 +16,7 @@ with lib;

    # Setup sops
    sops.secrets."tailscale-auth" = {
-      sopsFile = ../../secrets/all/tailscale.yaml;
+      sopsFile = ../../../secrets/all/tailscale.yaml;
      format = "yaml";
    };

--- a/modules/linux/swaywm.nix
+++ b/modules/linux/swaywm.nix
--- a/modules/linux/user.nix
+++ b/modules/linux/user.nix
--- a/modules/linux/virtualization.nix
+++ b/modules/linux/virtualization.nix
--- a/modules/linux/windows.nix
+++ b/modules/linux/windows.nix
@ -23,8 +23,8 @@ with lib;{
        serviceConfig = {
          Type = "forking";
          ExecStart =
-            "${../scripts/windows/mount.sh} ${mount.device} ${mount.mountPoint} ${mount.keyFile}";
-          ExecStop = "${../scripts/windows/unmount.sh} ${mount.device} ${mount.mountPoint}";
+            "${../../scripts/windows/mount.sh} ${mount.device} ${mount.mountPoint} ${mount.keyFile}";
+          ExecStop = "${../../scripts/windows/unmount.sh} ${mount.device} ${mount.mountPoint}";
        };
      };
  };
--- a/modules/options.nix
+++ b/modules/options.nix
@ -1,27 +1,9 @@
 { config, lib, pkgs, ... }:
+
 let
  inherit (import ./lib.nix { inherit lib; inherit pkgs; }) nLib;
 in
 {
-  imports = [
-    ./base.nix
-    ./user.nix
-    ./desktop.nix
-    ./swaywm.nix
-    ./hardware.nix
-    ./virtualization.nix
-    ./windows.nix
-    ./programs/games.nix
-    ./programs/gpg.nix
-    ./programs/utils.nix
-    ./services/ssh.nix
-    ./services/tailscale.nix
-    ./services/borg.nix
-    ./services/nginx.nix
-    ./services/matrix.nix
-    ./linux/base.nix
-  ];
-
  options = with lib; with nLib; {
    nathan = {
      # Control enabling of services
@ -199,23 +181,4 @@ in
      };
    };
  };
-
-  config = {
-    # Enable the firewall
-    networking.firewall.enable = true;
-    # Enable unfree packages
-    nixpkgs.config.allowUnfree = config.nathan.config.enableUnfree;
-    # Work around for discord jank ugh
-    nixpkgs.config.permittedInsecurePackages = [
-      "electron-13.6.9"
-    ];
-    # Set system state version
-    system.stateVersion = "22.05";
-    # Enable flakes
-    # Enable nix flakes
-    nix.package = pkgs.nixFlakes;
-    nix.extraOptions = ''
-      experimental-features = nix-command flakes
-    '';
-  };
 }