nixos_config/nixos/modules/base.nix

{ config, pkgs, lib, repoLocalPath, ... }:
{
  boot = {
    kernelPackages = lib.mkDefault pkgs.linuxPackages_latest;
    kernel.sysctl = {
      "net.ipv4.ip_unprivileged_port_start" = 0;
    };
    initrd = {
      network = {
        ssh.shell = pkgs.bash;
      };
    };
  };

  security.sudo-rs.enable = true;
  system.stateVersion = "24.05";

  system.autoUpgrade = {
    enable = true;
    persistent = true;
    flake = repoLocalPath;
    flags = [
      "--print-build-logs"
      "--no-write-lock-file"
    ];
    dates = "daily";
  };

  nix = {
    settings = {
      experimental-features = [ "nix-command" "flakes" ];
      auto-optimise-store = true;
      trusted-users = [ "root" "alisceon" ];
    };
    gc = {
      automatic = true;
      persistent = true;
      dates = "daily";
      options = "--delete-older-than 7d";
    };
    registry = {
      templates.to = {
        type = "git";
        url = "git+ssh://git@git.malice.zone/alisceon/devenv_templates.git";
      };
      nixpkgs.to = {
        type = "github";
        owner = "NixOS";
        repo = "nixpkgs";
        ref = "nixos-unstable";
      };
      nixpkgs-stable.to = {
        type = "github";
        owner = "NixOS";
        repo = "nixpkgs";
        ref = "nixos-25.05";
      };
    };
  };

  console.keyMap = "sv-latin1";
  networking.networkmanager.enable = true;
  time.timeZone = "Europe/Stockholm";
  i18n.defaultLocale = "en_US.UTF-8";
  i18n.extraLocaleSettings = {
    LC_ADDRESS = "sv_SE.UTF-8";
    LC_IDENTIFICATION = "sv_SE.UTF-8";
    LC_MEASUREMENT = "sv_SE.UTF-8";
    LC_MONETARY = "sv_SE.UTF-8";
    LC_NAME = "sv_SE.UTF-8";
    LC_NUMERIC = "sv_SE.UTF-8";
    LC_PAPER = "sv_SE.UTF-8";
    LC_TELEPHONE = "sv_SE.UTF-8";
    LC_TIME = "sv_SE.UTF-8";
  };

  environment = {
    systemPackages = with pkgs; [
      libressl
      git
      wget
      curl
      btop
      ripgrep
      fd
      nh
      jq
      ncdu
      pciutils
      usbutils
      tree
      fzf
      psmisc
      pv
      file
      nix-tree
      unzip
      lsd
      bash
      nushell
      fish
      powershell
      python3
      python3Packages.python-lsp-server
      podman
    ];

    shells = with pkgs; [
      bash
      nushell
      fish
      powershell
      xonsh
    ];

    etc."current-system-packages".text =
      let
        packages = builtins.map (p: "${p.name}:\t${p}") config.environment.systemPackages;
        sortedUnique = builtins.sort builtins.lessThan (pkgs.lib.lists.unique packages);
      in
      pkgs.lib.strings.concatLines sortedUnique;
  };

  virtualisation = {
    libvirtd = {
      enable = true;
      qemu.swtpm.enable = true;
    };
    containers.enable = true;
    docker.enable = true;
    podman = {
      enable = true;
      dockerCompat = false;
      defaultNetwork.settings.dns_enabled = true;
    };
    oci-containers.backend = "podman";
  };

  users = {
    defaultUserShell = pkgs.bash;
    groups.docker = { };
    users.alisceon = {
      isNormalUser = true;
      extraGroups = [ "wheel" "networkmanager" "podman" "docker" "libvirtd" ];
      shell = pkgs.xonsh;
      openssh.authorizedKeys.keys = [
        "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPN1Cd2UlHo03Jqgi5Yb4io/3gh/X4wCb8LcmKlpAovQa271CKDBtYOUKn+Fts03g6dBMfaWMty6VGPMGDMONmc= alisceon@electra"
        "ssh-rsa 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 user@hannah.afk"
      ];
    };
  };

  programs = {
    command-not-found.enable = true;
    fzf.fuzzyCompletion = true;
    xonsh = {
      enable = true;
      extraPackages = ps: with ps; [
        pyperclip
        xonsh.xontribs.xonsh-direnv
        pkgs.nur.repos.xonsh-xontribs.xontrib-fish-completer
        pkgs.nur.repos.xonsh-xontribs.xontrib-abbrevs
        pkgs.nur.repos.xonsh-xontribs.xontrib-clp
        pkgs.nur.repos.xonsh-xontribs.xontrib-bashisms
        (
          ps.buildPythonPackage
          rec {
            name = "xontrib-fzf-completions";
            version = "v0.0.2";
            format = "pyproject";
            nativeBuildInputs = [ ps.setuptools ps.setuptools-scm ps.wheel ];
            propagatedBuildInputs = [ ps.xonsh ];
            src = pkgs.fetchFromGitHub {
              owner = "doronz88";
              repo = "${name}";
              rev = "${version}";
              sha256 = "sha256-1z5xHX4Psevn8686QkwIzv/LOJ5IMJc2nQ5Hg/2svTc=";
            };
            meta = {
              homepage = "https://github.com/doronz88/xontrib-fzf-completions";
              description = "fuzzy completions for xonsh";
              license = pkgs.lib.licenses.mit;
              maintainers = [ ];
            };
          }
        )
      ];
      config = builtins.readFile ../../home/conf/xonsh/xonshrc;
    };
  };
}
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`{ config, pkgs, lib, repoLocalPath, ... }:`
			`{`
kernel fuckery 2025-12-07 12:36:40 +01:00			`boot = {`
			`kernelPackages = lib.mkDefault pkgs.linuxPackages_latest;`
			`kernel.sysctl = {`
			`"net.ipv4.ip_unprivileged_port_start" = 0;`
			`};`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`initrd = {`
			`network = {`
shell fixes 2026-02-01 17:33:45 +01:00			`ssh.shell = pkgs.bash;`
we may never be right 2026-02-01 17:34:19 +01:00			`};`
			`};`
allow port hijinks 2025-08-02 10:49:11 +02:00			`};`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
iter 2026-03-10 10:31:16 +01:00			`security.sudo-rs.enable = true;`
officially cooked 2025-07-23 19:46:26 +02:00			`system.stateVersion = "24.05";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
develing 2025-07-29 11:25:40 +02:00			`system.autoUpgrade = {`
			`enable = true;`
			`persistent = true;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`flake = repoLocalPath;`
develing 2025-07-29 11:25:40 +02:00			`flags = [`
some pitchy patches 2026-01-30 16:41:25 +01:00			`"--print-build-logs"`
			`"--no-write-lock-file"`
develing 2025-07-29 11:25:40 +02:00			`];`
			`dates = "daily";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
develing 2025-07-29 11:25:40 +02:00
			`nix = {`
			`settings = {`
			`experimental-features = [ "nix-command" "flakes" ];`
			`auto-optimise-store = true;`
			`trusted-users = [ "root" "alisceon" ];`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
develing 2025-07-29 11:25:40 +02:00			`gc = {`
			`automatic = true;`
			`persistent = true;`
			`dates = "daily";`
regress 2025-08-08 14:43:40 +02:00			`options = "--delete-older-than 7d";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
develing 2025-07-29 11:25:40 +02:00			`registry = {`
			`templates.to = {`
			`type = "git";`
			`url = "git+ssh://git@git.malice.zone/alisceon/devenv_templates.git";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
testing nushell 2025-08-08 21:43:53 +02:00			`nixpkgs.to = {`
			`type = "github";`
			`owner = "NixOS";`
			`repo = "nixpkgs";`
			`ref = "nixos-unstable";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
testing nushell 2025-08-08 21:43:53 +02:00			`nixpkgs-stable.to = {`
			`type = "github";`
			`owner = "NixOS";`
			`repo = "nixpkgs";`
			`ref = "nixos-25.05";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
			`};`
			`};`
officially cooked 2025-07-23 19:46:19 +02:00
officially cooked 2025-07-23 19:46:26 +02:00			`console.keyMap = "sv-latin1";`
officially cooked 2025-07-23 19:46:19 +02:00			`networking.networkmanager.enable = true;`
			`time.timeZone = "Europe/Stockholm";`
			`i18n.defaultLocale = "en_US.UTF-8";`
			`i18n.extraLocaleSettings = {`
			`LC_ADDRESS = "sv_SE.UTF-8";`
			`LC_IDENTIFICATION = "sv_SE.UTF-8";`
			`LC_MEASUREMENT = "sv_SE.UTF-8";`
			`LC_MONETARY = "sv_SE.UTF-8";`
			`LC_NAME = "sv_SE.UTF-8";`
			`LC_NUMERIC = "sv_SE.UTF-8";`
			`LC_PAPER = "sv_SE.UTF-8";`
			`LC_TELEPHONE = "sv_SE.UTF-8";`
			`LC_TIME = "sv_SE.UTF-8";`
			`};`

develing 2025-07-29 11:25:40 +02:00			`environment = {`
			`systemPackages = with pkgs; [`
just a lil utility 2026-02-03 17:12:17 +01:00			`libressl`
develing 2025-07-29 11:25:40 +02:00			`git`
			`wget`
			`curl`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`btop`
			`ripgrep`
			`fd`
			`nh`
			`jq`
conf conf 2025-08-25 10:01:53 +02:00			`ncdu`
			`pciutils`
			`usbutils`
			`tree`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`fzf`
brew install pv 2025-11-09 20:26:03 +01:00			`psmisc`
			`pv`
stylix and bugfixes 2026-01-08 18:05:08 +01:00			`file`
just a lil utility 2026-02-03 17:12:17 +01:00			`nix-tree`
add new extension 2026-02-05 11:49:37 +01:00			`unzip`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`lsd`
develing 2025-07-29 11:25:40 +02:00			`bash`
testing nushell 2025-08-08 21:43:53 +02:00			`nushell`
			`fish`
			`powershell`
towermods 2025-08-25 10:39:22 +02:00			`python3`
xonshin out 2025-09-08 13:30:20 +02:00			`python3Packages.python-lsp-server`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`podman`
			`];`
ey im xonshing here! 2025-09-04 15:05:45 +02:00
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`shells = with pkgs; [`
testing nushell 2025-08-08 21:43:53 +02:00			`bash`
			`nushell`
			`fish`
			`powershell`
wait a minute 2025-09-03 23:26:51 +02:00			`xonsh`
unlinkified 2025-08-14 12:27:04 +02:00			`];`
entirely vibed refactor 2026-03-10 21:50:51 +01:00
just a lil utility 2026-02-03 17:12:17 +01:00			`etc."current-system-packages".text =`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`let`
			`packages = builtins.map (p: "${p.name}:\t${p}") config.environment.systemPackages;`
			`sortedUnique = builtins.sort builtins.lessThan (pkgs.lib.lists.unique packages);`
			`in`
			`pkgs.lib.strings.concatLines sortedUnique;`
			`};`
officially cooked 2025-07-23 19:46:19 +02:00
we servering 2025-09-24 18:23:45 +02:00			`virtualisation = {`
iter 2026-03-06 15:09:04 +01:00			`libvirtd = {`
			`enable = true;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`qemu.swtpm.enable = true;`
iter 2026-03-06 15:09:04 +01:00			`};`
we servering 2025-09-24 18:23:45 +02:00			`containers.enable = true;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`docker.enable = true;`
we servering 2025-09-24 18:23:45 +02:00			`podman = {`
			`enable = true;`
nocker compat 2026-05-07 22:28:52 +02:00			`dockerCompat = false;`
we servering 2025-09-24 18:23:45 +02:00			`defaultNetwork.settings.dns_enabled = true;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
we servering 2025-09-24 18:23:45 +02:00			`oci-containers.backend = "podman";`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
officially cooked 2025-07-23 19:46:19 +02:00
iter 2026-03-06 15:09:04 +01:00			`users = {`
			`defaultUserShell = pkgs.bash;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`groups.docker = { };`
iter 2026-03-06 15:09:04 +01:00			`users.alisceon = {`
			`isNormalUser = true;`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`extraGroups = [ "wheel" "networkmanager" "podman" "docker" "libvirtd" ];`
iter 2026-03-06 15:09:04 +01:00			`shell = pkgs.xonsh;`
			`openssh.authorizedKeys.keys = [`
			`"ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPN1Cd2UlHo03Jqgi5Yb4io/3gh/X4wCb8LcmKlpAovQa271CKDBtYOUKn+Fts03g6dBMfaWMty6VGPMGDMONmc= alisceon@electra"`
			"ssh-rsa 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 user@hannah.afk"
			`];`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`};`
			`};`
conf conf 2025-08-25 10:01:53 +02:00
wait a minute 2025-09-03 23:26:51 +02:00			`programs = {`
			`command-not-found.enable = true;`
we got the fuzzy 2025-09-04 15:13:04 +02:00			`fzf.fuzzyCompletion = true;`
wait a minute 2025-09-03 23:26:51 +02:00			`xonsh = {`
			`enable = true;`
ey im xonshing here! 2025-09-04 15:05:45 +02:00			`extraPackages = ps: with ps; [`
			`pyperclip`
we are THIS close now 2025-09-04 09:30:33 +02:00			`xonsh.xontribs.xonsh-direnv`
ey im xonshing here! 2025-09-04 15:05:45 +02:00			`pkgs.nur.repos.xonsh-xontribs.xontrib-fish-completer`
			`pkgs.nur.repos.xonsh-xontribs.xontrib-abbrevs`
			`pkgs.nur.repos.xonsh-xontribs.xontrib-clp`
			`pkgs.nur.repos.xonsh-xontribs.xontrib-bashisms`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`(`
			`ps.buildPythonPackage`
			`rec {`
			`name = "xontrib-fzf-completions";`
			`version = "v0.0.2";`
			`format = "pyproject";`
ey im xonshing here! 2025-09-04 15:05:45 +02:00			`nativeBuildInputs = [ ps.setuptools ps.setuptools-scm ps.wheel ];`
entirely vibed refactor 2026-03-10 21:50:51 +01:00			`propagatedBuildInputs = [ ps.xonsh ];`
			`src = pkgs.fetchFromGitHub {`
			`owner = "doronz88";`
			`repo = "${name}";`
			`rev = "${version}";`
			`sha256 = "sha256-1z5xHX4Psevn8686QkwIzv/LOJ5IMJc2nQ5Hg/2svTc=";`
			`};`
			`meta = {`
			`homepage = "https://github.com/doronz88/xontrib-fzf-completions";`
			`description = "fuzzy completions for xonsh";`
			`license = pkgs.lib.licenses.mit;`
			`maintainers = [ ];`
			`};`
			`}`
			`)`
			`];`
			`config = builtins.readFile ../../home/conf/xonsh/xonshrc;`
			`};`
			`};`
			`}`