{ config , lib , pkgs , modulesPath , system , inputs , ... }: { imports = [ (modulesPath + "/installer/scan/not-detected.nix") inputs.nixos-hardware.nixosModules.common-cpu-amd inputs.nixos-hardware.nixosModules.common-cpu-amd-pstate inputs.nixos-hardware.nixosModules.common-gpu-amd inputs.nixos-hardware.nixosModules.common-pc inputs.nixos-hardware.nixosModules.common-pc-ssd ../../os-mods/amdgpu ../../os-mods/cachix ../../os-mods/common ../../os-mods/desktop ../../os-mods/desktop/audio.nix ../../os-mods/desktop/gaming.nix ../../os-mods/desktop/printing.nix ../../os-mods/netdata ../../os-mods/network ../../os-mods/virt ../../users ./disko.nix ]; config = let hid-fanatecff = pkgs.callPackage ../../pkgs/hid-fanatecff.nix { kernelPackages = config.boot.kernelPackages; }; in { system.stateVersion = "23.05"; nix.settings.system-features = [ "benchmark" "big-parallel" "kvm" "nixos-test" "gccarch-x86-64-v3" "gccarch-znver3" ]; boot = { kernelPackages = pkgs.pkgsx86_64_v3.linuxPackages_cachyos; # extraModulePackages = [ hid-fanatecff ]; loader = { systemd-boot = { enable = lib.mkForce false; #lanzaboote configurationLimit = 16; }; efi.canTouchEfiVariables = true; }; # TODO Extract secureboot module lanzaboote = { enable = true; configurationLimit = 16; pkiBundle = "/etc/secureboot"; }; initrd = { availableKernelModules = [ "ahci" "nvme" "xhci_pci" "uas" "usbhid" "usb_storage" "sd_mod" ]; kernelModules = [ ]; systemd.enable = true; }; }; programs.fuse.userAllowOther = true; environment.systemPackages = with pkgs; [ lm_sensors sshfs coreutils-full cpu-x sbctl # secureboot debugging/config/mgmt ]; services.btrfs.autoScrub.enable = true; # services.udev.packages = [ hid-fanatecff ]; networking = { hostName = "nixos-desk"; useDHCP = lib.mkDefault true; }; hardware = { enableRedistributableFirmware = true; }; zramSwap.enable = true; }; }