colin
d13bcc49ab
longer-term, i want hosts/by-name to define host-specific data that's accessible via the other hosts (things like pubkeys). also the secrets management needs some rethinking. there's really not much point in me specifiying where *exactly* a secret comes from at its use site. i should really be specifying secret store manifests; i.e. "servo.yaml contains secrets X Y and Z", and leaving the rest up to auto-computing.
26 lines
829 B
Nix
26 lines
829 B
Nix
{ lib, pkgs, ... }:
|
|
|
|
{
|
|
config = lib.mkIf (pkgs.system == "x86_64-linux") {
|
|
boot.initrd.availableKernelModules = [
|
|
"xhci_pci" "ahci" "sd_mod" "sdhci_pci" # nixos-generate-config defaults
|
|
"usb_storage" # rpi needed this to boot from usb storage, i think.
|
|
"nvme" # to boot from nvme devices
|
|
# efi_pstore evivars
|
|
];
|
|
|
|
# enable cross compilation
|
|
boot.binfmt.emulatedSystems = [ "aarch64-linux" ];
|
|
# nixpkgs.config.allowUnsupportedSystem = true;
|
|
# nixpkgs.crossSystem.system = "aarch64-linux";
|
|
|
|
powerManagement.cpuFreqGovernor = "powersave";
|
|
hardware.cpu.amd.updateMicrocode = true; # desktop
|
|
hardware.cpu.intel.updateMicrocode = true; # laptop
|
|
|
|
hardware.opengl.driSupport = true;
|
|
# For 32 bit applications
|
|
hardware.opengl.driSupport32Bit = true;
|
|
};
|
|
}
|