feat!: dynamically create hosts

This commit completely restructures the flake. Hosts are now seperate
from profile configuration files in hosts/[system]. Nixos and Darwin
configurations will be built when present in the respective folders in hosts/

hosts/nixos/nbl-imba-2/default.nix

@@ -0,0 +1,216 @@
+{ self, inputs, outputs, config, pkgs, lib, ... }:
+let
+  profilesPath = "${self}/profiles";
+in
+{
+
+  imports = outputs.nixModules ++ [
+    inputs.nixos-hardware.nixosModules.framework-16-7040-amd
+    inputs.fw-fanctrl.nixosModules.default
+
+    ./hardware-configuration.nix
+    ./disk-config.nix
+
+    "${profilesPath}/optional/nixos/virtualbox.nix"
+    # "${profilesPath}/optional/nixos/vmware.nix"
+    "${profilesPath}/optional/nixos/autologin.nix"
+    "${profilesPath}/optional/nixos/nswitch-rcm.nix"
+    "${profilesPath}/optional/nixos/gaming.nix"
+    "${profilesPath}/optional/nixos/work.nix"
+
+    inputs.home-manager.nixosModules.home-manager
+    {
+      home-manager.users.swarsel.imports = outputs.mixedModules ++ [
+        "${profilesPath}/optional/home/gaming.nix"
+        "${profilesPath}/optional/home/work.nix"
+      ] ++ (builtins.attrValues outputs.homeManagerModules);
+    }
+  ] ++ (builtins.attrValues outputs.nixosModules);
+
+
+  nixpkgs = {
+    overlays = outputs.overlaysList;
+    config = {
+      allowUnfree = true;
+    };
+  };
+
+  networking.networkmanager.wifi.scanRandMacAddress = false;
+
+  boot = {
+    loader.systemd-boot.enable = lib.mkForce false;
+    loader.efi.canTouchEfiVariables = true;
+    lanzaboote = {
+      enable = true;
+      pkiBundle = "/etc/secureboot";
+    };
+    supportedFilesystems = [ "btrfs" ];
+    kernelPackages = lib.mkDefault pkgs.linuxPackages_latest;
+    kernelParams = [
+      "resume_offset=533760"
+    ];
+    resumeDevice = "/dev/disk/by-label/nixos";
+  };
+
+  hardware = {
+    amdgpu = {
+      opencl.enable = true;
+      amdvlk = {
+        enable = true;
+        support32Bit.enable = true;
+      };
+    };
+  };
+
+  programs.fw-fanctrl.enable = true;
+
+  networking = {
+    hostName = "nbl-imba-2";
+    fqdn = "nbl-imba-2.imp.univie.ac.at";
+    firewall.enable = true;
+  };
+
+
+  services = {
+    fwupd.enable = true;
+    udev.extraRules = ''
+      ACTION=="add", SUBSYSTEM=="usb", ATTR{idVendor}=="0bda", ATTR{idProduct}=="8156", ATTR{power/autosuspend}="20"
+    '';
+  };
+
+  swarselsystems = {
+    wallpaper = self + /wallpaper/lenovowp.png;
+    hasBluetooth = true;
+    hasFingerprint = true;
+    impermanence = false;
+    isBtrfs = true;
+  };
+
+  home-manager.users.swarsel.swarselsystems = {
+    isLaptop = true;
+    isNixos = true;
+    isBtrfs = true;
+    # temperatureHwmon = {
+    #   isAbsolutePath = true;
+    #   path = "/sys/devices/platform/thinkpad_hwmon/hwmon/";
+    #   input-filename = "temp1_input";
+    # };
+    #  ------   -----
+    # | DP-4 | |eDP-1|
+    #  ------   -----
+    startup = [
+      { command = "nextcloud --background"; }
+      { command = "vesktop --start-minimized --enable-speech-dispatcher --ozone-platform-hint=auto --enable-features=WaylandWindowDecorations --enable-wayland-ime"; }
+      { command = "element-desktop --hidden  --enable-features=UseOzonePlatform --ozone-platform=wayland --disable-gpu-driver-bug-workarounds"; }
+      { command = "ANKI_WAYLAND=1 anki"; }
+      { command = "OBSIDIAN_USE_WAYLAND=1 obsidian"; }
+      { command = "nm-applet"; }
+      { command = "teams-for-linux"; }
+      { command = "1password"; }
+      { command = "feishin"; }
+    ];
+    sharescreen = "eDP-2";
+    lowResolution = "1280x800";
+    highResolution = "2560x1600";
+    monitors = {
+      main = {
+        name = "BOE 0x0BC9 Unknown";
+        mode = "2560x1600"; # TEMPLATE
+        scale = "1";
+        position = "2560,0";
+        workspace = "15:L";
+        output = "eDP-2";
+      };
+      homedesktop = {
+        name = "Philips Consumer Electronics Company PHL BDM3270 AU11806002320";
+        mode = "2560x1440";
+        scale = "1";
+        position = "0,0";
+        workspace = "1:一";
+        output = "DP-11";
+      };
+      work_back_middle = {
+        name = "LG Electronics LG Ultra HD 0x000305A6";
+        mode = "2560x1440";
+        scale = "1";
+        position = "5120,0";
+        workspace = "1:一";
+        output = "DP-10";
+      };
+      work_front_left = {
+        name = "LG Electronics LG Ultra HD 0x0007AB45";
+        mode = "3840x2160";
+        scale = "1";
+        position = "5120,0";
+        workspace = "1:一";
+        output = "DP-7";
+      };
+      work_back_right = {
+        name = "HP Inc. HP Z32 CN41212T55";
+        mode = "3840x2160";
+        scale = "1";
+        position = "5120,0";
+        workspace = "1:一";
+        output = "DP-3";
+      };
+      work_middle_middle_main = {
+        name = "HP Inc. HP 732pk CNC4080YL5";
+        mode = "3840x2160";
+        scale = "1";
+        position = "-1280,0";
+        workspace = "11:M";
+        output = "DP-8";
+      };
+      work_middle_middle_side = {
+        name = "Hewlett Packard HP Z24i CN44250RDT";
+        mode = "1920x1200";
+        transform = "270";
+        scale = "1";
+        position = "-2480,0";
+        workspace = "12:S";
+        output = "DP-9";
+      };
+      work_seminary = {
+        name = "Applied Creative Technology Transmitter QUATTRO201811";
+        mode = "1280x720";
+        scale = "1";
+        position = "10000,10000"; # i.e. this screen is inaccessible by moving the mouse
+        workspace = "12:S";
+        output = "DP-4";
+      };
+    };
+    inputs = {
+      "12972:18:Framework_Laptop_16_Keyboard_Module_-_ANSI_Keyboard" = {
+        xkb_layout = "us";
+        xkb_variant = "altgr-intl";
+      };
+      "1133:45081:MX_Master_2S_Keyboard" = {
+        xkb_layout = "us";
+        xkb_variant = "altgr-intl";
+      };
+      "2362:628:PIXA3854:00_093A:0274_Touchpad" = {
+        dwt = "enabled";
+        tap = "enabled";
+        natural_scroll = "enabled";
+        middle_emulation = "enabled";
+      };
+      "1133:50504:Logitech_USB_Receiver" = {
+        xkb_layout = "us";
+        xkb_variant = "altgr-intl";
+      };
+      "1133:45944:MX_KEYS_S" = {
+        xkb_layout = "us";
+        xkb_variant = "altgr-intl";
+      };
+    };
+    keybindings = {
+      "Mod4+Ctrl+Shift+p" = "exec screenshare";
+    };
+    shellAliases = {
+      ans2-15_3-9 = ". ~/.venvs/ansible39_2_15_0/bin/activate";
+      ans3-9 = ". ~/.venvs/ansible39/bin/activate";
+      ans = ". ~/.venvs/ansible/bin/activate";
+      ans2-15 = ". ~/.venvs/ansible2.15.0/bin/activate";
+    };
+  };
+}

hosts/nixos/nbl-imba-2/disk-config.nix

@@ -0,0 +1,77 @@
+{
+  disko.devices = {
+    disk = {
+      nvme0n1 = {
+        type = "disk";
+        device = "/dev/nvme0n1";
+        content = {
+          type = "gpt";
+          partitions = {
+            ESP = {
+              label = "boot";
+              name = "ESP";
+              size = "512M";
+              type = "EF00";
+              content = {
+                type = "filesystem";
+                format = "vfat";
+                mountpoint = "/boot";
+                mountOptions = [
+                  "defaults"
+                ];
+              };
+            };
+            luks = {
+              size = "100%";
+              label = "luks";
+              content = {
+                type = "luks";
+                name = "cryptroot";
+                extraOpenArgs = [
+                  "--allow-discards"
+                  "--perf-no_read_workqueue"
+                  "--perf-no_write_workqueue"
+                ];
+                # https://0pointer.net/blog/unlocking-luks2-volumes-with-tpm2-fido2-pkcs11-security-hardware-on-systemd-248.html
+                settings = { crypttabExtraOpts = [ "fido2-device=auto" "token-timeout=10" ]; };
+                content = {
+                  type = "btrfs";
+                  extraArgs = [ "-L" "nixos" "-f" ];
+                  subvolumes = {
+                    "/root" = {
+                      mountpoint = "/";
+                      mountOptions = [ "subvol=root" "compress=zstd" "noatime" ];
+                    };
+                    "/home" = {
+                      mountpoint = "/home";
+                      mountOptions = [ "subvol=home" "compress=zstd" "noatime" ];
+                    };
+                    "/nix" = {
+                      mountpoint = "/nix";
+                      mountOptions = [ "subvol=nix" "compress=zstd" "noatime" ];
+                    };
+                    "/persist" = {
+                      mountpoint = "/persist";
+                      mountOptions = [ "subvol=persist" "compress=zstd" "noatime" ];
+                    };
+                    "/log" = {
+                      mountpoint = "/var/log";
+                      mountOptions = [ "subvol=log" "compress=zstd" "noatime" ];
+                    };
+                    "/swap" = {
+                      mountpoint = "/swap";
+                      swap.swapfile.size = "64G";
+                    };
+                  };
+                };
+              };
+            };
+          };
+        };
+      };
+    };
+  };
+
+  fileSystems."/persist".neededForBoot = true;
+  fileSystems."/var/log".neededForBoot = true;
+}

hosts/nixos/nbl-imba-2/hardware-configuration.nix

@@ -0,0 +1,84 @@
+# Do not modify this file!  It was generated by ‘nixos-generate-config’
+# and may be overwritten by future invocations.  Please make changes
+# to /etc/nixos/configuration.nix instead.
+{ config, lib, modulesPath, ... }:
+
+{
+  imports =
+    [
+      (modulesPath + "/installer/scan/not-detected.nix")
+    ];
+
+  boot.initrd.availableKernelModules = [ "nvme" "xhci_pci" "thunderbolt" "usb_storage" "cryptd" "usbhid" "sd_mod" "r8152" ];
+  boot.initrd.kernelModules = [ ];
+  boot.kernelModules = [ "kvm-amd" ];
+  boot.extraModulePackages = [ ];
+  boot.initrd.luks.devices."cryptroot" = {
+    # improve performance on ssds
+    bypassWorkqueues = true;
+    preLVM = true;
+  };
+
+  # fileSystems."/" =
+  #   {
+  #     device = "/dev/disk/by-uuid/3554892c-9d0b-49b2-b74a-8b5ef45569f7";
+  #     fsType = "btrfs";
+  #     options = [ "subvol=root" ];
+  #   };
+
+  # boot.initrd.luks.devices."cryptroot".device = "/dev/disk/by-uuid/98b9bf76-ca01-49f5-91ee-1884ae9ce383";
+
+  # fileSystems."/boot" =
+  #   {
+  #     device = "/dev/disk/by-uuid/5236-F44A";
+  #     fsType = "vfat";
+  #   };
+
+  # fileSystems."/home" =
+  #   {
+  #     device = "/dev/disk/by-uuid/3554892c-9d0b-49b2-b74a-8b5ef45569f7";
+  #     fsType = "btrfs";
+  #     options = [ "subvol=home" ];
+  #   };
+
+  # fileSystems."/nix" =
+  #   {
+  #     device = "/dev/disk/by-uuid/3554892c-9d0b-49b2-b74a-8b5ef45569f7";
+  #     fsType = "btrfs";
+  #     options = [ "subvol=nix" ];
+  #   };
+
+  # fileSystems."/persist" =
+  #   {
+  #     device = "/dev/disk/by-uuid/3554892c-9d0b-49b2-b74a-8b5ef45569f7";
+  #     fsType = "btrfs";
+  #     options = [ "subvol=persist" ];
+  #   };
+
+  # fileSystems."/swap" =
+  #   {
+  #     device = "/dev/disk/by-uuid/3554892c-9d0b-49b2-b74a-8b5ef45569f7";
+  #     fsType = "btrfs";
+  #     options = [ "subvol=swap" ];
+  #   };
+
+  # fileSystems."/var/log" =
+  #   {
+  #     device = "/dev/disk/by-uuid/3554892c-9d0b-49b2-b74a-8b5ef45569f7";
+  #     fsType = "btrfs";
+  #     options = [ "subvol=log" ];
+  #   };
+
+  # swapDevices = [ ];
+
+  # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
+  # (the default) this is the recommended approach. When using systemd-networkd it's
+  # still possible to use this option, but it's recommended to use it in conjunction
+  # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
+  networking.useDHCP = lib.mkDefault true;
+  # networking.interfaces.enp196s0f3u1c2.useDHCP = lib.mkDefault true;
+  # networking.interfaces.wlp4s0.useDHCP = lib.mkDefault true;
+
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+  hardware.cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
+}