blob: 75e5d04ea54cc497a526e5a8a3bbe7038c78ac36 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
|
;;; SPDX-License-Identifier: GPL-3.0-or-later
;;; SPDX-FileCopyrightText: 2024-2025 Marek Paśnikowski <marek@marekpasnikowski.pl>
(define-module (deployment systems mcdowell)
#:use-module ( (gnu packages package-management)
#:prefix gnu:packages:package-management:)
#:use-module ( (gnu services)
#:prefix gnu:services:)
#:use-module ( (gnu services base)
#:prefix gnu:services:base:)
#:use-module ( (gnu services guix)
#:prefix gnu:services:guix:)
#:use-module ( (gnu services ssh)
#:prefix gnu:services:ssh:)
#:use-module ( (gnu system)
#:prefix gnu:system:)
#:use-module ( (gnu system file-systems)
#:prefix gnu:system:file-systems:)
#:use-module ( (gnu system linux-initrd)
#:prefix gnu:system:linux-initrd:)
#:use-module ( (gnu system shadow)
#:prefix gnu:system:shadow:)
#:use-module ( (nongnu packages linux)
#:prefix nongnu:packages:linux:)
#:use-module ( (nongnu system linux-initrd)
#:prefix nongnu:system:linux-initrd:)
#:use-module ( (sovereign channels)
#:prefix sovereign:channels:)
#:use-module ( (sovereign devices)
#:prefix sovereign:devices:)
#:use-module ( (sovereign devices amd64)
#:prefix sovereign:devices:amd64:)
#:use-module ( (sovereign packages protonmail)
#:prefix sovereign:packages:protonmail:)
#:use-module ( (sovereign systems)
#:prefix sovereign:systems:)
#:use-module ( (users id1000)
#:prefix users:id1000:))
(define system-name
"mcdowell")
(define file-system-efi
(let*
( (l-system-name (string-upcase system-name))
(l-device (sovereign:devices:file-system-label l-system-name)))
(gnu:system:file-systems:file-system
(inherit sovereign:devices:file-system/efi)
(device l-device))))
(define file-system-root
(let
( (l-device (sovereign:devices:file-system-label system-name
"root")))
(gnu:system:file-systems:file-system
(inherit sovereign:devices:file-system/root)
(device l-device))))
(define swap
(let
( (l-target (sovereign:devices:file-system-label system-name
"swap")))
(gnu:system:file-systems:swap-space
(inherit sovereign:devices:swap/no-trim)
(target l-target))))
(define (guix-configuration record)
(let
( (l-channels (list sovereign:channels:default-guix-channel
sovereign:channels:deployment-channel-staging
sovereign:channels:nonguix-channel
sovereign:channels:sovereign-channel-staging)))
(gnu:services:base:guix-configuration
(inherit record)
(guix (gnu:packages:package-management:guix-for-channels l-channels))
(channels l-channels))))
(define guix-publish-configuration
(gnu:services:base:guix-publish-configuration
(host "0.0.0.0")
(port 8080)
(advertise? #t)))
(define guix-publish-service
(gnu:services:service gnu:services:base:guix-publish-service-type
guix-publish-configuration))
(define %sovereign-services*
(gnu:services:modify-services
sovereign:systems:%sovereign-services
(gnu:services:base:guix-service-type
record => (guix-configuration record))))
(define system
(let*
( (l-guix-homes (list users:id1000:name/home-environment))
(l-guix-home-service (sovereign:systems:guix-home-service l-guix-homes))
(l-bootloader (sovereign:devices:amd64:custom-bootloader-configuration system-name))
(l-file-systems (cons* file-system-root
file-system-efi
gnu:system:file-systems:%base-file-systems))
(l-firmware (list nongnu:packages:linux:linux-firmware))
(l-initrd-modules (cons* "mei_me"
gnu:system:linux-initrd:%base-initrd-modules))
(l-services (cons* l-guix-home-service
guix-publish-service
(gnu:services:service gnu:services:ssh:openssh-service-type)
sovereign:packages:protonmail:nogui-profile
%sovereign-services*))
(l-swap-devices (list swap))
(l-users (cons* users:id1000:uid1000-account
gnu:system:shadow:%base-user-accounts)))
(gnu:system:operating-system
(kernel nongnu:packages:linux:linux)
(bootloader l-bootloader)
(label (sovereign:systems:operating-system-label* system-name
(gnu:system:operating-system-default-label gnu:system:this-operating-system)))
(keyboard-layout sovereign:devices:pl-keyboard-layout)
(initrd nongnu:system:linux-initrd:microcode-initrd)
(initrd-modules l-initrd-modules)
(firmware l-firmware)
(host-name system-name)
(file-systems l-file-systems)
(swap-devices l-swap-devices)
(users l-users)
(timezone "Europe/Warsaw")
(locale sovereign:systems:pl-locale)
(locale-definitions sovereign:systems:%sovereign-locale-definitions)
(services l-services)
(sudoers-file sovereign:systems:%sovereign-sudoers-specification))))
(define-public operating-system*
system)
|
