feat: add host 'nixos-unstable' as a testing VM

feat: add nixpkgs-unstable flake input
chore: do not populate nix.registry.<name>.flake directly, use nixpkgs.flake.setFlakeRegistry instead
2025-07-05 12:39:50 +02:00 · 2025-07-05 12:39:25 +02:00 · 2025-07-05 12:38:29 +02:00 · 2025-07-05 12:37:03 +02:00 · 2025-07-05 12:35:56 +02:00
8 changed files with 131 additions and 11 deletions
--- a/flake.lock
+++ b/flake.lock
@@ -50,6 +50,22 @@
        "type": "github"
      }
    },
    "nixpkgs-unstable": {
      "locked": {
        "lastModified": 1751271578,
        "narHash": "sha256-P/SQmKDu06x8yv7i0s8bvnnuJYkxVGBWLWHaU+tt4YY=",
        "owner": "NixOS",
        "repo": "nixpkgs",
        "rev": "3016b4b15d13f3089db8a41ef937b13a9e33a8df",
        "type": "github"
      },
      "original": {
        "owner": "NixOS",
        "ref": "nixos-unstable",
        "repo": "nixpkgs",
        "type": "github"
      }
    },
    "nixpkgs_2": {
      "locked": {
        "lastModified": 1750259320,
@@ -70,7 +86,8 @@
      "inputs": {
        "home-manager": "home-manager",
        "nixos-hardware": "nixos-hardware",
-        "nixpkgs": "nixpkgs_2"
+        "nixpkgs": "nixpkgs_2",
        "nixpkgs-unstable": "nixpkgs-unstable"
      }
    }
  },
--- a/flake.nix
+++ b/flake.nix
@@ -1,11 +1,12 @@
 {
  inputs = {
    nixpkgs.url = "github:NixOS/nixpkgs/nixos-25.05";
    nixpkgs-unstable.url = "github:NixOS/nixpkgs/nixos-unstable";
    home-manager.url = "github:nix-community/home-manager/release-25.05";
    nixos-hardware.url = "github:NixOS/nixos-hardware";
  };
-  outputs = inputs @ { self, nixpkgs, ... }: {
+  outputs = inputs @ { self, nixpkgs, nixpkgs-unstable, ... }: {
    nixosConfigurations.affogato = nixpkgs.lib.nixosSystem {
      system = "x86_64-linux";
      modules = [
@@ -13,5 +14,10 @@
      ];
      specialArgs = { inherit inputs; };
    };
    nixosConfigurations.nixos-unstable = nixpkgs-unstable.lib.nixosSystem {
      modules = [
        ./hosts/nixos-unstable
      ];
    };
  };
 }
--- a/hosts/affogato/default.nix
+++ b/hosts/affogato/default.nix
@@ -11,6 +11,11 @@
    ../../users/leona
  ];
  # add nixpkgs overlay
  nixpkgs.overlays = [
    (import ../../pkgs)
  ];
  # Use the systemd-boot EFI boot loader.
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
--- a/hosts/nixos-unstable/configuration.nix
+++ b/hosts/nixos-unstable/configuration.nix
@@ -0,0 +1,47 @@
 { config, lib, pkgs, ... }:
 {
  # Use the systemd-boot EFI boot loader.
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
  # Use latest kernel.
  boot.kernelPackages = pkgs.linuxPackages_latest;
  networking.hostName = "nixos-unstable"; # Define your hostname.
  # Set your time zone.
  time.timeZone = "Europe/Amsterdam";
  # Select internationalisation properties.
  # i18n.defaultLocale = "en_US.UTF-8";
  # console = {
  #   font = "Lat2-Terminus16";
  #   keyMap = "us";
  #   useXkbConfig = true; # use xkb.options in tty.
  # };
  # Define a user account. Don't forget to set a password with ‘passwd’.
  users.mutableUsers = false;
  users.users.root.hashedPassword = "$y$j9T$i4Yx7PqpLH9bPaNb4SVLm/$dv2gVHCHiRZv.Y00rbNx4QeIExunnfHp57WEnh8qLF1";
  users.users.alice = {
    isNormalUser = true;
    hashedPassword = "";
    extraGroups = [ "wheel" ]; # Enable ‘sudo’ for the user.
    packages = with pkgs; [
      tree
    ];
  };
  environment.systemPackages = with pkgs; [
  ];
  # Open ports in the firewall.
  # networking.firewall.allowedTCPPorts = [ ... ];
  # networking.firewall.allowedUDPPorts = [ ... ];
  # Or disable the firewall altogether.
  # networking.firewall.enable = false;
  system.stateVersion = "25.05"; # Did you read the comment?
 }
--- a/hosts/nixos-unstable/default.nix
+++ b/hosts/nixos-unstable/default.nix
@@ -0,0 +1,7 @@
 { inputs, pkgs, ...}: {
  imports = [
    ./hardware-configuration.nix
    ./configuration.nix
    ../../profiles/base
  ];
 }
--- a/hosts/nixos-unstable/hardware-configuration.nix
+++ b/hosts/nixos-unstable/hardware-configuration.nix
@@ -0,0 +1,35 @@
 { config, lib, pkgs, modulesPath, ... }:
 {
  imports =
    [ (modulesPath + "/profiles/qemu-guest.nix")
    ];
  boot.initrd.availableKernelModules = [ "ahci" "xhci_pci" "virtio_pci" "sr_mod" "virtio_blk" ];
  boot.initrd.kernelModules = [ ];
  boot.initrd.systemd.enable = true;
  boot.kernelModules = [ "kvm-amd" ];
  boot.extraModulePackages = [ ];
  fileSystems."/" =
    { device = "/dev/disk/by-uuid/d696e6e0-64f1-4cb5-9ac6-57a3fd4634cc";
      fsType = "btrfs";
    };
  fileSystems."/boot" =
    { device = "/dev/disk/by-uuid/FA31-9186";
      fsType = "vfat";
      options = [ "fmask=0022" "dmask=0022" ];
    };
  swapDevices = [ ];
  # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
  # (the default) this is the recommended approach. When using systemd-networkd it's
  # still possible to use this option, but it's recommended to use it in conjunction
  # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
  networking.useDHCP = lib.mkDefault true;
  # networking.interfaces.enp1s0.useDHCP = lib.mkDefault true;
  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
 }
--- a/profiles/base/default.nix
+++ b/profiles/base/default.nix
@@ -1,10 +1,7 @@
 { inputs, pkgs, ...}: {
  nixpkgs.overlays = [
    (import ../../pkgs)
  ];
  nixpkgs.config.allowUnfree = true;
  nixpkgs.flake.setFlakeRegistry = true;
  nix.settings.trusted-users = [ "root" "@wheel" ];
  nix.registry.nixpkgs.flake = inputs.nixpkgs;
  nix.extraOptions = ''
    experimental-features = nix-command flakes
  '';
@@ -23,8 +20,7 @@
    };
  };
  environment.shellAliases = {
-    "nixos-switch" = "sudo nixos-rebuild switch --impure --flake .#";
+    "lah" = "ls --color=auto -lah";
    "nom-affogato" = "nom build .#nixosConfigurations.affogato.config.system.build.toplevel --impure";
  };
  environment.variables = {
    EDITOR = "vim";
@@ -41,9 +37,9 @@
    bind.dnsutils
    openssl
    curl
    wget
    htop
-    pinentry
+    usbutils
-    gnupg
+    pciutils
    sequoia
  ];
 }
--- a/users/transcaffeine/default.nix
+++ b/users/transcaffeine/default.nix
@@ -1,4 +1,8 @@
 { pkgs, ... }: {
  environment.shellAliases = {
    "nixos-switch" = "sudo nixos-rebuild switch --impure --flake .#";
    "nom-affogato" = "nom build .#nixosConfigurations.affogato.config.system.build.toplevel --impure";
  };
  users.users.transcaffeine = {
    isNormalUser = true;
    extraGroups = [ "wheel" ];
@@ -6,6 +10,9 @@
      "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQCnjrKWYc0bcIsTkdpyC+yAsxSeY9M1WxVDNm3I/R3BYqyvfFuzJMQyh5APhM52yKGMN9UOuJPNPz0C4P6EY3iC3ZqUHFJ6ILrZZxdLZBVxdy2F19Xv6XcZkZxLpRKWapVFECF5z/Bi0rg1uzNRyrHjfZWcHfHIvlqxUYiitvvTbbSMQKqEV8wlnshSzBoYzaKtV1+crwlgz6wCnXq8HIupEeWfUc9kc+zunpYnuHnU5Z3HhzQGBuIiPoVritDjOo7qYREftV4qQ15xFWdezsMZlR15edwZeyNdAEx044QgaGddC8uEMoi5cp4APIqH1cEkIvSU6Y+esdgZ4CHU6M5G5ub5PTT2TaKoUMLLFtpW6QImjVApixFTHWR7tUhqInplWWLqvviS4MoI1ppxgcDUg/bgPdeDBsoRkbESr2uT8ResNi9DlPlN2rlUjlb28awzHm7agFhwfPQZ1afnFSUh0tTFz1WeR7xIGhxR1xXc8sapJhgLnYYWpR2NaJzbYYdk7CWW/3rgEsJem7Kvll6HevnFgRP/uVhEyGZl9hw+tECzvwB/LEmQ/4raDMxqOB9XO9kusJX/jTnQIObrFubfKn3ToXlYbQxZX9+QobANvQ8huILz1bBeH8aKjf9RXu+j4VNyoCKhzU/v0MIdRCsgVWgjuYXMGRo0MFMFyMqQiw== transcaffeine-openpgp:0x353A3E5B"
    ];
    packages = with pkgs; [
      pinentry
      gnupg
      sequoia
      pass
      spotify
      gimp-with-plugins
Author	SHA1	Message	Date
transcaffeine	be1f305207	feat: add host 'nixos-unstable' as a testing VM	2025-07-05 12:39:50 +02:00
transcaffeine	a24605849a	feat: add nixpkgs-unstable flake input	2025-07-05 12:39:25 +02:00
transcaffeine	a3f1352aeb	chore: do not populate nix.registry.<name>.flake directly, use nixpkgs.flake.setFlakeRegistry instead	2025-07-05 12:38:29 +02:00
transcaffeine	6fb95c5a84	refactor: move nixpkgs overlay out of profiles/base and apply to desired hosts	2025-07-05 12:37:03 +02:00
transcaffeine	10c5f79fab	chore: move user-specific aliases and packages out of profiles/base	2025-07-05 12:35:56 +02:00