added tig for overview ^^

neo-layout/de-layout; added netflix via chrome
disabled udev-settle
2025-06-15 10:07:03 +00:00 · 2025-06-15 10:04:19 +00:00 · 2025-06-15 09:22:59 +00:00 · 2025-06-11 19:23:58 +00:00 · 2025-06-11 18:59:31 +00:00 · 2025-06-11 20:50:48 +02:00
3 changed files with 149 additions and 4 deletions
--- a/configuration.nix
+++ b/configuration.nix
@ -1,8 +1,25 @@
 { config, pkgs, ... }:
-{
+let
-  imports = [ ./hardware ];     # bindet die auto-generierte HW-Datei ein
+  hdmiHandler = pkgs.writeShellScript "hdmi-display-manager" ''
    #!/usr/bin/env bash
    set -euo pipefail
    PORT=$(ls /sys/class/drm/card*-HDMI-A-*/*status 2>/dev/null | head -n1 || true)
    [[ -z "$PORT" ]] && exit 0
    status=$(cat "$PORT" || echo "disconnected")
    if [[ "$status" == "connected" ]]; then
      systemctl start display-manager.service
    else
      systemctl stop display-manager.service
    fi
    exit 0
  '';
 in
 {
  imports = [ ./hardware/hardware-configuration.nix ];
  nixpkgs.config.allowUnfree = true;
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
  boot.initrd.kernelModules = [ "overlay" "vmd" ];
@ -43,21 +60,109 @@
  users.users.nicole = {
    isNormalUser = true;
    hashedPassword = "$6$p73d5mOLoSuJGOol$KRlszaPXZK9/frADlfR3kAr/57DD5f4.CPTGNNX80QWEWFE5y.bM1WiZwmRHiAlrws3q/zCDQ6AqeSyCUX.8U/";
-    extraGroups = [ "wheel" "docker" "libvirtd" ];
+    extraGroups = [ "wheel" "docker" "libvirtd" "video" "render" ];
    openssh.authorizedKeys.keys = [
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGAsiKDWCwyf1usprg3K6Zk0xE9S4DX6+Bc4+nIOZGmf drezil@Manticore"
    ];
  };
  users.users.kodi = {
    isNormalUser  = true;
    home          = "/home/kodi";
    description   = "Kodi Auto-Login User";
    extraGroups   = [ "video" "render" ];   # GPU-/DRM-Zugriff
    linger        = true;                  # User-Scope darf headless laufen
    # kein wheel ⇒ kein sudo
  };
  system.stateVersion = "25.05";   # ← einmalig festnageln
  security.sudo.wheelNeedsPassword = false;
  services.openssh.enable = true;
  services.zfs.autoScrub.enable = true;   # Snapshots & Details kommen später
  systemd.services.zfs-prune-snapshots = {
    description = "Remove ZFS snapshots older than policy";
    serviceConfig.ExecStart = "/run/current-system/sw/bin/zfs-prune-snapshots -r --keep=2w";
    startAt = "daily";
  };
  systemd.services.systemd-udev-settle.enable = false;
  systemd.services.NetworkManager-wait-online.enable = false;
  # Wir pinnen den Kernel, bis ZFS 2.3.x für 6.13 bereit ist
  boot.kernelPackages = pkgs.linuxPackages_6_12;
-  environment.systemPackages = with pkgs; [ git vim zfs ];
+  ##########################################################################
  ### SYSTEM PACKAGES  #####################################################
  ##########################################################################
  environment.systemPackages = with pkgs; [ 
    git tig vim zfs virt-viewer
    kodi netflix
  ];
  #### Virtualisation
  virtualisation.docker.enable = true;
  virtualisation.libvirtd.enable = true;
  users.groups.docker.members = [ "nicole" ];
  programs.virt-manager.enable = true;
  #### nix-Cache
  # --- Binary-Cache
  services.nix-serve = {
    enable          = true;
    secretKeyFile   = "/var/cache/nix/secret-key";
    openFirewall    = true;
    port            = 5000;
  };
  nix.settings = {
    substituters        = [ "http://nix-nas:5000" "https://cache.nixos.org" ];
    trusted-public-keys = [
      "nas-cache:rgCDn9SwmvxvhjiEiRgrjAuAEyRiJT/aBIlywetuypM="
      "cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="      # Standard-Key vom upstream Cache
    ];
    secret-key-files    = [ "/var/cache/nix/secret-key" ];
  };
  ##########################################################################
  ### Kodi & TV-Detect #####################################################
  ##########################################################################
  services.xserver = {
    enable = true;
    videoDrivers = [ "modesetting" ];     # Intel iGPU
    desktopManager.kodi = {
      enable = true;
      package = (pkgs.kodi.withPackages (kodiPkgs: with kodiPkgs; [
        jellyfin
        netflix
        mediacccde
        mediathekview
        sponsorblock
        youtube
      ]));
    };
    displayManager.startx.enable = false; # nutzt LightDM intern
    xkb = {
      layout = "de,de";
      variant = ",neo";
    };
  };
  console.useXkbConfig = true;
  services.displayManager.autoLogin = {
    enable = true;
    user   = "kodi";
  };
  ### UDEV-Regel + Skript ##################################################
  services.udev.extraRules = ''
    ACTION=="change", SUBSYSTEM=="drm", ENV{HOTPLUG}=="1", RUN+="${hdmiHandler}"
  '';
 }
--- a/flake.nix
+++ b/flake.nix
@ -21,6 +21,7 @@
        ./disko.nix                       # disko partitionierung
        ./hardware/hardware-configuration.nix                        # generiertes hardware-configuration.nix
        ./configuration.nix               # deine eigentliche Config
        ./modules/zfs.nix
        disko.nixosModules.disko
        nixos-hardware.nixosModules.common-pc-ssd
      ];
--- a/modules/zfs.nix
+++ b/modules/zfs.nix
@ -0,0 +1,39 @@
 { config, pkgs, lib, ... }:
 {
  #### 1. Pool-Eigenschaften (permanent) ##############################
  # wird von systemd-Units bei jedem Boot angewendet
  services.zfs = {
    trim.enable       = true;          # weekly zpool trim
    autoScrub = {
      enable          = true;          # weekly scrub
      interval        = "Sun 04:00";   # optional ändern
      pools           = [ "rpool" "tank" ];
    };
    autoSnapshot = {
      enable          = true;
      frequent        = 4;   # alle 15 min, 4 Aufbewahrung
      hourly          = 24;
      daily           = 7;
      weekly          = 4;
      monthly         = 3;
    };
  };
  #### 2. ARC-Größe begrenzen (z. B. 8 GiB) ###########################
  # 8 * 1024^3 = 8589934592
  boot.kernelParams = [ "zfs.zfs_arc_max=8589934592" ];  # ≈ 16 % von 48 GB RAM :contentReference[oaicite:0]{index=0}
  #### 3. Zusätzliche Module / Tools ##################################
  environment.systemPackages = with pkgs; [
    zfs             # zpool, zfs, arc_summary
    zfs-prune-snapshots
  ];
  #### 4. Optional: Sanoid statt OpenSolaris-Snapshots ################
  # services.sanoid.enable = true;
  # services.sanoid.datasets."tank/media" = {
  #   hourly = 24; daily = 7; monthly = 3;
  # };
 }
Author	SHA1	Message	Date
root@nixos-nas	0032d25ba8	added tig for overview ^^	2025-06-15 10:07:03 +00:00
root@nixos-nas	c1e5ba2297	neo-layout/de-layout; added netflix via chrome	2025-06-15 10:04:19 +00:00
root@nixos-nas	62b1cd72db	disabled udev-settle	2025-06-15 09:22:59 +00:00
root@nixos-nas	34495ccc71	kodi & tv-wakeup	2025-06-11 19:23:58 +00:00
root@nixos-nas	1e19b7ca2f	nix-cache	2025-06-11 18:59:31 +00:00
Nicole Dresselhaus	fcab24ae8d	added virtualisation	2025-06-11 20:50:48 +02:00
root@nixos-nas	5921272649	more zfs	2025-06-11 18:41:19 +00:00
root@nixos-nas	a55b594483	zfs-tuning	2025-06-11 18:37:36 +00:00