hosts: per-device anti-feature

This commit is contained in:
Guanran Wang 2024-02-07 09:51:49 +08:00
parent ff0d811b0a
commit b138b7e8e8
Signed by: nyancat
SSH key fingerprint: SHA256:8oWGKciPALWut/6WA27oFKofX+6Wtc0gQnsefXLQx/8
3 changed files with 7 additions and 24 deletions

View file

@ -1,43 +1,26 @@
{lib, ...}: { {lib, ...}: {
hardware.enableRedistributableFirmware = true;
#hardware.enableAllFirmware = true;
nixpkgs.config = { nixpkgs.config = {
allowBroken = false;
allowUnsupportedSystem = false;
allowNonSource = false; allowNonSource = false;
allowNonSourcePredicate = pkg: allowNonSourcePredicate = pkg:
builtins.elem (lib.getName pkg) [ builtins.elem (lib.getName pkg) [
"vscodium"
"spotify"
"adoptopenjdk-hotspot-bin" "adoptopenjdk-hotspot-bin"
"osu-lazer-bin-2023.1229.0"
"protonup-qt-2.8.2"
"cef-binary"
#"virtualbox"
#"virtualbox-modules"
#"open-watcom-bin"
#"open-watcom-bin-unwrapped"
"sof-firmware"
"cargo-bootstrap" "cargo-bootstrap"
"rustc-bootstrap-wrapper" "cef-binary"
"rustc-bootstrap" "rustc-bootstrap"
"rustc-bootstrap-wrapper"
"sof-firmware"
"spotify"
"vscodium"
]; ];
allowUnfree = false; allowUnfree = false;
allowUnfreePredicate = pkg: allowUnfreePredicate = pkg:
builtins.elem (lib.getName pkg) [ builtins.elem (lib.getName pkg) [
"nvidia-x11" "nvidia-x11"
#"nvidia-settings"
#"nvidia-persistenced"
"xow_dongle-firmware"
#"facetimehd-firmware"
"osu-lazer-bin-2023.1229.0"
"spotify" "spotify"
"steam" "steam"
"steam-original" "steam-original"
"steam-run" "xow_dongle-firmware"
]; ];
}; };
} }

View file

@ -9,6 +9,7 @@
# Hardware # Hardware
./hardware-configuration.nix ./hardware-configuration.nix
./anti-feature.nix
../../nixos/profiles/common/opt-in/lanzaboote.nix ../../nixos/profiles/common/opt-in/lanzaboote.nix
../../nixos/profiles/common/opt-in/impermanence.nix ../../nixos/profiles/common/opt-in/impermanence.nix
../../nixos/profiles/common/opt-in/disko.nix ../../nixos/profiles/common/opt-in/disko.nix

View file

@ -9,7 +9,6 @@
./hardening ./hardening
./networking ./networking
./nix ./nix
./anti-feature.nix
# Flake modules # Flake modules
inputs.self.nixosModules.default inputs.self.nixosModules.default