added base configuration for ixion, applied system update, modified power mgmt readme

also wrote some doucumentation about quadlets, nothing too comprehesive
though as the wrapper might get removed later

flake.lock

@@ -156,13 +156,29 @@
         "type": "github"
       }
     },
+    "quadlet-nix": {
+      "locked": {
+        "lastModified": 1758631655,
+        "narHash": "sha256-EGeZ963L7xsNAY7snvP1JHQe7LWLVCM6f49+PzWjhEE=",
+        "owner": "SEIAROTg",
+        "repo": "quadlet-nix",
+        "rev": "2ebe01b175e2e1e6de3f172d23f0c3b88713eec9",
+        "type": "github"
+      },
+      "original": {
+        "owner": "SEIAROTg",
+        "repo": "quadlet-nix",
+        "type": "github"
+      }
+    },
     "root": {
       "inputs": {
         "darwin": "darwin",
         "ghostty": "ghostty",
         "home-manager": "home-manager",
         "nix-flatpak": "nix-flatpak",
-        "nixpkgs": "nixpkgs_3"
+        "nixpkgs": "nixpkgs_3",
+        "quadlet-nix": "quadlet-nix"
       }
     },
     "systems": {

flake.nix

@@ -12,6 +12,7 @@
       inputs.nixpkgs.follows = "nixpkgs";
     };
     ghostty.url = "github:ghostty-org/ghostty";
+    quadlet-nix.url = "github:SEIAROTg/quadlet-nix";
   };
 
   outputs = inputs @ {
@@ -21,12 +22,15 @@
     darwin,
     home-manager,
     ghostty,
+    quadlet-nix,
     ...
   }: let
     userName = "wyatt";
     userEmail = "wyatt@wyattjmiller.com";
-    extraSpecialArgs = {
+
-      inherit userName userEmail ghostty;
+    # use this variable to take inputs and use them as arguments in your modules, this will be the common one
+    customArgs = {
+      inherit userName userEmail ghostty quadlet-nix;
     };
   in {
     meta = import ./meta;
@@ -34,8 +38,7 @@
     # Primary laptop - MacBook Pro (2023, M3)
     darwinConfigurations."sephiroth" = darwin.lib.darwinSystem {
       system = "aarch64-darwin";
-      specialArgs = {
+      specialArgs = customArgs // {
-        inherit userName userEmail ghostty;
         hostname = "sephiroth";
         role = "devel";
       };
@@ -47,7 +50,9 @@
         {
           home-manager.useGlobalPkgs = true;
           home-manager.useUserPackages = true;
-          home-manager.extraSpecialArgs = extraSpecialArgs;
+          home-manager.extraSpecialArgs = customArgs // {
+            inherit home-manager;
+          };
           home-manager.users.${userName} = import ./home;
         }
       ];
@@ -56,8 +61,7 @@
     # Primary desktop computer
     nixosConfigurations."cloud" = nixpkgs.lib.nixosSystem {
       system = "x86_64-linux";
-      specialArgs = {
+      specialArgs = customArgs // {
-        inherit userName userEmail ghostty;
         hostname = "cloud";
         role = "devel";
       };
@@ -70,7 +74,9 @@
         {
           home-manager.useGlobalPkgs = true;
           home-manager.useUserPackages = true;
-          home-manager.extraSpecialArgs = extraSpecialArgs;
+          home-manager.extraSpecialArgs = customArgs // {
+            inherit home-manager;
+          };
           home-manager.users.${userName}.imports = [
             ./home
           ];
@@ -81,8 +87,7 @@
     # Apartment appliance server
     nixosConfigurations."valefor" = nixpkgs.lib.nixosSystem {
       system = "x86_64-linux";
-      specialArgs = {
+      specialArgs = customArgs // {
-        inherit userName userEmail;
         hostname = "valefor";
         role = "server";
       };
@@ -94,7 +99,9 @@
         {
           home-manager.useGlobalPkgs = true;
           home-manager.useUserPackages = true;
-          home-manager.extraSpecialArgs = extraSpecialArgs;
+          home-manager.extraSpecialArgs = customArgs // {
+            inherit home-manager;
+          };
           home-manager.users.${userName}.imports = [
             ./home
           ];
@@ -105,29 +112,25 @@
     # Storage, status, game, and media server
     nixosConfigurations."ixion" = nixpkgs.lib.nixosSystem {
       system = "x86_64-linux";
-      specialArgs = {
+      specialArgs = customArgs // {
-        inherit userName userEmail;
         hostname = "ixion";
         role = "server";
       };
-      # modules = [
+      modules = [
-      #   nix-flatpak.nixosModules.nix-flatpak
+        quadlet-nix.nixosModules.quadlet
-      #   nix-ld.nixosModules.nix-ld
+        ./modules/common
-      #   ./modules/nixos/hardware-configuration.nix
+        ./modules/machine/ixion
-      #   ./modules/nix-core.nix
+
-      #   ./modules/nixos/configuration.nix
+        home-manager.nixosModules.home-manager
-      #   ./modules/host-users.nix
+        {
-      #
+          home-manager.useGlobalPkgs = true;
-      #   home-manager.nixosModules.home-manager
+          home-manager.useUserPackages = true;
-      #   {
+          home-manager.extraSpecialArgs = customArgs;
-      #     home-manager.useGlobalPkgs = true;
+          home-manager.users.${userName}.imports = [
-      #     home-manager.useUserPackages = true;
+            ./home
-      #     home-manager.extraSpecialArgs = extraSpecialArgs;
+          ];
-      #     home-manager.users.${userName}.imports = [
+        }
-      #       ./home
+      ];
-      #     ];
-      #   }
-      # ];
     };
   };
 }

modules/machine/ixion/configuration.nix

@@ -0,0 +1,84 @@
+{
+  pkgs,
+  userName,
+  ...
+}: {
+  imports = [
+    ../../pwrMgmt
+    ../../networking/core.nix
+    ../../virtualization/podman.nix
+    ../../virtualization/quadlet.nix
+    ../../virtualization/hardware.nix
+  ];
+
+  # Enable flakes for NixOS
+  nix.settings.experimental-features = ["nix-command" "flakes"];
+
+  # Custom kernel/boot stuff
+  boot = {
+    kernelPackages = pkgs.linuxPackages_latest;
+    loader = {
+      systemd-boot.enable = true;
+      efi.canTouchEfiVariables = true;
+    };
+  };
+
+  # Enable Polkit
+  security.polkit.enable = true;
+
+  # Make sure Bluetooth is off!
+  hardware.bluetooth.enable = false;
+
+  # Set your timezone
+  time.timeZone = "America/Detroit";
+
+  # Power management module
+  pwrMgmt = {
+    enable = true;
+    cpuFreqGovernor = "performance";
+    powertop.enable = false;
+  };
+
+  # Podman module (see ../../virtualization/podman.nix)
+  podman = {
+    enable = true;
+    extraPackages = with pkgs; [
+      docker-credential-helpers
+      toolbox
+      cosign
+      crane
+      podman-tui
+    ];
+  };
+
+  # Core networking module (see ../../networking/core.nix)
+  network = {
+    firewall.enable = true;
+    networkManager.enable = true;
+  };
+
+  programs = {
+    # Enable GnuPG
+    gnupg.agent = {
+      enable = true;
+      enableSSHSupport = true;
+    };
+
+    # Enable SUID wrappers (some programs need them)
+    mtr.enable = true;
+  };
+
+  users.users.${userName}.extraGroups = ["wheel" "video" "podman" "network"];
+
+  services = {
+    # Enable OpenSSH
+    openssh.enable = true;
+  };
+
+  # Install packages to be installed system-wide
+  environment.systemPackages = with pkgs; [
+    wireguard-tools
+  ];
+
+  system.stateVersion = "25.05";
+}

modules/machine/ixion/default.nix

@@ -0,0 +1,6 @@
+{...}: {
+  imports = [
+    ./configuration.nix
+    ./hardware-configuration.nix
+  ];
+}

modules/machine/ixion/hardware-configuration.nix

@@ -0,0 +1,46 @@
+# --- DO NOT USE ---
+#
+# this is copied from ../valefor/hardware-configuration.nix
+# generate a new hardware-configuration.nix before using this!
+#
+# ------------------
+# 
+# Do not modify this file!  It was generated by ‘nixos-generate-config’
+# and may be overwritten by future invocations.  Please make changes
+# to /etc/nixos/configuration.nix instead.
+{ config, lib, pkgs, modulesPath, ... }:
+
+{
+  imports =
+    [ (modulesPath + "/installer/scan/not-detected.nix")
+    ];
+
+  boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "usb_storage" "usbhid" "sd_mod" ];
+  boot.initrd.kernelModules = [ ];
+  boot.kernelModules = [ "kvm-intel" ];
+  boot.extraModulePackages = [ ];
+
+  fileSystems."/" =
+    { device = "/dev/disk/by-uuid/ff89bde1-4b33-4277-b649-b92700b2406c";
+      fsType = "xfs";
+    };
+
+  fileSystems."/boot" =
+    { device = "/dev/disk/by-uuid/3A4B-6866";
+      fsType = "vfat";
+      options = [ "fmask=0022" "dmask=0022" ];
+    };
+
+  swapDevices = [ ];
+
+  # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
+  # (the default) this is the recommended approach. When using systemd-networkd it's
+  # still possible to use this option, but it's recommended to use it in conjunction
+  # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
+  networking.useDHCP = lib.mkDefault true;
+  # networking.interfaces.eno1.useDHCP = lib.mkDefault true;
+  # networking.interfaces.wlp1s0.useDHCP = lib.mkDefault true;
+
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+  hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
+}

modules/pwrMgmt/README.md

@@ -1,12 +1,12 @@
 # Power management modules
 
-This directory houses my own custom defined power management settings. These are set in the machine-specific configurations (typically).
+This directory houses my own custom defined power management settings as NixOS modules. These are set in the machine-specific configurations (typically).
 
 ## Examples
 
 Given that this configuration is in the `machine/<hostname>` directory (where hostname is the name of the computer your configuring):
 
-### Desktop configuration
+### Desktop/server configuration
 
 ```nix
   imports = [

modules/virtualization/README.md

@@ -40,7 +40,13 @@ Example:
   };
 ```
 
-To get a full, comprehensive list of what you can do with the podman module, please check out (podman.nix)[./podman.nix]!
+To get a full, comprehensive list of what you can do with the podman module, please check out [podman.nix](./podman.nix)!
+
+### Podman Quadlets
+
+This is a wrapper around a project called [`quadlet-nix`](https://github.com/SEIAROTg/quadlet-nix), a way of defining systemd services as containers with Nix! Since I have existing services running inside of containers and don't want to risk breaking _everything_ that I have running, I figured this would be a safe, transitionary approach to handle this.
+
+This is still a work-in-progress, check back soon on progress on this.
 
 ## Kubernetes
 

modules/virtualization/quadlet.nix

@@ -0,0 +1,47 @@
+# ----------------------
+# Wrapper for defining Quadlets in Nix via quadlet-nix
+#
+# Still WIP
+# ----------------------
+{
+  config,
+  lib,
+  ...
+}: 
+let
+  cfg = config.quadlet;
+in {
+  options = {
+    quadlet = {
+      enable = lib.mkEnableOption "Enable Podman's Quadlet systemd integration";
+      
+      autoUpdate = {
+        enable = lib.mkEnableOption "Enable the auto update mechanism";
+        
+        calendar = lib.mkOption {
+          type = lib.types.str;
+          default = "*-*-* 03:30:00";
+          description = "When the auto update mechanism is triggered, the calendar option will tell the auto update when to start";
+        };
+      };
+      
+      extraPackages = lib.mkOption {
+        type = lib.types.listOf lib.types.package;
+        default = [];
+        description = "Additional container-related packages to install (these likely will be installed with Podman though)";
+      };
+    };
+  };
+
+  config = lib.mkIf cfg.enable {
+    virtualisation.quadlet = {
+      enable = true;
+      autoUpdate = {
+        enable = cfg.autoUpdate.enable;
+        calendar = cfg.autoUpdate.calendar;
+      };
+    };
+    
+    environment.systemPackages = cfg.extraPackages;
+  };
+}