blob: 7dc52471fa0c04d76d589df9d823044d93850d54 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
;;; Copyright © 2023 David Thompson <dthompson2@worcester.edu>
;;;
;;; This program is free software; you can redistribute it and/or
;;; modify it under the terms of the GNU General Public License as
;;; published by the Free Software Foundation; either version 3 of the
;;; License, or (at your option) any later version.
;;;
;;; This program is distributed in the hope that it will be useful,
;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
;;; General Public License for more details.
;;;
;;; You should have received a copy of the GNU General Public License
;;; along with this program. If not, see
;;; <http://www.gnu.org/licenses/>.
;;; Commentary:
;;
;; Digital Audio Workstation configuration.
;;
;; To update using this OS configuration, run:
;;
;; sudo -E guix system reconfigure rise.scm
(use-modules (gnu)
(gnu services cups)
(gnu services desktop)
(gnu services pm)
(gnu services sound)
(nongnu packages linux)
(nongnu system linux-initrd))
(operating-system
(locale "en_US.utf8")
(timezone "America/New_York")
(keyboard-layout (keyboard-layout "us"))
(host-name "rise")
(bootloader (bootloader-configuration
(bootloader grub-efi-bootloader)
(targets (list "/boot/efi"))
(keyboard-layout keyboard-layout)))
;; Use regular Linux with the big bad proprietary firmware blobs.
(kernel linux)
;; Install microcode updates because why the heck wouldn't you want
;; this???
(initrd microcode-initrd)
;; sof-firmware is required for sound to work, linux-firmware takes
;; care of everything else.
(firmware (list sof-firmware linux-firmware))
(users (cons* (user-account
(name "dave")
(comment "David Thompson")
(group "users")
(home-directory "/home/dave")
(supplementary-groups
'("audio"
"kvm" ; for VMs
"lp" ; for bluetooth
"netdev"
"realtime" ; for realtime prioritization
"video"
"wheel"))) ; for sudo
%base-user-accounts))
(groups (cons (user-group
(name "realtime")
(system? #t))
%base-groups))
(packages (append (map specification->package
'("ncurses" "nss-certs" "strace"))
%base-packages))
(services (modify-services
(cons* (service gnome-desktop-service-type)
(service bluetooth-service-type)
;; Keep CPU temp in check.
(service thermald-service-type)
;; Enable CUPS web UI and also add the extension
;; for my Brother laser printer.
(service cups-service-type
(cups-configuration
(web-interface? #t)
(extensions
(map specification->package '("cups-filters" "brlaser")))))
;; The first entry increases the maximum realtime
;; priority for non-privileged processes; the
;; second entry lifts any restriction of the
;; maximum address space that can be locked in
;; memory.
(service pam-limits-service-type
(list
(pam-limits-entry "@realtime"
'both 'rtprio 99)
(pam-limits-entry "@realtime"
'both 'memlock 'unlimited)))
%desktop-services)
;; In this house, we use JACK.
(delete pulseaudio-service-type)
;; Get nonguix substitutes.
(guix-service-type config =>
(guix-configuration
(inherit config)
(substitute-urls
(append (list "https://substitutes.nonguix.org")
%default-substitute-urls))
(authorized-keys
(append (list (local-file "keys/nonguix-signing-key.pub"))
%default-authorized-guix-keys))))))
(mapped-devices (list (mapped-device
(source (uuid "ee0a37d1-36d6-4e50-8af0-fc0bfe8c22ef"))
(target "cryptroot")
(type luks-device-mapping))))
(file-systems (cons* (file-system
(mount-point "/boot/efi")
(device (uuid "1F21-80A1" 'fat32))
(type "vfat"))
(file-system
(mount-point "/")
(device "/dev/mapper/cryptroot")
(type "ext4")
(dependencies mapped-devices)) %base-file-systems))
(name-service-switch %mdns-host-lookup-nss))
|
