2025-01-09 13:04:10 +03:00
|
|
|
|
{
|
2025-02-20 23:55:45 +03:00
|
|
|
|
lib,
|
2025-01-09 13:04:10 +03:00
|
|
|
|
config,
|
|
|
|
|
|
pkgs,
|
2025-04-29 11:28:39 +03:00
|
|
|
|
#simintech,
|
2025-08-23 20:07:02 +03:00
|
|
|
|
#stm32cubemx,
|
2025-02-22 13:46:14 +03:00
|
|
|
|
packettracer7,
|
2025-01-09 13:04:10 +03:00
|
|
|
|
inputs,
|
|
|
|
|
|
...
|
|
|
|
|
|
}:
|
|
|
|
|
|
let
|
2025-01-11 11:28:59 +03:00
|
|
|
|
serverIP = "10.0.174.12";
|
2025-01-23 20:03:45 +03:00
|
|
|
|
hasBootPartition = config.fileSystems ? "/boot";
|
2025-08-23 18:07:01 +03:00
|
|
|
|
isNvidia = (builtins.readFile (pkgs.runCommandLocal "isNvidia" {} ''
|
|
|
|
|
|
${pkgs.pciutils}/bin/lspci | ${pkgs.busybox}/bin/grep NVIDIA | ${pkgs.busybox}/bin/grep VGA > $out
|
|
|
|
|
|
'')) != "";
|
2025-01-09 13:04:10 +03:00
|
|
|
|
in
|
|
|
|
|
|
{
|
|
|
|
|
|
users.users.student = {
|
|
|
|
|
|
isNormalUser = true;
|
2025-01-23 20:03:45 +03:00
|
|
|
|
initialPassword = "student"; # вход беспарольный, но пароль student
|
2025-08-23 18:07:01 +03:00
|
|
|
|
extraGroups = [ "video" "sound" "input" "storage" ];
|
2025-01-09 13:04:10 +03:00
|
|
|
|
packages =
|
|
|
|
|
|
let
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# определение как скачивать плагины jetbrains (скачивать с нашего сервера копию)
|
2025-02-22 13:46:14 +03:00
|
|
|
|
customJBPlugin =
|
2025-01-09 13:04:10 +03:00
|
|
|
|
nam: ver: sha:
|
|
|
|
|
|
pkgs.stdenv.mkDerivation {
|
|
|
|
|
|
name = nam;
|
|
|
|
|
|
version = ver;
|
|
|
|
|
|
src = pkgs.fetchurl {
|
2025-02-22 13:46:14 +03:00
|
|
|
|
url = "http://${serverIP}/custom-jetbrains-plugins/${nam}-${ver}.zip";
|
2025-01-09 13:04:10 +03:00
|
|
|
|
sha256 = sha;
|
|
|
|
|
|
};
|
|
|
|
|
|
nativeBuildInputs = with pkgs; [ unzip ];
|
|
|
|
|
|
dontUnpack = true;
|
|
|
|
|
|
installPhase = "unzip $src; mkdir -p $out; mv ./${nam}/* $out";
|
|
|
|
|
|
};
|
|
|
|
|
|
in
|
|
|
|
|
|
with pkgs;
|
|
|
|
|
|
[
|
|
|
|
|
|
(pkgs.jetbrains.plugins.addPlugins pkgs.jetbrains.idea-community (
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# набор плагинов, я бы сказал, богат до избыточности, но главное есть Python
|
|
|
|
|
|
# и Database Nagivator. Остальное - любителям и любознательным.
|
2025-01-09 13:04:10 +03:00
|
|
|
|
(with inputs.nix-jetbrains-plugins.plugins."${system}"; [
|
2025-02-22 13:46:14 +03:00
|
|
|
|
#idea-community."2024.1"."mobi.hsz.idea.gitignore"
|
2025-01-09 13:04:10 +03:00
|
|
|
|
idea-community."2024.1"."org.jetbrains.erlang"
|
|
|
|
|
|
idea-community."2024.1"."JProfiler"
|
|
|
|
|
|
idea-community."2024.1"."DBN"
|
|
|
|
|
|
idea-community."2024.1"."MatlabSupport"
|
2025-02-22 13:46:14 +03:00
|
|
|
|
#idea-community."2024.1"."com.intellij.notebooks.core"
|
2025-01-09 13:04:10 +03:00
|
|
|
|
idea-community."2024.1"."PlantUML integration"
|
|
|
|
|
|
idea-community."2024.1"."org.intellij.scala"
|
|
|
|
|
|
idea-community."2024.1"."PythonCore"
|
2025-08-23 19:48:14 +03:00
|
|
|
|
#idea-community."2024.1"."net.sjrx.intellij.plugins.systemdunitfiles"
|
2025-01-09 13:04:10 +03:00
|
|
|
|
idea-community."2024.1"."com.intellij.jsonpath"
|
|
|
|
|
|
idea-community."2024.1"."Lombook Plugin"
|
|
|
|
|
|
idea-community."2024.1"."org.mapstruct.intellij"
|
|
|
|
|
|
idea-community."2024.1"."ski.chrzanow.foldableprojectview"
|
|
|
|
|
|
idea-community."2024.1"."String Manipulation"
|
|
|
|
|
|
idea-community."2024.1"."quokka.js"
|
|
|
|
|
|
idea-community."2024.1"."org.asciidoctor.intellij.asciidoc"
|
2025-02-22 13:46:14 +03:00
|
|
|
|
#idea-community."2024.1"."R4Intellij"
|
2025-01-09 13:04:10 +03:00
|
|
|
|
idea-community."2024.1"."com.redhat.devtools.lsp4ij"
|
|
|
|
|
|
])
|
2025-08-23 18:07:01 +03:00
|
|
|
|
++
|
|
|
|
|
|
[
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# поддежка языка C/C++ на уровне подсветки синтаксиса и автодополнения
|
2025-01-22 22:30:09 +03:00
|
|
|
|
(customJBPlugin "clsp" "1.0.1" "sha256-AU/Q61YYsGn2BAYykCGm4XGNyeSwd5K/txGNzP2dJg0=")
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# поддежка фреймворка Spring через opensource-плагин Explyt. пусть будет
|
2025-01-09 13:04:10 +03:00
|
|
|
|
(customJBPlugin "spring-tool" "241-b3085-signed"
|
|
|
|
|
|
"sha256-u9Hqy4BN1johA7e8proMekyERXkE6gXRnqGRNR7FouE="
|
|
|
|
|
|
)
|
|
|
|
|
|
]
|
|
|
|
|
|
))
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
chromium # браузер
|
2025-08-23 18:07:01 +03:00
|
|
|
|
pinta # графический редактор
|
|
|
|
|
|
sakura # терминал
|
2025-01-23 20:03:45 +03:00
|
|
|
|
unzipNLS # поддержка zip
|
2025-08-23 18:07:01 +03:00
|
|
|
|
unrar # поддержка rar
|
|
|
|
|
|
gtk3 whitesur-icon-theme # необходимо для иконок
|
|
|
|
|
|
(pkgs.writeShellScriptBin "powermenu" (builtins.readFile inputs.mireadesktop.packages.x86_64-linux.powermenu))
|
|
|
|
|
|
(pkgs.writeShellScriptBin "resethome" (builtins.readFile inputs.mireadesktop.packages.x86_64-linux.resethome))
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
pandoc
|
|
|
|
|
|
#onlyoffice-desktopeditors # к сожалению, пока у OnlyOffice баг со шрифтами. Ждём фикс
|
|
|
|
|
|
libreoffice # поэтому пока что у нас Libreoffice...
|
|
|
|
|
|
|
|
|
|
|
|
# Напоминаю что у нас есть СЕТЕВОЙ ДИСК по адресу 10.0.174.12
|
|
|
|
|
|
# и для студентов пока есть единая учётка student@mirea.ru,
|
|
|
|
|
|
# рассматривается вариант авторизации через login.mirea.ru.
|
|
|
|
|
|
# Преподаватели могут зарегистрироваться ОТДЕЛЬНО
|
2025-01-09 13:04:10 +03:00
|
|
|
|
seafile-client
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# утилиты разработчика
|
|
|
|
|
|
git
|
|
|
|
|
|
cmakeWithGui
|
|
|
|
|
|
gnumake
|
|
|
|
|
|
|
|
|
|
|
|
###### ЯЗЫКИ ПРОГРАММИРОВАНИЯ #####
|
|
|
|
|
|
|
|
|
|
|
|
# поставка Python, полный список возможностей
|
|
|
|
|
|
# см. на github.com/gregorybednov/mireapython
|
2025-02-22 13:46:14 +03:00
|
|
|
|
inputs.mireapython.packages.x86_64-linux.mireapython
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# базовая поддержка C/C++ и дебага
|
2025-01-09 13:04:10 +03:00
|
|
|
|
clang
|
2025-01-23 20:03:45 +03:00
|
|
|
|
clang-tools
|
|
|
|
|
|
lldb
|
|
|
|
|
|
cpplint
|
|
|
|
|
|
cppcheck
|
|
|
|
|
|
gcc-arm-embedded # компиляция С/C++ под STM32 и прочие arm
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
octaveFull # GNU Octave
|
|
|
|
|
|
|
|
|
|
|
|
shellcheck # проверка шелл-кода (bash, POSIX sh, ...)
|
|
|
|
|
|
|
|
|
|
|
|
# Другие возможные языки и инструменты, например:
|
|
|
|
|
|
# rustc # - Rust
|
|
|
|
|
|
# go gopls delve golint go-tools # - Go
|
2025-08-23 18:07:01 +03:00
|
|
|
|
jdk kotlin # - Java, Kotlin (идут вместе с IJ IDEA)
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# ghc haskell-language-server # - Haskell
|
2025-02-22 13:46:14 +03:00
|
|
|
|
# nodePackages.intelephense # - PHP
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# dotnet-sdk # - C#
|
|
|
|
|
|
|
|
|
|
|
|
####### Проектирование и разработка баз данных, ИУС, ... #######
|
|
|
|
|
|
|
|
|
|
|
|
# Workbench для управления и ER-моделирования БД на mysql
|
|
|
|
|
|
# у КАЖДОГО nixos есть свой локальный сервер mysql, см. ниже по файлу
|
2025-01-09 13:04:10 +03:00
|
|
|
|
mysql-workbench
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# аналог Bizagi Modeler, расширенный вариант bpmn.io
|
2025-01-09 13:04:10 +03:00
|
|
|
|
camunda-modeler
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# графическое моделирование UML-диаграмм
|
2025-02-22 13:46:14 +03:00
|
|
|
|
# также доступно моделирование BPMN и ER
|
2025-08-23 18:07:01 +03:00
|
|
|
|
staruml
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# Язык текстового описания UML-диаграмм
|
|
|
|
|
|
# актуально для разработчиков ПО (встраивание диаграмм в код)
|
|
|
|
|
|
# поддерживается нашей поставкой IJ IDEA CE
|
2025-01-09 13:04:10 +03:00
|
|
|
|
plantuml
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
archi # поддержка archimate
|
|
|
|
|
|
|
2025-08-23 18:07:01 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
##### Утилиты и программы для STM32 #####
|
|
|
|
|
|
# 1) STM32CubeIDE упаковать не удалось
|
|
|
|
|
|
# 2) есть основания полагать, что её функциональность лучше встроить
|
|
|
|
|
|
# в IJ IDEA CE, как это сделано в настоящем Clion;
|
2025-08-23 20:07:02 +03:00
|
|
|
|
#stm32cubemx.packages.x86_64-linux.stm32cubemx
|
2025-01-09 13:04:10 +03:00
|
|
|
|
stm32flash
|
|
|
|
|
|
stlink
|
|
|
|
|
|
stlink-gui
|
|
|
|
|
|
stm32loader
|
|
|
|
|
|
|
2025-02-22 13:46:14 +03:00
|
|
|
|
##### СЕТЕВЫЕ УТИЛИТЫ ######
|
|
|
|
|
|
# установлен Cisco Packet Tracer, обернут в firejail чтобы не стучался на Netacad.com
|
2025-08-23 18:07:01 +03:00
|
|
|
|
nodePackages.node-red # - лоукод-платформа программирования устройств, в частности интернета вещей
|
|
|
|
|
|
httpie httpie-desktop # - передовой клиент HTTP-запросов
|
|
|
|
|
|
netcat socat # - низкоуровневые простейшие утилиты установления TCP или UDP между компьютерами или с ПЛК
|
|
|
|
|
|
opcua-client-gui # - простой графический клиент OPC UA
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
###### Другой софт #######
|
|
|
|
|
|
|
|
|
|
|
|
logisim-evolution
|
|
|
|
|
|
unityhub # UnityHub - 3D-моделирование, визуализация, геймдев, AR/VR
|
2025-02-20 23:55:45 +03:00
|
|
|
|
(pkgs.stdenv.mkDerivation rec {
|
2025-08-23 18:07:01 +03:00
|
|
|
|
pname = "cnc_vmc_sim";
|
|
|
|
|
|
version = "1.0.0-share";
|
|
|
|
|
|
src = builtins.fetchTarball {
|
|
|
|
|
|
url = "http://${serverIP}/linux_cnc_vmc_share.tar.xz";
|
|
|
|
|
|
sha256 = "sha256:1hjkm2wq6dfmddb2van1q8hdvf41bp4snslcbkj0b1myi3zpi1md";
|
|
|
|
|
|
};
|
2025-04-29 11:48:14 +03:00
|
|
|
|
|
2025-08-23 18:07:01 +03:00
|
|
|
|
installPhase = ''
|
|
|
|
|
|
runHook preInstall
|
|
|
|
|
|
mkdir -p $out/bin
|
|
|
|
|
|
mkdir -p $out/share/applications
|
|
|
|
|
|
mkdir -p $out/share/icons
|
|
|
|
|
|
cp ${src}/icon.png $out/share/icons/${pname}.png
|
|
|
|
|
|
cp ${fhsEnv}/bin/${pname}-fhs $out/bin/${pname}
|
|
|
|
|
|
cp ${desktopItem}/share/applications/*.desktop $out/share/applications
|
|
|
|
|
|
'';
|
|
|
|
|
|
|
|
|
|
|
|
fhsEnv = pkgs.buildFHSEnv {
|
|
|
|
|
|
name = "${pname}-fhs";
|
|
|
|
|
|
targetPkgs = p: with p; [
|
|
|
|
|
|
eudev.out
|
|
|
|
|
|
libGL.out
|
|
|
|
|
|
openal.out
|
|
|
|
|
|
xorg.libX11.out
|
|
|
|
|
|
];
|
|
|
|
|
|
runScript = "${src}/${pname}";
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
desktopItem = pkgs.makeDesktopItem {
|
|
|
|
|
|
name = "CNC VMC (free)";
|
|
|
|
|
|
exec = "${pname}";
|
|
|
|
|
|
desktopName = "CNC VMC (free)";
|
|
|
|
|
|
categories = [ "Development" ];
|
|
|
|
|
|
icon = "${pname}";
|
|
|
|
|
|
terminal = false;
|
|
|
|
|
|
startupNotify = false;
|
|
|
|
|
|
};
|
|
|
|
|
|
})
|
|
|
|
|
|
(pkgs.stdenv.mkDerivation rec {
|
|
|
|
|
|
pname = "ramus";
|
|
|
|
|
|
version = "0.1.3";
|
|
|
|
|
|
src = builtins.fetchTarball {
|
|
|
|
|
|
url = "http://${serverIP}/ramus.tar.xz";
|
|
|
|
|
|
sha256 = "sha256:1a9fha7zwyyag0q4glk58pzigqdczshxpnax7cdzg1bry4aw6f9d";
|
|
|
|
|
|
};
|
|
|
|
|
|
installPhase = ''
|
|
|
|
|
|
sed -e "s~ramus.ico~$out/share/icons/ramus.ico~; s~Other~Database~" -i share/applications/ramus.desktop
|
|
|
|
|
|
mkdir $out
|
|
|
|
|
|
cp -r share bin lib $out
|
|
|
|
|
|
echo "JDK_JAVA_OPTIONS='-Dawt.useSystemAAFontSettings=on -Dswing.aatext=true -Dswing.defaultlaf=com.sun.java.swing.plaf.gtk.GTKLookAndFeel' ${pkgs.jre8}/bin/java -jar $out/bin/ramus-startup.jar" > $out/bin/ramus
|
|
|
|
|
|
chmod +x $out/bin/ramus
|
|
|
|
|
|
'';
|
|
|
|
|
|
})
|
2025-02-20 23:55:45 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# поставка SimInTech. Кодогенерация библиотек для ПК работает,
|
|
|
|
|
|
# но несовместима с .dll из windows!
|
2025-04-29 11:28:39 +03:00
|
|
|
|
#simintech.packages.x86_64-linux.simintech
|
|
|
|
|
|
(pkgs.stdenv.mkDerivation rec {
|
2025-08-23 18:07:01 +03:00
|
|
|
|
pname = "simintech";
|
|
|
|
|
|
version = "2.23.13";
|
|
|
|
|
|
src = builtins.fetchTarball {
|
|
|
|
|
|
url = "http://kafpi.local/simintech_rus_linux.tgz";
|
|
|
|
|
|
sha256 = "sha256:1i9plx6vx6jm38bx4kbh4piak5jwrpc4hxxjd3b89zyng1g4abvs";
|
|
|
|
|
|
};
|
|
|
|
|
|
dontFixLibtool = true;
|
|
|
|
|
|
|
|
|
|
|
|
fhsEnv = pkgs.buildFHSEnv {
|
|
|
|
|
|
name = "${pname}-fhs-env";
|
|
|
|
|
|
targetPkgs = p: with p; [
|
|
|
|
|
|
at-spi2-atk.out
|
|
|
|
|
|
gdk-pixbuf.out
|
|
|
|
|
|
glamoroustoolkit.out
|
|
|
|
|
|
glib.out
|
|
|
|
|
|
gtk2.out
|
|
|
|
|
|
libGL.out
|
|
|
|
|
|
libGLU.out
|
|
|
|
|
|
pango.out
|
|
|
|
|
|
xorg.libX11.out
|
|
|
|
|
|
zlib.out
|
|
|
|
|
|
(pkgs.writeShellScriptBin "firefox" "exec ${pkgs.chromium}/bin/chromium \"$@\"") # похоже, что SimInTech захардкодил Firefox, но не все так юзают Firefox
|
|
|
|
|
|
];
|
|
|
|
|
|
runScript = "${src}/bin/mmain";
|
|
|
|
|
|
};
|
2025-04-29 11:28:39 +03:00
|
|
|
|
|
2025-08-23 18:07:01 +03:00
|
|
|
|
desktopItem = pkgs.makeDesktopItem {
|
|
|
|
|
|
name = "SimInTech";
|
|
|
|
|
|
exec = "simintech";
|
|
|
|
|
|
desktopName = "SimInTech";
|
|
|
|
|
|
categories = [ "Development" ];
|
|
|
|
|
|
icon = "simintech";
|
|
|
|
|
|
terminal = false;
|
|
|
|
|
|
startupNotify = false;
|
|
|
|
|
|
mimeTypes = [ "x-scheme-handler/prt" ];
|
|
|
|
|
|
};
|
2025-04-29 11:28:39 +03:00
|
|
|
|
|
2025-08-23 18:07:01 +03:00
|
|
|
|
installPhase = ''
|
|
|
|
|
|
runHook preInstall
|
|
|
|
|
|
mkdir -p $out/bin
|
|
|
|
|
|
mkdir -p $out/share/applications
|
|
|
|
|
|
mkdir -p $out/share/icons
|
|
|
|
|
|
#cp ${src}/share/icon.svg $out/share/icons/simintech.svg
|
|
|
|
|
|
cp ${fhsEnv}/bin/${pname}-fhs-env $out/bin/simintech
|
|
|
|
|
|
cp ${desktopItem}/share/applications/*.desktop $out/share/applications
|
|
|
|
|
|
runHook postInstall
|
|
|
|
|
|
'';
|
|
|
|
|
|
})
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# POSIX утилиты для совместимости
|
2025-01-09 13:04:10 +03:00
|
|
|
|
om4
|
|
|
|
|
|
pax
|
|
|
|
|
|
mailutils
|
|
|
|
|
|
sharutils
|
|
|
|
|
|
flex
|
|
|
|
|
|
bison
|
|
|
|
|
|
universal-ctags
|
|
|
|
|
|
inetutils
|
|
|
|
|
|
uucp
|
|
|
|
|
|
util-linux
|
|
|
|
|
|
cflow
|
2025-02-22 13:46:14 +03:00
|
|
|
|
ncompress
|
2025-01-09 13:04:10 +03:00
|
|
|
|
];
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# вставленные флешки автоматически монтируются
|
2025-02-22 13:46:14 +03:00
|
|
|
|
services.devmon.enable = true;
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# необходимо для совместимости с POSIX по команде at, при отсутствии необходимости можно удалить
|
2025-02-22 13:46:14 +03:00
|
|
|
|
services.atd = {
|
2025-01-23 20:03:45 +03:00
|
|
|
|
enable = true;
|
|
|
|
|
|
allowEveryone = true;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
# на каждой машине свой сервер mysql и postgresql
|
|
|
|
|
|
services.mysql = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
package = pkgs.mysql80;
|
|
|
|
|
|
};
|
|
|
|
|
|
services.postgresql = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
authentication = pkgs.lib.mkOverride 10 ''
|
2025-08-23 18:07:01 +03:00
|
|
|
|
#type database DBuser auth-method
|
|
|
|
|
|
local all all trust
|
|
|
|
|
|
'';
|
2025-01-23 20:03:45 +03:00
|
|
|
|
};
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# и оба поддерживают вход без пароля в "руты"
|
|
|
|
|
|
system.userActivationScripts.mycnf = {
|
|
|
|
|
|
text = ''
|
|
|
|
|
|
printf "[client]\nport=3306\nuser=root" > /home/student/.my.cnf
|
|
|
|
|
|
echo "\set user postgres" > /home/student/.psqlrc
|
|
|
|
|
|
'';
|
|
|
|
|
|
deps = [ ];
|
|
|
|
|
|
};
|
|
|
|
|
|
environment = {
|
|
|
|
|
|
etc."gtk-3.0/settings.ini" = {
|
|
|
|
|
|
text = ''
|
|
|
|
|
|
[Settings]
|
|
|
|
|
|
gtk-icon-theme-name = WhiteSur
|
|
|
|
|
|
'';
|
|
|
|
|
|
mode = "0644";
|
|
|
|
|
|
};
|
|
|
|
|
|
variables = {
|
|
|
|
|
|
PGUSER = "postgres";
|
|
|
|
|
|
};
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
imports = [ ./hardware-configuration.nix ];
|
2025-08-25 13:46:09 +03:00
|
|
|
|
programs.tmux = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
withUtempter = true;
|
|
|
|
|
|
historyLimit = 5000;
|
|
|
|
|
|
clock24 = true;
|
|
|
|
|
|
};
|
2025-01-23 20:03:45 +03:00
|
|
|
|
|
|
|
|
|
|
# если машина установлена на диск с Windows,
|
|
|
|
|
|
# то она позволяет "увидеть" и выбрать Windows в течение 30 с
|
|
|
|
|
|
# иначе - 5 c таймаута (для виртуалок)
|
2025-08-23 18:07:01 +03:00
|
|
|
|
boot.loader = if hasBootPartition then {
|
|
|
|
|
|
efi.canTouchEfiVariables = true;
|
|
|
|
|
|
timeout = 30;
|
|
|
|
|
|
grub = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
efiSupport = true;
|
|
|
|
|
|
device = "nodev";
|
|
|
|
|
|
useOSProber = true;
|
|
|
|
|
|
theme = "${pkgs.sleek-grub-theme.override{ withStyle = "orange"; withBanner = "Выберите ОС"; }}";
|
|
|
|
|
|
};
|
|
|
|
|
|
} else {
|
|
|
|
|
|
timeout = 5;
|
|
|
|
|
|
grub = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
device = "/dev/sda";
|
|
|
|
|
|
theme = "${pkgs.sleek-grub-theme.override{ withStyle = "orange"; withBanner = "Загрузчик Linux"; }}";
|
|
|
|
|
|
};
|
|
|
|
|
|
};
|
2025-01-23 20:03:45 +03:00
|
|
|
|
time.hardwareClockInLocalTime = hasBootPartition;
|
|
|
|
|
|
|
|
|
|
|
|
# настройки Nix
|
2025-02-20 23:55:45 +03:00
|
|
|
|
nixpkgs.config = {
|
|
|
|
|
|
allowUnfree = true;
|
|
|
|
|
|
nvidia.acceptLicense = true;
|
|
|
|
|
|
};
|
2025-01-31 19:09:18 +03:00
|
|
|
|
nix.settings = {
|
|
|
|
|
|
substituters = [
|
2025-08-23 18:07:01 +03:00
|
|
|
|
"https://cache.nixos.org"
|
2025-01-31 19:09:18 +03:00
|
|
|
|
];
|
2025-08-23 18:07:01 +03:00
|
|
|
|
trusted-public-keys = ["kafpi.local:PttR9S1eDyint3v0LCp5zfBGG+xfxzQ+cxKAQARNpyw="];
|
2025-01-31 19:09:18 +03:00
|
|
|
|
auto-optimise-store = true;
|
|
|
|
|
|
};
|
2025-01-23 20:03:45 +03:00
|
|
|
|
nix.extraOptions = ''
|
|
|
|
|
|
experimental-features = nix-command flakes
|
|
|
|
|
|
'';
|
|
|
|
|
|
|
|
|
|
|
|
##### НАСТРОЙКИ ГРАФИКИ И РАБОЧЕГО СТОЛА ######
|
|
|
|
|
|
hardware.graphics = {
|
|
|
|
|
|
enable = true;
|
2025-08-23 18:07:01 +03:00
|
|
|
|
#enable32Bit = true;
|
|
|
|
|
|
extraPackages = if isNvidia then with pkgs; [ nvidia-vaapi-driver vaapiVdpau libvdpau-va-gl] else [];
|
2025-01-23 20:03:45 +03:00
|
|
|
|
};
|
|
|
|
|
|
services.xserver = {
|
|
|
|
|
|
enable = true;
|
2025-08-23 18:07:01 +03:00
|
|
|
|
videoDrivers = if isNvidia then [ "nvidia" ] else [ "modesetting" "fbdev" ];
|
2025-01-23 20:03:45 +03:00
|
|
|
|
xkb.layout = "us,ru";
|
|
|
|
|
|
xkb.options = "grp:alt_shift_toggle";
|
|
|
|
|
|
};
|
2025-02-20 23:55:45 +03:00
|
|
|
|
hardware.enableAllFirmware = true;
|
2025-08-23 18:07:01 +03:00
|
|
|
|
#hardware.nvidia = {
|
|
|
|
|
|
# package = config.boot.kernelPackages.nvidiaPackages.legacy_470;
|
|
|
|
|
|
# modesetting.enable = true;
|
|
|
|
|
|
# powerManagement.enable = true;
|
|
|
|
|
|
# open = false;
|
|
|
|
|
|
# nvidiaSettings = false;
|
|
|
|
|
|
#};
|
2025-02-20 23:55:45 +03:00
|
|
|
|
hardware.nvidia = {
|
2025-08-23 18:07:01 +03:00
|
|
|
|
package = config.boot.kernelPackages.nvidiaPackages.stable;
|
2025-04-29 11:48:14 +03:00
|
|
|
|
modesetting.enable = true;
|
|
|
|
|
|
powerManagement.enable = true;
|
|
|
|
|
|
open = false;
|
|
|
|
|
|
nvidiaSettings = false;
|
2025-02-20 23:55:45 +03:00
|
|
|
|
};
|
2025-08-23 18:07:01 +03:00
|
|
|
|
boot.kernelParams = if isNvidia then ["nvidia-drm.modeset=1" ] else [];
|
|
|
|
|
|
boot.blacklistedKernelModules = if isNvidia then [ "nouveau" ] else [];
|
|
|
|
|
|
boot.extraModprobeConfig = if isNvidia then "options nvidia " + lib.concatStringsSep " " [
|
|
|
|
|
|
"NVreg_UsePageAttributeTable=1"
|
|
|
|
|
|
"NVreg_EnablePCIeGen3=1"
|
|
|
|
|
|
"NVreg_RegistryDwords=RMUseSwI2c=0x01;RMI2cSpeed=100"
|
|
|
|
|
|
] else "";
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
services.displayManager.autoLogin.user = "student";
|
|
|
|
|
|
services.getty.autologinUser = "student";
|
|
|
|
|
|
services.xserver.displayManager.lightdm.enable = true;
|
2025-02-20 23:55:45 +03:00
|
|
|
|
services.xserver.displayManager.startx.enable = true;
|
2025-01-23 20:03:45 +03:00
|
|
|
|
services.displayManager.defaultSession = "MIREA-WindowsLike+Metacity";
|
|
|
|
|
|
services.xserver.displayManager.session = [
|
|
|
|
|
|
{
|
|
|
|
|
|
manage = "desktop";
|
|
|
|
|
|
name = "MIREA-WindowsLike";
|
|
|
|
|
|
# подробности настроек рабочего стола см. на github.com/gregorybednov/mireadesktop
|
|
|
|
|
|
start = ''
|
|
|
|
|
|
${inputs.mireadesktop.packages.x86_64-linux.tint2} &
|
|
|
|
|
|
${inputs.mireadesktop.packages.x86_64-linux.pcmanfm} &
|
|
|
|
|
|
waitPID=$!
|
|
|
|
|
|
'';
|
|
|
|
|
|
}
|
|
|
|
|
|
{
|
|
|
|
|
|
manage = "window";
|
|
|
|
|
|
name = "Metacity";
|
|
|
|
|
|
start = ''
|
|
|
|
|
|
${pkgs.metacity}/bin/metacity &
|
|
|
|
|
|
waitPID=$!
|
|
|
|
|
|
'';
|
|
|
|
|
|
}
|
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
|
|
##### СЕТЕВЫЕ НАСТРОЙКИ #######
|
|
|
|
|
|
# каждый компьютер виден под уникальным именем через Avahi
|
|
|
|
|
|
services.avahi = {
|
2025-08-23 18:07:01 +03:00
|
|
|
|
hostName = "nixos"
|
|
|
|
|
|
+ builtins.readFile ((pkgs.runCommandLocal "uuid" {} ''
|
|
|
|
|
|
mkdir $out
|
|
|
|
|
|
cat /proc/sys/kernel/random/uuid > $out/uuid
|
|
|
|
|
|
'')+"/uuid");
|
2025-01-23 20:03:45 +03:00
|
|
|
|
enable = true;
|
|
|
|
|
|
nssmdns4 = true;
|
2025-01-31 19:09:18 +03:00
|
|
|
|
openFirewall = true;
|
2025-01-23 20:03:45 +03:00
|
|
|
|
publish = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
hinfo = true;
|
2025-01-31 19:09:18 +03:00
|
|
|
|
workstation = true;
|
|
|
|
|
|
domain = true;
|
2025-01-23 20:03:45 +03:00
|
|
|
|
addresses = true;
|
|
|
|
|
|
};
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
# каждый компьютер имеет выход в интернет
|
|
|
|
|
|
networking.networkmanager.enable = true;
|
|
|
|
|
|
|
|
|
|
|
|
networking.hostName = "nixos";
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# каждый компьютер ресолвит DNS-запросы СТРОГО через наш сервер
|
|
|
|
|
|
networking.nameservers = [ serverIP ];
|
2025-02-22 13:46:14 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# каждый компьютер знает, что kafpi.local - это адрес нашего сервера
|
2025-08-23 18:07:01 +03:00
|
|
|
|
networking.hosts."${serverIP}" = [ "kafpi.local" "hydra.kafpi.local" ];
|
2025-02-22 13:46:14 +03:00
|
|
|
|
#security.pki.certificateFiles = [
|
|
|
|
|
|
# (builtins.fetchurl {
|
|
|
|
|
|
# url = "http://${serverIP}/server.crt";
|
|
|
|
|
|
# sha256 = "sha256:0qx4acdhiciffvk1l7wkxyzapjwjy9zisq0mwyl727x97zrmi5ds";
|
|
|
|
|
|
# })
|
|
|
|
|
|
# (builtins.fetchurl {
|
|
|
|
|
|
# url = "http://${serverIP}/hydra.crt";
|
|
|
|
|
|
# sha256 = "sha256:1l5cvsikb5dnf49ajjjmz50avfkxm28jy65vnb9xidlv5vapi1zp";
|
|
|
|
|
|
# })
|
|
|
|
|
|
#];
|
|
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
#### ЛОКАЛИЗАЦИЯ #####
|
|
|
|
|
|
|
|
|
|
|
|
time.timeZone = "Europe/Moscow";
|
|
|
|
|
|
i18n.defaultLocale = "ru_RU.UTF-8";
|
|
|
|
|
|
console = {
|
|
|
|
|
|
font = "cyr-sun16";
|
|
|
|
|
|
useXkbConfig = true;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
# установлены шрифты Microsoft (corefonts),
|
|
|
|
|
|
# установлен ГОСТ Тип А (задел на будущее),
|
|
|
|
|
|
# установлены базовые свободные шрифты,
|
|
|
|
|
|
# установлен шрифт Jetbrains Mono
|
2025-01-09 13:04:10 +03:00
|
|
|
|
fonts.packages = with pkgs; [
|
|
|
|
|
|
jetbrains-mono
|
|
|
|
|
|
inputs.gostfont.packages.x86_64-linux.gostfont
|
|
|
|
|
|
corefonts
|
|
|
|
|
|
liberation_ttf
|
|
|
|
|
|
];
|
|
|
|
|
|
|
2025-08-23 18:07:01 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
####### ПРОЧИЕ НАСТРОЙКИ #######
|
2025-01-09 13:04:10 +03:00
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
|
|
vim
|
2025-01-23 20:03:45 +03:00
|
|
|
|
tree
|
2025-01-09 13:04:10 +03:00
|
|
|
|
wget
|
2025-01-24 21:57:03 +03:00
|
|
|
|
git
|
2025-01-09 13:04:10 +03:00
|
|
|
|
];
|
|
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# удаленный доступ в пределах нашей сети
|
2025-01-09 13:04:10 +03:00
|
|
|
|
services.openssh = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
settings.PermitRootLogin = "yes";
|
|
|
|
|
|
};
|
2025-01-23 20:03:45 +03:00
|
|
|
|
services.gnome.gnome-keyring.enable = true;
|
2025-01-09 13:04:10 +03:00
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
programs = {
|
2025-02-22 13:46:14 +03:00
|
|
|
|
firejail = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
wrappedBinaries = {
|
|
|
|
|
|
packettracer7 = {
|
|
|
|
|
|
executable = "${packettracer7.packages.x86_64-linux.default}/bin/packettracer7";
|
2025-08-23 18:07:01 +03:00
|
|
|
|
extraArgs = [ "--net=none" "--noprofile" ];
|
2025-02-22 13:46:14 +03:00
|
|
|
|
};
|
|
|
|
|
|
};
|
|
|
|
|
|
};
|
2025-01-23 20:03:45 +03:00
|
|
|
|
java.enable = true;
|
|
|
|
|
|
gnupg.agent = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
enableSSHSupport = true;
|
|
|
|
|
|
};
|
|
|
|
|
|
chromium = {
|
|
|
|
|
|
enable = true;
|
|
|
|
|
|
extraOpts = {
|
|
|
|
|
|
"SyncDisabled" = true;
|
|
|
|
|
|
"PasswordManagerEnabled" = false;
|
|
|
|
|
|
"SpellcheckEnabled" = false;
|
|
|
|
|
|
"homepageLocation" = "https://ya.ru";
|
|
|
|
|
|
};
|
|
|
|
|
|
};
|
|
|
|
|
|
udevil.enable = true; # тоже нужно для флешек
|
2025-01-09 13:04:10 +03:00
|
|
|
|
};
|
|
|
|
|
|
|
2025-01-23 20:03:45 +03:00
|
|
|
|
# НЕ МЕНЯТЬ, иначе придётся все компы переустанавливать, а не обновлять
|
|
|
|
|
|
system.stateVersion = "24.05";
|
2025-01-09 13:04:10 +03:00
|
|
|
|
}
|
2025-08-23 18:07:01 +03:00
|
|
|
|
|
