NixOS/hosts/orion/os/filesystem.nix

{ config, lib, pkgs, modulesPath, ... }:
{
  imports =
    [ (modulesPath + "/profiles/qemu-guest.nix") ];

  boot = {
    initrd = {
      availableKernelModules = [ "ahci" "xhci_pci" "virtio_pci" "sr_mod" "virtio_blk" ];
      kernelModules = [ ];
      luks.devices = {
        "luksroot" = {
          device = "/dev/disk/by-label/NixOS-Crypt";
          allowDiscards = true;
        };
      };
    };
    loader = {
      systemd-boot.enable = true;
      efi.canTouchEfiVariables = true;
    };
    kernelModules = [ "kvm-intel" ];
    extraModulePackages = [ ];
  };

  zramSwap.enable = true;

  fileSystems = {
    "/" = {
      device = "none";
      fsType = "tmpfs";
      options = [ "defaults" "noatime" "mode=755" ];
    };

    "/boot" = {
      device = "/dev/disk/by-label/NixOS-Boot";
      fsType = "vfat";
      options = [ "defaults" "noatime" ];
      depends = [ "/" ];
    };

    "/nix" = {
      device = "/dev/disk/by-label/NixOS-Primary";
      fsType = "btrfs";
      options = [ "subvol=@nix" "compress=zstd" "noatime" ];
    };
  };


  environment.persistence = {
    "/nix/persist" = {
      hideMounts = true;
      directories = [
        "/var/lib"
        "/var/log"
        "/etc/nixos"
      ];
      files = [
        "/etc/machine-id"
        "/etc/nix/id_rsa"
      ];
      users.price = {
        directories = [
          "Git"
          "ISOs"
          "Downloads"
          "Keep"
          "Notes"
          ".local/share"
          { directory = ".gnupg"; mode = "0700"; }
          { directory = ".ssh"; mode = "0700"; }
        ];
        files = [
          ".zsh_history"
        ];
      };
    };
  };
}