nix-gscheits/machines/raven/disko.nix

{
  boot.initrd.systemd.enable = true;

  disko.devices = {
    disk = {
      nvme = {
        type = "disk";
        device = "/dev/disk/by-id/ata-WD_Green_2.5_240GB_232497451701";
        content = {
          type = "gpt";
          partitions = {
            esp = {
              type = "EF00";
              size = "1024M";
              content = {
                type = "filesystem";
                format = "vfat";
                mountpoint = "/boot";
                mountOptions = [ "uid=0" "gid=0" "fmask=0077" "dmask=0077" "nodev" "nosuid" "noexec" ];
              };
            };
            luks = {
              size = "100%";
              content = {
                type = "luks";
                name = "raven-crypt";
                settings = {
                  allowDiscards = true;
                };
                extraFormatArgs = [ "--hash sha512 --use-random --pbkdf argon2id --iter-time 5000 --pbkdf-memory ${builtins.toString (4*1024*1024)} --pbkdf-parallel 4" ];
                content = {
                  type = "btrfs";
                  extraArgs = [ "-f" ];
                  subvolumes = {
                    "/root" = {
                      mountpoint = "/";
                      mountOptions = [ "compress=zstd" "noatime" ];
                    };
                    "/home" = {
                      mountpoint = "/home";
                      mountOptions = [ "compress=zstd" "noatime" "nodev" "nosuid" ];
                    };
                    "/nix" = {
                      mountpoint = "/nix";
                      mountOptions = [ "compress=zstd" "noatime" "noatime" "nodev" ];
                    };
                  };
                };
              };
            };
          };
        };
      };
    };
  };
}