System/Nixinator: Configure libvirt virtualisation

home/christoph/nixinator/default.nix

@@ -107,6 +107,10 @@
         handbrake
         teamspeak6-client
 
+        # virt-manager # use system program option
+        virt-viewer
+        # gnome-boxes # doesn't list VMs imported using virsh
+
         steam-devices-udev-rules
       ];
 

home/homemodules/packages/default.nix

@@ -13,6 +13,7 @@ in {
   options.homemodules.packages = import ./options.nix {inherit lib mylib;};
 
   config = lib.mkIf packages.enable {
+    # TODO: Add extra packages option and use that from host-specific configs
     home.packages = with pkgs;
       lib.mkMerge [
         # Common packages

system/nixinator/default.nix

@@ -193,7 +193,25 @@
     # };
   };
 
-  # environment.systemPackages = with pkgs; [];
+  environment.systemPackages = with pkgs; [
+    spice
+    spice-gtk
+  ];
+
+  virtualisation = {
+    libvirtd = {
+      enable = true;
+      qemu = {
+        package = pkgs.qemu_kvm;
+        # ovmf.enable = true; # deprecated
+        swtpm.enable = true;
+        runAsRoot = true;
+      };
+    };
+    spiceUSBRedirection.enable = true;
+  };
+
+  networking.firewall.trustedInterfaces = ["virbr0"]; # libvirt
 
   programs = {
     ausweisapp = {
@@ -205,6 +223,8 @@
       enable = true;
       gdb = true;
     };
+
+    virt-manager.enable = true;
   };
 
   services = {

system/systemmodules/docker/default.nix

@@ -72,7 +72,6 @@ in {
         if docker.podman
         then "podman"
         else "docker"; # "docker" or "podman"
-      libvirtd.enable = true;
     };
 
     systemd.services = let