From f11377e0ca969e66286c3a8872b7988557276914 Mon Sep 17 00:00:00 2001
From: Mohammad Rafiq <rafiq@rrv.sh>
Date: Thu, 19 Jun 2025 20:13:00 +0800
Subject: [PATCH] feat(nixos): add podman module

---
 .../machine/virtualisation/podman/default.nix | 21 +++++++++++++++++++
 systems/x86_64-linux/nemesis/default.nix      |  1 +
 2 files changed, 22 insertions(+)
 create mode 100644 modules/nixos/machine/virtualisation/podman/default.nix

diff --git a/modules/nixos/machine/virtualisation/podman/default.nix b/modules/nixos/machine/virtualisation/podman/default.nix
new file mode 100644
index 0000000..decd79d
--- /dev/null
+++ b/modules/nixos/machine/virtualisation/podman/default.nix
@@ -0,0 +1,21 @@
+{ config, lib, ... }:
+let
+  inherit (lib) mkEnableOption mkIf;
+  cfg = config.machine.virtualisation.podman;
+in
+{
+  options.machine.virtualisation.podman = {
+    enable = mkEnableOption "";
+  };
+  config = mkIf cfg.enable {
+    virtualisation = {
+      containers.enable = true;
+      podman = {
+        enable = true;
+        dockerCompat = true;
+        defaultNetwork.settings.dns_enabled = true;
+      };
+    };
+    users.users."${config.mainUser.name}".extraGroups = [ "podman" ];
+  };
+}
diff --git a/systems/x86_64-linux/nemesis/default.nix b/systems/x86_64-linux/nemesis/default.nix
index b35755f..111ad76 100644
--- a/systems/x86_64-linux/nemesis/default.nix
+++ b/systems/x86_64-linux/nemesis/default.nix
@@ -14,6 +14,7 @@
       drive = "/dev/disk/by-id/nvme-CT2000P3SSD8_2325E6E77434";
       ephemeralRoot = true;
     };
+    virtualisation.podman.enable = true;
   };
 
   desktop = {