my_nixos/hosts/generic/virtualization.nix

{ pkgs, config, lib, ... }:

{
    environment = {
    systemPackages = [ pkgs.qemu pkgs.virt-manager ];
    };
    systemd.tmpfiles.rules = [ "L+ /var/lib/qemu/firmware - - - - ${pkgs.qemu}/share/qemu/firmware" ];
    boot.binfmt.emulatedSystems = [
        "aarch64-linux"
        "riscv64-linux"
    ];
    virtualisation.libvirtd = {
        enable = true;
        qemu = {
        package = pkgs.qemu_kvm;
        runAsRoot = true;
        swtpm.enable = true;
        ovmf = {
            enable = true;
            packages = [(pkgs.OVMF.override {
                secureBoot = true;
                tpmSupport = true;
            }).fd];
        };
        };
      };
    virtualisation.containers.enable = true;
    virtualisation = {
      podman = {
        enable = true;

      # Create a `docker` alias for podman, to use it as a drop-in replacement
        dockerCompat = true;

      # Required for containers under podman-compose to be able to talk to each other.
        defaultNetwork.settings.dns_enabled = true;
    };
  };
   
}