zuckerberg/nix-config
1
0
Fork 0
Code Issues Pull Requests Actions Activity

disable services which don't work in nixos containers
All checks were successful
Check Flake / check-flake (push) Successful in 3m17s
Details

Browse Source
This commit is contained in:
Zuckerberg
2026-02-25 23:37:26 -08:00
parent f4a4edf478
commit 4eb0401263
2 changed files with 12 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
common/default.nix
View File

@@ -96,7 +96,7 @@
{ groups = [ "wheel" ]; persist = true; } { groups = [ "wheel" ]; persist = true; }
]; ];
nix.gc.automatic = true; nix.gc.automatic = !config.boot.isContainer;
security.acme.acceptTerms = true; security.acme.acceptTerms = true;
security.acme.defaults.email = "zuckerberg@neet.dev"; security.acme.defaults.email = "zuckerberg@neet.dev";

15
common/sandboxed-workspace/vm.nix
View File

@@ -133,8 +133,15 @@ let
}; };
in in
{ {
config = mkIf (cfg.enable && vmWorkspaces != { }) { config = mkMerge [
# Convert VM workspace configs to microvm.nix format (mkIf (cfg.enable && vmWorkspaces != { }) {
microvm.vms = mapAttrs mkVmConfig vmWorkspaces; # Convert VM workspace configs to microvm.nix format
}; microvm.vms = mapAttrs mkVmConfig vmWorkspaces;
})
# microvm.nixosModules.host enables KSM, but /sys is read-only in containers
(mkIf config.boot.isContainer {
hardware.ksm.enable = false;
})
];
} }