"/boot" = { fsType = "ext4"; device = "/dev/disk/by-uuid/fd1c511e-2bc0-49d5-b8bb-95e7e8c8c816"; };
"/etc" = { fsType = "zfs"; device = "zpool/root/etc"; };
"/home" = { fsType = "zfs"; device = "zpool/root/home"; };
- "/home/immae" = { fsType = "zfs"; device = "zpool/root/home/immae"; };
"/tmp" = { fsType = "zfs"; device = "zpool/root/tmp"; };
"/var" = { fsType = "zfs"; device = "zpool/root/var"; };
"/data" = { fsType = "ext4"; label = "data"; };
in
["command=\"${pkgs.zrepl}/bin/zrepl stdinserver --config ${zreplConfig} eldiron\",restrict ${config.myEnv.zrepl_backup.ssh_key.public}"];
};
- security.sudo.extraRules = pkgs.lib.mkAfter [
- {
- commands = [
- { command = "/home/immae/.nix-profile/root_scripts/*"; options = [ "NOPASSWD" ]; }
- ];
- users = [ "immae" ];
- runAs = "root";
- }
- ];
virtualisation.docker.enable = true;
virtualisation.docker.storageDriver = "zfs";
virtualisation.libvirtd.enable = true;
virtualisation.libvirtd.qemu.package = pkgs-no-overlay.qemu;
systemd.services.libvirtd.path = lib.mkAfter [ config.boot.zfs.package ];
- users.groups.immae = {};
- users.extraUsers.immae.extraGroups = [ "immae" "libvirtd" "docker" ];
systemd.services.libvirtd.postStart = ''
install -m 0770 -g libvirtd -d /var/lib/libvirt/images
'';