-{ pkgs, lib, ... }:
+{ config, pkgs, lib, inputs, ... }:
+with lib;
{
- imports = [
- ./bash.nix
- ];
+ boot.cleanTmpDir = mkDefault true;
+ boot.tmpOnTmpfs = mkDefault true;
+ services.logrotate.enable = true;
+ # NOTE: mostly useless on a server, and CPU intensive.
documentation = {
- enable = lib.mkDefault true;
- dev.enable = lib.mkDefault false;
- doc.enable = lib.mkDefault true;
- info.enable = lib.mkDefault false;
- man.enable = lib.mkDefault true;
- nixos.enable = lib.mkDefault false;
+ enable = mkDefault true;
+ dev.enable = mkDefault false;
+ doc.enable = mkDefault true;
+ info.enable = mkDefault false;
+ man.enable = mkDefault true;
+ nixos.enable = mkDefault false;
};
environment.variables = {
EDITOR = "vim";
+ NIXPKGS_CONFIG = mkForce "";
PAGER = "less -R";
SYSTEMD_LESS = "FKMRX";
+ # Setting TZ= avoids a lot of useless syscalls reading /etc/localtime
+ # but requires to restart the session to change the time zone for all programs.
+ TZ = config.time.timeZone;
};
home-manager.users.root = {
imports = [
${pkgs.nix}/bin/nix-env --delete-generations +1 --profile /nix/var/nix/profiles/per-user/root/home-manager
'';
nix = {
- settings.auto-optimise-store = lib.mkDefault true;
- gc.automatic = lib.mkDefault true;
- gc.dates = lib.mkDefault "weekly";
- gc.options = lib.mkDefault "--delete-older-than 7d";
- nixPath = lib.mkForce [ ];
+ settings.auto-optimise-store = mkDefault true;
+ gc.automatic = mkDefault true;
+ gc.dates = mkDefault "weekly";
+ gc.options = mkDefault "--delete-older-than 7d";
+ nixPath = mkForce [ ];
+ registry.nixpkgs = mkDefault { flake = inputs.nixpkgs; };
+ package = pkgs.nixFlakes;
+ extraOptions = "experimental-features = nix-command flakes";
};
security.lockKernelModules = false;
services.journald = {
SystemMaxUse=100M
'';
};
+ systemd.oomd = {
+ enable = mkDefault true;
+ enableRootSlice = mkDefault true;
+ enableSystemSlice = mkDefault true;
+ enableUserServices = mkDefault true;
+ };
+ systemd.services.openssh = {
+ serviceConfig = {
+ ManagedOOMPreference = "omit";
+ };
+ };
+ /*
+ system.nixos.versionSuffix = ".${
+ substring 0 8 (inputs.self.lastModifiedDate or inputs.self.lastModified)}.${
+ inputs.self.shortRev or "dirty"}";
+ system.nixos.revision = mkIf (inputs.self ? rev) inputs.self.rev;
+ */
+ # Let 'nixos-version --json' know about the Git revision of this flake.
+ system.configurationRevision = mkIf (inputs.self ? rev) inputs.self.rev;
+ /*
+ system.configurationRevision =
+ if inputs.self ? rev
+ then inputs.self.rev
+ else throw "Refusing to build from a dirty Git tree!";
+ */
users.mutableUsers = false;
}
sourcephile / git / julm / julm-nix.git / blobdiff