emily
0cdcc4844d
Some checks are pending
Build / images (nscloud-ubuntu-22.04-arm64-4x16, nixos-24.05) (push) Waiting to run
Build / images (nscloud-ubuntu-22.04-arm64-4x16, nixos-unstable) (push) Waiting to run
Build / images (ubuntu-latest, nixos-24.05) (push) Waiting to run
Build / images (ubuntu-latest, nixos-unstable) (push) Waiting to run
73 lines
2.1 KiB
Nix
73 lines
2.1 KiB
Nix
# This module optimizes for non-interactive deployments by remove some store paths
|
|
# which are primarily useful for interactive installations.
|
|
|
|
{ lib, pkgs, modulesPath, ... }:
|
|
{
|
|
disabledModules = [
|
|
# This module adds values to multiple lists (systemPackages, supportedFilesystems)
|
|
# which are impossible/unpractical to remove, so we disable the entire module.
|
|
"profiles/base.nix"
|
|
];
|
|
|
|
imports = [
|
|
# ./zfs-minimal.nix
|
|
./no-bootloaders.nix
|
|
./python-minimal.nix
|
|
./noveau-workaround.nix
|
|
# reduce closure size by removing perl
|
|
"${modulesPath}/profiles/perlless.nix"
|
|
# FIXME: we still are left with nixos-generate-config due to nixos-install-tools
|
|
{ system.forbiddenDependenciesRegexes = lib.mkForce []; }
|
|
];
|
|
|
|
# among others, this prevents carrying a stdenv with gcc in the image
|
|
system.extraDependencies = lib.mkForce [ ];
|
|
|
|
# prevents shipping nixpkgs, unnecessary if system is evaluated externally
|
|
nix.registry = lib.mkForce { };
|
|
|
|
# would pull in nano
|
|
programs.nano.enable = false;
|
|
|
|
# prevents strace
|
|
environment.defaultPackages = lib.mkForce [
|
|
pkgs.rsync
|
|
pkgs.parted
|
|
pkgs.gptfdisk
|
|
pkgs.e2fsprogs
|
|
];
|
|
|
|
# normal users are not allowed with sys-users
|
|
# see https://github.com/NixOS/nixpkgs/pull/328926
|
|
users.users.nixos = {
|
|
isSystemUser = true;
|
|
isNormalUser = lib.mkForce false;
|
|
shell = "/run/current-system/sw/bin/bash";
|
|
group = "nixos";
|
|
};
|
|
users.groups.nixos = {};
|
|
|
|
# we prefer root as this is also what we use in nixos-anywhere
|
|
services.getty.autologinUser = lib.mkForce "root";
|
|
|
|
# we are missing this from base.nix
|
|
boot.supportedFilesystems = [
|
|
"ext4"
|
|
"btrfs"
|
|
# probably not needed but does not seem to increase closure size
|
|
"cifs"
|
|
"f2fs"
|
|
## anyone still using this over ext4?
|
|
#"jfs"
|
|
"ntfs"
|
|
## no longer seems to be maintained, anyone still using it?
|
|
#"reiserfs"
|
|
"vfat"
|
|
"xfs"
|
|
];
|
|
boot.kernelModules = [
|
|
# we have to explicitly enable this, otherwise it is not loaded even when creating a raid:
|
|
# https://github.com/nix-community/nixos-anywhere/issues/249
|
|
"dm-raid"
|
|
];
|
|
}
|