Skip to content

AntonHakansson/nixos-config

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3,879 Commits

.github

.github

 
 

machines

machines

 
 

modules

modules

 
 

overlays

overlays

 
 

pkgs

pkgs

 
 

secrets

secrets

 
 

templates

templates

 
 

.dir-locals.el

.dir-locals.el

 
 

.envrc

.envrc

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.org

README.org

 
 

flake.lock

flake.lock

 
 

flake.nix

flake.nix

 
 

secrets.nix

secrets.nix

 
 

Repository files navigation

NixOS configuration

https://github.com/AntonHakansson/nixos-config/actions/workflows/cachix.yml/badge.svg

Highlights:

  • NixOS configurations for desktop, laptop, and server contexts
  • Opt-in persistence through impermanence + blank snapshotting on boot
  • Encrypted zfs partition
  • Deploy secrets using agenix
  • Flexible Home Manager config files
  • wayland environments (sway)
  • Declarative themes
  • Github CI/CD and binary cache

Filesystem quirks

On boot the root mount(rpool/local/root) gets wiped to its @blank snapshot. To preserve directories, mount them from either the rpool/safe/data dataset mounted to /data or the rpool/local/cache dataset mounted to /cache.

  • /data is for files that we want to persist and backup.
  • /cache is for files that we want to persist.

Run src_sh{zfsdiff} tool to discover directories that will be erased on next boot.

References:

First time setup

See ZFS - NixOS Wiki for more information and advanced options for configuring zpool.

  1. Create three partitions:
    • Boot
    • Swap
    • ZFS
    disk=/dev/disk/by-id/foo
sudo parted "$disk" -- mklabel gpt
sudo parted "$disk" -- mkpart primary 512MiB -8GiB # zfs
sudo parted "$disk" -- mkpart primary linux-swap -8GiB 100% # swap
sudo parted "$disk" -- mkpart ESP fat32 1MiB 512MiB # boot
sudo parted "$disk" -- set 3 esp on

sudo mkswap -L swap "${disk}-part2"
sudo mkfs.fat -F 32 -n EFI "${disk}-part3"
  2. Create ZPool: 
    zpool create -O mountpoint=none -O encryption=aes-256-gcm -O keyformat=passphrase rpool "${disk}-part1"
  3. Create datasets and mount them: 
    zfs create -o mountpoint=legacy rpool/local
zfs create -o mountpoint=legacy rpool/safe

zfs create -o mountpoint=legacy rpool/local/root
zfs snapshot rpool/local/root@blank
zfs create -o mountpoint=legacy rpool/local/nix
zfs set compression=lz4 rpool/local/nix
zfs create -o mountpoint=legacy rpool/local/nix-store
zfs set compression=lz4 rpool/local/nix-store
zfs create -o mountpoint=legacy rpool/local/cache
zfs set compression=lz4 rpool/local/cache
zfs create -o mountpoint=legacy rpool/safe/data
zfs set compression=lz4 rpool/safe/data

mount -t zfs rpool/local/root /mnt

mkdir -p /mnt/boot
mount "${disk}-part3" /mnt/boot

mkdir -p /mnt/nix/store
mount -t zfs rpool/local/nix /mnt/nix
mount -t zfs rpool/local/nix-store /mnt/nix/store

mkdir -p /mnt/cache
mount -t zfs rpool/local/cache /mnt/cache

mkdir -p /mnt/data
mount -t zfs rpool/safe/data /mnt/data
  4. Set src_nix{networking.hostId} to src_sh{cat /etc/machine-id | head -c 8}

About

NixOS configuration of my machines

Topics

nixos home-manager

Resources

Readme

License

Unlicense license
Activity

Stars

5 stars

Watchers

3 watching

Forks

0 forks
Report repository

Contributors 2

  •  
  •  

Languages