blob: 5c1ff5d53bcf1bcf4b5cbaafb920f371d140e734 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
|
{
config,
lib,
pkgs,
nixpkgs,
#params
#enableBios ? true,
#enableEfi ? true,
#enableUsb ? true,
...
}:
#with lib;
{
imports = [
(nixpkgs + "/nixos/modules/installer/cd-dvd/iso-image.nix")
];
fileSystems = lib.mkImageMediaOverride config.lib.isoFileSystems; # // {
# "/".device = lib.mkForce "/dev/disk/by-label/NIXOS_ISO";
# "/nix/.ro-store".device = lib.mkForce "/sysroot/iso/nix-store.squashfs";
#};
isoImage = {
isoName = "Spacebar-Selfhosting-Kit-${config.system.nixos.label}-${pkgs.stdenv.hostPlatform.system}.iso";
makeEfiBootable = false;
makeUsbBootable = false;
makeBiosBootable = true;
};
boot.supportedFilesystems = lib.mkForce [ ];
hardware.enableRedistributableFirmware = lib.mkForce false;
#environment.systemPackages = lib.mkForce [ ];
documentation.enable = lib.mkForce false;
documentation.nixos.enable = lib.mkForce false;
networking.wireless.enable = lib.mkForce false;
system.extraDependencies = lib.mkForce [ ];
boot = {
loader = {
grub.memtest86.enable = false;
#systemd-boot.enable = true;
grub.enable = false;
timeout = lib.mkForce 1;
};
#kernelPackages = pkgs.linuxPackages_latest;
systemdExecutable = "${pkgs.systemd}/bin/init";
enableContainers = lib.mkForce false;
};
#perlless profile
system.switch.enable = lib.mkForce false;
# Remove perl from activation
#system.etc.overlay.enable = lib.mkForce true;
#systemd.sysusers.enable = lib.mkForce true;
# Random perl remnants
programs.less.lessopen = lib.mkForce null;
programs.command-not-found.enable = lib.mkForce false;
environment.defaultPackages = lib.mkForce [ ];
documentation.info.enable = lib.mkForce false;
documentation.man.enable = false;
system = {
#activatable = false;
copySystemConfiguration = false;
includeBuildDependencies = false;
disableInstallerTools = lib.mkForce true;
build = {
separateActivationScript = true;
};
};
nix.enable = false;
networking.firewall.enable = false;
networking.networkmanager.enable = false;
systemd.coredump.enable = false;
services.timesyncd.enable = false;
services.nscd.enableNsncd = false;
networking.dhcpcd.enable = false;
services.udev.enable = false;
services.nscd.enable = false;
system.nssModules = lib.mkForce [ ];
systemd.oomd.enable = false;
#services.getty = {
# autologinUser = "root";
# loginProgram = "${pkgs.bash}/bin/bash";
# loginOptions = "--login";
#};
security = {
loginDefs = {
settings = {
ENCRYPT_METHOD = "MD5";
};
};
sudo.enable = false;
};
nixpkgs.overlays = [
(import ./overlays/systemd-overlay.nix)
(import ./overlays/grub-overlay.nix)
];
services.lvm.enable = lib.mkForce false;
boot.initrd.services.lvm.enable = lib.mkForce false;
boot.initrd.systemd.suppressedUnits = [
"systemd-hibernate-clear.service"
];
systemd.suppressedSystemUnits = [
"systemd-hibernate-clear.service"
"systemd-bootctl@.service"
"systemd-bootctl.socket"
];
}
|
