2023-06-11 23:09:59 +02:00
|
|
|
{ secret, ... }:
|
|
|
|
let
|
|
|
|
nfsOptions = [
|
|
|
|
"noauto"
|
|
|
|
"X-mount.mkdir"
|
|
|
|
"x-systemd.device-timeout=10"
|
|
|
|
"timeo=14"
|
|
|
|
"soft"
|
|
|
|
"noatime"
|
|
|
|
"x-systemd.after=wireguard-wg0.target"
|
|
|
|
"x-systemd.wants=wireguard-wg0.target"
|
|
|
|
];
|
|
|
|
|
|
|
|
blowholeAddress = secret.network.ips.blowhole.dns or "";
|
|
|
|
in
|
|
|
|
{
|
2023-10-03 16:55:14 +02:00
|
|
|
boot.zfs.requestEncryptionCredentials = [];
|
|
|
|
|
2023-06-11 23:09:59 +02:00
|
|
|
fileSystems = {
|
|
|
|
"/" = {
|
2023-10-03 16:55:14 +02:00
|
|
|
device = "none";
|
|
|
|
fsType = "tmpfs";
|
|
|
|
options = [ "defaults" "size=512M" "mode=755" "noexec" ];
|
|
|
|
};
|
|
|
|
"/tmp" = {
|
|
|
|
device = "none";
|
|
|
|
fsType = "tmpfs";
|
|
|
|
options = [ "defaults" "size=512M" "mode=755" ];
|
|
|
|
};
|
|
|
|
"/nix/persist" = {
|
|
|
|
device = "omen-ssd/persist";
|
|
|
|
fsType = "zfs";
|
|
|
|
neededForBoot = true;
|
|
|
|
};
|
|
|
|
"/old/root" = {
|
2023-06-11 23:09:59 +02:00
|
|
|
device = "omen-ssd/local/root";
|
|
|
|
fsType = "zfs";
|
2023-10-03 16:55:14 +02:00
|
|
|
neededForBoot = true;
|
|
|
|
};
|
|
|
|
"/old/home" = {
|
|
|
|
device = "omen-ssd/safe/home";
|
|
|
|
fsType = "zfs";
|
|
|
|
neededForBoot = true;
|
2023-06-11 23:09:59 +02:00
|
|
|
};
|
|
|
|
"/nix" = {
|
|
|
|
device = "omen-ssd/local/nix";
|
|
|
|
fsType = "zfs";
|
|
|
|
};
|
|
|
|
"/home" = {
|
2023-10-03 16:55:14 +02:00
|
|
|
device = "omen-ssd/ephemeral/home";
|
2023-06-11 23:09:59 +02:00
|
|
|
fsType = "zfs";
|
2023-10-03 16:55:14 +02:00
|
|
|
neededForBoot = true;
|
2023-06-11 23:09:59 +02:00
|
|
|
};
|
2023-10-22 00:34:04 +02:00
|
|
|
"/root" = {
|
|
|
|
device = "omen-ssd/ephemeral/root";
|
|
|
|
fsType = "zfs";
|
|
|
|
neededForBoot = true;
|
|
|
|
};
|
|
|
|
"/nix/tmp" = {
|
|
|
|
device = "omen-ssd/ephemeral/nix-tmp";
|
|
|
|
fsType = "zfs";
|
|
|
|
neededForBoot = true;
|
|
|
|
};
|
2023-06-11 23:09:59 +02:00
|
|
|
|
2023-09-02 16:43:30 +02:00
|
|
|
"/boot/1" = {
|
|
|
|
device = "/dev/disk/by-uuid/14647e24-3421-4398-b30e-537de6472433";
|
2023-06-11 23:09:59 +02:00
|
|
|
fsType = "ext4";
|
|
|
|
};
|
2023-09-02 16:43:30 +02:00
|
|
|
"/boot/1/EFI" = {
|
|
|
|
device = "/dev/disk/by-uuid/C58B-3BF8";
|
2023-06-11 23:09:59 +02:00
|
|
|
fsType = "vfat";
|
|
|
|
};
|
|
|
|
|
2023-10-03 16:55:14 +02:00
|
|
|
"/var/secrets" = {
|
2023-06-11 23:09:59 +02:00
|
|
|
device = "omen-ssd/local/secrets";
|
|
|
|
fsType = "zfs";
|
|
|
|
};
|
|
|
|
|
|
|
|
"/mnt/net/kyle" = {
|
|
|
|
fsType = "nfs";
|
|
|
|
device = "${blowholeAddress}:/mnt/kyle";
|
|
|
|
options = nfsOptions;
|
|
|
|
};
|
|
|
|
"/mnt/net/cartman" = {
|
|
|
|
fsType = "nfs";
|
|
|
|
device = "${blowholeAddress}:/mnt/cartman";
|
|
|
|
options = nfsOptions;
|
|
|
|
};
|
|
|
|
"/mnt/net/stan" = {
|
|
|
|
fsType = "nfs";
|
|
|
|
device = "${blowholeAddress}:/mnt/stan";
|
|
|
|
options = nfsOptions;
|
|
|
|
};
|
|
|
|
"/mnt/net/getmail.d" = {
|
|
|
|
fsType = "nfs";
|
|
|
|
device = "${blowholeAddress}:/var/nfs/getmail/getmail.d";
|
|
|
|
options = nfsOptions;
|
|
|
|
};
|
|
|
|
"/mnt/net/mail-configuration" = {
|
|
|
|
fsType = "nfs";
|
|
|
|
device = "${blowholeAddress}:/var/nfs/mail-configuration";
|
|
|
|
options = nfsOptions;
|
|
|
|
};
|
|
|
|
};
|
|
|
|
}
|