From e31ddcec43f3d4688c95ae5aed21fa6e44bd5edb Mon Sep 17 00:00:00 2001 From: Christoph Cullmann Date: Mon, 19 Aug 2024 23:20:17 +0200 Subject: [PATCH] allow olm and fix /var/lib/nixos missing persistence --- share/common.nix | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/share/common.nix b/share/common.nix index f7e2803..e458291 100644 --- a/share/common.nix +++ b/share/common.nix @@ -100,6 +100,10 @@ in environment.persistence."/nix/persistent" = { hideMounts = true; directories = [ + # user and group mappings + # Either "/var/lib/nixos" has to be persisted, or all users and groups must have a uid/gid specified. The following users are missing a uid + "/var/lib/nixos" + # systemd timers { directory = "/var/lib/systemd/timers"; user = "root"; group = "root"; mode = "u=rwx,g=rx,o=rx"; } @@ -331,6 +335,11 @@ in zsh ]; + # olm is insecure + nixpkgs.config.permittedInsecurePackages = [ + "olm-3.2.16" + ]; + # run browsers in a sandbox programs.firejail = { enable = true;