pyrox.dev / nixpkgs
lol
fork atom
nixpkgs / nixos / modules / virtualisation / container-config.nix
at 16.09-beta 661 B view raw
1{ config, pkgs, lib, ... }: 2 3with lib; 4 5{ 6 7 config = mkIf config.boot.isContainer { 8 9 # Disable some features that are not useful in a container. 10 sound.enable = mkDefault false; 11 services.udisks2.enable = mkDefault false; 12 powerManagement.enable = mkDefault false; 13 14 networking.useHostResolvConf = true; 15 16 # Containers should be light-weight, so start sshd on demand. 17 services.openssh.startWhenNeeded = mkDefault true; 18 19 # Shut up warnings about not having a boot loader. 20 system.build.installBootLoader = "${pkgs.coreutils}/bin/true"; 21 22 # Not supported in systemd-nspawn containers. 23 security.audit.enable = false; 24 25 }; 26 27}