steveej/infra
1
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions

WIP: debug mycelium nixos container on containerd

Browse source
This commit is contained in:
steveej 2024-11-02 22:47:53 +01:00
parent 6a22e605ce
commit 9d2311bcac
2 changed files with 5 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

0
nix/os/containers/mycelium/configuration.nix
View file

10
nix/os/containers/mycelium/flake.nix
View file

@ -159,17 +159,16 @@
''); '');
systemd.services.testing-credentials = { systemd.services.testing-credentials = {
description = "testing credentials";
wantedBy = ["multi-user.target"]; wantedBy = ["multi-user.target"];
path = [pkgs.coreutils]; path = [pkgs.coreutils];
serviceConfig = { serviceConfig = {
SyslogIdentifier = "testing-credential"; # SyslogIdentifier = "testing-credentials";
StateDirectory = "testing-credentials"; # StateDirectory = "testing-credentials";
DynamicUser = true; # DynamicUser = true;
# User = "tc"; # User = "tc";
# ProtectHome = true; # ProtectHome = true;
ProtectSystem = true; # ProtectSystem = true;
# LoadCredential = [ # LoadCredential = [
# "mycelium-keyfile:${self.nixosConfigurations.default.config.services.mycelium.keyFile}" # "mycelium-keyfile:${self.nixosConfigurations.default.config.services.mycelium.keyFile}"
# "hosts:/etc/hosts" # "hosts:/etc/hosts"
@ -241,6 +240,7 @@
# this is read by the `/init` script and prevents various incompatible commands like mount, etc. # this is read by the `/init` script and prevents various incompatible commands like mount, etc.
# the value of this doesn't seem to matter as long as it's not an empty string. # the value of this doesn't seem to matter as long as it's not an empty string.
"container=nerd" "container=nerd"
"SYSTEMD_LOG_LEVEL=debug"
]; ];
volumes = { volumes = {
# "/var/lib/private/mycelium/key.bin" = {}; # "/var/lib/private/mycelium/key.bin" = {};