diff options
| author | aszlig <aszlig@redmoonstudios.org> | 2016-11-29 20:35:24 +0100 |
|---|---|---|
| committer | aszlig <aszlig@redmoonstudios.org> | 2016-11-29 20:36:22 +0100 |
| commit | e6547077f02aa9f4799395f4363b6c64cd7c34d9 (patch) | |
| tree | f2d9244ca64b34a0a71f229854bf612bdfdc2c02 /machines/aszlig | |
| parent | 34d6d84fb691a5fb9f5d178b319b3647ffdd7ad2 (diff) | |
machines/brawndo: Use a more sensible Nix config
We want to have sandboxed builds and a read-only store. Might make sense to apply this to all machines in the long term. Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Diffstat (limited to 'machines/aszlig')
| -rw-r--r-- | machines/aszlig/managed/brawndo.nix | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/machines/aszlig/managed/brawndo.nix b/machines/aszlig/managed/brawndo.nix index 76a45c96..ae7a361c 100644 --- a/machines/aszlig/managed/brawndo.nix +++ b/machines/aszlig/managed/brawndo.nix @@ -42,7 +42,12 @@ in { networkmanager.enable = true; }; - nix.maxJobs = 4; + nix = { + maxJobs = 4; + useSandbox = true; + readOnlyStore = true; + buildCores = 0; + }; nixpkgs.config = { allowUnfree = true; # XXX: More granularity! |