nix-config/hosts/minime/zfs.nix

{
  pkgs,
  lib,
  config,
  ...
}:
{
  services.fstrim.enable = true;
  services.zfs = {
    autoSnapshot.enable = true;
    trim.enable = true;
    autoScrub = {
      enable = true;
      pools = [ "zpool" ];
      interval = "weekly";
      randomizedDelaySec = "6h";
    };
  };
  networking.hostId = "41ba28ff";
  boot = {
    kernelPackages =
      let
        zfsCompatibleKernelPackages = lib.filterAttrs (
          name: kernelPackages:
          (builtins.match "linux_[0-9]+_[0-9]+" name) != null
          && (builtins.tryEval kernelPackages).success
          && (!kernelPackages.${config.boot.zfs.package.kernelModuleAttribute}.meta.broken)
        ) pkgs.linuxKernel.packages;
        latestKernelPackage = lib.last (
          lib.sort (a: b: (lib.versionOlder a.kernel.version b.kernel.version)) (
            builtins.attrValues zfsCompatibleKernelPackages
          )
        );
      in
      latestKernelPackage;
    supportedFilesystems = [ "zfs" ];
    kernelParams = [ "nohibernate" ];
    plymouth.enable = false;
    tmp.useTmpfs = true;
  };

  # unlock over ssh
  boot.initrd.network = {
    enable = true;
    ssh = {
      enable = true;
      port = 2222;
      hostKeys = [ /etc/secrets/initrd/ssh_host_rsa_key ];
      authorizedKeys = [
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJl9iYG5oHBq/poBn7Jf1/FGWWbAnbx+NKjs7qtT3uAK 0xa@toaster 2024-12-31"
      ];
    };
    postCommands = ''
      zpool import -a
      echo "zfs load-key -a; killall zfs" >> /root/.profile
    '';
  };
  # support for network
  boot.initrd.kernelModules = [
    "igc"
    "i40e"
    "mt7921e"
  ];
  boot.kernelModules = [
    "igc"
    "i40e"
    "mt7921e"
  ];
}
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`{`
			`pkgs,`
			`lib,`
			`config,`
			`...`
			`}:`
			`{`
add minime 2025-01-02 19:32:39 +00:00			`services.fstrim.enable = true;`
			`services.zfs = {`
			`autoSnapshot.enable = true;`
			`trim.enable = true;`
			`autoScrub = {`
			`enable = true;`
			`pools = [ "zpool" ];`
minime: scrub more often Since we are having an actual zraid on consumer hardware, worth doing it more often 2025-01-09 22:26:07 +01:00			`interval = "weekly";`
			`randomizedDelaySec = "6h";`
add minime 2025-01-02 19:32:39 +00:00			`};`
			`};`
			`networking.hostId = "41ba28ff";`
			`boot = {`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`kernelPackages =`
			`let`
			`zfsCompatibleKernelPackages = lib.filterAttrs (`
			`name: kernelPackages:`
			`(builtins.match "linux_[0-9]+_[0-9]+" name) != null`
			`&& (builtins.tryEval kernelPackages).success`
			`&& (!kernelPackages.${config.boot.zfs.package.kernelModuleAttribute}.meta.broken)`
add remote zfs unlock 2025-01-02 20:02:48 +00:00			`) pkgs.linuxKernel.packages;`
			`latestKernelPackage = lib.last (`
			`lib.sort (a: b: (lib.versionOlder a.kernel.version b.kernel.version)) (`
			`builtins.attrValues zfsCompatibleKernelPackages`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`)`
			`);`
			`in`
			`latestKernelPackage;`
add minime 2025-01-02 19:32:39 +00:00			`supportedFilesystems = [ "zfs" ];`
			`kernelParams = [ "nohibernate" ];`
			`plymouth.enable = false;`
			`tmp.useTmpfs = true;`
			`};`
add remote zfs unlock 2025-01-02 20:02:48 +00:00
			`# unlock over ssh`
			`boot.initrd.network = {`
			`enable = true;`
			`ssh = {`
			`enable = true;`
			`port = 2222;`
			`hostKeys = [ /etc/secrets/initrd/ssh_host_rsa_key ];`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`authorizedKeys = [`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJl9iYG5oHBq/poBn7Jf1/FGWWbAnbx+NKjs7qtT3uAK 0xa@toaster 2024-12-31"`
			`];`
add remote zfs unlock 2025-01-02 20:02:48 +00:00			`};`
			`postCommands = ''`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`zpool import -a`
			`echo "zfs load-key -a; killall zfs" >> /root/.profile`
add remote zfs unlock 2025-01-02 20:02:48 +00:00			`'';`
			`};`
			`# support for network`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`boot.initrd.kernelModules = [`
			`"igc"`
			`"i40e"`
			`"mt7921e"`
			`];`
			`boot.kernelModules = [`
			`"igc"`
			`"i40e"`
			`"mt7921e"`
			`];`
add minime 2025-01-02 19:32:39 +00:00			`}`