From fc7906744491adbc8c12f81fece7415653ca695a Mon Sep 17 00:00:00 2001 From: GRMrGecko Date: Sun, 8 Sep 2024 23:30:03 -0500 Subject: [PATCH] Update and add more sysctl configs. --- flake.lock | 46 ++++++++++++++++---------------- flake.nix | 2 +- modules/nixos/common.nix | 5 ++++ modules/nixos/virtualization.nix | 11 +++++--- 4 files changed, 37 insertions(+), 27 deletions(-) diff --git a/flake.lock b/flake.lock index a0d63f1..08d8701 100644 --- a/flake.lock +++ b/flake.lock @@ -7,11 +7,11 @@ ] }, "locked": { - "lastModified": 1723080788, - "narHash": "sha256-C5LbM5VMdcolt9zHeLQ0bYMRjUL+N+AL5pK7/tVTdes=", + "lastModified": 1725377834, + "narHash": "sha256-tqoAO8oT6zEUDXte98cvA1saU9+1dLJQe3pMKLXv8ps=", "owner": "nix-community", "repo": "disko", - "rev": "ffc1f95f6c28e1c6d1e587b51a2147027a3e45ed", + "rev": "e55f9a8678adc02024a4877c2a403e3f6daf24fe", "type": "github" }, "original": { @@ -26,16 +26,16 @@ "utils": "utils" }, "locked": { - "lastModified": 1722178161, - "narHash": "sha256-9Nmg+1ngRCsKMJXN4JWFzg4SLTj1iJfakxiOsF48rZw=", + "lastModified": 1725688145, + "narHash": "sha256-WCdR85Psl7yfl1/gDruytzZcDUtj+V3GBxwb0kMWbts=", "owner": "GermanBread", "repo": "declarative-flatpak", - "rev": "cbabea429cd7d659041e5338e869a8e70f59fa74", + "rev": "1cd36d4068cdeb3fa3fb815f8c9bfbc1217f445d", "type": "github" }, "original": { "owner": "GermanBread", - "ref": "stable", + "ref": "stable-v3", "repo": "declarative-flatpak", "type": "github" } @@ -47,11 +47,11 @@ ] }, "locked": { - "lastModified": 1720042825, - "narHash": "sha256-A0vrUB6x82/jvf17qPCpxaM+ulJnD8YZwH9Ci0BsAzE=", + "lastModified": 1725703823, + "narHash": "sha256-tDgM4d8mLK0Hd6YMB2w1BqMto1XBXADOzPEaLl10VI4=", "owner": "nix-community", "repo": "home-manager", - "rev": "e1391fb22e18a36f57e6999c7a9f966dc80ac073", + "rev": "208df2e558b73b6a1f0faec98493cb59a25f62ba", "type": "github" }, "original": { @@ -68,11 +68,11 @@ ] }, "locked": { - "lastModified": 1723015306, - "narHash": "sha256-jQnFEtH20/OsDPpx71ntZzGdRlpXhUENSQCGTjn//NA=", + "lastModified": 1725831139, + "narHash": "sha256-9syY5nEehCswE8AMcjpUO4T0iX9nrNbzq69Kqcs92L0=", "owner": "nix-community", "repo": "home-manager", - "rev": "b3d5ea65d88d67d4ec578ed11d4d2d51e3de525e", + "rev": "8a175a89137fe798b33c476d4dae17dba5fb3fd3", "type": "github" }, "original": { @@ -83,27 +83,27 @@ }, "nixpkgs": { "locked": { - "lastModified": 1720535198, - "narHash": "sha256-zwVvxrdIzralnSbcpghA92tWu2DV2lwv89xZc8MTrbg=", + "lastModified": 1724316499, + "narHash": "sha256-Qb9MhKBUTCfWg/wqqaxt89Xfi6qTD3XpTzQ9eXi3JmE=", "owner": "NixOS", "repo": "nixpkgs", - "rev": "205fd4226592cc83fd4c0885a3e4c9c400efabb5", + "rev": "797f7dc49e0bc7fab4b57c021cdf68f595e47841", "type": "github" }, "original": { "owner": "NixOS", - "ref": "nixos-23.11", + "ref": "nixos-24.05", "repo": "nixpkgs", "type": "github" } }, "nixpkgs-unstable": { "locked": { - "lastModified": 1722813957, - "narHash": "sha256-IAoYyYnED7P8zrBFMnmp7ydaJfwTnwcnqxUElC1I26Y=", + "lastModified": 1725634671, + "narHash": "sha256-v3rIhsJBOMLR8e/RNWxr828tB+WywYIoajrZKFM+0Gg=", "owner": "nixos", "repo": "nixpkgs", - "rev": "cb9a96f23c491c081b38eab96d22fa958043c9fa", + "rev": "574d1eac1c200690e27b8eb4e24887f8df7ac27c", "type": "github" }, "original": { @@ -115,11 +115,11 @@ }, "nixpkgs_2": { "locked": { - "lastModified": 1722987190, - "narHash": "sha256-68hmex5efCiM2aZlAAEcQgmFI4ZwWt8a80vOeB/5w3A=", + "lastModified": 1725693463, + "narHash": "sha256-ZPzhebbWBOr0zRWW10FfqfbJlan3G96/h3uqhiFqmwg=", "owner": "nixos", "repo": "nixpkgs", - "rev": "21cc704b5e918c5fbf4f9fff22b4ac2681706d90", + "rev": "68e7dce0a6532e876980764167ad158174402c6f", "type": "github" }, "original": { diff --git a/flake.nix b/flake.nix index 289f4e1..a457aaa 100644 --- a/flake.nix +++ b/flake.nix @@ -20,7 +20,7 @@ url = "github:nix-community/home-manager"; inputs.nixpkgs.follows = "nixpkgs"; }; - flatpaks.url = "github:GermanBread/declarative-flatpak/stable"; + flatpaks.url = "github:GermanBread/declarative-flatpak/stable-v3"; }; # Flake outputs, NixOS and Home Configurations. diff --git a/modules/nixos/common.nix b/modules/nixos/common.nix index 3a52f14..175883f 100644 --- a/modules/nixos/common.nix +++ b/modules/nixos/common.nix @@ -21,6 +21,11 @@ boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = true; boot.supportedFilesystems = [ "btrfs" ]; + boot.kernel.sysctl = { + "kernel.sysrq" = 1; + "fs.inotify.max_user_watches" = 999999999; + "vm.max_map_count" = 2147483642; + }; # BTRFS Scrubbing Services. services.btrfs.autoScrub.enable = true; diff --git a/modules/nixos/virtualization.nix b/modules/nixos/virtualization.nix index eb4c039..e5ec063 100644 --- a/modules/nixos/virtualization.nix +++ b/modules/nixos/virtualization.nix @@ -15,9 +15,14 @@ /run/current-system/sw/bin/iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT ''; - boot.kernel.sysctl."net.bridge.bridge-nf-call-ip6tables" = 0; - boot.kernel.sysctl."net.bridge.bridge-nf-call-iptables" = 0; - boot.kernel.sysctl."net.bridge.bridge-nf-call-arptables" = 0; + boot.kernel.sysctl = { + "net.bridge.bridge-nf-call-ip6tables" = 0; + "net.bridge.bridge-nf-call-iptables" = 0; + "net.bridge.bridge-nf-call-arptables" = 0; + # Fixing ESP Home No buffer space available + "net.ipv4.igmp_max_memberships" = 50; + "net.ipv4.igmp_max_msf" = 30; + }; virtualisation.libvirtd = { enable = true;