2022-03-17 20:25:12 +01:00
|
|
|
|
{ config, lib, pkgs, utils, ... }:
|
2022-03-17 20:46:25 +01:00
|
|
|
|
|
2022-03-17 20:25:12 +01:00
|
|
|
|
with lib;
|
2022-03-17 20:46:25 +01:00
|
|
|
|
|
2022-03-17 20:25:12 +01:00
|
|
|
|
let
|
2022-03-17 20:46:25 +01:00
|
|
|
|
cfg = config.systemd.tmpfiles;
|
2022-03-17 20:25:12 +01:00
|
|
|
|
systemd = config.systemd.package;
|
|
|
|
|
in
|
|
|
|
|
{
|
|
|
|
|
options = {
|
|
|
|
|
systemd.tmpfiles.rules = mkOption {
|
|
|
|
|
type = types.listOf types.str;
|
|
|
|
|
default = [];
|
|
|
|
|
example = [ "d /tmp 1777 root root 10d" ];
|
2022-07-28 23:19:15 +02:00
|
|
|
|
description = lib.mdDoc ''
|
2022-03-17 20:25:12 +01:00
|
|
|
|
Rules for creation, deletion and cleaning of volatile and temporary files
|
|
|
|
|
automatically. See
|
2022-07-28 23:19:15 +02:00
|
|
|
|
{manpage}`tmpfiles.d(5)`
|
2022-03-17 20:25:12 +01:00
|
|
|
|
for the exact format.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
systemd.tmpfiles.packages = mkOption {
|
|
|
|
|
type = types.listOf types.package;
|
|
|
|
|
default = [];
|
|
|
|
|
example = literalExpression "[ pkgs.lvm2 ]";
|
|
|
|
|
apply = map getLib;
|
2022-08-03 22:46:41 +02:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
List of packages containing {command}`systemd-tmpfiles` rules.
|
2022-03-17 20:25:12 +01:00
|
|
|
|
|
|
|
|
|
All files ending in .conf found in
|
2022-08-03 22:46:41 +02:00
|
|
|
|
{file}`«pkg»/lib/tmpfiles.d`
|
2022-03-17 20:25:12 +01:00
|
|
|
|
will be included.
|
|
|
|
|
If this folder does not exist or does not contain any files an error will be returned instead.
|
|
|
|
|
|
2022-08-03 22:46:41 +02:00
|
|
|
|
If a {file}`lib` output is available, rules are searched there and only there.
|
|
|
|
|
If there is no {file}`lib` output it will fall back to {file}`out`
|
2022-03-17 20:25:12 +01:00
|
|
|
|
and if that does not exist either, the default output will be used.
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
config = {
|
|
|
|
|
systemd.additionalUpstreamSystemUnits = [
|
|
|
|
|
"systemd-tmpfiles-clean.service"
|
|
|
|
|
"systemd-tmpfiles-clean.timer"
|
|
|
|
|
"systemd-tmpfiles-setup.service"
|
|
|
|
|
"systemd-tmpfiles-setup-dev.service"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
systemd.additionalUpstreamUserUnits = [
|
|
|
|
|
"systemd-tmpfiles-clean.service"
|
|
|
|
|
"systemd-tmpfiles-clean.timer"
|
|
|
|
|
"systemd-tmpfiles-setup.service"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
environment.etc = {
|
|
|
|
|
"tmpfiles.d".source = (pkgs.symlinkJoin {
|
|
|
|
|
name = "tmpfiles.d";
|
2022-03-17 20:46:25 +01:00
|
|
|
|
paths = map (p: p + "/lib/tmpfiles.d") cfg.packages;
|
2022-03-17 20:25:12 +01:00
|
|
|
|
postBuild = ''
|
|
|
|
|
for i in $(cat $pathsPath); do
|
|
|
|
|
(test -d "$i" && test $(ls "$i"/*.conf | wc -l) -ge 1) || (
|
|
|
|
|
echo "ERROR: The path '$i' from systemd.tmpfiles.packages contains no *.conf files."
|
|
|
|
|
exit 1
|
|
|
|
|
)
|
|
|
|
|
done
|
|
|
|
|
'' + concatMapStrings (name: optionalString (hasPrefix "tmpfiles.d/" name) ''
|
|
|
|
|
rm -f $out/${removePrefix "tmpfiles.d/" name}
|
|
|
|
|
'') config.system.build.etc.passthru.targets;
|
|
|
|
|
}) + "/*";
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
systemd.tmpfiles.packages = [
|
|
|
|
|
# Default tmpfiles rules provided by systemd
|
|
|
|
|
(pkgs.runCommand "systemd-default-tmpfiles" {} ''
|
|
|
|
|
mkdir -p $out/lib/tmpfiles.d
|
|
|
|
|
cd $out/lib/tmpfiles.d
|
|
|
|
|
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/home.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/journal-nocow.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/static-nodes-permissions.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/systemd.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/systemd-nologin.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/systemd-nspawn.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/systemd-tmp.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/tmp.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/var.conf"
|
|
|
|
|
ln -s "${systemd}/example/tmpfiles.d/x11.conf"
|
|
|
|
|
'')
|
|
|
|
|
# User-specified tmpfiles rules
|
|
|
|
|
(pkgs.writeTextFile {
|
|
|
|
|
name = "nixos-tmpfiles.d";
|
|
|
|
|
destination = "/lib/tmpfiles.d/00-nixos.conf";
|
|
|
|
|
text = ''
|
|
|
|
|
# This file is created automatically and should not be modified.
|
|
|
|
|
# Please change the option ‘systemd.tmpfiles.rules’ instead.
|
|
|
|
|
|
2022-03-17 20:46:25 +01:00
|
|
|
|
${concatStringsSep "\n" cfg.rules}
|
2022-03-17 20:25:12 +01:00
|
|
|
|
'';
|
|
|
|
|
})
|
|
|
|
|
];
|
2022-03-24 21:00:37 +01:00
|
|
|
|
|
|
|
|
|
systemd.tmpfiles.rules = [
|
|
|
|
|
"d /nix/var 0755 root root - -"
|
|
|
|
|
"L+ /nix/var/nix/gcroots/booted-system 0755 root root - /run/booted-system"
|
|
|
|
|
"d /run/lock 0755 root root - -"
|
|
|
|
|
"d /var/db 0755 root root - -"
|
|
|
|
|
"L /etc/mtab - - - - ../proc/mounts"
|
|
|
|
|
"L /var/lock - - - - ../run/lock"
|
|
|
|
|
# Boot-time cleanup
|
|
|
|
|
"R! /etc/group.lock - - - - -"
|
|
|
|
|
"R! /etc/passwd.lock - - - - -"
|
|
|
|
|
"R! /etc/shadow.lock - - - - -"
|
|
|
|
|
"R! /etc/mtab* - - - - -"
|
|
|
|
|
"R! /nix/var/nix/gcroots/tmp - - - - -"
|
|
|
|
|
"R! /nix/var/nix/temproots - - - - -"
|
|
|
|
|
];
|
2022-03-17 20:25:12 +01:00
|
|
|
|
};
|
|
|
|
|
}
|