From db82ee34196dbdfd9bc0eb6191f9e23ad0521c76 Mon Sep 17 00:00:00 2001
From: h7x4 <h7x4@nani.wtf>
Date: Sat, 5 Oct 2024 12:08:58 +0200
Subject: [PATCH] kasei: add arch nspawn container

---
 hosts/kasei/configuration.nix          |  3 +++
 hosts/kasei/nspawn-containers/arch.nix | 28 ++++++++++++++++++++++++++
 2 files changed, 31 insertions(+)
 create mode 100644 hosts/kasei/nspawn-containers/arch.nix

diff --git a/hosts/kasei/configuration.nix b/hosts/kasei/configuration.nix
index d552e33..ef7090c 100644
--- a/hosts/kasei/configuration.nix
+++ b/hosts/kasei/configuration.nix
@@ -11,6 +11,9 @@
     ./services/tailscale.nix
     ./services/keybase.nix
 
+    ./nspawn-containers/arch.nix
+  ];
+
   system.stateVersion = "22.05";
 
   boot.binfmt.emulatedSystems = [
diff --git a/hosts/kasei/nspawn-containers/arch.nix b/hosts/kasei/nspawn-containers/arch.nix
new file mode 100644
index 0000000..a7c01ef
--- /dev/null
+++ b/hosts/kasei/nspawn-containers/arch.nix
@@ -0,0 +1,28 @@
+{ ... }:
+{
+  systemd.targets.machines.enable = true;
+
+  systemd.nspawn."arch" = {
+    enable = true;
+    execConfig.Boot = true;
+
+    filesConfig = {
+      BindReadOnly = [
+        "/nix/store"
+        # "/etc/resolv.conf:/etc/resolv.conf"
+      ];
+      Bind = [
+        "/home/h7x4/git"
+        "/home/h7x4/pico"
+        "/home/h7x4/Downloads"
+      ];
+    };
+    networkConfig.Private = false;
+  };
+
+  systemd.services."systemd-nspawn@arch" = {
+    enable = true;
+    requiredBy = [ "machines.target" ];
+    overrideStrategy = "asDropin";
+  };
+}