dotfiles/provision/hosts/wsl/configuration.nix

{ config, pkgs, user, lib, inputs, nixos-wsl, hostname, ... }:
let
  defaultUser = user;
in 
{
  imports = [ 
    nixos-wsl.nixosModules.wsl
  ];

  wsl = {
    inherit defaultUser;

    enable = true;
    wslConf.automount.root = "/mnt";
  };

  # Set networking options
  networking.hostName = "${hostname}"; 
  networking.firewall.checkReversePath = "loose";
  networking.firewall.enable = false;

  boot.isContainer = true;

  # configure root
  users.users.root = {
    extraGroups = [ "root" ];
  };
  security.sudo.wheelNeedsPassword = false;

  # Disable systemd units that don't make sense on WSL
  systemd.services."serial-getty@ttyS0".enable = false;
  systemd.services."serial-getty@hvc0".enable = false;
  systemd.services."getty@tty1".enable = false;
  systemd.services."autovt@".enable = false;

  systemd.services.firewall.enable = false;
  systemd.services.systemd-resolved.enable = false;
  systemd.services.systemd-udevd.enable = false;

  # Don't allow emergency mode, because we don't have a console.
  systemd.enableEmergencyMode = false;

  environment.systemPackages = with pkgs; [
    firefox
    wget
  ];

  # Add DoD CA certs to trusted source
  security.pki.certificateFiles = [
    ./certs/DoDRootCA3.crt
    ./certs/DoDRootCA4.crt
    ./certs/DoDRootCA5.crt
    ./certs/DoDRootCA6.crt
    ./certs/DoDInteroperabilityRootCA2.crt
    ./certs/USDoDCCEBInteroperabilityRootCA2.crt
  ];

  # Modules 
  modules = {
    programs = {
      chezmoi.apply = true;
      git.keys = false;
    };
  };
}
use custom hostname from json file 2024-12-21 14:31:57 -08:00			`{ config, pkgs, user, lib, inputs, nixos-wsl, hostname, ... }:`
basic wsl config 2024-09-27 15:25:33 -07:00			`let`
			`defaultUser = user;`
			`in`
			`{`
			`imports = [`
			`nixos-wsl.nixosModules.wsl`
			`];`

			`wsl = {`
			`inherit defaultUser;`

			`enable = true;`
			`wslConf.automount.root = "/mnt";`
			`};`

			`# Set networking options`
use custom hostname from json file 2024-12-21 14:31:57 -08:00			`networking.hostName = "${hostname}";`
basic wsl config 2024-09-27 15:25:33 -07:00			`networking.firewall.checkReversePath = "loose";`
			`networking.firewall.enable = false;`

			`boot.isContainer = true;`

			`# configure root`
			`users.users.root = {`
			`extraGroups = [ "root" ];`
			`};`
			`security.sudo.wheelNeedsPassword = false;`

			`# Disable systemd units that don't make sense on WSL`
			`systemd.services."serial-getty@ttyS0".enable = false;`
			`systemd.services."serial-getty@hvc0".enable = false;`
			`systemd.services."getty@tty1".enable = false;`
			`systemd.services."autovt@".enable = false;`

			`systemd.services.firewall.enable = false;`
			`systemd.services.systemd-resolved.enable = false;`
			`systemd.services.systemd-udevd.enable = false;`

			`# Don't allow emergency mode, because we don't have a console.`
			`systemd.enableEmergencyMode = false;`

			`environment.systemPackages = with pkgs; [`
add firefox to wsl 2024-09-27 16:53:05 -07:00			`firefox`
update nipr cert on wsl 2024-10-02 09:10:57 -07:00			`wget`
basic wsl config 2024-09-27 15:25:33 -07:00			`];`

fix CA certs and git keys for wsl 2024-10-02 12:59:39 -07:00			`# Add DoD CA certs to trusted source`
update nipr cert on wsl 2024-10-02 09:10:57 -07:00			`security.pki.certificateFiles = [`
update certs for wsl 2025-02-06 22:18:39 -08:00			`./certs/DoDRootCA3.crt`
			`./certs/DoDRootCA4.crt`
			`./certs/DoDRootCA5.crt`
			`./certs/DoDRootCA6.crt`
			`./certs/DoDInteroperabilityRootCA2.crt`
			`./certs/USDoDCCEBInteroperabilityRootCA2.crt`
update nipr cert on wsl 2024-10-02 09:10:57 -07:00			`];`

basic wsl config 2024-09-27 15:25:33 -07:00			`# Modules`
			`modules = {`
optionally apply chezmoi dots with home-manager 2024-09-29 08:48:38 -07:00			`programs = {`
by default include chezmoi 2024-09-30 10:35:46 -07:00			`chezmoi.apply = true;`
fix CA certs and git keys for wsl 2024-10-02 12:59:39 -07:00			`git.keys = false;`
optionally apply chezmoi dots with home-manager 2024-09-29 08:48:38 -07:00			`};`
basic wsl config 2024-09-27 15:25:33 -07:00			`};`
			`}`