AGENTS.md: update
This commit is contained in:
10
AGENTS.md
10
AGENTS.md
@@ -102,10 +102,10 @@ Each service file in `services/` follows this structure:
|
||||
|
||||
### Important Patterns
|
||||
- **Impermanence**: Root `/` is tmpfs. Only `/persistent`, `/nix`, and ZFS mounts survive reboots. Any new persistent state must be declared in `modules/impermanence.nix`.
|
||||
- **Port uniqueness**: `flake.nix` has an assertion that all ports in `service_configs.ports` are unique. Always add new ports there.
|
||||
- **Port uniqueness**: `flake.nix` has an assertion that all ports in `service_configs.ports` are unique. Always add new ports there. Make sure to put them in the specific "Public" and "Private" sections that are seperated by comments.
|
||||
- **Hugepages**: Services needing large pages declare their budget in `service-configs.nix` under `hugepages_2m.services`. The kernel sysctl is set automatically from the total.
|
||||
- **Domain**: Primary domain is `sigkill.computer`. Old domain `gardling.com` redirects automatically.
|
||||
- **Hardened kernel**: Uses `linuxPackages_6_12_hardened`. Security-sensitive defaults apply.
|
||||
- **Hardened kernel**: Uses `_hardened` kernel. Security-sensitive defaults apply.
|
||||
|
||||
### Test Pattern
|
||||
Tests use `pkgs.testers.runNixOSTest` (NixOS VM tests):
|
||||
@@ -135,9 +135,3 @@ ssh root@server-public # deploy user
|
||||
ssh primary@server-public # normal user (doas instead of sudo)
|
||||
```
|
||||
|
||||
## Learnings
|
||||
|
||||
Discoveries, gotchas, and patterns found during sessions. Add new entries at the bottom.
|
||||
|
||||
<!-- Format: ### YYYY-MM-DD: Short title \n Description of the learning. -->
|
||||
|
||||
|
||||
Reference in New Issue
Block a user