| nix.nixPath | The default Nix expression search path, used by the Nix
evaluator to look up paths enclosed in angle brackets
(e.g. <nixpkgs>).
|
| nix.sshServe.write | Whether to enable writing to the Nix store as a remote store via SSH
|
| nix.sshServe.trusted | Whether to add nix-ssh to the nix.settings.trusted-users
|
| nix.gc.dates | How often or when garbage collection is performed
|
| nix.sshServe.keys | A list of SSH public keys allowed to access the binary cache via SSH.
|
| nix.settings | Configuration for Nix, see
https://nixos.org/manual/nix/stable/command-ref/conf-file.html or
nix.conf(5) for available options
|
| nix.checkConfig | If enabled, checks that Nix can parse the generated nix.conf.
|
| nix.gc.options | Options given to nix-collect-garbage when the garbage collector is run automatically.
|
| nix.checkAllErrors | If enabled, checks the nix.conf parsing for any kind of error
|
| nix.sshServe.enable | Whether to enable serving the Nix store as a remote store via SSH.
|
| nix.buildMachines.*.sshUser | The username to log in as on the remote host
|
| nix.enable | Whether to enable Nix
|
| nix.extraOptions | Additional text appended to nix.conf.
|
| nix.settings.require-sigs | If enabled (the default), Nix will only download binaries from binary caches if
they are cryptographically signed with any of the keys listed in
nix.settings.trusted-public-keys
|
| nix.settings.allowed-users | A list of names of users (separated by whitespace) that are
allowed to connect to the Nix daemon
|
| nix.optimise.dates | Specification (in the format described by
systemd.time(7)) of the time at
which the optimiser will run.
|
| nix.sshServe.protocol | The specific Nix-over-SSH protocol to use.
|
| nix.registry.<name>.to | The flake reference from is rewritten to
|
| nix.settings.trusted-public-keys | List of public keys used to sign binary caches
|
| nix.nrBuildUsers | Number of nixbld user accounts created to
perform secure concurrent builds
|
| nix.channel.enable | Whether the nix-channel command and state files are made available on the machine
|
| nix.package | This option specifies the Nix package instance to use throughout the system.
|
| nix.gc.automatic | Automatically run the garbage collector at a specific time.
|
| nix.registry.<name>.from | The flake reference to be rewritten
|
| nix.firewall.enable | Whether to enable firewalling for outgoing traffic of the nix daemon.
|
| nix.buildMachines | This option lists the machines to be used if distributed builds are
enabled (see nix.distributedBuilds)
|
| nix.registry.<name>.flake | The flake input from is rewritten to.
|
| nix.settings.max-jobs | This option defines the maximum number of jobs that Nix will try to
build in parallel
|
| nix.registry.<name>.exact | Whether the from reference needs to match exactly
|
| nix.settings.cores | This option defines the maximum number of concurrent tasks during
one build
|
| nix.buildMachines.*.hostName | The hostname of the build machine.
|
| nix.firewall.allowNonTCPUDP | Whether to allow traffic that is neither TCP nor UDP
|
| nix.buildMachines.*.maxJobs | The number of concurrent jobs the build machine supports
|
| nix.buildMachines.*.sshKey | The path to the SSH private key with which to authenticate on
the build machine
|
| nix.registry | A system-wide flake registry
|
| nix.buildMachines.*.system | The system type the build machine can execute derivations on
|
| nix.gc.persistent | Takes a boolean argument
|
| nix.firewall.allowedTCPPorts | TCP ports to which traffic is allowed
|
| nix.firewall.allowedUDPPorts | UDP ports to which traffic is allowed
|
| nix.settings.trusted-substituters | List of binary cache URLs that non-root users can use (in
addition to those specified using
nix.settings.substituters) by passing
--option binary-caches to Nix commands.
|
| nix.firewall.allowLoopback | Whether to allow traffic on the loopback interface
|
| nix.optimise.automatic | Automatically run the nix store optimiser at a specific time.
|
| nix.gc.randomizedDelaySec | Add a randomized delay before each garbage collection
|
| nix.buildMachines.*.systems | The system types the build machine can execute derivations on
|
| nix.buildMachines.*.speedFactor | The relative speed of this builder
|
| nix.settings.sandbox | If set, Nix will perform builds in a sandboxed environment that it
will set up automatically for each build
|
| nix.settings.trusted-users | A list of names of users that have additional rights when
connecting to the Nix daemon, such as the ability to specify
additional binary caches, or to import unsigned NARs
|
| nix.daemonIOSchedClass | Nix daemon process I/O scheduling class
|
| nix.buildMachines.*.publicHostKey | The (base64-encoded) public host key of this builder
|
| nix.settings.extra-sandbox-paths | Directories from the host filesystem to be included
in the sandbox.
|
| nix.firewall.extraNftablesRules | Extra nftables rules to prepend to the generated ones
|
| nix.distributedBuilds | Whether to distribute builds to the machines listed in
nix.buildMachines.
|
| nix.settings.system-features | The set of features supported by the machine
|
| nix.buildMachines.*.protocol | The protocol used for communicating with the build machine
|
| nix.optimise.persistent | Takes a boolean argument
|
| nix.daemonCPUSchedPolicy | Nix daemon process CPU scheduling policy
|
| nix.settings.auto-optimise-store | If set to true, Nix automatically detects files in the store that have
identical contents, and replaces them with hard links to a single copy
|
| nix.firewall.allowPrivateNetworks | Whether to allow traffic to local networks
|
| nix.optimise.randomizedDelaySec | Add a randomized delay before the optimizer will run
|
| nix.daemonIOSchedPriority | Nix daemon process I/O scheduling priority
|
| nix.buildMachines.*.supportedFeatures | A list of features supported by this builder
|
| nix.settings.substituters | List of binary cache URLs used to obtain pre-built binaries
of Nix packages
|
| nix.buildMachines.*.mandatoryFeatures | A list of features mandatory for this builder
|
| boot.binfmt.addEmulatedSystemsToNixSandbox | Whether to add the boot.binfmt.emulatedSystems to nix.settings.extra-platforms
|