dotfiles/nix/base-system/darwin-configuration.nix

{ pkgs, config, lib, ... }:
let
    vfkit = pkgs.callPackage ../packages/vfkit.nix {};
in
{

  nix = {
    package = pkgs.nix;
    enable = true;
    # SEE: https://github.com/NixOS/nix/issues/4119#issuecomment-1734738812
    settings.sandbox = "relaxed";
    extraOptions = ''
      experimental-features = nix-command flakes
      extra-platforms = x86_64-darwin aarch64-darwin x86_64-linux
      trusted-users = root zaphar
    '';
  };

  # Right now the documentation build is broken.
  # TODO(jwall): Add this back when they work again.
  documentation.enable = false;

  # I'm not a zealot about this one.
  nixpkgs.config.allowUnfree = true;

  nixpkgs.overlays = [
   (self: super: {
     neovim = super.neovim.override {
       viAlias = true;
       vimAlias = true;
     };
   })
  ];

  # TODO(zaphar): Move this to a module.
  #launchd.user.agents.ipfs = {
  #  serviceConfig = {
  #    ProgramArguments = [
  #      "${pkgs.kubo}/bin/ipfs"
  #      "daemon"
  #      "--init"
  #    ];
  #    KeepAlive = true;
  #    RunAtLoad = true;
  #  };
  #};

  services.ollama = {
    enable = true;
    user="zaphar";
  };
  services.my-lorri.enable = true;
  services.durnitisp.enable = true;
  services.node-exporter.enable = true;
  services.prometheus.enable = true;
  services.heracles.enable = true;
  services.heracles.settings = [
        {
            title = "Metrics";
            span = {
                end = "now";
                duration = "1h";
                step_duration = "1min";
            };
            graphs = [
                {
                    title = "CPU and Mem Used";
                    query_type = "Range";
                    yaxes = [
                        {
                            anchor = "y";
                            tickformat = "~%";
                        }
                    ];
                    plots = [
                        { # Memory Usage
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                              (node_memory_wired_bytes
                               + node_memory_compressed_bytes
                               + node_memory_active_bytes)
                              / node_memory_total_bytes
                            '';
                            config = {
                                name_format = "`\${labels.instance} - Memory`";
                                yaxis = "y";
                                fill = "tozeroy";
                            };
                        }
                        { # CPU plot
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                              sum by (job,instance, mode)(irate(node_cpu_seconds_total{mode!="idle"}[5m]))
                              / ignoring(mode) group_left
                              sum by (job,instance)(irate(node_cpu_seconds_total[5m]))
                            '';
                            config = {
                                name_format = "`\${labels.instance} - \${labels.mode}`";
                                axis = "y";
                            };
                        }
                    ];
                }
                {
                    title = "Network Latency";
                    query_type = "Range";
                    d3_tick_format = "~s";
                    yaxes = [
                        {
                            anchor = "y";
                            type = "log";
                        }
                    ];
                    plots = [
                        {
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                                stun_attempt_latency_ms
                            '';
                            config = {
                                name_format = "`UDP \${labels.domain} latency`";
                                yaxis = "y";
                            };
                        }
                        {
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                                ping_latency
                            '';
                            config = {
                                name_format = "`Ping \${labels.domain} latency`";
                                yaxis = "y";
                            };
                        }
                    ];
                }
                {
                    title = "Network Errors 5m delta";
                    query_type = "Range";
                    d3_tick_format = "~s";
                    yaxes = [
                        {
                            anchor = "y";
                        }
                    ];
                    plots = [
                        {
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                                delta(stun_attempt_counter{result="err"}[5m])
                            '';
                            config = {
                                name_format = "`UDP \${labels.domain} failure count`";
                                yaxis = "y1";
                            };
                        }
                        {
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                                delta(ping_counter{result="dropped"}[5m])
                            '';
                            config = {
                                name_format = "`icmp \${labels.domain} drop count`";
                                yaxis = "y1";
                            };
                        }
                    ];
                }
                {
                    title = "Network Traffic Bytes";
                    query_type = "Range";
                    d3_tick_format = "~s";
                    yaxes = [
                        {
                            anchor = "y";
                            type = "log";
                        }
                    ];
                    plots = [
                        {
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                                irate(node_network_receive_bytes_total{device=~"(lo|en).*"}[5m])
                            '';
                            config = {
                                name_format = "`\${labels.device} Rx`";
                                yaxis = "y";
                            };
                        }
                        {
                            source = "http://${config.services.prometheus.listen}";
                            query = ''
                                irate(node_network_transmit_bytes_total{device=~"(lo|en).*"}[5m])
                            '';
                            config = {
                                name_format = "`\${labels.device} Tx`";
                                yaxis = "y";
                            };
                        }
                    ];
                }
            ];
        }
    ];

    services.victoria-logs.enable = true;
    services.vector.enable = true;
    services.vector.settings = {
        data_dir = "/var/lib/vector";
        api = {
            enabled = true;
            address = "127.0.0.1:8686";
        };
        sources = {
            prometheus = {
                type = "file";
                include = [
                    config.services.prometheus.stdoutPath
                    config.services.prometheus.stderrPath
                ];
            };
            #heracles = {
            #    type = "file";
            #    include = [
            #        config.services.heracles.stdoutPath
            #        config.services.heracles.stderrPath
            #    ];
            #};
            # TODO(zaphar): We should remap durnitisp output to strip the TTY control characters.
            durnitisp = {
                type = "file";
                include = [
                    config.services.durnitisp.stdoutPath
                    config.services.durnitisp.stderrPath
                ];
            };
            vector = {
                type = "internal_logs";
            };
            victoria-logs = {
                type = "file";
                include = [
                    config.services.victoria-logs.stdoutPath
                    config.services.victoria-logs.stderrPath
                ];
            };
            system = {
                type = "file";
                include = [
                    "/var/log/system.log"
                    "/var/log/com.apple.xpc.launchd/launchd.log"
                ];
            };
            syslog_source = {
                type = "exec";
                command = ["/usr/bin/log" "stream" "--style" "ndjson"];
                mode = "streaming";
            };
        };
        transforms = {
            durnitisp_no_tty = {
                type = "remap";
                inputs = [
                    "durnitisp"
                ];
                source = ''
                  .message = strip_ansi_escape_codes(.message) ?? .message
                '';
            };
            syslog = {
                type = "remap";
                inputs = [
                    "syslog_source"
                ];
                source = ''
                  .message = parse_json(.message) ?? .message
                  del(.command)
                  .syslog
                  .eventType = .message.eventType
                  .processImagePath = .message.processImagePath
                '';
            };
        };
        sinks = {
            victoria_vector = {
                type = "elasticsearch";
                mode = "bulk";
                endpoints = [
                    "http://${config.services.victoria-logs.listenAddr}/insert/elasticsearch"
                ];
                inputs = [
                    "vector"
                ];
                api_version = "v8";
                healthcheck.enabled = false;
                query = {
                    _msg_field = "message";
                    _time_field = "timestamp";
                    _stream_fields = "host,source_type";
                };
            };
            victoria_syslog = {
                type = "elasticsearch";
                mode = "bulk";
                endpoints = [
                    "http://${config.services.victoria-logs.listenAddr}/insert/elasticsearch"
                ];
                inputs = [
                    "syslog"
                ];
                api_version = "v8";
                healthcheck.enabled = false;
                query = {
                    _msg_field = "message";
                    _time_field = "timestamp";
                    _stream_fields = "host,processImagePath,eventType";
                };
            };
            victoria_files = {
                type = "elasticsearch";
                mode = "bulk";
                endpoints = [
                    "http://${config.services.victoria-logs.listenAddr}/insert/elasticsearch"
                ];
                inputs = [
                    "prometheus"
                    #"heracles"
                    "durnitisp_no_tty"
                    "victoria-logs"
                    "system"
                ];
                api_version = "v8";
                healthcheck.enabled = false;
                query = {
                    _msg_field = "message";
                    _time_field = "timestamp";
                    _stream_fields = "host,file";
                };
            };
        };
    };

  # Use a custom configuration.nix location.
  # $ darwin-rebuild switch -I darwin-config=$HOME/.config/nixpkgs/darwin/configuration.nix
  # environment.darwinConfig = "$HOME/.config/nixpkgs/darwin/configuration.nix";
  environment.systemPackages = [
    # Required on darwin for podman machine to work.
    vfkit
  ];

  #services.spacebar.enable = true;
  #services.spacebar.package = "${pkgs.spacebar}";

  # Create /etc/bashrc that loads the nix-darwin environment.
  # programs.bash.enable = true;  # default shell on catalina
  # programs.fish.enable = true;

   system.defaults = {
     finder.AppleShowAllExtensions = true;
   };
   system.systemBuilderArgs = lib.mkIf (config.nix.settings.sandbox == "relaxed") {
      sandboxProfile = ''
        (allow file-read* file-write* process-exec mach-lookup (subpath "${builtins.storeDir}"))
      '';
    };
    system.primaryUser = "zaphar";
  # Used for backwards compatibility, please read the changelog before changing.
  # $ darwin-rebuild changelog
  system.stateVersion = 4;
}
Workaround a sandboxing issues https://github.com/NixOS/nix/issues/4119 2023-12-26 21:40:20 -06:00			`{ pkgs, config, lib, ... }:`
apps: vfkit and podman 2024-06-21 09:38:34 -04:00			`let`
			`vfkit = pkgs.callPackage ../packages/vfkit.nix {};`
			`in`
nix darwin config 2022-02-21 14:01:24 -05:00			`{`

Ensure that nix flakes are turned on 2022-05-02 19:25:20 -04:00			`nix = {`
			`package = pkgs.nix;`
maint: update to 25.05 2025-06-12 18:23:40 -04:00			`enable = true;`
Workaround a sandboxing issues https://github.com/NixOS/nix/issues/4119 2023-12-26 21:40:20 -06:00			`# SEE: https://github.com/NixOS/nix/issues/4119#issuecomment-1734738812`
			`settings.sandbox = "relaxed";`
Ensure that nix flakes are turned on 2022-05-02 19:25:20 -04:00			`extraOptions = ''`
maint: update to 25.05 2025-06-12 18:23:40 -04:00			`experimental-features = nix-command flakes`
Set vi line editing and some additional nix options 2024-01-18 09:27:19 -05:00			`extra-platforms = x86_64-darwin aarch64-darwin x86_64-linux`
feat: Add myself to trusted users 2024-06-12 19:00:42 -04:00			`trusted-users = root zaphar`
Ensure that nix flakes are turned on 2022-05-02 19:25:20 -04:00			`'';`
			`};`

Update to 22.11 and add plantuml 2022-11-20 14:04:02 -05:00			`# Right now the documentation build is broken.`
			`# TODO(jwall): Add this back when they work again.`
			`documentation.enable = false;`

nix darwin config 2022-02-21 14:01:24 -05:00			`# I'm not a zealot about this one.`
			`nixpkgs.config.allowUnfree = true;`

Manage neovim configuration 2022-04-17 16:02:03 -04:00			`nixpkgs.overlays = [`
			`(self: super: {`
			`neovim = super.neovim.override {`
			`viAlias = true;`
			`vimAlias = true;`
			`};`
			`})`
			`];`

Add node-exporter. 2024-02-19 10:40:10 -05:00			`# TODO(zaphar): Move this to a module.`
logs: add launchd logs Also turn off ipfs 2024-08-04 17:06:58 -04:00			`#launchd.user.agents.ipfs = {`
			`# serviceConfig = {`
			`# ProgramArguments = [`
			`# "${pkgs.kubo}/bin/ipfs"`
			`# "daemon"`
			`# "--init"`
			`# ];`
			`# KeepAlive = true;`
			`# RunAtLoad = true;`
			`# };`
			`#};`
Disable podman stuff for the moment 2023-07-11 11:31:13 -04:00
wip: ollama support? 2025-04-04 13:24:54 -04:00			`services.ollama = {`
			`enable = true;`
			`user="zaphar";`
			`};`
feat: direnv and lorri support 2024-10-08 10:09:49 -04:00			`services.my-lorri.enable = true;`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			`services.durnitisp.enable = true;`
Add node-exporter. 2024-02-19 10:40:10 -05:00			`services.node-exporter.enable = true;`
			`services.prometheus.enable = true;`
Heracles FTW 2024-02-23 11:58:30 -05:00			`services.heracles.enable = true;`
			`services.heracles.settings = [`
			`{`
			`title = "Metrics";`
			`span = {`
			`end = "now";`
fix: some logging bits with daemons 2024-06-11 16:56:55 -04:00			`duration = "1h";`
			`step_duration = "1min";`
Heracles FTW 2024-02-23 11:58:30 -05:00			`};`
			`graphs = [`
			`{`
			`title = "CPU and Mem Used";`
			`query_type = "Range";`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`yaxes = [`
			`{`
			`anchor = "y";`
			`tickformat = "~%";`
			`}`
			`];`
Heracles FTW 2024-02-23 11:58:30 -05:00			`plots = [`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`{ # Memory Usage`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
			`(node_memory_wired_bytes`
			`+ node_memory_compressed_bytes`
			`+ node_memory_active_bytes)`
			`/ node_memory_total_bytes`
			`'';`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`config = {`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			name_format = "`\${labels.instance} - Memory`";
			`yaxis = "y";`
			`fill = "tozeroy";`
			`};`
			`}`
Heracles FTW 2024-02-23 11:58:30 -05:00			`{ # CPU plot`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`sum by (job,instance, mode)(irate(node_cpu_seconds_total{mode!="idle"}[5m]))`
Heracles FTW 2024-02-23 11:58:30 -05:00			`/ ignoring(mode) group_left`
feat: cpu query adjustment 2024-03-20 15:15:08 -04:00			`sum by (job,instance)(irate(node_cpu_seconds_total[5m]))`
Heracles FTW 2024-02-23 11:58:30 -05:00			`'';`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`config = {`
Heracles FTW 2024-02-23 11:58:30 -05:00			name_format = "`\${labels.instance} - \${labels.mode}`";
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`axis = "y";`
Heracles FTW 2024-02-23 11:58:30 -05:00			`};`
			`}`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`];`
			`}`
			`{`
feat: Add network errors to our tracking 2024-06-12 16:42:53 -04:00			`title = "Network Latency";`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`query_type = "Range";`
			`d3_tick_format = "~s";`
			`yaxes = [`
			`{`
			`anchor = "y";`
fix: heracles dashboards and restarting 2024-05-28 18:50:36 -04:00			`type = "log";`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`}`
			`];`
			`plots = [`
			`{`
Heracles FTW 2024-02-23 11:58:30 -05:00			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			`stun_attempt_latency_ms`
Heracles FTW 2024-02-23 11:58:30 -05:00			`'';`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`config = {`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			name_format = "`UDP \${labels.domain} latency`";
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`yaxis = "y";`
			`};`
			`}`
			`{`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			`ping_latency`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`'';`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`config = {`
fix: heracles dashboards and restarting 2024-05-28 18:50:36 -04:00			name_format = "`Ping \${labels.domain} latency`";
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`yaxis = "y";`
			`};`
			`}`
			`];`
			`}`
feat: Add network errors to our tracking 2024-06-12 16:42:53 -04:00			`{`
			`title = "Network Errors 5m delta";`
			`query_type = "Range";`
			`d3_tick_format = "~s";`
			`yaxes = [`
			`{`
			`anchor = "y";`
			`}`
			`];`
			`plots = [`
			`{`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
			`delta(stun_attempt_counter{result="err"}[5m])`
			`'';`
			`config = {`
			name_format = "`UDP \${labels.domain} failure count`";
			`yaxis = "y1";`
			`};`
			`}`
feat: More heracles network dashboard config 2024-06-20 23:24:56 -04:00			`{`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
			`delta(ping_counter{result="dropped"}[5m])`
			`'';`
			`config = {`
			name_format = "`icmp \${labels.domain} drop count`";
			`yaxis = "y1";`
			`};`
			`}`
feat: Add network errors to our tracking 2024-06-12 16:42:53 -04:00			`];`
			`}`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`{`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			`title = "Network Traffic Bytes";`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`query_type = "Range";`
			`d3_tick_format = "~s";`
			`yaxes = [`
			`{`
			`anchor = "y";`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`type = "log";`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`}`
			`];`
			`plots = [`
			`{`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			`irate(node_network_receive_bytes_total{device=~"(lo\|en).*"}[5m])`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`'';`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`config = {`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			name_format = "`\${labels.device} Rx`";
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`yaxis = "y";`
			`};`
			`}`
			`{`
			`source = "http://${config.services.prometheus.listen}";`
			`query = ''`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			`irate(node_network_transmit_bytes_total{device=~"(lo\|en).*"}[5m])`
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`'';`
feat: update heracles, use log scale for network bytes 2024-05-22 13:28:29 -04:00			`config = {`
feat: Durnitisp network quality monitoring 2024-04-11 15:28:01 -04:00			name_format = "`\${labels.device} Tx`";
Expand the Heracles dashboard a bit 2024-02-28 11:13:56 -05:00			`yaxis = "y";`
Heracles FTW 2024-02-23 11:58:30 -05:00			`};`
			`}`
			`];`
			`}`
			`];`
			`}`
			`];`
Add node-exporter. 2024-02-19 10:40:10 -05:00
feat: Add victoria-logs as a service A better log query interface 2024-06-01 10:10:32 -04:00			`services.victoria-logs.enable = true;`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`services.vector.enable = true;`
			`services.vector.settings = {`
			`data_dir = "/var/lib/vector";`
fix: update clio and fix vector remap language 2024-06-05 17:40:02 -04:00			`api = {`
			`enabled = true;`
tweaks: vector logging 2024-06-20 23:24:21 -04:00			`address = "127.0.0.1:8686";`
fix: update clio and fix vector remap language 2024-06-05 17:40:02 -04:00			`};`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`sources = {`
			`prometheus = {`
			`type = "file";`
			`include = [`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`config.services.prometheus.stdoutPath`
			`config.services.prometheus.stderrPath`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`];`
			`};`
Update: clio and add some more logging facilities 2024-06-07 20:22:19 -04:00			`#heracles = {`
			`# type = "file";`
			`# include = [`
			`# config.services.heracles.stdoutPath`
			`# config.services.heracles.stderrPath`
			`# ];`
			`#};`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`# TODO(zaphar): We should remap durnitisp output to strip the TTY control characters.`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`durnitisp = {`
			`type = "file";`
			`include = [`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`config.services.durnitisp.stdoutPath`
			`config.services.durnitisp.stderrPath`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`];`
			`};`
			`vector = {`
fix: some logging bits with daemons 2024-06-11 16:56:55 -04:00			`type = "internal_logs";`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`};`
Update: clio and add some more logging facilities 2024-06-07 20:22:19 -04:00			`victoria-logs = {`
			`type = "file";`
			`include = [`
			`config.services.victoria-logs.stdoutPath`
			`config.services.victoria-logs.stderrPath`
			`];`
			`};`
			`system = {`
			`type = "file";`
			`include = [`
			`"/var/log/system.log"`
logs: add launchd logs Also turn off ipfs 2024-08-04 17:06:58 -04:00			`"/var/log/com.apple.xpc.launchd/launchd.log"`
Update: clio and add some more logging facilities 2024-06-07 20:22:19 -04:00			`];`
			`};`
feat: all the system logs are in victoria logs now 2024-08-07 16:42:33 -04:00			`syslog_source = {`
			`type = "exec";`
			`command = ["/usr/bin/log" "stream" "--style" "ndjson"];`
			`mode = "streaming";`
			`};`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`};`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`transforms = {`
fix: update clio and fix vector remap language 2024-06-05 17:40:02 -04:00			`durnitisp_no_tty = {`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`type = "remap";`
			`inputs = [`
			`"durnitisp"`
			`];`
fix: update clio and fix vector remap language 2024-06-05 17:40:02 -04:00			`source = ''`
			`.message = strip_ansi_escape_codes(.message) ?? .message`
			`'';`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`};`
feat: all the system logs are in victoria logs now 2024-08-07 16:42:33 -04:00			`syslog = {`
			`type = "remap";`
			`inputs = [`
			`"syslog_source"`
			`];`
			`source = ''`
			`.message = parse_json(.message) ?? .message`
			`del(.command)`
			`.syslog`
			`.eventType = .message.eventType`
			`.processImagePath = .message.processImagePath`
			`'';`
			`};`
feat: use clio to help make the log rotation work 2024-06-04 20:26:07 -04:00			`};`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`sinks = {`
feat: all the system logs are in victoria logs now 2024-08-07 16:42:33 -04:00			`victoria_vector = {`
			`type = "elasticsearch";`
			`mode = "bulk";`
			`endpoints = [`
			`"http://${config.services.victoria-logs.listenAddr}/insert/elasticsearch"`
			`];`
			`inputs = [`
			`"vector"`
			`];`
			`api_version = "v8";`
			`healthcheck.enabled = false;`
			`query = {`
			`_msg_field = "message";`
			`_time_field = "timestamp";`
			`_stream_fields = "host,source_type";`
			`};`
			`};`
			`victoria_syslog = {`
			`type = "elasticsearch";`
			`mode = "bulk";`
			`endpoints = [`
			`"http://${config.services.victoria-logs.listenAddr}/insert/elasticsearch"`
			`];`
			`inputs = [`
			`"syslog"`
			`];`
			`api_version = "v8";`
			`healthcheck.enabled = false;`
			`query = {`
			`_msg_field = "message";`
			`_time_field = "timestamp";`
			`_stream_fields = "host,processImagePath,eventType";`
			`};`
			`};`
			`victoria_files = {`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`type = "elasticsearch";`
			`mode = "bulk";`
			`endpoints = [`
fix: some logging bits with daemons 2024-06-11 16:56:55 -04:00			`"http://${config.services.victoria-logs.listenAddr}/insert/elasticsearch"`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`];`
			`inputs = [`
			`"prometheus"`
Update: clio and add some more logging facilities 2024-06-07 20:22:19 -04:00			`#"heracles"`
fix: update clio and fix vector remap language 2024-06-05 17:40:02 -04:00			`"durnitisp_no_tty"`
Update: clio and add some more logging facilities 2024-06-07 20:22:19 -04:00			`"victoria-logs"`
			`"system"`
feat: vector sending logs to victoria-logs 2024-06-01 13:02:27 -04:00			`];`
			`api_version = "v8";`
			`healthcheck.enabled = false;`
			`query = {`
			`_msg_field = "message";`
			`_time_field = "timestamp";`
			`_stream_fields = "host,file";`
			`};`
			`};`
			`};`
			`};`
feat: Add victoria-logs as a service A better log query interface 2024-06-01 10:10:32 -04:00
nix darwin config 2022-02-21 14:01:24 -05:00			`# Use a custom configuration.nix location.`
			`# $ darwin-rebuild switch -I darwin-config=$HOME/.config/nixpkgs/darwin/configuration.nix`
			`# environment.darwinConfig = "$HOME/.config/nixpkgs/darwin/configuration.nix";`
apps: vfkit and podman 2024-06-21 09:38:34 -04:00			`environment.systemPackages = [`
docs: comment on why we need vfkit 2024-08-22 23:23:51 -05:00			`# Required on darwin for podman machine to work.`
apps: vfkit and podman 2024-06-21 09:38:34 -04:00			`vfkit`
			`];`
nix darwin config 2022-02-21 14:01:24 -05:00
			`#services.spacebar.enable = true;`
			`#services.spacebar.package = "${pkgs.spacebar}";`

			`# Create /etc/bashrc that loads the nix-darwin environment.`
darwin-configuration with flake support 2022-04-16 21:35:23 -04:00			`# programs.bash.enable = true; # default shell on catalina`
nix darwin config 2022-02-21 14:01:24 -05:00			`# programs.fish.enable = true;`

Set vi line editing and some additional nix options 2024-01-18 09:27:19 -05:00			`system.defaults = {`
			`finder.AppleShowAllExtensions = true;`
			`};`
Workaround a sandboxing issues https://github.com/NixOS/nix/issues/4119 2023-12-26 21:40:20 -06:00			`system.systemBuilderArgs = lib.mkIf (config.nix.settings.sandbox == "relaxed") {`
			`sandboxProfile = ''`
			`(allow file-read* file-write* process-exec mach-lookup (subpath "${builtins.storeDir}"))`
			`'';`
			`};`
maint: update to 25.05 2025-06-12 18:23:40 -04:00			`system.primaryUser = "zaphar";`
nix darwin config 2022-02-21 14:01:24 -05:00			`# Used for backwards compatibility, please read the changelog before changing.`
			`# $ darwin-rebuild changelog`
			`system.stateVersion = 4;`
			`}`