Isolate NixOS QEMU VMs from each other and from the host by using a
-squashfs for the VM's /nix/store that contains only the VM's dependencies
+private /nix/store image that contains only the VM's dependencies
(like the installer has) rather than a virtio mount of the host's entire
/nix/store.
-**Update:** `virtualisation.useNixStoreImage` exists now! But it doesn't
-work! :( See the note in `checks/mount-grep.nix`
+**Update:** `virtualisation.useNixStoreImage` exists now! But it builds
+the store image at runtime, rather that at build-time, drastically
+increasing VM start-up time.
projects / nixos-qemu-vm-isolation / blobdiff