From b81923a4448c920c4f37e7c665512eeea514246e Mon Sep 17 00:00:00 2001
From: Astro <astro@spaceboyz.net>
Date: Tue, 6 Apr 2021 18:38:59 +0200
Subject: [PATCH] nixos-module/defaults: set kernel paremeters/version

---
 nix/nixos-module/defaults.nix       | 5 +++++
 nix/nixos-module/server/server2.nix | 2 --
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/nix/nixos-module/defaults.nix b/nix/nixos-module/defaults.nix
index ced7e74..bae78e8 100644
--- a/nix/nixos-module/defaults.nix
+++ b/nix/nixos-module/defaults.nix
@@ -1,6 +1,11 @@
 { hostName, inputs, pkgs, options, lib, ... }:
 
 {
+  # No server/router runs any untrusted user code
+  boot.kernelParams = [ "mitigations=off" ];
+  # Includes wireguard
+  boot.kernelPackages = pkgs.linuxPackages_latest;
+
   nix = {
     package = pkgs.nixFlakes;
     extraOptions = "experimental-features = nix-command flakes";
diff --git a/nix/nixos-module/server/server2.nix b/nix/nixos-module/server/server2.nix
index f3d6f5e..fa253e2 100644
--- a/nix/nixos-module/server/server2.nix
+++ b/nix/nixos-module/server/server2.nix
@@ -40,8 +40,6 @@
   boot.loader.grub.version = 2;
   boot.loader.grub.device = "/dev/sda";
 
-  boot.kernelParams = [ "mitigations=off" ];
-
   networking.hostName = "server2"; # Define your hostname.
   networking.hostId = "52525252";