From 69931d4db93be968e82bdbbe57a00cad5d3c02ac Mon Sep 17 00:00:00 2001
From: alisceon <alisceon@protonmail.com>
Date: Tue, 30 Sep 2025 19:43:18 +0200
Subject: [PATCH] all the mounts, none of the secure

---
 hosts/tesla-nixos/configuration.nix | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/hosts/tesla-nixos/configuration.nix b/hosts/tesla-nixos/configuration.nix
index 1480958..c3b4e00 100644
--- a/hosts/tesla-nixos/configuration.nix
+++ b/hosts/tesla-nixos/configuration.nix
@@ -36,6 +36,9 @@
     internalInterfaces = ["ve-+"];
     externalInterface = "ens18";
   };
+  environment.systemPackages = with pkgs; [
+    fuse-overlayfs
+  ];
 
   containers.gitlab-runner = {
     autoStart = true;
@@ -55,6 +58,15 @@
         hostPath = "/var/lib/gitlab-runner";
         isReadOnly = false;
       };
+      "/proc" = {
+        hostPath = "/run/proc";
+      };
+      "/sys" = {
+        hostPath = "/run/sys";
+      };
+      "/dev/fuse" = {
+        hostPath = "/dev/fuse";
+      };
     };
 
     # Guest (inside the nspawn container)
@@ -91,6 +103,7 @@
         docker
         git
         crun
+        fuse-overlayfs
       ];
       systemd.services."enable-linger-gitlab-runner" = {
         description = "Enable linger for gitlab-runner";