Home Explore Help
Sign In
madoka
/
dotfiles
mirror of https://github.com/ludovicopiero/dotfiles
Watch 1
Star 0
Fork 0
Files Issues 0 Wiki
Branch: master
Branches Tags
dotfiles
/
hosts
/
sforza
/
persist.nix

persist.nix 2.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. {pkgs, ...}: {
    2. 

  2.   networking.hostId = "97999349"; # head -c8 /etc/machine-id
    3. 

  3. 

  4.   environment.persistence."/persist" = {
    5. 

  5.     hideMounts = true;
    6. 

  6.     directories = [
    7. 

  7.       # "/var/log" # i have my own subvolume for this
    8. 

  8.       "/var/lib/bluetooth"
    9. 

  9.       "/var/lib/libvirt"
    10. 

  10.       "/var/lib/nixos"
    11. 

  11.       "/var/lib/pipewire"
    12. 

  12.       "/var/lib/systemd/coredump"
    13. 

  13.       "/etc/NetworkManager/system-connections"
    14. 

  14.       "/etc/nixos"
    15. 

  15.       "/etc/nix"
    16. 

  16.     ];
    17. 

  17.     files = [
    18. 

  18.       "/etc/machine-id"
    19. 

  19.     ];
    20. 

  20.   };
    21. 

  21. 

  22.   systemd.tmpfiles.rules = [
    23. 

  23.     "L /var/lib/NetworkManager/secret_key - - - - /persist/var/lib/NetworkManager/secret_key"
    24. 

  24.     "L /var/lib/NetworkManager/seen-bssids - - - - /persist/var/lib/NetworkManager/seen-bssids"
    25. 

  25.     "L /var/lib/NetworkManager/timestamps - - - - /persist/var/lib/NetworkManager/timestamps"
    26. 

  26.   ];
    27. 

  27. 

  28.   security.sudo.extraConfig = ''
    29. 

  29.     # rollback results in sudo lectures after each reboot
    30. 

  30.     Defaults lecture = never
    31. 

  31.   '';
    32. 

  32. 

  33.   boot.initrd.postDeviceCommands = pkgs.lib.mkBefore ''
    34. 

  34.     mkdir -p /mnt
    35. 

  35. 

  36.     # We first mount the btrfs root to /mnt
    37. 

  37.     # so we can manipulate btrfs subvolumes.
    38. 

  38.     mount -o subvol=/ /dev/mapper/enc /mnt
    39. 

  39. 

  40.     # While we're tempted to just delete /root and create
    41. 

  41.     # a new snapshot from /root-blank, /root is already
    42. 

  42.     # populated at this point with a number of subvolumes,
    43. 

  43.     # which makes `btrfs subvolume delete` fail.
    44. 

  44.     # So, we remove them first.
    45. 

  45.     #
    46. 

  46.     # /root contains subvolumes:
    47. 

  47.     # - /root/var/lib/portables
    48. 

  48.     # - /root/var/lib/machines
    49. 

  49.     #
    50. 

  50.     # I suspect these are related to systemd-nspawn, but
    51. 

  51.     # since I don't use it I'm not 100% sure.
    52. 

  52.     # Anyhow, deleting these subvolumes hasn't resulted
    53. 

  53.     # in any issues so far, except for fairly
    54. 

  54.     # benign-looking errors from systemd-tmpfiles.
    55. 

  55.     btrfs subvolume list -o /mnt/root |
    56. 

  56.     cut -f9 -d' ' |
    57. 

  57.     while read subvolume; do
    58. 

  58.       echo "deleting /$subvolume subvolume..."
    59. 

  59.       btrfs subvolume delete "/mnt/$subvolume"
    60. 

  60.     done &&
    61. 

  61.     echo "deleting /root subvolume..." &&
    62. 

  62.     btrfs subvolume delete /mnt/root
    63. 

  63. 

  64.     echo "restoring blank /root subvolume..."
    65. 

  65.     btrfs subvolume snapshot /mnt/root-blank /mnt/root
    66. 

  66. 

  67.     # Once we're done rolling back to a blank snapshot,
    68. 

  68.     # we can unmount /mnt and continue on the boot process.
    69. 

  69.     umount /mnt
    70. 

  70.   '';
    71. 

  71. }
    72. 

  72.