Use impermanence

2023-02-28 00:26:21 +01:00 · 2023-02-28 00:26:21 +01:00 · 23df993e63
parent 588e032aa0
commit 23df993e63
4 changed files with 29 additions and 11 deletions
--- a/flake.lock
+++ b/flake.lock
@ -233,6 +233,21 @@
        "type": "indirect"
      }
    },
+    "impermanence": {
+      "locked": {
+        "lastModified": 1675359654,
+        "narHash": "sha256-FPxzuvJkcO49g4zkWLSeuZkln54bLoTtrggZDJBH90I=",
+        "owner": "nix-community",
+        "repo": "impermanence",
+        "rev": "6138eb8e737bffabd4c8fc78ae015d4fd6a7e2fd",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-community",
+        "repo": "impermanence",
+        "type": "github"
+      }
+    },
    "nix-output-monitor": {
      "inputs": {
        "flake-utils": [
@ -386,6 +401,7 @@
        "flake-parts": "flake-parts",
        "hexa-nur-packages": "hexa-nur-packages",
        "home-manager": "home-manager",
+        "impermanence": "impermanence",
        "nix-output-monitor": "nix-output-monitor",
        "nixos-hardware": "nixos-hardware",
        "nixos-mailserver": "nixos-mailserver",
--- a/flake.nix
+++ b/flake.nix
@ -55,6 +55,7 @@
        nixpkgs.follows = "";
      };
    };
+    impermanence.url = "github:nix-community/impermanence";
  };

  outputs = inputs @ {nixos-hardware, ...}:
--- a/nixos/flake-module.nix
+++ b/nixos/flake-module.nix
@ -17,6 +17,7 @@
          imports = [
            (import (./. + "/machines/${name}/configuration.nix") inputs)
            inputs.secrets.nixosModules.default
+            inputs.impermanence.nixosModules.impermanence
            inputs.self.nixosModules.unstableNFTables
          ];
        };
--- a/nixos/machines/zeus/configuration.nix
+++ b/nixos/machines/zeus/configuration.nix
@ -37,11 +37,6 @@ in {
      device = "/disk/persist/maralorn/.config/pulse";
      options = ["bind"];
    };
-    "/var/lib/bluetooth" = {
-      mountPoint = "/var/lib/bluetooth";
-      device = "/disk/persist/bluetooth";
-      options = ["bind"];
-    };
  };

  environment.etc = {
@ -70,23 +65,28 @@ in {

  systemd.tmpfiles.rules = [
    "d /disk/persist/root 700 root root - -"
-    "d /disk/persist/root/.ssh 700 root root - -"
-    "d /disk/persist/etc/ssh 755 root root - -"
-    "d /disk/persist/var/lib/nixos 755 root root - -"
    "z / 755 - - - -"
    "d /disk/persist/maralorn 700 maralorn users - -"
    "d /disk/persist/maralorn/.config/pulse 700 maralorn users - -"
    "d /home/maralorn/.config 700 maralorn users - -"
    "Z /home/maralorn - maralorn users - -"
    "d /disk/volatile/maralorn 700 maralorn users - -"
-    "d /disk/persist/bluetooth - - - - -"
    # "d /disk/persist/minecraft 700 minecraft minecraft - -"
    "d /var/lib/misc 755 - - - -"
+
+    "d /disk/persist/root/.ssh 700 root root - -"
    "L+ /root/.ssh - - - - /disk/persist/root/.ssh"
-    "L+ /etc/ssh - - - - /disk/persist/etc/ssh"
-    "L+ /var/lib/nixos - - - - /disk/persist/var/lib/nixos"
  ];

+  environment.persistence."/disk/persist" = {
+    directories = [
+      "/etc/ssh"
+      "/var/lib/nixos"
+      "/var/lib/bluetooth"
+      "/var/lib/tailscale"
+    ];
+  };
+
  boot = {
    loader = {
      efi = {