control
/
home


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102
							{ config, inputs, lib, ... }:
{
  imports = [
    inputs.impermanence.nixosModules.impermanence
  ];

  boot.initrd.postDeviceCommands = lib.mkAfter ''
    #!/bin/sh
    DEVICE=${config.disko.devices.disk.main.device}-part2

    # Mount Btrfs root
    mkdir -p /mnt
    if ! mount -o subvol=/ $DEVICE /mnt; then
      echo "Failed to mount $DEVICE at /mnt"
      exit 1
    fi

    # Create directory for old roots
    mkdir -p /mnt/old-roots

    # Move current root to old-roots with current timestamp
    if [[ -e /mnt/@root && ! -e /mnt/@root-blank ]]; then
      timestamp=$(date +%Y-%m-%d_%H:%M:%S)
      if ! mv /mnt/@root "/mnt/old-roots/@root-$timestamp"; then
        echo "Failed to move /mnt/@root to old-roots"
        umount /mnt
        exit 1
      fi
    fi

    # Function to recursively delete subvolumes
    delete_subvolume_recursively() {
      for i in $(btrfs subvolume list -o "$1" | cut -f 9- -d ' '); do
        delete_subvolume_recursively "/mnt/$i"
      done
      if ! btrfs subvolume delete "$1"; then
        echo "Failed to delete subvolume $1"
      fi
    }

    # Delete old roots older than 30 days
    for i in $(btrfs subvolume list /mnt | grep 'old-roots/@root-' | cut -f 9- -d ' '); do
      subvol_time=$(echo "$i" | grep -o '[0-9]\{4\}-[0-9]\{2\}-[0-9]\{2\}_[0-9]\{2\}:[0-9]\{2\}:[0-9]\{2\}')
      if [[ -n "$subvol_time" ]]; then
        subvol_secs=$(date -d "$subvol_time" +%s 2>/dev/null || continue)
        thirty_days_ago=$(date -d "30 days ago" +%s)
        if [[ $subvol_secs -lt $thirty_days_ago ]]; then
          delete_subvolume_recursively "/mnt/$i"
        fi
      fi
    done

    # Create or restore fresh root
    if [[ -e /mnt/@root-blank ]]; then
      btrfs subvolume delete /mnt/@root || true
      if ! btrfs subvolume snapshot /mnt/@root-blank /mnt/@root; then
        echo "Failed to snapshot @root-blank to @root"
        umount /mnt
        exit 1
      fi
    else
      if ! btrfs subvolume create /mnt/@root-blank; then
        echo "Failed to create @root-blank"
        umount /mnt
        exit 1
      fi
      if ! btrfs subvolume create /mnt/@root; then
        echo "Failed to create @root"
        umount /mnt
        exit 1
      fi
    fi

    # Unmount
    if ! umount /mnt; then
      echo "Failed to unmount /mnt"
      exit 1
    fi
  '';

  # Persistent directories for impermanence
  fileSystems."/persist".neededForBoot = true;
  fileSystems."/var/lib".neededForBoot = true;

  environment.persistence."/persist" = {
    hideMounts = true;

    directories = [
      "/etc/ssh"
      "/srv"
    ];

    files = [
      "/etc/machine-id"
    ];

    users.thomas.directories = [
      ".ssh"
      ".local/share"
    ];
  };
}