config/nixos/modules/filesystem/impermanence: fix for persisting `/var/lib/private/<service>`

commit 40a1506ecf453a0c0f5be5c9229129a528175476
parent f6ba49be40cecd36cadb298b9dd9ecfe2ef09d1e
Author: Katja (zaphyra) <git@ctu.cx>
Date: Mon, 2 Jun 2025 08:49:57 +0200

config/nixos/modules/filesystem/impermanence: fix for persisting `/var/lib/private/<service>`

1 file changed, 12 insertions(+), 0 deletions(-)

config/nixos/modules/filesystem/impermanence.nix

++++++++++++

diff --git a/config/nixos/modules/filesystem/impermanence.nix b/config/nixos/modules/filesystem/impermanence.nix
@@ -140,6 +140,18 @@ in
             "/etc/machine-id"
           ] ++ cfg.system.files;
         };
+
+        #katja: hack to persist `/var/lib/private/<service>` (see https://github.com/nix-community/impermanence/issues/213)
+        system.activationScripts = {
+          "createPersistentStorageDirs".deps = [ "var-lib-private-permissions" "users" "groups" ];
+          "var-lib-private-permissions" = {
+            deps = [ "specialfs" ];
+            text = ''
+              mkdir -p /nix/persist/system/var/lib/private
+              chmod 0700 /nix/persist/system/var/lib/private
+            '';
+          };
+        };
       }
     )
   ];