1 files changed, 9 insertions, 52 deletions
diff --git a/hosts/vidhar/borg/default.nix b/hosts/vidhar/borg/default.nix
index fe62c956..8d0b46ef 100644
--- a/hosts/vidhar/borg/default.nix
+++ b/hosts/vidhar/borg/default.nix
@@ -3,7 +3,7 @@
 with lib;
 let
-  sshConfig = pkgs.writeText "config" ''
+  sshConfig = ''
    Include /etc/ssh/ssh_config
    ControlMaster auto
@@ -33,7 +33,7 @@ let
      # StateDirectory = "borg";
      RuntimeDirectory = "copy-borg";
      Environment = [
-        "BORG_RSH=\"${pkgs.openssh}/bin/ssh -F ${sshConfig}\""
+        "BORG_RSH=\"${pkgs.openssh}/bin/ssh -F ${pkgs.writeText "config" sshConfig}\""
        "BORG_BASE_DIR=/var/lib/borg"
        "BORG_CONFIG_DIR=/var/lib/borg/config"
        "BORG_CACHE_DIR=/var/lib/borg/cache"
@@ -74,63 +74,20 @@ let
        copy
      wrapProgram $out/bin/copy \
-        --prefix PATH : ${makeBinPath (with pkgs; [config.boot.zfs.package util-linux borgbackup])}:${config.security.wrapperDir}
-    '';
-  });
-  borgsnap = flakeInputs.mach-nix.lib.${config.nixpkgs.system}.buildPythonPackage rec {
-    pname = "borgsnap";
-    src = ./borgsnap;
-    version = "0.0.0";
-    ignoreDataOutdated = true;
-    requirements = ''
-      atomicwrites
-      pyprctl
-      python-unshare
-      python-dateutil
-    '';
-    postInstall = ''
-      wrapProgram $out/bin/borgsnap \
        --prefix PATH : ${makeBinPath (with pkgs; [util-linux borgbackup])}:${config.security.wrapperDir}
    '';
+  });
-    providers.python-unshare = "nixpkgs";
-    overridesPre = [
-      (self: super: { python-unshare = super.python-unshare.overrideAttrs (oldAttrs: { name = "python-unshare-0.2.1"; version = "0.2.1"; }); })
-    ];
-    _.tomli.buildInputs.add = with pkgs."python3Packages"; [ flit-core ];
-  };
 in {
  config = {
-    services.zfssnap.config.exec = {
+    services.borgsnap = {
-      check = "${borgsnap}/bin/borgsnap -vv --target yggdrasil.borgbase:repo --archive-prefix yggdrasil.vidhar. check --cache-file /run/zfssnap-prune/archives-cache.json";
+      enable = true;
-      cmd = "${borgsnap}/bin/borgsnap -vv --target yggdrasil.borgbase:repo --archive-prefix yggdrasil.vidhar. create";
-      halfweekly = "8";
+      target = "yggdrasil.borgbase:repo";
-      monthly = "-1";
+      inherit sshConfig;
+      keyfile = config.sops.secrets."yggdrasil.borgkey".path;
    };
-    systemd.services = {
+    systemd.services = listToAttrs (map copyService [{ repo = "/srv/backup/borg/jotnar"; repoEscaped = "srv-backup-borg-jotnar"; }]);
-      "zfssnap-prune" = {
-        serviceConfig = {
-          Environment = [
-            "BORG_RSH=\"${pkgs.openssh}/bin/ssh -F ${sshConfig}\""
-            "BORG_BASE_DIR=/var/lib/borg"
-            "BORG_CONFIG_DIR=/var/lib/borg/config"
-            "BORG_CACHE_DIR=/var/lib/borg/cache"
-            "BORG_SECURITY_DIR=/var/lib/borg/security"
-            "BORG_KEYS_DIR=/var/lib/borg/keys"
-            "BORG_KEY_FILE=${config.sops.secrets."yggdrasil.borgkey".path}"
-            "BORG_UNKNOWN_UNENCRYPTED_REPO_ACCESS_IS_OK=yes"
-            "BORG_HOSTNAME_IS_UNIQUE=yes"
-          ];
-          RuntimeDirectory = "zfssnap-prune";
-        };
-      };
-    } // listToAttrs (map copyService [{ repo = "/srv/backup/borg/jotnar"; repoEscaped = "srv-backup-borg-jotnar"; }]);
    services.borgbackup.repos.jotnar = {
      path = "/srv/backup/borg/jotnar";

diff --git a/hosts/vidhar/borg/default.nix b/hosts/vidhar/borg/default.nix index fe62c956..8d0b46ef 100644 --- a/hosts/vidhar/borg/default.nix +++ b/hosts/vidhar/borg/default.nix
@@ -3,7 +3,7 @@
3	with lib;	3	with lib;
4		4
5	let	5	let
6	sshConfig = pkgs.writeText "config" ''	6	sshConfig = ''
7	Include /etc/ssh/ssh_config	7	Include /etc/ssh/ssh_config
8		8
9	ControlMaster auto	9	ControlMaster auto
@@ -33,7 +33,7 @@ let
33	# StateDirectory = "borg";	33	# StateDirectory = "borg";
34	RuntimeDirectory = "copy-borg";	34	RuntimeDirectory = "copy-borg";
35	Environment = [	35	Environment = [
36	"BORG_RSH=\"${pkgs.openssh}/bin/ssh -F ${sshConfig}\""	36	"BORG_RSH=\"${pkgs.openssh}/bin/ssh -F ${pkgs.writeText "config" sshConfig}\""
37	"BORG_BASE_DIR=/var/lib/borg"	37	"BORG_BASE_DIR=/var/lib/borg"
38	"BORG_CONFIG_DIR=/var/lib/borg/config"	38	"BORG_CONFIG_DIR=/var/lib/borg/config"
39	"BORG_CACHE_DIR=/var/lib/borg/cache"	39	"BORG_CACHE_DIR=/var/lib/borg/cache"
@@ -74,63 +74,20 @@ let
74	copy	74	copy
75		75
76	wrapProgram $out/bin/copy \	76	wrapProgram $out/bin/copy \
77	--prefix PATH : ${makeBinPath (with pkgs; [config.boot.zfs.package util-linux borgbackup])}:${config.security.wrapperDir}
78	'';
79	});
80
81	borgsnap = flakeInputs.mach-nix.lib.${config.nixpkgs.system}.buildPythonPackage rec {
82	pname = "borgsnap";
83	src = ./borgsnap;
84	version = "0.0.0";
85	ignoreDataOutdated = true;
86
87	requirements = ''
88	atomicwrites
89	pyprctl
90	python-unshare
91	python-dateutil
92	'';
93	postInstall = ''
94	wrapProgram $out/bin/borgsnap \
95	--prefix PATH : ${makeBinPath (with pkgs; [util-linux borgbackup])}:${config.security.wrapperDir}	77	--prefix PATH : ${makeBinPath (with pkgs; [util-linux borgbackup])}:${config.security.wrapperDir}
96	'';	78	'';
97		79	});
98	providers.python-unshare = "nixpkgs";
99	overridesPre = [
100	(self: super: { python-unshare = super.python-unshare.overrideAttrs (oldAttrs: { name = "python-unshare-0.2.1"; version = "0.2.1"; }); })
101	];
102
103	_.tomli.buildInputs.add = with pkgs."python3Packages"; [ flit-core ];
104	};
105	in {	80	in {
106	config = {	81	config = {
107	services.zfssnap.config.exec = {	82	services.borgsnap = {
108	check = "${borgsnap}/bin/borgsnap -vv --target yggdrasil.borgbase:repo --archive-prefix yggdrasil.vidhar. check --cache-file /run/zfssnap-prune/archives-cache.json";	83	enable = true;
109	cmd = "${borgsnap}/bin/borgsnap -vv --target yggdrasil.borgbase:repo --archive-prefix yggdrasil.vidhar. create";
110		84
111	halfweekly = "8";	85	target = "yggdrasil.borgbase:repo";
112	monthly = "-1";	86	inherit sshConfig;
		87	keyfile = config.sops.secrets."yggdrasil.borgkey".path;
113	};	88	};
114		89
115	systemd.services = {	90	systemd.services = listToAttrs (map copyService [{ repo = "/srv/backup/borg/jotnar"; repoEscaped = "srv-backup-borg-jotnar"; }]);
116	"zfssnap-prune" = {
117	serviceConfig = {
118	Environment = [
119	"BORG_RSH=\"${pkgs.openssh}/bin/ssh -F ${sshConfig}\""
120	"BORG_BASE_DIR=/var/lib/borg"
121	"BORG_CONFIG_DIR=/var/lib/borg/config"
122	"BORG_CACHE_DIR=/var/lib/borg/cache"
123	"BORG_SECURITY_DIR=/var/lib/borg/security"
124	"BORG_KEYS_DIR=/var/lib/borg/keys"
125	"BORG_KEY_FILE=${config.sops.secrets."yggdrasil.borgkey".path}"
126	"BORG_UNKNOWN_UNENCRYPTED_REPO_ACCESS_IS_OK=yes"
127	"BORG_HOSTNAME_IS_UNIQUE=yes"
128	];
129	RuntimeDirectory = "zfssnap-prune";
130	};
131	};
132	} // listToAttrs (map copyService [{ repo = "/srv/backup/borg/jotnar"; repoEscaped = "srv-backup-borg-jotnar"; }]);
133
134		91
135	services.borgbackup.repos.jotnar = {	92	services.borgbackup.repos.jotnar = {
136	path = "/srv/backup/borg/jotnar";	93	path = "/srv/backup/borg/jotnar";