From bc97a4ab04fc116485430a382b4d14ee6c67267b Mon Sep 17 00:00:00 2001
From: muon <admin@muon.host>
Date: Thu, 31 Jul 2025 22:18:40 +0000
Subject: [PATCH] Fix sops persist

---
 README.md                      | 3 +++
 modules/nixos/impermanence.nix | 2 +-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 7b29df3..223815f 100644
--- a/README.md
+++ b/README.md
@@ -14,9 +14,12 @@ rbw login
 sudo mkdir -p /mnt/var/lib/sops-nix
 sudo chown muon:users /mnt/var/lib/sops-nix -R
 rbw get sops > /mnt/var/lib/sops-nix/key.txt
+nix-shell -p jq --run "rbw get --raw sopsssh | jq -r '.data.password'" > /etc/ssh/ssh_host_ed25519_key.pub
+nix-shell -p jq --run "rbw get --raw sopsssh | jq -r '.notes'" > /etc/ssh/ssh_host_ed25519_key
 sudo nixos-install --root /mnt --no-root-passwd --flake .#$(hostname)
 sudo mkdir -p /mnt/persist/var/lib/sops-nix
 sudo cp -r /mnt/var/lib/nixos/* /mnt/persist/var/lib/nixos/
+sudo cp -r /mnt/var/etc/ssh/* /mnt/persist/etc/ssh/
 sudo cp {/mnt,/mnt/persist}/var/lib/sops-nix/key.txt
 sudo cp {/mnt,/mnt/persist}/etc/machine-id
 ```
diff --git a/modules/nixos/impermanence.nix b/modules/nixos/impermanence.nix
index 8ce89a0..069db06 100644
--- a/modules/nixos/impermanence.nix
+++ b/modules/nixos/impermanence.nix
@@ -4,7 +4,7 @@ with lib; {
 
   config = mkIf config.mods.impermanence.enable {
     environment.persistence."/persist" = {
-      directories = [ "/var/lib/nixos" "/var/lib/systemd/coredump" ];
+      directories = [ "/var/lib/nixos" "/var/lib/systemd/coredump" "/etc/ssh" ];
       files = [ "/var/lib/sops-nix/key.txt" "/etc/machine-id" ];
     };