clanCore: init machine_id_v3

2024-09-13 12:17:49 +02:00
parent 755010df8b
commit 787599ebb6
16 changed files with 346 additions and 197 deletions
--- a/clanModules/disk-id/README.md
+++ b/clanModules/disk-id/README.md
@@ -0,0 +1,3 @@
+---
+description = "Generates a uuid for use in disk device naming"
+---
--- a/clanModules/disk-id/default.nix
+++ b/clanModules/disk-id/default.nix
@@ -0,0 +1,26 @@
+{
+  config,
+  pkgs,
+  ...
+}:
+
+{
+
+  config = {
+    clan.core.vars.generators.disk-id = {
+      files.diskId.secret = false;
+      runtimeInputs = [
+        pkgs.coreutils
+        pkgs.bash
+      ];
+      script = ''
+        uuid=$(bash ${../uuid4.sh})
+
+        # Remove the hyphens from the UUID
+        uuid_no_hyphens=$(echo -n "$uuid" | tr -d '-')
+
+        echo -n "$uuid_no_hyphens" > "$out/diskId"
+      '';
+    };
+  };
+}
--- a/clanModules/disk-id/roles/default.nix
+++ b/clanModules/disk-id/roles/default.nix
@@ -0,0 +1 @@
+{ }
--- a/clanModules/flake-module.nix
+++ b/clanModules/flake-module.nix
@@ -5,6 +5,8 @@
    borgbackup = ./borgbackup;
    borgbackup-static = ./borgbackup-static;
    deltachat = ./deltachat;
+    machine-id = ./machine-id;
+    disk-id = ./disk-id;
    dyndns = ./dyndns;
    ergochat = ./ergochat;
    garage = ./garage;
--- a/clanModules/machine-id/README.md
+++ b/clanModules/machine-id/README.md
@@ -0,0 +1,3 @@
+---
+description = "Sets the /etc/machine-id and exposes it as a nix option"
+---
--- a/clanModules/machine-id/default.nix
+++ b/clanModules/machine-id/default.nix
@@ -0,0 +1,45 @@
+{
+  config,
+  pkgs,
+  lib,
+  ...
+}:
+
+let
+  var = config.clan.core.vars.generators.machine-id.files.machineId or { };
+in
+{
+  config = lib.mkMerge [
+    (lib.mkIf ((var.machineId.value or null) != null) {
+      assertions = [
+        {
+          assertion = lib.stringLength var.machineId.value == 32;
+          message = "machineId must be exactly 32 characters long.";
+        }
+      ];
+      boot.kernelParams = [
+        ''systemd.machine_id=${var.machineId.value}''
+      ];
+      environment.etc."machine-id" = {
+        text = var.machineId.value;
+      };
+    })
+    {
+      clan.core.vars.generators.machine-id = {
+        files.machineId.secret = false;
+        runtimeInputs = [
+          pkgs.coreutils
+          pkgs.bash
+        ];
+        script = ''
+          uuid=$(bash ${../uuid4.sh})
+
+          # Remove the hyphens from the UUID
+          uuid_no_hyphens=$(echo -n "$uuid" | tr -d '-')
+
+          echo -n "$uuid_no_hyphens" > "$out/machineId"
+        '';
+      };
+    }
+  ];
+}
--- a/clanModules/machine-id/roles/default.nix
+++ b/clanModules/machine-id/roles/default.nix
@@ -0,0 +1 @@
+{ }
--- a/clanModules/uuid4.sh
+++ b/clanModules/uuid4.sh
@@ -0,0 +1,20 @@
+#!/usr/bin/env bash
+
+# Read 16 bytes from /dev/urandom
+uuid=$(dd if=/dev/urandom bs=1 count=16 2>/dev/null | od -An -tx1 | tr -d ' \n')
+
+# Break the UUID into pieces and apply the required modifications
+byte6=${uuid:12:2}
+byte8=${uuid:16:2}
+
+# Construct the correct version and variant
+hex_byte6=$(printf "%x" $((0x$byte6 & 0x0F | 0x40)))
+hex_byte8=$(printf "%x" $((0x$byte8 & 0x3F | 0x80)))
+
+# Rebuild the UUID with the correct fields
+uuid_v4="${uuid:0:12}${hex_byte6}${uuid:14:2}${hex_byte8}${uuid:18:14}"
+
+# Format the UUID correctly 8-4-4-4-12
+uuid_formatted="${uuid_v4:0:8}-${uuid_v4:8:4}-${uuid_v4:12:4}-${uuid_v4:16:4}-${uuid_v4:20:12}"
+
+echo -n "$uuid_formatted"