clan-cli: Move hardware.py to clan_lib/machines

2025-06-24 11:07:37 +02:00
parent 26a2b45c74
commit b26aad3619
6 changed files with 308 additions and 322 deletions
--- a/pkgs/clan-cli/clan_cli/machines/install.py
+++ b/pkgs/clan-cli/clan_cli/machines/install.py
@@ -1,17 +1,11 @@
 import argparse
 import logging
-import os
 import sys
-from dataclasses import dataclass, field
-from enum import Enum
 from pathlib import Path
-from tempfile import TemporaryDirectory

-from clan_lib.api import API
-from clan_lib.cmd import Log, RunOpts, run
 from clan_lib.errors import ClanError
+from clan_lib.machines.install import BuildOn, InstallOptions, install_machine
 from clan_lib.machines.machines import Machine
-from clan_lib.nix import nix_shell
 from clan_lib.ssh.remote import Remote

 from clan_cli.completions import (
@@ -19,145 +13,12 @@ from clan_cli.completions import (
    complete_machines,
    complete_target_host,
 )
-from clan_cli.facts.generate import generate_facts
 from clan_cli.machines.hardware import HardwareConfig
 from clan_cli.ssh.deploy_info import DeployInfo, find_reachable_host, ssh_command_parse
-from clan_cli.vars.generate import generate_vars

 log = logging.getLogger(__name__)


-class BuildOn(Enum):
-    AUTO = "auto"
-    LOCAL = "local"
-    REMOTE = "remote"
-
-
-@dataclass
-class InstallOptions:
-    machine: Machine
-    kexec: str | None = None
-    debug: bool = False
-    no_reboot: bool = False
-    phases: str | None = None
-    build_on: BuildOn | None = None
-    nix_options: list[str] = field(default_factory=list)
-    update_hardware_config: HardwareConfig = HardwareConfig.NONE
-    password: str | None = None
-    identity_file: Path | None = None
-    use_tor: bool = False
-
-
-@API.register
-def install_machine(opts: InstallOptions, target_host: Remote) -> None:
-    machine = opts.machine
-
-    machine.debug(f"installing {machine.name}")
-
-    generate_facts([machine])
-    generate_vars([machine])
-
-    with (
-        TemporaryDirectory(prefix="nixos-install-") as _base_directory,
-    ):
-        base_directory = Path(_base_directory).resolve()
-        activation_secrets = base_directory / "activation_secrets"
-        upload_dir = activation_secrets / machine.secrets_upload_directory.lstrip("/")
-        upload_dir.mkdir(parents=True)
-        machine.secret_facts_store.upload(upload_dir)
-        machine.secret_vars_store.populate_dir(
-            upload_dir, phases=["activation", "users", "services"]
-        )
-
-        partitioning_secrets = base_directory / "partitioning_secrets"
-        partitioning_secrets.mkdir(parents=True)
-        machine.secret_vars_store.populate_dir(
-            partitioning_secrets, phases=["partitioning"]
-        )
-
-        if opts.password:
-            os.environ["SSHPASS"] = opts.password
-
-        cmd = [
-            "nixos-anywhere",
-            "--flake",
-            f"{machine.flake}#{machine.name}",
-            "--extra-files",
-            str(activation_secrets),
-        ]
-
-        for path in partitioning_secrets.rglob("*"):
-            if path.is_file():
-                cmd.extend(
-                    [
-                        "--disk-encryption-keys",
-                        str(
-                            "/run/partitioning-secrets"
-                            / path.relative_to(partitioning_secrets)
-                        ),
-                        str(path),
-                    ]
-                )
-
-        if opts.no_reboot:
-            cmd.append("--no-reboot")
-
-        if opts.phases:
-            cmd += ["--phases", str(opts.phases)]
-
-        if opts.update_hardware_config is not HardwareConfig.NONE:
-            cmd.extend(
-                [
-                    "--generate-hardware-config",
-                    str(opts.update_hardware_config.value),
-                    str(opts.update_hardware_config.config_path(machine)),
-                ]
-            )
-
-        if opts.password:
-            cmd += [
-                "--env-password",
-                "--ssh-option",
-                "IdentitiesOnly=yes",
-            ]
-
-        if opts.identity_file:
-            cmd += ["-i", str(opts.identity_file)]
-
-        if opts.build_on:
-            cmd += ["--build-on", opts.build_on.value]
-
-        if target_host.port:
-            cmd += ["--ssh-port", str(target_host.port)]
-        if opts.kexec:
-            cmd += ["--kexec", opts.kexec]
-
-        if opts.debug:
-            cmd.append("--debug")
-
-        # Add nix options to nixos-anywhere
-        cmd.extend(opts.nix_options)
-
-        cmd.append(target_host.target)
-        if opts.use_tor:
-            # nix copy does not support tor socks proxy
-            # cmd.append("--ssh-option")
-            # cmd.append("ProxyCommand=nc -x 127.0.0.1:9050 -X 5 %h %p")
-            cmd = nix_shell(
-                [
-                    "nixos-anywhere",
-                    "tor",
-                ],
-                ["torify", *cmd],
-            )
-        else:
-            cmd = nix_shell(
-                ["nixos-anywhere"],
-                cmd,
-            )
-        run(cmd, RunOpts(log=Log.BOTH, prefix=machine.name, needs_user_terminal=True))
-
-
 def install_command(args: argparse.Namespace) -> None:
    try:
        # Only if the caller did not specify a target_host via args.target_host