diff options
| author |  sommerfeld <sommerfeld@sommerfeld.dev> | 2026-05-13 13:43:16 +0100 |
|---|---|---|
| committer | sommerfeld <sommerfeld@sommerfeld.dev> | 2026-05-13 13:43:16 +0100 |
| commit | 208877d1e682536aa737748fffe4560956d3908a (patch) | |
| tree | bbc2e909a312f8052bf9457b1521e8b0ef80ec4c /justfile | |
| parent | d7cca9eca321a7986605c2842cf23cef18727452 (diff) | |
| download | dotfiles-208877d1e682536aa737748fffe4560956d3908a.tar.gz dotfiles-208877d1e682536aa737748fffe4560956d3908a.tar.bz2 dotfiles-208877d1e682536aa737748fffe4560956d3908a.zip | |
feat(etc): template kernel cmdline, derive LUKS UUID from partition name
Prompt once at 'chezmoi init' time for the LUKS root partition (e.g.
nvme0n1p2) and store it under [data].luksRootPartition in the per-machine
chezmoi config. etc/kernel/cmdline.tmpl resolves the UUID at apply time
via lsblk, so reinstalls only require re-entering the partition name.
The etc deploy script now renders *.tmpl sources through
'chezmoi execute-template' and installs them without the suffix. The
resolved UUID is folded into the onchange hash so the script re-runs
when the UUID changes even if etc/ content is unchanged.
just etc-status/diff transparently handle .tmpl sources (strip suffix
for the live-path mapping, render before diffing). etc-re-add skips
.tmpl files since template sources can't be reverse-rendered from the
live file.
Diffstat (limited to 'justfile')
| -rw-r--r-- | justfile | 32 |
1 files changed, 27 insertions, 5 deletions
@@ -521,7 +521,7 @@ etc-status: tmp=$(mktemp -d); trap 'rm -rf "$tmp"' EXIT find etc -type f ! -name .ignore 2>/dev/null \ - | sed 's|^etc/|/etc/|' | sort -u > "$tmp/managed" + | sed 's|^etc/|/etc/|; s|\.tmpl$||' | sort -u > "$tmp/managed" patterns=() if [ -f etc/.ignore ]; then @@ -564,19 +564,34 @@ etc-diff *paths: *..*|*/./*|./*|../*) echo "error: unsafe path: $raw" >&2; exit 1 ;; esac p=${raw#/}; p=${p#etc/} - live=/etc/$p + live=/etc/${p%.tmpl} repo=etc/$p if [ ! -f "$repo" ]; then - echo "skip: $live (not a regular file in etc/)" >&2; continue + if [ -f "$repo.tmpl" ]; then + repo=$repo.tmpl + live=/etc/$p + else + echo "skip: $live (not a regular file in etc/)" >&2; continue + fi + fi + # Render .tmpl sources so the diff reflects what would actually deploy. + if [ "${repo%.tmpl}" != "$repo" ]; then + rendered=$(mktemp) + chezmoi execute-template <"$repo" >"$rendered" + repo_for_diff=$rendered + else + repo_for_diff=$repo + rendered= fi # Fast path for world-readable files; doas fallback only when needed (e.g. /etc/doas.conf 0600). if [ -r "$live" ]; then - diff -u --label "$live" --label "$repo" "$live" "$repo" || true + diff -u --label "$live" --label "$repo" "$live" "$repo_for_diff" || true elif doas test -f "$live"; then - diff -u --label "$live" --label "$repo" <(doas cat "$live") "$repo" || true + diff -u --label "$live" --label "$repo" <(doas cat "$live") "$repo_for_diff" || true else echo "skip: $live (missing or not a regular file on host)" >&2 fi + [ -n "$rendered" ] && rm -f "$rendered" done # Diff live /etc/<path> against pristine pacman version (defaults to all repo-managed files) @@ -726,6 +741,13 @@ etc-re-add *paths: fi changed=0 for p in "${targets[@]}"; do + # Template sources can't be reverse-rendered; skip with a note. + case "$p" in + *.tmpl) + echo " skip .tmpl: etc/$p (edit the template manually)" + continue + ;; + esac live=/etc/$p repo=etc/$p [ -e "$live" ] || { echo " missing live: $live (skipped)"; continue; } |