keep dropbear host keys in /persist if it exists

examples/rotuer.nix

@@ -149,12 +149,14 @@ in rec {
       run = "${pkgs.chrony}/bin/chronyd -f ${config} -d";
     };
 
-
   services.sshd = longrun {
     name = "sshd";
     run = ''
-      mkdir -p /run/dropbear
+      if test -d /persist; then
-      ${dropbear}/bin/dropbear -E -P /run/dropbear.pid -R -F
+        mkdir -p /persist/secrets/dropbear
+        ln -s /persist/secrets/dropbear /run
+      fi
+      ${dropbear}/bin/dropbear -E -R -P /run/dropbear.pid  -F
     '';
   };
 

modules/jffs2.nix

@@ -32,7 +32,7 @@ in
         in runCommand "make-jffs2" {
           depsBuildBuild = [ mtdutils ];
         } ''
-          mkdir -p $TMPDIR/empty/nix/store/
+          mkdir -p $TMPDIR/empty/nix/store/ $TMPDIR/empty/secrets
           cp ${systemConfiguration}/bin/activate $TMPDIR/empty/activate
           ln -s ${pkgs.s6-init-bin}/bin/init $TMPDIR/empty/init
           grafts=$(sed < ${systemConfiguration}/etc/nix-store-paths 's/^\(.*\)$/--graft \1:\1/g')