treewide: Format all Nix files

Format all Nix files using the officially approved formatter, making the CI check introduced in the previous commit succeed: nix-build ci -A fmt.check This is the next step of the of the [implementation](https://github.com/NixOS/nixfmt/issues/153) of the accepted [RFC 166](https://github.com/NixOS/rfcs/pull/166). This commit will lead to merge conflicts for a number of PRs, up to an estimated ~1100 (~33%) among the PRs with activity in the past 2 months, but that should be lower than what it would be without the previous [partial treewide format](https://github.com/NixOS/nixpkgs/pull/322537). Merge conflicts caused by this commit can now automatically be resolved while rebasing using the [auto-rebase script](8616af08d9/maintainers/scripts/auto-rebase). If you run into any problems regarding any of this, please reach out to the [formatting team](https://nixos.org/community/teams/formatting/) by pinging @NixOS/nix-formatting.
2025-04-01 20:10:43 +02:00
parent 2140bf39e4
commit 374e6bcc40
1523 changed files with 986047 additions and 513621 deletions
--- a/nixos/modules/tasks/encrypted-devices.nix
+++ b/nixos/modules/tasks/encrypted-devices.nix
@@ -13,16 +13,17 @@ let
  # the mount units for the key file are done; i.e. no special
  # treatment is needed.
  lateEncDevs =
-    if config.boot.initrd.systemd.enable
-    then { }
-    else filter (dev: dev.encrypted.keyFile != null) encDevs;
+    if config.boot.initrd.systemd.enable then
+      { }
+    else
+      filter (dev: dev.encrypted.keyFile != null) encDevs;
  earlyEncDevs =
-    if config.boot.initrd.systemd.enable
-    then encDevs
-    else filter (dev: dev.encrypted.keyFile == null) encDevs;
+    if config.boot.initrd.systemd.enable then
+      encDevs
+    else
+      filter (dev: dev.encrypted.keyFile == null) encDevs;

-  anyEncrypted =
-    foldr (j: v: v || j.encrypted.enable) false encDevs;
+  anyEncrypted = foldr (j: v: v || j.encrypted.enable) false encDevs;

  encryptedFSOptions = {

@@ -88,9 +89,13 @@ in
      }
      {
        assertion =
-          config.boot.initrd.systemd.enable -> (
+          config.boot.initrd.systemd.enable
+          -> (
            dev.encrypted.keyFile == null
-            || !lib.any (x: lib.hasPrefix x dev.encrypted.keyFile) ["/mnt-root" "$targetRoot"]
+            || !lib.any (x: lib.hasPrefix x dev.encrypted.keyFile) [
+              "/mnt-root"
+              "$targetRoot"
+            ]
          );
        message = ''
          Bad use of '/mnt-root' or '$targetRoot` in 'keyFile'.
@@ -103,18 +108,24 @@ in

    boot.initrd = {
      luks = {
-        devices =
-          builtins.listToAttrs (map (dev: {
+        devices = builtins.listToAttrs (
+          map (dev: {
            name = dev.encrypted.label;
-            value = { device = dev.encrypted.blkDev; inherit (dev.encrypted) keyFile; };
-          }) earlyEncDevs);
+            value = {
+              device = dev.encrypted.blkDev;
+              inherit (dev.encrypted) keyFile;
+            };
+          }) earlyEncDevs
+        );
        forceLuksSupportInInitrd = true;
      };
      # TODO: systemd stage 1
-      postMountCommands = lib.mkIf (!config.boot.initrd.systemd.enable)
-        (concatMapStrings (dev:
+      postMountCommands = lib.mkIf (!config.boot.initrd.systemd.enable) (
+        concatMapStrings (
+          dev:
          "cryptsetup luksOpen --key-file ${dev.encrypted.keyFile} ${dev.encrypted.blkDev} ${dev.encrypted.label};\n"
-        ) lateEncDevs);
+        ) lateEncDevs
+      );
    };
  };
 }