2006-11-08 02:34:14 +00:00
|
|
|
#! @shell@
|
|
|
|
|
|
|
|
# - make Nix store etc.
|
2007-02-05 15:52:55 +00:00
|
|
|
# - copy closure of Nix to target device
|
2006-11-08 02:34:14 +00:00
|
|
|
# - register validity
|
2007-02-05 15:52:55 +00:00
|
|
|
# - with a chroot to the target device:
|
2011-10-30 15:19:58 +00:00
|
|
|
# * nix-env -p /nix/var/nix/profiles/system -i <nix-expr for the configuration>
|
2014-05-08 10:29:51 +00:00
|
|
|
# * install the boot loader
|
2006-11-08 02:34:14 +00:00
|
|
|
|
2014-09-03 21:10:40 +00:00
|
|
|
# Ensure a consistent umask.
|
|
|
|
umask 0022
|
|
|
|
|
2014-05-08 21:20:36 +00:00
|
|
|
# Re-exec ourselves in a private mount namespace so that our bind
|
|
|
|
# mounts get cleaned up automatically.
|
|
|
|
if [ "$(id -u)" = 0 ]; then
|
|
|
|
if [ -z "$NIXOS_INSTALL_REEXEC" ]; then
|
|
|
|
export NIXOS_INSTALL_REEXEC=1
|
2014-05-09 11:19:02 +00:00
|
|
|
exec unshare --mount --uts -- "$0" "$@"
|
2014-05-08 21:20:36 +00:00
|
|
|
else
|
|
|
|
mount --make-rprivate /
|
|
|
|
fi
|
|
|
|
fi
|
|
|
|
|
2013-09-29 14:38:57 +00:00
|
|
|
# Parse the command line for the -I flag
|
|
|
|
extraBuildFlags=()
|
2014-05-08 22:25:05 +00:00
|
|
|
chrootCommand=(/run/current-system/sw/bin/bash)
|
2013-09-29 14:38:57 +00:00
|
|
|
|
|
|
|
while [ "$#" -gt 0 ]; do
|
|
|
|
i="$1"; shift 1
|
|
|
|
case "$i" in
|
2015-03-11 16:44:31 +00:00
|
|
|
--max-jobs|-j|--cores|-I)
|
|
|
|
j="$1"; shift 1
|
|
|
|
extraBuildFlags+=("$i" "$j")
|
|
|
|
;;
|
|
|
|
--option)
|
|
|
|
j="$1"; shift 1
|
|
|
|
k="$1"; shift 1
|
|
|
|
extraBuildFlags+=("$i" "$j" "$k")
|
2013-10-11 12:12:36 +00:00
|
|
|
;;
|
2014-08-24 13:57:00 +00:00
|
|
|
--root)
|
|
|
|
mountPoint="$1"; shift 1
|
|
|
|
;;
|
2014-05-08 19:04:58 +00:00
|
|
|
--show-trace)
|
|
|
|
extraBuildFlags+=("$i")
|
|
|
|
;;
|
2014-05-08 22:25:05 +00:00
|
|
|
--chroot)
|
|
|
|
runChroot=1
|
|
|
|
chrootCommand=("$@")
|
|
|
|
break
|
|
|
|
;;
|
2013-10-11 12:12:36 +00:00
|
|
|
--help)
|
|
|
|
exec man nixos-install
|
|
|
|
exit 1
|
|
|
|
;;
|
|
|
|
*)
|
|
|
|
echo "$0: unknown option \`$i'"
|
|
|
|
exit 1
|
|
|
|
;;
|
2013-09-29 14:38:57 +00:00
|
|
|
esac
|
|
|
|
done
|
|
|
|
|
2006-11-11 22:31:26 +00:00
|
|
|
set -e
|
2012-04-10 14:39:12 +00:00
|
|
|
shopt -s nullglob
|
2006-11-11 22:31:26 +00:00
|
|
|
|
2007-02-05 15:52:55 +00:00
|
|
|
if test -z "$mountPoint"; then
|
|
|
|
mountPoint=/mnt
|
|
|
|
fi
|
2006-11-08 02:34:14 +00:00
|
|
|
|
2007-01-11 00:06:46 +00:00
|
|
|
if ! test -e "$mountPoint"; then
|
|
|
|
echo "mount point $mountPoint doesn't exist"
|
|
|
|
exit 1
|
|
|
|
fi
|
2007-02-05 15:52:55 +00:00
|
|
|
|
2007-02-05 21:06:59 +00:00
|
|
|
if ! grep -F -q " $mountPoint " /proc/mounts; then
|
2007-02-05 15:52:55 +00:00
|
|
|
echo "$mountPoint doesn't appear to be a mount point"
|
|
|
|
exit 1
|
|
|
|
fi
|
2012-11-22 11:04:00 +00:00
|
|
|
|
|
|
|
|
2014-05-08 22:25:05 +00:00
|
|
|
# Mount some stuff in the target root directory.
|
2014-05-08 22:49:18 +00:00
|
|
|
mkdir -m 0755 -p $mountPoint/dev $mountPoint/proc $mountPoint/sys $mountPoint/etc $mountPoint/run $mountPoint/home
|
2006-11-13 11:42:23 +00:00
|
|
|
mkdir -m 01777 -p $mountPoint/tmp
|
2014-05-08 21:20:36 +00:00
|
|
|
mkdir -m 0755 -p $mountPoint/tmp/root
|
2014-05-08 22:04:48 +00:00
|
|
|
mkdir -m 0755 -p $mountPoint/var/setuid-wrappers
|
2015-01-15 17:28:47 +00:00
|
|
|
mkdir -m 0700 -p $mountPoint/root
|
2014-05-08 21:20:36 +00:00
|
|
|
mount --rbind /dev $mountPoint/dev
|
|
|
|
mount --rbind /proc $mountPoint/proc
|
|
|
|
mount --rbind /sys $mountPoint/sys
|
|
|
|
mount --rbind / $mountPoint/tmp/root
|
2014-05-08 22:04:48 +00:00
|
|
|
mount -t tmpfs -o "mode=0755" none $mountPoint/run
|
|
|
|
mount -t tmpfs -o "mode=0755" none $mountPoint/var/setuid-wrappers
|
2014-05-08 22:49:18 +00:00
|
|
|
rm -rf $mountPoint/var/run
|
|
|
|
ln -s /run $mountPoint/var/run
|
2014-05-21 10:44:00 +00:00
|
|
|
rm -f $mountPoint/etc/{resolv.conf,hosts}
|
2014-08-17 04:46:41 +00:00
|
|
|
cp -Lf /etc/resolv.conf /etc/hosts $mountPoint/etc/
|
2006-11-11 17:59:08 +00:00
|
|
|
|
2014-12-12 01:56:11 +00:00
|
|
|
if [ -e "$SSL_CERT_FILE" ]; then
|
|
|
|
cp -Lf "$SSL_CERT_FILE" "$mountPoint/tmp/ca-cert.crt"
|
|
|
|
export SSL_CERT_FILE=/tmp/ca-cert.crt
|
|
|
|
# For Nix 1.7
|
|
|
|
export CURL_CA_BUNDLE=/tmp/ca-cert.crt
|
|
|
|
fi
|
2006-11-11 17:59:08 +00:00
|
|
|
|
2014-05-08 22:25:05 +00:00
|
|
|
if [ -n "$runChroot" ]; then
|
|
|
|
if ! [ -L $mountPoint/nix/var/nix/profiles/system ]; then
|
|
|
|
echo "$0: installation not finished; cannot chroot into installation directory"
|
|
|
|
exit 1
|
|
|
|
fi
|
|
|
|
ln -s /nix/var/nix/profiles/system $mountPoint/run/current-system
|
|
|
|
exec chroot $mountPoint "${chrootCommand[@]}"
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
|
|
# Get the path of the NixOS configuration file.
|
|
|
|
if test -z "$NIXOS_CONFIG"; then
|
|
|
|
NIXOS_CONFIG=/etc/nixos/configuration.nix
|
|
|
|
fi
|
|
|
|
|
|
|
|
if ! test -e "$mountPoint/$NIXOS_CONFIG"; then
|
|
|
|
echo "configuration file $mountPoint/$NIXOS_CONFIG doesn't exist"
|
|
|
|
exit 1
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
2006-11-11 17:59:08 +00:00
|
|
|
# Create the necessary Nix directories on the target device, if they
|
|
|
|
# don't already exist.
|
2006-11-13 11:42:23 +00:00
|
|
|
mkdir -m 0755 -p \
|
2011-10-30 15:19:58 +00:00
|
|
|
$mountPoint/nix/var/nix/gcroots \
|
|
|
|
$mountPoint/nix/var/nix/temproots \
|
|
|
|
$mountPoint/nix/var/nix/manifests \
|
|
|
|
$mountPoint/nix/var/nix/userpool \
|
|
|
|
$mountPoint/nix/var/nix/profiles \
|
|
|
|
$mountPoint/nix/var/nix/db \
|
|
|
|
$mountPoint/nix/var/log/nix/drvs
|
2006-11-11 17:59:08 +00:00
|
|
|
|
2015-04-07 11:15:48 +00:00
|
|
|
mkdir -m 1775 -p $mountPoint/nix/store
|
2014-05-08 21:22:21 +00:00
|
|
|
chown root:nixbld $mountPoint/nix/store
|
2012-04-10 14:39:12 +00:00
|
|
|
|
|
|
|
|
2014-05-08 21:40:17 +00:00
|
|
|
# There is no daemon in the chroot.
|
|
|
|
unset NIX_REMOTE
|
2006-11-11 17:59:08 +00:00
|
|
|
|
|
|
|
|
2009-06-17 10:07:31 +00:00
|
|
|
# We don't have locale-archive in the chroot, so clear $LANG.
|
|
|
|
export LANG=
|
2012-04-10 13:28:17 +00:00
|
|
|
export LC_ALL=
|
|
|
|
export LC_TIME=
|
2009-06-17 10:07:31 +00:00
|
|
|
|
|
|
|
|
2012-04-10 14:39:12 +00:00
|
|
|
# Create a temporary Nix config file that causes the nixbld users to
|
|
|
|
# be used.
|
2014-05-08 21:22:21 +00:00
|
|
|
echo "build-users-group = nixbld" > $mountPoint/tmp/nix.conf # FIXME: remove in Nix 1.8
|
2013-04-11 20:18:24 +00:00
|
|
|
binary_caches=$(@perl@/bin/perl -I @nix@/lib/perl5/site_perl/*/* -e 'use Nix::Config; Nix::Config::readConfig; print $Nix::Config::config{"binary-caches"};')
|
2013-02-04 14:44:32 +00:00
|
|
|
if test -n "$binary_caches"; then
|
2013-02-05 11:39:18 +00:00
|
|
|
echo "binary-caches = $binary_caches" >> $mountPoint/tmp/nix.conf
|
2013-02-04 14:44:32 +00:00
|
|
|
fi
|
2012-04-10 14:39:12 +00:00
|
|
|
export NIX_CONF_DIR=/tmp
|
|
|
|
|
2014-05-08 22:49:18 +00:00
|
|
|
touch $mountPoint/etc/passwd $mountPoint/etc/group
|
|
|
|
mount --bind -o ro /etc/passwd $mountPoint/etc/passwd
|
|
|
|
mount --bind -o ro /etc/group $mountPoint/etc/group
|
|
|
|
|
2012-04-10 14:39:12 +00:00
|
|
|
|
2014-05-08 21:40:17 +00:00
|
|
|
# Copy Nix to the Nix store on the target device, unless it's already there.
|
|
|
|
if ! NIX_DB_DIR=$mountPoint/nix/var/nix/db nix-store --check-validity @nix@ 2> /dev/null; then
|
|
|
|
echo "copying Nix to $mountPoint...."
|
|
|
|
for i in $(@perl@/bin/perl @pathsFromGraph@ @nixClosure@); do
|
|
|
|
echo " $i"
|
|
|
|
chattr -R -i $mountPoint/$i 2> /dev/null || true # clear immutable bit
|
|
|
|
rsync -a $i $mountPoint/nix/store/
|
|
|
|
done
|
|
|
|
|
|
|
|
# Register the paths in the Nix closure as valid. This is necessary
|
|
|
|
# to prevent them from being deleted the first time we install
|
|
|
|
# something. (I.e., Nix will see that, e.g., the glibc path is not
|
|
|
|
# valid, delete it to get it out of the way, but as a result nothing
|
|
|
|
# will work anymore.)
|
|
|
|
chroot $mountPoint @nix@/bin/nix-store --register-validity < @nixClosure@
|
|
|
|
fi
|
2006-11-11 17:59:08 +00:00
|
|
|
|
|
|
|
|
|
|
|
# Create the required /bin/sh symlink; otherwise lots of things
|
|
|
|
# (notably the system() function) won't work.
|
2006-11-13 11:42:23 +00:00
|
|
|
mkdir -m 0755 -p $mountPoint/bin
|
2007-01-09 21:25:53 +00:00
|
|
|
# !!! assuming that @shell@ is in the closure
|
|
|
|
ln -sf @shell@ $mountPoint/bin/sh
|
2006-11-11 17:59:08 +00:00
|
|
|
|
|
|
|
|
2008-09-08 12:40:05 +00:00
|
|
|
# Make the build below copy paths from the CD if possible. Note that
|
2014-05-08 21:20:36 +00:00
|
|
|
# /tmp/root in the chroot is the root of the CD.
|
|
|
|
export NIX_OTHER_STORES=/tmp/root/nix:$NIX_OTHER_STORES
|
2007-01-23 17:17:10 +00:00
|
|
|
|
2013-09-16 11:28:59 +00:00
|
|
|
p=@nix@/libexec/nix/substituters
|
|
|
|
export NIX_SUBSTITUTERS=$p/copy-from-other-stores.pl:$p/download-from-binary-cache.pl
|
|
|
|
|
2007-01-23 17:17:10 +00:00
|
|
|
|
2012-04-10 15:36:50 +00:00
|
|
|
# Make manifests available in the chroot.
|
|
|
|
rm -f $mountPoint/nix/var/nix/manifests/*
|
|
|
|
for i in /nix/var/nix/manifests/*.nixmanifest; do
|
|
|
|
chroot $mountPoint @nix@/bin/nix-store -r "$(readlink -f "$i")" > /dev/null
|
|
|
|
cp -pd "$i" $mountPoint/nix/var/nix/manifests/
|
|
|
|
done
|
|
|
|
|
2006-11-11 17:59:08 +00:00
|
|
|
|
2012-04-23 00:41:37 +00:00
|
|
|
# Get the absolute path to the NixOS/Nixpkgs sources.
|
2014-05-08 21:20:36 +00:00
|
|
|
nixpkgs="$(readlink -f $(nix-instantiate --find-file nixpkgs))"
|
2012-04-23 00:41:37 +00:00
|
|
|
|
|
|
|
|
2006-11-11 22:31:26 +00:00
|
|
|
# Build the specified Nix expression in the target store and install
|
|
|
|
# it into the system configuration profile.
|
2007-01-23 17:17:10 +00:00
|
|
|
echo "building the system configuration..."
|
2014-05-08 21:20:36 +00:00
|
|
|
NIX_PATH="nixpkgs=/tmp/root/$nixpkgs:nixos-config=$NIXOS_CONFIG" NIXOS_CONFIG= \
|
2012-03-02 12:38:22 +00:00
|
|
|
chroot $mountPoint @nix@/bin/nix-env \
|
2014-05-08 21:20:36 +00:00
|
|
|
"${extraBuildFlags[@]}" -p /nix/var/nix/profiles/system -f '<nixpkgs/nixos>' --set -A system
|
2006-12-16 23:50:10 +00:00
|
|
|
|
|
|
|
|
2012-04-23 00:41:37 +00:00
|
|
|
# Copy the NixOS/Nixpkgs sources to the target as the initial contents
|
|
|
|
# of the NixOS channel.
|
2012-04-26 13:16:58 +00:00
|
|
|
mkdir -m 0755 -p $mountPoint/nix/var/nix/profiles
|
|
|
|
mkdir -m 1777 -p $mountPoint/nix/var/nix/profiles/per-user
|
|
|
|
mkdir -m 0755 -p $mountPoint/nix/var/nix/profiles/per-user/root
|
2013-09-29 14:38:57 +00:00
|
|
|
srcs=$(nix-env "${extraBuildFlags[@]}" -p /nix/var/nix/profiles/per-user/root/channels -q nixos --no-name --out-path 2>/dev/null || echo -n "")
|
2013-02-04 12:38:54 +00:00
|
|
|
if test -n "$srcs"; then
|
|
|
|
echo "copying NixOS/Nixpkgs sources..."
|
|
|
|
chroot $mountPoint @nix@/bin/nix-env \
|
2013-09-29 14:38:57 +00:00
|
|
|
"${extraBuildFlags[@]}" -p /nix/var/nix/profiles/per-user/root/channels -i "$srcs" --quiet
|
2013-02-04 12:38:54 +00:00
|
|
|
fi
|
2012-04-23 00:41:37 +00:00
|
|
|
mkdir -m 0700 -p $mountPoint/root/.nix-defexpr
|
2012-05-24 23:37:06 +00:00
|
|
|
ln -sfn /nix/var/nix/profiles/per-user/root/channels $mountPoint/root/.nix-defexpr/channels
|
2006-11-12 23:30:03 +00:00
|
|
|
|
|
|
|
|
2014-05-08 22:49:18 +00:00
|
|
|
# Get rid of the /etc bind mounts.
|
|
|
|
umount $mountPoint/etc/passwd $mountPoint/etc/group
|
2012-05-15 13:50:36 +00:00
|
|
|
|
|
|
|
|
2008-05-09 10:08:02 +00:00
|
|
|
# Grub needs an mtab.
|
|
|
|
ln -sfn /proc/mounts $mountPoint/etc/mtab
|
|
|
|
|
|
|
|
|
2006-12-16 21:48:12 +00:00
|
|
|
# Mark the target as a NixOS installation, otherwise
|
|
|
|
# switch-to-configuration will chicken out.
|
|
|
|
touch $mountPoint/etc/NIXOS
|
|
|
|
|
2008-05-09 10:08:02 +00:00
|
|
|
|
2006-11-12 23:30:03 +00:00
|
|
|
# Switch to the new system configuration. This will install Grub with
|
|
|
|
# a menu default pointing at the kernel/initrd/etc of the new
|
|
|
|
# configuration.
|
|
|
|
echo "finalising the installation..."
|
2006-12-17 00:10:28 +00:00
|
|
|
NIXOS_INSTALL_GRUB=1 chroot $mountPoint \
|
2011-10-30 15:19:58 +00:00
|
|
|
/nix/var/nix/profiles/system/bin/switch-to-configuration boot
|
2014-05-08 22:04:48 +00:00
|
|
|
|
|
|
|
|
|
|
|
# Run the activation script.
|
|
|
|
chroot $mountPoint /nix/var/nix/profiles/system/activate
|
|
|
|
|
|
|
|
|
2015-04-28 02:16:37 +00:00
|
|
|
# Some systems may not be prepared to use NixOS' paths.
|
|
|
|
export PATH=/run/current-system/sw/bin:/run/current-system/sw/sbin:$PATH
|
|
|
|
export NIX_PATH=/nix/var/nix/profiles/per-user/root/channels/nixos:nixpkgs=/etc/nixos/nixpkgs
|
|
|
|
export NIX_PATH=$NIX_PATH:nixos-config=/etc/nixos/configuration.nix:/nix/var/nix/profiles/per-user/root/channels
|
|
|
|
|
|
|
|
|
2014-05-08 22:04:48 +00:00
|
|
|
# Ask the user to set a root password.
|
2015-04-28 02:16:37 +00:00
|
|
|
if [ "$(chroot $mountPoint nix-instantiate --eval '<nixpkgs/nixos>' -A config.users.mutableUsers)" = true ] && [ -t 1 ] ; then
|
2014-05-08 22:04:48 +00:00
|
|
|
echo "setting root password..."
|
2014-09-03 21:11:37 +00:00
|
|
|
chroot $mountPoint /var/setuid-wrappers/passwd
|
2014-05-08 22:04:48 +00:00
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
|
|
echo "installation finished!"
|