2020-08-13 19:54:51 +00:00
#! @runtimeShell@
2021-11-26 05:54:23 +00:00
# shellcheck shell=bash
2006-11-08 02:34:14 +00:00
2018-02-05 18:50:36 +00:00
set -e
shopt -s nullglob
export PATH = @path@:$PATH
2006-11-08 02:34:14 +00:00
2014-09-03 21:10:40 +00:00
# Ensure a consistent umask.
umask 0022
2013-09-29 14:38:57 +00:00
# Parse the command line for the -I flag
extraBuildFlags = ( )
2020-08-11 16:15:28 +00:00
flakeFlags = ( )
2018-02-05 18:50:36 +00:00
mountPoint = /mnt
2018-02-27 18:58:23 +00:00
channelPath =
2018-10-14 18:12:08 +00:00
system =
2019-12-22 21:03:14 +00:00
verbosity = ( )
2024-07-09 11:21:49 +00:00
attr =
buildFile =
buildingAttribute = 1
2013-09-29 14:38:57 +00:00
while [ " $# " -gt 0 ] ; do
i = " $1 " ; shift 1
case " $i " in
2018-02-07 18:33:22 +00:00
--max-jobs| -j| --cores| -I| --substituters)
2015-03-11 16:44:31 +00:00
j = " $1 " ; shift 1
extraBuildFlags += ( " $i " " $j " )
; ;
--option)
j = " $1 " ; shift 1
k = " $1 " ; shift 1
extraBuildFlags += ( " $i " " $j " " $k " )
2013-10-11 12:12:36 +00:00
; ;
2014-08-24 13:57:00 +00:00
--root)
mountPoint = " $1 " ; shift 1
; ;
2018-02-27 18:58:23 +00:00
--system| --closure)
2018-02-05 18:50:36 +00:00
system = " $1 " ; shift 1
2016-07-24 13:45:24 +00:00
; ;
2020-08-11 16:15:28 +00:00
--flake)
flake = " $1 "
2024-10-26 02:05:03 +00:00
flakeFlags = ( --extra-experimental-features 'nix-command flakes' )
2020-08-11 16:15:28 +00:00
shift 1
; ;
2024-07-09 11:21:49 +00:00
--file| -f)
if [ -z " $1 " ] ; then
log " $0 : ' $i ' requires an argument "
exit 1
fi
buildFile = " $1 "
buildingAttribute =
shift 1
; ;
--attr| -A)
if [ -z " $1 " ] ; then
log " $0 : ' $i ' requires an argument "
exit 1
fi
attr = " $1 "
buildingAttribute =
shift 1
; ;
2020-08-11 16:15:28 +00:00
--recreate-lock-file| --no-update-lock-file| --no-write-lock-file| --no-registries| --commit-lock-file)
lockFlags += ( " $i " )
; ;
--update-input)
j = " $1 " ; shift 1
lockFlags += ( " $i " " $j " )
; ;
--override-input)
j = " $1 " ; shift 1
k = " $1 " ; shift 1
lockFlags += ( " $i " " $j " " $k " )
; ;
2018-02-27 18:58:23 +00:00
--channel)
channelPath = " $1 " ; shift 1
; ;
2016-07-24 13:45:24 +00:00
--no-channel-copy)
noChannelCopy = 1
; ;
2021-10-04 19:05:23 +00:00
--no-root-password| --no-root-passwd)
2016-07-24 13:45:24 +00:00
noRootPasswd = 1
; ;
--no-bootloader)
2016-08-16 00:15:27 +00:00
noBootLoader = 1
2016-07-24 13:45:24 +00:00
; ;
2020-10-14 20:45:22 +00:00
--show-trace| --impure| --keep-going)
2014-05-08 19:04:58 +00:00
extraBuildFlags += ( " $i " )
; ;
2013-10-11 12:12:36 +00:00
--help)
exec man nixos-install
exit 1
; ;
2018-02-05 18:50:36 +00:00
--debug)
set -x
; ;
2019-12-22 21:03:14 +00:00
-v*| --verbose)
verbosity += ( " $i " )
; ;
2013-10-11 12:12:36 +00:00
*)
echo " $0 : unknown option \` $i ' "
exit 1
; ;
2013-09-29 14:38:57 +00:00
esac
done
2007-01-11 00:06:46 +00:00
if ! test -e " $mountPoint " ; then
echo " mount point $mountPoint doesn't exist "
exit 1
fi
2007-02-05 15:52:55 +00:00
2020-06-15 03:04:41 +00:00
# Verify permissions are okay-enough
checkPath = " $( realpath " $mountPoint " ) "
while [ [ " $checkPath " != "/" ] ] ; do
mode = " $( stat -c '%a' " $checkPath " ) "
if [ [ " ${ mode : -1 } " -lt "5" ] ] ; then
echo " path $checkPath should have permissions 755, but had permissions $mode . Consider running 'chmod o+rx $checkPath '. "
exit 1
fi
checkPath = " $( dirname " $checkPath " ) "
done
2024-07-09 11:21:49 +00:00
# Verify that user is not trying to use attribute building and flake
# at the same time
if [ [ -z $buildingAttribute && -n $flake ] ] ; then
echo " $0 : '--flake' cannot be used with '--file' or '--attr' "
2014-05-08 22:25:05 +00:00
exit 1
fi
2024-07-09 11:21:49 +00:00
# Get the path of the NixOS configuration file.
if [ [ -z $flake && -n $buildingAttribute ] ] ; then
if [ [ -z $NIXOS_CONFIG ] ] ; then
NIXOS_CONFIG = $mountPoint /etc/nixos/configuration.nix
fi
if [ [ ${ NIXOS_CONFIG : 0 : 1 } != / ] ] ; then
echo " $0 : \$NIXOS_CONFIG is not an absolute path "
exit 1
fi
elif [ [ -z $buildingAttribute ] ] ; then
if [ [ -z $buildFile ] ] ; then
buildFile = " $mountPoint /etc/nixos/default.nix "
elif [ [ -d $buildFile ] ] ; then
buildFile = " $buildFile /default.nix "
fi
elif [ [ -n $flake ] ] ; then
2020-08-11 16:15:28 +00:00
if [ [ $flake = ~ ^( .*) \# ( [ ^\# \" ] *) $ ] ] ; then
flake = " ${ BASH_REMATCH [1] } "
flakeAttr = " ${ BASH_REMATCH [2] } "
fi
if [ [ -z " $flakeAttr " ] ] ; then
echo "Please specify the name of the NixOS configuration to be installed, as a URI fragment in the flake-uri."
echo "For example, to use the output nixosConfigurations.foo from the flake.nix, append \"#foo\" to the flake-uri."
exit 1
fi
flakeAttr = " nixosConfigurations.\" $flakeAttr \" "
fi
# Resolve the flake.
if [ [ -n $flake ] ] ; then
2021-04-21 18:16:29 +00:00
flake = $( nix " ${ flakeFlags [@] } " flake metadata --json " ${ extraBuildFlags [@] } " " ${ lockFlags [@] } " -- " $flake " | jq -r .url)
2020-08-11 16:15:28 +00:00
fi
2024-07-09 11:21:49 +00:00
if [ [ ! -e $NIXOS_CONFIG && -z $system && -z $flake && -n $buildingAttribute ] ] ; then
2018-02-05 18:50:36 +00:00
echo " configuration file $NIXOS_CONFIG doesn't exist "
exit 1
2017-08-31 01:57:05 +00:00
fi
2006-11-11 17:59:08 +00:00
2024-07-09 11:21:49 +00:00
if [ [ ! -z $buildingAttribute && -e $buildFile && -z $system ] ] ; then
echo " configuration file $buildFile doesn't exist "
exit 1
fi
2018-02-05 18:50:36 +00:00
# A place to drop temporary stuff.
2020-08-11 16:15:28 +00:00
tmpdir = " $( mktemp -d -p " $mountPoint " ) "
trap 'rm -rf $tmpdir' EXIT
2020-04-25 10:00:05 +00:00
# store temporary files on target filesystem by default
export TMPDIR = ${ TMPDIR :- $tmpdir }
2015-09-30 19:43:06 +00:00
2018-02-07 18:33:22 +00:00
sub = "auto?trusted=1"
2012-05-15 13:50:36 +00:00
2022-01-05 17:15:26 +00:00
# Copy the NixOS/Nixpkgs sources to the target as the initial contents
# of the NixOS channel.
if [ [ -z $noChannelCopy ] ] ; then
if [ [ -z $channelPath ] ] ; then
channelPath = " $( nix-env -p /nix/var/nix/profiles/per-user/root/channels -q nixos --no-name --out-path 2>/dev/null || echo -n "" ) "
fi
if [ [ -n $channelPath ] ] ; then
echo "copying channel..."
mkdir -p " $mountPoint " /nix/var/nix/profiles/per-user/root
nix-env --store " $mountPoint " " ${ extraBuildFlags [@] } " --extra-substituters " $sub " \
-p " $mountPoint " /nix/var/nix/profiles/per-user/root/channels --set " $channelPath " --quiet \
" ${ verbosity [@] } "
install -m 0700 -d " $mountPoint " /root/.nix-defexpr
ln -sfn /nix/var/nix/profiles/per-user/root/channels " $mountPoint " /root/.nix-defexpr/channels
fi
fi
2018-02-05 18:50:36 +00:00
# Build the system configuration in the target filesystem.
if [ [ -z $system ] ] ; then
outLink = " $tmpdir /system "
2024-07-09 11:21:49 +00:00
if [ [ -z $flake && -n $buildingAttribute ] ] ; then
2020-08-11 16:15:28 +00:00
echo " building the configuration in $NIXOS_CONFIG ... "
nix-build --out-link " $outLink " --store " $mountPoint " " ${ extraBuildFlags [@] } " \
--extra-substituters " $sub " \
'<nixpkgs/nixos>' -A system -I " nixos-config= $NIXOS_CONFIG " " ${ verbosity [@] } "
2024-07-09 11:21:49 +00:00
elif [ [ -z $buildingAttribute ] ] ; then
if [ [ -n $attr ] ] ; then
echo " building the configuration in $buildFile and attribute $attr ... "
else
echo " building the configuration in $buildFile ... "
fi
nix-build --out-link " $outLink " --store " $mountPoint " " ${ extraBuildFlags [@] } " \
--extra-substituters " $sub " \
" $buildFile " -A " ${ attr : + $attr . } config.system.build.toplevel " " ${ verbosity [@] } "
2020-08-11 16:15:28 +00:00
else
echo " building the flake in $flake ... "
nix " ${ flakeFlags [@] } " build " $flake # $flakeAttr .config.system.build.toplevel " \
2020-10-03 17:03:55 +00:00
--store " $mountPoint " --extra-substituters " $sub " " ${ verbosity [@] } " \
2020-08-11 16:15:28 +00:00
" ${ extraBuildFlags [@] } " " ${ lockFlags [@] } " --out-link " $outLink "
fi
system = $( readlink -f " $outLink " )
2018-02-05 18:50:36 +00:00
fi
2017-08-31 01:57:05 +00:00
2018-02-05 18:50:36 +00:00
# Set the system profile to point to the configuration. TODO: combine
# this with the previous step once we have a nix-env replacement with
# a progress bar.
nix-env --store " $mountPoint " " ${ extraBuildFlags [@] } " \
2018-02-07 18:33:22 +00:00
--extra-substituters " $sub " \
2020-08-11 16:15:28 +00:00
-p " $mountPoint " /nix/var/nix/profiles/system --set " $system " " ${ verbosity [@] } "
2018-02-05 18:50:36 +00:00
# Mark the target as a NixOS installation, otherwise switch-to-configuration will chicken out.
2018-02-07 18:47:03 +00:00
mkdir -m 0755 -p " $mountPoint /etc "
2018-02-05 18:50:36 +00:00
touch " $mountPoint /etc/NIXOS "
2008-05-09 10:08:02 +00:00
2006-11-12 23:30:03 +00:00
# Switch to the new system configuration. This will install Grub with
# a menu default pointing at the kernel/initrd/etc of the new
# configuration.
2018-02-05 18:50:36 +00:00
if [ [ -z $noBootLoader ] ] ; then
echo "installing the boot loader..."
# Grub needs an mtab.
2020-08-11 16:15:28 +00:00
ln -sfn /proc/mounts " $mountPoint " /etc/mtab
2023-01-17 20:00:38 +00:00
export mountPoint
NIXOS_INSTALL_BOOTLOADER = 1 nixos-enter --root " $mountPoint " -c " $( cat <<'EOF'
2024-09-08 08:05:32 +00:00
set -e
2023-01-17 20:00:38 +00:00
# Create a bind mount for each of the mount points inside the target file
# system. This preserves the validity of their absolute paths after changing
# the root with `nixos-enter`.
# Without this the bootloader installation may fail due to options that
# contain paths referenced during evaluation, like initrd.secrets.
# when not root, re-execute the script in an unshared namespace
mount --rbind --mkdir / " $mountPoint "
mount --make-rslave " $mountPoint "
/run/current-system/bin/switch-to-configuration boot
2023-08-02 08:37:22 +00:00
umount -R " $mountPoint " && ( rmdir " $mountPoint " 2>/dev/null || true )
2023-01-17 20:00:38 +00:00
EOF
) "
2016-08-16 00:15:27 +00:00
fi
2014-05-08 22:04:48 +00:00
2018-02-05 18:50:36 +00:00
# Ask the user to set a root password, but only if the passwd command
# exists (i.e. when mutable user accounts are enabled).
if [ [ -z $noRootPasswd ] ] && [ -t 0 ] ; then
2019-03-03 20:07:14 +00:00
if nixos-enter --root " $mountPoint " -c 'test -e /nix/var/nix/profiles/system/sw/bin/passwd' ; then
set +e
nixos-enter --root " $mountPoint " -c 'echo "setting root password..." && /nix/var/nix/profiles/system/sw/bin/passwd'
exit_code = $?
set -e
if [ [ $exit_code != 0 ] ] ; then
echo "Setting a root password failed with the above printed error."
echo " You can set the root password manually by executing \`nixos-enter --root ${ mountPoint @Q } \` and then running \`passwd\` in the shell of the new system. "
exit $exit_code
fi
fi
2014-05-08 22:04:48 +00:00
fi
echo "installation finished!"