nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-02-17 09:34:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

systemd-boot: Support initrd secrets

Browse Source
This commit is contained in:
Shea Levy 2017-04-02 14:51:09 -04:00
parent 59c0977300
commit b09490a322
2 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
nixos/modules/system/boot/loader/systemd-boot/systemd-boot-builder.py
View File

@ -32,8 +32,11 @@ def write_loader_conf(generation):
f.write("editor 0"); f.write("editor 0");
os.rename("@efiSysMountPoint@/loader/loader.conf.tmp", "@efiSysMountPoint@/loader/loader.conf") os.rename("@efiSysMountPoint@/loader/loader.conf.tmp", "@efiSysMountPoint@/loader/loader.conf")
def profile_path(generation, name):
return os.readlink("%s/%s" % (system_dir(generation), name))
def copy_from_profile(generation, name, dry_run=False): def copy_from_profile(generation, name, dry_run=False):
store_file_path = os.readlink("%s/%s" % (system_dir(generation), name)) store_file_path = profile_path(generation, name)
suffix = os.path.basename(store_file_path) suffix = os.path.basename(store_file_path)
store_dir = os.path.basename(os.path.dirname(store_file_path)) store_dir = os.path.basename(os.path.dirname(store_file_path))
efi_file_path = "/efi/nixos/%s-%s.efi" % (store_dir, suffix) efi_file_path = "/efi/nixos/%s-%s.efi" % (store_dir, suffix)
@ -44,6 +47,11 @@ def copy_from_profile(generation, name, dry_run=False):
def write_entry(generation, machine_id): def write_entry(generation, machine_id):
kernel = copy_from_profile(generation, "kernel") kernel = copy_from_profile(generation, "kernel")
initrd = copy_from_profile(generation, "initrd") initrd = copy_from_profile(generation, "initrd")
try:
append_initrd_secrets = profile_path(generation, "append-initrd-secrets")
subprocess.check_call([append_initrd_secrets, "@efiSysMountPoint@%s" % (initrd)])
except FileNotFoundError:
pass
entry_file = "@efiSysMountPoint@/loader/entries/nixos-generation-%d.conf" % (generation) entry_file = "@efiSysMountPoint@/loader/entries/nixos-generation-%d.conf" % (generation)
generation_dir = os.readlink(system_dir(generation)) generation_dir = os.readlink(system_dir(generation))
tmp_path = "%s.tmp" % (entry_file) tmp_path = "%s.tmp" % (entry_file)

2
nixos/modules/system/boot/loader/systemd-boot/systemd-boot.nix
View File

@ -65,6 +65,8 @@ in {
boot.loader.grub.enable = mkDefault false; boot.loader.grub.enable = mkDefault false;
boot.loader.supportsInitrdSecrets = true;
system = { system = {
build.installBootLoader = gummibootBuilder; build.installBootLoader = gummibootBuilder;