2020-08-20 17:08:02 +00:00
#! @runtimeShell@
2021-12-06 16:07:01 +00:00
# shellcheck shell=bash
2020-04-24 23:36:52 +00:00
set -e
shopt -s nullglob
export PATH = @path@:$PATH
# Ensure a consistent umask.
umask 0022
# Parse the command line for the -I flag
extraBuildFlags = ( )
2020-09-25 04:45:31 +00:00
flakeFlags = ( )
2020-04-24 23:36:52 +00:00
mountPoint = /mnt
channelPath =
system =
verbosity = ( )
2024-07-27 06:49:29 +00:00
attr =
buildFile =
buildingAttribute = 1
2020-04-24 23:36:52 +00:00
while [ " $# " -gt 0 ] ; do
i = " $1 " ; shift 1
case " $i " in
--max-jobs| -j| --cores| -I| --substituters)
j = " $1 " ; shift 1
extraBuildFlags += ( " $i " " $j " )
; ;
--option)
j = " $1 " ; shift 1
k = " $1 " ; shift 1
extraBuildFlags += ( " $i " " $j " " $k " )
; ;
--root)
mountPoint = " $1 " ; shift 1
; ;
--system| --closure)
system = " $1 " ; shift 1
; ;
2020-09-25 04:45:31 +00:00
--flake)
flake = " $1 "
flakeFlags = ( --experimental-features 'nix-command flakes' )
shift 1
; ;
2024-07-27 06:49:29 +00:00
--file| -f)
if [ -z " $1 " ] ; then
log " $0 : ' $i ' requires an argument "
exit 1
fi
buildFile = " $1 "
buildingAttribute =
shift 1
; ;
--attr| -A)
if [ -z " $1 " ] ; then
log " $0 : ' $i ' requires an argument "
exit 1
fi
attr = " $1 "
buildingAttribute =
shift 1
; ;
2020-09-25 04:45:31 +00:00
--recreate-lock-file| --no-update-lock-file| --no-write-lock-file| --no-registries| --commit-lock-file)
lockFlags += ( " $i " )
; ;
--update-input)
j = " $1 " ; shift 1
lockFlags += ( " $i " " $j " )
; ;
--override-input)
j = " $1 " ; shift 1
k = " $1 " ; shift 1
lockFlags += ( " $i " " $j " " $k " )
; ;
2020-04-24 23:36:52 +00:00
--channel)
channelPath = " $1 " ; shift 1
; ;
--no-channel-copy)
noChannelCopy = 1
; ;
2021-12-06 16:07:01 +00:00
--no-root-password| --no-root-passwd)
2020-04-24 23:36:52 +00:00
noRootPasswd = 1
; ;
--no-bootloader)
noBootLoader = 1
; ;
2020-11-03 02:18:15 +00:00
--show-trace| --impure| --keep-going)
2020-04-24 23:36:52 +00:00
extraBuildFlags += ( " $i " )
; ;
--help)
exec man nixos-install
exit 1
; ;
--debug)
set -x
; ;
-v*| --verbose)
verbosity += ( " $i " )
; ;
*)
echo " $0 : unknown option \` $i ' "
exit 1
; ;
esac
done
if ! test -e " $mountPoint " ; then
echo " mount point $mountPoint doesn't exist "
exit 1
fi
2020-07-18 16:06:22 +00:00
# Verify permissions are okay-enough
checkPath = " $( realpath " $mountPoint " ) "
while [ [ " $checkPath " != "/" ] ] ; do
mode = " $( stat -c '%a' " $checkPath " ) "
if [ [ " ${ mode : -1 } " -lt "5" ] ] ; then
echo " path $checkPath should have permissions 755, but had permissions $mode . Consider running 'chmod o+rx $checkPath '. "
exit 1
fi
checkPath = " $( dirname " $checkPath " ) "
done
2024-07-27 06:49:29 +00:00
# Verify that user is not trying to use attribute building and flake
# at the same time
if [ [ -z $buildingAttribute && -n $flake ] ] ; then
echo " $0 : '--flake' cannot be used with '--file' or '--attr' "
2020-04-24 23:36:52 +00:00
exit 1
fi
2024-07-27 06:49:29 +00:00
# Get the path of the NixOS configuration file.
if [ [ -z $flake && -n $buildingAttribute ] ] ; then
if [ [ -z $NIXOS_CONFIG ] ] ; then
NIXOS_CONFIG = $mountPoint /etc/nixos/configuration.nix
fi
if [ [ ${ NIXOS_CONFIG : 0 : 1 } != / ] ] ; then
echo " $0 : \$NIXOS_CONFIG is not an absolute path "
exit 1
fi
elif [ [ -z $buildingAttribute ] ] ; then
if [ [ -z $buildFile ] ] ; then
buildFile = " $mountPoint /etc/nixos/default.nix "
elif [ [ -d $buildFile ] ] ; then
buildFile = " $buildFile /default.nix "
fi
elif [ [ -n $flake ] ] ; then
2020-09-25 04:45:31 +00:00
if [ [ $flake = ~ ^( .*) \# ( [ ^\# \" ] *) $ ] ] ; then
flake = " ${ BASH_REMATCH [1] } "
flakeAttr = " ${ BASH_REMATCH [2] } "
fi
if [ [ -z " $flakeAttr " ] ] ; then
echo "Please specify the name of the NixOS configuration to be installed, as a URI fragment in the flake-uri."
echo "For example, to use the output nixosConfigurations.foo from the flake.nix, append \"#foo\" to the flake-uri."
exit 1
fi
flakeAttr = " nixosConfigurations.\" $flakeAttr \" "
fi
# Resolve the flake.
if [ [ -n $flake ] ] ; then
2021-04-26 19:14:03 +00:00
flake = $( nix " ${ flakeFlags [@] } " flake metadata --json " ${ extraBuildFlags [@] } " " ${ lockFlags [@] } " -- " $flake " | jq -r .url)
2020-09-25 04:45:31 +00:00
fi
2024-07-27 06:49:29 +00:00
if [ [ ! -e $NIXOS_CONFIG && -z $system && -z $flake && -n $buildingAttribute ] ] ; then
2020-04-24 23:36:52 +00:00
echo " configuration file $NIXOS_CONFIG doesn't exist "
exit 1
fi
2024-07-27 06:49:29 +00:00
if [ [ ! -z $buildingAttribute && -e $buildFile && -z $system ] ] ; then
echo " configuration file $buildFile doesn't exist "
exit 1
fi
2020-04-24 23:36:52 +00:00
# A place to drop temporary stuff.
2020-09-25 04:45:31 +00:00
tmpdir = " $( mktemp -d -p " $mountPoint " ) "
trap 'rm -rf $tmpdir' EXIT
2020-05-15 21:57:56 +00:00
# store temporary files on target filesystem by default
export TMPDIR = ${ TMPDIR :- $tmpdir }
2020-04-24 23:36:52 +00:00
sub = "auto?trusted=1"
2022-01-07 04:07:37 +00:00
# Copy the NixOS/Nixpkgs sources to the target as the initial contents
# of the NixOS channel.
if [ [ -z $noChannelCopy ] ] ; then
if [ [ -z $channelPath ] ] ; then
channelPath = " $( nix-env -p /nix/var/nix/profiles/per-user/root/channels -q nixos --no-name --out-path 2>/dev/null || echo -n "" ) "
fi
if [ [ -n $channelPath ] ] ; then
echo "copying channel..."
mkdir -p " $mountPoint " /nix/var/nix/profiles/per-user/root
nix-env --store " $mountPoint " " ${ extraBuildFlags [@] } " --extra-substituters " $sub " \
-p " $mountPoint " /nix/var/nix/profiles/per-user/root/channels --set " $channelPath " --quiet \
" ${ verbosity [@] } "
install -m 0700 -d " $mountPoint " /root/.nix-defexpr
ln -sfn /nix/var/nix/profiles/per-user/root/channels " $mountPoint " /root/.nix-defexpr/channels
fi
fi
2020-04-24 23:36:52 +00:00
# Build the system configuration in the target filesystem.
if [ [ -z $system ] ] ; then
outLink = " $tmpdir /system "
2024-07-27 06:49:29 +00:00
if [ [ -z $flake && -n $buildingAttribute ] ] ; then
2020-09-25 04:45:31 +00:00
echo " building the configuration in $NIXOS_CONFIG ... "
nix-build --out-link " $outLink " --store " $mountPoint " " ${ extraBuildFlags [@] } " \
--extra-substituters " $sub " \
'<nixpkgs/nixos>' -A system -I " nixos-config= $NIXOS_CONFIG " " ${ verbosity [@] } "
2024-07-27 06:49:29 +00:00
elif [ [ -z $buildingAttribute ] ] ; then
if [ [ -n $attr ] ] ; then
echo " building the configuration in $buildFile and attribute $attr ... "
else
echo " building the configuration in $buildFile ... "
fi
nix-build --out-link " $outLink " --store " $mountPoint " " ${ extraBuildFlags [@] } " \
--extra-substituters " $sub " \
" $buildFile " -A " ${ attr : + $attr . } config.system.build.toplevel " " ${ verbosity [@] } "
2020-09-25 04:45:31 +00:00
else
echo " building the flake in $flake ... "
nix " ${ flakeFlags [@] } " build " $flake # $flakeAttr .config.system.build.toplevel " \
2020-10-07 09:15:18 +00:00
--store " $mountPoint " --extra-substituters " $sub " " ${ verbosity [@] } " \
2020-09-25 04:45:31 +00:00
" ${ extraBuildFlags [@] } " " ${ lockFlags [@] } " --out-link " $outLink "
fi
system = $( readlink -f " $outLink " )
2020-04-24 23:36:52 +00:00
fi
# Set the system profile to point to the configuration. TODO: combine
# this with the previous step once we have a nix-env replacement with
# a progress bar.
nix-env --store " $mountPoint " " ${ extraBuildFlags [@] } " \
--extra-substituters " $sub " \
2020-09-25 04:45:31 +00:00
-p " $mountPoint " /nix/var/nix/profiles/system --set " $system " " ${ verbosity [@] } "
2020-04-24 23:36:52 +00:00
# Mark the target as a NixOS installation, otherwise switch-to-configuration will chicken out.
mkdir -m 0755 -p " $mountPoint /etc "
touch " $mountPoint /etc/NIXOS "
# Switch to the new system configuration. This will install Grub with
# a menu default pointing at the kernel/initrd/etc of the new
# configuration.
if [ [ -z $noBootLoader ] ] ; then
echo "installing the boot loader..."
# Grub needs an mtab.
2020-09-25 04:45:31 +00:00
ln -sfn /proc/mounts " $mountPoint " /etc/mtab
2023-02-02 18:25:31 +00:00
export mountPoint
NIXOS_INSTALL_BOOTLOADER = 1 nixos-enter --root " $mountPoint " -c " $( cat <<'EOF'
2024-09-19 14:19:46 +00:00
set -e
2023-02-02 18:25:31 +00:00
# Create a bind mount for each of the mount points inside the target file
# system. This preserves the validity of their absolute paths after changing
# the root with `nixos-enter`.
# Without this the bootloader installation may fail due to options that
# contain paths referenced during evaluation, like initrd.secrets.
# when not root, re-execute the script in an unshared namespace
mount --rbind --mkdir / " $mountPoint "
mount --make-rslave " $mountPoint "
/run/current-system/bin/switch-to-configuration boot
2023-08-04 22:07:22 +00:00
umount -R " $mountPoint " && ( rmdir " $mountPoint " 2>/dev/null || true )
2023-02-02 18:25:31 +00:00
EOF
) "
2020-04-24 23:36:52 +00:00
fi
# Ask the user to set a root password, but only if the passwd command
# exists (i.e. when mutable user accounts are enabled).
if [ [ -z $noRootPasswd ] ] && [ -t 0 ] ; then
if nixos-enter --root " $mountPoint " -c 'test -e /nix/var/nix/profiles/system/sw/bin/passwd' ; then
set +e
nixos-enter --root " $mountPoint " -c 'echo "setting root password..." && /nix/var/nix/profiles/system/sw/bin/passwd'
exit_code = $?
set -e
if [ [ $exit_code != 0 ] ] ; then
echo "Setting a root password failed with the above printed error."
echo " You can set the root password manually by executing \`nixos-enter --root ${ mountPoint @Q } \` and then running \`passwd\` in the shell of the new system. "
exit $exit_code
fi
fi
fi
echo "installation finished!"