blob: 2bb98ad6dfeb56b979dd53c3c472a8875255cae8 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
|
#!/bin/sh
set -eu
hostname="$1"
root="${2:-$(pwd)}"
src="$(readlink -f "${0%/*}/..")"
if [ "$(id -u)" -ne 0 ]; then
echo "Run this as root!" >&2
exit 1
fi
if ! command -v git >/dev/null; then
exec nix shell 'nixpkgs#git' -c "$0" "$@"
fi
# This is copied over from nixos-enter and prevents usage of two unshares
if [ -z "$NIXOS_ENTER_REEXEC" ]; then
export NIXOS_ENTER_REEXEC=1
exec unshare --fork --mount --uts --mount-proc --pid -- "$0" "$@"
else
mount --make-rprivate /
fi
################################################################################
if [ ! -s "$root/.personal-secrets.key" ]; then
echo "Please paste the personal secret key (terminate using ^D)" >&2
sudo tee "$root/.personal-secrets.key" >/dev/null
chown 600 "$root/.personal-secrets.key"
fi
if [ -f "$src/flake.nix" ]; then
flake="$src"
else
flake="git+https://git.cynerd.cz/nixos-personal"
eval "$(ssh-agent)"
echo "Please paste the SSH access key now (terminate using ^D):" >&2
ssh-add -
trap 'kill "$SSH_AGENT_PID"' EXIT
fi
buildSystem="$(nix eval --raw --impure --expr 'builtins.currentSystem')"
targetSystem="$(nix eval --raw "$flake#nixosConfigurations.$hostname.pkgs.system")"
toplevel="config.system.build.toplevel"
if [ "$buildSystem" != "$targetSystem" ]; then
toplevel="config.system.build.cross.$buildSystem.$toplevel"
fi
if [ -f "$src/flake.nix" ]; then
# Build in system when running from sources
result="$(nix build --no-link --print-out-paths \
"$flake#nixosConfigurations.$hostname.$toplevel")"
nix copy --no-check-sigs --to "$root" "$result"
else
result="$(nix build --no-link --print-out-paths \
"$flake#nixosConfigurations.$hostname.$toplevel" \
--store "$root" --extra-substituters 'auto?trusted=1')"
fi
nix-env --store "$root" --extra-substituters 'auto?trusted=1' \
-p "$root/nix/var/nix/profiles/system" --set "$result"
# Mark the target as a NixOS installation, otherwise switch-to-configuration will chicken out.
mkdir -m 0755 -p "$root/etc"
touch "$root/etc/NIXOS"
# Copy over binfmt runners if required
if [ "$buildSystem" != "$targetSystem" ]; then
mkdir -p "$root/run"
mountpoint -q "$root/run" \
|| mount -t tmpfs -o "nosuid,nodev,strictatime,mode=755" tmpfs "$root/run"
mkdir -p "$root/run/binfmt"
for binfmt in /run/binfmt/*; do
nix copy --to "$root" "$(readlink -f "$binfmt")"
ln -sf "$(readlink -f "$binfmt")" "$root/$binfmt"
done
fi
ln -sfn /proc/mounts "$root/etc/mtab" # Grub needs an mtab.
NIXOS_INSTALL_BOOTLOADER=1 nixos-enter --root "$root" -- \
/nix/var/nix/profiles/system/bin/switch-to-configuration boot
|