Fediversity/services/installer.nix

60 lines
1.7 KiB
Nix
Raw Normal View History

/**
Convert a NixOS configuration to one for a minimal installer ISO
WARNING: Running this installer will format the target disk!
*/
2024-11-07 18:36:43 +01:00
2024-11-11 17:25:42 +01:00
{
nixpkgs,
hostKeys ? { },
}:
2024-11-07 18:36:43 +01:00
machine:
let
inherit (builtins) concatStringsSep attrValues mapAttrs;
2024-11-11 17:25:42 +01:00
installer =
{
config,
pkgs,
lib,
...
}:
2024-11-07 18:36:43 +01:00
let
bootstrap = pkgs.writeShellApplication {
name = "bootstrap";
runtimeInputs = with pkgs; [ nixos-install-tools ];
text = ''
${machine.config.system.build.diskoScript}
nixos-install --no-root-password --no-channel-copy --system ${machine.config.system.build.toplevel}
2024-11-11 17:25:42 +01:00
${concatStringsSep "\n" (
attrValues (
mapAttrs (kind: keys: ''
cp ${keys.private} /mnt/etc/ssh/ssh_host_${kind}_key
chmod 600 /mnt/etc/ssh/ssh_host_${kind}_key
cp ${keys.public} /mnt/etc/ssh/ssh_host_${kind}_key.pub
chmod 644 /mnt/etc/ssh/ssh_host_${kind}_key.pub
'') hostKeys
)
2024-11-11 17:25:42 +01:00
)}
poweroff
2024-11-07 18:36:43 +01:00
'';
};
in
2024-11-11 17:25:42 +01:00
{
imports = [ "${nixpkgs}/nixos/modules/installer/cd-dvd/installation-cd-minimal.nix" ];
2024-11-11 17:25:42 +01:00
nixpkgs.hostPlatform = "x86_64-linux";
services.getty.autologinUser = lib.mkForce "root";
programs.bash.loginShellInit = nixpkgs.lib.getExe bootstrap;
2024-11-11 17:25:42 +01:00
isoImage = {
compressImage = false;
squashfsCompression = "lz4";
isoName = lib.mkForce "installer.iso";
## ^^ FIXME: Use a more interesting name or keep the default name and
## use `isoImage.isoName` in the tests.
};
2024-11-11 17:25:42 +01:00
};
2024-11-07 18:36:43 +01:00
in
2024-11-11 17:25:42 +01:00
(nixpkgs.lib.nixosSystem { modules = [ installer ]; }).config.system.build.isoImage