2006-12-11 18:36:57 +01:00
|
|
|
{ platform ? __currentSystem
|
2006-12-11 17:10:23 +01:00
|
|
|
, configuration
|
2009-03-25 16:47:29 +01:00
|
|
|
, nixpkgs ? ../../nixpkgs
|
2006-11-12 19:48:47 +01:00
|
|
|
}:
|
2006-11-04 13:00:05 +01:00
|
|
|
|
2006-11-02 18:56:50 +01:00
|
|
|
rec {
|
2008-08-08 21:07:07 +02:00
|
|
|
|
2008-08-06 19:39:05 +02:00
|
|
|
configComponents = [
|
|
|
|
configuration
|
2008-08-08 20:56:58 +02:00
|
|
|
(import ./options.nix)
|
2008-08-06 19:39:05 +02:00
|
|
|
];
|
|
|
|
|
|
|
|
noOption = name: values:
|
|
|
|
abort "${name}: Used without option declaration.";
|
2006-11-02 18:56:50 +01:00
|
|
|
|
2006-12-11 16:47:30 +01:00
|
|
|
# Make a configuration object from which we can retrieve option
|
|
|
|
# values.
|
2008-08-06 19:39:05 +02:00
|
|
|
config =
|
2008-11-09 17:44:31 +01:00
|
|
|
pkgs.lib.fixOptionSets
|
2008-08-06 19:39:05 +02:00
|
|
|
(pkgs.lib.mergeOptionSets noOption)
|
|
|
|
pkgs configComponents;
|
2007-11-09 19:49:45 +01:00
|
|
|
|
2008-08-06 19:39:05 +02:00
|
|
|
optionDeclarations =
|
2008-11-09 17:44:31 +01:00
|
|
|
pkgs.lib.fixOptionSetsFun
|
2008-08-06 20:43:53 +02:00
|
|
|
pkgs.lib.filterOptionSets
|
|
|
|
pkgs configComponents
|
|
|
|
config;
|
2006-12-11 16:47:30 +01:00
|
|
|
|
2009-03-25 16:47:29 +01:00
|
|
|
pkgs = import nixpkgs {system = platform;};
|
2006-11-02 18:56:50 +01:00
|
|
|
|
2007-11-09 19:49:45 +01:00
|
|
|
manifests = config.installer.manifests; # exported here because nixos-rebuild uses it
|
2007-08-15 14:01:20 +02:00
|
|
|
|
2008-08-08 20:57:07 +02:00
|
|
|
nix = config.environment.nix;
|
2006-11-17 17:38:24 +01:00
|
|
|
|
2008-08-08 20:57:07 +02:00
|
|
|
kernelPackages = config.boot.kernelPackages;
|
2008-05-22 13:59:46 +02:00
|
|
|
|
|
|
|
kernel = kernelPackages.kernel;
|
2006-11-02 23:48:01 +01:00
|
|
|
|
2008-05-22 13:59:46 +02:00
|
|
|
|
2008-05-08 17:36:56 +02:00
|
|
|
# Tree of kernel modules. This includes the kernel, plus modules
|
|
|
|
# built outside of the kernel. We have to combine these into a
|
|
|
|
# single tree of symlinks because modprobe only supports one
|
|
|
|
# directory.
|
|
|
|
modulesTree = pkgs.aggregateModules (
|
|
|
|
[kernel]
|
2008-11-27 21:35:26 +01:00
|
|
|
# Merged into mainline kernel
|
|
|
|
# ++ pkgs.lib.optional ((config.networking.enableIntel3945ABGFirmware || config.networking.enableIntel4965AGNFirmware) && !kernel.features ? iwlwifi) kernelPackages.iwlwifi
|
2008-05-08 17:36:56 +02:00
|
|
|
# !!! this should be declared by the xserver Upstart job.
|
2009-03-30 16:54:22 +02:00
|
|
|
++ pkgs.lib.optional (config.services.xserver.enable && config.services.xserver.videoDriver == "nvidia") kernelPackages.nvidia_x11
|
2008-05-22 13:59:46 +02:00
|
|
|
++ pkgs.lib.optional config.hardware.enableGo7007 kernelPackages.wis_go7007
|
2008-08-08 20:57:07 +02:00
|
|
|
++ config.boot.extraModulePackages
|
2008-05-08 17:36:56 +02:00
|
|
|
);
|
|
|
|
|
2006-11-03 01:36:08 +01:00
|
|
|
|
2008-08-08 19:34:30 +02:00
|
|
|
# The initial ramdisk.
|
|
|
|
initialRamdiskStuff = import ../boot/boot-stage-1.nix {
|
2009-03-25 16:47:29 +01:00
|
|
|
inherit pkgs config kernelPackages modulesTree;
|
2006-11-02 18:56:50 +01:00
|
|
|
};
|
|
|
|
|
2008-08-08 19:34:30 +02:00
|
|
|
initialRamdisk = initialRamdiskStuff.initialRamdisk;
|
|
|
|
|
2006-11-02 23:48:01 +01:00
|
|
|
|
2008-02-08 16:59:15 +01:00
|
|
|
# NixOS installation/updating tools.
|
|
|
|
nixosTools = import ../installer {
|
2009-03-25 16:47:29 +01:00
|
|
|
inherit pkgs config nix;
|
2007-02-06 14:09:25 +01:00
|
|
|
};
|
|
|
|
|
2006-11-08 10:31:45 +01:00
|
|
|
|
2007-01-15 18:19:41 +01:00
|
|
|
# NSS modules. Hacky!
|
2007-01-16 17:09:43 +01:00
|
|
|
nssModules =
|
2008-03-17 14:58:57 +01:00
|
|
|
pkgs.lib.optional config.users.ldap.enable pkgs.nss_ldap
|
|
|
|
++ pkgs.lib.optional config.services.avahi.nssmdns pkgs.nssmdns;
|
2007-01-15 18:19:41 +01:00
|
|
|
|
|
|
|
nssModulesPath = pkgs.lib.concatStrings (pkgs.lib.intersperse ":"
|
|
|
|
(map (mod: mod + "/lib") nssModules));
|
|
|
|
|
|
|
|
|
2007-03-04 02:16:24 +01:00
|
|
|
# Wrapper around modprobe to set the path to the modules.
|
|
|
|
modprobe = pkgs.substituteAll {
|
|
|
|
dir = "sbin";
|
|
|
|
src = ./modprobe;
|
|
|
|
isExecutable = true;
|
2007-06-23 17:48:09 +02:00
|
|
|
inherit (pkgs) module_init_tools;
|
2008-01-13 00:37:17 +01:00
|
|
|
inherit modulesTree;
|
2007-03-04 02:16:24 +01:00
|
|
|
};
|
|
|
|
|
|
|
|
|
2007-11-15 18:16:16 +01:00
|
|
|
# Environment variables for running Nix.
|
|
|
|
nixEnvVars =
|
2008-07-23 18:06:03 +02:00
|
|
|
''
|
|
|
|
export NIX_CONF_DIR=/nix/etc/nix
|
|
|
|
|
|
|
|
# Enable the copy-from-other-stores substituter, which allows builds
|
|
|
|
# to be sped up by copying build results from remote Nix stores. To
|
|
|
|
# do this, mount the remote file system on a subdirectory of
|
|
|
|
# /var/run/nix/remote-stores.
|
|
|
|
export NIX_OTHER_STORES=/var/run/nix/remote-stores/*/nix
|
|
|
|
|
|
|
|
'' + # */
|
2007-11-15 18:16:16 +01:00
|
|
|
(if config.nix.distributedBuilds then
|
2008-07-23 18:06:03 +02:00
|
|
|
''
|
|
|
|
export NIX_BUILD_HOOK=${nix}/libexec/nix/build-remote.pl
|
|
|
|
export NIX_REMOTE_SYSTEMS=/etc/nix.machines
|
|
|
|
export NIX_CURRENT_LOAD=/var/run/nix/current-load
|
|
|
|
''
|
2009-01-03 10:07:52 +01:00
|
|
|
else "")
|
|
|
|
+
|
|
|
|
(if config.nix.proxy != "" then
|
|
|
|
''
|
|
|
|
export http_proxy=${config.nix.proxy}
|
|
|
|
export https_proxy=${config.nix.proxy}
|
|
|
|
export ftp_proxy=${config.nix.proxy}
|
|
|
|
'' else "")
|
|
|
|
;
|
2007-11-15 18:16:16 +01:00
|
|
|
|
|
|
|
|
2006-11-19 21:07:45 +01:00
|
|
|
# The services (Upstart) configuration for the system.
|
2007-03-30 14:59:43 +02:00
|
|
|
upstartJobs = import ../upstart-jobs/default.nix {
|
2008-05-22 13:59:46 +02:00
|
|
|
inherit config pkgs nix modprobe nssModulesPath nixEnvVars
|
2009-04-05 20:30:39 +02:00
|
|
|
optionDeclarations kernelPackages mount kdePackages;
|
2006-11-19 22:03:22 +01:00
|
|
|
};
|
|
|
|
|
2006-12-09 03:51:42 +01:00
|
|
|
|
2006-12-11 16:32:10 +01:00
|
|
|
# The static parts of /etc.
|
2007-03-30 14:59:43 +02:00
|
|
|
etc = import ../etc/default.nix {
|
2007-11-15 18:16:16 +01:00
|
|
|
inherit config pkgs upstartJobs systemPath wrapperDir
|
2009-04-05 20:30:39 +02:00
|
|
|
defaultShell nixEnvVars modulesTree nssModulesPath binsh
|
|
|
|
kdePackages;
|
2008-11-09 17:44:37 +01:00
|
|
|
extraEtc =
|
|
|
|
(pkgs.lib.concatLists (map (job: job.extraEtc) upstartJobs.jobs))
|
|
|
|
++ config.environment.etc;
|
2006-12-09 03:51:42 +01:00
|
|
|
};
|
|
|
|
|
2008-08-08 21:07:07 +02:00
|
|
|
|
2007-10-05 09:25:13 +02:00
|
|
|
# Font aggregation
|
2007-11-15 18:16:16 +01:00
|
|
|
fontDir = import ./fontdir.nix {
|
2008-07-23 16:13:27 +02:00
|
|
|
inherit config pkgs;
|
2008-03-02 19:46:57 +01:00
|
|
|
inherit (pkgs) builderDefs ttmkfdir;
|
2007-11-15 18:16:16 +01:00
|
|
|
inherit (pkgs.xorg) mkfontdir mkfontscale fontalias;
|
|
|
|
};
|
2006-12-11 16:47:30 +01:00
|
|
|
|
2008-08-08 21:07:07 +02:00
|
|
|
|
2006-12-11 16:47:30 +01:00
|
|
|
# The wrapper setuid programs (since we can't have setuid programs
|
2007-01-15 15:43:56 +01:00
|
|
|
# in the Nix store).
|
|
|
|
wrapperDir = "/var/setuid-wrappers";
|
|
|
|
|
2006-11-28 18:34:27 +01:00
|
|
|
setuidWrapper = import ../helpers/setuid {
|
|
|
|
inherit (pkgs) stdenv;
|
2007-01-15 15:43:56 +01:00
|
|
|
inherit wrapperDir;
|
2006-11-28 18:34:27 +01:00
|
|
|
};
|
|
|
|
|
|
|
|
|
2008-08-06 17:48:12 +02:00
|
|
|
# A patched `mount' command that looks in a directory in the Nix
|
|
|
|
# store instead of in /sbin for mount helpers (like mount.ntfs-3g or
|
|
|
|
# mount.cifs).
|
2009-03-31 11:33:35 +02:00
|
|
|
mount = pkgs.utillinuxng.override {
|
2008-08-06 17:48:12 +02:00
|
|
|
buildMountOnly = true;
|
|
|
|
mountHelpers = pkgs.buildEnv {
|
|
|
|
name = "mount-helpers";
|
|
|
|
paths = [
|
|
|
|
pkgs.ntfs3g
|
|
|
|
pkgs.mount_cifs
|
2009-04-06 21:25:45 +02:00
|
|
|
pkgs.nfsUtils
|
2008-08-06 17:48:12 +02:00
|
|
|
];
|
|
|
|
pathsToLink = "/sbin";
|
|
|
|
} + "/sbin";
|
|
|
|
};
|
|
|
|
|
|
|
|
|
2006-12-09 20:25:23 +01:00
|
|
|
# The packages you want in the boot environment.
|
2008-02-08 16:59:15 +01:00
|
|
|
systemPathList = [
|
2008-01-22 18:55:57 +01:00
|
|
|
# Better leave them here - they are small, needed,
|
|
|
|
# and hard to refer from anywhere outside.
|
2008-02-08 16:59:15 +01:00
|
|
|
modprobe # must take precedence over module_init_tools
|
2008-08-06 17:48:12 +02:00
|
|
|
mount # must take precedence over util-linux
|
2008-01-22 18:55:57 +01:00
|
|
|
nix
|
2008-02-08 16:59:15 +01:00
|
|
|
nixosTools.nixosInstall
|
|
|
|
nixosTools.nixosRebuild
|
|
|
|
nixosTools.nixosCheckout
|
|
|
|
nixosTools.nixosHardwareScan
|
2008-03-04 00:30:49 +01:00
|
|
|
nixosTools.nixosGenSeccureKeys
|
2008-01-22 18:55:57 +01:00
|
|
|
setuidWrapper
|
|
|
|
]
|
2008-02-08 16:59:15 +01:00
|
|
|
++ pkgs.lib.optionals (!config.environment.cleanStart) [
|
2009-04-09 16:11:55 +02:00
|
|
|
pkgs.acl
|
|
|
|
pkgs.attr
|
2007-03-20 11:40:45 +01:00
|
|
|
pkgs.bashInteractive # bash with ncurses support
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.bzip2
|
|
|
|
pkgs.coreutils
|
|
|
|
pkgs.cpio
|
|
|
|
pkgs.curl
|
|
|
|
pkgs.e2fsprogs
|
|
|
|
pkgs.findutils
|
2006-12-23 23:43:39 +01:00
|
|
|
pkgs.glibc # for ldd, getent
|
2009-04-27 23:52:10 +02:00
|
|
|
pkgs.glibcLocales
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.gnugrep
|
|
|
|
pkgs.gnused
|
|
|
|
pkgs.gnutar
|
|
|
|
pkgs.grub
|
|
|
|
pkgs.gzip
|
|
|
|
pkgs.iputils
|
|
|
|
pkgs.less
|
2009-04-09 16:11:55 +02:00
|
|
|
pkgs.libcap
|
2006-12-24 02:07:28 +01:00
|
|
|
pkgs.lvm2
|
2008-02-07 15:39:32 +01:00
|
|
|
pkgs.man
|
2007-01-11 01:06:46 +01:00
|
|
|
pkgs.mdadm
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.module_init_tools
|
|
|
|
pkgs.nano
|
2008-04-10 09:43:49 +02:00
|
|
|
pkgs.ncurses
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.netcat
|
|
|
|
pkgs.nettools
|
2006-12-23 23:43:39 +01:00
|
|
|
pkgs.ntp
|
2007-02-19 23:33:44 +01:00
|
|
|
pkgs.openssh
|
|
|
|
pkgs.pciutils
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.perl
|
|
|
|
pkgs.procps
|
2006-12-11 02:03:26 +01:00
|
|
|
pkgs.pwdutils
|
2007-11-07 23:00:05 +01:00
|
|
|
pkgs.reiserfsprogs
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.rsync
|
2008-03-04 00:30:49 +01:00
|
|
|
pkgs.seccureUser
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.strace
|
2007-01-11 16:32:48 +01:00
|
|
|
pkgs.su
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.sysklogd
|
2007-05-23 16:29:34 +02:00
|
|
|
pkgs.sysvtools
|
2007-04-20 10:51:41 +02:00
|
|
|
pkgs.time
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.udev
|
|
|
|
pkgs.upstart
|
2008-01-18 16:18:32 +01:00
|
|
|
pkgs.usbutils
|
2006-12-09 20:25:23 +01:00
|
|
|
pkgs.utillinux
|
2007-03-28 23:15:23 +02:00
|
|
|
pkgs.wirelesstools
|
2009-01-19 13:34:14 +01:00
|
|
|
(import ../helpers/info-wrapper.nix {inherit (pkgs) bash texinfo writeScriptBin;})
|
2008-02-08 16:59:15 +01:00
|
|
|
]
|
|
|
|
++ pkgs.lib.optional config.security.sudo.enable pkgs.sudo
|
2008-04-01 12:16:35 +02:00
|
|
|
++ pkgs.lib.optional config.services.atd.enable pkgs.at
|
2008-02-20 23:46:53 +01:00
|
|
|
++ pkgs.lib.optional config.services.bitlbee.enable pkgs.bitlbee
|
2008-03-17 14:58:57 +01:00
|
|
|
++ pkgs.lib.optional config.services.avahi.enable pkgs.avahi
|
2008-02-08 16:59:15 +01:00
|
|
|
++ pkgs.lib.optional config.networking.defaultMailServer.directDelivery pkgs.ssmtp
|
2007-04-07 23:44:26 +02:00
|
|
|
++ pkgs.lib.concatLists (map (job: job.extraPath) upstartJobs.jobs)
|
2008-08-08 20:57:07 +02:00
|
|
|
++ config.environment.extraPackages
|
2008-03-26 17:23:52 +01:00
|
|
|
++ pkgs.lib.optional config.fonts.enableFontDir fontDir
|
2008-06-20 20:17:51 +02:00
|
|
|
++ pkgs.lib.optional config.hardware.enableGo7007 kernelPackages.wis_go7007
|
2006-12-09 20:25:23 +01:00
|
|
|
|
2008-03-26 17:23:52 +01:00
|
|
|
# NSS modules need to be in `systemPath' so that (i) the builder
|
|
|
|
# chroot gets to seem them, and (ii) applications can benefit from
|
|
|
|
# changes in the list of NSS modules at run-time, without requiring
|
|
|
|
# a reboot.
|
2008-11-29 08:10:31 +01:00
|
|
|
++ nssModules
|
|
|
|
|
|
|
|
# These packages are nice fallbacks unless any of the more powerful
|
|
|
|
# substitutes is present.
|
|
|
|
++ [
|
|
|
|
# Use ISC BIND version of the host util if you don't mind installing BIND
|
|
|
|
pkgs.host
|
|
|
|
]
|
|
|
|
;
|
2006-12-09 20:25:23 +01:00
|
|
|
|
2008-08-08 21:07:07 +02:00
|
|
|
|
2007-01-15 15:43:56 +01:00
|
|
|
# We don't want to put all of `startPath' and `path' in $PATH, since
|
|
|
|
# then we get an embarrassingly long $PATH. So use the user
|
|
|
|
# environment builder to make a directory with symlinks to those
|
|
|
|
# packages.
|
|
|
|
systemPath = pkgs.buildEnv {
|
|
|
|
name = "system-path";
|
|
|
|
paths = systemPathList;
|
2008-03-26 17:23:52 +01:00
|
|
|
|
|
|
|
# Note: We need `/lib' to be among `pathsToLink' for NSS modules
|
|
|
|
# to work.
|
2007-12-01 21:44:27 +01:00
|
|
|
inherit (config.environment) pathsToLink;
|
2008-03-26 17:23:52 +01:00
|
|
|
|
2007-01-15 15:43:56 +01:00
|
|
|
ignoreCollisions = true;
|
|
|
|
};
|
|
|
|
|
2007-03-20 14:30:14 +01:00
|
|
|
|
2009-04-05 20:30:39 +02:00
|
|
|
# The list of packages that need to appear in KDEDIRS,
|
|
|
|
# XDG_CONFIG_DIRS and XDG_DATA_DIRS.
|
|
|
|
# !!! This should be defined somewhere else.
|
|
|
|
kdePackages =
|
|
|
|
pkgs.lib.optionals (config.services.xserver.sessionType == "kde4")
|
|
|
|
[ pkgs.kde42.kdelibs
|
|
|
|
pkgs.kde42.kdebase
|
|
|
|
pkgs.kde42.kdebase_runtime
|
|
|
|
pkgs.kde42.kdebase_workspace
|
|
|
|
pkgs.shared_mime_info
|
|
|
|
]
|
|
|
|
++ pkgs.lib.optionals (config.services.xserver.sessionType == "kde")
|
|
|
|
[ pkgs.kdebase
|
|
|
|
pkgs.kdelibs
|
2009-04-05 21:10:34 +02:00
|
|
|
]
|
|
|
|
++ config.kde.extraPackages;
|
2009-04-05 20:30:39 +02:00
|
|
|
|
|
|
|
|
2007-11-16 14:26:34 +01:00
|
|
|
usersGroups = import ./users-groups.nix { inherit pkgs config upstartJobs defaultShell; };
|
2007-06-08 17:41:12 +02:00
|
|
|
|
|
|
|
|
2007-03-20 14:30:14 +01:00
|
|
|
defaultShell = "/var/run/current-system/sw/bin/bash";
|
|
|
|
|
2008-12-16 00:54:10 +01:00
|
|
|
|
|
|
|
# The shell that we want to use for /bin/sh.
|
|
|
|
binsh = pkgs.bashInteractive;
|
|
|
|
|
2007-01-15 15:43:56 +01:00
|
|
|
|
2006-12-09 20:25:23 +01:00
|
|
|
# The script that activates the configuration, i.e., it sets up
|
|
|
|
# /etc, accounts, etc. It doesn't do anything that can only be done
|
|
|
|
# at boot time (such as start `init').
|
2008-03-17 11:31:40 +01:00
|
|
|
activateConfiguration = pkgs.substituteAll rec {
|
2006-12-09 20:25:23 +01:00
|
|
|
src = ./activate-configuration.sh;
|
|
|
|
isExecutable = true;
|
|
|
|
|
2008-12-16 00:54:10 +01:00
|
|
|
inherit etc wrapperDir systemPath modprobe defaultShell kernel binsh;
|
|
|
|
|
2007-11-09 19:49:45 +01:00
|
|
|
hostName = config.networking.hostName;
|
2008-12-16 00:54:10 +01:00
|
|
|
|
2007-04-07 23:44:26 +02:00
|
|
|
setuidPrograms =
|
2007-11-09 19:49:45 +01:00
|
|
|
config.security.setuidPrograms ++
|
|
|
|
config.security.extraSetuidPrograms ++
|
2008-06-20 15:32:39 +02:00
|
|
|
pkgs.lib.optional config.security.sudo.enable "sudo" ++
|
|
|
|
pkgs.lib.optionals config.services.atd.enable ["at" "atq" "atrm"] ++
|
2008-08-16 02:59:23 +02:00
|
|
|
pkgs.lib.optional (config.services.xserver.sessionType == "kde") "kcheckpass" ++
|
|
|
|
map ( x : x.program ) config.security.setuidOwners;
|
2006-12-09 20:25:23 +01:00
|
|
|
|
2007-06-08 17:41:12 +02:00
|
|
|
inherit (usersGroups) createUsersGroups usersList groupsList;
|
|
|
|
|
2006-12-16 22:48:12 +01:00
|
|
|
path = [
|
2009-02-20 17:31:42 +01:00
|
|
|
pkgs.coreutils pkgs.gnugrep pkgs.findutils
|
|
|
|
pkgs.glibc # needed for getent
|
|
|
|
pkgs.pwdutils
|
|
|
|
];
|
2007-03-20 11:40:45 +01:00
|
|
|
|
2008-06-30 17:13:02 +02:00
|
|
|
adjustSetuidOwner = pkgs.lib.concatStrings (map
|
2008-07-23 16:13:27 +02:00
|
|
|
(_entry: let entry = {
|
2008-06-30 17:13:02 +02:00
|
|
|
owner = "nobody";
|
2008-07-23 16:13:27 +02:00
|
|
|
group = "nogroup";
|
|
|
|
setuid = false;
|
|
|
|
setgid = false;
|
2008-06-30 17:13:02 +02:00
|
|
|
} //_entry; in
|
|
|
|
''
|
|
|
|
chown ${entry.owner}.${entry.group} $wrapperDir/${entry.program}
|
2008-07-23 16:13:27 +02:00
|
|
|
chmod u${if entry.setuid then "+" else "-"}s $wrapperDir/${entry.program}
|
|
|
|
chmod g${if entry.setgid then "+" else "-"}s $wrapperDir/${entry.program}
|
2008-06-30 17:13:02 +02:00
|
|
|
'')
|
2008-11-29 18:36:00 +01:00
|
|
|
(config.security.setuidOwners ++
|
|
|
|
|
|
|
|
# The `at' commands must be setuid `atd' so they can access the files
|
|
|
|
# under `/etc/at', etc.
|
|
|
|
(if config.services.atd.enable
|
|
|
|
then (map (program: { inherit program; owner = "atd"; group = "atd";
|
|
|
|
setuid = true; setgid = true; })
|
|
|
|
[ "at" "atq" "atrm" ])
|
|
|
|
else [])));
|
2006-12-09 20:25:23 +01:00
|
|
|
};
|
|
|
|
|
|
|
|
|
2006-11-04 01:01:13 +01:00
|
|
|
# The init script of boot stage 2, which is supposed to do
|
|
|
|
# everything else to bring up the system.
|
2006-11-28 11:45:21 +01:00
|
|
|
bootStage2 = import ../boot/boot-stage-2.nix {
|
2007-03-06 01:45:33 +01:00
|
|
|
inherit (pkgs) substituteAll writeText coreutils
|
2007-06-23 17:48:09 +02:00
|
|
|
utillinux udev upstart;
|
2007-09-18 17:06:24 +02:00
|
|
|
inherit kernel activateConfiguration;
|
2008-01-24 17:56:09 +01:00
|
|
|
inherit (config.boot) isLiveCD;
|
2006-12-10 23:29:44 +01:00
|
|
|
upstartPath = [
|
|
|
|
pkgs.coreutils
|
|
|
|
pkgs.findutils
|
|
|
|
pkgs.gnugrep
|
|
|
|
pkgs.gnused
|
2006-12-11 01:52:36 +01:00
|
|
|
pkgs.upstart
|
2006-12-10 23:29:44 +01:00
|
|
|
];
|
2007-11-09 19:49:45 +01:00
|
|
|
bootLocal = config.boot.localCommands;
|
2006-11-27 17:26:51 +01:00
|
|
|
};
|
|
|
|
|
2006-12-11 18:36:57 +01:00
|
|
|
|
|
|
|
# Script to build the Grub menu containing the current and previous
|
|
|
|
# system configurations.
|
|
|
|
grubMenuBuilder = pkgs.substituteAll {
|
|
|
|
src = ../installer/grub-menu-builder.sh;
|
|
|
|
isExecutable = true;
|
|
|
|
inherit (pkgs) bash;
|
|
|
|
path = [pkgs.coreutils pkgs.gnused pkgs.gnugrep];
|
2008-07-05 02:16:39 +02:00
|
|
|
inherit (config.boot) copyKernels extraGrubEntries extraGrubEntriesBeforeNixos
|
2008-01-10 05:43:19 +01:00
|
|
|
grubSplashImage bootMount configurationLimit;
|
2006-12-11 18:36:57 +01:00
|
|
|
};
|
|
|
|
|
2009-05-03 13:08:17 +02:00
|
|
|
children = map (x: ((import ./system.nix)
|
|
|
|
{ inherit platform;
|
|
|
|
configuration = x//{boot=((x.boot)//{grubDevice = "";});};}).system)
|
|
|
|
config.nesting.children;
|
|
|
|
configurationName = config.boot.configurationName;
|
2006-12-11 18:36:57 +01:00
|
|
|
|
|
|
|
# Putting it all together. This builds a store object containing
|
|
|
|
# symlinks to the various parts of the built configuration (the
|
|
|
|
# kernel, the Upstart services, the init scripts, etc.) as well as a
|
|
|
|
# script `switch-to-configuration' that activates the configuration
|
|
|
|
# and makes it bootable.
|
2007-09-25 21:00:20 +02:00
|
|
|
system = pkgs.checker (pkgs.stdenv.mkDerivation {
|
2006-12-11 18:36:57 +01:00
|
|
|
name = "system";
|
|
|
|
builder = ./system.sh;
|
|
|
|
switchToConfiguration = ./switch-to-configuration.sh;
|
2007-09-27 14:24:05 +02:00
|
|
|
inherit (pkgs) grub coreutils gnused gnugrep diffutils findutils upstart;
|
2007-11-09 19:49:45 +01:00
|
|
|
grubDevice = config.boot.grubDevice;
|
2006-12-11 18:36:57 +01:00
|
|
|
kernelParams =
|
2008-01-24 17:56:09 +01:00
|
|
|
config.boot.kernelParams ++ config.boot.extraKernelParams;
|
2006-12-11 18:36:57 +01:00
|
|
|
inherit bootStage2;
|
|
|
|
inherit activateConfiguration;
|
|
|
|
inherit grubMenuBuilder;
|
|
|
|
inherit etc;
|
2007-03-20 14:01:53 +01:00
|
|
|
inherit systemPath;
|
2009-05-03 13:08:17 +02:00
|
|
|
inherit children;
|
|
|
|
inherit configurationName;
|
2007-09-18 17:06:24 +02:00
|
|
|
kernel = kernel + "/vmlinuz";
|
2006-12-11 18:36:57 +01:00
|
|
|
initrd = initialRamdisk + "/initrd";
|
|
|
|
# Most of these are needed by grub-install.
|
2006-12-18 17:27:56 +01:00
|
|
|
path = [
|
|
|
|
pkgs.coreutils
|
|
|
|
pkgs.gnused
|
|
|
|
pkgs.gnugrep
|
|
|
|
pkgs.findutils
|
|
|
|
pkgs.diffutils
|
|
|
|
pkgs.upstart # for initctl
|
|
|
|
];
|
2009-04-26 00:36:56 +02:00
|
|
|
upstartInterfaceVersion = pkgs.upstart.interfaceVersion;
|
2009-04-05 21:13:52 +02:00
|
|
|
# This attribute is responsible for creating boot entries for
|
|
|
|
# child configuration. They are only (directly) accessible
|
|
|
|
# when the parent configuration is boot default. For example,
|
|
|
|
# you can provide an easy way to boot the same configuration
|
|
|
|
# as you use, but with another kernel
|
2008-08-06 19:39:05 +02:00
|
|
|
}) config.environment.checkConfigurationOptions
|
|
|
|
optionDeclarations config;
|
2008-08-08 21:07:07 +02:00
|
|
|
|
2006-11-02 18:56:50 +01:00
|
|
|
}
|