VSinerva/nixos-conf
1
0
Fork 0
Code Activity Actions

Update configs related to custom ISOs

Browse source
This commit is contained in:
Vili Sinervä 2024-08-28 13:00:05 +03:00
parent 5bb7e6369b
commit d05be2e0af
No known key found for this signature in database
GPG key ID: DF8FEAF54EFAC996
2 changed files with 40 additions and 22 deletions
Download patch file Download diff file Expand all files Collapse all files

3
machine-confs/generic.nix
View file

@ -9,7 +9,4 @@
#Many installs will need this, and it won't hurt either way #Many installs will need this, and it won't hurt either way
services.qemuGuest.enable = true; services.qemuGuest.enable = true;
#Prevent user from being locked out of the system before switching to proper config
users.mutableUsers = pkgs.lib.mkForce true;
} }

55
misc/custom-iso-base.nix
View file

@ -1,28 +1,48 @@
{ config, pkgs, ... }: { config, pkgs, ... }:
let let
partition-and-install = pkgs.writeScriptBin "partition-and-install" '' create-partitions = pkgs.writeScriptBin "create-partitions" ''
read -p "Erasing disk $1 Are you sure? " -n 1 -r if [[ $# -ne 3 ]]
then
echo "Usage: create-partitions <device prefix> <BOOT suffix> <root suffix>"
exit
fi
read -p "Erasing disk $1 -- Creating partition $1$2 as BOOT -- Creating partition $1$3 as root -- Are you sure? " -n 1 -r
echo echo
if [[ $REPLY =~ ^[Yy]$ ]] if [[ $REPLY =~ ^[Yy]$ ]]
then then
parted $1 -- mklabel gpt parted $1 -- mklabel gpt
parted $1 -- mkpart root ext4 512MB 100%
parted $1 -- mkpart ESP fat32 1MB 512MB parted $1 -- mkpart ESP fat32 1MB 512MB
parted $1 -- set 2 esp on parted $1 -- set 1 esp on
parted $1 -- mkpart root ext4 512MB 100%
fi
mkfs.ext4 -L nixos $1$2 read -p "Setup root partition encryption?" -n 1 -r
mkfs.fat -F 32 -n BOOT $1$3 echo
if [[ $REPLY =~ ^[Yy]$ ]]
then
cryptsetup luksFormat $1
cryptsetup open $1 nixos
echo "Encrypted device accessible via /dev/mapper/nixos"
fi
'';
make-filesystems = pkgs.writeScriptBin "make-filesystems" ''
if [[ $# -ne 2 ]]
then
echo "Usage: make-filesystems <BOOT partition> <root partition>"
exit
fi
mkfs.fat -F 32 -n BOOT $1
mkfs.ext4 -L nixos $2
'';
prep-install = pkgs.writeScriptBin "prep-install" ''
mkdir /mnt
mount /dev/disk/by-label/nixos /mnt mount /dev/disk/by-label/nixos /mnt
mkdir /mnt/boot mkdir /mnt/boot
mount -o umask=077 /dev/disk/by-label/BOOT /mnt/boot mount -o umask=077 /dev/disk/by-label/BOOT /mnt/boot
fetch-config
nixos-install
fi
'';
fetch-config = pkgs.writeScriptBin "fetch-config" ''
nixos-generate-config --root /mnt nixos-generate-config --root /mnt
mv /mnt/etc/nixos/configuration.nix configuration.nix.old mv /mnt/etc/nixos/configuration.nix configuration.nix.old
curl https://raw.githubusercontent.com/VSinerva/nixos-conf/main/misc/template-configuration.nix -o /mnt/etc/nixos/configuration.nix curl https://raw.githubusercontent.com/VSinerva/nixos-conf/main/misc/template-configuration.nix -o /mnt/etc/nixos/configuration.nix
@ -35,13 +55,14 @@ in
]; ];
environment.systemPackages = [ environment.systemPackages = [
partition-and-install pkgs.cryptsetup
fetch-config create-partitions
make-filesystems
prep-install
]; ];
isoImage.squashfsCompression = "gzip -Xcompression-level 1";
#Many installs will need this, and it won't hurt either way #Many installs will need this, and it won't hurt either way
services.qemuGuest.enable = true; services.qemuGuest.enable = true;
#Prevent user from being locked out of the system before switching to proper config
users.mutableUsers = pkgs.lib.mkForce true;
} }