ilyakooo0/nixpkgs
1
0
Fork 0
mirror of https://github.com/ilyakooo0/nixpkgs.git synced 2024-11-14 15:36:47 +03:00
Code Issues Projects Releases Wiki Activity

vm/windows: Avoid shadowing the Nix store.

Browse Source 
This is done by putting the non-initrd /nix/store into a subdirectory,
which we then chroot to and pass along the SSH command.

Also, we now collect the exit code after the chroot command and power
off the VM thereafter, because the store is no longer shadowed and we
have still access to the busybox inside the initrd.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
This commit is contained in:
aszlig 2014-02-16 16:53:02 +01:00
parent a1d7974acd
commit 5241bb1d5e
No known key found for this signature in database
GPG Key ID: D0EBD0EC8C2DC961
1 changed files with 26 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

41
pkgs/build-support/vm/windows/controller/default.nix
View File

@ -8,8 +8,7 @@
let let
inherit (import <nixpkgs> {}) lib stdenv writeScript vmTools makeInitrd; inherit (import <nixpkgs> {}) lib stdenv writeScript vmTools makeInitrd;
inherit (import <nixpkgs> {}) samba vde2 busybox openssh; inherit (import <nixpkgs> {}) samba vde2 openssh socat netcat coreutils gzip;
inherit (import <nixpkgs> {}) socat netcat coreutils gzip;
preInitScript = writeScript "preinit.sh" '' preInitScript = writeScript "preinit.sh" ''
#!${vmTools.initrdUtils}/bin/ash -e #!${vmTools.initrdUtils}/bin/ash -e
@ -26,7 +25,9 @@ let
insmod $i insmod $i
done done
mkdir -p /tmp /dev mkdir -p /dev /fs
mount -t tmpfs none /dev
mknod /dev/null c 1 3 mknod /dev/null c 1 3
mknod /dev/zero c 1 5 mknod /dev/zero c 1 5
mknod /dev/random c 1 8 mknod /dev/random c 1 8
@ -36,22 +37,31 @@ let
ifconfig lo up ifconfig lo up
ifconfig eth0 up 192.168.0.2 ifconfig eth0 up 192.168.0.2
mkdir -p /xchg /nix/store /etc /var/run /var/log mount -t tmpfs none /fs
mkdir -p /fs/nix/store /fs/xchg /fs/dev /fs/sys /fs/proc /fs/etc /fs/tmp
cat > /etc/passwd <<PASSWD mount -o bind /dev /fs/dev
mount -t sysfs none /fs/sys
mount -t proc none /fs/proc
mount -t 9p \
-o trans=virtio,version=9p2000.L,msize=262144,cache=loose \
store /fs/nix/store
mount -t 9p \
-o trans=virtio,version=9p2000.L,msize=262144,cache=loose \
xchg /fs/xchg
cat > /fs/etc/passwd <<PASSWD
root:x:0:0::/root:/bin/false root:x:0:0::/root:/bin/false
nobody:x:65534:65534::/var/empty:/bin/false nobody:x:65534:65534::/var/empty:/bin/false
PASSWD PASSWD
mount -t 9p \ set +e
-o trans=virtio,version=9p2000.L,msize=262144,cache=loose \ chroot /fs $command $out
xchg /xchg echo $? > /fs/xchg/in-vm-exit
mount -t 9p \ poweroff -f
-o trans=virtio,version=9p2000.L,msize=262144,cache=loose \
store /nix/store
exec "$command"
''; '';
initrd = makeInitrd { initrd = makeInitrd {
@ -80,7 +90,8 @@ let
# Loop forever, because this VM is going to be killed. # Loop forever, because this VM is going to be killed.
${loopForever} ${loopForever}
'' else '' '' else ''
${coreutils}/bin/mkdir -p /etc/samba /etc/samba/private /var/lib/samba ${coreutils}/bin/mkdir -p /etc/samba /etc/samba/private \
/var/lib/samba /var/log /var/run
${coreutils}/bin/cat > /etc/samba/smb.conf <<CONFIG ${coreutils}/bin/cat > /etc/samba/smb.conf <<CONFIG
[global] [global]
security = user security = user
@ -105,6 +116,7 @@ let
${samba}/sbin/nmbd -D ${samba}/sbin/nmbd -D
${samba}/sbin/smbd -D ${samba}/sbin/smbd -D
echo -n "Waiting for Windows VM to become available..." echo -n "Waiting for Windows VM to become available..."
while ! ${netcat}/bin/netcat -z 192.168.0.1 22; do while ! ${netcat}/bin/netcat -z 192.168.0.1 22; do
echo -n . echo -n .
@ -123,7 +135,6 @@ let
${coreutils}/bin/touch /xchg/suspend_now ${coreutils}/bin/touch /xchg/suspend_now
${loopForever} ${loopForever}
''} ''}
${busybox}/sbin/poweroff -f
'')); ''));
kernelAppend = lib.concatStringsSep " " [ kernelAppend = lib.concatStringsSep " " [