linuxkit-nix/linuxkit-builder/ui.sh

#!@bash@/bin/bash -eux

PATH=@coreutils@/bin:@openssh@/bin:@gnutar@/bin
BOOT_FILES=@boot_files@
HOST_PORT=@hostPort@
INTEGRATED_PATH=@integrated_path@
EXAMPLE_PATH=@example_path@
VPNKIT_ROOT=@vpnkit@
HYPERKIT_ROOT=@hyperkit@
LINUXKIT_ROOT=@linuxkit@
CONTAINER_IP=@containerIp@

usage() {
  echo "Usage: $(basename "$0") [-d directory] [-f features] [-s size] [-c cpus] [-m mem]" >&2
}

NAME="linuxkit-builder"

DIR="$HOME/.nixpkgs/$NAME"
FEATURES="big-parallel"
SIZE="80G"
CPUS=1
MEM=4096
while getopts "d:f:s:c:m:h" opt; do
  case $opt in
    d) DIR="$OPTARG" ;;
    f) FEATURES="$OPTARG" ;;
    s) SIZE="$OPTARG" ;;
    c) CPUS="$OPTARG" ;;
    m) MEM="$OPTARG" ;;
    h | \?)
      usage
      exit 64
      ;;
  esac
done

mkdir -p "$DIR"

if [ ! -d "$DIR/keys" ]; then
  mkdir -p "$DIR/keys"
  (
    cd "$DIR/keys"
    ssh-keygen -C "Nix LinuxKit Builder, Client" -N "" -f client
    ssh-keygen -C "Nix LinuxKit Builder, Server" -f ssh_host_ecdsa_key -N "" -t ecdsa

    tar -cf server-config.tar client.pub ssh_host_ecdsa_key.pub ssh_host_ecdsa_key

    echo -n "[localhost]:$HOST_PORT " > known_host
    cat ssh_host_ecdsa_key.pub >> known_host
  )
fi

cp "$INTEGRATED_PATH" "$DIR/integrated.sh"
chmod u+w "$DIR/integrated.sh"
chmod +x "$DIR/integrated.sh"

cp "$EXAMPLE_PATH" "$DIR/example.nix"
chmod u+w "$DIR/example.nix"

cat <<EOF > "$DIR/ssh-config"
Host nix-linuxkit
   HostName localhost
   User root
   Port $HOST_PORT
   IdentityFile $DIR/keys/client
   StrictHostKeyChecking yes
   UserKnownHostsFile $DIR/keys/known_host
   IdentitiesOnly yes
EOF


cat <<-EOF > "$DIR/finish-setup.sh"
  #!/bin/sh
  cat <<EOI
  1. Add the following to /etc/nix/machines:

    ssh://nix-linuxkit x86_64-linux $DIR/keys/client $CPUS 1 $FEATURES

  2. Add the following to /var/root/.ssh/config:

    Host nix-linuxkit
       HostName localhost
       User root
       Port $HOST_PORT
       IdentityFile $DIR/keys/client
       StrictHostKeyChecking yes
       UserKnownHostsFile $DIR/keys/known_host
       IdentitiesOnly yes

  3. Try it out!

    nix-build $DIR/example.nix


  Note, if you're already using
  https://github.com/puffnfresh/nix-script-store-plugin you can skip
  steps #1 and #2 and instead add the following to /etc/nix/machines:

    script://$DIR/integrated.sh x86_64-linux - $CPUS 1 $FEATURES


EOF

chmod +x "$DIR/finish-setup.sh"

function finish {
    if [ -f "$DIR/nix-state/hyperkit.pid" ]; then
        # yeah, yeah, /usr/bin
        /usr/bin/pkill -F ~/.nixpkgs/linuxkit-builder/nix-state/hyperkit.pid hyperkit
    fi
    echo bye
}
trap finish EXIT


"$LINUXKIT_ROOT/bin/linuxkit" run \
  hyperkit \
  -hyperkit "$HYPERKIT_ROOT/bin/hyperkit" \
  -vpnkit "$VPNKIT_ROOT/bin/vpnkit" \
  -networking vpnkit \
  -ip "$CONTAINER_IP" \
  -disk "$DIR/nix-disk,size=$SIZE" \
  -data-file "$DIR/keys/server-config.tar" \
  -cpus "$CPUS" \
  -mem "$MEM" \
  -state "$DIR/nix-state" \
  "$BOOT_FILES/nix"
Clean up some path shenanigans 2018-04-17 17:46:20 +03:00			`#!@bash@/bin/bash -eux`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00
Clean up some path shenanigans 2018-04-17 17:46:20 +03:00			`PATH=@coreutils@/bin:@openssh@/bin:@gnutar@/bin`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`BOOT_FILES=@boot_files@`
			`HOST_PORT=@hostPort@`
			`INTEGRATED_PATH=@integrated_path@`
			`EXAMPLE_PATH=@example_path@`
			`VPNKIT_ROOT=@vpnkit@`
			`HYPERKIT_ROOT=@hyperkit@`
			`LINUXKIT_ROOT=@linuxkit@`
			`CONTAINER_IP=@containerIp@`

			`usage() {`
			`echo "Usage: $(basename "$0") [-d directory] [-f features] [-s size] [-c cpus] [-m mem]" >&2`
			`}`

			`NAME="linuxkit-builder"`

			`DIR="$HOME/.nixpkgs/$NAME"`
			`FEATURES="big-parallel"`
Increase defaults RAM 1024m -> 4096m, DISK 10g -> 80g 2018-05-14 20:25:43 +03:00			`SIZE="80G"`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`CPUS=1`
Increase defaults RAM 1024m -> 4096m, DISK 10g -> 80g 2018-05-14 20:25:43 +03:00			`MEM=4096`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`while getopts "d:f:s:c:m:h" opt; do`
			`case $opt in`
			`d) DIR="$OPTARG" ;;`
			`f) FEATURES="$OPTARG" ;;`
			`s) SIZE="$OPTARG" ;;`
			`c) CPUS="$OPTARG" ;;`
			`m) MEM="$OPTARG" ;;`
			`h \| \?)`
			`usage`
			`exit 64`
			`;;`
			`esac`
			`done`

			`mkdir -p "$DIR"`

			`if [ ! -d "$DIR/keys" ]; then`
			`mkdir -p "$DIR/keys"`
			`(`
			`cd "$DIR/keys"`
			`ssh-keygen -C "Nix LinuxKit Builder, Client" -N "" -f client`
			`ssh-keygen -C "Nix LinuxKit Builder, Server" -f ssh_host_ecdsa_key -N "" -t ecdsa`

			`tar -cf server-config.tar client.pub ssh_host_ecdsa_key.pub ssh_host_ecdsa_key`

			`echo -n "[localhost]:$HOST_PORT " > known_host`
			`cat ssh_host_ecdsa_key.pub >> known_host`
			`)`
			`fi`

			`cp "$INTEGRATED_PATH" "$DIR/integrated.sh"`
Clean up some path shenanigans 2018-04-17 17:46:20 +03:00			`chmod u+w "$DIR/integrated.sh"`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`chmod +x "$DIR/integrated.sh"`
Clean up some path shenanigans 2018-04-17 17:46:20 +03:00
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`cp "$EXAMPLE_PATH" "$DIR/example.nix"`
Clean up some path shenanigans 2018-04-17 17:46:20 +03:00			`chmod u+w "$DIR/example.nix"`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00
			`cat <<EOF > "$DIR/ssh-config"`
			`Host nix-linuxkit`
			`HostName localhost`
			`User root`
			`Port $HOST_PORT`
			`IdentityFile $DIR/keys/client`
			`StrictHostKeyChecking yes`
			`UserKnownHostsFile $DIR/keys/known_host`
			`IdentitiesOnly yes`
			`EOF`


			`cat <<-EOF > "$DIR/finish-setup.sh"`
			`#!/bin/sh`
			`cat <<EOI`
			`1. Add the following to /etc/nix/machines:`

			`ssh://nix-linuxkit x86_64-linux $DIR/keys/client $CPUS 1 $FEATURES`

			`2. Add the following to /var/root/.ssh/config:`

			`Host nix-linuxkit`
			`HostName localhost`
			`User root`
			`Port $HOST_PORT`
			`IdentityFile $DIR/keys/client`
			`StrictHostKeyChecking yes`
			`UserKnownHostsFile $DIR/keys/known_host`
			`IdentitiesOnly yes`

			`3. Try it out!`

			`nix-build $DIR/example.nix`


			`Note, if you're already using`
			`https://github.com/puffnfresh/nix-script-store-plugin you can skip`
			`steps #1 and #2 and instead add the following to /etc/nix/machines:`

			`script://$DIR/integrated.sh x86_64-linux - $CPUS 1 $FEATURES`


			`EOF`

			`chmod +x "$DIR/finish-setup.sh"`

Clean up some path shenanigans 2018-04-17 17:46:20 +03:00			`function finish {`
			`if [ -f "$DIR/nix-state/hyperkit.pid" ]; then`
			`# yeah, yeah, /usr/bin`
			`/usr/bin/pkill -F ~/.nixpkgs/linuxkit-builder/nix-state/hyperkit.pid hyperkit`
			`fi`
			`echo bye`
			`}`
			`trap finish EXIT`


			`"$LINUXKIT_ROOT/bin/linuxkit" run \`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`hyperkit \`
Clean up some path shenanigans 2018-04-17 17:46:20 +03:00			`-hyperkit "$HYPERKIT_ROOT/bin/hyperkit" \`
			`-vpnkit "$VPNKIT_ROOT/bin/vpnkit" \`
Port the work from nixpkgs 2018-04-10 21:53:42 +03:00			`-networking vpnkit \`
			`-ip "$CONTAINER_IP" \`
			`-disk "$DIR/nix-disk,size=$SIZE" \`
			`-data-file "$DIR/keys/server-config.tar" \`
			`-cpus "$CPUS" \`
			`-mem "$MEM" \`
			`-state "$DIR/nix-state" \`
			`"$BOOT_FILES/nix"`