2023-04-11 21:58:29 +02:00
|
|
|
|
{ config, options, lib, pkgs, ... }:
|
2009-01-02 16:07:34 +00:00
|
|
|
|
|
|
|
|
|
|
let
|
2023-08-01 19:18:48 -04:00
|
|
|
|
inherit (lib)
|
|
|
|
|
|
all
|
|
|
|
|
|
concatMap
|
|
|
|
|
|
concatMapStrings
|
|
|
|
|
|
concatStrings
|
|
|
|
|
|
concatStringsSep
|
|
|
|
|
|
escapeShellArg
|
|
|
|
|
|
flip
|
|
|
|
|
|
foldr
|
|
|
|
|
|
forEach
|
|
|
|
|
|
hasPrefix
|
|
|
|
|
|
mapAttrsToList
|
|
|
|
|
|
literalExpression
|
|
|
|
|
|
makeBinPath
|
|
|
|
|
|
mkDefault
|
|
|
|
|
|
mkIf
|
|
|
|
|
|
mkMerge
|
|
|
|
|
|
mkOption
|
|
|
|
|
|
mkRemovedOptionModule
|
|
|
|
|
|
mkRenamedOptionModule
|
|
|
|
|
|
optional
|
|
|
|
|
|
optionals
|
|
|
|
|
|
optionalString
|
|
|
|
|
|
replaceStrings
|
|
|
|
|
|
types
|
|
|
|
|
|
;
|
2009-01-02 16:07:34 +00:00
|
|
|
|
|
2012-05-14 01:53:47 +00:00
|
|
|
|
cfg = config.boot.loader.grub;
|
|
|
|
|
|
|
2015-01-14 10:30:57 +01:00
|
|
|
|
efi = config.boot.loader.efi;
|
|
|
|
|
|
|
2019-08-08 22:48:27 +02:00
|
|
|
|
grubPkgs =
|
2019-01-28 12:00:58 +01:00
|
|
|
|
# Package set of targeted architecture
|
|
|
|
|
|
if cfg.forcei686 then pkgs.pkgsi686Linux else pkgs;
|
|
|
|
|
|
|
2022-04-04 17:54:14 +01:00
|
|
|
|
realGrub = if cfg.zfsSupport then grubPkgs.grub2.override { zfsSupport = true; }
|
2023-04-14 02:15:51 +02:00
|
|
|
|
else grubPkgs.grub2;
|
2013-06-04 14:05:07 +02:00
|
|
|
|
|
|
|
|
|
|
grub =
|
|
|
|
|
|
# Don't include GRUB if we're only generating a GRUB menu (e.g.,
|
|
|
|
|
|
# in EC2 instances).
|
|
|
|
|
|
if cfg.devices == ["nodev"]
|
|
|
|
|
|
then null
|
|
|
|
|
|
else realGrub;
|
2009-12-15 21:11:39 +00:00
|
|
|
|
|
2015-01-14 10:30:57 +01:00
|
|
|
|
grubEfi =
|
2022-04-04 17:54:14 +01:00
|
|
|
|
if cfg.efiSupport
|
2015-02-13 14:40:41 -08:00
|
|
|
|
then realGrub.override { efiSupport = cfg.efiSupport; }
|
2015-01-14 10:30:57 +01:00
|
|
|
|
else null;
|
|
|
|
|
|
|
2023-03-19 21:44:31 +01:00
|
|
|
|
f = x: optionalString (x != null) ("" + x);
|
2012-07-25 09:27:51 -04:00
|
|
|
|
|
2015-06-10 15:47:08 -07:00
|
|
|
|
grubConfig = args:
|
|
|
|
|
|
let
|
|
|
|
|
|
efiSysMountPoint = if args.efiSysMountPoint == null then args.path else args.efiSysMountPoint;
|
2022-12-12 03:36:03 +02:00
|
|
|
|
efiSysMountPoint' = replaceStrings [ "/" ] [ "-" ] efiSysMountPoint;
|
2015-06-10 15:47:08 -07:00
|
|
|
|
in
|
|
|
|
|
|
pkgs.writeText "grub-config.xml" (builtins.toXML
|
2015-06-10 11:50:21 -07:00
|
|
|
|
{ splashImage = f cfg.splashImage;
|
2018-08-28 23:53:10 -04:00
|
|
|
|
splashMode = f cfg.splashMode;
|
|
|
|
|
|
backgroundColor = f cfg.backgroundColor;
|
2022-03-31 06:39:16 -04:00
|
|
|
|
entryOptions = f cfg.entryOptions;
|
|
|
|
|
|
subEntryOptions = f cfg.subEntryOptions;
|
2023-06-25 17:46:12 +00:00
|
|
|
|
# PC platforms (like x86_64-linux) have a non-EFI target (`grubTarget`), but other platforms
|
|
|
|
|
|
# (like aarch64-linux) have an undefined `grubTarget`. Avoid providing the path to a non-EFI
|
|
|
|
|
|
# GRUB on those platforms.
|
|
|
|
|
|
grub = f (if (grub.grubTarget or "") != "" then grub else "");
|
2015-02-08 22:31:14 -05:00
|
|
|
|
grubTarget = f (grub.grubTarget or "");
|
2018-03-01 14:38:53 -05:00
|
|
|
|
shell = "${pkgs.runtimeShell}";
|
2019-11-24 17:22:28 +00:00
|
|
|
|
fullName = lib.getName realGrub;
|
|
|
|
|
|
fullVersion = lib.getVersion realGrub;
|
2015-01-14 10:30:57 +01:00
|
|
|
|
grubEfi = f grubEfi;
|
2022-04-04 17:54:14 +01:00
|
|
|
|
grubTargetEfi = optionalString cfg.efiSupport (f (grubEfi.grubTarget or ""));
|
2015-05-25 14:57:20 -07:00
|
|
|
|
bootPath = args.path;
|
2015-06-13 15:00:43 +02:00
|
|
|
|
storePath = config.boot.loader.grub.storePath;
|
2022-12-17 18:00:58 -05:00
|
|
|
|
bootloaderId = if args.efiBootloaderId == null then "${config.system.nixos.distroName}${efiSysMountPoint'}" else args.efiBootloaderId;
|
2016-05-25 10:34:54 +02:00
|
|
|
|
timeout = if config.boot.loader.timeout == null then -1 else config.boot.loader.timeout;
|
2020-07-05 05:16:25 +02:00
|
|
|
|
theme = f cfg.theme;
|
2018-06-07 14:23:37 +02:00
|
|
|
|
inherit efiSysMountPoint;
|
2015-05-25 14:57:20 -07:00
|
|
|
|
inherit (args) devices;
|
|
|
|
|
|
inherit (efi) canTouchEfiVariables;
|
2013-06-04 14:05:07 +02:00
|
|
|
|
inherit (cfg)
|
2022-04-04 17:54:14 +01:00
|
|
|
|
extraConfig extraPerEntryConfig extraEntries forceInstall useOSProber
|
2020-04-23 22:44:21 +02:00
|
|
|
|
extraGrubInstallArgs
|
2018-03-27 19:57:52 -04:00
|
|
|
|
extraEntriesBeforeNixOS extraPrepareConfig configurationLimit copyKernels
|
2022-04-04 17:54:14 +01:00
|
|
|
|
default fsIdentifier efiSupport efiInstallAsRemovable gfxmodeEfi gfxmodeBios gfxpayloadEfi gfxpayloadBios
|
2023-03-06 23:59:39 -05:00
|
|
|
|
users
|
|
|
|
|
|
timeoutStyle
|
|
|
|
|
|
;
|
2019-01-28 12:00:58 +01:00
|
|
|
|
path = with pkgs; makeBinPath (
|
2020-11-24 10:29:28 -05:00
|
|
|
|
[ coreutils gnused gnugrep findutils diffutils btrfs-progs util-linux mdadm ]
|
2022-04-04 17:54:14 +01:00
|
|
|
|
++ optional cfg.efiSupport efibootmgr
|
2019-01-28 12:00:58 +01:00
|
|
|
|
++ optionals cfg.useOSProber [ busybox os-prober ]);
|
2023-06-24 20:19:19 +02:00
|
|
|
|
font = lib.optionalString (cfg.font != null) (
|
|
|
|
|
|
if lib.last (lib.splitString "." cfg.font) == "pf2"
|
2017-06-10 09:53:24 -04:00
|
|
|
|
then cfg.font
|
2018-06-05 10:37:12 -04:00
|
|
|
|
else "${convertedFont}");
|
2012-07-24 19:16:27 -04:00
|
|
|
|
});
|
2011-09-14 18:20:50 +00:00
|
|
|
|
|
2021-01-25 13:57:48 +07:00
|
|
|
|
bootDeviceCounters = foldr (device: attr: attr // { ${device} = (attr.${device} or 0) + 1; }) {}
|
2015-05-25 14:57:20 -07:00
|
|
|
|
(concatMap (args: args.devices) cfg.mirroredBoots);
|
|
|
|
|
|
|
2017-06-10 09:53:24 -04:00
|
|
|
|
convertedFont = (pkgs.runCommand "grub-font-converted.pf2" {}
|
|
|
|
|
|
(builtins.concatStringsSep " "
|
|
|
|
|
|
([ "${realGrub}/bin/grub-mkfont"
|
|
|
|
|
|
cfg.font
|
|
|
|
|
|
"--output" "$out"
|
|
|
|
|
|
] ++ (optional (cfg.fontSize!=null) "--size ${toString cfg.fontSize}")))
|
|
|
|
|
|
);
|
2018-08-28 23:55:00 -04:00
|
|
|
|
|
2020-04-27 22:35:31 -04:00
|
|
|
|
defaultSplash = pkgs.nixos-artwork.wallpapers.simple-dark-gray-bootloader.gnomeFilePath;
|
2009-01-02 16:07:34 +00:00
|
|
|
|
in
|
|
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
###### interface
|
|
|
|
|
|
|
|
|
|
|
|
options = {
|
2009-10-13 21:39:23 +00:00
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
boot.loader.grub = {
|
|
|
|
|
|
|
|
|
|
|
|
enable = mkOption {
|
2013-11-27 16:54:20 +01:00
|
|
|
|
default = !config.boot.isContainer;
|
|
|
|
|
|
defaultText = literalExpression "!config.boot.isContainer";
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.bool;
|
2009-09-29 09:50:38 +00:00
|
|
|
|
description = lib.mdDoc ''
|
2009-10-13 21:39:23 +00:00
|
|
|
|
Whether to enable the GNU GRUB boot loader.
|
2009-09-29 09:50:38 +00:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2023-04-11 21:58:29 +02:00
|
|
|
|
version = mkOption {
|
|
|
|
|
|
visible = false;
|
|
|
|
|
|
type = types.int;
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
device = mkOption {
|
|
|
|
|
|
default = "";
|
2018-02-24 10:50:23 +00:00
|
|
|
|
example = "/dev/disk/by-id/wwn-0x500001234567890a";
|
2013-10-30 11:02:04 +01:00
|
|
|
|
type = types.str;
|
2009-10-13 21:39:23 +00:00
|
|
|
|
description = lib.mdDoc ''
|
2012-05-14 01:53:47 +00:00
|
|
|
|
The device on which the GRUB boot loader will be installed.
|
|
|
|
|
|
The special value `nodev` means that a GRUB
|
|
|
|
|
|
boot menu will be generated, but GRUB itself will not
|
|
|
|
|
|
actually be installed. To install GRUB on multiple devices,
|
|
|
|
|
|
use `boot.loader.grub.devices`.
|
2012-03-08 21:37:30 +00:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
devices = mkOption {
|
|
|
|
|
|
default = [];
|
2018-02-24 10:50:23 +00:00
|
|
|
|
example = [ "/dev/disk/by-id/wwn-0x500001234567890a" ];
|
2013-10-30 17:37:45 +01:00
|
|
|
|
type = types.listOf types.str;
|
2012-03-08 21:37:30 +00:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
The devices on which the boot loader, GRUB, will be
|
|
|
|
|
|
installed. Can be used instead of `device` to
|
2015-07-25 18:54:26 +02:00
|
|
|
|
install GRUB onto multiple devices.
|
2009-10-13 21:39:23 +00:00
|
|
|
|
'';
|
2009-09-29 09:50:38 +00:00
|
|
|
|
};
|
|
|
|
|
|
|
2019-07-21 16:39:07 +00:00
|
|
|
|
users = mkOption {
|
|
|
|
|
|
default = {};
|
|
|
|
|
|
example = {
|
|
|
|
|
|
root = { hashedPasswordFile = "/path/to/file"; };
|
|
|
|
|
|
};
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
User accounts for GRUB. When specified, the GRUB command line and
|
|
|
|
|
|
all boot options except the default are password-protected.
|
|
|
|
|
|
All passwords and hashes provided will be stored in /boot/grub/grub.cfg,
|
|
|
|
|
|
and will be visible to any local user who can read this file. Additionally,
|
|
|
|
|
|
any passwords and hashes provided directly in a Nix configuration
|
|
|
|
|
|
(as opposed to external files) will be copied into the Nix store, and
|
|
|
|
|
|
will be visible to all local users.
|
|
|
|
|
|
'';
|
2023-08-01 19:18:48 -04:00
|
|
|
|
type = types.attrsOf (types.submodule {
|
2019-07-21 16:39:07 +00:00
|
|
|
|
options = {
|
|
|
|
|
|
hashedPasswordFile = mkOption {
|
|
|
|
|
|
example = "/path/to/file";
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
type = with types; uniq (nullOr str);
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Specifies the path to a file containing the password hash
|
|
|
|
|
|
for the account, generated with grub-mkpasswd-pbkdf2.
|
|
|
|
|
|
This hash will be stored in /boot/grub/grub.cfg, and will
|
|
|
|
|
|
be visible to any local user who can read this file.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
hashedPassword = mkOption {
|
|
|
|
|
|
example = "grub.pbkdf2.sha512.10000.674DFFDEF76E13EA...2CC972B102CF4355";
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
type = with types; uniq (nullOr str);
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Specifies the password hash for the account,
|
|
|
|
|
|
generated with grub-mkpasswd-pbkdf2.
|
|
|
|
|
|
This hash will be copied to the Nix store, and will be visible to all local users.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
passwordFile = mkOption {
|
|
|
|
|
|
example = "/path/to/file";
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
type = with types; uniq (nullOr str);
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Specifies the path to a file containing the
|
|
|
|
|
|
clear text password for the account.
|
|
|
|
|
|
This password will be stored in /boot/grub/grub.cfg, and will
|
|
|
|
|
|
be visible to any local user who can read this file.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
password = mkOption {
|
|
|
|
|
|
example = "Pa$$w0rd!";
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
type = with types; uniq (nullOr str);
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Specifies the clear text password for the account.
|
|
|
|
|
|
This password will be copied to the Nix store, and will be visible to all local users.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
};
|
|
|
|
|
|
});
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2015-05-25 14:57:20 -07:00
|
|
|
|
mirroredBoots = mkOption {
|
|
|
|
|
|
default = [ ];
|
|
|
|
|
|
example = [
|
2018-02-24 10:50:23 +00:00
|
|
|
|
{ path = "/boot1"; devices = [ "/dev/disk/by-id/wwn-0x500001234567890a" ]; }
|
|
|
|
|
|
{ path = "/boot2"; devices = [ "/dev/disk/by-id/wwn-0x500009876543210a" ]; }
|
2015-05-25 14:57:20 -07:00
|
|
|
|
];
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Mirror the boot configuration to multiple partitions and install grub
|
|
|
|
|
|
to the respective devices corresponding to those partitions.
|
|
|
|
|
|
'';
|
|
|
|
|
|
|
2016-09-11 18:51:48 +09:00
|
|
|
|
type = with types; listOf (submodule {
|
|
|
|
|
|
options = {
|
|
|
|
|
|
|
|
|
|
|
|
path = mkOption {
|
|
|
|
|
|
example = "/boot1";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
The path to the boot directory where GRUB will be written. Generally
|
|
|
|
|
|
this boot path should double as an EFI path.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
efiSysMountPoint = mkOption {
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
example = "/boot1/efi";
|
|
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
The path to the efi system mount point. Usually this is the same
|
|
|
|
|
|
partition as the above path and can be left as null.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
efiBootloaderId = mkOption {
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
example = "NixOS-fsid";
|
|
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
The id of the bootloader to store in efi nvram.
|
|
|
|
|
|
The default is to name it NixOS and append the path or efiSysMountPoint.
|
|
|
|
|
|
This is only used if `boot.loader.efi.canTouchEfiVariables` is true.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
devices = mkOption {
|
|
|
|
|
|
default = [ ];
|
2018-02-24 10:50:23 +00:00
|
|
|
|
example = [ "/dev/disk/by-id/wwn-0x500001234567890a" "/dev/disk/by-id/wwn-0x500009876543210a" ];
|
2016-09-11 18:51:48 +09:00
|
|
|
|
type = types.listOf types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
The path to the devices which will have the GRUB MBR written.
|
|
|
|
|
|
Note these are typically device paths and not paths to partitions.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
2015-05-25 14:57:20 -07:00
|
|
|
|
|
|
|
|
|
|
};
|
2016-09-11 18:51:48 +09:00
|
|
|
|
});
|
2015-05-25 14:57:20 -07:00
|
|
|
|
};
|
|
|
|
|
|
|
2014-08-27 03:26:40 -04:00
|
|
|
|
configurationName = mkOption {
|
|
|
|
|
|
default = "";
|
|
|
|
|
|
example = "Stable 2.6.21";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
GRUB entry name instead of default.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2015-06-13 15:00:43 +02:00
|
|
|
|
storePath = mkOption {
|
|
|
|
|
|
default = "/nix/store";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Path to the Nix store when looking for kernels at boot.
|
|
|
|
|
|
Only makes sense when copyKernels is false.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2012-04-02 17:19:21 +00:00
|
|
|
|
extraPrepareConfig = mkOption {
|
|
|
|
|
|
default = "";
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.lines;
|
2012-04-02 17:19:21 +00:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Additional bash commands to be run at the script that
|
2015-07-25 18:54:26 +02:00
|
|
|
|
prepares the GRUB menu entries.
|
2012-04-02 17:19:21 +00:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2010-06-16 22:18:26 +00:00
|
|
|
|
extraConfig = mkOption {
|
|
|
|
|
|
default = "";
|
2020-02-15 16:45:47 -05:00
|
|
|
|
example = ''
|
|
|
|
|
|
serial --unit=0 --speed=115200 --word=8 --parity=no --stop=1
|
|
|
|
|
|
terminal_input --append serial
|
|
|
|
|
|
terminal_output --append serial
|
|
|
|
|
|
'';
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.lines;
|
2010-06-16 22:18:26 +00:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Additional GRUB commands inserted in the configuration file
|
|
|
|
|
|
just before the menu entries.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2020-04-23 22:44:21 +02:00
|
|
|
|
extraGrubInstallArgs = mkOption {
|
|
|
|
|
|
default = [ ];
|
|
|
|
|
|
example = [ "--modules=nativedisk ahci pata part_gpt part_msdos diskfilter mdraid1x lvm ext2" ];
|
|
|
|
|
|
type = types.listOf types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Additional arguments passed to `grub-install`.
|
|
|
|
|
|
|
|
|
|
|
|
A use case for this is to build specific GRUB2 modules
|
|
|
|
|
|
directly into the GRUB2 kernel image, so that they are available
|
|
|
|
|
|
and activated even in the `grub rescue` shell.
|
|
|
|
|
|
|
|
|
|
|
|
They are also necessary when the BIOS/UEFI is bugged and cannot
|
|
|
|
|
|
correctly read large disks (e.g. above 2 TB), so GRUB2's own
|
|
|
|
|
|
`nativedisk` and related modules can be used
|
|
|
|
|
|
to use its own disk drivers. The example shows one such case.
|
|
|
|
|
|
This is also useful for booting from USB.
|
|
|
|
|
|
See the
|
2022-07-28 23:19:15 +02:00
|
|
|
|
[
|
2020-04-23 22:44:21 +02:00
|
|
|
|
GRUB source code
|
2023-10-30 21:41:44 +01:00
|
|
|
|
](https://git.savannah.gnu.org/cgit/grub.git/tree/grub-core/commands/nativedisk.c?h=grub-2.04#n326)
|
2020-04-23 22:44:21 +02:00
|
|
|
|
for which disk modules are available.
|
|
|
|
|
|
|
|
|
|
|
|
The list elements are passed directly as `argv`
|
|
|
|
|
|
arguments to the `grub-install` program, in order.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2021-01-02 18:23:49 +01:00
|
|
|
|
extraInstallCommands = mkOption {
|
|
|
|
|
|
default = "";
|
2021-10-03 18:06:03 +02:00
|
|
|
|
example = ''
|
2021-01-02 18:23:49 +01:00
|
|
|
|
# the example below generates detached signatures that GRUB can verify
|
|
|
|
|
|
# https://www.gnu.org/software/grub/manual/grub/grub.html#Using-digital-signatures
|
|
|
|
|
|
''${pkgs.findutils}/bin/find /boot -not -path "/boot/efi/*" -type f -name '*.sig' -delete
|
|
|
|
|
|
old_gpg_home=$GNUPGHOME
|
|
|
|
|
|
export GNUPGHOME="$(mktemp -d)"
|
|
|
|
|
|
''${pkgs.gnupg}/bin/gpg --import ''${priv_key} > /dev/null 2>&1
|
|
|
|
|
|
''${pkgs.findutils}/bin/find /boot -not -path "/boot/efi/*" -type f -exec ''${pkgs.gnupg}/bin/gpg --detach-sign "{}" \; > /dev/null 2>&1
|
|
|
|
|
|
rm -rf $GNUPGHOME
|
|
|
|
|
|
export GNUPGHOME=$old_gpg_home
|
|
|
|
|
|
'';
|
|
|
|
|
|
type = types.lines;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Additional shell commands inserted in the bootloader installer
|
|
|
|
|
|
script after generating menu entries.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2010-07-22 14:40:29 +00:00
|
|
|
|
extraPerEntryConfig = mkOption {
|
|
|
|
|
|
default = "";
|
|
|
|
|
|
example = "root (hd0)";
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.lines;
|
2010-07-22 14:40:29 +00:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Additional GRUB commands inserted in the configuration file
|
|
|
|
|
|
at the start of each NixOS menu entry.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
extraEntries = mkOption {
|
|
|
|
|
|
default = "";
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.lines;
|
2009-10-13 21:39:23 +00:00
|
|
|
|
example = ''
|
2012-03-28 10:34:40 +00:00
|
|
|
|
# GRUB 2 example
|
2014-04-20 19:41:15 +02:00
|
|
|
|
menuentry "Windows 7" {
|
|
|
|
|
|
chainloader (hd0,4)+1
|
2012-03-28 10:34:40 +00:00
|
|
|
|
}
|
2017-04-25 07:48:54 +02:00
|
|
|
|
|
|
|
|
|
|
# GRUB 2 with UEFI example, chainloading another distro
|
|
|
|
|
|
menuentry "Fedora" {
|
|
|
|
|
|
set root=(hd1,1)
|
|
|
|
|
|
chainloader /efi/fedora/grubx64.efi
|
|
|
|
|
|
}
|
2009-10-13 21:39:23 +00:00
|
|
|
|
'';
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Any additional entries you want added to the GRUB boot menu.
|
|
|
|
|
|
'';
|
2009-09-29 09:50:38 +00:00
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
extraEntriesBeforeNixOS = mkOption {
|
|
|
|
|
|
default = false;
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.bool;
|
2009-10-13 21:39:23 +00:00
|
|
|
|
description = lib.mdDoc ''
|
2009-09-29 09:50:38 +00:00
|
|
|
|
Whether extraEntries are included before the default option.
|
2009-10-13 21:39:23 +00:00
|
|
|
|
'';
|
2009-09-29 09:50:38 +00:00
|
|
|
|
};
|
|
|
|
|
|
|
2013-10-02 12:29:07 +02:00
|
|
|
|
extraFiles = mkOption {
|
2016-01-17 19:34:55 +01:00
|
|
|
|
type = types.attrsOf types.path;
|
2013-10-02 12:29:07 +02:00
|
|
|
|
default = {};
|
2021-10-03 18:06:03 +02:00
|
|
|
|
example = literalExpression ''
|
2013-10-30 16:19:07 +01:00
|
|
|
|
{ "memtest.bin" = "''${pkgs.memtest86plus}/memtest.bin"; }
|
2013-10-02 12:29:07 +02:00
|
|
|
|
'';
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
A set of files to be copied to {file}`/boot`.
|
|
|
|
|
|
Each attribute name denotes the destination file name in
|
|
|
|
|
|
{file}`/boot`, while the corresponding
|
|
|
|
|
|
attribute value specifies the source file.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2017-02-13 14:53:15 +01:00
|
|
|
|
useOSProber = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
If set to true, append entries for other OSs detected by os-prober.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
splashImage = mkOption {
|
2015-02-23 18:00:21 +01:00
|
|
|
|
type = types.nullOr types.path;
|
2021-10-03 18:06:03 +02:00
|
|
|
|
example = literalExpression "./my-background.png";
|
2009-10-13 21:39:23 +00:00
|
|
|
|
description = lib.mdDoc ''
|
2018-05-13 16:59:51 -04:00
|
|
|
|
Background image used for GRUB.
|
|
|
|
|
|
Set to `null` to run GRUB in text mode.
|
|
|
|
|
|
|
|
|
|
|
|
::: {.note}
|
|
|
|
|
|
File must be one of .png, .tga, .jpg, or .jpeg. JPEG images must
|
|
|
|
|
|
not be progressive.
|
|
|
|
|
|
The image will be scaled if necessary to fit the screen.
|
2022-08-30 02:30:04 +02:00
|
|
|
|
:::
|
2009-10-13 21:39:23 +00:00
|
|
|
|
'';
|
2009-09-29 09:50:38 +00:00
|
|
|
|
};
|
|
|
|
|
|
|
2018-08-28 23:53:10 -04:00
|
|
|
|
backgroundColor = mkOption {
|
2019-08-08 22:48:27 +02:00
|
|
|
|
type = types.nullOr types.str;
|
2018-08-28 23:53:10 -04:00
|
|
|
|
example = "#7EBAE4";
|
|
|
|
|
|
default = null;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Background color to be used for GRUB to fill the areas the image isn't filling.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2023-03-06 23:59:39 -05:00
|
|
|
|
timeoutStyle = mkOption {
|
|
|
|
|
|
default = "menu";
|
|
|
|
|
|
type = types.enum [ "menu" "countdown" "hidden" ];
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
- `menu` shows the menu.
|
|
|
|
|
|
- `countdown` uses a text-mode countdown.
|
|
|
|
|
|
- `hidden` hides GRUB entirely.
|
|
|
|
|
|
|
|
|
|
|
|
When using a theme, the default value (`menu`) is appropriate for the graphical countdown.
|
|
|
|
|
|
|
|
|
|
|
|
When attempting to do flicker-free boot, `hidden` should be used.
|
|
|
|
|
|
|
|
|
|
|
|
See the [GRUB documentation section about `timeout_style`](https://www.gnu.org/software/grub/manual/grub/html_node/timeout.html).
|
|
|
|
|
|
|
|
|
|
|
|
::: {.note}
|
|
|
|
|
|
If this option is set to ‘countdown’ or ‘hidden’ [...] and ESC or F4 are pressed, or SHIFT is held down during that time, it will display the menu and wait for input.
|
|
|
|
|
|
:::
|
|
|
|
|
|
|
|
|
|
|
|
From: [Simple configuration handling page, under GRUB_TIMEOUT_STYLE](https://www.gnu.org/software/grub/manual/grub/html_node/Simple-configuration.html).
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2022-03-31 06:39:16 -04:00
|
|
|
|
entryOptions = mkOption {
|
|
|
|
|
|
default = "--class nixos --unrestricted";
|
|
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Options applied to the primary NixOS menu entry.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
subEntryOptions = mkOption {
|
|
|
|
|
|
default = "--class nixos";
|
|
|
|
|
|
type = types.nullOr types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Options applied to the secondary NixOS submenu entry.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2020-07-05 05:16:25 +02:00
|
|
|
|
theme = mkOption {
|
|
|
|
|
|
type = types.nullOr types.path;
|
2021-10-03 18:06:03 +02:00
|
|
|
|
example = literalExpression "pkgs.nixos-grub2-theme";
|
2020-07-05 05:16:25 +02:00
|
|
|
|
default = null;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Grub theme to be used.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2018-08-28 23:53:10 -04:00
|
|
|
|
splashMode = mkOption {
|
|
|
|
|
|
type = types.enum [ "normal" "stretch" ];
|
|
|
|
|
|
default = "stretch";
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Whether to stretch the image or show the image in the top-left corner unstretched.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2017-06-10 09:53:24 -04:00
|
|
|
|
font = mkOption {
|
|
|
|
|
|
type = types.nullOr types.path;
|
|
|
|
|
|
default = "${realGrub}/share/grub/unicode.pf2";
|
2021-10-03 18:06:03 +02:00
|
|
|
|
defaultText = literalExpression ''"''${pkgs.grub2}/share/grub/unicode.pf2"'';
|
2017-06-10 09:53:24 -04:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Path to a TrueType, OpenType, or pf2 font to be used by Grub.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
fontSize = mkOption {
|
|
|
|
|
|
type = types.nullOr types.int;
|
2021-10-03 18:06:03 +02:00
|
|
|
|
example = 16;
|
2017-06-10 09:53:24 -04:00
|
|
|
|
default = null;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Font size for the grub menu. Ignored unless `font`
|
|
|
|
|
|
is set to a ttf or otf font.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2015-06-10 11:50:21 -07:00
|
|
|
|
gfxmodeEfi = mkOption {
|
|
|
|
|
|
default = "auto";
|
|
|
|
|
|
example = "1024x768";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2015-07-25 18:54:26 +02:00
|
|
|
|
The gfxmode to pass to GRUB when loading a graphical boot interface under EFI.
|
2015-06-10 11:50:21 -07:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
gfxmodeBios = mkOption {
|
|
|
|
|
|
default = "1024x768";
|
|
|
|
|
|
example = "auto";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2015-07-25 18:54:26 +02:00
|
|
|
|
The gfxmode to pass to GRUB when loading a graphical boot interface under BIOS.
|
2015-06-10 11:50:21 -07:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2019-03-21 10:00:39 +00:00
|
|
|
|
gfxpayloadEfi = mkOption {
|
|
|
|
|
|
default = "keep";
|
|
|
|
|
|
example = "text";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2019-08-08 22:48:27 +02:00
|
|
|
|
The gfxpayload to pass to GRUB when loading a graphical boot interface under EFI.
|
2019-03-21 10:00:39 +00:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
gfxpayloadBios = mkOption {
|
|
|
|
|
|
default = "text";
|
|
|
|
|
|
example = "keep";
|
|
|
|
|
|
type = types.str;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2019-08-08 22:48:27 +02:00
|
|
|
|
The gfxpayload to pass to GRUB when loading a graphical boot interface under BIOS.
|
2019-03-21 10:00:39 +00:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
configurationLimit = mkOption {
|
|
|
|
|
|
default = 100;
|
|
|
|
|
|
example = 120;
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.int;
|
2009-10-13 21:39:23 +00:00
|
|
|
|
description = lib.mdDoc ''
|
2009-09-29 09:50:38 +00:00
|
|
|
|
Maximum of configurations in boot menu. GRUB has problems when
|
|
|
|
|
|
there are too many entries.
|
2009-10-13 21:39:23 +00:00
|
|
|
|
'';
|
2009-09-29 09:50:38 +00:00
|
|
|
|
};
|
2009-01-02 16:07:34 +00:00
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
copyKernels = mkOption {
|
|
|
|
|
|
default = false;
|
2013-10-07 11:05:33 +02:00
|
|
|
|
type = types.bool;
|
2009-10-13 21:39:23 +00:00
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Whether the GRUB menu builder should copy kernels and initial
|
2009-12-16 18:57:02 +00:00
|
|
|
|
ramdisks to /boot. This is done automatically if /boot is
|
|
|
|
|
|
on a different partition than /.
|
2009-10-13 21:39:23 +00:00
|
|
|
|
'';
|
2009-09-29 09:50:38 +00:00
|
|
|
|
};
|
2009-10-13 21:39:23 +00:00
|
|
|
|
|
2009-12-11 00:51:07 +00:00
|
|
|
|
default = mkOption {
|
2018-06-19 01:59:21 -05:00
|
|
|
|
default = "0";
|
2018-06-19 04:05:50 -05:00
|
|
|
|
type = types.either types.int types.str;
|
|
|
|
|
|
apply = toString;
|
2009-12-11 00:51:07 +00:00
|
|
|
|
description = lib.mdDoc ''
|
2009-12-15 18:21:55 +00:00
|
|
|
|
Index of the default menu item to be booted.
|
2021-01-13 18:55:30 +01:00
|
|
|
|
Can also be set to "saved", which will make GRUB select
|
|
|
|
|
|
the menu item that was used at the last boot.
|
2009-12-11 00:51:07 +00:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2014-08-31 09:18:13 -07:00
|
|
|
|
fsIdentifier = mkOption {
|
|
|
|
|
|
default = "uuid";
|
2016-11-04 13:05:13 +09:00
|
|
|
|
type = types.enum [ "uuid" "label" "provided" ];
|
2014-04-09 13:27:18 -05:00
|
|
|
|
description = lib.mdDoc ''
|
2015-07-25 18:54:26 +02:00
|
|
|
|
Determines how GRUB will identify devices when generating the
|
2014-08-31 09:18:13 -07:00
|
|
|
|
configuration file. A value of uuid / label signifies that grub
|
|
|
|
|
|
will always resolve the uuid or label of the device before using
|
2015-07-25 18:54:26 +02:00
|
|
|
|
it in the configuration. A value of provided means that GRUB will
|
2014-08-31 09:18:13 -07:00
|
|
|
|
use the device name as show in {command}`df` or
|
|
|
|
|
|
{command}`mount`. Note, zfs zpools / datasets are ignored
|
|
|
|
|
|
and will always be mounted using their labels.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
zfsSupport = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2016-04-06 16:16:23 +00:00
|
|
|
|
Whether GRUB should be built against libzfs.
|
2015-01-14 10:30:57 +01:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
efiSupport = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2016-04-06 16:16:23 +00:00
|
|
|
|
Whether GRUB should be built with EFI support.
|
2014-04-09 13:27:18 -05:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2016-09-13 18:46:53 +01:00
|
|
|
|
efiInstallAsRemovable = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2017-04-18 14:21:48 +02:00
|
|
|
|
Whether to invoke `grub-install` with
|
2016-09-16 19:12:35 +01:00
|
|
|
|
`--removable`.
|
2016-09-13 18:46:53 +01:00
|
|
|
|
|
2016-09-16 19:12:35 +01:00
|
|
|
|
Unless you turn this on, GRUB will install itself somewhere in
|
2016-09-16 18:09:50 +01:00
|
|
|
|
`boot.loader.efi.efiSysMountPoint` (exactly where
|
|
|
|
|
|
depends on other config variables). If you've set
|
2016-09-13 18:46:53 +01:00
|
|
|
|
`boot.loader.efi.canTouchEfiVariables` *AND* you
|
|
|
|
|
|
are currently booted in UEFI mode, then GRUB will use
|
2016-09-16 18:09:50 +01:00
|
|
|
|
`efibootmgr` to modify the boot order in the
|
|
|
|
|
|
EFI variables of your firmware to include this location. If you are
|
|
|
|
|
|
*not* booted in UEFI mode at the time GRUB is being installed, the
|
2016-09-13 18:46:53 +01:00
|
|
|
|
NVRAM will not be modified, and your system will not find GRUB at
|
2016-09-16 18:09:50 +01:00
|
|
|
|
boot time. However, GRUB will still return success so you may miss
|
|
|
|
|
|
the warning that gets printed ("`efibootmgr: EFI variables
|
2016-09-16 19:12:35 +01:00
|
|
|
|
are not supported on this system.`").
|
2016-09-13 18:46:53 +01:00
|
|
|
|
|
2016-09-16 19:12:35 +01:00
|
|
|
|
If you turn this feature on, GRUB will install itself in a
|
|
|
|
|
|
special location within `efiSysMountPoint` (namely
|
2016-09-16 18:09:50 +01:00
|
|
|
|
`EFI/boot/boot$arch.efi`) which the firmwares
|
2016-09-16 19:12:35 +01:00
|
|
|
|
are hardcoded to try first, regardless of NVRAM EFI variables.
|
2016-09-13 18:46:53 +01:00
|
|
|
|
|
2016-09-16 19:12:35 +01:00
|
|
|
|
To summarize, turn this on if:
|
|
|
|
|
|
- You are installing NixOS and want it to boot in UEFI mode,
|
|
|
|
|
|
but you are currently booted in legacy mode
|
|
|
|
|
|
- You want to make a drive that will boot regardless of
|
|
|
|
|
|
the NVRAM state of the computer (like a USB "removable" drive)
|
|
|
|
|
|
- You simply dislike the idea of depending on NVRAM
|
|
|
|
|
|
state to make your drive bootable
|
2016-09-13 18:46:53 +01:00
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2014-09-21 20:41:46 +02:00
|
|
|
|
enableCryptodisk = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2015-07-25 18:54:26 +02:00
|
|
|
|
Enable support for encrypted partitions. GRUB should automatically
|
2014-09-21 20:41:46 +02:00
|
|
|
|
unlock the correct encrypted partition and look for filesystems.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2016-10-08 23:59:42 -04:00
|
|
|
|
forceInstall = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
|
|
Whether to try and forcibly install GRUB even if problems are
|
|
|
|
|
|
detected. It is not recommended to enable this unless you know what
|
|
|
|
|
|
you are doing.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2019-01-28 12:00:58 +01:00
|
|
|
|
forcei686 = mkOption {
|
|
|
|
|
|
default = false;
|
|
|
|
|
|
type = types.bool;
|
|
|
|
|
|
description = lib.mdDoc ''
|
2019-08-08 22:48:27 +02:00
|
|
|
|
Whether to force the use of a ia32 boot loader on x64 systems. Required
|
2019-01-28 12:00:58 +01:00
|
|
|
|
to install and run NixOS on 64bit x86 systems with 32bit (U)EFI.
|
|
|
|
|
|
'';
|
|
|
|
|
|
};
|
|
|
|
|
|
|
2009-01-02 16:07:34 +00:00
|
|
|
|
};
|
Making modular my previous changes for armv5tel. I updated the way to use
grub. Its options are no more inside 'boot', but inside 'boot.loader.grub'.
I added a new bootloader configuration for nixos, generationsDir. It creates
/boot/default/{init,initrd,kernel,system} symlinks, and the same for the generations
in /boot/system-$gen/{init,initrd,kernel,system}.
I can program the u-boot loader to load /boot/default files always, and have
a minimal nixos boot loader installer functionality. Additionally, I can refer
to the other system generations easily, with a simple 'ls' in /boot.
svn path=/nixos/trunk/; revision=17460
2009-09-27 21:51:37 +00:00
|
|
|
|
|
2009-01-02 16:07:34 +00:00
|
|
|
|
};
|
2011-09-14 18:20:50 +00:00
|
|
|
|
|
2009-09-29 09:50:38 +00:00
|
|
|
|
|
|
|
|
|
|
###### implementation
|
2009-01-02 16:07:34 +00:00
|
|
|
|
|
2013-10-24 01:48:07 +02:00
|
|
|
|
config = mkMerge [
|
2011-09-14 18:20:50 +00:00
|
|
|
|
|
2022-04-04 17:54:14 +01:00
|
|
|
|
{ boot.loader.grub.splashImage = mkDefault defaultSplash; }
|
2012-05-14 01:53:47 +00:00
|
|
|
|
|
2018-08-28 23:55:00 -04:00
|
|
|
|
(mkIf (cfg.splashImage == defaultSplash) {
|
|
|
|
|
|
boot.loader.grub.backgroundColor = mkDefault "#2F302F";
|
|
|
|
|
|
boot.loader.grub.splashMode = mkDefault "normal";
|
|
|
|
|
|
})
|
|
|
|
|
|
|
2013-10-24 01:48:07 +02:00
|
|
|
|
(mkIf cfg.enable {
|
2013-10-23 20:06:39 +02:00
|
|
|
|
|
2013-10-24 01:48:07 +02:00
|
|
|
|
boot.loader.grub.devices = optional (cfg.device != "") cfg.device;
|
2013-10-17 13:30:49 +02:00
|
|
|
|
|
2015-05-25 14:57:20 -07:00
|
|
|
|
boot.loader.grub.mirroredBoots = optionals (cfg.devices != [ ]) [
|
|
|
|
|
|
{ path = "/boot"; inherit (cfg) devices; inherit (efi) efiSysMountPoint; }
|
|
|
|
|
|
];
|
|
|
|
|
|
|
2018-03-27 19:57:52 -04:00
|
|
|
|
boot.loader.supportsInitrdSecrets = true;
|
|
|
|
|
|
|
2022-11-05 00:15:29 +01:00
|
|
|
|
system.systemBuilderArgs.configurationName = cfg.configurationName;
|
|
|
|
|
|
system.systemBuilderCommands = ''
|
|
|
|
|
|
echo -n "$configurationName" > $out/configuration-name
|
|
|
|
|
|
'';
|
|
|
|
|
|
|
2016-09-01 10:36:38 +02:00
|
|
|
|
system.build.installBootLoader =
|
|
|
|
|
|
let
|
|
|
|
|
|
install-grub-pl = pkgs.substituteAll {
|
|
|
|
|
|
src = ./install-grub.pl;
|
2020-11-24 10:29:28 -05:00
|
|
|
|
utillinux = pkgs.util-linux;
|
2016-09-01 10:36:38 +02:00
|
|
|
|
btrfsprogs = pkgs.btrfs-progs;
|
2022-12-17 18:00:58 -05:00
|
|
|
|
inherit (config.system.nixos) distroName;
|
2016-09-01 10:36:38 +02:00
|
|
|
|
};
|
2021-02-24 20:53:45 +01:00
|
|
|
|
perl = pkgs.perl.withPackages (p: with p; [
|
|
|
|
|
|
FileSlurp FileCopyRecursive
|
|
|
|
|
|
XMLLibXML XMLSAX XMLSAXBase
|
|
|
|
|
|
ListCompare JSON
|
|
|
|
|
|
]);
|
2016-09-01 10:36:38 +02:00
|
|
|
|
in pkgs.writeScript "install-grub.sh" (''
|
2018-03-01 14:38:53 -05:00
|
|
|
|
#!${pkgs.runtimeShell}
|
2015-05-25 14:57:20 -07:00
|
|
|
|
set -e
|
|
|
|
|
|
${optionalString cfg.enableCryptodisk "export GRUB_ENABLE_CRYPTODISK=y"}
|
|
|
|
|
|
'' + flip concatMapStrings cfg.mirroredBoots (args: ''
|
2021-02-24 20:53:45 +01:00
|
|
|
|
${perl}/bin/perl ${install-grub-pl} ${grubConfig args} $@
|
2021-01-02 18:23:49 +01:00
|
|
|
|
'') + cfg.extraInstallCommands);
|
Making modular my previous changes for armv5tel. I updated the way to use
grub. Its options are no more inside 'boot', but inside 'boot.loader.grub'.
I added a new bootloader configuration for nixos, generationsDir. It creates
/boot/default/{init,initrd,kernel,system} symlinks, and the same for the generations
in /boot/system-$gen/{init,initrd,kernel,system}.
I can program the u-boot loader to load /boot/default files always, and have
a minimal nixos boot loader installer functionality. Additionally, I can refer
to the other system generations easily, with a simple 'ls' in /boot.
svn path=/nixos/trunk/; revision=17460
2009-09-27 21:51:37 +00:00
|
|
|
|
|
2013-10-24 01:48:07 +02:00
|
|
|
|
system.build.grub = grub;
|
2009-10-13 21:39:18 +00:00
|
|
|
|
|
2013-10-24 01:48:07 +02:00
|
|
|
|
# Common attribute for boot loaders so only one of them can be
|
|
|
|
|
|
# set at once.
|
|
|
|
|
|
system.boot.loader.id = "grub";
|
2009-10-13 21:39:18 +00:00
|
|
|
|
|
2013-10-30 14:18:41 +01:00
|
|
|
|
environment.systemPackages = optional (grub != null) grub;
|
2013-10-02 12:29:07 +02:00
|
|
|
|
|
2013-10-24 01:48:07 +02:00
|
|
|
|
boot.loader.grub.extraPrepareConfig =
|
|
|
|
|
|
concatStrings (mapAttrsToList (n: v: ''
|
2023-03-06 23:40:12 -05:00
|
|
|
|
${pkgs.coreutils}/bin/install -Dp "${v}" "${efi.efiSysMountPoint}/"${escapeShellArg n}
|
2013-10-24 01:48:07 +02:00
|
|
|
|
'') config.boot.loader.grub.extraFiles);
|
|
|
|
|
|
|
2015-05-25 14:57:20 -07:00
|
|
|
|
assertions = [
|
|
|
|
|
|
{
|
|
|
|
|
|
assertion = cfg.mirroredBoots != [ ];
|
|
|
|
|
|
message = "You must set the option ‘boot.loader.grub.devices’ or "
|
|
|
|
|
|
+ "'boot.loader.grub.mirroredBoots' to make the system bootable.";
|
|
|
|
|
|
}
|
|
|
|
|
|
{
|
2020-09-09 07:37:17 +02:00
|
|
|
|
assertion = cfg.efiSupport || all (c: c < 2) (mapAttrsToList (n: c: if n == "nodev" then 0 else c) bootDeviceCounters);
|
2015-05-25 14:57:20 -07:00
|
|
|
|
message = "You cannot have duplicated devices in mirroredBoots";
|
|
|
|
|
|
}
|
2016-09-13 18:46:53 +01:00
|
|
|
|
{
|
|
|
|
|
|
assertion = cfg.efiInstallAsRemovable -> cfg.efiSupport;
|
|
|
|
|
|
message = "If you wish to to use boot.loader.grub.efiInstallAsRemovable, then turn on boot.loader.grub.efiSupport";
|
|
|
|
|
|
}
|
|
|
|
|
|
{
|
|
|
|
|
|
assertion = cfg.efiInstallAsRemovable -> !config.boot.loader.efi.canTouchEfiVariables;
|
|
|
|
|
|
message = "If you wish to to use boot.loader.grub.efiInstallAsRemovable, then turn off boot.loader.efi.canTouchEfiVariables";
|
|
|
|
|
|
}
|
2023-04-11 21:58:29 +02:00
|
|
|
|
{
|
|
|
|
|
|
assertion = !(options.boot.loader.grub.version.isDefined && cfg.version == 1);
|
|
|
|
|
|
message = "Support for version 0.9x of GRUB was removed after being unsupported upstream for around a decade";
|
|
|
|
|
|
}
|
2015-05-25 14:57:20 -07:00
|
|
|
|
] ++ flip concatMap cfg.mirroredBoots (args: [
|
|
|
|
|
|
{
|
|
|
|
|
|
assertion = args.devices != [ ];
|
2015-12-10 19:52:08 +01:00
|
|
|
|
message = "A boot path cannot have an empty devices string in ${args.path}";
|
2015-05-25 14:57:20 -07:00
|
|
|
|
}
|
|
|
|
|
|
{
|
|
|
|
|
|
assertion = hasPrefix "/" args.path;
|
|
|
|
|
|
message = "Boot paths must be absolute, not ${args.path}";
|
|
|
|
|
|
}
|
|
|
|
|
|
{
|
2015-05-25 23:03:24 -07:00
|
|
|
|
assertion = if args.efiSysMountPoint == null then true else hasPrefix "/" args.efiSysMountPoint;
|
2016-05-31 16:52:40 +02:00
|
|
|
|
message = "EFI paths must be absolute, not ${args.efiSysMountPoint}";
|
2015-05-25 14:57:20 -07:00
|
|
|
|
}
|
2019-08-05 14:03:38 +03:00
|
|
|
|
] ++ forEach args.devices (device: {
|
2015-05-25 14:57:20 -07:00
|
|
|
|
assertion = device == "nodev" || hasPrefix "/" device;
|
2016-04-20 22:27:34 +02:00
|
|
|
|
message = "GRUB devices must be absolute paths, not ${device} in ${args.path}";
|
2015-05-25 14:57:20 -07:00
|
|
|
|
}));
|
2013-10-24 01:48:07 +02:00
|
|
|
|
})
|
|
|
|
|
|
|
2023-04-11 21:58:29 +02:00
|
|
|
|
(mkIf options.boot.loader.grub.version.isDefined {
|
|
|
|
|
|
warnings = [ ''
|
|
|
|
|
|
The boot.loader.grub.version option does not have any effect anymore, please remove it from your configuration.
|
|
|
|
|
|
'' ];
|
|
|
|
|
|
})
|
2013-10-24 01:48:07 +02:00
|
|
|
|
];
|
2011-09-14 18:20:50 +00:00
|
|
|
|
|
2015-10-14 18:05:50 +02:00
|
|
|
|
|
|
|
|
|
|
imports =
|
2016-03-27 00:01:43 +01:00
|
|
|
|
[ (mkRemovedOptionModule [ "boot" "loader" "grub" "bootDevice" ] "")
|
2015-10-14 18:05:50 +02:00
|
|
|
|
(mkRenamedOptionModule [ "boot" "copyKernels" ] [ "boot" "loader" "grub" "copyKernels" ])
|
|
|
|
|
|
(mkRenamedOptionModule [ "boot" "extraGrubEntries" ] [ "boot" "loader" "grub" "extraEntries" ])
|
|
|
|
|
|
(mkRenamedOptionModule [ "boot" "extraGrubEntriesBeforeNixos" ] [ "boot" "loader" "grub" "extraEntriesBeforeNixOS" ])
|
|
|
|
|
|
(mkRenamedOptionModule [ "boot" "grubDevice" ] [ "boot" "loader" "grub" "device" ])
|
|
|
|
|
|
(mkRenamedOptionModule [ "boot" "bootMount" ] [ "boot" "loader" "grub" "bootDevice" ])
|
|
|
|
|
|
(mkRenamedOptionModule [ "boot" "grubSplashImage" ] [ "boot" "loader" "grub" "splashImage" ])
|
2023-04-14 02:15:51 +02:00
|
|
|
|
(mkRemovedOptionModule [ "boot" "loader" "grub" "trustedBoot" ] ''
|
|
|
|
|
|
Support for Trusted GRUB has been removed, because the project
|
|
|
|
|
|
has been retired upstream.
|
|
|
|
|
|
'')
|
2018-03-27 19:57:52 -04:00
|
|
|
|
(mkRemovedOptionModule [ "boot" "loader" "grub" "extraInitrd" ] ''
|
|
|
|
|
|
This option has been replaced with the bootloader agnostic
|
|
|
|
|
|
boot.initrd.secrets option. To migrate to the initrd secrets system,
|
|
|
|
|
|
extract the extraInitrd archive into your main filesystem:
|
|
|
|
|
|
|
|
|
|
|
|
# zcat /boot/extra_initramfs.gz | cpio -idvmD /etc/secrets/initrd
|
|
|
|
|
|
/path/to/secret1
|
|
|
|
|
|
/path/to/secret2
|
|
|
|
|
|
|
|
|
|
|
|
then replace boot.loader.grub.extraInitrd with boot.initrd.secrets:
|
|
|
|
|
|
|
|
|
|
|
|
boot.initrd.secrets = {
|
|
|
|
|
|
"/path/to/secret1" = "/etc/secrets/initrd/path/to/secret1";
|
|
|
|
|
|
"/path/to/secret2" = "/etc/secrets/initrd/path/to/secret2";
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
See the boot.initrd.secrets option documentation for more information.
|
|
|
|
|
|
'')
|
2015-10-14 18:05:50 +02:00
|
|
|
|
];
|
|
|
|
|
|
|
2009-01-02 16:07:34 +00:00
|
|
|
|
}
|
