[jackhill/guix/guix.git] / gnu / build / install.scm

;;; GNU Guix --- Functional package management for GNU
;;; Copyright © 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020 Ludovic Courtès <ludo@gnu.org>
;;; Copyright © 2016 Chris Marusich <cmmarusich@gmail.com>
;;;
;;; This file is part of GNU Guix.
;;;
;;; GNU Guix is free software; you can redistribute it and/or modify it
;;; under the terms of the GNU General Public License as published by
;;; the Free Software Foundation; either version 3 of the License, or (at
;;; your option) any later version.
;;;
;;; GNU Guix is distributed in the hope that it will be useful, but
;;; WITHOUT ANY WARRANTY; without even the implied warranty of
;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
;;; GNU General Public License for more details.
;;;
;;; You should have received a copy of the GNU General Public License
;;; along with GNU Guix.  If not, see <http://www.gnu.org/licenses/>.

(define-module (gnu build install)
  #:use-module (guix build utils)
  #:use-module (guix build store-copy)
  #:use-module (srfi srfi-26)
  #:use-module (ice-9 match)
  #:export (install-boot-config
            evaluate-populate-directive
            populate-root-file-system
            install-database-and-gc-roots
            populate-single-profile-directory))

;;; Commentary:
;;;
;;; This module supports the installation of the GNU system on a hard disk.
;;; It is meant to be used both in a build environment (in derivations that
;;; build VM images), and on the bare metal (when really installing the
;;; system.)
;;;
;;; Code:

(define (install-boot-config bootcfg bootcfg-location mount-point)
  "Atomically copy BOOTCFG into BOOTCFG-LOCATION on the MOUNT-POINT.  Note
that the caller must make sure that BOOTCFG is registered as a GC root so
that the fonts, background images, etc. referred to by BOOTCFG are not GC'd."
  (let* ((target (string-append mount-point bootcfg-location))
         (pivot  (string-append target ".new")))
    (mkdir-p (dirname target))

    ;; Copy BOOTCFG instead of just symlinking it, because symlinks won't
    ;; work when /boot is on a separate partition.  Do that atomically.
    (copy-file bootcfg pivot)
    (rename-file pivot target)))

(define* (evaluate-populate-directive directive target
                                      #:key
                                      (default-gid 0)
                                      (default-uid 0))
  "Evaluate DIRECTIVE, an sexp describing a file or directory to create under
directory TARGET.  DEFAULT-UID and DEFAULT-GID are the default UID and GID in
the context of the caller.  If the directive matches those defaults then,
'chown' won't be run."
  (let loop ((directive directive))
    (catch 'system-error
      (lambda ()
        (match directive
          (('directory name)
           (mkdir-p (string-append target name)))
          (('directory name uid gid)
           (let ((dir (string-append target name)))
             (mkdir-p dir)
             ;; If called from a context without "root" permissions, "chown"
             ;; to root will fail.  In that case, do not try to run "chown"
             ;; and assume that the file will be chowned elsewhere (when
             ;; interned in the store for instance).
             (or (and (= uid default-uid) (= gid default-gid))
                 (chown dir uid gid))))
          (('directory name uid gid mode)
           (loop `(directory ,name ,uid ,gid))
           (chmod (string-append target name) mode))
          (('file name)
           (call-with-output-file (string-append target name)
             (const #t)))
          (('file name (? string? content))
           (call-with-output-file (string-append target name)
             (lambda (port)
               (display content port))))
          ((new '-> old)
           (let try ()
             (catch 'system-error
               (lambda ()
                 (symlink old (string-append target new)))
               (lambda args
                 ;; When doing 'guix system init' on the current '/', some
                 ;; symlinks may already exists.  Override them.
                 (if (= EEXIST (system-error-errno args))
                     (begin
                       (delete-file (string-append target new))
                       (try))
                     (apply throw args))))))))
      (lambda args
        ;; Usually we can only get here when installing to an existing root,
        ;; as with 'guix system init foo.scm /'.
        (format (current-error-port)
                "error: failed to evaluate directive: ~s~%"
                directive)
        (apply throw args)))))

(define (directives store)
  "Return a list of directives to populate the root file system that will host
STORE."
  `((directory ,store 0 0 #o1775)

    (directory "/etc")
    (directory "/var/log")                          ; for shepherd
    (directory "/var/guix/gcroots")
    (directory "/var/empty")                        ; for no-login accounts
    (directory "/var/db")                           ; for dhclient, etc.
    (directory "/var/run")
    (directory "/run")
    (directory "/mnt")
    (directory "/var/guix/profiles/per-user/root" 0 0)

    ;; Link to the initial system generation.
    ("/var/guix/profiles/system" -> "system-1-link")

    ("/var/guix/gcroots/booted-system" -> "/run/booted-system")
    ("/var/guix/gcroots/current-system" -> "/run/current-system")
    ("/var/guix/gcroots/profiles" -> "/var/guix/profiles")

    (directory "/bin")
    (directory "/tmp" 0 0 #o1777)                 ; sticky bit
    (directory "/var/tmp" 0 0 #o1777)
    (directory "/var/lock" 0 0 #o1777)

    (directory "/home" 0 0)))

(define* (populate-root-file-system system target
                                    #:key (extras '()))
  "Make the essential non-store files and directories on TARGET.  This
includes /etc, /var, /run, /bin/sh, etc., and all the symlinks to SYSTEM.
EXTRAS is a list of directives appended to the built-in directives to populate
TARGET."
  (for-each (cut evaluate-populate-directive <> target)
            (append (directives (%store-directory)) extras))

  ;; Add system generation 1.
  (let ((generation-1 (string-append target
                                     "/var/guix/profiles/system-1-link")))
    (let try ()
      (catch 'system-error
        (lambda ()
          (symlink system generation-1))
        (lambda args
          ;; If GENERATION-1 already exists, overwrite it.
          (if (= EEXIST (system-error-errno args))
              (begin
                (delete-file generation-1)
                (try))
              (apply throw args)))))))

(define %root-profile
  "/var/guix/profiles/per-user/root")

(define* (install-database-and-gc-roots root database profile
                                        #:key (profile-name "guix-profile"))
  "Install DATABASE, the store database, under directory ROOT.  Create
PROFILE-NAME and have it link to PROFILE, a store item."
  (define (scope file)
    (string-append root "/" file))

  (define (mkdir-p* dir)
    (mkdir-p (scope dir)))

  (define (symlink* old new)
    (symlink old (scope new)))

  (install-file database (scope "/var/guix/db/"))
  (chmod (scope "/var/guix/db/db.sqlite") #o644)
  (mkdir-p* "/var/guix/profiles")
  (mkdir-p* "/var/guix/gcroots")
  (symlink* "/var/guix/profiles" "/var/guix/gcroots/profiles")

  ;; Make root's profile, which makes it a GC root.
  (mkdir-p* %root-profile)
  (symlink* profile
            (string-append %root-profile "/" profile-name "-1-link"))
  (symlink* (string-append profile-name "-1-link")
            (string-append %root-profile "/" profile-name)))

(define* (populate-single-profile-directory directory
                                            #:key profile closure
                                            (profile-name "guix-profile")
                                            database)
  "Populate DIRECTORY with a store containing PROFILE, whose closure is given
in the file called CLOSURE (as generated by #:references-graphs.)  DIRECTORY
is initialized to contain a single profile under /root pointing to PROFILE.

When DATABASE is true, copy it to DIRECTORY/var/guix/db and create
DIRECTORY/var/guix/gcroots and friends.

PROFILE-NAME is the name of the profile being created under
/var/guix/profiles, typically either \"guix-profile\" or \"current-guix\".

This is used to create the self-contained tarballs with 'guix pack'."
  (define (scope file)
    (string-append directory "/" file))

  (define (mkdir-p* dir)
    (mkdir-p (scope dir)))

  (define (symlink* old new)
    (symlink old (scope new)))

  ;; Populate the store.
  (populate-store (list closure) directory)

  (when database
    (install-database-and-gc-roots directory database profile
                                   #:profile-name profile-name))

  (match profile-name
    ("guix-profile"
     (mkdir-p* "/root")
     (symlink* (string-append %root-profile "/guix-profile")
               "/root/.guix-profile"))
    ("current-guix"
     (mkdir-p* "/root/.config/guix")
     (symlink* (string-append %root-profile "/current-guix")
               "/root/.config/guix/current"))
    (_
     #t)))

;;; install.scm ends here
Commit	Line	Data
5ce3defe	1	;;; GNU Guix --- Functional package management for GNU
87241947	2	;;; Copyright © 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020 Ludovic Courtès <ludo@gnu.org>
1e17a2d5	3	;;; Copyright © 2016 Chris Marusich <cmmarusich@gmail.com>
5ce3defe LC	4	;;;
	5	;;; This file is part of GNU Guix.
	6	;;;
	7	;;; GNU Guix is free software; you can redistribute it and/or modify it
	8	;;; under the terms of the GNU General Public License as published by
	9	;;; the Free Software Foundation; either version 3 of the License, or (at
	10	;;; your option) any later version.
	11	;;;
	12	;;; GNU Guix is distributed in the hope that it will be useful, but
	13	;;; WITHOUT ANY WARRANTY; without even the implied warranty of
	14	;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	15	;;; GNU General Public License for more details.
	16	;;;
	17	;;; You should have received a copy of the GNU General Public License
	18	;;; along with GNU Guix. If not, see <http://www.gnu.org/licenses/>.
	19
548f7a8f	20	(define-module (gnu build install)
5ce3defe	21	#:use-module (guix build utils)
9d3fb6c7	22	#:use-module (guix build store-copy)
b4140694	23	#:use-module (srfi srfi-26)
5ce3defe	24	#:use-module (ice-9 match)
9121ce55	25	#:export (install-boot-config
5895ec8a	26	evaluate-populate-directive
b4140694	27	populate-root-file-system
c5ce2db5	28	install-database-and-gc-roots
9d3fb6c7	29	populate-single-profile-directory))
5ce3defe LC	30
	31	;;; Commentary:
	32	;;;
	33	;;; This module supports the installation of the GNU system on a hard disk.
	34	;;; It is meant to be used both in a build environment (in derivations that
	35	;;; build VM images), and on the bare metal (when really installing the
	36	;;; system.)
	37	;;;
	38	;;; Code:
	39
9121ce55 MO	40	(define (install-boot-config bootcfg bootcfg-location mount-point)
	41	"Atomically copy BOOTCFG into BOOTCFG-LOCATION on the MOUNT-POINT. Note
	42	that the caller must make sure that BOOTCFG is registered as a GC root so
	43	that the fonts, background images, etc. referred to by BOOTCFG are not GC'd."
	44	(let* ((target (string-append mount-point bootcfg-location))
6ffd11f1 LC	45	(pivot (string-append target ".new")))
	46	(mkdir-p (dirname target))
	47
9121ce55	48	;; Copy BOOTCFG instead of just symlinking it, because symlinks won't
6412e58a	49	;; work when /boot is on a separate partition. Do that atomically.
9121ce55	50	(copy-file bootcfg pivot)
1e17a2d5	51	(rename-file pivot target)))
5ce3defe	52
5990e95b MO	53	(define* (evaluate-populate-directive directive target
	54	#:key
	55	(default-gid 0)
	56	(default-uid 0))
5ce3defe	57	"Evaluate DIRECTIVE, an sexp describing a file or directory to create under
5990e95b MO	58	directory TARGET. DEFAULT-UID and DEFAULT-GID are the default UID and GID in
	59	the context of the caller. If the directive matches those defaults then,
	60	'chown' won't be run."
b4140694	61	(let loop ((directive directive))
a4888e2e LC	62	(catch 'system-error
	63	(lambda ()
	64	(match directive
	65	(('directory name)
	66	(mkdir-p (string-append target name)))
	67	(('directory name uid gid)
	68	(let ((dir (string-append target name)))
	69	(mkdir-p dir)
5990e95b MO	70	;; If called from a context without "root" permissions, "chown"
	71	;; to root will fail. In that case, do not try to run "chown"
	72	;; and assume that the file will be chowned elsewhere (when
	73	;; interned in the store for instance).
	74	(or (and (= uid default-uid) (= gid default-gid))
	75	(chown dir uid gid))))
a4888e2e LC	76	(('directory name uid gid mode)
	77	(loop `(directory ,name ,uid ,gid))
	78	(chmod (string-append target name) mode))
87241947 LC	79	(('file name)
	80	(call-with-output-file (string-append target name)
	81	(const #t)))
	82	(('file name (? string? content))
	83	(call-with-output-file (string-append target name)
	84	(lambda (port)
	85	(display content port))))
a4888e2e LC	86	((new '-> old)
	87	(let try ()
	88	(catch 'system-error
	89	(lambda ()
	90	(symlink old (string-append target new)))
	91	(lambda args
	92	;; When doing 'guix system init' on the current '/', some
	93	;; symlinks may already exists. Override them.
	94	(if (= EEXIST (system-error-errno args))
	95	(begin
	96	(delete-file (string-append target new))
	97	(try))
	98	(apply throw args))))))))
	99	(lambda args
	100	;; Usually we can only get here when installing to an existing root,
	101	;; as with 'guix system init foo.scm /'.
	102	(format (current-error-port)
	103	"error: failed to evaluate directive: ~s~%"
	104	directive)
	105	(apply throw args)))))
b4140694 LC	106
	107	(define (directives store)
	108	"Return a list of directives to populate the root file system that will host
	109	STORE."
892bbea7	110	`((directory ,store 0 0 #o1775)
185f6691	111
b4140694	112	(directory "/etc")
171a0a13	113	(directory "/var/log") ; for shepherd
b4140694	114	(directory "/var/guix/gcroots")
517830cc	115	(directory "/var/empty") ; for no-login accounts
3485716f	116	(directory "/var/db") ; for dhclient, etc.
4b2615e1	117	(directory "/var/run")
b4140694	118	(directory "/run")
3485716f	119	(directory "/mnt")
f2c403ea LC	120	(directory "/var/guix/profiles/per-user/root" 0 0)
	121
	122	;; Link to the initial system generation.
	123	("/var/guix/profiles/system" -> "system-1-link")
	124
b4140694 LC	125	("/var/guix/gcroots/booted-system" -> "/run/booted-system")
b4140694 LC	126	("/var/guix/gcroots/current-system" -> "/run/current-system")
334bda9a LC	127	("/var/guix/gcroots/profiles" -> "/var/guix/profiles")
334bda9a LC	128
b4140694	129	(directory "/bin")
b4140694	130	(directory "/tmp" 0 0 #o1777) ; sticky bit
f73b8e3d	131	(directory "/var/tmp" 0 0 #o1777)
d9c41939	132	(directory "/var/lock" 0 0 #o1777)
b4140694	133
b4140694 LC	134	(directory "/home" 0 0)))
b4140694 LC	135
87241947 LC	136	(define* (populate-root-file-system system target
87241947 LC	137	#:key (extras '()))
b4140694	138	"Make the essential non-store files and directories on TARGET. This
87241947 LC	139	includes /etc, /var, /run, /bin/sh, etc., and all the symlinks to SYSTEM.
	140	EXTRAS is a list of directives appended to the built-in directives to populate
	141	TARGET."
b4140694	142	(for-each (cut evaluate-populate-directive <> target)
87241947	143	(append (directives (%store-directory)) extras))
f2c403ea LC	144
f2c403ea LC	145	;; Add system generation 1.
aea9b232 LC	146	(let ((generation-1 (string-append target
	147	"/var/guix/profiles/system-1-link")))
	148	(let try ()
	149	(catch 'system-error
	150	(lambda ()
	151	(symlink system generation-1))
	152	(lambda args
	153	;; If GENERATION-1 already exists, overwrite it.
	154	(if (= EEXIST (system-error-errno args))
	155	(begin
	156	(delete-file generation-1)
	157	(try))
	158	(apply throw args)))))))
5ce3defe	159
c5ce2db5 LC	160	(define %root-profile
	161	"/var/guix/profiles/per-user/root")
	162
	163	(define* (install-database-and-gc-roots root database profile
	164	#:key (profile-name "guix-profile"))
	165	"Install DATABASE, the store database, under directory ROOT. Create
	166	PROFILE-NAME and have it link to PROFILE, a store item."
	167	(define (scope file)
	168	(string-append root "/" file))
	169
	170	(define (mkdir-p* dir)
	171	(mkdir-p (scope dir)))
	172
	173	(define (symlink* old new)
	174	(symlink old (scope new)))
	175
	176	(install-file database (scope "/var/guix/db/"))
	177	(chmod (scope "/var/guix/db/db.sqlite") #o644)
	178	(mkdir-p* "/var/guix/profiles")
	179	(mkdir-p* "/var/guix/gcroots")
	180	(symlink* "/var/guix/profiles" "/var/guix/gcroots/profiles")
	181
	182	;; Make root's profile, which makes it a GC root.
	183	(mkdir-p* %root-profile)
	184	(symlink* profile
	185	(string-append %root-profile "/" profile-name "-1-link"))
	186	(symlink* (string-append profile-name "-1-link")
	187	(string-append %root-profile "/" profile-name)))
	188
9d3fb6c7	189	(define* (populate-single-profile-directory directory
08fa7613	190	#:key profile closure
ab3c60ac	191	(profile-name "guix-profile")
ec4c81fe	192	database)
9d3fb6c7 LC	193	"Populate DIRECTORY with a store containing PROFILE, whose closure is given
	194	in the file called CLOSURE (as generated by #:references-graphs.) DIRECTORY
	195	is initialized to contain a single profile under /root pointing to PROFILE.
ec4c81fe LC	196
	197	When DATABASE is true, copy it to DIRECTORY/var/guix/db and create
	198	DIRECTORY/var/guix/gcroots and friends.
08fa7613	199
ab3c60ac LC	200	PROFILE-NAME is the name of the profile being created under
	201	/var/guix/profiles, typically either \"guix-profile\" or \"current-guix\".
	202
6b63c43e	203	This is used to create the self-contained tarballs with 'guix pack'."
9d3fb6c7 LC	204	(define (scope file)
	205	(string-append directory "/" file))
	206
9d3fb6c7 LC	207	(define (mkdir-p* dir)
	208	(mkdir-p (scope dir)))
	209
	210	(define (symlink* old new)
	211	(symlink old (scope new)))
	212
	213	;; Populate the store.
	214	(populate-store (list closure) directory)
6b63c43e	215
ec4c81fe	216	(when database
c5ce2db5 LC	217	(install-database-and-gc-roots directory database profile
c5ce2db5 LC	218	#:profile-name profile-name))
ab3c60ac LC	219
	220	(match profile-name
	221	("guix-profile"
	222	(mkdir-p* "/root")
	223	(symlink* (string-append %root-profile "/guix-profile")
	224	"/root/.guix-profile"))
	225	("current-guix"
	226	(mkdir-p* "/root/.config/guix")
	227	(symlink* (string-append %root-profile "/current-guix")
	228	"/root/.config/guix/current"))
	229	(_
	230	#t)))
9d3fb6c7	231
5ce3defe	232	;;; install.scm ends here