about summary refs log tree commit diff
path: root/ops/nixos/default.nix
# TODO(tazjin): rename 'pkgs' -> 'depot'?
{ pkgs, ... }:

let
  inherit (pkgs) lib;
  inherit (builtins) foldl';

  systemFor = configs: (pkgs.third_party.nixos {
    configuration = lib.fix(config:
      foldl' lib.recursiveUpdate {} (map (c: c config) configs)
    );
  }).system;

  nuggetSystem = systemFor [ pkgs.ops.nixos.nugget ];

  rebuilder = pkgs.third_party.writeShellScriptBin "rebuilder" ''
    set -ue
    if [[ $EUID -ne 0 ]]; then
      echo "Oh no! Only root is allowed to rebuild the system!" >&2
      exit 1
    fi

    case $HOSTNAME in
    nugget)
      echo "Rebuilding NixOS for //ops/nixos/nugget"
      system=$(nix-build -E '(import <depot> {}).ops.nixos.nuggetSystem' --no-out-link)
      ;;
    *)
      echo "$HOSTNAME is not a known NixOS host!" >&2
      exit 1
      ;;
    esac

    nix-env -p /nix/var/nix/profiles/system --set $system
    $system/bin/switch-to-configuration switch
  '';
in {
  inherit nuggetSystem rebuilder;
}