Merge pull request #195671 from amarshall/rename-readonlystore

          relying on this should provide their own implementation.

        </para>

      </listitem>

      <listitem>

        <para>

          The <literal>nix.readOnlyStore</literal> option has been

          renamed to <literal>boot.readOnlyNixStore</literal> to clarify

          that it configures the NixOS boot process, not the Nix daemon.

        </para>

      </listitem>

    </itemizedlist>

  </section>

  <section xml:id="sec-release-23.05-notable-changes">

- The EC2 image module previously detected and activated swap-formatted instance store devices and partitions in stage-1 (initramfs). This behaviour has been removed. Users relying on this should provide their own implementation.

- The `nix.readOnlyStore` option has been renamed to `boot.readOnlyNixStore` to clarify that it configures the NixOS boot process, not the Nix daemon.

## Other Notable Changes {#sec-release-23.05-notable-changes}

<!-- To avoid merge conflicts, consider adding your item at an arbitrary place in the list instead. -->

    (mkRenamedOptionModuleWith { sinceRelease = 2003; from = [ "nix" "useChroot" ]; to = [ "nix" "useSandbox" ]; })

    (mkRenamedOptionModuleWith { sinceRelease = 2003; from = [ "nix" "chrootDirs" ]; to = [ "nix" "sandboxPaths" ]; })

    (mkRenamedOptionModuleWith { sinceRelease = 2205; from = [ "nix" "daemonIONiceLevel" ]; to = [ "nix" "daemonIOSchedPriority" ]; })

    (mkRenamedOptionModuleWith { sinceRelease = 2211; from = [ "nix" "readOnlyStore" ]; to = [ "boot" "readOnlyNixStore" ]; })

    (mkRemovedOptionModule [ "nix" "daemonNiceLevel" ] "Consider nix.daemonCPUSchedPolicy instead.")

  ] ++ mapAttrsToList (oldConf: newConf: mkRenamedOptionModuleWith { sinceRelease = 2205; from = [ "nix" oldConf ]; to = [ "nix" "settings" newConf ]; }) legacyConfMappings;

        '';

      };

      readOnlyStore = mkOption {

        type = types.bool;

        default = true;

        description = lib.mdDoc ''

          If set, NixOS will enforce the immutability of the Nix store

          by making {file}`/nix/store` a read-only bind

          mount.  Nix will automatically make the store writable when

          needed.

        '';

      };

      nixPath = mkOption {

        type = types.listOf types.str;

        default = [

# like squashfs.

chown -f 0:30000 /nix/store

chmod -f 1775 /nix/store

if [ -n "@readOnlyStore@" ]; then

if [ -n "@readOnlyNixStore@" ]; then

    if ! [[ "$(findmnt --noheadings --output OPTIONS /nix/store)" =~ ro(,|$) ]]; then

        if [ -z "$container" ]; then

            mount --bind /nix/store /nix/store

    src = ./stage-2-init.sh;

    shellDebug = "${pkgs.bashInteractive}/bin/bash";

    shell = "${pkgs.bash}/bin/bash";

    inherit (config.boot) systemdExecutable extraSystemdUnitPaths;

    inherit (config.boot) readOnlyNixStore systemdExecutable extraSystemdUnitPaths;

    isExecutable = true;

    inherit (config.nix) readOnlyStore;

    inherit useHostResolvConf;

    inherit (config.system.build) earlyMountScript;

    path = lib.makeBinPath ([

        '';

      };

      readOnlyNixStore = mkOption {

        type = types.bool;

        default = true;

        description = lib.mdDoc ''

          If set, NixOS will enforce the immutability of the Nix store

          by making {file}`/nix/store` a read-only bind

          mount.  Nix will automatically make the store writable when

          needed.

        '';

      };

      systemdExecutable = mkOption {

        default = "/run/current-system/systemd/lib/systemd/systemd";

        type = types.str;