Compare commits

..

3 Commits

Author SHA1 Message Date
087070a3d4
Add post-install helper script for GRUB mirror 2022-11-27 20:50:20 -05:00
0d99930fa7
Minor touchups 2022-11-27 19:51:30 -05:00
e96a557d9a
Use tabs over spaces 2022-11-27 19:48:44 -05:00

View File

@ -7,94 +7,102 @@
### Functions ### ### Functions ###
################# #################
function usage () { function usage () {
echo "Usage: ./$(basename "$0") [-mpPr] <DISK> <HOSTNAME>" echo "Usage: ./$(basename "$0") [-mpPr] <DISK> <HOSTNAME>"
} }
function disk_check () { function disk_check () {
DISK_TYPE=$(file "$1" | awk '{ print $2$3 }') DISK_TYPE=$(file "$1" | awk '{ print $2$3 }')
if [ "$DISK_TYPE" != "blockspecial" ]; then if [ "$DISK_TYPE" != "blockspecial" ]; then
echo "ERROR: Disk '$1' is not a block device" echo "ERROR: Disk '$1' is not a block device"
exit 1 exit 1
fi fi
} }
function disk_status () { function disk_status () {
OUTPUT=$(wipefs "$1") OUTPUT=$(wipefs "$1")
if [ -n "$OUTPUT" ]; then if [ -n "$OUTPUT" ]; then
echo "ERROR: $1 is not empty" echo "ERROR: $1 is not empty"
echo "$OUTPUT" echo "$OUTPUT"
exit 1 exit 1
fi fi
} }
function password_prompt () { function password_prompt () {
unset PASSWORD_PROMPT_RESULT unset PASSWORD_PROMPT_RESULT
while true; do while true; do
read -r -s -p "${1}: " password read -r -s -p "${1}: " password
echo '' echo ''
read -r -s -p "${1} (confirm): " password_confirm read -r -s -p "${1} (confirm): " password_confirm
echo '' echo ''
if [ "$password" == "$password_confirm" ]; then if [ "$password" == "$password_confirm" ]; then
if [ -z "$password" ]; then if [ -z "$password" ]; then
echo "Password can not be empty, try again." echo "Password can not be empty, try again."
else else
break break
fi fi
else else
echo "Passwords did not match, try again." echo "Passwords did not match, try again."
fi fi
done done
PASSWORD_PROMPT_RESULT="$password" PASSWORD_PROMPT_RESULT="$password"
export PASSWORD_PROMPT_RESULT export PASSWORD_PROMPT_RESULT
} }
function disk_format () { function disk_format () {
sgdisk -n2:1M:+512M -t2:EF00 "$1" sgdisk -n2:1M:+512M -t2:EF00 "$1"
sgdisk -n3:0:+1G -t3:BF01 "$1" sgdisk -n3:0:+1G -t3:BF01 "$1"
sgdisk -n4:0:0 -t4:BF00 "$1" sgdisk -n4:0:0 -t4:BF00 "$1"
} }
function create_boot_pool () { function create_boot_pool () {
zpool create -f \ zpool create -f \
-o ashift=12 \ -o ashift=12 \
-o autotrim=on -d \ -o autotrim=on -d \
-o cachefile=/etc/zfs/zpool.cache \ -o cachefile=/etc/zfs/zpool.cache \
-o feature@async_destroy=enabled \ -o feature@async_destroy=enabled \
-o feature@bookmarks=enabled \ -o feature@bookmarks=enabled \
-o feature@embedded_data=enabled \ -o feature@embedded_data=enabled \
-o feature@empty_bpobj=enabled \ -o feature@empty_bpobj=enabled \
-o feature@enabled_txg=enabled \ -o feature@enabled_txg=enabled \
-o feature@extensible_dataset=enabled \ -o feature@extensible_dataset=enabled \
-o feature@filesystem_limits=enabled \ -o feature@filesystem_limits=enabled \
-o feature@hole_birth=enabled \ -o feature@hole_birth=enabled \
-o feature@large_blocks=enabled \ -o feature@large_blocks=enabled \
-o feature@livelist=enabled \ -o feature@livelist=enabled \
-o feature@lz4_compress=enabled \ -o feature@lz4_compress=enabled \
-o feature@spacemap_histogram=enabled \ -o feature@spacemap_histogram=enabled \
-o feature@zpool_checkpoint=enabled \ -o feature@zpool_checkpoint=enabled \
-O devices=off \ -O devices=off \
-O acltype=posixacl -O xattr=sa \ -O acltype=posixacl -O xattr=sa \
-O compression=lz4 \ -O compression=lz4 \
-O normalization=formD \ -O normalization=formD \
-O relatime=on \ -O relatime=on \
-O canmount=off -O mountpoint=/boot -R "$1" \ -O canmount=off -O mountpoint=/boot -R "$1" \
bpool "$2" bpool "$2"
} }
function create_root_pool () { function create_root_pool () {
echo "$3" | zpool create -f \ echo "$3" | zpool create -f \
-o ashift=12 \ -o ashift=12 \
-o autotrim=on \ -o autotrim=on \
-O encryption=on -O keylocation=prompt -O keyformat=passphrase \ -O encryption=on -O keylocation=prompt -O keyformat=passphrase \
-O acltype=posixacl -O xattr=sa -O dnodesize=auto \ -O acltype=posixacl -O xattr=sa -O dnodesize=auto \
-O compression=lz4 \ -O compression=lz4 \
-O normalization=formD \ -O normalization=formD \
-O relatime=on \ -O relatime=on \
-O canmount=off -O mountpoint=/ -R "$1" \ -O canmount=off -O mountpoint=/ -R "$1" \
rpool "$2" rpool "$2"
} }
function mirror_grub () {
umount /boot/efi
dd if="${1}-part2" of="${2}-part2"
efibootmgr -c -g -d "$2" -p 2 \
-L "debian-${3}" -l '\EFI\debian\grubx64.efi'
mount /boot/efi
}
################ ################
### Settings ### ### Settings ###
################ ################
@ -103,16 +111,17 @@ export DEBIAN_FRONTEND=noninteractive
CODENAME="bullseye" CODENAME="bullseye"
# Options # Options
while getopts ':m:p:P:r:' OPTION; do while getopts ':gm:p:P:r:' OPTION; do
case "$OPTION" in case "$OPTION" in
m) MIRROR="$OPTARG";; g) GRUB_MIRROR="true";;
p) ROOTPW="$OPTARG";; m) MIRROR="$OPTARG";;
P) RPOOLPW="$OPTARG";; p) ROOTPW="$OPTARG";;
r) ZFSROOT="$OPTARG";; P) RPOOLPW="$OPTARG";;
?) r) ZFSROOT="$OPTARG";;
usage ?)
exit 1;; usage
esac exit 1;;
esac
done done
shift "$((OPTIND -1))" shift "$((OPTIND -1))"
@ -120,41 +129,59 @@ shift "$((OPTIND -1))"
DISK=$1 DISK=$1
ZFSHOST=$2 ZFSHOST=$2
# Post-boot grub mirror?
if [ "$GRUB_MIRROR" == "true" ]; then
while true; do
echo -e "ORIGINAL GRUB: $DISK\nMIRROR TO: $MIRROR"
read -r -p "Would you like to mirror GRUB? [y/N]: " yn
case $yn in
[Yy]*)
disk_check "$DISK"
disk_check "$MIRROR"
mirror_grub "$DISK" "$MIRROR" 2
exit 0;;
?)
echo "ABORTED: User did not confirm mirroring"
exit 1;;
esac
done
fi
# Verify variables # Verify variables
[ -z "$ZFSROOT" ] && ZFSROOT="/mnt" [ -z "$ZFSROOT" ] && ZFSROOT="/mnt"
if [ -z "$DISK" ]; then if [ -z "$DISK" ]; then
echo "ERROR: DISK not set" echo "ERROR: DISK not set"
usage usage
exit 1 exit 1
fi fi
if [ -z "$ZFSHOST" ]; then if [ -z "$ZFSHOST" ]; then
echo "ERROR: HOSTNAME not set" echo "ERROR: HOSTNAME not set"
usage usage
exit 1 exit 1
fi fi
if [ -z "$ROOTPW" ]; then if [ -z "$ROOTPW" ]; then
password_prompt "Root Passphrase" password_prompt "Root Passphrase"
ROOTPW="$PASSWORD_PROMPT_RESULT" ROOTPW="$PASSWORD_PROMPT_RESULT"
unset PASSWORD_PROMPT_RESULT unset PASSWORD_PROMPT_RESULT
fi fi
if [ -z "$RPOOLPW" ]; then if [ -z "$RPOOLPW" ]; then
password_prompt "ZFS Encryption Passphrase" password_prompt "ZFS Encryption Passphrase"
RPOOLPW="$PASSWORD_PROMPT_RESULT" RPOOLPW="$PASSWORD_PROMPT_RESULT"
unset PASSWORD_PROMPT_RESULT unset PASSWORD_PROMPT_RESULT
fi fi
if [ "$DEBUG" == "true" ]; then if [ "$DEBUG" == "true" ]; then
echo "CODENAME=${CODENAME}" echo "CODENAME=${CODENAME}"
echo "DISK=${DISK}" echo "DISK=${DISK}"
echo "ZFSHOST=${ZFSHOST}" echo "ZFSHOST=${ZFSHOST}"
echo "ZFSROOT=${ZFSROOT}" echo "ZFSROOT=${ZFSROOT}"
echo "MIRROR=${MIRROR}" echo "MIRROR=${MIRROR}"
echo "ROOTPW=${ROOTPW}" echo "ROOTPW=${ROOTPW}"
echo "RPOOLPW=${RPOOLPW}" echo "RPOOLPW=${RPOOLPW}"
fi fi
# Are the DISK paths block devices? AND # Are the DISK paths block devices? AND
@ -162,8 +189,8 @@ fi
disk_check "$DISK" disk_check "$DISK"
disk_status "$DISK" disk_status "$DISK"
if [ -n "$MIRROR" ]; then if [ -n "$MIRROR" ]; then
disk_check "$MIRROR" disk_check "$MIRROR"
disk_status "$MIRROR" disk_status "$MIRROR"
fi fi
############################################### ###############################################
@ -202,16 +229,16 @@ disk_format "$DISK"
# 4. Create the boot pool # 4. Create the boot pool
if [ -z "$MIRROR" ]; then if [ -z "$MIRROR" ]; then
create_boot_pool "$ZFSROOT" "${DISK}3" create_boot_pool "$ZFSROOT" "${DISK}3"
else else
create_boot_pool "$ZFSROOT" "mirror ${DISK}3 ${MIRROR}3" create_boot_pool "$ZFSROOT" "mirror ${DISK}3 ${MIRROR}3"
fi fi
# 5. Create the root pool # 5. Create the root pool
if [ -z "$MIRROR" ]; then if [ -z "$MIRROR" ]; then
create_root_pool "$ZFSROOT" "${DISK}4" "$RPOOLPW" create_root_pool "$ZFSROOT" "${DISK}4" "$RPOOLPW"
else else
create_root_pool "$ZFSROOT" "mirror ${DISK}4 ${MIRROR}4" "$RPOOLPW" create_root_pool "$ZFSROOT" "mirror ${DISK}4 ${MIRROR}4" "$RPOOLPW"
fi fi
################################### ###################################
@ -303,6 +330,22 @@ EOF
# Copy DISK/MIRROR vars under ZFSROOT # Copy DISK/MIRROR vars under ZFSROOT
echo -e "DISK=${DISK}\nROOTPW=${ROOTPW}" > "$ZFSROOT/var/tmp/zfsenv" echo -e "DISK=${DISK}\nROOTPW=${ROOTPW}" > "$ZFSROOT/var/tmp/zfsenv"
# Copy self and GRUB mirror helper script into chroot
if [ -n "$MIRROR" ]; then
cp "$0" "$ZFSROOT/usr/local/bin/debianzfs"
chmod u+x "$ZFSROOT/usr/local/bin/debianzfs"
DDIF=$(find /dev/disk/by-id -lname ../../"$(basename "$DISK")" | tail -n1)
DDOF=$(find /dev/disk/by-id -lname ../../"$(basename "$MIRROR")" | tail -n1)
HELPER_SCRIPT="/root/MIRROR_GRUB_POSTINSTALL.sh"
cat <<-GRUBMIRROR > "${ZFSROOT}${HELPER_SCRIPT}"
#!/bin/bash
# Post-install GRUB mirror helper script
/usr/local/bin/debianzfs \
-gm $DDOF \
$DDIF
GRUBMIRROR
fi
# Bind # Bind
mount --make-private --rbind /dev /mnt/dev mount --make-private --rbind /dev /mnt/dev
mount --make-private --rbind /proc /mnt/proc mount --make-private --rbind /proc /mnt/proc
@ -403,7 +446,7 @@ update-grub
# 6. Install the boot loader # 6. Install the boot loader
# For UEFI booting, install GRUB to the ESP # For UEFI booting, install GRUB to the ESP
grub-install --target=x86_64-efi --efi-directory=/boot/efi \ grub-install --target=x86_64-efi --efi-directory=/boot/efi \
--bootloader-id=debian --recheck --no-floppy --bootloader-id=debian --recheck --no-floppy
# 7. Fix filesystem mount ordering # 7. Fix filesystem mount ordering
mkdir /etc/zfs/zfs-list.cache mkdir /etc/zfs/zfs-list.cache
@ -432,9 +475,11 @@ CHROOT
# 3. Run these commands in the LiveCD environment to unmount all filesystems # 3. Run these commands in the LiveCD environment to unmount all filesystems
mount | grep -v zfs | tac | awk '/\/mnt/ {print $3}' | \ mount | grep -v zfs | tac | awk '/\/mnt/ {print $3}' | \
xargs -I{} umount -lf {} xargs -I{} umount -lf {}
# 4. If this fails for rpool, mounting it on boot will fail and you will need to # 4. If this fails for rpool, mounting it on boot will fail and you will need to
# zpool import -f rpool, then exit in the initamfs prompt # zpool import -f rpool, then exit in the initamfs prompt
zpool export -a || exit 0 zpool export -a || exit 0
[ -n "$HELPER_SCRIPT" ] && \
echo "NOTICE: A GRUB mirror helper script was placed at $HELPER_SCRIPT"
exit 0 exit 0