X-Git-Url: https://iankelling.org/git/?a=blobdiff_plain;f=README;h=312d3305573c43c74fd6ee4184631fac99fbe425;hb=ed3681256885d295f39d5df60784d3281a2f8719;hp=e81a467a3ca9098b788ca7cffdfac84eda94f44f;hpb=c47175685b348735b3440e16851dde2cc39b6f3f;p=automated-distro-installer diff --git a/README b/README index e81a467..312d330 100644 --- a/README +++ b/README @@ -6,10 +6,11 @@ scripts which can run post boot so I use them on vps distributed image as well. Features people may find useful: installs encrypted trisquel, debian, -ubuntu, and arch (havne't done recently, probably a bit broken), in a -multi-boot setup using multiple subvolumes of a single btrfs filesystem. -Utilizes multiple disks, with scripts to automatically decrypt on -intentional reboots, but not after shutdown or power loss. +ubuntu, arch, and parabola (archlike install is likely broken, I've only +done pxe boots recently), in a multi-boot setup using multiple +subvolumes of a single btrfs filesystem. Utilizes multiple disks, with +scripts to automatically decrypt on intentional reboots, but not after +shutdown or power loss. Normal install mode for fai is using pxe, but on a libreboot system, there is no pxe. The pxe in a normal computer is nonfree @@ -64,15 +65,46 @@ scripts from https://iankelling.org/git, and of course there are some hostnames that are specific to my network. +# Per-host/install configuration -All scripts meant to be used directly are listed here: +Before doing a fai install, you will need to populate a class file. I +use one called 51-multi-boot, which you can see example of in +fai/config/class/50-host-classes. -# Scripts to setup the environment for the install -arch-pxe # Setup arch pxe boot server from an arch base image +Before doing a fai install, you will need to populate /q/root/luks and +/q/root/shadow, see their references. You might also want to copy +existing /etc/ssh/*host* to +/p/c/machine_specific/HOST/filesystem/etc/ssh. + +host-* luks keyfiles generated like: +head -c 2048 /dev/urandom | od | s dd of=/q/root/luks/host-demohost + +Configuration of which luks key to use is in +fai/config/hooks/partition.DEFAULT + +Configuration of which (if any) shadow file to use is in +fai/config/distro-install-common/end +and which shadow file / luks file(s) to copy into the new machine depends +on fai-redep arguments. + +# Scripts (meant to be used directly): + + +# Setup the environment for the install + +# create tiny autodiscover cd +fai-redep && sudo fai-cd -g $PWD/grub.cfg.autodiscover -f -A $BASEFILE_DIR/autodiscover.iso +# create normal fai cd (replace TARGET_HOST) +fai-redep -t TARGET_HOST && sudo fai-cd -M -g $PWD/grub.cfg.netinst -f $BASEFILE_DIR/netinst.iso +note, may need to set hostname, depending on config, +and some other things for environment not on your lan +for example see fai/config/class/LINODE.var. See linode notes below. + +mymk-basefile # Create basefiles for various distros +archlike-pxe # Setup pxe boot server from an archlike base image fai-redep # Deploy fai configuration to host "faiserver" -faiserver-revm # using pxe & preseed, create a vm which is a fai server faiserver-uninstall # uninstall fai-server faiserver-setup # install fai-server on the current machine myfai-chboot # setup fai tftp and nfs. useful for doing pxe-kexec @@ -82,10 +114,11 @@ wrt-setup # setup my router in general: dhcp, dns, etc. # Script to do a distro install +faiserver-revm # using pxe & preseed, create a vm which is a fai server dsfull # install & post-install a new fai distro arch-init-remote # install arch after it's been booted into it's setup env -fai-kexec # Kexec this or a remote machine using host faiserver -live-kexec # fai kexec from upstream live cds, e.g. curl live-kexec|bash +live-kexec # Kexec this or a remote machine using host faiserver. also + useful to run as curl live-kexec|bash # Test scripts @@ -106,14 +139,32 @@ fresize # resize swap or boot partitions in a host # Replacing a raid 10 disk +# i expect better results with newer kernel and btrfs progs than the default stretch +fai-server buster + pxe-server -S HOST fai + +# btrfs replace or delete. prefer replace. to setup partitions on replacement drive: +scp fai-wrapper HOST: +ssh root@HOST +. fai-wrapper +export SPECIAL_DISK=/dev/REPLACEMENT_DEV +/var/lib/fai/config/hooks/partition.DEFAULT + + ssh root@HOST +for x in /target/* /target; do umount $x; done cat >p PASSWORD HERE(ctrl-d ctrl-d) -for d in /dev/disk/by-id/ata*part1; do cryptsetup luksOpen --key-file p $d crypt_dev_${d##*/}; done -# btrfs replace disk # i forget the actual command +cd /dev/disk/by-id/ +for d in ata*part1; do cryptsetup luksOpen -d /root/p $d crypt_dev_$d; done x=(/dev/mapper/*part1); mount -o subvol=root_trisquelflidas $x /mnt +# btrfs fi show /mnt +# btrfs replace start -f /dev/mapper/OLD_DEV /dev/mapper/NEW_DEV /mnt +# btrfs replace status /mnt +# nohup btrfs dev delete /dev/sde1 /mnt mount -o subvol=boot_trisquelflidas /dev/sda3 /mnt/boot +# also replace or delete disk for boot for x in dev proc sys; do mount -o bind /$x /mnt/$x; done chroot /mnt /bin/bash # replace disk in fstab @@ -135,6 +186,26 @@ addgroup: The group `systemd-journal' already exists as a system group. Exiting. Operation failed: No such file or directory +# linode notes + +* create 2 disks, installer (3000 mb, raw), boot (remaining, raw) +* create 2 profiles w direct boot, no helpers: + * installer (sda=boot, sdb=installer, boot dev=sdb) + * boot (sda=boot) +* Boot into rescue mode, ssh in with lish, + curl url_to_some_fai_cd_created_image | dd of=/dev/sda + poweroff +* boot into installer. +* Lish shows console, at the end of install, it gives prompt because + logs failed to save remotely, check the logs, then reboot into boot + profile if all is well. If that doesn't happen, turn off lassie in + settings. + + + +# TODO +Change arch to archlike and to support arch and parabola + # License