easthighNerd/ZFSBootMenu-Root-Install
2
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: easthighNerd:modularize
Branches Tags
easthighNerd:main easthighNerd:modularize easthighNerd:pre-install easthighNerd:mmdebstrap
..
compare: easthighNerd:cda85111e7c649bc1aaf503f4a5a58cf497df6e6
Branches Tags
easthighNerd:modularize easthighNerd:pre-install easthighNerd:main easthighNerd:mmdebstrap

4 Commits
modularize ... cda85111e7

Author SHA1 Message Date
Jean (east-high-Nerd)
cda85111e7 Changed a hostname lookup from the ${HOST} variable to the hostname command 2025-07-11 20:48:36 -04:00
Jean (east-high-Nerd)
d1e3cedd1f Changed a hostname lookup from the ${HOST} variable to the hostname command 2025-07-11 20:47:43 -04:00
Jean (east-high-Nerd)
d85a175989 Fixed contrib.sources not writing to correct path. Changed tee's redirection from &> to 1> 2025-07-11 20:46:31 -04:00
Jean (east-high-Nerd)
39065008aa Replaced debootstrap with mmdebstrap, added packages from install.sh to --include for mmdebstrap, and commented out relevent section in install.sh 2025-07-11 20:24:57 -04:00
29 changed files with 1238 additions and 1540 deletions
Expand all files Collapse all files

1
.gitignore vendored
View File

@@ -1,3 +1,2 @@
archive.sh archive.sh
system.conf system.conf
*kate-swp

128
README.md
View File

@@ -1,18 +1,118 @@
# ZFSBootMenu Root Install # ZFSBootMenu Root Install
## (Re)Design Document ## Intro
The purpose of this branch is to modularize as many functions of the scripts as possible, i.e. by moving all Debian related commands into the Debian-specific script, move all EFI related commands into its own script, etc. Well howdy!
## Checklist Welcome to the ZFSBootMenu Root Install script!
[X] Rename all `base-` scripts to remove `base-`
[X] Move (at least almost) all Debian related commands and tasks to `debian.sh` This here script is designed to install (currently) either Debian or Fedora
[X] Move (at least almost) all Fedora related commands and tasks to `fedora.sh` with OpenZFS as the root filesystem, and utilize ZFSBootMenu for actually
[X] Move (at least almost) all elementary OS related commands and tasks to `elementary.sh` getting the system up and running (as opposed to i.e. GRUB2 or systemd-bootd)
[X] Rename flags in all distro specific scripts from numbered (i.e. `-1`, `-2`) to descriptive (i.e. `--mmdebstrap`, `--network-interfaces`)
[X] Move all EFI related commands and tasks to a new `efi.sh` script Some of the benefits of this setup include:
[X] Rename `mkfs.zfs.sh` to `zfs.sh` - Having a reliable copy-on-write (CoW) filesystem
[X] Point any distro-specific commands/tasks that are shared with Debian to use `debian.sh` to avoid any unnecessary duplication - Being able to easily create and rollback to snapshots from either the OS or ZFSBootMenu
[ ] Rewrite `README.md` - Easy backups by sending/receiving snapshots to local or remote locations, including being able to do a "raw send", where the data being sent is the raw encrypted data without the decryption key, useful for backing up to third-party backup services
[X] Rename all script-specific variables to lowercase with singular capital letters to seperate words in variable name - Having multiple version of an OS installed on the system via different root datasets (i.e. stable and testing versions, old and new versions, etc.)
[X] Update how `baseDir` is set using `realpath $(dirname "${0}")`
## Getting Started
**! THESE SCRIPTS ARE TO BE RUN ON THE LIVE MEDIUM OF THE OS YOU INTEND ON
INSTALLING AND AS THE ROOT USER !**
To use this script, you run the `menu.sh` script, and use its, well, menu to
go step by step through installing the OS you wish to have on your PC
The steps are as follows, and will be expanded on throughout this document:
- List
- Configure
- Partition
- Install
- Post Install
- Finalize
- WiFi Setup
## List
This lists all currently connected storage devices and network interfaces of the system
This is handy to know what devices and interfaces were picked up by the OS and the script, and to make sure that everything is "hunky-dory"
Storage devices are listed seperately for both /dev/ (i.e. sda, sdb), and for /dev/disk/by-id/ (i.e. ata-WD_Blue)
The latter method (/dev/disk/by-id/) is STRONGLY recommended when selecting the installation disk during configuration, and the former method (/dev/) should only be used in an environment where the latter method is unavailable (i.e. in a virtual machine)
## Configure
When run, this will guide you through creating a configuration file (system.conf) that is used throughout the script for various tasks
This includes:
- Disk type (SSD or HDD)
- Disk to install to
- Hostname of the machine
- Username of your new user account
- Whether to configure SWAP or not (SWAP will be equal to RAM x2)
- Whether to use encryption or not (ZFS native encryption is used)
## Partition
The disk selected during configuration will be completely wiped and
partitioned, and formatted with the ZFS filesystem
Debian or Fedora will be installed via their respective means for this setup (debootstrap for Debian, and an rsync for Fedora)
If encryption was configured on, you will enter a password for your new zpool during this step
The partition layout is as such:
- A 512MiB partition for EFI
- A RAMx2 partition for SWAP (if configured)
- A partition for ZFS (remaining space)
Multiple ZFS datatets are setup from this script, including (but not limited to):
- A dataset for the root filesystem (such as to allow multiple OSes)
- A dataset for your home directory
- A datatset for your config directory
- Seperate datasets for /srv, /tmp, /usr, /var, etc.
After this script has mostly concluded, you will be chrooted into the new installation to continue
Once the chroot has been exited, everything will be unmounted and the zpool exported
Afterwards, you will be notified to reboot the machine
## Install
This is where you finish installing the system
After being chrooted by the partition script, you'll run the menu script again from `/ZFSBootMenu Root Install/menu.sh` and begin this step
This is where the needed packages are installed, the system gets configured, and ZFSBootMenu is downloaded and EFI entries made
Exactly what needs doing depends on what OS is being installed (Debian or Fedora)
After completion, the post install script should be automatically ran
## Post Install
This is where the datasets for the individual user are created, as well as the user themselves
When installing Debian, this part will also have you select the desktop environment you wish to install (if any), and setup an APT hook to a script that takes a snapshot before any packages are installed, removed, or upgraded, to allow for easy rollback in the event of a botched package operation
## Finalize
This part ensures that timedatectl is set properly, as well as locks the root account, and sets up Flathub in user mode for installation of software packaged as Flatpaks
## WiFi Setup
This part is mostly obsolete
This script allows for the configuration of a WiFi network from the terminal, in the event that a wired connection is unavailable

52
adduser.sh
View File

@@ -1,52 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
printf \
'Adding user account...\n'
adduser ${username}
if [[ "${ID}" == 'fedora' ]]; then
printf \
'\033[?47h\033[2J\033[H'
cat << EOF
Enter a password for the new user account:
EOF
passwd \
${username}
printf \
'\033[?47l'
usermod \
-a \
-G \
audio,cdrom,dip,floppy,wheel,video,dialout \
${username}
else
if [[ -z "$(cat /etc/group | grep 'lpadmin')" ]]; then
groupadd --gid 108 lpadmin
fi
groups='audio,cdrom,dip,floppy,plugdev,sudo,video,dialout,lpadmin'
if [[ "${ID}" == 'debian' ]]; then
groups+=',netdev'
fi
usermod \
-a \
-G \
${groups} \
${username}
fi

28
apt-snapshot.sh
View File

@@ -1,28 +0,0 @@
#!/bin/bash
set -euo pipefail
cat << EOF | tee /usr/bin/zfs-system-snapshot-apt &> /dev/null
#!/bin/bash
set -euo pipefail
TIMESTAMP="\$(date +%Y_%m_%d-%H_%M_%S)"
if [[ -z "\$(zfs list -t snapshot | grep 'apt-\${TIMESTAMP}')" ]]; then
zfs snapshot \$(zfs mount | grep 'ROOT' | sed 's| .*||')@apt-\${TIMESTAMP} && printf "\n- Snapshot taken\n\n"
fi
EOF
chmod \
+x \
/usr/bin/zfs-system-snapshot-apt
printf \
'DPkg::Pre-Install-Pkgs {"/usr/bin/zfs-system-snapshot-apt";};\n' | \
tee /etc/apt/apt.conf.d/90-zfs_system-snapshot &> /dev/null
printf \
'DPkg::Post-Invoke {"apt moo";};\n' | \
tee /etc/apt/apt.conf.d/99-apt_moo &> /dev/null

22
boilerplate.sh
View File

@@ -1,22 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
printf "Enter name of new script (without file extension):\n${baseDir}/"
read -r newScript
cat << EOF | tee "${baseDir}/${newScript}.sh" &> /dev/null
#!/bin/bash
set -euo pipefail
baseDir="\$(realpath "\$(dirname "\${0}")")"
source \\
/etc/os-release
source \\
"\${baseDir}/system.conf"
EOF
chmod +x "${baseDir}/${newScript}.sh"

17
chroot.sh
View File

@@ -1,17 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
printf \
"\nNow chrooting into /mnt...\n\n"
if [[ "${*}" == *--continue* ]]; then
chroot \
/mnt \
"$(printf "${baseDir}\n" | sed 's|.*\/|\/|')/install.sh"
else
chroot \
/mnt
fi

110
configure.sh
View File

@@ -2,13 +2,13 @@
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
cat << EOF cat << EOF
####################################### #######################################
## ## ## ##
## $(cat "${baseDir}/title") Script ## ## $(cat "${BASEDIR}/title") Script ##
## ## ## ##
## Jean <jean@easthighnerd.net> ## ## Jean <jean@easthighnerd.net> ##
## ## ## ##
@@ -25,17 +25,17 @@ EOF
printf \ printf \
'zolFedoraVer="2-6"\n' | \ 'ZOL_FEDORA_VER="2-6"\n' | \
tee \ tee \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
printf \ printf \
'(NVMe) SSD or HDD?\n' '(NVMe) SSD or HDD?\n'
select option in 'SSD' 'HDD' select OPTION in 'SSD' 'HDD'
do do
case "${option}" in case "${OPTION}" in
'SSD'|'HDD') 'SSD'|'HDD')
break break
;; ;;
@@ -47,10 +47,10 @@ do
done done
printf \ printf \
"diskType=\"${option}\"\n" | \ "DISK_TYPE=\"${OPTION}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
@@ -59,9 +59,9 @@ printf \
printf \ printf \
'\nGet disk from:\n' '\nGet disk from:\n'
select option in '/dev/disk/by-id/' '/dev/' select OPTION in '/dev/disk/by-id/' '/dev/'
do do
case "${option}" in case "${OPTION}" in
'/dev/disk/by-id/'|'/dev/') '/dev/disk/by-id/'|'/dev/')
break break
;; ;;
@@ -75,26 +75,26 @@ done
printf \ printf \
'\033[2J\033[H' '\033[2J\033[H'
if [[ "${option}" == '/dev/disk/by-id/' ]]; then if [[ "${OPTION}" == '/dev/disk/by-id/' ]]; then
drives="$(ls -Ago /dev/disk/by-id/ | grep -v 'sr' | grep -v 'dm-' | grep -v 'nvme-eui.' | grep -v '\-part' | grep -v 'wwn-' | grep -v '_[1-9] -> ' | grep -v 'total' | sed 's|^.*\:[0-5][0-9] ||g; s| -> .*$||g' | tr -d '[:blank:]')" DRIVES="$(ls -Ago /dev/disk/by-id/ | grep -v 'sr' | grep -v 'dm-' | grep -v 'nvme-eui.' | grep -v '\-part' | grep -v 'wwn-' | grep -v '_[1-9] -> ' | grep -v 'total' | sed 's|^.*\:[0-5][0-9] ||g; s| -> .*$||g' | tr -d '[:blank:]')"
printf \ printf \
'\nSelect the disk you want to use:\n' '\nSelect the disk you want to use:\n'
drives=( ${drives} ) DRIVES=( ${DRIVES} )
shopt -s extglob shopt -s extglob
menu="@(${drives[0]}" MENU="@(${DRIVES[0]}"
for ((i=1;i<${#drives[@]};i++)); do for ((i=1;i<${#DRIVES[@]};i++)); do
menu+="|${drives[$i]}" MENU+="|${DRIVES[$i]}"
done done
menu+=")" MENU+=")"
select drive in "${drives[@]}" select DRIVE in "${DRIVES[@]}"
do do
case ${drive} in case ${DRIVE} in
${menu}) ${MENU})
break break
;; ;;
*) *)
@@ -105,32 +105,32 @@ if [[ "${option}" == '/dev/disk/by-id/' ]]; then
done done
printf \ printf \
"disk=\"/dev/disk/by-id/${drive}\"\n" | \ "DISK=\"/dev/disk/by-id/${DRIVE}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
elif [[ "${option}" == '/dev/' ]]; then elif [[ "${OPTION}" == '/dev/' ]]; then
drives="$(lsblk -do name | grep -v 'loop' | grep -v 'sr' | grep -v 'zram' | grep -v 'NAME' | tr -d '[:blank:]')" DRIVES="$(lsblk -do name | grep -v 'loop' | grep -v 'sr' | grep -v 'zram' | grep -v 'NAME' | tr -d '[:blank:]')"
printf \ printf \
'\nSelect the disk you want to use:\n' '\nSelect the disk you want to use:\n'
drives=( ${drives} ) DRIVES=( ${DRIVES} )
shopt -s extglob shopt -s extglob
menu="@(${drives[0]}" MENU="@(${DRIVES[0]}"
for ((i=1;i<${#drives[@]};i++)); do for ((i=1;i<${#DRIVES[@]};i++)); do
menu+="|${drives[$i]}" MENU+="|${DRIVES[$i]}"
done done
menu+=")" MENU+=")"
select drive in "${drives[@]}" select DRIVE in "${DRIVES[@]}"
do do
case ${drive} in case ${DRIVE} in
${menu}) ${MENU})
break break
;; ;;
*) *)
@@ -141,10 +141,10 @@ elif [[ "${option}" == '/dev/' ]]; then
done done
printf \ printf \
"disk=\"/dev/${drive}\"\n" | \ "DISK=\"/dev/${DRIVE}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
fi fi
@@ -152,52 +152,52 @@ fi
printf \ printf \
'\033[2J\033[H' '\033[2J\033[H'
hostname='-' HOSTNAME='-'
while [[ "${hostname}" == '-' ]] || [[ -z "${hostname}" ]] || [[ "${hostname}" = *' '* ]] || [[ "${hostname}" = *_* ]]; do while [[ "${HOSTNAME}" == '-' ]] || [[ -z "${HOSTNAME}" ]] || [[ "${HOSTNAME}" = *' '* ]] || [[ "${HOSTNAME}" = *_* ]]; do
printf \ printf \
'\nEnter a hostname for this machine (no spaces or underscores):\n' '\nEnter a hostname for this machine (no spaces or underscores):\n'
read \ read \
-r \ -r \
hostname HOSTNAME
if [[ "${hostname}" = *' '* ]] || [[ "${hostname}" = *_* ]]; then if [[ "${HOSTNAME}" = *' '* ]] || [[ "${HOSTNAME}" = *_* ]]; then
printf \ printf \
'ERROR:\tNo spaces or underscores in the hostname!\n' 'ERROR:\tNo spaces or underscores in the hostname!\n'
fi fi
done done
printf \ printf \
"hostname=\"${hostname}\"\n" | \ "HOSTNAME=\"${HOSTNAME}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
printf \ printf \
'\033[2J\033[H' '\033[2J\033[H'
username='-' USERNAME='-'
while [[ "${username}" == '-' ]] || [[ -z "${username}" ]] || [[ "${username}" = *' '* ]] || [[ "${username}" = *[A-Z]* ]]; do while [[ "${USERNAME}" == '-' ]] || [[ -z "${USERNAME}" ]] || [[ "${USERNAME}" = *' '* ]] || [[ "${USERNAME}" = *[A-Z]* ]]; do
printf \ printf \
'\nEnter a name for the new user account (lowercase, no spaces):\n' '\nEnter a name for the new user account (lowercase, no spaces):\n'
read \ read \
-r \ -r \
username USERNAME
if [[ "${username}" = *' '* ]] || [[ "${username}" = *[A-Z]* ]]; then if [[ "${USERNAME}" = *' '* ]] || [[ "${USERNAME}" = *[A-Z]* ]]; then
printf \ printf \
'ERROR:\tNo spaces or uppercase letters in the username!\n' 'ERROR:\tNo spaces or uppercase letters in the username!\n'
fi fi
done done
printf \ printf \
"username=\"${username}\"\n" | \ "USERNAME=\"${USERNAME}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
@@ -206,9 +206,9 @@ printf \
printf \ printf \
'\nEnable SWAP?\n' '\nEnable SWAP?\n'
select option in 'yes' 'no' select OPTION in 'yes' 'no'
do do
case "${option}" in case "${OPTION}" in
'yes'|'no') 'yes'|'no')
break break
;; ;;
@@ -220,10 +220,10 @@ do
done done
printf \ printf \
"enableSwap=\"${option}\"\n" | \ "ENABLE_SWAP=\"${OPTION}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
@@ -232,9 +232,9 @@ printf \
printf \ printf \
'\nEnable encryption?\n' '\nEnable encryption?\n'
select option in 'yes' 'no' select OPTION in 'yes' 'no'
do do
case "${option}" in case "${OPTION}" in
'yes'|'no') 'yes'|'no')
break break
;; ;;
@@ -246,10 +246,10 @@ do
done done
printf \ printf \
"encryption=\"${option}\"\n" | \ "ENCRYPTION=\"${OPTION}\"\n" | \
tee \ tee \
--append \ --append \
"${baseDir}/system.conf" \ "${BASEDIR}/system.conf" \
&> \ &> \
/dev/null /dev/null
@@ -258,7 +258,7 @@ printf \
cat << EOF cat << EOF
Configuration stored in '${baseDir}/system.conf' Configuration stored in '${BASEDIR}/system.conf'
Press any key to return to the main menu Press any key to return to the main menu
EOF EOF

232
debian.sh
View File

@@ -1,232 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
if [[ "${1}" == '--live' ]]; then
if [[ "${ID}" == 'debian' ]] && [[ ! "$(hostname)" == "debian-live" ]]; then
cat << EOF | tee /etc/apt/sources.list.d/contrib.sources 1> /dev/null
Enabled: yes
Types: deb
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}
Components: contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
EOF
fi
apt \
--update \
install \
--yes \
mmdebstrap \
gdisk \
linux-headers-generic \
systemd-timesyncd \
whois \
zfsutils-linux
fi
if [[ "${1}" == '--mmdebstrap' ]]; then
packages=(\
ca-certificates \
console-setup \
cryptsetup \
curl \
dosfstools \
dpkg-dev \
efibootmgr \
ethtool \
firmware-{ast,atheros,bnx{2,2x},brcm80211,iwlwifi,libertas,linux,realtek,zd1211} \
flatpak \
keyboard-configuration \
linux-{headers,image}-amd64 \
locales \
nano \
network-manager \
openssh-{client,server} \
popularity-contest \
printer-driver-all \
rsync \
sudo \
systemd-timesyncd \
tasksel \
zfs-initramfs \
zstd\
)
include="--include=${packages[0]}"
for ((i=1;i<${#packages[@]};i++)); do
include+=" --include=${packages[${i}]}"
done
mmdebstrap \
--skip=check/empty \
--components=main,non-free-firmware,contrib \
--mode=root \
--format=directory \
${include} \
"${VERSION_CODENAME}" \
/mnt
fi
if [[ "${1}" == '--network-interfaces' ]]; then
networkInterface=($(ip -br addr show | sed 's| .*$||g' | grep -v '^lo' | grep -v 'tailscale' | grep -v '^wg'))
shopt -s extglob
for ((i = 0; i < ${#networkInterface[@]}; i++)); do
cat << EOF | tee /mnt/etc/network/interfaces.d/${networkInterface[$i]} &> /dev/null
allow-hotplug ${networkInterface[$i]}
iface ${networkInterface[$i]} inet dhcp
EOF
done
fi
if [[ "${1}" == '--sources' ]]; then
cat << EOF | tee /mnt/etc/apt/sources.list.d/${VERSION_CODENAME}.sources &> /dev/null
# ${VERSION_CODENAME^}
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
# ${VERSION_CODENAME^} Security
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian-security/
Suites: ${VERSION_CODENAME}-security
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
# ${VERSION_CODENAME^} Updates
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}-updates
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
EOF
rm /mnt/etc/apt/sources.list
fi
if [[ "${1}" == '--dpkg-reconfigure' ]]; then
cat << EOF
Regardless of the language(s) you choose, be sure to enable 'en_US.UTF-8'!
Press any key to continue...
EOF
read -srn 1
dpkg-reconfigure \
locales \
tzdata \
keyboard-configuration \
console-setup
fi
if [[ "${1}" == '--purge-os-prober' ]]; then
apt \
purge \
--yes \
os-prober
fi
if [[ "${1}" == '--network-manager' ]]; then
cp \
/etc/NetworkManager/NetworkManager.conf \
/etc/NetworkManager/NetworkManager.conf.orig
cat \
/etc/NetworkManager/NetworkManager.conf.orig | \
sed 's|managed=false|managed=true|' | \
tee /etc/NetworkManager/NetworkManager.conf &> /dev/null
fi
if [[ "${1}" == '--contrib' ]]; then
cat << EOF | tee --append /etc/apt/sources.list.d/${VERSION_CODENAME}.sources &> /dev/null
# ${VERSION_CODENAME^} Backports
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}-backports
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
EOF
cat << EOF | tee /etc/apt/preferences.d/backports.pref &> /dev/null
Package: *
Pin: release n=${VERSION_CODENAME}*
Pin-Priority: 990
Package: linux-*
Pin: release n=${VERSION_CODENAME}-backports
Pin-Priority: -1
EOF
if [[ "${VERSION_CODENAME}" == 'bookworm' ]]; then
cat << EOF | tee --append /etc/apt/preferences.d/backports.pref &> /dev/null
Package: /wayland/
Pin: release n=${VERSION_CODENAME}-backports
Pin-Priority: -1
EOF
fi
fi
if [[ "${1}" == '--tasksel' ]]; then
if [[ ! -f /usr/bin/tasksel ]]; then
apt \
--update \
install \
--yes \
tasksel
fi
tasksel \
--new-install
fi
if [[ "${1}" == '--initramfs' ]]; then
printf \
"UMASK=0077\n" | \
tee /etc/initramfs-tools/conf.d/umask.conf &> /dev/null
update-initramfs \
-c \
-k all
fi
if [[ "${1}" == '--logrotate' ]]; then
for file in /etc/logrotate.d/* ; do
if grep -Eq "(^|[^#y])compress" "$file" ; then
sed -i -r "s/(^|[^#y])(compress)/\1#\2/" "$file"
fi
done
fi
if [[ "${1}" == '--systemctl-enable' ]]; then
systemctl \
enable \
zfs.target
systemctl \
enable \
zfs-import-cache
systemctl \
enable \
zfs-mount
systemctl \
enable \
zfs-import.target
fi

61
efi.sh
View File

@@ -1,61 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
"${baseDir}/system.conf"
mkdir \
-p \
/boot/efi/EFI/ZBM
mkdir \
-p \
/boot/efi/EFI/BOOT
curl \
--progress-bar \
--show-error \
--output \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
--location \
https://get.zfsbootmenu.org/efi
rsync \
-pogAXtlHrDx \
--stats \
--info=progress2 \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
/boot/efi/EFI/ZBM/VMLINUZ-BACKUP.EFI
rsync \
-pogAXtlHrDx \
--stats \
--info=progress2 \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
/boot/efi/EFI/BOOT/BOOTX64.EFI
rsync \
-pogAXtlHrDx \
--stats \
--info=progress2 \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
/boot/efi/EFI/BOOT/shellx64.efi
efibootmgr \
-c \
-d "${disk}" \
-p '1' \
-L 'ZFSBootMenu (Backup)' \
-l '\EFI\ZBM\VMLINUZ-BACKUP.EFI'
efibootmgr \
-c \
-d "${disk}" \
-p '1' \
-L 'ZFSBootMenu' \
-l '\EFI\ZBM\VMLINUZ.EFI'

199
elementary.sh
View File

@@ -1,199 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
if [[ "${1}" == '--mmdebstrap' ]]; then
packages=(\
console-setup \
cryptsetup \
curl \
dosfstools \
dpkg-dev \
efibootmgr \
ethtool \
flatpak \
keyboard-configuration \
linux-generic \
locales \
nano \
network-manager \
openssh-{client,server} \
popularity-contest \
rsync \
zfs-initramfs \
zstd\
)
include="--include=${packages[0]}"
for ((i=1;i<${#packages[@]};i++)); do
include+=" --include=${packages[${i}]}"
done
mmdebstrap \
--skip=check/empty \
--components=main,restricted,universe,multiverse \
--mode=root \
--format=directory \
${include} \
"${UBUNTU_VERSION_CODENAME}" \
/mnt
fi
if [[ "${1}" == '--sources' ]]; then
cat <<EOF >/mnt/etc/apt/sources.list.d/${UBUNTU_VERSION_CODENAME}.sources
# ${UBUNTU_VERSION_CODENAME^}
Enabled: yes
Types: deb deb-src
URIs: http://archive.ubuntu.com/ubuntu/
Suites: ${UBUNTU_VERSION_CODENAME}
Components: main restricted universe multiverse
Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg
# ${UBUNTU_VERSION_CODENAME^} Security
Enabled: yes
Types: deb deb-src
URIs: http://security.ubuntu.com/ubuntu/
Suites: ${UBUNTU_VERSION_CODENAME}-security
Components: main restricted universe multiverse
Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg
# ${UBUNTU_VERSION_CODENAME^} Updates
Enabled: yes
Types: deb deb-src
URIs: http://archive.ubuntu.com/ubuntu/
Suites: ${UBUNTU_VERSION_CODENAME}-updates
Components: main restricted universe multiverse
Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg
EOF
cat <<EOF >/mnt/etc/apt/sources.list.d/elementary.sources
Enabled: yes
Types: deb deb-src
URIs: https://ppa.launchpadcontent.net/elementary-os/stable/ubuntu
Suites: ${UBUNTU_VERSION_CODENAME}
Components: main
Signed-By: /etc/apt/trusted.gpg.d/elementary.key.asc
EOF
cat <<EOF >/mnt/etc/apt/sources.list.d/patches.sources
Enabled: yes
Types: deb deb-src
URIs: https://ppa.launchpadcontent.net/elementary-os/os-patches/ubuntu
Suites: ${UBUNTU_VERSION_CODENAME}
Components: main
Signed-By: /etc/apt/trusted.gpg.d/patches.key.asc
EOF
rm /mnt/etc/apt/sources.list
fi
if [[ "${1}" == '--skel' ]]; then
rsync -pogAXtlHrDx \
/etc/skel \
/mnt/etc
fi
if [[ "${1}" == '--elementary' ]]; then
cp \
/etc/os-release \
/mnt/etc
cp \
/etc/apt/trusted.gpg.d/{elementary,patches}.key.asc \
/mnt/etc/apt/trusted.gpg.d/
fi
if [[ "${1}" == '--network' ]]; then
mkdir \
-p \
/mnt/run/systemd/resolve/
mount \
--bind \
/run/systemd/resolve/ \
/mnt/run/systemd/resolve/
touch \
/mnt/etc/NetworkManager/conf.d/10-globally-managed-devices.conf
fi
if [[ "${1}" == '--apps' ]]; then
app=(\
io.elementary.calculator \
io.elementary.camera \
io.elementary.capnet-assist \
io.elementary.maps \
io.elementary.music \
io.elementary.screenshot \
io.elementary.videos \
org.gnome.Epiphany \
org.gnome.Evince \
org.gnome.FileRoller \
org.gnome.font-viewer\
)
apps="app/${app[0]}/x86_64/stable"
for ((i=1;i<${#app[@]};i++)); do
apps+=" app/${app[${i}]}/x86_64/stable"
done
flatpak \
install \
appcenter \
-y \
${apps}
fi
if [[ "${1}" == '--purge' ]]; then
apt \
purge \
--yes \
--autoremove \
gnome-software \
snapd
fi
if [[ "${1}" == '--desktop' ]]; then
apt \
install \
--yes \
elementary-desktop
fi
if [[ "${1}" == '--namarupa' ]]; then
curl \
--progress \
--location \
--remote-name \
--continue-at - \
--output-dir '/tmp' \
'https://github.com/lenemter/wingpanel-indicator-namarupa/raw/main/com.github.lenemter.wingpanel-indicator-namarupa.deb'
apt \
--update \
install \
--yes \
'/tmp/com.github.lenemter.wingpanel-indicator-namarupa.deb'
mkdir \
-p \
/home/${username}/.config/autostart
cp \
/etc/xdg/autostart/indicator-application.desktop \
/home/${username}/.config/autostart/
sed \
-i \
's/^OnlyShowIn.*/OnlyShowIn=Unity;GNOME;Pantheon;/' \
/home/${username}/.config/autostart/indicator-application.desktop
fi

128
fedora.sh
View File

@@ -1,128 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
if [[ "${1}" == '--live' ]]; then
if [[ "${VERSION_ID}" -lt '41' ]]; then
dnf config-manager \
--disable \
updates
else
dnf config-manager \
setopt \
updates.enabled=0
fi
dnf install \
-y \
https://zfsonlinux.org/fedora/zfs-release-${zolFedoraVer}$(rpm --eval "%{dist}").noarch.rpm
dnf install \
-y \
https://dl.fedoraproject.org/pub/fedora/linux/releases/${VERSION_ID}/Everything/x86_64/os/Packages/k/kernel-devel-$(uname -r).rpm
dnf install \
-y \
zfs \
gdisk
modprobe \
zfs
fi
if [[ "${1}" == '--rsync' ]]; then
mkdir -p /run/install
if [[ "${VERSION_ID}" -lt '41' ]]; then
mount /dev/mapper/live-base /run/install
else
mount /dev/live-base /run/install
fi
rsync -pogAXtlHrDx \
--stats \
--exclude=/boot/efi/* \
--exclude=/etc/machine-id \
--info=progress2 \
/run/install/ /mnt
fi
if [[ "${1}" == '--resolv-conf' ]]; then
mv /mnt/etc/resolv.conf \
/mnt/etc/resolv.conf.orig
cp -L \
/etc/resolv.conf \
/mnt/etc
fi
if [[ "${1}" == '--dracut' ]]; then
dracut \
--force \
--regenerate-all
fi
if [[ "${1}" == '--zfs-install' ]]; then
if [[ "${encryption}" == 'yes' ]]; then
cat << EOF | tee /etc/dracut.conf.d/zol.conf &> /dev/null
nofsck="yes"
add_dracutmodules+=" zfs "
omit_dracutmodules+=" btrfs "
install_items+=" /etc/zfs/keys/${hostname,,}.key "
EOF
else
cat <<EOF >/etc/dracut.conf.d/zol.conf
nofsck="yes"
add_dracutmodules+=" zfs "
omit_dracutmodules+=" btrfs "
EOF
fi
if [[ "${VERSION_ID}" -lt '41' ]]; then
dnf \
config-manager \
--disable \
updates
else
dnf \
config-manager \
setopt \
updates.enabled=0
fi
dnf \
install \
-y \
https://dl.fedoraproject.org/pub/fedora/linux/releases/${VERSION_ID}/Everything/x86_64/os/Packages/k/kernel-devel-$(uname -r).rpm
dnf \
--releasever=${VERSION_ID} \
install \
-y \
https://zfsonlinux.org/fedora/zfs-release-${ZOL_FEDORA_VER}$(rpm --eval "%{dist}").noarch.rpm
dnf \
install \
-y \
zfs \
zfs-dracut
if [[ "${VERSION_ID}" -lt '41' ]]; then
dnf \
config-manager \
--enable \
updates
else
dnf \
config-manager \
setopt \
updates.enabled=1
fi
fi

2
finalize.sh
View File

@@ -2,7 +2,7 @@
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
printf '\033[?47l\012' printf '\033[?47l\012'

59
home-fix-setup.sh
View File

@@ -1,59 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
cat << EOF | tee /usr/bin/home-fix.sh &> /dev/null
#!/bin/bash
set -euo pipefail
chown -R ${username}:${username} /home/${username}
sudo -u ${username} cp -a /etc/skel/. /home/${username}
if [[ ! -z "\$(find -P /home/${username}/ | grep '\.face')" ]]; then
find -P /home/${username}/ | grep '\.face' | xargs -d '\n' -I {} rm {}
fi
if [[ ! -z "\$(find -P /var/spool/cron | grep 'root')" ]]; then
rm \$(find -P /var/spool/cron | grep 'root')
fi
printf "\$(date +%Y-%m-%d\ %H:%M:%S) I did the thing\n" | tee /var/log/home-fix.log &> /dev/null
if [[ -f '/usr/bin/home-fix.sh' ]]; then
rm /usr/bin/home-fix.sh
fi
zfs snapshot ${hostname,,}/ROOT/${ID}@home-fix
zfs snapshot -r ${hostname,,}/home/${username}@home-fix
EOF
chmod \
+x \
/usr/bin/home-fix.sh
if [[ "${ID}" == 'fedora' ]]; then
printf \
"@reboot\tsudo -u ${username} '${baseDir}/finalize.sh'\n@reboot\t/usr/bin/home-fix.sh\n" | \
tee /var/spool/cron/root &> /dev/null
elif [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
printf \
"@reboot\tsudo -u ${username} '${baseDir}/finalize.sh'\n@reboot\t/usr/bin/home-fix.sh\n" | \
tee /var/spool/cron/crontabs/root &> /dev/null
chown \
:crontab \
/var/spool/cron/crontabs/root
chmod \
0600 \
/var/spool/cron/crontabs/root
fi

7
host-id.sh
View File

@@ -1,7 +0,0 @@
#!/bin/bash
set -euo pipefail
cp \
/etc/hostid \
/mnt/etc/

15
hostname.sh
View File

@@ -1,15 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
"${baseDir}/system.conf"
printf \
"${hostname}\n" | tee /mnt/etc/hostname &> /dev/null
printf \
"127.0.1.1\t${hostname}\n" | tee --append /mnt/etc/hosts &> /dev/null

296
install.sh
View File

@@ -1,7 +1,7 @@
#!/bin/bash #!/bin/bash
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
printf \ printf \
'\033[?47l\012' '\033[?47l\012'
@@ -9,7 +9,7 @@ printf \
cat << EOF cat << EOF
####################################### #######################################
## ## ## ##
## $(cat "${baseDir}/title") Script ## ## $(cat "${BASEDIR}/title") Script ##
## ## ## ##
## Jean <jean@easthighnerd.net> ## ## Jean <jean@easthighnerd.net> ##
## ## ## ##
@@ -27,35 +27,187 @@ EOF
source \ source \
/etc/os-release /etc/os-release
source \ source \
"${baseDir}/system.conf" "${BASEDIR}/system.conf"
if [[ ! "${DISK}" == **/dev/disk/by-id/** ]]; then
if [[ "${DISK}" == **/dev/nvme** ]]; then
PART1='p1'
PART2='p2'
else
PART1='1'
PART2='2'
fi
else
PART1='-part1'
PART2='-part2'
fi
if [[ ! -f "/etc/mtab" ]]; then if [[ ! -f "/etc/mtab" ]]; then
"${baseDir}/mtab.sh" ln \
-s \
/proc/self/mounts \
/etc/mtab
fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
apt \
update
fi fi
if [[ "${ID}" == 'fedora' ]]; then if [[ "${ID}" == 'fedora' ]]; then
"${baseDir}/fedora.sh" --zfs-install if [[ "${ENCRYPTION}" == 'yes' ]]; then
fi cat << EOF | tee /etc/dracut.conf.d/zol.conf &> /dev/null
nofsck="yes"
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then add_dracutmodules+=" zfs "
"${baseDir}/debian.sh" --dpkg-reconfigure omit_dracutmodules+=" btrfs "
fi install_items+=" /etc/zfs/keys/${HOSTNAME,,}.key "
EOF
"${baseDir}/partition.sh" --efi else
cat <<EOF >/etc/dracut.conf.d/zol.conf
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then nofsck="yes"
if [[ -e '/usr/bin/os-prober' ]]; then add_dracutmodules+=" zfs "
"${baseDir}/debian.sh" --purge-os-prober omit_dracutmodules+=" btrfs "
EOF
fi fi
fi fi
if [[ "${ID}" == 'elementary' ]]; then if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --desktop apt \
install \
--yes \
--no-install-recommends \
console-setup \
cryptsetup \
curl \
dpkg-dev \
efibootmgr \
ethtool \
flatpak \
keyboard-configuration \
linux-generic \
locales \
nano \
network-manager \
openssh-{client,server} \
popularity-contest
# elif [[ "${ID}" == 'debian' ]]; then
# apt \
# install \
# --yes \
# console-setup \
# cryptsetup \
# curl \
# dpkg-dev \
# efibootmgr \
# ethtool \
# firmware-{ast,atheros,bnx{2,2x},brcm80211,ipw2x00,iwlwifi,libertas,linux,realtek,zd1211} \
# flatpak \
# keyboard-configuration \
# linux-{headers,image}-amd64 \
# locales \
# nano \
# network-manager \
# openssh-{client,server} \
# popularity-contest \
# printer-driver-all \
# tasksel
elif [[ "${ID}" == 'fedora' ]]; then
if [[ "${VERSION_ID}" -lt '41' ]]; then
dnf \
config-manager \
--disable \
updates
else
dnf \
config-manager \
setopt \
updates.enabled=0
fi
"${baseDir}/elementary.sh" --purge dnf \
install \
-y \
https://dl.fedoraproject.org/pub/fedora/linux/releases/${VERSION_ID}/Everything/x86_64/os/Packages/k/kernel-devel-$(uname -r).rpm
"${baseDir}/elementary.sh" --apps dnf \
--releasever=${VERSION_ID} \
install \
-y \
https://zfsonlinux.org/fedora/zfs-release-${ZOL_FEDORA_VER}$(rpm --eval "%{dist}").noarch.rpm
dnf \
install \
-y \
zfs \
zfs-dracut
if [[ "${VERSION_ID}" -lt '41' ]]; then
dnf \
config-manager \
--enable \
updates
else
dnf \
config-manager \
setopt \
updates.enabled=1
fi
fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
cat << EOF
Regardless of the language(s) you choose, be sure to enable 'en_US.UTF-8'!
Press any key to continue...
EOF
read -srn 1
dpkg-reconfigure \
locales \
tzdata \
keyboard-configuration \
console-setup
apt install \
--yes \
dosfstools \
systemd-timesyncd \
zfs-initramfs
fi
if [[ "${ID}" == 'debian' ]]; then
printf \
'REMAKE_INITRD=yes\n' | \
tee /etc/dkms/zfs.conf &> /dev/null
fi
if [[ ! "${*}" = *--no-part* ]]; then
mkdosfs \
-F 32 \
-s 1 \
-n EFI \
${DISK}${PART1}
fi
mkdir \
-p \
/boot/efi
printf \
"/dev/disk/by-uuid/$(blkid -s UUID -o value ${DISK}${PART1}) /boot/efi vfat defaults 0 0\n" | \
tee --append /etc/fstab &> /dev/null
sleep 5
mount \
/boot/efi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
apt \
purge \
--yes \
os-prober
fi fi
printf \ printf \
@@ -71,32 +223,116 @@ passwd
printf \ printf \
'\033[?47l' '\033[?47l'
"${baseDir}/swap.sh" if [[ "${ENABLE_SWAP}" == "yes" ]]; then
printf \
"swap\t${DISK}${PART2}\t/dev/random\tswap,cipher=aes-xts-plain64,size=512\n" | \
tee /etc/crypttab &> /dev/null
printf \
'dev/mapper/swap\tnone\tswap\tsw\t0\t0\n' | \
tee --append /etc/fstab &> /dev/null
fi
if [[ "${ID}" == 'debian' ]]; then if [[ "${ID}" == 'debian' ]]; then
"${baseDir}/debian.sh" --network-manager cp \
/etc/NetworkManager/NetworkManager.conf \
/etc/NetworkManager/NetworkManager.conf.orig
cat \
/etc/NetworkManager/NetworkManager.conf.orig | \
sed 's|managed=false|managed=true|' | \
tee /etc/NetworkManager/NetworkManager.conf &> /dev/null
fi fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/debian.sh" --initramfs printf \
"UMASK=0077\n" | \
tee /etc/initramfs-tools/conf.d/umask.conf &> /dev/null
update-initramfs \
-c \
-k all
elif [[ "${ID}" == 'fedora' ]]; then elif [[ "${ID}" == 'fedora' ]]; then
"${baseDir}/fedora.sh" --dracut dracut \
--force \
--regenerate-all
fi fi
"${baseDir}/zfs.sh" --splash zfs \
set \
org.zfsbootmenu:commandline='quiet splash rhgb noresume' \
${HOSTNAME,,}/ROOT/${ID}
if [[ ! -z "$(zfs list | grep 'keystore')" ]]; then if [[ ! "${*}" = *--no-part* ]]; then
"${baseDir}/zfs.sh" --keystore if [[ ! -z "$(zfs list | grep 'keystore')" ]]; then
zfs \
set \
org.zfsbootmenu:keysource=${HOSTNAME,,}/keystore \
${HOSTNAME,,}
fi
fi fi
"${baseDir}/efi.sh" if [[ ! "${*}" = *--no-part* ]]; then
mkdir \
-p \
/boot/efi/EFI/ZBM
mkdir \
-p \
/boot/efi/EFI/BOOT
curl \
--progress-bar \
--show-error \
--output \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
--location \
https://get.zfsbootmenu.org/efi
cp \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
/boot/efi/EFI/ZBM/VMLINUZ-BACKUP.EFI
cp \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
/boot/efi/EFI/BOOT/BOOTX64.EFI
cp \
/boot/efi/EFI/ZBM/VMLINUZ.EFI \
/boot/efi/EFI/BOOT/shellx64.efi
efibootmgr \
-c \
-d "${DISK}" \
-p '1' \
-L 'ZFSBootMenu (Backup)' \
-l '\EFI\ZBM\VMLINUZ-BACKUP.EFI'
efibootmgr \
-c \
-d "${DISK}" \
-p '1' \
-L 'ZFSBootMenu' \
-l '\EFI\ZBM\VMLINUZ.EFI'
fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/debian.sh" --systemctl-enable systemctl \
enable \
zfs.target
systemctl \
enable \
zfs-import-cache
systemctl \
enable \
zfs-mount
systemctl \
enable \
zfs-import.target
fi fi
zfs \ zfs \
snapshot \ snapshot \
${hostname,,}/ROOT/${ID}@install ${HOSTNAME,,}/ROOT/${ID}@install
"${baseDir}/post-inst.sh" "${BASEDIR}/post-inst.sh"

16
list.sh
View File

@@ -2,18 +2,18 @@
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
disksById="$(ls -Ago /dev/disk/by-id/ | grep -v 'sr' | grep -v 'dm-' | grep -v 'nvme-eui.' | grep -v '\-part' | grep -v 'wwn-' | grep -v '_[1-9] -> ' | grep -v 'total' | sed -e 's|^.*\:[0-5][0-9] ||g')" DISKS_BY_ID="$(ls -Ago /dev/disk/by-id/ | grep -v 'sr' | grep -v 'dm-' | grep -v 'nvme-eui.' | grep -v '\-part' | grep -v 'wwn-' | grep -v '_[1-9] -> ' | grep -v 'total' | sed -e 's|^.*\:[0-5][0-9] ||g')"
disks="$(lsblk -do name | grep -v 'loop' | grep -v 'sr' | grep -v 'zram' | grep -v 'NAME')" DISKS="$(lsblk -do name | grep -v 'loop' | grep -v 'sr' | grep -v 'zram' | grep -v 'NAME')"
networkInterfaces="$(ip -br addr show | sed -e 's| .*$||g' | grep -v '^lo' | grep -v 'tailscale' | grep -v '^wg')" NETWORK_INTERFACES="$(ip -br addr show | sed -e 's| .*$||g' | grep -v '^lo' | grep -v 'tailscale' | grep -v '^wg')"
cat << EOF cat << EOF
####################################### #######################################
## ## ## ##
## $(cat "${baseDir}/title") Script ## ## $(cat "${BASEDIR}/title") Script ##
## ## ## ##
## Jean <jean@easthighnerd.net> ## ## Jean <jean@easthighnerd.net> ##
## ## ## ##
@@ -34,13 +34,13 @@ EOF
cat << EOF cat << EOF
Available disks (/dev/disk/by-id/): Available disks (/dev/disk/by-id/):
${disksById} ${DISKS_BY_ID}
Available disks (/dev/): Available disks (/dev/):
${disks} ${DISKS}
Available network interfaces: Available network interfaces:
${networkInterfaces} ${NETWORK_INTERFACES}
Press any key to return to the main menu Press any key to return to the main menu

38
menu.sh
View File

@@ -2,17 +2,17 @@
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
option='start' OPTION='start'
while [[ ! "${option}" == 'Exit' ]]; do while [[ ! "${OPTION}" == 'Exit' ]]; do
printf '\033[?47h\033[2J\033[H' printf '\033[?47h\033[2J\033[H'
cat << EOF cat << EOF
####################################### #######################################
## ## ## ##
## $(cat "${baseDir}/title") Script ## ## $(cat "${BASEDIR}/title") Script ##
## ## ## ##
## Jean <jean@easthighnerd.net> ## ## Jean <jean@easthighnerd.net> ##
## ## ## ##
@@ -26,10 +26,10 @@ while [[ ! "${option}" == 'Exit' ]]; do
################# #################
EOF EOF
select option in 'List' 'Configure' 'Install' 'Finalize' 'WiFi Setup' 'Exit' select OPTION in 'List' 'Configure' 'Partition' 'Install' 'WiFi Setup' 'Post Install' 'Finalize' 'Exit'
do do
case "${option}" in case "${OPTION}" in
'List'|'Configure'|'Install'|'Finalize'|'WiFi Setup'|'Exit') 'List'|'Configure'|'Partition'|'Install'|'WiFi Setup'|'Post Install'|'Finalize'|'Exit')
break break
;; ;;
*) *)
@@ -40,16 +40,20 @@ EOF
printf '\033[2J\033[H' printf '\033[2J\033[H'
if [[ "${option}" == 'List' ]]; then if [[ "${OPTION}" == 'List' ]]; then
"${baseDir}/list.sh" "${BASEDIR}/list.sh"
elif [[ "${option}" == 'Configure' ]]; then elif [[ "${OPTION}" == 'Configure' ]]; then
"${baseDir}/configure.sh" "${BASEDIR}/configure.sh"
elif [[ "${option}" == 'Install' ]]; then elif [[ "${OPTION}" == 'Partition' ]]; then
"${baseDir}/pre-inst.sh" "${BASEDIR}/partition.sh"
elif [[ "${option}" == 'Finalize' ]]; then elif [[ "${OPTION}" == 'Install' ]]; then
"${baseDir}/finalize.sh" "${BASEDIR}/install.sh"
elif [[ "${option}" == 'WiFi Setup' ]]; then elif [[ "${OPTION}" == 'WiFi Setup' ]]; then
"${baseDir}/wifi.sh" "${BASEDIR}/wifi.sh"
elif [[ "${OPTION}" == 'Post Install' ]]; then
"${BASEDIR}/post-inst.sh"
elif [[ "${OPTION}" == 'Finalize' ]]; then
"${BASEDIR}/finalize.sh"
fi fi
printf '\033[?47h\033[2J\033[H' printf '\033[?47h\033[2J\033[H'

17
mkdir-tmpfs.sh
View File

@@ -1,17 +0,0 @@
#!/bin/bash
set -euo pipefail
mkdir \
-p \
/mnt/run
mount \
-t \
tmpfs \
tmpfs \
/mnt/run
mkdir \
-p \
/mnt/run/lock

28
mount.sh
View File

@@ -1,28 +0,0 @@
#!/bin/bash
set -euo pipefail
mount \
--types proc \
proc \
/mnt/proc
mount \
--types sysfs \
sys \
/mnt/sys
mount \
--bind \
/dev \
/mnt/dev
mount \
--types devpts \
pts \
/mnt/dev/pts
mount \
--types efivarfs \
efivarfs \
/mnt/sys/firmware/efi/efivars

8
mtab.sh
View File

@@ -1,8 +0,0 @@
#!/bin/bash
set -euo pipefail
ln \
-s \
/proc/self/mounts \
/etc/mtab

627
partition.sh
View File

@@ -1,96 +1,613 @@
#!/bin/bash #!/bin/bash
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
printf \
'\033[?47l\012'
cat << EOF
#######################################
## ##
## $(cat "${BASEDIR}/title") Script ##
## ##
## Jean <jean@easthighnerd.net> ##
## ##
#######################################
#################
## ##
## Partition ##
## ##
#################
EOF
source \ source \
/etc/os-release /etc/os-release
source \ source \
"${baseDir}/system.conf" "${BASEDIR}/system.conf"
if [[ ! "${DISK}" == **/dev/disk/by-id/** ]]; then
if [[ "${1}" == '--disk' ]]; then if [[ "${DISK}" == **/dev/nvme** ]]; then
if [[ ! "${disk}" == **/dev/disk/by-id/** ]]; then PART3='p3'
if [[ "${disk}" == **/dev/nvme** ]]; then
part3='p3'
else
part3='3'
fi
else else
part3='-part3' PART3='3'
fi
else
PART3='-part3'
fi
if [[ "${ID}" == 'debian' ]]; then
if [[ ! "$(hostname)" == "debian-live" ]]; then
cat << EOF | tee /etc/apt/sources.list.d/contrib.sources 1> /dev/null
Enabled: yes
Types: deb
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}
Components: contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
EOF
fi
fi
if [[ -f '/usr/bin/gsettings' ]]; then
gsettings \
set \
org.gnome.desktop.media-handling \
automount \
false
fi
if [[ "${ID}" == 'debian' ]]; then
apt \
update && \
apt \
install \
--yes \
mmdebstrap \
gdisk \
zfsutils-linux \
systemd-timesyncd
elif [[ "${ID}" == 'fedora' ]]; then
if [[ "${VERSION_ID}" -lt '41' ]]; then
dnf config-manager \
--disable \
updates
else
dnf config-manager \
setopt \
updates.enabled=0
fi fi
swapoff \ dnf install \
--all -y \
https://zfsonlinux.org/fedora/zfs-release-${ZOL_FEDORA_VER}$(rpm --eval "%{dist}").noarch.rpm
dnf install \
-y \
https://dl.fedoraproject.org/pub/fedora/linux/releases/${VERSION_ID}/Everything/x86_64/os/Packages/k/kernel-devel-$(uname -r).rpm
dnf install \
-y \
zfs \
gdisk
modprobe \
zfs
fi
timedatectl
if [[ ! "$(hostname)" == "debian-live" ]]; then
zgenhostid \
-f \
0x00bab10c
fi
swapoff \
--all
if [[ ! "${*}" = *--no-part* ]]; then
wipefs \ wipefs \
-a \ -a \
${disk} ${DISK}
if [[ ! "${diskType}" == 'HDD' ]]; then if [[ ! "${DISK_TYPE}" == 'HDD' ]]; then
blkdiscard \ blkdiscard \
-f \ -f \
${disk} ${DISK}
fi fi
sgdisk \ sgdisk \
--zap-all \ --zap-all \
${disk} ${DISK}
sgdisk \ sgdisk \
-n1:0:+512M \ -n1:0:+512M \
-t1:EF00 \ -t1:EF00 \
-c1:EFI \ -c1:EFI \
${disk} ${DISK}
if [[ "${enableSwap}" == "yes" ]]; then if [[ "${ENABLE_SWAP}" == "yes" ]]; then
swapSize="$(((($(vmstat -sS M | grep 'total memory' | sed 's/ M total memory//') / 1024) + 1) * 2))" SWAP_SIZE="$(((($(vmstat -sS M | grep 'total memory' | sed 's/ M total memory//') / 1024) + 1) * 2))"
if [[ "${swapSize#}" -gt '16' ]]; then
swapSize='16'
fi
sgdisk \ sgdisk \
-n2:0:+${swapSize}G \ -n2:0:+${SWAP_SIZE}G \
-t2:BF02 \ -t2:BF02 \
-c2:swap \ -c2:swap \
${disk} ${DISK}
fi fi
sgdisk \ sgdisk \
-n3:0:0 \ -n3:0:0 \
-t3:BF00 \ -t3:BF00 \
-c3:${ID} \ -c3:${ID} \
${disk} ${DISK}
fi
if [[ "${1}" == '--efi' ]]; then
if [[ ! "${disk}" == **/dev/disk/by-id/** ]]; then
if [[ "${disk}" == **/dev/nvme** ]]; then
part1='p1'
else
part1='1'
fi
else
part1='-part1'
fi
mkdosfs \
-F 32 \
-s 1 \
-n EFI \
${disk}${part1}
mkdir \
-p \
/boot/efi
printf \
"/dev/disk/by-uuid/$(blkid -s UUID -o value ${disk}${part1}) /boot/efi vfat defaults 0 0\n" | \
tee --append /etc/fstab &> /dev/null
sleep 5 sleep 5
mount \ if [[ "${ENCRYPTION}" == 'yes' ]]; then
/boot/efi ZPOOL_PASSWORD='A'
ZPOOL_PASSWORD_VERIFY='B'
printf \
'\033[?47h\033[2J\033[H'
while [[ ! "${ZPOOL_PASSWORD}" == "${ZPOOL_PASSWORD_VERIFY}" ]] || [[ -z "${ZPOOL_PASSWORD}" ]] || [[ "${#ZPOOL_PASSWORD}" -lt '8' ]]; do
printf \
"\nEnter a password to encrypt your root pool (minimum 8 characters):\n"
read \
-r \
-s \
ZPOOL_PASSWORD
printf \
"\nVerify the password to encrypt your root pool:\n"
read \
-r \
-s \
ZPOOL_PASSWORD_VERIFY
if [[ ! "${ZPOOL_PASSWORD}" == "${ZPOOL_PASSWORD_VERIFY}" ]]; then
printf \
"ERROR:\tPasswords do not match!\n"
elif [[ -z "${ZPOOL_PASSWORD}" ]]; then
printf \
"ERROR:\tPassword is empty!\n"
elif [[ "${#ZPOOL_PASSWORD}" -lt '8' ]]; then
printf \
"ERROR:\tPassword is too short!\n"
fi
done
printf \
'\033[?47l'
mkdir \
-p \
/etc/zfs/keys/
printf \
"${ZPOOL_PASSWORD}\n" | tee /etc/zfs/keys/${HOSTNAME,,}.key &> /dev/null
chmod \
000 \
/etc/zfs/keys/${HOSTNAME,,}.key
zpool create \
-o ashift=12 \
-o autotrim=on \
-o compatibility=openzfs-2.1-linux \
-O encryption=on \
-O keylocation=file:///etc/zfs/keys/${HOSTNAME,,}.key \
-O keyformat=passphrase \
-O acltype=posixacl \
-O xattr=sa \
-O dnodesize=auto \
-O compression=zstd-3 \
-O normalization=formD \
-O relatime=on \
-O canmount=off \
-O mountpoint=/ \
-R /mnt \
${HOSTNAME,,} \
${DISK}${PART3}
else
zpool create \
-o ashift=12 \
-o autotrim=on \
-o compatibility=openzfs-2.1-linux \
-O encryption=off \
-O acltype=posixacl \
-O xattr=sa \
-O dnodesize=auto \
-O compression=zstd-3 \
-O normalization=formD \
-O relatime=on \
-O canmount=off \
-O mountpoint=/ \
-R /mnt \
${HOSTNAME,,} \
${DISK}${PART3}
fi
zfs create \
-o canmount=off \
-o mountpoint=none \
${HOSTNAME,,}/ROOT
else
zpool import \
-N \
-R \
/mnt \
${HOSTNAME,,}
zfs load-key \
-r \
-L prompt \
${HOSTNAME,,}
fi fi
zfs create \
-o canmount=noauto \
-o mountpoint=/ \
${HOSTNAME,,}/ROOT/${ID}
zfs mount \
${HOSTNAME,,}/ROOT/${ID}
if [[ ! "${*}" = *--no-part* ]]; then
zfs create \
${HOSTNAME,,}/home
zfs create \
-o mountpoint=/root \
${HOSTNAME,,}/home/root
chmod \
700 \
/mnt/root
zfs create \
-o canmount=off \
-o mountpoint=/var \
${HOSTNAME,,}/var
zfs create \
-o canmount=off \
${HOSTNAME,,}/var/lib
zfs create \
${HOSTNAME,,}/var/log
zfs create \
${HOSTNAME,,}/var/spool
zfs create \
-o com.sun:auto-snapshot=false \
${HOSTNAME,,}/var/cache
zfs create \
-o com.sun:auto-snapshot=false \
${HOSTNAME,,}/var/lib/nfs
zfs create \
-o com.sun:auto-snapshot=false \
${HOSTNAME,,}/var/tmp
chmod \
1777 \
/mnt/var/tmp
zfs create \
-o mountpoint=/srv \
${HOSTNAME,,}/srv
zfs create \
-o canmount=off \
-o mountpoint=/usr \
${HOSTNAME,,}/usr
zfs create \
${HOSTNAME,,}/usr/local
zfs create \
${HOSTNAME,,}/var/games
zfs create \
${HOSTNAME,,}/var/lib/AccountsService
zfs create \
${HOSTNAME,,}/var/lib/NetworkManager
zfs create \
${HOSTNAME,,}/var/www
zfs create \
-o com.sun:auto-snapshot=false \
-o mountpoint=/tmp \
${HOSTNAME,,}/tmp
if [[ "${ENCRYPTION}" == 'yes' ]]; then
zfs create \
-o com.sun:auto-snapshot=false \
-o mountpoint=/etc/zfs/keys \
${HOSTNAME,,}/keystore
fi
zpool set \
bootfs=${HOSTNAME,,}/ROOT/${ID} \
${HOSTNAME,,}
else
zfs mount \
${HOSTNAME,,}/home
zfs mount \
${HOSTNAME,,}/home/root
zfs mount \
${HOSTNAME,,}/var/log
zfs mount \
${HOSTNAME,,}/var/spool
zfs mount \
${HOSTNAME,,}/var/cache
zfs mount \
${HOSTNAME,,}/var/lib/nfs
zfs mount \
${HOSTNAME,,}/var/tmp
zfs mount \
${HOSTNAME,,}/srv
zfs mount \
${HOSTNAME,,}/usr/local
zfs mount \
${HOSTNAME,,}/var/games
zfs mount \
${HOSTNAME,,}/var/lib/AccountsService
zfs mount \
${HOSTNAME,,}/var/lib/NetworkManager
zfs mount \
${HOSTNAME,,}/var/www
zfs mount \
${HOSTNAME,,}/keystore
fi
if [[ "${ID}" == 'fedora' ]]; then
mkdir -p /run/install
if [[ "${VERSION_ID}" -lt '41' ]]; then
mount /dev/mapper/live-base /run/install
else
mount /dev/live-base /run/install
fi
rsync -pogAXtlHrDx \
--stats \
--exclude=/boot/efi/* \
--exclude=/etc/machine-id \
--info=progress2 \
/run/install/ /mnt
fi
if [[ ! "${*}" = *--no-part* ]]; then
zfs create \
${HOSTNAME,,}/var/mail
chmod \
1777 \
/mnt/tmp
else
zfs mount \
${HOSTNAME,,}/var/mail
fi
mkdir \
-p \
/mnt/run
mount \
-t \
tmpfs \
tmpfs \
/mnt/run
mkdir \
-p \
/mnt/run/lock
if [[ "${ID}" == 'elementary' ]]; then
mmdebstrap \
--include='' \
"${UBUNTU_VERSION_CODENAME}" \
/mnt
elif [[ "${ID}" == 'debian' ]]; then
mmdebstrap \
--include=console-setup,\
cryptsetup,\
curl,\
dpkg-dev,\
efibootmgr,\
ethtool,\
firmware-{ast,atheros,bnx{2,2x},brcm80211,ipw2x00,iwlwifi,libertas,linux,realtek,zd1211},\
flatpak,\
keyboard-configuration,\
linux-{headers,image}-amd64,\
locales,\
nano,\
network-manager,\
openssh-{client,server},\
popularity-contest,\
printer-driver-all,\
tasksel \
"${VERSION_CODENAME}" \
/mnt
fi
printf \
"${HOSTNAME}\n" | tee /mnt/etc/hostname &> /dev/null
printf \
"127.0.1.1\t${HOSTNAME}\n" | tee --append /mnt/etc/hosts &> /dev/null
if [[ "${ID}" == 'debian' ]]; then
NETWORK_INTERFACE=($(ip -br addr show | sed 's| .*$||g' | grep -v '^lo' | grep -v 'tailscale' | grep -v '^wg'))
shopt -s extglob
for ((i = 0; i < ${#NETWORK_INTERFACE[@]}; i++)); do
cat << EOF | tee /mnt/etc/network/interfaces.d/${NETWORK_INTERFACE[$i]} &> /dev/null
allow-hotplug ${NETWORK_INTERFACE[$i]}
iface ${NETWORK_INTERFACE[$i]} inet dhcp
EOF
done
fi
if [[ "${ID}" == 'elementary' ]]; then
cat <<EOF >/mnt/etc/apt/sources.list
deb http://archive.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME} main restricted universe multiverse
deb-src http://archive.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME} main restricted universe multiverse
deb http://security.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME}-security main restricted universe multiverse
deb-src http://security.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME}-security main restricted universe multiverse
deb http://archive.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME}-updates main restricted universe multiverse
deb-src http://archive.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME}-updates main restricted universe multiverse
EOF
cat <<EOF >/mnt/etc/apt/sources.list.d/elementary.list
deb https://ppa.launchpadcontent.net/elementary-os/stable/ubuntu ${UBUNTU_VERSION_CODENAME} main
deb-src https://ppa.launchpadcontent.net/elementary-os/stable/ubuntu ${UBUNTU_VERSION_CODENAME} main
EOF
cat <<EOF >/mnt/etc/apt/sources.list.d/patches.list
deb https://ppa.launchpadcontent.net/elementary-os/os-patches/ubuntu ${UBUNTU_VERSION_CODENAME} main
deb-src https://ppa.launchpadcontent.net/elementary-os/os-patches/ubuntu ${UBUNTU_VERSION_CODENAME} main
EOF
elif [[ "${ID}" == 'debian' ]]; then
cat << EOF | tee /mnt/etc/apt/sources.list.d/${VERSION_CODENAME}.sources &> /dev/null
# ${VERSION_CODENAME^}
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
# ${VERSION_CODENAME^} Security
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian-security/
Suites: ${VERSION_CODENAME}-security
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
# ${VERSION_CODENAME^} Updates
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}-updates
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
EOF
fi
mount \
--rbind \
/dev \
/mnt/dev
mount \
--rbind \
/proc \
/mnt/proc
mount \
--rbind \
/sys \
/mnt/sys
cp \
/etc/hostid \
/mnt/etc/
if [[ "${ID}" == 'fedora' ]]; then
mv /mnt/etc/resolv.conf \
/mnt/etc/resolv.conf.orig
cp -L \
/etc/resolv.conf \
/mnt/etc
fi
rsync -pogAXtlHrDx \
"${BASEDIR}" \
/mnt
if [[ "${ID}" == 'elementary' ]]; then
rsync -pogAXtlHrDx \
/etc/skel \
/mnt/etc
fi
if [[ ! "${*}" = *--no-part* ]]; then
if [[ -f "/etc/zfs/keys/${HOSTNAME,,}.key" ]]; then
cp \
/etc/zfs/keys/${HOSTNAME,,}.key \
/mnt/etc/zfs/keys/
fi
fi
if [[ "${ID}" == 'elementary' ]]; then
cp \
/etc/os-release \
/mnt/etc
cp \
/etc/apt/trusted.gpg.d/{elementary,patches}.key.asc \
/mnt/etc/apt/trusted.gpg.d/
fi
printf \
"\nNow chrooting into /mnt...\n\n"
chroot \
/mnt \
bash \
--login
mount | grep -v zfs | tac | awk '/\/mnt/ {print $3}' | xargs -I {} umount -Rlf {}
if [[ "${ID}" == 'fedora' ]]; then
umount \
-nR \
/mnt
fi
zpool \
export \
-a
printf \
'\033[?47h\033[2J\033[H'
cat <<EOF
Script has finished running
Please reboot your computer
Press any key to return to the main menu
EOF
read -srn 1

220
post-inst.sh
View File

@@ -2,12 +2,7 @@
set -euo pipefail set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
printf \ printf \
@@ -16,7 +11,7 @@ printf \
cat << EOF cat << EOF
####################################### #######################################
## ## ## ##
## $(cat "${baseDir}/title") Script ## ## $(cat "${BASEDIR}/title") Script ##
## ## ## ##
## Jean <jean@easthighnerd.net> ## ## Jean <jean@easthighnerd.net> ##
## ## ## ##
@@ -33,46 +28,225 @@ cat << EOF
EOF EOF
"${baseDir}/zfs.sh" --home source \
/etc/os-release
"${baseDir}/adduser.sh" source \
"${BASEDIR}/system.conf"
if [[ ! "${*}" = *--no-part* ]]; then
zfs create\
${HOSTNAME,,}/home/${USERNAME}
zfs create\
${HOSTNAME,,}/home/${USERNAME}/.config
zfs create\
-o canmount=off\
${HOSTNAME,,}/home/${USERNAME}/.var
zfs create\
${HOSTNAME,,}/home/${USERNAME}/.var/app
zfs create\
-o canmount=off\
${HOSTNAME,,}/home/${USERNAME}/.local
zfs create\
-o canmount=off\
${HOSTNAME,,}/home/${USERNAME}/.local/share
zfs create\
${HOSTNAME,,}/home/${USERNAME}/.local/share/flatpak
printf \
'Adding user account...\n'
adduser ${USERNAME}
else
adduser --no-create-home ${USERNAME}
fi
if [[ "${ID}" == 'fedora' ]]; then
printf \
'\033[?47h\033[2J\033[H'
cat << EOF
Enter a password for the new user account:
EOF
passwd \
${USERNAME}
printf \
'\033[?47l'
usermod \
-a \
-G \
audio,cdrom,dip,floppy,wheel,video,dialout \
${USERNAME}
else
usermod \
-a \
-G \
audio,cdrom,dip,floppy,netdev,plugdev,sudo,video,dialout,lpadmin \
${USERNAME}
fi
if [[ "${ID}" == 'elementary' ]]; then if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --namarupa cat << EOF > /etc/apt/sources.list.d/backports.list
deb http://archive.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME}-backports main restricted universe multiverse
deb-src http://archive.ubuntu.com/ubuntu/ ${UBUNTU_VERSION_CODENAME}-backports main restricted universe multiverse
EOF
cat << EOF > /etc/apt/preferences.d/backports.pref
Package: *
Pin: release n=${UBUNTU_VERSION_CODENAME}*
Pin-Priority: 990
Package: linux* /wayland/
Pin: release n=${UBUNTU_VERSION_CODENAME}-backports
Pin-Priority: -1
EOF
elif [[ "${ID}" == 'debian' ]]; then elif [[ "${ID}" == 'debian' ]]; then
"${baseDir}/debian.sh" --contrib cat << EOF | tee /etc/apt/sources.list.d/backports.sources &> /dev/null
Enabled: yes
Types: deb deb-src
URIs: http://deb.debian.org/debian/
Suites: ${VERSION_CODENAME}-backports
Components: main non-free-firmware contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
EOF
cat << EOF | tee /etc/apt/preferences.d/backports.pref &> /dev/null
Package: *
Pin: release n=${VERSION_CODENAME}*
Pin-Priority: 990
EOF
if [[ "${VERSION_CODENAME}" == 'bookworm' ]]; then
cat << EOF | tee --append /etc/apt/preferences.d/backports.pref &> /dev/null
Package: /wayland/
Pin: release n=${VERSION_CODENAME}-backports
Pin-Priority: -1
EOF
fi
fi fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
apt \ apt \
--update \
dist-upgrade \ dist-upgrade \
--yes --yes
fi fi
if [[ "${ID}" = 'debian' ]]; then if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/debian.sh" --tasksel apt \
install \
--yes \
--autoremove \
elementary-desktop
elif [[ "${ID}" = 'debian' ]]; then
if [[ ! -f /usr/bin/tasksel ]]; then
apt \
install \
--yes \
tasksel
fi
tasksel \
--new-install
fi fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/debian.sh" --logrotate for file in /etc/logrotate.d/* ; do
if grep -Eq "(^|[^#y])compress" "$file" ; then
sed -i -r "s/(^|[^#y])(compress)/\1#\2/" "$file"
fi
done
"${baseDir}/apt-snapshot.sh" cat << EOF | tee /usr/bin/zfs-system-snapshot-apt &> /dev/null
#!/bin/bash
set -euo pipefail
TIMESTAMP="\$(date +%Y_%m_%d-%H_%M_%S)"
if [[ -z "\$(zfs list -t snapshot | grep 'apt-\${TIMESTAMP}')" ]]; then
zfs snapshot \$(zfs mount | grep 'ROOT' | sed 's| .*||')@apt-\${TIMESTAMP} && printf "\n- Snapshot taken\n\n"
fi
EOF
chmod \
+x \
/usr/bin/zfs-system-snapshot-apt
printf \
'DPkg::Pre-Install-Pkgs {"/usr/bin/zfs-system-snapshot-apt";};\n' | \
tee /etc/apt/apt.conf.d/90-zfs_system-snapshot &> /dev/null
printf \
'DPkg::Post-Invoke {"apt moo";};\n' | \
tee /etc/apt/apt.conf.d/99-apt_moo &> /dev/null
fi fi
"${baseDir}/home-fix-setup.sh" if [[ ! "${*}" = *--no-part* ]]; then
cat << EOF | tee /usr/bin/home-fix.sh &> /dev/null
#!/bin/bash
set -euo pipefail
if [[ ! -f '/usr/bin/shutdown' ]]; then chown -R ${USERNAME}:${USERNAME} /home/${USERNAME}
ln -s /sbin/shutdown /usr/bin/shutdown
sudo -u ${USERNAME} cp -a /etc/skel/. /home/${USERNAME}
if [[ ! -z "$(find -P /home/${USERNAME}/ | grep '\.face')" ]]; then
find -P /home/${USERNAME}/ | grep '\.face' | xargs -d '\n' -I {} rm {}
fi fi
if [[ ! -f '/usr/bin/reboot' ]]; then if [[ ! -z "\$(find -P /var/spool/cron | grep 'root')" ]]; then
ln -s /sbin/reboot /usr/bin/reboot rm \$(find -P /var/spool/cron | grep 'root')
fi
printf "\$(date +%Y-%m-%d\ %H:%M:%S) I did the thing\n" | tee /var/log/home-fix.log &> /dev/null
if [[ -f '/usr/bin/home-fix.sh' ]]; then
rm /usr/bin/home-fix.sh
fi
zfs snapshot ${HOSTNAME,,}/ROOT/${ID}@home-fix
zfs snapshot -r ${HOSTNAME,,}/home/${USERNAME}@home-fix
EOF
chmod \
+x \
/usr/bin/home-fix.sh
if [[ "${ID}" == 'fedora' ]]; then
printf \
'@reboot /usr/bin/home-fix.sh\n' | \
tee /var/spool/cron/root &> /dev/null
elif [[ "${ID}" == 'debian' ]]; then
printf \
'@reboot /usr/bin/home-fix.sh\n' | \
tee /var/spool/cron/crontabs/root &> /dev/null
chown \
:crontab \
/var/spool/cron/crontabs/root
chmod \
0600 \
/var/spool/cron/crontabs/root
fi
fi fi
zfs \ zfs \
snapshot \ snapshot \
${hostname,,}/ROOT/${ID}@post-install ${HOSTNAME,,}/ROOT/${ID}@post-install
printf \ printf \
'\033[?47h\033[2J\033[H' '\033[?47h\033[2J\033[H'
@@ -81,7 +255,7 @@ cat << EOF
Script has finished running Script has finished running
Please exit the chroot Please reboot your computer
Press any key to return to the main menu Press any key to return to the main menu
EOF EOF

125
pre-inst.sh
View File

@@ -1,125 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
printf \
'\033[?47l\012'
cat << EOF
#######################################
## ##
## $(cat "${baseDir}/title") Script ##
## ##
## Jean <jean@easthighnerd.net> ##
## ##
#######################################
####################
## ##
## Pre ##
## Installation ##
## ##
####################
EOF
source \
/etc/os-release
source \
"${baseDir}/system.conf"
if [[ -f '/usr/bin/gsettings' ]]; then
gsettings \
set \
org.gnome.desktop.media-handling \
automount \
false
fi
if [[ "${ID}" == 'debian' ]] || [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/debian.sh" --live
elif [[ "${ID}" == 'fedora' ]]; then
"${baseDir}/fedora.sh" --live
fi
timedatectl
if [[ ! "$(hostname)" == "debian-live" ]]; then
"${baseDir}/zfs.sh" --host-id
fi
"${baseDir}/partition.sh" --disk
sleep 5
"${baseDir}/zfs.sh" --format
"${baseDir}/zfs.sh" --create
"${baseDir}/mkdir-tmpfs.sh"
if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --mmdebstrap
elif [[ "${ID}" == 'debian' ]]; then
"${baseDir}/debian.sh" --mmdebstrap
elif [[ "${ID}" == 'fedora' ]]; then
"${baseDir}/fedora.sh" --rsync
fi
"${baseDir}/hostname.sh"
if [[ "${ID}" == 'debian' ]]; then
"${baseDir}/debian.sh" --network-interfaces
elif [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --network
fi
if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --sources
elif [[ "${ID}" == 'debian' ]]; then
"${baseDir}/debian.sh" --sources
fi
"${baseDir}/mount.sh"
"${baseDir}/host-id.sh"
if [[ "${ID}" == 'fedora' ]]; then
"${baseDir}/fedora.sh" --resolv-conf
fi
"${baseDir}/rsync.sh"
if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --skel
fi
if [[ -f "/etc/zfs/keys/${hostname,,}.key" ]]; then
"${baseDir}/zfs.sh" --key
fi
if [[ "${ID}" == 'elementary' ]]; then
"${baseDir}/elementary.sh" --elementary
fi
"${baseDir}/chroot.sh" --continue
"${baseDir}/zfs.sh" --unmount
printf \
'\033[?47h\033[2J\033[H'
cat <<EOF
Script has finished running
Please reboot your computer
Press any key to return to the main menu
EOF
read -srn 1

18
rbind.sh
View File

@@ -1,18 +0,0 @@
#!/bin/bash
set -euo pipefail
mount \
--rbind \
/dev \
/mnt/dev
mount \
--rbind \
/proc \
/mnt/proc
mount \
--rbind \
/sys \
/mnt/sys

9
rsync.sh
View File

@@ -1,9 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
rsync -pogAXtlHrDx \
"${baseDir}" \
/mnt

29
swap.sh
View File

@@ -1,29 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
"${baseDir}/system.conf"
if [[ ! "${disk}" == **/dev/disk/by-id/** ]]; then
if [[ "${disk}" == **/dev/nvme** ]]; then
part2='p2'
else
part2='2'
fi
else
part2='-part2'
fi
if [[ "${enableSwap}" == "yes" ]]; then
printf \
"swap\t${disk}${part2}\t/dev/random\tswap,cipher=aes-xts-plain64,size=512\n" | \
tee /etc/crypttab &> /dev/null
printf \
'dev/mapper/swap\tnone\tswap\tsw\t0\t0\n' | \
tee --append /etc/fstab &> /dev/null
fi

8
wifi.sh
View File

@@ -7,13 +7,13 @@ set -euo pipefail
# resolvectl status | grep 'Link' | sed -e 's|^.*(||g; s|).*||g' | while read -r INTERFACE; do resolvectl dns ${INTERFACE} 9.9.9.9; done && sleep 3 && nmcli device status | grep -v 'DEVICE' | grep -v 'lo' | sed -e 's| .*||g' | while read -r INTERFACE; do nmcli device disconnect ${INTERFACE}; sleep 1; nmcli device connect ${INTERFACE}; done # resolvectl status | grep 'Link' | sed -e 's|^.*(||g; s|).*||g' | while read -r INTERFACE; do resolvectl dns ${INTERFACE} 9.9.9.9; done && sleep 3 && nmcli device status | grep -v 'DEVICE' | grep -v 'lo' | sed -e 's| .*||g' | while read -r INTERFACE; do nmcli device disconnect ${INTERFACE}; sleep 1; nmcli device connect ${INTERFACE}; done
baseDir="$(realpath "$(dirname "${0}")")" BASEDIR="$(dirname "${0}" | sed "s|^\.|${PWD}|")"
cat << EOF cat << EOF
####################################### #######################################
## ## ## ##
## $(cat "${baseDir}/title") Script ## ## $(cat "${BASEDIR}/title") Script ##
## ## ## ##
## Jean <jean@easthighnerd.net> ## ## Jean <jean@easthighnerd.net> ##
## ## ## ##
@@ -35,9 +35,9 @@ nmcli radio wifi on
nmcli device wifi list nmcli device wifi list
printf "Enter the SSID of the WiFi network you wish to connect to:\n" printf "Enter the SSID of the WiFi network you wish to connect to:\n"
read -r wifiName read -r WIFI_NAME
nmcli --ask device wifi connect "${wifiName}" nmcli --ask device wifi connect ${WIFI_NAME}
cat << EOF cat << EOF

278
zfs.sh
View File

@@ -1,278 +0,0 @@
#!/bin/bash
set -euo pipefail
baseDir="$(realpath "$(dirname "${0}")")"
source \
/etc/os-release
source \
"${baseDir}/system.conf"
if [[ ! "${disk}" == **/dev/disk/by-id/** ]]; then
if [[ "${disk}" == **/dev/nvme** ]]; then
part3='p3'
else
part3='3'
fi
else
part3='-part3'
fi
if [[ "${1}" == '--format' ]]; then
if [[ "${encryption}" == 'yes' ]]; then
zpoolPassword='A'
zpoolPasswordVerify='B'
printf \
'\033[?47h\033[2J\033[H'
while [[ ! "${zpoolPassword}" == "${zpoolPasswordVerify}" ]] || [[ -z "${zpoolPassword}" ]] || [[ "${#zpoolPassword}" -lt '8' ]]; do
printf \
"Enter a password to encrypt your root pool (minimum 8 characters):\n"
read \
-r \
-s \
zpoolPassword
printf \
"Verify the password to encrypt your root pool:\n"
read \
-r \
-s \
zpoolPasswordVerify
if [[ ! "${zpoolPassword}" == "${zpoolPasswordVerify}" ]]; then
printf \
"ERROR:\tPasswords do not match!\n\n"
elif [[ -z "${zpoolPassword}" ]]; then
printf \
"ERROR:\tPassword is empty!\n\n"
elif [[ "${#zpoolPassword}" -lt '8' ]]; then
printf \
"ERROR:\tPassword is too short!\n\n"
fi
done
printf \
'\033[?47l'
mkdir \
-p \
/etc/zfs/keys/
printf \
"${zpoolPassword}\n" | tee /etc/zfs/keys/${hostname,,}.key &> /dev/null
chmod \
000 \
/etc/zfs/keys/${hostname,,}.key
zpool create \
-o ashift=12 \
-o autotrim=on \
-o compatibility=openzfs-2.1-linux \
-O encryption=on \
-O keylocation=file:///etc/zfs/keys/${hostname,,}.key \
-O keyformat=passphrase \
-O acltype=posixacl \
-O xattr=sa \
-O dnodesize=auto \
-O compression=zstd-3 \
-O normalization=formD \
-O relatime=on \
-O canmount=off \
-O mountpoint=/ \
-R /mnt \
${hostname,,} \
${disk}${part3}
else
zpool create \
-o ashift=12 \
-o autotrim=on \
-o compatibility=openzfs-2.1-linux \
-O encryption=off \
-O acltype=posixacl \
-O xattr=sa \
-O dnodesize=auto \
-O compression=zstd-3 \
-O normalization=formD \
-O relatime=on \
-O canmount=off \
-O mountpoint=/ \
-R /mnt \
${hostname,,} \
${disk}${part3}
fi
fi
if [[ "${1}" == '--create' ]]; then
zfs create \
-o canmount=off \
-o mountpoint=none \
${hostname,,}/ROOT
zfs create \
-o canmount=noauto \
-o mountpoint=/ \
${hostname,,}/ROOT/${ID}
zfs mount \
${hostname,,}/ROOT/${ID}
zfs create \
${hostname,,}/home
zfs create \
-o mountpoint=/root \
${hostname,,}/home/root
chmod \
700 \
/mnt/root
zfs create \
-o canmount=off \
-o mountpoint=/var \
${hostname,,}/var
zfs create \
-o canmount=off \
${hostname,,}/var/lib
zfs create \
${hostname,,}/var/log
zfs create \
${hostname,,}/var/spool
zfs create \
-o com.sun:auto-snapshot=false \
${hostname,,}/var/cache
zfs create \
-o com.sun:auto-snapshot=false \
${hostname,,}/var/lib/nfs
zfs create \
-o com.sun:auto-snapshot=false \
${hostname,,}/var/tmp
chmod \
1777 \
/mnt/var/tmp
zfs create \
-o mountpoint=/srv \
${hostname,,}/srv
zfs create \
-o canmount=off \
-o mountpoint=/usr \
${hostname,,}/usr
zfs create \
${hostname,,}/usr/local
zfs create \
${hostname,,}/var/games
zfs create \
${hostname,,}/var/lib/AccountsService
zfs create \
${hostname,,}/var/lib/NetworkManager
zfs create \
${hostname,,}/var/www
zfs create \
-o com.sun:auto-snapshot=false \
-o mountpoint=/tmp \
${hostname,,}/tmp
if [[ "${encryption}" == 'yes' ]]; then
zfs create \
-o com.sun:auto-snapshot=false \
-o mountpoint=/etc/zfs/keys \
${hostname,,}/keystore
fi
zpool set \
bootfs=${hostname,,}/ROOT/${ID} \
${hostname,,}
if [[ "${ID}" == 'fedora' ]]; then
"${baseDir}/fedora.sh" --rsync
fi
zfs create \
${hostname,,}/var/mail
chmod \
1777 \
/mnt/tmp
fi
if [[ "${1}" == '--key' ]]; then
cp \
/etc/zfs/keys/${hostname,,}.key \
/mnt/etc/zfs/keys/
fi
if [[ "${1}" == '--unmount' ]]; then
umount \
-nR \
/mnt
zpool \
export \
${hostname,,}
fi
if [[ "${1}" == '--host-id' ]]; then
zgenhostid \
-f \
0x00bab10c
fi
if [[ "${1}" == '--home' ]]; then
zfs create\
${hostname,,}/home/${username}
zfs create\
${hostname,,}/home/${username}/.config
zfs create\
-o canmount=off\
${hostname,,}/home/${username}/.var
zfs create\
${hostname,,}/home/${username}/.var/app
zfs create\
-o canmount=off\
${hostname,,}/home/${username}/.local
zfs create\
-o canmount=off\
${hostname,,}/home/${username}/.local/share
zfs create\
${hostname,,}/home/${username}/.local/share/flatpak
fi
if [[ "${1}" == '--keystore' ]]; then
zfs \
set \
org.zfsbootmenu:keysource=${hostname,,}/keystore \
${hostname,,}
fi
if [[ "${1}" == '--splash' ]]; then
zfs \
set \
org.zfsbootmenu:commandline='quiet splash rhgb noresume' \
${hostname,,}/ROOT/${ID}
fi