279 lines
4.8 KiB
Bash
Executable File
279 lines
4.8 KiB
Bash
Executable File
#!/bin/bash
|
|
set -euo pipefail
|
|
|
|
baseDir="$(realpath "$(dirname "${0}")")"
|
|
|
|
source \
|
|
/etc/os-release
|
|
source \
|
|
"${baseDir}/system.conf"
|
|
|
|
|
|
if [[ ! "${disk}" == **/dev/disk/by-id/** ]]; then
|
|
if [[ "${disk}" == **/dev/nvme** ]]; then
|
|
part3='p3'
|
|
else
|
|
part3='3'
|
|
fi
|
|
else
|
|
part3='-part3'
|
|
fi
|
|
|
|
|
|
if [[ "${1}" == '--format' ]]; then
|
|
if [[ "${encryption}" == 'yes' ]]; then
|
|
zpoolPassword='A'
|
|
zpoolPasswordVerify='B'
|
|
|
|
printf \
|
|
'\033[?47h\033[2J\033[H'
|
|
|
|
while [[ ! "${zpoolPassword}" == "${zpoolPasswordVerify}" ]] || [[ -z "${zpoolPassword}" ]] || [[ "${#zpoolPassword}" -lt '8' ]]; do
|
|
printf \
|
|
"Enter a password to encrypt your root pool (minimum 8 characters):\n"
|
|
read \
|
|
-r \
|
|
-s \
|
|
zpoolPassword
|
|
|
|
printf \
|
|
"Verify the password to encrypt your root pool:\n"
|
|
read \
|
|
-r \
|
|
-s \
|
|
zpoolPasswordVerify
|
|
|
|
if [[ ! "${zpoolPassword}" == "${zpoolPasswordVerify}" ]]; then
|
|
printf \
|
|
"ERROR:\tPasswords do not match!\n\n"
|
|
elif [[ -z "${zpoolPassword}" ]]; then
|
|
printf \
|
|
"ERROR:\tPassword is empty!\n\n"
|
|
elif [[ "${#zpoolPassword}" -lt '8' ]]; then
|
|
printf \
|
|
"ERROR:\tPassword is too short!\n\n"
|
|
fi
|
|
done
|
|
|
|
printf \
|
|
'\033[?47l'
|
|
|
|
mkdir \
|
|
-p \
|
|
/etc/zfs/keys/
|
|
|
|
printf \
|
|
"${zpoolPassword}\n" | tee /etc/zfs/keys/${hostname,,}.key &> /dev/null
|
|
|
|
chmod \
|
|
000 \
|
|
/etc/zfs/keys/${hostname,,}.key
|
|
|
|
zpool create \
|
|
-o ashift=12 \
|
|
-o autotrim=on \
|
|
-o compatibility=openzfs-2.1-linux \
|
|
-O encryption=on \
|
|
-O keylocation=file:///etc/zfs/keys/${hostname,,}.key \
|
|
-O keyformat=passphrase \
|
|
-O acltype=posixacl \
|
|
-O xattr=sa \
|
|
-O dnodesize=auto \
|
|
-O compression=zstd-3 \
|
|
-O normalization=formD \
|
|
-O relatime=on \
|
|
-O canmount=off \
|
|
-O mountpoint=/ \
|
|
-R /mnt \
|
|
${hostname,,} \
|
|
${disk}${part3}
|
|
else
|
|
zpool create \
|
|
-o ashift=12 \
|
|
-o autotrim=on \
|
|
-o compatibility=openzfs-2.1-linux \
|
|
-O encryption=off \
|
|
-O acltype=posixacl \
|
|
-O xattr=sa \
|
|
-O dnodesize=auto \
|
|
-O compression=zstd-3 \
|
|
-O normalization=formD \
|
|
-O relatime=on \
|
|
-O canmount=off \
|
|
-O mountpoint=/ \
|
|
-R /mnt \
|
|
${hostname,,} \
|
|
${disk}${part3}
|
|
fi
|
|
fi
|
|
|
|
if [[ "${1}" == '--create' ]]; then
|
|
zfs create \
|
|
-o canmount=off \
|
|
-o mountpoint=none \
|
|
${hostname,,}/ROOT
|
|
|
|
zfs create \
|
|
-o canmount=noauto \
|
|
-o mountpoint=/ \
|
|
${hostname,,}/ROOT/${ID}
|
|
|
|
zfs mount \
|
|
${hostname,,}/ROOT/${ID}
|
|
|
|
zfs create \
|
|
${hostname,,}/home
|
|
|
|
zfs create \
|
|
-o mountpoint=/root \
|
|
${hostname,,}/home/root
|
|
|
|
chmod \
|
|
700 \
|
|
/mnt/root
|
|
|
|
zfs create \
|
|
-o canmount=off \
|
|
-o mountpoint=/var \
|
|
${hostname,,}/var
|
|
|
|
zfs create \
|
|
-o canmount=off \
|
|
${hostname,,}/var/lib
|
|
|
|
zfs create \
|
|
${hostname,,}/var/log
|
|
|
|
zfs create \
|
|
${hostname,,}/var/spool
|
|
|
|
zfs create \
|
|
-o com.sun:auto-snapshot=false \
|
|
${hostname,,}/var/cache
|
|
|
|
zfs create \
|
|
-o com.sun:auto-snapshot=false \
|
|
${hostname,,}/var/lib/nfs
|
|
|
|
zfs create \
|
|
-o com.sun:auto-snapshot=false \
|
|
${hostname,,}/var/tmp
|
|
|
|
chmod \
|
|
1777 \
|
|
/mnt/var/tmp
|
|
|
|
zfs create \
|
|
-o mountpoint=/srv \
|
|
${hostname,,}/srv
|
|
|
|
zfs create \
|
|
-o canmount=off \
|
|
-o mountpoint=/usr \
|
|
${hostname,,}/usr
|
|
|
|
zfs create \
|
|
${hostname,,}/usr/local
|
|
|
|
zfs create \
|
|
${hostname,,}/var/games
|
|
|
|
zfs create \
|
|
${hostname,,}/var/lib/AccountsService
|
|
|
|
zfs create \
|
|
${hostname,,}/var/lib/NetworkManager
|
|
|
|
zfs create \
|
|
${hostname,,}/var/www
|
|
|
|
zfs create \
|
|
-o com.sun:auto-snapshot=false \
|
|
-o mountpoint=/tmp \
|
|
${hostname,,}/tmp
|
|
|
|
if [[ "${encryption}" == 'yes' ]]; then
|
|
zfs create \
|
|
-o com.sun:auto-snapshot=false \
|
|
-o mountpoint=/etc/zfs/keys \
|
|
${hostname,,}/keystore
|
|
fi
|
|
|
|
zpool set \
|
|
bootfs=${hostname,,}/ROOT/${ID} \
|
|
${hostname,,}
|
|
|
|
if [[ "${ID}" == 'fedora' ]]; then
|
|
"${baseDir}/fedora.sh" --rsync
|
|
fi
|
|
|
|
zfs create \
|
|
${hostname,,}/var/mail
|
|
|
|
chmod \
|
|
1777 \
|
|
/mnt/tmp
|
|
fi
|
|
|
|
if [[ "${1}" == '--key' ]]; then
|
|
cp \
|
|
/etc/zfs/keys/${hostname,,}.key \
|
|
/mnt/etc/zfs/keys/
|
|
fi
|
|
|
|
if [[ "${1}" == '--unmount' ]]; then
|
|
umount \
|
|
-nR \
|
|
/mnt
|
|
|
|
zpool \
|
|
export \
|
|
-a
|
|
fi
|
|
|
|
if [[ "${1}" == '--host-id' ]]; then
|
|
zgenhostid \
|
|
-f \
|
|
0x00bab10c
|
|
fi
|
|
|
|
if [[ "${1}" == '--home' ]]; then
|
|
zfs create\
|
|
${hostname,,}/home/${username}
|
|
|
|
zfs create\
|
|
${hostname,,}/home/${username}/.config
|
|
|
|
zfs create\
|
|
-o canmount=off\
|
|
${hostname,,}/home/${username}/.var
|
|
|
|
zfs create\
|
|
${hostname,,}/home/${username}/.var/app
|
|
|
|
zfs create\
|
|
-o canmount=off\
|
|
${hostname,,}/home/${username}/.local
|
|
|
|
zfs create\
|
|
-o canmount=off\
|
|
${hostname,,}/home/${username}/.local/share
|
|
|
|
zfs create\
|
|
${hostname,,}/home/${username}/.local/share/flatpak
|
|
fi
|
|
|
|
if [[ "${1}" == '--keystore' ]]; then
|
|
zfs \
|
|
set \
|
|
org.zfsbootmenu:keysource=${hostname,,}/keystore \
|
|
${hostname,,}
|
|
fi
|
|
|
|
if [[ "${1}" == '--splash' ]]; then
|
|
zfs \
|
|
set \
|
|
org.zfsbootmenu:commandline='quiet splash rhgb noresume' \
|
|
${hostname,,}/ROOT/${ID}
|
|
fi
|