freebsd-helpers/newzfs.sh

set -E

constructionsite="/mnt"
fstab="newfstab"

devices=$@
if [ "$devices" = "" ]
then
    echo "No devices to format passed."
    exit 1
fi

echo "This will make absolutely destructive changes to these devices: $devices"
echo "Make sure that you currently do not have zpools of the names \"root\" and \"boot\"."
echo "Make sure that you currently do not have gmirrors of the names \"var\" and \"down\"."
echo "The new system will be put together at $constructionsite. Make sure it's free."

echo "Type in 'yes' to continue."
read optin

if [ "$optin" = "yes" ] # yay for sh! miss a few spaces and kill your system, why not?
then

    #echo "# device  mountpoint  fstype  options dump    pass" > $fstab
    echo "tmpfs /tmp tmpfs rw,mode=777 0 0" >> $fstab

    echo 'geom_eli_load="YES"' >> loader.conf
    echo 'geom_mirror_load="YES"' >> loader.conf
    echo 'aesni_load="YES"' >> loader.conf
    echo 'zfs_load="YES"' >> loader.conf
    echo 'tmpfs_load="YES"' >> loader.conf
    echo 'coretemp_load="YES"' >> loader.conf
    echo 'beastie_disable="YES"' >> loader.conf
    echo 'kern.vty="vt"' >> loader.conf


    echo ""

    echo "Activating gmirror."
    gmirror load
    echo ""

    echo "Generating secret key."
    key_path="/tmp/disk.key"
    dd if=/dev/random of=$key_path bs=4096 count=1
    echo ""

    i=0 # iterated, used to get different labels per device
    for device in $devices
    do

        i=`expr $i + 1`


        echo "Handling device $device."
        echo ""


        echo "Destroying current partition layout."
        if ! gpart destroy -F $device; then
            echo "Can't (even forcibly) destroy layout of device $device, aborting."
            exit 1
        fi
        echo ""


        echo "Creating new GPT partition layout."
        gpart create -s gpt $device
        echo ""


        echo "Adding gptzfsboot partition."
        gpart add -s 94 -t freebsd-boot -l gptzfsboot-$device $device
        gpart bootcode -b /boot/pmbr -p /boot/gptzfsboot -i 1 $device
        echo ""


        echo "Adding boot partition."
        gpart add -s 2G -t freebsd-zfs -l boot-$device $device
        echo ""


        echo "Adding swap partition."
        gpart add -s 2G -t freebsd-swap -l swap-$device $device
        echo ""


        echo "Adding var partition."
        gpart add -s 20G -t freebsd-ufs -l var-$device $device
        echo ""


        echo "Adding down partition."
        gpart add -s 100G -t freebsd-ufs -l down-$device $device
        echo ""


        echo "Adding root partition using rest of space."
        gpart add -t freebsd-zfs -l root-$device $device
        echo ""


        if [ ! -d "/tmp/boot" ]
        then
            mkdir /tmp/boot
        fi
        
        if [ $i -eq 1 ]
        then
            echo "Creating boot zpool…"
            zpool create -fm /zboot -o altroot=/tmp/boot boot gpt/boot-$device
        else
            echo "Attaching to boot zpool…"
            zpool attach boot gpt/boot-$device
        fi
        
        mkdir /tmp/boot/boot
        echo ""


        echo "Creating geli containers for all partitions to be crypted."
        # root using CBC instead of XTS because zfs already does extensive checksum magics
        geli init -b -e AES-CBC -l 256 -K $key_path -s 4096 gpt/root-$device
        echo "geli_root-${device}_keyfile0_load=\"YES\"" >> loader.conf
        echo "geli_root-${device}_keyfile0_type=\"gpt/root-$device:geli_keyfile0\"" >> loader.conf
        echo "geli_root-${device}_keyfile0_name=\"/boot/disk.key\"" >> loader.conf
        #tocrypt="gpt/var-$device gpt/down-$device gpt/swap-$device"
        tocrypt="var down swap"
        for name in $tocrypt
        do
            geli init -b -e AES-XTS -l 256 -K $key_path -s 4096 gpt/$name-$device
            echo "geli_$name-${device}_keyfile0_load=\"YES\"" >> loader.conf
            echo "geli_$name-${device}_keyfile0_type=\"gpt/$name-$device:geli_keyfile0\"" >> loader.conf
            echo "geli_$name-${device}_keyfile0_name=\"/boot/disk.key\"" >> loader.conf
        done
        echo ""

        echo "/dev/gpt/swap-$device.eli  none    swap    sw  0   0" >> $fstab

        echo "Attaching geli containers."

        geli attach -k $key_path gpt/root-$device
        for name in $tocrypt
        do
            geli attach -k $key_path gpt/$name-$device
        done
        echo ""

        if [ $i -eq 1 ]
        then
            echo "Creating root zpool…"
            zpool create -fm / -o altroot=$constructionsite root gpt/root-$device.eli
            echo 'vfs.root.mountfrom="zfs:root"' >> loader.conf
            echo ""

            echo "Creating var gmirror…"
            gmirror label -v var /dev/gpt/var-$device.eli
            echo "Creating UFS on var gmirror…"
            newfs -U /dev/mirror/var
            echo "/dev/mirror/var /var ufs rw 0 2" >> $fstab
            echo ""

            echo "Creating down gmirror…"
            gmirror label -v down /dev/gpt/down-$device.eli
            echo "Creating UFS on down gmirror…"
            newfs -U /dev/mirror/down
            echo "/dev/mirror/down /media/down ufs rw 0 2" >> $fstab
            echo ""

        else
            echo "Attaching to boot zpool…"
            zpool attach boot gpt/boot-$device
            echo ""

            echo "Attaching to root zpool…"
            zpool attach root gpt/root-$device.eli
            echo ""

            echo "Adding to var gmirror…"
            gmirror insert var /dev/gpt/var-$device.eli
            echo ""

            echo "Adding to down gmirror…"
            gmirror insert down /dev/gpt/down-$device.eli
            echo ""

        fi

    done


    echo "Exporting boot zpool…"
    zpool export boot
    echo "Re-importing boot zpool at $constructionsite…"
    zpool import -o altroot=$constructionsite boot
    echo ""

    echo "Mounting var…"
    mkdir $constructionsite/var
    mount /dev/mirror/var $constructionsite/var

    echo "Mounting down…"
    mkdir -p $constructionsite/media/down
    mount /dev/mirror/down $constructionsite/media/down
    echo ""

    echo "Preparing boot…"
    mkdir $constructionsite/zboot/boot

    echo ""


    echo "Disk setup done. Press enter to continue."
    read x
    
    echo "Extracting kernel…"
    tar -C $constructionsite -xvf kernel.txz

    echo "Extracting base system…"
    tar -C $constructionsite -xvf base.txz
    
    
    echo "Copying key…"
    cp $key_path $constructionsite/boot/
    echo ""
    
    echo "Creating loader.conf…"
    cat loader.conf >> $constructionsite/boot/loader.conf
    echo ""

    echo "Creating fstab…"
    cat $fstab >> $constructionsite/etc/fstab
    echo ""

    echo "Moving/symlinking boot…"
    mv $constructionsite/boot $constructionsite/zboot/

    cd $constructionsite
    ln -s zboot/boot boot

    echo "Maybbe it werk now? D:"

else
    echo "That wasn't 'yes': '$optin'"
fi
initial commit 2017-04-19 02:28:55 +00:00			`set -E`

??? 2017-04-19 04:28:03 +00:00			`constructionsite="/mnt"`
			`fstab="newfstab"`

initial commit 2017-04-19 02:28:55 +00:00			`devices=$@`
			`if [ "$devices" = "" ]`
			`then`
			`echo "No devices to format passed."`
			`exit 1`
			`fi`

			`echo "This will make absolutely destructive changes to these devices: $devices"`
??? 2017-04-19 04:28:03 +00:00			`echo "Make sure that you currently do not have zpools of the names \"root\" and \"boot\"."`
			`echo "Make sure that you currently do not have gmirrors of the names \"var\" and \"down\"."`
			`echo "The new system will be put together at $constructionsite. Make sure it's free."`

initial commit 2017-04-19 02:28:55 +00:00			`echo "Type in 'yes' to continue."`
			`read optin`

			`if [ "$optin" = "yes" ] # yay for sh! miss a few spaces and kill your system, why not?`
			`then`

??? 2017-04-19 04:28:03 +00:00			`#echo "# device mountpoint fstype options dump pass" > $fstab`
hurr durr, lets make /tmp fsck'ed 2017-04-24 02:43:18 +00:00			`echo "tmpfs /tmp tmpfs rw,mode=777 0 0" >> $fstab`
more thing. 2017-04-24 00:38:00 +00:00
			`echo 'geom_eli_load="YES"' >> loader.conf`
fiiiiix 2017-04-24 02:24:58 +00:00			`echo 'geom_mirror_load="YES"' >> loader.conf`
more thing. 2017-04-24 00:38:00 +00:00			`echo 'aesni_load="YES"' >> loader.conf`
			`echo 'zfs_load="YES"' >> loader.conf`
			`echo 'tmpfs_load="YES"' >> loader.conf`
			`echo 'coretemp_load="YES"' >> loader.conf`
			`echo 'beastie_disable="YES"' >> loader.conf`
			`echo 'kern.vty="vt"' >> loader.conf`


initial commit 2017-04-19 02:28:55 +00:00			`echo ""`

things. 2017-04-23 22:28:42 +00:00			`echo "Activating gmirror."`
			`gmirror load`
			`echo ""`

a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`echo "Generating secret key."`
			`key_path="/tmp/disk.key"`
			`dd if=/dev/random of=$key_path bs=4096 count=1`
			`echo ""`

initial commit 2017-04-19 02:28:55 +00:00			`i=0 # iterated, used to get different labels per device`
			`for device in $devices`
			`do`

			i=`expr $i + 1`


			`echo "Handling device $device."`
			`echo ""`


			`echo "Destroying current partition layout."`
			`if ! gpart destroy -F $device; then`
			`echo "Can't (even forcibly) destroy layout of device $device, aborting."`
			`exit 1`
			`fi`
			`echo ""`


			`echo "Creating new GPT partition layout."`
			`gpart create -s gpt $device`
			`echo ""`


			`echo "Adding gptzfsboot partition."`
??? 2017-04-19 04:28:03 +00:00			`gpart add -s 94 -t freebsd-boot -l gptzfsboot-$device $device`
initial commit 2017-04-19 02:28:55 +00:00			`gpart bootcode -b /boot/pmbr -p /boot/gptzfsboot -i 1 $device`
			`echo ""`


			`echo "Adding boot partition."`
??? 2017-04-19 04:28:03 +00:00			`gpart add -s 2G -t freebsd-zfs -l boot-$device $device`
initial commit 2017-04-19 02:28:55 +00:00			`echo ""`


			`echo "Adding swap partition."`
??? 2017-04-19 04:28:03 +00:00			`gpart add -s 2G -t freebsd-swap -l swap-$device $device`
initial commit 2017-04-19 02:28:55 +00:00			`echo ""`


			`echo "Adding var partition."`
??? 2017-04-19 04:28:03 +00:00			`gpart add -s 20G -t freebsd-ufs -l var-$device $device`
initial commit 2017-04-19 02:28:55 +00:00			`echo ""`


			`echo "Adding down partition."`
??? 2017-04-19 04:28:03 +00:00			`gpart add -s 100G -t freebsd-ufs -l down-$device $device`
initial commit 2017-04-19 02:28:55 +00:00			`echo ""`


			`echo "Adding root partition using rest of space."`
??? 2017-04-19 04:28:03 +00:00			`gpart add -t freebsd-zfs -l root-$device $device`
initial commit 2017-04-19 02:28:55 +00:00			`echo ""`



			`if [ ! -d "/tmp/boot" ]`
			`then`
			`mkdir /tmp/boot`
			`fi`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00
			`if [ $i -eq 1 ]`
			`then`
florb 2017-04-19 06:26:44 +00:00			`echo "Creating boot zpool…"`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`zpool create -fm /zboot -o altroot=/tmp/boot boot gpt/boot-$device`
			`else`
florb 2017-04-19 06:26:44 +00:00			`echo "Attaching to boot zpool…"`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`zpool attach boot gpt/boot-$device`
tiny fix 2017-04-19 05:50:21 +00:00			`fi`
initial commit 2017-04-19 02:28:55 +00:00
florb 2017-04-19 06:26:44 +00:00			`mkdir /tmp/boot/boot`
initial commit 2017-04-19 02:28:55 +00:00			`echo ""`


			`echo "Creating geli containers for all partitions to be crypted."`
root as AES-CBC 2017-04-23 22:13:45 +00:00			`# root using CBC instead of XTS because zfs already does extensive checksum magics`
			`geli init -b -e AES-CBC -l 256 -K $key_path -s 4096 gpt/root-$device`
fix for the fix in previous commit. 2017-04-24 00:57:55 +00:00			`echo "geli_root-${device}_keyfile0_load=\"YES\"" >> loader.conf`
			`echo "geli_root-${device}_keyfile0_type=\"gpt/root-$device:geli_keyfile0\"" >> loader.conf`
			`echo "geli_root-${device}_keyfile0_name=\"/boot/disk.key\"" >> loader.conf`
more thing. 2017-04-24 00:38:00 +00:00			`#tocrypt="gpt/var-$device gpt/down-$device gpt/swap-$device"`
			`tocrypt="var down swap"`
			`for name in $tocrypt`
initial commit 2017-04-19 02:28:55 +00:00			`do`
more thing. 2017-04-24 00:38:00 +00:00			`geli init -b -e AES-XTS -l 256 -K $key_path -s 4096 gpt/$name-$device`
variable fuckup fix 2017-04-24 00:49:10 +00:00			`echo "geli_$name-${device}_keyfile0_load=\"YES\"" >> loader.conf`
			`echo "geli_$name-${device}_keyfile0_type=\"gpt/$name-$device:geli_keyfile0\"" >> loader.conf`
			`echo "geli_$name-${device}_keyfile0_name=\"/boot/disk.key\"" >> loader.conf`
initial commit 2017-04-19 02:28:55 +00:00			`done`
			`echo ""`

more thing. 2017-04-24 00:38:00 +00:00			`echo "/dev/gpt/swap-$device.eli none swap sw 0 0" >> $fstab`

initial commit 2017-04-19 02:28:55 +00:00			`echo "Attaching geli containers."`
oops. 2017-04-23 22:21:52 +00:00
			`geli attach -k $key_path gpt/root-$device`
more thing. 2017-04-24 00:38:00 +00:00			`for name in $tocrypt`
initial commit 2017-04-19 02:28:55 +00:00			`do`
more thing. 2017-04-24 00:38:00 +00:00			`geli attach -k $key_path gpt/$name-$device`
initial commit 2017-04-19 02:28:55 +00:00			`done`
			`echo ""`

a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`if [ $i -eq 1 ]`
??? 2017-04-19 04:28:03 +00:00			`then`
			`echo "Creating root zpool…"`
things! 2017-04-19 05:30:10 +00:00			`zpool create -fm / -o altroot=$constructionsite root gpt/root-$device.eli`
fiiiiix 2017-04-24 02:24:58 +00:00			`echo 'vfs.root.mountfrom="zfs:root"' >> loader.conf`
??? 2017-04-19 04:28:03 +00:00			`echo ""`

			`echo "Creating var gmirror…"`
			`gmirror label -v var /dev/gpt/var-$device.eli`
			`echo "Creating UFS on var gmirror…"`
tiny fix 2017-04-19 05:54:52 +00:00			`newfs -U /dev/mirror/var`
??? 2017-04-19 04:28:03 +00:00			`echo "/dev/mirror/var /var ufs rw 0 2" >> $fstab`
			`echo ""`

			`echo "Creating down gmirror…"`
			`gmirror label -v down /dev/gpt/down-$device.eli`
			`echo "Creating UFS on down gmirror…"`
tiny fix 2017-04-19 05:54:52 +00:00			`newfs -U /dev/mirror/down`
??? 2017-04-19 04:28:03 +00:00			`echo "/dev/mirror/down /media/down ufs rw 0 2" >> $fstab`
			`echo ""`

			`else`
			`echo "Attaching to boot zpool…"`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`zpool attach boot gpt/boot-$device`
??? 2017-04-19 04:28:03 +00:00			`echo ""`

			`echo "Attaching to root zpool…"`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`zpool attach root gpt/root-$device.eli`
??? 2017-04-19 04:28:03 +00:00			`echo ""`

			`echo "Adding to var gmirror…"`
			`gmirror insert var /dev/gpt/var-$device.eli`
			`echo ""`

			`echo "Adding to down gmirror…"`
			`gmirror insert down /dev/gpt/down-$device.eli`
			`echo ""`

			`fi`

a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`done`
??? 2017-04-19 04:28:03 +00:00
things! 2017-04-19 05:30:10 +00:00
florb 2017-04-19 06:26:44 +00:00			`echo "Exporting boot zpool…"`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`zpool export boot`
florb 2017-04-19 06:26:44 +00:00			`echo "Re-importing boot zpool at $constructionsite…"`
oops. 2017-04-23 22:17:25 +00:00			`zpool import -o altroot=$constructionsite boot`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`echo ""`
things! 2017-04-19 05:30:10 +00:00
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`echo "Mounting var…"`
more thing. 2017-04-24 00:38:00 +00:00			`mkdir $constructionsite/var`
			`mount /dev/mirror/var $constructionsite/var`
things! 2017-04-19 05:30:10 +00:00
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`echo "Mounting down…"`
more thing. 2017-04-24 00:38:00 +00:00			`mkdir -p $constructionsite/media/down`
			`mount /dev/mirror/down $constructionsite/media/down`
things. 2017-04-23 22:28:42 +00:00			`echo ""`
things! 2017-04-19 05:30:10 +00:00
things. 2017-04-23 22:28:42 +00:00			`echo "Preparing boot…"`
more thing. 2017-04-24 00:38:00 +00:00			`mkdir $constructionsite/zboot/boot`

things. 2017-04-23 22:28:42 +00:00			`echo ""`
??? 2017-04-19 04:28:03 +00:00
more thing. 2017-04-24 00:38:00 +00:00
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`echo "Disk setup done. Press enter to continue."`
			`read x`

			`echo "Extracting kernel…"`
			`tar -C $constructionsite -xvf kernel.txz`
??? 2017-04-19 04:28:03 +00:00
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00			`echo "Extracting base system…"`
			`tar -C $constructionsite -xvf base.txz`
more thing. 2017-04-24 00:38:00 +00:00
fix: symlinking boot now after basesystem extraction 2017-04-24 01:26:10 +00:00
tiny fix 2017-04-24 01:15:17 +00:00			`echo "Copying key…"`
fix: symlinking boot now after basesystem extraction 2017-04-24 01:26:10 +00:00			`cp $key_path $constructionsite/boot/`
more fix? 2017-04-24 02:29:22 +00:00			`echo ""`
tiny fix 2017-04-24 01:15:17 +00:00
more thing. 2017-04-24 00:38:00 +00:00			`echo "Creating loader.conf…"`
			`cat loader.conf >> $constructionsite/boot/loader.conf`
more fix? 2017-04-24 02:29:22 +00:00			`echo ""`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00
			`echo "Creating fstab…"`
			`cat $fstab >> $constructionsite/etc/fstab`
more fix? 2017-04-24 02:29:22 +00:00			`echo ""`

			`echo "Moving/symlinking boot…"`
			`mv $constructionsite/boot $constructionsite/zboot/`

			`cd $constructionsite`
fix the fixing fix for the fix fix fix 2017-04-24 02:33:22 +00:00			`ln -s zboot/boot boot`
a few fixes, a few borks? 2017-04-19 05:47:21 +00:00
			`echo "Maybbe it werk now? D:"`
??? 2017-04-19 04:28:03 +00:00
initial commit 2017-04-19 02:28:55 +00:00			`else`
			`echo "That wasn't 'yes': '$optin'"`
			`fi`