tsg-tsg-os-buildimage/installer/distro-setup.sh

#!/bin/sh -x

blk_dev=${1}

#  mount /data/home
mkdir -p /data/home/
mount  --bind  /data/home/    /home/

# Create default user: user,admin,support
echo "Setting user user password as user"
useradd -G systemd-journal -s /bin/bash -m user
echo GDNT2023J8e+76 | passwd user --stdin
#echo "user    ALL=(ALL)       ALL" >> /etc/sudoers
echo GDNT2023J8e+76 | passwd --stdin

echo "Setting user admin password as admin"
useradd -G systemd-journal -s /bin/bash -m admin
echo GDNT202342U9.x | passwd admin --stdin
echo "%admin    ALL=(ALL)       ALL" >> /etc/sudoers
echo GDNT202342U9.x | passwd --stdin

echo "Setting user support password as support"
useradd -G systemd-journal -s /bin/bash -m support
echo GDNT2023QV3:vI | passwd support --stdin
echo "%support    ALL=(ALL)       ALL" >> /etc/sudoers
echo GDNT2023QV3:vI | passwd --stdin

# umount  /home/

umount  /home/

# prepare overlayfs
mkdir -p /data/overlay/rootfs_etc/rw
mkdir -p /data/overlay/rootfs_etc/work
mkdir -p /data/var
#mkdir -p /data/overlay/rootfs_var/rw
#mkdir -p /data/overlay/rootfs_var/work
#mkdir -p /data/overlay/rootfs_home/rw
#mkdir -p /data/overlay/rootfs_home/work

#provision path
mkdir -p /data/tsg-os-provision
mkdir -p /data/tsg-os-provision/provision.yml.d

# presistent journald
mkdir -p /var/log/journal

# treat /boot/grub2 as /boot/grub
rm -rf /boot/grub2
ln -sf /boot/grub /boot/grub2

# treat grub2* as grub*
ln -sf /usr/bin/grub2-editenv /usr/bin/grub-editenv

# look for empty dir    cp /var /data/var
DIR="/data/var"
if [ "$(ls -A $DIR)" ]; then
    echo "$DIR is not Empty"
else
    echo "$DIR is Empty"
    cp -a  /var/*   /data/var/
fi
#  copy rpm
rm -rf /data/var/lib/rpm
cp -a /var/lib/rpm    /data/var/lib/
#
rm -rf /data/var/lib/docker
rm -rf /data/overlay/rootfs_etc/rw/ld.so.conf.d
# generate machine-id if /data/overlay/rootfs_etc/rw/persistent-machine-id not exsit
mkdir -p /data/var/lib/tsg-os
cat /dev/null > /etc/machine-id
PATH_PERSISTENT_MACHINE_ID="/data/var/lib/tsg-os/persistent-machine-id"
if [ -f "$PATH_PERSISTENT_MACHINE_ID" ]; then
    cat $PATH_PERSISTENT_MACHINE_ID > /etc/machine-id
else
    /usr/bin/systemd-machine-id-setup
    cat /etc/machine-id > $PATH_PERSISTENT_MACHINE_ID
fi

###clear /etc/rancher
# k3s_overlay_etc_rancher="/data/overlay/rootfs_etc/rw/rancher"
# if [ -d "$k3s_overlay_etc_rancher" ]; then
#     echo "$k3s_overlay_etc_rancher is exist"
#     rm -rf $k3s_overlay_etc_rancher
# else
#     echo "$k3s_overlay_etc_rancher is not exist"
# fi

###clear /data/var/lib/rancher dir
# copy k3s image tar file to air-gap dir
k3s_rancher_dir="/var/lib/rancher"
if [ -d "$k3s_rancher_dir" ]; then
    echo "$k3s_rancher_dir is exist"
    rm -rf /data$k3s_rancher_dir
    rm -rf /data/var/lib/kubelet
    mkdir -p /data$k3s_rancher_dir
    cp -a $k3s_rancher_dir/* /data$k3s_rancher_dir
    rm -rf $k3s_rancher_dir/k3s/agent/images/*
else
    echo "$k3s_rancher_dir is not exist"
fi

air_gap_image_dir="/var/lib/rancher/k3s/agent/images"
tsg_diagnose_images_dir="/opt/tsg/tsg-diagnose/images"
if [ -d "$tsg_diagnose_images_dir" ]; then
    echo "$tsg_diagnose_images_dir is exist"
    if [ -d "$air_gap_image_dir" ]; then
        mkdir -p /data$air_gap_image_dir
        mv $tsg_diagnose_images_dir/* /data$air_gap_image_dir
    fi
else
    echo "$tsg_diagnose_images_dir is not exist"
fi


# copy mrzcpd alternatives file to dest
mrzcpd_alternatives_dir="/var/lib/alternatives"

if [ -d "$mrzcpd_alternatives_dir" ]; then
    echo "$mrzcpd_alternatives_dir is exist"
    rm -rf /data$mrzcpd_alternatives_dir
    mkdir -p /data$mrzcpd_alternatives_dir
    cp -a $mrzcpd_alternatives_dir/* /data$mrzcpd_alternatives_dir
else
    echo "$mrzcpd_alternatives_dir is not exist"
fi

# Setup o/s mount points
(cat <<EOF2
${blk_dev}4             /                       ext4    defaults        1 1
${blk_dev}2             /mnt/onie-boot/         ext4    defaults        1 1
${blk_dev}3             /update                 ext4    defaults        1 1
${blk_dev}5             /data                   ext4    defaults        1 1
overlay                 /etc                    overlay x-systemd.requires=/,x-systemd.requires=/data,lowerdir=/etc,upperdir=/data/overlay/rootfs_etc/rw,workdir=/data/overlay/rootfs_etc/work 0 0
/data/var               /var/              none     bind,x-systemd.requires=/,x-systemd.requires=/data           0 0
/data/home              /home/             none     bind,x-systemd.requires=/,x-systemd.requires=/data           0 0
EOF2
) > /etc/fstab

# Configure default hostname
echo "HOSTNAME=localhost" > /etc/sysconfig/network

# Disable selinux
sed -ie "s/SELINUX=.*/SELINUX=disabled/g" /etc/selinux/config

ldconfig
exit 0
First commit. 2021-04-27 14:16:43 +08:00			`#!/bin/sh -x`

feature:支持OS安装到虚拟机 2022-07-24 14:27:07 +08:00			`blk_dev=${1}`

bugfix:修改var,home在fstab里的挂载方式由overlay变为bind 2021-09-10 19:00:13 +08:00			`# mount /data/home`
			`mkdir -p /data/home/`
			`mount --bind /data/home/ /home/`

feature:删除onie用户，新增user,admin,support用户 2021-07-23 11:56:28 +08:00			`# Create default user: user,admin,support`
			`echo "Setting user user password as user"`
bugfix:TSG-7259新增user/admin/support组应具有检查journald日志的权限，TSG-7267:修改user,admin,support三个用户组权限 2021-08-04 19:02:03 +08:00			`useradd -G systemd-journal -s /bin/bash -m user`
TSG-16426: 修改TSG-OS默认密码，增强安全性 2023-08-03 17:34:38 +08:00			`echo GDNT2023J8e+76 \| passwd user --stdin`
feature:删除onie用户，新增user,admin,support用户 2021-07-23 11:56:28 +08:00			`#echo "user ALL=(ALL) ALL" >> /etc/sudoers`
TSG-16426: 修改TSG-OS默认密码，增强安全性 2023-08-03 17:34:38 +08:00			`echo GDNT2023J8e+76 \| passwd --stdin`
feature:删除onie用户，新增user,admin,support用户 2021-07-23 11:56:28 +08:00
			`echo "Setting user admin password as admin"`
bugfix:TSG-7259新增user/admin/support组应具有检查journald日志的权限，TSG-7267:修改user,admin,support三个用户组权限 2021-08-04 19:02:03 +08:00			`useradd -G systemd-journal -s /bin/bash -m admin`
TSG-16426: 修改TSG-OS默认密码，增强安全性 2023-08-03 17:34:38 +08:00			`echo GDNT202342U9.x \| passwd admin --stdin`
bugfix:TSG-7259新增user/admin/support组应具有检查journald日志的权限，TSG-7267:修改user,admin,support三个用户组权限 2021-08-04 19:02:03 +08:00			`echo "%admin ALL=(ALL) ALL" >> /etc/sudoers`
TSG-16426: 修改TSG-OS默认密码，增强安全性 2023-08-03 17:34:38 +08:00			`echo GDNT202342U9.x \| passwd --stdin`
feature:删除onie用户，新增user,admin,support用户 2021-07-23 11:56:28 +08:00
			`echo "Setting user support password as support"`
bugfix:TSG-7259新增user/admin/support组应具有检查journald日志的权限，TSG-7267:修改user,admin,support三个用户组权限 2021-08-04 19:02:03 +08:00			`useradd -G systemd-journal -s /bin/bash -m support`
TSG-16426: 修改TSG-OS默认密码，增强安全性 2023-08-03 17:34:38 +08:00			`echo GDNT2023QV3:vI \| passwd support --stdin`
bugfix:TSG-7259新增user/admin/support组应具有检查journald日志的权限，TSG-7267:修改user,admin,support三个用户组权限 2021-08-04 19:02:03 +08:00			`echo "%support ALL=(ALL) ALL" >> /etc/sudoers`
TSG-16426: 修改TSG-OS默认密码，增强安全性 2023-08-03 17:34:38 +08:00			`echo GDNT2023QV3:vI \| passwd --stdin`
First commit. 2021-04-27 14:16:43 +08:00
bugfix:修改var,home在fstab里的挂载方式由overlay变为bind 2021-09-10 19:00:13 +08:00			`# umount /home/`

			`umount /home/`

/etc和/var改用overlayfs，支持系统配置的持久化。 2021-05-12 15:08:55 +08:00			`# prepare overlayfs`
			`mkdir -p /data/overlay/rootfs_etc/rw`
			`mkdir -p /data/overlay/rootfs_etc/work`
bugfix:修改var,home在fstab里的挂载方式由overlay变为bind 2021-09-10 19:00:13 +08:00			`mkdir -p /data/var`
			`#mkdir -p /data/overlay/rootfs_var/rw`
			`#mkdir -p /data/overlay/rootfs_var/work`
			`#mkdir -p /data/overlay/rootfs_home/rw`
			`#mkdir -p /data/overlay/rootfs_home/work`
/etc和/var改用overlayfs，支持系统配置的持久化。 2021-05-12 15:08:55 +08:00
🎈 perf(distro-setup.sh): 自动创建provision所存放的文件夹自动创建/data/tsg-os-provision目录，避免安装系统时手动创建此目录 2021-06-28 02:23:23 -04:00			`#provision path`
			`mkdir -p /data/tsg-os-provision`
feature:TSG-7616:新增tsg-os-provision provision.default.yml配置文件和provision.yml.d配置文件目录 2021-08-25 10:34:25 +08:00			`mkdir -p /data/tsg-os-provision/provision.yml.d`
🎈 perf(distro-setup.sh): 自动创建provision所存放的文件夹自动创建/data/tsg-os-provision目录，避免安装系统时手动创建此目录 2021-06-28 02:23:23 -04:00
调整安装脚本，使journald产生的日志可以持久化。 2021-05-13 10:21:08 +08:00			`# presistent journald`
			`mkdir -p /var/log/journal`

为/boot/grub2建立到/boot/grub的软链接，适配OS中grub2的默认环境变量存储位置。 2021-05-20 13:48:48 +08:00			`# treat /boot/grub2 as /boot/grub`
			`rm -rf /boot/grub2`
			`ln -sf /boot/grub /boot/grub2`

集成ONIE启动模式变更脚本。 2021-05-20 16:37:46 +08:00			`# treat grub2* as grub*`
			`ln -sf /usr/bin/grub2-editenv /usr/bin/grub-editenv`

bugfix:修改var,home在fstab里的挂载方式由overlay变为bind 2021-09-10 19:00:13 +08:00			`# look for empty dir cp /var /data/var`
			`DIR="/data/var"`
			`if [ "$(ls -A $DIR)" ]; then`
			`echo "$DIR is not Empty"`
			`else`
			`echo "$DIR is Empty"`
			`cp -a /var/* /data/var/`
			`fi`
			`# copy rpm`
			`rm -rf /data/var/lib/rpm`
			`cp -a /var/lib/rpm /data/var/lib/`
			`#`
			`rm -rf /data/var/lib/docker`
bugfix:增加升级后执行ldconfig动作 2021-07-19 17:10:00 +08:00			`rm -rf /data/overlay/rootfs_etc/rw/ld.so.conf.d`
bugfix:TSG-13377:修改同一台设备使用固定machine-id 2023-01-10 19:47:28 +08:00			`# generate machine-id if /data/overlay/rootfs_etc/rw/persistent-machine-id not exsit`
			`mkdir -p /data/var/lib/tsg-os`
			`cat /dev/null > /etc/machine-id`
			`PATH_PERSISTENT_MACHINE_ID="/data/var/lib/tsg-os/persistent-machine-id"`
			`if [ -f "$PATH_PERSISTENT_MACHINE_ID" ]; then`
			`cat $PATH_PERSISTENT_MACHINE_ID > /etc/machine-id`
			`else`
			`/usr/bin/systemd-machine-id-setup`
			`cat /etc/machine-id > $PATH_PERSISTENT_MACHINE_ID`
			`fi`

feature:TSG-X os升级安装时删除/data/var/lib/rancher和/data/var/kubelet持久化目录 2023-07-05 15:30:28 +08:00			`###clear /etc/rancher`
			`# k3s_overlay_etc_rancher="/data/overlay/rootfs_etc/rw/rancher"`
			`# if [ -d "$k3s_overlay_etc_rancher" ]; then`
			`# echo "$k3s_overlay_etc_rancher is exist"`
			`# rm -rf $k3s_overlay_etc_rancher`
			`# else`
			`# echo "$k3s_overlay_etc_rancher is not exist"`
			`# fi`

			`###clear /data/var/lib/rancher dir`
			`# copy k3s image tar file to air-gap dir`
			`k3s_rancher_dir="/var/lib/rancher"`
			`if [ -d "$k3s_rancher_dir" ]; then`
			`echo "$k3s_rancher_dir is exist"`
			`rm -rf /data$k3s_rancher_dir`
bugfix:修改清理k3s持久化目录功能的笔误 2023-07-06 10:09:03 +08:00			`rm -rf /data/var/lib/kubelet`
feature:TSG-X os升级安装时删除/data/var/lib/rancher和/data/var/kubelet持久化目录 2023-07-05 15:30:28 +08:00			`mkdir -p /data$k3s_rancher_dir`
			`cp -a $k3s_rancher_dir/* /data$k3s_rancher_dir`
bugfix:修复自检pod找不到image的bug 2023-07-06 14:17:45 +08:00			`rm -rf $k3s_rancher_dir/k3s/agent/images/*`
bugfix:TSG-X-P0906环境中将镜像tag包和helm包拷贝到data相关目录下 2022-08-30 19:00:59 +08:00			`else`
feature:TSG-X os升级安装时删除/data/var/lib/rancher和/data/var/kubelet持久化目录 2023-07-05 15:30:28 +08:00			`echo "$k3s_rancher_dir is not exist"`
bugfix:TSG-X-P0906环境中将镜像tag包和helm包拷贝到data相关目录下 2022-08-30 19:00:59 +08:00			`fi`
feature:TSG-12014:适配tsg-x的自检程序 2022-09-21 20:03:40 +08:00
feature:TSG-X os升级安装时删除/data/var/lib/rancher和/data/var/kubelet持久化目录 2023-07-05 15:30:28 +08:00			`air_gap_image_dir="/var/lib/rancher/k3s/agent/images"`
feature:TSG-12014:适配tsg-x的自检程序 2022-09-21 20:03:40 +08:00			`tsg_diagnose_images_dir="/opt/tsg/tsg-diagnose/images"`
			`if [ -d "$tsg_diagnose_images_dir" ]; then`
			`echo "$tsg_diagnose_images_dir is exist"`
bugfix:TSG-12173:修复自检程序因缺少相关镜像导致自检启动失败的bug 2022-10-17 15:06:44 +08:00			`if [ -d "$air_gap_image_dir" ]; then`
			`mkdir -p /data$air_gap_image_dir`
			`mv $tsg_diagnose_images_dir/* /data$air_gap_image_dir`
			`fi`
feature:TSG-12014:适配tsg-x的自检程序 2022-09-21 20:03:40 +08:00			`else`
			`echo "$tsg_diagnose_images_dir is not exist"`
			`fi`

TSG-X环境中删除data目录的manifest文件目录 2022-09-23 18:34:18 +08:00
feature:DPISDN-12:os升级时更新/data/var/lib/alternatives持久化目录 2023-06-20 16:06:56 +08:00			`# copy mrzcpd alternatives file to dest`
			`mrzcpd_alternatives_dir="/var/lib/alternatives"`

			`if [ -d "$mrzcpd_alternatives_dir" ]; then`
			`echo "$mrzcpd_alternatives_dir is exist"`
			`rm -rf /data$mrzcpd_alternatives_dir`
			`mkdir -p /data$mrzcpd_alternatives_dir`
			`cp -a $mrzcpd_alternatives_dir/* /data$mrzcpd_alternatives_dir`
			`else`
			`echo "$mrzcpd_alternatives_dir is not exist"`
			`fi`
TSG-X环境中删除data目录的manifest文件目录 2022-09-23 18:34:18 +08:00
First commit. 2021-04-27 14:16:43 +08:00			`# Setup o/s mount points`
			`(cat <<EOF2`
feature:支持OS安装到虚拟机 2022-07-24 14:27:07 +08:00			`${blk_dev}4 / ext4 defaults 1 1`
			`${blk_dev}2 /mnt/onie-boot/ ext4 defaults 1 1`
			`${blk_dev}3 /update ext4 defaults 1 1`
			`${blk_dev}5 /data ext4 defaults 1 1`
修正x-systemd.after没有生效的问题。 * 在rhel7的systemd实现中，没有对x-systemd.after的支持，改用x-systemd.requires. 2021-05-13 16:00:41 +08:00			`overlay /etc overlay x-systemd.requires=/,x-systemd.requires=/data,lowerdir=/etc,upperdir=/data/overlay/rootfs_etc/rw,workdir=/data/overlay/rootfs_etc/work 0 0`
bugfix:修改var,home在fstab里的挂载方式由overlay变为bind 2021-09-10 19:00:13 +08:00			`/data/var /var/ none bind,x-systemd.requires=/,x-systemd.requires=/data 0 0`
			`/data/home /home/ none bind,x-systemd.requires=/,x-systemd.requires=/data 0 0`
First commit. 2021-04-27 14:16:43 +08:00			`EOF2`
			`) > /etc/fstab`

			`# Configure default hostname`
			`echo "HOSTNAME=localhost" > /etc/sysconfig/network`

			`# Disable selinux`
feature:TSG-10783:构建vsys os镜像 2022-06-09 18:19:03 +08:00			`sed -ie "s/SELINUX=.*/SELINUX=disabled/g" /etc/selinux/config`
First commit. 2021-04-27 14:16:43 +08:00
添加 ldconfig 命令 2021-05-18 21:47:53 -04:00			`ldconfig`
为/boot/grub2建立到/boot/grub的软链接，适配OS中grub2的默认环境变量存储位置。 2021-05-20 13:48:48 +08:00			`exit 0`