refactor(history): commit development branch

new development branch from root commit
2025-02-10 21:54:51 +01:00 · 2025-02-10 21:54:51 +01:00 · 020aaa0b9a
commit 020aaa0b9a
parent 3e562930f6
94 changed files with 4804 additions and 0 deletions
--- a/sh/rescue/common.sh
+++ b/sh/rescue/common.sh
@ -0,0 +1,94 @@
+rwx_rescue_configure() {
+	local hostname="${1}"
+	# apt / conf
+	rwx_apt_conf_write
+	# apt / sources
+	rwx_apt_sources_write
+	# bash / rc
+	main_link_bashrc
+	mv "${HOME}/.bashrc" "${HOME}/.bashrc.old"
+	# host name
+	hostname "${hostname}"
+	# locales
+	printf "\
+en_US.UTF-8 UTF-8
+fr_FR.UTF-8 UTF-8
+" >"/etc/locale.gen"
+	# generate locales
+	locale-gen
+	# update catalog
+	rwx_apt_update
+	# disable frontend
+	rwx_debian_frontend_disable
+	# install backports
+	rwx_apt_install_backports "tmux"
+	# install packages
+	rwx_apt_install_release "apt-file" "mosh" "screen" "byobu"
+	# update catalog
+	rwx_apt_update
+}
+
+rwx_rescue_install() {
+	# update catalog
+	rwx_apt_update
+	# disable frontend
+	rwx_debian_frontend_disable
+	# upgrade packages
+	rwx_apt_upgrade
+	# install packages
+	rwx_apt_install_release \
+		"man-db" \
+		"dmidecode" "efibootmgr" "lshw" "pciutils" "usbutils" \
+		"parted" "mdadm" "cryptsetup-bin" "lvm2" \
+		"btrfs-progs" "dosfstools" "duperemove" "squashfs-tools" \
+		"git" "micro" "nano" "python3" "rsync" "vim" \
+		"exa" "lf" "ncdu" "nnn" "ranger" "tree" \
+		"file" "htop" "iotop" "ipcalc" "libdigest-sha3-perl" "lsof"
+	# install backports
+	rwx_apt_install_backports \
+		"grub-pc-bin" \
+		\
+		"grub-efi-amd64-bin"
+}
+
+rwx_rescue_upload() {
+	local host="${1}"
+	local hostname="${2}"
+	if [ -n "${hostname}" ]; then
+		local user="root"
+		#
+		local user_host="${user}@${host}"
+		# remove fingerprints
+		ssh-keygen -R "${host}"
+		# copy ssh id
+		ssh-copy-id \
+			-o "StrictHostKeyChecking=accept-new" \
+			"${user_host}"
+		# upload root
+		rsync --delete --recursive \
+			"$(dirname "${ENV}")" "${user_host}:/etc"
+		# call setup
+		# TODO variable
+		ssh "${user_host}" -- \
+			". \"${ENV}\" ; rwx_rescue_configure \"${hostname}\""
+		# create session
+		ssh "${user_host}" -- byobu new-session -d
+		# send keys
+		ssh "${user_host}" -- byobu send-keys "rwx_rescue_install" "C-m"
+		# attach session
+		mosh "${user_host}" -- byobu attach-session
+	else
+		echo "host & hostname"
+		return 1
+	fi
+}
+
+rwx_rescue_wipe_1_zero() {
+	rwx_fs_wipe "/dev/mapper/crypt" "512M"
+}
+
+rwx_rescue_wipe_3_close() {
+	umount "/media/boot"
+	umount "/media/crypt" &&
+		cryptsetup luksClose "crypt"
+}
--- a/sh/rescue/hetzner.sh
+++ b/sh/rescue/hetzner.sh
@ -0,0 +1,129 @@
+rwx_rescue_wipe_0_init_hetzner_8_8() {
+	local device
+	set \
+		"/dev/sda" \
+		"/dev/sdb"
+	local members
+	local number
+	local passphrase
+	# read passphrase
+	passphrase="$(rwx_read_passphrase)"
+	# warn
+	rwx_warn_wipe "${@}"
+	#
+	number=0
+	for device in "${@}"; do
+		number=$((number + 1))
+		echo
+		echo "#${number}: ${device}"
+		#
+		parted --script "${device}" \
+			mktable gpt \
+			unit "mib" \
+			mkpart "crypt-${number}" 33282 7630885 \
+			mkpart "boot-${number}" 514 33282 \
+			mkpart "esp-${number}" 2 514 \
+			set 3 esp on \
+			mkpart "bios-${number}" 1 2 \
+			set 4 bios_grub on
+	done
+	#
+	number=0
+	for device in "${@}"; do
+		number=$((number + 1))
+		echo
+		echo "#${number}: ${device}4"
+		# wipe bios
+		rwx_fs_wipe "${device}4"
+	done
+	#
+	number=0
+	for device in "${@}"; do
+		number=$((number + 1))
+		echo
+		echo "#${number}: ${device}3"
+		# format esp
+		rwx_fs_wipe "${device}3" "1M"
+		rwx_fs_make_fat "${device}3" "esp-${number}" "0000000${number}"
+		# mount esp
+		mkdir --parents "/media/esp/${number}"
+		mount "${device}3" "/media/esp/${number}"
+	done
+	#
+	number=0
+	for device in "${@}"; do
+		number=$((number + 1))
+		echo
+		echo "#${number}: ${device}2"
+		# wipe boot
+		rwx_fs_wipe "${device}2" "1G" 1
+	done
+	#
+	members=""
+	for device in "${@}"; do
+		members="${members} ${device}2"
+	done
+	# LATER alternative
+	# shellcheck disable=SC2086
+	rwx_fs_raid_create \
+		"boot" "00000000:00000000:00000000:00000002" ${members}
+	#
+	rwx_fs_make_btrfs "/dev/md/boot" "boot" \
+		"00000000-0000-0000-0000-00000000000b"
+	# mount boot
+	mkdir --parents "/media/boot"
+	mount \
+		--options "autodefrag,compress-force=zstd" \
+		"/dev/md/boot" "/media/boot"
+	#
+	number=0
+	for device in "${@}"; do
+		number=$((number + 1))
+		echo
+		echo "#${number}: ${device}1"
+		# wipe crypt head
+		rwx_fs_wipe "${device}1" "1G" 1
+	done
+	#
+	members=""
+	for device in "${@}"; do
+		members="${members} ${device}1"
+	done
+	# LATER alternative
+	# shellcheck disable=SC2086
+	rwx_fs_raid_create \
+		"crypt" "00000000:00000000:00000000:00000001" ${members}
+	# encrypt
+	rwx_fs_luks_format "${passphrase}" "/dev/md/crypt"
+	# open
+	echo "${passphrase}" |
+		cryptsetup luksOpen "/dev/md/crypt" "crypt"
+	# passphrase
+	unset passphrase
+}
+
+rwx_rescue_wipe_2_make_hetzner_8_8() {
+	local passphrase
+	# close
+	cryptsetup luksClose "crypt"
+	# read passphrase
+	passphrase="$(rwx_read_passphrase)"
+	# encrypt
+	rwx_fs_luks_format "${passphrase}" "/dev/md/crypt"
+	# open
+	echo "${passphrase}" |
+		cryptsetup luksOpen "/dev/md/crypt" "crypt"
+	# passphrase
+	unset passphrase
+	# format crypt
+	rwx_fs_make_btrfs "/dev/mapper/crypt" "crypt" \
+		"00000000-0000-0000-0000-00000000000c"
+	# mount crypt
+	mkdir --parents "/media/crypt"
+	mount \
+		--options "autodefrag,compress-force=zstd" \
+		"/dev/mapper/crypt" "/media/crypt"
+	# make swap file
+	rwx_fs_make_btrfs_swap "/media/crypt/swap" "64g" \
+		"00000000-0000-0000-0000-000000000005"
+}
--- a/sh/rescue/ovh.sh
+++ b/sh/rescue/ovh.sh
@ -0,0 +1,71 @@
+rwx_rescue_wipe_0_init_ovh_vle2() {
+	local device="/dev/sdb"
+	local passphrase
+	# read passphrase
+	passphrase="$(rwx_read_passphrase)"
+	# warn
+	rwx_warn_wipe "${device}"
+	#
+	parted --script "${device}" \
+		mktable gpt \
+		unit "mib" \
+		mkpart "crypt" 4610 40959 \
+		mkpart "boot" 514 4610 \
+		mkpart "esp" 2 514 \
+		set 3 esp on \
+		mkpart bios 1 2 \
+		set 4 bios_grub on
+	# bios / wipe
+	rwx_fs_wipe "${device}4"
+	# esp / wipe
+	rwx_fs_wipe "${device}3" "1M"
+	# esp / format
+	rwx_fs_make_fat "${device}3" "esp" "00000001"
+	# esp / mount
+	mkdir --parents "/media/esp"
+	mount "${device}3" "/media/esp"
+	# boot / wipe
+	rwx_fs_wipe "${device}2" "1G" 1
+	# boot / format
+	rwx_fs_make_btrfs "${device}2" "boot" \
+		"00000000-0000-0000-0000-00000000000b"
+	# boot / mount
+	mkdir --parents "/media/boot"
+	mount --options "autodefrag,compress-force=zstd" \
+		"${device}2" "/media/boot"
+	# crypt / wipe
+	rwx_fs_wipe "${device}1" "1G" 1
+	# crypt / encrypt
+	rwx_fs_luks_format "${passphrase}" "${device}1"
+	# crypt / open
+	echo "${passphrase}" |
+		cryptsetup luksOpen "${device}1" "crypt"
+	# passphrase
+	unset passphrase
+}
+
+rwx_rescue_wipe_2_make_ovh_vle2() {
+	local device="/dev/sdb"
+	local passphrase
+	# crypt / close
+	cryptsetup luksClose "crypt"
+	# read passphrase
+	passphrase="$(rwx_read_passphrase)"
+	# crypt / encrypt
+	rwx_fs_luks_format "${passphrase}" "${device}1"
+	# crypt / open
+	echo "${passphrase}" |
+		cryptsetup luksOpen "${device}1" "crypt"
+	# passphrase
+	unset passphrase
+	# crypt / format
+	rwx_fs_make_btrfs "/dev/mapper/crypt" "crypt" \
+		"00000000-0000-0000-0000-00000000000c"
+	# crypt / mount
+	mkdir --parents "/media/crypt"
+	mount --options "autodefrag,compress-force=zstd" \
+		"/dev/mapper/crypt" "/media/crypt"
+	# crypt / swap
+	rwx_fs_make_btrfs_swap "/media/crypt/swap" "4g" \
+		"00000000-0000-0000-0000-000000000005"
+}