msw/CISS.debian.installer
SHA256
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

V8.00.000.2025.06.17
All checks were successful
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Successful in 51s
Details

Browse Source 
Signed-off-by: Marc S. Weidner <msw@coresecret.dev>
This commit is contained in:
Marc S. Weidner
2025-08-05 22:42:14 +02:00
parent f366d2daf2
commit 16a51c5536
6 changed files with 140 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
.preseed/preseed.yaml
View File

@@ -83,7 +83,7 @@ debootstrap: # Provide a mirror for downloading the Debian pac
# list of official Debian packages. # list of official Debian packages.
mirror: "https://deb.debian.org/debian" mirror: "https://deb.debian.org/debian"
# The following packages MUST be included in the debootstrap. # The following packages MUST be included in the debootstrap.
includes: "ca-certificates,locales,openssl,tzdata" includes: "busybox,ca-certificates,locales,openssl,tzdata,zstd"
distribution: "bookworm" # MUST be "bookworm". distribution: "bookworm" # MUST be "bookworm".
debian_suite: "stable" # MUST be "stable". Not supported yet: "testing", "experimental". debian_suite: "stable" # MUST be "stable". Not supported yet: "testing", "experimental".
exit: exit:
@@ -521,6 +521,7 @@ software:
### Installed by 4000_debootstrap.sh ### Installed by 4000_debootstrap.sh
############################################################################################################################## ##############################################################################################################################
# bash # bash
# busybox
# ca-certificates # ca-certificates
# coreutils # coreutils
# e2fsprogs # e2fsprogs
@@ -535,6 +536,7 @@ software:
# tzdata # tzdata
# util-linux # util-linux
# vim-common # vim-common
# zstd
############################################################################################################################## ##############################################################################################################################
### Installed by 4110_update_sources.sh ### Installed by 4110_update_sources.sh
############################################################################################################################## ##############################################################################################################################
@@ -547,7 +549,6 @@ software:
# bind9-dnsutils # bind9-dnsutils
# bsdmainutils # bsdmainutils
# btrfs-progs # btrfs-progs
# busybox
# bzip2 # bzip2
# dirmngr # dirmngr
# dmsetup # dmsetup
@@ -581,7 +582,6 @@ software:
# wget # wget
# whois # whois
# zsh # zsh
# zstd
############################################################################################################################## ##############################################################################################################################
### Installed by 4140_installation_microcode.sh ### Installed by 4140_installation_microcode.sh
############################################################################################################################## ##############################################################################################################################

8
func/cdi_4100_base/4120_installation_kernel.sh
View File

@@ -31,10 +31,10 @@ installation_kernel() {
if [[ -n "${VAR_KERNEL}" ]]; then if [[ -n "${VAR_KERNEL}" ]]; then
do_in_target_script "${TARGET}" " do_in_target_script "${TARGET}" '
apt-get install -y --no-install-recommends --no-install-suggests ${VAR_KERNEL} 2>&1 | tee -a ${var_logfile} apt-get install -y -o DPkg::Options::="--no-triggers" --no-install-recommends --no-install-suggests '"${VAR_KERNEL}"' initramfs-tools 2>&1 | tee -a '"${var_logfile}"'
echo ExitCode: \$? >> ${var_logfile} echo ExitCode: $? >> '"${var_logfile}"'
" '
do_log "info" "file_only" "4120() Kernel image: '${VAR_KERNEL}' installed successfully." do_log "info" "file_only" "4120() Kernel image: '${VAR_KERNEL}' installed successfully."

1
func/cdi_4100_base/4130_installation_toolset.sh
View File

@@ -32,7 +32,6 @@ installation_toolset() {
[host]="bind9-dnsutils" [host]="bind9-dnsutils"
[hexdump]="bsdmainutils" [hexdump]="bsdmainutils"
[btrfs]="btrfs-progs" [btrfs]="btrfs-progs"
[busybox]="busybox"
[bunzip2]="bzip2" [bunzip2]="bzip2"
[base64]="coreutils" [base64]="coreutils"
[cat]="coreutils" [cat]="coreutils"

8
func/cdi_4200_boot/4220_installation_cryptsetup.sh
View File

@@ -27,10 +27,10 @@ installation_cryptsetup() {
touch "${TARGET}${var_logfile}" && chmod 0600 "${TARGET}${var_logfile}" touch "${TARGET}${var_logfile}" && chmod 0600 "${TARGET}${var_logfile}"
do_in_target_script "${TARGET}" " do_in_target_script "${TARGET}" '
apt-get install -y --no-install-recommends --no-install-suggests cryptsetup cryptsetup-initramfs 2>&1 | tee -a ${var_logfile} apt-get install -y -o DPkg::Options::="--no-triggers" --no-install-recommends --no-install-suggests cryptsetup cryptsetup-initramfs 2>&1 | tee -a '"${var_logfile}"'
echo ExitCode: \$? >> ${var_logfile} echo ExitCode: $? >> '"${var_logfile}"'
" '
return 0 return 0
} }

49
func/cdi_4200_boot/4230_update_grub.sh
View File

@@ -61,15 +61,40 @@ update_grub() {
if [[ "${VAR_RECIPE_FIRMWARE}" == "uefi" ]]; then if [[ "${VAR_RECIPE_FIRMWARE}" == "uefi" ]]; then
case "${VAR_ARCHITECTURE,,}" in case "${VAR_ARCHITECTURE,,}" in
amd64) do_in_target "${TARGET}" apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-efi-amd64 ;;
arm64) do_in_target "${TARGET}" apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-efi-arm64 ;; amd64)
i386) do_in_target "${TARGET}" apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-efi-ia32 ;; do_in_target_script "${TARGET}" "
*) do_log "emergency" "file_only" "4230() Unsupported UEFI architecture: ${VAR_ARCHITECTURE}"; return "${ERR_GRUB_ARCHITECTURE}" ;; apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-efi-amd64 2>&1 | tee -a ${var_logfile}
echo ExitCode: \$? >> ${var_logfile}
"
;;
arm64)
do_in_target_script "${TARGET}" "
apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-efi-arm64 2>&1 | tee -a ${var_logfile}
echo ExitCode: \$? >> ${var_logfile}
"
;;
i386)
do_in_target_script "${TARGET}" "
apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-efi-ia32 2>&1 | tee -a ${var_logfile}
echo ExitCode: \$? >> ${var_logfile}
"
;;
*)
do_log "emergency" "file_only" "4230() Unsupported UEFI architecture: ${VAR_ARCHITECTURE}"; return "${ERR_GRUB_ARCHITECTURE}"
;;
esac esac
else else
do_in_target "${TARGET}" apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-pc do_in_target_script "${TARGET}" "
apt-get install -y --no-install-recommends -t bookworm-backports grub2 grub2-common grub-pc 2>&1 | tee -a ${var_logfile}
echo ExitCode: \$? >> ${var_logfile}
"
fi fi
@@ -213,7 +238,7 @@ install_grub_bios() {
### Debug modules. ### Debug modules.
var_bios_mod+="cat echo hexdump ls test terminfo" var_bios_mod+="cat echo hexdump ls test terminfo"
ary_bios_arg+=( --target=i386-pc --boot-directory=/boot "--modules=${var_bios_mod}" ) ary_bios_arg+=( --target=i386-pc --boot-directory=/boot "--modules=\"${var_bios_mod}\"" )
do_in_target "${TARGET}" grub-install "${ary_bios_arg[@]}" "${grub_bootdev}" || return "${ERR_GRUB_INSTALL}" do_in_target "${TARGET}" grub-install "${ary_bios_arg[@]}" "${grub_bootdev}" || return "${ERR_GRUB_INSTALL}"
do_log "info" "file_only" "4230() Installed: GRUB on Device: '${grub_bootdev}' [BIOS]." do_log "info" "file_only" "4230() Installed: GRUB on Device: '${grub_bootdev}' [BIOS]."
@@ -239,20 +264,20 @@ install_grub_bios() {
install_grub_uefi() { install_grub_uefi() {
### Declare Arrays, HashMaps, and Variables. ### Declare Arrays, HashMaps, and Variables.
declare -a ary_uefi_arg=() declare -a ary_uefi_arg=()
declare var_uefi_mod="" declare var_uefi_mod=" "
### Cryptographic modules. ### Cryptographic modules.
var_uefi_mod+="cryptodisk gcry_rijndael gcry_sha256 gcry_sha512 gcry_whirlpool gcry_serpent gcry_twofish luks luks2" var_uefi_mod+="cryptodisk gcry_rijndael gcry_sha256 gcry_sha512 gcry_whirlpool gcry_serpent gcry_twofish luks luks2 "
### Filesystem modules. ### Filesystem modules.
var_uefi_mod+="btrfs ext2" var_uefi_mod+="btrfs ext2 "
### Partitioning / Device / GPT ### Partitioning / Device / GPT
var_uefi_mod+="mdraid1x part_gpt" var_uefi_mod+="mdraid1x part_gpt "
### Device / Terminal modules. ### Device / Terminal modules.
var_uefi_mod+="boot linux efi_gop efi_uga gfxterm gfxterm_background gfxterm_menu normal search search_fs_uuid search_label" var_uefi_mod+="boot linux efi_gop efi_uga gfxterm gfxterm_background gfxterm_menu normal search search_fs_uuid search_label "
### Debug modules. ### Debug modules.
var_uefi_mod+="cat echo hexdump ls test terminfo" var_uefi_mod+="cat echo hexdump ls test terminfo"
ary_uefi_arg+=( --target=x86_64-efi --boot-directory=/boot --efi-directory=/boot/efi --bootloader-id=debian "--modules=${var_uefi_mod}" ) ary_uefi_arg+=( --target=x86_64-efi --boot-directory=/boot --efi-directory=/boot/efi --bootloader-id=debian "--modules=\"${var_uefi_mod}\"" )
[[ "${grub_update_nvram,,}" == "false" ]] && ary_uefi_arg+=( --no-nvram ) [[ "${grub_update_nvram,,}" == "false" ]] && ary_uefi_arg+=( --no-nvram )

96
lib/cdi_0110_interactive/0110_check_kernel.sh
View File

@@ -26,24 +26,37 @@ guard_sourcing
####################################### #######################################
check_kernel() { check_kernel() {
declare -i counter=1 declare -i counter=1
declare first_string="" line="" name="" options="" var_cpu_vendor="" declare first_string="" line="" name="" options="" var_cpu_vendor="" var_system_architecture=""
cat << 'EOF' >| "${VAR_NOTES}"
Kernel available
*+bpo* : Debian Backported Kernel
*cloud* : Special lightweight images for KVM
*unsigned* : Unsigned Kernel
*preempt_rt* : Special Kernel for real-time-computing
Not unsigned marked are MS signed Kernel for Secure Boot
EOF
# shellcheck disable=SC2312 # shellcheck disable=SC2312
var_cpu_vendor=$(</proc/cpuinfo grep 'vendor_id' | head -n1 | cut -d: -f2 | xargs) var_cpu_vendor=$(</proc/cpuinfo grep 'vendor_id' | head -n1 | cut -d: -f2 | xargs)
var_system_architecture="$(dpkg --print-architecture)"
case "${var_cpu_vendor}" in case "${var_system_architecture}" in
*AuthenticAMD*) amd64)
# shellcheck disable=SC2312 # shellcheck disable=SC2312
apt-cache search linux-image | grep linux-image | grep amd64 | grep -v "meta-package" | grep -v "dbg" | grep -v "template" >> "${VAR_KERNEL_TMP}" apt-cache search linux-image | grep linux-image | grep amd64 | grep -v "meta-package" | grep -v "dbg" | grep -v "template" >> "${VAR_KERNEL_TMP}"
;; ;;
*GenuineIntel*) arm64)
# shellcheck disable=SC2312 # shellcheck disable=SC2312
apt-cache search linux-image | grep linux-image | grep arm64 | grep -v "meta-package" | grep -v "dbg" | grep -v "template" >> "${VAR_KERNEL_TMP}" apt-cache search linux-image | grep linux-image | grep arm64 | grep -v "meta-package" | grep -v "dbg" | grep -v "template" >> "${VAR_KERNEL_TMP}"
;; ;;
*) do_log "info" "file_only" "4140() Unknown or unsupported CPU vendor: '${var_cpu_vendor}', skipping." ;; *)
do_log "info" "file_only" "4140() Unknown Architecture: '${var_system_architecture}' and / or unsupported CPU vendor: '${var_cpu_vendor}', skipping."
;;
esac esac
sort --output="${VAR_KERNEL_SRT}" "${VAR_KERNEL_TMP}" || { sort --output="${VAR_KERNEL_SRT}" "${VAR_KERNEL_TMP}" || {
@@ -60,27 +73,82 @@ check_kernel() {
((counter++)) ((counter++))
done < "${VAR_KERNEL_SRT}" done < "${VAR_KERNEL_SRT}"
export NCURSES_NO_ALTSCREEN=1 tput smcup
# shellcheck disable=SC2034
if VAR_KERNEL=$(dialog \ declare var_response="" var_exitcode=""
while true; do
var_response=$(dialog \
--no-collapse \ --no-collapse \
--ascii-lines \ --ascii-lines \
--clear \ --clear \
--help-button \ --help-button --help-label "Info" \
--backtitle "CISS.debian.installer" \ --backtitle "CISS.debian.installer" \
--title "Select the Kernel for the CISS.debian.installer" \ --title "Select the Kernel for the CISS.debian.installer" \
--radiolist "Kernel available \n *+bpo* : Debian Backported Kernel \n *cloud* : Special lightweight images for KVM \n *unsigned* : Unsigned Kernel \n *preempt_rt* : Special Kernel for real-time-computing \n Not unsigned marked are MS signed Kernel for Secure Boot \n" 0 0 "${options[@]}" 3>&1 1>&2 2>&3 3>&-); then --radiolist "Kernel available \n *+bpo* : Debian Backported Kernel \n *cloud* : Special lightweight images for KVM \n *unsigned* : Unsigned Kernel \n *preempt_rt* : Special Kernel for real-time-computing \n Not unsigned marked are MS signed Kernel for Secure Boot \n" 0 0 "${options[@]}" 3>&1 1>&2 2>&3 3>&-
)
var_exitcode="$?"
clear clear
case "${var_exitcode}" in
0)
VAR_KERNEL="${var_response}"
[[ "${VAR_KERNEL}" != linux-image-* ]] && VAR_KERNEL="linux-image-${VAR_KERNEL}" [[ "${VAR_KERNEL}" != linux-image-* ]] && VAR_KERNEL="linux-image-${VAR_KERNEL}"
do_log "info" "file_only" "0110() Kernel image selected interactively: '${VAR_KERNEL}'." do_log "info" "file_only" "0110() Kernel image selected interactively: '${VAR_KERNEL}'."
break
;;
else 1)
clear
VAR_KERNEL="" VAR_KERNEL=""
break
;;
fi 2)
dialog --no-collapse \
--ascii-lines \
--clear \
--backtitle "CISS.debian.installer" \
--title "Important Notes" \
--scrollbar \
--textbox "${VAR_NOTES}" 32 128
clear
continue
;;
*)
VAR_KERNEL=""
break
;;
esac
done
# shellcheck disable=SC2034
#if VAR_KERNEL=$(dialog \
# --no-collapse \
# --ascii-lines \
# --clear \
# --help-button --help-label "Info" \
# --backtitle "CISS.debian.installer" \
# --title "Select the Kernel for the CISS.debian.installer" \
# --radiolist "Kernel available \n *+bpo* : Debian Backported Kernel \n *cloud* : Special lightweight images for KVM \n *unsigned* : Unsigned Kernel \n *preempt_rt* : Special Kernel for real-time-computing \n Not unsigned marked are MS signed Kernel for Secure Boot \n" 0 0 "${options[@]}" 3>&1 1>&2 2>&3 3>&-); then
#
# #clear
# [[ "${VAR_KERNEL}" != linux-image-* ]] && VAR_KERNEL="linux-image-${VAR_KERNEL}"
# do_log "info" "file_only" "0110() Kernel image selected interactively: '${VAR_KERNEL}'."
#
#else
#
# #clear
# VAR_KERNEL=""
#
#fi
tput rmcup
return 0 return 0
} }