Add support for NixOS + Fedora, Arch, RH minor changes (#195)

* Add support for NixOS Signed-off-by: Maurice Zhou <jasper@apvc.uk> * updated files for immutable root fs Signed-off-by: Maurice Zhou <jasper@apvc.uk> * update ssh key location Signed-off-by: Maurice Zhou <jasper@apvc.uk> * change initrd host key name Signed-off-by: Maurice Zhou <jasper@apvc.uk> * add missing -p switch Signed-off-by: Maurice Zhou <jasper@apvc.uk> * comments about SSH and encrypted bpool Signed-off-by: Maurice Zhou <jasper@apvc.uk> * backup hardware-configuration.nix file Signed-off-by: Maurice Zhou <jasper@apvc.uk> * clearer wording for backup Signed-off-by: Maurice Zhou <jasper@apvc.uk> * global useDHCP flag is deprecated Signed-off-by: Maurice Zhou <jasper@apvc.uk> * point user to configuration.nix Signed-off-by: Maurice Zhou <jasper@apvc.uk> * fixes for systemd-autofs; network; typo Signed-off-by: Maurice Zhou <jasper@apvc.uk> * force command to return 0 Signed-off-by: Maurice Zhou <jasper@apvc.uk> * fix command to postMount Signed-off-by: Maurice Zhou <jasper@apvc.uk> * fix mount command Signed-off-by: Maurice Zhou <jasper@apvc.uk> * escape $i Signed-off-by: Maurice Zhou <jasper@apvc.uk> * create mountpoints before booting Signed-off-by: Maurice Zhou <jasper@apvc.uk> * replace postDevice,preMount command Signed-off-by: Maurice Zhou <jasper@apvc.uk> * disable zfs-mount Signed-off-by: Maurice Zhou <jasper@apvc.uk> * generate machine-id Signed-off-by: Maurice Zhou <jasper@apvc.uk>
2021-09-06 17:48:50 +00:00
parent f40d19a2c5
commit a1f68c37e0
22 changed files with 1367 additions and 62 deletions
--- a/ZFS/0-overview.rst
+++ b/ZFS/0-overview.rst
@@ -62,12 +62,12 @@ Dataset layout
 |                           |                      |                      |                                     | datasets", "persistent datasets"; also    |
 |                           |                      |                      |                                     | include /var/lib, /srv, ...               |
 +---------------------------+----------------------+----------------------+-------------------------------------+-------------------------------------------+
-|   bpool/sys/BOOT/default  | noauto               | legacy /boot         | no                                  | noauto is used to switch BE. because of   |
+|   bpool/sys/BOOT/default  | noauto               |        /boot         | no                                  | noauto is used to switch BE. because of   |
 |                           |                      |                      |                                     | noauto, must use fstab to mount           |
 +---------------------------+----------------------+----------------------+-------------------------------------+-------------------------------------------+
 |   rpool/sys/ROOT/default  | noauto               | /                    | no                                  | mounted by initrd zfs hook                |
 +---------------------------+----------------------+----------------------+-------------------------------------+-------------------------------------------+
-|   bpool/sys/BOOT/be1      | noauto               | legacy /boot         | no                                  | see bpool/sys/BOOT/default                |
+|   bpool/sys/BOOT/be1      | noauto               |        /boot         | no                                  | see bpool/sys/BOOT/default                |
 +---------------------------+----------------------+----------------------+-------------------------------------+-------------------------------------------+
 |   rpool/sys/ROOT/be1      | noauto               | /                    | no                                  | see rpool/sys/ROOT/default                |
 +---------------------------+----------------------+----------------------+-------------------------------------+-------------------------------------------+
@@ -120,3 +120,32 @@ Encryption

  As enabling Secure Boot is device specific, this is not
  covered in detail.
+
+Booting with disk failure
+~~~~~~~~~~~~~~~~~~~~~~~~~
+
+This guide is written with disk failure in mind.
+
+If disks used in Root on ZFS pool failed, but
+sufficient redundancy for both root pool and boot pool
+still exists, the system will still boot normally.
+
+Swap partition on the failed disk will fail to mount,
+after an 1m30s timeout.
+
+This feature is useful for use cases such
+as an unattended remote server.
+
+Example:
+
+ - System has disks ``n>1``
+
+ - Installed with mirrored setup
+
+ - Mirrored setup can tolerate up to ``n-1`` disk failures
+
+ - Disconnect one or more disks, keep at least
+   one disk connected
+
+ - System still boots, but fails to mount swap and
+   EFI partition
--- a/ZFS/1-preparation.rst
+++ b/ZFS/1-preparation.rst
@@ -73,7 +73,7 @@ Preparation
    ls /dev/disk/by-id/*

   If using virtio as disk bus, use
-   ``/dev/disk/by-path/*`` or ``/dev/vd*``.
+   ``/dev/disk/by-path/*``.

   Declare disk array::

--- a/ZFS/2-system-installation.rst
+++ b/ZFS/2-system-installation.rst
@@ -169,12 +169,11 @@ System Installation
    zfs create -o canmount=off -o mountpoint=none bpool_$INST_UUID/$INST_ID/BOOT
    zfs create -o canmount=off -o mountpoint=none rpool_$INST_UUID/$INST_ID/ROOT
    zfs create -o canmount=off -o mountpoint=none rpool_$INST_UUID/$INST_ID/DATA
-    zfs create -o mountpoint=legacy -o canmount=noauto bpool_$INST_UUID/$INST_ID/BOOT/default
+    zfs create -o mountpoint=/boot -o canmount=noauto bpool_$INST_UUID/$INST_ID/BOOT/default
    zfs create -o mountpoint=/ -o canmount=off    rpool_$INST_UUID/$INST_ID/DATA/default
    zfs create -o mountpoint=/ -o canmount=noauto rpool_$INST_UUID/$INST_ID/ROOT/default
    zfs mount rpool_$INST_UUID/$INST_ID/ROOT/default
-    mkdir /mnt/boot
-    mount -t zfs bpool_$INST_UUID/$INST_ID/BOOT/default /mnt/boot
+    zfs mount bpool_$INST_UUID/$INST_ID/BOOT/default
    for i in {usr,var,var/lib};
    do
        zfs create -o canmount=off rpool_$INST_UUID/$INST_ID/DATA/default/$i
--- a/ZFS/3-system-configuration.rst
+++ b/ZFS/3-system-configuration.rst
@@ -11,21 +11,9 @@ System Configuration

    echo GRUB_CMDLINE_LINUX=\"zfs_import_dir=${INST_PRIMARY_DISK%/*}\" >> /mnt/etc/default/grub

-#. Generate list of datasets for `zfs-mount-generator
-   <https://manpages.ubuntu.com/manpages/focal/man8/zfs-mount-generator.8.html>`__ to mount them at boot::
-
-    # tab-separated zfs properties
-    # see /etc/zfs/zed.d/history_event-zfs-list-cacher.sh
-    export \
-    PROPS="name,mountpoint,canmount,atime,relatime,devices,exec\
-    ,readonly,setuid,nbmand,encroot,keylocation"
-    mkdir -p /mnt/etc/zfs/zfs-list.cache
-    zfs list -H -t filesystem -o $PROPS -r rpool_$INST_UUID > /mnt/etc/zfs/zfs-list.cache/rpool_$INST_UUID
-    sed -Ei "s|/mnt/?|/|" /mnt/etc/zfs/zfs-list.cache/*
-
 #. Generate fstab::

-    echo bpool_$INST_UUID/$INST_ID/BOOT/default /boot zfs rw,xattr,posixacl 0 0 >> /mnt/etc/fstab
+    genfstab -U /mnt | sed 's;zfs[[:space:]]*;zfs zfsutil,;g' | grep "zfs zfsutil" >> /mnt/etc/fstab
    for i in ${DISK}; do
       echo UUID=$(blkid -s UUID -o value ${i}-part1) /boot/efis/${i##*/}-part1 vfat \
       x-systemd.idle-timeout=1min,x-systemd.automount,noauto,umask=0022,fmask=0022,dmask=0022 0 1 >> /mnt/etc/fstab
@@ -108,7 +96,7 @@ System Configuration
    systemctl enable zfs-import-scan.service zfs-import.target zfs-zed zfs.target --root=/mnt
    systemctl disable zfs-mount --root=/mnt

-   At boot, datasets on rpool are mounted with ``zfs-mount-generator``,
+   At boot, datasets on rpool are mounted with ``/etc/fstab``,
   which can control the mounting process more precisely than ``zfs-mount.service``.

 #. Chroot::
--- a/ZFS/4-optional-configuration.rst
+++ b/ZFS/4-optional-configuration.rst
@@ -227,7 +227,7 @@ Persistent swap and hibernation
    resume=/dev/mapper/${INST_SWAPMAPPER}\"" \
    >> /etc/default/grub

-   Note that hibernation might not work with discrete graphics or
+   Note that hibernation might not work with discrete graphics, virtio graphics or
   AMD APU integrated graphics. This is not specific to this guide.

   Computer must resume from a continuous swap space, resume