| // Copyright 2020 The Monogon Project Authors. |
| // |
| // SPDX-License-Identifier: Apache-2.0 |
| // |
| // Licensed under the Apache License, Version 2.0 (the "License"); |
| // you may not use this file except in compliance with the License. |
| // You may obtain a copy of the License at |
| // |
| // http://www.apache.org/licenses/LICENSE-2.0 |
| // |
| // Unless required by applicable law or agreed to in writing, software |
| // distributed under the License is distributed on an "AS IS" BASIS, |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| // See the License for the specific language governing permissions and |
| // limitations under the License. |
| |
| // Installer creates a Metropolis image at a suitable block device based on the |
| // installer bundle present in the installation medium's ESP, after which it |
| // reboots. It's meant to be used as an init process. |
| package main |
| |
| import ( |
| "archive/zip" |
| "bytes" |
| _ "embed" |
| "errors" |
| "fmt" |
| "io/fs" |
| "os" |
| "path/filepath" |
| "strings" |
| "syscall" |
| "time" |
| |
| "golang.org/x/sys/unix" |
| |
| "source.monogon.dev/metropolis/node/build/mkimage/osimage" |
| "source.monogon.dev/metropolis/pkg/blockdev" |
| "source.monogon.dev/metropolis/pkg/efivarfs" |
| "source.monogon.dev/metropolis/pkg/sysfs" |
| ) |
| |
| //go:embed metropolis/node/core/abloader/abloader_bin.efi |
| var abloader []byte |
| |
| const mib = 1024 * 1024 |
| |
| // mountPseudoFS mounts efivarfs, devtmpfs and sysfs, used by the installer in |
| // the block device discovery stage. |
| func mountPseudoFS() error { |
| for _, m := range []struct { |
| dir string |
| fs string |
| flags uintptr |
| }{ |
| {"/sys", "sysfs", unix.MS_NOEXEC | unix.MS_NOSUID | unix.MS_NODEV}, |
| {efivarfs.Path, "efivarfs", unix.MS_NOEXEC | unix.MS_NOSUID | unix.MS_NODEV}, |
| {"/dev", "devtmpfs", unix.MS_NOEXEC | unix.MS_NOSUID}, |
| } { |
| if err := unix.Mkdir(m.dir, 0700); err != nil && !os.IsExist(err) { |
| return fmt.Errorf("couldn't create the mountpoint at %q: %w", m.dir, err) |
| } |
| if err := unix.Mount(m.fs, m.dir, m.fs, m.flags, ""); err != nil { |
| return fmt.Errorf("couldn't mount %q at %q: %w", m.fs, m.dir, err) |
| } |
| } |
| return nil |
| } |
| |
| // mountInstallerESP mounts the filesystem the installer was loaded from based |
| // on espPath, which must point to the appropriate partition block device. The |
| // filesystem is mounted at /installer. |
| func mountInstallerESP(espPath string) error { |
| // Create the mountpoint. |
| if err := unix.Mkdir("/installer", 0700); err != nil { |
| return fmt.Errorf("couldn't create the installer mountpoint: %w", err) |
| } |
| // Mount the filesystem. |
| if err := unix.Mount(espPath, "/installer", "vfat", unix.MS_NOEXEC|unix.MS_RDONLY, ""); err != nil { |
| return fmt.Errorf("couldn't mount the installer ESP (%q -> %q): %w", espPath, "/installer", err) |
| } |
| return nil |
| } |
| |
| // findInstallableBlockDevices returns names of all the block devices suitable |
| // for hosting a Metropolis installation, limited by the size expressed in |
| // bytes minSize. The install medium espDev will be excluded from the result. |
| func findInstallableBlockDevices(espDev string, minSize uint64) ([]string, error) { |
| // Use the partition's name to find and return the name of its parent |
| // device. It will be excluded from the list of suitable target devices. |
| srcDev, err := sysfs.ParentBlockDevice(espDev) |
| // Build the exclusion list containing forbidden handle prefixes. |
| exclude := []string{"dm-", "zram", "ram", "loop", srcDev} |
| |
| // Get the block device handles by looking up directory contents. |
| const blkDirPath = "/sys/class/block" |
| blkDevs, err := os.ReadDir(blkDirPath) |
| if err != nil { |
| return nil, fmt.Errorf("couldn't read %q: %w", blkDirPath, err) |
| } |
| // Iterate over the handles, skipping any block device that either points to |
| // a partition, matches the exclusion list, or is smaller than minSize. |
| var suitable []string |
| probeLoop: |
| for _, devInfo := range blkDevs { |
| // Skip devices according to the exclusion list. |
| for _, prefix := range exclude { |
| if strings.HasPrefix(devInfo.Name(), prefix) { |
| continue probeLoop |
| } |
| } |
| |
| // Skip partition symlinks. |
| if _, err := os.Stat(filepath.Join(blkDirPath, devInfo.Name(), "partition")); err == nil { |
| continue |
| } else if !os.IsNotExist(err) { |
| return nil, fmt.Errorf("while probing sysfs: %w", err) |
| } |
| |
| // Skip devices of insufficient size. |
| devPath := filepath.Join("/dev", devInfo.Name()) |
| dev, err := blockdev.Open(devPath) |
| if err != nil { |
| return nil, fmt.Errorf("couldn't open a block device at %q: %w", devPath, err) |
| } |
| devSize := uint64(dev.BlockCount() * dev.BlockSize()) |
| dev.Close() |
| if devSize < minSize { |
| continue |
| } |
| |
| suitable = append(suitable, devInfo.Name()) |
| } |
| return suitable, nil |
| } |
| |
| // FileSizedReader is a small adapter from fs.File to fs.SizedReader |
| // Panics on Stat() failure, so should only be used with sources where Stat() |
| // cannot fail. |
| type FileSizedReader struct { |
| fs.File |
| } |
| |
| func (f FileSizedReader) Size() int64 { |
| stat, err := f.Stat() |
| if err != nil { |
| panic(err) |
| } |
| return stat.Size() |
| } |
| |
| func main() { |
| // Reboot on panic after a delay. The error string will have been printed |
| // before recover is called. |
| defer func() { |
| if r := recover(); r != nil { |
| logf("Fatal error: %v", r) |
| logf("The installation could not be finalized. Please reboot to continue.") |
| syscall.Pause() |
| } |
| }() |
| |
| // Mount sysfs, devtmpfs and efivarfs. |
| if err := mountPseudoFS(); err != nil { |
| panicf("While mounting pseudo-filesystems: %v", err) |
| } |
| |
| go logPiper() |
| logf("Metropolis Installer") |
| logf("Copyright (c) 2023 The Monogon Project Authors") |
| logf("") |
| |
| // Read the installer ESP UUID from efivarfs. |
| espUuid, err := efivarfs.ReadLoaderDevicePartUUID() |
| if err != nil { |
| panicf("While reading the installer ESP UUID: %v", err) |
| } |
| // Wait for up to 30 tries @ 1s (30s) for the ESP to show up |
| var espDev string |
| var retries = 30 |
| for { |
| // Look up the installer partition based on espUuid. |
| espDev, err = sysfs.DeviceByPartUUID(espUuid) |
| if err == nil { |
| break |
| } else if errors.Is(err, sysfs.ErrDevNotFound) && retries > 0 { |
| time.Sleep(1 * time.Second) |
| retries-- |
| } else { |
| panicf("While resolving the installer device handle: %v", err) |
| } |
| } |
| espPath := filepath.Join("/dev", espDev) |
| // Mount the installer partition. The installer bundle will be read from it. |
| if err := mountInstallerESP(espPath); err != nil { |
| panicf("While mounting the installer ESP: %v", err) |
| } |
| |
| nodeParameters, err := os.Open("/installer/metropolis-installer/nodeparams.pb") |
| if err != nil { |
| panicf("Failed to open node parameters from ESP: %v", err) |
| } |
| |
| // TODO(lorenz): Replace with proper bundles |
| bundle, err := zip.OpenReader("/installer/metropolis-installer/bundle.bin") |
| if err != nil { |
| panicf("Failed to open node bundle from ESP: %v", err) |
| } |
| defer bundle.Close() |
| efiPayload, err := bundle.Open("kernel_efi.efi") |
| if err != nil { |
| panicf("Cannot open EFI payload in bundle: %v", err) |
| } |
| defer efiPayload.Close() |
| systemImage, err := bundle.Open("verity_rootfs.img") |
| if err != nil { |
| panicf("Cannot open system image in bundle: %v", err) |
| } |
| defer systemImage.Close() |
| |
| // Build the osimage parameters. |
| installParams := osimage.Params{ |
| PartitionSize: osimage.PartitionSizeInfo{ |
| // ESP is the size of the node ESP partition, expressed in mebibytes. |
| ESP: 384, |
| // System is the size of the node system partition, expressed in |
| // mebibytes. |
| System: 4096, |
| // Data must be nonzero in order for the data partition to be created. |
| // osimage will extend the data partition to fill all the available space |
| // whenever it's writing to block devices, such as now. |
| Data: 128, |
| }, |
| SystemImage: systemImage, |
| EFIPayload: FileSizedReader{efiPayload}, |
| ABLoader: bytes.NewReader(abloader), |
| NodeParameters: FileSizedReader{nodeParameters}, |
| } |
| // Calculate the minimum target size based on the installation parameters. |
| minSize := uint64((installParams.PartitionSize.ESP + |
| installParams.PartitionSize.System + |
| installParams.PartitionSize.Data + 1) * mib) |
| |
| // Look for suitable block devices, given the minimum size. |
| blkDevs, err := findInstallableBlockDevices(espDev, minSize) |
| if err != nil { |
| panicf(err.Error()) |
| } |
| if len(blkDevs) == 0 { |
| panicf("Couldn't find a suitable block device.") |
| } |
| // Set the first suitable block device found as the installation target. |
| tgtBlkdevName := blkDevs[0] |
| // Update the osimage parameters with a path pointing at the target device. |
| tgtBlkdevPath := filepath.Join("/dev", tgtBlkdevName) |
| |
| tgtBlockDev, err := blockdev.Open(tgtBlkdevPath) |
| if err != nil { |
| panicf("error opening target device: %v", err) |
| } |
| installParams.Output = tgtBlockDev |
| |
| // Use osimage to partition the target block device and set up its ESP. |
| // Create will return an EFI boot entry on success. |
| logf("Installing to %s...", tgtBlkdevPath) |
| be, err := osimage.Create(&installParams) |
| if err != nil { |
| panicf("While installing: %v", err) |
| } |
| |
| // Create an EFI boot entry for Metropolis. |
| en, err := efivarfs.AddBootEntry(be) |
| if err != nil { |
| panicf("While creating a boot entry: %v", err) |
| } |
| // Erase the preexisting boot order, leaving Metropolis as the only option. |
| if err := efivarfs.SetBootOrder(efivarfs.BootOrder{uint16(en)}); err != nil { |
| panicf("While adjusting the boot order: %v", err) |
| } |
| |
| // Reboot. |
| tgtBlockDev.Close() |
| unix.Sync() |
| logf("Installation completed. Rebooting.") |
| unix.Reboot(unix.LINUX_REBOOT_CMD_RESTART) |
| } |