mirror of
https://github.com/siderolabs/talos.git
synced 2026-05-05 04:16:21 +02:00
ddd6b186eb
Simplify the flow a bit by using live partition info, avoid doing some calculations which are already done in the partition code. Remove some steps I believe we don't need to do. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
973 lines
30 KiB
Go
973 lines
30 KiB
Go
// This Source Code Form is subject to the terms of the Mozilla Public
|
|
// License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
// file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
|
|
// Package install provides the installation routine.
|
|
package install
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"log"
|
|
"os"
|
|
"path/filepath"
|
|
"slices"
|
|
|
|
"github.com/google/uuid"
|
|
"github.com/siderolabs/gen/xslices"
|
|
"github.com/siderolabs/go-blockdevice/v2/blkid"
|
|
"github.com/siderolabs/go-blockdevice/v2/block"
|
|
"github.com/siderolabs/go-blockdevice/v2/partitioning"
|
|
"github.com/siderolabs/go-blockdevice/v2/partitioning/gpt"
|
|
"github.com/siderolabs/go-pointer"
|
|
"github.com/siderolabs/go-procfs/procfs"
|
|
"go.yaml.in/yaml/v4"
|
|
|
|
"github.com/siderolabs/talos/internal/app/machined/pkg/runtime"
|
|
bootloaderpkg "github.com/siderolabs/talos/internal/app/machined/pkg/runtime/v1alpha1/bootloader"
|
|
"github.com/siderolabs/talos/internal/app/machined/pkg/runtime/v1alpha1/bootloader/grub"
|
|
bootloaderoptions "github.com/siderolabs/talos/internal/app/machined/pkg/runtime/v1alpha1/bootloader/options"
|
|
"github.com/siderolabs/talos/internal/pkg/meta"
|
|
"github.com/siderolabs/talos/internal/pkg/partition"
|
|
"github.com/siderolabs/talos/pkg/imager/overlay/executor"
|
|
"github.com/siderolabs/talos/pkg/imager/profile"
|
|
"github.com/siderolabs/talos/pkg/imager/utils"
|
|
"github.com/siderolabs/talos/pkg/machinery/compatibility"
|
|
"github.com/siderolabs/talos/pkg/machinery/constants"
|
|
"github.com/siderolabs/talos/pkg/machinery/imager/quirks"
|
|
"github.com/siderolabs/talos/pkg/machinery/kernel"
|
|
metaconsts "github.com/siderolabs/talos/pkg/machinery/meta"
|
|
"github.com/siderolabs/talos/pkg/machinery/overlay"
|
|
"github.com/siderolabs/talos/pkg/machinery/version"
|
|
"github.com/siderolabs/talos/pkg/makefs"
|
|
)
|
|
|
|
// Options represents the set of options available for an install.
|
|
type Options struct {
|
|
ConfigSource string
|
|
// Can be an actual disk path or a file representing a disk image.
|
|
DiskPath string
|
|
Platform string
|
|
Arch string
|
|
ExtraKernelArgs []string
|
|
Upgrade bool
|
|
Force bool
|
|
Zero bool
|
|
LegacyBIOSSupport bool
|
|
GrubUseUKICmdline bool
|
|
MetaValues MetaValues
|
|
OverlayInstaller overlay.Installer[overlay.ExtraOptions]
|
|
OverlayName string
|
|
OverlayExtractedDir string
|
|
ExtraOptions overlay.ExtraOptions
|
|
|
|
ImageCachePath string
|
|
ImageCacheSize int64
|
|
|
|
// Options specific for the image creation mode.
|
|
ImageSecureboot bool
|
|
DiskImageBootloader string
|
|
Version string
|
|
BootAssets bootloaderoptions.BootAssets
|
|
Printf func(string, ...any)
|
|
MountPrefix string
|
|
}
|
|
|
|
// Mode is the install mode.
|
|
type Mode int
|
|
|
|
const (
|
|
// ModeInstall is the install mode.
|
|
ModeInstall Mode = iota
|
|
// ModeUpgrade is the upgrade mode.
|
|
ModeUpgrade
|
|
// ModeImage is the image creation mode.
|
|
ModeImage
|
|
)
|
|
|
|
// IsImage returns true if the mode is image creation.
|
|
func (m Mode) IsImage() bool {
|
|
return m == ModeImage
|
|
}
|
|
|
|
const typeGPT = "gpt"
|
|
|
|
// diskImageLabel is used as a label to generate a deterministic GPT UUID for disk images.
|
|
const diskImageLabel = "talos-image-disk"
|
|
|
|
// Install installs Talos.
|
|
//
|
|
//nolint:gocyclo
|
|
func Install(ctx context.Context, p runtime.Platform, mode Mode, opts *Options) error {
|
|
if overlayPresent() {
|
|
extraOptionsBytes, err := os.ReadFile(constants.ImagerOverlayExtraOptionsPath)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
var extraOptions overlay.ExtraOptions
|
|
|
|
decoder := yaml.NewDecoder(bytes.NewReader(extraOptionsBytes))
|
|
decoder.KnownFields(true)
|
|
|
|
if err := decoder.Decode(&extraOptions); err != nil {
|
|
return fmt.Errorf("failed to decode extra options: %w", err)
|
|
}
|
|
|
|
opts.OverlayInstaller = executor.New(constants.ImagerOverlayInstallerDefaultPath)
|
|
opts.ExtraOptions = extraOptions
|
|
}
|
|
|
|
// NOTE: this is legacy code which is only used when running in GRUB mode with GrubUseUKICmdline set to false.
|
|
cmdline := procfs.NewCmdline("")
|
|
cmdline.Append(constants.KernelParamPlatform, p.Name())
|
|
|
|
if opts.ConfigSource != "" {
|
|
cmdline.Append(constants.KernelParamConfig, opts.ConfigSource)
|
|
}
|
|
|
|
cmdline.SetAll(p.KernelArgs(opts.Arch, quirks.Quirks{}).Strings())
|
|
|
|
// first defaults, then extra kernel args to allow extra kernel args to override defaults
|
|
if err := cmdline.AppendAll(kernel.DefaultArgs(quirks.Quirks{})); err != nil {
|
|
return err
|
|
}
|
|
|
|
if opts.OverlayInstaller != nil {
|
|
overlayOpts, getOptsErr := opts.OverlayInstaller.GetOptions(ctx, opts.ExtraOptions)
|
|
if getOptsErr != nil {
|
|
return fmt.Errorf("failed to get overlay installer options: %w", getOptsErr)
|
|
}
|
|
|
|
opts.OverlayName = overlayOpts.Name
|
|
|
|
cmdline.SetAll(overlayOpts.KernelArgs)
|
|
}
|
|
|
|
// preserve console=ttyS0 if it was already present in cmdline for metal platform
|
|
existingCmdline := procfs.ProcCmdline()
|
|
|
|
if *existingCmdline.Get(constants.KernelParamPlatform).First() == constants.PlatformMetal && existingCmdline.Get("console").Contains("ttyS0") {
|
|
if !slices.Contains(opts.ExtraKernelArgs, "console=ttyS0") {
|
|
cmdline.Append("console", "ttyS0")
|
|
}
|
|
}
|
|
|
|
if err := cmdline.AppendAll(
|
|
opts.ExtraKernelArgs,
|
|
procfs.WithOverwriteArgs("console"),
|
|
procfs.WithOverwriteArgs(constants.KernelParamPlatform),
|
|
procfs.WithDeleteNegatedArgs(),
|
|
); err != nil {
|
|
return err
|
|
}
|
|
|
|
i, err := NewInstaller(ctx, cmdline, mode, opts)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if err = i.Install(ctx, mode); err != nil {
|
|
return err
|
|
}
|
|
|
|
i.options.Printf("installation of %s complete", version.Tag)
|
|
|
|
return nil
|
|
}
|
|
|
|
// Installer represents the installer logic. It serves as the entrypoint to all
|
|
// installation methods.
|
|
type Installer struct {
|
|
cmdline *procfs.Cmdline
|
|
options *Options
|
|
}
|
|
|
|
// NewInstaller initializes and returns an Installer.
|
|
func NewInstaller(ctx context.Context, cmdline *procfs.Cmdline, mode Mode, opts *Options) (i *Installer, err error) {
|
|
i = &Installer{
|
|
cmdline: cmdline,
|
|
options: opts,
|
|
}
|
|
|
|
if i.options.Version == "" {
|
|
i.options.Version = version.Tag
|
|
}
|
|
|
|
if i.options.Printf == nil {
|
|
i.options.Printf = log.Printf
|
|
}
|
|
|
|
if mode == ModeUpgrade && i.options.Force {
|
|
i.options.Printf("system disk wipe on upgrade is not supported anymore, option ignored")
|
|
}
|
|
|
|
if i.options.Zero && mode != ModeInstall {
|
|
i.options.Printf("zeroing of the disk is only supported for the initial installation, option ignored")
|
|
}
|
|
|
|
i.options.BootAssets.FillDefaults(opts.Arch)
|
|
|
|
return i, nil
|
|
}
|
|
|
|
// detectBootloader detects the bootloader to use based on the mode.
|
|
func (i *Installer) detectBootloader(mode Mode) (bootloaderpkg.Bootloader, error) {
|
|
switch mode {
|
|
case ModeInstall:
|
|
return bootloaderpkg.NewAuto(), nil
|
|
case ModeUpgrade:
|
|
return bootloaderpkg.Probe(i.options.DiskPath, bootloaderoptions.ProbeOptions{
|
|
// the disk is already locked
|
|
BlockProbeOptions: []blkid.ProbeOption{
|
|
blkid.WithSkipLocking(true),
|
|
},
|
|
Logger: log.Printf,
|
|
})
|
|
case ModeImage:
|
|
return bootloaderpkg.New(i.options.DiskImageBootloader, i.options.Version, i.options.Arch)
|
|
default:
|
|
return nil, fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
}
|
|
|
|
// diskOperations performs any disk operations required before installation.
|
|
//
|
|
//nolint:gocyclo
|
|
func (i *Installer) diskOperations(mode Mode, bd *block.Device, info *blkid.Info) error {
|
|
switch mode {
|
|
case ModeInstall:
|
|
if !i.options.Zero && !i.options.Force {
|
|
// verify that the disk is either empty or has an empty GPT partition table, otherwise fail the install
|
|
switch {
|
|
case info.Name == "":
|
|
// empty, ok
|
|
case info.Name == typeGPT && len(info.Parts) == 0:
|
|
// GPT, no partitions, ok
|
|
default:
|
|
return fmt.Errorf("disk %s is not empty, skipping install, detected %q", i.options.DiskPath, info.Name)
|
|
}
|
|
} else {
|
|
// zero the disk
|
|
if err := bd.FastWipe(); err != nil {
|
|
return fmt.Errorf("failed to zero blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
case ModeUpgrade:
|
|
// on upgrade, we don't touch the disk partitions, but we need to verify that the disk has the expected GPT partition table
|
|
if info.Name != typeGPT {
|
|
return fmt.Errorf("disk %s has an unexpected format %q", i.options.DiskPath, info.Name)
|
|
}
|
|
|
|
return nil
|
|
case ModeImage:
|
|
// no disk operations required for image creation
|
|
return nil
|
|
default:
|
|
return fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
}
|
|
|
|
// blockDeviceData opens and locks the block device and probes it.
|
|
// the caller is responsible for unlocking and closing the block device.
|
|
func (i *Installer) blockDeviceData(mode Mode) (*block.Device, *blkid.Info, error) {
|
|
// open and lock the blockdevice for the installation disk for the whole duration of the installer
|
|
bd, err := block.NewFromPath(i.options.DiskPath, block.OpenForWrite())
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("failed to open blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
if err = bd.Lock(true); err != nil {
|
|
bd.Close() //nolint:errcheck
|
|
|
|
return nil, nil, fmt.Errorf("failed to lock blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
switch mode {
|
|
case ModeInstall, ModeUpgrade:
|
|
info, err := blkid.Probe(bd.File(), blkid.WithSkipLocking(true))
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("failed to probe blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
return bd, info, nil
|
|
case ModeImage:
|
|
info, err := blkid.ProbePath(i.options.DiskPath, blkid.WithSkipLocking(true))
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("failed to probe blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
return bd, info, nil
|
|
default:
|
|
return nil, nil, fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
}
|
|
|
|
// Install fetches the necessary data locations and copies or extracts
|
|
// to the target locations.
|
|
//
|
|
//nolint:gocyclo,cyclop
|
|
func (i *Installer) Install(ctx context.Context, mode Mode) (err error) {
|
|
// pre-flight checks, erratas
|
|
hostTalosVersion, err := readHostTalosVersion()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if mode == ModeUpgrade {
|
|
i.errataNetIfnames(hostTalosVersion)
|
|
}
|
|
|
|
if err = i.runPreflightChecks(mode); err != nil {
|
|
return err
|
|
}
|
|
|
|
bootlder, err := i.detectBootloader(mode)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to detect bootloader: %w", err)
|
|
}
|
|
|
|
bootPartitions, err := i.getBootPartitions(ctx, mode, bootlder)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get bootloader partitions: %w", err)
|
|
}
|
|
|
|
// create an exclusive lock on the disk and perform necessary disk operations
|
|
// this lock will be held for the whole duration of the installation
|
|
// this is necessary to prevent other processes from interfering with the installation like udevd
|
|
// otherwise udevd might remove and re-add partition device nodes while we are using them
|
|
bd, info, err := i.blockDeviceData(mode)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get blockdevice data: %w", err)
|
|
}
|
|
|
|
defer bd.Unlock() //nolint:errcheck
|
|
defer bd.Close() //nolint:errcheck
|
|
|
|
if err = i.diskOperations(mode, bd, info); err != nil {
|
|
return fmt.Errorf("failed to perform disk operations: %w", err)
|
|
}
|
|
|
|
// create partitions and re-probe the device
|
|
partitionOptions, err := i.createPartitions(ctx, mode, bd, hostTalosVersion, bootPartitions)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to create partitions: %w", err)
|
|
}
|
|
|
|
if err := i.formatPartitions(ctx, mode, partitionOptions); err != nil {
|
|
return fmt.Errorf("failed to format partitions: %w", err)
|
|
}
|
|
|
|
// re-probe the device to get updated partition information
|
|
info, err = blkid.ProbePath(i.options.DiskPath, blkid.WithSkipLocking(true))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to probe blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
bootInstallResult, err := i.installBootloader(ctx, mode, bootlder, info)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to install bootloader: %w", err)
|
|
}
|
|
|
|
if err = i.handleMeta(ctx, mode, bootInstallResult.PreviousLabel, info); err != nil {
|
|
return fmt.Errorf("failed to handle META partition: %w", err)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
//nolint:gocyclo,cyclop
|
|
func (i *Installer) handleMeta(ctx context.Context, mode Mode, previousLabel string, info *blkid.Info) error {
|
|
switch mode {
|
|
case ModeInstall, ModeUpgrade:
|
|
var metaPartitionName string
|
|
|
|
for _, partition := range info.Parts {
|
|
if pointer.SafeDeref(partition.PartitionLabel) == constants.MetaPartitionLabel {
|
|
metaPartitionName = partitioning.DevName(i.options.DiskPath, partition.PartitionIndex)
|
|
|
|
break
|
|
}
|
|
}
|
|
|
|
if metaPartitionName == "" {
|
|
return errors.New("failed to detect META partition")
|
|
}
|
|
|
|
metaState, err := meta.New(ctx, nil, meta.WithPrinter(i.options.Printf), meta.WithFixedPath(metaPartitionName))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open META: %w", err)
|
|
}
|
|
|
|
if mode == ModeUpgrade {
|
|
if ok, err := metaState.SetTag(ctx, metaconsts.Upgrade, previousLabel); !ok || err != nil {
|
|
return fmt.Errorf("failed to set upgrade tag: %q", previousLabel)
|
|
}
|
|
}
|
|
|
|
for _, v := range i.options.MetaValues.values {
|
|
if ok, err := metaState.SetTag(ctx, v.Key, v.Value); !ok || err != nil {
|
|
return fmt.Errorf("failed to set meta tag: %q -> %q", v.Key, v.Value)
|
|
}
|
|
}
|
|
|
|
if err := metaState.Flush(); err != nil {
|
|
return fmt.Errorf("failed to flush META: %w", err)
|
|
}
|
|
|
|
return nil
|
|
case ModeImage:
|
|
if i.options.MetaValues.values == nil {
|
|
return nil
|
|
}
|
|
|
|
f, err := os.OpenFile(i.options.DiskPath, os.O_RDWR, 0)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
defer f.Close() //nolint:errcheck
|
|
|
|
gptdev, err := gpt.DeviceFromFile(f)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to initialize GPT device from image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
pt, err := gpt.Read(gptdev)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to read GPT from image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
metaPartitionInfo := xslices.Filter(info.Parts, func(pr blkid.NestedProbeResult) bool {
|
|
return pointer.SafeDeref(pr.PartitionLabel) == constants.MetaPartitionLabel
|
|
})
|
|
|
|
if len(metaPartitionInfo) == 0 {
|
|
return errors.New("failed to detect META partition")
|
|
}
|
|
|
|
metaPartitionIndex := int(metaPartitionInfo[0].PartitionIndex) - 1
|
|
|
|
metaFilePath := filepath.Join(i.options.MountPrefix, "meta.img")
|
|
|
|
if err := utils.CreateRawDisk(i.options.Printf, metaFilePath, int64(metaPartitionInfo[0].PartitionSize), true); err != nil {
|
|
return fmt.Errorf("failed to create meta image file: %w", err)
|
|
}
|
|
|
|
metaState, err := meta.New(ctx, nil, meta.WithPrinter(i.options.Printf), meta.WithFixedPath(metaFilePath))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open META: %w", err)
|
|
}
|
|
|
|
for _, v := range i.options.MetaValues.values {
|
|
if ok, err := metaState.SetTag(ctx, v.Key, v.Value); !ok || err != nil {
|
|
return fmt.Errorf("failed to set meta tag: %q -> %q", v.Key, v.Value)
|
|
}
|
|
}
|
|
|
|
if err := metaState.Flush(); err != nil {
|
|
return fmt.Errorf("failed to flush META: %w", err)
|
|
}
|
|
|
|
metaFile, err := os.Open(metaFilePath)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open meta image file: %w", err)
|
|
}
|
|
|
|
defer metaFile.Close() //nolint:errcheck
|
|
|
|
pw, pSize, err := pt.PartitionWriter(metaPartitionIndex)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get partition writer for META partition: %w", err)
|
|
}
|
|
|
|
metaFileInfo, err := metaFile.Stat()
|
|
if err != nil {
|
|
return fmt.Errorf("failed to stat meta image file: %w", err)
|
|
}
|
|
|
|
if metaFileInfo.Size() != int64(pSize) {
|
|
return fmt.Errorf("META partition size mismatch: image size %d, partition size %d", metaFileInfo.Size(), pSize)
|
|
}
|
|
|
|
if _, err := io.Copy(pw, metaFile); err != nil {
|
|
return fmt.Errorf("failed to write back META partition data: %w", err)
|
|
}
|
|
|
|
return nil
|
|
default:
|
|
return fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
}
|
|
|
|
func (i *Installer) generateBootloaderOptions(ctx context.Context, mode Mode, info *blkid.Info) bootloaderoptions.InstallOptions {
|
|
return bootloaderoptions.InstallOptions{
|
|
BootDisk: i.options.DiskPath,
|
|
Arch: i.options.Arch,
|
|
Cmdline: i.cmdline.String(),
|
|
GrubUseUKICmdline: i.options.GrubUseUKICmdline,
|
|
Version: i.options.Version,
|
|
ImageMode: mode.IsImage(),
|
|
BootAssets: i.options.BootAssets,
|
|
Printf: i.options.Printf,
|
|
MountPrefix: i.options.MountPrefix,
|
|
BlkidInfo: info,
|
|
|
|
ExtraInstallStep: func() error {
|
|
if i.options.OverlayInstaller != nil {
|
|
i.options.Printf("running overlay installer %q", i.options.OverlayName)
|
|
|
|
if err := i.options.OverlayInstaller.Install(ctx, overlay.InstallOptions[overlay.ExtraOptions]{
|
|
InstallDisk: i.options.DiskPath,
|
|
MountPrefix: i.options.MountPrefix,
|
|
ArtifactsPath: filepath.Join(i.options.OverlayExtractedDir, constants.ImagerOverlayArtifactsPath),
|
|
ExtraOptions: i.options.ExtraOptions,
|
|
}); err != nil {
|
|
return fmt.Errorf("failed to run overlay installer: %w", err)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
},
|
|
}
|
|
}
|
|
|
|
func (i *Installer) getBootPartitions(ctx context.Context, mode Mode, bootloader bootloaderpkg.Bootloader) ([]partition.Options, error) {
|
|
if mode == ModeUpgrade {
|
|
return nil, nil // no need to generate boot partitions on upgrade
|
|
}
|
|
|
|
bootloaderOptions := i.generateBootloaderOptions(ctx, mode, nil)
|
|
|
|
partitionOptions, err := bootloader.GenerateAssets(bootloaderOptions)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to generate bootloader assets: %w", err)
|
|
}
|
|
|
|
efiPartitionPresent := slices.ContainsFunc(partitionOptions, func(p partition.Options) bool {
|
|
return p.Label == constants.EFIPartitionLabel && p.SourceDirectory != ""
|
|
})
|
|
|
|
// We need to move out bootloaderOptions.MountPrefix+/boot/EFI to bootloaderOptions.MountPrefix+/EFI otherwise
|
|
// BOOT partition will be populated with EFI directory inside boot directory.
|
|
if efiPartitionPresent {
|
|
if err := os.Rename(filepath.Join(bootloaderOptions.MountPrefix, constants.EFIMountPoint), filepath.Join(bootloaderOptions.MountPrefix, "EFI")); err != nil {
|
|
return nil, fmt.Errorf("failed to move EFI directory: %w", err)
|
|
}
|
|
}
|
|
|
|
return partitionOptions, nil
|
|
}
|
|
|
|
func (i *Installer) installBootloader(ctx context.Context, mode Mode, bootloader bootloaderpkg.Bootloader, info *blkid.Info) (*bootloaderoptions.InstallResult, error) {
|
|
installOptions := i.generateBootloaderOptions(ctx, mode, info)
|
|
|
|
switch mode {
|
|
case ModeInstall:
|
|
return bootloader.Install(installOptions)
|
|
case ModeUpgrade:
|
|
return bootloader.Upgrade(installOptions)
|
|
case ModeImage:
|
|
return &bootloaderoptions.InstallResult{}, nil // bootloader already installed in image mode during partition creation
|
|
default:
|
|
return nil, fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
}
|
|
|
|
//nolint:gocyclo,cyclop
|
|
func (i *Installer) createPartitions(ctx context.Context, mode Mode, bd *block.Device, hostTalosVersion *compatibility.TalosVersion, bootPartitions []partition.Options) ([]partition.Options, error) {
|
|
var (
|
|
gptdev gpt.Device
|
|
err error
|
|
)
|
|
|
|
switch mode {
|
|
case ModeInstall:
|
|
gptdev, err = gpt.DeviceFromBlockDevice(bd)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to initialize GPT device from blockdevice %s: %w", i.options.DiskPath, err)
|
|
}
|
|
case ModeUpgrade:
|
|
return nil, nil // no partitioning on upgrade
|
|
case ModeImage:
|
|
f, err := os.OpenFile(i.options.DiskPath, os.O_RDWR, 0)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to open image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
defer f.Close() //nolint:errcheck
|
|
|
|
gptdev, err = gpt.DeviceFromFile(f)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to initialize GPT device from image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
default:
|
|
return nil, fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
|
|
partitions, gptOptions, err := i.getPartitionOptions(ctx, mode, hostTalosVersion, bootPartitions)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to get partition options: %w", err)
|
|
}
|
|
|
|
pt, err := gpt.New(gptdev, gptOptions...)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to initialize GPT: %w", err)
|
|
}
|
|
|
|
for _, p := range partitions {
|
|
size := p.Size
|
|
|
|
if size == 0 {
|
|
size = pt.LargestContiguousAllocatable()
|
|
}
|
|
|
|
partitionTyp := uuid.MustParse(p.PartitionType)
|
|
|
|
_, _, err = pt.AllocatePartition(size, p.PartitionLabel, partitionTyp, p.PartitionOpts...)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to allocate partition %s: %w", p.PartitionLabel, err)
|
|
}
|
|
|
|
i.options.Printf("created %s (%s) size %d bytes", p.PartitionLabel, p.PartitionType, size)
|
|
}
|
|
|
|
if err = pt.Write(); err != nil {
|
|
return nil, fmt.Errorf("failed to write GPT: %w", err)
|
|
}
|
|
|
|
if err := gptdev.Sync(); err != nil {
|
|
return nil, fmt.Errorf("failed to sync GPT device: %w", err)
|
|
}
|
|
|
|
return partitions, nil
|
|
}
|
|
|
|
// formatPartitions formats the created partitions populating them with filesystems and data as required.
|
|
//
|
|
//nolint:gocyclo
|
|
func (i *Installer) formatPartitions(ctx context.Context, mode Mode, parts []partition.Options) error {
|
|
switch mode {
|
|
case ModeInstall:
|
|
// format also populates partitions, so we need to make sure source directories are set
|
|
for idx, p := range parts {
|
|
devName := partitioning.DevName(i.options.DiskPath, uint(idx+1))
|
|
|
|
if err := partition.Format(ctx, devName, &p.FormatOptions, i.options.Version, i.options.Printf); err != nil {
|
|
return fmt.Errorf("failed to format partition %s: %w", devName, err)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
case ModeUpgrade:
|
|
// no formatting on upgrade
|
|
return nil
|
|
case ModeImage:
|
|
// format also populates partitions, so we need to make sure source directories are set
|
|
f, err := os.OpenFile(i.options.DiskPath, os.O_RDWR, 0)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
defer f.Close() //nolint:errcheck
|
|
|
|
gptdev, err := gpt.DeviceFromFile(f)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to initialize GPT device from image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
pt, err := gpt.Read(gptdev)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to initialize GPT: %w", err)
|
|
}
|
|
|
|
for idx, p := range parts {
|
|
if err := i.handlePartitionDataPopulation(ctx, idx, p, pt); err != nil {
|
|
return fmt.Errorf("failed to handle partition data population for partition %s: %w", p.Label, err)
|
|
}
|
|
}
|
|
|
|
if err := i.handleGrubBlocklist(gptdev, pt); err != nil {
|
|
return fmt.Errorf("failed to handle GRUB blocklist: %w", err)
|
|
}
|
|
|
|
return nil
|
|
default:
|
|
return fmt.Errorf("unknown image mode: %d", mode)
|
|
}
|
|
}
|
|
|
|
//nolint:gocyclo
|
|
func (i *Installer) handlePartitionDataPopulation(ctx context.Context, idx int, p partition.Options, pt *gpt.Table) error {
|
|
// skip data population for partitions without filesystem ie. partition.FilesystemTypeNone
|
|
// or zeroed partitions ie. partition.FilesystemTypeZeroes
|
|
if p.FileSystemType == partition.FilesystemTypeNone || p.FileSystemType == partition.FilesystemTypeZeroes {
|
|
// no data population required
|
|
return nil
|
|
}
|
|
|
|
partitionImageFile := filepath.Join(i.options.MountPrefix, p.Label+".img")
|
|
|
|
if err := utils.CreateRawDisk(i.options.Printf, partitionImageFile, int64(p.Size), true); err != nil {
|
|
return fmt.Errorf("failed to create raw disk for partition %s: %w", p.Label, err)
|
|
}
|
|
|
|
if p.SourceDirectory == "" {
|
|
return fmt.Errorf("missing source directory for partition %s", p.Label)
|
|
}
|
|
|
|
// this ensures that the images are reproducible
|
|
if err := utils.TouchFiles(i.options.Printf, p.SourceDirectory); err != nil {
|
|
return fmt.Errorf("failed to touch files in source directory %s for partition %s: %w", p.SourceDirectory, p.Label, err)
|
|
}
|
|
|
|
if err := partition.Format(ctx, partitionImageFile, &p.FormatOptions, i.options.Version, i.options.Printf); err != nil {
|
|
return fmt.Errorf("failed to format partition %s: %w", partitionImageFile, err)
|
|
}
|
|
|
|
partitionData, err := os.Open(partitionImageFile)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open partition image file %s: %w", partitionImageFile, err)
|
|
}
|
|
|
|
defer partitionData.Close() //nolint:errcheck
|
|
|
|
w, size, err := pt.PartitionWriter(idx)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get partition writer for partition %s: %w", p.Label, err)
|
|
}
|
|
|
|
if size != int(p.Size) {
|
|
return fmt.Errorf("partition size mismatch for partition %s: expected %d, got %d", p.Label, p.Size, size)
|
|
}
|
|
|
|
written, err := io.Copy(w, partitionData)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to copy partition data for partition %s: %w", p.Label, err)
|
|
}
|
|
|
|
if written != int64(size) {
|
|
return fmt.Errorf("partition data size mismatch for partition %s: expected %d, got %d", p.Label, size, written)
|
|
}
|
|
|
|
i.options.Printf("updated partition %s with %d bytes of data", p.Label, written)
|
|
|
|
return nil
|
|
}
|
|
|
|
//nolint:gocyclo,cyclop
|
|
func (i *Installer) handleGrubBlocklist(gptdev gpt.Device, pt *gpt.Table) error {
|
|
if i.options.Arch != "amd64" {
|
|
return nil
|
|
}
|
|
|
|
if i.options.DiskImageBootloader != profile.BootLoaderKindGrub.String() && i.options.DiskImageBootloader != profile.BootLoaderKindDualBoot.String() {
|
|
return nil
|
|
}
|
|
|
|
sectorSize := gptdev.GetSectorSize()
|
|
|
|
// Find the BIOS GRUB partition where the `core.img` is going to be written to.
|
|
var (
|
|
biosPartitionIndex int
|
|
biosPartition *gpt.Partition
|
|
)
|
|
|
|
for idx, p := range pt.Partitions() {
|
|
if p.Name == constants.BIOSGrubPartitionLabel {
|
|
biosPartition = p
|
|
biosPartitionIndex = idx
|
|
|
|
break
|
|
}
|
|
}
|
|
|
|
if biosPartition == nil {
|
|
return fmt.Errorf("failed to find BOOT partition for GRUB blocklist handling")
|
|
}
|
|
|
|
// Patch boot.img and core.img with blocklist information.
|
|
if err := grub.PatchBlocklistsForDiskImage(sectorSize, biosPartition.FirstLBA, i.options.MountPrefix); err != nil {
|
|
return fmt.Errorf("failed to patch GRUB blocklists: %w", err)
|
|
}
|
|
|
|
coreImgData, err := os.ReadFile(filepath.Join(i.options.MountPrefix, "core.img"))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to read core.img: %w", err)
|
|
}
|
|
|
|
w, size, err := pt.PartitionWriter(biosPartitionIndex)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get partition writer for partition %s: %w", biosPartition.Name, err)
|
|
}
|
|
|
|
if len(coreImgData) > size {
|
|
return fmt.Errorf("core.img size (%d bytes) exceeds BIOS partition size (%d bytes)", len(coreImgData), size)
|
|
}
|
|
|
|
writtenSize, err := w.Write(coreImgData)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to copy partition data for partition %s: %w", biosPartition.Name, err)
|
|
}
|
|
|
|
if writtenSize != len(coreImgData) {
|
|
return fmt.Errorf("partition data size mismatch for partition %s: expected %d, got %d", biosPartition.Name, len(coreImgData), writtenSize)
|
|
}
|
|
|
|
i.options.Printf("embedded GRUB core.img into BIOS partition image (%d bytes)", len(coreImgData))
|
|
|
|
bootImg, err := os.Open(filepath.Join(i.options.MountPrefix, "boot.img"))
|
|
if err != nil {
|
|
return fmt.Errorf("failed to open boot.img for MBR write: %w", err)
|
|
}
|
|
|
|
defer bootImg.Close() //nolint:errcheck
|
|
|
|
mbr := make([]byte, 446)
|
|
|
|
if _, err := io.ReadFull(bootImg, mbr); err != nil {
|
|
return fmt.Errorf("failed to read MBR from boot.img: %w", err)
|
|
}
|
|
|
|
written, err := gptdev.WriteAt(mbr, 0)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to write MBR to image file %s: %w", i.options.DiskPath, err)
|
|
}
|
|
|
|
if written != len(mbr) {
|
|
return fmt.Errorf("failed to write full MBR to image file %s: wrote %d bytes, expected %d bytes", i.options.DiskPath, written, len(mbr))
|
|
}
|
|
|
|
i.options.Printf("wrote GRUB MBR to image file %s", i.options.DiskPath)
|
|
|
|
return nil
|
|
}
|
|
|
|
// getPartitionOptions builds the complete list of partition options for an installation.
|
|
// It combines the bootloader-specific partitions passed in via bootPartitions with the
|
|
// system partitions defined by Talos and handling META and IMAGE cache.
|
|
// It also generates GPT options required to create
|
|
// the final partition layout. Mode-specific behavior is handled,
|
|
// including configuration required for reproducible GUIDs when running in image mode.
|
|
//
|
|
//nolint:gocyclo
|
|
func (i *Installer) getPartitionOptions(ctx context.Context, mode Mode, hostTalosVersion *compatibility.TalosVersion, bootPartitions []partition.Options) ([]partition.Options, []gpt.Option, error) {
|
|
var partitionOffset uint64
|
|
|
|
if i.options.OverlayInstaller != nil {
|
|
overlayOpts, getOptsErr := i.options.OverlayInstaller.GetOptions(ctx, i.options.ExtraOptions)
|
|
if getOptsErr != nil {
|
|
return nil, nil, fmt.Errorf("failed to get overlay installer options: %w", getOptsErr)
|
|
}
|
|
|
|
if overlayOpts.PartitionOptions.Offset != 0 {
|
|
partitionOffset = overlayOpts.PartitionOptions.Offset
|
|
}
|
|
}
|
|
|
|
var gptOptions []gpt.Option
|
|
|
|
if partitionOffset != 0 {
|
|
gptOptions = append(gptOptions, gpt.WithSkipLBAs(uint(partitionOffset)))
|
|
}
|
|
|
|
if i.options.LegacyBIOSSupport {
|
|
gptOptions = append(gptOptions, gpt.WithMarkPMBRBootable())
|
|
}
|
|
|
|
if mode == ModeImage {
|
|
gptOptions = append(gptOptions, gpt.WithDiskGUID(makefs.GUIDFromLabel(diskImageLabel)))
|
|
}
|
|
|
|
quirk := quirks.New(i.options.Version)
|
|
|
|
// boot partitions
|
|
partitions := slices.Clone(bootPartitions)
|
|
|
|
// META partition
|
|
partitions = append(partitions,
|
|
partition.NewPartitionOptions(false, quirk, partition.WithLabel(constants.MetaPartitionLabel)),
|
|
)
|
|
|
|
legacyImage := mode == ModeImage && !quirks.New(i.options.Version).SkipDataPartitions()
|
|
|
|
// compatibility when installing on Talos < 1.8
|
|
if legacyImage || (hostTalosVersion != nil && hostTalosVersion.PrecreateStatePartition()) {
|
|
partitions = append(partitions,
|
|
partition.NewPartitionOptions(false, quirk, partition.WithLabel(constants.StatePartitionLabel)),
|
|
)
|
|
}
|
|
|
|
if legacyImage {
|
|
partitions = append(partitions,
|
|
partition.NewPartitionOptions(false, quirk, partition.WithLabel(constants.EphemeralPartitionLabel)),
|
|
)
|
|
}
|
|
|
|
if i.options.ImageCachePath != "" {
|
|
imageCachePartitionFormatOptions := []partition.FormatOption{
|
|
partition.WithLabel(constants.ImageCachePartitionLabel),
|
|
partition.WithSourceDirectory(i.options.ImageCachePath),
|
|
}
|
|
|
|
if mode == ModeImage {
|
|
imageCachePartitionFormatOptions = append(imageCachePartitionFormatOptions,
|
|
partition.WithReproducible(),
|
|
)
|
|
}
|
|
|
|
imageCachePartition := partition.NewPartitionOptions(
|
|
false,
|
|
quirk,
|
|
imageCachePartitionFormatOptions...,
|
|
)
|
|
|
|
imageCachePartition.Size = uint64(i.options.ImageCacheSize)
|
|
|
|
partitions = append(partitions, imageCachePartition)
|
|
}
|
|
|
|
if mode == ModeImage {
|
|
partitions = xslices.Map(partitions, func(p partition.Options) partition.Options {
|
|
partitionGUID := makefs.GUIDFromLabel(p.PartitionLabel)
|
|
|
|
// Generate deterministic partition GUID from label for reproducible images
|
|
p.PartitionOpts = append(p.PartitionOpts, gpt.WithUniqueGUID(partitionGUID))
|
|
|
|
return p
|
|
})
|
|
}
|
|
|
|
return partitions, gptOptions, nil
|
|
}
|
|
|
|
func (i *Installer) runPreflightChecks(mode Mode) error {
|
|
if mode != ModeUpgrade {
|
|
// pre-flight checks only apply to upgrades
|
|
return nil
|
|
}
|
|
|
|
ctx, cancel := context.WithCancel(context.Background())
|
|
defer cancel()
|
|
|
|
checks, err := NewPreflightChecks(ctx)
|
|
if err != nil {
|
|
return fmt.Errorf("error initializing pre-flight checks: %w", err)
|
|
}
|
|
|
|
defer checks.Close() //nolint:errcheck
|
|
|
|
return checks.Run(ctx)
|
|
}
|
|
|
|
func overlayPresent() bool {
|
|
_, err := os.Stat(constants.ImagerOverlayInstallerDefaultPath)
|
|
|
|
return err == nil
|
|
}
|