artificialwisdomai · rstarmer · May 9, 2023 · May 13, 2023 · May 13, 2023 · May 14, 2023
@@ -1 +1 @@
-build/
+build*/
@@ -0,0 +1,4 @@
+# Notes for deploying on cloud-hypervisor
+
+No notes yet, but we will want to be able to deploy the golden image (possibly
+from an Oracle object path) via cloud-hypervisor.
@@ -0,0 +1,81 @@
+# Notes for building and pushing to OCI directly from VirtualBox
+
+## Blogs describe how to move an image from VBox > OCI
+
+https://www.oracle.com/us/technologies/virtualization/oracle-vm-vb-oci-export-20190502-5480003.pdf
+
+Actually, if you go far enough in this blog article (part 8):
+
+https://blogs.oracle.com/virtualization/post/export-vm-from-virtualbox-to-oci-part-8
+
+He gives the command:
+VBoxManage export <machine>
+--output OCI://
+[--vsys <number of virtual system>]
+[--vmname <name>]
+[--cloud <number of virtual system>]
+[--vmname <name>]
+[--cloudprofile <cloud profile name>]
+[--cloudbucket <bucket name>]
+[--cloudkeepobject <true/false>]
+[--cloudlaunchmode EMULATED|PARAVIRTUALIZED]
+[--cloudlaunchinstance <true/false>]
+[--clouddomain <domain>]
+[--cloudshape <shape>]
+[--clouddisksize <disk size in GB>]
+[--cloudocivcn <OCI vcn id>]
+[--cloudocisubnet <OCI subnet id>]
+[--cloudpublicip <true/false>]
+[--cloudprivateip <ip>]
+[--cloudinitscriptpath <script path>]
+
+## Move the packer golden image
+
+https://blogs.oracle.com/cloud-infrastructure/post/using-packer-and-virtualbox-to-bring-your-own-image-into-oracle-cloud-infrastructure
+
+## manual mode
+
+Install the oci command line client
+
+OSX
+
+```sh
+brew install oci-cli
+```
+
+Linux
+
+```sh
+python3 -m pip install oci-cli
+```
+
+Windows
+
+```sh
+choclatey install oci-cli
+```
+
+configure with an OCI generated API key (gotta get that from the console: `https://cloud.oracle.com/identity/domains/my-profile/api-keys?region=us-phoenix-1`). Don't foget the public key fingerprint as well.
+
+Download the .pem file that is generated (don't forget to do this, or you'll just need to create a new key). Store it in the ~/.oci directory (create if it doesn'[t exist).
+])
+Also, you need your tenancy, user, and compartment OCIDs. You
+
+add them to:
+
+```sh
+cat >> ~/.oci/config <<EOF
+[DEFAULT]
+user=<USER_OCID>
+tenancy=<TENANT_OCID>
+region=us-phoenix-1
+key_file=~/.oci/<API_AUTH_PRIVATE_KEY>.pem
+fingerprint=<API_AUTH_PUB_FINGERPRINT>
+EOF
+
+cat >> ~/.oci/oci_cli_rc <<EOF
+[DEFAULT]
+compartment-id=<COMPARTMENT_ID>
+EOF
+
+
@@ -97,7 +97,7 @@ source "virtualbox-iso" "base-debian-amd64" {
   nic_type             = "virtio"
   hard_drive_interface = "virtio"
   rtc_time_base        = "UTC"
-  shutdown_command     = "echo '${var.ssh_password}' | sudo -S shutdown -P now"
+  shutdown_command     = "echo '${var.ssh_password}' | sudo -S /usr/sbin/shutdown -P now"
   ssh_username         = "${var.ssh_username}"
   ssh_password         = "${var.ssh_password}"
   ssh_wait_timeout     = "30m"
@@ -111,4 +111,11 @@ source "virtualbox-iso" "base-debian-amd64" {
 build {
   sources = ["source.virtualbox-iso.base-debian-amd64"]
 
+  provisioner "shell" {
+    environment_vars = ["SSH_PASSWORD=${var.ssh_password}"]
+    execute_command = "{{ .Vars }} bash '{{ .Path }}'"
+#    inline          = ["echo Hello World"]
+    script          = "scripts/serial.sh"
+  }
+
 }
@@ -47,7 +47,7 @@ tasksel tasksel/skip-tasks  string standard
 tasksel tasksel/first multiselect openssh-server
 popularity-contest popularity-contest/participate boolean false
 
-d-i pkgsel/include string curl wget openssh-server neovim sudo
+d-i pkgsel/include string curl wget openssh-server neovim sudo cloud-init
 d-i pkgsel/language-pack-patterns   string
 d-i pkgsel/install-language-support boolean false
 d-i pkgsel/upgrade select full-upgrade

@@ -0,0 +1,7 @@
+- hosts: all
+  any_errors_fatal: yes
+  become: true
+
+  tasks:
+    - import_role:
+        name: packages
@@ -0,0 +1,10 @@
+ - name: "Get installed packages"
+    apt:
+      list: "installed"
+    register: installed_packages
+
+  - name: "Install missing packages"
+    package: 
+      state: "present"
+      name: "{{ item }}"
+    with_items: "{{ install_package_list | difference(installed_packages | json_query('results[*].name')) }}"
@@ -0,0 +1,157 @@
+---
+install_package_list:
+         - apport
+ - bc
+ - bcache-tools
+ - binutils
+ - binutils-common
+ - binutils-x86-64-linux-gnu
+ - bolt
+ - btrfs-progs
+ - busybox-initramfs
+ - cryptsetup
+ - cryptsetup-bin
+ - dbus-user-session
+ - dirmngr
+ - distro-info
+ - dmeventd
+ - dosfstools
+ - dpkg-sig
+ - efibootmgr
+ - ethtool
+ - finalrd
+ - fonts-ubuntu-console
+ - fuse3
+ - fwupd
+ - fwupd-signed
+ - gawk
+ - gcc-12-base
+ - gir1.2-glib-2.0
+ - gir1.2-packagekitglib-1.0
+ - gnupg
+ - gnupg-l10n
+ - gnupg-utils
+ - gpg
+ - gpg-agent
+ - gpgconf
+ - gpgsm
+ - gpg-wks-client
+ - gpg-wks-server
+ - grub-efi-amd64-bin
+ - grub-efi-amd64-signed
+ - grub-gfxpayload-lists
+ - htop
+ - initramfs-tools-bin
+ - iptables
+ - iptables-persistent
+ - keyutils
+ - kpartx
+ - libaio1
+ - libarchive13
+ - libassuan0
+ - libatasmart4
+ - libatm1
+ - libbinutils
+ - libblockdev2
+ - libblockdev-crypto2
+ - libblockdev-fs2
+ - libblockdev-loop2
+ - libblockdev-part2
+ - libblockdev-part-err2
+ - libblockdev-swap2
+ - libblockdev-utils2
+ - libcbor0.8
+ - libconfig-file-perl
+ - libctf0
+ - libctf-nobfd0
+ - libcurl3-gnutls
+ - libdevmapper-event1.02.1
+ - libevent-core-2.1-7
+ - libffi8
+ - libfuse3-3
+ - libfwupd2
+ - libfwupdplugin5
+ - libgcab-1.0-0
+ - libgdbm6
+ - libgdbm-compat4
+ - libgirepository-1.0-1
+ - libglib2.0-0
+ - libglib2.0-data
+ - libgpgme11
+ - libgpm2
+ - libgudev-1.0-0
+ - libgusb2
+ - libicu70
+ - libintl-perl
+ - libintl-xs-perl
+ - libip6tc2
+ - libisns0
+ - libjcat1
+ - libjson-glib-1.0-0
+ - libjson-glib-1.0-common
+ - libksba8
+ - libldap-2.5-0
+ - liblvm2cmd2.03
+ - liblzo2-2
+ - libmagic1
+ - libmagic-mgc
+ - libmbim-glib4
+ - libmbim-proxy
+ - libmm-glib0
+ - libmodule-find-perl
+ - libmodule-scandeps-perl
+ - libmpfr6
+ - libnetfilter-conntrack3
+ - libnetplan0
+ - libnfnetlink0
+ - libnfsidmap1
+ - libnl-3-200
+ - libnl-genl-3-200
+ - libnpth0
+ - libnspr4
+ - libnss3
+ - libnss-systemd
+ - libntfs-3g89
+ - libopeniscsiusr
+ - libpackagekit-glib2-18
+ - libpam-cap
+ - libparted2
+ - libparted-fs-resize0
+ - libperl5.34
+ - libpolkit-agent-1-0
+ - libpolkit-gobject-1-0
+ - libproc-processtable-perl
+ - libpython3.10-minimal
+ - libpython3.10-stdlib
+ - libqmi-glib5
+ - libqmi-proxy
+ - libsemanage2
+ - libsepol2
+ - libsgutils2-2
+ - libsigsegv2
+ - libsmbios-c2
+ - libsort-naturally-perl
+ - libssh-4
+ - libssl3
+ - libtcl8.6
+ - libterm-readkey-perl
+ - libtss2-esys-3.0.2-0
+ - libtss2-mu0
+ - libtss2-sys1
+ - libtss2-tcti-cmd0
+ - libtss2-tcti-device0
+ - libtss2-tcti-mssim0
+ - libtss2-tcti-swtpm0
+ - libudisks2-0
+ - libusb-1.0-0
+ - libvolume-key1
+ - libxml2
+ - libxmlb2
+ - linux-headers-5.15.0-1033-oracle
+ - linux-headers-oracle
+ - linux-image-5.15.0-1033-oracle
+ - linux-image-oracle
+ - linux-modules-5.15.0-1033-oracle
+ - linux-modules-extra-5.15.0-1033-oracle
+ - linux-oracle
+ - linux-oracle-headers-5.15.0-1033
@@ -3,3 +3,11 @@
 SSH_PASSWORD=$(cat /dev/urandom | LC_ALL=C tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1)
 BUILD_TIME=$(date +%Y-%m-%d-%H-%M-%S)
 PACKER_LOG=1 packer build -var ssh_password=${SSH_PASSWORD} -var build_time=${BUILD_TIME} bullseye.pkr.hcl
+if [ $(echo $?) -eq 0 ]; then
+	echo "Uploading image"
+	bash upload-image.sh
+	exit $?
+else
+	echo "System Errored"
+        exit 1
+fi
@@ -0,0 +1,24 @@
+#!/bin/sh
+
+cat > /tmp/fixes.sh <<EOF
+#!/bin/bash
+set -x
+echo 'GRUB_CMDLINE_LINUX="console=ttyS0"' >> /etc/default/grub
+update-grub
+
+if [ -f /etc/udev/rules.d/70-persistent-net.rules ] ; then 
+  rm /etc/udev/rules.d/70-persistent-net.rules
+  ln -s /dev/null /etc/udev/rules.d/70-persistent-net.rules
+fi
+
+echo 'packer ALL=(ALL) NOPASSWD:ALL'>> /etc/sudoers.d/91-packer
+
+passwd -d packer
+
+mkdir /home/packer/.ssh
+chmod 700 /home/packer/.ssh
+curl -sLo - https://github.com/sdake.keys >> /home/packer/.ssh/authorized_keys
+curl -sLo - https://github.com/rstarmer.keys >> /home/packer/.ssh/authorized_keys
+EOF
+
+echo ${SSH_PASSWORD} | sudo -S bash /tmp/fixes.sh
@@ -0,0 +1,26 @@
+if [ $(oci os bucket list | jq '.data[0].name' | grep "debian-golden" | wc -l) -ge 1 ] ; then
+  echo "bucket debian-golden exists"
+else
+  oci os bucket create --name debian-golden
+  if [ $? -gt 0 ]; then exit 1; fi
+fi
+if [ -f build/golden.raw-disk001.vmdk ]; then
+  oci os object put --bucket-name debian-golden --file build/golden.raw-disk001.vmdk --name golden.raw-disk001.vmdk --force
+  if [ $? -gt 0 ]; then exit 1; fi
+else
+  echo no vmdk to upload!
+  exit 1
+fi
+NAMESPACE=$(oci os ns get | jq .data | tr -d '"')
+WORK_REQUEST=$(oci compute image import from-object --namespace $NAMESPACE \
+	--launch-mode PARAVIRTUALIZED --display-name debian-golden \
+	--bucket-name debian-golden --name golden.raw-disk001.vmdk )
+echo $WORK_REQUEST
+WORK_REQUEST_ID=$(echo $WORK_REQUEST | jq '."opc-work-request-id"' | tr -d '"')
+echo $WORK_REQUEST_ID
+WORK_DISPLAY_NAME=$(echo $WORK_REQUEST | jq '.data."display-name"' | tr -d '"')
+echo $WORK_DISPLAY_NAME
+if [ $? -gt 0 ]; then exit 1; fi
+time
+while [ "$(oci work-requests work-request get --work-request-id $WORK_REQUEST_ID         | jq '.data.status' >&/dev/null; echo $?)" -eq 0 ]; do echo waiting 1m; sleep 60; done
+echo "SUCCESS importing $WORK_DISPLAY_NAME"