|
|
@ -8,23 +8,55 @@ if [[ $# -ne 1 ]]; then |
|
|
fi |
|
|
fi |
|
|
|
|
|
|
|
|
VM="${1}" |
|
|
VM="${1}" |
|
|
|
|
|
if [ -f "/var/lib/libvirt/images/${VM}/root.qcow2" ]; then |
|
|
|
|
|
echo "VM ${VM} already exists. Please remove it first." |
|
|
|
|
|
exit 1 |
|
|
|
|
|
fi |
|
|
|
|
|
|
|
|
temp_dir=$(mktemp -d) |
|
|
temp_dir=$(mktemp -d) |
|
|
cleanup() { |
|
|
cleanup() { |
|
|
|
|
|
local exit_code=$? |
|
|
rm -rf "$temp_dir" |
|
|
rm -rf "$temp_dir" |
|
|
|
|
|
if [ $exit_code -ne 0 ]; then |
|
|
|
|
|
echo "An error occurred. Cleaning up..." |
|
|
|
|
|
virsh destroy "${VM}" || true |
|
|
|
|
|
virsh undefine "${VM}" --nvram || true |
|
|
|
|
|
rm -f "/var/lib/libvirt/images/${VM}/root.qcow2" |
|
|
|
|
|
fi |
|
|
} |
|
|
} |
|
|
trap cleanup EXIT |
|
|
trap cleanup EXIT |
|
|
|
|
|
|
|
|
mkdir -p "/var/lib/libvirt/images/${VM}" |
|
|
# Create a temporary directory to hold the VM image and copy the base image there |
|
|
cp -a "/usr/local/libvirt/images/${VM}/qcow2/disk.qcow2" "/var/lib/libvirt/images/${VM}/root.qcow2" |
|
|
install -m 0710 -o root -g qemu --context=system_u:object_r:virt_image_t:s0 -d "$temp_dir" |
|
|
|
|
|
install -m 0770 -o root -g qemu --context=system_u:object_r:virt_image_t:s0 "/usr/local/libvirt/images/${VM}/qcow2/disk.qcow2" "$temp_dir/root.qcow2" |
|
|
|
|
|
|
|
|
# Inject the Flightctl configuration file (w/ enrollment certificates) into the VM image |
|
|
# Inject the Flightctl configuration file (w/ enrollment certificates) into the VM image |
|
|
|
|
|
# Note: The injected config file will be moved to the right place in the VM by a systemd override in the base image |
|
|
if [ -f /etc/flightctl/config.yaml ]; then |
|
|
if [ -f /etc/flightctl/config.yaml ]; then |
|
|
yq e '.default-labels += { "type": "virtualmachine" }' /etc/flightctl/config.yaml > "$temp_dir/config.yaml" |
|
|
if [ -n "${FLIGHTCTL_LABELS_OVERRIDE:-}" ]; then |
|
|
guestfish --add /var/lib/libvirt/images/${VM}/root.qcow2 -m /dev/sda4 <<EOF |
|
|
echo "Overriding default labels with: ${FLIGHTCTL_LABELS_OVERRIDE}" |
|
|
copy-in $temp_dir/config.yaml /ostree/deploy/default/var/lib/flightctl/ |
|
|
yq e ". * { \"default-labels\": ${FLIGHTCTL_LABELS_OVERRIDE} }" /etc/flightctl/config.yaml > "$temp_dir/config.yaml" |
|
|
|
|
|
else |
|
|
|
|
|
cp /etc/flightctl/config.yaml "$temp_dir/config.yaml" |
|
|
|
|
|
fi |
|
|
|
|
|
guestfish --add "$temp_dir/root.qcow2" -m /dev/sda4 <<EOF |
|
|
|
|
|
copy-in $temp_dir/config.yaml /ostree/deploy/default/var/lib/private/flightctl/ |
|
|
|
|
|
EOF |
|
|
|
|
|
fi |
|
|
|
|
|
|
|
|
|
|
|
# Inject the OSTree auth.json file into the VM image if it exists on the host |
|
|
|
|
|
# Note: The injected config file will be moved to the right place in the VM by a systemd override in the base image |
|
|
|
|
|
if [ -f /etc/ostree/auth.json ]; then |
|
|
|
|
|
guestfish --add "$temp_dir/root.qcow2" -m /dev/sda4 <<'EOF' |
|
|
|
|
|
copy-in /etc/ostree/auth.json /ostree/deploy/default/var/lib/private/flightctl/ |
|
|
EOF |
|
|
EOF |
|
|
fi |
|
|
fi |
|
|
|
|
|
|
|
|
|
|
|
# Copy the VM image to the libvirt images directory |
|
|
|
|
|
install -m 0710 -o root -g qemu -Z -d "/var/lib/libvirt/images/${VM}" |
|
|
|
|
|
install -m 0660 -o root -g qemu -Z "$temp_dir/root.qcow2" "/var/lib/libvirt/images/${VM}/root.qcow2" |
|
|
|
|
|
|
|
|
|
|
|
# Create and start the VM using virt-install |
|
|
virt-install --name "${VM}" \ |
|
|
virt-install --name "${VM}" \ |
|
|
--autostart \ |
|
|
--autostart \ |
|
|
--cpu=host-passthrough \ |
|
|
--cpu=host-passthrough \ |
|
|
@ -38,3 +70,6 @@ virt-install --name "${VM}" \ |
|
|
--import \ |
|
|
--import \ |
|
|
--network=network=default,mac=${DOMAIN_MAC_ADDRESS} \ |
|
|
--network=network=default,mac=${DOMAIN_MAC_ADDRESS} \ |
|
|
--noautoconsole |
|
|
--noautoconsole |
|
|
|
|
|
|
|
|
|
|
|
echo "VM ${VM} has been created and started." |
|
|
|
|
|
exit 0 |
|
|
|
Nicolas Massé
3 months ago