obel1x/fedora-OEMDRV
0
0
Fork 1
Code Issues 2 Pull Requests Actions Packages Projects Releases Wiki Activity

configure.sh wizard, install improvements, encryption fixes, branch support #19

Merged
obel1x merged 22 commits from devel into main 2026-04-30 18:36:59 +02:00
Conversation 0 Commits 22 Files Changed 11
+161 -75
obel1x commented 2026-04-30 18:36:23 +02:00
Owner
Copy Link
Copy Source

Summary

  • configure.sh — full rewrite of variable prompting: inner retry loop per variable so a failed test re-prompts only that variable; inline server reachability tests: Nextcloud /status.php, FreeIPA HTTP endpoint, IPA domain DNS records (_ldap._tcp SRV + _kerberos TXT + _kerberos._udp SRV via dig)
  • install.sh — missing tools offered for dnf install with package mapping; REPO_URL/REPO_BRANCH now read from environment (supports sudo -E) enabling fork/branch testing; check_repo_url and git clone both respect REPO_BRANCH; writes DMI system UUID to config.d/machine_uuid.sys after clone for user-accessible hardware identity
  • conf.distHOSTNM derived directly from machine_uuid.sys; SYSCONFIGPATH moved before HOSTNM block
  • mount_ecrypt_home.sh — allow root access to encrypted directory; passfile handling; improved configured-state detection
  • setup_system_full.sh — adds allow_other to /etc/fuse.conf for encrypted mounts
  • ks profiles — description headers added to Cinnamon and KDE profiles; nvme drive support in disk selection
  • install.md — documents fork/branch testing with REPO_URL/REPO_BRANCH env vars and sudo -E
  • .gitignoreconfig.d/*.sys added
## Summary - **configure.sh** — full rewrite of variable prompting: inner retry loop per variable so a failed test re-prompts only that variable; inline server reachability tests: Nextcloud `/status.php`, FreeIPA HTTP endpoint, IPA domain DNS records (`_ldap._tcp` SRV + `_kerberos` TXT + `_kerberos._udp` SRV via `dig`) - **install.sh** — missing tools offered for `dnf install` with package mapping; `REPO_URL`/`REPO_BRANCH` now read from environment (supports `sudo -E`) enabling fork/branch testing; `check_repo_url` and `git clone` both respect `REPO_BRANCH`; writes DMI system UUID to `config.d/machine_uuid.sys` after clone for user-accessible hardware identity - **conf.dist** — `HOSTNM` derived directly from `machine_uuid.sys`; `SYSCONFIGPATH` moved before HOSTNM block - **mount_ecrypt_home.sh** — allow root access to encrypted directory; passfile handling; improved configured-state detection - **setup_system_full.sh** — adds `allow_other` to `/etc/fuse.conf` for encrypted mounts - **ks profiles** — description headers added to Cinnamon and KDE profiles; nvme drive support in disk selection - **install.md** — documents fork/branch testing with `REPO_URL`/`REPO_BRANCH` env vars and `sudo -E` - **`.gitignore`** — `config.d/*.sys` added
obel1x added 21 commits 2026-04-30 18:36:24 +02:00
Anaconda ks.cfg: use also nvme drives 0b1ade5771
IPA-register use Terminal 8 for better logging 2032bde99d
Refactor configure.sh: per-variable validation loop with DNS domain check d316a7b605 
Each variable is now prompted in a retry loop so a failed test re-prompts
that specific variable instead of restarting the whole wizard. Adds DNS-based
IPA domain validation (_ldap._tcp SRV + _kerberos TXT + _kerberos._udp SRV),
matching what ipa-client-install --domain performs. Fixes syntax errors
(bare `do` → `while true; do`, `continue` → `break`). Expands VARS to include
IPAVAULTNAME, CLIENT_SOFTWARE_SRC, DISTCONFIGPATH_SRC.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
install.sh: offer to install missing tools via dnf bcbcc3392d 
Instead of dying immediately, check_tools now lists missing packages,
asks the user to install them with dnf, and re-verifies after install.
Decline still aborts as before.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Write DMI UUID to machine_uuid.sys for user-accessible machine ID f89d0f36f1 
install.sh writes the last 12 chars of the DMI system UUID to
config.d/machine_uuid.sys (0444) after git clone, so non-root scripts
can derive the hardware-bound hostname without needing dmidecode.

conf.dist reads machine_uuid.sys first; falls back to dmidecode (root)
or hostname -s (user) if the file is absent.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Replace instable HOSTNM determination by file for installation. 29c87be593
Configure: Make IPAVAULTNAME again possible d0932a2fda
configure: CLIENT_SOFTWARE_SRC not needed 4a7ee59559
Div visual updates 0d86bc3d1a
Cryptfilesystem: Allow root to access encrypted directory fe9f6841f3
Crypt: Add Passfile ee2ae055e9
Crypt: Better check for configured 7a3f610740
check crypt setup file b586de545e
Encryption: Add user_allow_other to /etc/fuse.conf 554ef23c7e
mozilla_pre: fixed server adress 58b23b00e7
Add install_from_repo.sh 8263d92b5b
Describe how to install with testenvironment b088a03f88
Test install.sh 1ffa1adafa
Undo test install.sh a960c084b7
Merge branch 'devel' into main fdbd4e44f5
Merge pull request 'configure.sh wizard, install improvements, encryption fixes, branch support' (#18) from unbrot/fedora-OEMDRV:main into devel 9ce4686a2b 
Reviewed-on: #18
obel1x added 1 commit 2026-04-30 18:36:47 +02:00
Merge branch 'main' into devel 9f71728512
obel1x merged commit e8c88c35d7 into main 2026-04-30 18:36:59 +02:00
obel1x deleted branch devel 2026-04-30 21:56:13 +02:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
obel1x (Daniel Pätzold)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: obel1x/fedora-OEMDRV#19
Delete Branch "devel"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?