hanxianzhai/reinstall
1
0
Fork 0
mirror of https://github.com/bin456789/reinstall.git synced 2026-03-22 12:34:17 +08:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: hanxianzhai:f2cfe672d18db9e3ebf2fc9f330405fc49ee5b90
Branches Tags
hanxianzhai:main
..
compare: hanxianzhai:main
Branches Tags
hanxianzhai:main

22 Commits
f2cfe672d1 ... main

Author SHA1 Message Date
王煎饼
e104735538 core: 使用 fedora 的 grub efi 
关联 #577
 2026-03-17 11:33:48 +08:00
bin456789
43e226cc5c windows: 移除旧版本系统的 iso 查找 
massgrave 网站移除了旧版系统的 Iso
 2026-03-16 22:50:42 +08:00
bin456789
c6000c16ab core: 修复在 windows 下打包 initramfs 时, 修改了 rdisc6 的 owner 导致 rdisc6 无法运行 
造成 ipv6 统一配置成静态

> rdisc6 ens5
Raw IPv6 socket: Operation not permitted

> ls -l /usr/bin/rdisc6
-rwsr-xr-x 1 197108 197121 26648 Jan 14 2024 /usr/bin/rdisc6
 2026-03-15 23:43:52 +08:00
bin456789
8dd873d7dd core: 将 grep --text 改成 -a 
避免脚本早期运行时在 alpine 下报错
 2026-03-15 23:32:51 +08:00
bin456789
41c4df9fdb windows: 修复 image-name 有特殊符号时出错 
fixes #575
 2026-03-15 17:19:22 +08:00
bin456789
f0b3a475fc windows: 修复 iso 里面文件大小写引起的引导问题 
1. iso 里面的 boot 文件夹字母不是全小写,导致用 grub-install --boot-directory=/os/boot 安装后无法从 boot 文件夹读取模块
2. iso 里面的 boot bootmgr 的 boot 大小写不一致导致没有复制 bootmgr

fixes #568
 2026-03-10 01:07:20 +08:00
bin456789
5e2f46444c fnos: 允许指定 iso 链接 
fixes #567
 2026-03-10 01:06:10 +08:00
bin456789
c784479408 core: 添加 reset 模式取消重装 2026-03-10 00:09:05 +08:00
bin456789
ca11ab5ef8 core: 不重要的更改 2026-03-10 00:09:05 +08:00
bin456789
2c6b28108a core: 支持 frpc.ini 2026-03-08 23:50:50 +08:00
bin456789
28119bb0c5 windows: 对旧版本 windows 使用旧版 frpc 2026-03-08 23:50:50 +08:00
bin456789
53e699fa11 windows: 更准确地下载 vmd 驱动版本 2026-03-08 23:50:50 +08:00
bin456789
b2f2927c4e windows: 用 winload.exe/efi 版本号判断 vista/win7 是否支持 sha256 2026-03-08 23:50:49 +08:00
bin456789
13e3155d02 windows: 只从注册表获取系统版本号 2026-03-08 23:50:49 +08:00
bin456789
5b1b9103f4 windows: 支持 install.swm 2026-03-08 23:50:49 +08:00
kelryry
5b0d91c633 fix: select correct primary IPv6 address whose subnet contains the gateway (#561) 
* fix: select correct primary IPv6 address whose subnet contains the gateway

When a system has multiple IPv6 addresses with different prefix lengths
(e.g., /44 and /96), the script previously selected the first address
as primary regardless of whether its subnet contained the default gateway.
This caused the gateway to be unreachable after reinstallation.

This change:
- Adds pure shell expand_ipv6 and ip_addr_contains_gw functions to
  determine which IPv6 subnet contains the gateway (no python dependency)
- Modifies collect_netconf to select the correct primary IPv6 address
- Stores remaining addresses as ipv6_extra_addrs
- Adds extra IPv6 addresses via post-up in create_ifupdown_config

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: address review feedback for IPv6 extra addrs and edge cases

- Pass ipv6_extra_addrs through initrd-network.sh (receive as $7,
  add extra addresses in add_missing_ipv6_config, write to netconf)
  so that trans.sh can read them via get_netconf_to
- Fix cut -c1-0 error when prefix_len < 4 in ip_addr_contains_gw
- Use grep -Fxve for exact string matching instead of regex

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: use subshell for IFS modification to avoid leaking to outer scope

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: avoid global IFS modification when iterating extra IPv6 addresses

Replace subshell IFS trick with tr+while read to split comma-separated
ipv6_extra_addrs, avoiding any modification of the IFS variable.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: use ip route get instead of subnet matching for IPv6 primary address selection

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-08 22:17:59 +08:00
bin456789
ecacaab103 gentoo: 修复运行 getuto 时找不到 ebegin 
fixes #566
 2026-03-07 23:19:00 +08:00
Heng lu
99b99cc7ac "chore: 为 --cloud-data 添加文档,同时cloud-data工作时在 dd info output中显示 (#560) 2026-02-26 20:01:07 +08:00
bin456789
81081873df windows: 查找到的链接是 / 开头时,补全域名 2026-02-13 00:03:36 +08:00
bin456789
4cf8e81fc7 windows: 修复查找 windows server 2025 iso 失效 2026-02-12 22:54:47 +08:00
bin456789
ff4b6de258 fnos: 修复飞牛链接失效 
fixes #555
fixes #557
 2026-02-12 22:27:20 +08:00
Heng lu
fc7bdc5711 dd 引入cloud-data 提供 nocloud自动配置 (#551) 2026-02-12 22:14:04 +08:00
10 changed files with 1166 additions and 603 deletions
Expand all files Collapse all files

3
.editorconfig
View File

@ -23,3 +23,6 @@ charset = utf-8-bom
[*.{yml,yaml}]
indent_size = 2
[reinstall.sh]
shell_variant = bash

2
.github/workflows/run_reinstall.yml vendored
View File

@ -39,6 +39,8 @@ jobs:
${{ matrix.command }} dd --img=https://download.opensuse.org/tumbleweed/appliances/openSUSE-MicroOS.x86_64-SelfInstall.raw.xz
${{ matrix.command }} windows --image-name='Windows Server blah' --iso https://aka.ms/HCIReleaseImage
${{ matrix.command }} reset
# 测试失败例子
# ${{ matrix.command }} wrong-os
# ${{ matrix.command }} dd --img=https://github.com/

73
README.en.md
View File

@ -38,6 +38,7 @@ If this helped you, you can buy me a milk tea.
- [Feature 3. One-click reboot to Alpine Live OS](#feature-3-reboot-to--alpine-live-os)
- [Feature 4. One-click reboot to netboot.xyz](#feature-4-reboot-to--netbootxyz)
- [Feature 5. One-click reinstallation to Windows](#feature-5-install--windows-iso)
- [Cancel the reinstallation](#cancel-the-reinstallation)
## System Requirements
@ -144,7 +145,7 @@ certutil -urlcache -f -split https://cnb.cool/bin456789/reinstall/-/git/raw/main
>
> This feature will erase **the entire hard disk** of the current system (including other partitions)!
>
> Data is priceless — please think twice before proceeding!
> If the script was run by mistake, you can run `bash reinstall.sh reset` before rebooting to cancel the reinstallation operation.
- Username `root`. The script prompts for a password. If left blank, a random one is generated.
- When installing the latest version, the version number does not need to be specified.
@ -181,7 +182,7 @@ bash reinstall.sh anolis 7|8|23
- `--ssh-key KEY` Set up SSH login public key, [formatted as follows](#--ssh-key). When using public key, password is empty.
- `--ssh-port PORT` Change the SSH port (for log observation during installation and for the new system)
- `--web-port PORT` Change the Web port (for log observation during installation only)
- `--frpc-toml PATH` Add frpc for intranet tunneling. Parameter can be local filepath or HTTP URL
- `--frpc-config PATH` Add frpc for intranet tunneling. Parameter can be local filepath or HTTP URL of the configuration file.
- `--hold 1` Reboot only into install environment, without running installer, only for SSH connect to test network connection.
- `--hold 2` Prevent reboot after installation completes, allowing SSH login to modify system content; the system is mounted at `/target` for Debian/Kali and `/os` for other distros.
@ -231,7 +232,7 @@ bash reinstall.sh ubuntu --installer
>
> This feature will erase **the entire hard disk** of the current system (including other partitions)!
>
> Data is priceless — please think twice before proceeding!
> If the script was run by mistake, you can run `bash reinstall.sh reset` before rebooting to cancel the reinstallation operation.
- Supports `raw` and fixed-size `vhd` image formats. Either uncompressed or compressed as `.gz`, `.xz`, `.zst`, `.tar`, `.tar.gz`, `.tar.xz`, `.tar.zst`.
- When deploy a Windows image, the system disk will be automatically expanded, and machines with a static IP will have their IP configured, and may take a few minutes after the first boot for the configuration to take effect.
@ -247,10 +248,29 @@ bash reinstall.sh dd --img "https://example.com/xxx.xz"
- `--rdp-port PORT` Change RDP port (DD Windows only)
- `--ssh-port PORT` Change SSH port (for log observation during installation)
- `--web-port PORT` Change Web port (for log observation during installation)
- `--frpc-toml PATH` Add frpc for intranet tunneling (DD Windows only). Parameter can be local filepath or HTTP URL
- `--frpc-config PATH` Add frpc for intranet tunneling (DD Windows only). Parameter can be local filepath or HTTP URL of the configuration file.
- `--cloud-data PATH_OR_URL` Inject cloud-init NoCloud configuration into the DD'd Linux image (DD Linux only)
- `--hold 1` Reboot only into install environment, without running installer, only for SSH connect to test network connection.
- `--hold 2` Prevent reboot after the DD process finishes. For SSH login to modify system content. The Windows system will be mounted at `/os`, but Linux systems will **NOT** be automatically mounted.
> [!TIP]
>
> `--cloud-data` accepts a local directory path or an HTTP base URL. The directory must contain a `user-data` file; `meta-data` and `network-config` are optional:
>
> ```
> seed/
> ├── user-data # required
> ├── meta-data # optional
> └── network-config # optional
> ```
>
> ```bash
> # Local directory
> bash reinstall.sh dd --img "https://example.com/xxx.xz" --cloud-data /path/to/seed/
> # HTTP directory
> bash reinstall.sh dd --img "https://example.com/xxx.xz" --cloud-data "https://example.com/seed/"
> ```
> [!TIP]
>
> Can monitor the progress through various methods (SSH, HTTP 80 port, VNC from server provider, serial console).
@ -279,7 +299,7 @@ bash reinstall.sh alpine --hold 1
- `--password PASSWORD` Set password
- `--ssh-port PORT` Change SSH port
- `--ssh-key KEY` Set up SSH login public key, [formatted as follows](#--ssh-key). When using public key, password is empty.
- `--frpc-toml PATH` Add frpc for intranet tunneling. Parameter can be local filepath or HTTP URL
- `--frpc-config PATH` Add frpc for intranet tunneling. Parameter can be local filepath or HTTP URL of the configuration file.
### Feature 4: Reboot to <img width="16" height="16" src="https://netboot.xyz/img/favicon.ico" /> netboot.xyz
@ -305,7 +325,7 @@ bash reinstall.sh netboot.xyz
>
> This feature will erase **the entire hard disk** of the current system (including other partitions)!
>
> Data is priceless — please think twice before proceeding!
> If the script was run by mistake, you can run `bash reinstall.sh reset` before rebooting to cancel the reinstallation operation.
- Username `administrator`. The script prompts for a password. If left blank, a random one is generated.
- If remote login fails, try using the username `.\administrator`.
@ -317,15 +337,15 @@ bash reinstall.sh netboot.xyz
- Windows (Vista ~ 11)
- Windows Server (2008 ~ 2025)
- Windows Server Essentials \*
- Windows Server (Semi) Annual Channel \*
- Hyper-V Server \*
- Azure Local (Azure Stack HCI) \*
- Windows Server Essentials
- Windows Server (Semi) Annual Channel
- Hyper-V Server
- Azure Local (Azure Stack HCI)
#### Method 1: Let the Script Automatically Search for ISO
- The script will search for ISOs from <https://massgrave.dev/genuine-installation-media>, a site that collects official ISOs.
- Systems marked with \* do not support automatic ISO searching.
- Only supports ISOs searching for Windows 10, 11, Server 2019, 2022, 2025.
```bash
bash reinstall.sh windows \
@ -434,7 +454,7 @@ bash reinstall.sh windows \
- `--add-driver INF_OR_DIR` Add additional driver, specifying .inf path, or the folder contains .inf file.
- The driver must be downloaded to current system first.
- This parameter can be set multiple times to add different driver.
- `--frpc-toml PATH` Add frpc for intranet tunneling. Parameter can be local filepath or HTTP URL
- `--frpc-config PATH` Add frpc for intranet tunneling. Parameter can be local filepath or HTTP URL of the configuration file.
- `--hold 1` Reboot only into install environment, without running installer, only for SSH connect to test network connection.
- `--hold 2` Allow SSH connections for modifying `boot.wim`, `install.wim` or other contents before rebooting into the official Windows installation program, with the disk mounted at `/os`.
@ -445,7 +465,7 @@ bash reinstall.sh windows \
- AWS ([ENA Network Adapter][aws-ena], [NVME Storage Controller][aws-nvme])
- GCP ([gVNIC Network Adapter][gcp-gvnic], [GGA Display Adapter][gcp-gga])
- Azure ([MANA Network Adapter][azure-mana])
- Intel ([VMD Storage Controller][intel-vmd], Network Adapter: [7][intel-nic-7], [8][intel-nic-8], [8.1][intel-nic-8.1], [10][intel-nic-10], [11][intel-nic-11], [2008 R2][intel-nic-2008-r2], [2012][intel-nic-2012], [2012 R2][intel-nic-2012-r2], [2016][intel-nic-2016], [2019][intel-nic-2019], [2022][intel-nic-2022], [2025][intel-nic-2025])
- Intel (VMD Storage Controller: [11th Gen Core][intel-vmd-gen11], [12th-15th Gen Core][intel-vmd-gen12-to-gen15], Network Adapter: [7][intel-nic-7], [8.x][intel-nic-8.1], [10][intel-nic-10], [11][intel-nic-11], [2008 R2][intel-nic-7], [2012][intel-nic-2012], [2012 R2][intel-nic-2012-r2], [2016][intel-nic-2016], [2019][intel-nic-2019], [2022][intel-nic-2022], [2025][intel-nic-2025])
[virtio-virtio]: https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/
[virtio-aliyun]: https://www.alibabacloud.com/help/ecs/user-guide/install-the-virtio-driver-1
@ -459,13 +479,12 @@ bash reinstall.sh windows \
[gcp-gvnic]: https://cloud.google.com/compute/docs/networking/using-gvnic
[gcp-gga]: https://cloud.google.com/compute/docs/instances/enable-instance-virtual-display
[azure-mana]: https://learn.microsoft.com/azure/virtual-network/accelerated-networking-mana-windows
[intel-vmd]: https://www.intel.com/content/www/us/en/download/849936/intel-rapid-storage-technology-driver-installation-software-with-intel-optane-memory-12th-to-15th-gen-platforms.html
[intel-vmd-gen11]: https://www.intel.com/content/www/us/en/download/849933/intel-rapid-storage-technology-driver-installation-software-with-intel-optane-memory-12th-to-13th-gen-platforms.html
[intel-vmd-gen12-to-gen15]: https://www.intel.com/content/www/us/en/download/849936/intel-rapid-storage-technology-driver-installation-software-with-intel-optane-memory-12th-to-15th-gen-platforms.html
[intel-nic-7]: https://www.intel.com/content/www/us/en/download/15590/intel-network-adapter-driver-for-windows-7-final-release.html
[intel-nic-8]: https://web.archive.org/web/20250501043104/https://www.intel.com/content/www/us/en/download/16765/intel-network-adapter-driver-for-windows-8-final-release.html
[intel-nic-8.1]: https://www.intel.com/content/www/us/en/download/17479/intel-network-adapter-driver-for-windows-8-1.html
[intel-nic-10]: https://www.intel.com/content/www/us/en/download/18293/intel-network-adapter-driver-for-windows-10.html
[intel-nic-11]: https://www.intel.com/content/www/us/en/download/727998/intel-network-adapter-driver-for-microsoft-windows-11.html
[intel-nic-2008-r2]: https://web.archive.org/web/20250501002542/https://www.intel.com/content/www/us/en/download/15591/intel-network-adapter-driver-for-windows-server-2008-r2-final-release.html
[intel-nic-2012]: https://www.intel.com/content/www/us/en/download/16789/intel-network-adapter-driver-for-windows-server-2012.html
[intel-nic-2012-r2]: https://www.intel.com/content/www/us/en/download/17480/intel-network-adapter-driver-for-windows-server-2012-r2.html
[intel-nic-2016]: https://www.intel.com/content/www/us/en/download/18737/intel-network-adapter-driver-for-windows-server-2016.html
@ -528,27 +547,23 @@ Most ARM machines support installing latest Windows 11.
During the installation process, you might encounter a black screen, and the serial console may display `ConvertPages: failed to find range`, but neither issue affects the installation.
| Compatibility | Cloud Provider | Instance Type | Issues |
| ------------- | -------------- | ------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------ |
| ------------- | -------------- | ----------------------- | ----------------------------------------------------------------------------------- |
| ✔️ | Azure | B2pts_v2 | |
| ✔️ | Alibaba Cloud | g6r, c6r | |
| ✔️ | Alibaba Cloud | g8y, c8y, r8y | There is a chance of hanging at the boot logo during restart; forced reboot will resolve it. |
| ✔️ | AWS | T4g | |
| ✔️ | Scaleway | COPARM1 | |
| ✔️ | Gcore | | |
| ❔ | Oracle Cloud | A1.Flex | Installation success is not guaranteed; newer instances are more likely to succeed.<br />Manual loading of GPU drivers is required after installation. |
| ❔ | Alibaba Cloud | g6r, c6r, g8y, c8y, r8y | Might hanging at the boot logo during restart; forced reboot will resolve it. |
| ❔ | Oracle Cloud | A1.Flex | Installation success is not guaranteed; newer instances are more likely to succeed. |
| ❌ | Google Cloud | t2a | Missing network card drivers |
<details>
### Cancel the reinstallation
<summary>Loading Graphics Driver on Oracle Cloud</summary>
- If the script was run by mistake, you can run this command to cancel the reinstallation operation.
- Must be run before rebooting.
Log in to the server using Remote Desktop, open Device Manager, locate the graphics card, select "Update Driver," and choose `Red Hat VirtIO GPU DOD controller` from the list. There's no need to download the drivers in advance.
![virtio-gpu-1](https://github.com/user-attachments/assets/503e1d82-4fa9-4486-917e-73326ad7c988)
![virtio-gpu-2](https://github.com/user-attachments/assets/bf3a9af6-13d8-4f93-9d6c-d3b2dbddb37d)
![virtio-gpu-3](https://github.com/user-attachments/assets/a9006a78-838f-45bf-a556-2dba193d3c03)
</details>
```bash
bash reinstall.sh reset
```
## Parameter Format

73
README.md
View File

@ -38,6 +38,7 @@
- [功能 3. 一键引导到 Alpine Live OS 内存系统](#功能-3-重启到--alpine-live-os内存系统)
- [功能 4. 一键引导到 netboot.xyz](#功能-4-重启到--netbootxyz)
- [功能 5. 一键重装到 Windows](#功能-5-安装--windows-iso)
- [取消重装](#取消重装)
## 系统要求
@ -144,7 +145,7 @@ certutil -urlcache -f -split https://cnb.cool/bin456789/reinstall/-/git/raw/main
>
> 此功能会清除当前系统**整个硬盘**的全部数据(包含其它分区)!
>
> 数据无价,请三思而后行!
> 如果不小心运行了脚本,可以在重启前运行 `bash reinstall.sh reset` 取消重装
- 用户名为 `root`,脚本会提示输入密码,不输入则使用随机密码
- 安装最新版可不输入版本号
@ -181,7 +182,7 @@ bash reinstall.sh anolis 7|8|23
- `--ssh-key KEY` 设置 SSH 登录公钥,[格式如下](#--ssh-key)。当使用公钥时,密码为空
- `--ssh-port PORT` 修改 SSH 端口(安装期间观察日志用,也作用于新系统)
- `--web-port PORT` 修改 Web 端口(安装期间观察日志用)
- `--frpc-toml PATH` 添加 frpc 内网穿透,参数填本地路径或 HTTP 链接
- `--frpc-config PATH` 添加 frpc 内网穿透,参数填配置文件的本地路径或 HTTP 链接
- `--hold 1` 仅重启到安装环境,不运行安装,用于 SSH 登录验证网络连通性
- `--hold 2` 安装结束后不重启,用于 SSH 登录修改系统内容Debian/Kali 会挂载在 `/target`,其它系统会挂载在 `/os`
@ -231,7 +232,7 @@ bash reinstall.sh ubuntu --installer
>
> 此功能会清除当前系统**整个硬盘**的全部数据(包含其它分区)!
>
> 数据无价,请三思而后行!
> 如果不小心运行了脚本,可以在重启前运行 `bash reinstall.sh reset` 取消重装
- 支持 `raw` 和固定大小的 `vhd` 镜像。未压缩或者压缩成 `.gz` `.xz` `.zst` `.tar` `.tar.gz` `.tar.xz` `.tar.zst`
- DD Windows 镜像时,会自动扩展系统盘,静态 IP 的机器会配置好 IP可能首次开机几分钟后才生效
@ -247,10 +248,29 @@ bash reinstall.sh dd --img "https://example.com/xxx.xz"
- `--rdp-port PORT` 修改 RDP 端口 (仅限 DD Windows)
- `--ssh-port PORT` 修改 SSH 端口(安装期间观察日志用)
- `--web-port PORT` 修改 Web 端口(安装期间观察日志用)
- `--frpc-toml PATH` 添加 frpc 内网穿透(仅限 DD Windows参数填本地路径或 HTTP 链接
- `--frpc-config PATH` 添加 frpc 内网穿透(仅限 DD Windows参数填配置文件的本地路径或 HTTP 链接
- `--cloud-data PATH_OR_URL` 为 DD Linux 镜像注入 cloud-init NoCloud 配置(仅限 DD Linux
- `--hold 1` 仅重启到安装环境,不运行安装,用于 SSH 登录验证网络连通性
- `--hold 2` DD 结束后不重启,用于 SSH 登录修改系统内容Windows 系统会挂载在 `/os`Linux 系统**不会**自动挂载
> [!TIP]
>
> `--cloud-data` 参数为本地目录或 HTTP 基础 URL目录须包含 `user-data` 文件,`meta-data`、`network-config` 可选:
>
> ```
> seed/
> ├── user-data # 必须
> ├── meta-data # 可选
> └── network-config # 可选
> ```
>
> ```bash
> # 使用本地目录
> bash reinstall.sh dd --img "https://example.com/xxx.xz" --cloud-data /path/to/seed/
> # 使用 HTTP 目录
> bash reinstall.sh dd --img "https://example.com/xxx.xz" --cloud-data "https://example.com/seed/"
> ```
> [!TIP]
>
> 可通过多种方式SSH、HTTP 80 端口、商家后台 VNC、串行控制台查看安装进度。
@ -279,7 +299,7 @@ bash reinstall.sh alpine --hold 1
- `--password PASSWORD` 设置密码
- `--ssh-port PORT` 修改 SSH 端口
- `--ssh-key KEY` 设置 SSH 登录公钥,[格式如下](#--ssh-key)。当使用公钥时,密码为空
- `--frpc-toml PATH` 添加 frpc 内网穿透,参数填本地路径或 HTTP 链接
- `--frpc-config PATH` 添加 frpc 内网穿透,参数填配置文件的本地路径或 HTTP 链接
### 功能 4: 重启到 <img width="16" height="16" src="https://netboot.xyz/img/favicon.ico" /> netboot.xyz
@ -305,7 +325,7 @@ bash reinstall.sh netboot.xyz
>
> 此功能会清除当前系统**整个硬盘**的全部数据(包含其它分区)!
>
> 数据无价,请三思而后行!
> 如果不小心运行了脚本,可以在重启前运行 `bash reinstall.sh reset` 取消重装
- 用户名为 `administrator`,脚本会提示输入密码,不输入则使用随机密码
- 如果远程登录失败,可以尝试使用用户名 `.\administrator`
@ -317,15 +337,15 @@ bash reinstall.sh netboot.xyz
- Windows (Vista ~ 11)
- Windows Server (2008 ~ 2025)
- Windows Server Essentials \*
- Windows Server (Semi) Annual Channel \*
- Hyper-V Server \*
- Azure Local (Azure Stack HCI) \*
- Windows Server Essentials
- Windows Server (Semi) Annual Channel
- Hyper-V Server
- Azure Local (Azure Stack HCI)
#### 方法 1: 让脚本自动查找 ISO
- 脚本会从 <https://massgrave.dev/genuine-installation-media> 查找 ISO该网站专门提供官方 ISO 下载
- 上面带 \* 的系统不支持自动查找 ISO
- 只支持查找 Windows 10, 11, Server 2019, 2022, 2025 的 ISO
```bash
bash reinstall.sh windows \
@ -434,7 +454,7 @@ bash reinstall.sh windows \
- `--add-driver INF_OR_DIR` 添加额外驱动,填写 .inf 路径,或者 .inf 所在的文件夹
- 需先下载驱动到当前系统
- 可多次设置该参数以添加不同的驱动
- `--frpc-toml PATH` 添加 frpc 内网穿透,参数填本地路径或 HTTP 链接
- `--frpc-config PATH` 添加 frpc 内网穿透,参数填配置文件的本地路径或 HTTP 链接
- `--hold 1` 仅重启到安装环境,不运行安装,用于 SSH 登录验证网络连通性
- `--hold 2` 用于在进入 Windows 官方安装程序之前SSH 登录修改 `boot.wim``install.wim` 或者其它内容,硬盘挂载在 `/os`
@ -445,7 +465,7 @@ bash reinstall.sh windows \
- AWS ([ENA 网卡][aws-ena], [NVME 存储控制器][aws-nvme])
- GCP ([gVNIC 网卡][gcp-gvnic], [GGA 显卡][gcp-gga])
- Azure ([MANA 网卡][azure-mana])
- Intel ([VMD 存储控制器][intel-vmd], 网卡: [7][intel-nic-7], [8][intel-nic-8], [8.1][intel-nic-8.1], [10][intel-nic-10], [11][intel-nic-11], [2008 R2][intel-nic-2008-r2], [2012][intel-nic-2012], [2012 R2][intel-nic-2012-r2], [2016][intel-nic-2016], [2019][intel-nic-2019], [2022][intel-nic-2022], [2025][intel-nic-2025])
- Intel (VMD 存储控制器: [11代酷睿][intel-vmd-gen11], [12-15代酷睿][intel-vmd-gen12-to-gen15], 网卡: [7][intel-nic-7], [8.x][intel-nic-8.1], [10][intel-nic-10], [11][intel-nic-11], [2008 R2][intel-nic-7], [2012][intel-nic-2012], [2012 R2][intel-nic-2012-r2], [2016][intel-nic-2016], [2019][intel-nic-2019], [2022][intel-nic-2022], [2025][intel-nic-2025])
[virtio-virtio]: https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/
[virtio-aliyun]: https://www.alibabacloud.com/help/ecs/user-guide/install-the-virtio-driver-1
@ -459,13 +479,12 @@ bash reinstall.sh windows \
[gcp-gvnic]: https://cloud.google.com/compute/docs/networking/using-gvnic
[gcp-gga]: https://cloud.google.com/compute/docs/instances/enable-instance-virtual-display
[azure-mana]: https://learn.microsoft.com/azure/virtual-network/accelerated-networking-mana-windows
[intel-vmd]: https://www.intel.com/content/www/us/en/download/849936/intel-rapid-storage-technology-driver-installation-software-with-intel-optane-memory-12th-to-15th-gen-platforms.html
[intel-vmd-gen11]: https://www.intel.com/content/www/us/en/download/849933/intel-rapid-storage-technology-driver-installation-software-with-intel-optane-memory-12th-to-13th-gen-platforms.html
[intel-vmd-gen12-to-gen15]: https://www.intel.com/content/www/us/en/download/849936/intel-rapid-storage-technology-driver-installation-software-with-intel-optane-memory-12th-to-15th-gen-platforms.html
[intel-nic-7]: https://www.intel.com/content/www/us/en/download/15590/intel-network-adapter-driver-for-windows-7-final-release.html
[intel-nic-8]: https://web.archive.org/web/20250501043104/https://www.intel.com/content/www/us/en/download/16765/intel-network-adapter-driver-for-windows-8-final-release.html
[intel-nic-8.1]: https://www.intel.com/content/www/us/en/download/17479/intel-network-adapter-driver-for-windows-8-1.html
[intel-nic-10]: https://www.intel.com/content/www/us/en/download/18293/intel-network-adapter-driver-for-windows-10.html
[intel-nic-11]: https://www.intel.com/content/www/us/en/download/727998/intel-network-adapter-driver-for-microsoft-windows-11.html
[intel-nic-2008-r2]: https://web.archive.org/web/20250501002542/https://www.intel.com/content/www/us/en/download/15591/intel-network-adapter-driver-for-windows-server-2008-r2-final-release.html
[intel-nic-2012]: https://www.intel.com/content/www/us/en/download/16789/intel-network-adapter-driver-for-windows-server-2012.html
[intel-nic-2012-r2]: https://www.intel.com/content/www/us/en/download/17480/intel-network-adapter-driver-for-windows-server-2012-r2.html
[intel-nic-2016]: https://www.intel.com/content/www/us/en/download/18737/intel-network-adapter-driver-for-windows-server-2016.html
@ -528,27 +547,23 @@ Windows Server 2025 SERVERDATACENTER
安装过程可能会黑屏,串行控制台可能会显示 `ConvertPages: failed to find range`,均不影响正常安装
| 兼容性 | 云服务商 | 实例类型 | 问题 |
| ------ | -------- | ------------- | ---------------------------------------------------------------------------- |
| ------ | -------- | ----------------------- | ------------------------------------------ |
| ✔️ | Azure | B2pts_v2 | |
| ✔️ | 阿里云 | g6r, c6r | |
| ✔️ | 阿里云 | g8y, c8y, r8y | 有几率重启时卡开机 Logo强制重启即可 |
| ✔️ | AWS | T4g | |
| ✔️ | Scaleway | COPARM1 | |
| ✔️ | Gcore | | |
| ❔ | 甲骨文云 | A1.Flex | 不一定能安装成功,越新创建的实例越容易成功<br />安装后还需要手动加载显卡驱动 |
| ❔ | 阿里云 | g6r, c6r, g8y, c8y, r8y | 有几率重启时卡开机 Logo强制重启即可 |
| ❔ | 甲骨文云 | A1.Flex | 不一定能安装成功,越新创建的实例越容易成功 |
| ❌ | 谷歌云 | t2a | 缺少网卡驱动 |
<details>
### 取消重装
<summary>甲骨文云加载显卡驱动</summary>
- 如果不小心运行了脚本,可以运行以下命令取消重装
- 需要在重启前运行
使用远程桌面登录到服务器,打开设备管理器,找到显卡,选择更新驱动,在列表中选择 `Red Hat VirtIO GPU DOD controller` 即可。不需要提前下载驱动。
![virtio-gpu-1](https://github.com/user-attachments/assets/503e1d82-4fa9-4486-917e-73326ad7c988)
![virtio-gpu-2](https://github.com/user-attachments/assets/bf3a9af6-13d8-4f93-9d6c-d3b2dbddb37d)
![virtio-gpu-3](https://github.com/user-attachments/assets/a9006a78-838f-45bf-a556-2dba193d3c03)
</details>
```bash
bash reinstall.sh reset
```
## 参数格式

10
debian.cfg
View File

@ -206,7 +206,7 @@ d-i preseed/early_command string true; \
ssh-keygen -A; \
run_as_service_with_screen /usr/sbin/sshd -D; \
if [ -s /configs/frpc.toml ]; then \
if ls /configs/frpc.* >/dev/null 2>&1; then \
url=$(sh /get-frpc-url.sh linux); \
mkdir -p /usr/local/bin; \
mkdir -p /usr/local/etc/frpc; \
@ -217,8 +217,8 @@ d-i preseed/early_command string true; \
sleep 5; \
done; \
chmod a+x /usr/local/bin/frpc; \
cp /configs/frpc.toml /usr/local/etc/frpc/; \
run_as_service_with_screen /usr/local/bin/frpc -c /usr/local/etc/frpc/frpc.toml; \
cp /configs/frpc.* /usr/local/etc/frpc/; \
run_as_service_with_screen /usr/local/bin/frpc -c /usr/local/etc/frpc/frpc.*; \
fi; \
if [ -d /cdrom/simple-cdd ]; then \
@ -296,11 +296,11 @@ d-i preseed/late_command string true; \
echo "Port $ssh_port" >>/target/etc/ssh/sshd_config; \
fi; \
if [ -s /configs/frpc.toml ]; then \
if ls /configs/frpc.* >/dev/null 2>&1; then \
mkdir -p /target/usr/local/bin; \
mkdir -p /target/usr/local/etc/frpc; \
cp /usr/local/bin/frpc /target/usr/local/bin/; \
cp /usr/local/etc/frpc/frpc.toml /target/usr/local/etc/frpc/; \
cp /usr/local/etc/frpc/frpc.* /target/usr/local/etc/frpc/; \
chmod a+x /target/usr/local/bin/frpc; \
cp /frpc.service /target/etc/systemd/system/; \
in-target systemctl enable frpc; \

4
frpc.service
View File

@ -10,8 +10,8 @@ Type=simple
User=nobody
Restart=on-failure
RestartSec=5s
ExecStart=/usr/local/bin/frpc -c /usr/local/etc/frpc/frpc.toml
ExecReload=/usr/local/bin/frpc reload -c /usr/local/etc/frpc/frpc.toml
ExecStart=/usr/local/bin/frpc -c /usr/local/etc/frpc/frpc.conf
ExecReload=/usr/local/bin/frpc reload -c /usr/local/etc/frpc/frpc.conf
[Install]
WantedBy=multi-user.target

42
get-frpc-url.sh
View File

@ -17,14 +17,41 @@ get_frpc_url() {
# 传入 windows 或者 linux
local os_type=$1
local nt_ver=$2
local os_bit=${3:-64}
get_old_version() {
# 脚本不支持安装 32 位 linux 系统,因此不用管
if [ "$os_type" = windows ]; then
# 最早支持 toml 的版本是 0.52.0
# 最后支持 vista 的版本是 0.29.0
# 最后支持 32 位的版本是 0.51.3
# 最后支持 win7 的版本是 0.54.0
case "$os_bit" in
32)
case "$nt_ver" in
6.0) echo 0.29.0 ;; # vista
*) echo 0.51.3 ;; # win7+
esac
;;
64)
case "$nt_ver" in
6.0) echo 0.29.0 ;; # vista
6.1) echo 0.54.0 ;; # win7
# 目前最新版本 v0.66.0 依然可以在 win8 上运行
esac
;;
esac
fi
}
is_need_old_version() {
[ "$nt_ver" = "6.0" ] || [ "$nt_ver" = "6.1" ]
[ -n "$(get_old_version)" ]
}
version=$(
if is_need_old_version; then
echo 0.54.0
get_old_version
else
# debian 11 initrd 没有 xargs awk
# debian 12 initrd 没有 xargs
@ -46,7 +73,7 @@ get_frpc_url() {
)
if [ -z "$version" ]; then
echo 'cannot find version'
echo 'cannot find version' >&2
return 1
fi
@ -64,7 +91,7 @@ get_frpc_url() {
# jsdelivr 不支持 github releases 文件
if is_ipv6_only; then
if is_need_old_version; then
echo 'NOT_SUPPORT'
echo 'NOT_SUPPORT' >&2
return 1
else
echo https://mirrors.nju.edu.cn/github-release/fatedier/frp
@ -84,7 +111,12 @@ get_frpc_url() {
arch=$(
case "$(uname -m)" in
x86_64) echo amd64 ;;
x86_64)
case "$os_bit" in
32) echo 386 ;;
64) echo amd64 ;;
esac
;;
aarch64) echo arm64 ;;
esac
)

11
initrd-network.sh
View File

@ -11,6 +11,7 @@ ipv4_gateway=$3
ipv6_addr=$4
ipv6_gateway=$5
is_in_china=$6
ipv6_extra_addrs=$7
DHCP_TIMEOUT=15
DNS_FILE_TIMEOUT=5
@ -171,6 +172,15 @@ add_missing_ipv6_config() {
ip -6 route add default via "$ipv6_gateway" dev "$ethx" onlink
fi
fi
# 添加额外的 IPv6 地址(逗号分隔)
if [ -n "$ipv6_extra_addrs" ]; then
printf '%s\n' "$ipv6_extra_addrs" | tr ',' '\n' | while IFS= read -r addr; do
if [ -n "$addr" ]; then
ip -6 addr add "$addr" dev "$ethx" 2>/dev/null || true
fi
done
fi
fi
}
@ -506,5 +516,6 @@ echo "$ipv4_addr" >"$netconf/ipv4_addr"
echo "$ipv4_gateway" >"$netconf/ipv4_gateway"
echo "$ipv6_addr" >"$netconf/ipv6_addr"
echo "$ipv6_gateway" >"$netconf/ipv6_gateway"
echo "$ipv6_extra_addrs" >"$netconf/ipv6_extra_addrs"
$ipv4_has_internet && echo 1 >"$netconf/ipv4_has_internet" || echo 0 >"$netconf/ipv4_has_internet"
$ipv6_has_internet && echo 1 >"$netconf/ipv6_has_internet" || echo 0 >"$netconf/ipv6_has_internet"

993
reinstall.sh
View File

File diff suppressed because it is too large Load Diff

398
trans.sh
View File

@ -779,16 +779,52 @@ is_windows_support_rdnss() {
get_windows_version_from_windows_drive() {
local os_dir=$1
apk add hivex pev
ntoskrnl_exe=$(find_file_ignore_case $os_dir/Windows/System32/ntoskrnl.exe)
# https://wiki.tcl-lang.org/page/Windows+OS+name
# https://nsis.sourceforge.io/Get_Windows_version
# win10+ 才有 CurrentMajorVersionNumber 和 CurrentMinorVersionNumber
# CurrentVersion 6.3
# CurrentMajorVersionNumber 10
# CurrentMinorVersionNumber 0
apk add hivex
hive=$(find_file_ignore_case $os_dir/Windows/System32/config/SOFTWARE)
IFS=. read -r nt_ver_major nt_ver_minor _ rev_ver _ \
< <(peres -v "$ntoskrnl_exe" | grep 'Product Version:' | awk '{print $NF}')
get_current_version_key() {
hivexget "$hive" "Microsoft\Windows NT\CurrentVersion" "$1"
}
# nt_ver
if { nt_ver_major=$(get_current_version_key CurrentMajorVersionNumber) &&
nt_ver_minor=$(get_current_version_key CurrentMinorVersionNumber); } 2>/dev/null; then
nt_ver="$nt_ver_major.$nt_ver_minor"
else
# en_windows_vista_sp2_x64_dvd_342267.iso
# 安装前 CurrentVersion 是 6.0
# 安装后 CurrentVersion 是 6.0
# en_windows_vista_sp2_with_update_6003.23713_aio_7in1_x64_v26.01.13_by_adguard.iso
# 安装前 CurrentVersion 是 6.0.6002.18005
# 安装后 CurrentVersion 是 6.0
# 添加 cut 用于兼容这两种情况
nt_ver=$(get_current_version_key CurrentVersion | cut -d. -f1-2)
fi
# build_ver
# win10 22h2 19045 的 exe/dll 版本还是 19041 的,因此要从注册表获取
build_ver=$(hivexget $hive 'Microsoft\Windows NT\CurrentVersion' CurrentBuildNumber)
echo "Version: $nt_ver_major.$nt_ver_minor.$build_ver.$rev_ver" >&2
apk del hivex pev
# vista sp2 iso 安装 KB4474419 后, CurrentBuild 是 6002, CurrentBuildNumber 是 6003
build_ver=$(get_current_version_key CurrentBuildNumber)
# rev_ver
# 实测 win10 winver 是从 UBR 读取 revision 版本
# vista sp2 iso 没有 UBR后期有月度汇总更新包时才有 UBR
if ! rev_ver=$(get_current_version_key UBR 2>/dev/null); then
rev_ver=$(get_current_version_key BuildLabEx | cut -d. -f2)
fi
echo "Version: $nt_ver.$build_ver.$rev_ver" >&2
apk del hivex
}
is_elts() {
@ -1121,6 +1157,17 @@ EOF
post-up ip route add default via $ipv6_gateway dev $ethx
EOF
fi
# 额外的 IPv6 地址(子网不含网关的地址)
get_netconf_to ipv6_extra_addrs
if [ -n "$ipv6_extra_addrs" ]; then
(
IFS=','
for _addr in $ipv6_extra_addrs; do
echo " post-up ip -6 addr add $_addr dev $ethx" >>$conf_file
done
)
fi
fi
# dns
@ -1493,12 +1540,12 @@ install_alpine() {
chroot /os rc-update add fix-eth-name boot
# 安装 frpc
if [ -s /configs/frpc.toml ]; then
if ls /configs/frpc.* >/dev/null 2>&1; then
chroot /os apk add frp
# chroot rc-update add 默认添加到 sysinit
# 但不加 chroot 默认添加到 default
chroot /os rc-update add frpc boot
cp /configs/frpc.toml /os/etc/frp/frpc.toml
cp -f /configs/frpc.* /os/etc/frp/
fi
# setup-disk 会自动选择固件,但不包括微码?
@ -1724,19 +1771,40 @@ $(del_comment_lines </configs/ssh_keys | del_empty_lines | quote_line | add_spac
nix_ssh_ports="services.openssh.ports = [ $ssh_port ];"
fi
# 虽然是原始 frpc.toml (string) 转成 toml 类型,再转成最终使用的 frpc.toml (string)
# 但是可以避免原始 frpc.toml 有错误导致失联
if [ -s /configs/frpc.toml ]; then
if ls /configs/frpc.* >/dev/null 2>&1; then
nix_frpc=$(
if false; then
# 原始 frpc.toml 转 toml 对象 ,再转成最终使用的 frpc.toml
# 可以避免原始 frpc.toml 有错误导致失联
# 但是 frpc 配置还支持 ini json yaml
# 因此不使用这个方法
cat <<EOF
services.frp = {
enable = true;
role = "client";
settings = builtins.fromTOML ''
$(del_comment_lines </configs/frpc.toml | add_space 4)
$(cat /configs/frpc.* | add_space 4)
'';
};
EOF
else
# 直接使用原始文件
(
umask 077
cp /configs/frpc.* /os/etc/nixos/
)
ext=$(basename /configs/frpc.* | awk -F. '{print $NF}')
cat <<EOF
services.frp = {
enable = true;
role = "client";
};
systemd.services.frp.serviceConfig = {
LoadCredential = "frpc.$ext:/etc/nixos/frpc.$ext";
ExecStart = lib.mkForce "\${pkgs.frp}/bin/frpc -c \\\${CREDENTIALS_DIRECTORY}/frpc.$ext";
};
EOF
fi
)
fi
@ -1869,7 +1937,7 @@ get_frpc_url() {
add_frpc_systemd_service_if_need() {
local os_dir=$1
if [ -s /configs/frpc.toml ]; then
if ls /configs/frpc.* >/dev/null 2>&1; then
mkdir -p "$os_dir/usr/local/bin"
mkdir -p "$os_dir/usr/local/etc/frpc"
@ -1885,7 +1953,7 @@ add_frpc_systemd_service_if_need() {
chmod a+x "$os_dir/usr/local/bin/frpc"
# frpc conf
cp /configs/frpc.toml "$os_dir/usr/local/etc/frpc/frpc.toml"
cp -f /configs/frpc.* "$os_dir/usr/local/etc/frpc/"
# 添加服务
add_systemd_service "$os_dir" frpc
@ -2110,7 +2178,26 @@ sync-uri = $mirror_long/binpackages/$profile_ver/$binpkg_type
EOF
# 下载公钥
chroot $os_dir getuto
# getuto 会判断是否有 ${TERM} 且 ${TERM} 不是 dumb
# 符合条件则 source /lib/gentoo/functions.sh 导入 ebegin 等方法
# 不符合条件则自行创建 ebegin 等方法
# /lib/gentoo/functions.sh 会判断是否有 ${RC_OPENRC_PID}
# 有的话就不会导入 /functions/openrc.sh也就不会导入 ebegin 方法
# 在 ssh 里运行 /trans.sh 时,没有 ${RC_OPENRC_PID}${TERM} 是 xterm
# 因此 chroot $os_dir getuto 时不会报错
# 在 locald 里运行 /trans.sh 时,有 ${RC_OPENRC_PID}${TERM} 是 linux
# 因此 chroot $os_dir getuto 时会报错说 ebegin: command not found
# 有两个解决方法
if true; then
TERM=dumb chroot $os_dir getuto
else
env -u RC_OPENRC_PID chroot $os_dir getuto
fi
set_locale
@ -3027,24 +3114,23 @@ modify_windows() {
done
# 5 frp
if [ -s /configs/frpc.toml ]; then
# 好像 win7 无法运行 frpc暂时不管
windows_arch=$(get_windows_arch_from_windows_drive "$os_dir" | to_lower)
if [ "$windows_arch" = amd64 ] || [ "$windows_arch" = arm64 ]; then
if ls /configs/frpc.* >/dev/null 2>&1; then
if [ "$(get_windows_arch_from_windows_drive "$os_dir" | to_lower)" = x86 ]; then
os_bit=32
else
os_bit=64
fi
mkdir -p "$os_dir/frpc/"
url=$(get_frpc_url windows "$nt_ver")
url=$(get_frpc_url windows "$nt_ver" "$os_bit")
download "$url" $os_dir/frpc/frpc.zip
# -j 去除文件夹
# -C 筛选文件时不区分大小写,但 busybox zip 不支持
unzip -o -j "$os_dir/frpc/frpc.zip" '*/frpc.exe' -d "$os_dir/frpc/"
rm -f "$os_dir/frpc/frpc.zip"
cp -f /configs/frpc.toml "$os_dir/frpc/frpc.toml"
cp -f /configs/frpc.* "$os_dir/frpc/"
download "$confhome/windows-frpc.xml" "$os_dir/frpc/frpc.xml"
download "$confhome/windows-frpc.bat" "$os_dir/frpc/frpc.bat"
bats="$bats frpc\frpc.bat"
else
warn "$windows_arch Not Support frpc"
fi
fi
if $use_gpo; then
@ -3459,8 +3545,8 @@ EOF
wget https://deb.freexian.com/extended-lts/archive-key.gpg \
-O $os_dir/etc/apt/trusted.gpg.d/freexian-archive-extended-lts.gpg
codename=$(grep '^VERSION_CODENAME=' $os_dir/etc/os-release | cut -d= -f2)
# shellcheck disable=SC2154
# shellcheck disable=SC1091
codename=$({ . "$os_dir/etc/os-release" && echo "$VERSION_CODENAME"; })
if [ -f $os_dir/etc/apt/sources.list.d/debian.sources ]; then
cat <<EOF >$os_dir/etc/apt/sources.list.d/debian.sources
Types: deb
@ -3793,14 +3879,40 @@ EOF
rm -f $os_dir/swapfile
}
setup_nocloud() {
os_dir=$1
info "Setup NoCloud"
# 1. 配置 NoCloud-only datasource
mkdir -p "$os_dir/etc/cloud/cloud.cfg.d"
cat >"$os_dir/etc/cloud/cloud.cfg.d/99-datasource.cfg" <<'EOF'
datasource_list: [ NoCloud, None ]
datasource:
NoCloud:
seedfrom: /var/lib/cloud/seed/nocloud/
fs_label: null
EOF
# 2. 复制 seed 文件(已在 host 上准备好,打包在 initrd 中)
mkdir -p "$os_dir/var/lib/cloud/seed/nocloud"
cp /configs/cloud-data/* "$os_dir/var/lib/cloud/seed/nocloud/"
# 3. 确保 cloud-init 没有被禁用
rm -f "$os_dir/etc/cloud/cloud-init.disabled"
# 4. 清除 cloud-init 旧状态,确保首次启动重新执行
rm -rf "$os_dir/var/lib/cloud/instance"
rm -rf "$os_dir/var/lib/cloud/instances"
}
modify_os_on_disk() {
only_process=$1
info "Modify disk if is $only_process"
update_part
# dd linux 的时候不用修改硬盘内容
if [ "$distro" = "dd" ] && ! lsblk -f /dev/$xda | grep ntfs; then
# dd linux 的时候不用修改硬盘内容nocloud 模式除外)
if [ "$distro" = "dd" ] && [ "$only_process" != "nocloud" ] && ! lsblk -f /dev/$xda | grep ntfs; then
return
fi
@ -3810,12 +3922,16 @@ modify_os_on_disk() {
# btrfs挂载的是默认子卷如果没有默认子卷挂载的是根目录
# fedora 云镜像没有默认子卷且系统在root子卷中
if mount -o ro /dev/$part /os; then
if [ "$only_process" = linux ]; then
if [ "$only_process" = linux ] || [ "$only_process" = nocloud ]; then
if etc_dir=$({ ls -d /os/etc/ || ls -d /os/*/etc/; } 2>/dev/null); then
os_dir=$(dirname $etc_dir)
# 重新挂载为读写
mount -o remount,rw /os
if [ "$only_process" = nocloud ]; then
setup_nocloud $os_dir
else
modify_linux $os_dir
fi
return
fi
elif [ "$only_process" = windows ]; then
@ -5617,8 +5733,8 @@ get_windows_type_from_windows_drive() {
apk add hivex
software_hive=$(find_file_ignore_case $os_dir/Windows/System32/config/SOFTWARE)
system_hive=$(find_file_ignore_case $os_dir/Windows/System32/config/SYSTEM)
installation_type=$(hivexget $software_hive '\Microsoft\Windows NT\CurrentVersion' InstallationType || true)
product_type=$(hivexget $system_hive '\ControlSet001\Control\ProductOptions' ProductType || true)
installation_type=$(hivexget $software_hive '\Microsoft\Windows NT\CurrentVersion' InstallationType 2>/dev/null || true)
product_type=$(hivexget $system_hive '\ControlSet001\Control\ProductOptions' ProductType 2>/dev/null || true)
apk del hivex
# 根据 win11 multi-session 的情况
@ -5682,13 +5798,25 @@ install_windows() {
# 一般镜像是 install.wim
# en_server_install_disc_windows_home_server_2011_x64_dvd_658487.iso 是 Install.wim
# en_windows_vista_sp2_with_update_6003.23713_aio_7in1_x64_v26.01.13_by_adguard.iso 是 swm
source_install_wim=$(
cd /iso
{ find_file_ignore_case sources/install.wim ||
find_file_ignore_case sources/install.esd; } 2>/dev/null ||
error_and_exit "can't find install.wim or install.esd"
{
find_file_ignore_case sources/install.wim ||
find_file_ignore_case sources/install.esd ||
find_file_ignore_case sources/install.swm
} 2>/dev/null || error_and_exit "can't find install.wim, install.esd or install.swm"
)
is_swm=false
if [[ $(echo "$source_install_wim" | to_lower) = '*.swm' ]]; then
is_swm=true
swm_ref=$(
IFS=. read -r name ext < <(basename "$source_install_wim")
echo "$name*.$ext"
)
fi
# 防止用了不兼容架构的 iso
boot_index=$(get_wim_prop "/iso/$sources_boot_wim" 'Boot Index')
arch_wim=$(get_image_prop "/iso/$sources_boot_wim" "$boot_index" 'Architecture' | to_lower)
@ -5724,7 +5852,7 @@ install_windows() {
while true; do
# 匹配成功
# 改成正确的大小写
if matched_image_name=$(echo "$all_image_names" | grep -ix "$image_name"); then
if matched_image_name=$(printf '%s\n' "$all_image_names" | grep -Fix "$image_name"); then
image_name=$matched_image_name
image_index=$(wiminfo "$iso_install_wim" "$image_name" | grep 'Index:' | awk '{print $NF}')
break
@ -5794,27 +5922,15 @@ install_windows() {
# 2. 是否自带 nvme 驱动
# 3. 是否支持 sha256
# 4. Installation Type
wimmount "$iso_install_wim" "$image_index" /wim/
# shellcheck disable=SC2046
wimmount "$iso_install_wim" "$image_index" /wim/ \
$($is_swm && echo --ref=$(dirname "$iso_install_wim")/$swm_ref)
# 获取版本号
get_windows_version_from_windows_drive /wim
# 检测 client/server并转换成标准版 windows 名称
windows_type=$(get_windows_type_from_windows_drive /wim)
{
find_file_ignore_case /wim/Windows/System32/sacsess.exe && has_sac=true || has_sac=false
find_file_ignore_case /wim/Windows/INF/stornvme.inf && has_stornvme=true || has_stornvme=false
} >/dev/null 2>&1
wimunmount /wim/
# https://www.hummingheads.co.jp/press/info-certificates.html
# https://support.microsoft.com/kb/KB3033929
# https://support.microsoft.com/kb/KB4474419
# Windows Vista SP2 ldr_escrow 6.0.6003 + KB4474419
# Windows 7 SP1 6.1.7601 + KB3033929
support_sha256=false
if is_nt_ver_ge 6.2 ||
{ [ "$nt_ver" = 6.1 ] && [ "$build_ver" -ge 7601 ] && [ "$rev_ver" -ge 18741 ]; } ||
{ [ "$nt_ver" = 6.0 ] && [ "$build_ver" -ge 6003 ] && [ "$rev_ver" -ge 20555 ]; }; then
support_sha256=true
fi
product_ver=$(
case "$windows_type" in
client) get_client_name_by_build_ver "$build_ver" ;;
@ -5822,16 +5938,113 @@ install_windows() {
esac
)
# 检测 sac 和 nvme
{
find_file_ignore_case /wim/Windows/System32/sacsess.exe && has_sac=true || has_sac=false
find_file_ignore_case /wim/Windows/INF/stornvme.inf && has_stornvme=true || has_stornvme=false
} >/dev/null 2>&1
# 检测是否支持 sha256 签名的驱动
support_sha256=false
if is_nt_ver_ge 6.2; then
support_sha256=true
else
# 安装环境下 drvload.exe 不会验证签名,能安装 sha256 的驱动
# 但重启后提示 Windows cannot verify the digital signature for this file.
# winload.exe/efi 有这串字符
# Windows cannot verify the digital signature for this file.
# strings -e l winload.exe | grep -i signature
# strings -e l winload.efi | grep -i signature
# 硬盘控制器驱动是 boot-start 驱动,由 winload.exe/efi 验证签名
# 网卡驱动不是 boot-start 驱动,由 ci.dll 验证签名
# win7 sp1 iso 不支持 sha256 的驱动,但是
# ci.dll 能找到 8+64 个常量和 oid 0609608648016503040201 0102040365014886600906
# winload.exe 能找到 8+64 个常量和 oid 0609608648016503040201 0102040365014886600906
# winload.efi 能找到 8+64 个常量和 oid 608648016503040201
# 官网有提到 KB3033929 和 KB4039648, 应该分别是 2008r2 和 2008 最早支持 sha256 的补丁
# https://support.microsoft.com/kb/4472027#:~:text=KB3033929%20%E5%92%8C%20KB4039648
# https://support.drweb.cn/sha2
# https://support.kaspersky.com/common/compatibility/15761
# https://www.internetdownloadmanager.com/register/new_faq/sha256-support-for-outdated-versions-of-Windows.html
# https://www.catalog.update.microsoft.com/
# vista sp2 iso
# 用 KB4039648 和 KB4090450 做测试,独立安装时,注册表没有发现另一个 KB 的痕迹
# 后续很多补丁如果包含 winload.exe/efi都是支持 sha256 的新版,因此不能通过检测 KB 编号来判断
# HKEY_LOCAL_MACHINE\Microsoft\Windows\CurrentVersion\Component Based Servicing\Package
# HKEY_LOCAL_MACHINE\Microsoft\Windows\CurrentVersion\Component Based Servicing\PackageDetect
# vista sp2 iso 独立安装以下补丁时
# 补丁 发布日期 BuildLabEx ubr winload.exe winload.efi ci.dll
# KB4039648 旧 2018/2/21 6002.18005(没改变) 没有 6002.24259 6002.24283 6002.24259
# KB4039648 新 2018/3/22 6002.18005(没改变) 没有 6002.24259 6002.24298 6002.24259
# KB4039648-v2 2018/6/12 6002.24381 没有 6002.24362 6002.24381 6002.24259
# KB4474419-v4 2019/10/8 6003.20555 没有 6003.20505 6003.20555 6003.20593
# win7 sp1 iso 独立安装以下补丁时
# KB3033929 2015/3/10 7601.18741 没有 18649/22854 18741/22948 18519/22730
# KB4474419-v3 2019/9/10 7601.24384 没有 24149 24384 24158
# 最早的 KB4039648 KB3033929 都支持 sha256
# winload.exe/efi 版本号 >= ci.dll
# 因此用 winload.exe/efi 的版本号来判断是否支持 sha256
apk add pev
local maj min build rev
winload=$(find_file_ignore_case "/wim/Windows/System32/winload.$(is_efi && echo efi || echo exe)")
IFS=. read -r maj min build rev \
< <(peres -v "$winload" | grep 'Product Version:' | awk '{print $NF}')
apk del pev
# vista/2008
# https://support.microsoft.com/kb/KB4039648
# https://catalog.update.microsoft.com/Search.aspx?q=KB4039648
# win7/2008r2 网页有列出文件版本号
# https://support.microsoft.com/kb/KB3033929
# https://catalog.update.microsoft.com/Search.aspx?q=KB3033929
# rev 1xxxx 是 GDR 分支
# rev 2xxxx 是 LDR 分支
# vista/2008 版本从 6002 到 6003, rev 减少 4000
# https://support.microsoft.com/topic/1335e4d4-c155-52eb-4a45-b85bd1909ca8
if is_efi; then
if { [ "$maj.$min" = 6.1 ] && [ "$build" -eq 7601 ] && [ "$rev" -ge 22948 ]; } ||
{ [ "$maj.$min" = 6.1 ] && [ "$build" -eq 7601 ] && [ "$rev" -ge 18741 ] && [ "$rev" -lt 20000 ]; } ||
{ [ "$maj.$min" = 6.0 ] && [ "$build" -eq 6003 ] && [ "$rev" -ge 20283 ]; } ||
{ [ "$maj.$min" = 6.0 ] && [ "$build" -eq 6002 ] && [ "$rev" -ge 24283 ]; }; then
support_sha256=true
fi
else
if { [ "$maj.$min" = 6.1 ] && [ "$build" -eq 7601 ] && [ "$rev" -ge 22854 ]; } ||
{ [ "$maj.$min" = 6.1 ] && [ "$build" -eq 7601 ] && [ "$rev" -ge 18649 ] && [ "$rev" -lt 20000 ]; } ||
{ [ "$maj.$min" = 6.0 ] && [ "$build" -eq 6003 ] && [ "$rev" -ge 20259 ]; } ||
{ [ "$maj.$min" = 6.0 ] && [ "$build" -eq 6002 ] && [ "$rev" -ge 24259 ]; }; then
support_sha256=true
fi
fi
fi
wimunmount /wim/
info "Selected image info"
echo "Image Name: $image_name"
echo "Product Version: $product_ver"
echo "Windows Type: $windows_type"
echo "NT Version: $nt_ver"
echo "Build Version: $build_ver"
echo "Revision Version: $rev_ver"
echo "-------------------------"
echo "Has SAC: $has_sac"
echo "Has StorNVMe: $has_stornvme"
echo "Support SHA256: $support_sha256"
echo "-------------------------"
echo
# 复制 boot.wim 到 /os用于临时编辑
@ -5850,13 +6063,14 @@ install_windows() {
boot_dir=/os
fi
# 复制启动相关的文件
# efi 额外复制efi目录
# 复制 iso 根目录 boot 开头的文件
echo 'Copying boot files...'
cp -r "$(get_path_in_correct_case /iso/boot)"* $boot_dir
find /iso -maxdepth 1 -iname 'boot*' -exec cp -r {} "$boot_dir" \;
# efi 额外复制 iso 根目录 efi 文件夹
if is_efi; then
echo 'Copying efi files...'
cp -r "$(get_path_in_correct_case /iso/efi)" $boot_dir
find /iso -maxdepth 1 -type d -iname efi -exec cp -r {} "$boot_dir" \;
fi
# 复制iso全部文件(除了boot.wim)到installer分区
@ -5867,6 +6081,7 @@ install_windows() {
--exclude=/sources/boot.wim \
--exclude=/sources/install.wim \
--exclude=/sources/install.esd \
--exclude='/sources/install*.swm' \
/iso/* /os/installer/
else
(
@ -5875,16 +6090,27 @@ install_windows() {
-not -iname boot.wim \
-not -iname install.wim \
-not -iname install.esd \
-not -iname 'install*.swm' \
-exec cp -r --parents {} /os/installer/ \;
)
fi
# 如果是 swm要先合并成 wim 才能编辑
if $is_swm; then
install_wim=$(echo "$install_wim" | sed 's/\.swm$/.wim/i')
# 防止不格盘二次运行时报错:文件已存在
rm -f "$install_wim"
wimexport --ref="$(dirname "$iso_install_wim")/$swm_ref" "$iso_install_wim" "$image_index" "$install_wim"
# 只导出了要安装的镜像,因此 image_index 变为 1
image_index=1
elif false; then
# 优化 install.wim
# 优点: 可以节省 200M~600M 空间,用来创建虚拟内存
# (意义不大,因为已经删除了 boot.wim 用来创建虚拟内存vista 除外)
# 缺点: 如果 install.wim 只有一个镜像,则只能缩小 10M+
if false; then
time wimexport --threads "$(get_build_threads 512)" "$iso_install_wim" "$image_index" "$install_wim"
# 只导出了要安装的镜像,因此 image_index 变为 1
image_index=1
info "install.wim size"
echo "Original: $(get_filesize_mb "$iso_install_wim")"
echo "Optimized: $(get_filesize_mb "$install_wim")"
@ -6674,25 +6900,31 @@ EOF
add_driver_vmd() {
# RST v20 不支持 11代 PCI\VEN_8086&DEV_9A0B
is_gen11=false
support_v19=false
support_v20=false
for d in /sys/bus/pci/devices/*; do
vendor=$(cat "$d/vendor" 2>/dev/null)
device=$(cat "$d/device" 2>/dev/null)
if [ "$vendor" = "0x8086" ] && [ "$device" = "0x9a0b" ]; then
is_gen11=true
break
if [ "$vendor" = "0x8086" ]; then
case "$device" in
"0x9a0b") support_v19=true && support_v20=false && break ;;
"0x467f") support_v19=true && support_v20=true && break ;;
"0xa77f") support_v19=true && support_v20=true && break ;;
"0x7d0b") support_v19=false && support_v20=true && break ;;
"0xad0b") support_v19=false && support_v20=true && break ;;
esac
fi
done
if ! $is_gen11 && [ "$build_ver" -ge 19041 ]; then
# RST v20
local page=https://www.intel.com/content/www/us/en/download/849936.html
elif [ "$build_ver" -ge 15063 ]; then
# RST v19
local page=https://www.intel.com/content/www/us/en/download/849933.html
else
error_and_exit "can't find suitable vmd driver"
local page=
if $support_v20 && [ "$build_ver" -ge 19041 ]; then
page=https://www.intel.com/content/www/us/en/download/849936.html
elif $support_v19 && [ "$build_ver" -ge 15063 ]; then
page=https://www.intel.com/content/www/us/en/download/849933.html
fi
if [ -n "$page" ]; then
# intel 禁止了 wget 下载网页
local url
url=$(wget -U curl/7.54.1 "$page" -O- |
grep -Eio -m1 "\"https://.+/SetupRST\.exe\"" | tr -d '"' | grep .)
@ -6704,6 +6936,12 @@ EOF
7z x $drv/SetupRST/.text -o$drv/vmd
apk del 7zip
cp_drivers $drv/vmd
else
# 如果开启了 vmd 但硬盘不在 vmd 上linux 会自动加载 vmd 模块?
# 还要判断主硬盘是否在 vmd 上,如果不在,即使没有 vmd 驱动也可继续安装
# 因此目前先不中止脚本
: error_and_exit "can't find suitable vmd driver"
fi
}
# 脚本自动检测驱动可能有问题
@ -6900,6 +7138,8 @@ EOF
images=all
fi
mkdir -p "$(get_path_in_correct_case "$(dirname $boot_dir/$sources_boot_wim)")"
# 防止不格盘二次运行时报错:文件已存在
rm -f $boot_dir/$sources_boot_wim
wimexport --boot /os/boot.wim "$images" $boot_dir/$sources_boot_wim
info "boot.wim size"
echo "Original: $(get_filesize_mb /iso/$sources_boot_wim)"
@ -6946,12 +7186,12 @@ EOF
# 或者用 ms-sys
apk add grub-bios
# efi 下,强制安装 mbr 引导,需要添加 --target i386-pc
grub-install --target i386-pc --boot-directory=/os/boot /dev/$xda
cat <<EOF >/os/boot/grub/grub.cfg
grub-install --target i386-pc --boot-directory="$(get_path_in_correct_case /os/boot)" /dev/$xda
cat <<EOF >"$(get_path_in_correct_case /os/boot/grub/grub.cfg)"
set timeout=5
menuentry "reinstall" {
search --no-floppy --label --set=root os
ntldr /bootmgr
ntldr /$(cd /os && get_path_in_correct_case bootmgr)
}
EOF
fi
@ -7229,7 +7469,11 @@ trans() {
# windows 扩容在 windows 下完成
resize_after_install_cloud_image
fi
if [ -d /configs/cloud-data ]; then
modify_os_on_disk nocloud
else
modify_os_on_disk windows
fi
;;
qemu) # dd qemu 不可能到这里,因为上面已处理
;;
@ -7343,12 +7587,12 @@ fi
# 设置 frpc
# 并防止重复运行
if [ -s /configs/frpc.toml ] && ! pidof frpc >/dev/null; then
if ls /configs/frpc.* >/dev/null 2>&1 && ! pidof frpc >/dev/null; then
info 'run frpc'
add_community_repo
apk add frp
while true; do
frpc -c /configs/frpc.toml || true
frpc -c /configs/frpc.* || true
sleep 5
done &
fi