release/tools/vagrant.conf

284893Sbrd#!/bin/sh
284893Sbrd#
284893Sbrd# $FreeBSD$
284893Sbrd#
284893Sbrd
284893Sbrd# Packages to install into the image we're creating.  This is a deliberately
284893Sbrd# minimalist set, providing only the packages necessary to bootstrap.
284893Sbrdexport VM_EXTRA_PACKAGES="firstboot-freebsd-update firstboot-pkgs"
284893Sbrd
284893Sbrd# Set to a list of third-party software to enable in rc.conf(5).
284893Sbrdexport VM_RC_LIST="firstboot_freebsd_update firstboot_pkgs"
284893Sbrd
285814Sgjbvagrant_common () {
284893Sbrd	# The firstboot_pkgs rc.d script will download the repository
284893Sbrd	# catalogue and install or update pkg when the instance first
284893Sbrd	# launches, so these files would just be replaced anyway; removing
284893Sbrd	# them from the image allows it to boot faster.
285814Sgjb	env ASSUME_ALWAYS_YES=yes pkg -c ${DESTDIR} clean -y -a
284893Sbrd	env ASSUME_ALWAYS_YES=yes pkg -c ${DESTDIR} delete -f -y pkg
284893Sbrd	rm ${DESTDIR}/var/db/pkg/repo-*.sqlite
284893Sbrd
284893Sbrd	# Vagrant instances use DHCP to get their network configuration.
284893Sbrd	echo 'ifconfig_DEFAULT="SYNCDHCP"' >> ${DESTDIR}/etc/rc.conf
284893Sbrd
284893Sbrd	# Enable sshd by default
284893Sbrd	echo 'sshd_enable="YES"' >> ${DESTDIR}/etc/rc.conf
284893Sbrd	# Disable DNS lookups by default to make SSH connect quickly
284893Sbrd	echo 'UseDNS no' >> ${DESTDIR}/etc/ssh/sshd_config
284893Sbrd
284893Sbrd	# Disable sendmail
284893Sbrd	echo 'sendmail_enable="NO"' >> ${DESTDIR}/etc/rc.conf
284893Sbrd	echo 'sendmail_submit_enable="NO"' >> ${DESTDIR}/etc/rc.conf
284893Sbrd	echo 'sendmail_outbound_enable="NO"' >> ${DESTDIR}/etc/rc.conf
284893Sbrd	echo 'sendmail_msp_queue_enable="NO"' >> ${DESTDIR}/etc/rc.conf
284893Sbrd
284893Sbrd	# Create the vagrant user with a password of vagrant
284893Sbrd	/usr/sbin/pw -R ${DESTDIR} \
284893Sbrd		groupadd vagrant -g 1001
284893Sbrd	chroot ${DESTDIR} mkdir -p /home/vagrant
284893Sbrd	/usr/sbin/pw -R ${DESTDIR} \
284893Sbrd		useradd vagrant \
284893Sbrd		-m -M 0755 -w yes -n vagrant -u 1001 -g 1001 -G 0 \
284893Sbrd		-c 'Vagrant User' -d '/home/vagrant' -s '/bin/csh'
284893Sbrd
284893Sbrd	# Change root's password to vagrant
284893Sbrd	echo 'vagrant' | /usr/sbin/pw -R ${DESTDIR} \
284893Sbrd		usermod root -h 0
284893Sbrd
284893Sbrd	# Configure sudo to allow the vagrant user
284893Sbrd	echo 'vagrant ALL=(ALL) NOPASSWD: ALL' >> ${DESTDIR}/usr/local/etc/sudoers
284893Sbrd
284893Sbrd	# Configure the vagrant ssh key
284893Sbrd	mkdir ${DESTDIR}/home/vagrant/.ssh
284893Sbrd	chmod 700 ${DESTDIR}/home/vagrant/.ssh
284893Sbrd	echo "ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6NF8iallvQVp22WDkTkyrtvp9eWW6A8YVr+kz4TjGYe7gHzIw+niNltGEFHzD8+v1I2YJ6oXevct1YeS0o9HZyN1Q9qgCgzUFtdOKLv6IedplqoPkcmF0aYet2PkEDo3MlTBckFXPITAMzF8dJSIFo9D8HfdOV0IAdx4O7PtixWKn5y2hMNG0zQPyUecp4pzC6kivAIhyfHilFR61RGL+GPXQ2MWZWFYbAGjyiYJnAmCP3NOTd0jMZEnDkbUvxhMmBYSdETk1rRgm+R4LOzFUGaHqHDLKLX+FIPKcF96hrucXzcWyLbIbEgE98OHlnVYCzRdK8jlqm8tehUc9c9WhQ== vagrant insecure public key" > ${DESTDIR}/home/vagrant/.ssh/authorized_keys
284893Sbrd	chown -R 1001 ${DESTDIR}/home/vagrant/.ssh
284893Sbrd	chmod 600 ${DESTDIR}/home/vagrant/.ssh/authorized_keys
284893Sbrd
284893Sbrd	# Reboot quickly, Don't wait at the panic screen
284893Sbrd	echo 'debug.trace_on_panic=1' >> ${DESTDIR}/etc/sysctl.conf
284893Sbrd	echo 'debug.debugger_on_panic=0' >> ${DESTDIR}/etc/sysctl.conf
284893Sbrd	echo 'kern.panic_reboot_wait_time=0' >> ${DESTDIR}/etc/sysctl.conf
284893Sbrd
284893Sbrd	# The console is not interactive, so we might as well boot quickly.
284893Sbrd	echo 'autoboot_delay="-1"' >> ${DESTDIR}/boot/loader.conf
284893Sbrd
284893Sbrd	# The first time the VM boots, the installed "first boot" scripts
284893Sbrd	# should be allowed to run:
284893Sbrd	# * growfs (expand the filesystem to fill the provided disk)
284893Sbrd	# * firstboot_freebsd_update (install critical updates)
284893Sbrd	# * firstboot_pkgs (install packages)
284893Sbrd	touch ${DESTDIR}/firstboot
284893Sbrd
284893Sbrd	return 0
284893Sbrd}