minimal.sh

apt-get install debootstrap

fdisk /dev/sdb
  o 
  n 
  <return>
  <return>  
  <return>  
  w

zpool create \
  -o ashift=9 \
  -O normalization=formD \
  -O atime=off \
  -O canmount=off \
  -O compression=lz4 \
  -O recordsize=1M \
  tank \
  /dev/sdb1        # 1 !
  
zfs create tank/os
cd /tank/os
debootstrap xenial .

mount --rbind /dev dev
mount --rbind /sys sys
mount --rbind /proc proc
mount --rbind /run run

chroot .

<CHROOT>
cat /proc/mounts > /etc/mtab
for i in xenial xenial-{updates,security}; do echo "deb http://archive.ubuntu.com/ubuntu $i main restricted universe" >> /etc/apt/sources.list.d/ubuntu.list; done
echo > /etc/apt/sources.list
cat > /etc/udev/rules.d/70-zfs-grub-fix.rules << 'EOF'
KERNEL=="sd*[a-z]1|cciss*[a-z]1", ENV{DEVTYPE}=="partition", ENV{ID_SERIAL}=="?*", SYMLINK+="$env{ID_BUS}-$env{ID_SERIAL}"
EOF
udevadm trigger
for disk in /dev/disk/by-id/{ata,wwn}*; do name=$(basename $disk); device=$(readlink -f $disk); ln -sfn $device /dev/$name; done
apt-get update
apt install vim man htop zfsutils-linux zfs-dkms zfs-initramfs linux-image-generic grub-pc
echo "root:root" | chpasswd 
</CHROOT>

zpool export tank
reboot

sbooblehat.sh

# Disable automatic installation of recommended or suggested packages
cat > /etc/apt/apt.conf.d/01norecommend <<EOF
APT::Install-Recommends "0";
APT::Install-Suggests "0";
EOF

# Get required tools, i.e. debootstrap and ZFS userspace tools
apt-get --quiet update
apt-get --yes --quiet install debootstrap zfsutils-linux dosfstools

hdparm --user-master u --security-set-pass Eins /dev/sda
time hdparm --user-master u --security-erase Eins /dev/sda

sleep 2

for disk in /dev/sda
do
  sgdisk -a1  -n2:34:2047  -t2:EF02 -c2:grub \
         "$disk"
  sgdisk      -n3:1M:+512M -t3:EF00 -c3:EFI \
              -n9:-8M:0    -t9:BF07 -c9:reserved \
              -n1:0:0      -t1:BF01 -c1:zfs \
         "$disk"
  zpool labelclear -f "$disk"1
done

zpool create \
  -o ashift=9 \
  -O normalization=formD \
  -O atime=off \
  -O canmount=off \
  -O compression=lz4 \
  -O mountpoint=/ \
  -O recordsize=1M \
  -R /mnt \
  sbooblehat \
  /dev/sda1


# Turn synchronous requests into async ones for faster installation
zfs set sync=disabled sbooblehat

zfs create -o canmount=off -o mountpoint=none sbooblehat/ROOT
zfs create -o canmount=noauto -o mountpoint=/ sbooblehat/ROOT/xenial

zfs mount sbooblehat/ROOT/xenial

zfs create                 -o setuid=off              sbooblehat/home
zfs create                                            sbooblehat/home/dasjoe
zfs create -o mountpoint=/root                        sbooblehat/home/root
zfs create -o canmount=off -o setuid=off  -o exec=off sbooblehat/var
zfs create -o com.sun:auto-snapshot=false             sbooblehat/var/cache
zfs create                                            sbooblehat/var/log
zfs create                                            sbooblehat/var/spool
zfs create -o com.sun:auto-snapshot=false -o exec=on  sbooblehat/var/tmp

chmod 1777 /mnt/var/tmp
debootstrap xenial /mnt http://de.archive.ubuntu.com/ubuntu
zfs set devices=off sbooblehat

zfs snap sbooblehat/ROOT/xenial@install-debootstrap

# TODO: Replace with real host name
echo 'sbooblehat' > /mnt/etc/hostname
sed -i '1 a 127.0.1.1       sbooblehat' /mnt/etc/hosts

# Install a sane sources.list
cat > /mnt/etc/apt/sources.list <<'EOF'
deb http://de.archive.ubuntu.com/ubuntu xenial           main restricted universe multiverse
deb http://de.archive.ubuntu.com/ubuntu xenial-backports main restricted universe multiverse
deb http://de.archive.ubuntu.com/ubuntu xenial-updates   main restricted universe multiverse
deb http://de.archive.ubuntu.com/ubuntu xenial-security  main restricted universe multiverse
EOF

# Disable automatic installation of recommended or suggested packages
cat > /mnt/etc/apt/apt.conf.d/01norecommend <<'EOF'
APT::Install-Recommends "0";
APT::Install-Suggests "0";
EOF

echo 'LANG="en_US.UTF-8"' > /mnt/etc/default/locale

cat > /mnt/etc/default/grub <<'EOF'
# If you change this file, run 'update-grub' afterwards to update
# /boot/grub/grub.cfg.
# For full documentation of the options in this file, see:
#   info -f grub -n 'Simple configuration'
GRUB_DEFAULT=0
#GRUB_HIDDEN_TIMEOUT=0
GRUB_HIDDEN_TIMEOUT_QUIET=true
GRUB_TIMEOUT=3
GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo Debian`
#GRUB_CMDLINE_LINUX_DEFAULT="quiet noplymouth"
GRUB_CMDLINE_LINUX_DEFAULT="noplymouth"
GRUB_CMDLINE_LINUX=""
# Uncomment to enable BadRAM filtering, modify to suit your needs
# This works with Linux (no patch required) and with any kernel that obtains
# the memory map information from GRUB (GNU Mach, kernel of FreeBSD ...)
#GRUB_BADRAM="0x01234567,0xfefefefe,0x89abcdef,0xefefefef"
# Uncomment to disable graphical terminal (grub-pc only)
GRUB_TERMINAL=console
# The resolution used on graphical terminal
# note that you can use only modes which your graphic card supports via VBE
# you can see them in real GRUB with the command `vbeinfo'
#GRUB_GFXMODE=640x480
# Uncomment if you don't want GRUB to pass "root=UUID=xxx" parameter to Linux
#GRUB_DISABLE_LINUX_UUID=true
# Uncomment to disable generation of recovery mode menu entries
#GRUB_DISABLE_RECOVERY="true"
# Uncomment to get a beep at grub start
#GRUB_INIT_TUNE="480 440 1"
EOF

# Prepare ESP
mkdosfs -F 32 -n EFI /dev/sda3
mkdir /mnt/boot/efi
echo PARTUUID=$(blkid -s PARTUUID -o value /dev/sda3) /boot/efi vfat defaults 0 1 >> /mnt/etc/fstab
mount /dev/sda3 /mnt/boot/efi
modprobe efivars

# Fix the chroot's mtab
ln -s /proc/mounts /mnt/etc/mtab

mount -t devtmpfs /dev /mnt/dev
mount -t devpts /dev/pts /mnt/dev/pts 
mount -t sysfs /sys /mnt/sys
mount -t proc /proc /mnt/proc 
mount -t tmpfs /run /mnt/run

# Create temporary resolv.conf by manually setting it up
# TODO: feel free to use a different name server, this is Google's
mkdir /mnt/run/resolvconf/
echo "nameserver 8.8.8.8" > /mnt/run/resolvconf/resolv.conf

chroot /mnt /bin/bash -l -- <<'EOF'
set -x

# TODO: replace with your locale needs
for locale in en_US.UTF-8 de_DE.UTF-8; do locale-gen "$locale"; done

# TODO: edit timezone
# This is a workaround for https://bugs.launchpad.net/ubuntu/+source/tzdata/+bug/1554806
ln -fs /usr/share/zoneinfo/Europe/Berlin /etc/localtime
dpkg-reconfigure -f noninteractive tzdata

# Update package cache and upgrade everything
apt-get --quiet update
apt-get --yes --quiet dist-upgrade

# Install a minimal but sane set of packages
# TODO: edit according your needs
apt-get --yes --quiet install \
  ubuntu-minimal \
  linux-image-generic \
  zfsutils-linux \
  zfs-initramfs \
  openssh-server \
  ssh-import-id \
  tmux \
  aptitude \
  vim

# Install grub, force usage of our custom /etc/default/grub
DEBIAN_FRONTEND=noninteractive apt-get --yes --quiet \
  -o Dpkg::Options::="--force-confdef" \
  -o Dpkg::Options::="--force-confold" \
  install grub-efi-amd64

addgroup --system lpadmin
addgroup --system sambashare

grub-install --target=x86_64-efi --efi-directory=/boot/efi --bootloader-id=ubuntu --recheck --no-floppy

adduser --disabled-password --gecos "Hajo Möller,,," --home /home/dasjoe dasjoe
usermod -a -G adm,sudo dasjoe
echo "dasjoe:dasjoe" | chpasswd
cp -ar /etc/skel/ /home/dasjoe/
chown -R dasjoe: /home/dasjoe
sudo -Hu dasjoe ssh-import-id dasjoe

# Disable password login via SSH
sed -i 's/^#\{0,1\}\(PasswordAuthentication\) .*/\1 no/g' /etc/ssh/sshd_config

# Install Xubuntu
mkdir -p /run/lock
aptitude install -y -q --with-recommends xubuntu-desktop

# FIXME: "Fix" broken blueman installation
apt-get --yes --quiet --auto-remove remove --purge blueman

exit
EOF

# Prepare zpool for export, unmount /run, /proc, /sys, /dev/pts and /dev
umount /mnt/run
umount /mnt/proc
umount /mnt/sys
umount /mnt/dev/pts
umount /mnt/dev
umount /mnt/boot/efi
zfs umount -a
umount /mnt

# Reset synchronous behaviour to ZFS defaults
zfs inherit sync sbooblehat
zfs snap sbooblehat/ROOT/xenial@install-done

zpool export sbooblehat