From 3cac19d4987256de2458256b77b55c32e3ce61e3 Mon Sep 17 00:00:00 2001
From: m0duspwnens <josh.patterson@securityonionsolutions.com>
Date: Thu, 9 Jan 2025 16:31:51 -0500
Subject: [PATCH] createvm script without setting network in base domain

---
 salt/libvirt/scripts/createvm2.sh | 144 ++++++++++++++++++++++++++++++
 1 file changed, 144 insertions(+)
 create mode 100644 salt/libvirt/scripts/createvm2.sh

diff --git a/salt/libvirt/scripts/createvm2.sh b/salt/libvirt/scripts/createvm2.sh
new file mode 100644
index 000000000..b2be0d5b4
--- /dev/null
+++ b/salt/libvirt/scripts/createvm2.sh
@@ -0,0 +1,144 @@
+#!/bin/bash
+
+# Ensure /root/create_vm/var/lib/libvirt/images exists
+# Place this script in /root/create_vm
+# Download OL9U5_x86_64-kvm-b253.qcow2 from https://yum.oracle.com/oracle-linux-templates.html, place in /root/create_vm/
+
+# These steps will be removed from the process to create the final image and is being used for development
+# This is used for the user-data auth portion of cloud-init
+# Create passwd hash:
+# python3 -c 'import crypt; print(crypt.crypt("YOUR_PASSWD_HERE", crypt.mksalt(crypt.METHOD_SHA512)))'
+# Create ssh keypair:
+# ssh-keygen -t ed25519 -C "soqemussh" -f ~/.ssh/soqemussh
+
+# Run the script: createbase.sh coreol9Small 20G
+# After running the script, the following will be output:
+#[root@jppvirtman create_vm]# ll var/lib/libvirt/images/coreol9Small/
+#total 610376
+#-rw-r--r--. 1 root root    380928 Dec 20 14:33 coreol9Small-cidata.iso
+#-rw-r--r--. 1 root root 624623616 Dec 20 14:33 coreol9Small.qcow2
+#-rw-r--r--. 1 root root        55 Dec 20 14:32 meta-data
+#-rw-r--r--. 1 root root      1047 Dec 20 14:32 user-data
+
+# These files are now scp to a hypervisor node
+# Place the files in /var/lib/libvirt/images/coreol9Small (or whatever is the same as the vm name)
+# Create your storage pool as instructed by the script if one doesn't already exist
+# Run the virt-install command as instructed by the script
+
+# Exit on any error
+set -e
+
+# Set variables and defaults
+VM=${1:-"base-vm"}          # VM name
+DISK_SIZE=${2:-"220G"}       # Disk size with unit (default 20G)
+
+# Show usage if help is requested
+if [[ "$1" == "-h" || "$1" == "--help" ]]; then
+    echo "Usage: $0 <vm_name> <disk_size>"
+    echo "Example: $0 myvm 20G"
+    echo "Parameters:"
+    echo "  vm_name    : Name of the VM (default: base-vm)"
+    echo "  disk_size  : Size of the disk with unit G/M (default: 20G)"
+    echo "All parameters are optional and will use defaults if not specified"
+    exit 0
+fi
+
+# Validate disk size format
+if ! [[ $DISK_SIZE =~ ^[0-9]+[GM]$ ]]; then
+    echo "Error: Disk size must be a number followed by G (gigabytes) or M (megabytes)"
+    echo "Example: 20G or 20480M"
+    exit 1
+fi
+
+# Set up directory structure
+#D=/root/create_vm/var/lib/libvirt/images
+D=/opt/so/saltstack/local/salt/libvirt/images
+mkdir -vp $D/$VM
+cd $D/$VM
+
+# Create cloud-init metadata
+cat > meta-data << EOF
+instance-id: ${VM}
+local-hostname: ${VM}
+EOF
+
+# Create user-data configuration
+cat > user-data << EOF
+#cloud-config
+preserve_hostname: False
+hostname: ${VM}
+fqdn: ${VM}.local
+
+users:
+    - default
+    - name: soqemussh
+      groups: ['wheel']
+      shell: /bin/bash
+      sudo: ALL=(ALL) NOPASSWD:ALL
+      lock_passwd: false
+      passwd: $(echo '___YOUR_HASH_HERE___')
+      ssh-authorized-keys:
+        - ssh-ed25519 ___YOUR_PUB_KEY_HERE___ soqemussh
+
+# Configure where output will go
+output:
+  all: ">> /var/log/cloud-init.log"
+
+# configure interaction with ssh server
+ssh_genkeytypes: ['ed25519', 'rsa']
+
+# set timezone for VM
+timezone: UTC
+
+# Install QEMU guest agent. Enable and start the service
+packages:
+  - qemu-guest-agent
+
+runcmd:
+  - systemctl enable --now qemu-guest-agent
+  - systemctl enable --now serial-getty@ttyS0.service
+  - systemctl enable --now NetworkManager
+  - growpart /dev/vda 2
+  - pvresize /dev/vda2
+  - lvextend -l +100%FREE /dev/vg_main/lv_root
+  - xfs_growfs /dev/vg_main/lv_root
+  - touch /etc/cloud/cloud-init.disabled
+  - shutdown -P now
+EOF
+
+# First, copy the base image with progress
+echo "Creating base VM image..."
+rsync --progress /root/create_vm/OL9U5_x86_64-kvm-b253.qcow2 $VM.qcow2
+
+# Resize the image to specified size
+echo "Resizing image to $DISK_SIZE..."
+echo "Current image size: $(qemu-img info $VM.qcow2 | grep 'virtual size' | cut -d':' -f2 | cut -d'(' -f1 | tr -d ' ')"
+qemu-img resize -f qcow2 $VM.qcow2 $DISK_SIZE
+echo "New image size: $(qemu-img info $VM.qcow2 | grep 'virtual size' | cut -d':' -f2 | cut -d'(' -f1 | tr -d ' ')"
+
+# Now compress it with progress
+echo "Compressing image..."
+qemu-img convert -p -O qcow2 -c $VM.qcow2 $VM-compressed.qcow2
+mv -v $VM-compressed.qcow2 $VM.qcow2
+
+# Create a cloud-init ISO with progress indication
+echo "Creating cloud-init ISO..."
+mkisofs -output $VM-cidata.iso -volid CIDATA -rock -verbose user-data meta-data
+
+# Echo the configuration for verification
+echo "Creating VM with the following configuration:"
+echo "VM Name: $VM"
+echo "Disk Size: $DISK_SIZE"
+
+echo "Files have been created in $D/$VM"
+echo
+echo "To complete VM creation on the hypervisor, run:"
+echo "virsh pool-create-as --name $VM --type dir --target $D/$VM"
+echo "virt-install --name ${VM} \\"
+echo "    --memory 4096 --vcpus 4 --cpu host \\"
+echo "    --disk ${VM}.qcow2,format=qcow2,bus=virtio \\"
+echo "    --disk ${VM}-cidata.iso,device=cdrom \\"
+echo "    --network bridge=br0,model=virtio \\"
+echo "    --os-variant=ol9.5 \\"
+echo "    --import \\"
+echo "    --noautoconsole"