[ 中文 | English ]
Deploy Debian on Mac, in an automated manner!
- ✅ Building on Linux without Mac required.
- ✅ Building in containers without VM involved.
- ✅ Building with scripts to ensure reproducibility and automation.
- ✅ (Almost) fully automated deployment with a USB stick.
Tested devices:
mac-mini-2018: Mac mini (2018)
OS variants:
bullseye: Debian 11 with common softwarebullseye-k8s: Debian 11 with common software & K8sproxmox-ve: Proxmox VE 7 with common software
Following is an example of building and burning a bullseye USB installer with the default configuration.
Build the USB image
The commands shall be executed by root or a user with Docker permission.
Privileged containers are used. No side effects in theory.
First, build the system image.
A gzip compressed raw image containing system partition is generated for subsequent use.
$ ./build_image.sh bullseye
...
$ ls -lh output/
total 726M
-rw-r--r-- 1 root root 726M Aug 8 00:00 bullseye-v1.0.0.gzThen build the USB image.
A bootable ISO image with the installer and system image is generated.
In this example, we use demo cloud-init configuration and mac-mini-2018 machine script.
$ ./pack_iso.sh -c demo output/bullseye-v1.0.0.gz mac-mini-2018
...
$ ls -lh output/
total 1.5G
-rw-r--r-- 1 root root 726M Aug 8 00:00 bullseye-v1.0.0.gz
-rw-r--r-- 1 root root 738M Aug 8 00:00 bullseye-v1.0.0.mac-mini-2018.demo.isoBurn the USB stick
Now the ISO file can be burnt to a USB drive (or some real optical media, of course).
For macOS, do as follows:
# find the name of the usb stick
$ diskutil list
# unmount it for writing
$ diskutil unmountDisk /dev/diskX
# burn!
$ sudo dd if=output/bullseye-v1.0.0.mac-mini-2018.demo.iso of=/dev/rdiskX bs=4mFor Linux, make sure the existing partitions aren't mounted and run:
# find the block device of the usb stick
$ lsblk
# burn!
$ sudo dd if=output/bullseye-v1.0.0.mac-mini-2018.demo.iso of=/dev/sdX bs=4mIf the ISO is generated remotely, just run python3 -m http.server on the server, and change the last step to:
# burn!
$ curl server:8000/output/bullseye-v1.0.0.mac-mini-2018.demo.iso | sudo dd of=/dev/{rdiskX,sdX} bs=4mThough this tool is meant to be as automated as possible, you do need to configure the Mac the first time you install a funny OS on it.
- Press
Command-Rat boot, and enter recovery mode. - Turn off secure boot and allow external boot as described here, so that Debian can boot.
Once it's configured, the installation is simple:
- Insert the stick, press
Optionat boot, and select the boot option from USB. - Wait for completion, after which Mac will automatically reboot into Debian.
The root password of bullseye is toor.
You can customize the image by creating scripts or configurations in images, machines, and cloud-init.
It's strongly recommended to read the packing and installation scripts before customization and refer to existing ones.
To customize the image, create a directory in images of this layout:
├── image.sh # metadata
└── scripts # build scripts
├── 00-xxx.sh
├── ...
└── 99-xxx.sh
image.sh contains the basic configuration like name, version, size, apt mirror, etc. for the build script and debootstrap.
scripts contains the scripts that are executed in lexicographic order in chroot environment of the system partition. Note that there isn't a full system, so systemd and some others are unavailable.
To customize the model, create a directory in machines with one or more scripts in it.
These scripts are executed after the Mac boots into the minimal Linux from the USB stick. The scripts shall create partitions, write EFI files (the ISO has rEFInd inside), plant cloud-init configurations, etc.
To customize cloud-init, create a directory in cloud-init with cloud-init config files.
Cloud-init is optional when creating ISO. It's used for system initialization on the first boot. The directory is copied as a local datasource.
You can pass -p <proxy> to build_image.sh to use a proxy server during build, like -p http://127.0.0.1:7890.
The value is set as http_proxy & https_proxy.
To change the APT source for system images, modify image.sh in the corresponding directory in images.
To change the APT source for helper images, modify Dockerfile in tools.
- Compatibility test & improvement.
- Support for more models.
- Support for the M1 chip.