体验一个令人着迷的过程:从下载最新版内核源码开始,根据个人需求编译定制 Linux 内核,接着创建精心设计的 Grub 启动项,进行系统基础库的迁移。这一系列步骤,将带您驶入一个全新的领域——您独自构建的 Linux 操作系统。随后,您还能将诸如 Nginx 和 Keepalived 等关键组件迁移到这个自制系统之中。经过这番努力:在成功部署 Nginx 和 Keepalived 等组件后,您打造的定制操作系统整个磁盘占用不足 100MB,凝聚了精益求精的极致精简。无疑,这是一场关于创造与优化的华丽探险,正等待着您去开启。
[toc]
linux系统与应用定制
linux 系统层面工作原结构
必需要熟悉系统启动流程
CentOS 6 系统启动流程
CentOS 7 系统启动流程
环境准备
| 服务器 | 系统环境 | 主机名 | 内核版本 | 必装环境 |
|---|---|---|---|---|
| 宿主机 | CentOS 6.9 | Node11 | Kernel 2.6.32-696.el6.x86_64 | Development Tools |
| 制作机 | ssjinyao Linux | Node21 | Kernel linux-4.18.4 | Busybox 1.29 |
将下载的包上传到服务器中
~ ➤ scp ~/Downloads/linux-4.18.4.tar.xz root@node11:/usr/local/src/
~ ➤ scp ~/Downloads/busybox-1.29.2.tar.bz2 root@node11:/usr/local/src/
安装宿主机所需要编译环境
[root@ssjinyao-node11:~]# yum groupinstall "Development tools" "Desktop Platform Development" -y
内核编译
解压文件
[root@ssjinyao-node11:~]# cd /usr/local/src/
[root@ssjinyao-node11:~]# ln -s linux-4.18.4 linux
[root@ssjinyao-node11:~]# cd linux
[root@ssjinyao-node11:~]# make help # 查看make帮助
# 如果在centos不能解压时,需要执行
# yum -y install xz 因为在CentOS 6 的环境中 tar 解压xz文件调用的是xz命令
[root@ssjinyao-node11:/usr/local/src/linux]# make allnoconfig
# 把原默认配置都清空,根据我们的需要选则编译
[root@ssjinyao-node11:/usr/local/src/linux]# make menuconfig
# 根据自己的需求,选则内核需要支持模块
默认配置
全局配置
kernel-config-general-setup
kernel-config-enable-loadble-module
kernel-config-device-drivers
kernel-config-file-systems
详细配置与操作过程如下
* 启用 64-bit kernel # 让内核支持 64位架构
* 启用 Enable loadable module support # 支持内核模块装载
* 点进 Enable loadable module support --> Module unloading # 让内核支持动态装卸载
* 点进 Enable loadable module support --> Module signature verification
# 让内核校验装载的模块是否是已经认证的公司,避免内核被污染,以确保内核层面的安全
* 点进 Processor type and features --> processor family(Generic-x86-64) ---> Generic-x86-64
# 支持通用cpu,当然也可以对应选则适合自己的
* 点进 Processor type and features --> Symmetric multi-processing support
# 支持多核cpu
* 点进 Bus options (PCI etc.) --> PCI support # 选中支持
* 启用 Enable the block layer # 选中支持
* 点进 Device Drivers --> SCSI device support # 选中支持
* 点进 Device Drivers --> SCSI disk support # 选中支持
* 点进 Device Drivers --> Fusion MPT device support(启用) ---> Fusion MPT ScsiHost drivers for SPI # 选中支持
* 点进 Device Drivers --> Fusion MPT device support(启用) ---> Fusion MPT ScsiHost drivers for SAS # 选中支持
* 点进 Device Drivers --> Fusion MPT device support(启用) ---> Fusion MPT misc device (ioctl) driver # 选中支持
* 点进 Device Drivers --> Fusion MPT device support(启用) ---> Fusion MPT logging facility # 选中支持
* 点进 Device Drivers --> Input device support ---> Keyboards (NEW) (启用 ) ----> <*> AT keyboard (NEW) # 选中支持
* 点进 Device Drivers --> Input device support ---> Mouse interface # 选中支持
* 点进 Device Drivers --> Input device support ---> Provide legacy /dev/psaux device # 选中支持
* 点进 Device Drivers --> USB support ---> Support for Host-side USB # 选中支持
* 点进 Device Drivers --> USB support ---> Enable USB persist by default (NEW) # 选中支持
* 点进 Device Drivers --> USB support ---> xHCI HCD (USB 3.0) support # 选中支持
* 点进 Device Drivers --> USB support ---> Generic xHCI driver for a platform device # 选中支持
* 点进 Device Drivers --> USB support ---> EHCI HCD (USB 2.0) support # 选中支持
* 点进 Device Drivers --> USB support ---> Root Hub Transaction Translators # 选中支持
* 点进 Device Drivers --> USB support ---> Improved Transaction Translator scheduling (NEW) # 选中支持
* 点进 Device Drivers --> USB support ---> OHCI HCD (USB 1.1) support # 选中支持
* 点进 Device Drivers --> USB support ---> OHCI support for PCI-bus USB controllers (NEW) # 选中支持
* 点进 Device Drivers --> Generic Driver Options ---> Maintain a devtmpfs filesystem to mount at /dev # 选中支持
* 点进 Device Drivers --> Generic Driver Options ---> Automount devtmpfs at /dev, after the kernel mounted the rootfs # 选中支持
* 点进 File systems --> Second extended fs support # 选中支持
* 点进 File systems --> Ext2 extended attributes # 选中支持
* 点进 File systems --> Ext2 POSIX Access Control Lists # 选中支持
* 点进 File systems --> Ext2 Security Labels # 选中支持
* 点进 File systems --> The Extended 3 (ext3) filesystem # 选中支持
* 点进 File systems --> Ext3 POSIX Access Control Lists # 选中支持
* 点进 File systems --> Ext3 Security Labels # 选中支持
* 点进 File systems --> The Extended 4 (ext4) filesystem # 选中支持
* 点进 File systems --> Ext4 POSIX Access Control Lists # 选中支持
* 点进 File systems --> Ext4 Security Labels # 选中支持
* 点进 File systems --> Ext4 Encryption # 选中支持
* 点进 File systems --> XFS filesystem support # 选中支持
* 点进 File systems --> XFS Quota support # 选中支持
* 点进 File systems --> XFS POSIX ACL support # 选中支持
* 点进 File systems --> XFS Realtime subvolume support # 选中支持
* 点进 File systems --> XFS online metadata check support # 选中支持
* 点进 File systems --> XFS online metadata repair support # 选中支持
* 点进 File systems --> XFS Debugging support # 选中支持
* 点进 File systems --> XFS fatal asserts (NEW) # 选中支持
# 注:这里选择文件系统时可以选择自己常用的一种就好,我这里为方便以后使用,都加入进去了
# 一般xfs 文件系统类型是目前性能最好的文件系统,而ext3 ext4 则有较成熟的数据恢复技术,如ext3grep
* 点进 Executable file formats / Emulations --> Kernel support for ELF binaries # 选中支持
* 点进 Executable file formats / Emulations --> Kernel support for scripts starting with #! # 选中支持,即文件系统shell支持机制
* 点进 Executable file formats / Emulations --> Kernel support for MISC binaries # 选中支持
* Networking support (启用) --> Networking options ---> TCP/IP networking # 选中支持,为以后做实验或者使用方便。将TCP/IP networking 下面的核心项即tcp/ip 与devel项安装
* Device Drivers --> Network device support ---> Ethernet driver support (NEW) ----> (启用) ----> Intel devices (NEW)(启用) -----> Intel(R) PRO/1000 Gigabit
* * Device Drivers --> Network device support ---> Ethernet driver support (NEW) ----> (启用) ----> AMD devices(启用) -----> AMD相关的我这里全部勾选
Ethernet support # 添加模块 , 其它的所有 Ethernet driver support 可以取消,依据自己的需求选则
* 点进 General setup --> (huatu-ssjinyao-kernel) Local version - append to kernel release # 点加Kernel release
* 点进 General setup --> (huatu-ssjinyao) Default hostname
编译内核是个比较复杂的过程,这里的大家如果一直编译不成功,或者编译完内核后不有成功启动系统
可以使用我这里给大家建立的模板
# cp kernel-config-ok-net-all-ok /usr/local/src/linux/.config # 可以使用这个模板来进行编译生成内核文件
[root@ssjinyao-node11:/usr/local/src/linux-4.18.4]# cat init/main.c | grep -C 8 ' !try_to_run_init_process("/etc/init")'
if (execute_command) {
ret = run_init_process(execute_command);
if (!ret)
return 0;
panic("Requested init %s failed (error %d).",
execute_command, ret);
}
if (!try_to_run_init_process("/sbin/init") ||
!try_to_run_init_process("/etc/init") ||
!try_to_run_init_process("/bin/init") ||
!try_to_run_init_process("/bin/sh"))
return 0;
panic("No working init found. Try passing init= option to kernel. "
"See Linux Documentation/admin-guide/init.rst for guidance.");
}
[root@ssjinyao-node11:/usr/local/src/linux-4.18.4]# pwd
/usr/local/src/linux-4.18.4
# 注: 通过查看这段内核源码,则可以看到系统启动时查到init的流程
先找 /sbin/init --> 若不存在
再找 /etc/init --> 若不存在
再找 /bin/init --> 若不存在
再找 /bin/sh --> 若不存在
启动报内核恐慌
当然也可以在grub 的配置文件中指定 init= 来指定init的位置
[root@ssjinyao-node11:/usr/local/src/linux]# make -j 4 bzImage
[root@ssjinyao-node11:/usr/local/src/linux]# du -sh arch/x86/boot/bzImage
3.0M arch/x86/boot/bzImage
编译单个网卡模块
[root@ssjinyao-node11:/usr/local/src/linux]# ls drivers/net/ethernet/intel/e1000/
e1000_ethtool.c e1000.h e1000_hw.c e1000_hw.h e1000_main.c e1000_osdep.h e1000_param.c Makefile
root@ssjinyao-node11:/usr/local/src/linux]# ls drivers/net/ethernet/intel/e1000/e1000.ko
drivers/net/ethernet/intel/e1000/e1000.ko
# insmod /lib64/modules/e1000.ko
安装 编译安装busybox
因静态编译依赖于软件包 glibc-static, 因此在编译busybox时需要安装 glibc-static
[root@ssjinyao-node11:/usr/local/src]# tar -xvf busybox-1.29.2.tar.bz2
[root@ssjinyao-node11:/usr/local/src]# cd busybox-1.29.2
[root@ssjinyao-node11:/usr/local/src]# yum -y install glibc-static
[root@ssjinyao-node11:/usr/local/src/busybox-1.29.2]# make menuconfig
Settings --> --- Build Options 标题栏中 Build static binary (no shared libs) # 选中支持
Settings --> --- Installation Options ("make install" behavior) What kind of applet links to install (as soft-links) ---> 这个默认的 as soft-links 就可以了
Settings --> --- Installation Options ("make install" behavior) (./_install) Destination path for 'make install' ---> 这个也选用默认的编译安装完到默认当前路径
make install # 注编译出错的时候要去了 Coreutils --> sync 后面需要再同步过去
利用busybox 制作initrd
[root@ssjinyao-node11:/usr/local/src/busybox-1.29.2]# mkdir /tmp/busybox
[root@ssjinyao-node11:/usr/local/src/busybox-1.29.2]# cp -a ./_install/*
bin/ linuxrc sbin/ usr/
[root@ssjinyao-node11:/usr/local/src/busybox-1.29.2]# cp -a ./_install/* /tmp/busybox/
[root@ssjinyao-node11:/usr/local/src/busybox-1.29.2]# cd /tmp/busybox/
[root@ssjinyao-node11:/tmp/busybox]#
[root@ssjinyao-node11:/tmp/busybox]# mkdir -pv proc sys etc/init.d tmp dev mnt/sysroot
[root@ssjinyao-node11:/tmp/busybox]# vim init
#!/bin/ash
echo -e "\t\033[32m Now start init and switch root ! \033[0m "
mount -t proc proc /proc
mount -t sysfs sysfs /sys
mdev -s
mount -t xfs /dev/sda2 /mnt/sysroot
exec switch_root /mnt/sysroot /sbin/init
[root@ssjinyao-node11:/tmp/busybox]# chmod +x init
[root@ssjinyao-node11:/tmp/busybox]# mknod dev/console c 5 1
[root@ssjinyao-node11:/tmp/busybox]# mknod dev/null c 1 3
[root@ssjinyao-node11:/tmp/busybox]# find . | cpio --quiet -H newc -o | gzip -9 -n > ./huatu-ssjinyao-initrd.gz
[root@ssjinyao-node11:/tmp/busybox]# du -sh huatu-ssjinyao-initrd.gz
1.3M huatu-ssjinyao-initrd.gz
安装grub,整合内核与initrd
此时将宿主机关掉,挂载一块scsi磁盘,用于将grub,内核,initrd写嵌入
我这里用的是vmware fusion 虚拟工具,windows大家习惯用vmware workstation
只要给虚拟机添加一块磁盘即可,如下图
注意: 现在挂载磁盘一定是要和宿主机共享磁盘,不然的话信息不会实时同步 ;
也是说,添加的这块磁盘是为宿主机和制作机之间同步数据使用,也就是说共用一块虚拟磁盘;
添加完后将宿主服务器启动
[root@ssjinyao-node11:~]# lsblk
NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT
sda 8:0 0 20G 0 disk
├─sda1 8:1 0 500M 0 part /boot
└─sda2 8:2 0 19.5G 0 part
├─vg_ssjinyaonode11-lv_root (dm-0) 253:0 0 17.6G 0 lvm /
└─vg_ssjinyaonode11-lv_swap (dm-1) 253:1 0 2G 0 lvm [SWAP]
sdb 8:16 0 38G 0 disk
由上可以看出,已经添加了一块磁盘 sdb,将磁盘分区并挂载至/mnt目录下boot,与sysroot
[root@ssjinyao-node11:~]# mkdir /mnt/{boot,sysroot}
[root@ssjinyao-node11:~]# fdisk /dev/sdb
Device contains neither a valid DOS partition table, nor Sun, SGI or OSF disklabel
Building a new DOS disklabel with disk identifier 0x42ed0c1e.
Changes will remain in memory only, until you decide to write them.
After that, of course, the previous content won't be recoverable.
Warning: invalid flag 0x0000 of partition table 4 will be corrected by w(rite)
WARNING: DOS-compatible mode is deprecated. It's strongly recommended to
switch off the mode (command 'c') and change display units to
sectors (command 'u').
Command (m for help): n
Command action
e extended
p primary partition (1-4)
p
Partition number (1-4): 1
First cylinder (1-4960, default 1): 1
Last cylinder, +cylinders or +size{K,M,G} (1-4960, default 4960): +300M
Command (m for help): n
Command action
e extended
p primary partition (1-4)
p
Partition number (1-4): 2
First cylinder (40-4960, default 40): 40
Last cylinder, +cylinders or +size{K,M,G} (40-4960, default 4960): 4960
Command (m for help): w
The partition table has been altered!
Calling ioctl() to re-read partition table.
Syncing disks.
[root@ssjinyao-node11:~]# mkfs.xfs /dev/sdb1
[root@ssjinyao-node11:~]# mkfs.xfs /dev/sdb2
# mkdir /mnt/{boot,sysroot}
# mount /dev/sdb1 /mnt/boot
# mount /dev/sdb2 /mnt/sysroot
[root@ssjinyao-node11:~]# mount /dev/sdb1 /mnt/boot/
[root@ssjinyao-node11:~]# mount /dev/sdb2 /mnt/sysroot/
[root@ssjinyao-node11:~]# cd /tmp/busybox/
将编译好的内核与制作好的initrd入到boot启动目录
[root@ssjinyao-node11:/tmp/busybox]# cp huatu-ssjinyao-initrd.gz /mnt/boot/
[root@ssjinyao-node11:~]# cp /usr/local/src/linux/arch/x86/boot/bzImage /mnt/boot/huatu-ssjinyao-kernel
安装 grub 至新添加的硬盘
[root@ssjinyao-node11:/tmp/busybox]# grub-install --root-directory=/mnt/ /dev/sdb
提供 grub 配置文件
[root@ssjinyao-node11:/mnt/sysroot]# vim /mnt/boot/grub/grub.conf
default 0
timeout 3
color light-green/black light-magenta/black
title huatu-ssinyao-kernel 4.18.5
root (hd0,0)
kernel /huatu-ssjinyao-kernel ro root=/dev/sda2 vga=877 quiet
initrd /huatu-ssjinyao-initrd.gz
vga=877 这里是根据我的屏目分辨率而调整的适应的;
这里可以在启动 vga=ask grub开机时会给你一个列表,让你选择自己的分辨率;
最后可以选择自己屏幕的分辨率大小;
如,这里的我的分辨率是 1400x900,这里选的是36D,再将16进制36D转换为十进制数,即是我在grub.conf
中配置的vga=877
其它项配置项
default 配置这个项目为0默认启动项;
timeout 配置超过3秒不选则,则自动选则第一个title启动;
color 配置grub菜单栏颜色;
title 配置启动项标题;
root (hd0,0) 配置root先识别第一块盘的第一个分区;
kernel 配置指定启动内核,这里即是我们编译好的内核,root 指定启动后的根分区;
initrd 配置启动虚根,与第一个进程;
建立真实文件系统
[root@ssjinyao-node11:/mnt/sysroot]# cp /usr/local/src/busybox-1.29.2/_install/* . -a
[root@ssjinyao-node11:/mnt/sysroot]# rm -f linuxrc
[root@ssjinyao-node11:/mnt/sysroot]# mkdir -pv etc dev proc sys bin sbin usr/{bin,sbin,lib,lib64,local} lib64 lib/modules home var/{log,run,lock} tmp mnt media root boot
[root@ssjinyao-node11:/mnt/sysroot]# vim etc/inittab
# console:respawn:-/bin/ash
# tty1::askfirst:/bin/ash
# tty2::askfirst:/bin/ash
# tty3::askfirst:/bin/ash
::sysinit:/etc/rc.d/rc.sysinit
::respawn:/sbin/getty 9600 tty1
::respawn:/sbin/getty 9600 tty2
::respawn:/sbin/getty 9600 tty3
::respawn:/sbin/getty 9600 tty4
::respawn:/sbin/getty 9600 tty5
::respawn:/sbin/getty 9600 tty6
::respawn:/sbin/getty 9600 tty7
::ctrlaltdel:/sbin/reboot
::shutdown:/bin/umount -a -r &> /dev/null
[root@ssjinyao-node11:/mnt/sysroot]# chmod +x etc/inittab
#[root@ssjinyao-node11:/mnt/sysroot]# mkdir etc/rc.d/
#[root@ssjinyao-node11:/mnt/sysroot]# vim etc/rc.d/rc.sysinit
#!/bin/sh
echo -e "\t welcome to \033[31m HuaTu SSJinYao \033[0m Linux"
mount -t proc proc /proc
mount -t sysfs sysfs /sys
echo "scan /sys and to populate to /dev..."
mdev -s
mount -o remount,rw /dev/sda2 /
echo "mounting all filesystems..."
mount -a
ifconfig eth0 10.180.66.31 netmask 255.255.255.0
ifconfig lo 127.0.0.1
route add default gw 10.180.66.2
echo -e "\033[31m Start Network Manager.........................\033[0m \033[32m [OK] \033[0m"
/usr/local/sbin/dropbear -E -F &> /var/log/dropbear/sshd.log &
echo -e "\033[31m Start dropbear sshd ..........................\033[0m \033[32m [OK] \033[0m"
/usr/local/nginx/sbin/nginx
echo -e "\033[31m Start Nginx Service ..........................\033[0m \033[32m [OK] \033[0m"
/usr/local/keepalived/sbin/keepalived -D -S 0 -f /usr/local/keepalived/etc/keepalived/keepalived.conf
echo -e "\033[31m Start Keepalived Service .....................\033[0m \033[32m [OK] \033[0m"
rsync.sh &> /dev/null &
echo -e "\033[31m Start Rsync Service ..........................\033[0m \033[32m [OK] \033[0m"
echo -e "\033[31m
\
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - \
** **
// // ** **
****** ****** ** ** ******* //** ** ****** ******
**//// **//// /**/**//**///** //*** //////** **////**
//***** //***** /**/** /** /** /** ******* /** /**
/////** /////** **/**/** /** /** ** **////** /** /**
****** ****** //*** /** *** /** ** //********//******
////// ////// /// // /// // // //////// //////
\\
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - \\
\033[0m"
# chmod +x etc/rc.d/rc.sysinit
建系统系统挂载目录 fstab
[root@ssjinyao-node11:/mnt/sysroot]# mkdir /dev/pts
# 注: 在此之前一定要有 dev/pts 目录
[root@ssjinyao-node11:/mnt/sysroot]# vim etc/fstab
sysfs /sys sysfs defaults 0 0
proc /proc proc defaults 0 0
devpts /dev/pts devpts mode=620 0 0
/dev/sda1 /boot xfs defaults 0 0
/dev/sda2 / xfs defaults 0 0
添加登录后脚本/etc/profile
export PS1='[\[\033[01;36m\]\u\[\033[00m\]@\[\033[01;34m\]\h\[\033[00m\]:\[\033[01;32m\]\w\[\033[00m\]]\[\033[01;34m\]\$\[\033[00m\] '
export PATH=/usr/local/bin:/usr/local/sbin/:/sbin:/bin:/usr/bin:/usr/sbin
[root@ssjinyao-node11:/mnt/sysroot]# vim etc/shells
/bin/sh
/bin/ash
/bin/hush
/bin/bash
/sbin/nologin
[root@ssjinyao-node11:/mnt/sysroot]# etc/nsswitch.conf
passwd: files
grup: files
shadow: files
hosts: files dns
编译安装dropbear
注 dropbear 可以在dropbear官网下载
[root@ssjinyao-node11:/usr/local/src]# tar -xvf dropbear-2018.76.tar.bz2
[root@ssjinyao-node11:/usr/local/src]# cd dropbear-2018.76
[root@ssjinyao-node11:/usr/local/src/dropbear-2018.76]# make PROGRAMS="dropbear dbclient dropbearkey dropbearconvert scp" install
[root@ssjinyao-node11:/mnt/sysroot]# cd /mnt/sysroot/etc/dropbear/
[root@ssjinyao-node11:/mnt/sysroot/etc/dropbear/]# openssl passwd -1 -salt $(openssl rand -hex 4)
[root@ssjinyao-node11:/mnt/sysroot/etc/dropbear/]# dropbearkey -t rsa -s 2048 -f dropbear_rsa_host_key
[root@ssjinyao-node11:/mnt/sysroot/etc/dropbear/]# dropbearkey -t dss -f dropbear_dss_host_key
[root@ssjinyao-node11:/mnt/sysroot/etc/dropbear/]# dropbear -E -F 启动
移植系统认证、登录、解析相关的依赖库
[root@ssjinyao-node11:/mnt/sysroot] mkdir usr/lib64/
[root@ssjinyao-node11:/mnt/sysroot] cp -d /lib64/libnss_files* lib64/
[root@ssjinyao-node11:/mnt/sysroot] cp -d /usr/lib64/libnss3.so usr/lib64/
[root@ssjinyao-node11:/mnt/sysroot] cp -d /usr/lib64/libnss_files.so* usr/lib64/
[root@ssjinyao-node11:/mnt/sysroot] cp -d /lib64/libresolv* lib64/
[root@ssjinyao-node11:/mnt/sysroot] cp -d /lib64/libnss_dns* lib64/
编译安装nginx
[root@ssjinyao-node11:/usr/local/src]# cd /usr/local/src/
[root@ssjinyao-node11:/usr/local/src]# tar -xvf nginx-1.14.0.tar.gz
./configure --prefix=/usr/local/nginx --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --with-http_gzip_static_module --with-http_stub_status_module --with-http_ssl_module --user=root --group=root
[root@ssjinyao-node11:/usr/local/src]# cp -a /usr/local/nginx/sbin/nginx /usr/sbin/
[root@ssjinyao-node11:/usr/local/src]# cp -a /usr/local/nginx/ /mnt/sysroot/usr/local/
编译安装inotify并移植
[root@ssjinyao-node11:/usr/local]# cd /usr/local/src/
[root@ssjinyao-node11:/usr/local/src]# tar -xvf inotify-tools-3.14.tar.gz
[root@ssjinyao-node11:/usr/local/src]# cd inotify-tools-3.14
[root@ssjinyao-node11:/usr/local/src/inotify-tools-3.14]# ./configure --prefix=/usr/local/inotify/
[root@ssjinyao-node11:/usr/local/src/inotify-tools-3.14]# cp -a /usr/local/inotify/ /mnt/sysroot/usr/local
编译安装keepalived
注: keepalived 依赖net-tools psmisc 两个工具包,因此需要将这两个工具包的命令移植
[root@laoba-10-17:/usr/local/src/linux-4.18.5]# rpm -ql net-tools | grep bin && rpm -ql psmisc | grep bin
/bin/netstat
/sbin/arp
/sbin/ether-wake
/sbin/ifconfig
/sbin/ipmaddr
/sbin/iptunnel
/sbin/mii-diag
/sbin/mii-tool
/sbin/nameif
/sbin/plipconfig
/sbin/route
/sbin/slattach
/usr/bin/killall
/usr/bin/peekfd
/usr/bin/prtstat
/usr/bin/pstree
/usr/bin/pstree.x11
/usr/sbin/fuser
[root@ssjinyao-node11:/usr/local/src]# tar -xvf keepalived-2.0.6.tar.gz
[root@ssjinyao-node11:/usr/local/src]# cd keepalived-2.0.6
[root@ssjinyao-node11:/usr/local/src]# cp /usr/local/keepalived/sbin/keepalived /usr/sbin/
[root@ssjinyao-node11:/usr/local/src/keepalived-2.0.6]# ./configure --prefix=/usr/local/keepalived/
[root@ssjinyao-node11:/usr/local/src]# cp -a /usr/local/keepalived/ /mnt/sysroot/usr/local
编写bincp 脚本
ldd 命令可以查看命令所依赖的库的位置
[root@ssjinyao-node11:/mnt/sysroot]# ldd /bin/cp
编写脚本,将需要的命令同步到/mnt/sysroot 目录
[root@ssjinyao-node11:/mnt/sysroot]# mkdir /root/bin
[root@ssjinyao-node11:/mnt/sysroot]# vim /root/bin/bincp.sh
[root@ssjinyao-node11:/mnt/sysroot]# chmod +x /root/bin/bincp.sh
#!/bin/bash
#The scripts can copy bin file and that bin libs
#author renjin
#date 2016 11 19
#version 3.0
echo "acquiesce copy bin file in /mnt/sysroot!! "
MNT="/mnt/sysroot"
BIN_FILE() { bindir=`dirname $file`
[ -e $MNT ] || mkdir -p $MNT
[ -e $MNT$bindir ] || mkdir -p $MNT$bindir
if [ -e $MNT$file ] ; then
echo "you will copy bin file exsit !"
else
cp $file $MNT$bindir
fi
}
LIB_FILE() { lib=`ldd $file | grep -Eo "/.*lib(64){0,1}/[^[:space:]]{1,}"`
for lib64 in $lib; do
libdir=`dirname $lib64`
if [ ! -e $MNT$libdir ]; then
mkdir -p $MNT$libdir
elif [ -e $MNT$lib64 ] ; then
echo "you will copy lib file exsit " && continue
else cp $lib $MNT$libdir
fi
done
}
read -p "please input your will copy bin file name,or input quit quitng: " BIN
until [ $BIN == 'quit' -o $BIN == 'q' ]; do
! which $BIN 2> /dev/null && read -p "you input command no exsit,please again input or input quit ,quiting " BIN && continue
file=`which --skip-alias $BIN 2> /dev/null | grep "/.*[^[:space:]]" `
BIN_FILE $BIN && LIB_FILE $BIN
read -p "continue!,or input quit ,quting: " BIN
done
# chmod +x /root/bincp.sh && cp /root/bincp.sh /bin
[root@ssjinyao-node11:/usr/local/src]# bincp.sh
acquiesce copy bin file in /mnt/sysroot!!
please input your will copy bin file name,or input quit quitng:
需要移植的命令有
bash dropbear ssh scp rysnc dbclient dropbearconvert dropbearkey genhash nginx 等等
利上这个脚本将自己需要的命令拷贝到/mnt/sysroot中
添加root用户
# adduser root
# passwd root
这里要注意把 root id 在 /etc/passwd 中改0
在Linux内核中,系统权限只对应id
微系统 keepaived+nginx+rsync+inotify的实现
keepalived+nginx+rsync+intofity 在之前的文章中有实现
大家可以再克隆一个小系统,来实现keepalived的双主
系统启动后如下图
