├── .gitignore
├── .gitlab-ci.yml
├── Makefile
├── Makefile.builder
├── README
├── appmenus_generic
    ├── netvm-whitelisted-appmenus.list
    ├── vm-whitelisted-appmenus.list
    └── whitelisted-appmenus.list
├── appvm.buildlog
├── build_template_rpm
├── builder_fix_filenames
├── builder_setup
├── cleanup_image
├── create_template_list.sh
├── functions-name.sh
├── functions.sh
├── mount_root.sh
├── prepare_image
├── prepared_images
    └── .gitignore
├── qubeize_image
├── qubeized_images
    └── .gitignore
├── rpm
    └── .gitignore
├── rpmbuild
    └── .gitignore
├── template_generic.conf
├── templates.spec
├── tests
    ├── assert
    │   ├── .travis.yml
    │   ├── COPYING
    │   ├── COPYING.LESSER
    │   ├── README.rst
    │   ├── assert.sh
    │   └── tests.sh
    ├── shellcheck
    │   └── INSTALL
    └── template-flavors
    │   ├── NOTES
    │   ├── another_location
    │       ├── whonix gw
    │       │   ├── packages.list
    │       │   └── test_pre.sh
    │       ├── whonix-gw
    │       │   └── test_pre.sh
    │       └── whonix_gnome
    │       │   ├── packages.list
    │       │   └── test_pre.sh
    │   ├── debian+whonix-gateway+gnome
    │       └── test_pre.sh
    │   ├── debian+whonix-gateway
    │       └── test_pre.sh
    │   ├── packages.list
    │   ├── packages_wheezy.list
    │   ├── proxy
    │       └── test_pre.sh
    │   ├── test.sh
    │   ├── test_copy_location
    │       ├── test1
    │       ├── test2
    │       └── test3
    │   ├── test_pre.sh
    │   ├── wheezy+whonix-gateway+gnome
    │       ├── packages.list
    │       └── test_pre.sh
    │   ├── wheezy+whonix-gateway
    │       ├── files
    │       │   ├── test1
    │       │   ├── test2
    │       │   └── test3
    │       ├── packages.list
    │       └── test_pre.sh
    │   ├── wheezy
    │       └── test_pre.sh
    │   ├── whonix-gateway+gnome
    │       └── test_pre.sh
    │   └── whonix-gateway
    │       └── test_pre.sh
├── umount-kill
├── umount_kill.sh
└── version


/.gitignore:
--------------------------------------------------------------------------------
 1 | *~
 2 | appmenus
 3 | template.conf
 4 | build_timestamp_*
 5 | *.iso
 6 | *.img
 7 | install-templates.sh
 8 | pkgs-for-template/*
 9 | cache_*/
10 | 


--------------------------------------------------------------------------------
/.gitlab-ci.yml:
--------------------------------------------------------------------------------
1 | include:
2 |   - project: 'QubesOS/qubes-continuous-integration'
3 |     file: '/r4.1/gitlab-linux-template-builder.yml'
4 | 


--------------------------------------------------------------------------------
/Makefile:
--------------------------------------------------------------------------------
  1 | ifndef DIST
  2 | $(error "You must set DIST variable, e.g. DIST=fc14")
  3 | endif
  4 | export DIST
  5 | 
  6 | TEMPLATE_ENV_WHITELIST ?=
  7 | TEMPLATE_BUILDER = 1
  8 | -include $(addsuffix /Makefile.builder,$(BUILDER_PLUGINS_DIRS))
  9 | 
 10 | TEMPLATE_NAME := $(DIST)
 11 | ifdef TEMPLATE_FLAVOR
 12 | TEMPLATE_NAME := $(TEMPLATE_NAME)-$(TEMPLATE_FLAVOR)
 13 | endif
 14 | 
 15 | # Support for builderv2
 16 | IS_LEGACY_BUILDER=1
 17 | 
 18 | # expose those variables to template-building scripts
 19 | TEMPLATE_ENV_WHITELIST += \
 20 | 	DIST DISTRIBUTION TEMPLATE_SCRIPTS TEMPLATE_NAME TEMPLATE_FLAVOR \
 21 | 	TEMPLATE_FLAVOR_DIR TEMPLATE_OPTIONS APPMENUS_DIR \
 22 | 	VERBOSE DEBUG PATH BUILDER_DIR SRC_DIR DISCARD_PREPARED_IMAGE \
 23 | 	TEMPLATE_ROOT_WITH_PARTITIONS TEMPLATE_ROOT_SIZE \
 24 | 	USE_QUBES_REPO_VERSION USE_QUBES_REPO_TESTING \
 25 | 	BUILDER_TURBO_MODE REPO_PROXY FEDORA_MIRROR \
 26 | 	CENTOS_MIRROR EPEL_MIRROR QUBES_MIRROR \
 27 | 	GENTOO_MIRROR ARCHLINUX_MIRROR \
 28 | 	DIST_DOM0 RELEASE IS_LEGACY_BUILDER
 29 | 
 30 | # Make sure names are < 32 characters, process aliases
 31 | fix_up := $(shell TEMPLATE_NAME=$(TEMPLATE_NAME) \
 32 | 		TEMPLATE_LABEL="$(TEMPLATE_LABEL)" \
 33 | 		./builder_fix_filenames)
 34 | TEMPLATE_NAME := $(word 1,$(fix_up))
 35 | 
 36 | export TEMPLATE_NAME
 37 | export TEMPLATE_SCRIPTS
 38 | export DISTRIBUTION
 39 | export IS_LEGACY_BUILDER
 40 | 
 41 | VERSION := $(shell cat version)
 42 | TEMPLATE_TIMESTAMP ?= $(shell date -u +%Y%m%d%H%M)
 43 | 
 44 | .PHONY: help template-name prepare package rpms rootimg-build
 45 | .PHONY: update-repo-templates-itl update-repo-templates-community
 46 | 
 47 | help:
 48 | 	@echo "make rpms                  -- generate template rpm"
 49 | 	@echo "make update-repo-installer -- copy newly generated rpm to installer repo"
 50 | 	@echo "make clean                 -- remove all files and directories built or added"
 51 | 
 52 | template-name:
 53 | 	@echo $(TEMPLATE_NAME)
 54 | 
 55 | prepare:
 56 | 	@echo "Building template: $(TEMPLATE_NAME)"
 57 | 	@echo $(TEMPLATE_TIMESTAMP) > build_timestamp_$(TEMPLATE_NAME)
 58 | 
 59 | package:
 60 | 	./build_template_rpm $(TEMPLATE_NAME)
 61 | 
 62 | rpms: prepare rootimg-build package
 63 | 	./create_template_list.sh || :
 64 | 
 65 | rootimg-build:
 66 | ifeq (,$(TEMPLATE_SCRIPTS))
 67 | 	$(error Building template $(DIST) not supported by any of configured plugins)
 68 | endif
 69 | 	sudo env -i $(foreach var,$(TEMPLATE_ENV_WHITELIST),$(var)="$($(var))") \
 70 | 		./prepare_image prepared_images/$(TEMPLATE_NAME).img
 71 | 	sudo env -i $(foreach var,$(TEMPLATE_ENV_WHITELIST),$(var)="$($(var))") \
 72 | 		./qubeize_image prepared_images/$(TEMPLATE_NAME).img $(TEMPLATE_NAME)
 73 | 
 74 | update-repo-templates-itl: update-repo-templates.itl
 75 | update-repo-templates-community: update-repo-templates.community
 76 | 
 77 | update-repo-templates.%: repo = $(subst .,,$(suffix $@))
 78 | update-repo-templates.%:
 79 | 	[ -z "$$UPDATE_REPO" ] && UPDATE_REPO=../linux-yum/current-release/templates-$(repo);\
 80 | 	ln -f rpm/noarch/qubes-template-$(TEMPLATE_NAME)-$(VERSION)-$(shell cat build_timestamp_$(TEMPLATE_NAME))*.noarch.rpm $$UPDATE_REPO/rpm
 81 | 
 82 | update-repo-installer:
 83 | 	[ -z "$$UPDATE_REPO" ] && UPDATE_REPO=../installer/yum/qubes-dom0;\
 84 | 	ln -f rpm/noarch/qubes-template-$(TEMPLATE_NAME)-$(VERSION)-$(shell cat build_timestamp_$(TEMPLATE_NAME))*.noarch.rpm $$UPDATE_REPO/rpm
 85 | 
 86 | sign:
 87 | 	setsid -w rpmsign $$RPMSIGN_OPTS --addsign rpm/noarch/qubes-template-$(TEMPLATE_NAME)-$(VERSION)-$(shell cat build_timestamp_$(TEMPLATE_NAME))*.noarch.rpm
 88 | 
 89 | prepare-repo-template:
 90 | 	rm -rf pkgs-for-template/$(DIST)
 91 | 	mkdir -p pkgs-for-template/$(DIST)
 92 | 
 93 | clean:
 94 | 	sudo rm -fr qubeized_images/root.img.*
 95 | 	sudo rm -fr qubeized_images/$(TEMPLATE_NAME)*
 96 | 	sudo rm -fr rpmbuild/BUILDROOT/*
 97 | 	sudo rm -fr rpmbuild/tmp/*
 98 | 	# We're not removing any images from prepared_images/ intentionally
 99 | 	# because the user might want to keep using the same image for a long time
100 | 	# and they are not dependent on any of the Qubes packages
101 | 
102 | 


--------------------------------------------------------------------------------
/Makefile.builder:
--------------------------------------------------------------------------------
1 | # pretend that normal package is built from this repo, to reuse update-repo-* 
2 | ifeq ($(PACKAGE_SET),vm)
3 | OUTPUT_DIR = rpm
4 | RPM_SPEC_FILES = templates.spec
5 | endif
6 | 
7 | NO_ARCHIVE := 1
8 | 


--------------------------------------------------------------------------------
/README:
--------------------------------------------------------------------------------
 1 | The Template Builder
 2 | ======================
 3 | 
 4 | 1) First, create a clean image of Fedora Linux install. You can use the fedoraize_image
 5 | script for this:
 6 | 
 7 | fedorize_image <image> <file-with-packets-lists>
 8 | 
 9 | NOTE: The fedorize_image script can be also used to update an image -- it
10 | automatically assumes the update mode if the <image> already exists.
11 | 
12 | 2) Update symlinks in rpms_to_install/ using the create_symlinks_in_rpms_to_install_dir.sh script. The script
13 | reads the core, gui, and xen packages versions from version_{core,gui,xen} files and creates appropriate symlinks
14 | in rpms_to_install/ dir.
15 | 
16 | Verify that all symlinks are correct.
17 | 
18 | 3) Now, you can "qubeize" the image. This must be done as root. E.g.:
19 | 
20 | # ./qubeize_image <img> <template-name>
21 | 
22 | 4) Finally, build the Template RPM (do it as normal user, not root), e.g.: 
23 | 
24 | $./build_rpm <name>
25 | 
26 | The resulting rpm is stored in rpm/noarch directory.
27 | 
28 | 


--------------------------------------------------------------------------------
/appmenus_generic/netvm-whitelisted-appmenus.list:
--------------------------------------------------------------------------------
1 | gnome-terminal.desktop
2 | 


--------------------------------------------------------------------------------
/appmenus_generic/vm-whitelisted-appmenus.list:
--------------------------------------------------------------------------------
1 | gnome-terminal.desktop
2 | nautilus.desktop
3 | mozilla-firefox.desktop
4 | mozilla-thunderbird.desktop
5 | openoffice.org-startcenter.desktop
6 | 


--------------------------------------------------------------------------------
/appmenus_generic/whitelisted-appmenus.list:
--------------------------------------------------------------------------------
 1 | gnome-terminal.desktop
 2 | gpk-application.desktop
 3 | gpk-install-catalog.desktop
 4 | gpk-install-file.desktop
 5 | gpk-log.desktop
 6 | gpk-prefs.desktop
 7 | gpk-repo.desktop
 8 | system-config-date.desktop
 9 | system-config-printer.desktop
10 | 


--------------------------------------------------------------------------------
/appvm.buildlog:
--------------------------------------------------------------------------------
 1 | $ su
 2 | 
 3 | # ./fedorize_image fedorized_images/f13-x64-root.img clean_images/packages-appvm.list 
 4 | 
 5 | # ./qubeize_image_appvm fedorized_images/f13-x64-root.img linux-x64
 6 | 
 7 | # kpartx -a qubeized_images/linux-x64-root.img
 8 | # mount /dev/mapper/loop0p1 mnt/
 9 | # cp mnt/boot/vmlinuz-2.6.32.14-1.2.105a.pvops0.qubes.x86_64 mnt/boot/initramfs-2.6.32.14-1.2.105a.pvops0.qubes.x86_64.img vm_kernels_appvm/
10 | # umount mnt/
11 | # kpartx -d qubeized_images/linux-x64-root.img
12 | #
13 | # cd vm_kernels_appvm
14 | # ../../core/dom0/aux-tools/patch_appvm_initramfs.sh initramfs-2.6.32.14-1.2.105a.pvops0.qubes.x86_64.img initramfs-2.6.32.14-1.2.105a.pvops0.qubes.x86_64.qubeized.img `pwd`/../vm_initramfs_patches/qubes_cow_setup.sh
15 | # ln -sf initramfs-2.6.32.14-1.2.105a.pvops0.qubes.x86_64.qubeized.img initramfs
16 | # ln -sf vmlinuz-2.6.32.14-1.2.105a.pvops0.qubes.x86_64 vmlinuz
17 | 
18 | # exit
19 | 
20 | $ ./build_template_rpm linux-x64
21 | 


--------------------------------------------------------------------------------
/build_template_rpm:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | NAME=$1
 3 | 
 4 | set -e
 5 | if [ "${VERBOSE:-0}" -ge 2 ] || [ "${DEBUG:-0}" -eq 1 ]; then
 6 |     set -x
 7 | fi
 8 | 
 9 | if [ -z "$NAME" ] ; then
10 |     echo "usage $0 <template_name>"
11 |     exit 1
12 | fi
13 | 
14 | trap "rm -rf appmenus-$$ appmenus template.conf" EXIT
15 | 
16 | # handle appmenus whitelists from DispVM build
17 | if [ -d "qubeized_images/$NAME/untrusted_appmenus" ]; then
18 |     srcdir="qubeized_images/$NAME/untrusted_appmenus"
19 |     mkdir -p appmenus-$$
20 |     rm -f appmenus
21 |     ln -s appmenus-$$ appmenus
22 |     for f in whitelisted-appmenus.list vm-whitelisted-appmenus.list netvm-whitelisted-appmenus.list; do
23 |         grep '^[a-zA-Z0-9.()_-]\+.desktop$' "$srcdir/$f" > appmenus/$f
24 |     done
25 | fi
26 | 
27 | # handle template.conf from DispVM build
28 | if [ -r "qubeized_images/$NAME/template.conf" ]; then
29 |     rm -f template.conf
30 |     ln -s qubeized_images/$NAME/template.conf template.conf
31 | fi
32 | 
33 | # Default compression format for binary payloads
34 | # It applies for Fedora < 31
35 | COMPRESSION=w2.xzdio
36 | if [ -n "$DIST_DOM0" ]; then
37 |     if [ "${DIST_DOM0#fc}" != "${DIST_DOM0}" ]; then
38 |         DIST_VER="${DIST_DOM0#fc}"
39 |     fi
40 | 
41 |     if [ "${DIST_VER}" -ge 31 ]; then
42 |         COMPRESSION=w19.zstdio
43 |     fi
44 | fi
45 | 
46 | rpmbuild --target noarch \
47 |          --define "template_name $NAME" \
48 |          --define "DIST $DIST" \
49 |          --define "_topdir $PWD/rpmbuild" \
50 |          --define "_tmppath $PWD/rpmbuild/tmp" \
51 |          --define "_source_payload $COMPRESSION" \
52 |          --define "_binary_payload $COMPRESSION" \
53 |          -bb templates.spec
54 | 
55 | if [ "0$DISCARD_PREPARED_IMAGE" -eq "1" ]; then
56 |     rm -rf "qubeized_images/$NAME"
57 | fi
58 | 


--------------------------------------------------------------------------------
/builder_fix_filenames:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # Check template name length and fix if not under 32 characters
 4 | # Return the result 
 5 | 
 6 | . ./functions-name.sh > /dev/null
 7 | 
 8 | # Check for custom template name
 9 | templateNameDist "${TEMPLATE_NAME}"
10 | 


--------------------------------------------------------------------------------
/builder_setup:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # Setup env variables
 4 | 
 5 | SCRIPTSDIR=$TEMPLATE_SCRIPTS
 6 | if [ ! -d "$SCRIPTSDIR" ]; then
 7 |     echo "Scripts directory $SCRIPTSDIR does not exists"
 8 |     exit 1
 9 | fi
10 | 
11 | # Support for builderv2
12 | TEMPLATE_CONTENT_DIR="${SCRIPTSDIR}"
13 | IS_LEGACY_BUILDER=1
14 | 
15 | if [ -z "$CACHEDIR" ]; then
16 |     CACHEDIR=$PWD/cache_$DIST
17 | fi
18 | 
19 | export SCRIPTSDIR CACHEDIR TEMPLATE_CONTENT_DIR IS_LEGACY_BUILDER
20 | 


--------------------------------------------------------------------------------
/cleanup_image:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | export INSTALLDIR=$1
 4 | 
 5 | . ./builder_setup
 6 | 
 7 | set -e
 8 | 
 9 | if ! [ $# -eq 1 ]; then
10 | 	echo "usage $0 <mount_point>"
11 | 	exit 1
12 | fi
13 | 
14 | 
15 | if ! [ -d $INSTALLDIR ]; then
16 | 	echo $INSTALLDIR does not exist
17 | 	exit 1
18 | fi	
19 | 
20 | echo "--> Cleaning up image file..."
21 | $SCRIPTSDIR/09_cleanup.sh
22 | 
23 | echo "--> Compacting image file..."
24 | /sbin/fstrim -v "$INSTALLDIR"
25 | 


--------------------------------------------------------------------------------
/create_template_list.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | # vim: set ts=4 sw=4 sts=4 et :
  3 | 
  4 | #
  5 | # Creates a small script to copy to dom0 to retrieve the generated template rpm's
  6 | #
  7 | 
  8 | set -e
  9 | 
 10 | template_dir="$(readlink -m ./rpm/install-templates.sh)"
 11 | path="$(readlink -m .)/rpm/noarch"
 12 | version="-$(cat ./version)"
 13 | name="$(xenstore-read name)"
 14 | 
 15 | files_list_temp="$(echo "rpm/noarch/"*)"
 16 | files_list_temp="$(printf "%s \n" ${files_list_temp[@]})"
 17 | ## Newest versions first.
 18 | files_list_temp="$(echo "$files_list_temp" | sort --reverse)"
 19 | 
 20 | for file_name in $files_list_temp ; do
 21 |    file_name_without_version="$(echo "${file_name}" | sed -r "s/(${version}).+$//")"
 22 |    template_name="$(basename "$file_name_without_version")"
 23 |    template_list+="$template_name "
 24 | done
 25 | 
 26 | template_list="$(printf "%s \n" ${template_list[@]})"
 27 | template_list="$(echo "$template_list" | sort --unique)"
 28 | echo "template_list: $template_list"
 29 | 
 30 | declare -A -g remembered
 31 | 
 32 | for template_item_from_template_list in $template_list ; do
 33 |    for file_name in $files_list_temp ; do
 34 |       file_name_without_version="$(echo "${file_name}" | sed -r "s/(${version}).+$//")"
 35 |       template_name="$(basename "$file_name_without_version")"
 36 |       file_name_basename="$(basename "$file_name")"
 37 |       if [ ! "$template_item_from_template_list" = "$template_name" ]; then
 38 |          continue
 39 |       fi
 40 |       if [ "${remembered["$template_name"]}" = "true" ]; then
 41 |          files+="#$file_name_basename "
 42 |       else
 43 |          remembered["$template_name"]="true"
 44 |          files+="$file_name_basename "
 45 |       fi
 46 |    done
 47 | done
 48 | 
 49 | files="
 50 | $(printf "%s \n" ${files[@]})
 51 | "
 52 | 
 53 | # -----------------------------------------------------------------------------
 54 | # Write $vars
 55 | # -----------------------------------------------------------------------------
 56 | cat << EOF > "${template_dir}"
 57 | #!/bin/bash
 58 | 
 59 | # Use the following command in DOM0 to retreive this file:
 60 | # qvm-run --pass-io ${name} 'cat ${template_dir}' > install-templates.sh
 61 | 
 62 | files="${files}"
 63 | 
 64 | path="${path}"
 65 | version="${version}"
 66 | name="${name}"
 67 | EOF
 68 | 
 69 | # -----------------------------------------------------------------------------
 70 | # Write installation function
 71 | # -----------------------------------------------------------------------------
 72 | cat << 'EOF' >> "${template_dir}"
 73 | 
 74 | for file_name in ${files[@]}; do
 75 |     if echo "$file_name" | grep -q '^#' ; then
 76 |        continue
 77 |     fi
 78 | 
 79 |     if [ ! -e "${file_name}" ]; then
 80 |         echo "Copying ${file_name} from ${name} to ${PWD}/${file_name}..."
 81 |         qvm-run --pass-io "${name}" "cat ${path}/${file_name}" > "${PWD}/${file_name}"
 82 |     fi
 83 | 
 84 |     package_name="$(echo "${file_name}" | sed -r "s/(${version}).+$//")"
 85 | 
 86 |     if sudo yum $YUM_OPTS list installed "$package_name" >/dev/null 2>&1 ; then
 87 |         echo "Uninstalling package ${package_name}..."
 88 |         sudo yum $YUM_OPTS erase "$package_name"
 89 |     fi
 90 | 
 91 |     echo "Installing file ${file_name}..."
 92 |     if sudo yum $YUM_OPTS install "${file_name}" ; then
 93 |         echo "Deleting ${PWD}/${file_name}..."
 94 |         rm -f "${file_name}"
 95 |     fi
 96 | done
 97 | 
 98 | echo "Done."
 99 | EOF
100 | 
101 | # -----------------------------------------------------------------------------
102 | # Display instructions
103 | # -----------------------------------------------------------------------------
104 | echo "Use the following command in DOM0 to retreive this file:"
105 | echo "qvm-run --pass-io ${name} 'cat ${template_dir}' > install-templates.sh"
106 | 


--------------------------------------------------------------------------------
/functions-name.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | # vim: set ts=4 sw=4 sts=4 et :
  3 | 
  4 | set -e
  5 | 
  6 | VERBOSE=${VERBOSE:-1}
  7 | DEBUG=${DEBUG:-0}
  8 | 
  9 | containsFlavor() {
 10 |     flavor="${1}"
 11 |     retval=1
 12 |     local template_options
 13 | 
 14 |     # shellcheck disable=SC2153
 15 |     read -r -a template_options <<<"${TEMPLATE_OPTIONS[@]}"
 16 | 
 17 |     # Check the template flavor first
 18 |     if [ "${flavor}" == "${TEMPLATE_FLAVOR}" ]; then
 19 |         retval=0
 20 |     fi
 21 | 
 22 |     # Check the template flavors next
 23 |     elementIn "${flavor}" "${template_options[@]}" && {
 24 |         retval=0
 25 |     }
 26 | 
 27 |     return ${retval}
 28 | }
 29 | 
 30 | templateFlavorPrefix() {
 31 |     local template_flavor=${1-${TEMPLATE_FLAVOR}}
 32 |     local template_flavor_prefix
 33 |     # shellcheck disable=SC2153
 34 |     read -r -a template_flavor_prefix <<<"${TEMPLATE_FLAVOR_PREFIX[@]}"
 35 | 
 36 |     for element in "${template_flavor_prefix[@]}"
 37 |     do
 38 |         if [ "${element%:*}" == "${DIST}+${template_flavor}" ]; then
 39 |             echo "${element#*:}"
 40 |             return
 41 |         fi
 42 |     done
 43 | 
 44 |     # If template_flavor only contains a '+'; send back $DIST
 45 |     if [ "${template_flavor}" == "+" ]; then
 46 |         echo "${DIST}"
 47 |     else
 48 |         echo "${DIST}${template_flavor:++}"
 49 |     fi
 50 | }
 51 | 
 52 | templateNameFixLength() {
 53 |     local template_name="${1}"
 54 |     local temp_name
 55 |     read -r -a temp_name <<<"${template_name//+/ }"
 56 |     local index=$(( ${#temp_name[@]}-1 ))
 57 | 
 58 |     while [ ${#template_name} -ge 32 ]; do
 59 |         template_name=$(printf '%s' "${temp_name[0]}")
 60 |         if [ $index -gt 0 ]; then
 61 |             template_name+=$(printf '+%s' "${temp_name[@]:1:index}")
 62 |         fi
 63 |         (( index-- ))
 64 |         if [ $index -lt 1 ]; then
 65 |             template_name="${template_name:0:31}"
 66 |         fi
 67 |     done
 68 | 
 69 |     echo "${template_name}"
 70 | }
 71 | 
 72 | templateNameDist() {
 73 |     local dist_name="${1}"
 74 |     template_name="$(templateName)" && dist_name="${template_name}"
 75 | 
 76 |     # Automaticly correct name length if it's greater than 32 chars
 77 |     dist_name="$(templateNameFixLength "${dist_name}")"
 78 | 
 79 |     # Remove and '+' characters from name since they are invalid for name
 80 |     dist_name="${dist_name//+/-}"
 81 |     echo "${dist_name}"
 82 | }
 83 | 
 84 | templateName() {
 85 |     local template_flavor=${1:-${TEMPLATE_FLAVOR}}
 86 |     local template_name
 87 |     local template_options
 88 |     local template_label
 89 |     local template_options_concatenated
 90 |     retval=1 # Default is 1; mean no replace happened
 91 | 
 92 |     read -r -a template_options <<< "${TEMPLATE_OPTIONS[@]}"
 93 | 
 94 |     # Only apply options if $1 was not passed
 95 |     if [ -n "${1}" ] || [ -z "${TEMPLATE_OPTIONS[*]}" ]; then
 96 |         template_options_concatenated=
 97 |     else
 98 |         template_options_concatenated=$(printf '+%s' "${template_options[@]}")
 99 |     fi
100 | 
101 |     template_name="$(templateFlavorPrefix "${template_flavor}")${template_flavor}${template_options_concatenated}"
102 | 
103 |     # shellcheck disable=SC2153
104 |     read -r -a template_label <<<"${TEMPLATE_LABEL[@]}"
105 | 
106 |     for element in "${template_label[@]}"; do
107 |         if [ "${element%:*}" == "${template_name}" ]; then
108 |             template_name="${element#*:}"
109 |             retval=0
110 |             break
111 |         fi
112 |     done
113 | 
114 |     # shellcheck disable=SC2005
115 |     echo "$(templateNameFixLength "${template_name}")"
116 |     return $retval
117 | }
118 | 


--------------------------------------------------------------------------------
/functions.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | # vim: set ts=4 sw=4 sts=4 et :
  3 | 
  4 | set -e
  5 | 
  6 | VERBOSE=${VERBOSE:-1}
  7 | DEBUG=${DEBUG:-0}
  8 | 
  9 | . ./functions-name.sh >/dev/null
 10 | 
 11 | # ------------------------------------------------------------------------------
 12 | # Run a command inside chroot
 13 | # ------------------------------------------------------------------------------
 14 | if [ "0${VERBOSE}" -ge 2 ] || [ "${DEBUG}" == "1" ]; then
 15 |     chroot_cmd() {
 16 |         local retval
 17 |         # Need to capture exit code after running chroot or systemd-nspawn
 18 |         # so it will be available as a return value
 19 |         # shellcheck disable=SC2015
 20 |         if [ "${SYSTEMD_NSPAWN_ENABLE}"  == "1" ]; then
 21 |             systemd-nspawn -D "${INSTALL_DIR}" -M "${DIST}" ${1+"$@"} && { retval=$?; true; } || { retval=$?; true; }
 22 |         else
 23 |             /usr/sbin/chroot "${INSTALL_DIR}" ${1+"$@"} && { retval=$?; true; } || { retval=$?; true; }
 24 |         fi
 25 |         return $retval
 26 |     }
 27 | else
 28 |     chroot_cmd() {
 29 |         if [ "${SYSTEMD_NSPAWN_ENABLE}"  == "1" ]; then
 30 |             systemd-nspawn -D "${INSTALL_DIR}" -M "${DIST}" ${1+"$@"}
 31 |         else
 32 |             /usr/sbin/chroot "${INSTALL_DIR}" ${1+"$@"}
 33 |         fi
 34 |     }
 35 | fi
 36 | 
 37 | # ------------------------------------------------------------------------------
 38 | # Display messages
 39 | # ------------------------------------------------------------------------------
 40 | # Only output text under certain conditions
 41 | output() {
 42 |     if [ "0${VERBOSE}" -ge 1 ] && [[ -z ${TEST} ]]; then
 43 |         # Don't echo if -x is set since it will already be displayed via true
 44 |         [[ ${-/x} != "$-" ]] || echo -e "$@"
 45 |     fi
 46 | }
 47 | 
 48 | outputc() {
 49 |     shift
 50 |     output "$*" || :
 51 | }
 52 | 
 53 | info() {
 54 |     output "INFO: $*" || :
 55 | }
 56 | 
 57 | debug() {
 58 |     output "DEBUG: $*" || :
 59 | }
 60 | 
 61 | warn() {
 62 |     output "WARNING: $*" || :
 63 | }
 64 | 
 65 | error() {
 66 |     output "ERROR: $*" || :
 67 | }
 68 | 
 69 | # ------------------------------------------------------------------------------
 70 | # Return file or directory for current flavor.
 71 | #
 72 | # Example:
 73 | #   resource = packages.list
 74 | #
 75 | # Will look for a file name or directory matching the first occurrence:
 76 | #  - packages_${DIST_NAME}_{DIST_VER}_${TEMPLATE_FLAVOR}.list
 77 | #  - packages_${DIST_NAME}_${TEMPLATE_FLAVOR}.list
 78 | #  - packages_${DIST_NAME}.list
 79 | #
 80 | # Remark: If 'resource' is provided with full path, we use
 81 | #  its dirname as search directory instead of TEMPLATE_CONTENT_DIR.
 82 | # ------------------------------------------------------------------------------
 83 | get_file_or_directory_for_current_flavor() {
 84 |     local resource="$1"
 85 |     local suffix="$2"
 86 |     local resource_dir
 87 |     local ext
 88 | 
 89 |     # If 'resource' is provided with full path
 90 |     # we use its dirname as search directory
 91 |     # instead of TEMPLATE_CONTENT_DIR
 92 |     if [ "$(dirname "${resource}")" != "." ]; then
 93 |         resource_dir="$(dirname "${resource}")"
 94 |         resource="$(basename "${resource}")"
 95 |     else
 96 |         resource_dir="${TEMPLATE_CONTENT_DIR}"
 97 |     fi
 98 | 
 99 |     # Determine if resource has an extension. If it has,
100 |     # we save this extension and we strip it from 'resource'.
101 |     if [ "${resource##*.}" != "${resource}" ]; then
102 |         ext=".${resource##*.}"
103 |         resource_without_ext="${resource%.*}"
104 |     else
105 |         ext=""
106 |         resource_without_ext="${resource}"
107 |     fi
108 |     # shellcheck disable=SC2153
109 |     if [ -n "${suffix}" ] && [ -e "${resource_dir}/${resource_without_ext}_${suffix}${ext}" ]; then
110 |         file_or_directory="${resource_dir}/${resource_without_ext}_${suffix}${ext}"
111 |     elif [ -e "${resource_dir}/${resource_without_ext}_${DIST_CODENAME}_${TEMPLATE_FLAVOR}${ext}" ]; then
112 |         file_or_directory="${resource_dir}/${resource_without_ext}_${DIST_CODENAME}_${TEMPLATE_FLAVOR}${ext}"
113 |     elif [ -e "${resource_dir}/${resource_without_ext}_${DIST_CODENAME}${ext}" ]; then
114 |         file_or_directory="${resource_dir}/${resource_without_ext}_${DIST_CODENAME}${ext}"
115 |     elif [ -e "${resource_dir}/${resource_without_ext}_${DIST_NAME}_${DIST_VER}_${TEMPLATE_FLAVOR}${ext}" ]; then
116 |         file_or_directory="${resource_dir}/${resource_without_ext}_${DIST_NAME}_${DIST_VER}_${TEMPLATE_FLAVOR}${ext}"
117 |     elif [ -e "${resource_dir}/${resource_without_ext}_${DIST_NAME}_${TEMPLATE_FLAVOR}${ext}" ]; then
118 |         file_or_directory="${resource_dir}/${resource_without_ext}_${DIST_NAME}_${TEMPLATE_FLAVOR}${ext}"
119 |     elif [ -e "${resource_dir}/${resource_without_ext}_${DIST_NAME}${ext}" ]; then
120 |         file_or_directory="${resource_dir}/${resource_without_ext}_${DIST_NAME}${ext}"
121 |     else
122 |         file_or_directory=""
123 |     fi
124 |     echo "${file_or_directory}"
125 | }
126 | 
127 | # ------------------------------------------------------------------------------
128 | # Takes an array and exports it a global variable
129 | #
130 | # $1: Array to export
131 | # $2: Global variable name to use for export
132 | #
133 | # http://ihaveabackup.net/2012/01/29/a-workaround-for-passing-arrays-in-bash/
134 | #
135 | # ------------------------------------------------------------------------------
136 | setArrayAsGlobal() {
137 |     local array="$1"
138 |     local export_as="$2"
139 |     local code
140 |     local replaced
141 |     code=$(declare -p "$array" 2> /dev/null || true)
142 |     replaced="${code/$array/$export_as}"
143 |     eval "${replaced/declare -/declare -g}"
144 | }
145 | 
146 | 
147 | # ------------------------------------------------------------------------------
148 | # Checks if the passed element exists in passed array
149 | # $1: Element to check for
150 | # $2: Array to check for element in
151 | #
152 | # Returns 0 if True, or 1 if False
153 | # ------------------------------------------------------------------------------
154 | elementIn () {
155 |   local element
156 |   for element in "${@:2}"; do [[ "$element" == "$1" ]] && return 0; done
157 |   return 1
158 | }
159 | 
160 | # ------------------------------------------------------------------------------
161 | # Splits the path and returns an array of parts
162 | #
163 | # $1: Full path of file to split
164 | # $2: Global variable name to use for export
165 | # Returns:
166 | # ([full]='original name' [dir]='directory' [base]='filename' [ext]='extension')
167 | #
168 | # Original concept path split from:
169 | # https://stackoverflow.com/questions/965053/extract-filename-and-extension-in-bash
170 | #
171 | # ------------------------------------------------------------------------------
172 | splitPath() {
173 | 
174 |     local return_global_var=$2
175 |     local filename="${1##*/}"                  # Strip longest match of */ from start
176 |     local dir="${1:0:${#1} - ${#filename}}"    # Substring from 0 through pos of filename
177 |     local base="${filename%.[^.]*}"            # Strip shortest match of . plus at least one non-dot char from end
178 |     local ext="${filename:${#base} + 1}"       # Substring from len of base through end
179 |     if [ "$ext" ]; then
180 |         local dotext=".$ext"
181 |     else
182 |         local dotext=""
183 |     fi
184 |     if [[ -z "$base" && -n "$ext" ]]; then     # If we have an extension and no base, it's really the base
185 |         base=".$ext"
186 |         ext=""
187 |         dotext=""
188 |     fi
189 |     # shellcheck disable=SC2034
190 |     declare -A PARTS=([full]="$1" [dir]="$dir" [base]="$base" [ext]="$ext" [dotext]="$dotext")
191 |     setArrayAsGlobal PARTS "$return_global_var"
192 | }
193 | 
194 | templateDirs() {
195 |     local template_flavor=${1-${TEMPLATE_FLAVOR}}
196 |     local template_flavor_prefix
197 |     local template_flavor_dir
198 |     local match=0
199 | 
200 |     # shellcheck disable=SC2153
201 |     read -r -a template_flavor_dir <<<"${TEMPLATE_FLAVOR_DIR[@]}"
202 | 
203 |     for element in "${template_flavor_dir[@]}"
204 |     do
205 |         # (wheezy+whonix-gateway / wheezy+whonix-gateway+gnome[+++] / wheezy+gnome )
206 |         if [ "${element%:*}" == "$(templateName "${template_flavor}")" ]; then
207 |             eval echo -e "${element#*:}"
208 |             match=1
209 | 
210 |         # Very short name compare (+proxy)
211 |         elif [ "${element:0:1}" == "+" ] && [ "${element%:*}" == "+${template_flavor}" ]; then
212 |             eval echo -e "${element#*:}"
213 |             match=1
214 | 
215 |         # Generic template directory that matches all flavors, or even no flavors
216 |         elif [ "${element:0:1}" == "*" ]; then
217 |             eval echo -e "${element#*:}"
218 |             match=1
219 |         fi
220 |     done
221 | 
222 |     if [ "${match}" -eq 1 ]; then
223 |         return
224 |     fi
225 | 
226 |     template_flavor_prefix="$(templateFlavorPrefix "${template_flavor}")"
227 |     if [ -n "${template_flavor}" ] && [ "${template_flavor}" == "+" ]; then
228 |         local dir="${TEMPLATE_CONTENT_DIR}/${template_flavor_prefix}"
229 |     elif [ -n "${template_flavor}" ]; then
230 |         local dir="${TEMPLATE_CONTENT_DIR}/${template_flavor_prefix}${template_flavor}"
231 |     else
232 |         local dir="${TEMPLATE_CONTENT_DIR}"
233 |     fi
234 | 
235 |     echo "${dir}"
236 | }
237 | 
238 | exists() {
239 |     filename="${1}"
240 | 
241 |     if [ -e "${filename}" ] && ! elementIn "${filename}" "${GLOBAL_CACHE[@]}"; then
242 |         # Cache $script
243 |         #
244 |         # GLOBAL_CACHE is declared in the `getFileLocations` function and is later
245 |         # renamed to a name passed into the function as $1 to allow scripts using
246 |         # the function to have access to the array
247 |         GLOBAL_CACHE["${#GLOBAL_CACHE[@]}"]="${filename}"
248 |         return 0
249 |     fi
250 |     return 1
251 | }
252 | 
253 | templateFile() {
254 |     local file="$1"
255 |     local suffix="$2"
256 |     local template_flavor="$3"
257 |     local template_dirs
258 | 
259 |     template_dirs="$(templateDirs "${template_flavor}")"
260 | 
261 |     splitPath "${file}" path_parts
262 | 
263 |     for template_dir in "${template_dirs[@]}"; do
264 |         # No template flavor
265 |         if [ -z "${template_flavor}" ] || [ "${template_flavor}" = "+" ]; then
266 |             if [ -n "${suffix}" ]; then
267 |                 # shellcheck disable=SC2154
268 |                 exists "${TEMPLATE_CONTENT_DIR}/${path_parts[base]}_${suffix}${path_parts[dotext]}" || true
269 |             else
270 |                 exists "${TEMPLATE_CONTENT_DIR}/${path_parts[base]}${path_parts[dotext]}" || true
271 |             fi
272 |             return
273 |         fi
274 | 
275 |         # Locate file in directory named after flavor
276 |         if [ -n "${suffix}" ]; then
277 |             # Append suffix to filename (before extension)
278 |             # `minimal` is the template_flavor being used in comment example
279 | 
280 |             # (TEMPLATE_FLAVOR_DIR/minimal/packages_qubes_suffix.list)
281 |             exists "${template_dir}/${template_flavor}/${path_parts[base]}_${suffix}${path_parts[dotext]}" || true
282 | 
283 |             # (TEMPLATE_FLAVOR_DIR/minimal/packages_qubes_suffix.list)
284 |             exists "${template_dir}/${template_flavor}/${path_parts[base]}_${suffix}${path_parts[dotext]}" || true
285 | 
286 |             # (TEMPLATE_FLAVOR_DIR/packages_qubes_suffix.list)
287 |             exists "${template_dir}/${path_parts[base]}_${suffix}${path_parts[dotext]}" || true
288 | 
289 |             # (TEMPLATE_FLAVOR_DIR/packages_qubes_minimal_suffix.list)
290 |             exists "${template_dir}/${path_parts[base]}_${suffix}_${template_flavor}${path_parts[dotext]}" || true
291 | 
292 |             # (TEMPLATE_CONTENT_DIR/packages_qubes_minimal_suffix.list)
293 |             exists "${TEMPLATE_CONTENT_DIR}/${path_parts[base]}_${suffix}_${template_flavor}${path_parts[dotext]}" || true
294 |         else
295 |             # (TEMPLATE_FLAVOR_DIR/minimal/packages_qubes.list)
296 |             exists "${template_dir}/${template_flavor}/${path_parts[base]}${path_parts[dotext]}" || true
297 | 
298 |             # (TEMPLATE_FLAVOR_DIR/minimal/packages_qubes_minimal.list)
299 |             exists "${template_dir}/${template_flavor}/${path_parts[base]}_${template_flavor}${path_parts[dotext]}" || true
300 | 
301 |             # (TEMPLATE_FLAVOR_DIR/packages_qubes.list)
302 |             exists "${template_dir}/${path_parts[base]}${path_parts[dotext]}" || true
303 | 
304 |             # (TEMPLATE_FLAVOR_DIR/packages_qubes_minimal.list)
305 |             exists "${template_dir}/${path_parts[base]}_${template_flavor}${path_parts[dotext]}" || true
306 | 
307 |             # (TEMPLATE_CONTENT_DIR/packages_qubes_minimal.list)
308 |             exists "${TEMPLATE_CONTENT_DIR}/${path_parts[base]}_${template_flavor}${path_parts[dotext]}" || true
309 |         fi
310 |     done
311 | }
312 | 
313 | copyTreeExec() {
314 |     local source_dir="$1"
315 |     local dir="$2"
316 |     local template_flavor="$3"
317 |     local target_dir="$4"
318 |     local template_dirs
319 | 
320 |     template_dirs="$(templateDirs "${template_flavor}")"
321 | 
322 |     for template_dir in "${template_dirs[@]}"; do
323 |         local source_dir
324 |         local target_dir
325 | 
326 |         source_dir="$(readlink -m "${source_dir:-${template_dir}}/${dir}")"
327 |         target_dir="$(readlink -m "${target_dir:-${INSTALL_DIR}}")"
328 | 
329 |         if ! [ -d "${source_dir}" ]; then
330 |             debug "No extra files to copy for ${dir}"
331 |             return 0
332 |         fi
333 | 
334 |         debug "Copying ${source_dir}/* ${target_dir}"
335 |         cp -rp "${source_dir}/." "${target_dir}"
336 | 
337 |         if [ -f "${source_dir}/.facl" ]; then
338 |             debug "Restoring file permissions..."
339 |             pushd "${target_dir}"
340 |             {
341 |                 setfacl --restore="${source_dir}/.facl" 2>/dev/null ||:
342 |                 rm -f .facl
343 |             }
344 |             popd
345 |         fi
346 |     done
347 | }
348 | 
349 | callTemplateFunction() {
350 |     local calling_script="$1"
351 |     local calling_arg="$2"
352 |     local functionExec="$3"
353 |     local template_flavor="${TEMPLATE_FLAVOR}"
354 |     local template_options
355 | 
356 |     ${functionExec} "${calling_script}" \
357 |                     "${calling_arg}" \
358 |                     "${template_flavor}"
359 | 
360 |     # Find a $DIST sub-directory
361 |     ${functionExec} "${calling_script}" \
362 |                     "${calling_arg}" \
363 |                     "+"
364 | 
365 |     read -r -a template_options <<<"${TEMPLATE_OPTIONS[@]}"
366 | 
367 |     for option in "${template_options[@]}"
368 |     do
369 |         # Long name (wheezy+whonix-gateway+proxy)
370 |         ${functionExec} "${calling_script}" \
371 |                         "${calling_arg}" \
372 |                         "${TEMPLATE_FLAVOR}+${option}"
373 | 
374 |         # Short name (wheezy+proxy)
375 |         ${functionExec} "${calling_script}" \
376 |                         "${calling_arg}" \
377 |                         "${option}"
378 |     done
379 | 
380 |     # If template_flavor exists, also check on base distro
381 |     if [ -n "${template_flavor}" ]; then
382 |         ${functionExec} "${calling_script}" \
383 |                         "${calling_arg}"
384 |     fi
385 | }
386 | 
387 | # ------------------------------------------------------------------------------
388 | # Will return all files that match pattern of suffix
389 | # Example:
390 | #   filename = packages.list
391 | #   suffix = ${DIST} (wheezy)
392 | #
393 | # Will look for a file name packages_wheezy.list in:
394 | #   the $TEMPLATE_CONTENT_DIR; beside original
395 | #   the $TEMPLATE_CONTENT_DIR/$DIST (wheezy) directory
396 | #   any included template module directories ($TEMPLATE_CONTENT_DIR/gnome)
397 | #
398 | # All matches are returned and each will be able to be used
399 | # ------------------------------------------------------------------------------
400 | getFileLocations() {
401 |     local return_global_var=$1
402 |     local filename="$2"
403 |     local suffix="$3"
404 |     local function="templateFile"
405 | 
406 |     unset GLOBAL_CACHE
407 |     declare -gA GLOBAL_CACHE
408 | 
409 |     callTemplateFunction "${filename}" "${suffix}" "${function}"
410 |     setArrayAsGlobal GLOBAL_CACHE "$return_global_var"
411 | 
412 |     if [ ! ${#GLOBAL_CACHE[@]} -eq 0 ]; then
413 |         debug "Smart files located for: '${filename##*/}' (suffix: ${suffix}):"
414 |         for filename in "${GLOBAL_CACHE[@]}"; do
415 |             debug "${filename}"
416 |         done
417 |     fi
418 | }
419 | 
420 | # ------------------------------------------------------------------------------
421 | # Executes any additional optional configuration steps if the configuration
422 | # scripts exist
423 | #
424 | # Will find all scripts with
425 | # Example:
426 | #   filename = 04_install_qubes.sh
427 | #   suffix = post
428 | #
429 | # Will look for a file name 04_install_qubes_post in:
430 | #   the $TEMPLATE_CONTENT_DIR; beside original
431 | #   the $TEMPLATE_CONTENT_DIR/$DIST (wheezy) directory
432 | #   any included template module directories ($TEMPLATE_CONTENT_DIR/gnome)
433 | #
434 | # All matches are executed
435 | # ------------------------------------------------------------------------------
436 | buildStep() {
437 |     local filename="$1"
438 |     local suffix="$2"
439 |     unset build_step_files
440 | 
441 |     info "Locating buildStep files: ${filename##*/} suffix: ${suffix}"
442 |     getFileLocations "build_step_files" "${filename}" "${suffix}"
443 | 
444 |     # shellcheck disable=SC2154
445 |     for script in "${build_step_files[@]}"; do
446 |         if [ "${script}" == "${filename}" ]; then
447 |             error "Recursion detected!"
448 |             exit 1
449 |         fi
450 |         if [ -e "${script}" ]; then
451 |             # Test module expects raw  output back only used to asser test results
452 |             if [[ -n ${TEST} ]]; then
453 |                 echo "${script}"
454 |             else
455 |                 info "Currently running script: ${script}"
456 |             fi
457 |             # Execute $script
458 |             "${script}"
459 |         fi
460 |     done
461 | }
462 | 
463 | # ------------------------------------------------------------------------------
464 | # Copy extra file tree to ${INSTALL_DIR}
465 | # TODO:  Allow copy per step (04_install_qubes.sh-files)
466 | #
467 | # To set file permissions is a PITA since git won't save them and will
468 | # complain heavily if they are set to root only read, so this is the procdure:
469 | #
470 | # 1. Change to the directory that you want to have file permissions retained
471 | # 2. Change all the file permissions / ownership as you want
472 | # 3. Change back to the root of the exta directory (IE: extra-qubes-files)
473 | # 4. Manually restore facl's: setfacl --restore=.facl
474 | # 5. Manually create facl backup used after copying: getfacl -R . > .facl
475 | # 6. If git complains; reset file ownership back to user.  The .facl file stored
476 | #    the file permissions and will be used to reset the file permissions after
477 | #    they get copied over to ${INSTALL_DIR}
478 | # NOTE: Don't forget to redo this process if you add -OR- remove files
479 | # ------------------------------------------------------------------------------
480 | copyTree() {
481 |     local dir="$1"
482 |     local source_dir="$2"
483 |     local target_dir="$3"
484 |     local function="copyTreeExec"
485 | 
486 |     if [ -z "${source_dir}" ]; then
487 |         splitPath "${0}" path_parts
488 |         if [ -d "${path_parts[dir]}/${dir}" ]; then
489 |             copyTreeExec "${path_parts[dir]}" "${dir}" "" ""
490 |         else
491 |             callTemplateFunction "" "${dir}" "${function}"
492 |         fi
493 |     else
494 |         copyTreeExec "${source_dir}" "${dir}" "" "${target_dir}"
495 |     fi
496 | }
497 | 
498 | # $0 is module that sourced vars.sh
499 | info "Currently running script: ${0}"
500 | 


--------------------------------------------------------------------------------
/mount_root.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | ROOTIMG=$1
 3 | 
 4 | if [ x$ROOTIMG = x ] ; then
 5 | echo "usage: $0 <root.img>"
 6 | exit 0
 7 | fi
 8 | 
 9 | # We assume that the input root.img has the following structure:
10 | 
11 | # /dev/sda1 <--- root fs
12 | # /dev/sda2 <--- swap
13 | 
14 | # and that the first partition starts at offset 63*512 from the begging of the image file
15 | OFFSET=$((63*512))
16 | 
17 | mkdir -p mnt
18 | 
19 | MNTDIR=$(pwd)/mnt
20 | 
21 | LOOP=$(/sbin/losetup -f --show -o $OFFSET $ROOTIMG)
22 | 
23 | if [ x$LOOP = x ] ; then
24 | echo "Cannot setup loopback device for the $ROOTIMG file -- perhaps a permissions problem?"
25 | exit 1
26 | fi
27 | 
28 | mount $LOOP $MNTDIR || {
29 | echo "Cannot mount $LOOP to $MNTDIR"
30 | /sbin/losetup -d $LOOP
31 | exit 2
32 | }
33 | 
34 | # generate unmount script
35 | BASENAE=$(basename $ROOTIMG)
36 | UNMOUNT_SCRIPT=$(echo unmount_root-$BASENAE.sh)
37 | echo "#!/bin/sh" > $UNMOUNT_SCRIPT
38 | echo "umount $MNTDIR || { echo \"Cannot unmount!\"; exit 1; }" >> $UNMOUNT_SCRIPT
39 | echo "/sbin/losetup -d $LOOP || { echo \"Cannot delete the loop device\"; exit 1; }" >> $UNMOUNT_SCRIPT
40 | echo "rm -f $UNMOUNT_SCRIPT" >> $UNMOUNT_SCRIPT
41 | chmod +x $UNMOUNT_SCRIPT
42 | 
43 | 


--------------------------------------------------------------------------------
/prepare_image:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | 
  3 | if [ "${VERBOSE}" -ge 2 -o "${DEBUG}" == "1" ]; then
  4 |     set -x
  5 | fi
  6 | 
  7 | set -e
  8 | 
  9 | # ------------------------------------------------------------------------------
 10 | # Configurations
 11 | # ------------------------------------------------------------------------------
 12 | export IMG="${1}"
 13 | export LC_ALL=POSIX
 14 | 
 15 | RETCODE=0
 16 | 
 17 | : ${DIST=fc14}
 18 | 
 19 | . ./builder_setup >/dev/null
 20 | . ./umount_kill.sh >/dev/null
 21 | 
 22 | if ! [ $# -eq 1 ]; then
 23 |     echo "usage ${0} <img_file_name>"
 24 |     exit
 25 | fi
 26 | 
 27 | if [ "${VERBOSE}" == "1" ]; then
 28 |     export YUM_OPTS="${YUM_OPTS} -q"
 29 | fi
 30 | 
 31 | if [ -z "$TEMPLATE_ROOT_SIZE" ]; then
 32 |     TEMPLATE_ROOT_SIZE=10G
 33 | fi
 34 | 
 35 | # ------------------------------------------------------------------------------
 36 | # Make sure INSTALLDIR exists
 37 | # ------------------------------------------------------------------------------
 38 | export INSTALLDIR="$(readlink -m mnt)"
 39 | mkdir -p "${INSTALLDIR}"
 40 | 
 41 | # Support for builderv2
 42 | export INSTALL_DIR="${INSTALLDIR}"
 43 | # shellcheck disable=SC2153
 44 | export CACHE_DIR="${CACHEDIR}"
 45 | 
 46 | # ------------------------------------------------------------------------------
 47 | # Prepare for mount
 48 | # ------------------------------------------------------------------------------
 49 | echo "-> Preparing instalation of ${DIST} template..."
 50 | "${SCRIPTSDIR}/00_prepare.sh"
 51 | 
 52 | # ------------------------------------------------------------------------------
 53 | # Mount image and install core OS
 54 | # ------------------------------------------------------------------------------
 55 | if [ -f "${IMG}" ]; then
 56 |     echo "-> Image file already exists, assuming *update*..."
 57 |     if [ "0$TEMPLATE_ROOT_WITH_PARTITIONS" -eq 1 ]; then
 58 |         IMG_LOOP=$(/sbin/losetup -P -f --show "$IMG")
 59 |         IMG_DEV=${IMG_LOOP}p3
 60 |     else
 61 |         IMG_LOOP=$(/sbin/losetup -f --show "$IMG")
 62 |         IMG_DEV=${IMG_LOOP}
 63 |     fi
 64 |     udevadm settle --exit-if-exists="$IMG_DEV"
 65 | else
 66 |     echo "-> Initializing empty image..."
 67 |     truncate -s "$TEMPLATE_ROOT_SIZE" "${IMG}" || exit 1
 68 | 
 69 |     if [ "0$TEMPLATE_ROOT_WITH_PARTITIONS" -eq 1 ]; then
 70 |         echo "-> Creating partition table"
 71 |         # have static UUIDs to make partition table reproducible
 72 |         /usr/sbin/sfdisk "$IMG" <<EOF || exit 1
 73 | label: gpt
 74 | label-id: f4796a2a-e377-45bd-b539-d6d49e569055
 75 | 
 76 | size=200MiB, type=C12A7328-F81F-11D2-BA4B-00A0C93EC93B, uuid=fa4d6529-56da-47c7-ae88-e2dfecb72621, name="EFI System"
 77 | size=2MiB, type=21686148-6449-6E6F-744E-656564454649, uuid=1e6c9db4-1e91-46c4-846a-2030dcb13b8c, name="BIOS boot partition"
 78 | type=0FC63DAF-8483-4772-8E79-3D69D8477DE4, uuid=693244e6-3e07-47bf-ad79-acade4293fe7, name="Root filesystem"
 79 | EOF
 80 | 
 81 |         IMG_LOOP=$(/sbin/losetup -P -f --show "$IMG")
 82 |         IMG_DEV=${IMG_LOOP}p3
 83 |     else
 84 |         IMG_LOOP=$(/sbin/losetup -f --show "$IMG")
 85 |         IMG_DEV=${IMG_LOOP}
 86 |     fi
 87 |     udevadm settle --exit-if-exists="$IMG_DEV"
 88 | 
 89 |     echo "-> Creating filesystem..."
 90 |     /sbin/mkfs.ext4 -q -F "${IMG_DEV}" || exit 1
 91 | fi
 92 | 
 93 | mount "${IMG_DEV}" "${INSTALLDIR}" || exit 1
 94 | trap "umount_kill $(readlink -m ${INSTALLDIR})" EXIT
 95 | "${SCRIPTSDIR}/01_install_core.sh"
 96 | 
 97 | # ------------------------------------------------------------------------------
 98 | # Install package groups
 99 | # ------------------------------------------------------------------------------
100 | echo "-> Installing package groups..."
101 | "${SCRIPTSDIR}/02_install_groups.sh"
102 | 
103 | # ------------------------------------------------------------------------------
104 | # Cleanup
105 | # ------------------------------------------------------------------------------
106 | trap - EXIT
107 | 
108 | echo "-> Unmounting prepared_image..."
109 | umount_kill "$(readlink -m ${INSTALLDIR})" || true
110 | /sbin/losetup -d ${IMG_LOOP}
111 | 
112 | exit ${RETCODE}
113 | 


--------------------------------------------------------------------------------
/prepared_images/.gitignore:
--------------------------------------------------------------------------------
1 | *
2 | 


--------------------------------------------------------------------------------
/qubeize_image:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | 
  3 | if [ "$VERBOSE" -ge 2 -o "$DEBUG" == "1" ]; then
  4 |     set -x
  5 | fi
  6 | 
  7 | set -e
  8 | 
  9 | # ------------------------------------------------------------------------------
 10 | # Configurations and Conditionals
 11 | # ------------------------------------------------------------------------------
 12 | export CLEANIMG="$1"
 13 | export NAME="$2"
 14 | export LC_ALL=POSIX
 15 | 
 16 | . ./builder_setup >/dev/null
 17 | . ./umount_kill.sh >/dev/null
 18 | 
 19 | if [ $# -eq 0 ]; then
 20 |     echo "usage $0 <clean_image_file> <template_name>"
 21 |     exit
 22 | fi
 23 | 
 24 | if [ "x$CLEANIMG" = x ]; then
 25 |     echo "Image file not specified!"
 26 |     exit 1
 27 | fi
 28 | 
 29 | if [ "x$NAME" = x ]; then
 30 |     echo "Name not given!"
 31 |     exit 1
 32 | fi
 33 | 
 34 | ID=$(id -ur)
 35 | 
 36 | if [ $ID != 0 ] ; then
 37 |     echo "This script should be run as root user."
 38 |     exit 1
 39 | fi
 40 | 
 41 | if [ "$VERBOSE" == "1" ]; then
 42 |     export YUM_OPTS="$YUM_OPTS -q"
 43 | fi
 44 | 
 45 | # ------------------------------------------------------------------------------
 46 | # Cleanup function
 47 | # ------------------------------------------------------------------------------
 48 | function cleanup() {
 49 |     errval=$?
 50 |     trap - ERR
 51 |     trap
 52 |     umount_kill "$PWD/mnt" || true
 53 |     /sbin/losetup -d ${IMG_LOOP}
 54 |     exit $errval
 55 | }
 56 | trap cleanup ERR
 57 | 
 58 | # ------------------------------------------------------------------------------
 59 | # Mount qubeized_image
 60 | # ------------------------------------------------------------------------------
 61 | export IMG="qubeized_images/$NAME/root.img"
 62 | mkdir -p "qubeized_images/$NAME"
 63 | 
 64 | if [ "0$DISCARD_PREPARED_IMAGE" -eq "1" ]; then
 65 |     echo "--> Moving $CLEANIMG to $IMG..."
 66 |     mv "$CLEANIMG" "$IMG" || exit 1
 67 | else
 68 |     echo "--> Copying $CLEANIMG to $IMG..."
 69 |     cp "$CLEANIMG" "$IMG" || exit 1
 70 | fi
 71 | 
 72 | echo "--> Mounting $IMG"
 73 | mkdir -p mnt
 74 | if [ "0$TEMPLATE_ROOT_WITH_PARTITIONS" -eq 1 ]; then
 75 |     IMG_LOOP=$(/sbin/losetup -P -f --show "$IMG")
 76 |     IMG_DEV=${IMG_LOOP}p3
 77 | else
 78 |     IMG_LOOP=$(/sbin/losetup -f --show "$IMG")
 79 |     IMG_DEV=${IMG_LOOP}
 80 | fi
 81 | udevadm settle --exit-if-exists="$IMG_DEV"
 82 | mount "$IMG_DEV" mnt || exit 1
 83 | export INSTALLDIR=mnt
 84 | 
 85 | # prepare for template.conf, so the qubeize script may generate it dynamically
 86 | export TEMPLATE_CONF="${PWD}/template.conf"
 87 | rm -f "$TEMPLATE_CONF"
 88 | 
 89 | # Support for builderv2
 90 | export INSTALL_DIR="${INSTALLDIR}"
 91 | # shellcheck disable=SC2153
 92 | export CACHE_DIR="${CACHEDIR}"
 93 | 
 94 | # ------------------------------------------------------------------------------
 95 | # Run qubeize script
 96 | # ------------------------------------------------------------------------------
 97 | "$SCRIPTSDIR/04_install_qubes.sh"
 98 | 
 99 | # ------------------------------------------------------------------------------
100 | # Create App Menus
101 | # ------------------------------------------------------------------------------
102 | echo "--> Choosing appmenus whitelists..."
103 | _appmenus_dir="${APPMENUS_DIR:-${SCRIPTSDIR}}"
104 | rm -f appmenus
105 | if [ -d "${_appmenus_dir}/appmenus_${DIST}_${TEMPLATE_FLAVOR}" ]; then
106 |     ln -s "${_appmenus_dir}/appmenus_${DIST}_${TEMPLATE_FLAVOR}" appmenus
107 | elif [ -d "${_appmenus_dir}/appmenus_${DIST//[0-9]*}_${TEMPLATE_FLAVOR}" ]; then
108 |     ln -s "${_appmenus_dir}/appmenus_${DIST//[0-9]*}_${TEMPLATE_FLAVOR}" appmenus
109 | elif [ -d "${_appmenus_dir}/appmenus_$DIST" ]; then
110 |     ln -s "${_appmenus_dir}/appmenus_$DIST" appmenus
111 | elif [ -d "${_appmenus_dir}/appmenus_${DIST//[0-9]*}" ]; then
112 |     ln -s "${_appmenus_dir}/appmenus_${DIST//[0-9]*}" appmenus
113 | elif [ -d "${_appmenus_dir}/appmenus" ]; then
114 |     ln -s "${_appmenus_dir}/appmenus" appmenus
115 | else
116 |     ln -s "appmenus_generic" appmenus
117 | fi
118 | 
119 | # ------------------------------------------------------------------------------
120 | # Create Template Config File
121 | # ------------------------------------------------------------------------------
122 | 
123 | echo "--> Creating template config file..."
124 | if ! [ -e "$TEMPLATE_CONF" ]; then
125 |     _conf_dir="${CONFIG_DIR:-${SCRIPTSDIR}}"
126 |     if [ -f "${_conf_dir}/template_${DIST}_${TEMPLATE_FLAVOR}.conf" ]; then
127 |         cp "${_conf_dir}/template_${DIST}_${TEMPLATE_FLAVOR}.conf" "$TEMPLATE_CONF"
128 |     elif [ -f "${_conf_dir}/template_${DIST//[0-9]*}_${TEMPLATE_FLAVOR}.conf" ]; then
129 |         cp "${_conf_dir}/template_${DIST//[0-9]*}_${TEMPLATE_FLAVOR}.conf" "$TEMPLATE_CONF"
130 |     elif [ -f "${_conf_dir}/template_$DIST.conf" ]; then
131 |         cp "${_conf_dir}/template_$DIST.conf" "$TEMPLATE_CONF"
132 |     elif [ -f "${_conf_dir}/template_${DIST//[0-9]*}.conf" ]; then
133 |         cp "${_conf_dir}/template_${DIST//[0-9]*}.conf" "$TEMPLATE_CONF"
134 |     elif [ -f "${_conf_dir}/template.conf" ]; then
135 |         cp "${_conf_dir}/template.conf" "$TEMPLATE_CONF"
136 |     else
137 |         cp template_generic.conf "$TEMPLATE_CONF"
138 |     fi
139 | fi
140 | 
141 | # ------------------------------------------------------------------------------
142 | # Link directories so they can be mounted
143 | # ------------------------------------------------------------------------------
144 | echo "--> Linking /home to /rw/home..."
145 | mv mnt/home mnt/home.orig
146 | mkdir mnt/home
147 | 
148 | echo "--> Linking /usr/local to /rw/usrlocal..."
149 | mv mnt/usr/local mnt/usr/local.orig
150 | mkdir mnt/usr/local
151 | 
152 | echo "Reducing image size (calling cleanup_image)..."
153 | ls -als $IMG
154 | ./cleanup_image "$INSTALLDIR"
155 | ls -als $IMG
156 | 
157 | # ------------------------------------------------------------------------------
158 | # Finsh - unmount image
159 | # ------------------------------------------------------------------------------
160 | echo "--> Unmounting $IMG"
161 | umount_kill "$PWD/mnt" || true
162 | /sbin/losetup -d ${IMG_LOOP}
163 | 
164 | echo "Qubeized image stored at: $IMG"
165 | 
166 | chown -R --reference=. qubeized_images/$NAME
167 | 


--------------------------------------------------------------------------------
/qubeized_images/.gitignore:
--------------------------------------------------------------------------------
1 | *
2 | 


--------------------------------------------------------------------------------
/rpm/.gitignore:
--------------------------------------------------------------------------------
1 | noarch/
2 | 


--------------------------------------------------------------------------------
/rpmbuild/.gitignore:
--------------------------------------------------------------------------------
1 | *
2 | 


--------------------------------------------------------------------------------
/template_generic.conf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/template_generic.conf


--------------------------------------------------------------------------------
/templates.spec:
--------------------------------------------------------------------------------
  1 | #
  2 | # This SPEC is for bulding RPM packages that contain complete Qubes Template files
  3 | # This includes the VM's root image, patched with all qubes rpms, etc
  4 | #
  5 | 
  6 | %{!?template_name: %global template_name %{getenv:TEMPLATE_NAME}}
  7 | %{!?version: %global version %(cat version)}
  8 | %{!?rel: %global rel %(cat build_timestamp_%{template_name} || echo unavailable)}
  9 | 
 10 | Name:		qubes-template-%{template_name}
 11 | Version:	%{version}
 12 | Release:	%{rel}
 13 | Summary:	Qubes template for %{template_name}
 14 | 
 15 | License:	GPL
 16 | URL:		http://www.qubes-os.org
 17 | Source:		.
 18 | 
 19 | Requires:	xdg-utils
 20 | Requires(post):	tar
 21 | BuildArch:  noarch
 22 | Provides:	qubes-template
 23 | Obsoletes:  %{name} > %{version}-%{release}
 24 | 
 25 | %define _builddir %(pwd)
 26 | %define _rpmdir %(pwd)/rpm
 27 | %define dest_dir /var/lib/qubes/vm-templates/%{template_name}
 28 | 
 29 | %define _binaries_in_noarch_packages_terminate_build 0
 30 | %description
 31 | Qubes template for %{template_name}
 32 | 
 33 | %build
 34 | cd qubeized_images/%{template_name}
 35 | rm -f root.img.part.*
 36 | tar --sparse --dereference -cf - root.img | split -d -b 1G - root.img.part.
 37 | 
 38 | if [ "0$DISCARD_PREPARED_IMAGE" -eq 1 ]; then
 39 |     rm -f root.img
 40 | fi
 41 | 
 42 | %install
 43 | rm -rf $RPM_BUILD_ROOT
 44 | mkdir -p $RPM_BUILD_ROOT/%{dest_dir}
 45 | for i in qubeized_images/%{template_name}/root.img.part.* ; do mv $i $RPM_BUILD_ROOT/%{dest_dir}/ ; done
 46 | touch $RPM_BUILD_ROOT/%{dest_dir}/root.img # we will create the real file in %post
 47 | touch $RPM_BUILD_ROOT/%{dest_dir}/private.img # we will create the real file in %post
 48 | touch $RPM_BUILD_ROOT/%{dest_dir}/volatile.img # we will create the real file in %post
 49 | touch $RPM_BUILD_ROOT/%{dest_dir}/clean-volatile.img.tar # we will create the real file in %post
 50 | 
 51 | mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/apps.templates
 52 | mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/apps.tempicons
 53 | mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/apps
 54 | cp appmenus/whitelisted-appmenus.list appmenus/vm-whitelisted-appmenus.list $RPM_BUILD_ROOT/%{dest_dir}/
 55 | cp appmenus/netvm-whitelisted-appmenus.list $RPM_BUILD_ROOT/%{dest_dir}/
 56 | cp template.conf $RPM_BUILD_ROOT/%{dest_dir}/
 57 | 
 58 | %pre
 59 | 
 60 | export XDG_DATA_DIRS=/usr/share/
 61 | if [ "$1" -gt 1 ] ; then
 62 |     # upgrading already installed template...
 63 |     # avoid removing innocent files if *.desktop doesn't mach anything
 64 |     # https://bugs.freedesktop.org/105635
 65 |     if ls %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop >/dev/null 2>&1; then
 66 |         echo "--> Removing previous menu shortcuts..."
 67 |         xdg-desktop-menu uninstall --mode system \
 68 |             %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
 69 |     fi
 70 | fi
 71 | 
 72 | 
 73 | %post
 74 | 
 75 | if command -v qvm-template-postprocess >/dev/null 2>&1; then
 76 |     qvm-template-postprocess --really post-install %{template_name} %{dest_dir}
 77 |     exit $?
 78 | fi
 79 | 
 80 | echo "--> Processing the root.img... (this might take a while)"
 81 | rm -f %{dest_dir}/root.img
 82 | cat %{dest_dir}/root.img.part.* | tar --sparse -xf - -C %{dest_dir}
 83 | rm -f %{dest_dir}/root.img.part.*
 84 | chown root.qubes %{dest_dir}/root.img
 85 | chmod 0660 %{dest_dir}/root.img
 86 | 
 87 | echo "--> Processing the volatile.img..."
 88 | /usr/lib/qubes/prepare-volatile-img.sh %{dest_dir}/volatile.img $[ `stat -c '%s' %{dest_dir}/root.img` / 1024 / 1024 ] || exit 1
 89 | chown root.qubes %{dest_dir}/volatile.img
 90 | chmod 0660 %{dest_dir}/volatile.img
 91 | tar --sparse -cf %{dest_dir}/clean-volatile.img.tar -C %{dest_dir} volatile.img
 92 | chown root.qubes %{dest_dir}/clean-volatile.img.tar
 93 | chmod 0660 %{dest_dir}/clean-volatile.img.tar
 94 | 
 95 | if [ "$1" = 1 ] ; then
 96 |     # installing for the first time
 97 |     echo "--> Creating private.img..."
 98 |     truncate -s 2G %{dest_dir}/private.img
 99 |     mkfs.ext4 -m 0 -q -F %{dest_dir}/private.img
100 |     chown root.qubes %{dest_dir}/private.img
101 |     chmod 0660 %{dest_dir}/private.img
102 | fi
103 | 
104 | 
105 | export XDG_DATA_DIRS=/usr/share/
106 | 
107 | echo "--> Instaling menu shortcuts..."
108 | 
109 | local_user=`getent group qubes | cut -d : -f 4 | cut -d , -f 1`
110 | if [ -n "$local_user" ]; then
111 |     call_as_user() {
112 |         su -c "$*" - $local_user
113 |     }
114 | else
115 |     # This will be the case during installation - user will be created in
116 |     # firstboot. There is also a code to fix file permissions, so not a big problem
117 |     call_as_user() {
118 |         $*
119 |     }
120 | fi
121 | 
122 | if [ "$1" = 1 ] ; then
123 |     # installing for the first time
124 |     call_as_user qvm-add-template --rpm %{template_name}
125 | fi
126 | 
127 | # If running inside of chroot (means - from anaconda), force offline mode
128 | if [ "`stat -c %d:%i /`" != "`stat -c %d:%i /proc/1/root/.`" ]; then
129 |     qvm-template-commit --offline-mode %{template_name}
130 |     call_as_user /usr/libexec/qubes-appmenus/create-apps-for-appvm.sh \
131 |         %{dest_dir}/apps.templates %{template_name} vm-templates appvm-black
132 | else
133 |     qvm-template-commit %{template_name}
134 |     qvm-prefs --force-root -s %{template_name} netvm none
135 |     qvm-start --no-guid %{template_name}
136 |     call_as_user qvm-sync-appmenus --force-root %{template_name}
137 |     qvm-shutdown --wait %{template_name}
138 |     qvm-prefs --force-root -s %{template_name} netvm default
139 |     # restore default firewall settings, which was reset by setting netvm=none
140 |     rm -f %{dest_dir}/firewall.xml
141 |     chgrp -R qubes %{dest_dir}
142 |     chmod g+rwX -R %{dest_dir}
143 | fi
144 | exit 0
145 | 
146 | %preun
147 | if [ "$1" = 0 ] ; then
148 |     # no more packages left
149 | 
150 |     if command -v qvm-template-postprocess >/dev/null 2>&1; then
151 |         qvm-template-postprocess --really pre-remove %{template_name} %{dest_dir}
152 |         exit $?
153 |     fi
154 | 
155 |     # First remove DispVM template (even if not exists...)
156 |     qvm-remove --force-root -q %{template_name}-dvm
157 | 
158 |     if ! qvm-remove --force-root -q --just-db %{template_name}; then
159 |         exit 1
160 |     fi
161 | 
162 |     rm -f %{dest_dir}/root-cow.img
163 |     rm -f %{dest_dir}/root-cow.img.old
164 |     rm -f %{dest_dir}/firewall.xml
165 |     rm -f %{dest_dir}/%{template_name}.conf
166 |     rm -f %{dest_dir}/updates.stat
167 | 
168 |     # we need to have it here, because rpm -U <template>
169 |     # apparently executes %preun of the old package *after* %post of the new packages...
170 |     echo "--> Removing menu shortcuts..."
171 |     export XDG_DATA_DIRS=/usr/share/
172 |     xdg-desktop-menu uninstall --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
173 | 
174 |     rm -rf %{dest_dir}/apps %{dest_dir}/apps.templates
175 |     rm -rf %{dest_dir}/apps.icons %{dest_dir}/apps.tempicons
176 | fi
177 | 
178 | %clean
179 | rm -rf $RPM_BUILD_ROOT
180 | 
181 | %files
182 | %defattr(660,root,qubes,770)
183 | %attr(2770,root,qubes) %dir %{dest_dir}
184 | %ghost %{dest_dir}/root.img
185 | %{dest_dir}/root.img.part.*
186 | %{dest_dir}/clean-volatile.img.tar
187 | %ghost %{dest_dir}/volatile.img
188 | %ghost %{dest_dir}/private.img
189 | %attr (775,root,qubes) %dir %{dest_dir}/apps
190 | %attr (775,root,qubes) %dir %{dest_dir}/apps.templates
191 | %attr (775,root,qubes) %dir %{dest_dir}/apps.tempicons
192 | %attr (664,root,qubes) %{dest_dir}/whitelisted-appmenus.list
193 | %attr (664,root,qubes) %{dest_dir}/vm-whitelisted-appmenus.list
194 | %attr (664,root,qubes) %{dest_dir}/netvm-whitelisted-appmenus.list
195 | %attr (664,root,qubes) %{dest_dir}/template.conf
196 | 


--------------------------------------------------------------------------------
/tests/assert/.travis.yml:
--------------------------------------------------------------------------------
1 | language: bash
2 | script: bash tests.sh
3 | before_install:
4 |     - sudo apt-get install bc
5 | 


--------------------------------------------------------------------------------
/tests/assert/COPYING:
--------------------------------------------------------------------------------
  1 |                     GNU GENERAL PUBLIC LICENSE
  2 |                        Version 3, 29 June 2007
  3 | 
  4 |  Copyright (C) 2007 Free Software Foundation, Inc. <http://fsf.org/>
  5 |  Everyone is permitted to copy and distribute verbatim copies
  6 |  of this license document, but changing it is not allowed.
  7 | 
  8 |                             Preamble
  9 | 
 10 |   The GNU General Public License is a free, copyleft license for
 11 | software and other kinds of works.
 12 | 
 13 |   The licenses for most software and other practical works are designed
 14 | to take away your freedom to share and change the works.  By contrast,
 15 | the GNU General Public License is intended to guarantee your freedom to
 16 | share and change all versions of a program--to make sure it remains free
 17 | software for all its users.  We, the Free Software Foundation, use the
 18 | GNU General Public License for most of our software; it applies also to
 19 | any other work released this way by its authors.  You can apply it to
 20 | your programs, too.
 21 | 
 22 |   When we speak of free software, we are referring to freedom, not
 23 | price.  Our General Public Licenses are designed to make sure that you
 24 | have the freedom to distribute copies of free software (and charge for
 25 | them if you wish), that you receive source code or can get it if you
 26 | want it, that you can change the software or use pieces of it in new
 27 | free programs, and that you know you can do these things.
 28 | 
 29 |   To protect your rights, we need to prevent others from denying you
 30 | these rights or asking you to surrender the rights.  Therefore, you have
 31 | certain responsibilities if you distribute copies of the software, or if
 32 | you modify it: responsibilities to respect the freedom of others.
 33 | 
 34 |   For example, if you distribute copies of such a program, whether
 35 | gratis or for a fee, you must pass on to the recipients the same
 36 | freedoms that you received.  You must make sure that they, too, receive
 37 | or can get the source code.  And you must show them these terms so they
 38 | know their rights.
 39 | 
 40 |   Developers that use the GNU GPL protect your rights with two steps:
 41 | (1) assert copyright on the software, and (2) offer you this License
 42 | giving you legal permission to copy, distribute and/or modify it.
 43 | 
 44 |   For the developers' and authors' protection, the GPL clearly explains
 45 | that there is no warranty for this free software.  For both users' and
 46 | authors' sake, the GPL requires that modified versions be marked as
 47 | changed, so that their problems will not be attributed erroneously to
 48 | authors of previous versions.
 49 | 
 50 |   Some devices are designed to deny users access to install or run
 51 | modified versions of the software inside them, although the manufacturer
 52 | can do so.  This is fundamentally incompatible with the aim of
 53 | protecting users' freedom to change the software.  The systematic
 54 | pattern of such abuse occurs in the area of products for individuals to
 55 | use, which is precisely where it is most unacceptable.  Therefore, we
 56 | have designed this version of the GPL to prohibit the practice for those
 57 | products.  If such problems arise substantially in other domains, we
 58 | stand ready to extend this provision to those domains in future versions
 59 | of the GPL, as needed to protect the freedom of users.
 60 | 
 61 |   Finally, every program is threatened constantly by software patents.
 62 | States should not allow patents to restrict development and use of
 63 | software on general-purpose computers, but in those that do, we wish to
 64 | avoid the special danger that patents applied to a free program could
 65 | make it effectively proprietary.  To prevent this, the GPL assures that
 66 | patents cannot be used to render the program non-free.
 67 | 
 68 |   The precise terms and conditions for copying, distribution and
 69 | modification follow.
 70 | 
 71 |                        TERMS AND CONDITIONS
 72 | 
 73 |   0. Definitions.
 74 | 
 75 |   "This License" refers to version 3 of the GNU General Public License.
 76 | 
 77 |   "Copyright" also means copyright-like laws that apply to other kinds of
 78 | works, such as semiconductor masks.
 79 | 
 80 |   "The Program" refers to any copyrightable work licensed under this
 81 | License.  Each licensee is addressed as "you".  "Licensees" and
 82 | "recipients" may be individuals or organizations.
 83 | 
 84 |   To "modify" a work means to copy from or adapt all or part of the work
 85 | in a fashion requiring copyright permission, other than the making of an
 86 | exact copy.  The resulting work is called a "modified version" of the
 87 | earlier work or a work "based on" the earlier work.
 88 | 
 89 |   A "covered work" means either the unmodified Program or a work based
 90 | on the Program.
 91 | 
 92 |   To "propagate" a work means to do anything with it that, without
 93 | permission, would make you directly or secondarily liable for
 94 | infringement under applicable copyright law, except executing it on a
 95 | computer or modifying a private copy.  Propagation includes copying,
 96 | distribution (with or without modification), making available to the
 97 | public, and in some countries other activities as well.
 98 | 
 99 |   To "convey" a work means any kind of propagation that enables other
100 | parties to make or receive copies.  Mere interaction with a user through
101 | a computer network, with no transfer of a copy, is not conveying.
102 | 
103 |   An interactive user interface displays "Appropriate Legal Notices"
104 | to the extent that it includes a convenient and prominently visible
105 | feature that (1) displays an appropriate copyright notice, and (2)
106 | tells the user that there is no warranty for the work (except to the
107 | extent that warranties are provided), that licensees may convey the
108 | work under this License, and how to view a copy of this License.  If
109 | the interface presents a list of user commands or options, such as a
110 | menu, a prominent item in the list meets this criterion.
111 | 
112 |   1. Source Code.
113 | 
114 |   The "source code" for a work means the preferred form of the work
115 | for making modifications to it.  "Object code" means any non-source
116 | form of a work.
117 | 
118 |   A "Standard Interface" means an interface that either is an official
119 | standard defined by a recognized standards body, or, in the case of
120 | interfaces specified for a particular programming language, one that
121 | is widely used among developers working in that language.
122 | 
123 |   The "System Libraries" of an executable work include anything, other
124 | than the work as a whole, that (a) is included in the normal form of
125 | packaging a Major Component, but which is not part of that Major
126 | Component, and (b) serves only to enable use of the work with that
127 | Major Component, or to implement a Standard Interface for which an
128 | implementation is available to the public in source code form.  A
129 | "Major Component", in this context, means a major essential component
130 | (kernel, window system, and so on) of the specific operating system
131 | (if any) on which the executable work runs, or a compiler used to
132 | produce the work, or an object code interpreter used to run it.
133 | 
134 |   The "Corresponding Source" for a work in object code form means all
135 | the source code needed to generate, install, and (for an executable
136 | work) run the object code and to modify the work, including scripts to
137 | control those activities.  However, it does not include the work's
138 | System Libraries, or general-purpose tools or generally available free
139 | programs which are used unmodified in performing those activities but
140 | which are not part of the work.  For example, Corresponding Source
141 | includes interface definition files associated with source files for
142 | the work, and the source code for shared libraries and dynamically
143 | linked subprograms that the work is specifically designed to require,
144 | such as by intimate data communication or control flow between those
145 | subprograms and other parts of the work.
146 | 
147 |   The Corresponding Source need not include anything that users
148 | can regenerate automatically from other parts of the Corresponding
149 | Source.
150 | 
151 |   The Corresponding Source for a work in source code form is that
152 | same work.
153 | 
154 |   2. Basic Permissions.
155 | 
156 |   All rights granted under this License are granted for the term of
157 | copyright on the Program, and are irrevocable provided the stated
158 | conditions are met.  This License explicitly affirms your unlimited
159 | permission to run the unmodified Program.  The output from running a
160 | covered work is covered by this License only if the output, given its
161 | content, constitutes a covered work.  This License acknowledges your
162 | rights of fair use or other equivalent, as provided by copyright law.
163 | 
164 |   You may make, run and propagate covered works that you do not
165 | convey, without conditions so long as your license otherwise remains
166 | in force.  You may convey covered works to others for the sole purpose
167 | of having them make modifications exclusively for you, or provide you
168 | with facilities for running those works, provided that you comply with
169 | the terms of this License in conveying all material for which you do
170 | not control copyright.  Those thus making or running the covered works
171 | for you must do so exclusively on your behalf, under your direction
172 | and control, on terms that prohibit them from making any copies of
173 | your copyrighted material outside their relationship with you.
174 | 
175 |   Conveying under any other circumstances is permitted solely under
176 | the conditions stated below.  Sublicensing is not allowed; section 10
177 | makes it unnecessary.
178 | 
179 |   3. Protecting Users' Legal Rights From Anti-Circumvention Law.
180 | 
181 |   No covered work shall be deemed part of an effective technological
182 | measure under any applicable law fulfilling obligations under article
183 | 11 of the WIPO copyright treaty adopted on 20 December 1996, or
184 | similar laws prohibiting or restricting circumvention of such
185 | measures.
186 | 
187 |   When you convey a covered work, you waive any legal power to forbid
188 | circumvention of technological measures to the extent such circumvention
189 | is effected by exercising rights under this License with respect to
190 | the covered work, and you disclaim any intention to limit operation or
191 | modification of the work as a means of enforcing, against the work's
192 | users, your or third parties' legal rights to forbid circumvention of
193 | technological measures.
194 | 
195 |   4. Conveying Verbatim Copies.
196 | 
197 |   You may convey verbatim copies of the Program's source code as you
198 | receive it, in any medium, provided that you conspicuously and
199 | appropriately publish on each copy an appropriate copyright notice;
200 | keep intact all notices stating that this License and any
201 | non-permissive terms added in accord with section 7 apply to the code;
202 | keep intact all notices of the absence of any warranty; and give all
203 | recipients a copy of this License along with the Program.
204 | 
205 |   You may charge any price or no price for each copy that you convey,
206 | and you may offer support or warranty protection for a fee.
207 | 
208 |   5. Conveying Modified Source Versions.
209 | 
210 |   You may convey a work based on the Program, or the modifications to
211 | produce it from the Program, in the form of source code under the
212 | terms of section 4, provided that you also meet all of these conditions:
213 | 
214 |     a) The work must carry prominent notices stating that you modified
215 |     it, and giving a relevant date.
216 | 
217 |     b) The work must carry prominent notices stating that it is
218 |     released under this License and any conditions added under section
219 |     7.  This requirement modifies the requirement in section 4 to
220 |     "keep intact all notices".
221 | 
222 |     c) You must license the entire work, as a whole, under this
223 |     License to anyone who comes into possession of a copy.  This
224 |     License will therefore apply, along with any applicable section 7
225 |     additional terms, to the whole of the work, and all its parts,
226 |     regardless of how they are packaged.  This License gives no
227 |     permission to license the work in any other way, but it does not
228 |     invalidate such permission if you have separately received it.
229 | 
230 |     d) If the work has interactive user interfaces, each must display
231 |     Appropriate Legal Notices; however, if the Program has interactive
232 |     interfaces that do not display Appropriate Legal Notices, your
233 |     work need not make them do so.
234 | 
235 |   A compilation of a covered work with other separate and independent
236 | works, which are not by their nature extensions of the covered work,
237 | and which are not combined with it such as to form a larger program,
238 | in or on a volume of a storage or distribution medium, is called an
239 | "aggregate" if the compilation and its resulting copyright are not
240 | used to limit the access or legal rights of the compilation's users
241 | beyond what the individual works permit.  Inclusion of a covered work
242 | in an aggregate does not cause this License to apply to the other
243 | parts of the aggregate.
244 | 
245 |   6. Conveying Non-Source Forms.
246 | 
247 |   You may convey a covered work in object code form under the terms
248 | of sections 4 and 5, provided that you also convey the
249 | machine-readable Corresponding Source under the terms of this License,
250 | in one of these ways:
251 | 
252 |     a) Convey the object code in, or embodied in, a physical product
253 |     (including a physical distribution medium), accompanied by the
254 |     Corresponding Source fixed on a durable physical medium
255 |     customarily used for software interchange.
256 | 
257 |     b) Convey the object code in, or embodied in, a physical product
258 |     (including a physical distribution medium), accompanied by a
259 |     written offer, valid for at least three years and valid for as
260 |     long as you offer spare parts or customer support for that product
261 |     model, to give anyone who possesses the object code either (1) a
262 |     copy of the Corresponding Source for all the software in the
263 |     product that is covered by this License, on a durable physical
264 |     medium customarily used for software interchange, for a price no
265 |     more than your reasonable cost of physically performing this
266 |     conveying of source, or (2) access to copy the
267 |     Corresponding Source from a network server at no charge.
268 | 
269 |     c) Convey individual copies of the object code with a copy of the
270 |     written offer to provide the Corresponding Source.  This
271 |     alternative is allowed only occasionally and noncommercially, and
272 |     only if you received the object code with such an offer, in accord
273 |     with subsection 6b.
274 | 
275 |     d) Convey the object code by offering access from a designated
276 |     place (gratis or for a charge), and offer equivalent access to the
277 |     Corresponding Source in the same way through the same place at no
278 |     further charge.  You need not require recipients to copy the
279 |     Corresponding Source along with the object code.  If the place to
280 |     copy the object code is a network server, the Corresponding Source
281 |     may be on a different server (operated by you or a third party)
282 |     that supports equivalent copying facilities, provided you maintain
283 |     clear directions next to the object code saying where to find the
284 |     Corresponding Source.  Regardless of what server hosts the
285 |     Corresponding Source, you remain obligated to ensure that it is
286 |     available for as long as needed to satisfy these requirements.
287 | 
288 |     e) Convey the object code using peer-to-peer transmission, provided
289 |     you inform other peers where the object code and Corresponding
290 |     Source of the work are being offered to the general public at no
291 |     charge under subsection 6d.
292 | 
293 |   A separable portion of the object code, whose source code is excluded
294 | from the Corresponding Source as a System Library, need not be
295 | included in conveying the object code work.
296 | 
297 |   A "User Product" is either (1) a "consumer product", which means any
298 | tangible personal property which is normally used for personal, family,
299 | or household purposes, or (2) anything designed or sold for incorporation
300 | into a dwelling.  In determining whether a product is a consumer product,
301 | doubtful cases shall be resolved in favor of coverage.  For a particular
302 | product received by a particular user, "normally used" refers to a
303 | typical or common use of that class of product, regardless of the status
304 | of the particular user or of the way in which the particular user
305 | actually uses, or expects or is expected to use, the product.  A product
306 | is a consumer product regardless of whether the product has substantial
307 | commercial, industrial or non-consumer uses, unless such uses represent
308 | the only significant mode of use of the product.
309 | 
310 |   "Installation Information" for a User Product means any methods,
311 | procedures, authorization keys, or other information required to install
312 | and execute modified versions of a covered work in that User Product from
313 | a modified version of its Corresponding Source.  The information must
314 | suffice to ensure that the continued functioning of the modified object
315 | code is in no case prevented or interfered with solely because
316 | modification has been made.
317 | 
318 |   If you convey an object code work under this section in, or with, or
319 | specifically for use in, a User Product, and the conveying occurs as
320 | part of a transaction in which the right of possession and use of the
321 | User Product is transferred to the recipient in perpetuity or for a
322 | fixed term (regardless of how the transaction is characterized), the
323 | Corresponding Source conveyed under this section must be accompanied
324 | by the Installation Information.  But this requirement does not apply
325 | if neither you nor any third party retains the ability to install
326 | modified object code on the User Product (for example, the work has
327 | been installed in ROM).
328 | 
329 |   The requirement to provide Installation Information does not include a
330 | requirement to continue to provide support service, warranty, or updates
331 | for a work that has been modified or installed by the recipient, or for
332 | the User Product in which it has been modified or installed.  Access to a
333 | network may be denied when the modification itself materially and
334 | adversely affects the operation of the network or violates the rules and
335 | protocols for communication across the network.
336 | 
337 |   Corresponding Source conveyed, and Installation Information provided,
338 | in accord with this section must be in a format that is publicly
339 | documented (and with an implementation available to the public in
340 | source code form), and must require no special password or key for
341 | unpacking, reading or copying.
342 | 
343 |   7. Additional Terms.
344 | 
345 |   "Additional permissions" are terms that supplement the terms of this
346 | License by making exceptions from one or more of its conditions.
347 | Additional permissions that are applicable to the entire Program shall
348 | be treated as though they were included in this License, to the extent
349 | that they are valid under applicable law.  If additional permissions
350 | apply only to part of the Program, that part may be used separately
351 | under those permissions, but the entire Program remains governed by
352 | this License without regard to the additional permissions.
353 | 
354 |   When you convey a copy of a covered work, you may at your option
355 | remove any additional permissions from that copy, or from any part of
356 | it.  (Additional permissions may be written to require their own
357 | removal in certain cases when you modify the work.)  You may place
358 | additional permissions on material, added by you to a covered work,
359 | for which you have or can give appropriate copyright permission.
360 | 
361 |   Notwithstanding any other provision of this License, for material you
362 | add to a covered work, you may (if authorized by the copyright holders of
363 | that material) supplement the terms of this License with terms:
364 | 
365 |     a) Disclaiming warranty or limiting liability differently from the
366 |     terms of sections 15 and 16 of this License; or
367 | 
368 |     b) Requiring preservation of specified reasonable legal notices or
369 |     author attributions in that material or in the Appropriate Legal
370 |     Notices displayed by works containing it; or
371 | 
372 |     c) Prohibiting misrepresentation of the origin of that material, or
373 |     requiring that modified versions of such material be marked in
374 |     reasonable ways as different from the original version; or
375 | 
376 |     d) Limiting the use for publicity purposes of names of licensors or
377 |     authors of the material; or
378 | 
379 |     e) Declining to grant rights under trademark law for use of some
380 |     trade names, trademarks, or service marks; or
381 | 
382 |     f) Requiring indemnification of licensors and authors of that
383 |     material by anyone who conveys the material (or modified versions of
384 |     it) with contractual assumptions of liability to the recipient, for
385 |     any liability that these contractual assumptions directly impose on
386 |     those licensors and authors.
387 | 
388 |   All other non-permissive additional terms are considered "further
389 | restrictions" within the meaning of section 10.  If the Program as you
390 | received it, or any part of it, contains a notice stating that it is
391 | governed by this License along with a term that is a further
392 | restriction, you may remove that term.  If a license document contains
393 | a further restriction but permits relicensing or conveying under this
394 | License, you may add to a covered work material governed by the terms
395 | of that license document, provided that the further restriction does
396 | not survive such relicensing or conveying.
397 | 
398 |   If you add terms to a covered work in accord with this section, you
399 | must place, in the relevant source files, a statement of the
400 | additional terms that apply to those files, or a notice indicating
401 | where to find the applicable terms.
402 | 
403 |   Additional terms, permissive or non-permissive, may be stated in the
404 | form of a separately written license, or stated as exceptions;
405 | the above requirements apply either way.
406 | 
407 |   8. Termination.
408 | 
409 |   You may not propagate or modify a covered work except as expressly
410 | provided under this License.  Any attempt otherwise to propagate or
411 | modify it is void, and will automatically terminate your rights under
412 | this License (including any patent licenses granted under the third
413 | paragraph of section 11).
414 | 
415 |   However, if you cease all violation of this License, then your
416 | license from a particular copyright holder is reinstated (a)
417 | provisionally, unless and until the copyright holder explicitly and
418 | finally terminates your license, and (b) permanently, if the copyright
419 | holder fails to notify you of the violation by some reasonable means
420 | prior to 60 days after the cessation.
421 | 
422 |   Moreover, your license from a particular copyright holder is
423 | reinstated permanently if the copyright holder notifies you of the
424 | violation by some reasonable means, this is the first time you have
425 | received notice of violation of this License (for any work) from that
426 | copyright holder, and you cure the violation prior to 30 days after
427 | your receipt of the notice.
428 | 
429 |   Termination of your rights under this section does not terminate the
430 | licenses of parties who have received copies or rights from you under
431 | this License.  If your rights have been terminated and not permanently
432 | reinstated, you do not qualify to receive new licenses for the same
433 | material under section 10.
434 | 
435 |   9. Acceptance Not Required for Having Copies.
436 | 
437 |   You are not required to accept this License in order to receive or
438 | run a copy of the Program.  Ancillary propagation of a covered work
439 | occurring solely as a consequence of using peer-to-peer transmission
440 | to receive a copy likewise does not require acceptance.  However,
441 | nothing other than this License grants you permission to propagate or
442 | modify any covered work.  These actions infringe copyright if you do
443 | not accept this License.  Therefore, by modifying or propagating a
444 | covered work, you indicate your acceptance of this License to do so.
445 | 
446 |   10. Automatic Licensing of Downstream Recipients.
447 | 
448 |   Each time you convey a covered work, the recipient automatically
449 | receives a license from the original licensors, to run, modify and
450 | propagate that work, subject to this License.  You are not responsible
451 | for enforcing compliance by third parties with this License.
452 | 
453 |   An "entity transaction" is a transaction transferring control of an
454 | organization, or substantially all assets of one, or subdividing an
455 | organization, or merging organizations.  If propagation of a covered
456 | work results from an entity transaction, each party to that
457 | transaction who receives a copy of the work also receives whatever
458 | licenses to the work the party's predecessor in interest had or could
459 | give under the previous paragraph, plus a right to possession of the
460 | Corresponding Source of the work from the predecessor in interest, if
461 | the predecessor has it or can get it with reasonable efforts.
462 | 
463 |   You may not impose any further restrictions on the exercise of the
464 | rights granted or affirmed under this License.  For example, you may
465 | not impose a license fee, royalty, or other charge for exercise of
466 | rights granted under this License, and you may not initiate litigation
467 | (including a cross-claim or counterclaim in a lawsuit) alleging that
468 | any patent claim is infringed by making, using, selling, offering for
469 | sale, or importing the Program or any portion of it.
470 | 
471 |   11. Patents.
472 | 
473 |   A "contributor" is a copyright holder who authorizes use under this
474 | License of the Program or a work on which the Program is based.  The
475 | work thus licensed is called the contributor's "contributor version".
476 | 
477 |   A contributor's "essential patent claims" are all patent claims
478 | owned or controlled by the contributor, whether already acquired or
479 | hereafter acquired, that would be infringed by some manner, permitted
480 | by this License, of making, using, or selling its contributor version,
481 | but do not include claims that would be infringed only as a
482 | consequence of further modification of the contributor version.  For
483 | purposes of this definition, "control" includes the right to grant
484 | patent sublicenses in a manner consistent with the requirements of
485 | this License.
486 | 
487 |   Each contributor grants you a non-exclusive, worldwide, royalty-free
488 | patent license under the contributor's essential patent claims, to
489 | make, use, sell, offer for sale, import and otherwise run, modify and
490 | propagate the contents of its contributor version.
491 | 
492 |   In the following three paragraphs, a "patent license" is any express
493 | agreement or commitment, however denominated, not to enforce a patent
494 | (such as an express permission to practice a patent or covenant not to
495 | sue for patent infringement).  To "grant" such a patent license to a
496 | party means to make such an agreement or commitment not to enforce a
497 | patent against the party.
498 | 
499 |   If you convey a covered work, knowingly relying on a patent license,
500 | and the Corresponding Source of the work is not available for anyone
501 | to copy, free of charge and under the terms of this License, through a
502 | publicly available network server or other readily accessible means,
503 | then you must either (1) cause the Corresponding Source to be so
504 | available, or (2) arrange to deprive yourself of the benefit of the
505 | patent license for this particular work, or (3) arrange, in a manner
506 | consistent with the requirements of this License, to extend the patent
507 | license to downstream recipients.  "Knowingly relying" means you have
508 | actual knowledge that, but for the patent license, your conveying the
509 | covered work in a country, or your recipient's use of the covered work
510 | in a country, would infringe one or more identifiable patents in that
511 | country that you have reason to believe are valid.
512 | 
513 |   If, pursuant to or in connection with a single transaction or
514 | arrangement, you convey, or propagate by procuring conveyance of, a
515 | covered work, and grant a patent license to some of the parties
516 | receiving the covered work authorizing them to use, propagate, modify
517 | or convey a specific copy of the covered work, then the patent license
518 | you grant is automatically extended to all recipients of the covered
519 | work and works based on it.
520 | 
521 |   A patent license is "discriminatory" if it does not include within
522 | the scope of its coverage, prohibits the exercise of, or is
523 | conditioned on the non-exercise of one or more of the rights that are
524 | specifically granted under this License.  You may not convey a covered
525 | work if you are a party to an arrangement with a third party that is
526 | in the business of distributing software, under which you make payment
527 | to the third party based on the extent of your activity of conveying
528 | the work, and under which the third party grants, to any of the
529 | parties who would receive the covered work from you, a discriminatory
530 | patent license (a) in connection with copies of the covered work
531 | conveyed by you (or copies made from those copies), or (b) primarily
532 | for and in connection with specific products or compilations that
533 | contain the covered work, unless you entered into that arrangement,
534 | or that patent license was granted, prior to 28 March 2007.
535 | 
536 |   Nothing in this License shall be construed as excluding or limiting
537 | any implied license or other defenses to infringement that may
538 | otherwise be available to you under applicable patent law.
539 | 
540 |   12. No Surrender of Others' Freedom.
541 | 
542 |   If conditions are imposed on you (whether by court order, agreement or
543 | otherwise) that contradict the conditions of this License, they do not
544 | excuse you from the conditions of this License.  If you cannot convey a
545 | covered work so as to satisfy simultaneously your obligations under this
546 | License and any other pertinent obligations, then as a consequence you may
547 | not convey it at all.  For example, if you agree to terms that obligate you
548 | to collect a royalty for further conveying from those to whom you convey
549 | the Program, the only way you could satisfy both those terms and this
550 | License would be to refrain entirely from conveying the Program.
551 | 
552 |   13. Use with the GNU Affero General Public License.
553 | 
554 |   Notwithstanding any other provision of this License, you have
555 | permission to link or combine any covered work with a work licensed
556 | under version 3 of the GNU Affero General Public License into a single
557 | combined work, and to convey the resulting work.  The terms of this
558 | License will continue to apply to the part which is the covered work,
559 | but the special requirements of the GNU Affero General Public License,
560 | section 13, concerning interaction through a network will apply to the
561 | combination as such.
562 | 
563 |   14. Revised Versions of this License.
564 | 
565 |   The Free Software Foundation may publish revised and/or new versions of
566 | the GNU General Public License from time to time.  Such new versions will
567 | be similar in spirit to the present version, but may differ in detail to
568 | address new problems or concerns.
569 | 
570 |   Each version is given a distinguishing version number.  If the
571 | Program specifies that a certain numbered version of the GNU General
572 | Public License "or any later version" applies to it, you have the
573 | option of following the terms and conditions either of that numbered
574 | version or of any later version published by the Free Software
575 | Foundation.  If the Program does not specify a version number of the
576 | GNU General Public License, you may choose any version ever published
577 | by the Free Software Foundation.
578 | 
579 |   If the Program specifies that a proxy can decide which future
580 | versions of the GNU General Public License can be used, that proxy's
581 | public statement of acceptance of a version permanently authorizes you
582 | to choose that version for the Program.
583 | 
584 |   Later license versions may give you additional or different
585 | permissions.  However, no additional obligations are imposed on any
586 | author or copyright holder as a result of your choosing to follow a
587 | later version.
588 | 
589 |   15. Disclaimer of Warranty.
590 | 
591 |   THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY
592 | APPLICABLE LAW.  EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT
593 | HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY
594 | OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,
595 | THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
596 | PURPOSE.  THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM
597 | IS WITH YOU.  SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF
598 | ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
599 | 
600 |   16. Limitation of Liability.
601 | 
602 |   IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
603 | WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS
604 | THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY
605 | GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE
606 | USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF
607 | DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD
608 | PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS),
609 | EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
610 | SUCH DAMAGES.
611 | 
612 |   17. Interpretation of Sections 15 and 16.
613 | 
614 |   If the disclaimer of warranty and limitation of liability provided
615 | above cannot be given local legal effect according to their terms,
616 | reviewing courts shall apply local law that most closely approximates
617 | an absolute waiver of all civil liability in connection with the
618 | Program, unless a warranty or assumption of liability accompanies a
619 | copy of the Program in return for a fee.
620 | 
621 |                      END OF TERMS AND CONDITIONS
622 | 
623 |             How to Apply These Terms to Your New Programs
624 | 
625 |   If you develop a new program, and you want it to be of the greatest
626 | possible use to the public, the best way to achieve this is to make it
627 | free software which everyone can redistribute and change under these terms.
628 | 
629 |   To do so, attach the following notices to the program.  It is safest
630 | to attach them to the start of each source file to most effectively
631 | state the exclusion of warranty; and each file should have at least
632 | the "copyright" line and a pointer to where the full notice is found.
633 | 
634 |     <one line to give the program's name and a brief idea of what it does.>
635 |     Copyright (C) <year>  <name of author>
636 | 
637 |     This program is free software: you can redistribute it and/or modify
638 |     it under the terms of the GNU General Public License as published by
639 |     the Free Software Foundation, either version 3 of the License, or
640 |     (at your option) any later version.
641 | 
642 |     This program is distributed in the hope that it will be useful,
643 |     but WITHOUT ANY WARRANTY; without even the implied warranty of
644 |     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
645 |     GNU General Public License for more details.
646 | 
647 |     You should have received a copy of the GNU General Public License
648 |     along with this program.  If not, see <http://www.gnu.org/licenses/>.
649 | 
650 | Also add information on how to contact you by electronic and paper mail.
651 | 
652 |   If the program does terminal interaction, make it output a short
653 | notice like this when it starts in an interactive mode:
654 | 
655 |     <program>  Copyright (C) <year>  <name of author>
656 |     This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
657 |     This is free software, and you are welcome to redistribute it
658 |     under certain conditions; type `show c' for details.
659 | 
660 | The hypothetical commands `show w' and `show c' should show the appropriate
661 | parts of the General Public License.  Of course, your program's commands
662 | might be different; for a GUI interface, you would use an "about box".
663 | 
664 |   You should also get your employer (if you work as a programmer) or school,
665 | if any, to sign a "copyright disclaimer" for the program, if necessary.
666 | For more information on this, and how to apply and follow the GNU GPL, see
667 | <http://www.gnu.org/licenses/>.
668 | 
669 |   The GNU General Public License does not permit incorporating your program
670 | into proprietary programs.  If your program is a subroutine library, you
671 | may consider it more useful to permit linking proprietary applications with
672 | the library.  If this is what you want to do, use the GNU Lesser General
673 | Public License instead of this License.  But first, please read
674 | <http://www.gnu.org/philosophy/why-not-lgpl.html>.
675 | 


--------------------------------------------------------------------------------
/tests/assert/COPYING.LESSER:
--------------------------------------------------------------------------------
  1 | 		   GNU LESSER GENERAL PUBLIC LICENSE
  2 |                        Version 3, 29 June 2007
  3 | 
  4 |  Copyright (C) 2007 Free Software Foundation, Inc. <http://fsf.org/>
  5 |  Everyone is permitted to copy and distribute verbatim copies
  6 |  of this license document, but changing it is not allowed.
  7 | 
  8 | 
  9 |   This version of the GNU Lesser General Public License incorporates
 10 | the terms and conditions of version 3 of the GNU General Public
 11 | License, supplemented by the additional permissions listed below.
 12 | 
 13 |   0. Additional Definitions.
 14 | 
 15 |   As used herein, "this License" refers to version 3 of the GNU Lesser
 16 | General Public License, and the "GNU GPL" refers to version 3 of the GNU
 17 | General Public License.
 18 | 
 19 |   "The Library" refers to a covered work governed by this License,
 20 | other than an Application or a Combined Work as defined below.
 21 | 
 22 |   An "Application" is any work that makes use of an interface provided
 23 | by the Library, but which is not otherwise based on the Library.
 24 | Defining a subclass of a class defined by the Library is deemed a mode
 25 | of using an interface provided by the Library.
 26 | 
 27 |   A "Combined Work" is a work produced by combining or linking an
 28 | Application with the Library.  The particular version of the Library
 29 | with which the Combined Work was made is also called the "Linked
 30 | Version".
 31 | 
 32 |   The "Minimal Corresponding Source" for a Combined Work means the
 33 | Corresponding Source for the Combined Work, excluding any source code
 34 | for portions of the Combined Work that, considered in isolation, are
 35 | based on the Application, and not on the Linked Version.
 36 | 
 37 |   The "Corresponding Application Code" for a Combined Work means the
 38 | object code and/or source code for the Application, including any data
 39 | and utility programs needed for reproducing the Combined Work from the
 40 | Application, but excluding the System Libraries of the Combined Work.
 41 | 
 42 |   1. Exception to Section 3 of the GNU GPL.
 43 | 
 44 |   You may convey a covered work under sections 3 and 4 of this License
 45 | without being bound by section 3 of the GNU GPL.
 46 | 
 47 |   2. Conveying Modified Versions.
 48 | 
 49 |   If you modify a copy of the Library, and, in your modifications, a
 50 | facility refers to a function or data to be supplied by an Application
 51 | that uses the facility (other than as an argument passed when the
 52 | facility is invoked), then you may convey a copy of the modified
 53 | version:
 54 | 
 55 |    a) under this License, provided that you make a good faith effort to
 56 |    ensure that, in the event an Application does not supply the
 57 |    function or data, the facility still operates, and performs
 58 |    whatever part of its purpose remains meaningful, or
 59 | 
 60 |    b) under the GNU GPL, with none of the additional permissions of
 61 |    this License applicable to that copy.
 62 | 
 63 |   3. Object Code Incorporating Material from Library Header Files.
 64 | 
 65 |   The object code form of an Application may incorporate material from
 66 | a header file that is part of the Library.  You may convey such object
 67 | code under terms of your choice, provided that, if the incorporated
 68 | material is not limited to numerical parameters, data structure
 69 | layouts and accessors, or small macros, inline functions and templates
 70 | (ten or fewer lines in length), you do both of the following:
 71 | 
 72 |    a) Give prominent notice with each copy of the object code that the
 73 |    Library is used in it and that the Library and its use are
 74 |    covered by this License.
 75 | 
 76 |    b) Accompany the object code with a copy of the GNU GPL and this license
 77 |    document.
 78 | 
 79 |   4. Combined Works.
 80 | 
 81 |   You may convey a Combined Work under terms of your choice that,
 82 | taken together, effectively do not restrict modification of the
 83 | portions of the Library contained in the Combined Work and reverse
 84 | engineering for debugging such modifications, if you also do each of
 85 | the following:
 86 | 
 87 |    a) Give prominent notice with each copy of the Combined Work that
 88 |    the Library is used in it and that the Library and its use are
 89 |    covered by this License.
 90 | 
 91 |    b) Accompany the Combined Work with a copy of the GNU GPL and this license
 92 |    document.
 93 | 
 94 |    c) For a Combined Work that displays copyright notices during
 95 |    execution, include the copyright notice for the Library among
 96 |    these notices, as well as a reference directing the user to the
 97 |    copies of the GNU GPL and this license document.
 98 | 
 99 |    d) Do one of the following:
100 | 
101 |        0) Convey the Minimal Corresponding Source under the terms of this
102 |        License, and the Corresponding Application Code in a form
103 |        suitable for, and under terms that permit, the user to
104 |        recombine or relink the Application with a modified version of
105 |        the Linked Version to produce a modified Combined Work, in the
106 |        manner specified by section 6 of the GNU GPL for conveying
107 |        Corresponding Source.
108 | 
109 |        1) Use a suitable shared library mechanism for linking with the
110 |        Library.  A suitable mechanism is one that (a) uses at run time
111 |        a copy of the Library already present on the user's computer
112 |        system, and (b) will operate properly with a modified version
113 |        of the Library that is interface-compatible with the Linked
114 |        Version.
115 | 
116 |    e) Provide Installation Information, but only if you would otherwise
117 |    be required to provide such information under section 6 of the
118 |    GNU GPL, and only to the extent that such information is
119 |    necessary to install and execute a modified version of the
120 |    Combined Work produced by recombining or relinking the
121 |    Application with a modified version of the Linked Version. (If
122 |    you use option 4d0, the Installation Information must accompany
123 |    the Minimal Corresponding Source and Corresponding Application
124 |    Code. If you use option 4d1, you must provide the Installation
125 |    Information in the manner specified by section 6 of the GNU GPL
126 |    for conveying Corresponding Source.)
127 | 
128 |   5. Combined Libraries.
129 | 
130 |   You may place library facilities that are a work based on the
131 | Library side by side in a single library together with other library
132 | facilities that are not Applications and are not covered by this
133 | License, and convey such a combined library under terms of your
134 | choice, if you do both of the following:
135 | 
136 |    a) Accompany the combined library with a copy of the same work based
137 |    on the Library, uncombined with any other library facilities,
138 |    conveyed under the terms of this License.
139 | 
140 |    b) Give prominent notice with the combined library that part of it
141 |    is a work based on the Library, and explaining where to find the
142 |    accompanying uncombined form of the same work.
143 | 
144 |   6. Revised Versions of the GNU Lesser General Public License.
145 | 
146 |   The Free Software Foundation may publish revised and/or new versions
147 | of the GNU Lesser General Public License from time to time. Such new
148 | versions will be similar in spirit to the present version, but may
149 | differ in detail to address new problems or concerns.
150 | 
151 |   Each version is given a distinguishing version number. If the
152 | Library as you received it specifies that a certain numbered version
153 | of the GNU Lesser General Public License "or any later version"
154 | applies to it, you have the option of following the terms and
155 | conditions either of that published version or of any later version
156 | published by the Free Software Foundation. If the Library as you
157 | received it does not specify a version number of the GNU Lesser
158 | General Public License, you may choose any version of the GNU Lesser
159 | General Public License ever published by the Free Software Foundation.
160 | 
161 |   If the Library as you received it specifies that a proxy can decide
162 | whether future versions of the GNU Lesser General Public License shall
163 | apply, that proxy's public statement of acceptance of any version is
164 | permanent authorization for you to choose that version for the
165 | Library.
166 | 


--------------------------------------------------------------------------------
/tests/assert/README.rst:
--------------------------------------------------------------------------------
  1 | ###########
  2 |  assert.sh
  3 | ###########
  4 | 
  5 | **assert.sh** is test-driven development in the Bourne again shell.
  6 | 
  7 | :Version: 1.0.2
  8 | :Author: Robert Lehmann
  9 | :License: LGPLv3
 10 | :Requirements: `bc -- an arbitrary precision calculator language
 11 |                <http://www.gnu.org/software/bc/manual/bc.html>`_
 12 |                (installed on all POSIX-compliant systems)
 13 | 
 14 | .. image:: https://travis-ci.org/lehmannro/assert.sh.svg?branch=master
 15 |    :target: https://travis-ci.org/lehmannro/assert.sh
 16 | 
 17 | Example
 18 | =======
 19 | 
 20 | ::
 21 | 
 22 |   . assert.sh
 23 | 
 24 |   # `echo test` is expected to write "test" on stdout
 25 |   assert "echo test" "test"
 26 |   # `seq 3` is expected to print "1", "2" and "3" on different lines
 27 |   assert "seq 3" "1\n2\n3"
 28 |   # exit code of `true` is expected to be 0
 29 |   assert_raises "true"
 30 |   # exit code of `false` is expected to be 1
 31 |   assert_raises "false" 1
 32 |   # end of test suite
 33 |   assert_end examples
 34 | 
 35 | If you had written the above snippet into ``tests.sh`` you could invoke it
 36 | without any extra hassle::
 37 | 
 38 |   $ ./tests.sh
 39 |   all 4 examples tests passed in 0.014s.
 40 | 
 41 | Watch out to have ``tests.sh`` executable (``chmod +x tests.sh``), otherwise
 42 | you need to invoke it with ``bash tests.sh``
 43 | 
 44 | Now, we will add a failing test case to our suite::
 45 | 
 46 |   # expect `exit 127` to terminate with code 128
 47 |   assert_raises "exit 127" 128
 48 | 
 49 | Remember to insert test cases before ``assert_end`` (or write another
 50 | ``assert_end`` to the end of your file). Otherwise test statistics will be
 51 | omitted.
 52 | 
 53 | When run, the output is::
 54 | 
 55 |   test #5 "exit 127" failed:
 56 |           program terminated with code 127 instead of 128
 57 |   1 of 5 examples tests failed in 0.019s.
 58 | 
 59 | 
 60 | Features
 61 | ========
 62 | 
 63 | + lightweight interface: ``assert`` and ``assert_raises`` *only*
 64 | + minimal setup -- source ``assert.sh`` and you're done
 65 | + test grouping in individual suites
 66 | + time benchmarks with real-time display of test progress
 67 | + run all tests, stop on first failure, or collect numbers only
 68 | 
 69 | Use case
 70 | ========
 71 | 
 72 | You wrote an application. Following sane development practices, you want to
 73 | protect yourself against introducing errors with a test suite. Even though most
 74 | languages have excellent testing tools, modifying process state (input ``stdin``,
 75 | command line arguments ``argv``, environment variables) is awkard in most
 76 | languages. The shell was made to do just that, so why don't run the tests in
 77 | your shell?
 78 | 
 79 | Reference
 80 | =========
 81 | 
 82 | + ``assert <command> [stdout] [stdin]``
 83 | 
 84 |   Check for an expected output when running your command. `stdout` supports all
 85 |   control sequences printf(1) interprets, eg. ``\n`` for a newline. The default
 86 |   `stdout` is assumed to be empty.
 87 | 
 88 | + ``assert_raises <command> [exitcode] [stdin]``
 89 | 
 90 |   Verify `command` terminated with the expected status code. The default
 91 |   `exitcode` is assumed to be 0.
 92 | 
 93 | + ``assert_end [suite]``
 94 | 
 95 |   Finalize a test suite and print statistics.
 96 | 
 97 | Command line options
 98 | --------------------
 99 | 
100 | See ``assert.sh --help`` for command line options on test runners.
101 | 
102 |   -v, --verbose    Generate real-time output for every individual test run.
103 |   -x, --stop       Stop running tests after the first failure.
104 |                    (Default: run all tests.)
105 |   -i, --invariant  Do not measure runtime for suites. Useful mainly to parse
106 |                    test output.
107 |   -d, --discover   Collect test suites and number of tests only; don't run any
108 |                    tests.
109 |   -c, --continue   Do not modify exit code depending on overall suite status.
110 |   -h               Show brief usage information and exit.
111 |   --help           Show usage manual and exit.
112 | 
113 | Environment variables
114 | ---------------------
115 | 
116 | ================= ====================
117 | variable          corresponding option
118 | ================= ====================
119 | ``$DEBUG``        ``--verbose``
120 | ``$STOP``         ``--stop``
121 | ``$INVARIANT``    ``--invariant``
122 | ``$DISCOVERONLY`` ``--discover-only``
123 | ``$CONTINUE``     ``--continue``
124 | ================= ====================
125 | 
126 | Changelog
127 | =========
128 | 
129 | master
130 |   * Added support for ``set -e`` environments (closes `#6
131 |     <https://github.com/lehmannro/assert.sh/pull/6>`_, thanks David Schoen.)
132 |   * Modified exit code automatically in case *any* test failed in the suite.
133 |   * Added ``--continue`` flag to avoid tinkering with the exit code.
134 | 
135 | 1.0.2
136 |   * Fixed Mac OS compatibility (closes `#3
137 |     <https://github.com/lehmannro/assert.sh/issues/3>`_.)
138 | 
139 | 1.0.1
140 |   * Added support for ``set -u`` environments (closes `#1
141 |     <https://github.com/lehmannro/assert.sh/issues/1>`_.)
142 |   * Fixed several leaks of stderr.
143 |   * Fixed propagation of options to nested test suites.
144 | 
145 | Related projects
146 | ================
147 | 
148 | `ShUnit`__
149 |   ShUnit is a testing framework of the xUnit family for Bourne derived shells.
150 |   It is quite feature-rich but requires a whole lot of boilerplate to write a
151 |   basic test suite.  *assert.sh* aims to be lightweight and easy to setup.
152 | 
153 | __ http://shunit.sourceforge.net/
154 | 
155 | `shUnit2`__
156 |   shUnit2 is a modern xUnit-style testing framework. It comes with a bunch of
157 |   magic to remove unneccessary verbosity. It requires extra care when crafting
158 |   test cases with many subprocess invocations as you have to fall back to shell
159 |   features to fetch results.  *assert.sh* wraps this functionality out of the
160 |   box.
161 | 
162 | __ http://code.google.com/p/shunit2/
163 | 
164 | `tap-functions`__
165 |   A Test Anything Protocol (TAP) producer with an inherently natural-language-
166 |   style API.  Unfortunately it's only of draft quality and decouples the test
167 |   runner from analysis, which does not allow for *assert.sh* features such as
168 |   ``--collect-only`` and ``--stop``.
169 | 
170 | __ http://testanything.org/wiki/index.php/Tap-functions
171 | 
172 | `stub.sh`__
173 |   Helpers to fake binaries and bash builtins. It supports mocking features such
174 |   as expecting a certain number of invocations and plays well with *assert.sh*.
175 | 
176 | __ https://github.com/jimeh/stub.sh
177 | 


--------------------------------------------------------------------------------
/tests/assert/assert.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | # assert.sh 1.0 - bash unit testing framework
  3 | # Copyright (C) 2009, 2010, 2011, 2012 Robert Lehmann
  4 | #
  5 | # http://github.com/lehmannro/assert.sh
  6 | #
  7 | # This program is free software: you can redistribute it and/or modify
  8 | # it under the terms of the GNU Lesser General Public License as published
  9 | # by the Free Software Foundation, either version 3 of the License, or
 10 | # (at your option) any later version.
 11 | #
 12 | # This program is distributed in the hope that it will be useful,
 13 | # but WITHOUT ANY WARRANTY; without even the implied warranty of
 14 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 15 | # GNU Lesser General Public License for more details.
 16 | #
 17 | # You should have received a copy of the GNU Lesser General Public License
 18 | # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 19 | 
 20 | export DISCOVERONLY=${DISCOVERONLY:-}
 21 | export DEBUG=${DEBUG:-}
 22 | export STOP=${STOP:-}
 23 | export INVARIANT=${INVARIANT:-}
 24 | export CONTINUE=${CONTINUE:-}
 25 | 
 26 | args="$(getopt -n "$0" -l \
 27 |     verbose,help,stop,discover,invariant,continue vhxdic $*)" \
 28 | || exit -1
 29 | for arg in $args; do
 30 |     case "$arg" in
 31 |         -h)
 32 |             echo "$0 [-vxidc]" \
 33 |                 "[--verbose] [--stop] [--invariant] [--discover] [--continue]"
 34 |             echo "`sed 's/./ /g' <<< "$0"` [-h] [--help]"
 35 |             exit 0;;
 36 |         --help)
 37 |             cat <<EOF
 38 | Usage: $0 [options]
 39 | Language-agnostic unit tests for subprocesses.
 40 | 
 41 | Options:
 42 |   -v, --verbose    generate output for every individual test case
 43 |   -x, --stop       stop running tests after the first failure
 44 |   -i, --invariant  do not measure timings to remain invariant between runs
 45 |   -d, --discover   collect test suites only, do not run any tests
 46 |   -c, --continue   do not modify exit code to test suite status
 47 |   -h               show brief usage information and exit
 48 |   --help           show this help message and exit
 49 | EOF
 50 |             exit 0;;
 51 |         -v|--verbose)
 52 |             DEBUG=1;;
 53 |         -x|--stop)
 54 |             STOP=1;;
 55 |         -i|--invariant)
 56 |             INVARIANT=1;;
 57 |         -d|--discover)
 58 |             DISCOVERONLY=1;;
 59 |         -c|--continue)
 60 |             CONTINUE=1;;
 61 |     esac
 62 | done
 63 | 
 64 | printf -v _indent "\n\t" # local format helper
 65 | 
 66 | _assert_reset() {
 67 |     tests_ran=0
 68 |     tests_failed=0
 69 |     tests_errors=()
 70 |     tests_starttime="$(date +%s.%N)" # seconds_since_epoch.nanoseconds
 71 | }
 72 | 
 73 | assert_end() {
 74 |     # assert_end [suite ..]
 75 |     tests_endtime="$(date +%s.%N)"
 76 |     tests="$tests_ran ${*:+$* }tests"
 77 |     [[ -n "$DISCOVERONLY" ]] && echo "collected $tests." && _assert_reset && return
 78 |     [[ -n "$DEBUG" ]] && echo
 79 |     [[ -z "$INVARIANT" ]] && report_time=" in $(bc \
 80 |         <<< "${tests_endtime%.N} - ${tests_starttime%.N}" \
 81 |         | sed -e 's/\.\([0-9]\{0,3\}\)[0-9]*/.\1/' -e 's/^\./0./')s" \
 82 |         || report_time=
 83 | 
 84 |     if [[ "$tests_failed" -eq 0 ]]; then
 85 |         echo "all $tests passed$report_time."
 86 |     else
 87 |         for error in "${tests_errors[@]}"; do echo "$error"; done
 88 |         echo "$tests_failed of $tests failed$report_time."
 89 |     fi
 90 |     tests_failed_previous=$tests_failed
 91 |     [[ $tests_failed -gt 0 ]] && tests_suite_status=1
 92 |     _assert_reset
 93 |     return $tests_failed_previous
 94 | }
 95 | 
 96 | assert() {
 97 |     # assert <command> <expected stdout> [stdin]
 98 |     (( tests_ran++ )) || :
 99 |     [[ -n "$DISCOVERONLY" ]] && return || true
100 |     # printf required for formatting
101 |     printf -v expected "x${2:-}" # x required to overwrite older results
102 |     result="$(eval 2>/dev/null $1 <<< ${3:-})" || true
103 |     # Note: $expected is already decorated
104 |     if [[ "x$result" == "$expected" ]]; then
105 |         [[ -n "$DEBUG" ]] && echo -n . || true
106 |         return
107 |     fi
108 |     result="$(sed -e :a -e '$!N;s/\n/\\n/;ta' <<< "$result")"
109 |     [[ -z "$result" ]] && result="nothing" || result="\"$result\""
110 |     [[ -z "$2" ]] && expected="nothing" || expected="\"$2\""
111 |     _assert_fail "expected $expected${_indent}got $result" "$1" "$3"
112 | }
113 | 
114 | assert_raises() {
115 |     # assert_raises <command> <expected code> [stdin]
116 |     (( tests_ran++ )) || :
117 |     [[ -n "$DISCOVERONLY" ]] && return || true
118 |     status=0
119 |     (eval $1 <<< ${3:-}) > /dev/null 2>&1 || status=$?
120 |     expected=${2:-0}
121 |     if [[ "$status" -eq "$expected" ]]; then
122 |         [[ -n "$DEBUG" ]] && echo -n . || true
123 |         return
124 |     fi
125 |     _assert_fail "program terminated with code $status instead of $expected" "$1" "$3"
126 | }
127 | 
128 | _assert_fail() {
129 |     # _assert_fail <failure> <command> <stdin>
130 |     [[ -n "$DEBUG" ]] && echo -n X
131 |     report="test #$tests_ran \"$2${3:+ <<< $3}\" failed:${_indent}$1"
132 |     if [[ -n "$STOP" ]]; then
133 |         [[ -n "$DEBUG" ]] && echo
134 |         echo "$report"
135 |         exit 1
136 |     fi
137 |     tests_errors[$tests_failed]="$report"
138 |     (( tests_failed++ )) || :
139 | }
140 | 
141 | _assert_reset
142 | : ${tests_suite_status:=0}  # remember if any of the tests failed so far
143 | _assert_cleanup() {
144 |     local status=$?
145 |     # modify exit code if it's not already non-zero
146 |     [[ $status -eq 0 && -z $CONTINUE ]] && exit $tests_suite_status
147 | }
148 | trap _assert_cleanup EXIT
149 | 


--------------------------------------------------------------------------------
/tests/assert/tests.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | 
  3 | set -e
  4 | 
  5 | . assert.sh
  6 | 
  7 | assert "echo"                           # no output expected
  8 | assert "echo foo" "foo"                 # output expected
  9 | assert "cat" "bar" "bar"                # output expected if input's given
 10 | assert_raises "true" 0 ""               # status code expected
 11 | assert_raises "exit 127" 127 ""         # status code expected
 12 | assert "head -1 < $0" "#!/bin/bash"     # redirections
 13 | assert "seq 2" "1\n2"                   # multi-line output expected
 14 | assert_raises 'read a; exit $a' 42 "42" # variables still work
 15 | assert "echo 1;
 16 | echo 2      # ^" "1\n2"                 # semicolon required!
 17 | assert_end demo
 18 | 
 19 | _clean() {
 20 |     _assert_reset # reset state
 21 |     DEBUG= STOP= INVARIANT=1 DISCOVERONLY= CONTINUE= # reset flags
 22 |     eval $* # read new flags
 23 | }
 24 | 
 25 | # clean output
 26 | assert "_clean; assert true; assert_end" \
 27 | "all 1 tests passed."
 28 | # error reports on failure
 29 | assert "_clean; assert 'seq 1'; assert_end" \
 30 | 'test #1 "seq 1" failed:\n\texpected nothing\n\tgot "1"\n1 of 1 tests failed.'
 31 | assert "_clean; assert true '1'; assert_end" \
 32 | 'test #1 "true" failed:\n\texpected "1"\n\tgot nothing\n1 of 1 tests failed.'
 33 | assert "_clean; assert 'true' 'foo' 'bar'; assert_end" \
 34 | 'test #1 "true <<< bar" failed:\n\texpected "foo"\n\tgot nothing\n1 of 1 tests failed.'
 35 | # debug output (-v)
 36 | assert "_clean DEBUG=1; assert true; assert_end" \
 37 | ".\nall 1 tests passed."
 38 | assert "_clean DEBUG=1; assert_raises false; assert_end" \
 39 | 'X\ntest #1 "false" failed:\n\tprogram terminated with code 1 instead of 0
 40 | 1 of 1 tests failed.'
 41 | # collect tests only (-d)
 42 | assert "_clean DISCOVERONLY=1; assert true; assert false; assert_end" \
 43 | "collected 2 tests."
 44 | # stop immediately on failure (-x)
 45 | assert "_clean STOP=1; assert_raises false; assert_end" \
 46 | 'test #1 "false" failed:\n\tprogram terminated with code 1 instead of 0'
 47 | # runtime statistics (omission of -i)
 48 | assert_raises "_clean INVARIANT=;
 49 | assert_end | egrep 'all 0 tests passed in ([0-9]|[0-9].[0-9]{3})s'"
 50 | assert_end output
 51 | 
 52 | # assert_end exit code is the number of failures
 53 | assert_raises "_clean; assert_raises false; assert_raises false; assert_end" 2
 54 | # stderr should NOT leak if ignored
 55 | assert "_clean; assert less" ""
 56 | # stderr should be redirectable though
 57 | assert '_clean; assert "less 2>&1" "Missing filename (\"less --help\" for help)"'
 58 | # bash failures behave just like stderr
 59 | assert "_clean; assert ___invalid" ""
 60 | # test suites can be nested and settings are inherited
 61 | # (ie. we don't need to invoke the inner suite with the very same options,
 62 | # namely --invariant)
 63 | assert "_clean; bash -c '
 64 | . assert.sh;
 65 | assert_raises true; assert_end outer;
 66 | bash -c \". assert.sh; assert_raises true; assert_end inner\"
 67 | ' '<exec>' --invariant" "all 1 outer tests passed.
 68 | all 1 inner tests passed."  # <exec> is $0
 69 | # set the correct exit status
 70 | assert_raises "_clean; bash -c \"
 71 | . assert.sh; assert true ''; assert_end one;
 72 | assert 'echo bar' 'bar'; assert_end two\"" 0
 73 | assert_raises "_clean; bash -c \"
 74 | . assert.sh; assert true 'foo'; assert_end one;
 75 | assert 'echo bar' 'bar'; assert_end two\"" 1
 76 | # ..but do not override it
 77 | assert_raises "_clean; bash -c \"
 78 | . assert.sh; assert true 'foo'; assert_end one;
 79 | assert 'echo bar' 'bar'; assert_end two; exit 3\"" 3
 80 | # environment variables do not leak
 81 | assert "_clean; x=0; assert 'x=1'; assert_raises 'x=2'; echo \$x" 0
 82 | assert "_clean; x=0; assert 'export x=1'; assert_raises 'export x=2';
 83 | echo \$x" 0
 84 | assert_end interaction
 85 | 
 86 | # commit: fixed output to report all errors, not just the first
 87 | assert "_clean;
 88 | assert_raises false; assert_raises false;
 89 | assert_end" 'test #1 "false" failed:
 90 | \tprogram terminated with code 1 instead of 0
 91 | test #2 "false" failed:
 92 | \tprogram terminated with code 1 instead of 0
 93 | 2 of 2 tests failed.'
 94 | # commit: added default value for assert_raises
 95 | assert_raises "_clean; assert_raises true; assert_end" 0
 96 | # commit: fixed verbose failure reports in assert_raises
 97 | assert "_clean DEBUG=1; assert_raises false; assert_end" 'X
 98 | test #1 "false" failed:
 99 | \tprogram terminated with code 1 instead of 0
100 | 1 of 1 tests failed.'
101 | # commit: redirected assert_raises output
102 | assert "_clean; assert_raises 'echo 1'; assert_end" "all 1 tests passed."
103 | # commit: fixed --discover to reset properly
104 | assert "_clean DISCOVERONLY=1;
105 | assert 1; assert 1; assert_end;
106 | assert 1; assert_end;" "collected 2 tests.\ncollected 1 tests."
107 | # commit: stopped errors from leaking into other test suites
108 | assert "_clean;
109 | assert_raises false; assert_raises false; assert_end;
110 | assert_raises false; assert_end" 'test #1 "false" failed:
111 | \tprogram terminated with code 1 instead of 0
112 | test #2 "false" failed:
113 | \tprogram terminated with code 1 instead of 0
114 | 2 of 2 tests failed.
115 | test #1 "false" failed:
116 | \tprogram terminated with code 1 instead of 0
117 | 1 of 1 tests failed.'
118 | # issue 1: assert.sh: line 87: DISCOVERONLY: unbound variable
119 | assert "_clean; set -u; assert_raises true; assert true; assert_end" \
120 | "all 2 tests passed."
121 | assert_end regression
122 | 


--------------------------------------------------------------------------------
/tests/shellcheck/INSTALL:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | # https://github.com/koalaman/shellcheck
 4 | 
 5 | sudo yum install cabal-install
 6 | 
 7 | # Let cabal update itself, incase your distro is outdated
 8 | sudo cabal update
 9 | cabel install cabal-install
10 | 
11 | # Clone shellcheck and build
12 | git clone https://github.com/koalaman/shellcheck.git
13 | cd shellcheck
14 | 
15 | # With cabel installed, cd to source direstory and:
16 | sudo cabal install
17 | 
18 | # Add cabal directory to bash path
19 | source='export PATH=$HOME/.cabal/bin:$PATH'
20 | file=~/.bash_profile
21 | if ! grep -r -q "$source" "${file}"; then
22 |     touch $file
23 |     echo "$source" >> $file
24 | fi
25 | 
26 | # You now need to manually source .bash_profile
27 | echo "You now need to manually source .bash_profile"
28 | echo "source ~/.bash_profile"
29 | 
30 | # Then verify PATH is set correctly
31 | echo
32 | echo
33 | echo "Then verify PATH is set correctly"
34 | echo "which shellcheck"
35 | echo "~/.cabal/bin/shellcheck"
36 | 
37 | 
38 | # To run the unit test suite:
39 | #
40 | # cabal configure --enable-tests
41 | # cabal build
42 | # cabal test
43 | 


--------------------------------------------------------------------------------
/tests/template-flavors/NOTES:
--------------------------------------------------------------------------------
 1 | TODO:
 2 | -----
 3 | 
 4 | - Move template flavors into own directories so scripts_dir wont be polluted
 5 |   ../scripts_flavors/wheezy-whonix-gateway/
 6 | 
 7 |   ../${TEMPLATE_FLAVOR_DIR}/${TEMPLATE_FLAVOR_PREFIX}[-]whonix-gateway/
 8 | 
 9 | # ------------------------------------------------------------------------------
10 | # - Make flavor directory have $DIST in name - to prevent it from bwing built
11 | #   incorrectly
12 | # - Configuration option to choose alternate location of flavor directory 
13 | # - Configuration option to use custom $DIST- prefix  (for generic flavors)
14 | # - Take into consideration that multiple templates will build at once so we 
15 | #   need to set a custom prefix like this:
16 | # ------------------------------------------------------------------------------
17 | 
18 | # - Would use the prefix of 'debian' which would allow same script to be used for
19 | #   all 'debian' based builds, or it could have been set as 
20 | #   'wheezy+whonix-gateway;' to use a script destined for any distro
21 | TEMPLATE_FLAVOR_PREFIX = wheezy+whonix-gateway;debian \
22 |                          wheezy+whonix-workstation;debian
23 | 
24 | # Alternate location for template flavor scripts
25 | TEMPLATE_FLAVOR_DIR = wheezy+whonix-gateway;/home/user/whonix/gateway \
26 |                       wheezy+whonix-workstation;/home/usr/whonix/workstation
27 | 
28 | - allow access to multiple flavor options .. say gnome for whonix-workstation
29 |   wheezy+whonix-workstation+gnome+more
30 | 
31 | # ------------------------------------------------------------------------------
32 | # - TEMPLATE_OPTIONS will be iterated and each entry treated as if it was its 
33 | #   own flavor, but to override you must include base flavor name:
34 | # ------------------------------------------------------------------------------
35 | 
36 | # Would use same FLAVOR for all distros for whonix-workstation+gnome
37 | TEMPLATE_FLAVOR_PREFIX = wheezy+whonix-workstation+gnome;
38 | 
39 | # - Template Flavors are in /home/user/whoix/gnome for wheezy+whonix-workstation+gnome
40 | # - DISTS_VM is still lists all OPTIONAL flavors though
41 | TEMPLATE_FLAVOR_DIR = wheezy+whonix-workstation+gnome;/home/usr/whonix/gnome
42 | 
43 | 


--------------------------------------------------------------------------------
/tests/template-flavors/another_location/whonix gw/packages.list:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/another_location/whonix gw/packages.list


--------------------------------------------------------------------------------
/tests/template-flavors/another_location/whonix gw/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/another_location/whonix-gw/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/another_location/whonix_gnome/packages.list:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/another_location/whonix_gnome/packages.list


--------------------------------------------------------------------------------
/tests/template-flavors/another_location/whonix_gnome/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/debian+whonix-gateway+gnome/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/debian+whonix-gateway/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/packages.list:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/packages.list


--------------------------------------------------------------------------------
/tests/template-flavors/packages_wheezy.list:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/packages_wheezy.list


--------------------------------------------------------------------------------
/tests/template-flavors/proxy/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/test.sh:
--------------------------------------------------------------------------------
  1 | #!/bin/bash
  2 | # vim: set ts=4 sw=4 sts=4 et :
  3 | 
  4 | VERBOSE=1
  5 | 
  6 | pushd ../..
  7 | ROOT_DIR=$(readlink -m .)
  8 | 
  9 | # ------------------------------------------------------------------------------
 10 | # Source external scripts
 11 | # ------------------------------------------------------------------------------
 12 | . ./functions.sh
 13 | . ./tests/assert/assert.sh
 14 | 
 15 | set +e
 16 | 
 17 | header() {
 18 |     echo
 19 |     echo
 20 |     info "------------------------------------------------------------------------------"
 21 | 
 22 |     IFS= read -r title; info "${title}"
 23 |     while IFS= read -r line; do 
 24 |         echo "${bold}${magenta}${line}${reset}"
 25 |     done; 
 26 | 
 27 |     echo
 28 |     values SCRIPTSDIR
 29 |     values DIST
 30 |     values DISTS_VM
 31 |     values TEMPLATE_FLAVOR
 32 |     values TEMPLATE_FLAVOR_PREFIX
 33 |     values TEMPLATE_FLAVOR_DIR
 34 |     values TEMPLATE_OPTIONS
 35 |     echo
 36 | }
 37 | 
 38 | declare -A VALUES=(
 39 |     [SCRIPTSDIR]="" 
 40 |     [DIST]="" 
 41 |     [DISTS_VM]="" 
 42 |     [TEMPLATE_FLAVOR]=""
 43 |     [TEMPLATE_FLAVOR_DIR]="" 
 44 |     [TEMPLATE_FLAVOR_PREFIX]="" 
 45 |     [TEMPLATE_OPTIONS]=""
 46 | )
 47 | 
 48 | values() {
 49 |     label=${1}
 50 |     value="${1}[@]"
 51 |     value="${!value}"
 52 | 
 53 |     if [ "${VALUES[$label]}" == "${value}" ]; then
 54 |         printf "    ${bold}${magenta}%-22s = ${value}${reset}\n" "${label}" || :
 55 |     else
 56 |         printf "    ${bold}${black}%-22s = ${value}${reset}\n" "${label}" || :
 57 |     fi
 58 |     VALUES[$label]="${value}"
 59 | }
 60 | 
 61 | info() {
 62 |     output "${bold}${blue}${1}${reset}" || :
 63 | }
 64 | 
 65 | debug() {
 66 |     output "${magenta}${1}${reset}" || :
 67 | }
 68 | 
 69 | assertTest(){
 70 |     TEST=True
 71 |     printf "${bold}${red}"
 72 |     assert "$1" "$2"
 73 |     printf "${reset}"
 74 |     unset TEST
 75 | }
 76 | 
 77 | assertEnd() {
 78 |     printf "${bold}${red}"
 79 |     [[ -n "$1" ]] && assert_end "$1" || assert_end
 80 |     printf "${reset}"
 81 | }
 82 | 
 83 | # ------------------------------------------------------------------------------
 84 | # 1. With TEMPLATE_FLAVOR
 85 | # ------------------------------------------------------------------------------
 86 | SCRIPTSDIR="tests/template-flavors"
 87 | DIST="wheezy"
 88 | DISTS_VM=""
 89 | TEMPLATE_FLAVOR="whonix-gateway"
 90 | TEMPLATE_FLAVOR_PREFIX=""
 91 | TEMPLATE_FLAVOR_DIR=""
 92 | TEMPLATE_OPTIONS=""
 93 | 
 94 | header <<EOF
 95 |  1. With TEMPLATE_FLAVOR
 96 | EOF
 97 | buildStep "$0" "pre"
 98 | assertTest "buildStep $0 pre" "tests/template-flavors/wheezy+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/test_pre.sh"
 99 | assertEnd
100 | 
101 | 
102 | # ------------------------------------------------------------------------------
103 | # 2. Without TEMPLATE_FLAVOR 
104 | # ------------------------------------------------------------------------------
105 | SCRIPTSDIR="tests/template-flavors"
106 | DIST="wheezy"
107 | DISTS_VM=""
108 | TEMPLATE_FLAVOR=""
109 | TEMPLATE_FLAVOR_PREFIX=""
110 | TEMPLATE_FLAVOR_DIR=""
111 | TEMPLATE_OPTIONS=""
112 | 
113 | header <<EOF
114 |  2. Without TEMPLATE_FLAVOR 
115 | EOF
116 | buildStep "$0" "pre"
117 | assertTest "buildStep $0 pre" "tests/template-flavors/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh"
118 | assertEnd
119 | 
120 | 
121 | # ------------------------------------------------------------------------------
122 | # 3. Template Options
123 | # ------------------------------------------------------------------------------
124 | SCRIPTSDIR="tests/template-flavors"
125 | DIST="wheezy"
126 | DISTS_VM=""
127 | TEMPLATE_FLAVOR="whonix-gateway"
128 | TEMPLATE_FLAVOR_PREFIX=""
129 | TEMPLATE_FLAVOR_DIR=""
130 | TEMPLATE_OPTIONS=('gnome' 'kde')
131 | 
132 | header <<EOF
133 |  3. Template Options
134 |     Options get seperated into TEMPLATE_OPTIONS seperated by spaces
135 | EOF
136 | buildStep "$0" "pre"
137 | debug "Not supposed to find wheezy+whonix-gateway+kde"
138 | assertTest "buildStep $0 pre" "tests/template-flavors/wheezy+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/wheezy+whonix-gateway+gnome/test_pre.sh\ntests/template-flavors/test_pre.sh"
139 | assertEnd
140 | 
141 | 
142 | # ------------------------------------------------------------------------------
143 | # 4. Template Options with custom prefix
144 | # ------------------------------------------------------------------------------
145 | SCRIPTSDIR="tests/template-flavors"
146 | DIST="wheezy"
147 | DISTS_VM=""
148 | TEMPLATE_FLAVOR="whonix-gateway"
149 | TEMPLATE_FLAVOR_DIR=""
150 | TEMPLATE_OPTIONS=('gnome' 'kde')
151 | TEMPLATE_FLAVOR_PREFIX=( 
152 |     'wheezy+whonix-gateway:debian+'
153 |     'wheezy+whonix-workstation:debian+'
154 | )
155 | header <<EOF
156 |  4. Template Options with custom prefix
157 | EOF
158 | buildStep "$0" "pre"
159 | debug "Not supposed to find debian+whonix-gateway+kde"
160 | assertTest "buildStep $0 pre" "tests/template-flavors/debian+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/wheezy+whonix-gateway+gnome/test_pre.sh\ntests/template-flavors/test_pre.sh"
161 | assertEnd
162 | 
163 | 
164 | # ------------------------------------------------------------------------------
165 | # 5. Template Options with NO prefix
166 | # ------------------------------------------------------------------------------
167 | SCRIPTSDIR="tests/template-flavors"
168 | DIST="wheezy"
169 | DISTS_VM=""
170 | TEMPLATE_FLAVOR="whonix-gateway"
171 | TEMPLATE_FLAVOR_DIR=""
172 | TEMPLATE_OPTIONS=('gnome' 'kde')
173 | TEMPLATE_FLAVOR_PREFIX=( 
174 |     'wheezy+whonix-gateway:'
175 |     'wheezy+whonix-workstation:'
176 | )
177 | header <<EOF
178 |  5. Template Options with NO prefix
179 | EOF
180 | buildStep "$0" "pre"
181 | debug "Not supposed to find whonix-gateway+kde"
182 | assertTest "buildStep $0 pre" "tests/template-flavors/whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/wheezy+whonix-gateway+gnome/test_pre.sh\ntests/template-flavors/test_pre.sh"
183 | assertEnd
184 | 
185 | 
186 | # ------------------------------------------------------------------------------
187 | # 6. Custom template directory for options within \${SCRIPTSDIR}
188 | # ------------------------------------------------------------------------------
189 | SCRIPTSDIR="tests/template-flavors"
190 | DIST="wheezy"
191 | DISTS_VM=""
192 | TEMPLATE_FLAVOR="whonix-gateway"
193 | TEMPLATE_FLAVOR_PREFIX=""
194 | TEMPLATE_FLAVOR_DIR="wheezy+whonix-gateway+gnome:${SCRIPTSDIR}/another_location/whonix_gnome"
195 | TEMPLATE_OPTIONS=('gnome')
196 | 
197 | header <<EOF
198 |  6. Custom template directory for options within \${SCRIPTSDIR}
199 |     NOTE: in config file you would need to use \$\${SCRIPTSDIR} or whatever variable
200 |     and in a bash file use single 'quotes' around string and \${SCRIPTSDIR}
201 | EOF
202 | buildStep "$0" "pre"
203 | assertTest "buildStep $0 pre" "tests/template-flavors/wheezy+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/another_location/whonix_gnome/test_pre.sh\ntests/template-flavors/test_pre.sh"
204 | assertEnd
205 | 
206 | 
207 | # ------------------------------------------------------------------------------
208 | # 7. Custom template directory
209 | # ------------------------------------------------------------------------------
210 | SCRIPTSDIR="tests/template-flavors"
211 | DIST="wheezy"
212 | DISTS_VM=""
213 | TEMPLATE_FLAVOR="whonix-gateway"
214 | TEMPLATE_FLAVOR_PREFIX=""
215 | TEMPLATE_FLAVOR_DIR="wheezy+whonix-gateway:tests/template-flavors/another_location/whonix-gw"
216 | TEMPLATE_OPTIONS=""
217 | 
218 | header <<EOF
219 |  7. Custom template directory
220 | EOF
221 | buildStep "$0" "pre"
222 | assertTest "buildStep $0 pre" "tests/template-flavors/another_location/whonix-gw/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/test_pre.sh"
223 | assertEnd
224 | 
225 | # ------------------------------------------------------------------------------
226 | # 8. Custom template directory with space in name
227 | # ------------------------------------------------------------------------------
228 | SCRIPTSDIR="tests/template-flavors"
229 | DIST="wheezy"
230 | DISTS_VM=""
231 | TEMPLATE_FLAVOR="whonix-gateway"
232 | TEMPLATE_FLAVOR_PREFIX=""
233 | TEMPLATE_FLAVOR_DIR=("wheezy+whonix-gateway:tests/template-flavors/another_location/whonix gw")
234 | TEMPLATE_OPTIONS=""
235 | 
236 | header <<EOF
237 |  8. Custom template directory with space in name
238 | EOF
239 | buildStep "$0" "pre"
240 | assertTest "buildStep $0 pre" "tests/template-flavors/another_location/whonix gw/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/test_pre.sh"
241 | assertEnd
242 | 
243 | 
244 | # ------------------------------------------------------------------------------
245 | # 9. Custom template directory for options
246 | # ------------------------------------------------------------------------------
247 | SCRIPTSDIR="tests/template-flavors"
248 | DIST="wheezy"
249 | DISTS_VM=""
250 | TEMPLATE_FLAVOR="whonix-gateway"
251 | TEMPLATE_FLAVOR_PREFIX=""
252 | TEMPLATE_FLAVOR_DIR="wheezy+whonix-gateway+gnome:tests/template-flavors/another_location/whonix_gnome"
253 | TEMPLATE_OPTIONS=('gnome')
254 | 
255 | header <<EOF
256 |  9. Custom template directory for options
257 | EOF
258 | buildStep "$0" "pre"
259 | assertTest "buildStep $0 pre" "tests/template-flavors/wheezy+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/another_location/whonix_gnome/test_pre.sh\ntests/template-flavors/test_pre.sh"
260 | assertEnd
261 | 
262 | 
263 | # ------------------------------------------------------------------------------
264 | # 10. Template directory for options within ${SCRIPTSDIR} using short name filter
265 | # ------------------------------------------------------------------------------
266 | SCRIPTSDIR="tests/template-flavors"
267 | DIST="wheezy"
268 | DISTS_VM=""
269 | TEMPLATE_FLAVOR="whonix-gateway"
270 | TEMPLATE_FLAVOR_PREFIX=""
271 | TEMPLATE_FLAVOR_DIR="wheezy+proxy:${SCRIPTSDIR}/proxy"
272 | TEMPLATE_OPTIONS=('proxy')
273 | 
274 | header <<EOF
275 | 10. Template directory for options within ${SCRIPTSDIR} using short name filter
276 | EOF
277 | buildStep "$0" "pre"
278 | assertTest "buildStep $0 pre" "tests/template-flavors/wheezy+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/proxy/test_pre.sh\ntests/template-flavors/test_pre.sh"
279 | assertEnd
280 | 
281 | 
282 | # ------------------------------------------------------------------------------
283 | # 11. Template directory for options within using VERY short name filter (+proxy)
284 | # ------------------------------------------------------------------------------
285 | SCRIPTSDIR="tests/template-flavors"
286 | DIST="wheezy"
287 | DISTS_VM=""
288 | TEMPLATE_FLAVOR="whonix-gateway"
289 | TEMPLATE_FLAVOR_PREFIX=""
290 | TEMPLATE_FLAVOR_DIR="+proxy:${SCRIPTSDIR}/proxy"
291 | TEMPLATE_OPTIONS=('proxy')
292 | 
293 | header <<EOF
294 | 11. Template directory for options within using VERY short name filter (+proxy)
295 | EOF
296 | buildStep "$0" "pre"
297 | assertTest "buildStep $0 pre" "tests/template-flavors/wheezy+whonix-gateway/test_pre.sh\ntests/template-flavors/wheezy/test_pre.sh\ntests/template-flavors/proxy/test_pre.sh\ntests/template-flavors/test_pre.sh"
298 | assertEnd
299 | 
300 | 
301 | # ------------------------------------------------------------------------------
302 | # 12. Template Name - Custom
303 | # ------------------------------------------------------------------------------
304 | SCRIPTSDIR="tests/template-flavors"
305 | DIST="wheezy"
306 | DISTS_VM=""
307 | TEMPLATE_FLAVOR="whonix-gateway"
308 | TEMPLATE_FLAVOR_PREFIX=""
309 | TEMPLATE_FLAVOR_DIR=""
310 | TEMPLATE_OPTIONS=""
311 | TEMPLATE_LABEL="wheezy+whonix-gateway:whonix-gateway"
312 | 
313 | header <<EOF
314 | 12. Template Name - Custom
315 |     TEMPLATE_LABEL         = wheezy+whonix-gateway:whonix-gateway
316 | EOF
317 | info "Template name: $(templateName)"
318 | assertTest "templateName" "whonix-gateway"
319 | assertEnd
320 | 
321 | 
322 | # ------------------------------------------------------------------------------
323 | # 13. Template Name - Custom with sub-options
324 | # ------------------------------------------------------------------------------
325 | SCRIPTSDIR="tests/template-flavors"
326 | DIST="wheezy"
327 | DISTS_VM=""
328 | TEMPLATE_FLAVOR="whonix-gateway"
329 | TEMPLATE_FLAVOR_PREFIX=""
330 | TEMPLATE_FLAVOR_DIR=""
331 | TEMPLATE_OPTIONS=('proxy')
332 | TEMPLATE_LABEL="wheezy+whonix-gateway+proxy:whonix-gateway"
333 | 
334 | header <<EOF
335 | 13. Template Name - Custom with sub-options
336 |     TEMPLATE_LABEL         = wheezy+whonix-gateway+proxy:whonix-gateway
337 | EOF
338 | info "Template name: $(templateName)"
339 | assertTest "templateName" "whonix-gateway"
340 | assertEnd
341 | 
342 | 
343 | # ------------------------------------------------------------------------------
344 | # 14. Template Name - NO template
345 | # ------------------------------------------------------------------------------
346 | SCRIPTSDIR="tests/template-flavors"
347 | DIST="wheezy"
348 | DISTS_VM=""
349 | TEMPLATE_FLAVOR=""
350 | TEMPLATE_FLAVOR_PREFIX=""
351 | TEMPLATE_FLAVOR_DIR=""
352 | TEMPLATE_OPTIONS=""
353 | TEMPLATE_LABEL="wheezy:debian-7"
354 | 
355 | header <<EOF
356 | 14. Template Name - NO template
357 |     TEMPLATE_LABEL         = wheezy:debian-7
358 | EOF
359 | info "Template name: $(templateName)"
360 | assertTest "templateName" "debian-7"
361 | assertEnd
362 | 
363 | # ------------------------------------------------------------------------------
364 | # 15. Template Name - containsFlavor
365 | # ------------------------------------------------------------------------------
366 | SCRIPTSDIR="tests/template-flavors"
367 | DIST="wheezy"
368 | DISTS_VM=""
369 | TEMPLATE_FLAVOR="whonix-gateway"
370 | TEMPLATE_FLAVOR_PREFIX=""
371 | TEMPLATE_FLAVOR_DIR=""
372 | TEMPLATE_OPTIONS=('proxy' 'minimal' 'flash' 'gnome')
373 | TEMPLATE_LABEL=""
374 | 
375 | header <<EOF
376 | 15. Template Name - containsFlavor
377 |     containsFlavor flash
378 |     containsFlavor whonix-gateway
379 | EOF
380 | assert_raises "containsFlavor flash"
381 | assert_raises "containsFlavor whonix-gateway"
382 | assertEnd
383 | 
384 | # ------------------------------------------------------------------------------
385 | # 16. Long Template Name
386 | # ------------------------------------------------------------------------------
387 | SCRIPTSDIR="tests/template-flavors"
388 | DIST="wheezy"
389 | DISTS_VM=""
390 | TEMPLATE_FLAVOR="tor-gateway"
391 | TEMPLATE_FLAVOR_PREFIX=""
392 | TEMPLATE_FLAVOR_DIR=""
393 | TEMPLATE_OPTIONS=""
394 | TEMPLATE_OPTIONS=('minimal' 'proxy' 'flash' 'gnome' 'standard')
395 | 
396 | header <<EOF
397 |  16. Long Template Name
398 | EOF
399 | info "Template name: $(templateName)"
400 | assertTest "templateName" "wheezy+tor-gateway+minimal"
401 | assertEnd
402 | 
403 | # ------------------------------------------------------------------------------
404 | # 17. Configuration Files
405 | # ------------------------------------------------------------------------------
406 | SCRIPTSDIR="tests/template-flavors"
407 | DIST="wheezy"
408 | DISTS_VM=""
409 | TEMPLATE_FLAVOR="whonix-gateway"
410 | TEMPLATE_FLAVOR_PREFIX=""
411 | TEMPLATE_FLAVOR_DIR=(
412 |     'wheezy+whonix-gateway:tests/template-flavors/another_location/whonix gw' 
413 |     '+gnome:$${SCRIPTSDIR}/gnome'
414 | )
415 | TEMPLATE_OPTIONS=('gnome')
416 | 
417 | header <<EOF
418 | 17. Configuration Files
419 |     Find packages.list for every template available
420 | EOF
421 | getFileLocations filelist 'packages.list'
422 | for file in "${filelist[@]}"; do
423 |     echo "Configuration: ${file}"
424 | done
425 | result="$(echo $(printf "'%s' " "${filelist[@]}"))"
426 | assertTest "echo ${result}" "tests/template-flavors/another_location/whonix gw/packages.list tests/template-flavors/wheezy+whonix-gateway+gnome/packages.list tests/template-flavors/packages.list"
427 | assertEnd
428 | 
429 | 
430 | # ------------------------------------------------------------------------------
431 | # 18. Configuration Files - No Template
432 | # ------------------------------------------------------------------------------
433 | SCRIPTSDIR="tests/template-flavors"
434 | DIST="wheezy"
435 | DISTS_VM=""
436 | TEMPLATE_FLAVOR=""
437 | TEMPLATE_FLAVOR_PREFIX=""
438 | TEMPLATE_FLAVOR_DIR=""
439 | TEMPLATE_OPTIONS=('gnome')
440 | 
441 | header <<EOF
442 | 18. Configuration Files - No Template
443 |     Find packages.list for every template available
444 | EOF
445 | getFileLocations filelist 'packages.list'
446 | for file in "${filelist[@]}"; do
447 |     echo "Configuration: ${file}"
448 | done
449 | result="$(echo $(printf "'%s' " "${filelist[@]}"))"
450 | assertTest "echo ${result}" "tests/template-flavors/packages.list"
451 | assertEnd
452 | 
453 | 
454 | # ------------------------------------------------------------------------------
455 | # 19. Configuration Files - No Template - with suffix
456 | # ------------------------------------------------------------------------------
457 | SCRIPTSDIR="tests/template-flavors"
458 | DIST="wheezy"
459 | DISTS_VM=""
460 | TEMPLATE_FLAVOR=""
461 | TEMPLATE_FLAVOR_PREFIX=""
462 | TEMPLATE_FLAVOR_DIR=""
463 | TEMPLATE_OPTIONS=('gnome')
464 | 
465 | header <<EOF
466 | 19. Configuration Files - No Template - with suffix
467 |      Find packages.list for every template available
468 | EOF
469 | getFileLocations filelist 'packages.list' 'wheezy'
470 | for file in "${filelist[@]}"; do
471 |     echo "Configuration: ${file}"
472 | done
473 | result="$(echo $(printf "'%s' " "${filelist[@]}"))"
474 | assertTest "echo ${result}" "tests/template-flavors/packages_wheezy.list"
475 | assertEnd
476 | 
477 | # ------------------------------------------------------------------------------
478 | # 20. Copy files
479 | # ------------------------------------------------------------------------------
480 | SCRIPTSDIR="tests/template-flavors"
481 | DIST="wheezy"
482 | DISTS_VM=""
483 | TEMPLATE_FLAVOR="whonix-gateway"
484 | TEMPLATE_FLAVOR_PREFIX=""
485 | TEMPLATE_FLAVOR_DIR=""
486 | TEMPLATE_OPTIONS=""
487 | INSTALLDIR="${SCRIPTSDIR}/test_copy_location"
488 | 
489 | header <<EOF 
490 | 20. Copy files
491 |     Just test copying from here to ${INSTALLDIR}
492 |     INSTALLDIR="${SCRIPTSDIR}/test_copy_location"
493 | EOF
494 | rm -f "${INSTALLDIR}"/test1
495 | rm -f "${INSTALLDIR}"/test2
496 | rm -f "${INSTALLDIR}"/test3
497 | copyTree "files"
498 | ls -l "${INSTALLDIR}"
499 | assertTest "ls ${INSTALLDIR}" "test1\ntest2\ntest3"
500 | assertEnd
501 | 
502 | # Done
503 | popd
504 | 


--------------------------------------------------------------------------------
/tests/template-flavors/test_copy_location/test1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/test_copy_location/test1


--------------------------------------------------------------------------------
/tests/template-flavors/test_copy_location/test2:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/test_copy_location/test2


--------------------------------------------------------------------------------
/tests/template-flavors/test_copy_location/test3:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/test_copy_location/test3


--------------------------------------------------------------------------------
/tests/template-flavors/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway+gnome/packages.list:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/wheezy+whonix-gateway+gnome/packages.list


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway+gnome/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway/files/test1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/wheezy+whonix-gateway/files/test1


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway/files/test2:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/wheezy+whonix-gateway/files/test2


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway/files/test3:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/wheezy+whonix-gateway/files/test3


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway/packages.list:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/QubesOS/qubes-linux-template-builder/44e9d8f979ecb965d8ab32d53fd49e0ea31a1175/tests/template-flavors/wheezy+whonix-gateway/packages.list


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy+whonix-gateway/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/wheezy/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/whonix-gateway+gnome/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/tests/template-flavors/whonix-gateway/test_pre.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # vim: set ts=4 sw=4 sts=4 et :
3 | 
4 | :
5 | 


--------------------------------------------------------------------------------
/umount-kill:
--------------------------------------------------------------------------------
  1 | #!/bin/bash -e
  2 | # The Qubes OS Project, http://www.qubes-os.org
  3 | #
  4 | # Copyright (C) 2015 Jason Mehring <nrgaway@gmail.com>
  5 | # Copyright (C) 2015 Marek Marczykowski-Górecki <marmarek@invisiblethingslab.com>
  6 | # Copyright (C) 2022 Frédéric Pierret (fepitre) <frederic@invisiblethingslab.com>
  7 | #
  8 | # This program is free software; you can redistribute it and/or modify
  9 | # it under the terms of the GNU General Public License as published by
 10 | # the Free Software Foundation; either version 2 of the License, or
 11 | # (at your option) any later version.
 12 | #
 13 | # This program is distributed in the hope that it will be useful,
 14 | # but WITHOUT ANY WARRANTY; without even the implied warranty of
 15 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 16 | # GNU General Public License for more details.
 17 | #
 18 | # You should have received a copy of the GNU General Public License along
 19 | # with this program. If not, see <https://www.gnu.org/licenses/>.
 20 | #
 21 | # SPDX-License-Identifier: GPL-3.0-or-later
 22 | 
 23 | # Kills any processes within the mounted location and
 24 | # unmounts any mounts active within.
 25 | #
 26 | # To keep the actual mount mounted, add a '/' to end
 27 | #
 28 | # ${1}: directory to umount
 29 | #
 30 | # Examples:
 31 | # To kill all processes and mounts within 'chroot-jessie' but keep
 32 | # 'chroot-jessie' mounted:
 33 | #
 34 | # ./umount-kill chroot-jessie/
 35 | #
 36 | # To kill all processes and mounts within 'chroot-jessie' AND also
 37 | # umount 'chroot-jessie' mount:
 38 | #
 39 | # ./umount-kill chroot-jessie
 40 | #
 41 | 
 42 | if [ "$DEBUG" == "1" ]; then
 43 |     set -x
 44 | fi
 45 | 
 46 | mountPoint() {
 47 |     local mount_point="${1}"
 48 | 
 49 |     # We need absolute paths here so we don't kill everything
 50 |     if ! [[ "${mount_point}" == /* ]]; then
 51 |         mount_point="$(readlink -m .)/${mount_point}"
 52 |     fi
 53 | 
 54 |     # Strip any extra trailing slashes ('/') from path if they exist
 55 |     # since we are doing an exact string match on the path
 56 |     # shellcheck disable=SC2001
 57 |     echo "${mount_point}" | sed s#//*#/#g
 58 | }
 59 | 
 60 | mountPoints() {
 61 |     local mount_point
 62 |     mount_point="$(mountPoint "${1}")"
 63 |     # shellcheck disable=SC2005
 64 |     echo "$(sudo grep "${mount_point}" /proc/mounts | cut -f2 -d" " | sort -r | grep "^${mount_point}" | uniq)"
 65 | }
 66 | 
 67 | # ${1} = full path to mountpoint;
 68 | # ${2} = if set will not umount; only kill processes in mount
 69 | umount_kill() {
 70 |     if [ "0${VERBOSE}" -le 2 ]; then
 71 |         # If enabled, turn off xtrace and remember its current setting.
 72 |         if test -o xtrace; then
 73 |             true "${FUNCNAME[0]}: Disabling xtrace, because variable VERBOSE (${VERBOSE}) is lower than or equal 2..."
 74 |             set +x
 75 |             XTRACE_WAS_SET=true
 76 |         fi
 77 |     fi
 78 | 
 79 |     local mount_point
 80 |     local kill_only="${2}"
 81 | 
 82 |     mount_point="$(mountPoint "${1}")"
 83 |     declare -A cache
 84 | 
 85 |     # Sync the disk before un-mounting to be sure everything is written
 86 |     sync
 87 | 
 88 |     echo "INFO: Attempting to kill any processes still running in '${mount_point}' before un-mounting"
 89 |     read -r -a mounts <<<"$(mountPoints "${mount_point}")"
 90 |     for dir in "${mounts[@]}"; do
 91 |         # Escape filename (convert spaces to '\ ', etc
 92 |         dir="$(printf "%s" "${dir}")"
 93 | 
 94 |         # Skip if already in cache
 95 |         [[ ${cache["${dir}"]+_} ]] && continue || cache["${dir}"]=1
 96 | 
 97 |         # Kill of any processes within mountpoint
 98 |         sudo lsof "${dir}" 2>/dev/null | grep "${dir}" | tail -n +2 | awk '{print $2}' | xargs --no-run-if-empty sudo kill -9
 99 | 
100 |         # Umount
101 |         if ! [ "${kill_only}" ]; then
102 | 
103 |             # Mount point found in mtab
104 |             if sudo mountpoint -q "${dir}"; then
105 |                 echo "INFO: umount ${dir}"
106 |                 sudo umount -n "${dir}" 2>/dev/null || sudo umount -n -l "${dir}" 2>/dev/null ||
107 |                     echo "ERROR: umount ${dir} unsuccessful!"
108 |             # Umount entries not found within 'mountpoint'
109 |             else
110 |                 # Look for (deleted) mountpoints
111 |                 echo "INFO: not a regular mount point: ${dir}"
112 |                 base="$(basename "${dir}")"
113 |                 dir="$(dirname "${dir}")"
114 |                 # shellcheck disable=SC2001
115 |                 base="$(echo "${base}" | sed 's/[\].*$//')"
116 |                 dir="${dir}/${base}"
117 |                 sudo umount -v -f -n "${dir}" 2>/dev/null || sudo umount -v -f -n -l "${dir}" 2>/dev/null ||
118 |                     echo "ERROR: umount ${dir} unsuccessful!"
119 |             fi
120 |         fi
121 |     done
122 | 
123 |     if [ "$XTRACE_WAS_SET" == "true" ]; then
124 |         set -x
125 |         true "${FUNCNAME[0]}: Restoring xtrace..."
126 |     fi
127 | }
128 | 
129 | kill_processes_in_mount() {
130 |     umount_kill "${1}" "false" || :
131 | }
132 | 
133 | if [ "$(basename "${0}")" == "umount-kill" ] && [ -n "${1}" ]; then
134 |     umount_kill "${1}"
135 | fi
136 | 


--------------------------------------------------------------------------------
/umount_kill.sh:
--------------------------------------------------------------------------------
1 | umount-kill


--------------------------------------------------------------------------------
/version:
--------------------------------------------------------------------------------
1 | 4.0.6
2 | 


--------------------------------------------------------------------------------