#!/bin/bash # -*- Mode: Sh -*- # creatfs --- # Author : Manoj Srivastava ( srivasta@glaurung.internal.golden-gryphon.com ) # Created On : Wed Sep 15 14:21:22 2004 # Created On Node : glaurung.internal.golden-gryphon.com # Last Modified By : Manoj Srivastava # Last Modified On : Sat May 12 00:40:14 2007 # Last Machine Used: glaurung.internal.golden-gryphon.com # Update Count : 211 # Status : Unknown, Use with caution! # HISTORY : # Description : # # # ,----[ createfs.conf ] # | conf_mirrorsite=http://http.us.debian.org/debian # | ## if using apt-proxy, use this instead # | #conf_mirrorsite=http://127.0.0.1:9999/debian # | # | conf_uml_new_user=jdoe # | conf_uml_new_user_gecos="John Doe,229,,," # | # | conf_uml_do_min_build=YES # | # | conf_uml_do_selinux=YES # | conf_policy_type=strict # | # Once you have created a UML and loaded a policy, you can use that # | # To seed the next UML machine, saves a reboot/relabel step # | conf_selinux_policy=policy.21 # | conf_file_contexts=file_contexts # | conf_home_contexts=file_contexts.homedirs # | conf_local_policies=localStrict.pp # `---- set -e progname="`basename \"$0\"`" pversion='$Revision: 1.58 $' mydir="$(dirname $0)" # # Long term variables, which may be set in the config file or the # environment: # DEBUG rootdir workdir (if all original sources are kept in one dir) # # action='withecho' DEBUG=${DEBUG:-0} # Working directory for all output WORKING_DIR=$(pwd); export WORKING_DIR LC_ALL=C export LC_ALL DEBOOTSTRAP_EXCLUDE="hwclock" DEBOOTSTRAP_INCLUDE= setq() { # Variable Value Doc string if [ "x$2" = "x" ]; then echo >&2 "$progname: Unable to determine $3" exit 1; else if [ ! "x$Verbose" = "x" ]; then echo "$progname: $3 is $2"; fi eval "$1=\"\$2\""; fi } withecho () { echo " $@" >&2 "$@" } usageversion () { cat >&2 <&2 ; exit 1 ; fi # Note the quotes around `$TEMP': they are essential! eval set -- "$TEMP" while true ; do case "$1" in -h) usageversion; exit 0 ; shift ;; --) shift ; break ;; *) echo >&2 "Internal error!($1)" usageversion; exit 1 ;; esac done # Load site defaults and over rides. if [ -f /etc/createfs.conf ]; then . /etc/createfs.conf fi # Load user defaults and over rides. if [ -f ./createfs.conf ]; then . ./createfs.conf elif [ -f ~/.createfs.conf ]; then . ~/.createfs.conf fi combine_values; # Check for all configured network devices DEVICES=$(ifconfig | sed 's/ .*//' | egrep -v '^lo|^ *$') for dev in $DEVICES; do if ifconfig $dev | grep RUNNING >& /dev/null ; then if [ -z "$MY_IP" ]; then MY_IP=$(ifconfig $dev | \ perl -nle 'm/inet addr:(\d+\.\d+\.\d+\.\d+)/m && print $1;') fi if [ -z "$UML_NETMASK" ]; then UML_NETMASK=$(ifconfig $dev | \ perl -nle 'm/Mask:(\d+\.\d+\.\d+\.\d+)/m && print $1;') fi if [ -z "$UML_BROADCAST" ]; then UML_BROADCAST=$(ifconfig $dev | \ perl -nle 'm/Bcast:(\d+\.\d+\.\d+\.\d+)/m && print $1;') fi if [ -z "$UML_NETWORK" ]; then UML_NETWORK=$(route -n | grep $dev | grep -v ^0.0.0.0 | awk '{print $1;}' | head -n 1) fi break; fi done if [ -z "$UML_GATEWAY" ]; then UML_GATEWAY=$MY_IP fi if [ -z "$UML_MAILNAME" ]; then UML_MAILNAME=$(cat /etc/mailname) fi if [ -z "$UML_DOMAIN" ]; then UML_DOMAIN=$(dnsdomainname) fi if [ -z "$UML_NETWORK" ]; then UML_NETWORK=$(echo ${MY_IP} | perl -ple 's/\.[0-9]+$/.0/') fi if [ -z "$UML_BROADCAST" ]; then UML_BROADCAST=255.255.255.0 fi if [ -z "$UML_NS1" ]; then eval $(perl -e 'while(<>){chomp;next if m/^nameserver\s+127.0.0.1/;next unless m/^nameserver\s+(\S+)/;$N{++$i}=$1;};for (sort keys %N){print "export UML_NS$_=$N{$_}\n";}' /etc/resolv.conf) fi MY_ETH0=tuntap,,,$MY_IP OTHERMIRROR="deb http://security.debian.org stable/updates main contrib non-free deb http://http.us.debian.org/debian $UML_DEB_RELEASE main contrib non-free " # Read the configuration file if [ -f $HOME/.creatfsrc ]; then . $HOME/.creatfsrc fi } # # Set up the root_fs # Here we create a sparse 1GB partition, create an ext3 file system # on that sparse partition. Since the FS is sparse, the disk usage is # initially small, and the actual size of the file grows as required. # initiate_image () { echo >&2 "Creating a Sparse File system" if test -e ${UML_IMAGE}; then mv -f ${UML_IMAGE} ${UML_IMAGE}.old; fi $action dd if=/dev/zero of=${UML_IMAGE} bs=$((1024 * 1024)) count=0 seek=1024 $action mke2fs -j -F ${UML_IMAGE} } # # Create a dir where we can mount the root_fs, and mount it. This # allows us to create the initial Debian install on that file system. # mount_image () { echo >&2 "Mount the file system just created via loopback" if [ ! -d mounted ]; then mkdir mounted else umount mounted || true fi # Note: only root can do this $action mount -o loop ${UML_IMAGE} ./mounted/ trap 'test -d mounted && umount mounted' ERR } # # Here is where we do a basic installation. The only changes to the # default are that we install postfix rather than exim4 (better # support in SELinux policy), and we install all the selinux related # packages to be found in the main Debian archive. # configure_postfix() { postfix_addons="postfix,libsasl2" postfix_removals="exim4,exim4-base,exim4-config,exim4-daemon-light" if [ -n "$DEBOOTSTRAP_EXCLUDE" ]; then DEBOOTSTRAP_EXCLUDE="$DEBOOTSTRAP_EXCLUDE,$postfix_removals" else DEBOOTSTRAP_EXCLUDE="$postfix_removals" fi if [ -n "$DEBOOTSTRAP_INCLUDE" ]; then DEBOOTSTRAP_INCLUDE="$DEBOOTSTRAP_INCLUDE,$postfix_addons" else DEBOOTSTRAP_INCLUDE="$postfix_addons" fi } configure_selinux() { #selinux_addons="checkpolicy,selinux-utils,gettext" selinux_addons="selinux-utils" if [ -n "$selinux_addons" ]; then if [ -n "$DEBOOTSTRAP_INCLUDE" ]; then DEBOOTSTRAP_INCLUDE="$DEBOOTSTRAP_INCLUDE,$selinux_addons" else DEBOOTSTRAP_INCLUDE="$selinux_addons" fi fi } configure_minimal_build() { building_addons="fakeroot,build-essential" if [ -n "$DEBOOTSTRAP_INCLUDE" ]; then DEBOOTSTRAP_INCLUDE="$DEBOOTSTRAP_INCLUDE,$building_addons" else DEBOOTSTRAP_INCLUDE="$building_addons" fi } basic_install () { # Create a basic Debian install echo >&2 "Preparing to install" inc_exc= inc_incl= if [ -n "$DEBOOTSTRAP_EXCLUDE" ]; then inc_exc="--exclude=$DEBOOTSTRAP_EXCLUDE" fi if [ -n "$DEBOOTSTRAP_INCLUDE" ]; then inc_incl="--include=$DEBOOTSTRAP_INCLUDE" fi $action debootstrap --resolve-deps $inc_exc $inc_incl --verbose $UML_DEB_RELEASE \ ./mounted/ $MIRRORSITE #echo >&2 "moving mounted/lib/tls to avoid NPTL issues" #if [ -d mounted/lib/tls ]; then # $action mv mounted/lib/tls mounted/lib/tls.save #fi echo >&2 "Removing old-style pseudo-tty's," $action rm -f mounted/dev/[tp]ty[abcdepqrstuvwxyz][0-9a-f] builtin cd mounted/dev $action ./MAKEDEV ubd builtin cd ../.. } setup_network () { echo >&2 "Setting up networking .. interfaces" $action test -L mounted/etc/network/run && rm -f mounted/etc/network/run $action test -d mounted/etc/network/run || mkdir -p mounted/etc/network/run cat >mounted/etc/network/interfaces<&2 "Setting up name mailname .. hostname .. hosts .. resolv.conf .." echo $UML_MAILNAME >mounted/etc/mailname echo $UML_HOSTNAME >mounted/etc/hostname echo >&2 "Setting up Nameservers: \"UML_NS1\" \"$UML_NS2\" \"$UML_NS3\" \"$UML_DOMAIN\" " test -n "$UML_NS1" && echo "nameserver $UML_NS1" > mounted/etc/resolv.conf test -n "$UML_NS2" && echo "nameserver $UML_NS2" >> mounted/etc/resolv.conf test -n "$UML_NS3" && echo "nameserver $UML_NS3" >> mounted/etc/resolv.conf test -n "$UML_DOMAIN" && echo "search $UML_DOMAIN" >> mounted/etc/resolv.conf echo "Setting up hosts file" cat >mounted/etc/hosts<&2 " /etc/default/postfix" echo SYNC_CHROOT= > mounted/etc/default/postfix $action mv mounted/etc/postfix/master.cf mounted/etc/postfix/master.cf.dist $action perl -ple 's/^(\w+\s+(inet|fifo|unix)\s+[-n]\s+[-n]\s+)-(.*)$/${1}n$2/g;' \ mounted/etc/postfix/master.cf.dist > mounted/etc/postfix/master.cf } setup_modules(){ echo >&2 "Setting up modules for the UML " test -d mounted/lib/modules || $action mkdir mounted/lib/modules if [ -d /usr/lib/uml/modules ]; then for version in $(ls -1 /usr/lib/uml/modules/); do $action cp -a /usr/lib/uml/modules/$version mounted/lib/modules/ done fi } setup_misc () { echo >&2 "Setting up miscellaneous files " if [ -e mounted/etc/init.d/setserial ]; then $action mv mounted/etc/init.d/setserial mounted/etc/init.d/setserial.dpkg-old fi echo >&2 "Disable all the 'hwclock' scripts " $action find mounted/etc/rc*d -name '*hwclock*' -print0 | xargs -0r rm echo >&2 "Fix initscripts" $action perl -pli~ -e 's,FSCKFIX=no,FSCKFIX=yes,g' mounted/etc/default/rcS test ! -e mounted/etc/default/rcS~ || rm -f mounted/etc/default/rcS~ echo >&2 "Fixing motd recycling" if [ -e mounted/etc/init.d/bootmisc.sh ]; then cat >mounted/etc/bootmisc.patch<<'EOF' --- old/etc/init.d/bootmisc.sh 2007-04-16 12:01:38.000000000 -0500 +++ mounted/etc/init.d/bootmisc.sh 2007-04-16 12:06:51.000000000 -0500 @@ -40,8 +40,8 @@ fi # Update motd - uname -snrvm > /var/run/motd - [ -f /etc/motd.tail ] && cat /etc/motd.tail >> /var/run/motd + #uname -snrvm > /var/run/motd + #[ -f /etc/motd.tail ] && cat /etc/motd.tail >> /var/run/motd # Save kernel messages in /var/log/dmesg if which dmesg >/dev/null 2>&1 EOF patch -p0 mounted/etc/init.d/bootmisc.sh < mounted/etc/bootmisc.patch rm mounted/etc/bootmisc.patch fi test ! -e mounted/var/run/motd || rm -f mounted/var/run/motd test ! -e mounted/etc/motd || rm -f mounted/etc/motd test ! -e mounted/etc/motd.tail || (cat mounted/etc/motd.tail > mounted/etc/motd ) test ! -e mounted/etc/mtab || rm -f mounted/etc/mtab test -d mounted/etc/udev || $action mkdir -p mounted/etc/udev test ! -d mounted/etc/udev || (echo 'no_static_dev="YES"' > mounted/etc/udev/udev.conf) echo >&2 "Fix /etc/init.d/udev " if [ -e mounted/etc/init.d/udev ]; then cat >mounted/etc/udev.patch<<'EOF' --- mounted/etc/init.d/udev 2006-09-03 05:15:35.000000000 -0500 +++ old/etc/init.d/udev 2006-09-10 20:02:37.000000000 -0500 @@ -43,6 +43,8 @@ if [ -z "$no_static_dev" ]; then mkdir -p /dev/.static/dev + # relabel the new tmpfs accordingly + [ -x /sbin/restorecon ] && /sbin/restorecon /dev /dev/.static /dev/.static/dev chmod 700 /dev/.static/ mount -n --move /lib/udev/devices /dev/.static/dev fi @@ -60,6 +62,7 @@ make_extra_nodes() { if [ "$(echo /lib/udev/devices/*)" != "/lib/udev/devices/*" ]; then cp --archive --update /lib/udev/devices/* /dev/ + [ -x /sbin/restorecon ] && /sbin/restorecon /dev/* fi [ -e /etc/udev/links.conf ] || return 0 EOF patch -p0 mounted/etc/init.d/udev < mounted/etc/udev.patch rm mounted/etc/udev.patch fi echo >&2 " /etc/fstab" cat >mounted/etc/fstab<&2 " /etc/syslog.conf" cat >mounted/etc/syslog.conf<<'EOF' # /etc/syslog.conf Configuration file for syslogd. # # For more information see syslog.conf(5) # manpage. # # First some standard logfiles. Log by facility. # auth,authpriv.* /var/log/auth.log *.*;auth,authpriv.none -/var/log/syslog #cron.* /var/log/cron.log daemon.* -/var/log/daemon.log kern.* -/var/log/kern.log lpr.* -/var/log/lpr.log mail.* -/var/log/mail.log user.* -/var/log/user.log uucp.* /var/log/uucp.log # # Logging for the mail system. Split it up so that # it is easy to write scripts to parse these files. # mail.info -/var/log/mail.info mail.warn -/var/log/mail.warn mail.err /var/log/mail.err # Logging for INN news system # news.crit /var/log/news/news.crit news.err /var/log/news/news.err news.notice -/var/log/news/news.notice # # Some catch-all logfiles. # *.=debug;\ auth,authpriv.none;\ news.none;mail.none -/var/log/debug *.=info;*.=notice;*.=warn;\ auth,authpriv.none;\ cron,daemon.none;\ mail,news.none -/var/log/messages # # Emergencies are sent to everybody logged in. # *.emerg * # # I like to have messages displayed on the console, but only on a virtual # console I usually leave idle. # #daemon,mail.*;\ # news.=crit;news.=err;news.=notice;\ # *.=debug;*.=info;\ # *.=notice;*.=warn /dev/tty8 # The named pipe /dev/xconsole is for the xconsole utility. To use it, # you must invoke xconsole with the -file option: # # $ xconsole -file /dev/xconsole [...] # # NOTE: adjust the list below, or you'll go crazy if you have a reasonably # busy site.. # #daemon.*;mail.*;\ # news.crit;news.err;news.notice;\ # *.=debug;*.=info;\ # *.=notice;*.=warn |/dev/xconsole EOF } # Changes the standard cron file; commenting out the backup of the # shadow file; since cron does not have access to that under SELinux fix_cron() { test -d mounted/etc/cron.daily || mkdir -p mounted/etc/cron.daily chroot mounted /etc/init.d/cron stop echo >&2 " /etc/cron.daily/find" if [ -e mounted/etc/cron.daily/find ]; then cat >mounted/etc/con.find.patch<<'EOF' --- old/etc/cron.daily/find 2007-02-25 03:49:11.000000000 -0600 +++ mounted/etc/cron.daily/find 2007-03-09 23:14:05.000000000 -0600 @@ -5,6 +5,11 @@ # Written by Ian A. Murdock and # Kevin Dalley +# To work it however needs to scan your whole filesystem for files - +# which would require rather extensive SELinux permissions and might +# be considered an "information leak". +exit 0 + LOCALUSER="nobody" export LOCALUSER if [ -f /etc/updatedb.conf ]; then EOF patch -p0 mounted/etc/cron.daily/find < mounted/etc/con.find.patch rm mounted/etc/con.find.patch fi echo >&2 " /etc/cron.daily/standard" cat > mounted/etc/cron.daily/standard<<'EOSTD' #!/bin/sh # /etc/cron.daily/standard: standard daily maintenance script # Written by Ian A. Murdock # Modified by Ian Jackson # Modified by Steve Greenland bak=/var/backups LOCKFILE=/var/lock/cron.daily umask 022 # # Avoid running more than one at a time # if [ -x /usr/bin/lockfile-create ] ; then lockfile-create $LOCKFILE if [ $? -ne 0 ] ; then cat </dev/null fi fi # # Check to see if any files are in lost+found directories and warn admin # # Get a list of the (potential) ext2 and ext3 l+f directories lflist=$(df -P --type=ext2 --type=ext3 |awk '$6 == "/" {$6 = ""} /\/dev\// {printf "%s/lost+found ", $6}') # In each directory, look for files for lfdir in $lflist ; do if [ -d "$lfdir" ] ; then more_lost_found=$(ls -1 "$lfdir" | grep -v 'lost+found$' | sed 's/^/ /') if [ -n "$more_lost_found" ] ; then lost_found="$lost_found $lfdir: $more_lost_found" # NOTE: above weird line breaks in string are intentional! fi fi done if [ -n "$lost_found" ]; then cat << EOF Files were found in lost+found directories. This is probably the result of a crash or bad shutdown, or possibly of a disk problem. These files may contain important information. You should examine them, and move them out of lost+found or delete them if they are not important. The following files were found: $lost_found EOF fi # # Clean up lockfile # if [ -x /usr/bin/lockfile-create ] ; then kill $LOCKTOUCHPID lockfile-remove $LOCKFILE fi EOSTD } # change the syslog init file to not create /dev/xconsole, since that # contravenes SELinux policy fix_sysklogd() { echo >&2 " /etc/init.d/sysklogd" cat > mounted/etc/init.d/sysklogd<<'EOF' #! /bin/sh # /etc/init.d/sysklogd: start the system log daemon. PATH=/bin:/usr/bin:/sbin:/usr/sbin pidfile=/var/run/syslogd.pid binpath=/sbin/syslogd test -x $binpath || exit 0 # Options for start/restart the daemons # For remote UDP logging use SYSLOGD="-r" # SYSLOGD="" create_xconsole() { :echo no > /dev/null # if [ ! -e /dev/xconsole ]; then # mknod -m 640 /dev/xconsole p # else # chmod 0640 /dev/xconsole # fi # chown root:adm /dev/xconsole } running() { # No pidfile, probably no daemon present # if [ ! -f $pidfile ] then return 1 fi pid=$(cat $pidfile) # No pid, probably no daemon present # if [ -z "$pid" ] then return 1 fi if [ ! -d /proc/$pid ] then return 1 fi cmd=$(cat /proc/$pid/cmdline | tr "\000" "\n"|head -n 1) # No syslogd? # if [ "$cmd" != "$binpath" ] then return 1 fi return 0 } case "$1" in start) echo -n "Starting system log daemon: syslogd" #create_xconsole start-stop-daemon --start --quiet --exec $binpath -- $SYSLOGD echo "." ;; stop) echo -n "Stopping system log daemon: syslogd" start-stop-daemon --stop --quiet --exec $binpath --pidfile $pidfile echo "." ;; reload|force-reload) echo -n "Reloading system log daemon: syslogd" start-stop-daemon --stop --quiet --signal 1 --exec $binpath --pidfile $pidfile echo "." ;; restart) echo -n "Restarting system log daemon: syslogd" start-stop-daemon --stop --quiet --exec $binpath --pidfile $pidfile sleep 1 start-stop-daemon --start --quiet --exec $binpath -- $SYSLOGD echo "." ;; reload-or-restart) if running then echo -n "Reloading system log daemon: syslogd" start-stop-daemon --stop --quiet --signal 1 --exec $binpath --pidfile $pidfile else echo -n "Restarting system log daemon: syslogd" start-stop-daemon --start --quiet --exec $binpath -- $SYSLOGD fi echo "." ;; *) echo "Usage: /etc/init.d/sysklogd {start|stop|reload|restart|force-reload|reload-or-restart}" exit 1 esac exit 0 EOF } setup_selinux_policy_changes() { echo >&2 "Setting up local SELinux policy files for use later" echo "HOME=/home" > mounted/etc/default/useradd echo "LU_HOMEDIRECTORY=/home" > mounted/etc/libuser.conf cat >mounted/root/post-install.sh</dev/null 2>&1; then if [ -e /etc/selinux/refpolicy-${UML_POLICY_TYPE}/contexts/files/file_contexts ]; then setfiles /etc/selinux/refpolicy-${UML_POLICY_TYPE}/contexts/files/file_contexts /etc/pamd.d/ fi fi if [ -x /sbin/fixfiles ]; then /sbin/fixfiles -l /root/fixfiles.log -f -F relabel fi # /bin/true | apt-get -fy install selinux-basics # schedule a relabeling for the next reboot # touch /.autorelabel EOF } setup_aptitude() { if [ -e key.asc ]; then cp key.asc mounted/root/ chroot mounted apt-key add /root/key.asc fi chroot mounted apt-get update chroot mounted apt-get --force-yes -fy upgrade } install_selinux_std() { test ! -f mounted/selinux && mkdir mounted/selinux chroot mounted apt-get update chroot mounted apt-get -fy upgrade chroot mounted apt-get -fy install policycoreutils chroot mounted apt-get clean if [ -f mounted//etc/pam.d/login ]; then if ! grep pam_selinux.so mounted//etc/pam.d/login >& /dev/null; then echo "" >> mounted//etc/pam.d/login echo "session required pam_selinux.so multiple" >> mounted//etc/pam.d/login echo "" >> mounted//etc/pam.d/login fi fi if [ -f mounted//etc/pam.d/ssh ]; then if ! grep pam_selinux.so mounted//etc/pam.d/ssh >& /dev/null; then echo "" >> mounted//etc/pam.d/ssh echo "session required pam_selinux.so multiple" >> mounted//etc/pam.d/ssh echo "" >> mounted//etc/pam.d/ssh fi fi if [ -e mounted/etc/selinux/config ]; then perl -pli~ -e "s/SELINUXTYPE=refpolicy-targeted/SELINUXTYPE=refpolicy-${UML_POLICY_TYPE}/" mounted/etc/selinux/config rm mounted/etc/selinux/config~ fi if [ -n "$UML_SELINUX_POLICY" ] && [ -e "$UML_SELINUX_POLICY" ]; then test ! -d mounted/etc/selinux/refpolicy-${UML_POLICY_TYPE}/policy && \ mkdir -p mounted/etc/selinux/refpolicy-${UML_POLICY_TYPE}/policy cp -f "$UML_SELINUX_POLICY" mounted/etc/selinux/refpolicy-${UML_POLICY_TYPE}/policy/ fi if [ -n "$UML_LOCAL_POLICIES" ]; then for policy in $UML_LOCAL_POLICIES; do if [ -e "$policy" ]; then cp -f "$policy" mounted/root/; fi done fi if [ -x mounted/sbin/setfiles ]; then if [ -n "$UML_FILE_CONTEXTS" ] && [ -e "$UML_FILE_CONTEXTS" ]; then cp -f "$UML_FILE_CONTEXTS" mounted/etc/file_contexts chroot mounted setfiles /etc/file_contexts / rm -f mounted/etc/file_contexts fi if [ -n "$UML_HOME_CONTEXTS" ] && [ -e "$UML_HOME_CONTEXTS" ]; then cp -f "$UML_HOME_CONTEXTS" mounted/etc/file_contexts.homedir chroot mounted setfiles /etc/file_contexts.homedir / rm -f mounted/etc/file_contexts.homedir fi fi if [ -x mounted/usr/sbin/setfilecon ]; then if [ -e mounted/etc/init.d/udev ]; then chroot mounted setfilecon system_u:object_r:udev_exec_t /etc/init.d/udev fi if [ -e mounted/etc/init.d/checkfs.sh ]; then chroot mounted setfilecon system_u:object_r:fsadm_exec_t /etc/init.d/checkfs.sh fi if [ -e mounted/etc/init.d/checkroot.sh ]; then chroot mounted setfilecon system_u:object_r:fsadm_exec_t /etc/init.d/checkroot.sh fi fi } setup_shell() { cat >mounted/root/.bashrc<<'EOF' # ~/.bashrc: executed by bash(1) for non-login shells. # see /usr/share/doc/bash/examples/startup-files (in the package bash-doc) # for examples # If not running interactively, don't do anything [ -z "$PS1" ] && return # don't put duplicate lines in the history. See bash(1) for more options #export HISTCONTROL=ignoredups # check the window size after each command and, if necessary, # update the values of LINES and COLUMNS. shopt -s checkwinsize # make less more friendly for non-text input files, see lesspipe(1) [ -x /usr/bin/lesspipe ] && eval "$(lesspipe)" # set variable identifying the chroot you work in (used in the prompt below) if [ -z "$debian_chroot" -a -r /etc/debian_chroot ]; then debian_chroot=$(cat /etc/debian_chroot) fi # set a fancy prompt (non-color, unless we know we "want" color) case "$TERM" in xterm-color) PS1='${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ ' ;; *) PS1='${debian_chroot:+($debian_chroot)}\u@\h:\w\$ ' ;; esac # Comment in the above and uncomment this below for a color prompt #PS1='${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ ' # If this is an xterm set the title to user@host:dir case "$TERM" in xterm*|rxvt*) PROMPT_COMMAND='echo -ne "\033]0;${USER}@${HOSTNAME}: ${PWD/$HOME/~}\007"' ;; *) ;; esac # Alias definitions. # You may want to put all your additions into a separate file like # ~/.bash_aliases, instead of adding them here directly. # See /usr/share/doc/bash-doc/examples in the bash-doc package. if [ -f ~/.bash_aliases ]; then . ~/.bash_aliases fi alias d-b="dpkg-buildpackage -D -i'\+\+pristine-trees|\+\+saved.*|,,.*' -rfakeroot" alias mmnt="mount -t hostfs -o context=user_u:object_r:user_home_t:s0 /usr/local/src/arch/Building /mnt" # Alias definitions. # You may want to put all your additions into a separate file like # ~/.bash_aliases, instead of adding them here directly. # See /usr/share/doc/bash-doc/examples in the bash-doc package. if [ -f ~/.bash_aliases ]; then . ~/.bash_aliases fi if [ "$TERM" != "dumb" ]; then eval "`dircolors -b`" alias ls='ls --color=auto' alias dir='ls --color=auto --format=vertical' alias vdir='ls --color=auto --format=long' alias l='ls --color=auto -AsCF' alias lt="ls --color=auto -tAsCF " alias lu="ls --color=auto -uAsCF " alias llx="ls --color=auto -XAsCF " alias ll="ls --color=auto -Als " alias llt="ls --color=auto -tAls " alias llc="ls --color=auto -cAls " alias llu="ls --color=auto -uAls " alias lls="ls --color=auto -SAls " alias llx="ls --color=auto -XAls " else alias l='ls -AsCF' alias lt="ls -tAsCF " alias lu="ls -uAsCF " alias llx="ls -XAsCF " alias ll="ls -Als " alias llt="ls -tAls " alias llc="ls -cAls " alias llu="ls -uAls " alias lls="ls -SAls " alias llx="ls -XAls " fi alias cx="chmod ugo+x " alias h='history' # enable programmable completion features (you don't need to enable # this, if it's already enabled in /etc/bash.bashrc and /etc/profile # sources /etc/bash.bashrc). if [ -f /etc/bash_completion ]; then . /etc/bash_completion fi EOF cp mounted/root/.bashrc mounted/etc/skel chroot mounted adduser --disabled-password --gecos "$UML_NEW_USER_GECOS" $UML_NEW_USER echo >&2 Set root passwd chroot mounted passwd echo >&2 Set user passwd for $UML_NEW_USER chroot mounted passwd $UML_NEW_USER } read_cfg; initiate_image; mount_image; # Configure the packages we want to install if [ -n "$UML_DO_POSTFIX" ]; then configure_postfix; fi if [ -n "$UML_DO_SELINUX" ]; then configure_selinux; fi if [ -n "$UML_DO_MIN_BUILD" ]; then configure_minimal_build; fi # Now perform the basic install basic_install; setup_modules; # Various post installation configurations setup_name; setup_network; if [ -n "$UML_DO_POSTFIX" ]; then setup_postfix; fi setup_misc; setup_shell; setup_aptitude; if [ -n "$UML_DO_SELINUX" ]; then fix_cron; fix_sysklogd; setup_selinux_policy_changes; install_selinux_std; fi cd $WORKING_DIR umount mounted || echo "Could not un mount mounted"