diff options
author | Daniel Baumann <daniel@debian.org> | 2009-11-22 14:36:42 +0100 |
---|---|---|
committer | Daniel Baumann <daniel@debian.org> | 2009-11-22 14:38:00 +0100 |
commit | a62f12110b19a52a58d7eae871012202cfa16055 (patch) | |
tree | 0bd188079c808ee8956fb5304c46ce8266b49f75 /examples | |
download | vyos-live-build-a62f12110b19a52a58d7eae871012202cfa16055.tar.gz vyos-live-build-a62f12110b19a52a58d7eae871012202cfa16055.zip |
Renaming categories to archive areas (Closes: #519690).
Diffstat (limited to 'examples')
32 files changed, 1620 insertions, 0 deletions
diff --git a/examples/cron/crontab b/examples/cron/crontab new file mode 100644 index 000000000..960f5e948 --- /dev/null +++ b/examples/cron/crontab @@ -0,0 +1,8 @@ +# /etc/crontab - system-wide crontab + +SHELL=/bin/sh +PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin + +# m h dom mon dow user command +*/10 * * * * user /usr/share/doc/live-helper/examples/cron/manpages.sh > /dev/null 2>&1 +*/10 * * * * user /usr/share/doc/live-helper/examples/cron/snapshots.sh > /dev/null 2>&1 diff --git a/examples/cron/images.sh b/examples/cron/images.sh new file mode 100755 index 000000000..342f645eb --- /dev/null +++ b/examples/cron/images.sh @@ -0,0 +1,111 @@ +#!/bin/sh -e + +# Static variables +DISTRIBUTIONS="${DISTRIBUTIONS:-etch lenny sid}" +FLAVOURS="${FLAVOURS:-standard rescue gnome-desktop kde-desktop lxde-desktop xfce-desktop}" +SOURCE="${SOURCE:-enabled}" + +MIRROR="${MIRROR:-http://mirror/ftp.debian.org/debian/}" +MIRROR_SECURITY="${MIRROR_SECURITY:-http://mirror/ftp.debian.org/debian-security/}" + +# Dynamic variables +ARCHITECTURE="$(dpkg --print-architecture)" +DATE="$(date +%Y%m%d)" + +for DISTRIBUTION in ${DISTRIBUTIONS} +do + rm -rf cache/stages* + + for FLAVOUR in ${FLAVOURS} + do + mkdir -p config + + if [ -e .stage ] + then + lh clean + fi + + rm -rf config + rm -rf cache/packages* + rm -rf cache/stages_rootfs + + case "${ARCHITECTURE}" in + amd64) + case "${FLAVOUR}" in + gnome-desktop) + mkdir -p config/chroot_local-hooks + echo "apt-get remove --yes --purge openoffice.org-help-en-us" > config/chroot_local-hooks/package-removals + echo "apt-get remove --yes --purge epiphany-browser epiphany-browser-data epiphany-extensions epiphany-gecko" >> config/chroot_local-hooks/package-removals + echo "apt-get remove --yes --purge gnome-user-guide" >> config/chroot_local-hooks/package-removals + + INDICES="none" + ;; + + kde-desktop) + INDICES="none" + ;; + esac + ;; + + i386) + case "${FLAVOUR}" in + standard|rescue|lxde-desktop|xfce-desktop) + INDICES="enabled" + ;; + + gnome-desktop|kde-desktop) + KERNEL="-k 686" + INDICES="none" + ;; + esac + ;; + esac + + if [ "${SOURCE}" = "enabled" ] + then + lh config -d ${DISTRIBUTION} -p ${FLAVOUR} --cache-stages "bootstrap rootfs" --apt-recommends disabled --binary-indices ${INDICES} --tasksel aptitude ${KERNEL} --source enabled --mirror-bootstrap ${MIRROR} --mirror-chroot ${MIRROR} --mirror-chroot-security ${MIRROR_SECURITY} + else + lh config -d ${DISTRIBUTION} -p ${FLAVOUR} --cache-stages "bootstrap rootfs" --apt-recommends disabled --binary-indices ${INDICES} --tasksel aptitude ${KERNEL} --source disabled --mirror-bootstrap ${MIRROR} --mirror-chroot ${MIRROR} --mirror-chroot-security ${MIRROR_SECURITY} + fi + + if [ "${DISTRIBUTION}" = "sid" ] + then + echo 'deb http://live.debian.net/ sid/snapshots main' > config/chroot_sources/debian-live_sid-snapshots.chroot + echo 'deb http://live.debian.net/ sid/snapshots main' > config/chroot_sources/debian-live_sid-snapshots.boot + + wget http://live.debian.net/debian/project/openpgp/archive-key.asc -O config/chroot_sources/debian-live_sid-snapshots.chroot.gpg + wget http://live.debian.net/debian/project/openpgp/archive-key.asc -O config/chroot_sources/debian-live_sid-snapshots.binary.gpg + + fi + + lh build 2>&1 | tee debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.iso.log + + mv binary.iso debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.iso + mv binary.list debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.iso.list + mv binary.packages debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.iso.packages + + if [ "${SOURCE}" = "enabled" ] + then + mv source.tar.gz debian-live-${DISTRIBUTION}-source-${FLAVOUR}.tar.gz + mv source.list debian-live-${DISTRIBUTION}-source-${FLAVOUR}.tar.gz.list + fi + + lh clean --binary + lh config -b usb-hdd + lh binary 2>&1 | tee debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.img.log + + mv binary.img debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.img + mv binary.list debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.img.list + mv binary.packages debian-live-${DISTRIBUTION}-${ARCHITECTURE}-${FLAVOUR}.img.packages + + lh clean --binary + lh config -b net + lh binary 2>&1 | tee debian-live-${DISTRIBUTION}-i386-${FLAVOUR}-net.tar.gz.log + + mv binary-net.tar.gz debian-live-${DISTRIBUTION}-i386-${FLAVOUR}-net.tar.gz + mv binary.list debian-live-${DISTRIBUTION}-i386-${FLAVOUR}-net.tar.gz.list + mv binary.packages debian-live-${DISTRIBUTION}-i386-${FLAVOUR}-net.tar.gz.packages + + mv binary/*/filesystem.squashfs debian-live-${DISTRIBUTION}-i386-${FLAVOUR}.squashfs + done +done diff --git a/examples/cron/manpages.sh b/examples/cron/manpages.sh new file mode 100755 index 000000000..00f49dfcd --- /dev/null +++ b/examples/cron/manpages.sh @@ -0,0 +1,100 @@ +#!/bin/sh + +# Needs: man2html git-core + +# Static variables +PACKAGES="live-helper live-initramfs" + +TEMPDIR="/srv/tmp/manpages" +SERVER="/srv/debian-live/www/other/manpages" + +DATE_START="$(date -R)" +HOST="$(hostname)" + +# Checking lock file +if [ -f "${SERVER}"/lock ] +then + echo "E: locked." + exit 1 +fi + +# Creating server directory +if [ ! -d "${SERVER}" ] +then + mkdir -p "${SERVER}" +fi + +# Creating lock trap +trap "test -f ${SERVER}/lock && rm -f ${SERVER}/lock; exit 0" 0 HUP INT QUIT KILL TERM + +# Creating lock file +echo "${DATE_START}" > "${SERVER}"/lock + +echo "$(date +%b\ %d\ %H:%M:%S) ${HOST} live-helper: begin manpage build." >> /var/log/live + +# Remove old manpages +rm -f "${SERVER}"/*.html + +# Processing packages +for PACKAGE in ${PACKAGES} +do + # Cleaning build directory + if [ -d "${TEMPDIR}" ] + then + rm -rf "${TEMPDIR}" + fi + + # Creating build directory + mkdir -p "${TEMPDIR}" + + # Getting sources + cd "${TEMPDIR}" + git clone git://git.debian.org/git/users/daniel/${PACKAGE}.git + + # Building manpages + for MANPAGE in "${TEMPDIR}"/${PACKAGE}/manpages/* + do + man2html -D "${SERVER}"/ -r ${MANPAGE} | \ + sed -e "s#Content-type: text/html##" \ + -e 's#HREF="../index.html"#HREF="./"#' \ + -e 's#HREF="../man1/#HREF="#g' \ + -e 's#HREF="../man2/#HREF="#g' \ + -e 's#HREF="../man3/#HREF="#g' \ + -e 's#HREF="../man4/#HREF="#g' \ + -e 's#HREF="../man5/#HREF="#g' \ + -e 's#HREF="../man6/#HREF="#g' \ + -e 's#HREF="../man7/#HREF="#g' \ + -e 's#HREF="../man8/#HREF="#g' \ + -e 's#HREF="../man9/#HREF="#g' \ + -e 's#/cgi-bin/man/man2html#http://packages.debian.org/man2html#' \ + > "${SERVER}"/$(basename ${MANPAGE}).html + done + + # Removing sources + rm -rf "${TEMPDIR}"/${PACKAGE} + + cd "${OLDPWD}" +done + +# Creating symlinks +for NUMBER in 1 2 3 4 5 6 7 8 9 +do + for MANPAGE in "${SERVER}"/*.en.${NUMBER}.html + do + if [ -f "${MANPAGE}" ] + then + ln -s $(basename ${MANPAGE}) "${SERVER}"/$(basename ${MANPAGE} .en.${NUMBER}.html).${NUMBER}.html + fi + done +done + +# Writing timestamp +cat > "${SERVER}"/LAST_BUILD << EOF +Last run begin: ${DATE_START} +Last run end: $(date -R) +EOF + +# Removing build directory +rm -rf "${TEMPDIR}" + +echo "$(date +%b\ %d\ %H:%M:%S) ${HOST} live-helper: end manpage build." >> /var/log/live diff --git a/examples/cron/snapshots.sh b/examples/cron/snapshots.sh new file mode 100755 index 000000000..4c6290fde --- /dev/null +++ b/examples/cron/snapshots.sh @@ -0,0 +1,183 @@ +#!/bin/sh -e + +# Static variables +if [ -n "${1}" ] +then + PACKAGES="${@}" +else + PACKAGES="live-helper live-initramfs live-initscripts live-webhelper live-magic debian-unofficial-archive-keyring" +fi + +DEBEMAIL="debian-live@lists.debian.org" +EMAIL="debian-live@lists.debian.org" +DEBFULLNAME="Debian Live Autobuilder" +NAME="Debian Live Autobuilder" +KEY="FDB8D39A" + +export DEBEMAIL EMAIL DEBFULLNAME NAME KEY + +TEMPDIR="$(mktemp -d -t debian-live.XXXXXXXX)" +SERVER="/mnt/daniel1/srv/debian-unofficial/live/debian" +LOGFILE="${SERVER}/build.log" + +DATE_START="$(date -R)" +HOST="$(hostname)" + +# Checking lock file +if [ -f "${SERVER}"/Archive-Update-in-Progress ] +then + echo "E: locked." + exit 1 +fi + +# Creating server directory +if [ ! -d "${SERVER}" ] +then + mkdir -p "${SERVER}" +fi + +# Creating lock trap +trap "test -f ${SERVER}/Archive-Update-in-Progress && rm -f ${SERVER}/Archive-Update-in-Progress; exit 0" 0 HUP INT QUIT KILL TERM + +# Creating lock file +echo "${DATE_START}" > "${SERVER}"/Archive-Update-in-Progress + +echo "$(date +%b\ %d\ %H:%M:%S) ${HOST} live-snapshots: begin build." >> "${LOGFILE}" + +# Processing packages +for PACKAGE in ${PACKAGES} +do + # Cleaning build directory + if [ -d "${TEMPDIR}" ] + then + rm -rf "${TEMPDIR}" + fi + + # Creating build directory + mkdir -p "${TEMPDIR}" + + # Getting sources + cd "${TEMPDIR}" + + case "${PACKAGE}" in + debian-unofficial-archive-keyring) + git clone git://git.debian.net/git/${PACKAGE}.git + ;; + + live-magic) + git clone git://git.debian.org/git/users/lamby-guest/${PACKAGE}.git + ;; + + *) + git clone git://git.debian.org/git/users/daniel/${PACKAGE}.git + ;; + esac + + # Getting version + cd "${TEMPDIR}"/${PACKAGE} + + for BRANCH in debian + do + if [ -n "$(git branch -r | grep ${BRANCH})" ] + then + git checkout -b ${BRANCH} origin/${BRANCH} || true + fi + done + + VERSION="$(dpkg-parsechangelog | awk '/Version:/ { print $2 }' | awk -F- '{ print $1 }')" + + # Getting revision + cd "${TEMPDIR}"/${PACKAGE} + REVISION="$(git log | grep -m1 Date | awk -FDate: '{ print $2 }' | awk '{ print $1 ",", $3, $2, $5, $4, $6 }')" + REVISION="$(date -d "${REVISION}" +%Y%m%d.%H%M%S)" + + # Check for existing package + if [ ! -f "${SERVER}"/${PACKAGE}_${VERSION}+${REVISION}.dsc ] || [ "${1}" = "--force" ] + then + UPDATE_INDICES="true" + + # Renaming directory + mv "${TEMPDIR}"/${PACKAGE} "${TEMPDIR}"/${PACKAGE}-${VERSION}+${REVISION} + + # Building package + cd "${TEMPDIR}"/${PACKAGE}-${VERSION}+${REVISION} + rm -rf .git + dch --force-bad-version --newversion ${VERSION}+${REVISION} --distribution UNRELEASED Autobuild snapshot of git ${REVISION}. + dpkg-buildpackage -rfakeroot -k${KEY} -sa + + # Removing sources + rm -rf "${TEMPDIR}"/${PACKAGE}-${VERSION}+${REVISION} + + # Creating directory + mkdir -p "${SERVER}" + + # Removing old packages + if [ -f "${SERVER}"/"${PACKAGE}"*.changes ] + then + for FILE in $(awk {'print $5'} "${SERVER}"/"${PACKAGE}"*.changes | grep -e ".*\.deb$" -e ".*\.diff.gz$" -e ".*\.dsc$" -e ".*\.tar.gz$" -e ".*\.udeb$") + do + rm -f "${SERVER}"/"${FILE}" + done + fi + + rm -f "${SERVER}"/"${PACKAGE}"*.changes + + # Installing new packages + for FILE in $(awk {'print $5'} "${TEMPDIR}"/"${PACKAGE}"*.changes | grep -e ".*\.deb$" -e ".*\.diff.gz$" -e ".*\.dsc$" -e ".*\.tar.gz$" -e ".*\.udeb$") + do + mv "${TEMPDIR}"/"${FILE}" "${SERVER}" + done + + mv "${TEMPDIR}"/"${PACKAGE}"*.changes "${SERVER}" + else + # Remove sources + rm -rf "${TEMPDIR}"/${PACKAGE} + fi +done + +if [ "${UPDATE_INDICES}" = "true" ] +then + LAST_UPDATE="$(date -R)" + + cd "${SERVER}" + + apt-ftparchive packages . /dev/null > Packages + gzip -9 -c Packages > Packages.gz + bzip2 -9 -c Packages > Packages.bz2 + + apt-ftparchive sources . /dev/null > Sources + gzip -9 -c Sources > Sources.gz + bzip2 -9 -c Sources > Sources.bz2 + + if [ -f release.conf ] + then + apt-ftparchive -c release.conf -o APT::FTPArchive::Release::Description="Last updated: `date -R`" release ./ >> Release.tmp + mv Release.tmp Release + + rm -f Release.gpg + gpg --default-key ${KEY} --quiet --output Release.gpg -ba Release + fi +fi + +# Reading timestamp +if [ -z "${LAST_UPDATE}" ] +then + LAST_UPDATE="$(awk -F: '/Last update:/ { print $2":"$3":"$4 }' ${SERVER}/LAST_BUILD | sed -e 's/ //')" +fi + +# Writing timestamp +cat > "${SERVER}"/LAST_BUILD << EOF +Last run begin: ${DATE_START} +Last run end: $(date -R) + +Last update: ${LAST_UPDATE} +EOF + +# Removing build directory +rm -rf "${TEMPDIR}" + +# Fixing permissions +chmod 0644 "${SERVER}"/* +chmod 0766 "${SERVER}"/*.sh + +echo "$(date +%b\ %d\ %H:%M:%S) ${HOST} live-snapshots: end build." >> "${LOGFILE}" diff --git a/examples/hooks/all_binary_debian-installer-banner.sh b/examples/hooks/all_binary_debian-installer-banner.sh new file mode 100755 index 000000000..7be8682c1 --- /dev/null +++ b/examples/hooks/all_binary_debian-installer-banner.sh @@ -0,0 +1,34 @@ +#!/bin/sh + +# This is an binary hook for live-helper(7) to overwrite the banner +# in the graphical Debian Installer. +# To enable it, copy or symlink this hook into your config/binary_local-hooks +# directory and add a replacement banner.png at: +# +# config/binary_local-includes/binary/install/banner.png +# +# The file should be a PNG image of dimensions 800 x 75. + +set -e + +if [ -e config/binary_debian-installer/banner.png ] +then + TARGET_INITRD="binary/install/gtk/initrd.gz" + REPACK_TMPDIR="binary.initrd" + + if [ -e "${TARGET_INITRD}" ] + then + # cpio does not have a "extract to directory", so we must change + # directory + mkdir -p ${REPACK_TMPDIR} + cd ${REPACK_TMPDIR} + gzip -d < ../${TARGET_INITRD} | cpio -i --make-directories --no-absolute-filenames + + # Overwrite banner + cp ../config/binary_debian-installer/banner.png ./usr/share/graphics/logo_debian.png + + find | cpio -H newc -o | gzip -9 > ../${TARGET_INITRD} + cd .. + rm -rf ${REPACK_TMPDIR} + fi +fi diff --git a/examples/hooks/all_binary_live-helper.sh b/examples/hooks/all_binary_live-helper.sh new file mode 100755 index 000000000..c1823b303 --- /dev/null +++ b/examples/hooks/all_binary_live-helper.sh @@ -0,0 +1,24 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install live-helper and its config into +# the binary image. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +DIRECTORY="binary/tools/live" + +mkdir -p "${DIRECTORY}" + +cp -a config "${DIRECTORY}" + +if [ -e live-helper ] +then + cp -a live-helper "${DIRECTORY}" +else + mkdir -p "${DIRECTORY}"/live-helper/bin + cp -a /usr/bin/lh* "${DIRECTORY}"/live-helper/bin + + cp -a /usr/share/live-helper "${DIRECTORY}"/live-helper/share + + cp -a /usr/share/doc/live-helper "${DIRECTORY}"/live-helper/doc +fi diff --git a/examples/hooks/all_chroot_hal-automount.sh b/examples/hooks/all_chroot_hal-automount.sh new file mode 100755 index 000000000..0fec6f9da --- /dev/null +++ b/examples/hooks/all_chroot_hal-automount.sh @@ -0,0 +1,16 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to enable automaunting with hal for block devices. +# +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +# Remove automount disabling +rm -f /usr/share/hal/fdi/policy/10osvendor/debian-storage-policy-fixed-drives.fdi + +# Use ntfs-3g by default to mount ntfs partitions +if [ -x /usr/bin/ntfs-3g ] +then + rm -f /sbin/mount.ntfs + ln -s /usr/bin/ntfs-3g /sbin/mount.ntfs +fi diff --git a/examples/hooks/all_chroot_kernel-purge.sh b/examples/hooks/all_chroot_kernel-purge.sh new file mode 100755 index 000000000..188f6a452 --- /dev/null +++ b/examples/hooks/all_chroot_kernel-purge.sh @@ -0,0 +1,10 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to remove any kernel except the newest one. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +for VERSION in $(basename $(ls /boot/vmlinuz-* | head -n-1) | sed -e 's|^vmlinuz-||g') +do + echo apt-get remove --purge linux-image-${VERSION} +done diff --git a/examples/hooks/all_chroot_linux-modules.sh b/examples/hooks/all_chroot_linux-modules.sh new file mode 100755 index 000000000..159e9bc52 --- /dev/null +++ b/examples/hooks/all_chroot_linux-modules.sh @@ -0,0 +1,15 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to add entries to /etc/modules. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +MODULES="" + +for MODULE in ${MODULES} +do + if ! grep -qs /etc/modules ${MODULE} + then + echo ${MODULE} >> /etc/modules + fi +done diff --git a/examples/hooks/all_chroot_localepurge.sh b/examples/hooks/all_chroot_localepurge.sh new file mode 100755 index 000000000..3fbb4c497 --- /dev/null +++ b/examples/hooks/all_chroot_localepurge.sh @@ -0,0 +1,22 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install localepurge. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# + +cat > /tmp/localepurge.preseed << EOF +localepurge localepurge/nopurge multiselect en +#localepurge localepurge/mandelete boolean true +#localepurge localepurge/dontbothernew boolean false +localepurge localepurge/showfreedspace boolean false +#localepurge localepurge/quickndirtycalc boolean true +#localepurge localepurge/verbose boolean false +EOF +debconf-set-selections < /tmp/localepurge.preseed +rm -f /tmp/localepurge.preseed + +apt-get install --yes localepurge +dpkg-reconfigure localepurge + +localepurge diff --git a/examples/hooks/all_chroot_losetup-lukshome.sh b/examples/hooks/all_chroot_losetup-lukshome.sh new file mode 100755 index 000000000..55424383c --- /dev/null +++ b/examples/hooks/all_chroot_losetup-lukshome.sh @@ -0,0 +1,460 @@ +#!/bin/sh + +# This hook was based and adapted from: +# http://lists.debian.org/debian-live/2009/04/msg00186.html +# --------------------------------------------------------- +# +# +# NOTE 1: this was not tested with persistent boot option, +# but it seems logic that persistent and lukshome can't +# coexist as boot options (because of snapshots and others), so lukshome +# won't be executed if any persistent option is given on boot. +# +# NOTE 2: if using an USB key, it will eventualy end up failing someday. +# You should backup the encrypted disk image file itself (luks-home.img) to +# prevent loosing your data. +# +# This hook will create 3 files: +# +# /usr/local/sbin/create-lukshome-file.sh +# script to create an disk file image (luks-home.img) with a +# LUKS encrypted ext2 filesystem inside to be placed in a +# partition labeled lukshome. +# +# /usr/local/sbin/lukshome.sh +# detects a partition with lukshome label, updates fstab and crypttab so +# the encrypted file is mounted later in a loopback device (/dev/loopX). +# It also changes /etc/init.d/umountfs so the encrypted home is correctly +# umounted. +# +# /usr/share/initramfs-tools/scripts/live-bottom/13live_luks_home +# a live-initramfs hook to execute lukshome.sh script +# in initrd. +# +# +# HOWTO lukshome +# -------------- +# +# First build your live system with this hook inside config/chroot_local-hooks/. +# If you have an existing live-helper build directory with a previous live +# build, you might have to run +# +# lh_clean +# lh_clean --stage +# +# to make sure this hook is included in the live system. Then (re)build your +# live system. +# +# lh_build +# +# After booting your (re)built live system, setup the encrypted losetup +# filesystem to be used as /home using the instructions present in the +# create-lukshome-file.sh script. +# +# Reboot and now use the "lukshome" boot option to mount the encrypted /home, +# like in using "persistent" boot option with a home-rw file in some partition. +# + + +echo "I: to see how use lukshome hook run create-lukshome-file.sh as root." +echo "I: creating script /usr/local/sbin/create-lukshome-file.sh" +cat > /usr/local/sbin/create-lukshome-file.sh << 'EOF' +#!/bin/sh + +# This script is to create an encrypted filesystem in a file to +# be used as /home in a live system built with Debian Live Helper with +# the lukshome hook in config/chroot_local-hooks/. +# +# The lukshome boot option will do the following: +# - search for a partition with label 'lukshome' +# (btw, you can't use the live system partition itself) +# - mount the partition as /luks-home in the live system +# - open /luks-home/luks-home.img file as a loopback device (/dev/loop) +# - open the loopback device with cryptsetup +# - mount the encrypted filesystem as /home +# +# This script will only create the luks-home.img file. Next are details of how +# to use this script. +# +# CAUTION! THIS CAN WIPE YOUR DATA, backup first! +# Be sure to understand what you will do, or you can end up +# wiping disks or partitions you don't want to! +# +# Login as root: +# $ sudo -i +# +# Create a mountpoint (don't use /mnt, it will be used by this script): +# # mkdir /media/target +# +# !!! *** Skip the next line if you don't want to wipe a partition *** !!! +# !!! * Just change the partition label to 'lukshome' (without quotes) * !!! +# Create an ext2 filesystem in a partition with 'lukshome' label: +# # mkfs.ext2 -L lukshome /dev/the_partition_to_be_used +# +# Mount the partition and cd into it: +# # mount /dev/the_partition_to_be_used /media/target +# # cd /media/target +# +# Create the encrypted file: +# # create-lukshome-file.sh +# +# The script is located in /usr/local/sbin/, so it's in root $PATH. +# It will copy the directories in /home/* into the file. +# Now return to $HOME to be able to umount the target partition: +# # cd +# +# Umount the target partition: +# # umount /media/target +# +# Reboot and use the "lukshome" boot option to mount the encrypted /home, +# like in using "persistent" boot option with a home-rw file in some partition. +# +# Press Shift-PgUp/Shift-PgDn to scrool the instructions on the screen. + + +# check if root/sudo +if [ "${USER}" != "root" ] +then + echo " ** Please run this script as root or with sudo." + exit 1 +fi + +# check if /mnt is available and empty +mount | grep "/mnt" > /dev/null +MNT_IS_MOUNTED=${?} +if [ "${MNT_IS_MOUNTED}" == 0 ] +then + echo "** ERROR: /mnt is mounted at the moment. Please umount it to use this script." + exit 1 +fi +if [ "$(ls -A /mnt)" ] +then + echo "** ERROR: /mnt is not empty. An empty /mnt is needed to use this script." + exit 1 +fi + +# check if /dev/mapper/luks-home is available +if [ -f /dev/mapper/luks-home ] +then + echo "** ERROR: /dev/mapper/luks-home is being used at the moment. Please run «cryptsetup remove luks-home» to use this script." + exit 1 +fi + + +# show instructions +echo "" +echo "** Instructions to use create-lukshome-file.sh (this script):" +sed -n '2,51p' /usr/local/sbin/create-lukshome-file.sh | sed 's/^.//' +echo "" + + +# proceed? +echo "** Do you want to proceed with this script? (y/N)" +read CONFIRM + +case "${CONFIRM}" in + y*|Y*) + echo "" + ;; + *) + exit 0 + ;; +esac + + +# create file +echo "" +echo "** Please type the size of the file disk image." +echo "Size of the file in MB: " +read FILE_SIZE + +echo "" +echo "** Creating file luks-home.img." +echo "** Filling file image with /dev/urandom output. It will take some time." +echo "(Edit this script to use /dev/random. It's know to more secure but " +echo "it will take a *very* long time to complete." +dd if=/dev/urandom of=luks-home.img bs=1M count=${FILE_SIZE} +# To use /dev/random comment the line above and uncomment the next line +#dd if=/dev/random of=luks-home.img ibs=128 obs=128 count=$((8192*${FILE_SIZE})) +# You might have to increase kernel entropy by moving the mouse, typing keyboard, +# make the computer read disk or use network connections. +echo "** Done." +echo "" + +# losetup +FREE_LOSETUP=$(losetup -f) +echo "** Using ${FREE_LOSETUP} to open luks-home.img" +losetup ${FREE_LOSETUP} ./luks-home.img +echo "** Done." +echo "" + +# cryptsetup +echo "** Running cryptsetup." +echo "" +echo "** luksFormat" +cryptsetup luksFormat ${FREE_LOSETUP} +EXIT_CODE=${?} +if [ "${EXIT_CODE}" != 0 ] +then + echo "** ERROR: Error while trying to format disk file image." + losetup -d ${FREE_LOSETUP} + exit 1 +fi +echo "" + +echo "** luksOpen" +cryptsetup luksOpen ${FREE_LOSETUP} luks-home +EXIT_CODE=${?} +if [ "${EXIT_CODE}" != 0 ] +then + echo "** ERROR: Error while trying to open LUKS file image." + losetup -d ${FREE_LOSETUP} + exit 1 +fi +echo "" + +# format encrypted filesystem +echo "** Now formating /dev/mapper/luks-home" +mkfs.ext2 /dev/mapper/luks-home +EXIT_CODE=${?} +if [ "${EXIT_CODE}" != 0 ] +then + echo "** ERROR: Error while trying to format LUKS file." + cryptsetup remove luks-home + losetup -d ${FREE_LOSETUP} + exit 1 +fi +echo "" + +# mount in /mnt +echo "** Now mounting luks-home.img in /mnt" +mount /dev/mapper/luks-home /mnt +EXIT_CODE=${?} +if [ "${EXIT_CODE}" != 0 ] +then + echo "** ERROR: Error while trying to mount LUKS file in /mnt." + umount /mnt + cryptsetup remove luks-home + losetup -d ${FREE_LOSETUP} + exit 1 +fi +echo "" + +# copy files +HOME_DIR="/home/*" + +echo "** Copying ${HOME_DIR}." +cp -rav ${HOME_DIR} /mnt +EXIT_CODE=${?} +if [ "${EXIT_CODE}" != 0 ] +then + echo "** ERROR: Error while trying to copy files to /mnt." + umount /mnt + cryptsetup remove luks-home + losetup -d ${FREE_LOSETUP} + exit 1 +fi +echo "** Done." +echo "" + +echo "** All done." +echo "** Closing losetup, cryptsetup and mounted /mnt." +# umount and close +umount /mnt +cryptsetup remove luks-home +losetup -d ${FREE_LOSETUP} +echo "** The disk file image luks-home.img is done and ready. Move it into a partition" +echo "** with 'lukshome' as label and reboot with lukshome boot option to use it." +echo "" + +EOF + +chmod 0755 /usr/local/sbin/create-lukshome-file.sh + + + +echo "I: creating script /usr/local/sbin/lukshome.sh" +cat > /usr/local/sbin/lukshome.sh << 'EOF' +#!/bin/sh + +# this script is to be executed by a hook in live-initramfs. It searches +# for a partition with 'lukshome' label, mounts it as /luks-home, then opens an +# encrypted disk image file called luks-home.img as a loopback device, opens it +# with cryptsetup and finally mounts the present filesystem as /home. +# It also changes /etc/init.d/umountfs to umount the lukshome partition +# (/luks-home) and clear the loopback device on shutdown. + +# functions taken from live-helpers +. /usr/share/initramfs-tools/scripts/live-helpers + +# search for a partition labeled "lukshome" +for sysblock in $(echo /sys/block/* | tr ' ' '\n' | grep -v loop | grep -v ram | grep -v fd) +do + for dev in $(subdevices "${sysblock}") + do + devname=$(sys2dev "${dev}") + # find partition name and filesystem type + if [ "$(/lib/udev/vol_id -l ${devname} 2>/dev/null)" = "lukshome" ] + then + # found one partition named "lukshome" + CRYPTHOME="${devname}" + # don't search further + break + fi + done + # if already found, don't search further + if [ -n "${CRYPTHOME}" ] + then + break + fi +done + +# if no partition found, exit +if [ -z "${CRYPTHOME}" ] +then + echo "Could not find any partition with lukshome label. " + echo "Proceeding with no encrypted /home." + exit 0 +fi + +# mount partition where file container is +echo "Mounting /luks-home with ${CRYPTHOME}." +mkdir -p /luks-home +mount -t $(get_fstype "${CRYPTHOME}") "${CRYPTHOME}" /luks-home + +# mount losetup encrypted file +FREE_LOOP="$(/sbin/losetup -f)" +echo "Opening /luks-home/luks-home.img in ${FREE_LOOP}." + +if [ -f /luks-home/luks-home.img ] +then + /sbin/losetup ${FREE_LOOP} /luks-home/luks-home.img + + echo "Adding ${FREE_LOOP} home to /etc/crypttab and setting it as /home in /etc/fstab." + + # update crypttab + echo "home ${FREE_LOOP} none luks,check,timeout" >> /etc/crypttab + + # update fstab + echo "/dev/mapper/home /home ext2 defaults,noatime 0 0" >> /etc/fstab +else + echo "Did not found any luks-home.img file in ${CRYPTHOME}!" + echo "Proceeding with no encrypted /home." + umount -r /luks-home + exit 0 +fi + +# changes to /etc/init.d/umountfs to make /luks-home being umounted on shutdown +sed -i 's/[\t]do_stop/CHANGE_HERE/' /etc/init.d/umountfs +sed -i 's|CHANGE_HERE| \ + # added by lukshome hook - umount \/luks-home to prevent busy device on shutdown \ + LOOP_LUKSHOME=$(losetup -a \| grep luks-home \|cut -c 1-10) \ + if [ -n ${LOOP_LUKSHOME} ] \ + then \ + umount -r -d \/home \ + cryptsetup remove home \ + losetup -d ${LOOP_LUKSHOME} \ + umount -r \/luks-home \ + fi \ +\ + do_stop \ +|' /etc/init.d/umountfs + +EOF + +chmod 0755 /usr/local/sbin/lukshome.sh + + + +# scripts/live-bottom/13live_luks_home, right after 12fstab +echo "I: creating /usr/share/initramfs-tools/scripts/live-bottom/13live_luks_home" + +cat > /usr/share/initramfs-tools/scripts/live-bottom/13live_luks_home << 'EOF' +#!/bin/sh + +#set -e + +# initramfs-tools header + +PREREQ="" + +prereqs() +{ + echo "${PREREQ}" +} + +case "${1}" in + prereqs) + prereqs + exit 0 + ;; +esac + +. /scripts/live-functions + +# live-initramfs hook to use an disk image file with encrypted filesystem as /home. + +log_begin_msg "Executing losetup-lukshome" + +# get boot option lukshome - adapted from live-helpers +for ARGUMENT in $(cat /proc/cmdline) +do + case "${ARGUMENT}" in + lukshome) + LUKSHOME=1 + ;; + esac +done + +# don't use persistent* and lukshome +if [ -n "${PERSISTENT}" ] && [ -n "${LUKSHOME}" ] +then + echo "You should not use persistent and lukshome at the same time." + echo "Skipping lukshome. Persistent medium, if any, will be used instead." + log_end_msg + exit 0 +fi + +# if no lukshome boot option, exit +if [ -z "${LUKSHOME}" ] +then + log_end_msg + exit 0 +fi + +log_begin_msg "Executing lukshome.sh script." + +mount -o bind /sys /root/sys +mount -o bind /proc /root/proc +mount -o bind /dev /root/dev + +# lukshome.sh detects lukshome partition and file location, mounts it +# and opens the file and then updates fstab and crypttab to use it as /home. +chroot /root /usr/local/sbin/lukshome.sh + +umount /root/sys +umount /root/proc +umount /root/dev + +# delete the lukshome scripts, not needed anymore +# rm -f /root/usr/local/sbin/lukshome.sh +# rm -f /root/usr/local/sbin/create-lukshome-file.sh + +log_end_msg + +EOF + +chmod 0755 /usr/share/initramfs-tools/scripts/live-bottom/13live_luks_home + + + +echo "I: update-initramfs to include 13live_luks_home." +# if you already have installed the update-initramfs.sh hook, you can remove +# this. + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + update-initramfs -k ${VERSION} -t -u +done diff --git a/examples/hooks/all_chroot_rt2570-modules.sh b/examples/hooks/all_chroot_rt2570-modules.sh new file mode 100755 index 000000000..408b1383f --- /dev/null +++ b/examples/hooks/all_chroot_rt2570-modules.sh @@ -0,0 +1,19 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install ralink rt2570 drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +apt-get install --yes build-essential + +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install rt2570-source -l ${VERSION} +done + +module-assistant clean rt2570-source diff --git a/examples/hooks/all_chroot_sun-java6.sh b/examples/hooks/all_chroot_sun-java6.sh new file mode 100755 index 000000000..c86066fba --- /dev/null +++ b/examples/hooks/all_chroot_sun-java6.sh @@ -0,0 +1,28 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install sun-java. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the non-free category. Make sure you +# enabled it in your configuration. + +# live-helper sets DEBIAN_FRONTEND to 'noninteractive' to advise debconf to not +# ask any questions while installing packages. Suns redistribution terms for +# Java do not allow this, therefore we need to overwrite DEBIAN_FRONTEND for +# this apt-get call only. + +# In case you do accept the license terms, you can also preseed the values +# for a complete non-interactive build, by uncommenting the following three lines: + +#echo "sun-java6-bin shared/accepted-sun-dlj-v1-1 boolean true" > /root/preseed +#debconf-set-selections < /root/preseed +#rm -f /root/preseed + +DEBIAN_FRONTEND="dialog" apt-get install --yes sun-java6-bin sun-java6-demo \ + sun-java6-doc sun-java6-fonts sun-java6-jdk sun-java6-jre \ + sun-java6-plugin sun-java6-source + +# Ensure that /tmp has the right permissions; apparently sun-java5-doc tampers +# with it +chmod 1777 /tmp diff --git a/examples/hooks/all_chroot_update-initramfs.sh b/examples/hooks/all_chroot_update-initramfs.sh new file mode 100755 index 000000000..5179f77e9 --- /dev/null +++ b/examples/hooks/all_chroot_update-initramfs.sh @@ -0,0 +1,15 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to rebuild the initramfs image. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: You only want to use this hook if you have modified any initramfs-script +# during the build and need to refresh the initrd.img for that purpose. + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + update-initramfs -k ${VERSION} -t -u +done diff --git a/examples/hooks/all_chroot_virtualbox-ose.sh b/examples/hooks/all_chroot_virtualbox-ose.sh new file mode 100755 index 000000000..bcf7289b5 --- /dev/null +++ b/examples/hooks/all_chroot_virtualbox-ose.sh @@ -0,0 +1,8 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to enable virtualbox-ose module. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +# Enabling loading of vboxdrv +sed -i -e 's|^LOAD_VBOXDRV_MODULE=.*$|LOAD_VBOXDRV_MODULE=1|' /etc/default/virtualbox-ose diff --git a/examples/hooks/etch_chroot_beryl.sh b/examples/hooks/etch_chroot_beryl.sh new file mode 100755 index 000000000..ad4cb81dd --- /dev/null +++ b/examples/hooks/etch_chroot_beryl.sh @@ -0,0 +1,80 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install beryl and enable aiglx. +# It was originally written by Inigo Tejedor Arrondo <inigo@navarrux.org>. +# +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# For forcing aiglx activation type at boot prompt "live forceaiglx". +# For forcing aiglx deactivation type "live noaiglx". + +# Importing archive signing key +wget -O - http://debian.beryl-project.org/root@lupine.me.uk.gpg | apt-key add - + +# Updating indices +apt-get update + +# Installing packages +PACKAGES="beryl beryl-core beryl-manager beryl-plugins beryl-settings beryl-settings-bindings beryl-settings-simple mesa-utils" + +dpkg -s gnome-core > /dev/null 2>&1 && PACKAGES="${PACKAGES} emerald emerald-themes heliodor" +dpkg -s kde-core > /dev/null 2>&1 && PACKAGES="${PACKAGES} aquamarine" + +apt-get install --yes ${PACKAGES} + +# Adding init script +cat > /etc/init.d/aiglx << EOF +#!/bin/sh +activate_3d() +{ + activate_aiglx + activate_beryl +} + +activate_aiglx() +{ + echo "" >> /etc/X11/xorg.conf + echo "# Added by beryl-hook.sh" >> /etc/X11/xorg.conf + echo "Section \"Extensions\"" >> /etc/X11/xorg.conf + echo " Option \"Composite\" \"Enable\"" >> /etc/X11/xorg.conf + echo "EndSection" >> /etc/X11/xorg.conf + + sed -i -e "s/Section \"Device\""/"Section \"Device\"\n\t Option \"XAANoOffscreenPixmaps\" \"true\"\n\t Option \"AddARGBGLXVisuals\" \"on\"\n\t Option \"AllowGLXWithComposite\" \"true\"/" -e "s/Section \"Module\""/"Section \"Module\"\n\t Load \"i2c\"\n\t Load \"int10\"\n\t Load \"xtrap\"\n\t Load \"vbe\"/" /etc/X11/xorg.conf +} + +activate_beryl() +{ + # http://standards.freedesktop.org/autostart-spec/autostart-spec-latest.html + ! [ -d /etc/xdg/autostart ] && mkdir -p /etc/xdg/autostart + +cat > /etc/xdg/autostart/beryl-manager.desktop << EOS +[Desktop Entry] +Encoding=UTF-8 +Name=Beryl Manager +GenericName=3D Window Manager +Comment=Beryl Manager daemon +Icon= +Exec=beryl-starter +Terminal=false +Type=Application +Categories= +EOS + +cat > /usr/local/bin/beryl-starter << EOS +#!/bin/sh +glxinfo > /dev/null 2>&1 && beryl-manager +EOS + +chmod 0755 /usr/local/bin/beryl-starter +} + +if ! cat /proc/cmdline | grep noaiglx > /dev/null +then + echo "Configuring xorg for aiglx..." + activate_3d +fi +EOF + +chmod 0755 /etc/init.d/aiglx +update-rc.d aiglx defaults diff --git a/examples/hooks/etch_chroot_ipw2100-modules.sh b/examples/hooks/etch_chroot_ipw2100-modules.sh new file mode 100755 index 000000000..e246eb251 --- /dev/null +++ b/examples/hooks/etch_chroot_ipw2100-modules.sh @@ -0,0 +1,32 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install ipw2100 drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the contrib category. Make sure you enabled +# it in your configuration. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install ipw2100 -l ${VERSION} +done + +module-assistant clean ipw2100 + +# Installing firmware (http://ipw2100.sourceforge.net/firmware.php) +wget --referer "http://ipw2100.sourceforge.net/firmware.php" "http://ipw2100.sourceforge.net/firmware.php?i_agree_to_the_license=yes&f=ipw2100-fw-1.3.tgz" -O /tmp/ipw2100-fw-1.3.tgz + +cd /tmp +tar xfvz ipw2100-fw-1.3.tgz +mv ipw2100-1.3* /lib/firmware +rm -f ipw2100-fw-1.3.tgz +cd ${OLDPWD} diff --git a/examples/hooks/etch_chroot_ipw2200-modules.sh b/examples/hooks/etch_chroot_ipw2200-modules.sh new file mode 100755 index 000000000..145ca8b80 --- /dev/null +++ b/examples/hooks/etch_chroot_ipw2200-modules.sh @@ -0,0 +1,32 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install ipw2200 drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the contrib category. Make sure you enabled +# it in your configuration. + +apt-get install --yes build-essential + +# Building kernel mdoule +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install ipw2200 -l ${VERSION} +done + +module-assistant clean ipw2200 + +# Installing firmware (http://ipw2200.sourceforge.net/firmware.php) +wget --referer "http://ipw2200.sourceforge.net/firmware.php" "http://ipw2200.sourceforge.net/firmware.php?i_agree_to_the_license=yes&f=ipw2200-fw-3.0.tgz" -O /tmp/ipw2200-fw-3.0.tgz + +cd /tmp +tar xfvz ipw2200-fw-3.0.tgz +cp ipw2200-fw-3.0/*.fw /lib/firmware/ +rm -rf ipw2200-fw-3.0* +cd ${OLDPWD} diff --git a/examples/hooks/etch_chroot_ipw3945-modules.sh b/examples/hooks/etch_chroot_ipw3945-modules.sh new file mode 100755 index 000000000..f805cf956 --- /dev/null +++ b/examples/hooks/etch_chroot_ipw3945-modules.sh @@ -0,0 +1,29 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install ipw3945 drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the contrib and non-free category. Make +# sure you enabled it in your configuration. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install ipw3945 -l ${VERSION} +done + +module-assistant clean ipw3945 + +# Installing additional stuff +apt-get install firmware-ipw3945 ipw3945d + +# hackish, autorun regulatory daemon, update-rc.d will reject that +ln -s /etc/init.d/ipw3945d /etc/rc2.d/S19ipw3945d diff --git a/examples/hooks/etch_chroot_unionfs-modules.sh b/examples/hooks/etch_chroot_unionfs-modules.sh new file mode 100755 index 000000000..20f088670 --- /dev/null +++ b/examples/hooks/etch_chroot_unionfs-modules.sh @@ -0,0 +1,23 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install unionfs drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: You only want to use this hook if there is no prebuild unionfs-modules-* +# package available for your kernel flavour. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install unionfs -l ${VERSION} +done + +module-assistant clean unionfs diff --git a/examples/hooks/lenny_binary_live-installer-usbfix.sh b/examples/hooks/lenny_binary_live-installer-usbfix.sh new file mode 100755 index 000000000..ded8b80ed --- /dev/null +++ b/examples/hooks/lenny_binary_live-installer-usbfix.sh @@ -0,0 +1,96 @@ +#!/bin/sh + +echo "BINARY-HOOK: fix install from USB in Lenny." + +# This is a *binary-hook* to allow disk installations from USB for +# Debian 5.0.x Lenny. Place this file in config/binary_local-hooks/, +# make it executable and rebuild your live image (binary only). + +# This workaround for debian-installer was adapted from Chris Lamb +original patch: +# http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498143#5 + +# It works by fooling apt-setup. With an existing /hd-media directory +# apt-setup will not try to umount /cdrom. Enable live installer with +# lh_config: +# +# lh_config --debian-installer "live" +# +# Rebuild your binary image. No options needed on boot. + +cat > cdrom-detect.postinst.patch << 'EOF' +@@ -44,6 +44,30 @@ do + fi + done + ++ # Try disk partitions masquerading as Debian CDs for Debian Live ++ # "usb-hdd" images. Only vfat and ext are supported. ++ modprobe vfat >/dev/null 2>&1 || true ++ for device in $(list-devices partition); do ++ if mount -t vfat -o ro,exec $device /cdrom || ++ mount -t ext2 -o ro,exec $device /cdrom; then ++ log "Pseudo CD-ROM mount succeeded: device=$device" ++ ++ # Test whether it's a Debian CD ++ if [ -e /cdrom/.disk/info ]; then ++ mounted=1 ++ db_set cdrom-detect/cdrom_device $device ++ # fake hd-media install so that apt-setup doesn't break. ++ mkdir /hd-media ++ break ++ else ++ log "Ignoring pseudo CD-ROM device $device - it is not a Debian CD" ++ umount /cdrom 2>/dev/null || true ++ fi ++ else ++ log "Psuedo CD-ROM mount failed: device=$device" ++ fi ++ done ++ + if [ "$mounted" = "1" ]; then + break + fi + +EOF + +# for the syslinux installer +mkdir usb-install-syslinux +cd usb-install-syslinux +zcat ../binary/install/initrd.gz | cpio -iv +patch ./var/lib/dpkg/info/cdrom-detect.postinst < ../cdrom-detect.postinst.patch +PATCH_ERROR=${?} +if [ "${PATCH_ERROR}" != 0 ] +then + # if there was an error, say it and undo everything. + echo "ERROR: error while patching cdrom-detect.postinst." + cd .. + rmdir -rf usb-install-syslinux + exit 0 +fi +# rebuild the initrd +find . -print0 | cpio -0 -H newc -ov | gzip -c > ../initrd-new.gz +cd .. +mv initrd-new.gz binary/install/initrd.gz +rm -rf usb-install-syslinux + +# for the gtk installer +mkdir usb-install-gtk +cd usb-install-gtk +zcat ../binary/install/gtk/initrd.gz | cpio -iv +patch ./var/lib/dpkg/info/cdrom-detect.postinst < ../cdrom-detect.postinst.patch +PATCH_ERROR=${?} +if [ "${PATCH_ERROR}" != 0 ] +then + # if there was an error, say it and undo everything + echo "ERROR: error while patching cdrom-detect.postinst." + cd .. + rmdir -rf usb-install-gtk + exit 0 +fi +# rebuild the initrd +find . -print0 | cpio -0 -H newc -ov | gzip -c > ../initrd-new.gz +cd .. +mv initrd-new.gz binary/install/gtk/initrd.gz +rm -rf usb-install-gtk + +rm cdrom-detect.postinst.patch diff --git a/examples/hooks/lenny_chroot_aufs-modules.sh b/examples/hooks/lenny_chroot_aufs-modules.sh new file mode 100755 index 000000000..e70dcc749 --- /dev/null +++ b/examples/hooks/lenny_chroot_aufs-modules.sh @@ -0,0 +1,23 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install aufs drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: You only want to use this hook if there is no prebuild aufs-modules-* +# package available for your kernel flavour. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install aufs -l ${VERSION} +done + +module-assistant clean aufs diff --git a/examples/hooks/lenny_chroot_kpdf-nodrm.sh b/examples/hooks/lenny_chroot_kpdf-nodrm.sh new file mode 100755 index 000000000..99fa3e9f2 --- /dev/null +++ b/examples/hooks/lenny_chroot_kpdf-nodrm.sh @@ -0,0 +1,18 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to configure KDE's PDF viewer to ignore +# manipulation restriction on "DRM protect" PDF documents. +# +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +if [ -d /usr/share/config ] +then + # KDE3 (etch/lenny) + +cat > /usr/share/config/kpdfpartrc << EOF +[General] +ObeyDRM=false +EOF + +fi diff --git a/examples/hooks/lenny_chroot_madwifi-modules.sh b/examples/hooks/lenny_chroot_madwifi-modules.sh new file mode 100755 index 000000000..0686c122b --- /dev/null +++ b/examples/hooks/lenny_chroot_madwifi-modules.sh @@ -0,0 +1,26 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install madwifi drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the contrib category. Make sure you enabled +# it in your configuration. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install madwifi -l ${VERSION} +done + +module-assistant clean madwifi + +# Installing additional stuff +apt-get install --yes madwifi-tools diff --git a/examples/hooks/lenny_chroot_nvidia-legacy-modules.sh b/examples/hooks/lenny_chroot_nvidia-legacy-modules.sh new file mode 100755 index 000000000..66d67bcb5 --- /dev/null +++ b/examples/hooks/lenny_chroot_nvidia-legacy-modules.sh @@ -0,0 +1,56 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install nvidia-kernel-legacy drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the non-free category. Make sure you +# enabled it in your configuration. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant nvidia-kernel-common +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install nvidia-kernel-legacy -l ${VERSION} +done + +module-assistant clean nvidia-kernel-legacy + +# Installing additional stuff +apt-get install --yes nvidia-glx-legacy nvidia-xconfig discover + +# Fix #421028 +if [ -f /usr/lib/xorg/modules/drivers/nvidia_drv.o ] +then + cd /usr/lib/xorg/modules/drivers + gcc -shared -o nvidia_drv.so nvidia_drv.o + cd ${OLDPWD} +fi + +# Adding init script +cat > /etc/init.d/nvidia-debian-live << EOF +#!/bin/sh +# script that modify xorg configuration enabling +# the nvidia proprietary module if the card is detected +# as an NVidia + +if discover --type-summary display | grep -i nvidia +then + # forcing depth to 24, bad detection on some card (e.g my GeForce4 440 Go) + echo "Configuring Xorg for nvidia ..." + nvidia-xconfig -d 24 +else + # not with nvidia h/w ? remove those GLX diversions + # (FIXME) + apt-get --quiet --yes remove nvidia-glx-legacy +fi +EOF + +chmod 0755 /etc/init.d/nvidia-debian-live +update-rc.d nvidia-debian-live defaults diff --git a/examples/hooks/lenny_chroot_squashfs-modules.sh b/examples/hooks/lenny_chroot_squashfs-modules.sh new file mode 100755 index 000000000..20667e25b --- /dev/null +++ b/examples/hooks/lenny_chroot_squashfs-modules.sh @@ -0,0 +1,23 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install squashfs drivers +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: You only want to use this hook if there is no prebuild +# squashfs-modules-* package available for your kernel flavour. + +apt-get install --yes build-essential + +# Building kernel module +which module-assistant || apt-get install --yes module-assistant +module-assistant update + +for KERNEL in /boot/vmlinuz-* +do + VERSION="$(basename ${KERNEL} | sed -e 's|vmlinuz-||')" + + module-assistant --non-inter --quiet auto-install squashfs -l ${VERSION} +done + +module-assistant clean squashfs diff --git a/examples/hooks/lenny_chroot_sun-java5.sh b/examples/hooks/lenny_chroot_sun-java5.sh new file mode 100755 index 000000000..139efd5ee --- /dev/null +++ b/examples/hooks/lenny_chroot_sun-java5.sh @@ -0,0 +1,28 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to install sun-java. +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. +# +# Note: This hook requires packages from the non-free category. Make sure you +# enabled it in your configuration. + +# live-helper sets DEBIAN_FRONTEND to 'noninteractive' to advise debconf to not +# ask any questions while installing packages. Suns redistribution terms for +# Java do not allow this, therefore we need to overwrite DEBIAN_FRONTEND for +# this apt-get call only. + +# In case you do accept the license terms, you can also preseed the values +# for a complete non-interactive build, by uncommenting the following three lines: + +#echo "sun-java5-bin shared/accepted-sun-dlj-v1-1 boolean true" > /root/preseed +#debconf-set-selections < /root/preseed +#rm -f /root/preseed + +DEBIAN_FRONTEND="dialog" apt-get install --yes sun-java5-bin sun-java5-demo \ + sun-java5-doc sun-java5-fonts sun-java5-jdk sun-java5-jre \ + sun-java5-plugin sun-java5-source + +# Ensure that /tmp has the right permissions; apparently sun-java5-doc tampers +# with it +chmod 1777 /tmp diff --git a/examples/hooks/squeeze_chroot_okular-nodrm.sh b/examples/hooks/squeeze_chroot_okular-nodrm.sh new file mode 100755 index 000000000..782133c29 --- /dev/null +++ b/examples/hooks/squeeze_chroot_okular-nodrm.sh @@ -0,0 +1,18 @@ +#!/bin/sh + +# This is a hook for live-helper(7) to configure KDE's PDF viewer to ignore +# manipulation restriction on "DRM protect" PDF documents. +# +# To enable it, copy or symlink this hook into your config/chroot_local-hooks +# directory. + +if [ -d /usr/share/kde4/config ] +then + # KDE4 (squeeze/sid) + +cat > /usr/share/kde4/config/okularpartrc << EOF +[General] +ObeyDRM=false +EOF + +fi diff --git a/examples/sources/debian-backports_lenny b/examples/sources/debian-backports_lenny new file mode 100644 index 000000000..56cf830f7 --- /dev/null +++ b/examples/sources/debian-backports_lenny @@ -0,0 +1,9 @@ +## This is a sources.list for live-helper(7) to use packages from the +## Debian Lenny backports repository. +## +## To enable it, copy this file to your config/chroot_sources directory, once +## as e.g. debian-backports.chroot and once as debian-backports.binary. + +# Debian backports for Lenny +deb http://www.backports.org/debian/ lenny-backports main +deb-src http://www.backports.org/debian/ lenny-backports main diff --git a/examples/sources/debian-backports_lenny.gpg b/examples/sources/debian-backports_lenny.gpg new file mode 100644 index 000000000..815915504 --- /dev/null +++ b/examples/sources/debian-backports_lenny.gpg @@ -0,0 +1,33 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1.4.10 (GNU/Linux) + +mQGiBEMIgw4RBADueqAzlq+rQT9JYSSWnNzo6C+9crI8lzW/fcl2Q3PO97MOQTOx +Qsf/lOh0Ku7O+VdBa+BwVPuUkSw6wTY5Ku1y/6r1BQzJ9oHkryDDJXsHzKhpdyFc +/lD4hNGqRkiNg5ulwAI0O1eqffPWDmeR9ZzSsqM40f1U4TNLfPAu1viWxwCgnbWz +onY6RqSYlRsDQaPsNTwieVEEAJeX2FGgNepD1SvfEremAkWCrYYlSZI76iTIf6bd +kGkWqIT0vJyE2MNenhDJ2ebbHJVFmL9x8S3m1daC4Zwnacm7aoCY/QgMJ+Js1Fex +Acev48W9KHgpVbFMd1t8KAwRbmFcQf0C/FZUbE7xScpTxS4z3SsMOuRyfnGpDOi6 +m/SnA/9wpquf3pPwbPykzKWNJEDouiJgt0zaFLauKDPeyTWeJ6htaAPDglArewdq +bJ9M8QgLFtzjhg/fBQlRRUk7YP4OYtp1OdPkg2D/1rPQNySWlDf21T3N/K8ydKhR +bYi+AsPuJLQUi3d+lVTFOebaL9felePvDC2/Eod7PSD1/rnkZ7Q0QmFja3BvcnRz +Lm9yZyBBcmNoaXZlIEtleSA8ZnRwLW1hc3RlckBiYWNrcG9ydHMub3JnPohGBBAR +AgAGBQJDgImkAAoJEHFe1qB+e4rJ2x4An2oI4xJpDvOx8uDIo9ihG1M0MpUqAJ9S +cqVUmiyYSPtu8MwcZecy9kmOIYheBBMRAgAeBQJDCIMOAhsDBgsJCAcDAgMVAgMD +FgIBAh4BAheAAAoJEOqOiyEWuhNsDt4AniaEBvlr4oVFMrGgPiye7iE/jv68AJ48 +OkIfwcKJt7N8ImPAboeimFvWgIheBBMRAgAeBQJDCIMOAhsDBgsJCAcDAgMVAgMD +FgIBAh4BAheAAAoJEOqOiyEWuhNsDt4AnjdB14rGa/rzz1ohwsi1oEnDRYuyAJ44 +Nv8MTPjOaeEZArQ0flg8OXwF37kCDQRDCIMREAgAzXu6DGSDAz4JH+mlthtiQwNZ +FU8bjWanGT3DL6zubxwc3ZQmRaMOiVuvJUuaJv8fdGRSvp09dP2/x5mzq2rACiEn +DwZssNSK5sigxgy2W9zeO9bOtg6bhqZLwlsL8Y2xZhyGL3qGeP4zL1QbXZ1QdJuO +90Xu7GWYS6Wsj+Y6dUsZFYvTZwSiLkEmgFUTxkNue3DQtZ/KNkwoKc+aqU+S7gDN +StQDvTNtR6IV11KbKcY1iQ0B2bkh4zShWwloIr83V6huAhfH8GA7UW6saRJAof5D +JWUb+PRmU2TAOOlyZoM4nMH+sFFDPOeG8fbecwlox5BRTMqcCB5ELbQXoVZT+wAD +BQf/ffI9R53f9USQkhsSak+k82JjRo9hqKAvPwBv3fDhMYqX3XRmwgNeax2y6Ub0 +AQkDhIC6eJILP5hTb2gjpmYYP7YE/7F1h37lUg7dDYeyPQF54mUXPnIg3uQ/V9HB +TY+ZW8rsVe1KRvPAuVFU77FfCvIFdLSXVi1HSUcGv9Y7Kk4Tkr7vzKshlcIp6zZr +O0Y3t/+ekBwTTQqEoUylVYkCSt3z6bjpVWbepkL88rbqJnPueTATw9shjbFYaND8 +cXZox9tQmlOIZ6gDeH1YvFf7ObRLxULm7C6hwik6agtXWkNABVXSxM6MB4hcP9QC ++FEhK6y/7wC3SyNRBuFujDG1aohJBBgRAgAJBQJDCIMRAhsMAAoJEOqOiyEWuhNs +VVMAoJ1gbL0PHVf7yDwMjO3HuJBErxLdAJ4v9ojJnvJu2yUl4W586soBm+wsLg== +=fBrI +-----END PGP PUBLIC KEY BLOCK----- diff --git a/examples/sources/debian-live_sid-snapshots b/examples/sources/debian-live_sid-snapshots new file mode 100644 index 000000000..86def09df --- /dev/null +++ b/examples/sources/debian-live_sid-snapshots @@ -0,0 +1,9 @@ +## This is a sources.list for live-helper(7) to use packages from the +## Debian Live Snapshot repository. +## +## To enable it, copy this file to your config/chroot_sources directory, once +## as e.g. live-snapshots.chroot and once as live-snapshots.binary. + +# Debian Live Snapshots +deb http://live.debian.net/ sid/snapshots main contrib non-free +deb-src http://live.debian.net/ sid/snapshots main contrib non-free diff --git a/examples/sources/debian-live_sid-snapshots.gpg b/examples/sources/debian-live_sid-snapshots.gpg new file mode 100644 index 000000000..004fe9028 --- /dev/null +++ b/examples/sources/debian-live_sid-snapshots.gpg @@ -0,0 +1,32 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1.4.10 (GNU/Linux) + +mQINBEqdKDABEADBLagcqCJZea/V62l/ow6qo0gjmMOSiF8oi5HJmFfHoX1hogTP +JCaemzc8/CVBQ9ryLRyIfxVT367tBHweWFIEJZUnNINFYLsQms8WOex5fKZkRrox +ROsKDh+zeaUWeKEEG9Z9SAvpvPS50L3KnwKiZZE1tFY4LitVDapw+C7ElmLrvdhq +O9Gg6TohO7Q6hNA266InZggnNFI2Fs6GmfdcxlSc3rcBJj60/5imtXu1b/zO2EgX +1Mhc4DRFRC2N/ywEB4XzF7Dc/EdFbhyQt+et3u6Hr0OqNBZfN61vCYj4G/+3hj6m +/FUkz2SUrXpSIf7uBxZwGRWq6En9GKDSqJjVFuNfRmAhSO6ywiZ+3bbOu93rGDl0 +RGxmst19GrBFv1fgAWv//UTf1f3461poFQBsbEQ2FhJt+06x5x6sm6uKUeznC5Gr +DihYcXgAPWVHmxuDtGJUgwSQCBCmEPZVI/25pvR1uxxOXldXv5glaSeslZjCGdzv +72g2sV5ACjWsAaLAJCZcp9BtgImTTYqV3CEPsWIY/hqzHLFcpfpok4CkPNHzQVrg +VaGSH2KqvUXl5joyuKmF77hqtWoDxSU8urVbcij/TYejoo99BgpEuq1yPwaU7Sdy +ZvBO+TIxO28/JldgTJ0SKdYUyyaV8fBiwMzFsbjAYa06X0barbsUpg01zQARAQAB +tGdkZWJpYW4tbWFpbnRhaW5lcnMub3JnIEFyY2hpdmUgQXV0b21hdGljIFNpZ25p +bmcgS2V5ICgyMDA5MDkwMSkgPHN5c2FkbWluQGxpc3RzLmRlYmlhbi1tYWludGFp +bmVycy5vcmc+iQI9BBMBCAAnBQJKnSgwAhsDBQkAybWABQsJCAcDBRUKCQgLBRYC +AwEAAh4BAheAAAoJEEUyUiR/CNd+gigP/iAWMn2xLgFQqoaDPzq1vdewll6WDcfi +XQ7AW5wwrhwr5YMOdX+MQfrIIqwYhnEHHpkky7a1jzkYWTm2h0217Ev7AZ5fBl47 +vtWOcFU57BKgl0lUBRcYNmSqWNCsuw5iPuBgY/bD22aRO+JHVj5lcaK2JKUiHtBd +oML9uqNbahQTlIW1c7r66pOENwDjWuqdfYkh4bRU4/gAEanKpViqT30NwUkVQcBD +wVH73vV9BoFUEtPxPrZw431wAxKgO4fJpz0iWXx0yFkpnLqUAhtwv/Befd4yE8Fy +q4Iv7ci9+oVROQ6R5Yd2kaadtwC498TPncUzr07gPXR/q1j2/K7kJuTlUyVv/z5U +p63/uOtbRrX/9vC8VCIaXfi2JXpMhzs9zN6mjjPCLhmoC50h234SGrWHJ0zJPYW5 +TDDeOBff3nv4mXdZ5/OyYTdIZkI7YOfcGzA1Z80kha2FBhAYWmyxUld0PDqeaTRd +A2+xjf1e20rs6ZN9+Hwb7kiJeJhhClsXybMfSyRToSS2lbLzzPt0fX5QSMwCH1LU +eASRVH7yIruYbUWRyIlT8vsXwSQeYjEo35K8+qPII3uH+zkpUY0L0XQZcwd/qap0 +t7gKexWh3jaMJUhbqGxgOxtBQ879xKxRuL9fVmF3vovn58mlIRabFYyvQRRNVD8X +ZkV6m4jPd7dwiEYEEBECAAYFAkqdLO0ACgkQ+C5cwEsrK57PRgCffbfv/+c4/qQg +lW323xymUg9xdfYAnRObBPqkLXgIP9Y1pxxijskBRYui +=MviB +-----END PGP PUBLIC KEY BLOCK----- |