mirror of
https://github.com/ItsDrike/dotfiles.git
synced 2025-06-29 04:00:42 +00:00
Remove everything and restart blank
This commit removes all files currently present in the repo, to prepare for a start from a nothing. This is done due to my recent migration from X11 to Wayland, which has rendered most of these config files no longer releveant. I've currently been tracking my dotfiles in a separate repository, in hopes to get it to a state where it would be mergable here, but that turned out to be much more difficult than I anticipated, and I think it will be much easier to simply move over the history from this temporary repository I've been using onto this one. That however requires a start from a clean point, which this commit creates.
This commit is contained in:
parent
eadb37961b
commit
b912871070
206 changed files with 0 additions and 15683 deletions
|
|
@ -1,81 +0,0 @@
|
|||
#!/bin/sh
|
||||
|
||||
yes_no() {
|
||||
while true; do
|
||||
printf "$1 (y/n): "
|
||||
read -r yn
|
||||
case $yn in
|
||||
[Yy]* ) return 0;;
|
||||
[Nn]* ) return 1;;
|
||||
* ) echo "Please answer yes or no";;
|
||||
esac
|
||||
done
|
||||
}
|
||||
|
||||
# Ensure we run as root
|
||||
if [ "$EUID" -ne 0 ]; then
|
||||
echo "Must be ran as root"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Take NEWROOT as 1st argument
|
||||
if [ $# -ge 1 ]; then
|
||||
NEWROOT="$1"
|
||||
else
|
||||
echo "Provide newroot directory"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Take chroot user as 2nd argument, default to root
|
||||
if [ $# -ge 2 ]; then
|
||||
USERNAME="$2"
|
||||
else
|
||||
USERNAME="root"
|
||||
fi
|
||||
|
||||
# Check if given NEWROOT is already mounted, if it is
|
||||
# set REMOUNT to the mount source, so that we can remount
|
||||
# it once we're done.
|
||||
df_out=$(df --output=source,target | grep -w "$NEWROOT")
|
||||
if [ -n "$df_out" ]; then
|
||||
REMOUNT="$(echo $df_out | awk '{print $1}')"
|
||||
else
|
||||
# If the target isn't mounted already, check
|
||||
# if user gave $3 (mount location)
|
||||
if [ $# -ge 3 ]; then
|
||||
mount "$3" "$NEWROOT"
|
||||
else
|
||||
# If user didn't give mount location, try to
|
||||
# mount according to fstab
|
||||
if [ -n "$(grep -w "$NEWROOT" /etc/fstab)" ]; then
|
||||
mount "$NEWROOT"
|
||||
else
|
||||
# Ask for user confirmation to ensure that filesystem
|
||||
# is ready for chroot in given NEWROOT, exit if not
|
||||
yes_no "$NEWROOT wasn't mounted, is your filesystem in place?" || exit 1
|
||||
fi
|
||||
fi
|
||||
fi
|
||||
|
||||
# Mount necessary directories for chroot to be possible
|
||||
mount --types proc /proc "$NEWROOT/proc"
|
||||
mount --rbind /sys "$NEWROOT/sys"
|
||||
mount --make-rslave "$NEWROOT/sys"
|
||||
mount --rbind /dev "$NEWROOT/dev"
|
||||
mount --make-rslave "$NEWROOT/dev"
|
||||
|
||||
# Use /bin/su for chrooting with --login to also run
|
||||
# /etc/profile and ~/.profile or ~/.zprofile
|
||||
chroot "$NEWROOT" "/bin/su" "$USERNAME" --login
|
||||
|
||||
# Unmount recursively mounted directories
|
||||
umount -l "$NEWROOT/dev"
|
||||
umount -l "$NEWROOT/sys"
|
||||
umount -l "$NEWROOT/proc"
|
||||
umount -R "$NEWROOT"
|
||||
|
||||
# Remount partition according to fstab if REMOUT is set
|
||||
# in order to leave the filesystem in the state it was
|
||||
if [ -n "$REMOUNT" ]; then
|
||||
mount "$REMOUNT" "$NEWROOT"
|
||||
fi
|
||||
|
|
@ -1,11 +0,0 @@
|
|||
#!/bin/sh
|
||||
# Crontab requires DISPLAY and XDG_RUNTIME_HOME
|
||||
# to be set when running notify-send, this script
|
||||
# makes defines those to make it eaiser to send
|
||||
# notifications from crontab without cluttering it
|
||||
# It sets "Cron Notification" title, rest of the
|
||||
# arguments are passed to notfiy-send
|
||||
|
||||
XDG_RUNTIME_DIR="/run/user/$(id -u)" \
|
||||
DISPLAY=:0 \
|
||||
notify-send "$@"
|
||||
|
|
@ -1,37 +0,0 @@
|
|||
#!/bin/bash
|
||||
|
||||
# Script to perform incremental backups using rsync
|
||||
# It is often ran as crontab rule for automated backup solution
|
||||
#
|
||||
# This script will respect .rsync-filter files, which can be used
|
||||
# to define custom exclude rules for files/dirs in which it is present
|
||||
|
||||
if [ $# -lt 2 ]; then
|
||||
echo "Invalid amount of arguments passed!"
|
||||
echo "Arguments: [Source path] [Backup path]"
|
||||
echo " Source path: directory to be backed up, usually '/'"
|
||||
echo " Backup path: directory to back up to (destination), usually mounted drive"
|
||||
exit
|
||||
fi
|
||||
|
||||
SOURCE_DIR="$1"
|
||||
BACKUP_DIR="$2"
|
||||
DATETIME="$(date '+%Y-%m-%d_%H:%M:%S')"
|
||||
BACKUP_PATH="${BACKUP_DIR}/${DATETIME}"
|
||||
LATEST_LINK="${BACKUP_DIR}/latest"
|
||||
|
||||
mkdir -p "$BACKUP_DIR"
|
||||
|
||||
rsync -avHAXS \
|
||||
--delete \
|
||||
--filter='dir-merge /.rsync-filter' \
|
||||
--link-dest "${LATEST_LINK}" \
|
||||
"${@:3}" "${SOURCE_DIR}/" "${BACKUP_PATH}"
|
||||
|
||||
# Only attempt to override the symlink if we made new backup_path
|
||||
# user might've passed --dry-run option in which case we wouldn't
|
||||
# want to override latest symlink to non-existent location
|
||||
if [ -d "${BACKUP_PATH}" ]; then
|
||||
rm "${LATEST_LINK}" 2>/dev/null
|
||||
ln -s "${BACKUP_PATH}" "${LATEST_LINK}"
|
||||
fi
|
||||
|
|
@ -1,292 +0,0 @@
|
|||
#!/bin/python3
|
||||
import json
|
||||
import subprocess
|
||||
import sys
|
||||
import argparse
|
||||
from pathlib import Path
|
||||
|
||||
try:
|
||||
import colorama
|
||||
except ImportError:
|
||||
from unittest.mock import Mock
|
||||
class NoReprMock(Mock):
|
||||
__repr__ = lambda self: ""
|
||||
colorama = NoReprMock()
|
||||
|
||||
colorama.init(autoreset=True)
|
||||
|
||||
|
||||
# default path to the JSON file that stores known file checksums
|
||||
# this can be overridden by using `--checksum-file=path` flag
|
||||
CHECKSUM_FILE = Path('/usr/local/share/tamper-check/checksums.json')
|
||||
|
||||
|
||||
def _yes_no(text: str, add_yn: bool = True) -> bool:
|
||||
if add_yn:
|
||||
text += ' (y/n): '
|
||||
while True:
|
||||
user_inp = input(text).lower()
|
||||
if user_inp in ('y', 'yes'):
|
||||
return True
|
||||
elif user_inp in ('n', 'no'):
|
||||
return False
|
||||
|
||||
|
||||
def _get_checksum_dict(checksum_file: Path) -> dict[Path, str]:
|
||||
"""Read the JSON checksum file and return it as python dictionary object."""
|
||||
try:
|
||||
with open(checksum_file, 'r') as f:
|
||||
checksums = json.load(f)
|
||||
except FileNotFoundError:
|
||||
print(
|
||||
f'{colorama.Fore.YELLOW}Checksum file not found: {colorama.Fore.RESET}'
|
||||
f"'{colorama.Fore.BLUE}{checksum_file}{colorama.Fore.RESET}'{colorama.Fore.YELLOW} "
|
||||
'Creating new empty checksum file...'
|
||||
)
|
||||
checksum_file.parent.mkdir(parents=True, exist_ok=True)
|
||||
checksums = {}
|
||||
with open(checksum_file, 'w') as f:
|
||||
json.dump(checksums, f, indent=4)
|
||||
return checksums
|
||||
except PermissionError:
|
||||
print(
|
||||
f'{colorama.Fore.RED}PermissionError: {colorama.Fore.RESET}'
|
||||
'to run tamper-check you must have read access to checksum file: '
|
||||
f"'{colorama.Fore.BLUE}{checksum_file}{colorama.Fore.RESET}' (forgot sudo?)"
|
||||
)
|
||||
exit(2)
|
||||
except json.decoder.JSONDecodeError as e:
|
||||
print(
|
||||
f'{colorama.Fore.RED}Checksum file is corrupted, unable to decode JSON. '
|
||||
f"{colorama.Fore.RESET}('{colorama.Fore.BLUE}{checksum_file}{colorama.Fore.RESET}').\n"
|
||||
f'Error text: {e}'
|
||||
)
|
||||
exit(3)
|
||||
else:
|
||||
dct = {}
|
||||
for file_str, checksum in checksums.items():
|
||||
dct[Path(file_str)] = checksum
|
||||
return dct
|
||||
|
||||
|
||||
def _get_checksum(file: Path) -> str:
|
||||
"""Obtain a checksum of given file"""
|
||||
proc = subprocess.run(['sha256sum', file], stdout=subprocess.PIPE, stderr=subprocess.STDOUT)
|
||||
proc_stdout = proc.stdout.decode('utf-8')
|
||||
|
||||
if "No such file or directory" in proc_stdout:
|
||||
raise FileNotFoundError(f"'{file}' not found, can't produce sha256 checksum")
|
||||
elif "Permission denied" in proc_stdout:
|
||||
raise PermissionError(f"Unable to read file '{file}'")
|
||||
elif "Is a directory" in proc_stdout:
|
||||
raise RuntimeError(f"{file} is a directory, can't produce sha256sum")
|
||||
|
||||
return proc_stdout.replace(f' {file}\n', '')
|
||||
|
||||
|
||||
def _update_checksum(file_path: Path, checksum: str, checksum_file: Path, new_entry: bool = False) -> None:
|
||||
"""Update existing checksums or add new file entries in checksum_file"""
|
||||
checksums = _get_checksum_dict(checksum_file)
|
||||
|
||||
if new_entry and file_path in checksums:
|
||||
print(
|
||||
f"{colorama.Fore.RED}Path {colorama.Fore.RESET}"
|
||||
f"'{colorama.Fore.BLUE}{file_path}{colorama.Fore.RESET}' {colorama.Fore.RED}"
|
||||
"is already in the checksum file perhaps you wanted `--update`?"
|
||||
)
|
||||
raise SystemExit(3)
|
||||
|
||||
checksums[file_path] = checksum
|
||||
|
||||
writeable_checksums = {str(file_path): file_checksum for file_path, file_checksum in checksums.items()}
|
||||
try:
|
||||
with open(checksum_file, 'w') as f:
|
||||
json.dump(writeable_checksums, f, indent=4)
|
||||
except PermissionError:
|
||||
print(
|
||||
f'{colorama.Fore.RED}PermissionError: {colorama.Fore.RESET}'
|
||||
'To add a new rule, you must have write access to: '
|
||||
f"'{colorama.Fore.BLUE}{checksum_file}{colorama.Fore.RESET}' (forgot sudo?)"
|
||||
)
|
||||
raise SystemExit(2)
|
||||
|
||||
|
||||
def update(file_path: Path, checksum_file: Path, text: str, no_confirm: bool = False) -> bool:
|
||||
"""Ask user if a file should be updated, or update automatically if no_confirm is True"""
|
||||
new_checksum = _get_checksum(file_path)
|
||||
|
||||
if no_confirm:
|
||||
print(text + ' checksum auto-updating')
|
||||
elif not _yes_no(text + ' update checksum?'):
|
||||
print(f'{colorama.Fore.RED} -> Staying mismatched')
|
||||
return False
|
||||
|
||||
_update_checksum(file_path, new_checksum, checksum_file)
|
||||
print(f'{colorama.Fore.GREEN} -> Updated')
|
||||
return True
|
||||
|
||||
|
||||
def run_check(checksum_file: Path, verbose: bool) -> list[Path]:
|
||||
"""
|
||||
Go through all files listed in checksum_file and make sure that the checksums are matching.
|
||||
Return all entries which didn't match.
|
||||
"""
|
||||
checksums = _get_checksum_dict(checksum_file)
|
||||
|
||||
not_matched = []
|
||||
for file, stored_checksum in checksums.items():
|
||||
line = f"Checksum of '{colorama.Fore.BLUE}{file}{colorama.Fore.RESET}': "
|
||||
|
||||
try:
|
||||
real_sha256_sum = _get_checksum(file)
|
||||
except PermissionError as exc:
|
||||
print(line + f'{colorama.Fore.YELLOW}SKIPPED [PermissionError - no read perms]')
|
||||
if verbose:
|
||||
print(f' -> Error text: {colorama.Fore.CYAN}{exc}')
|
||||
continue
|
||||
except FileNotFoundError as exc:
|
||||
print(line + f'{colorama.Fore.YELLOW}FAILED [FileNotFound - fix checksum file]')
|
||||
if verbose:
|
||||
print(f' -> Error text: {colorama.Fore.CYAN}{exc}')
|
||||
continue
|
||||
except RuntimeError as exc:
|
||||
print(line + f'{colorama.Fore.YELLOW}FAILED [{exc.__class__.__name__}: {exc} - fix checksum file]')
|
||||
if verbose:
|
||||
print(f' -> Error text: {colorama.Fore.CYAN}{exc}')
|
||||
continue
|
||||
|
||||
if real_sha256_sum == stored_checksum:
|
||||
print(line + f'{colorama.Fore.GREEN}OK')
|
||||
else:
|
||||
not_matched.append(file)
|
||||
print(line + f'{colorama.Fore.RED}FAIL [Checksum Mismatch]')
|
||||
if verbose:
|
||||
print(f' -> detected: {colorama.Fore.CYAN}{real_sha256_sum}')
|
||||
print(f' -> stored: {colorama.Fore.CYAN}{stored_checksum}')
|
||||
|
||||
return not_matched
|
||||
|
||||
|
||||
def parse_args(*, checksum_file_default) -> dict:
|
||||
parser = argparse.ArgumentParser(
|
||||
description='tamper-check is a command line utility to automate checking for file edits. '
|
||||
'This is achieved by storing sha256 checksums of each added file and comparing them.'
|
||||
)
|
||||
parser.add_argument(
|
||||
'-v', '--verbose', action='store_true',
|
||||
help='Verbose mode, show checksums on failures and some more info'
|
||||
)
|
||||
parser.add_argument(
|
||||
'-u', '--update', action='store_true',
|
||||
help='If invalid checksum is found, ask user if it should be updated (y/n)'
|
||||
)
|
||||
parser.add_argument(
|
||||
'--no-confirm', action='store_true',
|
||||
help='Used in combination with `--update`, automatically assumes `y` for all questions'
|
||||
)
|
||||
parser.add_argument(
|
||||
'--checksum-file', metavar='FILE', type=Path, default=checksum_file_default,
|
||||
help='JSON file storing the file checksums'
|
||||
)
|
||||
parser.add_argument(
|
||||
'-a', '--add', metavar='FILE', nargs='+', action='extend', type=Path, default=[],
|
||||
dest='files_to_add', help='Add a new file to the list of check entries'
|
||||
)
|
||||
|
||||
namespace = parser.parse_args()
|
||||
cli_args = {k: v for k, v in vars(namespace).items()}
|
||||
|
||||
# Handle non-existing paths
|
||||
for path in cli_args['files_to_add']:
|
||||
if not path.exists():
|
||||
raise FileNotFoundError(path)
|
||||
if not path.is_file():
|
||||
raise RuntimeError("Can't add a directory")
|
||||
if not cli_args['checksum_file'].exists():
|
||||
raise FileNotFoundError(cli_args['checksum_file'])
|
||||
|
||||
return cli_args
|
||||
|
||||
|
||||
def main() -> int:
|
||||
"""Run the program as intended, return the exit code"""
|
||||
try:
|
||||
run_parameters = parse_args(checksum_file_default=CHECKSUM_FILE)
|
||||
except FileNotFoundError as exc:
|
||||
path = exc.args[0]
|
||||
print(
|
||||
f'{colorama.Fore.RED}FileNotFoundError: {colorama.Fore.RESET}'
|
||||
f"'{colorama.Fore.BLUE}{path}{colorama.Fore.RESET}' -> invalid path"
|
||||
)
|
||||
return 2
|
||||
except RuntimeError as exc:
|
||||
print(
|
||||
f'{colorama.Fore.RED}{exc.__class__.__name__}: {colorama.Fore.RESET}'
|
||||
f"'{colorama.Fore.BLUE}{exc}{colorama.Fore.RESET}'"
|
||||
)
|
||||
return 2
|
||||
except SystemExit as exc:
|
||||
return exc.code
|
||||
|
||||
if len(run_parameters["files_to_add"]) > 0:
|
||||
for file_to_add in run_parameters["files_to_add"]:
|
||||
checksum = _get_checksum(file_to_add)
|
||||
try:
|
||||
_update_checksum(
|
||||
file_to_add, checksum,
|
||||
run_parameters["checksum_file"],
|
||||
new_entry=True
|
||||
)
|
||||
except SystemExit as e:
|
||||
return e.code
|
||||
|
||||
print(
|
||||
f"Added '{colorama.Fore.BLUE}{file_to_add}{colorama.Fore.RESET}': "
|
||||
f"'{colorama.Fore.CYAN}{checksum}{colorama.Fore.RESET}'"
|
||||
)
|
||||
|
||||
return 0 # don't proceed to check if we're adding files
|
||||
|
||||
# Run the check
|
||||
mismatched_files = run_check(run_parameters["checksum_file"], run_parameters["verbose"])
|
||||
if len(mismatched_files) == 0:
|
||||
return 0 # all files are ok
|
||||
|
||||
print("\nFiles with mismatched checksums:")
|
||||
prefix = f"{colorama.Fore.RED} - {colorama.Fore.RESET}"
|
||||
unfixed = []
|
||||
for mismatched_file in mismatched_files:
|
||||
line = prefix + f"'{colorama.Fore.BLUE}{mismatched_file}{colorama.Fore.RESET}'"
|
||||
|
||||
if not run_parameters["update"]:
|
||||
unfixed.append(mismatched_file)
|
||||
print(line)
|
||||
continue
|
||||
|
||||
if not update(
|
||||
file_path=mismatched_file,
|
||||
checksum_file=run_parameters["checksum_file"],
|
||||
no_confirm=run_parameters["no_confirm"],
|
||||
text=line
|
||||
):
|
||||
unfixed.append(mismatched_file)
|
||||
|
||||
if len(unfixed) > 0:
|
||||
return 1
|
||||
|
||||
print(f'\n{colorama.Fore.GREEN}All checksums are correct')
|
||||
return 0
|
||||
|
||||
|
||||
if __name__ == '__main__':
|
||||
exit_code = main()
|
||||
try:
|
||||
exit(exit_code) # exit gracefully, with silent exit code
|
||||
except TypeError:
|
||||
# Some python interpreters/extensions (such as IPython) don't like exit.
|
||||
# sys.exit will raise a full exception and go to python traceback, exiting
|
||||
# with code 1. The real exit code will be preserved in the traceback.
|
||||
# This isn't ideal, but it's better than out of the place TypeError
|
||||
# and with exit code 0, this will exit normally.
|
||||
# CPython doesn't do this and most users will never experience this.
|
||||
sys.exit(exit_code)
|
||||
|
|
@ -1,17 +0,0 @@
|
|||
{
|
||||
"/etc/pam.d/system-auth": "89d62406b2d623a76d53c33aca98ce8ee124ed4a450ff6c8a44cfccca78baa2f",
|
||||
"/etc/pam.d/su": "7d8962b4a2cd10cf4bc13da8949a4a6151b572d39e87b7125be55f882b16c4da",
|
||||
"/etc/pam.d/sudo": "d1738818070684a5d2c9b26224906aad69a4fea77aabd960fc2675aee2df1fa2",
|
||||
"/etc/passwd": "28d6bec52ac5b4957a2c30dfcd15008dc1a39665c27abce97408489f3dbf02c9",
|
||||
"/etc/shadow": "a24f72cba4cbc6b0a8433da2f4b011f31345068e3e5d6bebed6fb6a35769bd59",
|
||||
"/etc/ssh/sshd_config": "515db2484625122b4254472f7e673649e3d89b57577eaa29395017676735907b",
|
||||
"/bin/sudo": "4ff88367f05a314a98cf69d9949d8ca6b266cee6b93e9ff4d553b399ea472264",
|
||||
"/bin/su": "3101438405d98e71e9eb68fbc5a33536f1ad0dad5a1c8aacd6da6c95ef082194",
|
||||
"/usr/bin/passwd": "d4df1659159737bb4c08a430d493d257d75cdd93e18427946265ae5862a714c7",
|
||||
"/usr/bin/chsh": "6bc0ae69620dde18f7942e2573afb4a6200b10269612151f48f54ef8423a64fe",
|
||||
"/usr/bin/chfn": "63178af1347a62f58874640d38d605d3cb1bebe8092533787965ba317e8b553b",
|
||||
"/home/itsdrike/.ssh/authorized_keys": "674806197893dbf67d3c9ba3abf049d30e571de0c4b450fc9819d3e8b0f854cc",
|
||||
"/boot/vmlinuz-linux": "fcd97f4aa96cce36e0bd5d69a6135741a37019b57157c97ffceaf9f5f0e86f32",
|
||||
"/boot/grub/grub.cfg": "39a57270f03a2fbd89f8e99af101ba34380a216a2cb2150268538c84480bc69c",
|
||||
"/efi/EFI/GRUB/grubx64.efi": "511141419219eeabb86f8f585d9a186094d3a449c9126d667fe8d37bddccb46c"
|
||||
}
|
||||
|
|
@ -1 +0,0 @@
|
|||
Subproject commit 8d9d74e056ea918f02dd7d617486da6677f65e19
|
||||
|
|
@ -1 +0,0 @@
|
|||
Subproject commit a3d4f5db684ed6dfd3041e73d1d761f5fe944179
|
||||
Loading…
Add table
Add a link
Reference in a new issue