getch 0.1.3 → 0.3.0

data/lib/getch/void/post_config.rb

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+
+module Getch
+  module Void
+    class PostConfig
+      def initialize
+        x
+      end
+
+      protected
+
+      def x
+        Getch::Config::Locale.new
+        Getch::Config::Keymap.new
+        Getch::Config::TimeZone.new
+      end
+    end
+  end
+end

data/lib/getch/void/pre_config.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+module Getch
+  module Void
+    class PreConfig
+      def initialize
+        x
+      end
+
+      private
+
+      def x
+        Getch::Config::Locale.new
+        Getch::Config::PreNetwork.new
+      end
+    end
+  end
+end

data/lib/getch/void/services.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+module Getch
+  module Void
+    class Services
+      def initialize
+        x
+      end
+
+      protected
+
+      def x
+        Config::Iwd.new
+        Config::Dhcp.new
+      end
+    end
+  end
+end

data/lib/getch/void/tarball.rb

@@ -0,0 +1,89 @@
+# frozen_string_literal: true
+
+require 'open-uri'
+require 'open3'
+
+module Getch
+  module Void
+    class Tarball
+      def initialize
+        @log = Log.new
+        @url = 'https://alpha.de.repo.voidlinux.org/live/current'
+        @file = 'sha256sum.txt'
+        @xbps = false
+        Dir.chdir OPTIONS[:mountpoint]
+      end
+
+      def x
+        search_archive
+        download
+        checksum
+        install
+      end
+
+      protected
+
+      def tarball
+        OPTIONS[:musl] ?
+          /void-x86_64-musl-ROOTFS-[\d._]+.tar.xz/ :
+          /void-x86_64-ROOTFS-[\d._]+.tar.xz/
+      end
+
+      # Search only the glibc x86_64 for now
+      def search_archive
+        yurl = "#{@url}/#{@file}"
+        @log.info "Opening #{yurl}...\n"
+        Helpers.get_file_online(yurl, @file)
+        File.open(@file).each do |l|
+          @xbps = l.tr('()', '').split(' ') if l.match(tarball)
+        end
+      end
+
+      def download
+        @log.fatal 'No file found, retry later.' unless @xbps
+        return if File.exist? @xbps[1]
+
+        @log.info "Downloading #{@xbps[1]}..."
+        Helpers.get_file_online("#{@url}/#{@xbps[1]}", @xbps[1])
+        @log.result_ok
+      end
+
+      def checksum
+        @log.info 'Checking SHA256 checksum...'
+        # Should contain 2 spaces...
+        command = "echo #{@xbps[3]}  #{@xbps[1]} | sha256sum --check"
+        _, stderr, status = Open3.capture3(command)
+        if status.success? then
+          @log.result_ok
+          return
+        end
+        cleaning
+        @log.fatal "Problem with the checksum, stderr\n#{stderr}"
+      end
+
+      def install
+        decompress
+        cleaning
+      end
+
+      private
+
+      def decompress
+        @log.info "Decompressing #{@xbps[1]}..."
+        cmd = "tar xpf #{@xbps[1]} --xattrs-include=\'*.*\' --numeric-owner"
+        _, stderr, status = Open3.capture3(cmd)
+        if status.success? then
+          @log.result_ok
+          return
+        end
+        cleaning
+        @log.fatal "Fail to decompressing #{@xbps[1]} - #{stderr}."
+      end
+
+      def cleaning
+        Dir.glob('void-x86_64*.tar.xz').each { |f| File.delete(f) }
+        Dir.glob('sha256*').each { |f| File.delete(f) }
+      end
+    end
+  end
+end

data/lib/getch/void/terraform.rb

@@ -0,0 +1,28 @@
+module Getch
+  module Void
+    class Terraform
+      def initialize
+        x
+      end
+
+      protected
+
+      def x
+        install_pkgs
+      end
+
+      def install_pkgs
+        @pkgs = 'sudo'
+        @pkgs << ' vim'
+        @pkgs << ' iptables'
+        @pkgs << ' runit-iptables'
+        @pkgs << ' iwd'
+        @pkgs << ' dhcpcd'
+        @pkgs << ' lvm2' if OPTIONS[:fs] == 'lvm'
+        @pkgs << ' zfs' if OPTIONS[:fs] == 'zfs'
+        @pkgs << ' cryptsetup' if OPTIONS[:encrypt]
+        Install.new(@pkgs)
+      end
+    end
+  end
+end

data/lib/getch/void/update.rb

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+module Getch
+  module Void
+    class Update
+      def initialize
+        @log = Log.new
+        x
+      end
+
+      protected
+
+      # https://docs.voidlinux.org/installation/guides/chroot.html#install-base-system-rootfs-method-only
+      def x
+        sync
+        update
+      end
+
+      private
+
+      def sync
+        @log.info "Synchronize index...\n"
+        ChrootOutput.new '/usr/bin/xbps-install', '-Suy', 'xbps'
+      end
+
+      def update
+        ChrootOutput.new '/usr/bin/xbps-install -uy'
+        ChrootOutput.new '/usr/bin/xbps-install -y base-system'
+        ChrootOutput.new '/usr/bin/xbps-remove -y base-voidstrap'
+      end
+    end
+  end
+end

data/lib/getch/void.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+module Getch
+  module Void
+  end
+end
+
+require_relative 'void/tarball'
+require_relative 'void/pre_config'
+require_relative 'void/update'
+require_relative 'void/post_config'
+require_relative 'void/terraform'
+require_relative 'void/services'
+require_relative 'void/bootloader'
+require_relative 'void/finalize'

data/lib/getch.rb

@@ -1,118 +1,130 @@
+# frozen_string_literal: true
+
+require_relative 'getch/helpers'
 require_relative 'getch/options'
 require_relative 'getch/states'
 require_relative 'getch/gentoo'
+require_relative 'getch/void'
+require_relative 'getch/device'
 require_relative 'getch/filesystem'
+require_relative 'getch/tree'
+require_relative 'getch/assembly'
 require_relative 'getch/command'
-require_relative 'getch/helpers'
 require_relative 'getch/log'
 require_relative 'getch/config'
+require_relative 'getch/guard'
+require_relative 'getch/version'
 
 module Getch
 
-  DEFAULT_OPTIONS = {
-    language: 'en_US',
-    zoneinfo: 'US/Eastern',
-    keymap: 'us',
-    disk: 'sda',
-    fs: 'ext4',
-    username: nil,
-    boot_disk: nil,
-    cache_disk: nil,
-    home_disk: nil,
+  OPTIONS = {
+    boot_disk: false,
+    disk: false,
+    cache_disk: false,
     encrypt: false,
-    verbose: false
+    fs: 'ext4',
+    home_disk: false,
+    keymap: 'us',
+    language: 'en_US',
+    luks_name: 'luks',
+    lvm: false,
+    mountpoint: '/mnt/getch',
+    musl: false,
+    os: 'gentoo',
+    timezone: 'UTC',
+    username: false,
+    verbose: false,
+    vg_name: 'vg4',
+    zfs_name: 'pool'
   }
 
   STATES = {
-    :partition => false,
-    :format => false,
-    :mount => false,
-    :gentoo_base => false,
-    :gentoo_config => false,
-    :gentoo_update => false,
-    :gentoo_kernel => false
+    partition: false,
+    format: false,
+    mount: false,
+    tarball: false,
+    pre_config: false,
+    update: false,
+    post_config: false,
+    terraform: false,
+    bootloader: false,
+    services: false,
+    finalize: false,
   }
 
-  MOUNTPOINT = "/mnt/gentoo".freeze
-  DEFAULT_FS = {
-    true => {
-      ext4: Getch::FileSystem::Ext4::Encrypt,
-      lvm: Getch::FileSystem::Lvm::Encrypt,
-      zfs: Getch::FileSystem::Zfs::Encrypt
-    },
-    false => {
-      ext4: Getch::FileSystem::Ext4,
-      lvm: Getch::FileSystem::Lvm,
-      zfs: Getch::FileSystem::Zfs,
-    }
-  }.freeze
+  MOUNTPOINT = '/mnt/getch'
+  DEVS = {}
 
-  def self.class_fs
-    encrypt = DEFAULT_OPTIONS[:encrypt]
-    fs = DEFAULT_OPTIONS[:fs].to_sym
-    DEFAULT_FS[encrypt][fs]
-  end
+  class Main
+    def initialize(argv)
+      argv[:cli]
+      @log = Log.new
+      @assembly = Assembly.new
+    end
+
+    def resume
+      STATES[:partition] && return
 
-  def self.resume_options(opts)
-    puts "\nBuild Gentoo with the following args:\n"
-    puts "Lang: #{DEFAULT_OPTIONS[:language]}"
-    puts "Zoneinfo: #{DEFAULT_OPTIONS[:zoneinfo]}"
-    puts "Keymap: #{DEFAULT_OPTIONS[:keymap]}"
-    puts "Disk: #{DEFAULT_OPTIONS[:disk]}"
-    puts "Filesystem: #{DEFAULT_OPTIONS[:fs]}"
-    puts "Username: #{DEFAULT_OPTIONS[:username]}"
-    puts "Encrypt: #{DEFAULT_OPTIONS[:encrypt]}"
-    puts
-    puts "separate-boot disk: #{DEFAULT_OPTIONS[:boot_disk]}"
-    puts "separate-cache disk: #{DEFAULT_OPTIONS[:cache_disk]}"
-    puts "separate-home disk: #{DEFAULT_OPTIONS[:home_disk]}"
-    puts
-    print "Continue? (n,y) "
-    case gets.chomp
-    when /^y|^Y/
-      return
-    else
-      exit 1
+      @log.fatal 'No disk, use at least getch with -d DISK' unless OPTIONS[:disk]
+
+      puts "\nBuild " + OPTIONS[:os].capitalize + " Linux with the following args:\n"
+      puts
+      puts "\tLang: #{OPTIONS[:language]}"
+      puts "\tTimezone: #{OPTIONS[:timezone]}"
+      puts "\tKeymap: #{OPTIONS[:keymap]}"
+      puts "\tDisk: #{OPTIONS[:disk]}"
+      puts "\tFilesystem: #{OPTIONS[:fs]}"
+      puts "\tUsername: #{OPTIONS[:username]}"
+      puts "\tEncrypt: #{OPTIONS[:encrypt]}"
+      puts "\tMusl: #{OPTIONS[:musl]}"
+      puts
+      puts "\tseparate-boot disk: #{OPTIONS[:boot_disk]}"
+      puts "\tseparate-cache disk: #{OPTIONS[:cache_disk]}"
+      puts "\tseparate-home disk: #{OPTIONS[:home_disk]}"
+      puts
+      print 'Continue? (y,N) '
+      case gets.chomp
+      when /^y|^Y/
+      else
+        exit
+      end
     end
-  end
 
-  def self.format(disk, fs, user)
-    return if STATES[:format] and STATES[:partition]
-    log = Log.new
-    puts
-    print "Partition and format disk #{disk}, this will erase all data, continue? (n,y) "
-    case gets.chomp
-    when /^y|^Y/
-      log.info("Partition start")
-      class_fs::Partition.new
-      class_fs::Format.new
-    else
-      exit 1
+    def prepare_disk
+      @assembly.clean
+      @assembly.partition
+      @assembly.format
+      @assembly.mount
     end
-  end
 
-  def self.init_gentoo(options)
-    gentoo = Getch::Gentoo
-    gentoo.stage3
-    gentoo.config(options)
-    gentoo.chroot(options)
-    gentoo.kernel
-    gentoo.boot(options)
-  end
+    def install_system
+      @assembly.tarball
+      @assembly.pre_config
+      @assembly.update
+      @assembly.post_config
+    end
 
-  def self.configure(options)
-    config = Getch::Config.new
-    config.network
-  end
+    def terraform
+      @assembly.terraform
+      @assembly.services
+    end
+
+    def bootloader
+      @assembly.luks_keys
+      @assembly.bootloader
+    end
 
-  def self.main(argv)
-    options = Options.new(argv)
-    DEFAULT_OPTIONS.freeze
-    resume_options(options)
-    Getch::States.new # Update States
-    format(options.disk, options.fs, options.username)
-    class_fs::Mount.new.run
-    init_gentoo(options)
-    configure(options)
+    def finalize
+      @assembly.finalize
+    end
+
+    def configure
+      config = Getch::Config::Main.new
+      config.ethernet
+      config.wifi
+      config.dns
+      config.sysctl
+      config.shell
+    end
   end
 end

data/lib/luks.rb

@@ -0,0 +1,239 @@
+# frozen_string_literal: true
+
+require 'nito'
+require 'getch/log'
+require 'getch/command'
+
+module Luks
+  class Main
+    include Luks
+    include NiTo
+
+    Permission = Class.new(StandardError)
+
+    def initialize(disk, options)
+      @disk = disk
+      @format = options[:fs]
+      @mountpoint = options[:mountpoint]
+      @luks_type = nil
+      @key_dir = nil
+      @key_name = nil
+      @mount = nil
+      @bootloader = false
+      @log = Getch::Log.new
+      @bs = get_bs
+    end
+
+    def encrypt
+      args = @luks_type == 'luks2' ? "#{@command_args} --sector-size #{@bs}" : @command_args
+      @log.info "Encrypting #{@luks_name} > #{@disk}...\n"
+      cmd_crypt 'cryptsetup', 'luksFormat', args, "/dev/#{@disk}"
+    end
+
+    def encrypt_with_key
+      make_key
+      args = @luks_type == 'luks2' ?
+        "#{@command_args} -q --sector-size #{@bs} -d #{@full_key_path}" :
+        "#{@command_args} -q -d #{@full_key_path}"
+      @log.info "Encrypting #{@luks_name} with #{@full_key_path}...\n"
+      cmd_crypt 'cryptsetup', 'luksFormat', args, "/dev/#{@disk}"
+    end
+
+    def open
+      return if File.exist? "/dev/mapper/#{@luks_name}"
+
+      @log.info "Opening #{@luks_name} > #{@disk}...\n"
+      cmd_crypt 'cryptsetup', 'open', @command_args, "/dev/#{@disk}", @luks_name
+      unless File.exist? "/dev/mapper/#{@luks_name}"
+        raise "No dev /dev/mapper/#{@luks_name}, open it first..."
+      end
+    end
+
+    def open_with_key(file = nil)
+      return if File.exist? "/dev/mapper/#{@luks_name}"
+
+      @full_key_path = "#{@mountpoint}#{@key_path}"
+      key = file ? file : @full_key_path
+      @log.info "Opening #{@luks_name} disk #{@disk} with #{key}...\n"
+      cmd_crypt 'cryptsetup', 'open', @command_args, '-d', key, "/dev/#{@disk}", @luks_name
+    end
+
+    def format
+      case @format
+      when 'ext4'
+        format_ext4
+      when 'xfs'
+        format_xfs
+      when 'fat'
+        format_fat
+      else
+        @log.fatal "#{@format} not yet supported."
+      end
+    end
+
+    def external_key
+      make_key
+      @log.info "Adding key for #{@luks_name}...\n"
+      cmd_crypt 'cryptsetup', 'luksAddKey', "/dev/#{@disk}", @full_key_path
+    end
+
+    def write_config
+      config
+      perm
+    end
+
+    def mount
+      mountpoint = @luks_name =~ /^root/ ? @mountpoint : "#{@mountpoint}#{@mount}"
+      NiTo.mount "/dev/mapper/#{@luks_name}", mountpoint
+    end
+
+    def close
+      return unless File.exist? "/dev/mapper/#{@luks_name}"
+
+      @log.info "Closing #{@luks_name}...\n"
+      cmd_crypt 'cryptsetup', 'close', @luks_name
+    end
+
+    def gen_datas
+    end
+
+    protected
+
+    def make_key
+      @key_path = "#{@key_dir}/#{@key_name}"
+      @full_key_path = "#{@mountpoint}#{@key_path}"
+      @log.info "Generating key...\n"
+      mkdir "#{@mountpoint}#{@key_dir}"
+      sh 'dd', 'bs=512', 'count=8', 'iflag=fullblock', 'if=/dev/urandom', "of=#{@full_key_path}"
+    end
+
+    # https://wiki.archlinux.org/title/Advanced_Format#File_systems
+    def format_ext4
+      @log.info "Formating disk with #{@format}...\n"
+      sh 'mkfs.ext4', '-F', '-b', @bs, "/dev/mapper/#{@luks_name}"
+    end
+
+    # https://wiki.archlinux.org/title/Advanced_Format#File_systems
+    def format_xfs
+      @log.info "Formating disk with #{@format}...\n"
+      sh 'mkfs.xfs', '-f', '-s', "size=#{@bs}", "/dev/mapper/#{@luks_name}"
+    end
+
+    def config
+      @key_path = "#{@key_dir}/#{@key_name}"
+      uuid = Getch::Helpers.uuid @disk
+      @log.info "Writing configs for #{@luks_name}...\n"
+
+      @log.info " * Writing #{@mountpoint}/etc/crypttab..."
+      line = "#{@luks_name} UUID=#{uuid} #{@key_path} luks"
+      echo_a "#{@mountpoint}/etc/crypttab", line
+      @log.result_ok
+
+      config_openrc
+      config_grub
+    end
+
+    # https://wiki.gentoo.org/wiki/Dm-crypt#Configuring_dm-crypt
+    def config_openrc
+      Getch::Helpers.openrc? || return
+
+      conf = "#{@mountpoint}/etc/conf.d/dmcrypt"
+      uuid = Getch::Helpers.uuid @disk
+      echo_a conf, "target=#{@luks_name}"
+      echo_a conf, "source=UUID=\"#{uuid}\""
+      echo_a conf, "key=#{@key_path}"
+    end
+
+    def config_grub
+      return unless @bootloader
+
+      if Getch::Helpers.grub?
+        @log.info ' * Writing to /etc/default/grub...'
+        line = 'GRUB_ENABLE_CRYPTODISK=y'
+        echo_a "#{@mountpoint}/etc/default/grub", line
+        @log.result_ok
+      end
+    end
+
+    def perm
+      @key_path = "#{@key_dir}/#{@key_name}"
+      @full_key_path = "#{@mountpoint}#{@key_path}"
+      @log.info "Enforcing permission on #{@full_key_path}..."
+      File.chmod 0400, "#{@mountpoint}#{@key_dir}"
+      File.chmod 0000, @full_key_path
+      File.chown 0, 0, @full_key_path
+      @log.result_ok
+    end
+
+    private
+
+    def get_bs
+      @disk || @log.fatal("No disk for #{@luks_name}.")
+
+      sh 'blockdev', '--getpbsz', "/dev/#{@disk}"
+    end
+
+    def cmd_crypt_raw(*args)
+      system args.join(' ')
+      return if $?.exitstatus == 0
+
+      @log.dbg args.join(' ')
+      @log.dbg $?
+      @log.fatal 'die'
+    end
+
+    def cmd_crypt(*args)
+      cmd_crypt_raw args
+    rescue => e
+      @log.fatal e
+    end
+
+    def sh(*args)
+      Getch::Command.new(args)
+    end
+  end
+
+  # Boot can decrypt the root (/)
+  class Boot < Main
+    def initialize(disk, options)
+      super
+      @luks_type = 'luks1'
+      @key_dir = '/boot'
+      @key_name = 'boot.key'
+      @bootloader = true
+      @mount = '/boot'
+      @luks = options[:luks_name]
+      @luks_name = "boot-#{@luks}"
+      @command_args = "--type #{@luks_type}"
+    end
+  end
+
+  # Root can decrypt the /home or other devs
+  class Root < Main
+    def initialize(disk, options)
+      super
+      @luks_type = 'luks2'
+      @key_dir = '/boot'
+      @key_name = 'root.key'
+      @luks = options[:luks_name]
+      @luks_name = "root-#{@luks}"
+      @mount = '/'
+      @command_args = "--type #{@luks_type}"
+      @bootloader = false
+    end
+  end
+
+  class Home < Main
+    def initialize(disk, options)
+      super
+      @luks_type = 'luks2'
+      @key_dir = '/root/keys'
+      @key_name = 'home.key'
+      @mount = '/home'
+      @command_args = "--type #{@luks_type}"
+      @luks = options[:luks_name]
+      @luks_name = "home-#{@luks}"
+      @bootloader = false
+    end
+  end
+end