warding 0.2.6 → 1.0.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6c34288feb935d5458a0a3edad7b09638861d8122d0d6675c45eff07e3e6c283
-  data.tar.gz: 50f8b7a2c1a5e04d50c9841427445e2c9bc0c1197fa7e4127fa241776e600cf1
+  metadata.gz: b01d39b579dc6b923df3efb9e24b577cfa395a5b0c8af10132a6ef57f4f36316
+  data.tar.gz: 874ad35327459572601cfab840a1c56697ae800288752764fa031ea4bf916136
 SHA512:
-  metadata.gz: 4e48333eae63a98dc386e9d9160d7647121c9272be000e8a1c7fbe1c62f15fedf789e5dd4e395e55c681678edeba01c22edadd89a69410816622c6906c691fcf
-  data.tar.gz: 8657a758c6a956cfca4e4b13732215ea3460e2d6dd0c4528f5502f01652c3c460c65e544805f2a5e5ea43a1d7ca6340776bec6b4659a7f33ef47c22b68534a27
+  metadata.gz: 02b9d08406cc56ebf1c7475bfe7a99bc1957d07344c7881f194fb77fa3e83d15bd36b1e6af481c0277fe8b9cabab0ee9b140930f9ea4b554c19c923ef3693918
+  data.tar.gz: f0f3b24627977fa16f82f3e0b6773e4062e755f1f13eee13f9a44f5e9451574a0955e899de682a64b66f6f56bf744dd3411ab02dadd9b53af585f25afa175c2c

data/.github/workflows/default.yml

@@ -0,0 +1,35 @@
+name: Ruby Gem
+on:
+  release:
+    types: [created]
+jobs:
+  build:
+    name: Build/Publish
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+    - name: Set up Ruby 2.6
+      uses: actions/setup-ruby@v1
+      with:
+        ruby-version: 2.6.x
+    - name: Publish to GPR
+      run: |
+        mkdir -p $HOME/.gem
+        touch $HOME/.gem/credentials
+        chmod 0600 $HOME/.gem/credentials
+        printf -- "---\n:github: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
+        gem build *.gemspec
+        gem push --KEY github --host https://rubygems.pkg.github.com/${OWNER} *.gem
+      env:
+        GEM_HOST_API_KEY: "Bearer ${{secrets.GITHUB_TOKEN}}"
+        OWNER: ${{ github.repository_owner }}
+    - name: Publish to RubyGems
+      run: |
+        mkdir -p $HOME/.gem
+        touch $HOME/.gem/credentials
+        chmod 0600 $HOME/.gem/credentials
+        printf -- "---\n:rubygems_api_key: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
+        gem build *.gemspec
+        gem push *.gem
+      env:
+        GEM_HOST_API_KEY: "Bearer ${{secrets.RUBYGEMS_AUTH_TOKEN}}"

data/README.md

@@ -1,38 +1,41 @@
-# Warding [![Gem Version](https://badge.fury.io/rb/warding.svg)](https://badge.fury.io/rb/warding)
-
-> Custom Arch Linux installer designed for security assessments and pentesting.
-
-## Installation
-
-Install warding by using the `gem install` command.
-
-```bash
-gem install warding
-```
-
-## Usage
-
-1. Download Arch Linux.
-2. Boot from the live ISO.
-3. Install warding (Ruby may also be required).
-4. Run the binary executable `warding` and fill in the prompts.
-5. Enjoy.
-
-## Tasklist
-
-* Fix steps that contain pipes.
-* Add default smb conf.
-* Add AUR support.
-* Add `NetworkManager` support.
-* Code missing features.
-* Add extra checks.
-* Add GitHub actions.
-* Publish gem/package on GitHub.
-
-## Contributing
-
-Bug reports and pull requests are welcome on GitHub at https://github.com/marlospomin/warding.
-
-## License
-
-The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
+# Warding [![Gem Version](https://badge.fury.io/rb/warding.svg)](https://badge.fury.io/rb/warding)
+
+> Custom Arch Linux installer designed for security assessments and pentesting.
+
+## Installation
+
+Install warding by using the `gem install` command.
+
+```bash
+gem install warding
+```
+
+Or use the quick install method:
+
+```bash
+wget -qO- https://raw.githubusercontent.com/marlospomin/warding/master/debug/quick-install.sh | sh
+```
+
+## Usage
+
+1. Download Arch Linux.
+2. Boot the live ISO.
+3. Install warding either from source or with the gem command.
+4. Run the binary executable `warding` and fill in the prompts.
+5. Enjoy.
+
+## Debug
+
+To install the latest version (debug) of warding follow the steps below:
+
+```bash
+wget -qO- https://raw.githubusercontent.com/marlospomin/warding/master/debug/debug.sh | sh
+```
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/marlospomin/warding.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/bin/warding

@@ -12,4 +12,8 @@ warding.check
 # gather inputs from the user
 user_input = warding.gather
 # install warding
-warding.install(user_input)
+if user_input[:system_settings][:encrypted]
+  warding.install(user_input, true)
+else
+  warding.install(user_input)
+end

data/debug/debug.sh

@@ -0,0 +1,11 @@
+#!/bin/bash
+
+pacman -S git ruby glibc libxcrypt --noconfirm
+git clone https://github.com/marlospomin/warding
+cd warding
+pacman -R man-pages --noconfirm
+gem install bundle rake
+export PATH="`ruby -e 'puts Gem.user_dir'`/bin:$PATH"
+bundle
+rake install
+warding

data/debug/quick-install.sh

@@ -0,0 +1,7 @@
+#!/bin/bash
+
+pacman -R man-pages --noconfirm
+pacman -Syy ruby glibc libxcrypt --noconfirm
+gem install warding
+export PATH="`ruby -e 'puts Gem.user_dir'`/bin:$PATH"
+warding

data/lib/warding.rb

@@ -1,257 +1,268 @@
-# frozen_string_literal: true
-
-require "warding/version"
-require "tty-prompt"
-
-module Warding
-  class Error < StandardError; end
-
-  class Installer
-    @@prompt = TTY::Prompt.new
-
-    def banner
-      puts <<~'EOF'
-
-         (  (                    (
-         )\))(   '    )   (      )\ )   (            (  (
-        ((_)()\ )  ( /(   )(    (()/(   )\    (      )\))(
-        _(())\_)() )(_)) (()\    ((_)) ((_)   )\ )  ((_))\
-        \ \((_)/ /((_)_   ((_)   _| |   (_)  _(_/(   (()(_)
-         \ \/\/ / / _` | | '_| / _` |   | | | ' \)) / _` |
-          \_/\_/  \__,_| |_|   \__,_|   |_| |_||_|  \__, |
-                                                    |___/
-
-      EOF
-    end
-
-    def check
-      unless `uname -a`.include?("archiso")
-        @@prompt.error("Exiting...")
-        @@prompt.warn("Warding can only be installed from within the live ISO context!")
-        exit!
-      end
-
-      unless `[ -d /sys/firmware/efi ] && echo true`.include?("true")
-        @@prompt.error("UEFI/EFI must be enabled to install warding")
-        exit!
-      end
-    end
-
-    def gather
-      locales_list = %w[en-US es-ES pt-BR ru-RU fr-FR it-IT de-DE ja-JP ko-KR zh-CN]
-      keymaps_list = %w[us uk br en fr de zh ru it es]
-
-      parsed_input = @@prompt.collect do
-        key(:update_mirrors).yes?("Update mirrorlist?")
-        key(:system_language).select("Pick the desired system language:", locales_list)
-        key(:keyboard_keymap).select("Pick your keyboard layout:", keymaps_list)
-
-        unless @@prompt.yes?("Set timezone automatically?", default: true)
-          key(:update_timezone).ask("Enter timezone:", required: true)
-        end
-
-        key(:root_password).mask("Insert new root password:", required: true)
-
-        key(:system_settings) do
-          bootloader = key(:bootloader).select("Which bootloader to use?", %w[systemd-boot grub])
-          partitions = key(:partitions).select(
-            "Select partition scheme to use:", ["/boot and /root", "/boot, /root and /home"]
-          )
-
-          key(:boot_size).slider("Boot drive partition size (MiB):", min: 512, max: 4096, default: 1024, step: 128)
-
-          if partitions == "/boot, /root and /home"
-            key(:home_size).slider("Home partition size (MiB):", min: 2048, max: 8192, default: 4096, step: 256)
-          end
-
-          key(:swap_size).slider("Swap partition size (MiB):", min: 1024, max: 8192, default: 2048, step: 256)
-
-          if @@prompt.yes?("Enable encryption?", default: false)
-            key(:encryption_settings) do
-              key(:encryption_mode).expand("Which cryptic setup to use?") do |q|
-                if partitions == "/boot, /root and /home"
-                  q.choice key: "m", name: "minimal (/home only)" do :minimal end
-                  q.choice key: "s", name: "safe (/home, /var, /tmp and swap)", value: :safe
-                end
-                q.choice key: "p", name: "paranoid (full disk encryption, except /boot)", value: :paranoid
-                q.choice key: "i", name: "insane (full disk encryption)", value: :insane if bootloader == "grub"
-              end
-              key(:encryption_key).mask("Insert the encryption key:", required: true)
-            end
-          end
-        end
-
-        key(:extra_settings).multi_select("Select extra options:", %w[desktop-environment hacking-tools crons])
-      end
-
-      parsed_input
-    end
-
-    def install(data)
-      if @@prompt.yes?("Confirm settings and continue?")
-
-        @@prompt.say("Installing, please wait...")
-
-        def setup_mirrors
-          `reflector --latest 25 --sort rate --save /etc/pacman.d/mirrorlist`
-        end
-
-        setup_mirrors if data[:update_mirrors]
-
-        def setup_timezone(timezone = false)
-          `timedatectl set-ntp true`
-          if timezone
-            `timedatectl set-timezone #{timezone}`
-          else
-            `timedatectl set-timezone "$(curl -s https://ipapi.co/timezone)"`
-          end
-        end
-
-        data[:update_timezone] ? setup_timezone(data[:update_timezone]) : setup_timezone
-
-        def setup_partitions(boot_size)
-          `parted -s -a optimal /dev/sda \
-            mklabel gpt \
-            mkpart primary fat32 0% #{boot_size}Mib \
-            set 1 esp on \
-            mkpart primary ext4 #{boot_size}Mib 100% \
-            set 2 lvm on
-          `
-        end
-
-        setup_partitions(data[:system_settings][:boot_size])
-
-        def setup_lvm(scheme, swap_size, home_size = false)
-          `pvcreate /dev/sda2`
-          `vgcreate vg0 /dev/sda2`
-          `lvcreate -L #{swap_size}Mib vg0 -n swap`
-          if scheme == "/boot, /root and /home"
-            `lvcreate -L #{home_size}Mib vg0 -n home`
-          end
-          `lvcreate -l 100%FREE vg0 -n root`
-
-          `mkfs.ext4 /dev/vg0/root`
-          `mount /dev/vg0/root /mnt`
-
-          if scheme == "/boot, /root and /home"
-            `mkfs.ext4 /dev/vg0/home`
-            `mount /dev/vg0/home /mnt/home`
-          end
-
-          `mkfs.fat -F32 /dev/sda1`
-          `mkdir /mnt/boot`
-          `mount /dev/sda1 /mnt/boot`
-
-          `mkswap /dev/vg0/swap`
-          `swapon /dev/vg0/swap`
-        end
-
-        if data[:system_settings][:partition] == "/boot, /root and /home"
-          setup_lvm(data[:system_settings][:partition], data[:system_settings][:swap_size], data[:system_settings[:home_size]])
-        else
-          setup_lvm(data[:system_settings][:partition], data[:system_settings][:swap_size])
-        end
-
-        # setup encryption
-
-        def setup_packages
-          `pacman -Syy`
-          `pacstrap /mnt base base-devel linux linux-firmware lvm2 mkinitcpio reflector man-db nano vi fuse wget openbsd-netcat dhcpcd samba openssh openvpn unzip vim git zsh`
-          `genfstab -U /mnt >> /mnt/etc/fstab`
-        end
-
-        setup_packages
-
-        def setup_chroot(lang, keymap, password)
-          `arch-chroot /mnt ln -sf /usr/share/zoneinfo/"$(curl -s https://ipapi.co/timezone)" /etc/localtime`
-          `arch-chroot /mnt hwclock --systohc`
-
-          `echo "#{lang}.UTF-8" > /mnt/etc/locale.gen`
-          `arch-chroot /mnt locale-gen`
-          `echo "LANG=#{lang}.UTF-8" > /mnt/etc/locale.conf`
-          `echo "KEYMAP=#{keymap}" > /mnt/etc/vconsole.conf`
-          `echo "warding" > /mnt/etc/hostname`
-          `echo "127.0.0.1 localhost\n::1 localhost\n127.0.1.1 warding.localdomain warding" > /mnt/etc/hosts`
-
-          `echo -e "#{password}\n#{password}" | arch-chroot /mnt passwd`
-
-          `sed -i "/^HOOK/s/filesystems/lvm2 filesystems/" /mnt/etc/mkinitcpio.conf`
-          `arch-chroot /mnt mkinitcpio -p linux 2>/dev/null`
-          `arch-chroot /mnt pacman -S intel-ucode --noconfirm`
-        end
-
-        setup_chroot(data[:system_language], data[:keyboard_keymap], data[:root_password])
-
-        def setup_bootloader(loader)
-          if loader == "systemd-boot"
-            `arch-chroot /mnt bootctl install 2>/dev/null`
-            `echo "title Warding Linux
-            linux /vmlinuz-linux
-            initrd /intel-ucode.img
-            initrd /initramfs-linux.img
-            options root=/dev/vg0/root rw" > /mnt/boot/loader/entries/warding.conf`
-          else
-            # TODO: grub
-          end
-        end
-
-        setup_bootloader(data[:system_settings][:bootloader])
-
-        def setup_usability
-          `arch-chroot /mnt systemctl enable dhcpcd`
-          
-          `arch-chroot /mnt sh -c "$(curl -fsSL https://raw.githubusercontent.com/ohmyzsh/ohmyzsh/master/tools/install.sh)"`
-
-          `wget -q https://blackarch.org/keyring/blackarch-keyring.pkg.tar.xz{,.sig}`
-          `gpg --keyserver hkp://pgp.mit.edu --recv-keys 4345771566D76038C7FEB43863EC0ADBEA87E4E3 > /dev/null 2>&1`
-          `gpg --keyserver-options no-auto-key-retrieve --with-fingerprint blackarch-keyring.pkg.tar.xz.sig > /dev/null 2>&1`
-          `rm blackarch-keyring.pkg.tar.xz.sig`
-          `pacman-key --init`
-          `pacman --config /dev/null --noconfirm -U blackarch-keyring.pkg.tar.xz`
-          `pacman-key --populate`
-          `pacman -Syy`
-        end
-
-        setup_usability
-
-        def setup_visuals
-          `arch-chroot /mnt pacman -S xorg-server xf86-video-intel plasma konsole dolphin kmix sddm kvantum-qt5`
-          `mkdir -p /mnt/etc/sddm.conf.d`
-          `echo "[Theme]\nCurrent=breeze" > /mnt/etc/sddm.conf.d/theme.conf`
-          `echo "[Autologin]\nUser=root" > /mnt/etc/sddm.conf.d/login.conf`
-          `arch-chroot /mnt systemctl enable sddm`
-          `arch-chroot /mnt wget -qO- https://raw.githubusercontent.com/PapirusDevelopmentTeam/arc-kde/master/install.sh | sh`
-          `arch-chroot /mnt wget -qO- https://git.io/papirus-icon-theme-install | sh`
-        end
-
-        setup_visuals if data[:extra_settings].include?("desktop-emvironment")
-
-        def setup_tools
-          `arch-chroot /mnt pacman -S nmap impacket go ruby php firefox atom hashcat john jre-openjdk proxychains-ng exploitdb httpie metasploit bind-tools radare2 sqlmap wpscan xclip --noconfirm`
-          `arch-chroot /mnt mkdir -p /usr/share/wordlists`
-          `arch-chroot /mnt wget -q https://github.com/danielmiessler/SecLists/raw/master/Passwords/Leaked-Databases/rockyou.txt.tar.gz -O /usr/share/wordlists/rockyou.txt.tar.gz`
-          `arch-chroot /mnt wget -q https://github.com/danielmiessler/SecLists/raw/master/Discovery/Web-Content/common.txt -O /usr/share/wordlists/common.txt`
-        end
-
-        setup_tools if data[:extra_settings].include?("hacking-tools")
-
-        def setup_cron
-          `arch-chroot /mnt pacman -S cronie --noconfirm`
-          `arch-chroot /mnt systemctl enable cronie`
-          `echo "#!/bin/bash\nreflector --latest 25 --sort rate --save /etc/pacman.d/mirrorlist" > /mnt/etc/cron.hourly/mirrorlist; chmod +x /mnt/etc/cron.hourly/mirrorlist`
-          `echo "#!/bin/bash\npacman -Sy" > /mnt/etc/cron.weekly/pacman-sync; chmod +x /mnt/etc/cron.weekly/pacman-sync`
-          `echo "#!/bin/bash\npacman -Syu --noconfirm" > /mnt/etc/cron.monthly/system-upgrade; chmod +x /mnt/etc/cron.monthly/system-upgrade`
-        end
-
-        setup_cron if data[:extra_settings].include?("crons")
-
-        def finish
-          `umount -R /mnt`
-          `reboot`
-        end
-
-        finish
-      end
-    end
-  end
-end
+# frozen_string_literal: true
+
+require "warding/version"
+require "tty-prompt"
+
+module Warding
+  class Error < StandardError; end
+
+  class Installer
+    @@prompt = TTY::Prompt.new
+
+    def banner
+      puts <<~'EOF'
+
+         (  (                    (
+         )\))(   '    )   (      )\ )   (            (  (
+        ((_)()\ )  ( /(   )(    (()/(   )\    (      )\))(
+        _(())\_)() )(_)) (()\    ((_)) ((_)   )\ )  ((_))\
+        \ \((_)/ /((_)_   ((_)   _| |   (_)  _(_/(   (()(_)
+         \ \/\/ / / _` | | '_| / _` |   | | | ' \)) / _` |
+          \_/\_/  \__,_| |_|   \__,_|   |_| |_||_|  \__, |
+                                                    |___/
+
+      EOF
+    end
+
+    def check
+      unless `uname -a`.include?("archiso")
+        @@prompt.error("Exiting...")
+        @@prompt.warn("Warding can only be installed from within the live ISO context!")
+        exit!
+      end
+
+      unless `[ -d /sys/firmware/efi ] && echo true`.include?("true")
+        @@prompt.error("UEFI/EFI must be enabled to install warding.")
+        exit!
+      end
+    end
+
+    def gather
+      locales_list = %w[en_US es_ES pt_BR ru_RU fr_FR it_IT de_DE ja_JP ko_KR zh_CN]
+      keymaps_list = %w[us uk br en fr de zh ru it es]
+
+      parsed_input = @@prompt.collect do
+        key(:update_mirrors).yes?("Update mirrorlist?")
+        key(:system_language).select("Pick the desired system language:", locales_list)
+        key(:keyboard_keymap).select("Pick your keyboard layout:", keymaps_list)
+
+        unless @@prompt.yes?("Set timezone automatically?", default: true)
+          key(:update_timezone).ask("Enter timezone:", required: true)
+        end
+
+        key(:root_password).mask("Insert new root password:", default: "warding")
+
+        key(:system_settings) do
+          key(:boot_size).slider("Boot drive partition size (MiB):", min: 512, max: 4096, default: 1024, step: 128)
+          key(:swap_size).slider("Swap partition size (MiB):", min: 1024, max: 8192, default: 2048, step: 256)
+
+          if key(:encrypted).yes?("Enable encryption?", default: false)
+            key(:encryption_settings) do
+              key(:encryption_key).mask("Insert the encryption key:", required: true)
+            end
+          end
+        end
+
+        key(:desktop_environment).select("Select your desktop environment:", %w[plasma gnome i3 none])
+      end
+
+      parsed_input
+    end
+
+    def install(data, encrypted = false)
+      if @@prompt.yes?("Confirm settings and continue?")
+
+        @@prompt.say("Installing, please wait...")
+
+        def setup_mirrors
+          # update mirrorlist
+          `reflector --latest 100 --sort rate --save /etc/pacman.d/mirrorlist`
+        end
+
+        def setup_timezone(timezone = false)
+          # set clock
+          `timedatectl set-ntp true`
+          # set timezone
+          if timezone
+            `timedatectl set-timezone #{timezone}`
+          else
+            `timedatectl set-timezone "$(curl -s https://ipapi.co/timezone)"`
+          end
+        end
+
+        def setup_partitions(boot_size)
+          # create partitions
+          `parted -s -a optimal /dev/sda \
+            mklabel gpt \
+            mkpart primary fat32 0% #{boot_size}Mib \
+            set 1 esp on \
+            mkpart primary ext4 #{boot_size}Mib 100% \
+            set 2 lvm on
+          `
+        end
+
+        def setup_lvm(swap_size, key = false)
+          # setup encryption
+          if key
+            # create an encrypted volume
+            `echo "#{key}" | cryptsetup -q luksFormat --type luks2 --cipher aes-xts-plain64 --key-size 512 /dev/sda2`
+            # open the volume
+            `echo "#{key}" | cryptsetup open /dev/sda2 cryptlvm -`
+            # setup lvm
+            `pvcreate /dev/mapper/cryptlvm`
+            # create virtual group
+            `vgcreate vg0 /dev/mapper/cryptlvm`
+          else
+            # create physical volume
+            `pvcreate /dev/sda2`
+            # create virtual group
+            `vgcreate vg0 /dev/sda2`
+          end
+          # create logical volumes
+          `lvcreate -L #{swap_size}Mib vg0 -n swap`
+          `lvcreate -l 100%FREE vg0 -n root`
+          # make and mount rootfs
+          `mkfs.ext4 -q /dev/vg0/root`
+          `mount /dev/vg0/root /mnt`
+          # make and mount boot partition
+          `mkfs.fat -F32 /dev/sda1`
+          `mkdir /mnt/boot`
+          `mount /dev/sda1 /mnt/boot`
+          # setup swap
+          `mkswap /dev/vg0/swap`
+          `swapon /dev/vg0/swap`
+        end
+
+        def setup_packages
+          # update packages list
+          `pacman -Syy`
+          # install base system
+          `pacstrap /mnt base base-devel linux linux-firmware linux-headers lvm2 mkinitcpio dmidecode smbclient reflector networkmanager go cronie man-db nano vi fuse wget openbsd-netcat dhcpcd samba openssh openvpn unzip vim git zsh`
+          # generate fstab
+          `genfstab -U /mnt >> /mnt/etc/fstab`
+        end
+
+        def setup_chroot(lang, keymap, password = "warding", encrypted = false)
+          # set timezone
+          `arch-chroot /mnt ln -sf /usr/share/zoneinfo/"$(curl -s https://ipapi.co/timezone)" /etc/localtime`
+          # update clock
+          `arch-chroot /mnt hwclock --systohc`
+          # set locale
+          `echo "#{lang}.UTF-8 UTF-8" > /mnt/etc/locale.gen`
+          `arch-chroot /mnt locale-gen`
+          `echo "LANG=#{lang}.UTF-8" > /mnt/etc/locale.conf`
+          # set keymap
+          `echo "KEYMAP=#{keymap}" > /mnt/etc/vconsole.conf`
+          # update hostname
+          `echo "warding" > /mnt/etc/hostname`
+          # update hosts
+          `echo "127.0.0.1 localhost\n::1 localhost\n127.0.1.1 warding.localdomain warding" > /mnt/etc/hosts`
+          # update root password
+          `echo -e "#{password}\n#{password}" | arch-chroot /mnt passwd`
+          # update hooks
+          if encrypted
+            `sed -i "/^HOOK/s/modconf/keyboard keymap modconf/" /mnt/etc/mkinitcpio.conf`
+            `sed -i "/^HOOK/s/filesystems/encrypt lvm2 filesystems/" /mnt/etc/mkinitcpio.conf`
+          else
+            `sed -i "/^HOOK/s/filesystems/lvm2 filesystems/" /mnt/etc/mkinitcpio.conf`
+          end
+          # recompile initramfs
+          `arch-chroot /mnt mkinitcpio -P`
+          # add intel microcode
+          `arch-chroot /mnt pacman -S amd-ucode --noconfirm`
+        end
+
+        def setup_bootloader(encrypted = false)
+          # setup systemd-boot
+          `arch-chroot /mnt bootctl install`
+          `echo "title Warding Linux
+          linux /vmlinuz-linux
+          initrd /amd-ucode.img
+          initrd /initramfs-linux.img" > /mnt/boot/loader/entries/warding.conf`
+          if encrypted
+            `echo "options cryptdevice=UUID=$(blkid -s UUID -o value /dev/sda2):cryptlvm:allow-discards root=/dev/vg0/root quiet rw" >> /mnt/boot/loader/entries/warding.conf`
+          else
+            `echo "options root=/dev/vg0/root rw" >> /mnt/boot/loader/entries/warding.conf`
+          end
+        end
+
+        def setup_usability
+          # enable internet
+          `arch-chroot /mnt systemctl -q enable NetworkManager`
+          # add cron jobs
+          `echo "#!/bin/bash\nreflector --latest 100 --sort rate --save /etc/pacman.d/mirrorlist" > /mnt/etc/cron.weekly/mirrorlist; chmod +x /mnt/etc/cron.weekly/mirrorlist`
+          `echo "#!/bin/bash\npacman -Sy" > /mnt/etc/cron.weekly/pacman-sync; chmod +x /mnt/etc/cron.weekly/pacman-sync`
+          `echo "#!/bin/bash\npacman -Syu --noconfirm" > /mnt/etc/cron.monthly/system-upgrade; chmod +x /mnt/etc/cron.monthly/system-upgrade`
+          # enable cron jobs
+          `arch-chroot /mnt systemctl -q enable cronie`
+          # change default shell
+          `arch-chroot /mnt chsh -s /usr/bin/zsh`
+          # setup wordlists
+          `arch-chroot /mnt mkdir -p /usr/share/wordlists`
+          `arch-chroot /mnt curl -s https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/raft-large-directories-lowercase.txt -O --output-dir /usr/share/wordlists`
+          `arch-chroot /mnt curl -s https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/common.txt -O --output-dir /usr/share/wordlists`
+          `arch-chroot /mnt curl -s https://github.com/danielmiessler/SecLists/raw/master/Passwords/Leaked-Databases/rockyou.txt.tar.gz -O --output-dir /usr/share/wordlists`
+          # setup drivers
+          `arch-chroot /mnt pacman -S alsa-utils alsa-plugins alsa-lib --noc`
+          # update package list
+          `arch-chroot /mnt pacman -Syy`
+          # user creation --fix
+          `arch-chroot /mnt useradd -m -g wheel -s /bin/zsh ward`
+          `sed -i '85 s/# %wheel ALL=(ALL) NOPASSWD: ALL/%wheel ALL=(ALL) NOPASSWD: ALL/g' /mnt/etc/sudoers`
+          `arch-chroot /mnt sudo -u ward sh -c "cd /home/ward; git clone https://aur.archlinux.org/yay.git; cd yay; makepkg -si --noconfirm"`
+          `arch-chroot /mnt sudo -u ward sh -c "$(curl -fsSL https://raw.githubusercontent.com/ohmyzsh/ohmyzsh/master/tools/install.sh)" "" --unattended`
+          # check if on VM
+          if `arch-chroot /mnt dmidecode -s system-manufacturer`.include?("VMware, Inc.")
+            # install and enable VMware utils
+            `arch-chroot /mnt pacman -S open-vm-tools --noconfirm`
+            `arch-chroot /mnt systemctl -q enable vmtoolsd`
+          end
+        end
+
+        def setup_visuals(theme)
+          case theme
+          when "plasma"
+            # install packages
+            `arch-chroot /mnt pacman -S xorg-server plasma-meta gtkmm konsole sddm kvantum-qt5 --noc -q`
+            # create conf dir
+            `mkdir -p /mnt/etc/sddm.conf.d`
+            # fix theme
+            `echo "[Theme]\nCurrent=breeze" > /mnt/etc/sddm.conf.d/theme.conf`
+            # enable autologin
+            `echo "[Autologin]\nUser=ward\nSession=plasma" > /mnt/etc/sddm.conf.d/autologin.conf`
+            # enable sddm
+            `arch-chroot /mnt systemctl -q enable sddm`
+          when "gnome"
+            # install packages
+            `arch-chroot /mnt pacman -S xf86-video-intel gtkmm gnome --noc`
+            # enable gdm
+            `arch-chroot /mnt systemctl -q enable gdm`
+          when "i3"
+            # install packages
+            `arch-chroot /mnt pacman -S lightdm lightdm-gtk-greeter xorg-server xorg-apps xorg-xinit i3-wm --noc`
+            # enable lightdm
+            `arch-chroot /mnt systemctl -q enable lightdm`
+          else
+            nil
+          end
+        end
+
+        def finish
+          `umount -R /mnt`
+          `reboot`
+        end
+
+        setup_mirrors if data[:update_mirrors]
+        data[:update_timezone] ? setup_timezone(data[:update_timezone]) : setup_timezone
+        setup_partitions(data[:system_settings][:boot_size])
+        data[:system_settings][:encrypted] ? setup_lvm(data[:system_settings][:swap_size], data[:system_settings][:encryption_settings][:encryption_key]) : setup_lvm(data[:system_settings][:swap_size])
+        setup_packages
+        data[:system_settings][:encrypted] ? setup_chroot(data[:system_language], data[:keyboard_keymap], data[:root_password], true) : setup_chroot(data[:system_language], data[:keyboard_keymap], data[:root_password])
+        data[:system_settings][:encrypted] ? setup_bootloader(true) : setup_bootloader
+        setup_usability
+        setup_visuals(data[:desktop_environment])
+        finish
+      end
+    end
+  end
+end

data/lib/warding/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Warding
-  VERSION = "0.2.6"
+  VERSION = "1.0.2"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: warding
 version: !ruby/object:Gem::Version
-  version: 0.2.6
+  version: 1.0.2
 platform: ruby
 authors:
 - Marlos Pomin
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-08-22 00:00:00.000000000 Z
+date: 2021-08-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: tty-prompt
@@ -32,6 +32,7 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/workflows/default.yml"
 - ".gitignore"
 - ".rubocop.yml"
 - Gemfile
@@ -40,6 +41,8 @@ files:
 - README.md
 - Rakefile
 - bin/warding
+- debug/debug.sh
+- debug/quick-install.sh
 - lib/warding.rb
 - lib/warding/version.rb
 - warding.gemspec
@@ -65,7 +68,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.1.2
 signing_key: 
 specification_version: 4
 summary: Warding Linux installer.