free
/
freedombone
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
4567 Commits
5 Branches
Tree: 63ce7511ad
Branches Labels
${ item.name }
Maak branch ${ searchTerm }
van '63ce7511ad'
${ noResults }
freedombone/src/freedombone-config

freedombone-config 48KB
Geschiedenis Ruw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378 
  1. #!/bin/bash

  2. #

  3. # .---.                  .              .

  4. # |                      |              |

  5. # |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.

  6. # |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'

  7. # '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'

  8. #

  9. #                    Freedom in the Cloud

  10. #

  11. # Interactively creates a configuration file for use with the main

  12. # freedombone command

  13. #

  14. # License

  15. # =======

  16. #

  17. # Copyright (C) 2015-2016 Bob Mottram <bob@robotics.uk.to>

  18. #

  19. # This program is free software: you can redistribute it and/or modify

  20. # it under the terms of the GNU Affero General Public License as published by

  21. # the Free Software Foundation, either version 3 of the License, or

  22. # (at your option) any later version.

  23. #

  24. # This program is distributed in the hope that it will be useful,

  25. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  26. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  27. # GNU Affero General Public License for more details.

  28. #

  29. # You should have received a copy of the GNU Affero General Public License

  30. # along with this program.  If not, see <http://www.gnu.org/licenses/>.

  31. 

  32. NO_OF_ARGS=$#

  33. 

  34. PROJECT_NAME='freedombone'

  35. 

  36. # username created by default within a debian image

  37. GENERIC_IMAGE_USERNAME='fbone'

  38. 

  39. export TEXTDOMAIN=${PROJECT_NAME}-config

  40. export TEXTDOMAINDIR="/usr/share/locale"

  41. 

  42. # Web site

  43. FREEDOMBONE_WEBSITE="https://freedombone.net or http://4fvfozz6g3zmvf76.onion"

  44. 

  45. # Minimum number of characters in a password

  46. MINIMUM_PASSWORD_LENGTH=$(cat /usr/share/${PROJECT_NAME}/utils/${PROJECT_NAME}-utils-passwords | grep 'MINIMUM_PASSWORD_LENGTH=' | head -n 1 | awk -F '=' '{print $2}')

  47. 

  48. # file containing new password

  49. IMAGE_PASSWORD_FILE=/root/login.txt

  50. 

  51. MY_USERNAME=

  52. DEFAULT_DOMAIN_NAME=

  53. DEFAULT_DOMAIN_CODE=

  54. MY_EMAIL_ADDRESS=

  55. SYSTEM_TYPE=

  56. INSTALLING_ON_BBB="no"

  57. DDNS_PROVIDER=

  58. DDNS_USERNAME=

  59. DDNS_PASSWORD=

  60. MY_NAME=

  61. LOCAL_NETWORK_STATIC_IP_ADDRESS=

  62. ROUTER_IP_ADDRESS=

  63. ENABLE_CJDNS=

  64. ENABLE_BATMAN=

  65. ENABLE_BABEL=

  66. DEBIAN_REPO=

  67. NAMESERVER1=

  68. NAMESERVER2=

  69. WIKI_TITLE=

  70. WIKI_DOMAIN_NAME=

  71. WIKI_CODE=

  72. MY_BLOG_TITLE=

  73. FULLBLOG_DOMAIN_NAME=

  74. FULLBLOG_CODE=

  75. MEDIAGOBLIN_ENABLED='no'

  76. MEDIAGOBLIN_DOMAIN_NAME=

  77. MEDIAGOBLIN_CODE=

  78. MEDIA_SERVER_ENABLED='no'

  79. MEDIA_SERVER_DOMAIN_NAME=

  80. MEDIA_SERVER_CODE=

  81. HUBZILLA_DOMAIN_NAME=

  82. HUBZILLA_CODE=

  83. MICROBLOG_DOMAIN_NAME=

  84. MICROBLOG_CODE=

  85. MICROBLOG_WELCOME_MESSAGE=$"<h1>Welcome to \$MICROBLOG_DOMAIN_NAME – a federated microblog</h1><p>Another $PROJECT_NAME site</p>"

  86. MICROBLOG_BACKGROUND_IMAGE_URL=

  87. GIT_DOMAIN_NAME=

  88. GIT_CODE=

  89. MEDIAGOBLIN_DOMAIN_NAME=

  90. MEDIAGOBLIN_CODE=

  91. USB_DRIVE=/dev/sdb1

  92. HWRNG_TYPE=

  93. ENABLE_SOCIAL_KEY_MANAGEMENT=

  94. WIFI_INTERFACE=wlan0

  95. WIFI_TYPE='wpa2-psk'

  96. WIFI_SSID=

  97. WIFI_PASSPHRASE=

  98. WIFI_HOTSPOT=

  99. WIFI_NETWORKS_FILE=~/${PROJECT_NAME}-wifi.cfg

  100. BATMAN_CELLID='any'

  101. WIFI_CHANNEL=

  102. CONFIGURATION_FILE=

  103. DH_KEYLENGTH=

  104. MINIMAL_INSTALL="yes"

  105. DEFAULT_LANGUAGE='en_GB.UTF-8'

  106. ONION_ONLY="no"

  107. SELECTED_USERNAME=

  108. 

  109. # Mirrors settings

  110. FRIENDS_MIRRORS_SERVER=

  111. FRIENDS_MIRRORS_SSH_PORT=2222

  112. FRIENDS_MIRRORS_PASSWORD=

  113. MY_MIRRORS_PASSWORD=

  114. 

  115. VALID_CODE=

  116. 

  117. PROJECT_INSTALL_DIR=/usr/local/bin

  118. if [ -f /usr/bin/${PROJECT_NAME} ]; then

  119.     PROJECT_INSTALL_DIR=/usr/bin

  120. fi

  121. 

  122. source $PROJECT_INSTALL_DIR/${PROJECT_NAME}-vars

  123. 

  124. UTILS_FILES=/usr/share/${PROJECT_NAME}/utils/${PROJECT_NAME}-utils-*

  125. for f in $UTILS_FILES

  126. do

  127.   source $f

  128. done

  129. 

  130. APP_FILES=/usr/share/${PROJECT_NAME}/apps/${PROJECT_NAME}-app-*

  131. for f in $APP_FILES

  132. do

  133.   source $f

  134. done

  135. 

  136. function show_help {

  137.     echo ''

  138.     echo $"${PROJECT_NAME}-config -f [config filename] -m [min password length]"

  139.     echo ''

  140.     echo $'Creates an inventory of remote backup locations'

  141.     echo ''

  142.     echo ''

  143.     echo $'  -h --help             Show help'

  144.     echo $'  -f --filename         Configuration file (usually freedombone.cfg)'

  145.     echo $'  -m --min              Minimum password length (characters)'

  146.     echo $'  -w --www              Freedombone web site'

  147.     echo $'  -b --bm               Freedombone support Bitmessage address'

  148.     echo $'  -o --onion [yes|no]   Whether to only create .onion sites'

  149.     echo $'     --minimal [yes|no] For minimalistic "consumer grade" installs'

  150.     echo ''

  151.     exit 0

  152. }

  153. 

  154. function choose_email_address {

  155.     if [[ $ONION_ONLY != "no" ]]; then

  156.         EMAIL_ADDRESS=$MY_USERNAME@$DEFAULT_DOMAIN_NAME

  157.     else

  158.         while [ ${#MY_EMAIL_ADDRESS} -lt 5 ]

  159.         do

  160.             EMAIL_ADDRESS=$(grep 'MY_EMAIL_ADDRESS' temp.cfg | awk -F '=' '{print $2}')

  161.             if [ ! $EMAIL_ADDRESS ]; then

  162.                 EMAIL_ADDRESS=$MY_USERNAME@$DEFAULT_DOMAIN_NAME

  163.             fi

  164.             if [ ${#MY_EMAIL_ADDRESS} -lt 5 ]; then

  165.                 EMAIL_ADDRESS=$MY_USERNAME@$DEFAULT_DOMAIN_NAME

  166.             fi

  167. 

  168.             data=$(tempfile 2>/dev/null)

  169.             trap "rm -f $data" 0 1 2 5 15

  170.             dialog --backtitle $"Freedombone Configuration" \

  171.                    --inputbox $"Your email address" 10 30 "$EMAIL_ADDRESS" 2> $data

  172.             sel=$?

  173.             case $sel in

  174.                 0) MY_EMAIL_ADDRESS=$(cat $data);;

  175.                 1) exit 1;;

  176.                 255) exit 1;;

  177.             esac

  178.         done

  179.     fi

  180.     save_configuration_values

  181. }

  182. 

  183. function choose_default_domain_name {

  184.     if [[ $ONION_ONLY != "no" ]]; then

  185.         DEFAULT_DOMAIN_NAME="${PROJECT_NAME}.local"

  186.     else

  187.         DEFAULT_DOMAIN_DETAILS_COMPLETE=

  188.         while [ ! $DEFAULT_DOMAIN_DETAILS_COMPLETE ]

  189.         do

  190.             data=$(tempfile 2>/dev/null)

  191.             trap "rm -f $data" 0 1 2 5 15

  192.             if [[ $DDNS_PROVIDER == "default@freedns.afraid.org" ]]; then

  193.                 dialog --backtitle $"Freedombone Configuration" \

  194.                        --title $"Your main domain name" \

  195.                        --form $"\nWhich domain name should your email/XMPP/IRC/Mumble be associated with?" 11 55 3 \

  196.                        $"Domain:" 1 1 "$(grep 'DEFAULT_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 1 16 33 40 \

  197.                        $"Code:" 2 1 "$(grep 'DEFAULT_DOMAIN_CODE' temp.cfg | awk -F '=' '{print $2}')" 2 16 33 255 \

  198.                        2> $data

  199.                 sel=$?

  200.                 case $sel in

  201.                     1) exit 1;;

  202.                     255) exit 1;;

  203.                 esac

  204.                 DEFAULT_DOMAIN_NAME=$(cat $data | sed -n 1p)

  205.                 DEFAULT_DOMAIN_CODE=$(cat $data | sed -n 2p)

  206.                 if [ $DEFAULT_DOMAIN_NAME ]; then

  207.                     validate_freedns_code "$DEFAULT_DOMAIN_CODE"

  208.                     if [ ! $VALID_CODE ]; then

  209.                         DEFAULT_DOMAIN_NAME=

  210.                     fi

  211.                 fi

  212.             else

  213.                 dialog --backtitle $"Freedombone Configuration" \

  214.                        --inputbox $"Which domain name should your email/XMPP/IRC/Mumble be associated with?" 10 45 \

  215.                        "$(grep 'DEFAULT_DOMAIN_NAME' temp.cfg | awk -F '=' '{print $2}')" 2> $data

  216.                 sel=$?

  217.                 case $sel in

  218.                     0) DEFAULT_DOMAIN_NAME=$(cat $data);;

  219.                     1) exit 1;;

  220.                     255) exit 1;;

  221.                 esac

  222.             fi

  223.             if [ $DEFAULT_DOMAIN_NAME ]; then

  224.                 TEST_DOMAIN_NAME=$DEFAULT_DOMAIN_NAME

  225.                 validate_domain_name

  226.                 if [[ $TEST_DOMAIN_NAME != $DEFAULT_DOMAIN_NAME ]]; then

  227.                     DEFAULT_DOMAIN_NAME=

  228.                     dialog --title $"Domain name validation" --msgbox "$TEST_DOMAIN_NAME" 15 50

  229.                 else

  230.                     DEFAULT_DOMAIN_DETAILS_COMPLETE="yes"

  231.                 fi

  232.             fi

  233.         done

  234.     fi

  235.     save_configuration_values

  236. }

  237. 

  238. function choose_static_ip {

  239.     if [[ $MINIMAL_INSTALL == "no" && $ONION_ONLY == "no" ]]; then

  240.         SET_STATIC_IP="no"

  241.         dialog --title $"Static local IP address" \

  242.                --backtitle $"Freedombone Configuration" \

  243.                --defaultno \

  244.                --yesno $"\nDo you want to set a static local IP address for this system?\n\nFor example, 192.168.1.10" 10 60

  245.         sel=$?

  246.         case $sel in

  247.             0) SET_STATIC_IP="yes";;

  248.             255) exit 1;;

  249.         esac

  250. 

  251.         if [[ $SET_STATIC_IP == "yes" ]]; then

  252.             if [ ! $LOCAL_NETWORK_STATIC_IP_ADDRESS ]; then

  253.                 LOCAL_NETWORK_STATIC_IP_ADDRESS=$(grep 'LOCAL_NETWORK_STATIC_IP_ADDRESS' temp.cfg | awk -F '=' '{print $2}')

  254.                 if [ ! $LOCAL_NETWORK_STATIC_IP_ADDRESS ]; then

  255.                     LOCAL_NETWORK_STATIC_IP_ADDRESS='192.168..'

  256.                 fi

  257.             fi

  258.             if [ ! $ROUTER_IP_ADDRESS ]; then

  259.                 ROUTER_IP_ADDRESS=$(grep 'ROUTER_IP_ADDRESS' temp.cfg | awk -F '=' '{print $2}')

  260.                 if [ ! $ROUTER_IP_ADDRESS ]; then

  261.                     ROUTER_IP_ADDRESS='192.168..'

  262.                 fi

  263.             fi

  264.             data=$(tempfile 2>/dev/null)

  265.             trap "rm -f $data" 0 1 2 5 15

  266.             dialog --backtitle $"Freedombone Configuration" \

  267.                    --title $"Local Network Configuration" \

  268.                    --form $"\nPlease enter the IP addresses:" 11 55 3 \

  269.                    $"This system:" 1 1 "$LOCAL_NETWORK_STATIC_IP_ADDRESS" 1 16 16 15 \

  270.                    $"Internet router:" 2 1 "$ROUTER_IP_ADDRESS" 2 16 16 15 \

  271.                    2> $data

  272.             sel=$?

  273.             case $sel in

  274.                 1) exit 1;;

  275.                 255) exit 1;;

  276.             esac

  277.             LOCAL_NETWORK_STATIC_IP_ADDRESS=$(cat $data | sed -n 1p)

  278.             ROUTER_IP_ADDRESS=$(cat $data | sed -n 2p)

  279.             save_configuration_values

  280.         fi

  281.     fi

  282. }

  283. 

  284. function choose_dynamic_dns {

  285.     if [[ $SYSTEM_TYPE != "mesh"* && $ONION_ONLY == "no" ]]; then

  286. 

  287.         data=$(tempfile 2>/dev/null)

  288.         trap "rm -f $data" 0 1 2 5 15

  289.         dialog --backtitle $"Freedombone Configuration" \

  290.                --radiolist $"Choose Dynamic DNS provider:" 15 40 14 \

  291.                1 dyndns off \

  292.                2 freedns on \

  293.                3 zoneedit off \

  294.                4 no-ip off \

  295.                5 easydns off \

  296.                6 tzo off \

  297.                7 3322 off \

  298.                8 dnsomatic off \

  299.                9 tunnelbroker off \

  300.                10 dns.he.net off \

  301.                11 dynsip off \

  302.                12 sitelutions off \

  303.                13 dnsexit off \

  304.                14 changeip off 2> $data

  305.         sel=$?

  306.         case $sel in

  307.             1) exit 1;;

  308.             255) exit 1;;

  309.         esac

  310.         case $(cat $data) in

  311.             1) DDNS_PROVIDER="default@dyndns.org";;

  312.             2) DDNS_PROVIDER="default@freedns.afraid.org";;

  313.             3) DDNS_PROVIDER="default@zoneedit.com";;

  314.             4) DDNS_PROVIDER="default@no-ip.com";;

  315.             5) DDNS_PROVIDER="default@easydns.com";;

  316.             6) DDNS_PROVIDER="default@tzo.com";;

  317.             7) DDNS_PROVIDER="dyndns@3322.org";;

  318.             8) DDNS_PROVIDER="default@dnsomatic.com";;

  319.             9) DDNS_PROVIDER="ipv6tb@he.net";;

  320.             10) DDNS_PROVIDER="dyndns@he.net";;

  321.             11) DDNS_PROVIDER="default@dynsip.org";;

  322.             12) DDNS_PROVIDER="default@sitelutions.com";;

  323.             13) DDNS_PROVIDER="default@dnsexit.com";;

  324.             14) DDNS_PROVIDER="default@changeip.com";;

  325.             255) exit 1;;

  326.         esac

  327.         save_configuration_values

  328. 

  329.         valid_ddns_username=

  330.         while [ ! $valid_ddns_username ]

  331.         do

  332.             data=$(tempfile 2>/dev/null)

  333.             trap "rm -f $data" 0 1 2 5 15

  334.             dialog --backtitle $"Freedombone Configuration" \

  335.                    --inputbox $"Dynamic DNS provider username" 10 30 "$(grep 'DDNS_USERNAME' temp.cfg | awk -F '=' '{print $2}')" 2> $data

  336.             sel=$?

  337.             case $sel in

  338.                 0)  possible_username=$(cat $data)

  339.                     if [ "$possible_username" ]; then

  340.                         if [ ${#possible_username} -gt 1 ]; then

  341.                             valid_ddns_username=$(cat $data)

  342.                             DDNS_USERNAME=$valid_ddns_username

  343.                             break;

  344.                         fi

  345.                     fi

  346.                     ;;

  347.                 1) exit 1;;

  348.                 255) exit 1;;

  349.             esac

  350.         done

  351.         save_configuration_values

  352. 

  353.         valid_ddns_password=

  354.         while [ ! $valid_ddns_password ]

  355.         do

  356.             data=$(tempfile 2>/dev/null)

  357.             trap "rm -f $data" 0 1 2 5 15

  358.             dialog --backtitle $"Freedombone Configuration" \

  359.                    --clear \

  360.                    --insecure \

  361.                    --passwordbox $"Dynamic DNS provider password" 10 30 "$(grep 'DDNS_PASSWORD' temp.cfg | awk -F '=' '{print $2}')" 2> $data

  362.             sel=$?

  363.             case $sel in

  364.                 0)  possible_password=$(cat $data)

  365.                     if [ "$possible_password" ]; then

  366.                         if [ ${#possible_password} -gt 1 ]; then

  367.                             valid_ddns_password=$(cat $data)

  368.                             DDNS_PASSWORD=$valid_ddns_password

  369.                             break;

  370.                         fi

  371.                     fi

  372.                     ;;

  373.                 1) exit 1;;

  374.                 255) exit 1;;

  375.             esac

  376.             if [ ${#DDNS_PASSWORD} -lt $MINIMUM_PASSWORD_LENGTH ]; then

  377.                 dialog --title $"Password quality check" --msgbox $"The password given was too short. It must be at least $MINIMUM_PASSWORD_LENGTH characters. You may need to change your password on the dynamic DNS provider's web site." 10 40

  378.                 DDNS_PASSWORD=""

  379.             fi

  380.         done

  381.         save_configuration_values

  382.     fi

  383. }

  384. 

  385. function choose_dns {

  386.     if [[ $MINIMAL_INSTALL == "no" && $ONION_ONLY == "no" ]]; then

  387.         data=$(tempfile 2>/dev/null)

  388.         trap "rm -f $data" 0 1 2 5 15

  389.         dialog --backtitle $"Freedombone Configuration" \

  390.                --radiolist $"Pick a domain name service (DNS):" 25 50 16 \

  391.                1 $"Digital Courage" on \

  392.                2 $"German Privacy Foundation 1" off \

  393.                3 $"German Privacy Foundation 2" off \

  394.                4 $"Chaos Computer Club" off \

  395.                5 $"ClaraNet" off \

  396.                6 $"OpenNIC 1" off \

  397.                7 $"OpenNIC 2" off \

  398.                8 $"OpenNIC 3" off \

  399.                9 $"OpenNIC 4" off \

  400.                10 $"OpenNIC 5" off \

  401.                11 $"OpenNIC 6" off \

  402.                12 $"OpenNIC 7" off \

  403.                13 $"PowerNS" off \

  404.                14 $"ValiDOM" off \

  405.                15 $"Freie Unzensierte" off \

  406.                16 $"Google" off 2> $data

  407.         sel=$?

  408.         case $sel in

  409.             1) exit 1;;

  410.             255) exit 1;;

  411.         esac

  412.         case $(cat $data) in

  413.             1) NAMESERVER1='85.214.73.63'

  414.                NAMESERVER2='213.73.91.35'

  415.                ;;

  416.             2) NAMESERVER1='87.118.100.175'

  417.                NAMESERVER2='94.75.228.29'

  418.                ;;

  419.             3) NAMESERVER1='85.25.251.254'

  420.                NAMESERVER2='2.141.58.13'

  421.                ;;

  422.             4) NAMESERVER1='213.73.91.35'

  423.                NAMESERVER2='85.214.73.63'

  424.                ;;

  425.             5) NAMESERVER1='212.82.225.7'

  426.                NAMESERVER2='212.82.226.212'

  427.                ;;

  428.             6) NAMESERVER1='58.6.115.42'

  429.                NAMESERVER2='58.6.115.43'

  430.                ;;

  431.             7) NAMESERVER1='119.31.230.42'

  432.                NAMESERVER2='200.252.98.162'

  433.                ;;

  434.             8) NAMESERVER1='217.79.186.148'

  435.                NAMESERVER2='81.89.98.6'

  436.                ;;

  437.             9) NAMESERVER1='78.159.101.37'

  438.                NAMESERVER2='203.167.220.153'

  439.                ;;

  440.             10) NAMESERVER1='82.229.244.191'

  441.                 NAMESERVER2='82.229.244.191'

  442.                 ;;

  443.             11) NAMESERVER1='216.87.84.211'

  444.                 NAMESERVER2='66.244.95.20'

  445.                 ;;

  446.             12) NAMESERVER1='207.192.69.155'

  447.                 NAMESERVER2='72.14.189.120'

  448.                 ;;

  449.             13) NAMESERVER1='194.145.226.26'

  450.                 NAMESERVER2='77.220.232.44'

  451.                 ;;

  452.             14) NAMESERVER1='78.46.89.147'

  453.                 NAMESERVER2='88.198.75.145'

  454.                 ;;

  455.             15) NAMESERVER1='85.25.149.144'

  456.                 NAMESERVER2='87.106.37.196'

  457.                 ;;

  458.             16) NAMESERVER1='8.8.8.8'

  459.                 NAMESERVER2='4.4.4.4'

  460.                 ;;

  461.             255) exit 1;;

  462.         esac

  463.         save_configuration_values

  464.     else

  465.         # as defaults for a minimal install process these settings are debatable

  466.         NAMESERVER1='85.214.73.63'

  467.         NAMESERVER2='213.73.91.35'

  468.     fi

  469. }

  470. 

  471. function choose_debian_repo {

  472.     if [[ $MINIMAL_INSTALL == "no" ]]; then

  473.         data=$(tempfile 2>/dev/null)

  474.         trap "rm -f $data" 0 1 2 5 15

  475.         dialog --backtitle $"Freedombone Configuration" \

  476.                --radiolist $"Where to download Debian packages from:" 25 45 49 \

  477.                1 $"Australia" off \

  478.                2 $"Austria" off \

  479.                3 $"Belarus" off \

  480.                4 $"Belgium" off \

  481.                5 $"Bosnia and Herzegovina" off \

  482.                6 $"Brazil" off \

  483.                7 $"Bulgaria" off \

  484.                8 $"Canada" off \

  485.                9 $"Chile" off \

  486.                10 $"China" off \

  487.                11 $"Croatia" off \

  488.                12 $"Czech Republic" off \

  489.                13 $"Denmark" off \

  490.                14 $"El Salvador" off \

  491.                15 $"Estonia" off \

  492.                16 $"Finland" off \

  493.                17 $"France 1" off \

  494.                18 $"France 2" off \

  495.                19 $"Germany 1" off \

  496.                20 $"Germany 2" off \

  497.                21 $"Greece" off \

  498.                22 $"Hungary" off \

  499.                23 $"Iceland" off \

  500.                24 $"Iran" off \

  501.                25 $"Ireland" off \

  502.                26 $"Italy" off \

  503.                27 $"Japan" off \

  504.                28 $"Korea" off \

  505.                29 $"Lithuania" off \

  506.                30 $"Mexico" off \

  507.                31 $"Netherlands" off \

  508.                32 $"New Caledonia" off \

  509.                33 $"New Zealand" off \

  510.                34 $"Norway" off \

  511.                35 $"Poland" off \

  512.                36 $"Portugal" off \

  513.                37 $"Romania" off \

  514.                38 $"Russia" off \

  515.                39 $"Slovakia" off \

  516.                40 $"Slovenia" off \

  517.                41 $"Spain" off \

  518.                42 $"Sweden" off \

  519.                43 $"Switzerland" off \

  520.                44 $"Taiwan" off \

  521.                45 $"Thailand" off \

  522.                46 $"Turkey" off \

  523.                47 $"Ukraine" off \

  524.                48 $"United Kingdom" off \

  525.                49 $"United States" on 2> $data

  526.         sel=$?

  527.         case $sel in

  528.             1) exit 1;;

  529.             255) exit 1;;

  530.         esac

  531.         case $(cat $data) in

  532.             1) DEBIAN_REPO='ftp.au.debian.org';;

  533.             2) DEBIAN_REPO='ftp.at.debian.org';;

  534.             3) DEBIAN_REPO='ftp.by.debian.org';;

  535.             4) DEBIAN_REPO='ftp.be.debian.org';;

  536.             5) DEBIAN_REPO='ftp.ba.debian.org';;

  537.             6) DEBIAN_REPO='ftp.br.debian.org';;

  538.             7) DEBIAN_REPO='ftp.bg.debian.org';;

  539.             8) DEBIAN_REPO='ftp.ca.debian.org';;

  540.             9) DEBIAN_REPO='ftp.cl.debian.org';;

  541.             10) DEBIAN_REPO='ftp.cn.debian.org';;

  542.             11) DEBIAN_REPO='ftp.hr.debian.org';;

  543.             12) DEBIAN_REPO='ftp.cz.debian.org';;

  544.             13) DEBIAN_REPO='ftp.dk.debian.org';;

  545.             14) DEBIAN_REPO='ftp.sv.debian.org';;

  546.             15) DEBIAN_REPO='ftp.ee.debian.org';;

  547.             16) DEBIAN_REPO='ftp.fi.debian.org';;

  548.             17) DEBIAN_REPO='ftp2.fr.debian.org';;

  549.             18) DEBIAN_REPO='ftp.fr.debian.org';;

  550.             19) DEBIAN_REPO='ftp2.de.debian.org';;

  551.             20) DEBIAN_REPO='ftp.de.debian.org';;

  552.             21) DEBIAN_REPO='ftp.gr.debian.org';;

  553.             22) DEBIAN_REPO='ftp.hu.debian.org';;

  554.             23) DEBIAN_REPO='ftp.is.debian.org';;

  555.             24) DEBIAN_REPO='ftp.ir.debian.org';;

  556.             25) DEBIAN_REPO='ftp.ie.debian.org';;

  557.             26) DEBIAN_REPO='ftp.it.debian.org';;

  558.             27) DEBIAN_REPO='ftp.jp.debian.org';;

  559.             28) DEBIAN_REPO='ftp.kr.debian.org';;

  560.             29) DEBIAN_REPO='ftp.lt.debian.org';;

  561.             30) DEBIAN_REPO='ftp.mx.debian.org';;

  562.             31) DEBIAN_REPO='ftp.nl.debian.org';;

  563.             32) DEBIAN_REPO='ftp.nc.debian.org';;

  564.             33) DEBIAN_REPO='ftp.nz.debian.org';;

  565.             34) DEBIAN_REPO='ftp.no.debian.org';;

  566.             35) DEBIAN_REPO='ftp.pl.debian.org';;

  567.             36) DEBIAN_REPO='ftp.pt.debian.org';;

  568.             37) DEBIAN_REPO='ftp.ro.debian.org';;

  569.             38) DEBIAN_REPO='ftp.ru.debian.org';;

  570.             39) DEBIAN_REPO='ftp.sk.debian.org';;

  571.             40) DEBIAN_REPO='ftp.si.debian.org';;

  572.             41) DEBIAN_REPO='ftp.es.debian.org';;

  573.             42) DEBIAN_REPO='ftp.se.debian.org';;

  574.             43) DEBIAN_REPO='ftp.ch.debian.org';;

  575.             44) DEBIAN_REPO='ftp.tw.debian.org';;

  576.             45) DEBIAN_REPO='ftp.th.debian.org';;

  577.             46) DEBIAN_REPO='ftp.tr.debian.org';;

  578.             47) DEBIAN_REPO='ftp.ua.debian.org';;

  579.             48) DEBIAN_REPO='ftp.uk.debian.org';;

  580.             49) DEBIAN_REPO='ftp.us.debian.org';;

  581.             255) exit 1;;

  582.         esac

  583.         save_configuration_values

  584.     else

  585.         DEBIAN_REPO='ftp.de.debian.org'

  586.     fi

  587. }

  588. 

  589. function choose_rng {

  590.     if [[ $MINIMAL_INSTALL == "no" ]]; then

  591.         data=$(tempfile 2>/dev/null)

  592.         trap "rm -f $data" 0 1 2 5 15

  593.         if [[ $INSTALLING_ON_BBB != "yes" ]]; then

  594.             dialog --backtitle $"Freedombone Configuration" \

  595.                    --radiolist $"Type of Random Number Generator:" 10 40 2 \

  596.                    1 Haveged on \

  597.                    2 OneRNG off 2> $data

  598.             sel=$?

  599.             case $sel in

  600.                 1) exit 1;;

  601.                 255) exit 1;;

  602.             esac

  603.             case $(cat $data) in

  604.                 2) HWRNG_TYPE="onerng"

  605.                    dialog --title $"OneRNG Device" \

  606.                           --msgbox $"Please ensure that the OneRNG device is disconnected. You can reconnect it later during the installation" 8 60

  607.                    ;;

  608.                 255) exit 1;;

  609.             esac

  610.         else

  611.             HWRNG_TYPE="beaglebone"

  612.         fi

  613.         save_configuration_values

  614.     fi

  615. }

  616. 

  617. function choose_social_key_management {

  618.     if [[ $MINIMAL_INSTALL == "no" ]]; then

  619.         interactive_gpg

  620. 

  621.         data=$(tempfile 2>/dev/null)

  622.         trap "rm -f $data" 0 1 2 5 15

  623.         SOCIAL_KEY_STR=$"\nDo you wish to enable social key management, otherwise known as \"the unforgettable key\"?\n\nThis means that fragments of your GPG key will be included with any remote backups so that if you later lose your key then it can be reconstructed from your friends servers. If you select \"no\" then you can still do social key management, but offline using physical USB thumb drives, which is more secure but less convenient."

  624.         if [[ $(grep "ENABLE_SOCIAL_KEY_MANAGEMENT" temp.cfg | awk -F '=' '{print $2}') == "yes" ]]; then

  625.             dialog --title $"Social Key Management" \

  626.                    --backtitle $"Freedombone Configuration" \

  627.                    --yesno "$SOCIAL_KEY_STR" 15 60

  628.         else

  629.             dialog --title $"Social Key Management" \

  630.                    --backtitle $"Freedombone Configuration" \

  631.                    --defaultno \

  632.                    --yesno "$SOCIAL_KEY_STR" 15 60

  633.         fi

  634.         sel=$?

  635.         case $sel in

  636.             0) ENABLE_SOCIAL_KEY_MANAGEMENT="yes";;

  637.             255) exit 1;;

  638.         esac

  639.         save_configuration_values

  640.     else

  641.         # enable for the minimal case

  642.         ENABLE_SOCIAL_KEY_MANAGEMENT="yes"

  643.     fi

  644. }

  645. 

  646. function choose_beaglebone_options {

  647.     if [[ $MINIMAL_INSTALL == "no" ]]; then

  648.         if [[ $(grep "INSTALLING_ON_BBB" temp.cfg | awk -F '=' '{print $2}') == "yes" ]]; then

  649.             dialog --title $"Install Target" \

  650.                    --backtitle $"Freedombone Configuration" \

  651.                    --yesno $"\nAre you installing onto a Beaglebone Black?" 7 60

  652.         else

  653.             dialog --title $"Install Target" \

  654.                    --backtitle $"Freedombone Configuration" \

  655.                    --defaultno \

  656.                    --yesno $"\nAre you installing onto a Beaglebone Black?" 7 60

  657.         fi

  658.         sel=$?

  659.         case $sel in

  660.             0) INSTALLING_ON_BBB="yes";;

  661.             1) INSTALLING_ON_BBB="no";;

  662.             255) exit 1;;

  663.         esac

  664.         if [[ $INSTALLING_ON_BBB == "yes" ]]; then

  665.             USB_DRIVE=/dev/sda1

  666.         fi

  667.         save_configuration_values

  668.     fi

  669. }

  670. 

  671. function choose_username {

  672.     if [ -d /home/$GENERIC_IMAGE_USERNAME ]; then

  673.         if [ ! -f $IMAGE_PASSWORD_FILE ]; then

  674.             echo 'Cannot find the password file for the admin user'

  675.             exit 62753

  676.         fi

  677.         # when installing from an image which comes with a known default user account

  678.         SELECTED_USERNAME=

  679.         while [ ! $SELECTED_USERNAME ]

  680.         do

  681.             if [ ! $SELECTED_USERNAME ]; then

  682.                 SELECTED_USERNAME=$(grep 'MY_USERNAME' temp.cfg | awk -F '=' '{print $2}')

  683.             fi

  684.             data=$(tempfile 2>/dev/null)

  685.             trap "rm -f $data" 0 1 2 5 15

  686.             dialog --backtitle $"Freedombone Configuration" \

  687.                    --title $"Username" \

  688.                    --inputbox $"Set your username for the system\n\nYour username should not contain any spaces" 12 60 "$SELECTED_USERNAME" 2> $data

  689.             sel=$?

  690.             case $sel in

  691.                 0) possible_username=$(cat $data)

  692.                    SELECTED_USERNAME=

  693.                    if [[ $possible_username != *' '* && $possible_username != *'/'* && $possible_username != *'\'* && $possible_username != *'*'* ]]; then

  694.                        if [ $possible_username ]; then

  695.                            if [ ${#possible_username} -gt 1 ]; then

  696.                                if [[ $possible_username != $GENERIC_IMAGE_USERNAME ]]; then

  697.                                    MY_USERNAME=$(cat $data)

  698.                                    useradd -m -s /bin/bash $MY_USERNAME

  699.                                    if [ -d /home/$MY_USERNAME ]; then

  700.                                        echo "${MY_USERNAME}:$(printf `cat $IMAGE_PASSWORD_FILE`)" | chpasswd

  701.                                        # Add the user as a sudoer - they will be the new admin user

  702.                                        if ! grep -q "$MY_USERNAME  ALL=(ALL) ALL" /etc/sudoers; then

  703.                                            echo "$MY_USERNAME  ALL=(ALL) ALL" >> /etc/sudoers

  704.                                            # remove the generic image admin user from sudoers

  705.                                            sed -i "s|${GENERIC_IMAGE_USERNAME}.*||g" /etc/sudoers

  706.                                        fi

  707.                                        break

  708.                                    fi

  709.                                fi

  710.                            fi

  711.                        fi

  712.                    fi

  713.                    ;;

  714.                 1) exit 1;;

  715.                 255) exit 1;;

  716.             esac

  717.         done

  718.     else

  719.         no_of_users=$(find /home/* -maxdepth 0 -type d | wc -l)

  720.         if [ $no_of_users -eq 1 ]; then

  721.             # only a single user on the system

  722.             MY_USERNAME=$(ls /home)

  723.         else

  724.             # select one from a number of users

  725.             select_user

  726.             if [ ! $SELECTED_USERNAME ]; then

  727.                 echo $'No username selected'

  728.                 exit 72589

  729.             fi

  730.             MY_USERNAME="$SELECTED_USERNAME"

  731.         fi

  732.     fi

  733. 

  734.     if [ ! $MY_USERNAME ]; then

  735.         echo $'No user account was selected'

  736.         exit 64398

  737.     fi

  738.     if [[ $MY_USERNAME == '-f' ]]; then

  739.         echo $'No user account was selected'

  740.         exit 8347

  741.     fi

  742.     if [[ $MY_USERNAME == 'debian' || $MY_USERNAME == 'fbone' ]]; then

  743.         echo $"Don't use the default user account"

  744.         exit 9341

  745.     fi

  746.     if [ ! -d /home/$MY_USERNAME ]; then

  747.         echo $"The directory /home/$MY_USERNAME does not exist"

  748.         exit 6437

  749.     fi

  750.     save_configuration_values

  751. }

  752. 

  753. function choose_full_name {

  754.     valid_name=

  755.     while [ ! $valid_name ]

  756.     do

  757.         data=$(tempfile 2>/dev/null)

  758.         trap "rm -f $data" 0 1 2 5 15

  759.         dialog --backtitle $"Freedombone Configuration" \

  760.                --inputbox $"Your full name (or nick)" 10 30 "$(grep 'MY_NAME' temp.cfg | awk -F '=' '{print $2}')" 2> $data

  761.         sel=$?

  762.         case $sel in

  763.             0)  possible_name=$(cat $data)

  764.                 if [ "$possible_name" ]; then

  765.                     if [ ${#possible_name} -gt 1 ]; then

  766.                         valid_name="$possible_name"

  767.                         MY_NAME="$possible_name"

  768.                         break;

  769.                     fi

  770.                 fi

  771.                 ;;

  772.             1) exit 1;;

  773.             255) exit 1;;

  774.         esac

  775.     done

  776.     save_configuration_values

  777. }

  778. 

  779. function choose_system_variant {

  780.     available_variants_list=()

  781.     available_system_variants

  782. 

  783.     varslist=""

  784.     n=1

  785.     for a in "${available_variants_list[@]}"

  786.     do

  787.         varstate='off'

  788.         if [[ "$a" == $'full' || "$a" == $'Full' ]]; then

  789.             varstate='on'

  790.         fi

  791.         varslist="$varslist $n $a $varstate"

  792.         n=$[n+1]

  793.     done

  794. 

  795.     variant_choice=$(dialog --stdout --backtitle $"Freedombone Configuration" \

  796.                             --title $"Type of Installation" \

  797.                             --radiolist $'Choose:' \

  798.                             27 40 20 $varslist)

  799. 

  800.     if [ $? -eq 0 ]; then

  801.         variant_choice=$[variant_choice-1]

  802.         SYSTEM_TYPE=${available_variants_list[$variant_choice]}

  803.         save_configuration_values

  804.     fi

  805. }

  806. 

  807. function validate_freedns_code {

  808.     freedns_code="$1"

  809. 

  810.     FREEDNS_MESSAGE=$"Please enter the FreeDNS code for this domain.\n\nThe code can be found by going to https://freedns.afraid.org, selecting 'Dynamic DNS' and then opening 'Wget example'. The code will consist of letters and numbers and be between the ? and = characters."

  811. 

  812.     if [[ "$freedns_code" == *"."* || "$freedns_code" == "http"* || "$freedns_code" == *"wget "* || "$freedns_code" == *" "* ]]; then

  813.         dialog --title $"Invalid FreeDNS Code" --msgbox "$FREEDNS_MESSAGE" 10 70

  814.         VALID_CODE=

  815.     fi

  816.     if [ ${#freedns_code} -lt 30 ]; then

  817.         dialog --title $"Invalid FreeDNS Code" --msgbox $'FreeDNS code is too short. Did you enter the entire code?' 6 70

  818.         VALID_CODE=

  819.     fi

  820.     VALID_CODE='yes'

  821. }

  822. 

  823. # Get the commandline options

  824. while [[ $# > 1 ]]

  825. do

  826.     key="$1"

  827. 

  828.     case $key in

  829.         -h|--help)

  830.             show_help

  831.             ;;

  832.         # Configuration filename

  833.         -f|--filename)

  834.             shift

  835.             CONFIGURATION_FILE="$1"

  836.             ;;

  837.         # Minimum password length

  838.         -m|--min)

  839.             shift

  840.             MINIMUM_PASSWORD_LENGTH="$1"

  841.             ;;

  842.         # Freedombone website

  843.         -w|--www)

  844.             shift

  845.             FREEDOMBONE_WEBSITE="$1"

  846.             ;;

  847.         --minimal)

  848.             shift

  849.             MINIMAL_INSTALL="$1"

  850.             ;;

  851.         -o|--onion)

  852.             shift

  853.             ONION_ONLY="$1"

  854.             ;;

  855.         *)

  856.             # unknown option

  857.             ;;

  858.     esac

  859.     shift

  860. done

  861. 

  862. # test a domain name to see if it's valid

  863. function validate_domain_name {

  864.     # count the number of dots in the domain name

  865.     dots=${TEST_DOMAIN_NAME//[^.]}

  866.     no_of_dots=${#dots}

  867.     if (( no_of_dots > 3 )); then

  868.         TEST_DOMAIN_NAME="The domain $TEST_DOMAIN_NAME has too many subdomains. It should be of the type w.x.y.z, x.y.z or y.z"

  869.     fi

  870.     if (( no_of_dots == 0 )); then

  871.         TEST_DOMAIN_NAME="The domain $TEST_DOMAIN_NAME has no top level domain. It should be of the type w.x.y.z, x.y.z or y.z"

  872.     fi

  873. }

  874. 

  875. function interactive_gpg_from_remote {

  876.     REMOTE_SERVERS_LIST=/home/$MY_USERNAME/keyshareservers.txt

  877. 

  878.     # get a list of remote servers

  879.     ${PROJECT_NAME}-remote -u $MY_USERNAME -l $REMOTE_SERVERS_LIST -t "Remote server"

  880. 

  881.     if [ ! -f $REMOTE_SERVERS_LIST ]; then

  882.         dialog --title $"Encryption keys" --msgbox $'Error obtaining server list' 6 70

  883.         return 1

  884.     fi

  885. 

  886.     # check the number of entries in the file

  887.     no_of_servers=$(cat $REMOTE_SERVERS_LIST | wc -l)

  888.     if (( no_of_servers < 3 )); then

  889.         dialog --title $"Encryption keys" \

  890.                --msgbox $'There must be at least three servers to recover the key' 6 70

  891.         return 2

  892.     fi

  893. 

  894.     # try to recover the key from the servers

  895.     apt-get -y install libgfshare-bin gnupg

  896.     ${PROJECT_NAME}-recoverkey -u $MY_USERNAME -l $REMOTE_SERVERS_LIST

  897.     if [ ! "$?" = "0" ]; then

  898.         dialog --title $"Encryption keys" --msgbox $'Your key could not be recovered' 6 70

  899.         return 3

  900.     fi

  901. 

  902.     dialog --title $"Encryption keys" --msgbox $'Your key has been recovered' 6 70

  903. 

  904.     return 0

  905. }

  906. 

  907. function reconstruct_key {

  908.     if [ ! -d /home/$MY_USERNAME/.gnupg_fragments ]; then

  909.         return

  910.     fi

  911.     cd /home/$MY_USERNAME/.gnupg_fragments

  912.     no_of_shares=$(ls -afq keyshare.asc.* | wc -l)

  913.     if (( no_of_shares < 4 )); then

  914.         dialog --title $"Encryption keys" --msgbox $'Not enough fragments to reconstruct the key' 6 70

  915.         exit 7348

  916.     fi

  917.     apt-get -y install libgfshare-bin gnupg

  918.     gfcombine /home/$MY_USERNAME/.gnupg_fragments/keyshare*

  919.     if [ ! "$?" = "0" ]; then

  920.         dialog --title $"Encryption keys" --msgbox $'Unable to reconstruct the key' 6 70

  921.         exit 7348

  922.     fi

  923. 

  924.     KEYS_FILE=/home/$MY_USERNAME/.gnupg_fragments/keyshare.asc

  925.     if [ ! -f $KEYS_FILE ]; then

  926.         dialog --title $"Encryption keys" --msgbox $'Unable to reconstruct the key' 6 70

  927.     fi

  928. 

  929.     su -c "gpg --allow-secret-key-import --import $KEYS_FILE" - $MY_USERNAME

  930.     if [ ! "$?" = "0" ]; then

  931.         echo $'Unable to import gpg key'

  932.         shred -zu $KEYS_FILE

  933.         rm -rf /home/$MY_USERNAME/.tempgnupg

  934.         exit 9654

  935.     fi

  936.     shred -zu $KEYS_FILE

  937. 

  938.     dialog --title $"Encryption keys" --msgbox $'Key has been reconstructed' 6 70

  939. }

  940. 

  941. function interactive_gpg_from_usb {

  942.     dialog --title $"Encryption keys" \

  943.            --msgbox $'Plug in a USB drive containing a copy of your full key or key fragment' 6 70

  944. 

  945.     HOME_DIR=/home/$MY_USERNAME

  946.     GPG_LOADING="yes"

  947.     SSH_IMPORTED="no"

  948.     GPG_CTR=0

  949.     while [[ $GPG_LOADING == "yes" ]]

  950.     do

  951.         if [[ $INSTALLING_ON_BBB == "yes" ]]; then

  952.             GPG_USB_DRIVE='/dev/sda1'

  953.             if [ ! -b $GPG_USB_DRIVE ]; then

  954.                 if (( GPG_CTR > 0 )); then

  955.                     reconstruct_key

  956.                     return 0

  957.                 fi

  958.                 dialog --title $"Encryption keys" --msgbox $'No USB drive found' 6 30

  959.                 exit 739836

  960.             fi

  961.         else

  962.             GPG_USB_DRIVE='/dev/sdb1'

  963.             if [ ! -b $GPG_USB_DRIVE ]; then

  964.                 GPG_USB_DRIVE='/dev/sdc1'

  965.                 if [ ! -b $GPG_USB_DRIVE ]; then

  966.                     GPG_USB_DRIVE='/dev/sdd1'

  967.                     if [ ! -b $GPG_USB_DRIVE ]; then

  968.                         if (( GPG_CTR > 0 )); then

  969.                             reconstruct_key

  970.                             return 0

  971.                         fi

  972.                         dialog --title $"Encryption keys" --msgbox $'No USB drive found' 6 30

  973.                         exit 27852

  974.                     fi

  975.                 fi

  976.             fi

  977.         fi

  978. 

  979.         GPG_USB_MOUNT='/mnt/usb'

  980.         umount -f $GPG_USB_MOUNT

  981.         if [ ! -d $GPG_USB_MOUNT ]; then

  982.             mkdir -p $GPG_USB_MOUNT

  983.         fi

  984. 

  985.         if [ -f /dev/mapper/encrypted_usb ]; then

  986.             rm -rf /dev/mapper/encrypted_usb

  987.         fi

  988.         cryptsetup luksClose encrypted_usb

  989.         cryptsetup luksOpen $GPG_USB_DRIVE encrypted_usb

  990.         if [ "$?" = "0" ]; then

  991.             GPG_USB_DRIVE=/dev/mapper/encrypted_usb

  992.         fi

  993.         mount $GPG_USB_DRIVE $GPG_USB_MOUNT

  994.         if [ ! "$?" = "0" ]; then

  995.             if (( GPG_CTR > 0 )); then

  996.                 rm -rf $GPG_USB_MOUNT

  997.                 reconstruct_key

  998.                 return 0

  999.             fi

  1000.             dialog --title $"Encryption keys" \

  1001.                    --msgbox $"There was a problem mounting the USB drive to $GPG_USB_MOUNT" 6 70

  1002.             rm -rf $GPG_USB_MOUNT

  1003.             exit 74393

  1004.         fi

  1005. 

  1006.         if [ ! -d $GPG_USB_MOUNT/.gnupg ]; then

  1007.             if [ ! -d $GPG_USB_MOUNT/.gnupg_fragments ]; then

  1008.                 if (( GPG_CTR > 0 )); then

  1009.                     umount -f $GPG_USB_MOUNT

  1010.                     rm -rf $GPG_USB_MOUNT

  1011.                     reconstruct_key

  1012.                     return 0

  1013.                 fi

  1014.                 dialog --title $"Encryption keys" \

  1015.                        --msgbox $"The directory $GPG_USB_MOUNT/.gnupg or $GPG_USB_MOUNT/.gnupg_fragments was not found" 6 70

  1016.                 umount -f $GPG_USB_MOUNT

  1017.                 rm -rf $GPG_USB_MOUNT

  1018.                 exit 723814

  1019.             fi

  1020.         fi

  1021. 

  1022.         if [ -d $GPG_USB_MOUNT/.gnupg ]; then

  1023.             if [ ! -d $HOME_DIR/.gnupg ]; then

  1024.                 mkdir $HOME_DIR/.gnupg

  1025.             fi

  1026.             cp -r $GPG_USB_MOUNT/.gnupg/* $HOME_DIR/.gnupg

  1027.             GPG_LOADING="no"

  1028.             dialog --title $"Encryption keys" \

  1029.                    --msgbox $"GPG Keyring loaded to $HOME_DIR" 6 70

  1030.         else

  1031.             if [ ! -d $HOME_DIR/.gnupg_fragments ]; then

  1032.                 mkdir $HOME_DIR/.gnupg_fragments

  1033.             fi

  1034.             cp -r $GPG_USB_MOUNT/.gnupg_fragments/* $HOME_DIR/.gnupg_fragments

  1035.         fi

  1036. 

  1037.         if [[ $SSH_IMPORTED == "no" ]]; then

  1038.             if [ -d $GPG_USB_MOUNT/.ssh ]; then

  1039.                 if [ ! -d $HOME_DIR/.ssh ]; then

  1040.                     mkdir $HOME_DIR/.ssh

  1041.                 fi

  1042.                 cp $GPG_USB_MOUNT/.ssh/* $HOME_DIR/.ssh

  1043.                 dialog --title $"Encryption keys" \

  1044.                        --msgbox $"ssh keys imported" 6 70

  1045.                 SSH_IMPORTED="yes"

  1046.             fi

  1047.         fi

  1048. 

  1049.         umount -f $GPG_USB_MOUNT

  1050.         rm -rf $GPG_USB_MOUNT

  1051.         if [[ $GPG_LOADING == "yes" ]]; then

  1052.             dialog --title $"Encryption keys" \

  1053.                    --msgbox $"Now remove the USB drive. Insert the next drive containing a key fragment, or select Ok to finish" 6 70

  1054.         fi

  1055.         GPG_CTR=$((GPG_CTR + 1))

  1056.     done

  1057. }

  1058. 

  1059. function interactive_gpg {

  1060.     GPG_CONFIGURED="no"

  1061.     while [[ $GPG_CONFIGURED != "yes" ]]

  1062.     do

  1063.         GPG_CONFIGURED="yes"

  1064.         data=$(tempfile 2>/dev/null)

  1065.         trap "rm -f $data" 0 1 2 5 15

  1066.         dialog --backtitle $"Freedombone Configuration" \

  1067.                --radiolist $"GPG/PGP keys for your system:" 13 70 3 \

  1068.                1 $"Generate new keys (new user)" on \

  1069.                2 $"Import keys from USB drive/s" off \

  1070.                3 $"Retrieve keys from friends servers" off 2> $data

  1071.         sel=$?

  1072.         case $sel in

  1073.             1) exit 1;;

  1074.             255) exit 2;;

  1075.         esac

  1076.         case $(cat $data) in

  1077.             1) if [ -d /home/${MY_USERNAME}/.gnupg ]; then

  1078.                    rm -rf /home/${MY_USERNAME}/.gnupg

  1079.                fi

  1080.                break;;

  1081.             2) interactive_gpg_from_usb

  1082.                break;;

  1083.             3) interactive_gpg_from_remote

  1084.                if [ ! "$?" = "0" ]; then

  1085.                    GPG_CONFIGURED="no"

  1086.                fi;;

  1087.         esac

  1088.     done

  1089. }

  1090. 

  1091. function set_main_repo {

  1092.     data=$(tempfile 2>/dev/null)

  1093.     trap "rm -f $data" 0 1 2 5 15

  1094.     dialog --backtitle $"Freedombone Control Panel" \

  1095.            --title $"Main Repository (Mirrors)" \

  1096.            --form $"If you don't know what this means then just select Ok.\n\nIf you don't wish to use the default repositories they can be obtained from mirrored repos on another ${PROJECT_NAME} system.\n\nThe repositories are for applications which are not yet packaged for Debian." 18 65 4 \

  1097.            $"URL:" 1 1 "$FRIENDS_MIRRORS_SERVER" 1 18 40 18 \

  1098.            $"SSH Port:" 2 1 "$FRIENDS_MIRRORS_SSH_PORT" 2 18 10 10000 \

  1099.            $"Password:" 3 1 "$FRIENDS_MIRRORS_PASSWORD" 3 18 40 10000 \

  1100.            2> $data

  1101.     sel=$?

  1102.     case $sel in

  1103.         1) return;;

  1104.         255) return;;

  1105.     esac

  1106.     new_mirrors_url=$(cat $data | sed -n 1p)

  1107.     new_mirrors_ssh_port=$(cat $data | sed -n 2p)

  1108.     new_mirrors_password=$(cat $data | sed -n 3p)

  1109. 

  1110.     if [ ${#new_mirrors_url} -lt 2 ]; then

  1111.         return

  1112.     fi

  1113.     if [ ${#new_mirrors_ssh_port} -lt 1 ]; then

  1114.         return

  1115.     fi

  1116.     if [ ${#new_mirrors_password} -lt 10 ]; then

  1117.         dialog --title $"Main Repository" \

  1118.                --msgbox $'Mirrors password was too short. Should be at least 10 characters.' 6 40

  1119.         return

  1120.     fi

  1121. 

  1122.     if [[ $new_mirrors_url == *"."* ]]; then

  1123.         FRIENDS_MIRRORS_SERVER=$new_mirrors_url

  1124.         FRIENDS_MIRRORS_SSH_PORT=$new_mirrors_ssh_port

  1125.         FRIENDS_MIRRORS_PASSWORD=$new_mirrors_password

  1126. 

  1127.         dialog --title $"Main Repository" \

  1128.                --msgbox $"Main repository set to $FRIENDS_MIRRORS_SERVER" 6 60

  1129.     fi

  1130.     save_configuration_values

  1131. }

  1132. 

  1133. function interactive_select_language {

  1134.     data=$(tempfile 2>/dev/null)

  1135.     trap "rm -f $data" 0 1 2 5 15

  1136.     dialog --backtitle $"Freedombone Configuration" \

  1137.            --radiolist $"Select your language:" 26 40 24 \

  1138.            1 $"Afrikaans" off \

  1139.            2 $"Albanian" off \

  1140.            3 $"Arabic" off \

  1141.            4 $"Basque" off \

  1142.            5 $"Belarusian" off \

  1143.            6 $"Bosnian" off \

  1144.            7 $"Bulgarian" off \

  1145.            8 $"Catalan" off \

  1146.            9 $"Croatian" off \

  1147.            10 $"Chinese (Simplified)" off \

  1148.            11 $"Chinese (Traditional)" off \

  1149.            12 $"Czech" off \

  1150.            13 $"Danish" off \

  1151.            14 $"Dutch" off \

  1152.            15 $"English" on \

  1153.            16 $"English (US)" off \

  1154.            17 $"Estonian" off \

  1155.            18 $"Farsi" off \

  1156.            19 $"Filipino" off \

  1157.            20 $"Finnish" off \

  1158.            21 $"French" off \

  1159.            22 $"French (Canada)" off \

  1160.            23 $"Gaelic" off \

  1161.            24 $"Gallego" off \

  1162.            25 $"Georgian" off \

  1163.            26 $"German" off \

  1164.            27 $"German (Personal)" off \

  1165.            28 $"Greek" off \

  1166.            29 $"Gujarati" off \

  1167.            30 $"Hebrew" off \

  1168.            31 $"Hindi" off \

  1169.            32 $"Hungarian" off \

  1170.            33 $"Icelandic" off \

  1171.            34 $"Indonesian" off \

  1172.            35 $"Italian" off \

  1173.            36 $"Japanese" off \

  1174.            37 $"Kannada" off \

  1175.            38 $"Khmer" off \

  1176.            39 $"Korean" off \

  1177.            40 $"Lao" off \

  1178.            41 $"Lithuanian" off \

  1179.            42 $"Latvian" off \

  1180.            43 $"Malayalam" off \

  1181.            44 $"Malaysian" off \

  1182.            45 $"Maori (Ngai Tahu)" off \

  1183.            46 $"Maori (Waikoto Uni)" off \

  1184.            47 $"Mongolian" off \

  1185.            48 $"Norwegian" off \

  1186.            49 $"Norwegian (Primary)" off \

  1187.            50 $"Nynorsk" off \

  1188.            51 $"Polish" off \

  1189.            52 $"Portuguese" off \

  1190.            53 $"Portuguese (Brazil)" off \

  1191.            54 $"Romanian" off \

  1192.            55 $"Russian" off \

  1193.            56 $"Samoan" off \

  1194.            57 $"Serbian" off \

  1195.            58 $"Slovak" off \

  1196.            59 $"Slovenian" off \

  1197.            60 $"Somali" off \

  1198.            61 $"Spanish (International)" off \

  1199.            62 $"Swedish" off \

  1200.            63 $"Tagalog" off \

  1201.            64 $"Tamil" off \

  1202.            65 $"Thai" off \

  1203.            66 $"Turkish" off \

  1204.            67 $"Ukrainian" off \

  1205.            68 $"Vietnamese" off 2> $data

  1206.     sel=$?

  1207.     case $sel in

  1208.         1) exit 1;;

  1209.         255) exit 1;;

  1210.     esac

  1211.     case $(cat $data) in

  1212.         1) DEFAULT_LANGUAGE='af_ZA.UTF-8';;

  1213.         2) DEFAULT_LANGUAGE='sq_AL.UTF-8';;

  1214.         3) DEFAULT_LANGUAGE='ar_SA.UTF-8';;

  1215.         4) DEFAULT_LANGUAGE='eu_ES.UTF-8';;

  1216.         5) DEFAULT_LANGUAGE='be_BY.UTF-8';;

  1217.         6) DEFAULT_LANGUAGE='bs_BA.UTF-8';;

  1218.         7) DEFAULT_LANGUAGE='bg_BG.UTF-8';;

  1219.         8) DEFAULT_LANGUAGE='ca_ES.UTF-8';;

  1220.         9) DEFAULT_LANGUAGE='hr_HR.UTF-8';;

  1221.         10) DEFAULT_LANGUAGE='zh_CN.UTF-8';;

  1222.         11) DEFAULT_LANGUAGE='zh_TW.UTF-8';;

  1223.         12) DEFAULT_LANGUAGE='cs_CZ.UTF-8';;

  1224.         13) DEFAULT_LANGUAGE='da_DK.UTF-8';;

  1225.         14) DEFAULT_LANGUAGE='nl_NL.UTF-8';;

  1226.         15) DEFAULT_LANGUAGE='en_GB.UTF-8';;

  1227.         16) DEFAULT_LANGUAGE='en_US.UTF-8';;

  1228.         17) DEFAULT_LANGUAGE='et_EE.UTF-8';;

  1229.         18) DEFAULT_LANGUAGE='fa_IR.UTF-8';;

  1230.         19) DEFAULT_LANGUAGE='ph_PH.UTF-8';;

  1231.         20) DEFAULT_LANGUAGE='fi_FI.UTF-8';;

  1232.         21) DEFAULT_LANGUAGE='fr_FR.UTF-8';;

  1233.         22) DEFAULT_LANGUAGE='fr_CA.UTF-8';;

  1234.         23) DEFAULT_LANGUAGE='ga.UTF-8';;

  1235.         24) DEFAULT_LANGUAGE='l_ES.UTF-8';;

  1236.         25) DEFAULT_LANGUAGE='ka_GE.UTF-8';;

  1237.         26) DEFAULT_LANGUAGE='de_DE.UTF-8';;

  1238.         27) DEFAULT_LANGUAGE='de_DE.UTF-8';;

  1239.         28) DEFAULT_LANGUAGE='el_GR.UTF-8';;

  1240.         29) DEFAULT_LANGUAGE='gu.UTF-8';;

  1241.         30) DEFAULT_LANGUAGE='he_IL.utf8';;

  1242.         31) DEFAULT_LANGUAGE='hi_IN.UTF-8';;

  1243.         32) DEFAULT_LANGUAGE='hu.UTF-8';;

  1244.         33) DEFAULT_LANGUAGE='is_IS.UTF-8';;

  1245.         34) DEFAULT_LANGUAGE='id_ID.UTF-8';;

  1246.         35) DEFAULT_LANGUAGE='it_IT.UTF-8';;

  1247.         36) DEFAULT_LANGUAGE='ja_JP.UTF-8';;

  1248.         37) DEFAULT_LANGUAGE='kn_IN.UTF-8';;

  1249.         38) DEFAULT_LANGUAGE='km_KH.UTF-8';;

  1250.         39) DEFAULT_LANGUAGE='ko_KR.UTF-8';;

  1251.         40) DEFAULT_LANGUAGE='lo_LA.UTF-8';;

  1252.         41) DEFAULT_LANGUAGE='lt_LT.UTF-8';;

  1253.         42) DEFAULT_LANGUAGE='lat.UTF-8';;

  1254.         43) DEFAULT_LANGUAGE='ml_IN.UTF-8';;

  1255.         44) DEFAULT_LANGUAGE='ms_MY.UTF-8';;

  1256.         45) DEFAULT_LANGUAGE='mi_NZ.UTF-8';;

  1257.         46) DEFAULT_LANGUAGE='mi_NZ.UTF-8';;

  1258.         47) DEFAULT_LANGUAGE='mn.UTF-8';;

  1259.         48) DEFAULT_LANGUAGE='no_NO.UTF-8';;

  1260.         49) DEFAULT_LANGUAGE='no_NO.UTF-8';;

  1261.         50) DEFAULT_LANGUAGE='nn_NO.UTF-8';;

  1262.         51) DEFAULT_LANGUAGE='pl.UTF-8';;

  1263.         52) DEFAULT_LANGUAGE='pt_PT.UTF-8';;

  1264.         53) DEFAULT_LANGUAGE='pt_BR.UTF-8';;

  1265.         54) DEFAULT_LANGUAGE='ro_RO.UTF-8';;

  1266.         55) DEFAULT_LANGUAGE='ru_RU.UTF-8';;

  1267.         56) DEFAULT_LANGUAGE='mi_NZ.UTF-8';;

  1268.         57) DEFAULT_LANGUAGE='sr_CS.UTF-8';;

  1269.         58) DEFAULT_LANGUAGE='sk_SK.UTF-8';;

  1270.         59) DEFAULT_LANGUAGE='sl_SI.UTF-8';;

  1271.         60) DEFAULT_LANGUAGE='so_SO.UTF-8';;

  1272.         61) DEFAULT_LANGUAGE='es_ES.UTF-8';;

  1273.         62) DEFAULT_LANGUAGE='sv_SE.UTF-8';;

  1274.         63) DEFAULT_LANGUAGE='tl.UTF-8';;

  1275.         64) DEFAULT_LANGUAGE='ta_IN.UTF-8';;

  1276.         65) DEFAULT_LANGUAGE='th_TH.UTF-8';;

  1277.         66) DEFAULT_LANGUAGE='tr_TR.UTF-8';;

  1278.         67) DEFAULT_LANGUAGE='uk_UA.UTF-8';;

  1279.         68) DEFAULT_LANGUAGE='vi_VN.UTF-8';;

  1280.     esac

  1281.     save_configuration_values

  1282. 

  1283.     locale-gen "${DEFAULT_LANGUAGE}"

  1284.     update-locale LANG=${DEFAULT_LANGUAGE}

  1285.     update-locale LANGUAGE=${DEFAULT_LANGUAGE}

  1286.     update-locale LC_MESSAGES=${DEFAULT_LANGUAGE}

  1287.     update-locale LC_ALL=${DEFAULT_LANGUAGE}

  1288.     update-locale LC_CTYPE=${DEFAULT_LANGUAGE}

  1289. }

  1290. 

  1291. function select_user {

  1292.     SELECTED_USERNAME=

  1293. 

  1294.     users_array=($(ls /home))

  1295. 

  1296.     delete=(mirrors git)

  1297.     for del in ${delete[@]}

  1298.     do

  1299.         users_array=(${users_array[@]/$del})

  1300.     done

  1301. 

  1302.     i=0

  1303.     W=()

  1304.     name=()

  1305.     for u in ${users_array[@]}

  1306.     do

  1307.         i=$((i+1))

  1308.         W+=($i "$u")

  1309.         name+=("$u")

  1310.     done

  1311. 

  1312.     user_index=$(dialog --backtitle $"Freedombone Configuration" --title $"Select User" --menu $"Select one of the following:" 24 40 17 "${W[@]}" 3>&2 2>&1 1>&3)

  1313. 

  1314.     if [ $? -eq 0 ]; then

  1315.         SELECTED_USERNAME="${name[$((user_index-1))]}"

  1316.     fi

  1317. }

  1318. 

  1319. function interactive_config {

  1320.     # create a temporary copy of the configuration file

  1321.     # which can be used to pre-populate selections

  1322.     if [ -f $CONFIGURATION_FILE ]; then

  1323.         cp $CONFIGURATION_FILE temp.cfg

  1324.     fi

  1325. 

  1326.     interactive_select_language

  1327. 

  1328.     if [[ $ONION_ONLY == "no" ]]; then

  1329.         INITIAL_MESSAGE=$"Welcome to the Freedombone interactive installer. Communications freedom is only a short time away.\n\nEnsure that you have your domain and dynamic DNS settings ready.\n\nFor more information please visit $FREEDOMBONE_WEBSITE."

  1330.     else

  1331.         INITIAL_MESSAGE=$"Welcome to the Freedombone interactive installer. Communications freedom is only a short time away.\n\nWeb sites created will only be viewable within a Tor browser.\n\nFor more information please visit $FREEDOMBONE_WEBSITE."

  1332.     fi

  1333. 

  1334.     dialog --title $"Freedombone" --msgbox "$INITIAL_MESSAGE" 15 50

  1335. 

  1336.     choose_system_variant

  1337.     set_main_repo

  1338.     choose_username

  1339.     choose_full_name

  1340.     choose_beaglebone_options

  1341.     choose_social_key_management

  1342.     choose_rng

  1343.     choose_debian_repo

  1344.     choose_dns

  1345.     ${PROJECT_NAME}-wifi --networksinteractive $WIFI_NETWORKS_FILE

  1346.     choose_dynamic_dns

  1347.     choose_static_ip

  1348.     choose_default_domain_name

  1349.     choose_email_address

  1350.     install_apps interactive

  1351. 

  1352.     # delete the temporary configuration file

  1353.     if [ -f temp.cfg ]; then

  1354.         shred -zu temp.cfg

  1355.     fi

  1356. }

  1357. 

  1358. function show_result {

  1359.     #clear

  1360.     echo ''

  1361.     echo -n $"Configuration filename:"

  1362.     echo " $CONFIGURATION_FILE"

  1363.     echo ''

  1364.     echo $'Contents:'

  1365.     echo ''

  1366.     cat $CONFIGURATION_FILE

  1367.     echo ''

  1368. }

  1369. 

  1370. if [ ! $CONFIGURATION_FILE ]; then

  1371.     CONFIGURATION_FILE=$HOME/${PROJECT_NAME}.cfg

  1372. fi

  1373. 

  1374. read_configuration_values

  1375. interactive_config

  1376. show_result

  1377. 

  1378. exit 0