From a955a540cbebc4ff7664bd5416c5418acbbb17dc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kevin=20Mu=C3=B1oz?= <kmunoz@condorbs.net>
Date: Sun, 3 Sep 2023 18:00:29 -0500
Subject: [PATCH] update script

---
 condorcore.sh     |  46 -----------
 condorcore.sh.sig | Bin 119 -> 0 bytes
 strap.sh          | 204 ++++++++++++++++++++++++++++++++++++++++++++++
 3 files changed, 204 insertions(+), 46 deletions(-)
 delete mode 100755 condorcore.sh
 delete mode 100644 condorcore.sh.sig
 create mode 100755 strap.sh

diff --git a/condorcore.sh b/condorcore.sh
deleted file mode 100755
index 2ff0b0e..0000000
--- a/condorcore.sh
+++ /dev/null
@@ -1,46 +0,0 @@
-#!/bin/bash
-
-# Verificar que el script se ejecute con privilegios de superusuario
-if [[ $EUID -ne 0 ]]; then
-    echo "Este script debe ser ejecutado como root o con privilegios de superusuario."
-    exit 1
-fi
-
-# URL de los nuevos mirrors
-MIRROR_1="https://aur.draggane.com/\$arch"
-MIRROR_2="https://aur.centauricorex.net/\$arch"
-
-# Verificar si el mirror ya está presente en el archivo pacman.conf
-if grep -q "\[condorcore\]" /etc/pacman.conf; then
-    echo "El repositorio condorcore ya está presente en /etc/pacman.conf."
-    echo "No se requiere ninguna acción adicional."
-else
-    # Agregar las líneas al archivo pacman.conf
-    echo "Agregando el repositorio condorcore al archivo /etc/pacman.conf..."
-    echo "[condorcore]" >> /etc/pacman.conf
-    echo "Server = $MIRROR_1" >> /etc/pacman.conf
-    echo "Server = $MIRROR_2" >> /etc/pacman.conf
-    echo "Repositorio condorcore agregado con éxito."
-fi
-
-# Descargar y agregar la clave pública 2F287937155A4380
-echo "Descargando y agregando la clave pública 2F287937155A4380..."
-pacman-key --recv-keys 2F287937155A4380 --keyserver hkps://keys.openpgp.org || {
-    echo "No se pudo descargar y agregar la clave pública 2F287937155A4380."
-    echo "Asegúrate de tener una conexión a Internet activa y que pacman-key esté instalado."
-    exit 1
-}
-echo "Clave pública 2F287937155A4380 descargada y agregada con éxito."
-
-# Firmar localmente la clave pública 2F287937155A4380
-echo "Firmando localmente la clave pública 2F287937155A4380..."
-pacman-key --lsign-key 2F287937155A4380
-echo "Clave pública 2F287937155A4380 firmada localmente con éxito."
-
-# Sincronizar la base de datos de paquetes para actualizar la lista de paquetes de Arch Linux
-echo "Sincronizando la base de datos de paquetes..."
-pacman -Syy
-echo "Sincronización completada."
-
-echo "El repositorio condorcore ha sido agregado, y la clave pública del encargado ha sido descargada y firmada localmente con éxito en pacman."
-
diff --git a/condorcore.sh.sig b/condorcore.sh.sig
deleted file mode 100644
index 92dc336f2e864d9a9e877de02441c512cfccc70a..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 119
zcmeAuWnmEGV2~A4WO3~-bxpb%cKTV-@&<j4N^{XD=LS}$l!NK53|yQ7Fp(ek8UDK+
zz47hMyv*hjmWng`^<G~2_xWdwI)`hsY}=Ike3PyeG5oK5?7T8A+a_t(r2T(hOYKv*
V7&UjrdAm)st|_UiZhU6V000MUH0uBW

diff --git a/strap.sh b/strap.sh
new file mode 100755
index 0000000..8d700d3
--- /dev/null
+++ b/strap.sh
@@ -0,0 +1,204 @@
+#!/bin/sh
+# strap.sh - install and setup CondorCore keyring
+
+# mirror file to fetch and write
+MIRROR_F="condorcore-mirrorlist"
+
+# simple error message wrapper
+err()
+{
+  echo >&2 "$(tput bold; tput setaf 1)[-] ERROR: ${*}$(tput sgr0)"
+  exit 1337
+}
+
+# simple warning message wrapper
+warn()
+{
+  echo >&2 "$(tput bold; tput setaf 1)[!] WARNING: ${*}$(tput sgr0)"
+}
+
+# simple echo wrapper
+msg()
+{
+  echo "$(tput bold; tput setaf 2)[+] ${*}$(tput sgr0)"
+}
+
+# check for root privilege
+check_priv()
+{
+  if [ "$(id -u)" -ne 0 ]; then
+    err "you must be root"
+  fi
+}
+
+# make a temporary directory and cd into
+make_tmp_dir()
+{
+  tmp="$(mktemp -d /tmp/condorcore_strap.XXXXXXXX)"
+  trap 'rm -rf $tmp' EXIT
+  cd "$tmp" || err "Could not enter directory $tmp"
+}
+
+set_umask()
+{
+  OLD_UMASK=$(umask)
+  umask 0022
+  trap 'reset_umask' TERM
+}
+
+reset_umask()
+{
+  umask $OLD_UMASK
+}
+
+check_internet()
+{
+  tool='curl'
+  tool_opts='-s --connect-timeout 8'
+
+  if ! $tool $tool_opts https://condorbs.net/ > /dev/null 2>&1; then
+    err "You don't have an Internet connection!"
+  fi
+
+  return $SUCCESS
+}
+
+# retrieve the CondorCore keyring
+fetch_keyring()
+{
+  curl -s -O \
+  'https://aur.draggane.com/x86_64/condorcore-keyring-20230903-2-any.pkg.tar.zst'
+
+  curl -s -O \
+  'https://aur.draggane.com/x86_64/condorcore-keyring-20230903-2-any.pkg.tar.zst.sig'
+}
+
+# verify the keyring signature
+# note: this is pointless if you do not verify the key fingerprint
+verify_keyring()
+{
+  if ! gpg --keyserver keyserver.ubuntu.com \
+     --recv-keys 597244DBEA52EC6EFE5F36A4FDD42A59FD43C07B > /dev/null 2>&1
+  then
+    if ! gpg --keyserver hkps://keyserver.ubuntu.com:443 \
+       --recv-keys 597244DBEA52EC6EFE5F36A4FDD42A59FD43C07B > /dev/null 2>&1
+    then
+      if ! gpg --keyserver keys.openpgp.org \
+         --recv-keys 597244DBEA52EC6EFE5F36A4FDD42A59FD43C07B > /dev/null 2>&1
+      then
+        err "could not verify the key."
+      fi
+    fi
+  fi
+
+  if ! gpg --keyserver-options no-auto-key-retrieve \
+    --with-fingerprint condorcore-keyring-20230903-2-any.pkg.tar.zst.sig > /dev/null 2>&1
+  then
+    err "invalid keyring signature."
+  fi
+}
+
+# delete the signature files
+delete_signature()
+{
+  if [ -f "condorcore-keyring-20230903-2-any.pkg.tar.zst.sig" ]; then
+    rm condorcore-keyring-20230903-2-any.pkg.tar.zst.sig
+  fi
+}
+
+# make sure /etc/pacman.d/gnupg is usable
+check_pacman_gnupg()
+{
+  pacman-key --init
+}
+
+# install the keyring
+install_keyring()
+{
+  if ! pacman --config /dev/null --noconfirm \
+    -U condorcore-keyring-20230903-2-any.pkg.tar.zst ; then
+      err 'keyring installation failed'
+  fi
+
+  # just in case
+  pacman-key --populate
+}
+
+# fetch the CondorCore mirrorlist from the provided URL
+fetch_mirrorlist()
+{
+  mirrorlist_url="https://condorcs.net/mrhacker/condorcore-mirrorlist/raw/branch/master/condorcore-mirrorlist"
+  
+  curl -s "$mirrorlist_url" -o "/etc/pacman.d/$MIRROR_F"
+}
+
+# update pacman.conf
+update_pacman_conf()
+{
+  # delete CondorCore related entries if existing
+  sed -i '/condorcore/{N;d}' /etc/pacman.conf
+
+  cat >> "/etc/pacman.conf" << EOF
+[condorcore]
+Include = /etc/pacman.d/$MIRROR_F
+EOF
+}
+
+# synchronize and update
+pacman_update()
+{
+  if pacman -Syy; then
+    return $SUCCESS
+  fi
+
+  warn "Synchronizing pacman has failed. Please try manually: pacman -Syy"
+
+  return $FAILURE
+}
+
+# upgrade the system
+pacman_upgrade()
+{
+  echo 'perform full system upgrade? (pacman -Su) [Yn]:'
+  read conf < /dev/tty
+  case "$conf" in
+    ''|y|Y) pacman -Su ;;
+    n|N) warn 'some CondorCore packages may not work without an up-to-date system.' ;;
+  esac
+}
+
+# setup CondorCore
+condorcore_setup()
+{
+  check_priv
+  msg 'installing CondorCore keyring...'
+  set_umask
+  make_tmp_dir
+  check_internet
+  fetch_keyring
+  verify_keyring
+  delete_signature
+  check_pacman_gnupg
+  install_keyring
+  echo
+  msg 'keyring installed successfully'
+
+  # fetch the CondorCore mirrorlist
+  msg 'fetching CondorCore mirrorlist...'
+  fetch_mirrorlist
+
+  # update pacman.conf
+  msg 'updating pacman.conf'
+  update_pacman_conf
+
+  msg 'updating package databases'
+  pacman_update
+  reset_umask
+  msg 'CondorCore repo is ready!'
+
+  # ask for system upgrade
+  pacman_upgrade
+}
+
+condorcore_setup
+