.dotfiles

Check-in [feeafcf59c]
Login

Check-in [feeafcf59c]

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

Overview
Comment:Goodbye, OpenBSD configuration.
Downloads: Tarball | ZIP archive | SQL archive
Timelines: family | ancestors | descendants | both | trunk
Files: files | file ages | folders
SHA3-256: feeafcf59cdcb469d1873ee9dda7d87cb3dfc706c3976f5c572d186e3de628f8
User & Date: Cthulhux 2020-06-01 14:51:23
Context
2020-06-17
00:44
Emacs: I migrated from MacPorts to pkgsrc. Also, vterms don't flicker anymore. check-in: 8d9b5a82ea user: Cthulhux tags: trunk
2020-06-01
14:51
Goodbye, OpenBSD configuration. check-in: feeafcf59c user: Cthulhux tags: trunk
14:49
tcsh config: initial checkin check-in: ae510ca3c3 user: Cthulhux tags: trunk
Changes
Hide Diffs Unified Diffs Ignore Whitespace Patch

Deleted openbsd/README.md. 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30

# OpenBSD scripts

A number of scripts I use to keep my local installation of [OpenBSD](http://www.openbsd.org) up and running.

**Note that they'll mostly require root privileges!**

## Think_securely.png

My default OpenBSD wallpaper. Use it if you like it. Or don't.

## upgrade.sh

My sysupdate script as a "live" alternative to the recommended process via `bsd.rd`: Fetches all new packages, replaces them (and the kernel) and reboots, so the steps needed to update my OpenBSD -CURRENT are as follows:

1. `./upgrade.sh`
2. (reboot)
3. execute `after-installation.sh`

## after-installation.sh

To be run immediately after the reboot. This script uses `sysmerge` to merge your configuration files, then updates your packages and cleans up old 
dependencies.

## auto-wifi.sh

Some kind of a WiFi auto-connect script for a better connection to open/public/alien WiFi networks. Taken from [here](http://lounge.se/wiki2/show/AutoWifi).

## ksh93rc

My `.kshrc` for the `ksh93` (might collide with OpenBSD's default `/etc/ksh.kshrc`, you'd probably edit or remove that file).

<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<

Deleted openbsd/Think_securely.png.

cannot compute difference between binary files

Deleted openbsd/after-installation.sh. 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21

#!/bin/csh
set DOWNLOADDIR=/home/tux/upgrade

if ( -d $DOWNLOADDIR ) then

cd $DOWNLOADDIR

# upgrade config
sysmerge

# update all packages
pkg_add -u

# cleanup
pkg_delete -a

else

echo "FAILED TO FIND $DOWNLOADDIR"

endif

<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<

Deleted openbsd/auto-wifi.sh. 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324

#!/bin/ksh
#
# Copyright (c) 2012 Peter Ljung <ljung.peter@gmail.com>
#
# Permission to use, copy, modify, and distribute this software for any
# purpose with or without fee is hereby granted, provided that the above
# copyright notice and this permission notice appear in all copies.

# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
#

## Script that allow a new wifi connection to be setup interactively
# 
# Manual mode
# 1. User select wifi interface to use
# 2. Scan available networks (name, protection and signal strength)
# 3. User select network to connect to
# 4. User enter password for network (if not open)
# 5. Connect to network (assuming dhcp)
# 6. Optionally display a connect string to be appended to corresponding hostname.if file
#
# Automatic mode
# 1. User select wifi interface to use
# 2. Scan available networks (name, channel, security and signal strength)
# 3. Merge available networks with known networks
# 4. Automatically select then best known available network
# 5. Connect to network (assuming dhcp)
# 6. Optionally display a connect string to be appended to corresponding hostname.if file
#
# Other
# - TODO: Add connect line to hostname.if (instead of just printing)
# - TODO: Test with multiple known available networks
# - TODO: Replace known file with regular hostname.if
# - TODO: Handle spaces in password and nwid - DONE 
# - TODO: Automatically detect WEP/WPA security
# - TODO: Improve security for known file
#

# Default values
AUTO="true"    # Setup automatically if possible
INTERFACE=""   # E.g. "iwn0"
NETWORK=""     # E.g. "astrid;6;208dB;54M;secure" i.e. name, chan, signal, speed, secure/open
NAME=""        # E.g. "Astrid"
CHAN=""        # E.g. "6"
AUTHTYPE=""    # open, secure (i.e. wep or wpa), wep or wpa
PREFIX=""      # optional "0x" prefix to PASSWORD
PASSWORD=""    # "secret"
IF_STATUS=""   # "active" or "no network"
CONN_STR=""    # connect string for /etc/hostname.if
HNAME_FILE=""  # hostname.if file
KNOWN_FILE="/etc/known-wifi"

# Print input lines numbered from 1 .. n
print_lines_numbered() {
  awk '{print NR ". " $0}'
}

# Print single line identified by $1 (1..n)
print_line() {
  awk 'NR=='"$1"' {print $0}'
}

# Print the number of lines in file
lines() {
  wc -l $1 | awk '{ print $1 }'
}

# Strip $1 from " from both ends (not used!)
str_strip() {
  temp=${1#\"}
  echo "${temp%\"}"
}

# Print column n (1..) in $1 from string in $2 with ; as separator
col() {
  echo "$2" | eval "awk -F'[;]' '{ print \$"$1" }'"  # eval expands $1
}

# Get all interfaces (from dmesg output) as lines 
# TODO: Filter on WLAN interfaces (then unneccesary if selection with be removed)
get_all_interfaces() {
  dmesg | grep 'address' | awk '{ print $1 }' 
}

# Get network if from user
get_interface() {
  interfaces=$( get_all_interfaces )
  if [[ -n $INTERFACE ]]; then
    INTERFACE=$( print "$interfaces" | grep -i "^$INTERFACE" )
  fi
  if [[ -z $INTERFACE && -n $interfaces ]]; then
    num_ifs=`echo "$interfaces" | wc -l | awk '{ print $1 }'`
    if [[ $num_ifs -eq "1" ]]; then
      INTERFACE=$( print "$interfaces" | print_line "1" )
    elif [[ $num_ifs -gt "1" ]]; then
      print "Select which interface to configure:"
      print "$interfaces" | print_lines_numbered
      print -n "Select interface: "; read n
      INTERFACE=$( print "$interfaces" | print_line $n )
    fi
  fi
}

# Print all wifi interfaces from INTERFACE scan. First argument is optional separator.
# Columns: NAME;CHAN;signal;speed;AUTHTYPE
#          astrid;6;212dB;54M;secure
#          Time Capsule;4;242dB;54M;secure
get_all_networks() {
  ifconfig $INTERFACE scan | awk '/^\t+nwid/' | sed -E 's/^	+nwid /"/' | sed 's/ chan/" chan/' | sed 's/""/"/g' | {
    while read l; do
      eval set -A ary "$l"      # set -A handles " quoting. eval is used expand $l
      SEC='open'
      if echo ${ary[7]} | egrep -q 'privacy'; then
        SEC='secure'
      fi
      echo "${ary[0]};${ary[2]};${ary[5]};${ary[6]};$SEC"
    done
  }
}

# Let the user choose network based on interface scan. Set NAME, CHAN variables
# TODO: Test case with no available networks
get_network() {
  networks=$( get_all_networks | sort -r -t';' -k3 )
  if [[ -n $NAME ]]; then
    NETWORK=$( print "$networks" | grep -i "^$NAME" )
  fi
  if [[ -z $NETWORK && -n $networks ]]; then
    # TODO: Make network list more readable by e.g. removing ; with space
    print "Select which network to connect to:"
    print "$networks" | print_lines_numbered
    print -n "Select network: "; read n
    NETWORK=$( print "$networks" | print_line $n )
  fi
  NAME=`col 1 "$NETWORK"`
  CHAN=`col 2 "$NETWORK"`
  AUTHTYPE=`col 5 "$NETWORK"`
}

# Get password from user. Set PASSWORD and AUTHTYPE if that can be determined from password type
get_password() {
  if [[ -z $PASSWORD ]]; then
    print -n "Enter password: "; read pw
    PASSWORD="$pw"
  fi
}

# Store current network as a known network. Replace network with same NAME
# Format: NAME;AUTHTYPE;PASSWORD
add_known_network() {
  # Use ; as field separator
  echo "$NAME;$AUTHTYPE;$PASSWORD" | cat $KNOWN_FILE - | sort -t';' -k1 -u > $TMP
  cat $TMP > $KNOWN_FILE
}

# Print known and available networks in signal strength order
# Format: NAME;AUTHTYPE;PASSWORD;CHAN;signal
known_available_networks() {
  # Print the join between known files and avail networks in signal strength order
  get_all_networks | sort -k1 > $TMP
  if [[ $( lines $TMP ) -gt 0 && $( lines $KNOWN_FILE ) -gt 0 ]]; then
    cat $KNOWN_FILE | sort -t';' -k1 | join -t';' - $TMP | sort -r -t';' -k6 | awk -F'[;]' '{ print $1";"$2";"$3";"$5";"$6 }'
  fi
}

# Set NAME, AUTHTYPE and PASSWORD to best (highest signal strength) available network
best_known_network() {
  BEST=$( known_available_networks | head -n 1 )
  if [[ -n $BEST ]]; then
    NAME=`col 1 "$BEST"`
    AUTHTYPE=`col 2 "$BEST"`
    PASSWORD=`col 3 "$BEST"`
    CHAN=`col 5 "$BEST"`
  fi
}

# Setup connection to open network. Based on INTERFACE, NAME, CHANNEL and PASSWORD. Update AUTHTYPE.
connect_open() {
  ifconfig $INTERFACE chan $CHAN nwid "$NAME" -nwkey -wpakey up
  sleep 5
}

# Setup WEP connection. $1 is an optional prefix to password.
connect_wep() {
  AUTHTYPE="wep"; PREFIX=$1
  ifconfig $INTERFACE chan $CHAN nwid "$NAME" -wpa -wpakey nwkey "$PREFIX$PASSWORD" up
  sleep 5
}

# Setup WPA connection. $1 is an optional prefix to password.
connect_wpa() {
  AUTHTYPE="wpa"; PREFIX=$1
  ifconfig $INTERFACE chan $CHAN nwid "$NAME" -nwkey wpa wpakey "$PREFIX$PASSWORD" up
  sleep 5
}

# Set interface down.
disconnect() {
  ifconfig $INTERFACE -chan -nwid -nwkey -wpa -wpakey down
  sleep 2
}

# Setup connection using open, wpa, wep. Update AUTHTYPE, PASSWORD and IF_STATUS.
connect() {
  if [[ "$AUTHTYPE" == "open" ]]; then
    connect_open
  elif [[ "$AUTHTYPE" == "wep" ]]; then
    connect_wep
  elif [[ "$AUTHTYPE" == "wpa" ]]; then
    connect_wpa
  elif [[ "$AUTHTYPE" == "secure" ]]; then
    # TODO: check that password is at least 8 characters (otherwise it is not wpa)
    if [[ $(if_status) != "active" ]]; then
      connect_wpa
    fi
    if [[ $(if_status) != "active" ]]; then
      if [[ "$PASSWORD" = +([a-f]|[0-9]) ]]; then 
        connect_wpa "0x"
      fi
    fi
    if [[ $(if_status) != "active" ]]; then
      connect_wep
    fi
    if [[ $(if_status) != "active" ]]; then
      if [[ "$PASSWORD" = +([a-f]|[0-9]) ]]; then 
        connect_wep "0x"
      fi
    fi
  else
	  echo "Unknown authentication type: $AUTHTYPE"
  fi
  PASSWORD="$PREFIX$PASSWORD"
  IF_STATUS=$(if_status)
}

dhclient_request() {
  dhclient $INTERFACE > /dev/null 2> /dev/null
}

# Get interface status (using ifconfig). Output: "active" or "no network"
if_status() {
  ifconfig "$INTERFACE" | grep 'status:' | sed 's/^.*status: //' 
}

# Connect string to be written to hostname.if. Based on NAME, CHANNEL, PASSWORD and AUTHTYPE.
connect_string() {
  HNAME_FILE="/etc/hostname.$INTERFACE"
	CONN_STR="dhcp chan $CHAN nwid \"$NAME\""
  if [[ $AUTHTYPE == "wep" ]]; then
	  CONN_STR="$CONN_STR nwkey \"$PREFIX$PASSWORD\"" 
  elif [[ $AUTHTYPE == "wpa" ]]; then
	  CONN_STR="$CONN_STR wpa wpakey \"$PREFIX$PASSWORD\""
  fi
}

initialize() {
  TMP=`mktemp` || exit 1
  touch $KNOWN_FILE
}

finalize() {
  rm "$TMP"
  exit 0
}

# Main ...
while getopts "i:n:p:t:f:m" opt; do
    case $opt in 
        i )    INTERFACE=$OPTARG ;;
        n )    NAME=$OPTARG ;;
        p )    PASSWORD=$OPTARG ;;
        t )    AUTHTYPE=$OPTARG ;;
        f )    KNOWN_FILE=$OPTARG ;;
        m )    AUTO="false" ;;
        \? )    print 'usage: sudo auto-wifi.sh [-i interface] [-n network_name] [-p password] [-t open/wep/wpa] [-f known_file] [-m(anual)]'
               return 1 ;;
    esac
done

initialize
get_interface; print
if [[ -z $INTERFACE ]]; then
  print "No interface available. Exit"; finalize
fi
if [[ $(if_status) == "active" ]]; then
  print -n "Interface ($INTERFACE) is active. Disconnect? ([y]n): "; read ANS
  if [[ $ANS == "n" ]]; then
    print "You cant setup an active interface. Exit"; finalize
  fi
  print
fi
disconnect
if [[ $AUTO == "true" ]]; then
  best_known_network
fi
get_network; print
if [[ -z $NAME ]]; then
  print "No network available. Exit"; finalize
fi
if [[ "$AUTHTYPE" != "open" ]]; then 
  get_password; print
fi
connect
dhclient_request
if [[ $(if_status) == "active" ]]; then
  add_known_network  # Ask user first?
  connect_string
  print "Interface ($INTERFACE) is active!"
  print -n "Do you want to add connect string to $HNAME_FILE? (y[n]): "; read ans
  if [[ $ans == "y" ]]; then
    print "Add the following line to $HNAME_FILE:"  # Remove! 
    print "$CONN_STR"
  fi
else
  print "Connection failed. Run script again to try again"
  print "Known password my be outdated. Do manual setup (-m) to override known password"
fi
finalize

<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<

Deleted openbsd/ksh93rc. 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28

# use a git-flavored prompt
if test "$UID" = 0 ; then
    PS1="${HOST}:"'${PWD}'" # "
else
    alias kshps1git="
        git branch 2>&1 |egrep \"^\\\*\" | sed 's/^* \\(.*\\)/[\\1]/g'"

    PS1="${USER}@${HOST}:"'${PWD}'"\`kshps1git\`> "
fi
export PS1


# use Emacs key bindings
set -o emacs

# simulate tcsh's history editing:
#  1. "!$" (tcsh built-in) roughly equals $_ in the ksh,
#     it just repeats the previous command's parameters.
#     No need for a different alias here.
#  2. "!!" recalls the previous command (can be edited
#     through the Emacs key bindings before issuing).
alias '!!=fc -s'


# improve the history management
export HISTFILESIZE=1000000000
export HISTSIZE=50000
export HISTFILE=~/.ksh_history

<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<

Deleted openbsd/upgrade.sh. 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48

#!/bin/sh
HOST=ftp.eu.openbsd.org
USER=anonymous
PASS=whatever
PLATFORM=i386
DOWNLOADDIR=/home/tux/upgrade


# create the download directory if it doesn't exist yet
if [ ! -d $DOWNLOADDIR ]; then
  mkdir -p $DOWNLOADDIR
fi

# cd into the download directory
cd $DOWNLOADDIR

# clean up
rm *

# download all new packages
ftp -n -V $HOST << EOT
user $USER $PASS
prompt
cd pub/OpenBSD/snapshots/$PLATFORM
mget SHA*
mget bsd*
mget *.tgz
bye
EOT

# replace the kernel
rm /obsd ; ln /bsd /obsd && cp bsd.mp /nbsd && mv /nbsd /bsd
cp bsd.rd /
cp bsd /bsd.sp

# extract all packages
tar -C / -xzphf xserv*
tar -C / -xzphf xfont*
tar -C / -xzphf xshare*
tar -C / -xzphf xbase*
tar -C / -xzphf game*
tar -C / -xzphf comp*
tar -C / -xzphf man*
# base needs to be last
tar -C / -xzphf base*

# reboot
reboot

<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<
<