2 # Copyright (C) 2019 Ian Kelling
3 # SPDX-License-Identifier: AGPL-3.0-or-later
4 # this gets sourced. shebang is just for file mode detection
9 if [[ $LESSHISTFILE == - ]]; then
12 elif [[ $HISTFILE ]]; then
16 source /a
/bin
/distro-setup
/path-add-function
18 # add this with absolute paths as needed for better security
19 #path-add --end /path/to/node_modules/.bin
21 #path-add --end /usr/lib/node_modules/corepack/shims/
23 # pip3 --user things go here:
24 path-add
--end ~
/.local
/bin
25 path-add
--ifexists --end /a
/work
/libremanage
26 path-add
--ifexists --end /a
/opt
/adt-bundle
*/tools
/a
/opt
/adt-bundle
*/platform-tools
27 path-add
--ifexists --end /a
/opt
/scancode-toolkit-3.10.
28 path-add
--ifexists --end /p
/bin
32 # https://askubuntu.com/questions/1254544/vlc-crashes-when-opening-any-file-ubuntu-20-04
33 if grep -qE '^VERSION_CODENAME="(nabia|focal)"' /etc
/os-release
&>/dev
/null
; then
34 export MESA_LOADER_DRIVER_OVERRIDE
=i965
45 # shellcheck disable=SC2034 # used in brc
46 SL_SSH_ARGS
="-F $HOME/.ssh/confighome"
53 # generated instead of dynamic for the benefit of shellcheck
54 #for x in /a/bin/distro-functions/src/* /a/bin/!(githtml)/*-function?(s); do echo source $x ; done
55 source /a
/bin
/distro-functions
/src
/identify-distros
56 source /a
/bin
/log-quiet
/logq-function
57 # for x in /a/bin/bash_unpublished/source-!(.#*); do echo source $x; done
58 source /a
/bin
/bash_unpublished
/source-semi-priv
59 source /a
/bin
/bash_unpublished
/source-state
61 source /a
/bin
/log-quiet
/logq-function
64 # if [[ -s /a/opt/alacritty/extra/completions/alacritty.bash ]]; then
65 # source /a/opt/alacritty/extra/completions/alacritty.bash
69 source /a
/bin
/ds
/beet-data
78 m pactl unload-module module-loopback
79 m pactl unload-module module-null-sink
80 m pactl unload-module module-remap-source
82 IFS
=" " read -r -a sources
<<<"$(pacmd list-sources | sed -rn 's/.*name: <([^>]+).*/\1/p')"
86 for s
in ${sources[@]}; do
93 m pactl load-module module-null-sink sink_name
=ianinput sink_properties
=device.description
=ianinputs
95 m pactl load-module module-loopback
source=${sources[i]} sink_dont_move
=true sink
=ianinput
97 pactl load-module module-remap-source source_name
=iancombine master
=ianinput.monitor source_properties
=device.description
=iancombine
101 # For testing restrictive ssh.
105 sed '/^ *IdentityFile/d' ~
/.ssh
/config
>$d/config
106 s
command ssh -F $d/config
-i /q
/root
/h
"$@"
110 # For testing restrictive rsync
114 sed '/^ *IdentityFile/d' ~
/.ssh
/config
>$d/config
115 s rsync
-e "ssh -F $d/config -i /q/root/h" "$@"
118 # rsync as root and avoid the default restrictive h key & config.
120 s rsync
-e "ssh -F /root/.ssh/confighome" "$@"
124 ssh bow DISPLAY
=:0 scrot
/tmp
/oegu.jpg
125 scp bow
:/tmp
/oegu.jpg
/t
126 ssh bow
rm /tmp
/oegu.jpg
134 if [[ $arg == [89]0Etiona
* ]]; then
136 rtime
=${arg#*Etiona} # remote time
137 if [[ ! $rtime ]]; then
140 dir
=/a
/opt
/emacs-trisquel
${v}-nox/.iank
141 ltime
=$
(stat
-c%Y
$dir/e
/e
/.emacs.d
/init.el
)
142 if (( ltime
> rtime
)); then
143 m rsync
-rptL --delete --filter=". /b/ds/sl/rsync-filter" $dir "$remote":/home
/iank
149 local f
=/home
/iank
/.emacs.d
/init.el
150 sl
--sl-test-cmd ". /etc/os-release ; printf %s \${VERSION//[^a-zA-Z0-9]/}; test -e $f && stat -c%Y $f" --sl-test-hook slemacs
"$@"
154 # Run this manually after .emacs.d changes. Otherwise, to check if
155 # files changed with find takes 90ms. sl normally only adds 25ms. We
156 # could cut it down to 10ms if we put things on a btrfs filesystem and
157 # looked for changes there, or used some inotify thing, but that seems
158 # like too much work.
159 egh
() { # emacs gnuhope
160 RSYNC_RSH
=ssh m rsync
-rptL --delete --filter=". /b/ds/sl/rsync-filter" /a
/opt
/emacs-trisquel9-nox
/.iank lists2d.fsf.org
:.ianktrisquel_9
161 RSYNC_RSH
=ssh m rsync
-rptL --delete --filter=". /b/ds/sl/rsync-filter" /a
/opt
/emacs-trisquel8-nox
/.iank lists2d.fsf.org
:/home
/iank
164 local shell
="bash -s"
165 if [[ $HOSTNAME != kw
]]; then
166 shell
="ssh kw.office.fsf.org"
170 sudo mkdir /root/.ianktrisquel_9
171 sudo rsync -rptL --delete --filter=". /b/ds/sl/rsync-filter" /a/opt/emacs-trisquel9-nox/.iank /root/.ianktrisquel_9
172 rsync -rptL --delete --filter=". /b/ds/sl/rsync-filter" /a/opt/emacs-trisquel8-nox/.iank /home/iank
176 rm-docker-iptables
() {
177 s iptables
-S | gr docker | gr
-- -A |
sed 's/-A/-D/'|
while read -r l
; do sudo iptables
$l; done
178 s iptables
-S -t nat | gr docker | gr
-- -A |
sed 's/-A/-D/'|
while read -r l
; do sudo iptables
-t nat
$l; done
179 s iptables
-S | gr docker | gr
-- -N |
sed 's/-N/-X/'|
while read -r l
; do sudo iptables
$l; done
180 s iptables
-S -t nat | gr docker | gr
-- -N |
sed 's/-N/-X/'|
while read -r l
; do sudo iptables
-t nat
$l; done
183 # usage mkschroot [-] distro codename packages
184 # - means no piping in of sources.list
186 local sources force repo n distro
188 while [[ $1 == -* ]]; do
190 -f) force
=true
; shift ;;
193 if [[ ! -s $sources ]]; then
194 echo mkschroot
: error
: sources
file $sources does not exist or is empty
205 repo
=http
://mirror.fsf.org
/trisquel
/
208 repo
=http
://archive.ubuntu.com
/ubuntu
/
211 repo
=http
://deb.debian.org
/debian
/
217 if ! $force && schroot
-l |
grep -xFq chroot
:$n; then
218 echo "$0: $n schroot already installed, skipping"
223 sd
/etc
/schroot
/chroot.d
/$n.conf
<<EOF
229 preserve-environment=true
233 if [[ ! -e $d/bin
]]; then
235 # resolvconf otherwise schroot fails with
236 # cp: not writing through dangling symlink '/var/run/schroot/mount/flidas-7a2362e0-81b3-4848-92c1-610203ef5976/etc/resolv.conf'
237 sudo debootstrap
--exclude=resolvconf
$n $d $repo
239 if [[ $sources ]]; then
240 sudo
install -m 644 $sources $d/etc
/apt
/sources.list
242 sudo chroot
$d apt-get update
243 sudo DEBIAN_FRONTEND
=noninteractive chroot
$d apt-get
-y dist-upgrade
--purge --auto-remove
244 sudo
cp -P {,$d}/etc
/localtime
245 if (( ${#apps[@]} )); then
246 sudo DEBIAN_FRONTEND
=noninteractive schroot
-c $n -- apt-get
install --allow-unauthenticated -y ${apps[@]}
251 # note: this is incomplete and untested.
252 # https://wiki.archlinux.org/index.php/Install_Arch_Linux_from_existing_Linux#Creating_a_chroot
255 mirror
=https
://mirrors.edge.kernel.org
/archlinux
/iso
/latest
/
256 tarball
=$
(curl
-s $mirror |
sed -nr 's/.*"(archlinux-bootstrap-.*-x86_64.tar.gz)".*/\1/p')
257 wget
-O /tmp
/arch.
tar.gz https
://mirrors.edge.kernel.org
/archlinux
/iso
/latest
/$tarball
258 s mkdir
-p /nocow
/schroot
/arch
259 cd _
/nocow
/schroot
/arch
260 s
sed -i '/## United States/,/^$/s,^#,,' etc
/pacman.d
/mirrorlist
261 # error: could not determine cachedir mount point /var/cache/pacman/pkg
262 s
sed -i /^CheckSpace
/d etc
/pacman.conf
263 chroot .
/bin
/bash
-s <<'EOF'
265 pacman-key --populate archlinux
268 # example of building an aur package:
269 # pacman -Sy base-devel wget
271 # f=$target/etc/sudoers
272 # line='iank ALL=(ALL) NOPASSWD: ALL'
273 # if [[ ! -e $f ]] || ! grep -xF "$line" $f; then
277 # wget https://aur.archlinux.org/cgit/aur.git/snapshot/anbox-image-gapps.tar.gz
278 # tar xzf anbox-image-gapps.tar.gz
279 # cd anbox-image-gapps
284 # clock back in to timetrack from last entry
286 sqlite3
/p
/.timetrap.db
"update entries set end = NULL where id = (select max(id) from entries);"
290 # s sshfs bu@$host:/bu/home/md /bu/mnt -o reconnect,ServerAliveInterval=20,ServerAliveCountMax=30 -o allow_other
293 enn
-M "$(exiqgrep -i -r.\*)"
296 enn
-M "$(exipick -i -r.\*|h1)"
301 /a
/f
/gnulib
/build-aux
/gnupload
"$@"
307 f
=(/p
/c
/firefox
*/compatibility.ini
)
308 if (( ${#f[@]} )); then
315 s checkrestart
-b /a
/bin
/ds
/checkrestart-blacklist
-pv
318 cp-blocked-domains-to-brains
() {
319 cp /a
/f
/ans
/roles
/exim
/files
/mx
/simple
/etc
/exim
4/bad-sender_domains
/a
/f
/brains
/sysadmin
/kb
/blocked_email_domains.mdwn
321 cp-blocked-domains-to-ansible
() {
322 cp /a
/f
/brains
/sysadmin
/kb
/blocked_email_domains.mdwn
/a
/f
/ans
/roles
/exim
/files
/mx
/simple
/etc
/exim
4/bad-sender_domains
327 # crashes on adding new cards in t9
328 schroot
-c buster
-- anki
333 hrcat
/m
/md
/alerts
/{cur
,new
}/*
336 ssh bk.b8.nz
"shopt -s nullglob; hrcat /m/md/INBOX/new/* /m/md/INBOX/cur/*"
340 rm -f /m
/md
/alerts
/{cur
,new
}/*
342 ssh bk.b8.nz
"shopt -s nullglob; rm -f /m/md/INBOX/new/* /m/md/INBOX/cur/*"
347 find /var
/local
/cron-errors
/home
/iank
/cron-errors
/sysd-mail-once-state
-type f
349 ralerts
() { # remote alerts
351 # this list is duplicated in check-remote-mailqs
352 for h
in bk je li frodo kwwg x3wg x2wg kdwg sywg
; do
355 if [[ $HOSTNAME == "${h%wg}" ]]; then
359 $shell find /var
/local
/cron-errors
/home
/iank
/cron-errors
/sysd-mail-once-state
-type f || ret
=$?
367 # pushd in case current directory has an ansible.cfg file
368 pushd /a
/xans
>/dev
/null
369 ansible-playbook
-v -l ${1:- $(hostname -f)} site.yml
373 pushd /a
/work
/ans
>/dev
/null
374 time ansible-playbook
-i inventory adhoc.yml
"$@"
378 pushd /a
/bin
/distro-setup
/a
>/dev
/null
379 ansible-playbook site.yml
"$@"
384 # googling android emulator libGL error: failed to load driver: r600
385 # lead to http://stackoverflow.com/a/36625175/14456
386 export ANDROID_EMULATOR_USE_SYSTEM_LIBS
=1
387 /a
/opt
/android-studio
/bin
/studio.sh
"$@" & r
390 # convert brains path to url
391 # /f/brains/sysadmin/interns/2022/nick_shrader/intro_blog_post.mdwn
393 # https://brains.fsf.org/wiki/sysadmin/interns/2022/nick_shrader/intro_blog_post
399 read -r -p "enter path" path
401 url
=$
(readlink
-f "$path")
402 url
="https://brains.fsf.org/wiki/${url#*brains/}"
408 # Generate beet smartplaylists for navidrome.
409 # for going in the reverse direction, run
410 # /b/ds/navidrome-playlist-export
411 beetsmartplaylists
() {
412 install -m 0700 -d /tmp
/ianbeetstmp
414 # kill off any playlists we deleted. they will still need manual
415 # killing from a navidrome client.
416 rm -rf /i
/converted
/beetsmartplaylists
417 mkdir
-p /i
/converted
/beetsmartplaylists
418 for f
in /tmp
/ianbeetstmp
/*; do
419 sed 's,^/i/m,/i/converted,;s,\.flac$,.mp3,' "$f" >"/i/converted/beetsmartplaylists/${f##*/}"
422 rmdir /tmp
/ianbeetstmp
425 # internal function for beetrating, in case we need to ssh
427 local tmp rating path cpath sqlpath userid
428 # plucked this from the db. im the only user.
429 userid
=23cc2eb9-e35e-4811-a0f0-d5f0dd6eb634
430 while read -r rating path
; do
431 cpath
="/i/converted${path#/i/m}" # converted path
434 cpath
="${cpath%.*}.mp3"
437 if [[ ! -e $cpath ]]; then
438 echo "beetraing: error: this should not happen, path does not exist: $cpath"
441 sqlpath
="${cpath//\'/\'\'}"
442 old_rating
=$
(sqlite3
/i
/navidrome
/navidrome.db
"select rating from annotation inner join media_file on item_id = id where path = '$sqlpath' and item_type = 'media_file';")
443 if [[ $old_rating ]]; then
444 if [[ $old_rating != "$rating" ]]; then
445 echo "setting rating $old_rating -> $rating $cpath"
446 # https://stackoverflow.com/a/50317320
447 # we got a timeout error once. arbitrarily chose 15 seconds.
448 sqlite3
/i
/navidrome
/navidrome.db
".timeout 15000" "
449 update annotation set rating = $rating
451 select media_file.id from annotation inner join media_file on annotation.item_id = media_file.id
452 where media_file.path = '$sqlpath' and annotation.item_type = 'media_file' );"
455 echo "setting rating $rating $cpath"
456 # /a/opt/navidrome/persistence/sql_annotations.go v0.48.0
457 # https://www.sqlite.org/lang_insert.html
458 sqlite3
/i
/navidrome
/navidrome.db
".timeout 15000" "insert into annotation select '$(uuidgen)', '$userid', id, 'media_file', 0, NULL, $rating, 0, NULL from media_file where path = '$sqlpath';"
463 # Export beets ratings into navidrome
466 if [[ $HOSTNAME != kd
]]; then
467 ssh_prefix
="ssh b8.nz"
469 # shellcheck disable=SC2016 # obvious reason
470 beet
ls -f '$rating $path' $nav_convert_query |
$ssh_prefix beetrating-stdin
473 # Do transcoding and hardlinking of audio files for navidrome.
477 # a bunch of effort to ignore output we dont care about...
478 sed 's/^format_item:.*/format_item: ignore_this/' ~
/.config
/beets
/config.yaml
>$tmpf
479 beet
-c $tmpf convert
-y $nav_convert_query > >(grep -vFx 'ignore_this' ||
:) 2> >(grep -v '^convert: Skipping' ||
:)
482 # This deletes files in the converted directory which should no longer
483 # be there due to a rename of the unconverted file.
484 beetconvert-rm-extras
() {
488 # shellcheck disable=SC2016 # obvious reason
489 beet
ls -f '$path' $nav_convert_query >"$tmpf"
490 ## begin removal of files that are leftover from previous conversion,
491 # eg, previously rated > 1, now rated 1.
493 convertedpath
="/i/converted${l#/i/m}"
494 case $convertedpath in
495 *.flac
) convertedpath
="${convertedpath%.flac}.mp3" ;;
497 paths
[$convertedpath]=t
500 find /i
/converted
-path /i
/converted
/beetsmartplaylists
-prune -o \
( -type f
-print \
) -name '*.mp3' -o -name '*.m4a' >"$tmpf"
502 if [[ ! ${paths[$l]} ]]; then
505 # note: the pruning is duplicative of filtering on name, but whatever.
510 beets-gen-playlists
() {
512 local -a query_array query_str
513 for i
in "${!bpla[@]}"; do
515 eval "query_array=(${bpla[$i]})"
516 for str
in "${query_array[@]}"; do
517 query_str
+=("\"$str\"")
521 query: '${query_str[@]}'
526 # beet playlist. use beetag with a playlist name
528 eval beetag
-r "$@" "${bpla[${@: -1}]}"
530 complete
-W "${!bpla[*]}" bpl
533 # beet modify quietly
537 # a bunch of effort to ignore output we dont care about...
538 sed 's/^format_item:.*/format_item: ignore_this/' ~
/.config
/beets
/config.yaml
>$tmpf
539 beet
-c $tmpf modify
-y "$@" > >(grep -vFx -e 'ignore_this' -e 'Modifying 1 items.' ||
:)
544 # Must be called from beetag for variables to be setup
546 # - 3 is just a constant that helps things work in practice.
547 if [[ $LINES ]] && (( LINES
- 3 < scrolled
)); then
549 for (( i
=0; i
<${#button_map[@]}; i
++)); do
550 if (( i
% 3 == 2 )); then
551 printf "%s %s\n" ${buttons[i]} ${button_map[i]}
553 printf "%s %-15s" ${buttons[i]} ${button_map[i]}
558 y other genres z fg player ' = toggle play
559 ; previous _ = delete -/+ volume ->/<- skip
567 # usage: beetag [-r] [-s] QUERY
568 # it lists the query, reads an input char for tagging one by one.
570 # note, you may want to change the play command for doing rapid taging
571 # by immediately jumping forward into the song. this is set in the beets
574 # (available buttons: ` \ ) ] [ and non-printing chars, see
575 # https://stackoverflow.com/questions/10679188/casing-arrow-keys-in-bash
578 # note: after foregrounding the player, must quit it to get back. can't ctrl-c.
580 # keys I dont need help to remember:
585 local last_genre_i fstring tag id char new_item char_i genre tag remove doplay i j random
586 local do_rare_genres read_wait
help line lsout tmp ls_line
587 local escape_char escaped_input expected_input skip_input_regex
588 local -a pl_tags buttons button_map ids tags rare_genres tmp_tags initial_ls ls_lines
590 local -i i j volume scrolled id_count line_int skip_start pre_j_count head_count
593 escape_char
=$
(printf "\u1b")
594 scrolled
=999 # more than any $LINES
595 ### begin arg processing ###
608 echo beetag
: error expected a query arg
>&2
611 ### end arg processing ###
619 # because we were destined to run out of single key buttons.
628 last_genre_i
=$
(( ${#common_genres[@]} - 1 ))
629 buttons
=( {a..p
} {r..w
} 0 {6.
.9} , .
/ )
630 button_map
=(${common_genres[@]} ${pl_tags[@]})
632 for tag
in "${pl_tags[@]}"; do
633 fstring
+="%ifdef{$tag,$tag }"
636 for (( i
=0; i
<${#buttons[@]}; i
++ )); do
637 button_i
[${buttons[i]}]=$i
640 # TODO: use shuf --random-source=FILE to save the random sort order
641 # for reusing later, so we can pickup where we left off in a playlist.
643 # shellcheck disable=SC2016 # obvious reason
644 mapfile
-t initial_ls
< <(beet
ls -f '$id %ifdef{rating,$rating }'"$fstring"'$genre | $artist - $album - $title $length' "$@" |
{ if $random; then sort -R; else cat; fi; } )
646 # i only care to see the head of the list.
647 head_count
=$
(( LINES
- 14 ))
648 for line
in "${initial_ls[@]}"; do
652 ls_line
="$ls_line $id"
653 ls_lines
+=("$ls_line")
654 if (( j
< head_count
)); then
660 for (( j
=0; j
< id_count
; j
++ )); do
662 lsout
="${ls_lines[j]}"
663 tags
=( ${lsout%%,*} )
665 printf "██ %s\n" "$lsout"
668 # https://stackoverflow.com/a/7687716
669 # note: duplicated down below
670 { beet play
"--args=--volume=$volume" "id:$id" 2>&1 & } 2>/dev
/null
676 read -rsN1 -t $read_wait char || ret
=$?
678 # Automatically skip to the next song if this one ends, unless
679 # we turn off the autoplay.
680 if (( ret
== 142 )) ||
[[ ! $char ]]; then
681 if bg %% &>/dev
/null
; then
691 if [[ $char == $
'\n' ]]; then
692 # https://stackoverflow.com/a/5722874
693 kill %%; wait %% 2>/dev
/null ||
:
698 kill %%; wait %% 2>/dev
/null ||
:
704 echo "play toggled off"
708 kill %%; wait %% 2>/dev
/null ||
:
709 { beet play
"--args=--volume=$volume" "id:$id" 2>&1 & } 2>/dev
/null
715 kill %%; wait %% 2>/dev
/null ||
:
716 m beet
rm --delete --force "id:$id"
717 scrolled
+=4 # guessing. dont want to test atm
721 beetmq
"id:$id" rating
=$char
725 volume
=$
(( volume
- 5 ))
726 if (( volume
< 0 )); then
734 kill %%; wait %% 2>/dev
/null ||
:
739 if (( volume
> 130 )); then
747 if $do_rare_genres; then
749 button_map
=(${common_genres[@]} ${pl_tags[@]})
750 last_genre_i
=$
(( ${#rare_genres[@]} - 1 ))
753 button_map
=(${rare_genres[@]} ${pl_tags[@]})
754 last_genre_i
=$
(( ${#rare_genres[@]} - 1 ))
757 for (( i
=0; i
<${#buttons[@]}; i
++ )); do
758 button_i
[${buttons[i]}]=$i
760 for (( i
=0; i
<${#button_map[@]}; i
++ )); do
761 echo ${buttons[i]} ${button_map[i]}
767 # if we ctrl-z, it will put the whole function into sleep. so
768 # basically, we can't return from a foregrounded mpv like we
769 # would like to without some strange mechanism I can't think
770 # of. So, instead, detect ctrl-c and wait a while for prompt
771 # input. One idea would be to use a music player like mpd where
772 # we can send it messages.
780 read -rsn2 escaped_input
781 skip_input_regex
="^[0-9]+$"
783 case $escaped_input in
786 if (( j
== 0 )); then
787 echo "no earlier songs"
793 for (( i
=j-1
; i
>= 0; i--
)); do
794 echo "$line_int | ${ls_lines[i]}"
801 # skip forward, but show the last few songs anyways.
803 if (( j
- 3 > skip_start
)); then
804 skip_start
=$
(( j
- 3 ))
808 for (( i
=skip_start
; i
< id_count
; i
++ )); do
809 if (( i
== j
)); then
810 echo " * ${ls_lines[i]}"
813 echo "$line_int | ${ls_lines[i]}"
817 scrolled
+=$
(( id_count
- skip_start
- 1 ))
823 if $expected_input; then
825 if [[ $skip_input =~
$skip_input_regex ]]; then
827 j
=$
(( j
- skip_input
- 2 ))
829 pre_j_count
=$
(( j
- skip_start
))
830 j
=$
(( j
+ skip_input
- pre_j_count
))
831 if (( skip_input
< pre_j_count
)); then
835 kill %%; wait %% 2>/dev
/null ||
:
841 char_i
=${button_i[$char]}
842 new_item
=${button_map[$char_i]}
843 if [[ ! $char_i ||
! $new_item ]]; then
844 echo "error: no mapping of input: $char found, try again"
847 if (( char_i
<= last_genre_i
)); then
848 m beetmq
"id:$id" genre
=$new_item
852 for tag
in ${tags[@]}; do
853 if [[ $new_item == "$tag" ]]; then
861 m beetmq
"id:$id" "$new_item!"
864 m beetmq
"id:$id" $new_item=t
871 # usage: FILE|ALBUM_DIR [GENRE]
873 local import_path genre_arg single_track_arg
875 if [[ ! -e $import_path ]]; then
876 echo "beetadd error: path does not exist"
879 genre_arg
="--set genre=$2"
881 if [[ -f $import_path ]]; then
884 beet import
--set totag
=t
$single_track_arg $genre_arg "$import_path"
886 beet modify
-y totag
:t
"totag!"
889 # update navidrome music data after doing beets tagging
894 # this function would naturally just be part of beetconvert,
895 # but we want beetrating to happen sooner so that our ssh auth dialog
896 # happens earlier. Currently 17 seconds for that.
897 m beetconvert-rm-extras
901 # pull in beets library locally
903 if [[ $HOSTNAME == kd
]]; then
906 if [[ ! -e /i
]]; then
910 if ! mountpoint
/i
&>/dev
/null
; then
915 # remove all playlists in navidrome, for when I make big
916 # playlist name changes and just want to scrap everything.
920 if [[ $HOSTNAME != kd
]]; then
921 echo "error: run on kd"
924 sqlite3
/i
/navidrome
/navidrome.db
"select id from playlist" >$tmpf
927 curl
--http1.1
--user "iank:$navidrome_pw" "https://b8.nz/rest/deletePlaylist.view?u=iank&s=sb219dvv7egnoe4i47k75cli0m&t=1c8f5575cd0fdf03deb971187c9c88b1&v=1.2.0&c=DSub&id=$id"
934 # This is not perfect but generally good enough. It escapes all
935 # metachars listed man 3 pcrepattern.
937 sed 's/[]\\^$.[|()?*+{}]/[&]/g; s/\^/\\^/g' <<<"$*"
940 # usage beegenre QUERY
942 # beet set genre for QUERY based on existing artist most used genre on
944 # inverse of query for each artist found in QUERY. If query starts with
945 # "artist:" it is used as the artist instead of each artist in QUERY.
948 local count artist artregex genre singleartist tmpf tmpf2
949 local -a artists genres
960 if $singleartist; then
961 # shellcheck disable=SC2016 # obvious reason
962 beet
ls -f '$genre' "$artist" "${@/#/^}" |
sort |
uniq -c |
sort -n |
tail -n1 >$tmpf
963 read -r count genre
<$tmpf ||
:
964 beet modify
"$artist" "$@" genre
=$genre
966 # shellcheck disable=SC2016 # obvious reason
967 beet
ls -f '$artist' "$@" |
sort -u >$tmpf
968 while read -r artist
; do
969 artregex
=$
(er
"$artist")
970 # shellcheck disable=SC2016 # obvious reason
971 beet
ls -f '$genre' "artist::^$artregex$" "${@/#/^}" |
sort |
uniq -c |
sort -n |
tail -n1 >$tmpf2
972 read -r count genre
<$tmpf2 ||
continue
973 if [[ $count ]]; then
974 artists
+=("$artregex")
976 echo "beet modify -y $* \"artist::^$artist$\" genre=$genre # $count"
979 read -r -N 1 -s -p "Y/n " char
982 for (( i
=0; i
<${#artists[@]}; i
++ )); do
983 beet modify
-y "$@" "artist::^${artists[i]}$" genre
=${genre[i]}
991 # note, to check for glue records
992 # First, find some the .org nameservers:
993 # dig +trace iankelling.org
995 # dig ns1.iankelling.org @b0.org.afilias-nst.org.
997 # Now, compare for a domain that does have glue records setup (note the A
998 # and AAAA records in ADDITIONAL SECTION, those are glue records like the
999 # one I'm asking for):
1001 # $ dig ns1.gnu.org @b0.org.afilias-nst.org.
1003 # todo: make sm pull/push use systemd instead of the journal cat command
1004 bbk
() { # btrbk wrapper
1008 systemctl is-active btrbk.timer || active
=false
1010 ser stop btrbk.timer
1012 btrbk_is_active
=$
(systemctl is-active btrbk.service ||
:)
1013 case $btrbk_is_active in
1014 inactive|failed
) : ;;
1016 echo "bbk: error: systemctl is-active btrbk.service output: $btrbk_is_active"
1017 if $active; then ser start btrbk.timer
; fi
1023 # todo: consider changing this to srun and having the args come
1024 # from a file like /etc/default/btrbk, like is done in exim
1025 s jdo btrbk-run
"$@"
1028 echo bbk
: WARNING
: btrbk.timer not restarted due to failure
1030 ser start btrbk.timer
1037 fai-monitor | pee
cat "fai-monitor-gui -"
1040 bfg
() { java
-jar /a
/opt
/bfg-1.12
.14.jar
"$@"; }
1043 xclock
-digital -update 1 -face 'arial black-80:bold'
1046 nnn
() { /a
/opt
/nnn
-H "$@"; }
1048 locat
() { # log-once cat
1051 files
=(/var
/local
/cron-errors
/* /home
/iank
/cron-errors
/* /sysd-mail-once-state
/*)
1052 case ${#files[@]} in
1069 # usage: first get an adb shell on the phone.
1071 # just followed instructions in readme at
1072 # https://github.com/Yuubi-san/ceb-tools
1073 # tried to use ceb2txt but it failed because of schema
1074 # slightly different than what it expected.
1075 cheogram-get-logs
() {
1076 adb shell
rm -r /storage
/emulated
/0/Download
/Cheogram
/Backup
1077 read -r -p "do cheogram backup on phone, do not enable extra cheogram data. press any key when done"
1080 adb pull
/storage
/emulated
/0/Download
/Cheogram
/Backup
1081 sqlite3 b
</a
/opt
/ceb-tools
/schema.sql
1082 echo "note: the next step took 39 seconds last time i measured"
1083 /a
/opt
/ceb-tools
/ceb2sqlgz Backup
/iank@fsf.org.ceb
<pas | gunzip | sqlite3 b
1087 # usage: cheologs [DAYS_LIMIT]
1088 # default days is 100
1094 datetime(substr(timeSent,0,11), 'unixepoch'),
1095 replace(replace(counterpart,'@fsf.org',''),
1096 '@conference.fsf.org',''),
1099 where timeSent > $(( (EPOCHSECONDS - days * 60 * 60 * 24) * 1000 ))
1101 sqlite3
/p
/cheogram
/b
".mode tabs" "$q" |
less
1109 datetime(substr(timeSent,0,11), 'unixepoch'),
1112 where timeSent > $(( (EPOCHSECONDS - days * 60 * 60 * 24) * 1000 ))
1113 and counterpart = 'office@conference.fsf.org/iank'
1115 sqlite3
/p
/cheogram
/b
".mode tabs" "$q" |
sed 's/ /./' |
less
1118 # version of jdo for my non-root user
1120 # comparison of alternative logging methods:
1122 # systemd-run command (what this function does)
1124 # If there is a user prompt, the program will detect that it is not
1125 # connected to a terminal and act in a non-interactive way, skipping
1126 # the prompt. This has the benefit that you know exactly how the
1127 # program will act if you want to move it into a service that runs
1130 # If run with sudo and command is a shell script which does a sleep,
1131 # it can (sometimes?) output some extra whitespace in front of
1132 # messages, more for each subsequent message. This can be avoided by
1133 # becoming root first.
1135 # It logs the command's pid and exit code, which is nice.
1138 ### command |& ts | tee file.log
1140 # If there is a user prompt, like "read -p prompt var", it will hang
1141 # without outputting the prompt.
1143 # I've had a few times where ts had an error and I wasn't totally sure
1144 # if it was really the command or ts having the problem.
1146 # Sometimes some output will get hidden until you hit enter.
1149 ### command |& pee cat logger
1151 # This seems to work. I need to test more.
1154 ### command |& logger -s
1156 # User prompts get confusingly prefixed to earlier output, and all log
1157 # entries get prefixed with annoying priority level.
1162 # Had a few problems. One major one is that it exited in the middle of
1163 # a command on systemctl daemon-reload
1165 # Related commands which can log a whole session: script, sudo, screen
1166 local cmd cmd_name jr_pid ret
1171 if [[ $cmd != /* ]]; then
1172 cmd
=$
(type -P "$cmd")
1175 journalctl
-qn2 -f -u "$cmd_name" &
1176 # Trial and error of time needed to avoid missing initial lines.
1177 # .5 was not reliable. 1 was not reliable. 2 was not reliable
1180 # note, we could have a version that does system --user, but if for example
1181 # it does sudo ssh, that will leave a process around that we can't kill
1182 # and it will leave the unit hanging around in a failed state needing manual
1183 # killing of the process.
1184 s systemd-run
--uid "$(id -u)" --gid "$(id -g)" \
1185 -E SSH_AUTH_SOCK
=/run
/openssh_agent \
1186 --unit "$cmd_name" --wait --collect "$cmd" "$@" || ret
=$?
1187 # The sleep lets the journal output its last line
1188 # before the prompt comes up.
1190 kill $jr_pid &>/dev
/null ||
:
1193 # this avoids any err-catch
1194 (( ret
== 0 )) ||
return $ret
1197 # service run, and watch the output
1202 journalctl
-qn2 -f -u $unit &
1203 systemctl start
$unit
1205 kill $jr_pid &>/dev
/null ||
:
1210 sm
() { # switch mail host
1214 keyhash
=$
(s ssh-keygen
-lf /root
/.ssh
/home |
awk '{print $2}')
1215 tmp
=$
(s ssh-add
-l |
awk '$2 == "'$keyhash'"')
1216 if [[ ! $tmp ]]; then
1217 s ssh-add
/root
/.ssh
/home
1220 s jdo switch-mail-host
"$@"
1223 sh2
() { # switch host2
1227 keyhash
=$
(s ssh-keygen
-lf /root
/.ssh
/home |
awk '{print $2}')
1228 tmp
=$
(s ssh-add
-l |
awk '$2 == "'$keyhash'"')
1229 if [[ ! $tmp ]]; then
1230 s ssh-add
/root
/.ssh
/home
1233 s jdo switch-host2
"$@"
1237 # shellcheck disable=SC2120
1239 # note, i had --delete-excluded, but that deletes all files in --exclude-from on
1240 # the remote site, which doesn't make sense, so not sure why i had it.
1242 # excluding emacs for now
1243 #p=(/a/opt/{emacs-debian11{,-nox},mu,emacs} /a/bin /a/exe /a/h /a/c /p/c/machine_specific/vps{,.hosts})
1244 p
=(/a
/bin
/a
/exe
/a
/h
/a
/c
/p
/c
/machine_specific
/vps
{,.hosts
})
1245 a
="-ahviSAXPH --specials --devices --delete --relative --exclude-from=/p/c/li-rsync-excludes"
1247 for h
in li je bk
; do
1248 m s rsync
"$@" $a ${p[@]} /p
/c
/machine_specific
/$h root@
$h.b8.nz
:/
1249 ## only li is debian11
1250 #p[0]=/a/opt/emacs-trisuqel10
1251 #p[1]=/a/opt/emacs-trisquel10-nox
1253 m s rsync
"$@" -ahviSAXPH root@li.b8.nz
:/a
/h
/proposed-comments
/ /a
/h
/proposed-comments || ret
=$?
1256 bkpush
() { # no emacs. for running faster.
1257 p
=(/a
/bin
/a
/exe
/a
/h
/a
/c
/p
/c
/machine_specific
/vps
{,.hosts
})
1258 a
="-ahviSAXPH --specials --devices --delete --relative --exclude-from=/p/c/li-rsync-excludes"
1260 m rsync
"$@" $a ${p[@]} /p
/c
/machine_specific
/bk root@bk.b8.nz
:/ || ret
=$?
1263 jepush
() { # no emacs. for running faster.
1264 p
=(/a
/bin
/a
/exe
/a
/h
/a
/c
/p
/c
/machine_specific
/vps
{,.hosts
})
1265 a
="-ahviSAXPH --specials --devices --delete --relative --exclude-from=/p/c/li-rsync-excludes"
1267 m rsync
"$@" $a ${p[@]} /p
/c
/machine_specific
/je root@je.b8.nz
:/ || ret
=$?
1272 dsign iankelling.org expertpathologyreview.com zroe.org amnimal.ninja
1296 local f
=/var
/lib
/bind
/db.b8.nz
1299 m sudo
rm -fv $f.jnl
$f.signed.jnl
1300 m sudo
install -m 644 -o bind -g bind /p
/c
/machine_specific
/vps
/bind-initial
/db.b8.nz
$f
1304 # keys generated like this
1305 # because of https://ftp.isc.org/isc/dnssec-guide/dnssec-guide.pdf
1306 # https://blog.apnic.net/2019/05/23/how-to-deploying-dnssec-with-bind-and-ubuntu-server/
1308 # key length is longer than that guide because
1309 # we are using those at fsf and when old key lengths
1310 # become insecure, I want some extra time to update.
1311 # dnsecgen (in brc2)
1314 dnssec-keygen
-a RSASHA256
-b 2048 $zone
1315 dnssec-keygen
-f KSK
-a RSASHA256
-b 4096 $zone
1316 for f
in K
"$zone".
*.key
; do
1317 # eg Kb8.nz.+008+47995.key tag=47995
1318 # in dnsimple, you add the long string from this.
1319 # in gandi, you add the long string from the .key file,
1320 # then see that the digest matches the ds.
1321 echo "tag is the number after DS"
1322 dnssec-dsfromkey
-a SHA-256
$f
1324 # For b8.nz, we let bind read the keys and sign, and
1325 # right now they have root ownership, so let them
1327 chmod g
+r .
/*.private
1330 # create .signed file
1331 # note: full paths probably not needed.
1334 local zone
=${arg#db.}
1335 local dir
=/p
/c
/machine_specific
/vps
/filesystem
/var
/lib
/bind
1336 dnssec-signzone
-S -e +31536000 -o $zone -K $dir -d $dir $dir/db.
$zone
1341 #### begin bitcoin related things
1343 local f
=/etc
/bitcoin
/bitcoin.conf
1344 # importprivkey will timeout if using the default of 15 mins.
1345 # upped it to 1 hour.
1346 bitcoin-cli
-rpcclienttimeout=60000 -"$(s grep rpcuser= $f)" -"$(s grep rpcpassword= $f)" "$@"
1348 btcusd
() { # $1 btc in usd
1350 price
="$(curl -s https://api.coinbase.com/v2/prices/BTC-USD/spot | jq -r .data.amount)"
1351 printf "$%s\n" "$price"
1353 printf "$%.2f\n" "$(echo "scale
=4; $price * $1"| bc -l)"
1356 usdbtc
() { # $1 usd in btc
1358 price
="$(curl -s https://api.coinbase.com/v2/prices/BTC-USD/spot | jq -r .data.amount)"
1359 printf "$%s\n" "$price"
1361 # 100 mil satoshi / btc. 8 digits after the 1.
1362 printf "%.8f btc\n" "$(echo "scale
=10; $1 / $price "| bc -l)"
1365 satoshi
() { # $1 satoshi in usd
1367 price
="$(curl -s https://api.coinbase.com/v2/prices/BTC-USD/spot | jq -r .data.amount)"
1368 price
=$
(echo "scale=10; $price * 0.00000001"|
bc -l)
1369 printf "$%f\n" "$price"
1371 printf "$%.2f\n" "$(echo "scale
=10; $price * $1"| bc -l)"
1374 #### end bitcoin related things
1378 cbfstool
() { /a
/opt
/coreboot
/build
/cbfstool
"$@"; }
1384 cp /a
/bin
/data
/COPYING
"$@"
1386 cp /a
/bin
/data
/COPYING .
1393 cp /a
/bin
/data
/LICENSE
"$@"
1395 cp /a
/bin
/data
/LICENSE .
1400 if type -p chromium
&>/dev
/null
; then
1404 cmd
="schroot -c bullseye chromium"
1405 CHROMIUM_FLAGS
='--enable-remote-extensions' $cmd & r
1411 # pipe to this, or just type like a shell
1414 tee >(ssh frodo.b8.nz
) >(ssh x2
) >(ssh tp.b8.nz
) >(ssh kw
) >(ssh tp.b8.nz
)
1418 for host in x2 kw tp.b8.nz x3.b8.nz frodo.b8.nz
; do
1424 debian_pick_mirror
() {
1425 # netselect-apt finds a fast mirror.
1426 # but we need to replace the mirrors ourselves,
1427 # because it doesnt do that. best it can do is
1428 # output a basic sources file
1429 # here we get the server it found, get the main server we use
1430 # then substitute all instances of one for the other in the sources file
1431 # and backup original to /etc/apt/sources.list-original.
1432 # this is idempotent. the only way to identify debian sources is to
1433 # note the original server, so we put it in a comment so we can
1434 # identify it later.
1436 file=$
(mktemp
-d)/f
# safe way to get file name without creating one
1437 sudo netselect-apt
-o "$file" ||
return 1
1438 url
=$
(grep ^
\\w
$file |
head -n1 |
awk '{print $2}')
1439 sudo
cp -f /etc
/apt
/sources.list
/etc
/apt
/sources.list-original
1440 sudo
sed -ri "/http.us.debian.org/ s@( *[^ #]+ +)[^ ]+([^#]+).*@\1$url\2# http.us.debian.org@" /etc
/apt
/sources.list
1444 digdiff @ns
{1,2}.iankelling.org
"$@"
1448 "$@" |
& ts ||
return $?
1458 /b
/ds
/distro-begin |
& ts ||
return $?
1459 /b
/ds
/distro-end |
& ts ||
return $?
1465 /b
/ds
/distro-begin |
& ts ||
return $?
1471 /b
/ds
/distro-end |
& ts ||
return $?
1484 envload
() { # load environment from a previous: export > file
1485 local file=${1:-$HOME/.${USER}_env}
1486 eval "$(export | sed 's/^declare -x/export -n/')"
1487 while IFS
= read -r line
; do
1488 # declare -x makes variables local to a function
1489 eval ${line/#declare -x/export}
1493 failfunc
() { asdf a b c
; }
1494 failfunc2
() { failfunc d e f
; }
1496 # one that comes with distros is too old for newer devices
1498 /a
/opt
/android-platform-tools
/fastboot
"$@";
1501 kdecd
() { /usr
/lib
/x86_64-linux-gnu
/libexec
/kdeconnectd
; }
1504 cat /sys
/class
/power_supply
/BAT
0/capacity
1507 # List of apps to install/update
1508 # Create from existing manually installed apps by doing
1510 # fdroidcl search -i, then manually removing
1511 # automatically installed/preinstalled apps
1514 # # my attempt at recovering from boot loop:
1515 # # in that case, boot to recovery (volume up, home button, power, let go of power after samsun logo)
1517 # mount /dev/block/mmcblk0p12 /data
1519 # find -iname '*appname*'
1521 # usually good enough to just rm -rf /data/app/APPNAME
1524 # # causes replicant to crash
1525 # org.quantumbadger.redreader
1526 # org.kde.kdeconnect_tp
1528 # not broke, but wont work without gps
1529 #com.zoffcc.applications.zanavi
1530 # not broke, but not using atm
1531 #com.nutomic.syncthingandroid
1532 # # doesn\'t work on replicant
1533 #net.sourceforge.opencamera
1536 net.mullvad.mullvadvpn
1538 io.github.subhamtyagi.lastlauncher
1540 com.biglybt.android.client
1541 de.marmaro.krt.ffupdater
1542 me.ccrama.redditslide
1543 org.fedorahosted.freeotp
1545 com.alaskalinuxuser.justnotes
1546 com.artifex.mupdf.viewer.app
1547 com.danielkim.soundrecorder
1550 com.jmstudios.redmoon
1552 org.kde.kdeconnect_tp
1555 cz.martykan.forecastie
1556 de.danoeh.antennapod
1558 de.marmaro.krt.ffupdater
1559 eu.siacs.conversations
1561 im.vector.alpha
# riot
1562 info.papdt.blackblub
1563 me.tripsit.tripmobile
1565 net.minetest.minetest
1570 org.smssecure.smssecure
1572 sh.
ftp.rocketninelabs.meditationassistant.opensource
1574 # https://forum.xda-developers.com/android/software-hacking/wip-selinux-capable-superuser-t3216394
1579 local -A installed updated
1581 # tried putting this in go buildscript cronjob,
1582 # but it failed with undefined: os.UserCacheDir. I expect its due to
1583 # an environment variable missing, but its easier just to stick it here.
1584 m go get
-u mvdan.cc
/fdroidcl ||
return 1
1586 if fdroidcl search
-u |
grep ^org.fdroid.fdroid
; then
1587 fdroidcl
install org.fdroid.fdroid
1591 for p
in $
(fdroidcl search
-i|
grep -o "^\S\+"); do
1594 for p
in $
(fdroidcl search
-u|
grep -o "^\S\+"); do
1597 for p
in ${fdroid_pkgs[@]}; do
1598 if ! ${installed[$p]:-false}; then
1599 m fdroidcl
install $p
1600 # sleeps are just me being paranoid since replicant has a history of crashing when certain apps are installed
1604 for p
in ${!installed[@]}; do
1605 if ! ${updated[$p]:-true}; then
1606 m fdroidcl
install $p
1612 firefox-default-profile
() {
1613 local key value section
1617 file=/p
/c
/subdir_files
/.mozilla
/firefox
/profiles.ini
1618 sed -ri "/^ *$key/d" "$file"
1619 sed -ri "/ *\[$section\]/,/^ *\[[^]]+\]/{/^\s*${key}[[:space:]=]/d};/ *\[$section\]/a $key=$value" "$file"
1621 fdhome
() { #firefox default home profile
1622 firefox-default-profile Profile0
1626 firefox-default-profile Profile4
1630 if type -P firefox
&>/dev
/null
; then
1638 firefox
-P alt
"$@" >/dev
/null
2>&1
1644 local dname
="${PWD##*/}"
1645 local m
="/a/tmp/$dname-missing"
1646 local d
="/a/tmp/$dname-diff"
1647 [[ -e $d ]] && rm "$d"
1648 [[ -e $m ]] && rm "$m"
1651 while read -r line
; do
1652 fsfile
="$1${line#.}"
1653 if [[ -e "$fsfile" ]]; then
1654 md5diff
"$line" "$fsfile" && tee -a "/a/tmp/$dname-diff" <<< "$fsfile $line"
1657 echo "$line" >> "$m"
1658 msize
=$
((msize
+ 1))
1660 done < <(find .
-type f
)
1663 (( msize
<= 100 )) && cat $m
1668 # expected output, with different tmp dirs
1669 # /tmp/tmp.HDPbwMqdC9/c/d ./c/d
1670 # /a/tmp/tmp.qLDkYxBYPM-missing
1681 echo different
> $x/c
/d
1687 # test whether missing files were renamed, generally for use with fsdiff
1688 # $1 = fsdiff output file, $2 = directory to compare to. pwd = fsdiff dir
1689 # echos non-renamed files
1693 { sums
+=( "$(md5sum < "$x")" ) ; } 2>/dev
/null
1695 while read -r line
; do
1696 { missing_sum
=$
(md5sum < "$line") ; } 2>/dev
/null
1698 for x
in "${sums[@]}"; do
1699 if [[ $missing_sum == "$x" ]]; then
1704 $renamed ||
echo "$line"
1710 # F = fullscren, z = random, Z = auto zoom
1711 command feh
-FzZ "$@"
1717 firefox
-P default
"$@" >/dev
/null
2>&1
1721 git config user.email ian@iankelling.org
1724 # at least in flidas, things rely on gpg being gpg1
1726 if type -P gpg2
&>/dev
/null
; then
1734 local email
=ian@iankelling.org
1735 git send-email
--notes "--envelope-sender=<$email>" \
1736 --suppress-cc=self
"$@"
1739 gup
() { /a
/f
/gnulib
/build-aux
/gnupload
"$@"; }
1741 dejagnu
() { /a
/opt
/dejagnu
/dejagnu
"$@"; }
1744 # do git status on published repos.
1747 cd "$(readlink -f $x)"/..
1748 status
=$
(i status
-s) ||
pwd
1749 if [[ $status ]]; then
1752 printf "%s\n" "$status"
1760 local day i days_back
1762 for (( i
=0; i
<days_back
; i
++ )); do
1763 day
=$
( date +%F
-d @$
((EPOCHSECONDS
- 86400*i
)) )
1764 date "+%a %b %d" -d @$
((EPOCHSECONDS
- 86400*i
)) |
tr '\n' ' '
1765 /a
/opt
/timetrap
/bin
/t d
-ftotal -s $day -e $day all
-m '^w|lunch$'
1768 to
() { t out
-a "$@"; }
1769 ti
() { t
in -a "$@"; }
1775 in_secs
="$(date -d "${*//[_.]/ }" +%s)"
1776 m t out
-a "$(date +%F.%T -d @$(( in_secs + 60*45 )) )"
1780 arbttlog
() { arbtt-dump
"$@" |
grep -v '( )\|Current Desktop' |
sed -rn '/^[^ ]/{N;s/^(.{21})([0-9]*)[0-9]{3}m.*\(\*/\1\2/;s/^(.{21})[0-9]*.*\(\*/\1/;s/\n//;p}' ; }
1783 /a
/opt
/idea-IC-163.7743
.44/bin
/idea.sh
"$@" & r
1787 cd /var
/lib
/znc
/moddata
/log
/iank
/freenode
/
1789 for x
in "#$1/"*; do
1794 if [[ -e $tmp ]]; then
1798 sed \"s
/^.
/${base%log}/\" ${files[@]}|
sort -n
1803 sl root@iankelling.org ilogs-local
"$@"
1810 d
=/var
/lib
/znc
/moddata
/log
/iank
/
1811 for n
in freenode libera
; do
1812 cd $d$n/"$chan" && hr
1814 echo $x; sed "s/^./${x%log}/" $x; hr
;
1820 chan
="${1:-#fsfsys}"
1821 # use * instead of -r since that does sorted order
1822 sl root@iankelling.org ilog-local
"$chan" |
less +G
1826 if type gio
&> /dev
/null
; then
1828 elif type gvfs-open
&> /dev
/null
; then
1833 # another alternative is run-mailcap
1838 # grep -Evi -e "^(\S+\s+){4}(sudo|sshd|cron)\[\S*:" \
1839 # -e "^(\S+\s+){4}systemd\[\S*: (starting|started) (btrfsmaintstop|dynamicipupdate|spamd dns bug fix cronjob|rss2email)\.*$"
1842 # journalctl -n 10000 -f "$@" | jfilter
1844 # jr() { journalctl "$@" | jfilter | less ; }
1845 # jrf() { journalctl -n 200 -f "$@" | jfilter; }
1847 jr
() { journalctl
"$@" ; }
1848 jrf
() { journalctl
-n 200 -f "$@" ; }
1851 ccomp journalctl jtail jr jrf
1853 ## old version for model01. i need to get that firmware working again.
1854 # kff() { # keyboardio firmware flash. you must hold down the tilde key
1855 # pushd /a/opt/Model01-Firmware
1856 # # if we didn't want this yes hack, then remove "shell read" from
1857 # # /a/opt/Kaleidoscope/etc/makefiles/sketch.mk
1858 # yes $'\n' | VERBOSE=1 make flash
1864 pushd /a
/opt
/Kaleidoscope
/examples
/Devices
/Keyboardio
/Model100
1870 local umask_orig name
1871 if (( $# != 1 )); then
1872 e expected
1 arg
>&2
1878 wg genkey |
tee $name-priv.key | wg pubkey
> $name-pub.key
1882 if (( $# != 2 )); then
1883 e expected
2 arg of hostname
, ip suffix
>&2
1886 local host ipsuf umask_orig
1889 mkdir
-p /p
/c
/machine_specific
/$host/filesystem
/etc
/wireguard
1891 cd /p
/c
/machine_specific
/$host/filesystem
/etc
/wireguard
1894 wg genkey |
tee hole-priv.key | wg pubkey
> hole-pub.key
1895 cat >wghole.conf
<<EOF
1897 # contents hole-priv.key
1898 PrivateKey = $(cat hole-priv.key)
1900 Address = 10.8.0.$ipsuf/24
1901 # https://dev.to/tangramvision/what-they-don-t-tell-you-about-setting-up-a-wireguard-vpn-1h2g
1902 # ||: makes the systemd service not fail due to the failed command
1903 PostUp = ping -c1 10.8.0.1 ||:
1906 # li. called wgmail on that server
1907 PublicKey = CTFsje45qLAU44AbX71Vo+xFJ6rt7Cu6+vdMGyWjBjU=
1908 AllowedIPs = 10.8.0.0/24
1909 Endpoint = 72.14.176.105:1194
1910 PersistentKeepalive = 25
1913 # old approach. systemd seems to work fine and cleaner.
1914 rm -f ..
/network
/interfaces.d
/wghole
1915 cedit
-q $host /p
/c
/machine_specific
/li
/filesystem
/etc
/wireguard
/wgmail.conf
<<EOF || [[ $? == 1 ]]
1917 PublicKey = $(cat hole-pub.key)
1918 AllowedIPs = 10.8.0.$ipsuf/32
1924 mns
() { # mount namespace
1927 s mkdir
-p /root
/mount_namespaces
1928 if ! sudo mountpoint
/root
/mount_namespaces
>/dev
/null
; then
1929 m sudo mount
--bind /root
/mount_namespaces
/root
/mount_namespaces
1931 m sudo mount
--make-private /root
/mount_namespaces
1932 if [[ ! -e /root
/mount_namespaces
/$ns ]]; then
1933 m sudo
touch /root
/mount_namespaces
/$ns
1935 if ! sudo mountpoint
/root
/mount_namespaces
/$ns >/dev
/null
; then
1936 m sudo unshare
--propagation slave
--mount=/root
/mount_namespaces
/$ns /bin
/true
1938 m sudo
-E /usr
/bin
/nsenter
--mount=/root
/mount_namespaces
/$ns "$@"
1944 mns
$ns sudo
-u iank
-E env
"PATH=$PATH" "$@"
1950 if ! s ip netns list |
grep -Fx nonet
&>/dev
/null
; then
1951 s ip netns add nonet
1953 mns
$ns --net=/var
/run
/netns
/nonet sudo
-E -u iank
/bin
/bash
1959 # l = the loopback device
1961 if [[ $1 == /* ]]; then
1964 if mns
$base mountpoint
-q /mnt
/$base; then
1967 l
=$
(losetup
-j $fs_file |
sed -rn 's/^([^ ]+): .*/\1/p' |
head -n1 ||
:)
1969 l
=$
(sudo losetup
-f)
1970 m sudo losetup
$l $fs_file
1972 if ! sudo cryptsetup status
/dev
/mapper
/$base &>/dev
/null
; then
1973 if ! m sudo cryptsetup luksOpen
$l $base; then
1974 m sudo losetup
-d $l
1978 m sudo mkdir
-p /mnt
/$base
1979 m mns
$base mount
/dev
/mapper
/$base /mnt
/$base
1980 m mns
$base chown
$USER:$USER /mnt
/$base
1984 if mns
$base mountpoint
/mnt
/$base &>/dev
/null
; then
1985 m mns
$base umount
/mnt
/$base
1987 if sudo cryptsetup status
/dev
/mapper
/$base &>/dev
/null
; then
1988 if ! m sudo cryptsetup luksClose
/dev
/mapper
/$base; then
1989 echo lom
: failed cryptsetup luksClose
/dev
/mapper
/$base
1993 l
=$
(losetup
-l --noheadings |
awk '$6 ~ /\/'$base'$/ {print $1}')
1995 m sudo losetup
-d $l
1997 echo lom
: warning
: no loopback device found
2002 # mu personality. for original, just run mp. for 2, run mp 2.
2003 # this is partly duplicated in mail-setup
2007 if ! killall mu
; then
2014 echo error
: mu not dead
2019 set -- /m
/mucache ~
/.cache
/mu
/m
/.mu ~
/.config
/mu
2024 if [[ -e $f && ! -L $f ]]; then
2027 m
ln -sf -T $target $f
2033 local md dst ln_path src two
2037 -2) two
=true
shift ;;
2049 for d
in /m
/md
/$md /m
/4e
2/$md; do
2050 if [[ -d $d && ! -L $d ]]; then
2055 if [[ ! $src ]]; then
2056 echo "error: could not find $md" >&2
2060 m
ln -sf -T $dst $ln_path
2070 ### begin copied from mdenable, but different d ###
2071 for d
in /m
/4e
/$md /m
/4e
2/$md; do
2072 if [[ -d $d && ! -L $d ]]; then
2077 if [[ ! $src ]]; then
2078 echo "error: could not find $md" >&2
2081 ### end copy from mdenable ###
2083 if [[ -L $dst ]]; then m
rm $dst; fi
2089 markdown
"$1" >/tmp
/mdtest.html
2090 firefox
/tmp
/mdtest.html
2093 mo
() { xset dpms force off
; } # monitor off
2096 # seems to be the best gpu decoding on my nvidia 670.
2097 # vlc gets similar or better framerate, but is much darker output on my test movie at least.
2102 echo 0f | sudo
tee -a /sys
/kernel
/debug
/dri
/0/pstate
2105 # going back to the default slow clock, and slower fan:
2106 # echo 07 | sudo tee -a /sys/kernel/debug/dri/0/pstate
2107 if [[ $DISPLAY ]]; then
2108 mpv
--vo=vdpau
--hwdec=auto
"$@"
2110 # waylandvk seems to work the same
2111 mpv
--gpu-context=wayland
--hwdec=auto
2116 mpv
--profile=d
"$@";
2118 # mpv all media files in . or $1
2120 local -a extensions arg
2121 # get page source of https://en.wikipedia.org/w/index.php?title=Video_file_format&action=edit
2122 # into /a/x.log, then
2123 # grep '^| *\.' /a/x.log | sed 's/| *//;s/,//g'
2125 # note: to join them together for a regex, do:
2126 # old=; for e in ${extensions[@]/./}; do if [[ ! $old ]]; then old=$e; continue; fi; echo -n "$old|"; old=$e; done; echo $e
2149 .mpg .mp2 .mpeg .mpe .mpv
2159 arg
=("(" -iname "*${extensions[0]}")
2160 for (( i
=1 ; i
< ${#extensions[@]}; i
++ )); do
2161 arg
+=(-o -iname "*${extensions[i]}")
2166 #find $dir "${arg[@]}" -size +200k
2167 find $dir "${arg[@]}" -size +200k
-exec mpv
--profile=d
'{}' +
2170 mpv
--profile=s
"$@";
2178 d
=( /var
/lib
/znc
/moddata
/log
/iank
/{freenode
,libera
} )
2179 # use * instead of -r since that does sorted order
2180 ssh root@iankelling.org
"for f in ${d[*]}; do cd \$f/#$1; grep '\<iank.*' *; done" | cut
--complement -c12-16
2183 c
/p
/c
/.purple
/logs
/jabber
/iank@fsf.org
/office@conference.fsf.org.chat
2184 for x
in *.html
; do html2text
-o ${x%.html}.txt
$x; done;
2185 # shellcheck disable=SC2016 # false positive on ${
2186 grep -A1 ') iank:' .
/*.txt \
2187 |
sed -r 's/^(.{10})[^ ]*\.txt:\(?([^ ]*)[[:space:]](..). iank:/\1_\2_\3/
2190 s/^[^ ]*\.txt:\((.{2}).(.{2}).(.{4}) (.{8}) (.{2})\)?/\3-\1-\2_\4_\5/' \
2191 |
sed -n 'x;1d;0~2{G;s/\n/ /;p};${x;p}'
2195 d
=/var
/lib
/znc
/moddata
/log
/iank
/freenode
2196 ssh root@iankelling.org
"cd $d; find . -mtime -60 -type f -exec grep '\<iank.*' {} +" |
sed -r 's,^..([^/]*)/(.{11})(.{5})(.{8}).,\2\4 \1,' |
sort
2199 # usage: debvm DEBIAN_VERSION RAM_MB
2201 local ver ram fname src
2204 # * is because it might have -backports in the name. we only expect 1 expansion
2205 fnames
=( debian-
$ver-*nocloud-
"$(dpkg --print-architecture)".qcow2
)
2206 if (( ${#fnames[@]} >= 2 )); then
2207 echo "error: iank: unexpected multiple files"
2210 fname
="${fnames[0]}"
2211 src
=/a
/opt
/roms
/$fname
2212 if [[ ! -f $src ]]; then
2213 echo debvm
: not found
$src, download from eg
: https
://cloud.debian.org
/images
/cloud
/buster
/latest
/
2217 # note, in fai-revm we do this: not sure why, maybe because of br device
2218 # --graphics spice,listen=0.0.0.0
2219 m s virt-install
--osinfo debian11
--rng /dev
/urandom
-n deb
${ver}tmp
--import -r $ram --vcpus 2 --disk /t
/$fname --graphics spice
2220 # note: to ssh into this machine will require host key generation: ssh-keygen -A
2222 # random: for cvs2git on gnu www, use debian 10. I could use trisquel,
2223 # but happen to want to try out the debian cloud images. the upstream
2224 # requires python2 and hasn't really changed since the version in d10.
2226 # apt install cvs2git cvs
2227 # # 7G was not enough
2228 # mount -o mode=1777,nosuid,nodev,size=34G -t tmpfs tmpfs /tmp
2229 # cvs2git --encoding utf_8 --fallback-encoding ascii --dumpfile=dump www-rsync/www |& tee /tmp/l
2230 ## www-rsync is an rsynced copy of the cvsfrom savannah
2234 local time time_sec time_pretty days
2236 sqlite3
-separator ' ' /p
/c
/subdir_files
/.local
/share
/gajim
/logs.db
"select time, message from logs where contact_name = 'iank' and jid_id = 17;" |
while read -r time l
; do
2241 if ! time_pretty
=$
(date +%F.
%R
-d @
$time); then
2242 echo bad
time: $time
2245 echo $time_pretty "$l"
2246 time_sec
=${time%%.*}
2247 # only look at the last 18 days. generally just use this for timesheet.
2248 if (( time_sec
< EPOCHSECONDS
- 60 * 60 * 24 * days
)); then break; fi
2253 sqlite3
-separator ' ' /p
/c
/subdir_files
/.local
/share
/gajim
/logs.db
"select time, message from logs where contact_name = 'iank'" |
less
2257 sqlite3
-separator ' ' /p
/c
/subdir_files
/.local
/share
/gajim
/logs.db
"select time, message from logs" |
less
2262 e
"lspci -nnk|gr -iA2 net"
2263 lspci
-nnk|gr
-iA2 net
2265 e
"s lshw -C network"
2267 sudo lshw
-C network
2271 ser stop NetworkManager
2272 ser disable NetworkManager
2273 ser stop NetworkManager-wait-online.service
2274 ser disable NetworkManager-wait-online.service
2276 sudo resolvconf
-d NetworkManager
2282 ser start NetworkManager
2288 oathtool
--totp -b "$*" | xclip
-selection clipboard
2291 "$@" |
& pee
"xclip -r -selection clipboard"
2296 # from http://askubuntu.com/questions/456021/remove-vocals-from-mp3-and-get-only-instrumentals
2297 pactl load-module module-ladspa-sink sink_name
=Karaoke master
=alsa_output.usb-Audioengine_Audioengine_D1-00.analog-stereo plugin
=karaoke_1409 label
=karaoke control
=-30
2300 pfind
() { #find *$1* in $PATH
2301 [[ $# != 1 ]] && { echo requires
1 argument
; return 1; }
2303 IFS
=: pathArray
=($PATH); unset IFS
2304 find "${pathArray[@]}" -iname "*$1*"
2308 # trash-restore lists everything that has been trashed at or below CWD
2309 # This picks out files just in CWD, not subdirectories,
2310 # which also match grep $1, usually use $1 for a time string
2311 # which you get from running restore-trash once first
2314 # last condition is to not ask again for ones we skipped
2315 while name
="$( echo | restore-trash | gr "$PWD/[^
/]\
+$
" | gr "$1" )" \
2316 && [[ $name ]] && (( $
(wc -l <<<"$name") >= nth
)); do
2317 name
="$(echo "$name" | head -n $nth | tail -n 1 )"
2318 read -r -p "$name [Y/n] " ask
2319 if [[ ! $ask ||
$ask == [Yy
] ]]; then
2320 x
=$
( echo "$name" | gr
-o "^\s*[0-9]*" )
2321 echo $x | restore-trash
> /dev
/null
2322 elif [[ $ask == [Nn
] ]]; then
2332 rld
/a
/h
/_site
/ li
:/var
/www
/iankelling.org
/html
2337 # fixes the menu bar in xmonad. this won\'t be needed when xmonad
2338 # packages catches up on some changes in future (this is written in
2341 # geekosaur: so youll want to upgrade to xmonad 0.13 or else use a
2342 # locally modified XMonad.Hooks.ManageDocks that doesnt set the
2343 # work area; turns out it\'s impossible to set correctly if you are
2344 # not a fully EWMH compliant desktop environment
2346 # geekosaur: chrome shows one failure mode, qt/kde another, other
2347 # gtk apps a third, ... I came up with a setting that works for me
2348 # locally but apparently doesnt work for others, so we joined the
2349 # other tiling window managers in giving up on setting it at all
2351 xprop
-root -remove _NET_WORKAREA
2355 # reviewboard, used at my old job
2356 #rbpipe() { rbt post -o --diff-filename=- "$@"; }
2357 #rbp() { rbt post -o "$@"; }
2365 r2e
() { command r2e
-d /p
/c
/rss2email.json
-c /p
/c
/rss2email.cfg
"$@"; }
2366 # only run on MAIL_HOST. simpler to keep this on one system.
2367 r2eadd
() { # usage: name url
2368 # initial setup of rss2email:
2369 # r2e new r2e@iankelling.org
2370 # that initializes files, and sets default email.
2371 # symlink to the config doesnt work, so I copied it to /p/c
2372 # and then use cli option to specify explicit path.
2373 # Only option changed from default config is to set
2376 # or else for a few feeds, the from address is set by the feed, and
2377 # if I fail delivery, then I send a bounce message to that from
2378 # address, which makes me be a spammer.
2380 r2e add
$1 "$2" $1@r2e.iankelling.org
2381 # get up to date and dont send old entries now:
2382 r2e run
--no-send $1
2385 rspicy
() { # usage: HOST DOMAIN
2386 # connect to spice vm remote host. use vspicy for local host
2388 # shellcheck disable=SC2087
2390 sudo virsh dumpxml $2|grep "<graphics.*type='spice'" | \
2391 sed -rn "s/.*port='([0-9]+).*/\1/p"
2394 if [[ $port ]]; then
2395 spicy
-h $1 -p $port
2397 echo "error: no port found. check that the domain is running."
2403 # s gem install scss-lint
2404 pushd /a
/opt
/thoughtbot-guides
2407 scss-lint
-c /a
/opt
/thoughtbot-guides
/style
/sass
/.scss-lint.yml
"$@"
2411 sk
-e 2120,245 /b
/ds
/brc
/b
/ds
/brc2
2416 out
=${2:-${1%.*}.sh}
2418 script -t -c "mpv --no-config --no-resume-playback --no-terminal --no-audio-display '$1'" $tmp/typescript
2>$tmp/timing
2419 # todo, the current sleep seems pretty good, but it
2420 # would be nice to have an empirical measurement, or
2421 # some better wait to sync up.
2423 # note: --loop-file=no prevents it from hanging if you have that
2424 # set to inf the mpv config.
2425 # --loop=no prevents it from exit code 3 due to stdin if you
2426 # had it set to inf in mpv config.
2428 # args go to mpv, for example --volume=80, 50%
2429 cat >$out <<EOFOUTER
2431 trap "trap - TERM && kill 0" INT TERM ERR; set -e
2432 ( sleep .2; scriptreplay <( cat <<'EOF'
2436 $(cat $tmp/typescript)
2439 base64 -d - <<'EOF'| mpv --loop=no --loop-file=no --no-terminal --no-audio-display "\$@" -
2448 smeld
() { # ssh meld usage host1 host2 file
2449 meld
<(ssh $1 cat $3) <(ssh $2 cat $3)
2453 PATH
=/usr
/local
/spdhackfix
:$PATH command spd
"$@"
2456 spamf
() { # spamtest on FILE
2457 local spamcpre spamdpid
2459 if (( $# != 1 )); then
2460 e spamtest error
: expected
1 arg
, filename
>&2
2464 spamdpid
=$
(systemctl status spamassassin|
sed -n '/^ *Main PID:/s/[^0-9]//gp')
2465 spamcpre
="nsenter -t $spamdpid -n -m"
2466 s
$spamcpre sudo
-u Debian-exim spamassassin
-t --cf='score PYZOR_CHECK 0' <"$1"
2472 declare -gi _seq
; _seq
+=1
2473 echo "test body" | m
mail -s "test mail from $HOSTNAME, $_seq" "${@:-root@localhost}"
2474 # for testing to send from an external address, you can do for example
2475 # -fian@iank.bid -aFrom:ian@iank.bid web-6fnbs@mail-tester.com
2476 # note in exim, you can retry a deferred message
2478 # MSG_ID is in /var/log/exim4/mainlog, looks like 1ccdnD-0001nh-EN
2481 # to test sieve, use below command. for fsf mail, see offlineimap-sync script
2482 # make modifications, then copy to live file, use -eW to actually modify mailbox
2484 # Another option is to use sieve-test SCRIPT MAIL_FILE. note,
2485 # sieve-test doesnt know about envelopes, Im not sure if sieve-filter does.
2487 # sieve with output filter. arg is mailbox, like INBOX.
2488 # This depends on dovecot conf, notably mail_location in /etc/dovecot/conf.d/10-mail.conf
2490 # always run this first, edit the test files, then run the following
2492 sieve-filter ~
/sieve
/maintest.sieve
${1:-INBOX} delete
2> >(head; tail) >/tmp
/testsieve.log
&& sed -rn '/^Performed actions:/,/^[^ ]/{/^ /p}' /tmp
/testsieve.log |
sort |
uniq -c
2495 c ~
/sieve
; cp personal
{test,}.sieve
; cp lists
{test,}.sieve
; cp personalend
{test,}.sieve
2496 sieve-filter
-eWv ~
/sieve
/maintest.sieve
${1:-INBOX} delete
&> /tmp
/testsieve.log
2497 sed -r '/^info: filtering:/{h;d};/^info: msgid=$/N;/^info: msgid=.*left message in mailbox [^ ]+$/d;/^info: msgid=/{H;g};/^info: message kept in source mailbox.$/d' /tmp
/testsieve.log
2502 # printf "subject\nbody\n" | alertme
2507 To: alerts@iankelling.org
2514 To: alerts@iankelling.org
2526 To: daylert@iankelling.org
2533 To: daylert@iankelling.org
2542 # alert when a page goes live.
2544 local quiet url tmpdir
2547 # dont send a diff of the html. some html is not very readable
2553 tmpdir
="$(mktemp -d)"
2556 if wget
-q "$url"; then
2563 sleep $
(( 120 + RANDOM
% 300 ))
2567 # alert on changes to a webpage (just the base page that curl gets)
2568 # usage: weblert URL [SUBJECT...]
2570 local u old new quiet
2573 # dont send a diff of the html. some html is not very readable
2580 subject
="${*:-weblert}"
2581 old
=$
(curl
-s "$u") ||
:
2583 new
=$
(curl
-s "$u") ||
:
2584 if [[ $old && $new ]]; then
2585 if [[ $new != "$old" ]]; then
2587 echo | daylertme
"$subject"
2589 diff <(printf "%s\n" "$old") <(printf "%s\n" "$new") | daylertme
"$subject" ||
:
2594 sleep $
(( 60 + RANDOM
% 120 ))
2600 # shellcheck disable=SC1090 # expected
2601 source "$(type -p torsocks)" on
2605 less /var
/log
/exim
4/mymain
2611 # testmail above calls sendmail, which is a link to exim/postfix.
2612 # its docs dont say a way of adding an argument
2613 # to sendmail to turn on debug output. We could make a wrapper, but
2614 # that is a pain. Exim debug args are documented here:
2615 # http://www.exim.org/exim-html-current/doc/html/spec_html/ch-the_exim_command_line.html
2617 # http://www.exim.org/exim-html-current/doc/html/spec_html/ch-building_and_installing_exim.html
2618 # note, for exim daemon, you can turn on debug options by
2619 # adding -d, etc to COMMONOPTIONS in
2620 # /etc/default/exim4
2622 # to specify recipients other than those in to, cc, bcc, you can use the cli args, eg:
2623 # exim -t 'test@zroe.org, t2@zroe.org' <<'EOF'
2625 # -t = get recipient from header
2627 From: root@$(hostname -f)
2628 To: root@$(hostname -f)
2631 This is a test message.
2638 exim
-d -f '<>' $to <<EOF
2639 From: Mail Delivery System <Mailer-Daemon@gnu.org>
2641 Subject: Mail delivery failed: returning message to sender
2643 This message was created automatically by mail delivery software.
2652 # https://askubuntu.com/questions/160945/is-there-a-way-to-disable-a-laptops-internal-keyboard
2653 id
=$
(xinput
--list --id-only 'AT Translated Set 2 keyboard')
2654 if xinput list |
grep -F '∼ AT Translated Set 2 keyboard' &>/dev
/null
; then
2655 echo enabling keyboard
2656 # find the first slave keyboard number, they are all the same in my output.
2657 # if they werent, worst case we would need to save the slave number somewhere
2658 # when it got disabled.
2659 slave
=$
(xinput list |
sed -n 's/.*slave \+keyboard (\([0-9]*\)).*/\1/p' |
head -n1)
2660 xinput reattach
$id $slave
2669 (sleep "$(calc "$
* * 60")" && mpv
--no-config --volume 50 /a
/bin
/data
/alarm.mp3
) > /dev
/null
2>&1 &
2672 trg
() { transmission-remote-gtk
& r
; }
2674 # example, set global upload limit to 100 kilobytes:
2676 TR_AUTH
=":$(jq -r .profiles[0].password ~/.config/transmission-remote-gtk/config.json)" transmission-remote transmission.lan
-ne "$@"
2683 for (( i
=0; i
< retries
- 1; i
++ )); do
2695 if [[ -e $1 && ! -w $1 ||
! -w $
(dirname "$1") ]]; then
2698 # full path for using in some initial setup steps
2705 ecmd
="/usr/sbin/exim4 -C /etc/exim4/my.conf"
2706 if ip a show veth1-mail
&>/dev
/null
; then
2710 pid
=$
(pgrep
-f "/usr/sbin/exim4 -bd -q30m -C /etc/exim4/my.conf"|h1
)
2711 m s nsenter
-t $pid -n -m $ecmd "$@"
2714 # get pid of systemd service
2718 pid
=$
(systemctl show
--property MainPID
--value "$unit")
2723 dir
=/sys
/fs
/cgroup
/system.slice
2724 if [[ ! -d $dir ]]; then
2725 # t10 and older directory.
2726 dir
=/sys
/fs
/cgroup
/systemd
/system.slice
2729 # 0 or empty. This file includes the MainPid, so I expect we
2730 # could just get this in the first place, but i don't know if that
2731 # is always the case.
2732 pid
=$
(head -n1 $dir/${unit%.service}.service
/cgroup.procs
)
2736 printf "%s\n" "$pid"
2742 sdnbash
() { # systemd namespace bash
2744 if (( $# != 1 )); then
2745 echo $0: error wrong number of args
>&2
2749 pid
=$
(servicepid
$unit)
2750 m sudo nsenter
-t $pid -n -m sudo
-u $USER -i bash
2753 sdnbashroot
() { # systemd namespace bash
2755 if (( $# != 1 )); then
2756 echo $0: error wrong number of args
>&2
2760 pid
=$
(servicepid
$unit)
2761 m sudo nsenter
-t $pid -n -m bash
2765 sdncmd
() { # systemd namespace cmd
2767 if (( $# <= 2 )); then
2768 echo $0: error wrong number of args
>&2
2773 pid
=$
(servicepid
$unit)
2774 m sudo nsenter
-t $pid -n -m sudo
-u $USER -i "$@"
2782 # we use wireguard now, use mailnnbash.
2784 # m sudo nsenter -t $(pgrep -f "/usr/sbin/openvpn .* --config /etc/openvpn/.*mail.conf") -n -m sudo -u $USER -i bash
2789 pid
=$
(pgrep
-f "/usr/sbin/exim4 -bd -q30m -C /etc/exim4/my.conf"|h1
)
2790 if [[ ! $pid ]]; then
2791 echo "eximbash: failed to find exim pid. systemctl -n 30 status exim4:"
2792 systemctl status exim4
2794 m sudo nsenter
-t $pid -n -m
2798 spamdpid
=$
(systemctl show
--property MainPID
--value spamassassin
)
2799 m sudo nsenter
-t $spamdpid -n -m sudo
-u Debian-exim spamassassin
"$@"
2802 m sudo nsenter
-t "$(systemctl status unbound| sed -n '/^ *Main PID:/s/[^0-9]//gp')" -n -m sudo
-u $USER -i bash
2806 s nmtui-connect
"$@"
2810 local unit pid ns mailnn
2811 # mailvpn would belong on the list if using openvpn
2812 for unit
in mailnn unbound dovecot spamassassin exim4 radicale
; do
2813 pid
=$
(servicepid
$unit)
2814 echo debug
: unit
=$unit pid
=$pid
2815 if [[ ! $pid ]]; then
2816 echo failed to
find pid
for unit
=$unit
2819 if ! ns
=$
(s readlink
/proc
/$pid/ns
/net
); then
2820 echo failed to
find ns
for unit
=$unit pid
=$pid
2823 if [[ $mailnn ]]; then
2824 if [[ $ns != "$mailnn" ]]; then
2825 echo "$unit ns $ns != $mailnn"
2836 m sudo
-E env
"PATH=$PATH" nsenter
-t "$(pgrep -f "/usr
/sbin
/openvpn .
* --config /etc
/openvpn
/.
*client.conf
")" -n "$@"
2840 vpncmd sudo
-u iank env
"PATH=$PATH" "$@"
2848 if [[ -e /lib
/systemd
/system
/openvpn-client@.service
]]; then
2849 local vpn_service
=openvpn-client
2851 local vpn_service
=openvpn
2854 [[ $1 ]] ||
{ echo need arg
; return 1; }
2855 journalctl
--unit=$vpn_service@
$1 -f -n0 &
2856 # sometimes the journal doesnt open until after the vpn output
2857 # has happened. hoping this fixes that.
2859 sudo systemctl start
$vpn_service@
$1
2860 # sometimes the ask-password agent does not work and needs a delay.
2862 # https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=779240
2863 # noticed around 8-2017 after update from around stretch release
2864 # on debian testing, even though the bug is much older.
2865 sudo systemd-tty-ask-password-agent
2870 ls -lad /run
/user
/1000
2871 stats
=$
(stat
-c%a-
%g-
%u
/run
/user
/1000)
2872 if [[ $stats != 700-1000-1000 ]]; then
2873 m s
chmod 700 /run
/user
/1000; m s chown iank.iank
/run
/user
/1000
2877 # systemctl is-enabled / status / cat says nothing, instead theres
2878 # some obscure symlink. paths copied from man systemd.unit.
2879 # possibly also usefull, but incomplete, doesnt show units not loaded in memory:
2880 # seru list-dependencies --reverse --all UNIT
2883 local -a dirs search
2889 ~
/.config
/systemd
/user.control
/*
2890 $XDG_RUNTIME_DIR/systemd
/user.control
/*
2891 $XDG_RUNTIME_DIR/systemd
/transient
/*
2892 $XDG_RUNTIME_DIR/systemd
/generator.early
/*
2893 ~
/.config
/systemd
/user
/*
2895 $XDG_RUNTIME_DIR/systemd
/user
/*
2897 $XDG_RUNTIME_DIR/systemd
/generator
/*
2898 ~
/.local
/share
/systemd
/user
/*
2899 /usr
/lib
/systemd
/user
/*
2900 $XDG_RUNTIME_DIR/systemd
/generator.late
/*
2905 /etc
/systemd
/system.control
/*
2906 /run
/systemd
/system.control
/*
2907 /run
/systemd
/transient
/*
2908 /run
/systemd
/generator.early
/*
2909 /etc
/systemd
/system
/*
2910 /etc
/systemd
/systemd.attached
/*
2911 /run
/systemd
/system
/*
2912 /run
/systemd
/systemd.attached
/*
2913 /run
/systemd
/generator
/*
2914 /lib
/systemd
/system
/*
2915 /run
/systemd
/generator.late
/*
2919 for f
in "${search[@]}"; do
2920 [[ -d $f ]] ||
continue
2927 # dirs is just so we write out the directory names, ls does it when there is 2 or more dirs.
2943 read -r _ link _ istls
< <(resolvectl dnsovertls tunfsf
)
2946 *) echo fixvpndns error
: unexpected istls value
: $istls >&2; return 1 ;;
2948 s busctl call org.freedesktop.resolve1
/org
/freedesktop
/resolve1 org.freedesktop.resolve1.Manager SetLinkDNSOverTLS is
$link no
2952 [[ $1 ]] ||
{ echo need arg
; return 1; }
2953 if [[ -e /lib
/systemd
/system
/openvpn-client@.service
]]; then
2954 local vpn_service
=openvpn-client
2956 local vpn_service
=openvpn
2958 sudo systemctl stop
$vpn_service@
$1
2960 vpnoffc
() { # vpn off client
2961 ser stop openvpn-client-tr@client
2964 ser start openvpn-client-tr@client
2968 vspicy
() { # usage: VIRSH_DOMAIN
2969 # connect to vms made with virt-install
2970 spicy
-p "$(sudo virsh dumpxml "$1"|grep "<graphics.
*type='spice'"|\
2971 sed -r "s
/.
*port
='([0-9]+).*/\1/")"
2975 cat-new-files /m/4e/INBOX/new
2978 wtr() { curl wttr.in/boston; }
2980 xevkb() { xev -event keyboard; }
2985 printf "running: %s\n" "$*"
2989 f=/a/f/ansible-configs/files/common/etc/fsf-workstation-bashrc.sh
2990 if [[ -e $f ]]; then
2991 # shellcheck disable=SC1090
2996 # https://electrum.readthedocs.io/en/latest/tor.html
2997 # https://github.com/spesmilo/electrum-docs/issues/129
2998 s rsync -ptog --chown bitcoin:bitcoin ~/.Xauthority /var/lib/bitcoind/.Xauthority
2999 sudo -u bitcoin DISPLAY=$DISPLAY XAUTHORITY=/var/lib/bitcoind/.Xauthority /a/opt/electrum-4.2.1-x86_64.AppImage -p socks5:localhost:9050
3002 sudo -u bitcoin DISPLAY=$DISPLAY XAUTHORITY=/var/lib/bitcoind/.Xauthority /a/opt/monero-gui-v0.17.3.2/monero-wallet-gui
3008 rg "$@" /p/pd.org /p/w.org /a/t.org /a/work.org /b
3012 # we also have a file in /a/c/...konsole...
3013 local f=$HOME/.config/konsolerc
3014 setini DefaultProfile profileian.profile "Desktop Entry" $f
3015 setini Favorites profileian.profile "Favorite Profiles" $f
3016 setini ShowMenuBarByDefault false KonsoleWindow $f
3017 setini TabBarPosition Top TabBar $f
3021 while read -r k v; do
3022 # shellcheck disable=SC2154
3023 setini $k $v sakura /a/c/subdir_files/.config/sakura/sakura.conf
3025 colorset1_back rgb(33,37,39)
3029 disable_numbered_tabswitch true
3030 scroll_lines 10000000
3035 # make a page of links found in the files $@. redirect output
3037 gr -oh 'https?
:\
/\
/(www\.
)?
[-a-zA-Z0-9@
:%._\
+~
#=]{1,256}\.[a-zA-Z0-9()]{1,6}\b([-a-zA-Z0-9()@:%_\+.~#?&//=]*)' "$@" | \
3038 rev |
sort -u |
rev |
sed 's,.*,<a href="\0">\0</a><br\>,'
3041 reset-xscreensaver
() {
3042 # except for spash, i set these by setting gui options in
3043 # xscreensaver-command -demo
3044 # then finding the corresponding option in .xscreensaver
3045 # spash, i happened to notice in .xscreensaver
3047 # dpmsOff, monitor doesnt come back on using old free software supported nvidia card
3048 cat > /home
/iank
/.xscreensaver
<<'EOF'
3051 dpmsStandby: 0:07:00
3052 dpmsSuspend: 0:08:00
3056 lockTimeout: 0:06:00
3063 # very useful, copy directory structure 3 deep. add remove /*/ to change level
3064 # rsync -aivh --exclude '/*/*/*/' -f"+ */" -f"- *" SRC DEST
3067 # * stuff that makes sense to be at the end
3068 if [[ "$SUDOD" ]]; then
3069 # allow failure, for example if we are sudoing into a user with diffferent/lesser permissions.
3072 elif [[ -d /a
]] && [[ $PWD == "$HOME" ]] && [[ $
- == *i
* ]]; then
3080 # for mitmproxy to get a newer python.
3081 # commented until i want to use it because it
3082 # noticably slows bash startup
3086 if [[ $EUID == 0 ||
! -e ~
/.pyenv
/bin
]]; then
3087 echo "error: dont be root. make sure pyenv is installed"
3090 export PATH
="$HOME/.pyenv/bin:$PATH"
3091 eval "$(pyenv init -)"
3092 eval "$(pyenv virtualenv-init -)"
3096 export GOPATH
=$HOME/go
3097 path-add
$GOPATH/bin
3098 path-add
/usr
/local
/go
/bin
3100 # I have the git repo and a release. either one should work.
3101 # I have both because I was trying to solve an issue that
3102 # turned out to be unrelated.
3103 # ARDUINO_PATH=/a/opt/Arduino/build/linux/work
3105 ## i should have documented this...
3106 # based on https://github.com/keyboardio/Kaleidoscope
3107 export KALEIDOSCOPE_DIR
=/a
/opt
/Kaleidoscope
3109 # They want to be added to the start, but i think
3110 # that should be avoided unless we really need it.
3111 path-add
--end ~
/.npm-global
3114 path-add
--end $HOME/.cargo
/bin
3116 if type -P rg
&>/dev
/null
; then
3117 # --no-messages because of annoying errors on broken symlinks
3118 # -z = search .gz etc files
3119 # -. = search dotfilesq
3120 rg
() { command rg
-.
-z --no-messages -L -i -M 900 --no-ignore-parent --no-ignore-vcs -g '!.git' -g '!auto-save-list' -g '!.savehist' "$@" ||
return $?
; }
3121 #fails if not exist. ignore
3122 complete
-r rg
2>/dev
/null ||
:
3129 # taken from default changes to bashrc and bash_profile
3130 path-add
--end --ifexists $HOME/.rvm
/bin
3131 # also had ruby bin dir, but moved that to environment.sh
3132 # so its included in overall env
3135 export BASEFILE_DIR
=/a
/bin
/fai-basefiles
3137 #export ANDROID_HOME=/a/opt/android-home
3138 # https://f-droid.org/en/docs/Installing_the_Server_and_Repo_Tools/
3139 #export USE_SDK_WRAPPER=yes
3140 #PATH=$PATH:$ANDROID_HOME/tools:$ANDROID_HOME/platform-tools
3142 # didnt get drush working, if I did, this seems like the
3143 # only good thing to include for it.
3144 # Include Drush completion.
3145 # if [ -f "/home/ian/.drush/drush.complete.sh" ] ; then
3146 # source /home/ian/.drush/drush.complete.sh
3153 # https://wiki.archlinux.org/index.php/Xinitrc#Autostart_X_at_login
3154 # i added an extra condition as gentoo xorg guide says depending on
3155 # $DISPLAY is fragile.
3156 if [[ ! $DISPLAY && $XDG_VTNR == 1 ]] && shopt -q login_shell
&& isarch
; then
3161 # ensure no bad programs appending to this file will have an affect