scifijunkie
be8809e62b
Upgraded Packer from 1.8.3 To 1.8.5 changed task Upgrade pip and install rpi-hardware-pwm changed task Install pwnagotchi from source archive changed task Install bettercap (update build script for releasing #134) Removed a redundant task install bettercap caplets Added retries and until to all 4 git clone related tasks Reran pip-compile which upgraded Python packages in the requirements.txt
719 lines
22 KiB
YAML
719 lines
22 KiB
YAML
---
|
|
- hosts:
|
|
- 127.0.0.1
|
|
gather_facts: yes
|
|
become: yes
|
|
vars:
|
|
pwnagotchi:
|
|
hostname: "{{ lookup('env', 'PWN_HOSTNAME') | default('pwnagotchi', true) }}"
|
|
version: "{{ lookup('env', 'PWN_VERSION') | default('master', true) }}"
|
|
system:
|
|
boot_options:
|
|
- "dtoverlay=dwc2"
|
|
- "dtoverlay=spi1-3cs"
|
|
- "dtoverlay=pwm-2chan,pin=12,func=4,pin2=13,func2=4"
|
|
- "dtparam=spi=on"
|
|
- "dtparam=i2c_arm=on"
|
|
- "dtparam=i2c1=on"
|
|
- "gpu_mem=16"
|
|
modules:
|
|
- "i2c-dev"
|
|
services:
|
|
enable:
|
|
- dphys-swapfile.service
|
|
- pwnagotchi.service
|
|
- bettercap.service
|
|
- pwngrid-peer.service
|
|
- epd-fuse.service
|
|
- fstrim.timer
|
|
disable:
|
|
- apt-daily.timer
|
|
- apt-daily.service
|
|
- apt-daily-upgrade.timer
|
|
- apt-daily-upgrade.service
|
|
- wpa_supplicant.service
|
|
- bluetooth.service
|
|
- triggerhappy.service
|
|
- ifup@wlan0.service
|
|
- dnsmasq.service
|
|
packages:
|
|
bettercap:
|
|
# We will install bettercap v2.32 from source
|
|
# url: "https://github.com/bettercap/bettercap/releases/download/v2.31.0/bettercap_linux_armhf_v2.31.0.zip"
|
|
ui: "https://github.com/bettercap/ui/releases/download/v1.3.0/ui.zip"
|
|
pwngrid:
|
|
url: "https://github.com/evilsocket/pwngrid/releases/download/v1.10.3/pwngrid_linux_armhf_v1.10.3.zip"
|
|
apt:
|
|
hold:
|
|
- firmware-atheros
|
|
- firmware-brcm80211
|
|
- firmware-libertas
|
|
- firmware-misc-nonfree
|
|
- firmware-realtek
|
|
remove:
|
|
- raspberrypi-net-mods
|
|
- dhcpcd5
|
|
- triggerhappy
|
|
- wpa_supplicant
|
|
- nfs-common
|
|
# Remove every golang package because we will install go-1.20.2
|
|
- golang*
|
|
- python2*
|
|
install:
|
|
- rsync
|
|
- vim
|
|
- screen
|
|
- git
|
|
- build-essential
|
|
- python3-pip
|
|
- python3-mpi4py
|
|
- python3-smbus
|
|
- unzip
|
|
- gawk
|
|
- libopenmpi-dev
|
|
- libatlas-base-dev
|
|
- libjasper-dev
|
|
- libgtk-3-0
|
|
- libqtgui4
|
|
- libqt4-test
|
|
- libopenjp2-7
|
|
- libtiff5
|
|
- tcpdump
|
|
- lsof
|
|
- libilmbase23
|
|
- libopenexr23
|
|
- libgstreamer1.0-0
|
|
- libavcodec58
|
|
- libavformat58
|
|
- libswscale5
|
|
- libpcap-dev
|
|
- libusb-1.0-0-dev
|
|
- libnetfilter-queue-dev
|
|
- libopenmpi3
|
|
- dphys-swapfile
|
|
- libraspberrypi0
|
|
- libraspberrypi-dev
|
|
- libraspberrypi-doc
|
|
- libraspberrypi-bin
|
|
- fonts-dejavu
|
|
- fonts-dejavu-core
|
|
- fonts-dejavu-extra
|
|
- python3-pil
|
|
- python3-smbus
|
|
- libfuse-dev
|
|
- bc
|
|
- fonts-freefont-ttf
|
|
- fbi
|
|
- fonts-ipaexfont-gothic
|
|
- cryptsetup
|
|
- dnsmasq
|
|
- aircrack-ng
|
|
- raspberrypi-kernel-headers
|
|
- libgmp3-dev
|
|
- qpdf
|
|
- bison
|
|
- flex
|
|
- make
|
|
- autoconf
|
|
- libtool
|
|
- texinfo
|
|
- binutils
|
|
- lnav
|
|
- p7zip-full
|
|
|
|
environment:
|
|
ARCHFLAGS: "-arch armv7l"
|
|
|
|
tasks:
|
|
- name: System details
|
|
debug:
|
|
msg="{{ item }}"
|
|
with_items:
|
|
- "{{ ansible_distribution }}"
|
|
- "{{ ansible_distribution_version }}"
|
|
- "{{ ansible_distribution_major_version }}"
|
|
- "{{ ansible_architecture }}"
|
|
- "{{ ansible_machine }}"
|
|
- name: change hostname
|
|
hostname:
|
|
name: "{{pwnagotchi.hostname}}"
|
|
when: lookup('file', '/etc/hostname') == "raspberrypi"
|
|
register: hostname
|
|
|
|
- name: add hostname to /etc/hosts
|
|
lineinfile:
|
|
dest: /etc/hosts
|
|
regexp: '^127\.0\.1\.1[ \t]+raspberrypi'
|
|
line: "127.0.1.1\t{{pwnagotchi.hostname}}"
|
|
state: present
|
|
when: hostname.changed
|
|
|
|
- name: disable sap plugin for bluetooth.service
|
|
lineinfile:
|
|
dest: /lib/systemd/system/bluetooth.service
|
|
regexp: '^ExecStart=/usr/lib/bluetooth/bluetoothd$'
|
|
line: 'ExecStart=/usr/lib/bluetooth/bluetoothd --noplugin=sap'
|
|
state: present
|
|
|
|
- name: add firmware packages to hold
|
|
dpkg_selections:
|
|
name: "{{ item }}"
|
|
selection: hold
|
|
with_items: "{{ packages.apt.hold }}"
|
|
|
|
- name: update apt package cache
|
|
apt:
|
|
update_cache: yes
|
|
|
|
- name: remove unecessary apt packages
|
|
apt:
|
|
name: "{{ packages.apt.remove }}"
|
|
state: absent
|
|
purge: yes
|
|
|
|
- name: upgrade apt distro
|
|
apt:
|
|
upgrade: dist
|
|
|
|
- name: install packages
|
|
apt:
|
|
name: "{{ packages.apt.install }}"
|
|
state: present
|
|
|
|
- name: Update .bashrc (root)
|
|
blockinfile:
|
|
dest: /root/.bashrc
|
|
state: present
|
|
block: |
|
|
export MAKEFLAGS=-j$(nproc)
|
|
insertafter: EOF
|
|
|
|
- name: configure dphys-swapfile
|
|
lineinfile:
|
|
path: /etc/dphys-swapfile
|
|
regexp: "^CONF_SWAPSIZE=.*$"
|
|
line: "CONF_SWAPSIZE=512"
|
|
|
|
- name: clone papirus repository
|
|
git:
|
|
repo: https://github.com/repaper/gratis.git
|
|
dest: /usr/local/src/gratis
|
|
retries: 5000
|
|
delay: 5
|
|
register: gratisgit
|
|
until: gratisgit is succeeded
|
|
|
|
- name: build papirus service
|
|
make:
|
|
chdir: /usr/local/src/gratis
|
|
target: rpi
|
|
params:
|
|
EPD_IO: epd_io_free_uart.h
|
|
PANEL_VERSION: 'V231_G2'
|
|
when: gratisgit.changed
|
|
|
|
- name: install papirus service
|
|
make:
|
|
chdir: /usr/local/src/gratis
|
|
target: rpi-install
|
|
params:
|
|
EPD_IO: epd_io_free_uart.h
|
|
PANEL_VERSION: 'V231_G2'
|
|
when: gratisgit.changed
|
|
|
|
- name: configure papirus display size
|
|
lineinfile:
|
|
dest: /etc/default/epd-fuse
|
|
regexp: "#EPD_SIZE=2.0"
|
|
line: "EPD_SIZE=2.0"
|
|
|
|
- name: Delete papirus content & directory
|
|
file:
|
|
state: absent
|
|
path: /usr/local/src/gratis
|
|
when: gratisgit.changed
|
|
|
|
# pip v20.3 uses a newer dependency resolver that better handles our unique situation.
|
|
# Specifically, it handles mismatches between direct requirements without extras and
|
|
# indirect requirements that do want extras (e.g. gym vs stable-baselines->gym[atari]).
|
|
- name: Upgrade pip and install rpi-hardware-pwm
|
|
shell: "python3 -m pip install pip>=20.3 rpi-hardware-pwm --verbose --retries 5000"
|
|
args:
|
|
executable: /bin/bash
|
|
|
|
# We need the --ignore-installed option so that pip simply overwrites/upgrades existing
|
|
# packages instead of trying to uninstall them first. While this sounds dangerous,
|
|
# this matches the legacy behavior of pip. This is required to prevent pip from trying
|
|
# (and failing) to uninstall python packages that were originally installed via apt.
|
|
- name: Install pwnagotchi from source archive
|
|
shell: "python3 -m pip install /usr/local/src/pwnagotchi/pwnagotchi-{{ pwnagotchi.version }}.tar.gz --verbose --ignore-installed --retries 5000"
|
|
args:
|
|
executable: /bin/bash
|
|
|
|
- name: create custom plugin directory
|
|
file:
|
|
path: /usr/local/share/pwnagotchi/custom-plugins/
|
|
state: directory
|
|
|
|
- name: clone pwnagotchi plugins repository
|
|
git:
|
|
repo: https://git.chadwaltercummings.me/scifijunkie/pwnagotchi-plugins-contrib.git
|
|
dest: /usr/local/share/pwnagotchi/available-plugins
|
|
retries: 5000
|
|
delay: 5
|
|
register: pwnagotchipluginsgit
|
|
until: pwnagotchipluginsgit is succeeded
|
|
|
|
- name: Copy aircrackonly.py
|
|
copy:
|
|
src: /usr/local/share/pwnagotchi/available-plugins/aircrackonly.py
|
|
dest: /usr/local/share/pwnagotchi/custom-plugins/aircrackonly.py
|
|
owner: root
|
|
group: root
|
|
mode: '644'
|
|
|
|
- name: Copy handshakes-dl.py
|
|
copy:
|
|
src: /usr/local/share/pwnagotchi/available-plugins/handshakes-dl.py
|
|
dest: /usr/local/share/pwnagotchi/custom-plugins/handshakes-dl.py
|
|
owner: root
|
|
group: root
|
|
mode: '644'
|
|
|
|
- name: download and install pwngrid
|
|
unarchive:
|
|
src: "{{ packages.pwngrid.url }}"
|
|
dest: /usr/bin
|
|
remote_src: yes
|
|
mode: 0755
|
|
|
|
# Install go-1.21.5
|
|
- name: Install go-1.21.5
|
|
unarchive:
|
|
src: https://go.dev/dl/go1.21.5.linux-armv6l.tar.gz
|
|
dest: /usr/local
|
|
remote_src: yes
|
|
register: golang
|
|
|
|
- name: Update .bashrc for go-1.21.5 (pi)
|
|
blockinfile:
|
|
dest: /home/pi/.bashrc
|
|
state: present
|
|
block: |
|
|
export GOPATH=$HOME/go
|
|
export PATH=/usr/local/go/bin:$PATH:$GOPATH/bin
|
|
insertafter: EOF
|
|
when: golang.changed
|
|
|
|
- name: Install bettercap v2.32
|
|
shell: "export GOPATH=$HOME/go && export PATH=/usr/local/go/bin:$PATH:$GOPATH/bin && git clone https://github.com/bettercap/bettercap.git && cd bettercap/ && make build && make install"
|
|
args:
|
|
executable: /bin/bash
|
|
register: bettercap
|
|
|
|
- name: Link bettercap v2.32
|
|
command: ln -s /usr/local/bin/bettercap /usr/bin/bettercap
|
|
when: bettercap.changed
|
|
|
|
- name: clone bettercap caplets
|
|
git:
|
|
repo: https://github.com/bettercap/caplets.git
|
|
dest: /tmp/caplets
|
|
retries: 5000
|
|
delay: 5
|
|
register: capletsgit
|
|
until: capletsgit is succeeded
|
|
|
|
- name: install bettercap caplets
|
|
make:
|
|
chdir: /tmp/caplets
|
|
target: install
|
|
when: capletsgit.changed
|
|
|
|
- name: download and install bettercap ui
|
|
unarchive:
|
|
src: "{{ packages.bettercap.ui }}"
|
|
dest: /usr/local/share/bettercap/
|
|
remote_src: yes
|
|
mode: 0755
|
|
|
|
# Install nexmon to fix wireless scanning (takes 2.5G of space)
|
|
- name: clone nexmon repository
|
|
git:
|
|
repo: https://github.com/seemoo-lab/nexmon.git
|
|
dest: /usr/local/src/nexmon
|
|
# version: bfb3fe90c881498d7ee245b38f16722c1de26fa1
|
|
retries: 5000
|
|
delay: 5
|
|
register: nexmongit
|
|
until: nexmongit is succeeded
|
|
|
|
- name: configure libisl
|
|
command: chdir=/usr/local/src/nexmon/buildtools/isl-0.10/ ./configure
|
|
|
|
- name: make libisl
|
|
command: chdir=/usr/local/src/nexmon/buildtools/isl-0.10/ make
|
|
|
|
- name: install libisl
|
|
command: chdir=/usr/local/src/nexmon/buildtools/isl-0.10/ make install
|
|
|
|
- name: link libisl
|
|
command: ln -s /usr/local/lib/libisl.so /usr/lib/arm-linux-gnueabihf/libisl.so.10
|
|
|
|
- name: autoreconf libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ autoreconf -f -i
|
|
|
|
- name: configure libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ ./configure
|
|
|
|
- name: make libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ make
|
|
|
|
- name: install libmpfr
|
|
command: chdir=/usr/local/src/nexmon/buildtools/mpfr-3.1.4/ make install
|
|
|
|
- name: link libmpfr
|
|
command: ln -s /usr/local/lib/libmpfr.so /usr/lib/arm-linux-gnueabihf/libmpfr.so.4
|
|
|
|
- name: make firmware
|
|
shell: "source ./setup_env.sh && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
- name: choose the right kernel version (bcm43436b0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/Makefile
|
|
backup: no
|
|
regexp: "KERNEL_VERSION = .*$"
|
|
replace: "KERNEL_VERSION = 5.10"
|
|
|
|
- name: choose the right kernel release (variable) (bcm43436b0)
|
|
lineinfile:
|
|
dest: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/Makefile
|
|
insertafter: "DRIVER_FOLDER_NAME = .*$"
|
|
line: "KERNEL_RELEASE = 5.10.103-v7+"
|
|
|
|
- name: choose the right kernel release (replace string) (bcm43436b0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/Makefile
|
|
backup: no
|
|
regexp: "shell uname -r"
|
|
replace: "KERNEL_RELEASE"
|
|
|
|
- name: make firmware patch (bcm43436b0)
|
|
shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/ && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: backup original firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/ && make backup-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: install new firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/ && make install-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
- name: install new firmware (bcm43436b0)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/bcm43436b0/9_88_4_65/nexmon/brcmfmac43436-sdio.bin
|
|
dest: /lib/firmware/brcm/brcmfmac43436-sdio.bin
|
|
|
|
- name: choose the right kernel version (bcm43430a1)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/Makefile
|
|
backup: no
|
|
regexp: "KERNEL_VERSION = .*$"
|
|
replace: "KERNEL_VERSION = 5.10"
|
|
|
|
- name: choose the right kernel release (variable) (bcm43430a1)
|
|
lineinfile:
|
|
dest: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/Makefile
|
|
insertafter: "DRIVER_FOLDER_NAME = .*$"
|
|
line: "KERNEL_RELEASE = 5.10.103-v7+"
|
|
|
|
- name: choose the right kernel release (replace string) (bcm43430a1)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/Makefile
|
|
backup: no
|
|
regexp: "shell uname -r"
|
|
replace: "KERNEL_RELEASE"
|
|
|
|
- name: make firmware patch (bcm43430a1)
|
|
shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/ && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: backup original firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/ && make backup-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: install new firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/ && make install-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
- name: install new firmware (bcm43430a1)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/bcm43430a1/7_45_41_46/nexmon/brcmfmac43430-sdio.bin
|
|
dest: /lib/firmware/brcm/brcmfmac43430-sdio.bin
|
|
|
|
- name: Delete the firmware blob to avoid it crashing
|
|
file:
|
|
state: absent
|
|
path: /lib/firmware/brcm/brcmfmac43430-sdio.clm_blob
|
|
|
|
- name: Delete the RPiZW firmware blob to avoid it crashing
|
|
file:
|
|
state: absent
|
|
path: /lib/firmware/brcm/brcmfmac43430-sdio.raspberrypi,model-zero-w.clm_blob
|
|
|
|
- name: Delete the RPi3 firmware blob to avoid it crashing
|
|
file:
|
|
state: absent
|
|
path: /lib/firmware/brcm/brcmfmac43430-sdio.raspberrypi,3-model-b.clm_blob
|
|
|
|
- name: choose the right kernel version (bcm43455c0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/Makefile
|
|
backup: no
|
|
regexp: "KERNEL_VERSION = .*$"
|
|
replace: "KERNEL_VERSION = 5.10"
|
|
|
|
- name: choose the right kernel release (variable) (bcm43455c0)
|
|
lineinfile:
|
|
dest: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/Makefile
|
|
insertafter: "DRIVER_FOLDER_NAME = .*$"
|
|
line: "KERNEL_RELEASE = 5.10.103-v7+"
|
|
|
|
- name: choose the right kernel release (replace string) (bcm43455c0)
|
|
replace:
|
|
dest: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/Makefile
|
|
backup: no
|
|
regexp: "shell uname -r"
|
|
replace: "KERNEL_RELEASE"
|
|
|
|
- name: make firmware patch (bcm43455c0)
|
|
shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/ && make"
|
|
args:
|
|
executable: /bin/bash
|
|
chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: backup original firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/ && make backup-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
# - name: install new firmware
|
|
# shell: "source ./setup_env.sh && cd /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/ && make install-firmware"
|
|
# args:
|
|
# executable: /bin/bash
|
|
# chdir: /usr/local/src/nexmon/
|
|
|
|
- name: install new firmware (bcm43455c0)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/bcm43455c0/7_45_206/nexmon/brcmfmac43455-sdio.bin
|
|
dest: /lib/firmware/brcm/brcmfmac43455-sdio.bin
|
|
|
|
- name: make nexutil
|
|
command: chdir=/usr/local/src/nexmon/utilities/nexutil/ make
|
|
|
|
- name: make install nexutil
|
|
command: chdir=/usr/local/src/nexmon/utilities/nexutil/ make install
|
|
|
|
# - name: copy modified driver
|
|
# shell: "cd /usr/local/src/nexmon/patches/driver/brcmfmac_5.10.y-nexmon/ && cp brcmfmac.ko /lib/modules/5.10.103-v7+/kernel/drivers/net/wireless/broadcom/brcm80211/brcmfmac/brcmfmac.ko && depmod -a"
|
|
# args:
|
|
# executable: /bin/bash
|
|
|
|
- name: copy modified driver (everyone but RPiZW)
|
|
copy:
|
|
src: /usr/local/src/nexmon/patches/driver/brcmfmac_5.10.y-nexmon/brcmfmac.ko
|
|
dest: /lib/modules/5.10.103-v7+/kernel/drivers/net/wireless/broadcom/brcm80211/brcmfmac/brcmfmac.ko
|
|
|
|
- name: ensure depmod runs on reboot to load modified driver (brcmfmac)
|
|
lineinfile:
|
|
dest: /etc/rc.local
|
|
line: "/sbin/depmod -a"
|
|
|
|
# To shrink the final image, remove the nexmon directory (takes 2.5G of space) post build and installation
|
|
- name: Delete nexmon content & directory
|
|
file:
|
|
state: absent
|
|
path: /usr/local/src/nexmon/
|
|
|
|
- name: Add pwnlog alias
|
|
lineinfile:
|
|
dest: /home/pi/.bashrc
|
|
line: "\nalias pwnlog='tail -f -n300 /var/log/pwn*.log | sed --unbuffered \"s/,[[:digit:]]\\{3\\}\\]//g\" | cut -d \" \" -f 2-'"
|
|
insertafter: EOF
|
|
|
|
- name: add HDMI powersave to rc.local
|
|
blockinfile:
|
|
path: /etc/rc.local
|
|
insertbefore: "exit 0"
|
|
block: |
|
|
if ! /opt/vc/bin/tvservice -s | egrep 'HDMI|DVI'; then
|
|
/opt/vc/bin/tvservice -o
|
|
fi
|
|
|
|
- name: create /etc/pwnagotchi folder
|
|
file:
|
|
path: /etc/pwnagotchi
|
|
state: directory
|
|
|
|
- name: check if user configuration exists
|
|
stat:
|
|
path: /etc/pwnagotchi/config.toml
|
|
register: user_config
|
|
|
|
- name: create /etc/pwnagotchi/config.toml
|
|
copy:
|
|
dest: /etc/pwnagotchi/config.toml
|
|
content: |
|
|
# Add your configuration overrides on this file any configuration changes done to default.toml will be lost!
|
|
# Example:
|
|
# ui.display.enabled = true
|
|
# ui.display.type = "waveshare_2"
|
|
when: not user_config.stat.exists
|
|
|
|
# - name: append commented out parameters for usb_hat_c.py
|
|
# lineinfile:
|
|
# dest: /etc/pwnagotchi/config.toml
|
|
# line: "# main.plugins.ups_hat_c.enabled = true\n# main.plugins.ups_hat_c.label_on = true # show BAT label or just percentage\n# main.plugins.ups_hat_c.shutdown = 5 # battery percent at which the device will turn off\n# main.plugins.ups_hat_c.bat_x_coord = 140\n# main.plugins.ups_hat_c.bat_y_coord = 0"
|
|
# insertafter: EOF
|
|
|
|
#bizzarely changing the plugin code directly reverts to the old string
|
|
- name: Reconfigure auto-update to point to the scifijunk repo
|
|
replace:
|
|
dest: /usr/local/lib/python3.7/dist-packages/pwnagotchi/plugins/default/auto-update.py
|
|
backup: no
|
|
regexp: "evilsocket/pwnagotchi"
|
|
replace: "scifijunk/pwnagotchi"
|
|
|
|
- name: Delete unnecessary large folder to save space (/root/go)
|
|
file:
|
|
state: absent
|
|
path: /root/go
|
|
|
|
- name: Delete unnecessary large folder to save space (/root/.cache)
|
|
file:
|
|
state: absent
|
|
path: /root/.cache
|
|
|
|
- name: enable ssh on boot
|
|
file:
|
|
path: /boot/ssh
|
|
state: touch
|
|
|
|
- name: adjust /boot/config.txt
|
|
lineinfile:
|
|
dest: /boot/config.txt
|
|
insertafter: EOF
|
|
line: '{{ item }}'
|
|
with_items: "{{system.boot_options}}"
|
|
|
|
- name: adjust /etc/modules
|
|
lineinfile:
|
|
dest: /etc/modules
|
|
insertafter: EOF
|
|
line: '{{ item }}'
|
|
with_items: "{{system.modules}}"
|
|
|
|
- name: change root partition
|
|
replace:
|
|
dest: /boot/cmdline.txt
|
|
backup: no
|
|
regexp: "root=PARTUUID=[a-zA-Z0-9\\-]+"
|
|
replace: "root=/dev/mmcblk0p2"
|
|
|
|
- name: configure /boot/cmdline.txt
|
|
lineinfile:
|
|
path: /boot/cmdline.txt
|
|
backrefs: True
|
|
state: present
|
|
backup: no
|
|
regexp: '(.*)$'
|
|
line: '\1 modules-load=dwc2,g_ether'
|
|
|
|
- name: configure motd
|
|
copy:
|
|
dest: /etc/motd
|
|
content: |
|
|
(◕‿‿◕) {{pwnagotchi.hostname}}
|
|
|
|
Hi! I'm a pwnagotchi, please take good care of me!
|
|
Here are some basic things you need to know to raise me properly!
|
|
|
|
If you want to change my configuration, use /etc/pwnagotchi/config.toml
|
|
|
|
All the configuration options can be found on /etc/pwnagotchi/default.toml,
|
|
but don't change this file because I will recreate it every time I'm restarted!
|
|
|
|
I'm managed by systemd. Here are some basic commands.
|
|
|
|
If you want to know what I'm doing, you can check my logs with the command
|
|
tail -f /var/log/pwnagotchi.log
|
|
|
|
If you want to know if I'm running, you can use
|
|
systemctl status pwnagotchi
|
|
|
|
You can restart me using
|
|
systemctl restart pwnagotchi
|
|
|
|
But be aware I will go into MANUAL mode when restarted!
|
|
You can put me back into AUTO mode using
|
|
touch /root/.pwnagotchi-auto && systemctl restart pwnagotchi
|
|
|
|
You learn more about me at https://pwnagotchi.ai/
|
|
when: hostname.changed
|
|
|
|
# Ansible's apt module has an "autoclean" option but it only removes packages
|
|
# that can no longer be downloaded. Ansible v2.13 added the "clean" option
|
|
# which actually purges the apt cache, but that's newer than what we can
|
|
# install from the RasPiOS repos. Instead, we'll manually clean the cache.
|
|
- name: clean apt cache
|
|
command: "apt-get clean"
|
|
args:
|
|
warn: false
|
|
|
|
- name: remove dependencies that are no longer required
|
|
apt:
|
|
autoremove: yes
|
|
|
|
- name: enable services
|
|
systemd:
|
|
name: "{{ item }}"
|
|
state: started
|
|
enabled: yes
|
|
with_items: "{{ services.enable }}"
|
|
|
|
- name: disable unecessary services
|
|
systemd:
|
|
name: "{{ item }}"
|
|
state: stopped
|
|
enabled: no
|
|
with_items: "{{ services.disable }}"
|
|
|
|
- name: remove ssh keys
|
|
file:
|
|
state: absent
|
|
path: "{{item}}"
|
|
with_fileglob:
|
|
- "/etc/ssh/ssh_host*_key*"
|
|
|
|
handlers:
|
|
- name: reload systemd services
|
|
systemd:
|
|
daemon_reload: yes
|