#!/bin/bash

####################
# Einfache Version #
####################

#--------------------------#

#################
# Einstellungen #
#################

# Microcode für den Prozessor: amd-ucode|intel-ucode
MICROCODE="amd-ucode"
# Kernel: linux|linux-lts|linux-zen
KERNEL="linux"
# Rechnername: arch
HOSTNAME_NEW="arch"
# Passwort für den System-Benutzer (root): testen
ROOTPASSWORD="testen"
# Name des Benutzers: eichehome
USERNAME="eichehome"
# Passwort für den Benutzer: testen
USERPASSWORD="testen"
# Grafikkarte: amd|intel|nvidia
GRAPHICS_CARD="amd"
# Zeitzone: Europe/Berlin
TIMEZONE="Europe/Berlin"
# language: de_DE.UTF-8
LANG="de_DE.UTF-8"
# Pakete:
# GNOME Programme
GNOME=(xdg-user-dirs gdm gnome-backgrounds gnome-color-manager gnome-console gnome-control-center gnome-disk-utility gnome-keyring gnome-menus gnome-remote-desktop gnome-session gnome-settings-daemon gnome-shell gnome-system-monitor gnome-tour gnome-user-docs gnome-user-share grilo-plugins gvfs gvfs-afc gvfs-goa gvfs-google gvfs-gphoto2 gvfs-mtp gvfs-nfs gvfs-smb malcontent nautilus orca rygel sushi xdg-desktop-portal-gnome xdg-user-dirs-gtk yelp seahorse power-profiles-daemon)
# Ander grafische Programme
GRAPHIC_PROGRAMMS=()
# Cli-Anwendungen
CLI=(opendoas git vim lynx openssh bash-completion man-db man-pages reflector efibootmgr mtools dosfstools htop) # texinfo pacman-contrib rsync rebuild-detector
# Schriftarten
FONTS=()
# Codecs
CODECS=()
# Bluetooth
BLUETOOTH=(bluez bluez-utils)
# Office
OFFICE=(libreoffice-fresh-de)
# Audio/Video
AUDIO_VIDEO=(pipewire pipewire-audio pipewire-alsa pipewire-pulse pipewire-jack pipewire-zeroconf pipewire-v4l2 pipewire-docs pipewire-roc helvum wireplumber gstreamer gst-plugin-pipewire gst-libav gst-plugins-good gst-plugins-base)
# Drucken
PRINT=(cups)
# Development
DEV=(base-devel "${KERNEL}-headers")
# Netzwerk
WIFI_BACKEND=(wpa_supplicant) # iwd
NET=(iptables-nft firewalld inetutils avahi networkmanager networkmanager-openconnect networkmanager-openvpn networkmanager-pptp networkmanager-vpnc "${WIFI_BACKEND[@]}" modemmanager) # bind(dig,host,nslookup)
# Sontiges
BASE=(base) # -sudo
INITRD=(mkinitcpio) # dracut
OTHER=("${BASE[@]}" linux-firmware plymouth "${INITRD[@]}" xdg-utils)
# Grafik
GRAPHIC_DRIVER=()
if [[ "${GRAPHICS_CARD}" == "amd" ]]; then
  GRAPHIC_DRIVER+=(xf86-video-amdgpu)
elif [[ "${GRAPHICS_CARD}" == "nvidia" ]]; then
  GRAPHIC_DRIVER+=(nvidia nvidia-utils nvidia-settings)
fi

# dialog

# Drive: /dev/vda
DRIVE="/dev/vda"
# disklayout: ESP (512MiB), usr (15GiB), Root (100% - [512MiB + 15GiB])
ESP="512M"
USR="10G"
ROOT_LABEL="root"
USR_LABEL="usr"
ESP_LABEL="EFI"

#--------------------------#

###############################
# Erstellen der Partitionen   #
# und mounten der Partitionen #
###############################

#Discoverable Partitions Specification
# /boot      /dev/vda1
# /usr       /dev/vda2
# (usr-hash) /dev/vda3
# /(root)    /dev/vda4

#LSBLK_OPTIONEN="NAME,PARTUUID,UUID,PARTTYPE,PARTN,LABEL,MOUNTPOINTS"

# Prüfen ob die Platte existiert
#declare -i CHECK_EXISTENCE_OUTPUT=""
CHECK_EXISTENCE_OUTPUT=$(lsblk -o NAME | grep -c "^${DRIVE//\/dev\/}")
if [[ ${CHECK_EXISTENCE_OUTPUT} -lt 1 ]]; then
  echo "Platte existiert nicht, breche ab."
  exit 0
fi

RECREATE_PARTITIONS="1"

# Prüfe ob die Platte schon formatiert wurde und die Partitionen da sind
CHECK_PARTITIONS_OUTPUT=$(lsblk -o NAME,PARTTYPE | grep "${DRIVE//\/dev\/}" | grep "\(c12a7328-f81f-11d2-ba4b-00a0c93ec93b\|8484680c-9521-48c6-9c11-b0720656f69e\|77ff5f63-e7b6-4633-acf4-1565b864c0e6\|4f68bce3-e8cd-4db1-96e7-fbcaf984b709\)")
CHECK_ROOT=$(echo "${CHECK_PARTITIONS_OUTPUT}" | grep -c "4f68bce3-e8cd-4db1-96e7-fbcaf984b709")
CHECK_ESP=$(echo "${CHECK_PARTITIONS_OUTPUT}" | grep -c "c12a7328-f81f-11d2-ba4b-00a0c93ec93b")
CHECK_USR=$(echo "${CHECK_PARTITIONS_OUTPUT}" | grep -c "8484680c-9521-48c6-9c11-b0720656f69e")
CHECK_USRHASH=$(echo "${CHECK_PARTITIONS_OUTPUT}" | grep -c "77ff5f63-e7b6-4633-acf4-1565b864c0e6")
if [[ ${CHECK_ESP} -eq 1 && ${CHECK_USR} -eq 1 && ${CHECK_USRHASH} -eq 1 && ${CHECK_ROOT} -eq 1 ]]; then
  read -r -p "Alle Partitionen sind vorhanden. Trotzdem neu erstellen? (j/N): " confirm
  if [[ "${confirm}" == [jJ] ]];then
    echo "Partitionen werden neu erstellt"
    RECREATE_PARTITIONS="1"
  else
    echo "Partitionen werden nicht neu erstellt"
    RECREATE_PARTITIONS="0"
  fi
  sleep 5
fi

if [[ ${RECREATE_PARTITIONS} -eq 1 ]]; then
  # Reset Partition Table
  sgdisk -og "${DRIVE}"
  # EFI System Partition erstellen
  sgdisk -n 0:0:+"${ESP}" -t 0:c12a7328-f81f-11d2-ba4b-00a0c93ec93b -c 0:"EFI System Partition" "${DRIVE}"
  #sgdisk -n 0:0:+512M -t 0:ef00 -c 0:ESP "${DRIVE}"
  # usr-Partition erstellen
  sgdisk -n 0:0:+"${USR}" -t 0:8484680c-9521-48c6-9c11-b0720656f69e -c 0:"ArchOS_0.1" "${DRIVE}"
  # usrhash-Partition erstellen
  sgdisk -n 0:0:+512M -t 0:77ff5f63-e7b6-4633-acf4-1565b864c0e6 -c 0:"ArchOS_0.1" "${DRIVE}"
  # Root-Partition erstellen
  sgdisk -n 0:0:0 -t 0:4f68bce3-e8cd-4db1-96e7-fbcaf984b709 -c 0:"ArchOS Root" "${DRIVE}"
fi

# # UUIDs finden
# UUID_ESP=""
# UUID_ROOT=""
# UUID_USR=""
# UUID_USRHASH=""

# # Anzahl der Partitionen ermitteln
# DRIVE_NAME=${DRIVE//\/dev\/}
# declare -i NUMBER_OF_PARTITIONS;
# NUMBER_OF_PARTITIONS=$(lsblk | grep -c "${DRIVE_NAME}[0-9]")
# declare -i UNKNOWN_PARTITIONS

# NOCASEMATCH_UNSET=$(shopt -u | grep -c nocasematch)
# if [[ $NOCASEMATCH_UNSET ]]; then
#   shopt -s nocasematch
# fi

# for (( i=NUMBER_OF_PARTITIONS; i > 0 ; i=i-1 )) ; do
#   OUTPUT=$(sgdisk -i "${i}" "${DRIVE}")
#   PARTITION_EXISTS=$(echo "${OUTPUT}" | grep -c "GUID")
#   if [[ "${PARTITION_EXISTS}" != "0" ]]; then
#     GUID_CODE=$(echo "${OUTPUT}" | grep "GUID code:" | cut -d ' ' -f 4)
#     UUID=$(echo "${OUTPUT}" | grep "unique GUID:" | cut -d ' ' -f 4)
#     case $GUID_CODE in
#       "8484680c-9521-48c6-9c11-b0720656f69e" )
#         echo "USR-Partition, UUID: ${UUID}"
#         UUID_USR=${UUID}
#         ;;
#       "c12a7328-f81f-11d2-ba4b-00a0c93ec93b" )
#         echo "ESP-Partition, UUID: ${UUID}"
#         UUID_ESP=${UUID}
#         ;;
#       "4f68bce3-e8cd-4db1-96e7-fbcaf984b709" )
#         echo "Root-Partition, UUID: ${UUID}"
#         UUID_ROOT=${UUID}
#         ;;
#       "77ff5f63-e7b6-4633-acf4-1565b864c0e6" )
#         echo "Usrhash-Partition, UUID: ${UUID}"
#         UUID_USRHASH=${UUID}
#         ;;
#       * )
#         echo "Unbekannte Partition"
#         UNKNOWN_PARTITIONS="${UNKNOWN_PARTITIONS}+1"
#         ;;
#     esac
#   else
#     echo "no partition found"
#   fi
#   NUMBER_OF_PARTITIONS="${NUMBER_OF_PARTITIONS}-1"
# done

# if [[ $NOCASEMATCH_UNSET ]]; then
#   shopt -u nocasematch
# fi

# if [[ "${UNKNOWN_PARTITIONS}" -gt "0" ]]; then
#   if [[ "${UNKNOWN_PARTITIONS}" -gt "1" ]]; then
#     read -r -p "Mehrere Partitionen unbekannt. Trotzdem fortfahren? (j/N): " confirm
#     [[ "${confirm}" == [jJ] ]] || echo "Abbrechen" && exit 0
#   else
#     read -r -p "Eine Partition unbekannt. Trotzdem fortfahren? (j/N): " confirm
#     [[ "${confirm}" == [jJ] ]] || echo "Abbrechen" && exit 0
#   fi
# fi

# # Großbuchstaben in UUIDs zu kleinbuchstaben umwandeln
# UUID_ESP="${UUID_ESP@L}"
# UUID_ROOT="${UUID_ROOT@L}"
# UUID_USR="${UUID_USR@L}"
# UUID_USRHASH="${UUID_USRHASH@L}"

# Informationen aus den Partitionen auslesen
PARTITIONEN_OUTPUT=$(lsblk -o NAME,PARTTYPE,PARTUUID,UUID,PARTN,LABEL,MOUNTPOINTS | grep "${DRIVE//\/dev\/}[0-9]" | sed 's/[[:blank:]]\+/ /g')
echo "PARTITIONEN_OUTPUT:"
echo "${PARTITIONEN_OUTPUT}"
PARTITION_NUMBERS=$(echo "${PARTITIONEN_OUTPUT}" | cut -d ' ' -f 5)
echo "Partition-Numbers:"
echo "${PARTITION_NUMBERS}"

declare -A ROOT_PARTITION=()
declare -A ESP_PARTITION=()
declare -A USR_PARTITION=()
declare -A USRHASH_PARTITION=()

for i in ${PARTITION_NUMBERS}; do
  PARTN=$(echo "${PARTITIONEN_OUTPUT}" | grep "${DRIVE//\/dev\/}${i}" | cut -d ' ' -f 5)
  PARTUUID=$(echo "${PARTITIONEN_OUTPUT}" | grep "${DRIVE//\/dev\/}${i}" | cut -d ' ' -f 3)
  PARTTYPE=$(echo "${PARTITIONEN_OUTPUT}" | grep "${DRIVE//\/dev\/}${i}" | cut -d ' ' -f 2)
  case $PARTTYPE in
    "c12a7328-f81f-11d2-ba4b-00a0c93ec93b" )
      echo "ESP"
      ESP_PARTITION+=([PARTUUID]="${PARTUUID}")
      ESP_PARTITION+=([PARTTYPE]="${PARTTYPE}")
      ESP_PARTITION+=([PARTNUMBER]="${PARTN}")
      ;;
    "8484680c-9521-48c6-9c11-b0720656f69e" )
      echo "USR"
      USR_PARTITION+=([PARTUUID]="${PARTUUID}")
      USR_PARTITION+=([PARTTYPE]="${PARTTYPE}")
      USR_PARTITION+=([PARTNUMBER]="${PARTN}")
      ;;
    "77ff5f63-e7b6-4633-acf4-1565b864c0e6")
      echo "USRHASH"
      USRHASH_PARTITION+=([PARTUUID]="${PARTUUID}")
      USRHASH_PARTITION+=([PARTTYPE]="${PARTTYPE}")
      USRHASH_PARTITION+=([PARTNUMBER]="${PARTN}")
      ;;
    "4f68bce3-e8cd-4db1-96e7-fbcaf984b709" )
      echo "ROOT"
      ROOT_PARTITION+=([PARTUUID]="${PARTUUID}")
      ROOT_PARTITION+=([PARTTYPE]="${PARTTYPE}")
      ROOT_PARTITION+=([PARTNUMBER]="${PARTN}")
      ;;
    * )
      echo "Unknown"
      ;;
  esac
done

# Prüfen,ob die Dateisysteme schon korrekt sind
FILESYSTEM_OUTPUT=$(lsblk -o NAME,FSTYPE,FSVER,PARTUUIDi,LABEL | grep "${DRIVE//\/dev\/}[0-9]")
CHECK_FS_ESP=$(echo "${FILESYSTEM_OUTPUT}" | grep "${ESP_PARTITION["PARTUUID"]}" | grep -i "vfat" | grep -i "fat32" | grep -c -i "${ESP_LABEL}")
CHECK_FS_USR=$(echo "${FILESYSTEM_OUTPUT}" | grep "${USR_PARTITION["PARTUUID"]}" | grep -i "ext4" | grep -c -i "${USR_LABEL}")
CHECK_FS_USRHASH=$(echo "${FILESYSTEM_OUTPUT}" | grep "${USRHASH_PARTITION["PARTUUID"]}" | grep -c -i "dm_verity_hash")
CHECK_FS_ROOT=$(echo "${FILESYSTEM_OUTPUT}" | grep "${ROOT_PARTITION["PARTUUID"]}" | grep -i "ext4" | grep -c -i "${ROOT_LABEL}")

RECREATE_FILESYSTEMS="0"
if [[ ${CHECK_FS_ESP} -eq 1 && ${CHECK_FS_USR} -eq 1 && ${CHECK_FS_USRHASH} -eq 1 && ${CHECK_FS_ROOT} -eq 1 ]]; then
  echo "Alles vorhanden"
  read -r -p "Alle Dateisysteme vorhanden. Trotzdem neu erstellen? (j/N): " confirm
  if [[ ${confirm} == [jJ] ]]; then
    echo "Dateisysteme werden neuerstellt."
    RECREATE_FILESYSTEMS="1"
  else
    echo "Dateisysteme werden nicht neu erstellt."
    RECREATE_FILESYSTEMS="0"
  fi
  sleep 5
fi

if [[ (${CHECK_ESP} -eq 0 || ${RECREATE_FILESYSTEMS} -eq 1) && -n ${ESP_PARTITION["PARTUUID"]} ]]; then
  echo "Erstelle ESP"
  mkfs.vfat -n "${ESP_LABEL}" -F 32 "/dev/disk/by-partuuid/${ESP_PARTITION["PARTUUID"]}"
fi

if [[ (${CHECK_USR} -eq 0 || ${RECREATE_FILESYSTEMS} -eq 1) && -n ${USR_PARTITION["PARTUUID"]} ]]; then
  echo "Erstelle USR"
  mkfs.ext4 -L "${USR_LABEL}" "/dev/disk/by-partuuid/${USR_PARTITION["PARTUUID"]}"
fi

if [[ (${CHECK_ROOT} -eq 0 || ${RECREATE_FILESYSTEMS} -eq 1) && -n ${ROOT_PARTITION["PARTUUID"]} ]]; then
  echo "Erstelle ROOT"
  mkfs.ext4 -L "${ROOT_LABEL}" "/dev/disk/by-partuuid/${ROOT_PARTITION["PARTUUID"]}"
fi

mount /dev/disk/by-label/root /mnt
mkdir -p /mnt/{boot,usr}
mount /dev/disk/by-label/EFI /mnt/boot
mount /dev/disk/by-label/usr /mnt/usr

#--------------------------#

#######################
# Pakete installieren #
#######################

# Pacman im Live-System konfigurieren
sed -i 's/#\(Color\)/\1/' /etc/pacman.conf
# Umbruch notwendug
sed -i 's/#\(ParallelDownloads\s=\s5\)/\1\
ILoveCandy/' /etc/pacman.conf

pacstrap -i /mnt  "${KERNEL}" "${MICROCODE}" "${GNOME[@]}" "${GRAPHIC_PROGRAMMS[@]}" "${CLI[@]}" "${FONTS[@]}" "${CODECS[@]}" "${BLUETOOTH[@]}" "${OFFICE[@]}" "${AUDIO_VIDEO[@]}" "${PRINT[@]}" "${DEV[@]}" "${NET[@]}" "${OTHER[@]}" "${GRAPHIC_DRIVER[@]}"

#--------------------------#

#################################
# Das neue System konfigurieren #
#################################

# ln -sf "/usr/share/zoneinfo/${TIMEZONE}" /etc/localtime -> L /etc/localtime - - - - "/usr/share/zoneinfo/${TIMEZONE}"
arch-chroot /mnt hwclock --systohc
arch-chroot /mnt rm -rf /etc/localtime
arch-chroot /mnt ln -sf "/usr/share/zoneinfo/${TIMEZONE}" /etc/localtime

sed -i 's/#\(Color\)/\1/' /mnt/etc/pacman.conf
# Umbruch notwendug
sed -i 's/#\(ParallelDownloads\s=\s5\)/\1\
ILoveCandy/' /mnt/etc/pacman.conf

sed -i "s/#\(${LANG}\)/\1/" /mnt/etc/locale.gen
arch-chroot /mnt locale-gen

echo "LANG=${LANG}" > /mnt/etc/locale.conf
echo "KEYMAP=${KEYMAP}" > /mnt/etc/vconsole.conf
echo "${HOSTNAME_NEW}" > /mnt/etc/hostname

cat > /mnt/etc/hosts << EOF
# The following lines are desirable for IPv4 capable hosts
127.0.0.1	localhost

# The following lines are desirable for IPv6 capable hosts
::1	      localhost ip6-localhost ip6-loopback
ff02::1   ip6-allnodes
ff02::2   ip6-allrouters
EOF
#echo "127.0.0.1	localhost" > /etc/hosts
#echo "::1	localhost" >> /etc/hosts
#echo "127.0.1.1	${HOSTNAME_NEW}.localedomain	${HOSTNAME_NEW}" >> /etc/hosts

arch-chroot /mnt chpasswd <<< "root:${ROOTPASSWORD}"
#echo root:"${ROOTPASSWORD}" | chpasswd
arch-chroot /mnt useradd -mG wheel "${USERNAME}"
arch-chroot /mnt chpasswd <<< "${USERNAME}:${USERPASSWORD}"
#echo "${USERNAME}:${USERPASSWORD}" | chpasswd

#cat > /etc/NetworkManager/conf.d/wifi_backend.conf << EOF
#[device]
#wifi.backend=iwd
#EOF

sed -i 's/#\(CHARACTER_SET:\).*/\1utf-8/' /mnt/etc/lynx.cfg
sleep 2

# Tastatur layout auf Deutsch stellen
arch-chroot /mnt gsettings set org.gnome.desktop.input-sources sources "[('xkb', 'de')]"

cat > /mnt/etc/xdg/reflector/reflector.conf << EOF
--save /etc/pacman.d/mirrorlist
--country Germany
--protocol https
--latest 5
EOF

cat > /mnt/etc/doas.conf << EOF
permit :wheel
permit persist eichehome as root
EOF
#echo "permit :wheel" > /etc/doas.conf
#echo "permit persist eichehome as root" >> /etc/doas.conf
#echo "" >> /etc/doas.conf
arch-chroot /mnt doas -C /etc/doas.conf && echo "config ok" || echo "config error"
sleep 2

mkdir -p /mnt/etc/systemd/resolved.conf.d
cat > /mnt/etc/systemd/resolved.conf.d/disable-multicastDNS.conf << EOF
[Resolve]
MulticastDNS=no
EOF
sleep 2

arch-chroot /mnt systemctl enable systemd-resolved
arch-chroot /mnt systemctl enable systemd-timesyncd
arch-chroot /mnt systemctl enable NetworkManager
arch-chroot /mnt systemctl enable reflector.timer
arch-chroot /mnt systemctl enable firewalld
arch-chroot /mnt systemctl enable fstrim.timer
arch-chroot /mnt systemctl enable gdm
arch-chroot /mnt systemctl enable avahi-daemon
arch-chroot /mnt systemctl enable bluetooth

#--------------------------#

########################################
# Initramfs konfigurieren und erzeugen #
########################################

if [[ "${GRAPHICS_CARD}" == "amd" ]]; then
  sed -i 's/MODULES=()/MODULES=(amdgpu)/' /mnt/etc/mkinitcpio.conf #AMD
elif [[ "${GRAPHICS_CARD}" == "intel" ]]; then
  sed -i 's/MODULES=()/MODULES=(i915)/' /mnt/etc/mkinitcpio.conf #Intel
elif [[ "${GRAPHICS_CARD}" == "nvidia" ]]; then
  sed -i 's/MODULES=()/MODULES=(nvidia)/' /mnt/etc/mkinitcpio.conf #Nvidia
fi

sed -i 's/^HOOKS=(.*)/HOOKS=(base systemd keyboard plymouth autodetect sd-vconsole modconf kms block filesystems fsck)/' /mnt/etc/mkinitcpio.conf

arch-chroot /mnt mkinitcpio -p "${KERNEL}"

#--------------------------#

#############################################
# Bootloader installieren und konfigurieren #
#############################################

arch-chroot /mnt bootctl install

cat > /mnt/boot/loader/loader.conf << EOF
timeout 5
console-mode max
editor yes
default *
EOF

cat > /mnt/boot/loader/entries/arch.conf << EOF
title Arch Linux
version 0.1
linux /vmlinuz-${KERNEL}
initrd /${MICROCODE}.img
initrd /initramfs-${KERNEL}.img
options quiet splash rw
EOF

#--------------------------#

###############
# Veritysetup #
###############

echo "veritysetup"

OUTPUT_VERITYSETUP=$(veritysetup format /dev/vda2 /dev/vda3)
ROOT_HASH=$(echo "${OUTPUT_VERITYSETUP}" | grep "Root hash" | sed 's/[[:blank:]]\+/ /g' | cut -d ' ' -f 3)

USR_TEIL="${ROOT_HASH:0:32}"
USRHASH_TEIL="${ROOT_HASH:32:32}"

echo "Root hash: ${ROOT_HASH}"
echo "USR-Teil: ${USR_TEIL}"
echo "USRHASH-Teil: ${USRHASH_TEIL}"

sgdisk -u "${USR_PARTITION['PARTNUMBER']}":"${USR_TEIL}"
sgdisk -u "${USRHASH_PARTITION['PARTNUMBER']}":"${USRHASH_TEIL}"
#sgdisk -u "${USR_PARTITION["PARTNUMBER"]}":"${ROOTHASH_TEIL}${UUID_USRHASH_TEIL}"

sed -i "s/options.\+quiet/options usrhash=${ROOT_HASH} quiet/g" /boot/loader/entries/arch.conf

#sgdisk -u (partnum /USR):(64 char roothash)(UUID_USRHASH)
#sgdisk -u (ROOT_PARTITION):(ROOT_HASH 0 - 32 char,128 bit)
#sgdisk -u (ROOT_VERITY_PARTITION):(ROOT_HASH 33 - 64 char,128 bit)


#--------------------------#

##################
# Temporäre fixe #
##################

genfstab -U /mnt | grep "usr" > /mnt/etc/fstab

umount -R /mnt

exit 0