Remove other Linux-specific stuff

Move remaining files to linux/ subdirectory.
2013-03-16 19:54:22 +01:00 · 2013-03-16 19:54:22 +01:00 · 9db68897c7
commit 9db68897c7
parent fa8d659189
53 changed files with 22 additions and 547 deletions
--- a/10
+++ b/10
@ -1,7 +1,6 @@
 RPMS_DIR=rpm/
 VERSION := $(shell cat version)
 VERSION_VAIO_FIXES := $(shell cat version_vaio_fixes)
 DIST_DOM0 ?= fc18
@ -19,28 +18,21 @@ rpms: rpms-dom0
 rpms-vm:
 	@true
-rpms-dom0: rpms-vaio-fixes
+rpms-dom0:
 	rpmbuild --define "_rpmdir $(RPMS_DIR)" -bb rpm_spec/core-dom0.spec
 	rpmbuild --define "_rpmdir $(RPMS_DIR)" -bb rpm_spec/core-dom0-doc.spec
 	rpm --addsign \
 		$(RPMS_DIR)/x86_64/qubes-core-dom0-$(VERSION)*.rpm \
 		$(RPMS_DIR)/noarch/qubes-core-dom0-doc-$(VERSION)*rpm
 rpms-vaio-fixes:
 	rpmbuild --define "_rpmdir $(RPMS_DIR)" -bb rpm_spec/core-dom0-vaio-fixes.spec
 	rpm --addsign $(RPMS_DIR)/x86_64/qubes-core-dom0-vaio-fixes-$(VERSION_VAIO_FIXES)*.rpm 
 update-repo-current:
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-$(VERSION)*$(DIST_DOM0)*.rpm ../yum/current-release/current/dom0/rpm/
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-vaio-fixes-$(VERSION_VAIO_FIXES)*$(DIST_DOM0)*.rpm ../yum/current-release/current/dom0/rpm/
 update-repo-current-testing:
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-$(VERSION)*$(DIST_DOM0)*.rpm ../yum/current-release/current-testing/dom0/rpm/
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-vaio-fixes-$(VERSION_VAIO_FIXES)*$(DIST_DOM0)*.rpm ../yum/current-release/current-testing/dom0/rpm/
 update-repo-unstable:
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-$(VERSION)*$(DIST_DOM0)*.rpm ../yum/current-release/unstable/dom0/rpm/
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-vaio-fixes-$(VERSION_VAIO_FIXES)*$(DIST_DOM0)*.rpm ../yum/current-release/unstable/dom0/rpm/
 update-repo-installer:
 	ln -f $(RPMS_DIR)/x86_64/qubes-core-dom0-*$(VERSION)*$(DIST_DOM0)*.rpm ../installer/yum/qubes-dom0/rpm/
--- a/dom0/aux-tools/qubes-dom0.modules
+++ b/dom0/aux-tools/qubes-dom0.modules
@ -1 +0,0 @@
 modprobe pciback 2> /dev/null || modprobe xen-pciback
--- a/dom0/aux-tools/qubes-sync-clock.cron
+++ b/dom0/aux-tools/qubes-sync-clock.cron
@ -1 +0,0 @@
 */6 * * * * root /usr/bin/qvm-sync-clock > /dev/null 2>&1 || true
--- a/dom0/aux-tools/udev-block-add-change
+++ b/dom0/aux-tools/udev-block-add-change
@ -1,61 +0,0 @@
 #!/bin/bash
 NAME=${DEVNAME#/dev/}
 DESC="${ID_MODEL} (${ID_FS_LABEL})"
 SIZE=$[ $(cat /sys/$DEVPATH/size) * 512 ]
 MODE=w
 XS_KEY="qubes-block-devices/$NAME"
 xs_remove() {
    if [ "$QUBES_EXPOSED" == "1" ]; then
        xenstore-rm "$XS_KEY"
    fi
    echo QUBES_EXPOSED=0
 }
 # Ignore mounted...
 if fgrep -q $DEVNAME /proc/mounts; then
    xs_remove
    exit 0
 fi
 # ... and used by device-mapper
 if [ -n "`ls -A /sys/$DEVPATH/holders 2> /dev/null`" ]; then
    xs_remove
    exit 0
 fi
 # ... and "empty" loop devices
 if [ "$MAJOR" -eq 7 -a ! -d /sys/$DEVPATH/loop ]; then
    xs_remove
    exit 0
 fi
 # Special case for CD
 if [ "$ID_TYPE" = "cd" ]; then
    if [ "$ID_CDROM_MEDIA" != "1" ]; then
        # Hide empty cdrom drive
        xs_remove
        exit 0
    fi
    MODE=r
 fi
 # Special description for loop devices
 if [ -d /sys/$DEVPATH/loop ]; then
    DESC=$(cat /sys/$DEVPATH/loop/backing_file)
 fi
 # Get lock only in dom0 - there are so many block devices so it causes xenstore
 # deadlocks sometimes.
 if [ -f /etc/qubes-release ]; then
    # Skip xenstore-write if cannot obtain lock. This can mean very early system startup
    # stage without /run mounted (or populated). Devices will be rediscovered later
    # by qubes-core startup script.
    exec 9>>/var/run/qubes/block-xenstore.lock || exit 0
    flock 9
 fi
 xenstore-write "$XS_KEY/desc" "$DESC" "$XS_KEY/size" "$SIZE" "$XS_KEY/mode" "$MODE"
 echo QUBES_EXPOSED=1
 # Make sure that block backend is loaded
 /sbin/modprobe xen-blkback 2> /dev/null || /sbin/modprobe blkbk
--- a/dom0/aux-tools/udev-block-cleanup
+++ b/dom0/aux-tools/udev-block-cleanup
@ -1,8 +0,0 @@
 #!/bin/sh
 DEVID=$[ $MAJOR * 256 + $MINOR ]
 XS_PATH="device/vbd/$DEVID"
 # Double check that DEVID is not empty
 [ -n "$DEVID" ] && xenstore-rm $XS_PATH
--- a/dom0/aux-tools/udev-block-remove
+++ b/dom0/aux-tools/udev-block-remove
@ -1,32 +0,0 @@
 #!/bin/sh
 NAME=${DEVNAME#/dev/}
 XS_KEY="qubes-block-devices/$NAME"
 xenstore-rm "$XS_KEY"
 # If device was connected to some VM - detach it
 # Notice: this can be run also in VM, so we cannot use xl...
 device_detach() {
    xs_path=$1
    xenstore-write $xs_path/online 0 $xs_path/state 5
    # Wait for backend to finish dev shutdown
    try=30
    # -lt will break loop also when 'state' will be empty
    while [ "`xenstore-read $xs_path/state 2> /dev/null`" -lt 6 ]; do
        try=$[ $try - 1 ]
        [ "$try" -le 0 ] && break
        sleep 0.1
    done
    xenstore-rm $xs_path
 }
 for XS_DEV_PATH in `xenstore-ls -f backend/vbd | grep 'backend/vbd/[0-9]*/[0-9]* ' | cut -f 1 -d ' '`; do
    CUR_DEVICE=`xenstore-read "$XS_DEV_PATH/params"`
    if [ "$CUR_DEVICE" == "$DEVNAME" ]; then
        device_detach "$XS_DEV_PATH"
        exit 0
    fi
 done
--- a/dom0/aux-tools/udev-usb-add-change
+++ b/dom0/aux-tools/udev-usb-add-change
@ -1,40 +0,0 @@
 #!/bin/sh
 ##
 ## This script is invoked by udev rules whenever USB device appears or
 ## changes. This happens in usbvm domain (or dom0 if USB controller
 ## drivers are in dom0). The script records information about available
 ## USB devices into XS directory, making it available to qvm-usb tool
 ## running in dom0.
 ##
 # FIXME: Ignore USB hubs and other wierd devices (see also in udev-usb-remove).
 [ "`echo $TYPE | cut -f1 -d/`" = "9" ] && exit 0
 [ "$DEVTYPE" != "usb_device" ] && exit 0
 # xenstore doesn't allow dot in key name
 XSNAME=`basename ${DEVPATH} | tr . _`
 # FIXME: For some devices (my Cherry keyboard) ID_SERIAL does not
 # contain proper human-readable name, should find better method to
 # build devide description.
 #DESC=`python -c "dev='%d-%d' % (int('${BUSNUM}'.lstrip('0')), (int('${DEVNUM}'.lstrip('0'))-1)); from xen.util import vusb_util; print vusb_util.get_usbdevice_info(dev);"`
 DESC="${ID_VENDOR_ID}:${ID_MODEL_ID} ${ID_SERIAL}"
 VERSION=`cat /sys/$DEVPATH/version`
 if [ "${VERSION}" = " 1.00" -o "${VERSION}" = " 1.10" ] ; then
 	VERSION=1
 elif [ "${VERSION}" = " 2.00" ] ; then
 	VERSION=2
 else
 	# FIXME: silently ignoring devices with unexpected USB version
 	exit 0
 fi
 XS_KEY="qubes-usb-devices/$XSNAME"
 xenstore-write "$XS_KEY/desc" "$DESC"
 xenstore-write "$XS_KEY/usb-ver" "$VERSION"
 # Make sure PVUSB backend driver is loaded.
 /sbin/modprobe xen-usbback 2> /dev/null || /sbin/modprobe usbbk
--- a/dom0/aux-tools/udev-usb-remove
+++ b/dom0/aux-tools/udev-usb-remove
@ -1,9 +0,0 @@
 #!/bin/sh
 # FIXME: Ignore USB hubs.
 [ "`echo $TYPE | cut -f1 -d/`" = "9" ] && exit 0
 NAME=`basename ${DEVPATH} | tr . _`
 XS_KEY="qubes-usb-devices/$NAME"
 xenstore-rm "$XS_KEY"
--- a/dom0/dracut/dracut.conf.d/luks-aesni-missing-drivers.conf
+++ b/dom0/dracut/dracut.conf.d/luks-aesni-missing-drivers.conf
@ -1,4 +0,0 @@
 # Apprently some of the drivers required when using a processor with AESNI for LUKS
 # are missing in the initramfs, so lets include them manually here:
 add_drivers+=" xts aesni-intel aes-x86_64 crc32c-intel fpu ghash-clmulni-intel salsa20-x86_64 twofish-x86_64 "
--- a/dom0/dracut/dracut.conf.d/qubes-pciback.conf
+++ b/dom0/dracut/dracut.conf.d/qubes-pciback.conf
@ -1,5 +0,0 @@
 # This is to include Qubes-specific dracut module that takes care of
 # detecting and hiding all networking devices at boot time
 # so that Dom0 doesn't load drivers for them...
 add_dracutmodules+=" qubes-pciback "
--- a/dom0/dracut/modules.d/90qubes-pciback/install
+++ b/dom0/dracut/modules.d/90qubes-pciback/install
@ -1,5 +0,0 @@
 #!/bin/bash
 inst_hook cmdline 02 "$moddir/qubes-pciback.sh"
 inst lspci
 inst grep
 inst awk
--- a/dom0/dracut/modules.d/90qubes-pciback/installkernel
+++ b/dom0/dracut/modules.d/90qubes-pciback/installkernel
@ -1,3 +0,0 @@
 #!/bin/bash
 modinfo -k $kernel pciback > /dev/null 2>&1 && instmods pciback
 modinfo -k $kernel xen-pciback > /dev/null 2>&1 && instmods xen-pciback
--- a/dom0/dracut/modules.d/90qubes-pciback/module-setup.sh
+++ b/dom0/dracut/modules.d/90qubes-pciback/module-setup.sh
@ -1,13 +0,0 @@
 #!/bin/bash
 install() {
    inst_hook cmdline 02 "$moddir/qubes-pciback.sh"
    inst lspci
    inst grep
    inst awk
 }
 installkernel() {
    modinfo -k $kernel pciback > /dev/null 2>&1 && instmods pciback
    modinfo -k $kernel xen-pciback > /dev/null 2>&1 && instmods xen-pciback
 }
--- a/dom0/dracut/modules.d/90qubes-pciback/qubes-pciback.sh
+++ b/dom0/dracut/modules.d/90qubes-pciback/qubes-pciback.sh
@ -1,8 +0,0 @@
 #!/bin/sh
 # Find all networking devices currenly installed...
 HIDE_PCI=`lspci -mm -n | grep '^[^ ]* "02'|awk '{ ORS="";print "(" $1 ")";}'`
 # ... and hide them so that Dom0 doesn't load drivers for them
 modprobe pciback hide=$HIDE_PCI 2> /dev/null || modprobe xen-pciback hide=$HIDE_PCI
--- a/dom0/linux/aux-tools/.gitignore
+++ b/dom0/linux/aux-tools/.gitignore
--- a/dom0/linux/aux-tools/block-cleaner-daemon.py
+++ b/dom0/linux/aux-tools/block-cleaner-daemon.py
--- a/dom0/linux/aux-tools/cleanup-dispvms
+++ b/dom0/linux/aux-tools/cleanup-dispvms
--- a/dom0/linux/aux-tools/fix-dir-perms.sh
+++ b/dom0/linux/aux-tools/fix-dir-perms.sh
--- a/dom0/linux/aux-tools/prepare-volatile-img.sh
+++ b/dom0/linux/aux-tools/prepare-volatile-img.sh
--- a/dom0/linux/aux-tools/startup-dvm.sh
+++ b/dom0/linux/aux-tools/startup-dvm.sh
--- a/dom0/linux/aux-tools/startup-misc.sh
+++ b/dom0/linux/aux-tools/startup-misc.sh
--- a/dom0/linux/aux-tools/unbind-pci-device.sh
+++ b/dom0/linux/aux-tools/unbind-pci-device.sh
--- a/dom0/linux/aux-tools/vusb-ctl.py
+++ b/dom0/linux/aux-tools/vusb-ctl.py
--- a/dom0/linux/aux-tools/xl-qvm-usb-attach.py
+++ b/dom0/linux/aux-tools/xl-qvm-usb-attach.py
--- a/dom0/linux/aux-tools/xl-qvm-usb-detach.py
+++ b/dom0/linux/aux-tools/xl-qvm-usb-detach.py
--- a/dom0/linux/system-config/block-snapshot
+++ b/dom0/linux/system-config/block-snapshot
--- a/dom0/linux/system-config/qubes-guid.desktop
+++ b/dom0/linux/system-config/qubes-guid.desktop
--- a/dom0/linux/system-config/vif-route-qubes
+++ b/dom0/linux/system-config/vif-route-qubes
--- a/dom0/linux/systemd/qubes-block-cleaner.service
+++ b/dom0/linux/systemd/qubes-block-cleaner.service
--- a/dom0/linux/systemd/qubes-core.service
+++ b/dom0/linux/systemd/qubes-core.service
--- a/dom0/linux/systemd/qubes-meminfo-writer.service
+++ b/dom0/linux/systemd/qubes-meminfo-writer.service
--- a/dom0/linux/systemd/qubes-netvm.service
+++ b/dom0/linux/systemd/qubes-netvm.service
--- a/dom0/linux/systemd/qubes-qmemman.service
+++ b/dom0/linux/systemd/qubes-qmemman.service
--- a/dom0/linux/systemd/qubes-setupdvm.service
+++ b/dom0/linux/systemd/qubes-setupdvm.service
--- a/dom0/pm-utils/01qubes-sync-vms-clock
+++ b/dom0/pm-utils/01qubes-sync-vms-clock
@ -1,24 +0,0 @@
 #!/bin/sh
 . "${PM_FUNCTIONS}"
 sync_qubes_vms_wallclock()
 {
    # Sync all VMs based on dom0 clock
    DATE=$(date)
    echo
    echo "Syncing VMs clock to: $DATE"
    qvm-run --all -u root "date -s \"$DATE\""
    # Then try to sync from the network
    /usr/bin/qvm-sync-clock &
 }
 case "$1" in
        thaw|resume) sync_qubes_vms_wallclock ;;
        # Kill qvm-sync-clock (if running) to not desync time after resume
        suspend|hibernate) 
            killall qvm-sync-clock 2> /dev/null
            exit 0
            ;;
        *) exit 0 ;;
 esac
--- a/dom0/pm-utils/51qubes-suspend-netvm
+++ b/dom0/pm-utils/51qubes-suspend-netvm
@ -1,39 +0,0 @@
 #!/bin/sh
 . "${PM_FUNCTIONS}"
 get_running_netvms() {
    # Actually get running VMs with PCI devices attached
    RUNNING_VMS=`xl list | tail -n +3 | cut -f 1 -d " "`
    RUNNING_NETVMS=""
    for VM in $RUNNING_VMS; do
        if [ -n "`xl pci-list $VM|tail -n +2`" ]; then
            echo "$VM"
        fi
    done
 }
 suspend_net()
 {
    for VM in `get_running_netvms`; do
        qvm-run -u root --pass-io $VM 'QUBESRPC qubes.SuspendPre dom0'
    done
    # Ignore exit status from netvm...
    return 0
 }
 resume_net()
 {
    for VM in `get_running_netvms`; do
        qvm-run -u root --pass-io $VM 'QUBESRPC qubes.SuspendPost dom0'
    done
    # Ignore exit status from netvm...
    return 0
 }
 case "$1" in
        resume) resume_net ;;
        suspend) suspend_net ;;
        *) exit 0 ;;
 esac
--- a/dom0/pm-utils/52qubes-pause-vms
+++ b/dom0/pm-utils/52qubes-pause-vms
@ -1,23 +0,0 @@
 #!/bin/sh
 . "${PM_FUNCTIONS}"
 pause_vms()
 {
 echo
 qvm-run --all --pause
 }
 unpause_vms()
 {
 echo
 qvm-run --all --unpause
 }
 case "$1" in
        thaw|resume) unpause_vms ;;
        suspend|hibernate) pause_vms ;;
        *) exit 0 ;;
 esac
--- a/dom0/system-config/cpufreq-xen.modules
+++ b/dom0/system-config/cpufreq-xen.modules
@ -1,12 +0,0 @@
 #!/bin/sh
 if modinfo cpufreq-xen > /dev/null 2>&1; then
    modprobe acpi-cpufreq || exit 1
    modprobe cpufreq-xen
    for f in /sys/devices/system/cpu/cpu[0-9]*/cpufreq/scaling_governor; do
        echo xen > $f
    done
 fi
--- a/dom0/system-config/ip6tables
+++ b/dom0/system-config/ip6tables
@ -1,8 +0,0 @@
 # Generated by ip6tables-save v1.4.14 on Tue Sep 25 16:00:20 2012
 *filter
 :INPUT DROP [1:72]
 :FORWARD DROP [0:0]
 :OUTPUT ACCEPT [0:0]
 -A INPUT -i lo -j ACCEPT
 COMMIT
 # Completed on Tue Sep 25 16:00:20 2012
--- a/dom0/system-config/iptables
+++ b/dom0/system-config/iptables
@ -1,30 +0,0 @@
 # Generated by iptables-save v1.4.5 on Mon Sep  6 08:57:46 2010
 *nat
 :PREROUTING ACCEPT [85:5912]
 :OUTPUT ACCEPT [0:0]
 :POSTROUTING ACCEPT [0:0]
 :PR-QBS - [0:0]
 :PR-QBS-SERVICES - [0:0]
 -A PREROUTING -j PR-QBS
 -A PREROUTING -j PR-QBS-SERVICES
 -A POSTROUTING -o vif+ -j ACCEPT
 -A POSTROUTING -o lo -j ACCEPT
 -A POSTROUTING -j MASQUERADE
 COMMIT
 # Completed on Mon Sep  6 08:57:46 2010
 # Generated by iptables-save v1.4.5 on Mon Sep  6 08:57:46 2010
 *filter
 :INPUT ACCEPT [168:11399]
 :FORWARD ACCEPT [0:0]
 :OUTPUT ACCEPT [128:12536]
 -A INPUT -i vif+ -p udp -m udp --dport 68 -j DROP
 -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
 -A INPUT -p icmp -j ACCEPT
 -A INPUT -i lo -j ACCEPT
 -A INPUT -j REJECT --reject-with icmp-host-prohibited
 -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
 -A FORWARD -i vif+ -o vif+ -j DROP
 -A FORWARD -i vif+ -j ACCEPT
 -A FORWARD -j DROP
 COMMIT
 # Completed on Mon Sep  6 08:57:46 2010
--- a/dom0/system-config/limits-qubes.conf
+++ b/dom0/system-config/limits-qubes.conf
@ -1,3 +0,0 @@
 # xl create needs to allocate and mlock all VM memory
@qubes  soft    memlock unlimited
@qubes  hard    memlock unlimited
--- a/dom0/system-config/polkit-1-qubes-allow-all.rules
+++ b/dom0/system-config/polkit-1-qubes-allow-all.rules
@ -1,2 +0,0 @@
 //allow any action, detailed reasoning in sudoers.d/qubes
 polkit.addRule(function(action,subject) { return polkit.Result.YES; });
--- a/dom0/system-config/qubes.sudoers
+++ b/dom0/system-config/qubes.sudoers
@ -1,31 +0,0 @@
 %qubes ALL=(ALL) NOPASSWD: ALL
 #
 # What we're saying above basically means: if the attacker got user access in
 # Dom0, then you're screwed already, as there are dozens of ways for the
 # attacker to escalate to root from user (e.g. via xend).
 #
 # Even that is not necessary, in fact! As all the VM control actions can be
 # done by user -- after all this is why you can easily start/create VMs and
 # apps in VMs from GUI -- all that the attacker needs is user access in Dom0.
 #
 # So, because in Qubes OS, in Dom0, user account is just as sensitive as root
 # account, we don't pretend otherwise, and try to make life a bit easier for
 # the user allowing for easy escalation (no need to choose and remember a root
 # password in Dom0).
 #
 # This is also why we don't pretend that Qubes OS is a multiuser system -- it
 # is not! (for the reasons given above). The assumption is that there is only
 # one user that logs into GUI manager: YOU. This is hardly a limiting factor
 # these days, when it's not uncommon for a single person to own not one, but
 # several computers, which are not shared with others (phone, tablet, laptops).
 # We live in a PC-era! :)
 #
 # This means that the user password you choose during installation servers only
 # one purpose: it allows you to lock your screen while you're away via the
 # screen saver. Nothing more!
 #
 # joanna.
 #
 Defaults    !requiretty
--- a/dom0/system-config/udev-qubes-block.rules
+++ b/dom0/system-config/udev-qubes-block.rules
@ -1,20 +0,0 @@
 # Expose all (except xen-frontend) block devices via xenstore
 # Only block devices are interesting
 SUBSYSTEM!="block", GOTO="qubes_block_end"
 # Skip xen-blkfront devices
 ENV{MAJOR}=="202", GOTO="qubes_block_end"
 # Skip device-mapper devices
 ENV{MAJOR}=="253", GOTO="qubes_block_end"
 IMPORT{db}="QUBES_EXPOSED"
 ACTION=="add", IMPORT{program}="/usr/lib/qubes/udev-block-add-change"
 ACTION=="change", IMPORT{program}="/usr/lib/qubes/udev-block-add-change"
 ACTION=="remove", RUN+="/usr/lib/qubes/udev-block-remove"
 LABEL="qubes_block_end"
 # Cleanup disconnected frontend from xenstore
 ACTION=="remove", SUBSYSTEM=="block", ENV{MAJOR}=="202", RUN+="/usr/lib/qubes/udev-block-cleanup"
--- a/dom0/system-config/udev-qubes-usb.rules
+++ b/dom0/system-config/udev-qubes-usb.rules
@ -1,10 +0,0 @@
 # Expose all USB devices (except block) via xenstore
 # Handle only USB devices
 SUBSYSTEM!="usb", GOTO="qubes_usb_end"
 ACTION=="add", IMPORT{program}="/usr/lib/qubes/udev-usb-add-change"
 ACTION=="change", IMPORT{program}="/usr/lib/qubes/udev-usb-add-change"
 ACTION=="remove", RUN+="/usr/lib/qubes/udev-usb-remove"
 LABEL="qubes_usb_end"
--- a/dom0/vaio-fixes/00sony-vaio-audio
+++ b/dom0/vaio-fixes/00sony-vaio-audio
@ -1,8 +0,0 @@
 #!/bin/sh
 . "${PM_FUNCTIONS}"
 case "$1" in
        thaw|resume) amixer sset Master 100;;
        *) exit 0 ;;
 esac
--- a/dom0/vaio-fixes/99sony-vaio-audio
+++ b/dom0/vaio-fixes/99sony-vaio-audio
@ -1,11 +0,0 @@
 #!/bin/sh
 . "${PM_FUNCTIONS}"
 date
 case "$1" in
        suspend) amixer sset Master 0;;
        thaw|resume) amixer sset Master 0;;
        *) exit 0 ;;
 esac
--- a/dom0/vaio-fixes/snd-hda-intel-sony-vaio.conf
+++ b/dom0/vaio-fixes/snd-hda-intel-sony-vaio.conf
@ -1 +0,0 @@
 options snd-hda-intel model=sony-assamd
--- a/dom0/xen-vm-config/vm-template-hvm.conf
+++ b/dom0/xen-vm-config/vm-template-hvm.conf
--- a/dom0/xen-vm-config/vm-template.conf
+++ b/dom0/xen-vm-config/vm-template.conf
--- a/rpm_spec/core-dom0-vaio-fixes.spec
+++ b/rpm_spec/core-dom0-vaio-fixes.spec
@ -1,32 +0,0 @@
 %{!?version: %define version %(cat version_vaio_fixes)}
 Name:		qubes-core-dom0-vaio-fixes
 Version:	%{version}
 Release:	1%{?dist}
 Summary:    Additional scripts for supporting suspend on Vaio Z laptops
 Requires:   alsa-utils
 Group:		Qubes
 Vendor:		Invisible Things Lab
 License:	GPL
 URL:		http://www.qubes-os.org
 %define _builddir %(pwd)/dom0
 %description
 Additional scripts for supporting suspend on Vaio Z laptops.
 Due to broken Linux GPU drivers we need to do some additional actions during
 suspend/resume.
 %install
 mkdir -p $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d
 cp vaio-fixes/00sony-vaio-audio $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d/
 cp vaio-fixes/99sony-vaio-audio $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d/
 mkdir -p $RPM_BUILD_ROOT/etc/modprobe.d/
 cp vaio-fixes/snd-hda-intel-sony-vaio.conf $RPM_BUILD_ROOT/etc/modprobe.d/
 %files
 /usr/lib64/pm-utils/sleep.d/00sony-vaio-audio
 /usr/lib64/pm-utils/sleep.d/99sony-vaio-audio
 /etc/modprobe.d/snd-hda-intel-sony-vaio.conf
--- a/rpm_spec/core-dom0.spec
+++ b/rpm_spec/core-dom0.spec
@ -87,12 +87,12 @@ done
 cd dom0
 mkdir -p $RPM_BUILD_ROOT/usr/lib/systemd/system
-cp systemd/qubes-block-cleaner.service $RPM_BUILD_ROOT%{_unitdir}
+cp linux/systemd/qubes-block-cleaner.service $RPM_BUILD_ROOT%{_unitdir}
-cp systemd/qubes-core.service $RPM_BUILD_ROOT%{_unitdir}
+cp linux/systemd/qubes-core.service $RPM_BUILD_ROOT%{_unitdir}
-cp systemd/qubes-setupdvm.service $RPM_BUILD_ROOT%{_unitdir}
+cp linux/systemd/qubes-setupdvm.service $RPM_BUILD_ROOT%{_unitdir}
-cp systemd/qubes-meminfo-writer.service $RPM_BUILD_ROOT%{_unitdir}
+cp linux/systemd/qubes-meminfo-writer.service $RPM_BUILD_ROOT%{_unitdir}
-cp systemd/qubes-netvm.service $RPM_BUILD_ROOT%{_unitdir}
+cp linux/systemd/qubes-netvm.service $RPM_BUILD_ROOT%{_unitdir}
-cp systemd/qubes-qmemman.service $RPM_BUILD_ROOT%{_unitdir}
+cp linux/systemd/qubes-qmemman.service $RPM_BUILD_ROOT%{_unitdir}
 mkdir -p $RPM_BUILD_ROOT/usr/bin/
 cp qvm-tools/qvm-* $RPM_BUILD_ROOT/usr/bin
@ -100,14 +100,10 @@ cp qvm-tools/qubes-* $RPM_BUILD_ROOT/usr/bin
 mkdir -p $RPM_BUILD_ROOT/etc/xen/scripts
 cp dispvm/block.qubes $RPM_BUILD_ROOT/etc/xen/scripts
-cp system-config/vif-route-qubes $RPM_BUILD_ROOT/etc/xen/scripts
+cp linux/system-config/vif-route-qubes $RPM_BUILD_ROOT/etc/xen/scripts
-cp system-config/block-snapshot $RPM_BUILD_ROOT/etc/xen/scripts
+cp linux/system-config/block-snapshot $RPM_BUILD_ROOT/etc/xen/scripts
 ln -s block-snapshot $RPM_BUILD_ROOT/etc/xen/scripts/block-origin
 mkdir -p $RPM_BUILD_ROOT/etc/udev/rules.d
 cp system-config/udev-qubes-block.rules $RPM_BUILD_ROOT/etc/udev/rules.d/99-qubes-block.rules
 cp system-config/udev-qubes-usb.rules $RPM_BUILD_ROOT/etc/udev/rules.d/99-qubes-usb.rules
 mkdir -p $RPM_BUILD_ROOT%{python_sitearch}/qubes
 cp core/qubes.py $RPM_BUILD_ROOT%{python_sitearch}/qubes
 cp core/qubes.py[co] $RPM_BUILD_ROOT%{python_sitearch}/qubes
@ -129,24 +125,19 @@ mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/qubes
 cp qmemman/qmemman.conf $RPM_BUILD_ROOT%{_sysconfdir}/qubes/
 mkdir -p $RPM_BUILD_ROOT/usr/lib/qubes
-cp aux-tools/unbind-pci-device.sh $RPM_BUILD_ROOT/usr/lib/qubes
+cp linux/aux-tools/unbind-pci-device.sh $RPM_BUILD_ROOT/usr/lib/qubes
-cp aux-tools/cleanup-dispvms $RPM_BUILD_ROOT/usr/lib/qubes
+cp linux/aux-tools/cleanup-dispvms $RPM_BUILD_ROOT/usr/lib/qubes
-cp aux-tools/startup-dvm.sh $RPM_BUILD_ROOT/usr/lib/qubes
+cp linux/aux-tools/startup-dvm.sh $RPM_BUILD_ROOT/usr/lib/qubes
-cp aux-tools/startup-misc.sh $RPM_BUILD_ROOT/usr/lib/qubes
+cp linux/aux-tools/startup-misc.sh $RPM_BUILD_ROOT/usr/lib/qubes
-cp aux-tools/prepare-volatile-img.sh $RPM_BUILD_ROOT/usr/lib/qubes
+cp linux/aux-tools/prepare-volatile-img.sh $RPM_BUILD_ROOT/usr/lib/qubes
 cp qmemman/server.py $RPM_BUILD_ROOT/usr/lib/qubes/qmemman_daemon.py
 cp qmemman/meminfo-writer $RPM_BUILD_ROOT/usr/lib/qubes/
 cp qubes-rpc/qubes-notify-updates $RPM_BUILD_ROOT/usr/lib/qubes/
-cp aux-tools/udev-block-add-change $RPM_BUILD_ROOT/usr/lib/qubes/
+cp linux/aux-tools/vusb-ctl.py $RPM_BUILD_ROOT/usr/lib/qubes/
-cp aux-tools/udev-block-remove $RPM_BUILD_ROOT/usr/lib/qubes/
+cp linux/aux-tools/xl-qvm-usb-attach.py $RPM_BUILD_ROOT/usr/lib/qubes/
-cp aux-tools/udev-block-cleanup $RPM_BUILD_ROOT/usr/lib/qubes/
+cp linux/aux-tools/xl-qvm-usb-detach.py $RPM_BUILD_ROOT/usr/lib/qubes/
-cp aux-tools/udev-usb-add-change $RPM_BUILD_ROOT/usr/lib/qubes/
+cp linux/aux-tools/block-cleaner-daemon.py $RPM_BUILD_ROOT/usr/lib/qubes/
-cp aux-tools/udev-usb-remove $RPM_BUILD_ROOT/usr/lib/qubes/
+cp linux/aux-tools/fix-dir-perms.sh $RPM_BUILD_ROOT/usr/lib/qubes/
 cp aux-tools/vusb-ctl.py $RPM_BUILD_ROOT/usr/lib/qubes/
 cp aux-tools/xl-qvm-usb-attach.py $RPM_BUILD_ROOT/usr/lib/qubes/
 cp aux-tools/xl-qvm-usb-detach.py $RPM_BUILD_ROOT/usr/lib/qubes/
 cp aux-tools/block-cleaner-daemon.py $RPM_BUILD_ROOT/usr/lib/qubes/
 cp aux-tools/fix-dir-perms.sh $RPM_BUILD_ROOT/usr/lib/qubes/
 mkdir -p $RPM_BUILD_ROOT/etc/qubes-rpc/policy
 cp qubes-rpc-policy/qubes.Filecopy.policy $RPM_BUILD_ROOT/etc/qubes-rpc/policy/qubes.Filecopy
@ -154,10 +145,6 @@ cp qubes-rpc-policy/qubes.OpenInVM.policy $RPM_BUILD_ROOT/etc/qubes-rpc/policy/q
 cp qubes-rpc-policy/qubes.VMShell.policy $RPM_BUILD_ROOT/etc/qubes-rpc/policy/qubes.VMShell
 cp qubes-rpc-policy/qubes.NotifyUpdates.policy $RPM_BUILD_ROOT/etc/qubes-rpc/policy/qubes.NotifyUpdates
 cp qubes-rpc/qubes.NotifyUpdates $RPM_BUILD_ROOT/etc/qubes-rpc/
 cp qubes-rpc-policy/qubes.ReceiveUpdates.policy $RPM_BUILD_ROOT/etc/qubes-rpc/policy/qubes.ReceiveUpdates
 cp qubes-rpc/qubes.ReceiveUpdates $RPM_BUILD_ROOT/etc/qubes-rpc/
 install -D aux-tools/qubes-dom0.modules $RPM_BUILD_ROOT/etc/sysconfig/modules/qubes-dom0.modules
 install -D aux-tools/qubes-sync-clock.cron $RPM_BUILD_ROOT/etc/cron.d/qubes-sync-clock.cron
 cp dispvm/xenstore-watch $RPM_BUILD_ROOT/usr/bin/xenstore-watch-qubes
 cp dispvm/qubes-restore $RPM_BUILD_ROOT/usr/lib/qubes
@ -175,38 +162,16 @@ mkdir -p $RPM_BUILD_ROOT/var/lib/qubes/backup
 mkdir -p $RPM_BUILD_ROOT/var/lib/qubes/dvmdata
 mkdir -p $RPM_BUILD_ROOT/usr/share/qubes
-cp misc/vm-template.conf $RPM_BUILD_ROOT/usr/share/qubes/
+cp xen-vm-config/vm-template.conf $RPM_BUILD_ROOT/usr/share/qubes/
-cp misc/vm-template-hvm.conf $RPM_BUILD_ROOT/usr/share/qubes/
+cp xen-vm-config/vm-template-hvm.conf $RPM_BUILD_ROOT/usr/share/qubes/
 mkdir -p $RPM_BUILD_ROOT/usr/bin
 mkdir -p $RPM_BUILD_ROOT/etc/dhclient.d
 mkdir -p $RPM_BUILD_ROOT/etc/NetworkManager/dispatcher.d/
 mkdir -p $RPM_BUILD_ROOT/etc/sysconfig
 cp system-config/iptables $RPM_BUILD_ROOT/etc/sysconfig
 cp system-config/ip6tables $RPM_BUILD_ROOT/etc/sysconfig
 install -m 0644 -D system-config/limits-qubes.conf $RPM_BUILD_ROOT/etc/security/limits.d/99-qubes.conf
 install -D system-config/cpufreq-xen.modules $RPM_BUILD_ROOT/etc/sysconfig/modules/cpufreq-xen.modules
 mkdir -p $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d
 cp pm-utils/01qubes-sync-vms-clock $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d/
 cp pm-utils/51qubes-suspend-netvm $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d/
 cp pm-utils/52qubes-pause-vms $RPM_BUILD_ROOT/usr/lib64/pm-utils/sleep.d/
 mkdir -p $RPM_BUILD_ROOT/var/log/qubes
 mkdir -p $RPM_BUILD_ROOT/var/run/qubes
 install -m 0440 -D system-config/qubes.sudoers $RPM_BUILD_ROOT/etc/sudoers.d/qubes
 install -D system-config/polkit-1-qubes-allow-all.rules $RPM_BUILD_ROOT/etc/polkit-1/rules.d/00-qubes-allow-all.rules
 install -d $RPM_BUILD_ROOT/etc/xdg/autostart
-install -m 0644 qubes-guid.desktop $RPM_BUILD_ROOT/etc/xdg/autostart/
+install -m 0644 linux/system-config/qubes-guid.desktop $RPM_BUILD_ROOT/etc/xdg/autostart/
 mkdir -p $RPM_BUILD_ROOT/etc/dracut.conf.d
 cp dracut/dracut.conf.d/* $RPM_BUILD_ROOT/etc/dracut.conf.d/
 mkdir -p $RPM_BUILD_ROOT%{_dracutmoddir}
 cp -r dracut/modules.d/* $RPM_BUILD_ROOT%{_dracutmoddir}/
 %post
@ -262,10 +227,6 @@ if [ "x"$HAD_SYSCONFIG_NETWORK = "xno" ]; then
    rm -f /etc/sysconfig/network
 fi
 # Remove unnecessary udev rules that causes problems in dom0 (#605)
 mkdir -p /var/lib/qubes/removed-udev-scripts
 mv -f /lib/udev/rules.d/69-xorg-vmmouse.rules /var/lib/qubes/removed-udev-scripts/ 2> /dev/null || :
 %clean
 rm -rf $RPM_BUILD_ROOT
 rm -f %{name}-%{version}
@ -275,26 +236,15 @@ if ! grep -q ^qubes: /etc/group ; then
 		groupadd qubes
 fi
 %triggerin -- xen
 %triggerin -- xen-runtime
 sed -i 's/\/block /\/block.qubes /' /etc/udev/rules.d/xen-backend.rules
 /usr/lib/qubes/fix-dir-perms.sh
 %triggerin -- xorg-x11-drv-vmmouse
 mv -f /lib/udev/rules.d/69-xorg-vmmouse.rules /var/lib/qubes/removed-udev-scripts/ 2> /dev/null || :
 %preun
 if [ "$1" = 0 ] ; then
 	# no more packages left
    service qubes_netvm stop
    service qubes_core stop
 	for i in /usr/share/qubes/icons/*.png ; do
 		xdg-icon-resource uninstall --novendor --size 48 $i
 	done
    xdg-desktop-menu uninstall /usr/share/qubes/qubes-dispvm.directory /usr/share/qubes/qubes-dispvm-firefox.desktop
 fi
 %postun
@ -333,12 +283,7 @@ fi
 /usr/lib/qubes/meminfo-writer
 /usr/lib/qubes/qfile-daemon-dvm*
 /usr/lib/qubes/qubes-notify-updates
 /usr/lib/qubes/udev-block-add-change
 /usr/lib/qubes/udev-block-remove
 /usr/lib/qubes/udev-block-cleanup
 /usr/lib/qubes/block-cleaner-daemon.py*
 /usr/lib/qubes/udev-usb-add-change
 /usr/lib/qubes/udev-usb-remove
 /usr/lib/qubes/vusb-ctl.py*
 /usr/lib/qubes/xl-qvm-usb-attach.py*
 /usr/lib/qubes/xl-qvm-usb-detach.py*
@ -346,7 +291,6 @@ fi
 /usr/lib/qubes/startup-dvm.sh
 /usr/lib/qubes/startup-misc.sh
 /usr/lib/qubes/prepare-volatile-img.sh
 %attr(4750,root,qubes) /usr/lib/qubes/qfile-dom0-unpacker
 %{_unitdir}/qubes-block-cleaner.service
 %{_unitdir}/qubes-core.service
 %{_unitdir}/qubes-setupdvm.service
@ -362,13 +306,6 @@ fi
 %attr(0770,root,qubes) %dir /var/lib/qubes/vm-kernels
 /usr/share/qubes/vm-template.conf
 /usr/share/qubes/vm-template-hvm.conf
 /etc/sysconfig/iptables
 /etc/sysconfig/ip6tables
 /etc/sysconfig/modules/qubes-dom0.modules
 /etc/sysconfig/modules/cpufreq-xen.modules
 /usr/lib64/pm-utils/sleep.d/01qubes-sync-vms-clock
 /usr/lib64/pm-utils/sleep.d/51qubes-suspend-netvm
 /usr/lib64/pm-utils/sleep.d/52qubes-pause-vms
 /usr/bin/xenstore-watch-qubes
 /usr/lib/qubes/qubes-restore
 /usr/lib/qubes/qubes-prepare-saved-domain.sh
@ -384,13 +321,4 @@ fi
 /etc/qubes-rpc/qubes.NotifyUpdates
 %attr(2770,root,qubes) %dir /var/log/qubes
 %attr(0770,root,qubes) %dir /var/run/qubes
 /etc/sudoers.d/qubes
 /etc/polkit-1/rules.d/00-qubes-allow-all.rules
 /etc/xdg/autostart/qubes-guid.desktop
 /etc/security/limits.d/99-qubes.conf
 /etc/udev/rules.d/99-qubes-block.rules
 /etc/udev/rules.d/99-qubes-usb.rules
 %attr(0644,root,root) /etc/cron.d/qubes-sync-clock.cron
 /etc/dracut.conf.d/*
 %dir %{_dracutmoddir}/90qubes-pciback
 %{_dracutmoddir}/90qubes-pciback/*
--- a/1
+++ b/1
@ -1 +0,0 @@
 1.6.1
		`@ -1 +0,0 @@`
			`modprobe pciback 2> /dev/null \|\| modprobe xen-pciback`
		`@ -1 +0,0 @@`
			`/6 * * * root /usr/bin/qvm-sync-clock > /dev/null 2>&1 \|\| true`
		`@ -1,2 +0,0 @@`
			`//allow any action, detailed reasoning in sudoers.d/qubes`
			`polkit.addRule(function(action,subject) { return polkit.Result.YES; });`