Adding ad-hoc patch script, readme, and licence informationv0.9.0

4 files changed, 595 insertions, 0 deletions

diff --git a/LICENSE b/LICENSE
new file mode 100644
index 0000000..0a04128
--- /dev/null
+++ b/LICENSE
@@ -0,0 +1,165 @@
+                   GNU LESSER GENERAL PUBLIC LICENSE
+                       Version 3, 29 June 2007
+
+ Copyright (C) 2007 Free Software Foundation, Inc. <https://fsf.org/>
+ Everyone is permitted to copy and distribute verbatim copies
+ of this license document, but changing it is not allowed.
+
+
+  This version of the GNU Lesser General Public License incorporates
+the terms and conditions of version 3 of the GNU General Public
+License, supplemented by the additional permissions listed below.
+
+  0. Additional Definitions.
+
+  As used herein, "this License" refers to version 3 of the GNU Lesser
+General Public License, and the "GNU GPL" refers to version 3 of the GNU
+General Public License.
+
+  "The Library" refers to a covered work governed by this License,
+other than an Application or a Combined Work as defined below.
+
+  An "Application" is any work that makes use of an interface provided
+by the Library, but which is not otherwise based on the Library.
+Defining a subclass of a class defined by the Library is deemed a mode
+of using an interface provided by the Library.
+
+  A "Combined Work" is a work produced by combining or linking an
+Application with the Library.  The particular version of the Library
+with which the Combined Work was made is also called the "Linked
+Version".
+
+  The "Minimal Corresponding Source" for a Combined Work means the
+Corresponding Source for the Combined Work, excluding any source code
+for portions of the Combined Work that, considered in isolation, are
+based on the Application, and not on the Linked Version.
+
+  The "Corresponding Application Code" for a Combined Work means the
+object code and/or source code for the Application, including any data
+and utility programs needed for reproducing the Combined Work from the
+Application, but excluding the System Libraries of the Combined Work.
+
+  1. Exception to Section 3 of the GNU GPL.
+
+  You may convey a covered work under sections 3 and 4 of this License
+without being bound by section 3 of the GNU GPL.
+
+  2. Conveying Modified Versions.
+
+  If you modify a copy of the Library, and, in your modifications, a
+facility refers to a function or data to be supplied by an Application
+that uses the facility (other than as an argument passed when the
+facility is invoked), then you may convey a copy of the modified
+version:
+
+   a) under this License, provided that you make a good faith effort to
+   ensure that, in the event an Application does not supply the
+   function or data, the facility still operates, and performs
+   whatever part of its purpose remains meaningful, or
+
+   b) under the GNU GPL, with none of the additional permissions of
+   this License applicable to that copy.
+
+  3. Object Code Incorporating Material from Library Header Files.
+
+  The object code form of an Application may incorporate material from
+a header file that is part of the Library.  You may convey such object
+code under terms of your choice, provided that, if the incorporated
+material is not limited to numerical parameters, data structure
+layouts and accessors, or small macros, inline functions and templates
+(ten or fewer lines in length), you do both of the following:
+
+   a) Give prominent notice with each copy of the object code that the
+   Library is used in it and that the Library and its use are
+   covered by this License.
+
+   b) Accompany the object code with a copy of the GNU GPL and this license
+   document.
+
+  4. Combined Works.
+
+  You may convey a Combined Work under terms of your choice that,
+taken together, effectively do not restrict modification of the
+portions of the Library contained in the Combined Work and reverse
+engineering for debugging such modifications, if you also do each of
+the following:
+
+   a) Give prominent notice with each copy of the Combined Work that
+   the Library is used in it and that the Library and its use are
+   covered by this License.
+
+   b) Accompany the Combined Work with a copy of the GNU GPL and this license
+   document.
+
+   c) For a Combined Work that displays copyright notices during
+   execution, include the copyright notice for the Library among
+   these notices, as well as a reference directing the user to the
+   copies of the GNU GPL and this license document.
+
+   d) Do one of the following:
+
+       0) Convey the Minimal Corresponding Source under the terms of this
+       License, and the Corresponding Application Code in a form
+       suitable for, and under terms that permit, the user to
+       recombine or relink the Application with a modified version of
+       the Linked Version to produce a modified Combined Work, in the
+       manner specified by section 6 of the GNU GPL for conveying
+       Corresponding Source.
+
+       1) Use a suitable shared library mechanism for linking with the
+       Library.  A suitable mechanism is one that (a) uses at run time
+       a copy of the Library already present on the user's computer
+       system, and (b) will operate properly with a modified version
+       of the Library that is interface-compatible with the Linked
+       Version.
+
+   e) Provide Installation Information, but only if you would otherwise
+   be required to provide such information under section 6 of the
+   GNU GPL, and only to the extent that such information is
+   necessary to install and execute a modified version of the
+   Combined Work produced by recombining or relinking the
+   Application with a modified version of the Linked Version. (If
+   you use option 4d0, the Installation Information must accompany
+   the Minimal Corresponding Source and Corresponding Application
+   Code. If you use option 4d1, you must provide the Installation
+   Information in the manner specified by section 6 of the GNU GPL
+   for conveying Corresponding Source.)
+
+  5. Combined Libraries.
+
+  You may place library facilities that are a work based on the
+Library side by side in a single library together with other library
+facilities that are not Applications and are not covered by this
+License, and convey such a combined library under terms of your
+choice, if you do both of the following:
+
+   a) Accompany the combined library with a copy of the same work based
+   on the Library, uncombined with any other library facilities,
+   conveyed under the terms of this License.
+
+   b) Give prominent notice with the combined library that part of it
+   is a work based on the Library, and explaining where to find the
+   accompanying uncombined form of the same work.
+
+  6. Revised Versions of the GNU Lesser General Public License.
+
+  The Free Software Foundation may publish revised and/or new versions
+of the GNU Lesser General Public License from time to time. Such new
+versions will be similar in spirit to the present version, but may
+differ in detail to address new problems or concerns.
+
+  Each version is given a distinguishing version number. If the
+Library as you received it specifies that a certain numbered version
+of the GNU Lesser General Public License "or any later version"
+applies to it, you have the option of following the terms and
+conditions either of that published version or of any later version
+published by the Free Software Foundation. If the Library as you
+received it does not specify a version number of the GNU Lesser
+General Public License, you may choose any version of the GNU Lesser
+General Public License ever published by the Free Software Foundation.
+
+  If the Library as you received it specifies that a proxy can decide
+whether future versions of the GNU Lesser General Public License shall
+apply, that proxy's public statement of acceptance of any version is
+permanent authorization for you to choose that version for the
+Library.
diff --git a/LICENSE.md b/LICENSE.md
new file mode 100644
index 0000000..0927556
--- /dev/null
+++ b/LICENSE.md
@@ -0,0 +1,157 @@
+### GNU LESSER GENERAL PUBLIC LICENSE
+
+Version 3, 29 June 2007
+
+Copyright (C) 2007 Free Software Foundation, Inc.
+<https://fsf.org/>
+
+Everyone is permitted to copy and distribute verbatim copies of this
+license document, but changing it is not allowed.
+
+This version of the GNU Lesser General Public License incorporates the
+terms and conditions of version 3 of the GNU General Public License,
+supplemented by the additional permissions listed below.
+
+#### 0. Additional Definitions.
+
+As used herein, "this License" refers to version 3 of the GNU Lesser
+General Public License, and the "GNU GPL" refers to version 3 of the
+GNU General Public License.
+
+"The Library" refers to a covered work governed by this License, other
+than an Application or a Combined Work as defined below.
+
+An "Application" is any work that makes use of an interface provided
+by the Library, but which is not otherwise based on the Library.
+Defining a subclass of a class defined by the Library is deemed a mode
+of using an interface provided by the Library.
+
+A "Combined Work" is a work produced by combining or linking an
+Application with the Library. The particular version of the Library
+with which the Combined Work was made is also called the "Linked
+Version".
+
+The "Minimal Corresponding Source" for a Combined Work means the
+Corresponding Source for the Combined Work, excluding any source code
+for portions of the Combined Work that, considered in isolation, are
+based on the Application, and not on the Linked Version.
+
+The "Corresponding Application Code" for a Combined Work means the
+object code and/or source code for the Application, including any data
+and utility programs needed for reproducing the Combined Work from the
+Application, but excluding the System Libraries of the Combined Work.
+
+#### 1. Exception to Section 3 of the GNU GPL.
+
+You may convey a covered work under sections 3 and 4 of this License
+without being bound by section 3 of the GNU GPL.
+
+#### 2. Conveying Modified Versions.
+
+If you modify a copy of the Library, and, in your modifications, a
+facility refers to a function or data to be supplied by an Application
+that uses the facility (other than as an argument passed when the
+facility is invoked), then you may convey a copy of the modified
+version:
+
+-   a) under this License, provided that you make a good faith effort
+    to ensure that, in the event an Application does not supply the
+    function or data, the facility still operates, and performs
+    whatever part of its purpose remains meaningful, or
+-   b) under the GNU GPL, with none of the additional permissions of
+    this License applicable to that copy.
+
+#### 3. Object Code Incorporating Material from Library Header Files.
+
+The object code form of an Application may incorporate material from a
+header file that is part of the Library. You may convey such object
+code under terms of your choice, provided that, if the incorporated
+material is not limited to numerical parameters, data structure
+layouts and accessors, or small macros, inline functions and templates
+(ten or fewer lines in length), you do both of the following:
+
+-   a) Give prominent notice with each copy of the object code that
+    the Library is used in it and that the Library and its use are
+    covered by this License.
+-   b) Accompany the object code with a copy of the GNU GPL and this
+    license document.
+
+#### 4. Combined Works.
+
+You may convey a Combined Work under terms of your choice that, taken
+together, effectively do not restrict modification of the portions of
+the Library contained in the Combined Work and reverse engineering for
+debugging such modifications, if you also do each of the following:
+
+-   a) Give prominent notice with each copy of the Combined Work that
+    the Library is used in it and that the Library and its use are
+    covered by this License.
+-   b) Accompany the Combined Work with a copy of the GNU GPL and this
+    license document.
+-   c) For a Combined Work that displays copyright notices during
+    execution, include the copyright notice for the Library among
+    these notices, as well as a reference directing the user to the
+    copies of the GNU GPL and this license document.
+-   d) Do one of the following:
+    -   0) Convey the Minimal Corresponding Source under the terms of
+        this License, and the Corresponding Application Code in a form
+        suitable for, and under terms that permit, the user to
+        recombine or relink the Application with a modified version of
+        the Linked Version to produce a modified Combined Work, in the
+        manner specified by section 6 of the GNU GPL for conveying
+        Corresponding Source.
+    -   1) Use a suitable shared library mechanism for linking with
+        the Library. A suitable mechanism is one that (a) uses at run
+        time a copy of the Library already present on the user's
+        computer system, and (b) will operate properly with a modified
+        version of the Library that is interface-compatible with the
+        Linked Version.
+-   e) Provide Installation Information, but only if you would
+    otherwise be required to provide such information under section 6
+    of the GNU GPL, and only to the extent that such information is
+    necessary to install and execute a modified version of the
+    Combined Work produced by recombining or relinking the Application
+    with a modified version of the Linked Version. (If you use option
+    4d0, the Installation Information must accompany the Minimal
+    Corresponding Source and Corresponding Application Code. If you
+    use option 4d1, you must provide the Installation Information in
+    the manner specified by section 6 of the GNU GPL for conveying
+    Corresponding Source.)
+
+#### 5. Combined Libraries.
+
+You may place library facilities that are a work based on the Library
+side by side in a single library together with other library
+facilities that are not Applications and are not covered by this
+License, and convey such a combined library under terms of your
+choice, if you do both of the following:
+
+-   a) Accompany the combined library with a copy of the same work
+    based on the Library, uncombined with any other library
+    facilities, conveyed under the terms of this License.
+-   b) Give prominent notice with the combined library that part of it
+    is a work based on the Library, and explaining where to find the
+    accompanying uncombined form of the same work.
+
+#### 6. Revised Versions of the GNU Lesser General Public License.
+
+The Free Software Foundation may publish revised and/or new versions
+of the GNU Lesser General Public License from time to time. Such new
+versions will be similar in spirit to the present version, but may
+differ in detail to address new problems or concerns.
+
+Each version is given a distinguishing version number. If the Library
+as you received it specifies that a certain numbered version of the
+GNU Lesser General Public License "or any later version" applies to
+it, you have the option of following the terms and conditions either
+of that published version or of any later version published by the
+Free Software Foundation. If the Library as you received it does not
+specify a version number of the GNU Lesser General Public License, you
+may choose any version of the GNU Lesser General Public License ever
+published by the Free Software Foundation.
+
+If the Library as you received it specifies that a proxy can decide
+whether future versions of the GNU Lesser General Public License shall
+apply, that proxy's public statement of acceptance of any version is
+permanent authorization for you to choose that version for the
+Library.
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..0460bd5
--- /dev/null
+++ b/README.md
@@ -0,0 +1,20 @@
+# Content
+
+The repository is split into two parts:
+
+## /patch.yaml and /roles
+
+This contains an Ansible approach to patching.
+
+## /bin
+
+This contains a standalone shell scripts for patching.
+
+# To-Dos
+
+What's a repository without proper to-dos? :-)
+
+1. The shell script has some approaches to parametrising native patching binaries.
+   Wherever we cannot use an Ansible module without shell commands (I'm looking
+   at you, zypper!), this needs to be synced.
+2. Introduce variables for parametrising (e.g. skipping auxiliaries like rkhunter, ...)
diff --git a/bin/os-patching-adhoc b/bin/os-patching-adhoc
new file mode 100644
index 0000000..ebe8318
--- /dev/null
+++ b/bin/os-patching-adhoc
@@ -0,0 +1,253 @@
+#!/usr/bin/env bash
+# shellcheck disable=SC1091
+
+# Ad-hoc script for just patching the system.
+
+# Environment variables:
+# RKHUNTER - will be set to 0 if rkhunter exists and this variable is not set.
+#            Setting it to 1 will skip using rkhunter.
+# NEEDREST - will be set to 0 if needrestart exists and this variable is not set.
+#            Setting it to 1 will skip using needrestart or any other helper
+#            like dnf needs-restarting or zypper needs-rebooting / zypper ps.
+
+# os_patching made by albatrossflavour et al., binary:
+OSPBIN='/usr/local/bin/os_patching_fact_generation.sh'
+
+. /etc/os-release || exit 1
+
+# Debian act as if ID_LIKE wasn't necessary if ID == ID_LIKE. Great job, guys.
+if [ "$ID" = "debian" ]; then
+	ID_LIKE="debian"
+fi
+
+
+# 0. Internal helpers
+hline() {
+	[ -n "$COLUMNS" ] && MYCOLS="$COLUMNS"
+	[ -z "$MYCOLS" ] && MYCOLS="$(/usr/bin/tput cols 2>/dev/null)"
+	[ -z "$MYCOLS" ] && MYCOLS=16
+	c=0
+	printf '\033[1m'
+	while [ "$c" -lt "$MYCOLS" ]; do
+		printf '─'
+		c="$((c+1))"
+	done
+	printf '\033[0m\n'
+}
+
+dline() {
+	[ -n "$COLUMNS" ] && MYCOLS="$COLUMNS"
+	[ -z "$MYCOLS" ] && MYCOLS="$(/usr/bin/tput cols 2>/dev/null)"
+	[ -z "$MYCOLS" ] && MYCOLS=16
+	c=0
+	while [ "$c" -lt "$MYCOLS" ]; do
+		printf '┄'
+		c="$((c+1))"
+	done
+	printf '\n'
+}
+
+header() {
+	if [ -n "$1" ]; then
+		hline
+		printf '    \033[3m\033[1m%b\033[0m\n' "$1"
+		hline
+	fi
+}
+
+footer() {
+	if [ -n "$1" ]; then
+		dline
+		printf '\033[3m\033[1m%b\033[0m\n' "$1"
+	fi
+}
+
+
+# 1. Find out about auxiliary helpers like rkhunter
+declare NRSBIN RKHBIN
+[ -z "$RKHUNTER" ] && RKHUNTER=2
+[ -z "$NEEDREST" ] && NEEDREST=2
+if [ "$NEEDREST" -gt 1 ] ; then
+	for bin in /usr/sbin/needrestart /usr/bin/needrestart; do
+		if [ -x "$bin" ]; then
+			NRSBIN="$bin"
+			NEEDREST=0
+			break
+		fi
+	done
+fi
+if [ "$RKHUNTER" -gt 1 ] ; then
+	for bin in /usr/bin/rkhunter /usr/sbin/rkhunter; do
+		if [ -x "$bin" ]; then
+			RKHBIN="$bin"
+			RKHUNTER=0
+			break
+		fi
+	done
+fi
+
+
+# 2. Patching.
+case "$ID_LIKE" in
+	"debian")
+		APTBIN='/usr/bin/apt'
+		APTOPTS=(
+			'-o' 'Apt::Cmd::Disable-Script-Warning=true'
+			'-o' 'Dpkg::Progress-Fancy=False'
+			'-o' 'Apt::Color=False'
+			'-o' 'Dpkg::Use-Pty=False'
+			'-o' 'Quiet::NoUpdate=True'
+			'-o' 'APT::Get::AutomaticRemove=False'
+			'-o' 'APT::Get::AutomaticRemove::Kernels=False'
+			'-o' 'APT::Get::Assume-Yes=True'
+		)
+		if [ "$RKHUNTER" -eq 0 ]; then
+			header 'Starting rkhunter check'
+			"$RKHBIN" -c --sk || exit 120
+		fi
+		# 2.1. Package list refresh
+		header 'Starting package list update'
+		"$APTBIN" "${APTOPTS[@]}" update || exit 110
+		ULIST="$("$APTBIN" "${APTOPTS[@]}" -q list --upgradable | grep -iP '^[0-9a-z_:\-+\.]+/.+' | sed 's/^\([^/]\+\).*/\1/')"
+		# Only one update will be one update with or without line-break, and NO update will be also with or without line-break.
+		# Solution: Always add a line-break, and grep away empty lines.
+		UPDATENUM="$(printf '%b\n' "$ULIST" | grep -vcP '^$')"
+		printf '\033[3m\033[1m%b update(s) found.\033[0m\n' "$UPDATENUM"
+		# 2.2. Package update.
+		# 2.2.1. No updates found?
+		if [ "$UPDATENUM" -lt 1 ]; then
+			printf '\033[3m\033[1m\033[2mSkipping updates.\033[0m\n'
+		else
+		# 2.2.2. Updates found?
+			header 'Starting package updates'
+			"$APTBIN" "${APTOPTS[@]}" full-upgrade || exit 112
+			header 'Starting package auto-removal'
+			"$APTBIN" "${APTOPTS[@]}" --purge autoremove || exit 113
+			# 2.2.3. Package file index update
+			if [ -x /usr/bin/apt-file ]; then
+				printf 'Starting apt-file update'
+				/usr/bin/apt-file "${APTOPTS[@]}" update || true
+			fi
+			if [ "$RKHUNTER" -eq 0 ]; then
+				header 'Starting rkhunter update'
+				"$RKHBIN" --propupd || exit 121
+			fi
+			# 2.2.4. Requirement for reboot
+			if [ "$NEEDREST" -eq 0 ]; then
+				header 'Starting needrestart investigation'
+				"$NRSBIN" -b
+				# Outdated comment (kind of), see $NEEDREST at the top of the file --
+				# If we don't have needrestart, this will fail - which is OK, without
+				# a means of controlling whether reboot is necessary we will reboot in any case.
+				if ! "$NRSBIN" -p; then
+					footer 'Outdated libraries or kernel found, rebooting'
+					/usr/bin/systemctl reboot || reboot
+				else
+					if [ "$UPDATENUM" -gt 0 ]; then
+						if [ -x "$OSPBIN" ]; then
+							header 'Starting os_patching_fact_generation.sh'
+							ospstart="$(/usr/bin/date '+%s')"
+							"$OSPBIN"
+							ospend="$(/usr/bin/date '+%s')"
+							footer "...done ($((ospend - ospstart)) seconds)."
+						fi
+					fi
+				fi
+			elif [ "$NEEDREST" -gt 1 ]; then
+				footer 'No needrestart found, rebooting'
+				/usr/bin/systemctl reboot || reboot
+			fi
+		fi
+	;;
+	"suse"*)
+		# Caution:
+		# 1. Broken package dependenciers will not be solved
+		# 2. Orphaned packages will be kept in-place
+
+		header 'Refreshing zypper "services"'
+		mystart="$(/usr/bin/date '+%s')"
+		/usr/bin/zypper -q --non-interactive refresh-services && printf 'OK.\n' || exit 110
+		myend="$(/usr/bin/date '+%s')"
+		footer "...done ($((myend - mystart)) seconds)."
+
+		header 'Refreshing repository cache'
+		mystart="$(/usr/bin/date '+%s')"
+		/usr/bin/zypper -q --non-interactive refresh && printf 'OK.\n' || exit 111
+		myend="$(/usr/bin/date '+%s')"
+		footer "...done ($((myend - mystart)) seconds)."
+
+		# TODO: no amount of "-q" keeps zypper from delivering the verbose list of updates before
+		# installing them. If only the zypper guys were modern in thinking script or automation approaches...
+		header 'Running update'
+		mystart="$(/usr/bin/date '+%s')"
+		/usr/bin/zypper -q --no-refresh --non-interactive-include-reboot-patches \
+			up -y --auto-agree-with-licenses --solver-focus 'Update' && printf 'OK.\n' || exit 112
+		myend="$(/usr/bin/date '+%s')"
+		footer "...done ($((myend - mystart)) seconds)."
+
+		header 'Running dist-upgrade'
+		mystart="$(/usr/bin/date '+%s')"
+		/usr/bin/zypper -q --no-refresh --non-interactive-include-reboot-patches \
+			dup -y --allow-name-change --allow-arch-change --allow-vendor-change --no-allow-downgrade \
+			--auto-agree-with-licenses --solver-focus 'Update' && printf 'OK.\n' || exit 113
+		myend="$(/usr/bin/date '+%s')"
+		footer "...done ($((myend - mystart)) seconds)."
+
+		# zypper: why deliver exit codes WHEN WE CAN TOSS EFFIN STRINGS AT THE CONSOLE ONLY
+		# also... too many people rather tend to localise their systems....:
+		export LANG=C # use "C" as safe haven, we DO NOT want this to fail
+		# yes, in the very recent part they invented "needs-rebooting", but that only checks
+		# core services and libraries... :( so we do both here. We want to be rather aggressive
+		# on unattended updates in that we reboot if there are lingering "programs". Any of them.
+		header 'Checking reboot requirement... '
+		if ! /usr/bin/zypper -q needs-rebooting; then
+			# TODO: zypper being locked by another "application" delivers RC7 - is this reserved
+			#       exclusively for this case?
+			footer 'Rebooting (zypper needs-rebooting)'
+			/usr/bin/systemctl reboot
+		elif [ "$(/usr/bin/zypper ps -sss 2>&1 | wc -l)" -gt 0 ]; then
+			footer 'Rebooting (zypper ps)'
+			/usr/bin/systemctl reboot
+		else
+			printf 'no reboot required.\n'
+			if [ -x "$OSPBIN" ]; then
+				header 'Starting os_patching_fact_generation.sh'
+				ospstart="$(/usr/bin/date '+%s')"
+				"$OSPBIN"
+				ospend="$(/usr/bin/date '+%s')"
+				footer "...done ($((ospend - ospstart)) seconds)."
+			fi
+		fi
+	;;
+	"rhel"*|"centos"*)
+		# we do not use --skip-broken here - we keep our systems tidy, so any pollution may and should
+		# cause an error :-)
+		
+		header 'Starting package list update'
+		mystart="$(/usr/bin/date '+%s')"
+		/usr/bin/dnf -d1 makecache && printf 'OK.\n' || exit 110
+		myend="$(/usr/bin/date '+%s')"
+		footer "...done ($((myend - mystart)) seconds)."
+
+		header 'Starting package upgrade'
+		mystart="$(/usr/bin/date '+%s')"
+		/usr/bin/dnf --comment='os_patching_adhoc' -d1 --obsoletes --best -y upgrade &&\
+			printf 'OK.\n' || exit 111
+		myend="$(/usr/bin/date '+%s')"
+		footer "...done ($((myend - mystart)) seconds)."
+
+		header 'Checking reboot requirement'
+		if ! /usr/bin/dnf -d1 needs-restarting -r; then
+			footer 'Outdated libraries or kernel found, rebooting.'
+			/usr/bin/systemctl reboot
+		else
+			if [ -x "$OSPBIN" ]; then
+				header 'Starting os_patching_fact_generation.sh'
+				ospstart="$(/usr/bin/date '+%s')"
+				"$OSPBIN"
+				ospend="$(/usr/bin/date '+%s')"
+				footer "...done ($((ospend - ospstart)) seconds)."
+			fi
+		fi
+	;;
+esac