Skip to content

Various fixes to cape2.sh #3030

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
edmcman wants to merge 14 commits into
base: master
Choose a base branch
from
Open

Various fixes to cape2.sh #3030

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
3a96b7d
Fix missing \$PYTHON_MGR_CMD in --use-uv branches
edmcman May 15, 2026
1f900c5
Fix uv dep install: use uv sync and uv pip install correctly
edmcman May 15, 2026
c098f9b
Refactor pip install abstraction for uv and poetry
edmcman May 15, 2026
d3b7cc4
Fix uv service startup: swap sed order and mark project as non-package
edmcman May 15, 2026
855500f
Update installer/cape2.sh
edmcman May 15, 2026
a3e1b11
Update installer/cape2.sh
edmcman May 15, 2026
e6fcc1c
Update installer/cape2.sh
edmcman May 15, 2026
70d5bfe
Manually apply gemini suggestion
edmcman May 15, 2026
a10acad
Fix suricata install ordering and missing groups
edmcman May 15, 2026
ebd55e5
Fix uv install: create .venv in install_dependencies after user setup
edmcman May 15, 2026
1789adf
Fix IFACE_IP arg parsing: accept IP as $2 with any number of addition…
edmcman May 15, 2026
b735775
Fix uv venv creation: ensure CAPE_ROOT exists before creating venv
edmcman May 15, 2026
e177d0d
Fix USE_UV env var not selecting uv as package manager
edmcman May 15, 2026
5a89aa7
Fix LIBVIRT_DEFAULT_URI set only when installing virt-manager
edmcman May 16, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,3 +25,4 @@ installer/kvm-config.sh

docs/book/src/_build
/.vs
.venv
71 changes: 24 additions & 47 deletions installer/cape2.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,7 +66,8 @@ CAPE_ROOT="${CAPE_ROOT:-/opt/CAPEv2}"
USE_UV=${USE_UV:-false}
PYTHON_MGR="/etc/poetry/bin/poetry"
PYTHON_MGR_CMD="run"
PYTHON_MGR_INSTALL="install"
PYTHON_MGR_PIP="run pip"
PYTHON_MGR_INSTALL_PYPROJECT="install"
Comment thread
edmcman marked this conversation as resolved.
Outdated

# if a config file is present, read it in
if [ -f "./cape-config.sh" ]; then
Expand Down Expand Up @@ -666,11 +667,7 @@ function redsocks2() {
function distributed() {
echo "[+] Configure distributed configuration"
sudo apt-get install -y uwsgi uwsgi-plugin-python3 nginx 2>/dev/null
if [ "$USE_UV" = "true" ] || [ "$USE_UV" = "True" ]; then
sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR $PYTHON_MGR_CMD pip install flask flask-restful flask-sqlalchemy requests"
else
sudo -u ${USER} bash -c "$PYTHON_MGR $PYTHON_MGR_CMD pip install flask flask-restful flask-sqlalchemy requests"
fi
sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR $PYTHON_MGR_PIP install flask flask-restful flask-sqlalchemy requests"

sudo cp $CAPE_ROOT/uwsgi/capedist.ini /etc/uwsgi/apps-available/cape_dist.ini
sudo ln -s /etc/uwsgi/apps-available/cape_dist.ini /etc/uwsgi/apps-enabled
Expand Down Expand Up @@ -788,7 +785,7 @@ function install_yara_x() {
sudo -u ${USER} git clone https://github.com/VirusTotal/yara-x
cd yara-x || return
sudo -u ${USER} bash -c 'source "$HOME/.cargo/env" ; cargo install --path cli'
sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_CMD pip install yara-x
sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_PIP install yara-x
}

function install_yara_python() {
Expand All @@ -804,21 +801,12 @@ function install_yara_python() {
# This replaces the legacy setup.py build approach

# Install from PyPI
if [ "$USE_UV" = "true" ] || [ "$USE_UV" = "True" ]; then
sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR pip install yara-python \
--no-binary :all: \
--config-settings=\"--global-option=build\" \
--config-settings=\"--global-option=--enable-cuckoo\" \
--config-settings=\"--global-option=--enable-magic\" \
--config-settings=\"--global-option=--enable-profiling\""
else
sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT $PYTHON_MGR_CMD pip install yara-python \
--no-binary :all: \
--config-settings="--global-option=build" \
--config-settings="--global-option=--enable-cuckoo" \
--config-settings="--global-option=--enable-magic" \
--config-settings="--global-option=--enable-profiling"
fi
sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT $PYTHON_MGR_PIP install yara-python \
--no-binary :all: \
--config-settings="--global-option=build" \
--config-settings="--global-option=--enable-cuckoo" \
--config-settings="--global-option=--enable-magic" \
--config-settings="--global-option=--enable-profiling"

# Install from local source (commented out)
# sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT $PYTHON_MGR_CMD pip install /tmp/yara-python \
Expand Down Expand Up @@ -909,16 +897,7 @@ function install_libvirt() {
export_path="${temp_export_path%/*}/"
export PKG_CONFIG_PATH=$export_path

# Run build and install within the project environment
# We use sudo -u cape ... to install into the user's environment managed by poetry/uv/pip
if [ "$USE_UV" = "true" ] || [ "$USE_UV" = "True" ]; then
# sudo -u ${USER} bash -c "export PKG_CONFIG_PATH=$export_path; cd $CAPE_ROOT && $PYTHON_MGR pip install /tmp/libvirt-python-${LIB_VERSION}"
sudo -u ${USER} bash -c "export PKG_CONFIG_PATH=$export_path; cd $CAPE_ROOT && $PYTHON_MGR pip install libvirt-python==${LIB_VERSION}"
elif [ "$PYTHON_MGR" = "/etc/poetry/bin/poetry" ]; then
sudo -u ${USER} bash -c "export PKG_CONFIG_PATH=$export_path; $PYTHON_MGR --directory $CAPE_ROOT $PYTHON_MGR_CMD pip install libvirt-python==${LIB_VERSION}"
else
sudo -u ${USER} bash -c "export PKG_CONFIG_PATH=$export_path; pip3 install libvirt-python==${LIB_VERSION}"
fi
sudo -u ${USER} bash -c "export PKG_CONFIG_PATH=$export_path; $PYTHON_MGR --directory $CAPE_ROOT $PYTHON_MGR_PIP install libvirt-python==${LIB_VERSION}"
}

function install_mongo(){
Expand Down Expand Up @@ -1061,11 +1040,7 @@ function install_capa() {
cd capa || return
git pull
git submodule update --init rules
if [ "$USE_UV" = "true" ] || [ "$USE_UV" = "True" ]; then
sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR $PYTHON_MGR_CMD pip install /tmp/capa"
else
sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_CMD pip install /tmp/capa
fi
sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_PIP install /tmp/capa
cd $CAPE_ROOT
if [ -d /tmp/capa ]; then
sudo rm -rf /tmp/capa
Expand Down Expand Up @@ -1380,7 +1355,7 @@ function install_CAPE() {
echo "[-] pyproject.toml not found in $CAPE_ROOT"
return
fi
sudo -u ${USER} bash -c "export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; CRYPTOGRAPHY_DONT_BUILD_RUST=1 $PYTHON_MGR pip install -r pyproject.toml"
sudo -u ${USER} bash -c "cd $CAPE_ROOT && export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; $PYTHON_MGR $PYTHON_MGR_INSTALL_PYPROJECT"
Comment thread
edmcman marked this conversation as resolved.
Outdated

if [ "$DISABLE_LIBVIRT" -eq 0 ]; then
# Integrated libvirt install
Expand Down Expand Up @@ -1464,11 +1439,12 @@ function install_systemd() {
fi

if [ "$USE_UV" = "true" ] || [ "$USE_UV" = "True" ]; then
sed -i "s|/etc/poetry/bin/poetry|$PYTHON_MGR|g" /lib/systemd/system/cape*.service
sed -i "s|/etc/poetry/bin/poetry|$PYTHON_MGR|g" /lib/systemd/system/guac*.service
# remove poetry config commands as uv does not have them or needs them
# Remove poetry config ExecStartPre lines BEFORE replacing poetry→uv so the
# pattern still matches (after replacement the path no longer contains /poetry)
sed -i "s|^ExecStartPre=.*/poetry .*||g" /lib/systemd/system/cape-fstab.service || true
sed -i "s|^ExecStartPre=.*/poetry .*||g" /lib/systemd/system/cape-rooter.service || true
Comment thread
edmcman marked this conversation as resolved.
Outdated
sed -i "s|/etc/poetry/bin/poetry|$PYTHON_MGR|g" /lib/systemd/system/cape*.service
sed -i "s|/etc/poetry/bin/poetry|$PYTHON_MGR|g" /lib/systemd/system/guac*.service
fi

systemctl daemon-reload
Expand Down Expand Up @@ -1536,10 +1512,10 @@ function install_volatility3() {
echo "[+] Installing volatility3"
sudo apt-get install -y unzip
if [ "$USE_UV" = "true" ] || [ "$USE_UV" = "True" ]; then
sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR $PYTHON_MGR_CMD pip install git+https://github.com/volatilityfoundation/volatility3"
vol_path=$(sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR run python3 -c \"import volatility3.plugins;print(volatility3.__file__.replace('__init__.py', 'symbols/'))\"")
sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR $PYTHON_MGR_PIP install git+https://github.com/volatilityfoundation/volatility3"
vol_path=$(sudo -u ${USER} bash -c "cd $CAPE_ROOT && $PYTHON_MGR $PYTHON_MGR_CMD python3 -c \"import volatility3.plugins;print(volatility3.__file__.replace('__init__.py', 'symbols/'))\"")
else
sudo -u ${USER} $PYTHON_MGR $PYTHON_MGR_CMD pip3 install git+https://github.com/volatilityfoundation/volatility3
sudo -u ${USER} $PYTHON_MGR $PYTHON_MGR_PIP install git+https://github.com/volatilityfoundation/volatility3
vol_path=$(sudo -u ${USER} $PYTHON_MGR $PYTHON_MGR_CMD python3 -c "import volatility3.plugins;print(volatility3.__file__.replace('__init__.py', 'symbols/'))")
fi
Comment thread
edmcman marked this conversation as resolved.
Outdated

Expand Down Expand Up @@ -1629,7 +1605,7 @@ function install_guacamole() {
sudo usermod www-data -G ${USER}

cd $CAPE_ROOT
sudo -u ${USER} bash -c "export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; ${poetry_path} $PYTHON_MGR_INSTALL"
sudo -u ${USER} bash -c "cd $CAPE_ROOT && export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; ${poetry_path} $PYTHON_MGR_INSTALL_PYPROJECT"
Comment thread
edmcman marked this conversation as resolved.
Outdated
cd ..

systemctl daemon-reload
Expand Down Expand Up @@ -1763,7 +1739,8 @@ for i in "$@"; do
USE_UV="true"
PYTHON_MGR="/usr/local/bin/uv"
PYTHON_MGR_CMD="run"
PYTHON_MGR_INSTALL=""
PYTHON_MGR_PIP="pip"
PYTHON_MGR_INSTALL_PYPROJECT="sync --no-install-project"
fi
done

Expand Down Expand Up @@ -1818,7 +1795,7 @@ case "$COMMAND" in
fi
# Update FLARE CAPA rules once per day
if ! crontab -l | grep -q 'community.py -waf -cr'; then
crontab -l | { cat; echo "5 0 */1 * * cd $CAPE_ROOT/utils/ && sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_CMD python3 community.py -waf -cr && sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_CMD pip install -U flare-capa && systemctl restart cape-processor 2>/dev/null"; } | crontab -
crontab -l | { cat; echo "5 0 */1 * * cd $CAPE_ROOT/utils/ && sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_CMD python3 community.py -waf -cr && sudo -u ${USER} $PYTHON_MGR --directory $CAPE_ROOT/ $PYTHON_MGR_PIP install -U flare-capa && systemctl restart cape-processor 2>/dev/null"; } | crontab -
fi
install_librenms
if [ "$clamav_enable" -ge 1 ]; then
Expand Down
3 changes: 3 additions & 0 deletions pyproject.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -118,6 +118,9 @@ pre-commit = ">=2.19.0"
[tool.poetry]
package-mode = false

[tool.uv]
package = false

[tool.black]
line-length = 132
include = "\\.py(_disabled)?$"
Expand Down
Loading