From b5e395d385be935d45531f6d2b64f3a999581653 Mon Sep 17 00:00:00 2001
From: Joanna Rutkowska <joanna@invisiblethingslab.com>
Date: Tue, 6 Apr 2010 00:25:37 +0200
Subject: [PATCH] Initial public commit.

(c) 2010 Invisible Things Lab

Authors:
=========
Joanna Rutkowska <joanna@invisiblethingslab.com>
Rafal Wojtczuk  <rafal@invisiblethingslab.com>
---
 .gitignore                                    |   0
 README                                        |  39 ++++
 TODO                                          |   0
 add_3rd_party_software.sh                     |   2 +
 appmenus/convert_app2template.sh              |  26 +++
 appmenus/convert_app2template_for_netvm.sh    |  17 ++
 appmenus/convert_apptemplate2vm.sh            |  13 ++
 appmenus/convert_dirtemplate2vm.sh            |  11 ++
 appmenus/qubes-netvm.directory.template       |   5 +
 appmenus/qubes-templatevm.directory.template  |   5 +
 appmenus/qubes-vm.directory.template          |   5 +
 build_netvm_rpm                               |   9 +
 build_template_rpm                            |   9 +
 clean_images/.gitignore                       |   1 +
 create_apps_for_netvm.sh                      |  15 ++
 create_apps_for_templatevm.sh                 |  15 ++
 create_apps_templates.sh                      |  14 ++
 create_apps_templates_for_netvm.sh            |  14 ++
 mnt/.gitignore                                |   0
 mount_root.sh                                 |  42 +++++
 netvm.spec                                    | 108 +++++++++++
 netvm/apps.orig/konsole.desktop               | 173 +++++++++++++++++
 netvm/apps.orig/nm-connection-editor.desktop  | 107 +++++++++++
 .../apps.orig/system-config-firewall.desktop  | 114 ++++++++++++
 .../apps.orig/system-config-services.desktop  | 175 ++++++++++++++++++
 netvm/apps.templates/konsole.desktop          | 174 +++++++++++++++++
 .../nm-connection-editor.desktop              | 104 +++++++++++
 .../qubes-vm.directory.template               |   5 +
 netvm/apps.templates/show_tray.desktop        |   8 +
 .../system-config-firewall.desktop            | 114 ++++++++++++
 .../system-config-services.desktop            | 175 ++++++++++++++++++
 qubeize_image                                 |  68 +++++++
 qubeized_images/.gitignore                    |   1 +
 rpm/.gitignore                                |   1 +
 rpms_to_install_appvm_x64/kernel              |   1 +
 rpms_to_install_appvm_x64/kernel-firmware     |   1 +
 rpms_to_install_appvm_x64/qubes-core-appvm    |   1 +
 rpms_to_install_appvm_x64/qubes-gui-vm        |   1 +
 rpms_to_install_appvm_x64/qubes-vchan-vm      |   1 +
 rpms_to_install_appvm_x64/xen-libs            |   1 +
 .../xen-qubes-vm-essentials                   |   1 +
 rpms_to_install_netvm_x64/bridge-utils        |   1 +
 rpms_to_install_netvm_x64/kernel              |   1 +
 rpms_to_install_netvm_x64/kernel-firmware     |   1 +
 rpms_to_install_netvm_x64/qubes-core-netvm    |   1 +
 rpms_to_install_netvm_x64/qubes-gui-vm        |   1 +
 rpms_to_install_netvm_x64/qubes-vchan-vm      |   1 +
 rpms_to_install_netvm_x64/stalonetray         |   1 +
 rpms_to_install_netvm_x64/xen-libs            |   1 +
 .../xen-qubes-vm-essentials                   |   1 +
 templates.spec                                | 126 +++++++++++++
 version_appvm                                 |   1 +
 version_netvm                                 |   1 +
 vm_conf_files/appvm-template.conf             |  23 +++
 vm_conf_files/netvm.conf                      |  21 +++
 vm_conf_files/templatevm.conf                 |  21 +++
 vm_initramfs_patches/qubes_cow_setup.sh       |  37 ++++
 vm_kernels_appvm_x64/.gitignore               |   2 +
 vm_kernels_appvm_x64/initramfs                |   1 +
 vm_kernels_appvm_x64/vmlinuz                  |   1 +
 vm_kernels_netvm_x64/.gitignore               |   2 +
 vm_kernels_netvm_x64/initramfs                |   1 +
 vm_kernels_netvm_x64/vmlinuz                  |   1 +
 63 files changed, 1823 insertions(+)
 create mode 100644 .gitignore
 create mode 100644 README
 create mode 100644 TODO
 create mode 100755 add_3rd_party_software.sh
 create mode 100755 appmenus/convert_app2template.sh
 create mode 100755 appmenus/convert_app2template_for_netvm.sh
 create mode 100755 appmenus/convert_apptemplate2vm.sh
 create mode 100755 appmenus/convert_dirtemplate2vm.sh
 create mode 100644 appmenus/qubes-netvm.directory.template
 create mode 100644 appmenus/qubes-templatevm.directory.template
 create mode 100644 appmenus/qubes-vm.directory.template
 create mode 100755 build_netvm_rpm
 create mode 100755 build_template_rpm
 create mode 100644 clean_images/.gitignore
 create mode 100755 create_apps_for_netvm.sh
 create mode 100755 create_apps_for_templatevm.sh
 create mode 100755 create_apps_templates.sh
 create mode 100755 create_apps_templates_for_netvm.sh
 create mode 100644 mnt/.gitignore
 create mode 100755 mount_root.sh
 create mode 100644 netvm.spec
 create mode 100644 netvm/apps.orig/konsole.desktop
 create mode 100644 netvm/apps.orig/nm-connection-editor.desktop
 create mode 100644 netvm/apps.orig/system-config-firewall.desktop
 create mode 100644 netvm/apps.orig/system-config-services.desktop
 create mode 100644 netvm/apps.templates/konsole.desktop
 create mode 100644 netvm/apps.templates/nm-connection-editor.desktop
 create mode 100644 netvm/apps.templates/qubes-vm.directory.template
 create mode 100644 netvm/apps.templates/show_tray.desktop
 create mode 100644 netvm/apps.templates/system-config-firewall.desktop
 create mode 100644 netvm/apps.templates/system-config-services.desktop
 create mode 100755 qubeize_image
 create mode 100644 qubeized_images/.gitignore
 create mode 100644 rpm/.gitignore
 create mode 120000 rpms_to_install_appvm_x64/kernel
 create mode 120000 rpms_to_install_appvm_x64/kernel-firmware
 create mode 120000 rpms_to_install_appvm_x64/qubes-core-appvm
 create mode 120000 rpms_to_install_appvm_x64/qubes-gui-vm
 create mode 120000 rpms_to_install_appvm_x64/qubes-vchan-vm
 create mode 120000 rpms_to_install_appvm_x64/xen-libs
 create mode 120000 rpms_to_install_appvm_x64/xen-qubes-vm-essentials
 create mode 120000 rpms_to_install_netvm_x64/bridge-utils
 create mode 120000 rpms_to_install_netvm_x64/kernel
 create mode 120000 rpms_to_install_netvm_x64/kernel-firmware
 create mode 120000 rpms_to_install_netvm_x64/qubes-core-netvm
 create mode 120000 rpms_to_install_netvm_x64/qubes-gui-vm
 create mode 120000 rpms_to_install_netvm_x64/qubes-vchan-vm
 create mode 120000 rpms_to_install_netvm_x64/stalonetray
 create mode 120000 rpms_to_install_netvm_x64/xen-libs
 create mode 120000 rpms_to_install_netvm_x64/xen-qubes-vm-essentials
 create mode 100644 templates.spec
 create mode 100644 version_appvm
 create mode 100644 version_netvm
 create mode 100644 vm_conf_files/appvm-template.conf
 create mode 100644 vm_conf_files/netvm.conf
 create mode 100644 vm_conf_files/templatevm.conf
 create mode 100755 vm_initramfs_patches/qubes_cow_setup.sh
 create mode 100644 vm_kernels_appvm_x64/.gitignore
 create mode 120000 vm_kernels_appvm_x64/initramfs
 create mode 120000 vm_kernels_appvm_x64/vmlinuz
 create mode 100644 vm_kernels_netvm_x64/.gitignore
 create mode 120000 vm_kernels_netvm_x64/initramfs
 create mode 120000 vm_kernels_netvm_x64/vmlinuz

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..e69de29
diff --git a/README b/README
new file mode 100644
index 0000000..e559fea
--- /dev/null
+++ b/README
@@ -0,0 +1,39 @@
+The Template Builder
+======================
+
+(applies also to the netvm builder)
+
+1) get a clean image of a Linux install (e.g. by using virt-install) NOTE: We
+assume that the image will have a two-partition layout:
+
+img1 <--- the root fs (/)
+img2 <--- the swap
+
+2) update symlinks in rpms_to_install so that they point to the current version
+of rpms to install
+
+3) Now, you can "qubeize" the image. This must be done as root. E.g.:
+
+# ./qubeize_image clean_images/some_image.img f12-x64-compact
+
+4) Make sure the symlinks in vm_kernels point to correct kernel and initramfs
+files.
+
+4a) In order to prepare a patched initramfs file, use the
+patch_appvm_initramfs.sh program that is installed as part of
+qubes-core-dom0.rpm:
+
+# /usr/lib/qubes/patch_appvm_initramfs.sh \
+	<original_initrafms> \
+	 <filename_for_patched_initramfs> \
+	 /abs_path/vm-initramfs-patches/qubes_cow_setup.sh 
+
+
+4b) Manually adjust the appmenus
+
+5) Finally, build the Template RPM (do it as normal user, not root), e.g.: 
+
+$./build_rpm <name>
+
+The resulting rpm is stored in rpm/noarch directory.
+
diff --git a/TODO b/TODO
new file mode 100644
index 0000000..e69de29
diff --git a/add_3rd_party_software.sh b/add_3rd_party_software.sh
new file mode 100755
index 0000000..b6873dd
--- /dev/null
+++ b/add_3rd_party_software.sh
@@ -0,0 +1,2 @@
+#!/bin/sh
+cp ../rpms_3rd_party/libflashplayer.so mnt/usr/lib64/mozilla/plugins/
diff --git a/appmenus/convert_app2template.sh b/appmenus/convert_app2template.sh
new file mode 100755
index 0000000..337b9d0
--- /dev/null
+++ b/appmenus/convert_app2template.sh
@@ -0,0 +1,26 @@
+#!/bin/sh
+SRC=$1
+DSTDIR=$2
+DST=$DSTDIR/$(basename $SRC)
+
+# Do not copy KDE/GNOME specific apps, e.g. "Home", "Find files", etc
+if grep -q OnlyShowIn $SRC ; then
+    exit 0
+fi
+
+if ! grep -q ^Name $SRC ; then
+    echo "WARNING: app $SRC doesn't have Name keyword, skipping..."
+    exit 0
+fi
+
+sed -e "s/^\(Name.*\)=\(.*\)/\1=%VMNAME%: \2/" \
+    -e "s/^\(GenericName.*\)=\(.*\)/\1=%VMNAME%: \2/" \
+    -e "s/^Exec=\(.*\)/Exec=qvm-run -q --tray -a %VMNAME% \'\1\'/" \
+        <$SRC | \
+        grep -v "^Mime" | \
+        grep -v "^Icon" | \
+        grep -v "^TryExec" | \
+        grep -v "^Startup" >$DST
+
+echo X-Qubes-VmName=%VMNAME% >> $DST
+echo Icon=%VMDIR%/icon.png >> $DST
diff --git a/appmenus/convert_app2template_for_netvm.sh b/appmenus/convert_app2template_for_netvm.sh
new file mode 100755
index 0000000..113cc3c
--- /dev/null
+++ b/appmenus/convert_app2template_for_netvm.sh
@@ -0,0 +1,17 @@
+#!/bin/sh
+SRC=$1
+DSTDIR=$2
+DST=$DSTDIR/$(basename $SRC)
+
+sed -e "s/^\(Name.*\)=\(.*\)/\1=%VMNAME%: \2/" \
+    -e "s/^\(GenericName.*\)=\(.*\)/\1=%VMNAME%: \2/" \
+    -e "s/^Exec=\(.*\)/Exec=qvm-run -q --tray -a --user=root %VMNAME% \"\1\"/" \
+        <$SRC | \
+        grep -v "^Mime" | \
+        grep -v "^TryExec" | \
+        grep -v "^Startup" >$DST
+
+#echo "Categories=%VMNAME%" >> $DST
+
+echo X-Qubes-VmName=%VMNAME% >> $DST
+echo Icon=%VMDIR%/icon.png >> $DST
diff --git a/appmenus/convert_apptemplate2vm.sh b/appmenus/convert_apptemplate2vm.sh
new file mode 100755
index 0000000..b5ab146
--- /dev/null
+++ b/appmenus/convert_apptemplate2vm.sh
@@ -0,0 +1,13 @@
+#!/bin/sh
+SRC=$1
+DSTDIR=$2
+VMNAME=$3
+VMDIR=$4
+
+DST=$DSTDIR/$VMNAME-$(basename $SRC)
+
+sed -e "s/%VMNAME%/$VMNAME/" \
+    -e "s %VMDIR% $VMDIR " \
+        <$SRC >$DST
+
+
diff --git a/appmenus/convert_dirtemplate2vm.sh b/appmenus/convert_dirtemplate2vm.sh
new file mode 100755
index 0000000..9d1972b
--- /dev/null
+++ b/appmenus/convert_dirtemplate2vm.sh
@@ -0,0 +1,11 @@
+#!/bin/sh
+SRC=$1
+DST=$2
+VMNAME=$3
+VMDIR=$4
+
+sed -e "s/%VMNAME%/$VMNAME/" \
+    -e "s %VMDIR% $VMDIR " \
+        <$SRC >$DST
+
+
diff --git a/appmenus/qubes-netvm.directory.template b/appmenus/qubes-netvm.directory.template
new file mode 100644
index 0000000..2254401
--- /dev/null
+++ b/appmenus/qubes-netvm.directory.template
@@ -0,0 +1,5 @@
+[Desktop Entry]
+Encoding=UTF-8
+Type=Directory
+Name=%VMNAME% (NetVM)
+Icon=/usr/share/qubes/icons/netvm.png
diff --git a/appmenus/qubes-templatevm.directory.template b/appmenus/qubes-templatevm.directory.template
new file mode 100644
index 0000000..569613f
--- /dev/null
+++ b/appmenus/qubes-templatevm.directory.template
@@ -0,0 +1,5 @@
+[Desktop Entry]
+Encoding=UTF-8
+Type=Directory
+Name=%VMNAME% (TemplateVM)
+Icon=/usr/share/qubes/icons/template.png
diff --git a/appmenus/qubes-vm.directory.template b/appmenus/qubes-vm.directory.template
new file mode 100644
index 0000000..890f38d
--- /dev/null
+++ b/appmenus/qubes-vm.directory.template
@@ -0,0 +1,5 @@
+[Desktop Entry]
+Encoding=UTF-8
+Type=Directory
+Name=%VMNAME% (VM)
+Icon=%VMDIR%/icon.png
diff --git a/build_netvm_rpm b/build_netvm_rpm
new file mode 100755
index 0000000..59e8ba9
--- /dev/null
+++ b/build_netvm_rpm
@@ -0,0 +1,9 @@
+#!/bin/sh
+NAME=$1
+
+if [ x$NAME = x ] ; then
+echo "usage $0 <netvm_name>"
+exit 
+fi
+
+rpmbuild --sign --target noarch --define "netvm_name $NAME" -bb netvm.spec
diff --git a/build_template_rpm b/build_template_rpm
new file mode 100755
index 0000000..7936008
--- /dev/null
+++ b/build_template_rpm
@@ -0,0 +1,9 @@
+#!/bin/sh
+NAME=$1
+
+if [ x$NAME = x ] ; then
+echo "usage $0 <template_name>"
+exit 
+fi
+
+rpmbuild --sign --target noarch --define "template_name $NAME" -bb templates.spec
diff --git a/clean_images/.gitignore b/clean_images/.gitignore
new file mode 100644
index 0000000..72e8ffc
--- /dev/null
+++ b/clean_images/.gitignore
@@ -0,0 +1 @@
+*
diff --git a/create_apps_for_netvm.sh b/create_apps_for_netvm.sh
new file mode 100755
index 0000000..8e13c22
--- /dev/null
+++ b/create_apps_for_netvm.sh
@@ -0,0 +1,15 @@
+#!/bin/sh
+SRCDIR=$1
+VMNAME=$2
+VMDIR=$3
+APPSDIR=$4
+
+if [ $# != 4 ]; then
+    echo "usage: $0 <apps_templates_dir> <vmname> <vmdir> <apps_dir>"
+    exit
+fi
+mkdir -p $APPSDIR
+
+find $SRCDIR -name "*.desktop" -exec appmenus/convert_apptemplate2vm.sh {} $APPSDIR $VMNAME $VMDIR \;
+
+appmenus/convert_dirtemplate2vm.sh appmenus/qubes-netvm.directory.template $APPSDIR/$VMNAME-vm.directory $VMNAME $VMDIR
diff --git a/create_apps_for_templatevm.sh b/create_apps_for_templatevm.sh
new file mode 100755
index 0000000..97209d5
--- /dev/null
+++ b/create_apps_for_templatevm.sh
@@ -0,0 +1,15 @@
+#!/bin/sh
+SRCDIR=$1
+VMNAME=$2
+VMDIR=$3
+APPSDIR=$4
+
+if [ $# != 4 ]; then
+    echo "usage: $0 <apps_templates_dir> <vmname> <vmdir> <apps_dir>"
+    exit
+fi
+mkdir -p $APPSDIR
+
+find $SRCDIR -name "*.desktop" -exec appmenus/convert_apptemplate2vm.sh {} $APPSDIR $VMNAME $VMDIR \;
+
+appmenus/convert_dirtemplate2vm.sh appmenus/qubes-templatevm.directory.template $APPSDIR/$VMNAME-vm.directory $VMNAME $VMDIR
diff --git a/create_apps_templates.sh b/create_apps_templates.sh
new file mode 100755
index 0000000..8ef7f59
--- /dev/null
+++ b/create_apps_templates.sh
@@ -0,0 +1,14 @@
+#!/bin/sh
+APPSORIG=$1
+APPSTMPL=$2
+
+if [ $# != 2 ]; then
+    echo "usage $0 <apps_orig_dir> <apps_templ_dir>"
+    exit 0
+fi
+
+rm -f $APPSTMPL/*
+mkdir -p $APPSTMPL
+find $APPSORIG -name "*.desktop" -exec appmenus/convert_app2template.sh {} $APPSTMPL \;
+
+cp appmenus/qubes-vm.directory.template $APPSTMPL
diff --git a/create_apps_templates_for_netvm.sh b/create_apps_templates_for_netvm.sh
new file mode 100755
index 0000000..22964d9
--- /dev/null
+++ b/create_apps_templates_for_netvm.sh
@@ -0,0 +1,14 @@
+#!/bin/sh
+APPSORIG=$1
+APPSTMPL=$2
+
+if [ $# != 2 ]; then
+    echo "usage $0 <apps_orig_dir> <apps_templ_dir>"
+    exit 0
+fi
+
+#rm -f $APPSTMPL/*
+mkdir -p $APPSTMPL
+find $APPSORIG -name "*.desktop" -exec appmenus/convert_app2template_for_netvm.sh {} $APPSTMPL \;
+
+cp appmenus/qubes-vm.directory.template $APPSTMPL
diff --git a/mnt/.gitignore b/mnt/.gitignore
new file mode 100644
index 0000000..e69de29
diff --git a/mount_root.sh b/mount_root.sh
new file mode 100755
index 0000000..e9ffe17
--- /dev/null
+++ b/mount_root.sh
@@ -0,0 +1,42 @@
+#!/bin/sh
+ROOTIMG=$1
+
+if [ x$ROOTIMG = x ] ; then
+echo "usage: $0 <root.img>"
+exit 0
+fi
+
+# We assume that the input root.img has the following structure:
+
+# /dev/sda1 <--- root fs
+# /dev/sda2 <--- swap
+
+# and that the first partition starts at offset 63*512 from the begging of the image file
+OFFSET=$((63*512))
+
+mkdir -p mnt
+
+MNTDIR=$(pwd)/mnt
+
+LOOP=$(/sbin/losetup -f -s -o $OFFSET $ROOTIMG)
+
+if [ x$LOOP = x ] ; then
+echo "Cannot setup loopback device for the $ROOTIMG file -- perhaps a permissions problem?"
+exit 1
+fi
+
+mount $LOOP $MNTDIR || {
+echo "Cannot mount $LOOP to $MNTDIR"
+/sbin/losetup -d $LOOP
+exit 2
+}
+
+# generate unmount script
+BASENAE=$(basename $ROOTIMG)
+UNMOUNT_SCRIPT=$(echo unmount_root-$BASENAE.sh)
+echo "#!/bin/sh" > $UNMOUNT_SCRIPT
+echo "umount $MNTDIR || { echo \"Cannot unmount!\"; exit 1; }" >> $UNMOUNT_SCRIPT
+echo "/sbin/losetup -d $LOOP || { echo \"Cannot delete the loop device\"; exit 1; }" >> $UNMOUNT_SCRIPT
+echo "rm -f $UNMOUNT_SCRIPT" >> $UNMOUNT_SCRIPT
+chmod +x $UNMOUNT_SCRIPT
+
diff --git a/netvm.spec b/netvm.spec
new file mode 100644
index 0000000..c352982
--- /dev/null
+++ b/netvm.spec
@@ -0,0 +1,108 @@
+#
+# This SPEC is for bulding RPM packages that contain complete Qubes NetVM files
+# This includes the VM's root image, patched with all qubes rpms, etc
+#
+
+%{!?version: %define version %(cat version_netvm)}
+
+Name:		qubes-servicevm-%{netvm_name}
+Version:	%{version}
+Release:	1
+Summary:	Qubes NetVM image for '%{netvm_name}'
+
+License:	GPL
+URL:		http://www.qubes-os.org
+Source:		.
+
+Requires:	qubes-core-dom0 xdg-utils
+
+%define _builddir %(pwd)
+%define _rpmdir %(pwd)/rpm
+%define dest_dir /var/lib/qubes/servicevms/%{netvm_name}
+
+%description
+Qubes NetVM image for '%{netvm_name}'.
+
+%build
+cd qubeized_images
+rm -f %{netvm_name}-root.img.tar
+tar --sparse -cf %{netvm_name}-root.img.tar %{netvm_name}-root.img
+cd ..
+./create_apps_for_netvm.sh netvm/apps.templates/ %{netvm_name} %{dest_dir} qubeized_images/%{netvm_name}-apps
+
+%install
+rm -rf $RPM_BUILD_ROOT
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}
+ln qubeized_images/%{netvm_name}-root.img.tar $RPM_BUILD_ROOT/%{dest_dir}/root.img.tar
+touch $RPM_BUILD_ROOT/%{dest_dir}/root.img # we will create the real file in %post
+
+sed -e s/%NETVMNAME%/%{netvm_name}/ < vm_conf_files/netvm.conf >\
+     $RPM_BUILD_ROOT/%{dest_dir}/%{netvm_name}.conf
+
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/kernels
+cp vm_kernels/vmlinuz $RPM_BUILD_ROOT/%{dest_dir}/kernels/vmlinuz
+cp vm_kernels/initramfs $RPM_BUILD_ROOT/%{dest_dir}/kernels/initramfs
+
+cp vm_initramfs_patches/qubes_cow_setup.sh $RPM_BUILD_ROOT/%{dest_dir}/kernels/qubes_cow_setup.sh
+
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/apps
+cp -r qubeized_images/%{netvm_name}-apps/* $RPM_BUILD_ROOT/%{dest_dir}/apps
+touch $RPM_BUILD_ROOT/%{dest_dir}/icon.png
+
+%post
+echo "--> Processing the root.img... (this might take a while)"
+tar --sparse -xf %{dest_dir}/root.img.tar -C %{dest_dir}
+rm -f %{dest_dir}/root.img.tar
+mv %{dest_dir}/%{netvm_name}-root.img %{dest_dir}/root.img
+chown root.qubes %{dest_dir}/root.img
+chmod 0660 %{dest_dir}/root.img
+
+export XDG_DATA_DIRS=/usr/share/
+if [ "$1" -gt 1 ] ; then
+    # upgrading already installed template...
+    echo "--> Removing previous menu shortcuts..."
+    xdg-desktop-menu uninstall --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
+fi
+
+echo "--> Instaling menu shortcuts..."
+ln -sf /usr/share/qubes/icons/netvm.png %{dest_dir}/icon.png
+xdg-desktop-menu install --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
+
+echo "--> Adding to Qubes DB..."
+if [ "$1" = 1 ] ; then
+    # installing for the first time
+    qvm-add-netvm %{netvm_name}
+else
+    qvm-remove -q --just-db %{netvm_name}
+    qvm-add-netvm %{netvm_name}
+fi
+
+%preun
+if [ "$1" = 0 ] ; then
+    # no more packages left
+    qvm-remove -q --just-db %{netvm_name}
+
+    # we need to have it here, because rpm -U <template>
+    # apparently executes %preun of the old package *after* %post of the new packages...
+    echo "--> Removing menu shortcuts..."
+    export XDG_DATA_DIRS=/usr/share/
+    xdg-desktop-menu uninstall --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
+
+fi
+
+%clean
+rm -rf $RPM_BUILD_ROOT
+
+%files
+%defattr(660,root,qubes,770)
+%dir %{dest_dir}
+%ghost %{dest_dir}/root.img
+%{dest_dir}/root.img.tar
+%{dest_dir}/%{netvm_name}.conf
+%dir %{dest_dir}/kernels
+%{dest_dir}/kernels/vmlinuz
+%{dest_dir}/kernels/initramfs
+%{dest_dir}/kernels/qubes_cow_setup.sh
+%attr (775,root,qubes) %dir %{dest_dir}/apps
+%attr (664,root,qubes) %{dest_dir}/apps/*
+%{dest_dir}/icon.png
diff --git a/netvm/apps.orig/konsole.desktop b/netvm/apps.orig/konsole.desktop
new file mode 100644
index 0000000..c72e835
--- /dev/null
+++ b/netvm/apps.orig/konsole.desktop
@@ -0,0 +1,173 @@
+[Desktop Entry]
+Type=Application
+Exec=konsole
+Icon=utilities-terminal
+X-DocPath=konsole/index.html
+Terminal=false
+X-KDE-StartupNotify=true
+
+Name=Konsole
+Name[af]=Konsole
+Name[ar]=كونسول
+Name[as]=Konsole
+Name[be]=Konsole
+Name[be@latin]=Konsole
+Name[bg]=Konsole
+Name[bn]=কনসোল
+Name[bn_IN]=Konsole
+Name[br]=Konsole
+Name[ca]=Konsole
+Name[ca@valencia]=Konsole
+Name[cs]=Konsole
+Name[csb]=Kònsola
+Name[cy]=Konsole
+Name[da]=Konsole
+Name[de]=Konsole
+Name[el]=Κονσόλα
+Name[en_GB]=Konsole
+Name[eo]=Konsole
+Name[es]=Konsole
+Name[et]=Konsool
+Name[eu]=Kontsola
+Name[fi]=Konsole
+Name[fr]=Konsole
+Name[fy]=Konsole
+Name[ga]=Konsole
+Name[gl]=Konsole
+Name[gu]=કોન્સોલ
+Name[he]=Konsole
+Name[hi]=कंसोल
+Name[hne]=कंसोल
+Name[hr]=Konzola
+Name[hsb]=Konsola
+Name[hu]=Konsole
+Name[is]=Skjáhermir
+Name[it]=Konsole
+Name[ja]=Konsole
+Name[ka]=კონსოლი
+Name[kk]=Konsole
+Name[km]=កុងសូល
+Name[kn]=ಕನ್ಸೋಲ್
+Name[ko]=Konsole
+Name[ku]=Konsol
+Name[lt]=Konsole
+Name[lv]=Konsole
+Name[mai]=कंसोल
+Name[mk]=Конзола
+Name[ml]=കണ്‍സോള്‍
+Name[mr]=कंसोल
+Name[ms]=Konsole
+Name[nb]=Konsole
+Name[nds]=Konsole
+Name[ne]=कन्सोल
+Name[nl]=Konsole
+Name[nn]=Konsoll
+Name[oc]=Konsole
+Name[or]=କୋଲସୋଲ
+Name[pa]=ਕਨਸੋਲ
+Name[pl]=Konsola
+Name[pt]=Konsole
+Name[pt_BR]=Konsole
+Name[ro]=Konsolă
+Name[ru]=Konsole
+Name[se]=Konsolla
+Name[si]=Konsole
+Name[sk]=Konzola
+Name[sl]=Konzola
+Name[sr]=Конзола
+Name[sr@latin]=Konsole
+Name[sv]=Konsole
+Name[ta]=கான்சோல்
+Name[te]=కాన్సోల్
+Name[tg]=Консол
+Name[th]=คอนโซล K
+Name[tr]=Konsole
+Name[uk]=Konsole
+Name[uz]=Konsole
+Name[uz@cyrillic]=Konsole
+Name[vi]=Konsole
+Name[wa]=Konsole
+Name[xh]=Konsole
+Name[x-test]=xxKonsolexx
+Name[zh_CN]=Konsole
+Name[zh_TW]=Konsole
+
+GenericName=Terminal
+GenericName[af]=Terminaal
+GenericName[ar]=طرفيّة
+GenericName[as]=টাৰ্মিনেল
+GenericName[be@latin]=Terminał
+GenericName[bg]=Терминал
+GenericName[bn]=টার্মিনাল
+GenericName[bn_IN]=টার্মিন্যাল
+GenericName[ca]=Terminal
+GenericName[ca@valencia]=Terminal
+GenericName[cs]=Terminál
+GenericName[csb]=Terminal
+GenericName[da]=Terminal
+GenericName[de]=Terminal
+GenericName[el]=Τερματικό
+GenericName[en_GB]=Terminal
+GenericName[eo]=Terminalo
+GenericName[es]=Terminal
+GenericName[et]=Terminal
+GenericName[eu]=Terminala
+GenericName[fi]=Komentoikkuna
+GenericName[fr]=Terminal
+GenericName[fy]=Terminal
+GenericName[ga]=Teirminéal
+GenericName[gl]=Terminal
+GenericName[gu]=ટર્મિનલ
+GenericName[he]=מסוף
+GenericName[hi]=टर्मिनल
+GenericName[hne]=टर्मिनल
+GenericName[hr]=Terminal
+GenericName[hsb]=Terminal
+GenericName[hu]=Terminál
+GenericName[is]=Skjáhermir
+GenericName[it]=Terminale
+GenericName[ja]=ターミナル
+GenericName[kk]=Терминал
+GenericName[km]=ស្ថានីយ
+GenericName[kn]=ಆದೇಶತೆರೆ (ಟರ್ಮಿನಲ್)
+GenericName[ko]=터미널
+GenericName[ku]=Termînal
+GenericName[lt]=Terminalas
+GenericName[lv]=Terminālis
+GenericName[mai]=टर्मिनल
+GenericName[mk]=Терминал
+GenericName[ml]=ടെര്‍മിനല്‍
+GenericName[mr]=टर्मिनल
+GenericName[nb]=Terminal
+GenericName[nds]=Konsool
+GenericName[nl]=Terminal
+GenericName[nn]=Terminal
+GenericName[or]=ଟର୍ମିନାଲ
+GenericName[pa]=ਟਰਮੀਨਲ
+GenericName[pl]=Terminal
+GenericName[pt]=Terminal
+GenericName[pt_BR]=Terminal
+GenericName[ro]=Terminal
+GenericName[ru]=Терминал
+GenericName[se]=Terminal
+GenericName[si]=Terminal
+GenericName[sk]=Terminál
+GenericName[sl]=Terminal
+GenericName[sr]=Терминал
+GenericName[sr@latin]=Terminal
+GenericName[sv]=Terminal
+GenericName[ta]=முனையம்
+GenericName[te]=టెర్మినల్
+GenericName[tg]=Терминал
+GenericName[th]=เทอร์มินัล
+GenericName[tr]=Uçbirim
+GenericName[uk]=Термінал
+GenericName[uz]=Terminal
+GenericName[uz@cyrillic]=Терминал
+GenericName[wa]=Terminå
+GenericName[x-test]=xxTerminalxx
+GenericName[zh_CN]=终端
+GenericName[zh_TW]=終端機
+X-DBUS-StartupType=Unique
+X-KDE-AuthorizeAction=shell_access
+Categories=Qt;KDE;System;TerminalEmulator;
diff --git a/netvm/apps.orig/nm-connection-editor.desktop b/netvm/apps.orig/nm-connection-editor.desktop
new file mode 100644
index 0000000..3e408bc
--- /dev/null
+++ b/netvm/apps.orig/nm-connection-editor.desktop
@@ -0,0 +1,107 @@
+[Desktop Entry]
+Name=Network Connections
+Name[ar]=الاتصالات الشبكية
+Name[as]=নে'টৱৰ্ক সংযোগসমূহ
+Name[be]=Сеткавыя далучэньні
+Name[be@latin]=Sietkavyja spałučeńni
+Name[bg]=Мрежови връзки
+Name[bn_IN]=নেটওয়ার্ক সংযোগসমূহ
+Name[ca]=Connexions de xarxa
+Name[crh]=Şebeke Bağlantıları
+Name[cs]=Připojení k síti
+Name[da]=Netværksforbindelser
+Name[de]=Netzwerkverbindungen
+Name[el]=Συνδέσεις δικτύου
+Name[en_GB]=Network Connections
+Name[es]=Conexiones de red
+Name[et]=Võrguühendused
+Name[eu]=Sareko konexioak
+Name[fi]=Verkkoyhteydet
+Name[fr]=Connexions réseau
+Name[gl]=Conexións de rede
+Name[gu]=નેટવર્ક જોડાણો
+Name[he]=חיבורי רשת
+Name[hu]=Hálózati kapcsolatok
+Name[id]=Sambungan Jaringan
+Name[it]=Connessioni di rete
+Name[kn]=ಜಾಲಬಂಧ ಸಂಪರ್ಕಗಳು
+Name[ko]=네트워크 연결
+Name[lt]=Tinklo ryšiai
+Name[mk]=Мрежни врски
+Name[ml]=നെറ്റ്‌വര്‍ക്ക് കണക്ഷനുകള്‍
+Name[mr]=जाळं जुळवणी
+Name[nb]=Nettverkstilkoblinger
+Name[nl]=Netwerkverbindingen
+Name[nn]=Nettverkstilkoplingar
+Name[oc]=Connexions ret
+Name[or]=ନେଟୱର୍କ ସଂଯୋଗଗୁଡ଼ିକ
+Name[pa]=ਨੈੱਟਵਰਕ ਕੁਨੈਕਸ਼ਨ
+Name[pl]=Połączenia sieciowe
+Name[pt]=Ligações de Rede
+Name[pt_BR]=Conexões de rede
+Name[ro]=Conexiuni de rețea
+Name[ru]=Сетевые соединения
+Name[sk]=Sieťové spojenia
+Name[sl]=Omrežne povezave
+Name[sr]=Везе са мрежом
+Name[sr@latin]=Veze sa mrežom
+Name[sv]=Nätverksanslutningar
+Name[ta]=பிணைய இணைப்புகள்
+Name[te]=నెట్వర్కు అనుసంధానములు
+Name[zh_CN]=网络连接
+Name[zh_HK]=網絡連線
+Name[zh_TW]=網路連線
+Comment=Manage and change your network connection settings
+Comment[ar]=أدِر وغيّر إعدادات الاتصالات الشبكية
+Comment[as]=আপোনাৰ নে'টৱৰ্ক সংযোগক পৰিচালনা আৰু সলনি কৰক
+Comment[be]=Кіраваць і зьмяняць настаўленьні сеткавых далучэньняў
+Comment[be@latin]=Kiruj i źmianiaj nałady sietkavych spałučeńniaŭ
+Comment[bg]=Управление и промяна на настройките на вашата мрежа
+Comment[bn_IN]=আপনার নেটওয়ার্ক সংযোগ বৈশিষ্ট্য সম্পাদন ও পরিবর্তন করুন
+Comment[ca]=Gestioneu i modifiqueu els paràmetres de connexió a la xarxa
+Comment[crh]=Şebeke bağlantısı tesbitleriñizni idare etiñiz ve değiştiriñiz
+Comment[cs]=Spravovat a měnit nastavení připojení k síti
+Comment[da]=Håndter og ændr din opsætning af netværksforbindelser
+Comment[de]=Einstellungen für Verbindungen mit Netzwerken verwalten
+Comment[el]=Διαχείριση και αλλαγή ρυθμίσεων των συνδέσεων δικτύου
+Comment[es]=Gestione y cambie sus ajustes de la conexión de red
+Comment[et]=Halda ja muuda võrguühenduse sätteid
+Comment[eu]=Kudeatu eta aldatu sareko konexioen ezarpenak
+Comment[fi]=Hallitse ja muuta verkkoyhteyksien asetuksia
+Comment[fr]=Gérer et modifier les paramètres des connexions réseau
+Comment[gl]=Xestione e cambie as súas configuracións de conexión de rede
+Comment[gu]=તમારા નેટવર્ક જોડાણ સુયોજનોને બદલો અને સંચાલિત કરો
+Comment[he]=נהל ושנה את הגדרות חיבורי הרשת שלך
+Comment[hu]=Hálózati kapcsolatok beállításainak kezelése és módosítása
+Comment[id]=Kelola dan ubah tatanan sambungan jaringan Anda
+Comment[it]=Gestisce e cambia le impostazioni della connessione di rete
+Comment[kn]=ನಿಮ್ಮ ಜಾಲಬಂಧ ಸಂಪರ್ಕಗಳನ್ನು ನಿರ್ವಹಿಸಿ ಹಾಗು ಬದಲಾಯಿಸಿ
+Comment[lt]=Tvarkykite ir keiskite savo tinklo ryšių parametrus
+Comment[ml]=നിങ്ങളുടെ നെറ്റ്‌വര്‍ക്ക് കണക്ഷന്‍ സജ്ജീകരണങ്ങള്‍ കൈകാര്യം ചെയ്യുകയും മാറ്റങ്ങള്‍ വരുത്തുകയും ചെയ്യുക.
+Comment[mr]=जाळं संयोजना व्यवस्थापीत करा व बदला
+Comment[nb]=Håndter og endre innstillinger for nettverksforbindelser
+Comment[or]=ଆପଣଙ୍କର ନେଟୱର୍କ ସଂଯୋଗ ସଂରଚନାକୁ ପରିଚାଳନା କରନ୍ତୁ ଏବଂ ପରିବର୍ତ୍ତନ କରନ୍ତୁ
+Comment[pa]=ਆਪਣੀ ਨੈੱਟਵਰਕ ਕੁਨੈਕਸ਼ਨ ਸੈਟਿੰਗ ਦਾ ਪਰਬੰਧ ਕਰੋ ਅਤੇ ਬਦਲੋ
+Comment[pl]=Zarządzanie ustawieniami połączeń sieciowych
+Comment[pt]=Gerir e alterar as suas definições da ligação de rede
+Comment[pt_BR]=Gerencie e altere suas configurações de conexão de rede
+Comment[ro]=Administrați și modificați opțiunile conexiunilor de rețea
+Comment[ru]=Управление параметрами сетевых соединений
+Comment[sl]=Upravljanje in spreminjanje nastavitev omrežne povezave
+Comment[sr]=Управљајте и измените подешавања ваших мрежних веза
+Comment[sr@latin]=Upravljajte i izmenite podešavanja vaših mrežnih veza
+Comment[sv]=Hantera och ändra inställningar för dina nätverksanslutningar
+Comment[ta]=உங்களின் பிணைய இணைப்பு அமைவுகளை மேலாண்மை மற்றும் மாற்றவும்
+Comment[te]=మీ నెట్వర్కు అనుసంధానము అమర్పులను నిర్వహించండి మరియు మార్చండి
+Comment[zh_CN]=管理或更改您的网络连接设置
+Comment[zh_HK]=管理與更改你的連線設定值
+Comment[zh_TW]=管理與變更您的連線設定值
+Icon=preferences-system-network
+Exec=nm-connection-editor
+Terminal=false
+Type=Application
+X-GNOME-Bugzilla-Bugzilla=GNOME
+X-GNOME-Bugzilla-Product=NetworkManager
+X-GNOME-Bugzilla-Component=general
+Categories=GNOME;GTK;Settings;X-SuSE-ControlCenter-System;X-GNOME-NetworkSettings;
+OnlyShowIn=GNOME;
diff --git a/netvm/apps.orig/system-config-firewall.desktop b/netvm/apps.orig/system-config-firewall.desktop
new file mode 100644
index 0000000..4f60c02
--- /dev/null
+++ b/netvm/apps.orig/system-config-firewall.desktop
@@ -0,0 +1,114 @@
+
+[Desktop Entry]
+Name=Firewall
+Name[as]=ফায়াৰ্ৱাল
+Name[bg]=Защитна стена
+Name[bn_IN]=ফায়ারওয়াল
+Name[ca]=Tallafoc
+Name[cs]=Firewall
+Name[da]=Firewall
+Name[de]=Firewall
+Name[el]=Firewall
+Name[es]=Cortafuego
+Name[fi]=Palomuuri
+Name[fr]=Pare-feu
+Name[gu]=ફાયરવોલ
+Name[he]=חומת אש
+Name[hi]=फायरवाल
+Name[hr]=Vatrozid
+Name[hu]=Tűzfal
+Name[id]=Firewall
+Name[is]=Eldveggur
+Name[it]=Firewall
+Name[ja]=ファイアーウォール
+Name[ka]=ქსელური ფარი
+Name[kn]=ಫೈರ್ವಾಲ್
+Name[ko]=방화벽
+Name[lv]=Ugunssiena
+Name[mai]=फायरवाल
+Name[ml]=ഫയര്‍വോള്‍
+Name[mr]=फायरवॉल
+Name[ms]=Firewall
+Name[nb]=Brannmur
+Name[nl]=Firewall
+Name[or]=ଅଗ୍ନିକବଚ
+Name[pa]=ਫਾਇਰਵਾਲ
+Name[pl]=Zapora sieciowa
+Name[pt]=Firewall
+Name[pt_BR]=Firewall
+Name[ro]=Paravan de protecție
+Name[ru]=Межсетевой экран
+Name[si]=ගිනිපවුර (ෆයර්වෝල්)
+Name[sk]=Firewall
+Name[sr]=Заштитни зид
+Name[sr@latin]=Zaštitni zid
+Name[sv]=Brandvägg
+Name[ta]=ஃபயர்வால்
+Name[te]=ఫైర్‌వాల్
+Name[uk]=Мережний екран
+Name[zh_CN]=防火墙
+Name[zh_TW]=防火牆
+Comment=Firewall Configuration
+Comment[ar]=تهيئة الجدار النّاري
+Comment[as]=ফায়াৰ্ৱাল বিন্যাস
+Comment[bg]=Настройка на защитната стена
+Comment[bn]=ফায়ারওয়াল কনফিগারেশন
+Comment[bn_IN]=ফায়ারওয়াল কনফিগারেশন
+Comment[ca]=Configuració del tallafoc
+Comment[cs]=Nastavení firewallu
+Comment[cy]=Cyfluniad Mur Cadarn
+Comment[da]=Konfiguration af firewall
+Comment[de]=Firewall-Konfiguration
+Comment[el]=Ρύθμιση Firewall
+Comment[es]=Configuración del cortafuegos
+Comment[et]=Tulemüüri seaded
+Comment[fa]=پیکربندی دیوارآتش
+Comment[fi]=Palomuuriasetukset
+Comment[fr]=Configuration du pare-feu
+Comment[gu]=ફાયરવોલ રુપરેખાંકન
+Comment[he]=הגדרת חומת האש
+Comment[hi]=फायरवाल विन्यास 
+Comment[hr]=Konfiguracija vatrozida
+Comment[hu]=Tűzfalbeállítások
+Comment[id]=Konfigurasi Firewall
+Comment[is]=Stillingar eldveggs
+Comment[it]=Configurazione del Firewall
+Comment[ja]=ファイアーウォールの設定
+Comment[ka]=ქსელური ფარის კონფიგურაცია
+Comment[kn]=ಫೈರ್ವಾಲ್ ಸ್ವರೂಪಣೆ
+Comment[ko]=방화벽 설정
+Comment[lt]=Ugniasienės nustatymai
+Comment[mai]=फायरवाल विन्यास 
+Comment[mk]=Конфигурација на огненг ѕид
+Comment[ml]=ഫയര്‍വോള്‍ ക്രമീകരണം
+Comment[mr]=फायरवॉल संयोजना
+Comment[ms]=Tentutetap Firewall
+Comment[nb]=Konfigurasjon av brannmur
+Comment[nl]=Firewallconfiguratie
+Comment[or]=ଅଗ୍ନିକବଚର ବିନ୍ଯାସ
+Comment[pa]=ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ
+Comment[pl]=Konfiguracja zapory sieciowej
+Comment[pt]=Configuração da Firewall
+Comment[pt_BR]=Configuração do Firewall
+Comment[ro]=Configurare paravan de protecție
+Comment[ru]=Настройка межсетевого экрана
+Comment[si]=ෆයර්වෝල් මානකරණය
+Comment[sk]=Nastavenia firewallu
+Comment[sl]=Nastavitev požarnega zidu
+Comment[sr]=Подешавање заштитног зида
+Comment[sr@latin]=Podešavanje zaštitnog zida
+Comment[sv]=Brandväggskonfiguration
+Comment[ta]=ஃபயர்வால் கட்டமைப்பு
+Comment[te]=Firewall ఆకృతీకరణ
+Comment[tr]=Güvenlik Duvarı Yapılandırması
+Comment[uk]=Налаштовування мережного екрану
+Comment[vi]=Cấu hình Tường lửa
+Comment[zh_CN]=防火墙配置
+Comment[zh_TW]=防火牆設定
+Icon=preferences-system-firewall
+Categories=System;Settings;Security;
+Exec=/usr/bin/system-config-firewall
+Type=Application
+StartupNotify=true
+Terminal=false
+X-Desktop-File-Install-Version=0.15
diff --git a/netvm/apps.orig/system-config-services.desktop b/netvm/apps.orig/system-config-services.desktop
new file mode 100644
index 0000000..3c88166
--- /dev/null
+++ b/netvm/apps.orig/system-config-services.desktop
@@ -0,0 +1,175 @@
+
+[Desktop Entry]
+Name=Services
+Name[ar]=الخدمات
+Name[as]=সেৱাসমূহ
+Name[bg]=Услуги
+Name[bn]=পরিসেবা
+Name[bn_IN]=পরিসেবা
+Name[bs]=Usluge
+Name[ca]=Serveis
+Name[cs]=Služby
+Name[cy]=Gwasanaethau
+Name[da]=Tjenester
+Name[de]=Dienste
+Name[el]=Υπηρεσίες
+Name[en_GB]=Services
+Name[es]=Servicios
+Name[et]=Teenused
+Name[fa]=خدمات
+Name[fi]=Palvelut
+Name[fr]=Services
+Name[gu]=સેવાઓ
+Name[hi]=सेवायें
+Name[hr]=Usluge
+Name[hu]=Szolgáltatások
+Name[id]=Layanan
+Name[is]=Þjónustur
+Name[it]=Servizi
+Name[ja]=サービス
+Name[ka]=სერვისები
+Name[kn]=ಸೇವೆಗಳು
+Name[ko]=서비스
+Name[lt]=Tarnybos
+Name[lv]=Servisi
+Name[mai]=सेवा
+Name[mk]=Сервиси
+Name[ml]=സേവനങ്ങള്‍
+Name[mr]=सेवा
+Name[ms]=Perkhidmatan
+Name[nb]=Tjenester
+Name[nl]=Services
+Name[or]=ସେବା
+Name[pa]=ਸਰਵਿਸਾਂ
+Name[pl]=Usługi
+Name[pt]=Serviços
+Name[pt_BR]=Serviços
+Name[ro]=Servicii
+Name[ru]=Службы
+Name[si]=සේවාවන්
+Name[sk]=Služby
+Name[sl]=Storitve
+Name[sr]=Сервиси
+Name[sr@latin]=Servisi
+Name[sv]=Tjänster
+Name[ta]=சேவைகள்
+Name[te]=సేవలు
+Name[tr]=Servisler
+Name[uk]=Служби
+Name[vi]=Dịch vụ
+Name[zh_CN]=服务
+Name[zh_TW]=服務
+GenericName=Service Management
+GenericName[ar]=إدارة الخدمة
+GenericName[as]=সেৱাৰ পৰিচালনা
+GenericName[bg]=Мениджмънт на услугите
+GenericName[bn_IN]=পরিসেবা পরিচালনা
+GenericName[bs]=Upravljanje uslugom
+GenericName[ca]=Gestió de serveis
+GenericName[cs]=Správa služeb
+GenericName[da]=Administration af tjenester
+GenericName[de]=Dienst-Verwaltung
+GenericName[el]=Διαχείριση υπηρεσιών
+GenericName[en_GB]=Service Management
+GenericName[es]=Administración de Servicios
+GenericName[et]=Teenusehaldur
+GenericName[fi]=Palvelujen hallinta
+GenericName[fr]=Gestion des services
+GenericName[gu]=સેવા વ્યવસ્થાપન
+GenericName[hi]=सेवा प्रबंधन
+GenericName[hr]=Upravljanje uslugom
+GenericName[hu]=Szolgáltatás igazgatás
+GenericName[id]=Pengelolaan Layanan: 
+GenericName[is]=þjónustustýring
+GenericName[it]=Gestione dei servizi
+GenericName[ja]=サービス管理
+GenericName[ka]=სერვისების მართვა
+GenericName[kn]=ಸೇವೆಯ ನಿರ್ವಹಣೆ
+GenericName[ko]=서비스 관리
+GenericName[lv]=Servisu vadība
+GenericName[mai]=सेवा प्रबंधन
+GenericName[mk]=Менаџмент на сервиси
+GenericName[ml]=സര്‍വീസ് മാനേജ്മെന്റ്
+GenericName[mr]=सेवा व्यवस्थापन
+GenericName[ms]=Pengurusan Servis
+GenericName[nb]=Håndtering av tjenester
+GenericName[nl]=Service Beheer
+GenericName[or]=ସେବା ପରିଚାଳନ
+GenericName[pa]=ਸੇਵਾ ਪਰਬੰਧ
+GenericName[pl]=Zarządzanie usługami
+GenericName[pt]=Gestão de Serviços
+GenericName[pt_BR]=Gerenciamento do serviço
+GenericName[ro]=Management serviciu
+GenericName[ru]=Управление службами
+GenericName[si]=සේවා කළමණාකරනය
+GenericName[sk]=Správa služieb
+GenericName[sr]=Управљање сервисима
+GenericName[sr@latin]=Upravljanje servisima
+GenericName[sv]=Tjänsthantering
+GenericName[ta]=சேவை மேலாண்மை
+GenericName[te]=సేవల నిర్వహణ
+GenericName[tr]=Servis Yönetimi
+GenericName[uk]=Керування службами
+GenericName[zh_CN]=服务程序管理：
+GenericName[zh_TW]=服務管理
+Comment=Configure which services will be running when the system starts
+Comment[ar]=تهيئة الخدمات التي سوف تعمل عند بدء النظام
+Comment[as]=ব্যৱস্থাপ্ৰণালী আৰম্ভ হওঁতে চলিব লগীয়া সেৱা বিন্যাস কৰক
+Comment[bg]=Избор на услуги които да работят при стартиране на системата
+Comment[bn_IN]=সিস্টেম আরম্ভের সময় সক্রিয় পরিসেবাগুলি কনফিগার করুন
+Comment[bs]=Konfiguriranje usluga koje će biti pokrenute tijekom pokretanja sistema
+Comment[ca]=Configureu quins serveis s'executaran quan el sistema s'iniciï
+Comment[cs]=Nastavit, jaké služby budou při startu systému spuštěny
+Comment[da]=Konfigurér hvilke tjenester der skal køre når systemet startes
+Comment[de]=Konfigurieren der Dienste, die beim Starten des Systems ausgeführt werden
+Comment[el]=Ρυθμίστε ποιες υπηρεσίες επιθυμείτε να τρέχουν κατά την εκκίνηση του συστήματος
+Comment[en_GB]=Configure which services will be running when the system starts
+Comment[es]=Configurar qué servicios se ejecutarán cuando se inicie el sistema 
+Comment[et]=Määratakse teenused, millised käivitatakse süsteemi käivitamisel
+Comment[fi]=Aseta mitkä palvelut ovat käytössä järjestelmän käynnistyessä
+Comment[fr]=Configure quels services seront lancés au démarrage du système
+Comment[gu]=જ્યારે સિસ્ટમ શરૂ થાય ત્યારે કઈ સેવાઓ ચાલી રહી હશે તે રૂપરેખાંકિત કરો
+Comment[hi]=विन्यस्त करें कि कौन सी सेवा चल रही है जब सिस्टम आरंभ होता है
+Comment[hr]=Konfiguriranje usluga koje će biti pokrenute tijekom pokretanja sustava
+Comment[hu]=Annak beállítása, hogy mely szolgáltatások fussanak a rendszer indításakor
+Comment[id]=Tentukan layanan mana yang akan berjalan ketika sistem mulai
+Comment[is]=Stilla hvaða þjónustur eru gangsettar við ræsingu
+Comment[it]=Configura quali servizi verranno avviati all'avvio del sistema
+Comment[ja]=システムの起動時に実行するサービスを設定します
+Comment[ka]=აირჩიეთ სერვისები, რომლებიც გაიშვებს სისტემის ჩართვისას
+Comment[kn]=ವ್ಯವಸ್ಥೆ ಪ್ರಾರಂಭಗೊಂಡಾಗ ಯಾವ ಯಾವ ಸೇವೆಗಳು ಚಾಲನೆಯಲ್ಲಿರ ಬೇಕು ಎಂಬುದನ್ನು ರೂಪಿಸಿ
+Comment[ko]=시스템을 시작할 때 실행되는 서비스 설정
+Comment[lv]=Konfigurēt servisus, kas tiks startēti sistēmas starta laikā
+Comment[mai]=विन्यस्त करू जे कओन सी सेवा चलि रही अछि जखन सिस्टम आरंभ  हाएत  अछि
+Comment[mk]=Конфигурирајте кои сервиси да се подигнуваат заедно со системот
+Comment[ml]=സിസ്റ്റം ആരംഭിക്കുമ്പോള്‍ ഏതെല്ലാം സേവനങ്ങള്‍ പ്രവര്‍ത്തിക്കണം എന്നതു് ക്രമീകരിക്കുക
+Comment[mr]=प्रणाली सुरू होताना कोणत्या सेवा सुरू होतील हे व्यूहरचित करा
+Comment[ms]=Tetapkan servis mana yang akan dilaksanakan ketika sistem bermula
+Comment[nb]=Bestem hvilke tjenester som skal kjøre når systemet starter
+Comment[nl]=Configureer welke service actief zal zijn wanneer het systeem start
+Comment[or]=ତନ୍ତ୍ର ପ୍ରାରମ୍ଭ ହେଲେ କେଉଁ ସେବା ପ୍ରାରମ୍ଭ ହେବ ତାହାକୁ ବିନ୍ଯାସ କରନ୍ତୁ
+Comment[pa]=ਸੰਰਚਨਾ ਕਰੋ ਕਿ ਕਿੰਨਾ ਸੇਵਾਵਾਂ ਨੂੰ ਸਿਸਟਮ ਸ਼ੁਰੂ ਹੋਣ ਸਮੇਂ ਚਾਲੂ ਕੀਤਾ ਜਾਵੇਗਾ
+Comment[pl]=Konfiguracja usług uruchamianych podczas startu systemu
+Comment[pt]=Configure que serviços se executam quando o sistema é iniciado
+Comment[pt_BR]=Configure quais serviços serão executados quando o sistema for iniciado
+Comment[ro]=Configuraţi ce servicii rulează la pornirea sistemului.
+Comment[ru]=Настройка списка служб, запускаемых при старте системы
+Comment[si]=පද්ධතිය ආරම්භයේදී ක්‍රියාත්මකව පැවතිය යුතු සේවාවන් මානකරන්න
+Comment[sk]=Nastaviť, ktoré služby budú spustené pri štarte systému
+Comment[sr]=Подешава који ће се сервиси извршавати када се систем покрене
+Comment[sr@latin]=Podešava koji će se servisi izvršavati kada se sistem pokrene
+Comment[sv]=Konfigurera vilka tjänster som kommer att köras då systemet startar
+Comment[ta]=கணினியை துவக்கும் போது எந்த சேவைகள் இயங்க வேண்டும் என கட்டமைக்கவும்
+Comment[te]=కంప్యూటరు ప్రారంభమయ్యినప్పుడు ఏ సేవలను ఉపయోగించాలో ఆకృతీకరించండి
+Comment[tr]=Sisteminiz açıldığında hangi servislerin çalışmaya başlayacağını yapılandırınız.
+Comment[uk]=Налаштовування списку служб, що запускаються при старті системи
+Comment[zh_CN]=设置系统启动时所要运行的服务程序
+Comment[zh_TW]=設定當系統啟動時，要執行哪些服務
+StartupNotify=true
+Icon=system-config-services.png
+Exec=/usr/bin/system-config-services
+Type=Application
+Terminal=false
+Encoding=UTF-8
+Categories=System;Settings;X-Red-Hat-Base;
+X-Desktop-File-Install-Version=0.15
diff --git a/netvm/apps.templates/konsole.desktop b/netvm/apps.templates/konsole.desktop
new file mode 100644
index 0000000..498e1f3
--- /dev/null
+++ b/netvm/apps.templates/konsole.desktop
@@ -0,0 +1,174 @@
+[Desktop Entry]
+Type=Application
+Exec=qvm-run -q --tray -a --user=root %VMNAME% "konsole"
+Icon=%VMDIR%/icon.png
+X-DocPath=konsole/index.html
+Terminal=false
+X-KDE-StartupNotify=true
+
+Name=%VMNAME%: Konsole
+Name[af]=%VMNAME%: Konsole
+Name[ar]=%VMNAME%: كونسول
+Name[as]=%VMNAME%: Konsole
+Name[be]=%VMNAME%: Konsole
+Name[be@latin]=%VMNAME%: Konsole
+Name[bg]=%VMNAME%: Konsole
+Name[bn]=%VMNAME%: কনসোল
+Name[bn_IN]=%VMNAME%: Konsole
+Name[br]=%VMNAME%: Konsole
+Name[ca]=%VMNAME%: Konsole
+Name[ca@valencia]=%VMNAME%: Konsole
+Name[cs]=%VMNAME%: Konsole
+Name[csb]=%VMNAME%: Kònsola
+Name[cy]=%VMNAME%: Konsole
+Name[da]=%VMNAME%: Konsole
+Name[de]=%VMNAME%: Konsole
+Name[el]=%VMNAME%: Κονσόλα
+Name[en_GB]=%VMNAME%: Konsole
+Name[eo]=%VMNAME%: Konsole
+Name[es]=%VMNAME%: Konsole
+Name[et]=%VMNAME%: Konsool
+Name[eu]=%VMNAME%: Kontsola
+Name[fi]=%VMNAME%: Konsole
+Name[fr]=%VMNAME%: Konsole
+Name[fy]=%VMNAME%: Konsole
+Name[ga]=%VMNAME%: Konsole
+Name[gl]=%VMNAME%: Konsole
+Name[gu]=%VMNAME%: કોન્સોલ
+Name[he]=%VMNAME%: Konsole
+Name[hi]=%VMNAME%: कंसोल
+Name[hne]=%VMNAME%: कंसोल
+Name[hr]=%VMNAME%: Konzola
+Name[hsb]=%VMNAME%: Konsola
+Name[hu]=%VMNAME%: Konsole
+Name[is]=%VMNAME%: Skjáhermir
+Name[it]=%VMNAME%: Konsole
+Name[ja]=%VMNAME%: Konsole
+Name[ka]=%VMNAME%: კონსოლი
+Name[kk]=%VMNAME%: Konsole
+Name[km]=%VMNAME%: កុងសូល
+Name[kn]=%VMNAME%: ಕನ್ಸೋಲ್
+Name[ko]=%VMNAME%: Konsole
+Name[ku]=%VMNAME%: Konsol
+Name[lt]=%VMNAME%: Konsole
+Name[lv]=%VMNAME%: Konsole
+Name[mai]=%VMNAME%: कंसोल
+Name[mk]=%VMNAME%: Конзола
+Name[ml]=%VMNAME%: കണ്‍സോള്‍
+Name[mr]=%VMNAME%: कंसोल
+Name[ms]=%VMNAME%: Konsole
+Name[nb]=%VMNAME%: Konsole
+Name[nds]=%VMNAME%: Konsole
+Name[ne]=%VMNAME%: कन्सोल
+Name[nl]=%VMNAME%: Konsole
+Name[nn]=%VMNAME%: Konsoll
+Name[oc]=%VMNAME%: Konsole
+Name[or]=%VMNAME%: କୋଲସୋଲ
+Name[pa]=%VMNAME%: ਕਨਸੋਲ
+Name[pl]=%VMNAME%: Konsola
+Name[pt]=%VMNAME%: Konsole
+Name[pt_BR]=%VMNAME%: Konsole
+Name[ro]=%VMNAME%: Konsolă
+Name[ru]=%VMNAME%: Konsole
+Name[se]=%VMNAME%: Konsolla
+Name[si]=%VMNAME%: Konsole
+Name[sk]=%VMNAME%: Konzola
+Name[sl]=%VMNAME%: Konzola
+Name[sr]=%VMNAME%: Конзола
+Name[sr@latin]=%VMNAME%: Konsole
+Name[sv]=%VMNAME%: Konsole
+Name[ta]=%VMNAME%: கான்சோல்
+Name[te]=%VMNAME%: కాన్సోల్
+Name[tg]=%VMNAME%: Консол
+Name[th]=%VMNAME%: คอนโซล K
+Name[tr]=%VMNAME%: Konsole
+Name[uk]=%VMNAME%: Konsole
+Name[uz]=%VMNAME%: Konsole
+Name[uz@cyrillic]=%VMNAME%: Konsole
+Name[vi]=%VMNAME%: Konsole
+Name[wa]=%VMNAME%: Konsole
+Name[xh]=%VMNAME%: Konsole
+Name[x-test]=%VMNAME%: xxKonsolexx
+Name[zh_CN]=%VMNAME%: Konsole
+Name[zh_TW]=%VMNAME%: Konsole
+
+GenericName=%VMNAME%: Terminal
+GenericName[af]=%VMNAME%: Terminaal
+GenericName[ar]=%VMNAME%: طرفيّة
+GenericName[as]=%VMNAME%: টাৰ্মিনেল
+GenericName[be@latin]=%VMNAME%: Terminał
+GenericName[bg]=%VMNAME%: Терминал
+GenericName[bn]=%VMNAME%: টার্মিনাল
+GenericName[bn_IN]=%VMNAME%: টার্মিন্যাল
+GenericName[ca]=%VMNAME%: Terminal
+GenericName[ca@valencia]=%VMNAME%: Terminal
+GenericName[cs]=%VMNAME%: Terminál
+GenericName[csb]=%VMNAME%: Terminal
+GenericName[da]=%VMNAME%: Terminal
+GenericName[de]=%VMNAME%: Terminal
+GenericName[el]=%VMNAME%: Τερματικό
+GenericName[en_GB]=%VMNAME%: Terminal
+GenericName[eo]=%VMNAME%: Terminalo
+GenericName[es]=%VMNAME%: Terminal
+GenericName[et]=%VMNAME%: Terminal
+GenericName[eu]=%VMNAME%: Terminala
+GenericName[fi]=%VMNAME%: Komentoikkuna
+GenericName[fr]=%VMNAME%: Terminal
+GenericName[fy]=%VMNAME%: Terminal
+GenericName[ga]=%VMNAME%: Teirminéal
+GenericName[gl]=%VMNAME%: Terminal
+GenericName[gu]=%VMNAME%: ટર્મિનલ
+GenericName[he]=%VMNAME%: מסוף
+GenericName[hi]=%VMNAME%: टर्मिनल
+GenericName[hne]=%VMNAME%: टर्मिनल
+GenericName[hr]=%VMNAME%: Terminal
+GenericName[hsb]=%VMNAME%: Terminal
+GenericName[hu]=%VMNAME%: Terminál
+GenericName[is]=%VMNAME%: Skjáhermir
+GenericName[it]=%VMNAME%: Terminale
+GenericName[ja]=%VMNAME%: ターミナル
+GenericName[kk]=%VMNAME%: Терминал
+GenericName[km]=%VMNAME%: ស្ថានីយ
+GenericName[kn]=%VMNAME%: ಆದೇಶತೆರೆ (ಟರ್ಮಿನಲ್)
+GenericName[ko]=%VMNAME%: 터미널
+GenericName[ku]=%VMNAME%: Termînal
+GenericName[lt]=%VMNAME%: Terminalas
+GenericName[lv]=%VMNAME%: Terminālis
+GenericName[mai]=%VMNAME%: टर्मिनल
+GenericName[mk]=%VMNAME%: Терминал
+GenericName[ml]=%VMNAME%: ടെര്‍മിനല്‍
+GenericName[mr]=%VMNAME%: टर्मिनल
+GenericName[nb]=%VMNAME%: Terminal
+GenericName[nds]=%VMNAME%: Konsool
+GenericName[nl]=%VMNAME%: Terminal
+GenericName[nn]=%VMNAME%: Terminal
+GenericName[or]=%VMNAME%: ଟର୍ମିନାଲ
+GenericName[pa]=%VMNAME%: ਟਰਮੀਨਲ
+GenericName[pl]=%VMNAME%: Terminal
+GenericName[pt]=%VMNAME%: Terminal
+GenericName[pt_BR]=%VMNAME%: Terminal
+GenericName[ro]=%VMNAME%: Terminal
+GenericName[ru]=%VMNAME%: Терминал
+GenericName[se]=%VMNAME%: Terminal
+GenericName[si]=%VMNAME%: Terminal
+GenericName[sk]=%VMNAME%: Terminál
+GenericName[sl]=%VMNAME%: Terminal
+GenericName[sr]=%VMNAME%: Терминал
+GenericName[sr@latin]=%VMNAME%: Terminal
+GenericName[sv]=%VMNAME%: Terminal
+GenericName[ta]=%VMNAME%: முனையம்
+GenericName[te]=%VMNAME%: టెర్మినల్
+GenericName[tg]=%VMNAME%: Терминал
+GenericName[th]=%VMNAME%: เทอร์มินัล
+GenericName[tr]=%VMNAME%: Uçbirim
+GenericName[uk]=%VMNAME%: Термінал
+GenericName[uz]=%VMNAME%: Terminal
+GenericName[uz@cyrillic]=%VMNAME%: Терминал
+GenericName[wa]=%VMNAME%: Terminå
+GenericName[x-test]=%VMNAME%: xxTerminalxx
+GenericName[zh_CN]=%VMNAME%: 终端
+GenericName[zh_TW]=%VMNAME%: 終端機
+X-DBUS-StartupType=Unique
+X-KDE-AuthorizeAction=shell_access
+Categories=Qt;KDE;System;TerminalEmulator;
+X-Qubes-VmName=%VMNAME%
diff --git a/netvm/apps.templates/nm-connection-editor.desktop b/netvm/apps.templates/nm-connection-editor.desktop
new file mode 100644
index 0000000..8068a1c
--- /dev/null
+++ b/netvm/apps.templates/nm-connection-editor.desktop
@@ -0,0 +1,104 @@
+[Desktop Entry]
+Name=%VMNAME%: Network Connections
+Name[ar]=%VMNAME%: الاتصالات الشبكية
+Name[as]=%VMNAME%: নে'টৱৰ্ক সংযোগসমূহ
+Name[be]=%VMNAME%: Сеткавыя далучэньні
+Name[be@latin]=%VMNAME%: Sietkavyja spałučeńni
+Name[bg]=%VMNAME%: Мрежови връзки
+Name[bn_IN]=%VMNAME%: নেটওয়ার্ক সংযোগসমূহ
+Name[ca]=%VMNAME%: Connexions de xarxa
+Name[crh]=%VMNAME%: Şebeke Bağlantıları
+Name[cs]=%VMNAME%: Připojení k síti
+Name[da]=%VMNAME%: Netværksforbindelser
+Name[de]=%VMNAME%: Netzwerkverbindungen
+Name[el]=%VMNAME%: Συνδέσεις δικτύου
+Name[en_GB]=%VMNAME%: Network Connections
+Name[es]=%VMNAME%: Conexiones de red
+Name[et]=%VMNAME%: Võrguühendused
+Name[eu]=%VMNAME%: Sareko konexioak
+Name[fi]=%VMNAME%: Verkkoyhteydet
+Name[fr]=%VMNAME%: Connexions réseau
+Name[gl]=%VMNAME%: Conexións de rede
+Name[gu]=%VMNAME%: નેટવર્ક જોડાણો
+Name[he]=%VMNAME%: חיבורי רשת
+Name[hu]=%VMNAME%: Hálózati kapcsolatok
+Name[id]=%VMNAME%: Sambungan Jaringan
+Name[it]=%VMNAME%: Connessioni di rete
+Name[kn]=%VMNAME%: ಜಾಲಬಂಧ ಸಂಪರ್ಕಗಳು
+Name[ko]=%VMNAME%: 네트워크 연결
+Name[lt]=%VMNAME%: Tinklo ryšiai
+Name[mk]=%VMNAME%: Мрежни врски
+Name[ml]=%VMNAME%: നെറ്റ്‌വര്‍ക്ക് കണക്ഷനുകള്‍
+Name[mr]=%VMNAME%: जाळं जुळवणी
+Name[nb]=%VMNAME%: Nettverkstilkoblinger
+Name[nl]=%VMNAME%: Netwerkverbindingen
+Name[nn]=%VMNAME%: Nettverkstilkoplingar
+Name[oc]=%VMNAME%: Connexions ret
+Name[or]=%VMNAME%: ନେଟୱର୍କ ସଂଯୋଗଗୁଡ଼ିକ
+Name[pa]=%VMNAME%: ਨੈੱਟਵਰਕ ਕੁਨੈਕਸ਼ਨ
+Name[pl]=%VMNAME%: Połączenia sieciowe
+Name[pt]=%VMNAME%: Ligações de Rede
+Name[pt_BR]=%VMNAME%: Conexões de rede
+Name[ro]=%VMNAME%: Conexiuni de rețea
+Name[ru]=%VMNAME%: Сетевые соединения
+Name[sk]=%VMNAME%: Sieťové spojenia
+Name[sl]=%VMNAME%: Omrežne povezave
+Name[sr]=%VMNAME%: Везе са мрежом
+Name[sr@latin]=%VMNAME%: Veze sa mrežom
+Name[sv]=%VMNAME%: Nätverksanslutningar
+Name[ta]=%VMNAME%: பிணைய இணைப்புகள்
+Name[te]=%VMNAME%: నెట్వర్కు అనుసంధానములు
+Name[zh_CN]=%VMNAME%: 网络连接
+Name[zh_HK]=%VMNAME%: 網絡連線
+Name[zh_TW]=%VMNAME%: 網路連線
+Comment=Manage and change your network connection settings
+Comment[ar]=أدِر وغيّر إعدادات الاتصالات الشبكية
+Comment[as]=আপোনাৰ নে'টৱৰ্ক সংযোগক পৰিচালনা আৰু সলনি কৰক
+Comment[be]=Кіраваць і зьмяняць настаўленьні сеткавых далучэньняў
+Comment[be@latin]=Kiruj i źmianiaj nałady sietkavych spałučeńniaŭ
+Comment[bg]=Управление и промяна на настройките на вашата мрежа
+Comment[bn_IN]=আপনার নেটওয়ার্ক সংযোগ বৈশিষ্ট্য সম্পাদন ও পরিবর্তন করুন
+Comment[ca]=Gestioneu i modifiqueu els paràmetres de connexió a la xarxa
+Comment[crh]=Şebeke bağlantısı tesbitleriñizni idare etiñiz ve değiştiriñiz
+Comment[cs]=Spravovat a měnit nastavení připojení k síti
+Comment[da]=Håndter og ændr din opsætning af netværksforbindelser
+Comment[de]=Einstellungen für Verbindungen mit Netzwerken verwalten
+Comment[el]=Διαχείριση και αλλαγή ρυθμίσεων των συνδέσεων δικτύου
+Comment[es]=Gestione y cambie sus ajustes de la conexión de red
+Comment[et]=Halda ja muuda võrguühenduse sätteid
+Comment[eu]=Kudeatu eta aldatu sareko konexioen ezarpenak
+Comment[fi]=Hallitse ja muuta verkkoyhteyksien asetuksia
+Comment[fr]=Gérer et modifier les paramètres des connexions réseau
+Comment[gl]=Xestione e cambie as súas configuracións de conexión de rede
+Comment[gu]=તમારા નેટવર્ક જોડાણ સુયોજનોને બદલો અને સંચાલિત કરો
+Comment[he]=נהל ושנה את הגדרות חיבורי הרשת שלך
+Comment[hu]=Hálózati kapcsolatok beállításainak kezelése és módosítása
+Comment[id]=Kelola dan ubah tatanan sambungan jaringan Anda
+Comment[it]=Gestisce e cambia le impostazioni della connessione di rete
+Comment[kn]=ನಿಮ್ಮ ಜಾಲಬಂಧ ಸಂಪರ್ಕಗಳನ್ನು ನಿರ್ವಹಿಸಿ ಹಾಗು ಬದಲಾಯಿಸಿ
+Comment[lt]=Tvarkykite ir keiskite savo tinklo ryšių parametrus
+Comment[ml]=നിങ്ങളുടെ നെറ്റ്‌വര്‍ക്ക് കണക്ഷന്‍ സജ്ജീകരണങ്ങള്‍ കൈകാര്യം ചെയ്യുകയും മാറ്റങ്ങള്‍ വരുത്തുകയും ചെയ്യുക.
+Comment[mr]=जाळं संयोजना व्यवस्थापीत करा व बदला
+Comment[nb]=Håndter og endre innstillinger for nettverksforbindelser
+Comment[or]=ଆପଣଙ୍କର ନେଟୱର୍କ ସଂଯୋଗ ସଂରଚନାକୁ ପରିଚାଳନା କରନ୍ତୁ ଏବଂ ପରିବର୍ତ୍ତନ କରନ୍ତୁ
+Comment[pa]=ਆਪਣੀ ਨੈੱਟਵਰਕ ਕੁਨੈਕਸ਼ਨ ਸੈਟਿੰਗ ਦਾ ਪਰਬੰਧ ਕਰੋ ਅਤੇ ਬਦਲੋ
+Comment[pl]=Zarządzanie ustawieniami połączeń sieciowych
+Comment[pt]=Gerir e alterar as suas definições da ligação de rede
+Comment[pt_BR]=Gerencie e altere suas configurações de conexão de rede
+Comment[ro]=Administrați și modificați opțiunile conexiunilor de rețea
+Comment[ru]=Управление параметрами сетевых соединений
+Comment[sl]=Upravljanje in spreminjanje nastavitev omrežne povezave
+Comment[sr]=Управљајте и измените подешавања ваших мрежних веза
+Comment[sr@latin]=Upravljajte i izmenite podešavanja vaših mrežnih veza
+Comment[sv]=Hantera och ändra inställningar för dina nätverksanslutningar
+Comment[ta]=உங்களின் பிணைய இணைப்பு அமைவுகளை மேலாண்மை மற்றும் மாற்றவும்
+Comment[te]=మీ నెట్వర్కు అనుసంధానము అమర్పులను నిర్వహించండి మరియు మార్చండి
+Comment[zh_CN]=管理或更改您的网络连接设置
+Comment[zh_HK]=管理與更改你的連線設定值
+Comment[zh_TW]=管理與變更您的連線設定值
+Icon=%VMDIR%/icon.png
+Exec=qvm-run -q --tray -a --user=root %VMNAME% "nm-connection-editor"
+Terminal=false
+Type=Application
+Categories=Settings;
+X-Qubes-VmName=%VMNAME%
diff --git a/netvm/apps.templates/qubes-vm.directory.template b/netvm/apps.templates/qubes-vm.directory.template
new file mode 100644
index 0000000..890f38d
--- /dev/null
+++ b/netvm/apps.templates/qubes-vm.directory.template
@@ -0,0 +1,5 @@
+[Desktop Entry]
+Encoding=UTF-8
+Type=Directory
+Name=%VMNAME% (VM)
+Icon=%VMDIR%/icon.png
diff --git a/netvm/apps.templates/show_tray.desktop b/netvm/apps.templates/show_tray.desktop
new file mode 100644
index 0000000..e5a81ac
--- /dev/null
+++ b/netvm/apps.templates/show_tray.desktop
@@ -0,0 +1,8 @@
+[Desktop Entry]
+Type=Application
+Exec=(qvm-run -q --tray -a --user=root netvm "stalonetray --background white --geometry 100x40" && qvm-run -q netvm --user=root "/usr/bin/nm-applet &")
+Icon=%VMDIR%/icon.png
+Name=%VMNAME%: Show Tray
+Categories=System
+StartupNotify=false
+X-Qubes-VmName=%VMNAME%
diff --git a/netvm/apps.templates/system-config-firewall.desktop b/netvm/apps.templates/system-config-firewall.desktop
new file mode 100644
index 0000000..f758157
--- /dev/null
+++ b/netvm/apps.templates/system-config-firewall.desktop
@@ -0,0 +1,114 @@
+
+[Desktop Entry]
+Name=%VMNAME%: Firewall
+Name[as]=%VMNAME%: ফায়াৰ্ৱাল
+Name[bg]=%VMNAME%: Защитна стена
+Name[bn_IN]=%VMNAME%: ফায়ারওয়াল
+Name[ca]=%VMNAME%: Tallafoc
+Name[cs]=%VMNAME%: Firewall
+Name[da]=%VMNAME%: Firewall
+Name[de]=%VMNAME%: Firewall
+Name[el]=%VMNAME%: Firewall
+Name[es]=%VMNAME%: Cortafuego
+Name[fi]=%VMNAME%: Palomuuri
+Name[fr]=%VMNAME%: Pare-feu
+Name[gu]=%VMNAME%: ફાયરવોલ
+Name[he]=%VMNAME%: חומת אש
+Name[hi]=%VMNAME%: फायरवाल
+Name[hr]=%VMNAME%: Vatrozid
+Name[hu]=%VMNAME%: Tűzfal
+Name[id]=%VMNAME%: Firewall
+Name[is]=%VMNAME%: Eldveggur
+Name[it]=%VMNAME%: Firewall
+Name[ja]=%VMNAME%: ファイアーウォール
+Name[ka]=%VMNAME%: ქსელური ფარი
+Name[kn]=%VMNAME%: ಫೈರ್ವಾಲ್
+Name[ko]=%VMNAME%: 방화벽
+Name[lv]=%VMNAME%: Ugunssiena
+Name[mai]=%VMNAME%: फायरवाल
+Name[ml]=%VMNAME%: ഫയര്‍വോള്‍
+Name[mr]=%VMNAME%: फायरवॉल
+Name[ms]=%VMNAME%: Firewall
+Name[nb]=%VMNAME%: Brannmur
+Name[nl]=%VMNAME%: Firewall
+Name[or]=%VMNAME%: ଅଗ୍ନିକବଚ
+Name[pa]=%VMNAME%: ਫਾਇਰਵਾਲ
+Name[pl]=%VMNAME%: Zapora sieciowa
+Name[pt]=%VMNAME%: Firewall
+Name[pt_BR]=%VMNAME%: Firewall
+Name[ro]=%VMNAME%: Paravan de protecție
+Name[ru]=%VMNAME%: Межсетевой экран
+Name[si]=%VMNAME%: ගිනිපවුර (ෆයර්වෝල්)
+Name[sk]=%VMNAME%: Firewall
+Name[sr]=%VMNAME%: Заштитни зид
+Name[sr@latin]=%VMNAME%: Zaštitni zid
+Name[sv]=%VMNAME%: Brandvägg
+Name[ta]=%VMNAME%: ஃபயர்வால்
+Name[te]=%VMNAME%: ఫైర్‌వాల్
+Name[uk]=%VMNAME%: Мережний екран
+Name[zh_CN]=%VMNAME%: 防火墙
+Name[zh_TW]=%VMNAME%: 防火牆
+Comment=Firewall Configuration
+Comment[ar]=تهيئة الجدار النّاري
+Comment[as]=ফায়াৰ্ৱাল বিন্যাস
+Comment[bg]=Настройка на защитната стена
+Comment[bn]=ফায়ারওয়াল কনফিগারেশন
+Comment[bn_IN]=ফায়ারওয়াল কনফিগারেশন
+Comment[ca]=Configuració del tallafoc
+Comment[cs]=Nastavení firewallu
+Comment[cy]=Cyfluniad Mur Cadarn
+Comment[da]=Konfiguration af firewall
+Comment[de]=Firewall-Konfiguration
+Comment[el]=Ρύθμιση Firewall
+Comment[es]=Configuración del cortafuegos
+Comment[et]=Tulemüüri seaded
+Comment[fa]=پیکربندی دیوارآتش
+Comment[fi]=Palomuuriasetukset
+Comment[fr]=Configuration du pare-feu
+Comment[gu]=ફાયરવોલ રુપરેખાંકન
+Comment[he]=הגדרת חומת האש
+Comment[hi]=फायरवाल विन्यास 
+Comment[hr]=Konfiguracija vatrozida
+Comment[hu]=Tűzfalbeállítások
+Comment[id]=Konfigurasi Firewall
+Comment[is]=Stillingar eldveggs
+Comment[it]=Configurazione del Firewall
+Comment[ja]=ファイアーウォールの設定
+Comment[ka]=ქსელური ფარის კონფიგურაცია
+Comment[kn]=ಫೈರ್ವಾಲ್ ಸ್ವರೂಪಣೆ
+Comment[ko]=방화벽 설정
+Comment[lt]=Ugniasienės nustatymai
+Comment[mai]=फायरवाल विन्यास 
+Comment[mk]=Конфигурација на огненг ѕид
+Comment[ml]=ഫയര്‍വോള്‍ ക്രമീകരണം
+Comment[mr]=फायरवॉल संयोजना
+Comment[ms]=Tentutetap Firewall
+Comment[nb]=Konfigurasjon av brannmur
+Comment[nl]=Firewallconfiguratie
+Comment[or]=ଅଗ୍ନିକବଚର ବିନ୍ଯାସ
+Comment[pa]=ਫਾਇਰਵਾਲ ਸੰਰਚਨਾ
+Comment[pl]=Konfiguracja zapory sieciowej
+Comment[pt]=Configuração da Firewall
+Comment[pt_BR]=Configuração do Firewall
+Comment[ro]=Configurare paravan de protecție
+Comment[ru]=Настройка межсетевого экрана
+Comment[si]=ෆයර්වෝල් මානකරණය
+Comment[sk]=Nastavenia firewallu
+Comment[sl]=Nastavitev požarnega zidu
+Comment[sr]=Подешавање заштитног зида
+Comment[sr@latin]=Podešavanje zaštitnog zida
+Comment[sv]=Brandväggskonfiguration
+Comment[ta]=ஃபயர்வால் கட்டமைப்பு
+Comment[te]=Firewall ఆకృతీకరణ
+Comment[tr]=Güvenlik Duvarı Yapılandırması
+Comment[uk]=Налаштовування мережного екрану
+Comment[vi]=Cấu hình Tường lửa
+Comment[zh_CN]=防火墙配置
+Comment[zh_TW]=防火牆設定
+Icon=%VMDIR%/icon.png
+Categories=System;Settings;Security;
+Exec=qvm-run -q --tray -a --user=root %VMNAME% "/usr/bin/system-config-firewall"
+Type=Application
+Terminal=false
+X-Desktop-File-Install-Version=0.15
+X-Qubes-VmName=%VMNAME%
diff --git a/netvm/apps.templates/system-config-services.desktop b/netvm/apps.templates/system-config-services.desktop
new file mode 100644
index 0000000..b8b6521
--- /dev/null
+++ b/netvm/apps.templates/system-config-services.desktop
@@ -0,0 +1,175 @@
+
+[Desktop Entry]
+Name=%VMNAME%: Services
+Name[ar]=%VMNAME%: الخدمات
+Name[as]=%VMNAME%: সেৱাসমূহ
+Name[bg]=%VMNAME%: Услуги
+Name[bn]=%VMNAME%: পরিসেবা
+Name[bn_IN]=%VMNAME%: পরিসেবা
+Name[bs]=%VMNAME%: Usluge
+Name[ca]=%VMNAME%: Serveis
+Name[cs]=%VMNAME%: Služby
+Name[cy]=%VMNAME%: Gwasanaethau
+Name[da]=%VMNAME%: Tjenester
+Name[de]=%VMNAME%: Dienste
+Name[el]=%VMNAME%: Υπηρεσίες
+Name[en_GB]=%VMNAME%: Services
+Name[es]=%VMNAME%: Servicios
+Name[et]=%VMNAME%: Teenused
+Name[fa]=%VMNAME%: خدمات
+Name[fi]=%VMNAME%: Palvelut
+Name[fr]=%VMNAME%: Services
+Name[gu]=%VMNAME%: સેવાઓ
+Name[hi]=%VMNAME%: सेवायें
+Name[hr]=%VMNAME%: Usluge
+Name[hu]=%VMNAME%: Szolgáltatások
+Name[id]=%VMNAME%: Layanan
+Name[is]=%VMNAME%: Þjónustur
+Name[it]=%VMNAME%: Servizi
+Name[ja]=%VMNAME%: サービス
+Name[ka]=%VMNAME%: სერვისები
+Name[kn]=%VMNAME%: ಸೇವೆಗಳು
+Name[ko]=%VMNAME%: 서비스
+Name[lt]=%VMNAME%: Tarnybos
+Name[lv]=%VMNAME%: Servisi
+Name[mai]=%VMNAME%: सेवा
+Name[mk]=%VMNAME%: Сервиси
+Name[ml]=%VMNAME%: സേവനങ്ങള്‍
+Name[mr]=%VMNAME%: सेवा
+Name[ms]=%VMNAME%: Perkhidmatan
+Name[nb]=%VMNAME%: Tjenester
+Name[nl]=%VMNAME%: Services
+Name[or]=%VMNAME%: ସେବା
+Name[pa]=%VMNAME%: ਸਰਵਿਸਾਂ
+Name[pl]=%VMNAME%: Usługi
+Name[pt]=%VMNAME%: Serviços
+Name[pt_BR]=%VMNAME%: Serviços
+Name[ro]=%VMNAME%: Servicii
+Name[ru]=%VMNAME%: Службы
+Name[si]=%VMNAME%: සේවාවන්
+Name[sk]=%VMNAME%: Služby
+Name[sl]=%VMNAME%: Storitve
+Name[sr]=%VMNAME%: Сервиси
+Name[sr@latin]=%VMNAME%: Servisi
+Name[sv]=%VMNAME%: Tjänster
+Name[ta]=%VMNAME%: சேவைகள்
+Name[te]=%VMNAME%: సేవలు
+Name[tr]=%VMNAME%: Servisler
+Name[uk]=%VMNAME%: Служби
+Name[vi]=%VMNAME%: Dịch vụ
+Name[zh_CN]=%VMNAME%: 服务
+Name[zh_TW]=%VMNAME%: 服務
+GenericName=%VMNAME%: Service Management
+GenericName[ar]=%VMNAME%: إدارة الخدمة
+GenericName[as]=%VMNAME%: সেৱাৰ পৰিচালনা
+GenericName[bg]=%VMNAME%: Мениджмънт на услугите
+GenericName[bn_IN]=%VMNAME%: পরিসেবা পরিচালনা
+GenericName[bs]=%VMNAME%: Upravljanje uslugom
+GenericName[ca]=%VMNAME%: Gestió de serveis
+GenericName[cs]=%VMNAME%: Správa služeb
+GenericName[da]=%VMNAME%: Administration af tjenester
+GenericName[de]=%VMNAME%: Dienst-Verwaltung
+GenericName[el]=%VMNAME%: Διαχείριση υπηρεσιών
+GenericName[en_GB]=%VMNAME%: Service Management
+GenericName[es]=%VMNAME%: Administración de Servicios
+GenericName[et]=%VMNAME%: Teenusehaldur
+GenericName[fi]=%VMNAME%: Palvelujen hallinta
+GenericName[fr]=%VMNAME%: Gestion des services
+GenericName[gu]=%VMNAME%: સેવા વ્યવસ્થાપન
+GenericName[hi]=%VMNAME%: सेवा प्रबंधन
+GenericName[hr]=%VMNAME%: Upravljanje uslugom
+GenericName[hu]=%VMNAME%: Szolgáltatás igazgatás
+GenericName[id]=%VMNAME%: Pengelolaan Layanan: 
+GenericName[is]=%VMNAME%: þjónustustýring
+GenericName[it]=%VMNAME%: Gestione dei servizi
+GenericName[ja]=%VMNAME%: サービス管理
+GenericName[ka]=%VMNAME%: სერვისების მართვა
+GenericName[kn]=%VMNAME%: ಸೇವೆಯ ನಿರ್ವಹಣೆ
+GenericName[ko]=%VMNAME%: 서비스 관리
+GenericName[lv]=%VMNAME%: Servisu vadība
+GenericName[mai]=%VMNAME%: सेवा प्रबंधन
+GenericName[mk]=%VMNAME%: Менаџмент на сервиси
+GenericName[ml]=%VMNAME%: സര്‍വീസ് മാനേജ്മെന്റ്
+GenericName[mr]=%VMNAME%: सेवा व्यवस्थापन
+GenericName[ms]=%VMNAME%: Pengurusan Servis
+GenericName[nb]=%VMNAME%: Håndtering av tjenester
+GenericName[nl]=%VMNAME%: Service Beheer
+GenericName[or]=%VMNAME%: ସେବା ପରିଚାଳନ
+GenericName[pa]=%VMNAME%: ਸੇਵਾ ਪਰਬੰਧ
+GenericName[pl]=%VMNAME%: Zarządzanie usługami
+GenericName[pt]=%VMNAME%: Gestão de Serviços
+GenericName[pt_BR]=%VMNAME%: Gerenciamento do serviço
+GenericName[ro]=%VMNAME%: Management serviciu
+GenericName[ru]=%VMNAME%: Управление службами
+GenericName[si]=%VMNAME%: සේවා කළමණාකරනය
+GenericName[sk]=%VMNAME%: Správa služieb
+GenericName[sr]=%VMNAME%: Управљање сервисима
+GenericName[sr@latin]=%VMNAME%: Upravljanje servisima
+GenericName[sv]=%VMNAME%: Tjänsthantering
+GenericName[ta]=%VMNAME%: சேவை மேலாண்மை
+GenericName[te]=%VMNAME%: సేవల నిర్వహణ
+GenericName[tr]=%VMNAME%: Servis Yönetimi
+GenericName[uk]=%VMNAME%: Керування службами
+GenericName[zh_CN]=%VMNAME%: 服务程序管理：
+GenericName[zh_TW]=%VMNAME%: 服務管理
+Comment=Configure which services will be running when the system starts
+Comment[ar]=تهيئة الخدمات التي سوف تعمل عند بدء النظام
+Comment[as]=ব্যৱস্থাপ্ৰণালী আৰম্ভ হওঁতে চলিব লগীয়া সেৱা বিন্যাস কৰক
+Comment[bg]=Избор на услуги които да работят при стартиране на системата
+Comment[bn_IN]=সিস্টেম আরম্ভের সময় সক্রিয় পরিসেবাগুলি কনফিগার করুন
+Comment[bs]=Konfiguriranje usluga koje će biti pokrenute tijekom pokretanja sistema
+Comment[ca]=Configureu quins serveis s'executaran quan el sistema s'iniciï
+Comment[cs]=Nastavit, jaké služby budou při startu systému spuštěny
+Comment[da]=Konfigurér hvilke tjenester der skal køre når systemet startes
+Comment[de]=Konfigurieren der Dienste, die beim Starten des Systems ausgeführt werden
+Comment[el]=Ρυθμίστε ποιες υπηρεσίες επιθυμείτε να τρέχουν κατά την εκκίνηση του συστήματος
+Comment[en_GB]=Configure which services will be running when the system starts
+Comment[es]=Configurar qué servicios se ejecutarán cuando se inicie el sistema 
+Comment[et]=Määratakse teenused, millised käivitatakse süsteemi käivitamisel
+Comment[fi]=Aseta mitkä palvelut ovat käytössä järjestelmän käynnistyessä
+Comment[fr]=Configure quels services seront lancés au démarrage du système
+Comment[gu]=જ્યારે સિસ્ટમ શરૂ થાય ત્યારે કઈ સેવાઓ ચાલી રહી હશે તે રૂપરેખાંકિત કરો
+Comment[hi]=विन्यस्त करें कि कौन सी सेवा चल रही है जब सिस्टम आरंभ होता है
+Comment[hr]=Konfiguriranje usluga koje će biti pokrenute tijekom pokretanja sustava
+Comment[hu]=Annak beállítása, hogy mely szolgáltatások fussanak a rendszer indításakor
+Comment[id]=Tentukan layanan mana yang akan berjalan ketika sistem mulai
+Comment[is]=Stilla hvaða þjónustur eru gangsettar við ræsingu
+Comment[it]=Configura quali servizi verranno avviati all'avvio del sistema
+Comment[ja]=システムの起動時に実行するサービスを設定します
+Comment[ka]=აირჩიეთ სერვისები, რომლებიც გაიშვებს სისტემის ჩართვისას
+Comment[kn]=ವ್ಯವಸ್ಥೆ ಪ್ರಾರಂಭಗೊಂಡಾಗ ಯಾವ ಯಾವ ಸೇವೆಗಳು ಚಾಲನೆಯಲ್ಲಿರ ಬೇಕು ಎಂಬುದನ್ನು ರೂಪಿಸಿ
+Comment[ko]=시스템을 시작할 때 실행되는 서비스 설정
+Comment[lv]=Konfigurēt servisus, kas tiks startēti sistēmas starta laikā
+Comment[mai]=विन्यस्त करू जे कओन सी सेवा चलि रही अछि जखन सिस्टम आरंभ  हाएत  अछि
+Comment[mk]=Конфигурирајте кои сервиси да се подигнуваат заедно со системот
+Comment[ml]=സിസ്റ്റം ആരംഭിക്കുമ്പോള്‍ ഏതെല്ലാം സേവനങ്ങള്‍ പ്രവര്‍ത്തിക്കണം എന്നതു് ക്രമീകരിക്കുക
+Comment[mr]=प्रणाली सुरू होताना कोणत्या सेवा सुरू होतील हे व्यूहरचित करा
+Comment[ms]=Tetapkan servis mana yang akan dilaksanakan ketika sistem bermula
+Comment[nb]=Bestem hvilke tjenester som skal kjøre når systemet starter
+Comment[nl]=Configureer welke service actief zal zijn wanneer het systeem start
+Comment[or]=ତନ୍ତ୍ର ପ୍ରାରମ୍ଭ ହେଲେ କେଉଁ ସେବା ପ୍ରାରମ୍ଭ ହେବ ତାହାକୁ ବିନ୍ଯାସ କରନ୍ତୁ
+Comment[pa]=ਸੰਰਚਨਾ ਕਰੋ ਕਿ ਕਿੰਨਾ ਸੇਵਾਵਾਂ ਨੂੰ ਸਿਸਟਮ ਸ਼ੁਰੂ ਹੋਣ ਸਮੇਂ ਚਾਲੂ ਕੀਤਾ ਜਾਵੇਗਾ
+Comment[pl]=Konfiguracja usług uruchamianych podczas startu systemu
+Comment[pt]=Configure que serviços se executam quando o sistema é iniciado
+Comment[pt_BR]=Configure quais serviços serão executados quando o sistema for iniciado
+Comment[ro]=Configuraţi ce servicii rulează la pornirea sistemului.
+Comment[ru]=Настройка списка служб, запускаемых при старте системы
+Comment[si]=පද්ධතිය ආරම්භයේදී ක්‍රියාත්මකව පැවතිය යුතු සේවාවන් මානකරන්න
+Comment[sk]=Nastaviť, ktoré služby budú spustené pri štarte systému
+Comment[sr]=Подешава који ће се сервиси извршавати када се систем покрене
+Comment[sr@latin]=Podešava koji će se servisi izvršavati kada se sistem pokrene
+Comment[sv]=Konfigurera vilka tjänster som kommer att köras då systemet startar
+Comment[ta]=கணினியை துவக்கும் போது எந்த சேவைகள் இயங்க வேண்டும் என கட்டமைக்கவும்
+Comment[te]=కంప్యూటరు ప్రారంభమయ్యినప్పుడు ఏ సేవలను ఉపయోగించాలో ఆకృతీకరించండి
+Comment[tr]=Sisteminiz açıldığında hangi servislerin çalışmaya başlayacağını yapılandırınız.
+Comment[uk]=Налаштовування списку служб, що запускаються при старті системи
+Comment[zh_CN]=设置系统启动时所要运行的服务程序
+Comment[zh_TW]=設定當系統啟動時，要執行哪些服務
+Icon=%VMDIR%/icon.png
+Exec=qvm-run -q --tray -a --user=root %VMNAME% "/usr/bin/system-config-services"
+Type=Application
+Terminal=false
+Encoding=UTF-8
+Categories=System;Settings;X-Red-Hat-Base;
+X-Desktop-File-Install-Version=0.15
+X-Qubes-VmName=%VMNAME%
diff --git a/qubeize_image b/qubeize_image
new file mode 100755
index 0000000..0c6d820
--- /dev/null
+++ b/qubeize_image
@@ -0,0 +1,68 @@
+#!/bin/sh
+
+CLEANIMG=$1
+NAME=$2
+IS_NETVM=$3
+
+if [ $# -eq 0 ]; then
+echo "usage $0 <clean_image_file> <template_name>"
+echo "usage $0 <clean_image_file> <template_name> netvm"
+exit
+fi
+
+if [ x$CLEANIMG = x ]; then
+echo "Image file not specified!"
+fi
+
+if [ x$NAME = x ]; then
+echo "Name not given!"
+fi
+
+ID=$(id -ur)
+
+if [ $ID != 0 ] ; then
+    echo "This script should be run as root user."
+    exit 1
+fi
+
+
+IMG=qubeized_images/$NAME-root.img
+echo "--> Copying $CLEANIMG to $IMG..."
+cp $CLEANIMG $IMG || exit 1
+
+echo "--> Mouting $IMG"
+
+mkdir -p mnt
+mount -o loop,offset=$((63*512)) qubeized_images/$NAME-root.img mnt || exit 1
+
+echo "--> Installing RPMs..."
+rpm --force --root=$(pwd)/mnt -ihv rpms_to_install/*
+
+
+echo "--> Copying the Apps Menu shortcuts..."
+APPSORIG=qubeized_images/$NAME-apps.orig
+APPSTEMPL=qubeized_images/$NAME-apps.templates
+mkdir -p $APPSORIG
+cp -r $(pwd)/mnt/usr/share/applications/* $APPSORIG
+
+if [ x$IS_NETVM != x ]; then
+    if ! [ -d netvm/apps.templates ] ; then
+        echo "--> ERROR: Missing netvm/apps.templates directory."
+        exit 1
+    fi
+else
+    echo "--> Createing the Apps Menu templates..."
+    ./create_apps_templates.sh $APPSORIG $APPSTEMPL
+fi
+
+if [ x$IS_NETVM == x ]; then
+    echo "--> Installing 3rd party apps"
+    ./add_3rd_party_software.sh
+fi
+
+
+echo "--> Unmounting $IMG"
+umount mnt
+
+echo "Qubeized image stored at: $IMG"
+
diff --git a/qubeized_images/.gitignore b/qubeized_images/.gitignore
new file mode 100644
index 0000000..72e8ffc
--- /dev/null
+++ b/qubeized_images/.gitignore
@@ -0,0 +1 @@
+*
diff --git a/rpm/.gitignore b/rpm/.gitignore
new file mode 100644
index 0000000..cc78d91
--- /dev/null
+++ b/rpm/.gitignore
@@ -0,0 +1 @@
+noarch/
diff --git a/rpms_to_install_appvm_x64/kernel b/rpms_to_install_appvm_x64/kernel
new file mode 120000
index 0000000..0576c9b
--- /dev/null
+++ b/rpms_to_install_appvm_x64/kernel
@@ -0,0 +1 @@
+../../rpms_3rd_party/kernel-2.6.32.9-1.pvops0.qubes.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_appvm_x64/kernel-firmware b/rpms_to_install_appvm_x64/kernel-firmware
new file mode 120000
index 0000000..60c20f6
--- /dev/null
+++ b/rpms_to_install_appvm_x64/kernel-firmware
@@ -0,0 +1 @@
+../../rpms_3rd_party/kernel-firmware-2.6.32.9-1.pvops0.qubes.noarch.rpm
\ No newline at end of file
diff --git a/rpms_to_install_appvm_x64/qubes-core-appvm b/rpms_to_install_appvm_x64/qubes-core-appvm
new file mode 120000
index 0000000..3898475
--- /dev/null
+++ b/rpms_to_install_appvm_x64/qubes-core-appvm
@@ -0,0 +1 @@
+../../core/rpm/x86_64/qubes-core-appvm-1.0.0-1.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_appvm_x64/qubes-gui-vm b/rpms_to_install_appvm_x64/qubes-gui-vm
new file mode 120000
index 0000000..81fe176
--- /dev/null
+++ b/rpms_to_install_appvm_x64/qubes-gui-vm
@@ -0,0 +1 @@
+../../gui/rpm/x86_64/qubes-gui-vm-1.0.0-1.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_appvm_x64/qubes-vchan-vm b/rpms_to_install_appvm_x64/qubes-vchan-vm
new file mode 120000
index 0000000..db25fc0
--- /dev/null
+++ b/rpms_to_install_appvm_x64/qubes-vchan-vm
@@ -0,0 +1 @@
+../../gui/rpm/x86_64/qubes-vchan-vm-{kernel-2.6.32.9-1.pvops0.qubes.x86_64}-1.0.0-1.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_appvm_x64/xen-libs b/rpms_to_install_appvm_x64/xen-libs
new file mode 120000
index 0000000..a985b66
--- /dev/null
+++ b/rpms_to_install_appvm_x64/xen-libs
@@ -0,0 +1 @@
+../../rpms_3rd_party/xen-libs-3.4.2-2.qubes.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_appvm_x64/xen-qubes-vm-essentials b/rpms_to_install_appvm_x64/xen-qubes-vm-essentials
new file mode 120000
index 0000000..013d312
--- /dev/null
+++ b/rpms_to_install_appvm_x64/xen-qubes-vm-essentials
@@ -0,0 +1 @@
+../../rpms_3rd_party/xen-qubes-vm-essentials-3.4.2-2.qubes.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/bridge-utils b/rpms_to_install_netvm_x64/bridge-utils
new file mode 120000
index 0000000..d302514
--- /dev/null
+++ b/rpms_to_install_netvm_x64/bridge-utils
@@ -0,0 +1 @@
+../../rpms_3rd_party/bridge-utils-1.2-8.fc12.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/kernel b/rpms_to_install_netvm_x64/kernel
new file mode 120000
index 0000000..19dd077
--- /dev/null
+++ b/rpms_to_install_netvm_x64/kernel
@@ -0,0 +1 @@
+../../rpms_3rd_party/kernel-2.6.31.9-1.pvops0.qubes.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/kernel-firmware b/rpms_to_install_netvm_x64/kernel-firmware
new file mode 120000
index 0000000..cfa0152
--- /dev/null
+++ b/rpms_to_install_netvm_x64/kernel-firmware
@@ -0,0 +1 @@
+../../rpms_3rd_party/kernel-firmware-2.6.31.9-1.pvops0.qubes.noarch.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/qubes-core-netvm b/rpms_to_install_netvm_x64/qubes-core-netvm
new file mode 120000
index 0000000..2ae756a
--- /dev/null
+++ b/rpms_to_install_netvm_x64/qubes-core-netvm
@@ -0,0 +1 @@
+../../core/rpm/x86_64/qubes-core-netvm-1.0.0-1.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/qubes-gui-vm b/rpms_to_install_netvm_x64/qubes-gui-vm
new file mode 120000
index 0000000..81fe176
--- /dev/null
+++ b/rpms_to_install_netvm_x64/qubes-gui-vm
@@ -0,0 +1 @@
+../../gui/rpm/x86_64/qubes-gui-vm-1.0.0-1.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/qubes-vchan-vm b/rpms_to_install_netvm_x64/qubes-vchan-vm
new file mode 120000
index 0000000..d190899
--- /dev/null
+++ b/rpms_to_install_netvm_x64/qubes-vchan-vm
@@ -0,0 +1 @@
+../../gui/rpm/x86_64/qubes-vchan-vm-{kernel-2.6.31.9-1.pvops0.qubes.x86_64}-1.0.0-1.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/stalonetray b/rpms_to_install_netvm_x64/stalonetray
new file mode 120000
index 0000000..6f886f8
--- /dev/null
+++ b/rpms_to_install_netvm_x64/stalonetray
@@ -0,0 +1 @@
+../../rpms_3rd_party/stalonetray-0.7.6-4.fc12.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/xen-libs b/rpms_to_install_netvm_x64/xen-libs
new file mode 120000
index 0000000..a985b66
--- /dev/null
+++ b/rpms_to_install_netvm_x64/xen-libs
@@ -0,0 +1 @@
+../../rpms_3rd_party/xen-libs-3.4.2-2.qubes.x86_64.rpm
\ No newline at end of file
diff --git a/rpms_to_install_netvm_x64/xen-qubes-vm-essentials b/rpms_to_install_netvm_x64/xen-qubes-vm-essentials
new file mode 120000
index 0000000..013d312
--- /dev/null
+++ b/rpms_to_install_netvm_x64/xen-qubes-vm-essentials
@@ -0,0 +1 @@
+../../rpms_3rd_party/xen-qubes-vm-essentials-3.4.2-2.qubes.x86_64.rpm
\ No newline at end of file
diff --git a/templates.spec b/templates.spec
new file mode 100644
index 0000000..3e70fd3
--- /dev/null
+++ b/templates.spec
@@ -0,0 +1,126 @@
+#
+# This SPEC is for bulding RPM packages that contain complete Qubes Template files
+# This includes the VM's root image, patched with all qubes rpms, etc
+#
+
+%{!?version: %define version %(cat version_appvm)}
+
+Name:		qubes-template-%{template_name}
+Version:	%{version}
+Release:	1
+Summary:	Qubes template for %{template_name}
+
+License:	GPL
+URL:		http://www.qubes-os.org
+Source:		.
+
+Requires:	qubes-core-dom0 xdg-utils
+
+%define _builddir %(pwd)
+%define _rpmdir %(pwd)/rpm
+%define dest_dir /var/lib/qubes/vm-templates/%{template_name}
+
+%description
+Qubes template for %{template_name}
+
+%build
+cd qubeized_images
+rm -f root.img.part.*
+tar --sparse -cf - %{template_name}-root.img | split -d -b 1G - root.img.part.
+cd ..
+./create_apps_for_templatevm.sh qubeized_images/%{template_name}-apps.templates/ %{template_name} %{dest_dir} qubeized_images/%{template_name}-apps
+
+
+%install
+rm -rf $RPM_BUILD_ROOT
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}
+for i in qubeized_images/root.img.part.* ; do ln $i $RPM_BUILD_ROOT/%{dest_dir}/`basename $i` ; done
+touch $RPM_BUILD_ROOT/%{dest_dir}/root.img # we will create the real file in %post
+touch $RPM_BUILD_ROOT/%{dest_dir}/private.img # we will create the real file in %post
+
+cp vm_conf_files/appvm-template.conf $RPM_BUILD_ROOT/%{dest_dir}/appvm-template.conf
+cp vm_conf_files/templatevm.conf $RPM_BUILD_ROOT/%{dest_dir}/templatevm.conf
+sed -e s/%TEMPLATENAME%/%{template_name}/ < vm_conf_files/templatevm.conf >\
+     $RPM_BUILD_ROOT/%{dest_dir}/%{template_name}.conf
+
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/kernels
+cp vm_kernels/vmlinuz $RPM_BUILD_ROOT/%{dest_dir}/kernels/vmlinuz
+cp vm_kernels/initramfs $RPM_BUILD_ROOT/%{dest_dir}/kernels/initramfs
+
+cp vm_initramfs_patches/qubes_cow_setup.sh $RPM_BUILD_ROOT/%{dest_dir}/kernels/qubes_cow_setup.sh
+
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/apps.templates
+mkdir -p $RPM_BUILD_ROOT/%{dest_dir}/apps
+cp -r qubeized_images/%{template_name}-apps.templates/* $RPM_BUILD_ROOT/%{dest_dir}/apps.templates
+cp -r qubeized_images/%{template_name}-apps/* $RPM_BUILD_ROOT/%{dest_dir}/apps
+touch $RPM_BUILD_ROOT/%{dest_dir}/icon.png
+
+%post
+echo "--> Processing the root.img... (this might take a while)"
+cat %{dest_dir}/root.img.part.* | tar --sparse -xf - -C %{dest_dir}
+rm -f %{dest_dir}/root.img.part.*
+mv %{dest_dir}/%{template_name}-root.img %{dest_dir}/root.img
+chown root.qubes %{dest_dir}/root.img
+chmod 0660 %{dest_dir}/root.img
+
+if [ "$1" = 1 ] ; then
+    # installing for the first time
+    echo "--> Creating private.img..."
+    truncate -s 2G %{dest_dir}/private.img
+    mkfs.ext4 -q -F %{dest_dir}/private.img
+    chown root.qubes %{dest_dir}/private.img
+    chmod 0660 %{dest_dir}/private.img
+fi
+
+
+export XDG_DATA_DIRS=/usr/share/
+if [ "$1" -gt 1 ] ; then
+    # upgrading already installed template...
+    echo "--> Removing previous menu shortcuts..."
+    xdg-desktop-menu uninstall --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
+fi
+
+echo "--> Instaling menu shortcuts..."
+ln -sf /usr/share/qubes/icons/template.png %{dest_dir}/icon.png
+xdg-desktop-menu install --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
+
+if [ "$1" = 1 ] ; then
+    # installing for the first time
+    qvm-add-template --rpm %{template_name}
+fi
+
+%preun
+if [ "$1" = 0 ] ; then
+    # no more packages left
+    qvm-remove -q --just-db %{template_name}
+
+    # we need to have it here, because rpm -U <template>
+    # apparently executes %preun of the old package *after* %post of the new packages...
+    echo "--> Removing menu shortcuts..."
+    export XDG_DATA_DIRS=/usr/share/
+    xdg-desktop-menu uninstall --mode system %{dest_dir}/apps/*.directory %{dest_dir}/apps/*.desktop
+
+
+fi
+
+%clean
+rm -rf $RPM_BUILD_ROOT
+
+%files
+%defattr(660,root,qubes,770)
+%dir %{dest_dir}
+%ghost %{dest_dir}/root.img
+%{dest_dir}/root.img.part.*
+%ghost %{dest_dir}/private.img
+%{dest_dir}/appvm-template.conf
+%{dest_dir}/templatevm.conf
+%{dest_dir}/%{template_name}.conf
+%dir %{dest_dir}/kernels
+%{dest_dir}/kernels/vmlinuz
+%{dest_dir}/kernels/initramfs
+%{dest_dir}/kernels/qubes_cow_setup.sh
+%attr (775,root,qubes) %dir %{dest_dir}/apps
+%attr (664,root,qubes) %{dest_dir}/apps/*
+%attr (775,root,qubes) %dir %{dest_dir}/apps.templates
+%attr (664,root,qubes) %{dest_dir}/apps.templates/*
+%{dest_dir}/icon.png
diff --git a/version_appvm b/version_appvm
new file mode 100644
index 0000000..3eefcb9
--- /dev/null
+++ b/version_appvm
@@ -0,0 +1 @@
+1.0.0
diff --git a/version_netvm b/version_netvm
new file mode 100644
index 0000000..3eefcb9
--- /dev/null
+++ b/version_netvm
@@ -0,0 +1 @@
+1.0.0
diff --git a/vm_conf_files/appvm-template.conf b/vm_conf_files/appvm-template.conf
new file mode 100644
index 0000000..4cb996b
--- /dev/null
+++ b/vm_conf_files/appvm-template.conf
@@ -0,0 +1,23 @@
+#
+# This is a Xen VM config file for AppVMs
+#
+
+kernel="%TEMPLATEDIR%/kernels/vmlinuz"
+ramdisk="%TEMPLATEDIR%/kernels/initramfs"
+extra="ro nomodeset rd_NO_PLYMOUTH 3"
+root="/dev/mapper/dmroot"
+
+memory = 400
+name = "%VMNAME%"
+
+disk = [ 'file:%TEMPLATEDIR%/root.img,xvda,r', 
+	 'file:%VMDIR%/private.img,xvdb,w',
+	 'file:%VMDIR%/root-cow.img,xvdc,w',
+	 'file:%VMDIR%/swap-cow.img,xvdd,w'
+       ]
+
+vcpus = 1
+
+on_poweroff = 'destroy'
+on_reboot   = 'destroy'
+on_crash    = 'destroy'
diff --git a/vm_conf_files/netvm.conf b/vm_conf_files/netvm.conf
new file mode 100644
index 0000000..5022c3a
--- /dev/null
+++ b/vm_conf_files/netvm.conf
@@ -0,0 +1,21 @@
+#
+# This is a Xen VM config file for the netvm
+#
+
+kernel="/var/lib/qubes/servicevms/%NETVMNAME%/kernels/vmlinuz"
+ramdisk="/var/lib/qubes/servicevms/%NETVMNAME%/kernels/initramfs"
+extra="ro nomodeset rd_NO_PLYMOUTH 3 pci=nomsi"
+root="/dev/mapper/dmroot"
+
+memory = 200
+name = "%NETVMNAME%"
+pci = [ %NETVMPCIDEVS% ]
+
+disk = [ 'file:/var/lib/qubes/servicevms/%NETVMNAME%/root.img,xvda,w',
+       ]
+
+vcpus = 1
+
+on_poweroff = 'destroy'
+on_reboot   = 'destroy'
+on_crash    = 'destroy'
diff --git a/vm_conf_files/templatevm.conf b/vm_conf_files/templatevm.conf
new file mode 100644
index 0000000..00b9b65
--- /dev/null
+++ b/vm_conf_files/templatevm.conf
@@ -0,0 +1,21 @@
+#
+# This is a Xen VM config file for the Template VM
+#
+
+kernel="/var/lib/qubes/vm-templates/%TEMPLATENAME%/kernels/vmlinuz"
+ramdisk="/var/lib/qubes/vm-templates/%TEMPLATENAME%/kernels/initramfs"
+extra="ro nomodeset rd_NO_PLYMOUTH 3"
+root="/dev/mapper/dmroot"
+
+memory = 400
+name = "%TEMPLATENAME%"
+
+disk = [ 'file:/var/lib/qubes/vm-templates/%TEMPLATENAME%/root.img,xvda,w', 
+	 'file:/var/lib/qubes/vm-templates/%TEMPLATENAME%/private.img,xvdb,w',
+       ]
+
+vcpus = 1
+
+on_poweroff = 'destroy'
+on_reboot   = 'destroy'
+on_crash    = 'destroy'
diff --git a/vm_initramfs_patches/qubes_cow_setup.sh b/vm_initramfs_patches/qubes_cow_setup.sh
new file mode 100755
index 0000000..eae1d86
--- /dev/null
+++ b/vm_initramfs_patches/qubes_cow_setup.sh
@@ -0,0 +1,37 @@
+#
+# This file should be places in pre-mount directory in dracut's initramfs
+#
+
+#!/bin/sh
+echo "Qubes initramfs script here:"
+
+if [ -e /dev/mapper/dmroot ] ; then 
+    die "Qubes: FATAL error: /dev/mapper/dmroot already exists?!"
+fi
+
+modprobe xen-blkfront || echo "Qubes: Cannot load Xen Block Frontend..."
+
+echo "Waiting for /dev/xvda* devices..."
+while ! [ -e /dev/xvda ]; do sleep 0.1; done
+while ! [ -e /dev/xvda1 ] ; do sleep 0.1; done
+while ! [ -e /dev/xvda2 ] ; do sleep 0.1; done
+
+if [ `blockdev --getro /dev/xvda` = 1 ] ; then
+	echo "Qubes: Doing COW setup for AppVM..."
+
+	while ! [ -e /dev/xvdc ]; do sleep 0.1; done
+	while ! [ -e /dev/xvdd ]; do sleep 0.1; done
+
+	echo "0 `blockdev --getsz /dev/xvda1` snapshot /dev/xvda1 /dev/xvdc P 16" | \
+    		dmsetup create dmroot || { echo "Qubes: FATAL: cannot create dmroot!"; }
+	echo "0 `blockdev --getsz /dev/xvda2` snapshot /dev/xvda2 /dev/xvdd P 16" | \
+    		dmsetup create dmswap || { echo "Qubes: FATAL: cannot create dmswap!"; }
+	echo Qubes: done.
+else
+	echo "Qubes: Doing R/W setup for TemplateVM..."
+	echo "0 `blockdev --getsz /dev/xvda1` linear /dev/xvda1 0" | \
+    		dmsetup create dmroot || { echo "Qubes: FATAL: cannot create dmroot!"; exit 1; }
+	echo "0 `blockdev --getsz /dev/xvda2` linear /dev/xvda2 0" | \
+    		dmsetup create dmswap || { echo "Qubes: FATAL: cannot create dmswap!"; exit 1; }
+	echo Qubes: done.
+fi
diff --git a/vm_kernels_appvm_x64/.gitignore b/vm_kernels_appvm_x64/.gitignore
new file mode 100644
index 0000000..62f7985
--- /dev/null
+++ b/vm_kernels_appvm_x64/.gitignore
@@ -0,0 +1,2 @@
+initramfs-*
+vmlinuz-*
diff --git a/vm_kernels_appvm_x64/initramfs b/vm_kernels_appvm_x64/initramfs
new file mode 120000
index 0000000..bebedbb
--- /dev/null
+++ b/vm_kernels_appvm_x64/initramfs
@@ -0,0 +1 @@
+initramfs-2.6.32.9-1.pvops0.qubes.x86_64.qubeized.img
\ No newline at end of file
diff --git a/vm_kernels_appvm_x64/vmlinuz b/vm_kernels_appvm_x64/vmlinuz
new file mode 120000
index 0000000..cdd1d6c
--- /dev/null
+++ b/vm_kernels_appvm_x64/vmlinuz
@@ -0,0 +1 @@
+vmlinuz-2.6.32.9-1.pvops0.qubes.x86_64
\ No newline at end of file
diff --git a/vm_kernels_netvm_x64/.gitignore b/vm_kernels_netvm_x64/.gitignore
new file mode 100644
index 0000000..62f7985
--- /dev/null
+++ b/vm_kernels_netvm_x64/.gitignore
@@ -0,0 +1,2 @@
+initramfs-*
+vmlinuz-*
diff --git a/vm_kernels_netvm_x64/initramfs b/vm_kernels_netvm_x64/initramfs
new file mode 120000
index 0000000..f269434
--- /dev/null
+++ b/vm_kernels_netvm_x64/initramfs
@@ -0,0 +1 @@
+initramfs-2.6.31.9-1.pvops0.qubes.x86_64.qubeized.img
\ No newline at end of file
diff --git a/vm_kernels_netvm_x64/vmlinuz b/vm_kernels_netvm_x64/vmlinuz
new file mode 120000
index 0000000..e03a381
--- /dev/null
+++ b/vm_kernels_netvm_x64/vmlinuz
@@ -0,0 +1 @@
+vmlinuz-2.6.31.9-1.pvops0.qubes.x86_64
\ No newline at end of file