]>
Commit | Line | Data |
---|---|---|
228455b3 AF |
1 | #!/bin/bash |
2 | ############################################################################ | |
3 | # # | |
4 | # This file is part of the IPFire Firewall. # | |
5 | # # | |
6 | # IPFire is free software; you can redistribute it and/or modify # | |
7 | # it under the terms of the GNU General Public License as published by # | |
8 | # the Free Software Foundation; either version 3 of the License, or # | |
9 | # (at your option) any later version. # | |
10 | # # | |
11 | # IPFire is distributed in the hope that it will be useful, # | |
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
14 | # GNU General Public License for more details. # | |
15 | # # | |
16 | # You should have received a copy of the GNU General Public License # | |
17 | # along with IPFire; if not, write to the Free Software # | |
18 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA # | |
19 | # # | |
20 | # Copyright (C) 2010 IPFire-Team <info@ipfire.org>. # | |
21 | # # | |
22 | ############################################################################ | |
23 | # | |
24 | . /opt/pakfire/lib/functions.sh | |
25 | /usr/local/bin/backupctrl exclude >/dev/null 2>&1 | |
c1db5636 | 26 | # |
16739e91 | 27 | KVER="2.6.32.27" |
c1db5636 AF |
28 | MOUNT=`grep "kernel" /boot/grub/grub.conf | tail -n 1` |
29 | # Nur den letzten Parameter verwenden | |
30 | echo $MOUNT > /dev/null | |
31 | MOUNT=$_ | |
32 | if [ ! $MOUNT == "rw" ]; then | |
33 | MOUNT="ro" | |
34 | fi | |
35 | ||
228455b3 AF |
36 | |
37 | # | |
c1db5636 AF |
38 | # check if we the backup file already exist |
39 | if [ -e /var/ipfire/backup/core-upgrade_$KVER.tar.bz2 ]; then | |
40 | echo Moving backup to backup-old ... | |
41 | mv -f /var/ipfire/backup/core-upgrade_$KVER.tar.bz2 \ | |
42 | /var/ipfire/backup/core-upgrade_$KVER-old.tar.bz2 | |
43 | fi | |
44 | echo First we made a backup of all files that was inside of the | |
45 | echo update archive. This may take a while ... | |
46 | # Add some files that are not in the package to backup | |
47 | echo lib/modules >> /opt/pakfire/tmp/ROOTFILES | |
48 | echo boot >> /opt/pakfire/tmp/ROOTFILES | |
49 | echo etc/mkinitcpio.conf >> /opt/pakfire/tmp/ROOTFILES | |
50 | echo etc/mkinitcpio.conf.org >> /opt/pakfire/tmp/ROOTFILES | |
51 | echo etc/mkinitcpio.d >> /opt/pakfire/tmp/ROOTFILES | |
52 | echo lib/initcpio >> /opt/pakfire/tmp/ROOTFILES | |
53 | echo sbin/mkinitcpio >> /opt/pakfire/tmp/ROOTFILES | |
54 | echo usr/bin/iw >> /opt/pakfire/tmp/ROOTFILES | |
1fdae966 AF |
55 | echo etc/snort >> /opt/pakfire/tmp/ROOTFILES |
56 | echo usr/lib/snort_* >> /opt/pakfire/tmp/ROOTFILES | |
57 | echo usr/lib/squid >> /opt/pakfire/tmp/ROOTFILES | |
228455b3 | 58 | |
c1db5636 AF |
59 | # Backup the files |
60 | tar cjvf /var/ipfire/backup/core-upgrade_$KVER.tar.bz2 \ | |
61 | -C / -T /opt/pakfire/tmp/ROOTFILES --exclude='#*' > /dev/null 2>&1 | |
62 | ||
63 | echo | |
64 | echo Update Kernel to $KVER ... | |
65 | # Remove old kernel, configs, initrd, modules ... | |
66 | # | |
67 | rm -rf /boot/System.map-* | |
68 | rm -rf /boot/config-* | |
69 | rm -rf /boot/ipfirerd-* | |
70 | rm -rf /boot/vmlinuz-* | |
71 | rm -rf /lib/modules/*-ipfire | |
72 | # Remove mkinitcpio | |
73 | rm -rf /etc/mkinitcpio.* | |
74 | rm -rf /lib/initcpio | |
75 | rm -rf /sbin/mkinitcpio | |
76 | # Remove old iw (new is in usr/sbin) | |
77 | rm -rf /usr/bin/iw | |
78 | # | |
79 | # Backup grub.conf | |
80 | # | |
81 | cp -vf /boot/grub/grub.conf /boot/grub/grub.conf.org | |
1fdae966 AF |
82 | |
83 | # | |
84 | # Stop services to save memory | |
85 | # | |
86 | /etc/init.d/snort stop | |
87 | /etc/init.d/squid stop | |
c599b6df AF |
88 | /etc/init.d/ipsec stop |
89 | ||
1fdae966 AF |
90 | # |
91 | # | |
92 | # Remove old snort... | |
93 | rm -rf /etc/snort | |
94 | rm -rf /usr/lib/snort_* | |
95 | # Remove old squid... | |
96 | rm -rf /usr/lib/squid | |
c1db5636 AF |
97 | # |
98 | # Unpack the updated files | |
228455b3 | 99 | # |
c1db5636 AF |
100 | echo |
101 | echo Unpack the updated files ... | |
102 | # | |
103 | tar xvf /opt/pakfire/tmp/files --preserve --numeric-owner -C / \ | |
104 | --no-overwrite-dir | |
105 | ||
e959976b MT |
106 | # Remove old pakfire cronjob. |
107 | rm -f /etc/fcron.daily/pakfire-update | |
108 | ||
c1db5636 AF |
109 | # Convert /etc/fstab entries to UUID ... |
110 | # | |
111 | echo Convert fstab entries to UUID ... | |
112 | ROOT=`mount | grep " / " | cut -d" " -f1` | |
113 | BOOT=`mount | grep " /boot " | cut -d" " -f1` | |
114 | VAR=`mount | grep " /var " | cut -d" " -f1` | |
115 | SWAP=`grep "/dev/" /proc/swaps | cut -d" " -f1` | |
228455b3 | 116 | # |
228455b3 | 117 | |
c1db5636 AF |
118 | if [ ! -z $ROOT ]; then |
119 | ROOTUUID=`blkid -c /dev/null -sUUID $ROOT | cut -d'"' -f2` | |
120 | if [ ! -z $ROOTUUID ]; then | |
121 | sed -i "s|^$ROOT|UUID=$ROOTUUID|g" /etc/fstab | |
122 | #else | |
123 | #to do add uuid to rootfs | |
124 | fi | |
125 | else | |
126 | echo "ERROR! / not found!!!" | |
127 | fi | |
128 | ||
129 | if [ ! -z $BOOT ]; then | |
130 | BOOTUUID=`blkid -c /dev/null -sUUID $BOOT | cut -d'"' -f2` | |
131 | if [ ! -z $BOOTUUID ]; then | |
132 | sed -i "s|^$BOOT|UUID=$BOOTUUID|g" /etc/fstab | |
133 | #else | |
134 | #to do add uuid to bootfs | |
135 | fi | |
136 | else | |
137 | echo "WARNING! /boot not found!!!" | |
138 | fi | |
139 | ||
140 | if [ ! -z $VAR ]; then | |
141 | VARUUID=`blkid -c /dev/null -sUUID $VAR | cut -d'"' -f2` | |
142 | if [ ! -z $VARUUID ]; then | |
143 | sed -i "s|^$VAR|UUID=$VARUUID|g" /etc/fstab | |
144 | #else | |
145 | #to do add uuid to varfs | |
146 | fi | |
147 | else | |
148 | echo "WARNING! /var not found!!!" | |
149 | fi | |
150 | ||
151 | if [ ! -z $SWAP ]; then | |
152 | SWAPUUID=`blkid -c /dev/null -sUUID $SWAP | cut -d'"' -f2` | |
153 | if [ ! -z $SWAPUUID ]; then | |
154 | sed -i "s|^$SWAP|UUID=$SWAPUUID|g" /etc/fstab | |
155 | else | |
156 | # Reformat swap to add a UUID | |
157 | swapoff -a | |
158 | mkswap $SWAP | |
159 | swapon -a | |
160 | SWAPUUID=`blkid -c /dev/null -sUUID $SWAP | cut -d'"' -f2` | |
161 | if [ ! -z $SWAPUUID ]; then | |
162 | sed -i "s|^$SWAP|UUID=$SWAPUUID|g" /etc/fstab | |
163 | fi | |
164 | fi | |
165 | else | |
166 | echo "WARNING! swap not found!!!" | |
167 | fi | |
168 | ||
c599b6df AF |
169 | #new strongswan need keyexchange=ikev1 because this is not default anymore |
170 | mv /var/ipfire/vpn/ipsec.conf /var/ipfire/vpn/ipsec.conf.org | |
171 | grep -v "keyexchange=ikev1" /var/ipfire/vpn/ipsec.conf.org > /var/ipfire/vpn/ipsec.conf | |
172 | sed -i "s|^conn [A-Za-z].*$|&\n\tkeyexchange=ikev1|g" /var/ipfire/vpn/ipsec.conf | |
173 | ||
d7aea5bd AF |
174 | #new squid has some changed options. Build a basic config to be able start squid. |
175 | mv /var/ipfire/proxy/squid.conf /var/ipfire/proxy/squid.conf.org | |
176 | grep -v "header_access " /var/ipfire/proxy/squid.conf.org | \ | |
177 | grep -v "error_directory " | \ | |
178 | grep -v "reply_body_max_size 0" > /var/ipfire/proxy/squid.conf | |
179 | echo >> /var/ipfire/proxy/squid.conf | |
180 | echo error_directory /etc/squid/errors >> /var/ipfire/proxy/squid.conf | |
181 | ||
c1db5636 AF |
182 | # |
183 | # Start services | |
228455b3 | 184 | # |
c1db5636 AF |
185 | /etc/init.d/squid start |
186 | /etc/init.d/snort start | |
c599b6df | 187 | /etc/init.d/ipsec start |
228455b3 | 188 | |
b03cd0fb AF |
189 | |
190 | # Add pakfire and fireinfo cronjobs... | |
191 | grep -v "# fireinfo" /var/spool/cron/root.orig | | |
192 | grep -v "/usr/bin/sendprofile" | | |
193 | grep -v "# pakfire" | | |
194 | grep -v "/usr/local/bin/pakfire" > /var/tmp/root.tmp | |
195 | echo "" >> /var/tmp/root.tmp | |
196 | echo "# fireinfo" >> /var/tmp/root.tmp | |
197 | echo "%nightly,random * 23-4 /usr/bin/sendprofile >/dev/null 2>&1" >> /var/tmp/root.tmp | |
198 | echo "" >> /var/tmp/root.tmp | |
199 | echo "# pakfire" >> /var/tmp/root.tmp | |
200 | echo "%nightly,random * 23-4 /usr/local/bin/pakfire update >/dev/null 2>&1" >> /var/tmp/root.tmp | |
201 | fcrontab /var/tmp/root.tmp | |
202 | ||
c1db5636 AF |
203 | # |
204 | # Modify grub.conf | |
205 | # | |
206 | echo | |
207 | echo Update grub configuration ... | |
208 | if [ ! -z $ROOTUUID ]; then | |
209 | sed -i "s|ROOT|UUID=$ROOTUUID|g" /boot/grub/grub.conf | |
210 | else | |
211 | sed -i "s|ROOT|$ROOT|g" /boot/grub/grub.conf | |
212 | fi | |
213 | sed -i "s|KVER|$KVER|g" /boot/grub/grub.conf | |
214 | sed -i "s|MOUNT|$MOUNT|g" /boot/grub/grub.conf | |
228455b3 | 215 | |
c1db5636 AF |
216 | if [ "$(grep "^serial" /boot/grub/grub.conf.org)" == "" ]; then |
217 | echo "grub use default console ..." | |
218 | else | |
219 | echo "grub use serial console ..." | |
220 | sed -i -e "s|splashimage|#splashimage|g" /boot/grub/grub.conf | |
221 | sed -i -e "s|#serial|serial|g" /boot/grub/grub.conf | |
222 | sed -i -e "s|#terminal|terminal|g" /boot/grub/grub.conf | |
223 | sed -i -e "s| panic=10 | console=ttyS0,38400n8 panic=10 |g" /boot/grub/grub.conf | |
224 | fi | |
225 | # | |
226 | # Change /dev/hd? to /dev/sda | |
227 | # | |
228 | if [ "${ROOT:0:7}" == "/dev/hd" ];then | |
229 | sed -i -e "s|${ROOT:0:8}|/dev/sda|g" /boot/grub/grub.conf | |
230 | sed -i -e "s|${ROOT:0:8}|/dev/sda|g" /etc/fstab | |
231 | fi | |
232 | # | |
233 | # ReInstall grub | |
234 | # | |
235 | grub-install --no-floppy ${ROOT::`expr length $ROOT`-1} --recheck | |
236 | # | |
237 | # Rebuild Language | |
238 | # | |
239 | perl -e "require '/var/ipfire/lang.pl'; &Lang::BuildCacheLang" | |
240 | # | |
241 | # Delete old lm-sensor modullist to force search at next boot | |
228455b3 | 242 | # |
c1db5636 | 243 | rm -rf /etc/sysconfig/lm_sensors |
d85fb69b AF |
244 | # |
245 | # Change version of Pakfire.conf | |
246 | # | |
247 | OLDVERSION=`grep "version = " /opt/pakfire/etc/pakfire.conf | cut -d'"' -f2` | |
248 | NEWVERSION="2.9" | |
249 | sed -i "s|$OLDVERSION|$NEWVERSION|g" /opt/pakfire/etc/pakfire.conf | |
250 | # | |
251 | # After pakfire has ended run it again and update the lists and do upgrade | |
252 | # | |
253 | echo '#!/bin/bash' > /tmp/pak_update | |
254 | echo 'while [ "$(ps -A | grep " update.sh")" != "" ]; do' >> /tmp/pak_update | |
255 | echo ' sleep 1' >> /tmp/pak_update | |
256 | echo 'done' >> /tmp/pak_update | |
257 | echo 'while [ "$(ps -A | grep " pakfire")" != "" ]; do' >> /tmp/pak_update | |
258 | echo ' sleep 1' >> /tmp/pak_update | |
259 | echo 'done' >> /tmp/pak_update | |
260 | echo '/opt/pakfire/pakfire update -y --force' >> /tmp/pak_update | |
261 | echo '/opt/pakfire/pakfire upgrade -y' >> /tmp/pak_update | |
262 | echo '/opt/pakfire/pakfire upgrade -y' >> /tmp/pak_update | |
263 | echo '/opt/pakfire/pakfire upgrade -y' >> /tmp/pak_update | |
264 | echo '/usr/bin/logger -p syslog.emerg -t core-upgrade-44 "Upgrade finished. If you use a customized grub.cfg"' >> /tmp/pak_update | |
265 | echo '/usr/bin/logger -p syslog.emerg -t core-upgrade-44 "Check it before reboot !!!"' >> /tmp/pak_update | |
266 | echo '/usr/bin/logger -p syslog.emerg -t core-upgrade-44 " *** Please reboot... *** "' >> /tmp/pak_update | |
267 | echo 'touch /var/run/need_reboot ' >> /tmp/pak_update | |
268 | # | |
269 | chmod +x /tmp/pak_update | |
270 | /tmp/pak_update & | |
271 | echo | |
272 | echo Please wait until pakfire has ended... | |
273 | echo |