]>
Commit | Line | Data |
---|---|---|
7633c520 AF |
1 | #!/bin/bash |
2 | ############################################################################ | |
3 | # # | |
4 | # This file is part of the IPFire Firewall. # | |
5 | # # | |
6 | # IPFire is free software; you can redistribute it and/or modify # | |
7 | # it under the terms of the GNU General Public License as published by # | |
8 | # the Free Software Foundation; either version 3 of the License, or # | |
9 | # (at your option) any later version. # | |
10 | # # | |
11 | # IPFire is distributed in the hope that it will be useful, # | |
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
14 | # GNU General Public License for more details. # | |
15 | # # | |
16 | # You should have received a copy of the GNU General Public License # | |
17 | # along with IPFire; if not, write to the Free Software # | |
18 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA # | |
19 | # # | |
20 | # Copyright (C) 2020 IPFire-Team <info@ipfire.org>. # | |
21 | # # | |
22 | ############################################################################ | |
23 | # | |
24 | . /opt/pakfire/lib/functions.sh | |
25 | /usr/local/bin/backupctrl exclude >/dev/null 2>&1 | |
26 | ||
ede29dd5 | 27 | core=159 |
7633c520 AF |
28 | |
29 | exit_with_error() { | |
30 | # Set last succesfull installed core. | |
31 | echo $(($core-1)) > /opt/pakfire/db/core/mine | |
32 | # force fsck at next boot, this may fix free space on xfs | |
33 | touch /forcefsck | |
34 | # don't start pakfire again at error | |
35 | killall -KILL pak_update | |
36 | /usr/bin/logger -p syslog.emerg -t ipfire \ | |
37 | "core-update-${core}: $1" | |
38 | exit $2 | |
39 | } | |
40 | ||
41 | # Remove old core updates from pakfire cache to save space... | |
42 | for (( i=1; i<=$core; i++ )); do | |
43 | rm -f /var/cache/pakfire/core-upgrade-*-$i.ipfire | |
44 | done | |
45 | ||
46 | KVER="xxxKVERxxx" | |
47 | ||
48 | # Backup uEnv.txt if exist | |
49 | if [ -e /boot/uEnv.txt ]; then | |
50 | cp -vf /boot/uEnv.txt /boot/uEnv.txt.org | |
51 | fi | |
52 | ||
53 | # Do some sanity checks. | |
54 | case $(uname -r) in | |
55 | *-ipfire*) | |
56 | # Ok. | |
57 | ;; | |
58 | *) | |
59 | exit_with_error "ERROR cannot update. No IPFire Kernel." 1 | |
60 | ;; | |
61 | esac | |
62 | if [ -e /boot/grub/grub.conf ]; then | |
63 | exit_with_error "ERROR unsupported GRUB1/pygrub found!" 1 | |
64 | fi | |
f823bbfb AF |
65 | case $(uname -m) in |
66 | armv5tel) | |
67 | exit_with_error "ERROR cannot update. armv5tel is EOL." 1 | |
68 | ;; | |
69 | esac | |
7633c520 AF |
70 | |
71 | # Check diskspace on root | |
72 | ROOTSPACE=`df / -Pk | sed "s| * | |g" | cut -d" " -f4 | tail -n 1` | |
73 | ||
74 | if [ $ROOTSPACE -lt 100000 ]; then | |
75 | exit_with_error "ERROR cannot update because not enough free space on root." 2 | |
76 | exit 2 | |
77 | fi | |
78 | ||
79 | # Remove the old kernel | |
ede29dd5 AF |
80 | rm -rf /boot/System.map-* |
81 | rm -rf /boot/config-* | |
82 | rm -rf /boot/ipfirerd-* | |
83 | rm -rf /boot/initramfs-* | |
84 | rm -rf /boot/vmlinuz-* | |
85 | rm -rf /boot/uImage-*-ipfire-* | |
86 | rm -rf /boot/zImage-*-ipfire-* | |
87 | rm -rf /boot/uInit-*-ipfire-* | |
88 | rm -rf /boot/dtb-*-ipfire-* | |
89 | rm -rf /lib/modules | |
7633c520 | 90 | |
eda757e2 AF |
91 | # remove old/renamed u-boot files |
92 | rm -rf /boot/kernel* | |
93 | rm -rf /usr/share/u-boot/rpi* | |
94 | ||
7633c520 | 95 | # Remove files |
c26c7518 AF |
96 | rm -rf /opt/pakfire/db/meta/meta-libstatgrab |
97 | rm -rf /opt/pakfire/db/installed/meta-libstatgrab | |
c9517c7b | 98 | rm -rf /usr/lib/libusb-1.0.so.0.3.0 |
7633c520 AF |
99 | |
100 | # Stop services | |
101 | /etc/init.d/ipsec stop | |
102 | /usr/local/bin/openvpnctrl -k | |
103 | /usr/local/bin/openvpnctrl -kn2n | |
104 | ||
105 | # Extract files | |
106 | extract_files | |
107 | ||
d0a93015 MT |
108 | # Fix permissions just in case they broke again |
109 | chmod -v 755 \ | |
110 | /usr \ | |
111 | /usr/bin \ | |
112 | /usr/lib \ | |
113 | /usr/sbin \ | |
114 | /var \ | |
115 | /var/ipfire | |
116 | ||
7633c520 AF |
117 | # update linker config |
118 | ldconfig | |
119 | ||
599156e9 AF |
120 | # restart init (glibc update) |
121 | telinit u | |
122 | ||
eefce9ba AF |
123 | # Update ssh settings |
124 | /usr/local/bin/sshctrl | |
7633c520 AF |
125 | |
126 | # Update Language cache | |
127 | /usr/local/bin/update-lang-cache | |
128 | ||
129 | # Filesytem cleanup | |
130 | /usr/local/bin/filesystem-cleanup | |
131 | ||
132 | # Start services | |
133 | if grep -q "ENABLED=on" /var/ipfire/vpn/settings; then | |
134 | /etc/init.d/ipsec start | |
135 | fi | |
136 | /etc/init.d/suricata restart | |
137 | /usr/local/bin/openvpnctrl -s | |
138 | /usr/local/bin/openvpnctrl -sn2n | |
139 | ||
faec72df AF |
140 | # Update hddshutdown cronjob |
141 | sed -e "s|^.*/usr/local/bin/hddshutdown.*$|2,32 * * * * \t/usr/local/bin/hddshutdown >/dev/null|g" \ | |
142 | -i /var/spool/cron/root.orig | |
143 | fcrontab -z | |
144 | ||
7633c520 AF |
145 | # remove lm_sensor config after collectd was started |
146 | # to reserch sensors at next boot with updated kernel | |
147 | rm -f /etc/sysconfig/lm_sensors | |
148 | ||
149 | # Upadate Kernel version uEnv.txt | |
150 | if [ -e /boot/uEnv.txt ]; then | |
151 | sed -i -e "s/KVER=.*/KVER=${KVER}/g" /boot/uEnv.txt | |
152 | fi | |
153 | ||
154 | # call user update script (needed for some arm boards) | |
155 | if [ -e /boot/pakfire-kernel-update ]; then | |
156 | /boot/pakfire-kernel-update ${KVER} | |
157 | fi | |
158 | ||
159 | # This update needs a reboot... | |
160 | touch /var/run/need_reboot | |
161 | ||
162 | # Finish | |
163 | /etc/init.d/fireinfo start | |
164 | sendprofile | |
165 | ||
26553bec AF |
166 | # Install updated grub |
167 | /usr/bin/install-bootloader | |
168 | ||
7633c520 AF |
169 | # Update grub config to display new core version |
170 | if [ -e /boot/grub/grub.cfg ]; then | |
171 | grub-mkconfig -o /boot/grub/grub.cfg | |
172 | fi | |
173 | ||
174 | sync | |
175 | ||
176 | # Don't report the exitcode last command | |
177 | exit 0 |