]>
Commit | Line | Data |
---|---|---|
228455b3 AF |
1 | #!/bin/bash |
2 | ############################################################################ | |
3 | # # | |
4 | # This file is part of the IPFire Firewall. # | |
5 | # # | |
6 | # IPFire is free software; you can redistribute it and/or modify # | |
7 | # it under the terms of the GNU General Public License as published by # | |
8 | # the Free Software Foundation; either version 3 of the License, or # | |
9 | # (at your option) any later version. # | |
10 | # # | |
11 | # IPFire is distributed in the hope that it will be useful, # | |
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
14 | # GNU General Public License for more details. # | |
15 | # # | |
16 | # You should have received a copy of the GNU General Public License # | |
17 | # along with IPFire; if not, write to the Free Software # | |
18 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA # | |
19 | # # | |
20 | # Copyright (C) 2010 IPFire-Team <info@ipfire.org>. # | |
21 | # # | |
22 | ############################################################################ | |
23 | # | |
24 | . /opt/pakfire/lib/functions.sh | |
25 | /usr/local/bin/backupctrl exclude >/dev/null 2>&1 | |
c1db5636 | 26 | # |
cfa86dfd | 27 | KVER="2.6.32.28" |
c1db5636 AF |
28 | MOUNT=`grep "kernel" /boot/grub/grub.conf | tail -n 1` |
29 | # Nur den letzten Parameter verwenden | |
30 | echo $MOUNT > /dev/null | |
31 | MOUNT=$_ | |
32 | if [ ! $MOUNT == "rw" ]; then | |
33 | MOUNT="ro" | |
34 | fi | |
35 | ||
228455b3 AF |
36 | |
37 | # | |
c1db5636 AF |
38 | # check if we the backup file already exist |
39 | if [ -e /var/ipfire/backup/core-upgrade_$KVER.tar.bz2 ]; then | |
40 | echo Moving backup to backup-old ... | |
41 | mv -f /var/ipfire/backup/core-upgrade_$KVER.tar.bz2 \ | |
42 | /var/ipfire/backup/core-upgrade_$KVER-old.tar.bz2 | |
43 | fi | |
44 | echo First we made a backup of all files that was inside of the | |
45 | echo update archive. This may take a while ... | |
46 | # Add some files that are not in the package to backup | |
47 | echo lib/modules >> /opt/pakfire/tmp/ROOTFILES | |
48 | echo boot >> /opt/pakfire/tmp/ROOTFILES | |
49 | echo etc/mkinitcpio.conf >> /opt/pakfire/tmp/ROOTFILES | |
50 | echo etc/mkinitcpio.conf.org >> /opt/pakfire/tmp/ROOTFILES | |
51 | echo etc/mkinitcpio.d >> /opt/pakfire/tmp/ROOTFILES | |
52 | echo lib/initcpio >> /opt/pakfire/tmp/ROOTFILES | |
53 | echo sbin/mkinitcpio >> /opt/pakfire/tmp/ROOTFILES | |
54 | echo usr/bin/iw >> /opt/pakfire/tmp/ROOTFILES | |
1fdae966 AF |
55 | echo etc/snort >> /opt/pakfire/tmp/ROOTFILES |
56 | echo usr/lib/snort_* >> /opt/pakfire/tmp/ROOTFILES | |
57 | echo usr/lib/squid >> /opt/pakfire/tmp/ROOTFILES | |
228455b3 | 58 | |
c1db5636 AF |
59 | # Backup the files |
60 | tar cjvf /var/ipfire/backup/core-upgrade_$KVER.tar.bz2 \ | |
61 | -C / -T /opt/pakfire/tmp/ROOTFILES --exclude='#*' > /dev/null 2>&1 | |
62 | ||
63 | echo | |
64 | echo Update Kernel to $KVER ... | |
65 | # Remove old kernel, configs, initrd, modules ... | |
66 | # | |
67 | rm -rf /boot/System.map-* | |
68 | rm -rf /boot/config-* | |
69 | rm -rf /boot/ipfirerd-* | |
70 | rm -rf /boot/vmlinuz-* | |
71 | rm -rf /lib/modules/*-ipfire | |
72 | # Remove mkinitcpio | |
73 | rm -rf /etc/mkinitcpio.* | |
74 | rm -rf /lib/initcpio | |
75 | rm -rf /sbin/mkinitcpio | |
76 | # Remove old iw (new is in usr/sbin) | |
77 | rm -rf /usr/bin/iw | |
305d7fc9 AF |
78 | # Remove old usb_modeswitch data |
79 | rm -rf /etc/usb_modeswitch.d | |
c1db5636 AF |
80 | # |
81 | # Backup grub.conf | |
82 | # | |
83 | cp -vf /boot/grub/grub.conf /boot/grub/grub.conf.org | |
1fdae966 AF |
84 | |
85 | # | |
86 | # Stop services to save memory | |
87 | # | |
88 | /etc/init.d/snort stop | |
89 | /etc/init.d/squid stop | |
c599b6df AF |
90 | /etc/init.d/ipsec stop |
91 | ||
1fdae966 AF |
92 | # |
93 | # | |
94 | # Remove old snort... | |
95 | rm -rf /etc/snort | |
96 | rm -rf /usr/lib/snort_* | |
97 | # Remove old squid... | |
98 | rm -rf /usr/lib/squid | |
c1db5636 AF |
99 | # |
100 | # Unpack the updated files | |
228455b3 | 101 | # |
c1db5636 AF |
102 | echo |
103 | echo Unpack the updated files ... | |
104 | # | |
105 | tar xvf /opt/pakfire/tmp/files --preserve --numeric-owner -C / \ | |
106 | --no-overwrite-dir | |
107 | ||
8251173b AF |
108 | # |
109 | # Change collectd init symlinks | |
110 | # | |
111 | rm -f /etc/rc.d/rc3.d/S21collectd | |
112 | ln -f -s ../init.d/collectd /etc/rc.d/rc3.d/S29collectd | |
113 | ||
e959976b MT |
114 | # Remove old pakfire cronjob. |
115 | rm -f /etc/fcron.daily/pakfire-update | |
116 | ||
c1db5636 AF |
117 | # Convert /etc/fstab entries to UUID ... |
118 | # | |
119 | echo Convert fstab entries to UUID ... | |
120 | ROOT=`mount | grep " / " | cut -d" " -f1` | |
121 | BOOT=`mount | grep " /boot " | cut -d" " -f1` | |
122 | VAR=`mount | grep " /var " | cut -d" " -f1` | |
123 | SWAP=`grep "/dev/" /proc/swaps | cut -d" " -f1` | |
228455b3 | 124 | # |
228455b3 | 125 | |
c1db5636 AF |
126 | if [ ! -z $ROOT ]; then |
127 | ROOTUUID=`blkid -c /dev/null -sUUID $ROOT | cut -d'"' -f2` | |
128 | if [ ! -z $ROOTUUID ]; then | |
129 | sed -i "s|^$ROOT|UUID=$ROOTUUID|g" /etc/fstab | |
130 | #else | |
131 | #to do add uuid to rootfs | |
132 | fi | |
133 | else | |
134 | echo "ERROR! / not found!!!" | |
135 | fi | |
136 | ||
137 | if [ ! -z $BOOT ]; then | |
138 | BOOTUUID=`blkid -c /dev/null -sUUID $BOOT | cut -d'"' -f2` | |
139 | if [ ! -z $BOOTUUID ]; then | |
140 | sed -i "s|^$BOOT|UUID=$BOOTUUID|g" /etc/fstab | |
141 | #else | |
142 | #to do add uuid to bootfs | |
143 | fi | |
144 | else | |
145 | echo "WARNING! /boot not found!!!" | |
146 | fi | |
147 | ||
148 | if [ ! -z $VAR ]; then | |
149 | VARUUID=`blkid -c /dev/null -sUUID $VAR | cut -d'"' -f2` | |
150 | if [ ! -z $VARUUID ]; then | |
151 | sed -i "s|^$VAR|UUID=$VARUUID|g" /etc/fstab | |
152 | #else | |
153 | #to do add uuid to varfs | |
154 | fi | |
155 | else | |
156 | echo "WARNING! /var not found!!!" | |
157 | fi | |
158 | ||
159 | if [ ! -z $SWAP ]; then | |
160 | SWAPUUID=`blkid -c /dev/null -sUUID $SWAP | cut -d'"' -f2` | |
161 | if [ ! -z $SWAPUUID ]; then | |
162 | sed -i "s|^$SWAP|UUID=$SWAPUUID|g" /etc/fstab | |
163 | else | |
164 | # Reformat swap to add a UUID | |
165 | swapoff -a | |
166 | mkswap $SWAP | |
167 | swapon -a | |
168 | SWAPUUID=`blkid -c /dev/null -sUUID $SWAP | cut -d'"' -f2` | |
169 | if [ ! -z $SWAPUUID ]; then | |
170 | sed -i "s|^$SWAP|UUID=$SWAPUUID|g" /etc/fstab | |
171 | fi | |
172 | fi | |
173 | else | |
174 | echo "WARNING! swap not found!!!" | |
175 | fi | |
176 | ||
c599b6df AF |
177 | #new strongswan need keyexchange=ikev1 because this is not default anymore |
178 | mv /var/ipfire/vpn/ipsec.conf /var/ipfire/vpn/ipsec.conf.org | |
179 | grep -v "keyexchange=ikev1" /var/ipfire/vpn/ipsec.conf.org > /var/ipfire/vpn/ipsec.conf | |
180 | sed -i "s|^conn [A-Za-z].*$|&\n\tkeyexchange=ikev1|g" /var/ipfire/vpn/ipsec.conf | |
2120ed47 | 181 | chown nobody:nobody /var/ipfire/vpn/ipsec.conf |
c599b6df | 182 | |
d7aea5bd AF |
183 | #new squid has some changed options. Build a basic config to be able start squid. |
184 | mv /var/ipfire/proxy/squid.conf /var/ipfire/proxy/squid.conf.org | |
185 | grep -v "header_access " /var/ipfire/proxy/squid.conf.org | \ | |
186 | grep -v "error_directory " | \ | |
e07587fc | 187 | grep -v "cache_dir null" | \ |
d7aea5bd AF |
188 | grep -v "reply_body_max_size 0" > /var/ipfire/proxy/squid.conf |
189 | echo >> /var/ipfire/proxy/squid.conf | |
190 | echo error_directory /etc/squid/errors >> /var/ipfire/proxy/squid.conf | |
2120ed47 | 191 | chown nobody:nobody /var/ipfire/proxy/squid.conf |
d7aea5bd | 192 | |
455a698f AF |
193 | #Convert extrahd entries to UUID |
194 | cp -f /var/ipfire/extrahd/devices /var/ipfire/extrahd/devices.org | |
195 | while read entry | |
196 | do | |
197 | device=`echo $entry | cut -f1 -d";"` | |
198 | uuid=`blkid -c /dev/null -s UUID -o value /dev/$device` | |
199 | if [ ! -z $uuid ]; then | |
200 | sed -i -e "s|$device|UUID=$uuid|g" /var/ipfire/extrahd/devices | |
201 | sed -i -e "s|/dev/$device|UUID=$uuid|g" /var/ipfire/extrahd/fstab | |
202 | sed -i -e "s|/dev/$device|UUID=$uuid|g" /etc/fstab | |
203 | fi | |
204 | done < /var/ipfire/extrahd/devices.org | |
205 | ||
c1db5636 AF |
206 | # |
207 | # Start services | |
228455b3 | 208 | # |
c1db5636 AF |
209 | /etc/init.d/squid start |
210 | /etc/init.d/snort start | |
bf22df04 AF |
211 | if [ `grep "ENABLED=on" /var/ipfire/vpn/settings` ]; then |
212 | /etc/init.d/ipsec start | |
213 | fi | |
b03cd0fb | 214 | |
b83d68f3 AF |
215 | # |
216 | # Rebuild qosscript if enabled | |
217 | # | |
218 | if [ -e /var/ipfire/qos/enable ]; then | |
219 | /usr/local/bin/qosctrl stop | |
220 | /usr/local/bin/qosctrl generate | |
221 | /usr/local/bin/qosctrl start | |
222 | fi | |
223 | ||
b03cd0fb AF |
224 | # Add pakfire and fireinfo cronjobs... |
225 | grep -v "# fireinfo" /var/spool/cron/root.orig | | |
226 | grep -v "/usr/bin/sendprofile" | | |
227 | grep -v "# pakfire" | | |
228 | grep -v "/usr/local/bin/pakfire" > /var/tmp/root.tmp | |
229 | echo "" >> /var/tmp/root.tmp | |
230 | echo "# fireinfo" >> /var/tmp/root.tmp | |
231 | echo "%nightly,random * 23-4 /usr/bin/sendprofile >/dev/null 2>&1" >> /var/tmp/root.tmp | |
232 | echo "" >> /var/tmp/root.tmp | |
233 | echo "# pakfire" >> /var/tmp/root.tmp | |
234 | echo "%nightly,random * 23-4 /usr/local/bin/pakfire update >/dev/null 2>&1" >> /var/tmp/root.tmp | |
235 | fcrontab /var/tmp/root.tmp | |
236 | ||
c1db5636 AF |
237 | # |
238 | # Modify grub.conf | |
239 | # | |
240 | echo | |
241 | echo Update grub configuration ... | |
242 | if [ ! -z $ROOTUUID ]; then | |
243 | sed -i "s|ROOT|UUID=$ROOTUUID|g" /boot/grub/grub.conf | |
244 | else | |
245 | sed -i "s|ROOT|$ROOT|g" /boot/grub/grub.conf | |
246 | fi | |
247 | sed -i "s|KVER|$KVER|g" /boot/grub/grub.conf | |
248 | sed -i "s|MOUNT|$MOUNT|g" /boot/grub/grub.conf | |
228455b3 | 249 | |
c1db5636 AF |
250 | if [ "$(grep "^serial" /boot/grub/grub.conf.org)" == "" ]; then |
251 | echo "grub use default console ..." | |
252 | else | |
253 | echo "grub use serial console ..." | |
254 | sed -i -e "s|splashimage|#splashimage|g" /boot/grub/grub.conf | |
255 | sed -i -e "s|#serial|serial|g" /boot/grub/grub.conf | |
256 | sed -i -e "s|#terminal|terminal|g" /boot/grub/grub.conf | |
257 | sed -i -e "s| panic=10 | console=ttyS0,38400n8 panic=10 |g" /boot/grub/grub.conf | |
258 | fi | |
259 | # | |
260 | # Change /dev/hd? to /dev/sda | |
261 | # | |
262 | if [ "${ROOT:0:7}" == "/dev/hd" ];then | |
263 | sed -i -e "s|${ROOT:0:8}|/dev/sda|g" /boot/grub/grub.conf | |
264 | sed -i -e "s|${ROOT:0:8}|/dev/sda|g" /etc/fstab | |
265 | fi | |
266 | # | |
cd406833 AF |
267 | # Don't show gpl on updated systens |
268 | # | |
269 | touch /var/ipfire/main/gpl_accepted | |
270 | # | |
c1db5636 AF |
271 | # ReInstall grub |
272 | # | |
273 | grub-install --no-floppy ${ROOT::`expr length $ROOT`-1} --recheck | |
274 | # | |
275 | # Rebuild Language | |
276 | # | |
277 | perl -e "require '/var/ipfire/lang.pl'; &Lang::BuildCacheLang" | |
278 | # | |
279 | # Delete old lm-sensor modullist to force search at next boot | |
228455b3 | 280 | # |
c1db5636 | 281 | rm -rf /etc/sysconfig/lm_sensors |
d85fb69b AF |
282 | # |
283 | # Change version of Pakfire.conf | |
284 | # | |
285 | OLDVERSION=`grep "version = " /opt/pakfire/etc/pakfire.conf | cut -d'"' -f2` | |
286 | NEWVERSION="2.9" | |
287 | sed -i "s|$OLDVERSION|$NEWVERSION|g" /opt/pakfire/etc/pakfire.conf | |
288 | # | |
289 | # After pakfire has ended run it again and update the lists and do upgrade | |
290 | # | |
291 | echo '#!/bin/bash' > /tmp/pak_update | |
292 | echo 'while [ "$(ps -A | grep " update.sh")" != "" ]; do' >> /tmp/pak_update | |
293 | echo ' sleep 1' >> /tmp/pak_update | |
294 | echo 'done' >> /tmp/pak_update | |
295 | echo 'while [ "$(ps -A | grep " pakfire")" != "" ]; do' >> /tmp/pak_update | |
296 | echo ' sleep 1' >> /tmp/pak_update | |
297 | echo 'done' >> /tmp/pak_update | |
298 | echo '/opt/pakfire/pakfire update -y --force' >> /tmp/pak_update | |
299 | echo '/opt/pakfire/pakfire upgrade -y' >> /tmp/pak_update | |
300 | echo '/opt/pakfire/pakfire upgrade -y' >> /tmp/pak_update | |
301 | echo '/opt/pakfire/pakfire upgrade -y' >> /tmp/pak_update | |
302 | echo '/usr/bin/logger -p syslog.emerg -t core-upgrade-44 "Upgrade finished. If you use a customized grub.cfg"' >> /tmp/pak_update | |
303 | echo '/usr/bin/logger -p syslog.emerg -t core-upgrade-44 "Check it before reboot !!!"' >> /tmp/pak_update | |
304 | echo '/usr/bin/logger -p syslog.emerg -t core-upgrade-44 " *** Please reboot... *** "' >> /tmp/pak_update | |
305 | echo 'touch /var/run/need_reboot ' >> /tmp/pak_update | |
306 | # | |
307 | chmod +x /tmp/pak_update | |
308 | /tmp/pak_update & | |
309 | echo | |
310 | echo Please wait until pakfire has ended... | |
311 | echo |