]> git.ipfire.org Git - ipfire-2.x.git/blob - config/rootfiles/core/128/update.sh
projects / ipfire-2.x.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
core128: apply local sshd config
[ipfire-2.x.git] / config / rootfiles / core / 128 / update.sh
1 #!/bin/bash
2 ############################################################################
3 # #
4 # This file is part of the IPFire Firewall. #
5 # #
6 # IPFire is free software; you can redistribute it and/or modify #
7 # it under the terms of the GNU General Public License as published by #
8 # the Free Software Foundation; either version 3 of the License, or #
9 # (at your option) any later version. #
10 # #
11 # IPFire is distributed in the hope that it will be useful, #
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
14 # GNU General Public License for more details. #
15 # #
16 # You should have received a copy of the GNU General Public License #
17 # along with IPFire; if not, write to the Free Software #
18 # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA #
19 # #
20 # Copyright (C) 2018 IPFire-Team <info@ipfire.org>. #
21 # #
22 ############################################################################
23 #
24 . /opt/pakfire/lib/functions.sh
25 /usr/local/bin/backupctrl exclude >/dev/null 2>&1
26
27 core=128
28
29 exit_with_error() {
30 # Set last succesfull installed core.
31 echo $(($core-1)) > /opt/pakfire/db/core/mine
32 # don't start pakfire again at error
33 killall -KILL pak_update
34 /usr/bin/logger -p syslog.emerg -t ipfire \
35 "core-update-${core}: $1"
36 exit $2
37 }
38
39 # Remove old core updates from pakfire cache to save space...
40 for (( i=1; i<=$core; i++ )); do
41 rm -f /var/cache/pakfire/core-upgrade-*-$i.ipfire
42 done
43
44 KVER="xxxKVERxxx"
45
46 # Backup uEnv.txt if exist
47 if [ -e /boot/uEnv.txt ]; then
48 cp -vf /boot/uEnv.txt /boot/uEnv.txt.org
49 fi
50
51 # Do some sanity checks.
52 case $(uname -r) in
53 *-ipfire*)
54 # Ok.
55 ;;
56 *)
57 exit_with_error "ERROR cannot update. No IPFire Kernel." 1
58 ;;
59 esac
60
61 # Check diskspace on root
62 ROOTSPACE=`df / -Pk | sed "s| * | |g" | cut -d" " -f4 | tail -n 1`
63
64 if [ $ROOTSPACE -lt 80000 ]; then
65 exit_with_error "ERROR cannot update because not enough free space on root." 2
66 exit 2
67 fi
68
69 # Remove the old kernel
70 rm -rf /boot/System.map-*
71 rm -rf /boot/config-*
72 rm -rf /boot/ipfirerd-*
73 rm -rf /boot/initramfs-*
74 rm -rf /boot/vmlinuz-*
75 rm -rf /boot/uImage-*-ipfire-*
76 rm -rf /boot/zImage-*-ipfire-*
77 rm -rf /boot/uInit-*-ipfire-*
78 rm -rf /boot/dtb-*-ipfire-*
79 rm -rf /lib/modules
80 rm -f /etc/sysconfig/lm_sensors
81
82 # Stop services
83 /etc/init.d/apache stop
84
85 # Remove files
86 rm -vf \
87 /usr/lib{,/sse2}/libcrypto.so.10 \
88 /usr/lib{,/sse2}/libssl.so.10 \
89 /home/nobody/.rnd \
90 /var/ipfire/ovpn/ca/.rnd \
91 /var/tmp/.rnd \
92 /.rnd \
93 /root/.rnd
94
95 # Extract files
96 extract_files
97
98 # update linker config
99 ldconfig
100
101 # Update Language cache
102 /usr/local/bin/update-lang-cache
103
104 # Reload sysctl.conf
105 sysctl -p
106
107 # Apply local configuration to sshd_config
108 /usr/local/bin/sshctrl
109
110 # Start services
111 if grep -q "ENABLED=on" /var/ipfire/vpn/settings; then
112 /etc/init.d/ipsec restart
113 fi
114 /etc/init.d/sshd restart
115 /etc/init.d/apache start
116 /etc/init.d/unbound restart
117
118 # Upadate Kernel version uEnv.txt
119 if [ -e /boot/uEnv.txt ]; then
120 sed -i -e "s/KVER=.*/KVER=${KVER}/g" /boot/uEnv.txt
121 fi
122
123 # call user update script (needed for some arm boards)
124 if [ -e /boot/pakfire-kernel-update ]; then
125 /boot/pakfire-kernel-update ${KVER}
126 fi
127
128 case "$(uname -m)" in
129 i?86)
130 # Force (re)install pae kernel if pae is supported
131 rm -rf /opt/pakfire/db/installed/meta-linux-pae
132 rm -rf /opt/pakfire/db/rootfiles/linux-pae
133 if [ ! "$(grep "^flags.* pae " /proc/cpuinfo)" == "" ]; then
134 ROOTSPACE=`df / -Pk | sed "s| * | |g" | cut -d" " -f4 | tail -n 1`
135 BOOTSPACE=`df /boot -Pk | sed "s| * | |g" | cut -d" " -f4 | tail -n 1`
136 if [ $BOOTSPACE -lt 22000 -o $ROOTSPACE -lt 120000 ]; then
137 /usr/bin/logger -p syslog.emerg -t ipfire \
138 "core-update-${core}: WARNING not enough space for pae kernel."
139 touch /var/run/need_reboot
140 else
141 echo "Name: linux-pae" > /opt/pakfire/db/installed/meta-linux-pae
142 echo "ProgVersion: 0" >> /opt/pakfire/db/installed/meta-linux-pae
143 echo "Release: 0" >> /opt/pakfire/db/installed/meta-linux-pae
144 fi
145 else
146 touch /var/run/need_reboot
147 fi
148 ;;
149 *)
150 # This update needs a reboot...
151 touch /var/run/need_reboot
152 ;;
153 esac
154
155 # Finish
156 /etc/init.d/fireinfo start
157 sendprofile
158
159 # Update grub config to display new core version
160 if [ -e /boot/grub/grub.cfg ]; then
161 grub-mkconfig -o /boot/grub/grub.cfg
162 fi
163
164 sync
165
166 # Don't report the exitcode last command
167 exit 0
IPFire 2.x development tree