| version 1.8, 2021/10/16 19:31:13 |
version 1.14, 2021/10/17 23:25:14 |
|
|
| VERSION="${VNAME%.*}${VNAME#*.}" |
VERSION="${VNAME%.*}${VNAME#*.}" |
| FWDIR="$VNAME" |
FWDIR="$VNAME" |
| |
|
| |
# TODO: We need the firmware for the system we just installed |
| |
# not the one we booted from. For example: |
| |
# * booting from a snapshot bsd.rd that thinks it is the 7.0 release |
| |
# will install the firmware from the 7.0 directory instead of |
| |
# from the snapshots dir. |
| |
# If they're using sysupgrade, then the installer kernel will be correct. |
| |
# If we're doing this in the installer we can check what they picked |
| |
# for downloading sets and use that value. |
| |
# Otherwise, the fw_update after first boot will fix it up for us. |
| |
|
| HTTP_FWDIR=$FWDIR |
HTTP_FWDIR=$FWDIR |
| set -- $(scan_dmesg "/^OpenBSD $VNAME\([^ ]*\).*$/s//\1/p") |
set -- $(scan_dmesg "/^OpenBSD $VNAME\([^ ]*\).*$/s//\1/p") |
| [[ $1 == -!(stable) ]] && HTTP_FWDIR=snapshots |
[[ $1 == -!(stable) ]] && HTTP_FWDIR=snapshots |
|
|
| PKGDIR=${DESTDIR}/var/db/pkg |
PKGDIR=${DESTDIR}/var/db/pkg |
| PATTERNS="file:${0%/*}/firmware_patterns" |
PATTERNS="file:${0%/*}/firmware_patterns" |
| |
|
| drivers=$( |
fw_update() { |
| last='' |
local _tmpsrc _f _remove _r |
| ftp -D "Detecting" -Vmo- $PATTERNS | |
local _src=$FWURL _t=Get _cfile="/tmp/SHA256" _srclocal=false |
| while read d m; do |
local _drivers=$( |
| grep=grep |
last='' |
| [ "$last" = "$d" ] && continue |
ftp -D "Detecting" -Vmo- $PATTERNS | |
| [ "$m" ] || m="^$d[0-9][0-9]* at " |
while read d m; do |
| [ "$m" = "${m#^}" ] && grep=fgrep |
grep=grep |
| $grep -q "$m" /var/run/dmesg.boot || continue |
[ "$last" = "$d" ] && continue |
| echo $d |
[ "$m" ] || m="^$d[0-9][0-9]* at " |
| last=$d |
[ "$m" = "${m#^}" ] && grep=fgrep |
| done |
$grep -q "$m" /var/run/dmesg.boot || continue |
| ) |
echo $d |
| |
last=$d |
| |
done |
| |
) |
| |
|
| if [ -z "$drivers" ]; then |
if [ -z "$_drivers" ]; then |
| echo "No devices found which need firmware files to be downloaded." >&2 |
echo "No devices found which need firmware files to be downloaded." >&2 |
| exit 0 |
return |
| fi |
fi |
| |
|
| _src=$FWURL |
if _tmpsrc=$( tmpdir "${DESTDIR}/tmp/fw_update" ); then |
| if _tmpsrc=$( tmpdir "${DESTDIR}/tmp/fw_update" ); then |
( |
| ( |
>$_tmpsrc/t && |
| >$_tmpsrc/t && |
$_unpriv cat $_tmpsrc/t |
| $_unpriv cat $_tmpsrc/t |
) >/dev/null 2>&1 || |
| ) >/dev/null 2>&1 || |
rm -r $_tmpsrc |
| rm -r $_tmpsrc |
fi |
| fi |
|
| |
|
| [[ ! -d $_tmpsrc ]] && |
[[ ! -d $_tmpsrc ]] && |
| _issue="Cannot create prefetch area" && fail |
_issue="Cannot create prefetch area" && fail |
| |
|
| cd "$_tmpsrc" |
! $_unpriv ftp -D "$_t" -Vmo - "$_src/SHA256.sig" >"$_cfile.sig" && |
| |
_issue="Cannot fetch SHA256.sig" && fail |
| |
|
| _t=Get |
# Verify signature file with public keys. |
| _cfile="$_tmpsrc/SHA256" |
! unpriv -f "$_cfile" \ |
| _srclocal=false |
signify -Vep $FWPUB_KEY -x "$_cfile.sig" -m "$_cfile" && |
| |
_issue="Signature check of SHA256.sig failed" && fail |
| |
|
| ! $_unpriv ftp -D "$_t" -Vmo - "$_src/SHA256.sig" >"$_cfile.sig" && |
for d in $_drivers; do |
| _issue="Cannot fetch SHA256.sig" && fail |
_f=$( sed -n "s/.*(\($d-firmware-.*\.tgz\)).*/\1/p" "$_cfile" ) |
| |
installed=$( installed_firmware "$d" ) |
| |
|
| # Verify signature file with public keys. |
for i in $installed; do |
| ! unpriv -f "$_cfile" \ |
if [ "$_f" = "$i.tgz" ]; then |
| signify -Vep $FWPUB_KEY -x "$_cfile.sig" -m "$_cfile" && |
echo "Firmware for $d already installed ($installed)" |
| _issue="Signature check of SHA256.sig failed" && fail |
continue 2 |
| |
fi |
| |
done |
| |
|
| for d in $drivers; do |
rm -f /tmp/h /tmp/fail |
| _f=$( sed -n "s/.*(\($d-firmware-.*\.tgz\)).*/\1/p" "$_cfile" ) |
|
| installed=$( installed_firmware "$d" ) |
|
| |
|
| for i in $installed; do |
_t=Get/Verify |
| if [ "$_f" = "$i.tgz" ]; then |
# Fetch firmware file and create a checksum by piping through |
| echo "Firmware for $d already installed ($installed)" |
# sha256. Create a flag file in case ftp failed. Firmware |
| continue 2 |
# from net is written to the prefetch area. |
| |
( $_unpriv ftp -D "$_t" -Vmo - "$_src/$_f" || >/tmp/fail ) | |
| |
( $_srclocal && unpriv2 sha256 -b >/tmp/h || |
| |
unpriv2 -f /tmp/h sha256 -bph /tmp/h >"$_tmpsrc/$_f" ) |
| |
|
| |
# Handle failed transfer. |
| |
if [[ -f /tmp/fail ]]; then |
| |
rm -f "$_tmpsrc/$_f" |
| |
_issue="Fetching of $_f failed!" |
| |
fail |
| fi |
fi |
| done |
|
| |
|
| rm -f /tmp/h /tmp/fail |
# Verify firmware by comparing its checksum with SHA256. |
| |
if fgrep -qx "SHA256 ($_f) = $(</tmp/h)" "$_cfile"; then |
| |
#_unver=$(rmel $_f $_unver) |
| |
true |
| |
else |
| |
[[ -d "$_tmpsrc" ]] && rm -rf "$_tmpsrc" |
| |
_issue="Checksum test for $_f failed." |
| |
fail |
| |
fi |
| |
|
| _t=Get/Verify |
# TODO: Check hash for files before deleting |
| # Fetch firmware file and create a checksum by piping through |
if [ "$installed" ] && [ -e "${PKGDIR}/$installed/+CONTENTS" ]; then |
| # sha256. Create a flag file in case ftp failed. Firmware |
echo "Uninstalling $installed" |
| # from net is written to the prefetch area. |
cwd=${PKGDIR}/$installed |
| ( $_unpriv ftp -D "$_t" -Vmo - "$_src/$_f" || >/tmp/fail ) | |
|
| ( $_srclocal && unpriv2 sha256 -b >/tmp/h || |
|
| unpriv2 -f /tmp/h sha256 -bph /tmp/h >"$_tmpsrc/$_f" ) |
|
| |
|
| # Handle failed transfer. |
set -A _remove -- "${cwd}/+CONTENTS" "${cwd}" |
| if [[ -f /tmp/fail ]]; then |
|
| rm -f "$_tmpsrc/$_f" |
|
| _issue="Fetching of $_f failed!" |
|
| fail |
|
| fi |
|
| |
|
| # Verify firmware by comparing its checksum with SHA256. |
while read c g; do |
| if fgrep -qx "SHA256 ($_f) = $(</tmp/h)" "$_cfile"; then |
case $c in |
| #_unver=$(rmel $_f $_unver) |
@cwd) cwd="${DESTDIR}/$g" |
| true |
;; |
| else |
@*) continue |
| [[ -d "$_tmpsrc" ]] && rm -rf "$_tmpsrc" |
;; |
| _issue="Checksum test for $_f failed." |
*) set -A _remove -- "$cwd/$c" "${_remove[@]}" |
| fail |
;; |
| fi |
esac |
| |
done < "${PKGDIR}/$installed/+CONTENTS" |
| |
|
| # TODO: Check hash for files before deleting |
for _r in "${_remove[@]}" ; do |
| if [ "$installed" ] && [ -e "${PKGDIR}/$installed/+CONTENTS" ]; then |
if [ -d "$_r" ]; then |
| echo "Uninstalling $installed" |
# Try hard not to actually remove recursively |
| cwd=${PKGDIR}/$installed |
# without rmdir on the install media. |
| |
[ "$_r/*" = $( echo "$_r"/* ) ] && rm -rf "$_r" |
| |
else |
| |
rm -f "$_r" |
| |
fi |
| |
done |
| |
fi |
| |
|
| remove="${cwd}/+CONTENTS ${cwd}" |
# TODO: Add some details about the install to +CONTENTS like pkg_add |
| |
# TODO: Or, maybe we save the firmware someplace and make pkg_add reinstall |
| while read c g; do |
echo "Installing $_f" |
| case $c in |
tar -zxphf "$_tmpsrc/$_f" -C "${DESTDIR}/etc" "firmware/*" |
| @cwd) cwd=$g |
mkdir -p ${PKGDIR}/${_f%.tgz}/ |
| ;; |
tar -zxphf "$_tmpsrc/$_f" -C "${PKGDIR}/${_f%.tgz}" "+*" |
| @*) continue |
ed -s "${PKGDIR}/${_f%.tgz}/+CONTENTS" <<EOL |
| ;; |
|
| *) remove="$cwd/$c $remove" |
|
| ;; |
|
| esac |
|
| done < "${PKGDIR}/$installed/+CONTENTS" |
|
| |
|
| for r in $remove ; do |
|
| if [ -d "$r" ]; then |
|
| # Try hard not to actually remove recursively |
|
| # without rmdir on the install media. |
|
| [ "$r/*" = $( echo "$r"/* ) ] && rm -rf "$r" |
|
| else |
|
| rm -f "$r" |
|
| fi |
|
| done |
|
| fi |
|
| |
|
| # TODO: Add some details about the install to +CONTENTS like pkg_add |
|
| # TODO: Or, maybe we save the firmware someplace and make pkg_add reinstall |
|
| echo "Installing $_f" |
|
| tar -zxphf "$_f" -C /etc "firmware/*" |
|
| mkdir -p ${PKGDIR}/${firmware%.tgz}/ |
|
| tar -zxphf "$_f" -C "${PKGDIR}/${firmware%.tgz}" "+*" |
|
| ed -s "${PKGDIR}/${firmware%.tgz}/+CONTENTS" <<EOL |
|
| /^@comment pkgpath/ -1a |
/^@comment pkgpath/ -1a |
| @option manual-installation |
@option manual-installation |
| @option firmware |
@option firmware |
|
|
| . |
. |
| w |
w |
| EOL |
EOL |
| done |
done |
| |
} |
| |
|
| |
fw_update |
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to fw_install.sh CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [local] / openbsd / fw_update