=================================================================== RCS file: /cvs/openbsd/update_openbsd/update_openbsd,v retrieving revision 1.16 retrieving revision 1.59 diff -u -r1.16 -r1.59 --- openbsd/update_openbsd/update_openbsd 2009/01/13 21:47:49 1.16 +++ openbsd/update_openbsd/update_openbsd 2014/01/22 06:44:53 1.59 @@ -1,5 +1,20 @@ #!/bin/sh -# $RedRiver: update_openbsd,v 1.15 2008/11/19 23:02:38 andrew Exp $ +# $AFresh1: update_openbsd,v 1.58 2013/12/31 18:46:59 andrew Exp $ +# +# Copyright (c) 2012 Andrew Fresh +# +# Permission to use, copy, modify, and distribute this software for any +# purpose with or without fee is hereby granted, provided that the above +# copyright notice and this permission notice appear in all copies. +# +# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES +# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF +# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR +# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES +# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN +# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF +# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. +# installed_sets() { local misc=/usr/share/doc/README @@ -23,8 +38,18 @@ echo -n " $_d" fi done + + sendmail -d0.1 --badoption /dev/null | grep -q SASL + if [ $? == 0 ]; then + echo -n ' sendmail-smtp_auth' + fi } +kernel_file_version() { + echo exit | config -e $1 | grep -A1 ^OpenBSD + #what $1 | sed -ne 's/[[:blank:]]\{1,\}//p' +} + version_in() { local _proto=${FTP%%://*} local _file @@ -90,7 +115,7 @@ fi - if [ X"" == X"${_v}" ]; then + if [ X"" != X"${MIRROR}" -a X"" == X"${_v}" ]; then if [ X"No" == X"${FORCE_DIR}" ]; then _dir=${NEW_VER} else @@ -141,11 +166,44 @@ fi FILE_VER=$_v - FTP=${MIRROR}/${_dir}/`machine` + if [ X"" != X"${MIRROR}" ]; then + FTP=${MIRROR}/${_dir}/`machine` + fi + + BOOT_KERNEL=`( \ + echo bsd; \ + [ -e /boot.conf ] && sed -E '/^ *(set +image|boot) +/!d ; \ + s///; s/^.*://; s/ .*$//' /boot.conf \ + ) | tail -1` + BOOT_KERNEL=`follow_symlink /$BOOT_KERNEL` + BOOT_KERNEL="/${BOOT_KERNEL#/}" + + BOOT_KERNEL_VERSION=`kernel_file_version $BOOT_KERNEL` + + BOOTED_KERNEL_VERSION=`sysctl -n kern.version` + NEW_KERNEL_VERSION="" + + # We want to default to what we had + INSTALL_KERNELS="${BOOT_KERNEL#/}" + # if the boot kernel was our specially named bsd.sp, we install from bsd + if [ X"$INSTALL_KERNELS" == X"bsd.sp" ]; then + INSTALL_KERNELS="bsd" + fi + # with a second option of an mp kernel if is is a likely candidate + if [ X"$INSTALL_KERNELS" != X"bsd.mp" ]; then + local _ncpu=$(sysctl -n hw.ncpufound) + [ $_ncpu -gt 1 ] && INSTALL_KERNELS="$INSTALL_KERNELS bsd.mp" + fi + # or just bsd otherwise + if [ X"${INSTALL_KERNELS% *}" != X"bsd" ]; then + INSTALL_KERNELS="$INSTALL_KERNELS bsd" + fi + BOOT_KERNELS=$INSTALL_KERNELS + INSTALL_KERNELS="$INSTALL_KERNELS bsd.rd" } get_sets() { - echo '### GETTING SETS ###' + echo '==> GETTING SETS' if [ X"" == X"$FTP" ]; then echo ERROR: No FTP site set! >&2 return 1 @@ -156,116 +214,198 @@ local _v=$FILE_VER - for _b in `echo /bsd* bsd bsd.mp bsd.rd | sort -u`; do - if [ -e /${_b} -a ! -e ./${_b} ]; then - echo $FTP_CMD ${FTP}/${_b} + for _b in $INSTALL_KERNELS; do + if [ ! -e ./${_b} ]; then + echo "===> $FTP_CMD ${FTP}/${_b}" $FTP_CMD ${FTP}/${_b} fi done for _s in $INSTALLED_SETS; do - if [ ! -e ./${_s}${_v}.tgz ]; then - echo $FTP_CMD ${FTP}/${_s}${_v}.tgz - $FTP_CMD ${FTP}/${_s}${_v}.tgz + local _file=${_s}${_v}.tgz + if [ ${_s} == sendmail-smtp_auth ]; then + _file=${_s}.gz fi + + if [ ! -e ./${_file} ]; then + echo "===> $FTP_CMD ${FTP}/${_file}" + $FTP_CMD ${FTP}/${_file} + fi done - if [ ! -e MD5 ]; then - echo $FTP_CMD ${FTP}/MD5 - $FTP_CMD ${FTP}/MD5 + local _type + local _ftp + for _type in $CHECKSUM_TYPES; do + [ -e $_type ] && break + _ftp=`echo "$FTP" | sed -e 's,://[^/]*/,://ftp.openbsd.org/,'` + echo "===> $FTP_CMD ${_ftp}/$_type" + $FTP_CMD ${_ftp}/$_type + done +} + +follow_symlink () { + local _file=$1 + # This could go circular, but I dunno how to fix that. + if [ -h $_file ]; then + follow_symlink $( file $_file | + grep 'symbolic link' | + sed -e s/^.*\\\`// -e s/\\\'\$// ) + else + echo $_file fi +} - ls bsd* *.tgz | sed -e 's/\(.*\)/(\1)/' > index - grep -f index MD5 | md5 -c +check_sum () { + local _type=$1 + echo "==> CHECKING $_type SUMS" + cd $RELEASEDIR + if [ ! -e $_type ]; then + echo $_type File does not exist! + return 1 + fi + + local _nv=`echo $NEW_VER | sed -e 's/\.//'` + local _signify=`which signify` + local _keyfile=/etc/signify/${_nv}base.pub + local _b _s + + ( + for _b in $INSTALL_KERNELS; do echo "($_b)" ; done + for _s in $INSTALLED_SETS; do echo "($_s$_nv.tgz)"; done + ) > index + + + if [ -n "$_signify" -a "$_type" != "${_type%.sig}" ]; then + echo "===> Checking signature"; + if [ ! -e $_keyfile ]; then + echo "key [$_keyfile] does not exist, cannot check $_type" >&2 + return 2 + fi + signify -V -e -p $_keyfile -x $_type -m - | grep -f index | sum -c - + else + grep -f index $_type | sum -c + fi + if [ $? -ne 0 ]; then - echo ERROR: MD5 does not match! >&2 + echo ERROR: $_type does not match! >&2 return 1 fi } -install_kernel() { - echo '### INSTALLING KERNEL ###' - if [ X"$USER" != X"root" -a X"$SUDO" == X"" ]; then - echo ${0##*/} must be run as root or SUDO must be set! >&2 - exit 1 - fi +check_sets() { + echo '==> CHECKING SETS' + cd $RELEASEDIR - if [ X"" == X"$RELEASEDIR" ]; then - echo ERROR: no source for new kernels! >&2 - exit 1 - else - cd $RELEASEDIR + local _missing_sets + local _v=$FILE_VER + + for _n in $INSTALL_KERNELS; do + local _o=$_n + [ X"bsd" == X"${_o}" -a -e /bsd.sp ] && _o=bsd.sp + if [ -e /${_o} -a ! -e ./${_n} ]; then + echo ${_o} does not exist + _missing_sets=1 + fi + + if [ X"${BOOT_KERNEL}" == X"/${_o}" -a -e ./${_n} ]; then + NEW_KERNEL_VERSION=`kernel_file_version ./${_n}` + fi + done + + if [ X"$NEW_KERNEL_VERSION" == X"" ]; then + echo Missing replacement for boot kernel $BOOT_KERNEL >&2 + _missing_sets=1 fi - if [ ! -e bsd ]; then - echo ERROR: new bsd kernel does not exist! >&2 - exit 1 + for _s in $INSTALLED_SETS; do + local _file=${_s}${_v}.tgz + if [ ${_s} == sendmail-smtp_auth ]; then + _file=${_s}.gz + fi + if [ ! -e ./${_file} ]; then + echo ${_file} does not exist + _missing_sets=1 + fi + done + + if [ X"" == X"${_missing_sets}" ]; then + echo '===> All OK' fi - if [ -e /bsd.mp -a ! -e bsd.mp ]; then - echo ERROR: new bsd.mp kernel does not exist! >&2 + local _type + for _type in $CHECKSUM_TYPES; do + if [ -e $_type ]; then + check_sum $_type && break + [ -z "$IGNORE_CHECKSUM_ERROR" ] || exit 1 + fi + done + + return 0 +} + + +install_kernels() { + echo '==> INSTALLING KERNEL' + if [ X"$USER" != X"root" -a X"$SUDO" == X"" ]; then + echo ${0##*/} must be run as root or SUDO must be set! >&2 exit 1 fi - if [ ! -e bsd.rd ]; then - echo ERROR: new bsd.rd kernel does not exist! >&2 + if [ X"" == X"$RELEASEDIR" ]; then + echo ERROR: no source for new kernels! >&2 exit 1 fi - local _v=$FILE_VER - if [ -e base${_v}.tgz ]; then - echo Extracting new firmware and ifconfig from base${_v}.tgz - $SUDO tar -C $DESTDIR -xzphf base${_v}.tgz \ - ./etc/firmware ./sbin/ifconfig + if [ X"$BOOT_KERNEL_VERSION" != X"$NEW_KERNEL_VERSION" ]; then + echo "===> Backing up $BOOT_KERNEL to /obsd" + $SUDO ln -f $BOOT_KERNEL /obsd + if [ $? -ne 0 ]; then + echo "Error copying old kernel!" >&2 + exit 1 + fi fi - $SUDO rm -f /obsd - $SUDO ln /bsd /obsd - if [ $? -ne 0 ]; then - echo "Error copying old kernel!" - exit 1 - fi + cd $RELEASEDIR - for _b in bsd*; do + for _b in $INSTALL_KERNELS; do $SUDO rm -f /nbsd + local _bd=$_b + [ X"${_b}" == X"bsd" ] && _bd="bsd.sp" - if [ X"${_b}" == X"bsd" ]; then - echo Copying bsd to /bsd.sp - $SUDO cp bsd /nbsd && $SUDO mv /nbsd /bsd.sp - if [ $? -ne 0 ]; then - echo ERROR: Could not copy new SP kernel! >&2 - exit 1 - fi - else - if [ -e /$_b ]; then - echo Copying $_b to / - $SUDO cp ${_b} /nbsd && $SUDO mv /nbsd /${_b} - if [ $? -ne 0 ]; then - echo ERROR: Could not copy new $_b kernel! >&2 - exit 1 - fi - fi + local _is_boot="" + [ X"$BOOT_KERNEL" == X"/${_bd}" ] && _is_boot="# boot kernel" + + echo "===> Copying $_b to /$_bd $_is_boot" + $SUDO cp ${_b} /nbsd && $SUDO mv /nbsd /${_bd} + if [ $? -ne 0 ]; then + echo ERROR: Could not copy new $_bd kernel! >&2 + exit 1 fi done + cd $OLDPWD + if [ ! -h /bsd ]; then - if [ -e /bsd.mp ]; then - echo linking /bsd.mp to /bsd - $SUDO ln -sf /bsd.mp /bsd - else - echo linking /bsd.sp to /bsd - $SUDO ln -sf /bsd.sp /bsd - fi - if [ $? -ne 0 ]; then - echo ERROR: Could not symlink new kernel! >&2 - exit 1 - fi + cd / + for _b in $BOOT_KERNELS; do + [ X"$_b" == X"bsd" ] && _b="bsd.sp" + if [ -e $_b ]; then + echo "===> symlinking $_b to /bsd" + $SUDO ln -sf $_b bsd + if [ $? -ne 0 ]; then + echo ERROR: Could not symlink new kernel! >&2 + exit 1 + fi + break + fi + done + cd $OLDPWD fi } install_sets() { - echo '### INSTALLING SETS ###' + echo '==> INSTALLING SETS' if [ X"$USER" != X"root" -a X"$SUDO" == X"" ]; then echo ${0##*/} must be run as root or SUDO must be set! >&2 exit 1 @@ -280,17 +420,16 @@ local _v=$FILE_VER - for _f in *${_v}.tgz; do + local _sets=`ls *${_v}.tgz | grep -v ^base ` + for _f in ${_sets} base${_v}.tgz; do _path=$DESTDIR if [ X"etc${_v}.tgz" == X"$_f" \ -o X"xetc${_v}.tgz" == X"$_f" ]; then - if [ X"" != X"$SYSMERGE" ]; then - continue - fi + [ X"" != X"$SYSMERGE" ] && continue _path=/var/tmp/temproot fi - echo Extracting $_f to $_path + echo "===> Extracting $_f to $_path" $SUDO mkdir -p $_path $SUDO tar -C $_path -xzphf ${RELEASEDIR}/${_f} if [ $? -ne 0 ]; then @@ -299,60 +438,60 @@ fi done - echo Extracted all sets. + echo '===> Extracted all sets.' } +install_sendmail_smtp_auth() { + if [ -e ${RELEASEDIR}/sendmail-smtp_auth.gz ]; then + gzcat ${RELEASEDIR}/sendmail-smtp_auth.gz > \ + ${RELEASEDIR}/sendmail-smtp_auth + fi + if [ -e ${RELEASEDIR}/sendmail-smtp_auth ]; then + if ! pkg_info -qe 'cyrus-sasl-*'; then + $SUDO pkg_add -i cyrus-sasl + fi + + $SUDO install -o root -g smmsp -m 2555 \ + ${RELEASEDIR}/sendmail-smtp_auth \ + /usr/libexec/sendmail/sendmail + + echo '===> Installed sendmail with smtp_auth' + fi +} + update_etc() { - echo '### UPDATING ETC ###' + echo '==> UPDATING ETC' if [ ! -e $SYSMERGE ]; then - SYSMERGE= + echo "ERROR: Can't find sysmerge!" >&2 + exit 1; fi - if [ X"" == X"$SYSMERGE" ]; then - if [ -e /var/tmp/temproot ]; then - MERGEMASTER=`which mergemaster` + if [ X"" == X"$RELEASEDIR" ]; then + echo "ERROR: no source for etc!" >&2 + exit 1 + fi - if [ $? != 0 ]; then - $SUDO pkg_add -i mergemaster + cd $RELEASEDIR - MERGEMASTER=`which mergemaster` - if [ $? != 0 ]; then - echo ERROR: mergemaster not installed! >&2 - exit 1 - fi - fi - - echo '### RUNNING MERGEMASTER ###' - $SUDO $MERGEMASTER -irv - else - echo "ERROR: no source for etc!" >&2 - exit 1 - fi + local _v=$FILE_VER + local _args="" + if [ -e etc${_v}.tgz ]; then + _args="$_args -s etc${_v}.tgz" + fi + if [ -e xetc${_v}.tgz ]; then + _args="$_args -x xetc${_v}.tgz" + fi + if [ X"" == X"$_args" ]; then + echo ERROR: No upgrade sets found! >&2 else - if [ X"" == X"$RELEASEDIR" ]; then - echo "ERROR: no source for etc!" >&2 - exit 1 - else - cd $RELEASEDIR - fi - - local _v=$FILE_VER - if [ -e etc${_v}.tgz ]; then - _args="$_args -s etc${_v}.tgz" - fi - if [ -e xetc${_v}.tgz ]; then - _args="$_args -x xetc${_v}.tgz" - fi - if [ X"" == X"$_args" ]; then - echo ERROR: No upgrade sets found! >&2 - else - echo '### RUNNING SYSMERGE ###' - _args="-a $_args" - $SUDO $SYSMERGE $_args - fi + echo '==> RUNNING SYSMERGE' + $SUDO $SYSMERGE $_args fi + + cd $OLDPWD } + if [ -e /etc/update_openbsd.conf ]; then . /etc/update_openbsd.conf fi @@ -361,7 +500,7 @@ . ${HOME}/.update_openbsdrc fi -MIRROR=${MIRROR:=ftp://ftp.openbsd.org/pub/OpenBSD} +#MIRROR=${MIRROR:=ftp://ftp.openbsd.org/pub/OpenBSD} FTP_CMD=${FTP_CMD:=ftp -V} PKG_PATH=${PKG_PATH:=/usr/ports/packages/`machine`/all/:${MIRROR}/`uname -r`/packages/`machine`/} @@ -371,6 +510,8 @@ INSTALLED_SETS=${INSTALLED_SETS:=`installed_sets`} +CHECKSUM_TYPES=${CHECKSUM_TYPES:=SHA256.sig SHA256} + set_version local _error=$? @@ -378,42 +519,98 @@ echo "-= update_openbsd - helper script to update OpenBSD =-" echo "------------------------------------------------------" echo -echo " SUDO: $SUDO" -echo " SYSMERGE: $SYSMERGE" -echo " MIRROR: $MIRROR" -echo " RELEASEDIR: $RELEASEDIR" -echo " DESTDIR: $DESTDIR" -echo "INSTALLED_SETS: $INSTALLED_SETS" +echo " SUDO: $SUDO" +echo " SYSMERGE: $SYSMERGE" +echo " MIRROR: $MIRROR" +echo " RELEASEDIR: $RELEASEDIR" +echo " DESTDIR: $DESTDIR" +echo " BOOT_KERNEL: $BOOT_KERNEL" +echo "INSTALL_KERNELS: $INSTALL_KERNELS" +echo " INSTALLED_SETS: $INSTALLED_SETS" echo -echo " CUR_VER: $CUR_VER" -echo " NEW_VER: $NEW_VER" -#echo " FILE_VER: $FILE_VER" +echo " CUR_VER: $CUR_VER" +echo " NEW_VER: $NEW_VER" +#echo " FILE_VER: $FILE_VER" echo if [ ${_error} -ne 0 ]; then exit ${_error} fi -get_sets +if [ X"" != X"${FTP}" ]; then + get_sets +fi -if [ X"" != X"$SUDO" ]; then - echo Please enter your sudo password if prompted. - echo You may be asked for it again later in the process. - $SUDO -v +check_sets || exit + +echo "===> Last booted:\n$BOOTED_KERNEL_VERSION" +if [ X"$BOOT_KERNEL_VERSION" != X"$BOOTED_KERNEL_VERSION" \ + -a X"$BOOT_KERNEL_VERSION" != X"$NEW_KERNEL_VERSION" ]; then + echo "Next boot (unless replaced):\n$BOOT_KERNEL_VERSION" fi +if [ -n "$NEW_KERNEL_VERSION" ]; then + echo "===> New $BOOT_KERNEL:\n$NEW_KERNEL_VERSION"; +else + echo "\n!!! WARNING: Will not replace boot kernel $BOOT_KERNEL! !!!\n" >&2 + echo "ctrl+C to cancel, enter to continue anyway" >&2 + local _temp + read _temp + NEW_KERNEL_VERSION=$BOOT_KERNEL_VERSION +fi -install_kernel +if [ -n "$SUDO" -a $CUR_VER != $NEW_VER ]; then + echo >&2 + echo "!!! You are upgrading between OpenBSD versions. !!!" >&2 + echo "!!! You should make sure you have a root shell open !!!" >&2 + echo "!!! It is needed in order to run /sbin/oreboot. !!!" >&2 + echo "!!! sudo MAY NOT WORK after sets are extracted. !!!" >&2 + echo >&2 + echo "ctrl+C to cancel, enter to continue" >&2 + local _temp + read _temp +fi -if [ $CUR_VER == $NEW_VER ]; then - install_sets +if [ -n "$SUDO" ]; then + echo + echo You may be asked for your sudo password multiple times. + $SUDO -v -p "sudo Password: " +fi + +if [ X"$NEW_KERNEL_VERSION" != X"$BOOTED_KERNEL_VERSION" \ + -a ! -e /sbin/oreboot ]; then + $SUDO cp /sbin/reboot /sbin/oreboot + if [ $? -ne 0 ]; then + echo "Error copying old reboot command!" >&2 + exit 1 + fi + echo "/sbin/reboot copied to /sbin/oreboot" +fi + +install_kernels +install_sets + +if [ X"$NEW_KERNEL_VERSION" == X"$BOOTED_KERNEL_VERSION" ]; then + install_sendmail_smtp_auth + + if [ -e /sbin/oreboot ]; then + echo Removing /sbin/oreboot + $SUDO rm -f /sbin/oreboot + fi update_etc - echo '### UPDATING PACKAGES ###' + echo '==> UPDATING PACKAGES' $SUDO pkg_add -ui -F update -F updatedepends else echo Instructions for updating to the new version available from - echo " http://www.openbsd.org/faq/upgrade${_v}.html" + if [ X"snapshots" == X"$FORCE_DIR" ]; then + echo " http://www.openbsd.org/faq/current.html" + else + echo " http://www.openbsd.org/faq/upgrade${FILE_VER}.html" + fi fi echo New kernel installed. Please reboot! +if [ -e /sbin/oreboot ]; then + echo Possibly using /sbin/oreboot +fi