chmod og= $logfile
}
-# find first free uid/gid in range
-# find_id passwd 100 999
-find_id() {
- local i db first last ids
- db=$1
- first=$2
- last=$3
- ids=$(getent $db | awk -F: "\$3 >= $first && \$3 <= $last {print \$3}")
- for i in $(seq $first $last)
- do
- if ! echo $ids | grep -q $i; then
- echo $i
- return 0
- fi
- done
- return 1
-}
-
# safe in-place s///
check_and_sed() {
[ "$DEBIAN_SCRIPT_DEBUG" ] && set -vx
return $ret
}
-#
-# Update uid for user from reserved system range (0-99) to dynamic system
-# range (100-999). Optionally update ownerships of given directories.
-# $0 user [directory ...]
-#
-check_and_update_ugid() {
- local user newgid newuid
- user=$1
- if [ "$(getent passwd $user | awk -F: '$3 >= 100 {print "ok"; exit 0}')" ]; then
- return 0
- fi
- shift
- newgid=$(find_id group 100 999)
- newuid=$(find_id passwd 100 999)
- # other directories/files
- chown -R $newuid:$newgid $*
- groupmod -g $newgid $user
- usermod -u $newuid -g $newgid $user
- log "Fixed $user user uid/gid."
-}
-
pkgadd () {
[ -n "$*" ] || return 0
log "Installing $* ..."
}
}
+apt_autoremove () {
+ log "Running autoremove ..."
+ apt-get -y$s --purge autoremove || {
+ dpkg --configure -a
+ apt-get -yf install
+ }
+}
+
remove_x() {
LC_MESSAGES=hr_HR dialog --backtitle "$title" --yesno "$msg_remove_x" 18 75
if [ $? -eq 0 ]; then
fi
}
-# update sarge urls in sources list
-fix_sarge_sources () {
- local apt_sources='/etc/apt/sources.list'
- local fixed_sources=$(mktemp /var/lib/carnet-upgrade/sources.list.XXXXXX)
-
- # sarge (oldstable) was archived recently -> sources.list needs update
- awk -v archive='http://archive.debian.org/debian' \
- -v security='http://archive.debian.org/debian-security' \
- '$3 == "sarge" && $2 ~ /[/]debian$/ { $2 = archive }
- $3 == "sarge/updates" && $2 ~ /security\.debian\.org$/ { $2 = security }
- { print }' $apt_sources > $fixed_sources
-
- # did anything get updated
- if ! cmp $apt_sources $fixed_sources >/dev/null; then
- log "sources.list fixed to use archive.debian.org"
-
- # backup current version
- if [ ! -f "$apt_sources.$backup_ext.sarge" ]; then
- cp -av $apt_sources "$apt_sources.$backup_ext.sarge"
- fi
-
- # install fixed version
- cp -av $fixed_sources $apt_sources
-
- # update the database
- apt_update
- fi
-
- # delete temporary
- rm -f $fixed_sources
-}
-
# try to check if we are using the latest version of carnet-upgrade script
check_my_version () {
local packages latest_version
rm -f $packages
}
-# if php is installed make sure it's version 5
-check_php_version () {
-
- if pkg php4-cn && ! pkg php5-cn; then
- # prepare for php upgrade by installing php5 extensions
- install_php5_extensions
-
- notice "
-Prije prelaska na Debian Squeeze potrebno je napraviti nadogradnju sa PHP 4 na PHP 5.
-
-Pokrenite:
- # apt-get update
- # apt-get install php5-cn
-
-Nakon sto provjerite da sve web aplikacije rade ispravno, ponovno pozovite ovu skriptu."
- log "carnet-upgrade aborted, upgrade to php5-cn needed."
- exit 1
- fi
-}
-
-# install php5 extensions based on installed php4 extensions
-install_php5_extensions () {
- local php4_list php5_pkg
-
- # get a list of installed php4 packages
- php4_list=$(mktemp /var/lib/carnet-upgrade/php4_list.XXXXXX)
- dpkg -l php4-\* | awk '/^ii/ {
- pkg=$2; sub("^php4", "php5", pkg); print pkg }' > $php4_list
-
- # compare it with the list of available php5 packages
- php5_pkg=$(apt-cache search -n ^php5- | cut -d' ' -f 1 \
- | grep -F -x -f $php4_list | grep -F -x -v php5-cn)
-
- # handle special cases
- if pkg php4-xslt; then
- php5_pkg="$php5_pkg php5-xsl"
- fi
-
- # install the required php5 modules
- if [ "$php5_pkg" ]; then
- pkgadd $php5_pkg
- fi
-
- # cleanup
- rm -f $php4_list
-}
-
-# if grsec is installed make sure it is fresh
-check_grsec_kernel () {
- local ver=`uname -r`
-
- log "Kernel version: $ver"
- if [ "$ver" = "${ver%-grsec}" ]; then
- # not grsec variant
- return 0
- fi
-
- if [ "$ver" = "${ver#2.6.2[4-9]}" ]; then
- # kernel too old
- notice "
-Prije prelaska na Debian Squeeze potrebno je napraviti nadogradnju na najnoviji kernel.
-
-Pokrenite:
- # apt-get update
- # apt-get install kernel-2.6-cn
- # reboot
-
-Nakon toga ponovno pozovite ovu skriptu."
- log "carnet-upgrade aborted, kernel upgrade needed."
- exit 1
- fi
-}
-
check_reboot () {
reboot_required || return 0
fi
}
-# fixaj /etc/default/raid2
-fix_etc_default_raid2 () {
- if [ -f /etc/default/raid2 ]; then
- sed "s/^AUTOSTART.*/AUTOSTART=true/g" /etc/default/raid2 > /etc/default/raid2.$backup_ext.$$
- chown --reference=/etc/default/raid2 /etc/default/raid2.$backup_ext.$$
- chmod --reference=/etc/default/raid2 /etc/default/raid2.$backup_ext.$$
-
- if ! cmp -s /etc/default/raid2.$backup_ext.$$ /etc/default/raid2; then
- log "Fixed /etc/default/raid2 AUTOSTART option."
- mv -v /etc/default/raid2.$backup_ext.$$ /etc/default/raid2
- else
- rm -v /etc/default/raid2.$backup_ext.$$
- fi
- fi
-}
-
# restore a configuration file if it contains only CN modifications
restore_file () {
local file file_expect file_restore file_backup
local hostname domain config_new memtotal memlimit
# restore simple configs
- if pkg kernel-2.6-cn && pkg procps lt 1:3.2.7-11; then
+ if pkg ntp-cn && pkg ntp lt 1:4.2.6.p2+dfsg-1+b1; then
+ if restore_file /etc/ntp.conf; then
+ postupgrade_reconfigure ntp-cn
+ fi
+ fi
+
+ if pkg kernel-2.6-cn && pkg procps lt 1:3.2.8-9; then
if restore_file /etc/sysctl.conf; then
postupgrade_reconfigure kernel-2.6-cn
fi
fi
- if pkg ntp-cn && pkg ntp lt 1:4.2.4p4+dfsg-8; then
- if restore_file /etc/ntp.conf; then
- postupgrade_reconfigure ntp-cn
+ if pkg kernel-2.6-cn && pkg libpam-modules lt 1.1.1-6.1; then
+ if restore_file /etc/security/limits.conf; then
+ postupgrade_reconfigure kernel-2.6-cn
fi
fi
- if pkg apache2-cn && pkg apache2.2-common lt 2.2.9-10+lenny2; then
- if restore_file /etc/apache2/ports.conf; then
- postupgrade_reconfigure apache2-cn
+ if pkg vsftpd-cn && pkg vsftpd lt 2.3.2-3+squeeze2; then
+ if restore_file /etc/vsftpd.conf; then
+ postupgrade_reconfigure vsftpd-cn
fi
fi
- if pkg postfix-cn && pkg sasl2-bin lt 2.1.22.dfsg1-23; then
- if restore_file /etc/default/saslauthd; then
- postupgrade_reconfigure postfix-cn
+ if pkg squirrelmail-cn && pkg squirrelmail lt 2:1.4.21-2; then
+ if restore_file /etc/squirrelmail/apache.conf; then
+ postupgrade_reconfigure squirrelmail-cn
fi
fi
- if pkg bind9-cn && pkg bind9 lt 1:9.5.1.dfsg.P1-1; then
- if restore_file /etc/bind/named.conf.options; then
- postupgrade_reconfigure bind9-cn
+ if pkg spamassassin-cn && pkg spamassassin lt 3.3.1-1; then
+ if restore_file /etc/spamassassin/v310.pre; then
+ postupgrade_reconfigure spamassassin-cn
fi
fi
- if pkg amavisd-cn && pkg amavisd-new lt 1:2.6.1.dfsg-1; then
+ if pkg amavisd-cn && pkg amavisd-new lt 1:2.6.4-3; then
if restore_file /etc/cron.daily/amavisd-new; then
rm -f /etc/cron.daily/amavisd-new.$backup_ext
postupgrade_reconfigure amavisd-cn
fi
- fi
- if pkg spamassassin-cn && pkg razor lt 1:2.85-1; then
- if restore_file /etc/razor/razor-agent.conf; then
- postupgrade_reconfigure spamassassin-cn
+ if restore_file /etc/amavis/conf.d/15-av_scanners; then
+ rm -f /etc/amavis/conf.d/15-av_scanners.$backup_ext
+ postupgrade_reconfigure amavisd-cn
fi
fi
- if pkg kernel-2.6-cn && pkg libpam-modules lt 1.0.1-5; then
- if restore_file /etc/security/limits.conf; then
- postupgrade_reconfigure kernel-2.6-cn
- fi
+ if pkg amavisd-cn lt 3:2.6.5; then
+ restore_file /etc/init.d/amavisd-cn
+ rm -f /etc/init.d/amavisd-cn.$backup_ext
fi
- if pkg samba-cn && pkg samba-common lt 2:3.2.5-4lenny2; then
- if restore_file /etc/samba/smb.conf; then
- postupgrade_reconfigure samba-cn
- fi
+ if pkg console-tools lt 1:0.2.3dbs-69.1; then
+ restore_file /etc/console-tools/config
fi
- if pkg base-files lt 5lenny2; then
+ if pkg base-files lt 6.0squeeze2; then
restore_file /etc/issue
restore_file /etc/issue.net
fi
- # restore php.ini
- memtotal=$(awk '$1 == "MemTotal:" { print int($2/1024) }' /proc/meminfo)
- if [ $memtotal -gt 1024 ]; then
- memlimit=64
- elif [ $memtotal -ge 512 ]; then
- memlimit=32
- else
- memlimit=16
- fi
-
- if pkg php5-cn && pkg php5-cli lt 5.2.6.dfsg.1-1+lenny2; then
- config_new=$(copy_template /etc/php5/cli/php.ini)
- sed -i "s/^[[:space:]]*memory_limit[[:space:]]*=.*/memory_limit = ${memlimit}M/" $config_new
- sed -i "s/^[[:space:]]*post_max_size[[:space:]]*=.*/post_max_size = ${memlimit}M/" $config_new
- if restore_file /etc/php5/cli/php.ini $config_new; then
- postupgrade_reconfigure php5-cn
- fi
- rm -f $config_new
+ if pkg slapd lt 2.4.23-7.2; then
+ restore_file /etc/default/slapd
fi
- if pkg php5-cn && pkg libapache2-mod-php5 lt 5.2.6.dfsg.1-1+lenny2; then
- config_new=$(copy_template /etc/php5/apache2/php.ini)
- sed -i "s/^[[:space:]]*memory_limit[[:space:]]*=.*/memory_limit = ${memlimit}M/" $config_new
- sed -i "s/^[[:space:]]*post_max_size[[:space:]]*=.*/post_max_size = ${memlimit}M/" $config_new
- if restore_file /etc/php5/apache2/php.ini $config_new; then
- postupgrade_reconfigure php5-cn
- fi
- rm -f $config_new
+ # dovecot won't start with these options
+ if pkg dovecot-cn && pkg dovecot-common lt 1:1.2.15-7; then
+ sed -i 's/^\( *\)\(sieve\(_storage\)\?=.*\)/\1#\2/' \
+ /etc/dovecot/dovecot.conf
fi
# check if monitrc is template based
- if [ -f /etc/monit/monitrc ]; then
+ if [ -e /etc/monit/monitrc ]; then # monit is removed at this point
# regenerate config from template
hostname=$(hostname)
domain=$(hostname --domain)
# make a silent installation of carnet and srce keyrings
install_keyrings () {
pkgadd carnet-keyring srce-keyring debian-archive-keyring
- pkgupgrade dpkg apt debconf python-apt dpkg-dev
dpkg-reconfigure carnet-keyring srce-keyring debian-archive-keyring
apt_update
}
-# remove skey (not supported anymore)
-remove_skey () {
- pkgrm skey-cn libpam-skey
-
- if getent group skey > /dev/null; then
- groupdel skey || true
- log "groupdel skey"
- fi
-}
-
-# remove unsupported php version
-# but leave the configuration just in case
-remove_php4 () {
- if pkg php5-cn && pkg php4-common; then
- pkgrm_only php4-common
- fi
-}
-
# check if package is orphaned (nothing depends on it)
is_orphaned () {
local package deps
remove_orphaned () {
local package
+ apt_autoremove
+
for package in $orphaned_packages; do
if is_orphaned $package; then
pkgrm $package
apt-get remove --yes monit
# stop the binary
pkill -9 monit || true
+ # move away init for insserv to work
+ mv /etc/init.d/monit /var/lib/carnet-upgrade/
fi
}
+# allow monit to run again
+enable_monit () {
+ if [ -f /var/lib/carnet-upgrade/monit ]; then
+ mv /var/lib/carnet-upgrade/monit /etc/init.d/monit
+ pkgadd monit-cn
+ fi
+}
+
# check which of the given packages are installed
grep_installed () {
local package installed
# handle freerdius upgrade
upgrade_freeradius () {
- local template config_new password realm hostname basedn
+ pkg freeradius-aai lt 2.1.10-1 || return 0
- pkg freeradius-aai lt 2.1.3-0lenny0 || return 0
-
- # aai team prevents a clean upgrade
+ # aai team prevents a normal upgrade
cp -av /etc/freeradius /etc/freeradius.$backup_ext
pkgrm freeradius-aai freeradius-ldap freeradius
+ rm -rf /etc/freeradius/certs
pkgadd freeradius-aai
}
-# prepare for slapd upgrade (caused by freeradius installation)
-prepare_openldap () {
- pkg openldap-aai lt 2.4 || return 0
-
- # openldap-aai expects org.ldif to exists
- local ldif=/var/lib/ldap/org.ldif
- local ldif_backup=/var/lib/carnet-upgrade/org.ldif
- if [ -f $ldif ]; then
- cp -v $ldif $ldif_backup
- fi
-}
-
-# fix openldap-aai postinst user handling
-upgrade_openldap () {
- pkg openldap-aai lt 2.4 || return 0
-
- # slapd postinst fails if move_old_database is false
- echo 'slapd slapd/move_old_database boolean true' | debconf-set-selections
- pkgadd slapd
-
- # slapd removes org.ldif during switch from ldap -> openldap user
- local ldif=/var/lib/ldap/org.ldif
- local ldif_backup=/var/lib/carnet-upgrade/org.ldif
- if [ -f $ldif_backup -a ! -f $ldif ]; then
- cp -v $ldif_backup $ldif
- fi
-
- # openldap-aai postinst fails here because of database permissions
- apt-get -y install openldap-aai || true
- chown -R openldap:openldap /var/lib/ldap
- /etc/init.d/slapd restart
- dpkg --configure -a
-
- # remove ldap user if openldap works
- if getent passwd ldap > /dev/null && \
- getent passwd openldap > /dev/null && \
- pgrep -U openldap slapd > /dev/null
- then
- log "userdel ldap (replaced by openldap)"
- userdel ldap || true
+# handle mysql 5.0 to 5.1 upgrade
+upgrade_mysql () {
+ if pkg mysql-server || pkg mysql-server-5.0; then
+ pkgadd mysql-server
+ dpkg -P mysql-server-5.0
+ /etc/init.d/mysql restart
fi
}
upgrade_munin () {
local config backup hostname domain
+ # new htmldir location
+ if [ -d /var/www/munin -a ! -e /var/cache/munin/www ]; then
+ mkdir -p /var/cache/munin
+ mv /var/www/munin /var/cache/munin/www
+ fi
+
for pkg_name in munin munin-node; do
- pkg $pkg_name lt '1.2.6-10~lenny1' || continue
+ pkg $pkg_name lt '1.4.5-3' || continue
config=/etc/munin/$pkg_name.conf
backup=$config.$backup_ext
dpkg-reconfigure munin-cn
}
-# udev.preinst fails if devfs configs still exist
-upgrade_udev () {
- local config
-
- for config in /etc/udev/rules.d/devfs.rules \
- /etc/udev/rules.d/compat-full.rules \
- /etc/udev/rules.d/compat.rules
- do
- if [ -e $config ]; then
- rm -v -f $config
- fi
- done
-
- if [ -f /etc/udev/udev.rules -a ! -f /etc/udev/rules.d/udev.rules ]; then
- ln -sfv ../udev.rules /etc/udev/rules.d/
- fi
-
- pkgadd udev
-}
-
-# fix /etc/dpkg/dpkg.cfg
-comment_force_overwrite () {
- if [ -f /etc/dpkg/dpkg.cfg ]; then
- if check_and_sed '^force-overwrite' \
- 's,\(^force-overwrite\),#\1,' \
- /etc/dpkg/dpkg.cfg; then
- notice "$msg_comment_force_overwrite"
- fi
- fi
-}
-
# try not to overwrite user modified issue files
fix_issue () {
if cmp /etc/issue $cnup/files/etc/issue.expect.new >/dev/null; then
}
check_kernel_space() {
- local available_disk_space kernel_size linux_images pkg ret
+ local available_disk_space kernel_size linux_images metapkg pkg ret
available_disk_space=$(free_space /)
linux_images=$(apt-cache show kernel-2.6-cn | grep ^Depends: \
- | grep -o 'linux-image[^ ]*')
- for pkg in $linux_images; do
+ | grep -o 'linux-image[^, ]*')
+ for metapkg in $linux_images; do
+ pkg=$(apt-cache show $metapkg | grep ^Depends: \
+ | grep -o 'linux-image[^, ]*' | head -1)
+ [ "$pkg" ] || continue
+
kernel_size=$(installed_size $pkg)
ret=$?
[ $ret -eq 0 ] && break
log "Kernel package: $pkg"
log "Kernel size: ${kernel_size}MB"
- if LC_ALL=C apt-get -s install kernel-2.6-cn \
+ if LC_ALL=C apt-get -s install kernel-2.6-cn 2>/dev/null \
| grep -q '^kernel-2.6-cn is already the newest version.$'
then
log "Not checking free space in /: kernel-2.6-cn already installed"