install-system

   1 #! /bin/bash
   2
   3 ESC=$'\e'
   4 col_red="${ESC}[1;31m"
   5 col_green_bold="${ESC}[1;32m"
   6 col_green="${ESC}[32m"
   7 col_yellow="${ESC}[1;33m"
   8 #col_cyan="${ESC}[1;36m"
   9 col_reset="${ESC}[0m"
  10
  11 opt_destdir=/srv/musiikki
  12 opt_adminpwfile=${opt_destdir}/htpasswd
  13 opt_verbose=1
  14 opt_uid=
  15 opt_gid=
  16 opt_apt=
  17 opt_hostname=
  18 opt_essid=
  19 opt_wpakey=
  20 opt_subnet=
  21
  22 # default name of Raspian
  23 default_hostname=raspberrypi
  24
  25 echo_ok()
  26 {
  27     echo "${col_green}$*${col_reset}"
  28 }
  29
  30 echo_ok_bold()
  31 {
  32     echo "${col_green_bold}$*${col_reset}"
  33 }
  34
  35 echo_error()
  36 {
  37     echo "${col_red}$*${col_reset}"
  38 }
  39
  40 echo_verbose()
  41 {
  42     test $opt_verbose -eq 1 || return
  43
  44     echo -n "$*"
  45 }
  46
  47 echo_newline_verbose()
  48 {
  49     test $opt_verbose -eq 1 || return
  50
  51     echo ""
  52 }
  53
  54 # ------------------------------------------------------------
  55
  56 assert_system_uidgid()
  57 {
  58     test -z "$opt_uid" || return
  59
  60     if [ -d ${opt_destdir} ]
  61     then
  62         opt_uid=$(stat --format=%u ${opt_destdir})
  63         opt_gid=$(stat --format=%g ${opt_destdir})
  64     else
  65         echo -n "${col_yellow}Set file owner to${col_reset}: "
  66         read opt_uid
  67
  68         echo -n "${col_yellow}Set file group to${col_reset}: "
  69         read opt_gid
  70     fi
  71 }
  72
  73 assert_system_hostname()
  74 {
  75     test -z "$opt_hostname" || return
  76
  77     echo -n "${col_yellow}Set hostname to${col_reset}: "
  78     read opt_hostname
  79 }
  80
  81 assert_system_essid()
  82 {
  83     test -z "$opt_essid" || return
  84
  85     if [ -f /etc/musiikki.conf ]
  86     then
  87         opt_essid=$(grep '^title=' /etc/musiikki.conf)
  88         opt_essid=${opt_essid#title=}
  89     else
  90         if [ -f /etc/hostapd/hostapd.conf ]
  91         then
  92             opt_essid=$(grep '^ssid=' /etc/hostapd/hostapd.conf)
  93             opt_essid=${opt_essid#ssid=}
  94         else
  95             echo -n "${col_yellow}Set Wireless ESSID to${col_reset}: "
  96             read opt_essid
  97         fi
  98     fi
  99 }
 100
 101 assert_system_wpakey()
 102 {
 103     test -z "$opt_wpakey" || return
 104
 105     if [ -f /etc/hostapd/hostapd.conf ]
 106     then
 107         opt_wpakey=$(grep '^wpa_passphrase=' /etc/hostapd/hostapd.conf)
 108         opt_wpakey=${opt_wpakey#wpa_passphrase=}
 109     else
 110         echo -n "${col_yellow}Set Wireless WPA key to${col_reset}: "
 111         read opt_wpakey
 112     fi
 113 }
 114
 115 assert_system_subnet()
 116 {
 117     test -z "$opt_subnet" || return
 118
 119
 120     if grep -q '^server\.bind' /etc/lighttpd/lighttpd.conf
 121     then
 122         opt_subnet=$(grep '^server\.bind\s' /etc/lighttpd/lighttpd.conf)
 123         opt_subnet=${opt_subnet#*\"}
 124         opt_subnet=${opt_subnet%.1\"*}
 125     else
 126         echo -n "${col_yellow}Set subnet (3 octets only) to${col_reset}: "
 127         read opt_subnet
 128     fi
 129 }
 130
 131 # ------------------------------------------------------------
 132
 133 welcome()
 134 {
 135     echo
 136     echo_ok_bold "Installing Infodrom MediaServer"
 137     echo
 138 }
 139
 140 assert_root()
 141 {
 142     if [ "$(/usr/bin/whoami)" != "root" ]
 143     then
 144         echo_error "The installation needs to be done as root"
 145         return 1
 146     fi
 147
 148     return 0
 149 }
 150
 151 assert_directory()
 152 {
 153     if [ ! -x install-system ]
 154     then
 155         echo_error "Current directory lacks executable install-system"
 156         return 1
 157     fi
 158
 159     if [ ! -d bin ]
 160     then
 161         echo_error "Current directory lacks bin directory"
 162         return 1
 163     fi
 164
 165     if [ ! -d config-templates ]
 166     then
 167         echo_error "Current directory lacks config-templates directory"
 168         return 1
 169     fi
 170
 171     if [ "$(pwd)" != "${opt_destdir}" -a -x /usr/bin/rsync ]
 172     then
 173         assert_system_uidgid
 174
 175         # Relocate ourself
 176         rsync -arH ./ ${opt_destdir}/
 177         chown -R ${opt_uid}.${opt_gid} ${opt_destdir}
 178     fi
 179
 180     return 0
 181 }
 182
 183 assert_hostname()
 184 {
 185     if [ "$(cat /etc/hostname)" = "$default_hostname" ]
 186     then
 187         echo_verbose "Default hostname found"; echo_newline_verbose
 188         assert_system_hostname
 189         echo $opt_hostname > /etc/hostname
 190         printf "192.168.1.1\t%s\n" "$opt_hostname" >> /etc/hosts
 191     fi
 192 }
 193
 194 assert_programs()
 195 {
 196
 197     echo_verbose "Looking for programs: "
 198
 199     echo_verbose "sed... "
 200     if [ ! -x /bin/sed ]
 201     then
 202         echo_newline_verbose
 203         echo_error "Program sed missing"
 204         return 1
 205     fi
 206
 207     echo_verbose "dpkg... "
 208     if [ ! -x /usr/bin/dpkg ]
 209     then
 210         echo_newline_verbose
 211         echo_error "Program dpkg missing"
 212         return 1
 213     fi
 214
 215     echo_verbose "apt-get... "
 216     if [ -x /usr/bin/apt-get ]
 217     then
 218         opt_apt=/usr/bin/apt-get
 219     else
 220         echo_verbose "apt... "
 221         if [ -x /usr/bin/apt ]
 222         then
 223             opt_apt=/usr/bin/apt
 224         else
 225             echo_verbose "aptitude... "
 226             if [ -x /usr/bin/aptitude ]
 227             then
 228                 opt_apt=/usr/bin/aptitude
 229             else
 230                 echo_newline_verbose
 231                 echo_error "High-level package manager missing (apt-get/apt/aptitude)"
 232                 return 1
 233             fi
 234         fi
 235     fi
 236
 237     echo_newline_verbose
 238
 239     return 0
 240 }
 241
 242 assert_no_recommends()
 243 {
 244     if ! grep -q 'APT::Install-Recommends False;' /etc/apt/apt.conf.d/*
 245     then
 246         echo_ok "Configure APT not to install recommended packages"
 247         echo 'APT::Install-Recommends False;' > /etc/apt/apt.conf.d/40recommends
 248     fi
 249 }
 250
 251 install_packages()
 252 {
 253     if [ -z "$opt_apt" ]
 254     then
 255         echo_error "No high-level package manager available"
 256         return 1
 257     fi
 258
 259     set -e
 260     $opt_apt update
 261     $opt_apt install -y $*
 262     set +e
 263
 264     return 0
 265 }
 266
 267 remove_packages()
 268 {
 269     if [ -z "$opt_apt" ]
 270     then
 271         echo_error "No high-level package manager available"
 272         return 1
 273     fi
 274
 275     set -e
 276     $opt_apt purge -y $*
 277     set +e
 278
 279     return 0
 280 }
 281
 282 package_exists()
 283 {
 284     local pkg=$1
 285
 286     if [ -f "/var/lib/dpkg/info/${pkg}.list" ]
 287     then
 288         return 0
 289     else
 290         return 1
 291     fi
 292 }
 293
 294 assert_packages()
 295 {
 296     missing=
 297
 298     echo_verbose "Looking for installed packages: "
 299
 300     for pkg in sudo super rsync hostapd isc-dhcp-server minidlna lighttpd samba php7.0-cgi php7.0-json
 301     do
 302         echo_verbose "${pkg}... "
 303         if ! package_exists ${pkg}
 304         then
 305             missing="$missing $pkg"
 306         fi
 307     done
 308
 309     echo_newline_verbose
 310
 311     if [ -n "$missing" ]
 312     then
 313         echo_ok "Installing$missing"
 314         install_packages $missing || return 1
 315         echo_ok "Successfully installed$missing"
 316     fi
 317
 318     toomuch=
 319
 320     echo_verbose "Looking for installed packages: "
 321
 322     for pkg in triggerhappy avahi-daemon
 323     do
 324         echo_verbose "${pkg}... "
 325         if package_exists ${pkg}
 326         then
 327             toomuch="$toomuch $pkg"
 328         fi
 329     done
 330
 331     echo_newline_verbose
 332
 333     if [ -n "$toomuch" ]
 334     then
 335         echo_ok "Removing$toomuch"
 336         remove_packages $toomuch || return 1
 337         echo_ok "Successfully removed$toomuch"
 338     fi
 339 }
 340
 341 assert_musiikki()
 342 {
 343     if [ ! -f /etc/musiikki.conf ]
 344     then
 345         assert_system_essid
 346
 347         echo_ok "Installing main configuration"
 348         sed "s/{essid}/${opt_essid}/g;s!{basedir}!${opt_destdir}!g;s!{htpasswd}!${opt_adminpwfile}!g" config-templates/musiikki.conf.template > /root/.template
 349         install -o root -g root -m 644 /root/.template /etc/musiikki.conf
 350         rm -f /root/.template
 351     fi
 352 }
 353
 354 assert_hostapd()
 355 {
 356     if [ ! -f /etc/hostapd/hostapd.conf ]
 357     then
 358         assert_system_essid
 359         assert_system_wpakey
 360
 361         echo_ok "Create hostapd configuration"
 362         sed "s/{essid}/${opt_essid}/g;s/{wpakey}/${opt_wpakey}/g" config-templates/hostapd.conf.template > /root/.template
 363         install -o root -g root -m 644 /root/.template /etc/hostapd/hostapd.conf
 364         rm -f /root/.template
 365     fi
 366
 367     if grep -q '#DAEMON_CONF=""' /etc/default/hostapd
 368     then
 369         echo_ok "Activate hostapd"
 370         sed -i 's!#DAEMON_CONF=""!DAEMON_CONF="/etc/hostapd/hostapd.conf"!' /etc/default/hostapd
 371     fi
 372 }
 373
 374 assert_dhcpd()
 375 {
 376     assert_system_subnet
 377
 378     if ! grep -q "^subnet ${opt_subnet}.0 " /etc/dhcp/dhcpd.conf
 379     then
 380         echo_ok "Add DHCP configuration"
 381         sed "s/{subnet}/${opt_subnet}/g" config-templates/dhcpd.conf.template >> /etc/dhcp/dhcpd.conf
 382     fi
 383
 384     if grep -q 'INTERFACESv4=""' /etc/default/isc-dhcp-server
 385     then
 386         echo_ok "Add WLAN interface to DCHP config"
 387         sed -i 's/INTERFACESv4=".*"/INTERFACESv4="wlan0"/' /etc/default/isc-dhcp-server
 388     fi
 389 }
 390
 391 assert_super()
 392 {
 393     echo_verbose "Asserting permissions "
 394     for prg in $(cd bin && echo *)
 395     do
 396         test $prg != musiikki-rescan || continue
 397
 398         echo_verbose "${prg}... "
 399         if ! grep -q "^${prg}" /etc/super.tab
 400         then
 401             printf "%s\t%s/bin/%s www-data u+g=root password=n\n" ${prg} ${opt_destdir} ${prg} >> /etc/super.tab
 402         fi
 403     done
 404
 405     echo_newline_verbose
 406 }
 407
 408 assert_minidlna()
 409 {
 410     assert_system_essid
 411     assert_system_subnet
 412
 413     if ! grep -q "^friendly_name=${opt_essid}" /etc/minidlna.conf
 414     then
 415         sed -i "s!#friendly_name=!friendly_name=${opt_essid}!;s!^media_dir=.*!!" /etc/minidlna.conf
 416         sed -i "s!#listening_ip=!listening_ip=${opt_subnet}.1!" /etc/minidlna.conf
 417         sed -i "s!#db_dir=.*!db_dir=/media/music/cache!" /etc/minidlna.conf
 418
 419         echo "" >>  /etc/minidlna.conf
 420         echo "model_name=${opt_essid}" >>  /etc/minidlna.conf
 421         echo "media_dir=A,/media/music/music" >>  /etc/minidlna.conf
 422         echo "media_dir=P,/media/music/pictures" >>  /etc/minidlna.conf
 423         echo "media_dir=V,/media/music/video" >>  /etc/minidlna.conf
 424     fi
 425
 426     chmod o+rx /var/cache/minidlna
 427 }
 428
 429 assert_lighttpd()
 430 {
 431     echo_verbose "Asserting lighttpd modules "
 432
 433
 434     echo_verbose "05-auth... "
 435     if [ ! -f /etc/lighttpd/conf-enabled/05-auth.conf ]
 436     then
 437        assert_system_essid
 438
 439        cat <<EOT > /etc/lighttpd/conf-enabled/05-auth.conf
 440 # /usr/share/doc/lighttpd/authentication.txt.gz
 441
 442 server.modules                += ( "mod_auth" )
 443
 444 auth.backend                 = "plain"
 445 auth.backend.plain.userfile  = "${opt_adminpwfile}"
 446 # auth.backend.plain.groupfile = "lighttpd.group"
 447
 448 auth.require                   = ( "/admin/" =>
 449                                    (
 450                                      "method"  => "basic",
 451                                      "realm"   => "${opt_essid}",
 452                                      "require" => "user=admin",
 453                                    )
 454                                  )
 455 EOT
 456     fi
 457
 458     for name in 10-fastcgi 15-fastcgi-php
 459     do
 460         echo_verbose "${name}... "
 461         if [ ! -f /etc/lighttpd/conf-enabled/${name}.conf ]
 462         then
 463             ln -s ../conf-available/${name}.conf /etc/lighttpd/conf-enabled/${name}.conf
 464         fi
 465     done
 466
 467     echo_newline_verbose
 468
 469     if [ ! -f ${opt_adminpwfile} ]
 470     then
 471         echo -n "${col_yellow}Set web admin password to${col_reset}: "
 472         read admin_pw
 473
 474         echo "admin:${admin_pw}" > ${opt_adminpwfile}
 475     fi
 476
 477     chown www-data.www-data ${opt_adminpwfile}
 478
 479     if ! grep -q '^server.tag' /etc/lighttpd/lighttpd.conf
 480     then
 481         assert_system_essid
 482         assert_system_subnet
 483
 484         sed -i "s!^server.document-root\\s*=\\s*\".*\"!server.document-root        = \"${opt_destdir}/html\"!" /etc/lighttpd/lighttpd.conf
 485         echo "server.tag                  = \"${opt_essid}\"" >> /etc/lighttpd/lighttpd.conf
 486         echo "server.bind                 = \"${opt_subnet}.1\"" >> /etc/lighttpd/lighttpd.conf
 487     fi
 488 }
 489
 490 assert_samba()
 491 {
 492     if ! grep -q '^\[musicread\]$' /etc/samba/smb.conf
 493     then
 494         echo_ok "Add shares to Samba"
 495         sed "s/{essid}/${opt_essid}/g" config-templates/smb.conf.template >> /etc/samba/smb.conf
 496     fi
 497
 498     if ! grep -q '^musicread:' /etc/passwd
 499     then
 500         assert_system_essid
 501
 502         echo_ok "Create read/only Samba account"
 503         adduser --quiet --disabled-password --system --group --no-create-home --home /var/lib/misc --gecos "${opt_essid} read/only account" musicread
 504     fi
 505
 506     if ! grep -q '^musicwrite:' /etc/passwd
 507     then
 508         assert_system_essid
 509
 510         echo_ok "Create read/write Samba account"
 511         adduser --quiet --disabled-password --system --group --no-create-home --home /var/lib/misc --gecos "${opt_essid} read/write account" musicwrite
 512     fi
 513 }
 514
 515 assert_cron()
 516 {
 517     if [ ! -f /etc/cron.d/musiikki ]
 518     then
 519         echo_ok "Install crontab"
 520         cp config-templates/cron.d.template /etc/cron.d/musiikki
 521     fi
 522
 523     if [ ! -d /var/local/musiikki ]
 524     then
 525         install -d -o minidlna -g minidlna -m 755 /var/local/musiikki
 526     fi
 527
 528     if [ ! -d /var/local/musiikki/rescan ]
 529     then
 530         install -d -o minidlna -g minidlna -m 777 /var/local/musiikki/rescan
 531     fi
 532 }
 533
 534
 535 welcome
 536
 537 assert_root || exit 2
 538 assert_directory || exit 2
 539 assert_hostname || exit 2
 540 assert_programs || exit 2
 541 assert_no_recommends || exit 2
 542 assert_packages || exit 2
 543
 544 assert_musiikki
 545 assert_hostapd
 546 assert_dhcpd
 547 assert_super
 548 assert_minidlna
 549 assert_lighttpd
 550 assert_samba
 551 assert_cron