#!/bin/bash #================================================= # GENERIC STARTING #================================================= # IMPORT GENERIC HELPERS #================================================= source _common.sh source /usr/share/yunohost/helpers ynh_abort_if_errors #================================================= # LOAD SETTINGS #================================================= ynh_print_info "Loading installation settings..." app=$YNH_APP_INSTANCE_NAME dns_method=$(ynh_app_setting_get $app dns_method) nameservers=$(ynh_app_setting_get $app nameservers) service_enabled=$(ynh_app_setting_get $app service_enabled) ip6_addr=$(ynh_app_setting_get $app ip6_addr) ip6_net=$(ynh_app_setting_get $app ip6_net) #================================================= # SPECIAL UPGRADE FOR VERSIONS < 1.2.0 #================================================= # Removing configuration files with naming that occured in versions < 1.2.0 ("vpnadmin" instead off "$app") if [ -d /var/www/vpnadmin ]; then ynh_secure_remove /var/www/vpnadmin fi #================================================= # SPECIAL UPGRADE FOR VERSIONS < 2.0 #================================================= # Old stuff if [ -f /etc/nginx/conf.d/*.d/$app.conf ]; then ynh_secure_remove /etc/nginx/conf.d/*.d/$app.conf ynh_systemd_action --service_name=nginx --action=reload fi for php_path in $(ls /etc/php/*/fpm/pool.d/$app.conf 2> /dev/null); do ynh_secure_remove $php_path done if [ -d /var/www/$app ]; then ynh_secure_remove /var/www/$app fi [ -z "$(ynh_app_setting_get $app domain)" ] || ynh_app_setting_delete $app domain [ -z "$(ynh_app_setting_get $app path)" ] || ynh_app_setting_delete $app path [ -z "$(ynh_app_setting_get $app is_public)" ] || ynh_app_setting_delete $app is_public [ -z "$(ynh_app_setting_get $app final_path)" ] || ynh_app_setting_delete $app final_path if [ -e "/etc/sudoers.d/${app}_ynh" ]; then ynh_secure_remove "/etc/sudoers.d/${app}_ynh" fi # New stuff if [ -z "$dns_method" ]; then ynh_app_setting_set --app=$app --key=dns_method --value=custom fi if [ -z "$nameservers" ]; then nameservers="$(grep -o -P '\s*nameserver\s+\K[abcdefabcdef\d.:]+' /etc/resolv.dnsmasq.conf | sort | uniq | paste -s -d, -)" ynh_app_setting_set --app=$app --key=nameservers --value="$nameservers" fi if [ -z "$service_enabled" ]; then ynh_app_setting_set --app=$app --key=service_enabled --value=0 fi if [ -z "$ip6_addr" ]; then ynh_app_setting_set --app=$app --key=ip6_addr --value="" fi if [ -z "$ip6_net" ]; then ynh_app_setting_set --app=$app --key=ip6_net --value="" fi #================================================= # UPGRADE FROM BUSTER TO BULLSEYE #================================================= if [ -e "/etc/systemd/system/openvpn@.service" ]; then ynh_secure_remove "/etc/systemd/system/openvpn@.service" fi ##================================================= ## BACKUP BEFORE UPGRADE THEN ACTIVE TRAP ##================================================= # Not done because vpnclient backup ain't so relevant I guess ? #================================================= # DO UPGRADE #================================================= # INSTALL DEPENDENCIES #================================================= ynh_print_info "Installing dependencies..." ynh_install_app_dependencies "$pkg_dependencies" #================================================= # DEPLOY FILES FROM PACKAGE #================================================= ynh_print_info --message="Stopping VPN client to apply config changes..." ynh_systemd_action --action="stop" --service_name="$service_checker_name.timer" ynh_systemd_action --action="stop" --service_name="$service_name" # Keep a copy of existing config files before overwriting them tmp_dir=$(mktemp -d /tmp/vpnclient-upgrade-XXX) cp -r /etc/openvpn/client* ${tmp_dir} # Deploy files from package vpnclient_deploy_files_and_services # Generate config file from the uploaded .cube or .ovpn file, if available if [[ -f "$tmp_dir/client.cube" ]] then cp -f "$tmp_dir/client.cube" "$tmp_dir/client.conf" convert_cube_file "$tmp_dir/client.conf" elif [[ -f "$tmp_dir/client.ovpn" ]] then cp -f "$tmp_dir/client.ovpn" "$tmp_dir/client.conf" convert_ovpn_file "$tmp_dir/client.conf" # In case we didn't keep the uploaded .ovpn file, we create one from the current config... elif [[ -f "$tmp_dir/client.conf" ]] then cp -f "$tmp_dir/client.conf" "$tmp_dir/client.ovpn" convert_ovpn_file "$tmp_dir/client.conf" fi # Restore previously existing config files cp -r ${tmp_dir}/client* /etc/openvpn/ ynh_secure_remove ${tmp_dir} #================================================= # SERVICE INTEGRATION IN YUNOHOST #================================================= ### Make sure that the yunohost services have a description and need-lock enabled ynh_print_info "Configuring VPN client services..." # main service yunohost service add $service_name --description "Tunnels the internet traffic through a VPN" --need_lock --test_status="systemctl is-active openvpn@client.service" --log "/var/log/ynh-vpnclient.log" # checker service (this service was previously integrated in yunohost but we do not do this anymore) if ynh_exec_warn_less yunohost service status $service_checker_name >/dev/null then yunohost service remove $service_checker_name fi #================================================= # RESTART RELEVANT SERVICES #================================================= ynh_print_info "Restart services..." # this is meant to propagate the new files and configs ynh_systemd_action --action="start" --service_name="$service_name" ynh_systemd_action --action="start" --service_name="$service_checker_name.timer" #================================================= # END OF SCRIPT #================================================= ynh_print_info "Upgrade of $app completed"