Changeset 591

Timestamp:

02/05/10 19:55:47 (2 years ago)

Author:

tschmitt

Message:

• Paket:
  • LSB-Header zu linbo-multicast Initskript hinzugefügt.
  • postinst: o Bereitstellen der Bittorrent-Initskripte, werden vom Lenny-Bittorrent-Paket nicht

mehr automatisch installiert.

o Unterdrücken des Passwortprompts bei SSH-Schlüsselgenerierung.

• Linbofs
  • Rsync: neue Version 3.0.7.
  • linbo_cmd.sh: o mk_cloop(): Rsync-Optionen bzgl. Dateisystemtyp differenziert (ntfs, vfat, other).
  • linbo_wrapper: Shutdown-Befehl von poweroff nach halt geändert.
  • ntfs-3g: Neue Version 2010.1.16 (stable).
• Kernel: Neue Version 2.6.32.7.
• Serverskripte
  • Syslinux: Auf Lenny neu kompiliert.
  • make-linbo-media.sh: o Neue Option -n: erlaubt Passwort basiertes einloggen, benötigt -p, optional. o Neue Option -p <passwort>: setzt das lokale linbo Adminpasswort, wird auch für

Root-SSH-Login benutzt, wenn mit -n das Passwort basierte Einloggen erlaubt wurde, optional.

o Neue Option -r: entfernt den öffentlichen SSH-Schlüssen des Serverbenutzers root.
o Ermittlung der LINBO-Parameter aus der gruppenspezifischen PXE-Konfigurationsdatei verbessert.

Location:

main/linuxmuster-linbo/branches/testing

Files:

• conf/initramfs.conf (modified) (1 diff)
• debian/changelog (modified) (1 diff)
• debian/linbo-multicast (modified) (1 diff)
• debian/md5sums.src (modified) (1 diff)
• debian/postinst (modified) (3 diffs)
• debian/rules (modified) (3 diffs)
• linbo/linbo_cmd.sh (modified) (1 diff)
• linbo/linbo_wrapper.sh (modified) (1 diff)
• share/make-linbo-media.sh (modified) (10 diffs)

main/linuxmuster-linbo/branches/testing/conf/initramfs.conf

@@ -112 +112 @@
 # ntfs-3g
 file /bin/ntfs-3g ../../src/ntfs-3g/src/.libs/ntfs-3g 755 0 0
-file /lib/libntfs-3g.so.4917 ../../src/ntfs-3g/libntfs-3g/.libs/libntfs-3g.so.4917 755 0 0
+file /lib/libntfs-3g.so.73 ../../src/ntfs-3g/libntfs-3g/.libs/libntfs-3g.so.73.0.0 755 0 0
 # ntfs-3g 1.2920 MUST have this.
 slink /etc/mtab /proc/mounts 755 0 0

main/linuxmuster-linbo/branches/testing/debian/changelog

@@ +1 @@
+linuxmuster-linbo (1.99.16-0) unstable; urgency=low
+
+  * package
+    - linbo-multicast init script, added lsb header.
+  * linbofs
+    - rsync: new upstream version 3.0.7.
+    - linbo_cmd.sh:
+      o mk_cloop(): uses specific rsync options due to fstype (ntfs, vfat, other).
+    - linbo_wrapper: changed shutdown command from poweroff to halt.
+    - ntfs-3g: new upstream version 2010.1.16.
+  * kernel: new version 2.6.32.7.
+  * server side scripting
+    - syslinux: recompiled on lenny.
+    - make-linbo-media.sh:
+      o new option -n: no strict checking for linbo ssh server, allows password based
+        logins, needs -p for root pw, optional.
+      o new option -p <password>: sets local linbo admin password, is also used for
+        root ssh login if password logins are allowed with -n, optional.
+      o new option -r: remove server root's public ssh key.
+      o improved LINBO parameter grepping from group's pxe configfile.
+
+ -- Thomas Schmitt <schmitt@lmz-bw.de>  Fri, 5 Feb 2010 13:16:23 +0100
+
+linuxmuster-linbo (1.99.15-2) unstable; urgency=low
+
+  * package, postinst: creating bittorrent init scripts if necessary.
+
+ -- Thomas Schmitt <schmitt@lmz-bw.de>  Wed, 3 Feb 2010 13:25:56 +0100
+
+linuxmuster-linbo (1.99.15-1) unstable; urgency=low
+
+  * package, postinst: added one more "\n" to ssh key gen commands to avoid password query.
+
+ -- Thomas Schmitt <schmitt@lmz-bw.de>  Mon, 1 Feb 2010 15:21:25 +0100
+
 linuxmuster-linbo (1.99.15-0) unstable; urgency=low
 

main/linuxmuster-linbo/branches/testing/debian/linbo-multicast

@@ -1 +1 @@
 #!/bin/bash
+
+### BEGIN INIT INFO
+# Provides:          linbo-multicast
+# Required-Start:    $network $local_fs
+# Required-Stop:     $network $local_fs
+# Should-Start:      
+# Should-Stop:       
+# Default-Start:     2 3 4 5
+# Default-Stop:      0 1 6
+# Short-Description: Start linbo multicast server
+# Description:       Start linbo multicast server
+### END INIT INFO
+
 # Author: Thomas Schmitt <schmitt@lmz-bw.de>
-# License: GPL V2
+# License: GPL V3
 #
-# /etc/init.d/starting linbo multicast server
 
 # defaults

main/linuxmuster-linbo/branches/testing/debian/md5sums.src

@@ -5 +5 @@
 e9a5936688e97075901f099b1749dc80  grub4dos-0.4.4-2009-10-16-src.zip
 67c1a396fdf67b984dad939a59a01571  kexec-tools-2.0.1.tar.bz2
-471e0fe07e27796f041ecb990302ccc4  linux-2.6.32.4.tar.bz2
+d59aca06609cedabe4d6d161d9f11113  linux-2.6.32.7.tar.bz2
 6fad0a69ac89440ad4f696dbbbf11497  ms-sys-2.1.3.tgz
-d1f9bf1df93ac9eec0e6dab133f0fe99  ntfs-3g-2009.4.4AR.17.tgz
+e104c914e8d7d29ee83e63d46afbba25  ntfs-3g-2010.1.16.tgz
 083903f34a0c345a05931b43fe4aa7f0  qt-embedded-linux-opensource-src-4.5.2.tar.gz
-e9865d093a18e4668b9d31b635dc8e99  rsync-3.0.6.tar.gz
+b53525900817cf1ba7ad3a516ab5bfe9  rsync-3.0.7.tar.gz
 257ac04e62ab7e3616e220333a1140cb  ssmtp_2.62.orig.tar.gz
-55e3eb8fd1395d59b6da0b53839c865b  syslinux-3.82.tar.bz2
+78f2f111e052f1553e8530df8d72d027  syslinux-3.82.tar.bz2

main/linuxmuster-linbo/branches/testing/debian/postinst

@@ -102 +102 @@
         fi
 
-  if [ -e /etc/default/bittorrent ]; then
-   # add bittorrent user if not present
-   if ! id bittorrent &> /dev/null; then
-    useradd -c "BitTorrent User" -d /var/lib/bittorrent -g nogroup -r bittorrent
-    dpkg-statoverride --add bittorrent nogroup 755 /var/lib/bittorrent
-    dpkg-statoverride --add bittorrent nogroup 755 /var/log/bittorrent
-   fi
-   chown bittorrent:nogroup /var/lib/bittorrent -R
-   chown bittorrent:nogroup /var/log/bittorrent -R
-   # setting needed options in /etc/default/bittorrent
+  # add bittorrent user if not present
+  if ! id bittorrent &> /dev/null; then
+   useradd -c "BitTorrent User" -d /var/lib/bittorrent -g nogroup -r bittorrent
+   dpkg-statoverride --add bittorrent nogroup 755 /var/lib/bittorrent
+   dpkg-statoverride --add bittorrent nogroup 755 /var/log/bittorrent
+  fi
+  chown bittorrent:nogroup /var/lib/bittorrent -R
+  chown bittorrent:nogroup /var/log/bittorrent -R
+
+  # provide a bittorrent default file if necessary
+  if [ ! -s /etc/default/bittorrent -a -s /usr/share/doc/bittorrent/examples/bittorrent.default ]; then
+   cp /usr/share/doc/bittorrent/examples/bittorrent.default /etc/default/bittorrent
+  fi
+
+  # provide a bittorrent init script if necessary
+  if [ ! -s /etc/init.d/bittorrent -a -s /usr/share/doc/bittorrent/examples/bittorrent.init ]; then
+   cp /usr/share/doc/bittorrent/examples/bittorrent.init /etc/init.d/bittorrent
+   chmod 755 /etc/init.d/bittorrent
+   update-rc.d bittorrent defaults
+  fi
+
+  # setting needed options in /etc/default/bittorrent
+  if [ -s /etc/default/bittorrent ]; then
    if ! grep -q ^REANNOUNCE_INTERVAL /etc/default/bittorrent; then
     echo "Adding REANNOUNCE_INTERVAL=15 to /etc/default/bittorrent."
@@ -149 +162 @@
     sed -e 's|/var/log/linuxmuster/linbo/|/var/log/bittorrent/|' /etc/logrotate.d/linuxmuster-linbo > /etc/logrotate.d/bittorrent
    fi
-  fi
+  fi # /etc/default/bittorrent
 
   # change owner of logdir to nobody
@@ -157 +170 @@
   # create dropbear ssh keys
   if [ ! -s "$SYSCONFDIR/linbo/ssh_host_rsa_key" ]; then
-   echo -e "$SYSCONFDIR/linbo/ssh_host_rsa_key\n\n\n" | ssh-keygen -t rsa
+   echo -e "$SYSCONFDIR/linbo/ssh_host_rsa_key\n\n\n\n\n" | ssh-keygen -t rsa
    /usr/lib/dropbear/dropbearconvert openssh dropbear $SYSCONFDIR/linbo/ssh_host_rsa_key $SYSCONFDIR/linbo/dropbear_rsa_host_key
   fi
   if [ ! -s "$SYSCONFDIR/linbo/ssh_host_dsa_key" ]; then
-   echo -e "$SYSCONFDIR/linbo/ssh_host_dsa_key\n\n\n" | ssh-keygen -t dsa
+   echo -e "$SYSCONFDIR/linbo/ssh_host_dsa_key\n\n\n\n\n" | ssh-keygen -t dsa
    /usr/lib/dropbear/dropbearconvert openssh dropbear $SYSCONFDIR/linbo/ssh_host_dsa_key $SYSCONFDIR/linbo/dropbear_dss_host_key
   fi

main/linuxmuster-linbo/branches/testing/debian/rules

@@ -61 +61 @@
 NTFS3G_ARCHIVE=$(shell grep ntfs-3g- debian/md5sums.src | awk '{ print $$2 }')
 NTFS3G_DIR=src/$(shell echo $(NTFS3G_ARCHIVE) | sed -e 's/.tgz//')
-#NTFS3G_URL=http://www.ntfs-3g.org
-NTFS3G_URL=$(LML_URL)
+NTFS3G_URL=http://tuxera.com/opensource
 
 # ntfsprogs
@@ -290 +289 @@
         -@if [ ! -e $(NTFS3G_DIR)/src/.libs/ntfs-3g ]; then \
                 echo "[1mBuilding ntfs-3g...[0m" ; \
-                ( cd $(NTFS3G_DIR) && ./configure --enable-static --enable-posix-acls && make && strip src/.libs/secaudit && strip src/.libs/ntfs-3g && strip libntfs-3g/.libs/libntfs-3g.so.4917.0.0 ); \
+                ( cd $(NTFS3G_DIR) && ./configure --enable-static --enable-posix-acls && make && strip src/.libs/ntfs-3g.secaudit && strip src/.libs/ntfs-3g && strip libntfs-3g/.libs/libntfs-3g.so.73.0.0 ); \
         fi
 
@@ -305 +304 @@
         fi
 
-        # syslinux (already built on etch)
+        # syslinux (already built on lenny)
 #       -@if [ ! -e $(SYSLINUX_DIR)/gpxe/src/bin/gpxe.lkrn ]; then \
 #               echo "[1mBuilding syslinux...[0m" ; \

main/linuxmuster-linbo/branches/testing/linbo/linbo_cmd.sh

@@ -768 +768 @@
       echo "Starte Kompression von $2 -> $3 (differentiell)." | tee -a /tmp/image.log
       mkexclude
-      # rsync mit acl und xattr Optionen
-      local ROPTS="-HazAX"
-      #local ROPTS="-az"
-      [ "$(fstype "$2")" = "vfat" ] && ROPTS="-rtz"
-      # tschmitt: logging
-      #rm -f "$TMP"
-      #interruptible rsync "$ROPTS" --exclude="/.linbo" --exclude-from="/tmp/rsync.exclude" --delete --delete-excluded --partial --only-write-batch="$3" /mnt/ /cloop
-      #interruptible rsync "$ROPTS" --fake-super --exclude="/.linbo" --exclude-from="/tmp/rsync.exclude" --delete --delete-excluded --partial --log-file=/tmp/image.log --log-file-format="" --only-write-batch="$3" /mnt/ /cloop 2>&1 >>/tmp/image.log
+      # determine rsync opts due to fstype
+      local type="$(fstype "$2")"
+      case $type in
+       ntfs) ROPTS="-HazAX" ;;
+       vfat) ROPTS="-rtz" ;;
+       *) ROPTS="-az" ;;
+      esac
       interruptible rsync "$ROPTS" --exclude="/.linbo" --exclude-from="/tmp/rsync.exclude" --delete --delete-excluded --log-file=/tmp/image.log --log-file-format="" --only-write-batch="$3" /mnt/ /cloop 2>&1 >>/tmp/image.log
       RC="$?"

main/linuxmuster-linbo/branches/testing/linbo/linbo_wrapper.sh

@@ -438 +438 @@
   reboot) /sbin/reboot ;;
 
-  halt|poweroff) /sbin/poweroff ;;
+  halt|poweroff) /sbin/halt ;;
 
  esac

main/linuxmuster-linbo/branches/testing/share/make-linbo-media.sh

@@ -24 +24 @@
         echo " -b                      create debug menu entries"
         echo " -c                      create cdrom media, has to be used with -d or -i"
-        echo " -d <device>             writes directly to device (optional), cann be used with -c or -u"
-        echo " -g <group1,group2,...>  list of hostgroups to build for (optional, default: default)"
+        echo " -d <device>             writes directly to device (optional), can be used"
+        echo "                         with -c or -u"
+        echo " -g <group1,group2,...>  list of hostgroups to build for, optional,"
+        echo "                         if -g is not given, default group is used."
         echo " -i <output dir>         creates cdrom iso in output dir"
+ echo " -n                      no strict checking for linbo ssh server, allows"
+ echo "                         password based logins, needs -p for root pw, optional"
+ echo " -p <password>           sets local linbo admin password, is also used for"
+ echo "                         root ssh login if password logins are allowed, optional"
+ echo " -r                      remove server root's public ssh key"
         echo " -u                      create usb media, has to be used with -d or -z"
-        echo " -z <output dir>         creates zip archive with usb boot media files in output dir"
+        echo " -z <output dir>         creates zip archive with usb boot media files in"
+        echo "                         output dir"
         echo
         echo " Examples:"
         echo
         echo " `basename $0` -c -i /home/administrators/administrator"
-        echo "               writes a cdrom iso image for default group to administrator's home"
+        echo "    writes a cdrom iso image for default group to administrator's home"
         echo
         echo " `basename $0` -c -i /var/linbo -g room123"
-        echo "               writes a cdrom iso image for computer group room123 to /var/linbo"
+        echo "    writes a cdrom iso image for computer group room123 to /var/linbo"
         echo
         echo " `basename $0` -c -d /dev/cdrom"
-        echo "               burns a cdrom directly to device /dev/cdrom"
+        echo "    burns a cdrom directly to device /dev/cdrom"
         echo
         echo " `basename $0` -u -g room123,default -d /dev/sdc"
-        echo "               writes a bootable usb media to /dev/sdc for groups room123 and default"
+        echo "    writes a bootable usb media to /dev/sdc for groups room123 and default"
         echo
         echo " `basename $0` -u -z /home/teachers/zell"
-        echo "               writes a zip archive with usb boot media files for default group to teacher zell's home"
+        echo "    writes a zip archive with usb boot media files for default group to"
+        echo "    teacher zell's home"
         exit 1
 }
@@ -51 +60 @@
 
 # process cmdline
-while getopts ":bcd:g:hi:uz:" opt; do
+while getopts ":bcd:g:hi:np:ruz:" opt; do
  case $opt in
   b) DEBUG=yes ;;
@@ -71 +80 @@
             OUTDIR=$OPTARG
      [ -z "$OPTARG" ] && OUTDIR=`pwd` ;;
+  n) NOSTRICT=yes ;;
+  p) PASSWORD=$OPTARG ;;
+  r) REMKEY=yes ;;
   u) USB=yes
      [ -n "$CDROM" ] && usage
@@ -89 +101 @@
 [ -z "$CDROM" -a -z "$USB" ] && usage
 [ -z "$DEVICE" -a -z "$ISO" -a -z "$ZIP" ] && usage
+[ -n "$NOSTRICT" -a -z "$PASSWORD" ] && usage
 if [ -n "$ZIP" -o -n "$ISO" ]; then
         if [ ! -d "$OUTDIR" ]; then
@@ -146 +159 @@
 LINBOFS=linbofs.gz
 
+# determine linbo append params from group's pxe configfile
+get_append_line() {
+ append_linbo=""
+ append_debug=""
+ local params=""
+ local line=""
+ local opt=""
+ local val=""
+ local j=""
+ local found=false
+ local cfg=$LINBODIR/pxelinux.cfg/$i
+ if [ -e "$cfg" ]; then
+  while read line; do
+   opt="$(echo $line | tr A-Z a-z | awk '{ print $1 }')"
+   val="$(echo $line | tr A-Z a-z | awk '{ print $2 }')"
+   [ "$opt" = "kernel" -a "$val" = "linbo" ] && found=true
+   if [ "$found" = "true" -a "$opt" = "append" ]; then
+    for j in $line; do
+     case $j in
+      [Aa][Pp][Pp][Ee][Nn][Dd]|[Ii][Nn][Ii][Tt][Rr][Dd]*|[Qq][Uu][Ii][Ee][Tt]|[Dd][Ee][Bb][Uu][Gg]) ;;
+      *) if [ -z "$params" ]; then params="$j"; else params="$params $j"; fi ;;
+     esac
+    done
+    break
+   fi
+  done <$cfg
+ fi
+ [ "$found" = "false" ] && echo "Warning: KERNEL linbo not found in pxe config for group $i, using default values."
+ if [ -z "$params" ]; then
+  params="vga=788"
+  [ "$found" = "true" ] && echo "Warning: No LINBO parameters found in pxe config for group $i, using default values."
+ fi
+ append_linbo="APPEND initrd=/$i/linbofs.gz $params quiet"
+ append_debug="APPEND initrd=/$i/linbofs.gz $params debug"
+ echo "LINBO parameters for $i: $params"
+}
+
 # write sys/isolinux config file
 writecfg() {
@@ -154 +204 @@
                 local sysdir=/$2
         fi
-        local append1
-        local append2
         local RC=1
-  echo "DEFAULT $sysdir/vesamenu.c32
+ echo "DEFAULT $sysdir/vesamenu.c32
 KBDMAP $sysdir/german.kbd
 PROMPT 0
@@ -172 +220 @@
         for i in $GRPS_CHECKED; do
 
-                append1=`grep ^APPEND $LINBODIR/pxelinux.cfg/$i | grep linbofs.gz | grep -vw debug | tail -1 | sed -e "s|linbofs.gz|/linbofs.$i.gz|"`
-        append2=`grep ^APPEND $LINBODIR/pxelinux.cfg/$i | grep linbofs.gz | grep -w debug | tail -1 | sed -e "s|linbofs.gz|/linbofs.$i.gz|"`
+  get_append_line
 
                 echo "LABEL menu$m
 MENU LABEL ^$m. LINBO: $i
 KERNEL /linbo
-$append1
+$append_linbo
 " >> $outfile
 
@@ -185 +232 @@
 MENU LABEL ^$(($m +1)). LINBO: $i (debug)
 KERNEL /linbo
-$append2
+$append_debug
 " >> $outfile
                         m=$(($m +1))
@@ -215 +262 @@
  cd $TMPDIR
  zcat $LINBODIR/$LINBOFS | cpio -i -d -H newc --no-absolute-filenames &> /dev/null || exit 1
+ # change passwords
+ if [ -n "$PASSWORD" ]; then
+  # root password
+  echo "/bin/echo root:$PASSWORD | /usr/sbin/chpasswd" > passwd.sh
+  chroot $TMPDIR /bin/sh /passwd.sh
+  rm passwd.sh
+        # md5sum of linbo password
+        local linbo_md5passwd=`echo -n $PASSWORD | md5sum | awk '{ print $1 }'`
+  echo -n "$linbo_md5passwd" > etc/linbo_passwd
+        echo "Local password for LINBO admin changed"
+ fi
+ # change dropbear options
+ if [ "$NOSTRICT" = "yes" ]; then
+  echo "Allowing password based ssh logins."
+  sed -e 's|^/sbin/dropbear .*|/sbin/dropbear -E -p 2222|' -i init.sh
+ fi
+ # remove server root's public ssh key
+ if [ "$REMKEY" = "yes" ]; then
+  echo "Removing authorized_keys."
+  rm -f .ssh/authorized_keys
+ fi
         for g in $GRPS_CHECKED; do
   echo -n "Creating linbofs.gz for group $g ... "
@@ -223 +291 @@
   fi
   # pack linbofs.gz
-         find . | cpio --quiet -o -H newc | gzip -9c > $MNTPNT/linbofs.$g.gz ; RC="$?" || exit 1
+  mkdir -p $MNTPNT/$g
+         find . | cpio --quiet -o -H newc | gzip -9c > $MNTPNT/$g/linbofs.gz ; RC="$?" || exit 1
   echo "Ok!"
  done