Make migration modular

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/0.1.0/all-001

@@ -0,0 +1,67 @@
+#!/bin sh
+
+update_openvpn_remote_config() {
+  # use dns instead of ips for vpn servers (introduced with 0.1.0)
+  log "Setting openvpn.ffvpn.remote to vpn03.berlin.freifunk.net"
+  uci delete openvpn.ffvpn.remote
+  uci add_list openvpn.ffvpn.remote='vpn03.berlin.freifunk.net 1194 udp'
+  uci add_list openvpn.ffvpn.remote='vpn03-backup.berlin.freifunk.net 1194 udp'
+}
+
+update_dhcp_lease_config() {
+  # set lease time to 5 minutes (introduced with 0.1.0)
+  local current_leasetime=$(uci get dhcp.dhcp.leasetime)
+  if [ "x${current_leasetime}" = "x" ]; then
+    log "Setting dhcp lease time to 5m"
+    uci set dhcp.dhcp.leasetime='5m'
+  fi
+}
+
+update_wireless_ht20_config() {
+  # set htmode to ht20 (introduced with 0.1.0)
+  log "Setting htmode to HT20 for radio0"
+  uci set wireless.radio0.htmode='HT20'
+  local radio1_present=$(uci get wireless.radio1.htmode)
+  # set htmode if radio1 is present
+  if [ "x${radio1_present}" != x ]; then
+    log "Setting htmode to HT20 for radio1."
+    uci set wireless.radio1.htmode='HT20'
+  fi
+}
+
+update_luci_statistics_config() {
+  # if users disabled stats with the wizard some settings need be corrected
+  # so they can enable stats later
+  log "remove luci_statistics.rrdtool.enable"
+  log "remove luci_statistics.collectd.enable"
+  uci delete luci_statistics.rrdtool.enable
+  uci delete luci_statistics.collectd.enable
+
+  # enable luci_statistics service
+  log "enable luci_statistics service"
+  /etc/init.d/luci_statistics enable
+}
+
+update_olsr_smart_gateway_threshold() {
+  # set SmartGatewayThreshold if not set
+  local threshold=$(uci get olsrd.@olsrd[0].SmartGatewayThreshold)
+  if [ "x${threshold}" = x ]; then
+    log "Setting SmartGatewayThreshold to 50."
+    uci set olsrd.@olsrd[0].SmartGatewayThreshold='50'
+  fi
+}
+
+
+migrate () {
+  log "Migrating from ${OLD_VERSION} to ${VERSION}."
+
+    update_openvpn_remote_config
+    update_dhcp_lease_config
+    update_wireless_ht20_config
+    update_luci_statistics_config
+    update_olsr_smart_gateway_threshold
+
+  log "v0.0.1 - Migration done."
+}
+
+migrate

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/0.1.1/all-001

@@ -0,0 +1,32 @@
+#!/bin sh
+
+update_collectd_memory_leak_hotfix() {
+  # Remove old hotfixes for collectd RAM issues on 32MB routers
+  # see https://github.com/freifunk-berlin/firmware/issues/217
+  CRONTAB="/etc/crontabs/root"
+  test -f $CRONTAB || touch $CRONTAB
+  sed -i '/luci_statistics$/d' $CRONTAB
+  sed -i '/luci_statistics restart$/d' $CRONTAB
+  /etc/init.d/cron restart
+
+  if [ "$(cat /proc/meminfo |grep MemTotal:|awk {'print $2'})" -lt "65536" ]; then
+    uci set luci_statistics.collectd_ping.enable=0
+    uci set luci_statistics.collectd_rrdtool.enable=0
+  fi
+}
+
+fix_olsrd_txtinfo_port() {
+  uci set $(uci show olsrd|grep olsrd_txtinfo|cut -d '=' -f 1|sed 's/library/port/')=2006
+  uci set $(uci show olsrd6|grep olsrd_txtinfo|cut -d '=' -f 1|sed 's/library/port/')=2006
+}
+
+migrate () {
+  log "Migrating from ${OLD_VERSION} to ${VERSION}."
+
+    update_collectd_memory_leak_hotfix
+    fix_olsrd_txtinfo_port
+
+  log "v0.1.1 - Migration done."
+}
+
+migrate

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/0.1.2/001-openvpn_mssfix

@@ -0,0 +1,15 @@
+#!/bin sh
+
+add_openvpn_mssfix() {
+  uci set openvpn.ffvpn.mssfix=1300
+}
+
+migrate () {
+  log "Migrating from ${OLD_VERSION} to ${VERSION}."
+
+    add_openvpn_mssfix
+
+  log "v0.1.2 - Migration done."
+}
+
+migrate

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/0.2.0/001-all

@@ -0,0 +1,114 @@
+#!/bin sh
+
+openvpn_ffvpn_hotplug() {
+  uci set openvpn.ffvpn.up="/lib/freifunk/ffvpn-up.sh"
+  uci set openvpn.ffvpn.nobind=0
+  /etc/init.d/openvpn disable
+  for entry in `uci show firewall|grep Reject-VPN-over-ff|cut -d '=' -f 1`; do
+    uci delete ${entry%.name}
+  done
+  uci delete freifunk-watchdog
+  crontab -l | grep -v "/usr/sbin/ffwatchd" | crontab -
+}
+
+update_collectd_ping() {
+ uci set luci_statistics.collectd_ping.Interval=10
+ uci set luci_statistics.collectd_ping.Hosts=ping.berlin.freifunk.net
+}
+
+fix_qos_interface() {
+  for rule in `uci show qos|grep qos.wan`; do
+    uci set ${rule/wan/ffvpn}
+  done
+  uci delete qos.wan
+}
+
+sgw_rules_to_fw3() {
+  uci set firewall.zone_freifunk.device=tnl_+
+  sed -i '/iptables -I FORWARD -o tnl_+ -j ACCEPT$/d' /etc/firewall.user
+}
+
+remove_dhcp_interface_lan() {
+  uci -q delete dhcp.lan
+}
+
+change_olsrd_dygw_ping() {
+  change_olsrd_dygw_ping_handle_config() {
+    local config=$1
+    local library=''
+    config_get library $config library
+    if [ $library == 'olsrd_dyn_gw.so.0.5' ]; then
+      uci delete olsrd.$config.Ping
+      uci add_list olsrd.$config.Ping=85.214.20.141     # dns.digitalcourage.de
+      uci add_list olsrd.$config.Ping=213.73.91.35      # dnscache.ccc.berlin.de
+      uci add_list olsrd.$config.Ping=194.150.168.168   # dns.as250.net
+      return 1
+    fi
+  }
+  reset_cb
+  config_load olsrd
+  config_foreach change_olsrd_dygw_ping_handle_config LoadPlugin
+}
+
+fix_dhcp_start_limit() {
+  # only set start and limit if we have a dhcp section
+  if (uci -q show dhcp.dhcp); then
+    # only alter start and limit if not set by the user
+    if ! (uci -q get dhcp.dhcp.start || uci -q get dhcp.dhcp.limit); then
+      local netmask
+      local prefix
+      # get network-length
+      if netmask="$(uci -q get network.dhcp.netmask)"; then
+        # use ipcalc.sh to and get prefix-length only
+        prefix="$(ipcalc.sh 0.0.0.0 ${netmask} |grep PREFIX|awk -F "=" '{print $2}')"
+        # compute limit (2^(32-prefix)-3) with arithmetic evaluation
+        limit=$((2**(32-${prefix})-3))
+        uci set dhcp.dhcp.start=2
+        uci set dhcp.dhcp.limit=${limit}
+        log "set new dhcp.limit and dhcp.start on interface dhcp"
+      else
+        log "interface dhcp has no netmask assigned. not fixing dhcp.limit"
+      fi
+    else
+      log "interface dhcp has start and limit defined. not changing it"
+    fi
+  else
+    log "interface dhcp has no dhcp-config at all"
+  fi
+}
+
+delete_system_latlon() {
+  log "removing obsolete uci-setting system.system.latlon"
+  uci -q delete system.@system[0].latlon
+}
+
+update_berlin_owm_api() {
+  if [ "$(uci get freifunk.community.name)" = "berlin" ]; then
+    log "updating Berlin OWM API URL"
+    uci set freifunk.community.owm_api="http://util.berlin.freifunk.net"
+  fi
+}
+
+fix_olsrd6_watchdog_file() {
+  log "fix olsrd6 watchdog file"
+  uci set $(uci show olsrd6|grep "/var/run/olsrd.watchdog"|cut -d '=' -f 1)=/var/run/olsrd6.watchdog
+}
+
+migrate () {
+  log "Migrating from ${OLD_VERSION} to ${VERSION}."
+
+    update_berlin_owm_api
+    update_collectd_ping
+    fix_qos_interface
+    remove_dhcp_interface_lan
+    openvpn_ffvpn_hotplug
+    sgw_rules_to_fw3
+    change_olsrd_dygw_ping
+    fix_dhcp_start_limit
+    delete_system_latlon
+    fix_olsrd6_watchdog_file
+
+  log "v0.2.0 - Migration done."
+}
+
+migrate

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/0.3.0/01-dnsmasq_quieten

@@ -0,0 +1,5 @@
+#!/bin/sh
+
+log "quieten dnsmasq"
+uci set dhcp.@dnsmasq[0].quietdhcp=1
+

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/1.0.0/01-misc

@@ -0,0 +1,61 @@
+#!/bin sh
+
+vpn03_udp4() {
+  log "set VPN03 to UDPv4 only"
+  uci delete openvpn.ffvpn.remote
+  uci add_list openvpn.ffvpn.remote='vpn03.berlin.freifunk.net 1194'
+  uci add_list openvpn.ffvpn.remote='vpn03-backup.berlin.freifunk.net 1194'
+  uci set openvpn.ffvpn.proto=udp4
+}
+
+set_ipversion_olsrd6() {
+  uci set olsrd6.@olsrd[0].IpVersion=6
+}
+
+r1_0_0_no_wan_restart() {
+  crontab -l | grep -v "^0 6 \* \* \* ifup wan$" | crontab -
+}
+
+r1_0_0_update_preliminary_glinet_names() {
+  case `uci get system.led_wlan.sysfs` in
+    "gl_ar150:wlan")
+      log "correcting system.led_wlan.sysfs for GLinet AR150"
+      uci set system.led_wlan.sysfs="gl-ar150:wlan"
+      ;;
+    "gl_ar300:wlan")
+      log "correcting system.led_wlan.sysfs for GLinet AR300"
+      uci set system.led_wlan.sysfs="gl-ar300:wlan"
+      ;;
+    "domino:blue:wlan")
+      log "correcting system.led_wlan.sysfs for GLinet Domino"
+      uci set system.led_wlan.sysfs="gl-domino:blue:wlan"
+      ;;
+  esac
+}
+
+r1_0_0_upstream() {
+  log "applying upstream changes / sync with upstream"
+  grep -q "^kernel.core_pattern=" /etc/sysctl.conf || echo >>/etc/sysctl.conf "kernel.core_pattern=/tmp/%e.%t.%p.%s.core"
+  sed -i '/^net.ipv4.tcp_ecn=0/d' /etc/sysctl.conf
+  grep -q "^128" /etc/iproute2/rt_tables || echo >>/etc/iproute2/rt_tables "128	prelocal"
+  cp /rom/etc/inittab /etc/inittab
+  cp /rom/etc/profile /etc/profile
+  cp /rom/etc/hosts /etc/hosts
+  log " checking for user dnsmasq"
+  group_exists "dnsmasq" || group_add "dnsmasq" "453"
+  user_exists "dnsmasq" || user_add "dnsmasq" "453" "453"
+}
+
+migrate () {
+  log "Migrating from ${OLD_VERSION} to ${VERSION}."
+
+    vpn03_udp4
+    set_ipversion_olsrd6
+    r1_0_0_no_wan_restart
+    r1_0_0_update_preliminary_glinet_names
+    r1_0_0_upstream
+
+  log "v1.0.0 - common Migration done."
+}
+
+migrate

utils/freifunk-berlin-migration/files/usr/share/freifunk-berlin-migration/1.0.0/02-ffuplink

@@ -0,0 +1,95 @@
+#!/bin sh
+
+r1_0_0_vpn03_splitconfig() {
+  log "changing guard-entry for VPN03 from openvpn to vpn03-openvpn (config-split for VPN03)"
+  guard_rename openvpn vpn03_openvpn # to guard the current settings of package "freifunk-berlin-vpn03-files"
+}
+
+r1_0_0_firewallzone_uplink() {
+  log "adding firewall-zone for VPN / Uplink"
+  uci set firewall.zone_ffuplink=zone
+  uci set firewall.zone_ffuplink.name=ffuplink
+  uci set firewall.zone_ffuplink.input=REJECT
+  uci set firewall.zone_ffuplink.forward=ACCEPT
+  uci set firewall.zone_ffuplink.output=ACCEPT
+  uci set firewall.zone_ffuplink.network=ffuplink
+  # remove ffvpn from zone freifunk
+  ffzone_new=$(uci get firewall.zone_freifunk.network|sed -e "s/ ffvpn//g")
+  log " zone freifunk has now interfaces: ${ffzone_new}"
+  uci set firewall.zone_freifunk.network="${ffzone_new}"
+  log " setting up forwarding for ffuplink"
+  uci set firewall.fwd_ff_ffuplink=forwarding
+  uci set firewall.fwd_ff_ffuplink.src=freifunk
+  uci set firewall.fwd_ff_ffuplink.dest=ffuplink
+}
+
+r1_0_0_change_to_ffuplink() {
+  change_olsrd_dygw_ping_iface() {
+    local config=$1
+    local lib=''
+    config_get lib $config library
+    if [ -z "${lib##olsrd_dyn_gw.so*}" ]; then
+      uci set olsrd.$config.PingCmd='ping -c 1 -q -I ffuplink %s'
+      return 1
+    fi
+  }
+  remove_routingpolicy() {
+    local config=$1
+    case "$config" in
+      olsr_*_ffvpn_ipv4*) 
+        log "  network.$config"
+        uci delete network.$config
+        ;;
+      *) ;;
+    esac
+  }
+
+  log "changing interface ffvpn to ffuplink"
+  log " setting wan as bridge"
+  uci set network.wan.type=bridge
+  log " renaming interface ffvpn"
+  uci rename network.ffvpn=ffuplink
+  uci set network.ffuplink.ifname=ffuplink
+  log " updating VPN03-config"
+  uci rename openvpn.ffvpn=ffuplink
+  uci set openvpn.ffuplink.dev=ffuplink
+  uci set openvpn.ffuplink.status="/var/log/openvpn-status-ffuplink.log"
+  uci set openvpn.ffuplink.key="/etc/openvpn/ffuplink.key"
+  uci set openvpn.ffuplink.cert="/etc/openvpn/ffuplink.crt"
+  log " renaming VPN03 certificate files"
+  mv /etc/openvpn/freifunk_client.crt /etc/openvpn/ffuplink.crt
+  mv /etc/openvpn/freifunk_client.key /etc/openvpn/ffuplink.key
+  log " updating statistics, qos, olsr to use ffuplink"
+  # replace ffvpn by ffuplink
+  ffuplink_new=$(uci get luci_statistics.collectd_interface.Interfaces|sed -e "s/ffvpn/ffuplink/g")
+  uci set luci_statistics.collectd_interface.Interfaces="${ffuplink_new}"
+  uci rename qos.ffvpn=ffuplink
+  reset_cb
+  config_load olsrd
+  config_foreach change_olsrd_dygw_ping_iface LoadPlugin
+  log " removing deprecated IP-rules"
+  reset_cb
+  config_load network
+  config_foreach remove_routingpolicy rule
+}
+
+r1_0_0_set_uplinktype() {
+  log "storing used uplink-type"
+  log " migrating from Kathleen-release, assuming VPN03 as uplink-preset"
+  echo "" | uci import ffberlin-uplink
+  uci set ffberlin-uplink.preset=settings
+  uci set ffberlin-uplink.preset.current="vpn03_openvpn"
+}
+
+migrate () {
+  log "Migrating from ${OLD_VERSION} to ${VERSION}."
+
+    r1_0_0_vpn03_splitconfig
+    r1_0_0_firewallzone_uplink
+    r1_0_0_change_to_ffuplink
+    r1_0_0_set_uplinktype
+
+  log "v1.0.0 - ffuplink-Migration done."
+}
+
+migrate