#!/bin/bash # This script gets called from a fresh SD card # starting up that has an config file on HDD # from old RaspiBlitz or manufacturer to # to install and config services # LOGFILE - store debug logs of bootstrap logFile="/home/admin/raspiblitz.log" # INFOFILE - state data from bootstrap infoFile="/home/admin/raspiblitz.info" # CONFIGFILE - configuration of RaspiBlitz configFile="/mnt/hdd/raspiblitz.conf" # debug info echo "STARTED Provisioning --> see logs in ${logFile}" echo "STARTED Provisioning from preset config file" >> ${logFile} sudo sed -i "s/^message=.*/message='Provisioning from Config'/g" ${infoFile} # check if there is a config file configExists=$(ls ${configFile} 2>/dev/null | grep -c '.conf') if [ ${configExists} -eq 0 ]; then echo "FAIL: no config file (${configFile}) found to run provision!" >> ${logFile} exit 1 fi # import config values sudo chmod 777 ${configFile} source ${configFile} ########################## # BASIC SYSTEM SETTINGS ########################## echo "### BASIC SYSTEM SETTINGS ###" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup System .'/g" ${infoFile} # set hostname data echo "Setting lightning alias: ${hostname}" >> ${logFile} sudo sed -i "s/^alias=.*/alias=${hostname}/g" /home/admin/assets/lnd.${network}.conf >> ${logFile} 2>&1 # auto-mount HDD sudo umount -l /mnt/hdd >> ${logFile} 2>&1 echo "Auto-Mounting HDD - calling script" >> ${logFile} /home/admin/40addHDD.sh >> ${logFile} 2>&1 # link old SSH PubKeys # so that client ssh_known_hosts is not complaining after update if [ -d "/mnt/hdd/ssh" ]; then echo "Old SSH PubKey exists on HDD > just linking them" >> ${logFile} else echo "No SSH PubKey exists on HDD > copy from SD card and linking them" >> ${logFile} sudo cp -r /etc/ssh /mnt/hdd/ssh >> ${logFile} 2>&1 fi sudo rm -rf /etc/ssh >> ${logFile} 2>&1 sudo ln -s /mnt/hdd/ssh /etc/ssh >> ${logFile} 2>&1 # link and copy HDD content into new OS echo "Link HDD content for user bitcoin" >> ${logFile} sudo chown -R bitcoin:bitcoin /mnt/hdd/lnd >> ${logFile} 2>&1 sudo chown -R bitcoin:bitcoin /mnt/hdd/${network} >> ${logFile} 2>&1 sudo ln -s /mnt/hdd/${network} /home/bitcoin/.${network} >> ${logFile} 2>&1 sudo ln -s /mnt/hdd/lnd /home/bitcoin/.lnd >> ${logFile} 2>&1 sudo chown -R bitcoin:bitcoin /home/bitcoin/.${network} >> ${logFile} 2>&1 sudo chown -R bitcoin:bitcoin /home/bitcoin/.lnd >> ${logFile} 2>&1 echo "Copy HDD content for user admin" >> ${logFile} sudo mkdir /home/admin/.${network} >> ${logFile} 2>&1 sudo cp /mnt/hdd/${network}/${network}.conf /home/admin/.${network}/${network}.conf >> ${logFile} 2>&1 sudo mkdir /home/admin/.lnd >> ${logFile} 2>&1 sudo cp /mnt/hdd/lnd/lnd.conf /home/admin/.lnd/lnd.conf >> ${logFile} 2>&1 sudo cp /mnt/hdd/lnd/tls.cert /home/admin/.lnd/tls.cert >> ${logFile} 2>&1 sudo mkdir /home/admin/.lnd/data >> ${logFile} 2>&1 sudo cp -r /mnt/hdd/lnd/data/chain /home/admin/.lnd/data/chain >> ${logFile} 2>&1 sudo chown -R admin:admin /home/admin/.${network} >> ${logFile} 2>&1 sudo chown -R admin:admin /home/admin/.lnd >> ${logFile} 2>&1 sudo cp /home/admin/assets/${network}d.service /etc/systemd/system/${network}d.service >> ${logFile} 2>&1 sudo chmod +x /etc/systemd/system/${network}d.service >> ${logFile} 2>&1 sed -i "5s/.*/Wants=${network}d.service/" /home/admin/assets/lnd.service >> ${logFile} 2>&1 sed -i "6s/.*/After=${network}d.service/" /home/admin/assets/lnd.service >> ${logFile} 2>&1 sudo cp /home/admin/assets/lnd.service /etc/systemd/system/lnd.service >> ${logFile} 2>&1 sudo chmod +x /etc/systemd/system/lnd.service >> ${logFile} 2>&1 # backup LND dir (especially for macaroons and tlscerts) # https://github.com/rootzoll/raspiblitz/issues/324 echo "*** Make backup of LND directory" >> ${logFile} sudo rm -r /mnt/hdd/backup_lnd sudo cp -r /mnt/hdd/lnd /mnt/hdd/backup_lnd >> ${logFile} 2>&1 numOfDiffers=$(sudo diff -arq /mnt/hdd/lnd /mnt/hdd/backup_lnd | grep -c "differ") if [ ${numOfDiffers} -gt 0 ]; then echo "FAIL: Backup was not successfull" >> ${logFile} sudo diff -arq /mnt/hdd/lnd /mnt/hdd/backup_lnd >> ${logFile} 2>&1 echo "removing backup dir to prevent false override" >> ${logFile} else echo "OK Backup is valid." >> ${logFile} fi echo "" >> ${logFile} # finish setup (SWAP, Benus, Firewall, Update, ..) sudo sed -i "s/^message=.*/message='Setup System ..'/g" ${infoFile} /home/admin/90finishSetup.sh >> ${logFile} 2>&1 ########################## # PROVISIONING SERVICES ########################## sudo sed -i "s/^message=.*/message='Installing Services'/g" ${infoFile} echo "### RUNNING PROVISIONING SERVICES ###" >> ${logFile} # TESTNET if [ "${chain}" = "test" ]; then echo "Provisioning TESTNET - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Provisioning Testnet'/g" ${infoFile} sudo /home/admin/config.scripts/network.chain.sh testnet >> ${logFile} 2>&1 else echo "Provisioning TESTNET - keep default" >> ${logFile} fi # TOR if [ "${runBehindTor}" = "on" ]; then echo "Provisioning TOR - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup TOR (takes time)'/g" ${infoFile} sudo /home/admin/config.scripts/internet.tor.sh on >> ${logFile} 2>&1 else echo "Provisioning TOR - keep default" >> ${logFile} fi # AUTO PILOT if [ "${autoPilot}" = "on" ]; then echo "Provisioning AUTO PILOT - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup AutoPilot'/g" ${infoFile} sudo /home/admin/config.scripts/lnd.autopilot.sh on >> ${logFile} 2>&1 else echo "Provisioning AUTO PILOT - keep default" >> ${logFile} fi # AUTO NAT DISCOVERY if [ "${autoNatDiscovery}" = "on" ]; then echo "Provisioning AUTO NAT DISCOVERY - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup AutoNAT'/g" ${infoFile} sudo /home/admin/config.scripts/lnd.autonat.sh on >> ${logFile} 2>&1 else echo "Provisioning AUTO NAT DISCOVERY - keep default" >> ${logFile} fi # DYNAMIC DNS if [ "${#dynDomain}" -gt 0 ]; then echo "Provisioning DYNAMIC DNS - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup DynamicDNS'/g" ${infoFile} sudo /home/admin/config.scripts/internet.dyndomain.sh on ${dynDomain} ${dynUpdateUrl} >> ${logFile} 2>&1 else echo "Provisioning DYNAMIC DNS - keep default" >> ${logFile} fi # RTL if [ "${rtlWebinterface}" = "on" ]; then echo "Provisioning RTL - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup RTL (takes time)'/g" ${infoFile} sudo /home/admin/config.scripts/bonus.rtl.sh on >> ${logFile} 2>&1 sudo systemctl disable RTL # will get enabled after recover dialog else echo "Provisioning RTL - keep default" >> ${logFile} fi # CUSTOM PORT echo "Provisioning LND Port" >> ${logFile} if [ ${#lndPort} -eq 0 ]; then lndPort=$(sudo cat /mnt/hdd/lnd/lnd.conf | grep "^listen=*" | cut -f2 -d':') fi if [ ${#lndPort} -gt 0 ]; then if [ "${lndPort}" != "9735" ]; then echo "User is running custom LND port: ${lndPort}" >> ${logFile} sudo /home/admin/config.scripts/lnd.setport.sh ${lndPort} >> ${logFile} 2>&1 else echo "User is running standard LND port: ${lndPort}" >> ${logFile} fi else echo "Was not able to get LND port from config." >> ${logFile} fi # DNS Server if [ ${#dnsServer} -gt 0 ]; then echo "Provisioning DNS Server - Setting DNS Server" >> ${logFile} sudo /home/admin/config.scripts/internet.dns.sh ${dnsServer} >> ${logFile} 2>&1 else echo "Provisioning DNS Server - keep default" >> ${logFile} fi # ROOT SSH KEYS # check if a backup on HDD exists and when retsore back backupRootSSH=$(sudo ls /mnt/hdd/ssh/root_backup 2>/dev/null | grep -c "id_rsa") if [ ${backupRootSSH} -gt 0 ]; then echo "Provisioning Root SSH Keys - RESTORING from HDD" >> ${logFile} sudo cp -r /mnt/hdd/ssh/root_backup /root/.ssh sudo chown -R root:root /root/.ssh else echo "Provisioning Root SSH Keys - keep default" >> ${logFile} fi # SSH TUNNEL if [ "${#sshtunnel}" -gt 0 ]; then echo "Provisioning SSH Tunnel - run config script" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup SSH Tunnel'/g" ${infoFile} sudo /home/admin/config.scripts/internet.sshtunnel.py restore ${sshtunnel} >> ${logFile} 2>&1 else echo "Provisioning SSH Tunnel - not active" >> ${logFile} fi # BACKUP TORRENT HOSTING if [ "${backupTorrentHosting}" == "on" ]; then echo "Backup Torrent Hosting - clean up possible old torrent data" >> ${logFile} sudo /home/admin/50torrentHDD.sh backup-torrent-hosting-cleanup else echo "Backup Torrent Hosting - not active" >> ${logFile} fi # replay backup LND conf & tlscerts # https://github.com/rootzoll/raspiblitz/issues/324 echo "" >> ${logFile} echo "*** Replay backup of LND conf/tls" >> ${logFile} if [ -d "/mnt/hdd/backup_lnd" ]; then echo "Copying TLS ..." >> ${logFile} sudo cp /mnt/hdd/backup_lnd/lnd.conf /mnt/hdd/lnd/lnd.conf >> ${logFile} 2>&1 sudo cp /mnt/hdd/backup_lnd/tls.cert /mnt/hdd/lnd/tls.cert >> ${logFile} 2>&1 sudo cp /mnt/hdd/backup_lnd/tls.key /mnt/hdd/lnd/tls.key >> ${logFile} 2>&1 sudo chown -R bitcoin:bitcoin /mnt/hdd/lnd >> ${logFile} 2>&1 echo "On next final restart admin creds will be updated by _boostrap.sh" >> ${logFile} echo "DONE" >> ${logFile} else echo "No BackupDir so skipping that step." >> ${logFile} fi echo "" >> ${logFile} sudo sed -i "s/^message=.*/message='Setup Done'/g" ${infoFile} # set the local network hostname # have at the end - see https://github.com/rootzoll/raspiblitz/issues/462 if [ ${#hostname} -gt 0 ]; then hostnameSanatized=$(echo "${hostname}"| tr -dc '[:alnum:]\n\r') if [ ${#hostnameSanatized} -gt 0 ]; then echo "Setting new network hostname '$hostnameSanatized'" >> ${logFile} sudo raspi-config nonint do_hostname ${hostnameSanatized} >> ${logFile} 2>&1 else echo "WARNING: hostname in raspiblitz.conf contains just special chars" >> ${logFile} fi else echo "No hostname set." >> ${logFile} fi echo "DONE - Give raspi some cool off time after hard building .... 20 secs sleep" >> ${logFile} sleep 20 echo "END Provisioning" >> ${logFile}