-
Notifications
You must be signed in to change notification settings - Fork 6
/
install.sh
299 lines (272 loc) · 8.92 KB
/
install.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
#!/usr/bin/env bash
# The install script is based off of the Apache 2.0 script from Helm,
# https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3
: ${BINARY_NAME:="gnoic"}
: ${PROJECT_NAME:="gnoic"} # if project name does not match binary name
: ${USE_SUDO:="true"}
: ${USE_PKG:="false"} # default --use-pkg flag value. will use package installation by default unless the default is changed to false
: ${VERIFY_CHECKSUM:="false"}
: ${BIN_INSTALL_DIR:="/usr/local/bin"}
: ${REPO_NAME:="karimra/gnoic"}
: ${REPO_URL:="https://github.com/$REPO_NAME"}
: ${PROJECT_URL:="https://gnoic.kmrd.dev"}
: ${LATEST_URL:="https://api.github.com/repos/$REPO_NAME/releases/latest"}
# detectArch discovers the architecture for this system.
detectArch() {
ARCH=$(uname -m)
# case $ARCH in
# armv5*) ARCH="armv5" ;;
# armv6*) ARCH="armv6" ;;
# armv7*) ARCH="arm" ;;
# aarch64) ARCH="arm64" ;;
# x86) ARCH="386" ;;
# x86_64) ARCH="amd64" ;;
# i686) ARCH="386" ;;
# i386) ARCH="386" ;;
# esac
}
# detectOS discovers the operating system for this system and its package format
detectOS() {
OS=$(echo $(uname) | tr '[:upper:]' '[:lower:]')
case "$OS" in
# Minimalist GNU for Windows
mingw*) OS='windows' ;;
esac
if type "rpm" &>/dev/null; then
PKG_FORMAT="rpm"
elif type "dpkg" &>/dev/null; then
PKG_FORMAT="deb"
fi
}
# runs the given command as root (detects if we are root already)
runAsRoot() {
local CMD="$*"
if [ $EUID -ne 0 -a $USE_SUDO = "true" ]; then
CMD="sudo $CMD"
fi
$CMD
}
# verifySupported checks that the os/arch combination is supported
verifySupported() {
local supported="darwin-x86_64\nlinux-i386\nlinux-x86_64\nlinux-armv7\nlinux-aarch64"
if ! echo "${supported}" | grep -q "${OS}-${ARCH}"; then
echo "No prebuilt binary for ${OS}-${ARCH}."
echo "To build from source, go to ${REPO_URL}"
exit 1
fi
if ! type "curl" &>/dev/null && ! type "wget" &>/dev/null; then
echo "Either curl or wget is required"
exit 1
fi
}
# verifyOpenssl checks if openssl is installed to perform checksum operation
verifyOpenssl() {
if [ $VERIFY_CHECKSUM == "true" ]; then
if ! type "openssl" &>/dev/null; then
echo "openssl is not found. It is used to verify checksum of the downloaded file."
exit 1
fi
fi
}
# setDesiredVersion sets the desired version either to an explicit version provided by a user
# or to the latest release available on github releases
setDesiredVersion() {
if [ "x$DESIRED_VERSION" == "x" ]; then
# when desired version is not provided
# get latest tag from the gh releases
local cmd=""
if type "curl" &>/dev/null; then
cmd="curl -s "
elif type "wget" &>/dev/null; then
cmd="wget -q -O- "
else
echo "Missing curl or wget utility to download the installation package"
exit 1
fi
local latest_release_url=""
# use jq to filter the api response if available
if type "jq" &>/dev/null; then
latest_release_url=$($cmd $LATEST_URL | jq -r .html_url)
# else use grep and cut
else
latest_release_url=$($cmd $LATEST_URL | grep "html_url.*releases/tag" | cut -d '"' -f 4)
fi
if [ "x$latest_release_url" == "x" ]; then
echo "Could not determine the latest release"
exit 1
fi
TAG=$(echo $latest_release_url | cut -d '"' -f 2 | awk -F "/" '{print $NF}')
# tag with stripped `v` prefix
TAG_WO_VER=$(echo "${TAG}" | cut -c 2-)
else
TAG=$DESIRED_VERSION
TAG_WO_VER=$(echo "${TAG}" | cut -c 2-)
fi
}
# checkInstalledVersion checks which version is installed and
# if it needs to be changed.
checkInstalledVersion() {
if [[ -f "${BIN_INSTALL_DIR}/${BINARY_NAME}" ]]; then
local version=$("${BIN_INSTALL_DIR}/${BINARY_NAME}" version | grep version | awk '{print $NF}')
if [[ "v$version" == "$TAG" ]]; then
echo "${BINARY_NAME} is already at ${DESIRED_VERSION:-latest ($version)}" version
return 0
else
echo "${BINARY_NAME} ${TAG_WO_VER} is available. Changing from version ${version}."
return 1
fi
else
return 1
fi
}
# createTempDir creates temporary directory where we downloaded files
createTempDir() {
TMP_ROOT="$(mktemp -d)"
TMP_BIN="$TMP_ROOT/$BINARY_NAME"
}
# downloadFile downloads the latest binary archive, the checksum file and performs the sum check
downloadFile() {
EXT="tar.gz" # download file extension
if [ $USE_PKG == "true" ]; then
if [ -z $PKG_FORMAT ]; then
echo "Package for $OS-$ARCH is not available"
cleanup
exit 1
fi
EXT=$PKG_FORMAT
fi
ARCHIVE="${PROJECT_NAME}_${TAG_WO_VER}_${OS}_${ARCH}.${EXT}"
DOWNLOAD_URL="${REPO_URL}/releases/download/${TAG}/${ARCHIVE}"
CHECKSUM_URL="${REPO_URL}/releases/download/${TAG}/checksums.txt"
TMP_FILE="$TMP_ROOT/$ARCHIVE"
SUM_FILE="$TMP_ROOT/checksums.txt"
echo "Downloading $DOWNLOAD_URL"
if type "curl" &>/dev/null; then
curl -SsL "$CHECKSUM_URL" -o "$SUM_FILE"
curl -SsL "$DOWNLOAD_URL" -o "$TMP_FILE"
elif type "wget" &>/dev/null; then
wget -q -O "$SUM_FILE" "$CHECKSUM_URL"
wget -q -O "$TMP_FILE" "$DOWNLOAD_URL"
fi
# verify downloaded file
if [ $VERIFY_CHECKSUM == "true" ]; then
local sum=$(openssl sha1 -sha256 ${TMP_FILE} | awk '{print $2}')
local expected_sum=$(cat ${SUM_FILE} | grep -i $ARCHIVE | awk '{print $1}')
if [ "$sum" != "$expected_sum" ]; then
echo "SHA sum of ${TMP_FILE} does not match. Aborting."
exit 1
fi
echo "Checksum verified"
fi
}
# installFile verifies the SHA256 for the file, then unpacks and
# installs it. By default, the installation is done from .tar.gz archive, that can be overriden with --use-pkg flag
installFile() {
tar xf "$TMP_FILE" -C "$TMP_ROOT"
echo "Preparing to install $BINARY_NAME ${TAG_WO_VER} into ${BIN_INSTALL_DIR}"
runAsRoot cp -f "$TMP_ROOT/$BINARY_NAME" "$BIN_INSTALL_DIR/$BINARY_NAME"
echo "$BINARY_NAME installed into $BIN_INSTALL_DIR/$BINARY_NAME"
}
# installPkg installs the downloaded version of a package in a deb or rpm format
installPkg() {
echo "Preparing to install $BINARY_NAME ${TAG_WO_VER} from package"
if [ $PKG_FORMAT == "deb" ]; then
runAsRoot dpkg -i $TMP_FILE
elif [ $PKG_FORMAT == "rpm" ]; then
runAsRoot rpm -U $TMP_FILE
fi
}
# fail_trap is executed if an error occurs.
fail_trap() {
result=$?
if [ "$result" != "0" ]; then
if [[ -n "$INPUT_ARGUMENTS" ]]; then
echo "Failed to install $BINARY_NAME with the arguments provided: $INPUT_ARGUMENTS"
help
else
echo "Failed to install $BINARY_NAME"
fi
echo -e "\tFor support, go to $REPO_URL/issues"
fi
cleanup
exit $result
}
# testVersion tests the installed client to make sure it is working.
testVersion() {
set +e
$BIN_INSTALL_DIR/$BINARY_NAME version
if [ "$?" = "1" ]; then
echo "$BINARY_NAME not found. Is $BIN_INSTALL_DIR in your "'$PATH?'
exit 1
fi
set -e
}
# help provides possible cli installation arguments
help() {
echo "Accepted cli arguments are:"
echo -e "\t[--help|-h ] ->> prints this help"
echo -e "\t[--version|-v <desired_version>] ->> When not defined it fetches the latest release from GitHub, e.g. --version v0.1.1"
echo -e "\t[--use-pkg] ->> install using deb/rpm packages"
echo -e "\t[--no-sudo] ->> install without sudo"
echo -e "\t[--verify-checksum] ->> verify checksum of the downloaded file"
}
# removes temporary directory used to download artefacts
cleanup() {
if [[ -d "${TMP_ROOT:-}" ]]; then
rm -rf "$TMP_ROOT"
fi
}
# Execution
#Stop execution on any error
trap "fail_trap" EXIT
set -e
# Parsing input arguments (if any)
export INPUT_ARGUMENTS="${@}"
set -u
while [[ $# -gt 0 ]]; do
case $1 in
'--version' | -v)
shift
if [[ $# -ne 0 ]]; then
export DESIRED_VERSION="v${1}"
else
echo -e "Please provide the desired version. e.g. --version 0.1.1"
exit 0
fi
;;
'--no-sudo')
USE_SUDO="false"
;;
'--verify-checksum')
VERIFY_CHECKSUM="true"
;;
'--use-pkg')
USE_PKG="true"
;;
'--help' | -h)
help
exit 0
;;
*)
exit 1
;;
esac
shift
done
set +u
detectArch
detectOS
verifySupported
setDesiredVersion
if ! checkInstalledVersion; then
createTempDir
verifyOpenssl
downloadFile
if [ $USE_PKG == "true" ]; then
installPkg
else
installFile
fi
testVersion
cleanup
fi