Merge pull request #2612 from pi-hole/hotfix/v4.2.1

Remove user/group from dnsmasq config
2019-02-03 11:36:57 -08:00 · 2019-02-03 10:55:18 -08:00 · 2019-02-03 08:52:07 -08:00 · 2019-02-02 13:44:39 -05:00 · 2019-02-02 10:37:12 -08:00 · 2019-02-02 18:27:09 +00:00
6 changed files with 73 additions and 38 deletions
--- a/advanced/01-pihole.conf
+++ b/advanced/01-pihole.conf
@@ -22,9 +22,6 @@ addn-hosts=/etc/pihole/gravity.list
 addn-hosts=/etc/pihole/black.list
 addn-hosts=/etc/pihole/local.list

-user=pihole
-group=pihole
-
 domain-needed

 localise-queries
--- a/advanced/Scripts/piholeCheckout.sh
+++ b/advanced/Scripts/piholeCheckout.sh
@@ -167,7 +167,7 @@ checkout() {
            echo "  ${TICK} Branch ${2} exists"
            echo "${2}" > /etc/pihole/ftlbranch
            FTLinstall "${binary}"
-            start_service pihole-FTL
+            restart_service pihole-FTL
            enable_service pihole-FTL
        else
            echo "  ${CROSS} Requested branch \"${2}\" is not available"
--- a/advanced/Scripts/piholeDebug.sh
+++ b/advanced/Scripts/piholeDebug.sh
@@ -76,7 +76,7 @@ WEB_SERVER_CONFIG_DIRECTORY="/etc/lighttpd"
 HTML_DIRECTORY="/var/www/html"
 WEB_GIT_DIRECTORY="${HTML_DIRECTORY}/admin"
 #BLOCK_PAGE_DIRECTORY="${HTML_DIRECTORY}/pihole"
-SHM_DIRECTORY="/var/run/shm"
+SHM_DIRECTORY="/dev/shm"

 # Files required by Pi-hole
 # https://discourse.pi-hole.net/t/what-files-does-pi-hole-use/1684
--- a/install/basic-install.sh
+++ b/install/basic-install.sh
@@ -115,6 +115,9 @@ else
    OVER="\\r\\033[K"
 fi

+# Define global binary variable
+binary="tbd"
+
 # A simple function that just echoes out our logo in ASCII format
 # This lets users know that it is a Pi-hole, LLC product
 show_ascii_berry() {
@@ -1434,9 +1437,9 @@ stop_service() {
 }

 # Start/Restart service passed in as argument
-start_service() {
+restart_service() {
    # Local, named variables
-    local str="Starting ${1} service"
+    local str="Restarting ${1} service"
    printf "  %b %s..." "${INFO}" "${str}"
    # If systemctl exists,
    if is_command systemctl ; then
@@ -1906,8 +1909,9 @@ installPihole() {
    installCron
    # Install the logrotate file
    installLogrotate
-    # Check if FTL is installed
-    FTLdetect || printf "  %b FTL Engine not installed\\n" "${CROSS}"
+    # Check if dnsmasq is present. If so, disable it and back up any possible
+    # config file
+    disable_dnsmasq
    # Configure the firewall
    if [[ "${useUpdateVars}" == false ]]; then
        configureFirewall
@@ -2130,7 +2134,6 @@ clone_or_update_repos() {
 # Download FTL binary to random temp directory and install FTL binary
 FTLinstall() {
    # Local, named variables
-    local binary="${1}"
    local latesttag
    local str="Downloading and Installing FTL"
    printf "  %b %s..." "${INFO}" "${str}"
@@ -2174,33 +2177,18 @@ FTLinstall() {
        # If we downloaded binary file (as opposed to text),
        if sha1sum --status --quiet -c "${binary}".sha1; then
            printf "transferred... "
-            # Stop FTL
+
+            # Stop pihole-FTL service if available
            stop_service pihole-FTL &> /dev/null
+
            # Install the new version with the correct permissions
            install -T -m 0755 "${binary}" /usr/bin/pihole-FTL
+
            # Move back into the original directory the user was in
            popd > /dev/null || { printf "Unable to return to original directory after FTL binary download.\\n"; return 1; }
-            # Install the FTL service
+
+            # Installed the FTL service
            printf "%b  %b %s\\n" "${OVER}" "${TICK}" "${str}"
-            # dnsmasq can now be stopped and disabled if it exists
-            if which dnsmasq &> /dev/null; then
-                if check_service_active "dnsmasq";then
-                    printf "  %b FTL can now resolve DNS Queries without dnsmasq running separately\\n" "${INFO}"
-                    stop_service dnsmasq
-                    disable_service dnsmasq
-                fi
-            fi
-
-            # Backup existing /etc/dnsmasq.conf if present and ensure that
-            # /etc/dnsmasq.conf contains only "conf-dir=/etc/dnsmasq.d"
-            local conffile="/etc/dnsmasq.conf"
-            if [[ -f "${conffile}" ]]; then
-                printf "  %b Backing up %s to %s.old\\n" "${INFO}" "${conffile}" "${conffile}"
-                mv "${conffile}" "${conffile}.old"
-            fi
-            # Create /etc/dnsmasq.conf
-            echo "conf-dir=/etc/dnsmasq.d" > "${conffile}"
-
            return 0
        # Otherwise,
        else
@@ -2220,6 +2208,27 @@ FTLinstall() {
    fi
 }

+disable_dnsmasq() {
+    # dnsmasq can now be stopped and disabled if it exists
+    if which dnsmasq &> /dev/null; then
+        if check_service_active "dnsmasq";then
+            printf "  %b FTL can now resolve DNS Queries without dnsmasq running separately\\n" "${INFO}"
+            stop_service dnsmasq
+            disable_service dnsmasq
+        fi
+    fi
+
+    # Backup existing /etc/dnsmasq.conf if present and ensure that
+    # /etc/dnsmasq.conf contains only "conf-dir=/etc/dnsmasq.d"
+    local conffile="/etc/dnsmasq.conf"
+    if [[ -f "${conffile}" ]]; then
+        printf "  %b Backing up %s to %s.old\\n" "${INFO}" "${conffile}" "${conffile}"
+        mv "${conffile}" "${conffile}.old"
+    fi
+    # Create /etc/dnsmasq.conf
+    echo "conf-dir=/etc/dnsmasq.d" > "${conffile}"
+}
+
 get_binary_name() {
    # This gives the machine architecture which may be different from the OS architecture...
    local machine
@@ -2377,7 +2386,7 @@ FTLdetect() {
    printf "\\n  %b FTL Checks...\\n\\n" "${INFO}"

    if FTLcheckUpdate ; then
-        FTLinstall "${binary}" || return 1
+        FTLinstall || return 1
    fi
 }

@@ -2537,6 +2546,11 @@ main() {
    else
        LIGHTTPD_ENABLED=false
    fi
+    # Check if FTL is installed - do this early on as FTL is a hard dependency for Pi-hole
+    if ! FTLdetect; then
+        printf "  %b FTL Engine not installed\\n" "${CROSS}"
+        exit 1
+    fi

    # Install and log everything to a file
    installPihole | tee -a /proc/$$/fd/3
@@ -2567,7 +2581,7 @@ main() {
    if [[ "${INSTALL_WEB_SERVER}" == true ]]; then

        if [[ "${LIGHTTPD_ENABLED}" == true ]]; then
-            start_service lighttpd
+            restart_service lighttpd
            enable_service lighttpd
        else
            printf "  %b Lighttpd is disabled, skipping service restart\\n" "${INFO}"
@@ -2582,7 +2596,7 @@ main() {
    # Fixes a problem reported on Ubuntu 18.04 where trying to start
    # the service before enabling causes installer to exit
    enable_service pihole-FTL
-    start_service pihole-FTL
+    restart_service pihole-FTL

    # Download and compile the aggregated block list
    runGravity
--- a/8
+++ b/8
@@ -144,6 +144,10 @@ Time:

  elif [[ "${1}" == "0" ]]; then
    # Disable Pi-hole
+    if grep -cq "BLOCKING_ENABLED=false" "${setupVars}"; then
+      echo -e "  ${INFO} Blocking already disabled, nothing to do"
+      exit 0
+    fi
    if [[ -e "${gravitylist}" ]]; then
      mv "${gravitylist}" "${gravitylist}.bck"
      echo "" > "${gravitylist}"
@@ -193,6 +197,10 @@ Time:
    fi
  else
    # Enable Pi-hole
+    if grep -cq "BLOCKING_ENABLED=true" "${setupVars}"; then
+      echo -e "  ${INFO} Blocking already enabled, nothing to do"
+      exit 0
+    fi
    echo -e "  ${INFO} Enabling blocking"
    local str="Pi-hole Enabled"

--- a/test/test_automated_install.py
+++ b/test/test_automated_install.py
@@ -481,10 +481,10 @@ def test_FTL_download_aarch64_no_errors(Pihole):
    '''
    confirms only aarch64 package is downloaded for FTL engine
    '''
-    # mock uname to return generic platform
    download_binary = Pihole.run('''
    source /opt/pihole/basic-install.sh
-    FTLinstall pihole-FTL-aarch64-linux-gnu
+    binary="pihole-FTL-aarch64-linux-gnu"
+    FTLinstall
    ''')
    expected_stdout = tick_box + ' Downloading and Installing FTL'
    assert expected_stdout in download_binary.stdout
@@ -495,10 +495,26 @@ def test_FTL_download_unknown_fails_no_errors(Pihole):
    '''
    confirms unknown binary is not downloaded for FTL engine
    '''
-    # mock uname to return generic platform
    download_binary = Pihole.run('''
    source /opt/pihole/basic-install.sh
-    FTLinstall pihole-FTL-mips
+    binary="pihole-FTL-mips"
+    FTLinstall
+    ''')
+    expected_stdout = cross_box + ' Downloading and Installing FTL'
+    assert expected_stdout in download_binary.stdout
+    error1 = 'Error: URL https://github.com/pi-hole/FTL/releases/download/'
+    assert error1 in download_binary.stdout
+    error2 = 'not found'
+    assert error2 in download_binary.stdout
+
+
+def test_FTL_download_binary_unset_no_errors(Pihole):
+    '''
+    confirms unset binary variable does not download FTL engine
+    '''
+    download_binary = Pihole.run('''
+    source /opt/pihole/basic-install.sh
+    FTLinstall
    ''')
    expected_stdout = cross_box + ' Downloading and Installing FTL'
    assert expected_stdout in download_binary.stdout
Author	SHA1	Message	Date
Dan Schaper	e967fe2266	Merge pull request #2612 from pi-hole/hotfix/v4.2.1 Remove user/group from dnsmasq config	2019-02-03 11:36:57 -08:00
Mcat12	7a19d24058	Remove user/group from dnsmasq config In the case that FTL is started under root, dnsmasq changes the user to pihole due to this setting. The shared memory is created before this switch, and may cause issues such as failing to delete or reallocate the shared memory. These config lines were necessary before dnsmasq became part of FTL, but now since dnsmasq runs under FTL, we can configure the user/group through FTL. Signed-off-by: Mcat12 <newtoncat12@yahoo.com>	2019-02-03 10:55:18 -08:00
Dan Schaper	995ee41d6b	Merge pull request #2600 from pi-hole/release/v4.2 Release v4.2	2019-02-03 08:52:07 -08:00
Mark Drobnak	69919ac85c	Merge pull request #2610 from pi-hole/fix/dev-shm Change /var/run/shm to /dev/shm	2019-02-02 13:44:39 -05:00
Mcat12	26f2410fe6	Change /var/run/shm to /dev/shm The /var directory may not exist (does not exist on Fedora 29), and is simply a symlink to /dev/shm. Signed-off-by: Mcat12 <newtoncat12@yahoo.com>	2019-02-02 10:37:12 -08:00
Adam Warner	d43c32e9e8	Merge pull request #2609 from pi-hole/fix/start-service-ftl-checkout Fix missed start_service -> restart_service call	2019-02-02 18:27:09 +00:00
Mcat12	5c4ee23795	Fix missed start_service -> restart_service call start_service was changed to restart_service. Signed-off-by: Mcat12 <newtoncat12@yahoo.com>	2019-02-02 10:19:44 -08:00
Dan Schaper	fb3d871553	Merge pull request #2602 from pi-hole/fix/download_FTL_earlier Download FTL earlier in the installer	2019-02-02 06:43:16 -08:00
Adam Warner	ae654730c4	Update automated install/basic-install.sh Co-Authored-By: DL6ER <DL6ER@users.noreply.github.com>	2019-02-02 08:00:58 +01:00
DL6ER	ec79e86bee	We should really use stop_service as it also includes some nice output Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-02-01 18:06:57 +01:00
DL6ER	e8dabc71af	Don't try to start pihole-FTL after it has been installed. This will be done a few moments later when gravity is invoked. Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-02-01 17:54:21 +01:00
DL6ER	9c0de0f731	Try to stop pihole-FTL before and (re)start pihole-FTL after the install command Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-02-01 17:39:12 +01:00
DL6ER	4948862dce	Fail hard if FTL binary could not be installed Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-31 20:10:52 +01:00
DL6ER	7479485d45	Add test for the case the binary variable is unset (defaults to "tbd" in this case) Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-31 20:00:26 +01:00
Mark Drobnak	26361883b4	Merge pull request #2601 from pi-hole/fix/double_disable_kills_gravity Prevent double disabling/enabling	2019-01-27 13:54:33 -05:00
DL6ER	d26f2dcb2c	Use global binary variable in tests for automated install Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:47:28 +01:00
DL6ER	cc657c0c26	Rename subroutine start_service() to restart_service() because this is what it does Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:37:03 +01:00
DL6ER	d90d7b6927	Call FTL download/installation early on in the installation process. Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:36:27 +01:00
DL6ER	de6dc90575	Don't diable pihole-FTL before calling install. root should be able to overwrite the binary in any case. The binary has already been downloaded and hash-verified here so we don't expect any errors in this binary. Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:32:33 +01:00
DL6ER	3cdd6204c5	Move dnsmasq disabling and config file rewriting into a dedicated subroutine Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:31:02 +01:00
DL6ER	d996e9c9ee	Fix inconsistent handling of binary variable. get_binary_variable() stores the result into a global variable we pass later on as argument to FTLinstall() and define a local variable with the same name. This is fixed by only using the globa variable in all places not. This is still not a very elegant solution but it is also not subject of the current PR. Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:28:09 +01:00
DL6ER	a4ba8d4b8f	Prevent double disabling/enabling by checking BLOCKING_ENABLED value in setupVars.conf Signed-off-by: DL6ER <dl6er@dl6er.de>	2019-01-24 09:16:24 +01:00