mister-devel/Updater_script_MiSTer
1
0
Fork 0
mirror of https://github.com/MiSTer-devel/Updater_script_MiSTer.git synced 2026-04-19 03:05:43 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
cbf21067751e2efb56a7d648917e014cd20a70de
Updater_script_MiSTer/update.sh
Frédéric Mahé cbf2106775 use ${} to delineate variable names
2019-02-11 14:16:08 +01:00

80 lines
3.0 KiB
Bash
Raw Blame History

#!/bin/bash
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
# Copyright 2019 Alessandro "Locutus73" Miele
# You can download the latest version of this script from:
# https://github.com/MiSTer-devel/Updater_script_MiSTer
# Version 2.0 - 2019-02-02 - Added ALLOW_INSECURE_SSH option: "true" will check if SSL certificate verification (see https://curl.haxx.se/docs/sslcerts.html ) is working (CA certificates installed) and when it's working it will use this feature for safe curl HTTPS downloads, otherwise it will use --insecure option for disabling SSL certificate verification. If CA certificates aren't installed it's advised to install them (i.e. using security_fixes.sh). "false" will never use --insecure option and if CA certificates aren't installed any download will fail.
# Version 1.0 - 2019-01-07 - First commit
#========= OPTIONS ==================
SCRIPT_URL="https://github.com/MiSTer-devel/Updater_script_MiSTer/blob/master/mister_updater.sh"
#========= ADVANCED OPTIONS =========
# ALLOW_INSECURE_SSH="true" will check if SSL certificate verification (see https://curl.haxx.se/docs/sslcerts.html )
# is working (CA certificates installed) and when it's working it will use this feature for safe curl HTTPS downloads,
# otherwise it will use --insecure option for disabling SSL certificate verification.
# If CA certificates aren't installed it's advised to install them (i.e. using security_fixes.sh).
# ALLOW_INSECURE_SSH="false" will never use --insecure option and if CA certificates aren't installed
# any download will fail.
ALLOW_INSECURE_SSH="true"
#========= CODE STARTS HERE =========
ORIGINAL_SCRIPT_PATH="${0}"
if [ "${ORIGINAL_SCRIPT_PATH}" == "bash" ]
then
ORIGINAL_SCRIPT_PATH=$(ps | grep "^ *${PPID} " | grep -o "[^ ]*$")
fi
INI_PATH=${ORIGINAL_SCRIPT_PATH%.*}.ini
if [ -f ${INI_PATH} ]
then
eval "$(cat ${INI_PATH} | tr -d '\r')"
fi
SSL_SECURITY_OPTION=""
curl -q https://google.com > /dev/null 2>&1
case $? in
0)
;;
60)
if [ "${ALLOW_INSECURE_SSH}" == "true" ]
then
SSL_SECURITY_OPTION="--insecure"
else
echo "CA certificates need"
echo "to be fixed for"
echo "using SSL certificate"
echo "verification."
echo "Please fix them i.e."
echo "using security_fixes.sh"
exit 2
fi
;;
*)
echo "No Internet connection"
exit 1
;;
esac
echo "Downloading and executing"
echo "${SCRIPT_URL/*\//}"
echo ""
curl ${SSL_SECURITY_OPTION} -sLf "${SCRIPT_URL}?raw=true" | bash -
exit 0
Reference in New Issue View Git Blame Copy Permalink