-
Notifications
You must be signed in to change notification settings - Fork 28
/
Copy pathinstall.sh
174 lines (148 loc) · 5.5 KB
/
install.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
#!/bin/bash
#
# Copyright (c) 2014, Greg Elin/GovReady
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
#
# usage:
# install: curl -Lk https://raw.githubusercontent.com/GovReady/govready/master/install.sh | sudo bash
# uninstall: curl -Lk https://raw.githubusercontent.com/GovReady/govready/master/install.sh | sudo UNINSTALL=1 bash
# install branch: curl -Lk https://raw.githubusercontent.com/GovReady/govready/master/install.sh | sudo BRANCH=branch bash
#
set -e -E -u -o pipefail; shopt -s failglob; set -o posix; set +o histexpand
GREEN="\e[1;32m"
RED="\e[1;31m"
NORMAL="\e[0m"
log_error(){
printf "${RED}[ERROR] ${*}${NORMAL}\n" >&2
}
log_info(){
printf "${NORMAL}[INFO] ${*}\n"
}
log_info_success(){
printf "${GREEN}[SUCCESS] ${*}\n"
}
# default install location for bins and man
: ${MANDIR:=/usr/local/man/man1}
: ${PREFIX:=/usr/local/bin}
: ${PREFIXMAN:=/usr/share/man/man1}
# get info about env. for default settings
BASH_DEFAULT=$(command -v bash || (log_error "bash command not available." && exit 1))
# prepare shebang - from env. or default
: ${BASH_SHEBANG:=${BASH_DEFAULT}}
# install command
INSTALL="install"
# prepare build directory
BUILD_DIR=$(mktemp -d -t 'govready_build.XXXXXXXXXX')
# Do you want install or uninstall software, by default install.
: ${UNINSTALL:=0}
# What branch to install, master by default
: ${BRANCH:="master"}
# what scripts install/uninstall
BASH_TARGET="govready"
BASHCP_TARGET="govreadycp"
MAN_TARGET="govready.1"
# utilities
_ping_govready(){
# Ping GovReady to track a download
# Comment out lines below to not ping the server
# No data passed, just a ping
GOVREADY_PING_URL="http://io.govready.org/io/"
curl -Lkfso /dev/null "${GOVREADY_PING_URL}"
}
# install directories
install_dirs(){
${INSTALL} -m 0755 -d "/var/www/govready/scans"
}
uninstall_dirs(){
local DIR_TARGET="/var/www/govready/scans"
if [[ ! -d "${DIR_TARGET}" ]]
then
rm -f "${DIR_TARGET}"
else
echo "${DIR_TARGET} not found"
fi
}
install_bins(){
# Install govready
TEMP_SRC="https://raw.githubusercontent.com/GovReady/govready/${BRANCH}/govready"
# Make sure permament Linux Hierarchy File System (HFS) dir exists with correct permissions
log_info "Make sure directory ${PREFIX} exists"
${INSTALL} -m 0755 -d "${PREFIX}"
# Download govready to temporary build dir
log_info "Downloading and installing ${TEMP_SRC}"
curl -Lksf "${TEMP_SRC}" -o "${BUILD_DIR}/${BASH_TARGET}.tmp" ||\
(log_error "download govready bin failed." && return 1)
# Install (move) files into permament Linux HFS dir
${INSTALL} -m 0755 -p "${BUILD_DIR}/${BASH_TARGET}.tmp" "${PREFIX}/${BASH_TARGET}"
# Install govreadycp
TEMPCP_SRC="https://raw.githubusercontent.com/GovReady/govready/master/govreadycp"
# Download govreadycp to temporary build dir
log_info "Downloading and installing ${TEMPCP_SRC}"
curl -Lksf "${TEMPCP_SRC}" -o "${BUILD_DIR}/${BASHCP_TARGET}.tmp" ||\
(log_error "download govreadycp bin failed." && return 1)
# Install (move) files into permament Linux HFS dir
${INSTALL} -m 0755 -p "${BUILD_DIR}/${BASHCP_TARGET}.tmp" "${PREFIX}/${BASHCP_TARGET}"
# Install man pages
TEMP_SRC="https://raw.githubusercontent.com/GovReady/govready/${BRANCH}/docs/man/govready.1"
log_info "Downloading and installing ${TEMP_SRC}"
# Download govready.1 to temporary build dir
curl -Lksf "${TEMP_SRC}" -o "${BUILD_DIR}/${MAN_TARGET}.tmp" ||\
(log_error "download govready man page failed." && return 1)
# Install (move) files into permament Linux HFS dir
${INSTALL} -g 0 -o 0 -m 0644 "${BUILD_DIR}/${MAN_TARGET}.tmp" "${PREFIXMAN}/${MAN_TARGET}"
gzip -f "${PREFIXMAN}/${MAN_TARGET}"
# Remove temp files from download
rm -rf "${BUILD_DIR}"
}
uninstall_bins(){
# To Do: Make removal of files more module and less brittle
if [[ -f "${PREFIX}/${BASH_TARGET}" ]] || [[ -f "${PREFIX}/${BASHCP_TARGET}" ]]
then
cd "${PREFIX}"
rm -f "${BASH_TARGET}"
rm -f "${BASHCP_TARGET}"
# Uninstall man page
cd "${PREFIXMAN}"
rm -f "${MAN_TARGET}"
rm -f "${MAN_TARGET}.gz"
else
echo "Neither ${PREFIX}/${BASH_TARGET} or ${PREFIX}/${BASHCP_TARGET} found"
if [[ -d "${PREFIX}" ]]; then
rmdir "${PREFIX}"
else
echo "${PREFIX} not found"
fi
fi
}
fail_guard(){
log_error $1
# clean BUILD_DIR if exist
if [[ -d ${BUILD_DIR} ]]; then
rm -rf ${BUILD_DIR}
fi
exit 1
}
trap 'fail_guard "$msg"' SIGHUP SIGINT SIGTERM ERR
if [[ ${UNINSTALL} -eq 1 ]]; then
msg="GovReady uninstall falled."
uninstall_bins
log_info_success "GovReady uninstall succeeded."
printf "${NORMAL}"
else
msg="GovReady install falled."
log_info "Pinging GovReady"
_ping_govready
install_bins
install_dirs
log_info_success "GovReady install succeeded."
log_info_success "govready version"
${PREFIX}/govready version
msg="GovReady install succeeded. OpenSCAP install falled."
log_info "GovReady requires OpenSCAP. Installing. CTL-c to halt."
${PREFIX}/govready install_openscap
msg="GovReady install succeeded. OpenSCAP install succeeded. SSG install falled."
log_info "GovReady needs SCAP content. Installing SCAP-Security-Guide. CTL-c to halt."
${PREFIX}/govready install_ssg
fi