forked from masternodes/vps
-
Notifications
You must be signed in to change notification settings - Fork 13
/
install.sh
executable file
·1028 lines (913 loc) · 38.6 KB
/
install.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
#!/bin/bash
# ███╗ ██╗ ██████╗ ██████╗ ███████╗███╗ ███╗ █████╗ ███████╗████████╗███████╗██████╗
# ████╗ ██║██╔═══██╗██╔══██╗██╔════╝████╗ ████║██╔══██╗██╔════╝╚══██╔══╝██╔════╝██╔══██╗
# ██╔██╗ ██║██║ ██║██║ ██║█████╗ ██╔████╔██║███████║███████╗ ██║ █████╗ ██████╔╝
# ██║╚██╗██║██║ ██║██║ ██║██╔══╝ ██║╚██╔╝██║██╔══██║╚════██║ ██║ ██╔══╝ ██╔══██╗
# ██║ ╚████║╚██████╔╝██████╔╝███████╗██║ ╚═╝ ██║██║ ██║███████║ ██║ ███████╗██║ ██║
# ╚═╝ ╚═══╝ ╚═════╝ ╚═════╝ ╚══════╝╚═╝ ╚═╝╚═╝ ╚═╝╚══════╝ ╚═╝ ╚══════╝╚═╝ ╚═╝
# ╚╗ @marsmensch 2016-2018 ╔╝
#
# version v0.9.4
# date 2018-04-04
#
# function: part of the masternode scripts, source the proper config file
#
# Instructions:
# Run this script w/ the desired parameters. Leave blank or use -h for help.
#
# Platforms:
# - Linux Ubuntu 16.04 LTS ONLY on a Vultr, Hetzner or DigitalOcean VPS
# - Linux Ubuntu 18.04 and 20.04 LTS when using --download option.
# - Generic Ubuntu support will be added at a later point in time
#
# Twitter @marsmensch
# Useful variables
declare -r CRYPTOS=`ls -l config/ | egrep '^d' | awk '{print $9}' | xargs echo -n; echo`
declare -r DATE_STAMP="$(date +%y-%m-%d-%s)"
declare -r SCRIPTPATH=$( cd $(dirname ${BASH_SOURCE[0]}) > /dev/null; pwd -P )
declare -r MASTERPATH="$(dirname "${SCRIPTPATH}")"
declare -r SCRIPT_VERSION="v0.9.5"
declare -r SCRIPT_LOGFILE="/tmp/nodemaster_${DATE_STAMP}_out.log"
declare -r IPV4_DOC_LINK="https://www.vultr.com/docs/add-secondary-ipv4-address"
declare -r DO_NET_CONF="/etc/network/interfaces.d/50-cloud-init.cfg"
function showbanner() {
cat << "EOF"
███╗ ██╗ ██████╗ ██████╗ ███████╗███╗ ███╗ █████╗ ███████╗████████╗███████╗██████╗
████╗ ██║██╔═══██╗██╔══██╗██╔════╝████╗ ████║██╔══██╗██╔════╝╚══██╔══╝██╔════╝██╔══██╗
██╔██╗ ██║██║ ██║██║ ██║█████╗ ██╔████╔██║███████║███████╗ ██║ █████╗ ██████╔╝
██║╚██╗██║██║ ██║██║ ██║██╔══╝ ██║╚██╔╝██║██╔══██║╚════██║ ██║ ██╔══╝ ██╔══██╗
██║ ╚████║╚██████╔╝██████╔╝███████╗██║ ╚═╝ ██║██║ ██║███████║ ██║ ███████╗██║ ██║
╚═╝ ╚═══╝ ╚═════╝ ╚═════╝ ╚══════╝╚═╝ ╚═╝╚═╝ ╚═╝╚══════╝ ╚═╝ ╚══════╝╚═╝ ╚═╝
╚╗ @marsmensch 2016-2018 ╔╝
EOF
}
# /*
# confirmation message as optional parameter, asks for confirmation
# get_confirmation && COMMAND_TO_RUN or prepend a message
# */
#
function get_confirmation() {
# call with a prompt string or use a default
read -r -p "${1:-Are you sure? [y/N]} " response
case "$response" in
[yY][eE][sS]|[yY])
true
;;
*)
false
;;
esac
}
#
# /* no parameters, displays the help message */
#
function show_help(){
clear
showbanner
echo "install.sh, version $SCRIPT_VERSION";
echo "Usage example:";
echo "install.sh (-p|--project) string [(-h|--help)] [(-n|--net) int] [(-c|--count) int] [(-r|--release) string] [(-w|--wipe)] [(-u|--update)] [(-x|--startnodes)] [(-i|--download) string]";
echo "Options:";
echo "-h or --help: Displays this information.";
echo "-p or --project string: Project to be installed. REQUIRED.";
echo "-n or --net: IP address type t be used (4 vs. 6).";
echo "-c or --count: Number of masternodes to be installed.";
echo "-r or --release: Release version to be installed.";
echo "-s or --sentinel: Add sentinel monitoring for a node type. Combine with the -p option";
echo "-w or --wipe: Wipe ALL local data for a node type. Combine with the -p option";
echo "-u or --update: Update a specific masternode daemon. Combine with the -p option";
echo "-r or --release: Release version to be installed.";
echo "-x or --startnodes: Start masternodes after installation to sync with blockchain";
echo "-i or --download: Download masternode daemon instead of building it";
exit 1;
}
#
# /* no parameters, checks if we are running on a supported Ubuntu release */
#
function check_distro() {
# currently only for Ubuntu 16.04 or 18.04 and 20.04 with --download switch
if [[ -r /etc/os-release ]]; then
. /etc/os-release
if [[ "${ID}" == "ubuntu" ]]; then
if [[ "${VERSION_ID}" == "16.04" ]]; then
return;
fi
if [[ "${VERSION_ID}" == "18.04" ]] && [[ "$download" -eq 1 ]]; then
return;
fi
if [[ "${VERSION_ID}" == "20.04" ]] && [[ "$download" -eq 1 ]]; then
return;
fi
fi
echo "This script only supports Ubuntu 16.04 LTS or Ubuntu 18.04 / 20.04 LTS with --download option."
exit 1
else
# no, thats not ok!
echo "This script only supports ubuntu 16.04 LTS or 18.04 / 20.04 LTS with --download option, exiting."
exit 1
fi
}
#
# /* no parameters, installs the base set of packages that are required for all projects */
#
function install_packages() {
# development and build packages
# these are common on all cryptos
echo "* Package installation!"
apt-get -qq -o=Dpkg::Use-Pty=0 -o=Acquire::ForceIPv4=true update
apt-get -qqy -o=Dpkg::Use-Pty=0 -o=Acquire::ForceIPv4=true install build-essential g++ \
protobuf-compiler libboost-all-dev autotools-dev \
automake libcurl4-openssl-dev libboost-all-dev libssl-dev libdb++-dev \
make autoconf automake libtool git apt-utils libprotobuf-dev pkg-config \
libcurl3-dev libudev-dev libqrencode-dev bsdmainutils pkg-config libssl-dev \
libgmp3-dev libevent-dev jp2a pv virtualenv &>> ${SCRIPT_LOGFILE}
}
#
# /* no parameters, creates and activates a swapfile since VPS servers often do not have enough RAM for compilation */
#
function swaphack() {
#check if swap is available
if [ $(free | awk '/^Swap:/ {exit !$2}') ] || [ ! -f "/var/mnode_swap.img" ];then
echo "* No proper swap, creating it"
# needed because ant servers are ants
rm -f /var/mnode_swap.img
dd if=/dev/zero of=/var/mnode_swap.img bs=1024k count=${MNODE_SWAPSIZE} &>> ${SCRIPT_LOGFILE}
chmod 0600 /var/mnode_swap.img
mkswap /var/mnode_swap.img &>> ${SCRIPT_LOGFILE}
swapon /var/mnode_swap.img &>> ${SCRIPT_LOGFILE}
echo '/var/mnode_swap.img none swap sw 0 0' | tee -a /etc/fstab &>> ${SCRIPT_LOGFILE}
echo 'vm.swappiness=10' | tee -a /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo 'vm.vfs_cache_pressure=50' | tee -a /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
else
echo "* All good, we have a swap"
fi
}
#
# /* no parameters, creates and activates a dedicated masternode user */
#
function create_mn_user() {
# our new mnode unpriv user acc is added
if id "${MNODE_USER}" >/dev/null 2>&1; then
echo "user exists already, do nothing" &>> ${SCRIPT_LOGFILE}
else
echo "Adding new system user ${MNODE_USER}"
adduser --disabled-password --gecos "" ${MNODE_USER} &>> ${SCRIPT_LOGFILE}
fi
}
#
# /* no parameters, creates a masternode data directory (one per masternode) */
#
function create_mn_dirs() {
# individual data dirs for now to avoid problems
echo "* Creating masternode directories"
mkdir -p ${MNODE_CONF_BASE}
for NUM in $(seq 1 ${count}); do
if [ ! -d "${MNODE_DATA_BASE}/${CODENAME}${NUM}" ]; then
echo "creating data directory ${MNODE_DATA_BASE}/${CODENAME}${NUM}" &>> ${SCRIPT_LOGFILE}
mkdir -p ${MNODE_DATA_BASE}/${CODENAME}${NUM} &>> ${SCRIPT_LOGFILE}
fi
done
}
#
# /* no parameters, creates a sentinel config for a set of masternodes (one per masternode) */
#
function create_sentinel_setup() {
# if code directory does not exists, we create it clone the src
if [ ! -d /usr/share/sentinel ]; then
cd /usr/share &>> ${SCRIPT_LOGFILE}
git clone https://github.com/dashpay/sentinel.git sentinel &>> ${SCRIPT_LOGFILE}
cd sentinel &>> ${SCRIPT_LOGFILE}
rm -f rm sentinel.conf &>> ${SCRIPT_LOGFILE}
else
echo "* Updating the existing sentinel GIT repo"
cd /usr/share/sentinel &>> ${SCRIPT_LOGFILE}
git pull &>> ${SCRIPT_LOGFILE}
rm -f rm sentinel.conf &>> ${SCRIPT_LOGFILE}
fi
# create a globally accessible venv and install sentinel requirements
virtualenv --system-site-packages /usr/share/sentinelvenv &>> ${SCRIPT_LOGFILE}
/usr/share/sentinelvenv/bin/pip install -r requirements.txt &>> ${SCRIPT_LOGFILE}
# create one sentinel config file per masternode
for NUM in $(seq 1 ${count}); do
if [ ! -f "/usr/share/sentinel/${CODENAME}${NUM}_sentinel.conf" ]; then
echo "* Creating sentinel configuration for ${CODENAME} masternode number ${NUM}" &>> ${SCRIPT_LOGFILE}
echo "dash_conf=${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf" > /usr/share/sentinel/${CODENAME}${NUM}_sentinel.conf
echo "network=mainnet" >> /usr/share/sentinel/${CODENAME}${NUM}_sentinel.conf
echo "db_name=database/${CODENAME}_${NUM}_sentinel.db" >> /usr/share/sentinel/${CODENAME}${NUM}_sentinel.conf
echo "db_driver=sqlite" >> /usr/share/sentinel/${CODENAME}${NUM}_sentinel.conf
fi
done
echo "Generated a Sentinel config for you. To activate Sentinel run"
echo "export SENTINEL_CONFIG=${MNODE_CONF_BASE}/${CODENAME}${NUM}_sentinel.conf; /usr/share/sentinelvenv/bin/python /usr/share/sentinel/bin/sentinel.py"
echo ""
echo "If it works, add the command as cronjob: "
echo "* * * * * export SENTINEL_CONFIG=${MNODE_CONF_BASE}/${CODENAME}${NUM}_sentinel.conf; /usr/share/sentinelvenv/bin/python /usr/share/sentinel/bin/sentinel.py 2>&1 >> /var/log/sentinel/sentinel-cron.log"
}
#
# /* no parameters, creates a minimal set of firewall rules that allows INBOUND masternode p2p & SSH ports */
#
function configure_firewall() {
echo "* Configuring firewall rules"
# disallow everything except ssh and masternode inbound ports
ufw default deny &>> ${SCRIPT_LOGFILE}
ufw logging on &>> ${SCRIPT_LOGFILE}
ufw allow ${SSH_INBOUND_PORT}/tcp &>> ${SCRIPT_LOGFILE}
# KISS, its always the same port for all interfaces
ufw allow ${MNODE_INBOUND_PORT}/tcp &>> ${SCRIPT_LOGFILE}
# This will only allow 6 connections every 30 seconds from the same IP address.
ufw limit OpenSSH &>> ${SCRIPT_LOGFILE}
ufw --force enable &>> ${SCRIPT_LOGFILE}
echo "* Firewall ufw is active and enabled on system startup"
}
#
# /* no parameters, checks if the choice of networking matches w/ this VPS installation */
#
function validate_netchoice() {
echo "* Validating network rules"
# break here of net isn't 4 or 6
if [ ${net} -ne 4 ] && [ ${net} -ne 6 ]; then
echo "invalid NETWORK setting, can only be 4 or 6!"
exit 1;
fi
# generate the required ipv6 config
if [ "${net}" -eq 4 ]; then
IPV6_INT_BASE="#NEW_IPv4_ADDRESS_FOR_MASTERNODE_NUMBER"
NETWORK_BASE_TAG=""
echo "IPv4 address generation needs to be done manually atm!" &>> ${SCRIPT_LOGFILE}
fi # end ifneteq4
}
#
# /* no parameters, generates one masternode configuration file per masternode in the default
# directory (eg. /etc/masternodes/${CODENAME} and replaces the existing placeholders if possible */
#
function create_mn_configuration() {
# always return to the script root
cd ${SCRIPTPATH}
for NUM in $(seq 1 ${count}); do
if [ -n "${PRIVKEY[${NUM}]}" ]; then
echo ${PRIVKEY[${NUM}]} >> tmp.txt
fi
done
if [ -f tmp.txt ]; then
dup=$(sort -t 8 tmp.txt | uniq -c | sort -nr | head -1 | awk '{print substr($0, 7, 1)}')
if [ 1 -ne "$dup" ]; then
echo "Private key was duplicated. Please restart this script."
rm -r /etc/masternodes
rm tmp.txt
exit 1
fi
rm tmp.txt
fi
# create one config file per masternode
for NUM in $(seq 1 ${count}); do
PASS=$(date | md5sum | cut -c1-24)
# we dont want to overwrite an existing config file
if [ ! -f ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf ]; then
echo "individual masternode config doesn't exist, generate it!" &>> ${SCRIPT_LOGFILE}
# if a template exists, use this instead of the default
if [ -e config/${CODENAME}/${CODENAME}.conf ]; then
echo "custom configuration template for ${CODENAME} found, use this instead" &>> ${SCRIPT_LOGFILE}
cp ${SCRIPTPATH}/config/${CODENAME}/${CODENAME}.conf ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf &>> ${SCRIPT_LOGFILE}
else
echo "No ${CODENAME} template found, using the default configuration template" &>> ${SCRIPT_LOGFILE}
cp ${SCRIPTPATH}/config/default.conf ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf &>> ${SCRIPT_LOGFILE}
fi
# replace placeholders
echo "running sed on file ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf" &>> ${SCRIPT_LOGFILE}
fi
if [ -n "${PRIVKEY[${NUM}]}" ]; then
if [ ${#PRIVKEY[${NUM}]} -eq 51 ]; then
sed -e "s/HERE_GOES_YOUR_MASTERNODE_KEY_FOR_MASTERNODE_XXX_GIT_PROJECT_XXX_XXX_NUM_XXX/${PRIVKEY[${NUM}]}/" -i ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf
else
echo "input private key ${PRIVKEY[${NUM}]} was invalid. Please check the key, and restart this script."
rm -r /etc/masternodes
exit 1
fi
else :
fi
sed -e "s/XXX_GIT_PROJECT_XXX/${CODENAME}/" -e "s/XXX_NUM_XXY/${NUM}]/" -e "s/XXX_NUM_XXX/${NUM}/" -e "s/XXX_PASS_XXX/${PASS}/" -e "s/XXX_IPV6_INT_BASE_XXX/[${IPV6_INT_BASE}/" -e "s/XXX_NETWORK_BASE_TAG_XXX/${NETWORK_BASE_TAG}/" -e "s/XXX_MNODE_INBOUND_PORT_XXX/${MNODE_INBOUND_PORT}/" -i ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf
if [ -z "${PRIVKEY[${NUM}]}" ]; then
if [ "$startnodes" -eq 1 ]; then
#uncomment masternode= and masternodeprivkey= so the node can autostart and sync
sed 's/\(^.*masternode\(\|privkey\)=.*$\)/#\1/' -i ${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf
fi
fi
done
}
#
# /* no parameters, generates a masternode configuration file per masternode in the default */
#
function create_control_configuration() {
# delete any old stuff that's still around
rm -f /tmp/${CODENAME}_masternode.conf &>> ${SCRIPT_LOGFILE}
# create one line per masternode with the data we have
for NUM in $(seq 1 ${count}); do
if [ -n "${PRIVKEY[${NUM}]}" ]; then
echo ${CODENAME}MN${NUM} [${IPV6_INT_BASE}:${NETWORK_BASE_TAG}::${NUM}]:${MNODE_INBOUND_PORT} ${PRIVKEY[${NUM}]} COLLATERAL_TX_FOR_${CODENAME}MN${NUM} OUTPUT_NO_FOR_${CODENAME}MN${NUM} >> /tmp/${CODENAME}_masternode.conf
else
echo ${CODENAME}MN${NUM} [${IPV6_INT_BASE}:${NETWORK_BASE_TAG}::${NUM}]:${MNODE_INBOUND_PORT} MASTERNODE_PRIVKEY_FOR_${CODENAME}MN${NUM} COLLATERAL_TX_FOR_${CODENAME}MN${NUM} OUTPUT_NO_FOR_${CODENAME}MN${NUM} >> /tmp/${CODENAME}_masternode.conf
fi
done
}
#
# /* no parameters, generates a a pre-populated masternode systemd config file */
#
function create_systemd_configuration() {
echo "* (over)writing systemd config files for masternodes"
# create one config file per masternode
for NUM in $(seq 1 ${count}); do
PASS=$(date | md5sum | cut -c1-24)
echo "* (over)writing systemd config file ${SYSTEMD_CONF}/${CODENAME}_n${NUM}.service" &>> ${SCRIPT_LOGFILE}
cat > ${SYSTEMD_CONF}/${CODENAME}_n${NUM}.service <<-EOF
[Unit]
Description=${CODENAME} distributed currency daemon
After=network.target
[Service]
User=${MNODE_USER}
Group=${MNODE_USER}
Type=forking
PIDFile=${MNODE_DATA_BASE}/${CODENAME}${NUM}/${CODENAME}.pid
ExecStart=${MNODE_DAEMON} -daemon -pid=${MNODE_DATA_BASE}/${CODENAME}${NUM}/${CODENAME}.pid \
-conf=${MNODE_CONF_BASE}/${CODENAME}_n${NUM}.conf -datadir=${MNODE_DATA_BASE}/${CODENAME}${NUM}
Restart=always
RestartSec=5
PrivateTmp=true
TimeoutStopSec=60s
TimeoutStartSec=5s
StartLimitInterval=120s
StartLimitBurst=15
[Install]
WantedBy=multi-user.target
EOF
done
}
#
# /* set all permissions to the masternode user */
#
function set_permissions() {
# maybe add a sudoers entry later
chown -R ${MNODE_USER}:${MNODE_USER} ${MNODE_CONF_BASE} ${MNODE_DATA_BASE} /var/log/sentinel &>> ${SCRIPT_LOGFILE}
# make group permissions same as user, so vps-user can be added to masternode group
chmod -R g=u ${MNODE_CONF_BASE} ${MNODE_DATA_BASE} /var/log/sentinel &>> ${SCRIPT_LOGFILE}
}
#
# /* wipe all files and folders generated by the script for a specific project */
#
function wipe_all() {
echo "Deleting all ${project} related data!"
rm -f /etc/masternodes/${project}_n*.conf
rmdir --ignore-fail-on-non-empty -p /var/lib/masternodes/${project}*
rm -f /etc/systemd/system/${project}_n*.service
rm -f ${MNODE_DAEMON}
echo "DONE!"
exit 0
}
#
#Generate masternode private key
#
function generate_privkey() {
echo -e "rpcuser=test\nrpcpassword=passtest" >> ${MNODE_CONF_BASE}/${CODENAME}_test.conf
mkdir -p ${MNODE_DATA_BASE}/${CODENAME}_test
phored -daemon -conf=${MNODE_CONF_BASE}/${CODENAME}_test.conf -datadir=${MNODE_DATA_BASE}/${CODENAME}_test
sleep 5
for NUM in $(seq 1 ${count}); do
if [ -z "${PRIVKEY[${NUM}]}" ]; then
PRIVKEY[${NUM}]=$(phore-cli -conf=${MNODE_CONF_BASE}/${CODENAME}_test.conf -datadir=${MNODE_DATA_BASE}/${CODENAME}_test masternode genkey)
fi
done
phore-cli -conf=${MNODE_CONF_BASE}/${CODENAME}_test.conf -datadir=${MNODE_DATA_BASE}/${CODENAME}_test stop
sleep 5
rm -r ${MNODE_CONF_BASE}/${CODENAME}_test.conf ${MNODE_DATA_BASE}/${CODENAME}_test
}
#
# /*
# remove packages and stuff we don't need anymore and set some recommended
# kernel parameters
# */
#
function cleanup_after() {
apt-get -qqy -o=Dpkg::Use-Pty=0 --force-yes autoremove
apt-get -qqy -o=Dpkg::Use-Pty=0 --force-yes autoclean
echo "kernel.randomize_va_space=1" > /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.conf.all.rp_filter=1" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.conf.all.accept_source_route=0" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.icmp_echo_ignore_broadcasts=1" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.conf.all.log_martians=1" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.conf.default.log_martians=1" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.conf.all.accept_redirects=0" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv6.conf.all.accept_redirects=0" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.conf.all.send_redirects=0" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "kernel.sysrq=0" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.tcp_timestamps=0" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.tcp_syncookies=1" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
echo "net.ipv4.icmp_ignore_bogus_error_responses=1" >> /etc/sysctl.conf &>> ${SCRIPT_LOGFILE}
sysctl -p
}
#
# /* project as parameter, sources the project specific parameters and runs the main logic */
#
# source the default and desired crypto configuration files
function source_config() {
SETUP_CONF_FILE="${SCRIPTPATH}/config/${project}/${project}.env"
# first things first, to break early if things are missing or weird
check_distro
if [ -f ${SETUP_CONF_FILE} ]; then
echo "Script version ${SCRIPT_VERSION}, you picked: ${project}"
echo "apply config file for ${project}" &>> ${SCRIPT_LOGFILE}
source "${SETUP_CONF_FILE}"
# count is from the default config but can ultimately be
# overwritten at runtime
if [ -z "${count}" ]
then
count=${SETUP_MNODES_COUNT}
echo "No number given, installing default number of nodes: ${SETUP_MNODES_COUNT}" &>> ${SCRIPT_LOGFILE}
fi
# release is from the default project config but can ultimately be
# overwritten at runtime
if [ -z "$release" ]
then
release=${SCVERSION}
echo "release empty, setting to project default: ${SCVERSION}" &>> ${SCRIPT_LOGFILE}
fi
# net is from the default config but can ultimately be
# overwritten at runtime
if [ -z "${net}" ]; then
net=${NETWORK_TYPE}
echo "net EMPTY, setting to default: ${NETWORK_TYPE}" &>> ${SCRIPT_LOGFILE}
fi
# main block of function logic starts here
# if update flag was given, delete the old daemon binary first & proceed
if [ "$update" -eq 1 ]; then
echo "update given, deleting the old daemon NOW!" &>> ${SCRIPT_LOGFILE}
rm -f ${MNODE_DAEMON}
fi
echo "************************* Installation Plan *****************************************"
echo ""
echo "I am going to install and configure "
echo "=> ${count} ${project} masternode(s) in version ${release}"
echo "for you now."
echo ""
echo "You have to add your masternode private key to the individual config files afterwards"
echo ""
echo "Stay tuned!"
echo ""
# show a hint for MANUAL IPv4 configuration
if [ "${net}" -eq 4 ]; then
NETWORK_TYPE=4
echo "WARNING:"
echo "You selected IPv4 for networking but there is no automatic workflow for this part."
echo "This means you will have some mamual work to do to after this configuration run."
echo ""
echo "See the following link for instructions how to add multiple ipv4 addresses on vultr:"
echo "${IPV4_DOC_LINK}"
fi
# sentinel setup
if [ "$sentinel" -eq 1 ]; then
echo "I will also generate a Sentinel configuration for you."
fi
# start nodes after setup
if [ "$startnodes" -eq 1 ]; then
echo "I will start your masternodes after the installation."
fi
echo ""
echo "A logfile for this run can be found at the following location:"
echo "${SCRIPT_LOGFILE}"
echo ""
echo "*************************************************************************************"
sleep 5
# main routine
print_logo
prepare_mn_interfaces
swaphack
if [[ "$download" -eq 1 ]]; then
echo "Download binary from url" &>> ${SCRIPT_LOGFILE}
download_bin_from_url
else
install_packages
echo "Configured to build mn from source" &>> ${SCRIPT_LOGFILE}
build_mn_from_source
fi
create_mn_user
create_mn_dirs
# private key initialize
if [ "$generate" -eq 1 ]; then
echo "Generating masternode private key" &>> ${SCRIPT_LOGFILE}
generate_privkey
fi
# sentinel setup
if [ "$sentinel" -eq 1 ]; then
echo "* Sentinel setup chosen" &>> ${SCRIPT_LOGFILE}
create_sentinel_setup
fi
configure_firewall
create_mn_configuration
create_control_configuration
create_systemd_configuration
set_permissions
cleanup_after
showbanner
final_call
else
echo "required file ${SETUP_CONF_FILE} does not exist, abort!"
exit 1
fi
}
function print_logo() {
# print ascii banner if a logo exists
if [ -f "${SCRIPTPATH}/assets/$CODENAME.jpg" ]; then
jp2a -b --colors --width=56 ${SCRIPTPATH}/assets/${CODENAME}.jpg
else
jp2a -b --colors --width=56 ${SCRIPTPATH}/assets/default.jpg
fi
}
#
# /* no parameters, builds the required masternode binary from sources. Exits if already exists and "update" not given */
#
function build_mn_from_source() {
# daemon not found compile it
if [ ! -f ${MNODE_DAEMON} ]; then
mkdir -p ${SCRIPTPATH}/${CODE_DIR} &>> ${SCRIPT_LOGFILE}
# if code directory does not exists, we create it clone the src
if [ ! -d ${SCRIPTPATH}/${CODE_DIR}/${CODENAME} ]; then
mkdir -p ${CODE_DIR} && cd ${SCRIPTPATH}/${CODE_DIR} &>> ${SCRIPT_LOGFILE}
git clone ${GIT_URL} ${CODENAME} &>> ${SCRIPT_LOGFILE}
cd ${SCRIPTPATH}/${CODE_DIR}/${CODENAME} &>> ${SCRIPT_LOGFILE}
echo "* Checking out desired GIT tag: ${release}"
git checkout ${release} &>> ${SCRIPT_LOGFILE}
else
echo "* Updating the existing GIT repo"
cd ${SCRIPTPATH}/${CODE_DIR}/${CODENAME} &>> ${SCRIPT_LOGFILE}
git pull &>> ${SCRIPT_LOGFILE}
echo "* Checking out desired GIT tag: ${release}"
git checkout ${release} &>> ${SCRIPT_LOGFILE}
fi
# print ascii banner if a logo exists
echo -e "* Starting the compilation process for ${CODENAME}, stay tuned"
if [ -f "${SCRIPTPATH}/assets/$CODENAME.jpg" ]; then
jp2a -b --colors --width=56 ${SCRIPTPATH}/assets/${CODENAME}.jpg
else
jp2a -b --colors --width=56 ${SCRIPTPATH}/assets/default.jpg
fi
# compilation starts here
source ${SCRIPTPATH}/config/${CODENAME}/${CODENAME}.compile | pv -t -i0.1
else
echo "* Daemon already in place at ${MNODE_DAEMON}, not compiling"
fi
# if it's not available after compilation, theres something wrong
if [ ! -f ${MNODE_DAEMON} ]; then
echo "COMPILATION FAILED! Please open an issue at https://github.com/masternodes/vps/issues. Thank you!"
exit 1
fi
}
#
# /* download mn from given url instead of building it from code.
#
function download_bin_from_url() {
wget ${downloadUrl} -O binaries.tar.gz &>> ${SCRIPT_LOGFILE}
mkdir binaries &>> ${SCRIPT_LOGFILE}
tar -xzf binaries.tar.gz -C binaries --strip-components=1 &>> ${SCRIPT_LOGFILE}
cp ./binaries/bin/* /usr/local/bin/ &>> ${SCRIPT_LOGFILE}
MNODE_DAEMON="/usr/local/bin/phored"
echo "MNODE_DAEMON set to ${MNODE_DAEMON}" &>> ${SCRIPT_LOGFILE}
}
#
# /* no parameters, print some (hopefully) helpful advice */
#
function final_call() {
# note outstanding tasks that need manual work
echo "************! ALMOST DONE !******************************"
echo "There is still work to do in the configuration templates."
echo "These are located at ${MNODE_CONF_BASE}, one per masternode."
echo "Add your masternode private keys now."
echo "eg in /etc/masternodes/${CODENAME}_n1.conf"
echo ""
echo "=> All configuration files are in: ${MNODE_CONF_BASE}"
echo "=> All Data directories are in: ${MNODE_DATA_BASE}"
echo ""
echo "last but not least, run /usr/local/bin/activate_masternodes_${CODENAME} as root to activate your nodes."
# place future helper script accordingly
cp ${SCRIPTPATH}/scripts/activate_masternodes.sh ${MNODE_HELPER}_${CODENAME}
echo "">> ${MNODE_HELPER}_${CODENAME}
for NUM in $(seq 1 ${count}); do
echo "systemctl enable ${CODENAME}_n${NUM}" >> ${MNODE_HELPER}_${CODENAME}
echo "systemctl restart ${CODENAME}_n${NUM}" >> ${MNODE_HELPER}_${CODENAME}
done
chmod u+x ${MNODE_HELPER}_${CODENAME}
if [ "$startnodes" -eq 1 ]; then
echo ""
echo "** Your nodes are starting up. If you haven't set masternode private key, Don't forget to change the masternodeprivkey later."
${MNODE_HELPER}_${CODENAME}
fi
tput sgr0
}
#
# /* no parameters, create the required network configuration. IPv6 is auto. */
#
function prepare_mn_interfaces() {
# this allows for more flexibility since every provider uses another default interface
# current default is:
# * ens3 (vultr) w/ a fallback to "eth0" (Hetzner, DO & Linode w/ IPv4 only)
#
# check for the default interface status
if [ ! -f /sys/class/net/${ETH_INTERFACE}/operstate ]; then
echo "Default interface doesn't exist, switching to eth0"
export ETH_INTERFACE="eth0"
fi
# get the current interface state
ETH_STATUS=$(cat /sys/class/net/${ETH_INTERFACE}/operstate)
# check interface status
if [[ "${ETH_STATUS}" = "down" ]] || [[ "${ETH_STATUS}" = "" ]]; then
echo "Default interface is down, fallback didn't work. Break here."
exit 1
fi
# DO ipv6 fix, are we on DO?
# check for DO network config file
if [ -f ${DO_NET_CONF} ]; then
# found the DO config
if ! grep -q "::8888" ${DO_NET_CONF}; then
echo "ipv6 fix not found, applying!"
sed -i '/iface eth0 inet6 static/a dns-nameservers 2001:4860:4860::8844 2001:4860:4860::8888 8.8.8.8 127.0.0.1' ${DO_NET_CONF}
ifdown ${ETH_INTERFACE}; ifup ${ETH_INTERFACE};
fi
fi
IPV6_INT_BASE="$(ip -6 addr show dev ${ETH_INTERFACE} | grep inet6 | awk -F '[ \t]+|/' '{print $3}' | grep -v ^fe80 | grep -v ^::1 | cut -f1-4 -d':' | head -1)" &>> ${SCRIPT_LOGFILE}
validate_netchoice
echo "IPV6_INT_BASE AFTER : ${IPV6_INT_BASE}" &>> ${SCRIPT_LOGFILE}
# user opted for ipv6 (default), so we have to check for ipv6 support
# check for vultr ipv6 box active
if [ -z "${IPV6_INT_BASE}" ] && [ ${net} -ne 4 ]; then
echo "No IPv6 support on the VPS but IPv6 is the setup default. Please switch to ipv4 with flag \"-n 4\" if you want to continue."
echo ""
echo "See the following link for instructions how to add multiple ipv4 addresses on vultr:"
echo "${IPV4_DOC_LINK}"
exit 1
fi
# generate the required ipv6 config
if [ "${net}" -eq 6 ]; then
# vultr specific, needed to work
sed -ie '/iface ${ETH_INTERFACE} inet6 auto/s/^/#/' ${NETWORK_CONFIG}
# move current config out of the way first
cp ${NETWORK_CONFIG} ${NETWORK_CONFIG}.${DATE_STAMP}.bkp
# create the additional ipv6 interfaces, rc.local because it's more generic
for NUM in $(seq 1 ${count}); do
# check if the interfaces exist
ip -6 addr | grep -qi "${IPV6_INT_BASE}:${NETWORK_BASE_TAG}::${NUM}"
if [ $? -eq 0 ]
then
echo "IP for masternode already exists, skipping creation" &>> ${SCRIPT_LOGFILE}
else
echo "Creating new IP address for ${CODENAME} masternode nr ${NUM}" &>> ${SCRIPT_LOGFILE}
if [ "${NETWORK_CONFIG}" = "/etc/rc.local" ]; then
# need to put network config in front of "exit 0" in rc.local
sed -e '$i ip -6 addr add '"${IPV6_INT_BASE}"':'"${NETWORK_BASE_TAG}"'::'"${NUM}"'/64 dev '"${ETH_INTERFACE}"'\n' -i ${NETWORK_CONFIG}
else
# if not using rc.local, append normally
echo "ip -6 addr add ${IPV6_INT_BASE}:${NETWORK_BASE_TAG}::${NUM}/64 dev ${ETH_INTERFACE}" >> ${NETWORK_CONFIG}
fi
sleep 2
ip -6 addr add ${IPV6_INT_BASE}:${NETWORK_BASE_TAG}::${NUM}/64 dev ${ETH_INTERFACE} &>> ${SCRIPT_LOGFILE}
fi
done # end forloop
fi # end ifneteq6
}
##################------------Menu()---------#####################################
# Declare vars. Flags initalizing to 0.
wipe=0;
debug=0;
update=0;
sentinel=0;
generate=0;
startnodes=0;
download=0;
downloadUrl="";
# Execute getopt
ARGS=$(getopt -o "hp:n:c:r:i:wsudxgk:k2:k3:k4:k5:k6:k7:k8:k9:k10:" -l "help,project:,net:,count:,release:,download:,wipe,sentinel,update,debug,startnodes,generate,key:,key2:,key3:,key4:,key5:,key6:,key7:,key8:,key9:,key10:" -n "install.sh" -- "$@");
#Bad arguments
if [ $? -ne 0 ];
then
help;
fi
eval set -- "$ARGS";
while true; do
case "$1" in
-h |--help)
shift;
help;
;;
-p |--project)
shift;
if [ -n "$1" ];
then
project="$1";
shift;
fi
;;
-n |--net)
shift;
if [ -n "$1" ];
then
net="$1";
shift;
fi
;;
-c |--count)
shift;
if [ -n "$1" ];
then
count="$1";
shift;
fi
;;
-r |--release)
shift;
if [ -n "$1" ];
then
release="$1";
SCVERSION="$1"
shift;
fi
;;
-i | --download)
shift;
if [ -n "$1" ];
then
download="1";
downloadUrl="$1";
shift;
fi
;;
-w |--wipe)
shift;
wipe="1";
;;
-s |--sentinel)
shift;
sentinel="1";
;;
-u |--update)
shift;
update="1";
;;
-d |--debug)
shift;
debug="1";
;;
-x|--startnodes)
shift;
startnodes="1";
;;
-g | --generate)
shift;
generate="1";
;;
-k |--key)
shift;
if [ -n "$1" ];
then
PRIVKEY[1]="$1";
shift;
fi
;;
-k2 |--key2)
shift;
if [ -n "$1" ];
then
PRIVKEY[2]="$1";
shift;
fi
;;
-k3 |--key3)
shift;
if [ -n "$1" ];
then
PRIVKEY[3]="$1";
shift;
fi
;;
-k4 |--key4)
shift;
if [ -n "$1" ];
then
PRIVKEY[4]="$1";
shift;
fi
;;
-k5 |--key5)
shift;
if [ -n "$1" ];
then
PRIVKEY[5]="$1";
shift;
fi
;;
-k6 |--key6)
shift;
if [ -n "$1" ];
then
PRIVKEY[6]="$1";
shift;
fi
;;
-k7 |--key7)
shift;
if [ -n "$1" ];
then
PRIVKEY[7]="$1";
shift;
fi
;;
-k8 |--key8)
shift;
if [ -n "$1" ];
then
PRIVKEY[8]="$1";
shift;
fi
;;
-k9 |--key9)
shift;
if [ -n "$1" ];
then
PRIVKEY[9]="$1";
shift;
fi
;;
-k10 |--key10)
shift;
if [ -n "$1" ];
then
PRIVKEY[10]="$1";
shift;
fi
;;
--)
shift;
break;
;;
esac
done
# Check required arguments
if [ -z "$project" ]
then
show_help;
fi
# Check required arguments
if [ "$wipe" -eq 1 ]; then
get_confirmation "Would you really like to WIPE ALL DATA!? YES/NO y/n" && wipe_all
exit 0
fi
#################################################
# source default config before everything else
source ${SCRIPTPATH}/config/default.env
#################################################
main() {
echo "starting" &> ${SCRIPT_LOGFILE}
showbanner
# debug
if [ "$debug" -eq 1 ]; then
echo "********************** VALUES AFTER CONFIG SOURCING: ************************"
echo "START DEFAULTS => "
echo "SCRIPT_VERSION: $SCRIPT_VERSION"
echo "SSH_INBOUND_PORT: ${SSH_INBOUND_PORT}"
echo "SYSTEMD_CONF: ${SYSTEMD_CONF}"
echo "NETWORK_CONFIG: ${NETWORK_CONFIG}"
echo "NETWORK_TYPE: ${NETWORK_TYPE}"
echo "ETH_INTERFACE: ${ETH_INTERFACE}"
echo "MNODE_CONF_BASE: ${MNODE_CONF_BASE}"
echo "MNODE_DATA_BASE: ${MNODE_DATA_BASE}"
echo "MNODE_USER: ${MNODE_USER}"
echo "MNODE_HELPER: ${MNODE_HELPER}"
echo "MNODE_SWAPSIZE: ${MNODE_SWAPSIZE}"
echo "CODE_DIR: ${CODE_DIR}"
echo "SCVERSION: ${SCVERSION}"
echo "RELEASE: ${release}"
echo "SETUP_MNODES_COUNT: ${SETUP_MNODES_COUNT}"
echo "DOWNLOAD_URL: ${downloadUrl}"
echo "END DEFAULTS => "
fi
# source project configuration
source_config ${project}