cyberchallenge-modem/update/update.sh

#!/bin/sh

if [[ -z $key ]]; then
	/bin/echo "Usage: sudo key=<update_key> -E update.sh"
	exit 1
fi

password=`/bin/cat /etc/update_key | /usr/bin/sha512sum | /usr/bin/cut -d' ' -f 1`
auth=`/bin/echo -n $key | /usr/bin/sha512sum | /usr/bin/cut -d' ' -f 1`                                                             

if [[ "$auth" != "$password" ]]; then
        /bin/echo "Wrong password"
        exit 1
fi


pubkey="/pub.pem"
file="/tmp/update.tgz.cc"
/bin/echo "### ccOS Update Script ###"
/bin/echo "[+] Starting"
/bin/sleep 1
/bin/echo "[+] Extracting Signature"
skip=$(expr $(stat -c '%s' $file) - 256)
if [[ -L $file ]]
then
	exit 0
fi 
/bin/dd if=/tmp/update.tgz.cc of=sig bs=1 count=256 skip=$skip
/usr/bin/truncate -s $skip update.tgz.cc
check=`/usr/bin/openssl dgst -sha256 -verify $pubkey -signature /tmp/sig /tmp/update.tgz.cc`
if [ "$check" == "Verified OK" ]
then
        /bin/echo "[+] Signature is valid!"
        /bin/echo "[+] Upgrading..."
        /bin/tar -xvzf /tmp/update.tgz.cc -C /
        /bin/rm /tmp/update.tgz.cc /tmp/sig
        /bin/echo "[+] Done"
        exit 0
else
        /bin/echo "[-] Signature error, exiting..."
        /bin/rm /tmp/update.tgz.cc /tmp/sig
        exit 1
fi
Update mechanism 2020-05-22 18:34:46 +02:00			`#!/bin/sh`
Draft update script 2020-05-19 17:55:09 +02:00
update_key generation now in cfgbin; update.sh auth changed 2020-09-19 18:31:38 +02:00			`if [[ -z $key ]]; then`
			`/bin/echo "Usage: sudo key=<update_key> -E update.sh"`
Minor improvements to update.sh 2020-09-17 16:09:01 +02:00			`exit 1`
			`fi`

update_key generation now in cfgbin; update.sh auth changed 2020-09-19 18:31:38 +02:00			password=`/bin/cat /etc/update_key \| /usr/bin/sha512sum \| /usr/bin/cut -d' ' -f 1`
			auth=`/bin/echo -n $key \| /usr/bin/sha512sum \| /usr/bin/cut -d' ' -f 1`
Added required password for update system 2020-09-13 23:59:49 +02:00
Minor improvements to update.sh 2020-09-17 16:09:01 +02:00			`if [[ "$auth" != "$password" ]]; then`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/bin/echo "Wrong password"`
			`exit 1`
			`fi`


Draft update script 2020-05-19 17:55:09 +02:00			`pubkey="/pub.pem"`
Update mechanism 2020-05-22 18:34:46 +02:00			`file="/tmp/update.tgz.cc"`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/bin/echo "### ccOS Update Script ###"`
			`/bin/echo "[+] Starting"`
Minor fixed to update script 2020-09-17 15:45:14 +02:00			`/bin/sleep 1`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/bin/echo "[+] Extracting Signature"`
Update mechanism 2020-05-22 18:34:46 +02:00			`skip=$(expr $(stat -c '%s' $file) - 256)`
			`if [[ -L $file ]]`
			`then`
			`exit 0`
			`fi`
Wrong dd path in update.sh 2020-09-21 09:57:13 +02:00			`/bin/dd if=/tmp/update.tgz.cc of=sig bs=1 count=256 skip=$skip`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/usr/bin/truncate -s $skip update.tgz.cc`
			check=`/usr/bin/openssl dgst -sha256 -verify $pubkey -signature /tmp/sig /tmp/update.tgz.cc`
Draft update script 2020-05-19 17:55:09 +02:00			`if [ "$check" == "Verified OK" ]`
			`then`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/bin/echo "[+] Signature is valid!"`
			`/bin/echo "[+] Upgrading..."`
DNS is useless; fix tar path in update.sh 2020-09-23 11:13:38 +02:00			`/bin/tar -xvzf /tmp/update.tgz.cc -C /`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/bin/rm /tmp/update.tgz.cc /tmp/sig`
			`/bin/echo "[+] Done"`
Draft update script 2020-05-19 17:55:09 +02:00			`exit 0`
			`else`
Added required password for update system 2020-09-13 23:59:49 +02:00			`/bin/echo "[-] Signature error, exiting..."`
			`/bin/rm /tmp/update.tgz.cc /tmp/sig`
Draft update script 2020-05-19 17:55:09 +02:00			`exit 1`
			`fi`