doc/install/linux/install.pl - diff

Return to install.pl CVS log

Up to [LON-CAPA] / doc / install / linux

Diff for /doc/install/linux/install.pl between versions 1.48 and 1.70

version 1.48, 2018/10/16 17:23:08	version 1.70, 2021/03/13 00:04:36
Line 29 use Term::ReadKey;	Line 29 use Term::ReadKey;
use Socket;	use Socket;
use Sys::Hostname::FQDN();	use Sys::Hostname::FQDN();
use DBI;	use DBI;
	use File::Spec;
use Cwd();	use Cwd();
use File::Basename();	use File::Basename();
use lib File::Basename::dirname(Cwd::abs_path($0));	use lib File::Basename::dirname(Cwd::abs_path($0));
Line 164 sub get_user_selection {	Line 165 sub get_user_selection {
}	}

sub get_distro {	sub get_distro {
my ($distro,$gotprereqs,$updatecmd,$packagecmd,$installnow);	my ($distro,$gotprereqs,$updatecmd,$packagecmd,$installnow,$unknown);
$packagecmd = '/bin/rpm -q LONCAPA-prerequisites ';	$packagecmd = '/bin/rpm -q LONCAPA-prerequisites ';
if (-e '/etc/redhat-release') {	if (-e '/etc/oracle-release') {
	open(IN,'</etc/oracle-release');
	my $versionstring=<IN>;
	chomp($versionstring);
	close(IN);
	if ($versionstring =~ /^Oracle Linux Server release (\d+)/) {
	my $version = $1;
	$distro = 'oracle'.$1;
	$updatecmd = 'yum install LONCAPA-prerequisites';
	$installnow = 'yum -y install LONCAPA-prerequisites';
	}
	} elsif (-e '/etc/redhat-release') {
open(IN,'</etc/redhat-release');	open(IN,'</etc/redhat-release');
my $versionstring=<IN>;	my $versionstring=<IN>;
chomp($versionstring);	chomp($versionstring);
Line 196 sub get_distro {	Line 208 sub get_distro {
$distro = 'rhes'.$1;	$distro = 'rhes'.$1;
$updatecmd = 'yum install LONCAPA-prerequisites';	$updatecmd = 'yum install LONCAPA-prerequisites';
$installnow = 'yum -y install LONCAPA-prerequisites';	$installnow = 'yum -y install LONCAPA-prerequisites';
	} elsif ($versionstring =~ /Red Hat Enterprise Linux release (\d+)/) {
	$distro = 'rhes'.$1;
	$updatecmd = 'dnf install LONCAPA-prerequisites';
	$installnow = 'dnf -y install LONCAPA-prerequisites';
} elsif ($versionstring =~ /CentOS(?:\| Linux) release (\d+)/) {	} elsif ($versionstring =~ /CentOS(?:\| Linux) release (\d+)/) {
$distro = 'centos'.$1;	$distro = 'centos'.$1;
$updatecmd = 'yum install LONCAPA-prerequisites';	$updatecmd = 'yum install LONCAPA-prerequisites';
Line 209 sub get_distro {	Line 225 sub get_distro {
} else {	} else {
print &mt('Unable to interpret [_1] to determine system type.',	print &mt('Unable to interpret [_1] to determine system type.',
'/etc/redhat-release')."\n";	'/etc/redhat-release')."\n";
	$unknown = 1;
}	}
} elsif (-e '/etc/SuSE-release') {	} elsif (-e '/etc/SuSE-release') {
open(IN,'</etc/SuSE-release');	open(IN,'</etc/SuSE-release');
Line 235 sub get_distro {	Line 252 sub get_distro {
} else {	} else {
print &mt('Unable to interpret [_1] to determine system type.',	print &mt('Unable to interpret [_1] to determine system type.',
'/etc/SuSE-release')."\n";	'/etc/SuSE-release')."\n";
	$unknown = 1;
}	}
} elsif (-e '/etc/issue') {	} elsif (-e '/etc/issue') {
open(IN,'</etc/issue');	open(IN,'</etc/issue');
my $versionstring=<IN>;	my $versionstring=<IN>;
chomp($versionstring);	chomp($versionstring);
close(IN);	close(IN);
$packagecmd = '/usr/bin/dpkg -l loncapa-prerequisites ';
$updatecmd = 'apt-get install loncapa-prerequisites';
if ($versionstring =~ /^Ubuntu (\d+)\.\d+/i) {	if ($versionstring =~ /^Ubuntu (\d+)\.\d+/i) {
$distro = 'ubuntu'.$1;	$distro = 'ubuntu'.$1;
$updatecmd = 'sudo apt-get install loncapa-prerequisites';	$updatecmd = 'sudo apt-get install loncapa-prerequisites';
} elsif ($versionstring =~ /^Debian\s+GNU\/Linux\s+(\d+)\.\d+/i) {	} elsif ($versionstring =~ /^Debian\s+GNU\/Linux\s+(\d+)\.\d+/i) {
$distro = 'debian'.$1;	$distro = 'debian'.$1;
	$updatecmd = 'apt-get install loncapa-prerequisites';
} elsif (-e '/etc/debian_version') {	} elsif (-e '/etc/debian_version') {
open(IN,'</etc/debian_version');	open(IN,'</etc/debian_version');
my $version=<IN>;	my $version=<IN>;
Line 255 sub get_distro {	Line 272 sub get_distro {
close(IN);	close(IN);
if ($version =~ /^(\d+)\.\d+\.?\d*/) {	if ($version =~ /^(\d+)\.\d+\.?\d*/) {
$distro='debian'.$1;	$distro='debian'.$1;
	$updatecmd = 'apt-get install loncapa-prerequisites';
} else {	} else {
print &mt('Unable to interpret [_1] to determine system type.',	print &mt('Unable to interpret [_1] to determine system type.',
'/etc/debian_version')."\n";	'/etc/debian_version')."\n";
	$unknown = 1;
}	}
} else {	}
print &mt('Unable to interpret [_1] to determine system type.',	if ($distro ne '') {
'/etc/issue')."\n";	$packagecmd = '/usr/bin/dpkg -l loncapa-prerequisites ';
}	}
} elsif (-e '/etc/debian_version') {	} elsif (-e '/etc/debian_version') {
open(IN,'</etc/debian_version');	open(IN,'</etc/debian_version');
Line 275 sub get_distro {	Line 294 sub get_distro {
} else {	} else {
print &mt('Unable to interpret [_1] to determine system type.',	print &mt('Unable to interpret [_1] to determine system type.',
'/etc/debian_version')."\n";	'/etc/debian_version')."\n";
	$unknown = 1;
	}
	}
	if (($distro eq '') && (!$unknown)) {
	if (-e '/etc/os-release') {
	if (open(IN,'<','/etc/os-release')) {
	my ($id,$version);
	while(<IN>) {
	chomp();
	if (/^ID="(\w+)"/) {
	$id=$1;
	} elsif (/^VERSION_ID="([\d\.]+)"/) {
	$version=$1;
	}
	}
	close(IN);
	if ($id eq 'sles') {
	my ($major,$minor) = split(/\./,$version);
	if ($major =~ /^\d+$/) {
	$distro = $id.$major;
	$updatecmd = 'zypper install LONCAPA-prerequisites';
	}
	}
	}
	if ($distro eq '') {
	print &mt('Unable to interpret [_1] to determine system type.',
	'/etc/os-release')."\n";
	$unknown = 1;
	}
	} else {
	print &mt('Unknown installation: expecting a debian, ubuntu, suse, sles, redhat, fedora, scientific linux, or oracle linux system.')."\n";
}	}
} else {
print &mt('Unknown installation: expecting a debian, ubuntu, suse, sles, redhat, fedora or scientific linux system.')."\n";
}	}
return ($distro,$packagecmd,$updatecmd,$installnow);	return ($distro,$packagecmd,$updatecmd,$installnow);
}	}
Line 310 sub get_hostname {	Line 358 sub get_hostname {
}	}

#	#
# get_hostname() prompts the user to provide the server's IPv4 IP address	# get_hostip() prompts the user to provide the server's IPv4 IP address
#	#
# If invalid input is provided, the routine is called recursively	# If invalid input is provided, the routine is called recursively
# until, a valid IPv4 address is provided.	# until, a valid IPv4 address is provided.
Line 374 sub check_prerequisites {	Line 422 sub check_prerequisites {

sub check_locale {	sub check_locale {
my ($distro) = @_;	my ($distro) = @_;
my ($fh,$langvar,$command);	my ($fh,$langvar,$command,$earlyout);
$langvar = 'LANG';	$langvar = 'LANG';
if ($distro =~ /^(ubuntu\|debian)/) {	if ($distro =~ /^(ubuntu\|debian)/) {
if (!open($fh,"</etc/default/locale")) {	if (!open($fh,"</etc/default/locale")) {
print &mt('Failed to open: [_1], default locale not checked.',	print &mt('Failed to open: [_1], default locale not checked.',
'/etc/default/locale');	'/etc/default/locale');
	$earlyout = 1;
}	}
} elsif ($distro =~ /^(suse\|sles)/) {	} elsif ($distro =~ /^(suse\|sles)(\d+)/) {
if (!open($fh,"</etc/sysconfig/language")) {	if (($1 eq 'sles') && ($2 >= 15)) {
print &mt('Failed to open: [_1], default locale not checked.',	if (!open($fh,"</etc/locale.conf")) {
'/etc/sysconfig/language');	print &mt('Failed to open: [_1], default locale not checked.',
	'/etc/locale.conf');
	$earlyout = 1;
	}
	} else {
	if (!open($fh,"</etc/sysconfig/language")) {
	print &mt('Failed to open: [_1], default locale not checked.',
	'/etc/sysconfig/language');
	$earlyout = 1;
	}
	$langvar = 'RC_LANG';
}	}
$langvar = 'RC_LANG';
} elsif ($distro =~ /^fedora(\d+)/) {	} elsif ($distro =~ /^fedora(\d+)/) {
if ($1 >= 18) {	if ($1 >= 18) {
if (!open($fh,"</etc/locale.conf")) {	if (!open($fh,"</etc/locale.conf")) {
print &mt('Failed to open: [_1], default locale not checked.',	print &mt('Failed to open: [_1], default locale not checked.',
'/etc/locale.conf');	'/etc/locale.conf');
	$earlyout = 1;
}	}
} elsif (!open($fh,"</etc/sysconfig/i18n")) {	} elsif (!open($fh,"</etc/sysconfig/i18n")) {
print &mt('Failed to open: [_1], default locale not checked.',	print &mt('Failed to open: [_1], default locale not checked.',
'/etc/sysconfig/i18n');	'/etc/sysconfig/i18n');
	$earlyout = 1;
}	}
} elsif ($distro =~ /^(?:rhes\|centos\|scientific)(\d+)/) {	} elsif ($distro =~ /^(?:rhes\|centos\|scientific\|oracle)(\d+)/) {
if ($1 >= 7) {	if ($1 >= 7) {
if (!open($fh,"</etc/locale.conf")) {	if (!open($fh,"</etc/locale.conf")) {
print &mt('Failed to open: [_1], default locale not checked.',	print &mt('Failed to open: [_1], default locale not checked.',
'/etc/locale.conf');	'/etc/locale.conf');
	$earlyout = 1;
}	}
} elsif (!open($fh,"</etc/sysconfig/i18n")) {	} elsif (!open($fh,"</etc/sysconfig/i18n")) {
print &mt('Failed to open: [_1], default locale not checked.',	print &mt('Failed to open: [_1], default locale not checked.',
'/etc/sysconfig/i18n');	'/etc/sysconfig/i18n');
	$earlyout = 1;
}	}
} else {	} else {
if (!open($fh,"</etc/sysconfig/i18n")) {	if (!open($fh,"</etc/sysconfig/i18n")) {
print &mt('Failed to open: [_1], default locale not checked.',	print &mt('Failed to open: [_1], default locale not checked.',
'/etc/sysconfig/i18n');	'/etc/sysconfig/i18n');
	$earlyout = 1;
}	}
}	}
	return if ($earlyout);
my @data = <$fh>;	my @data = <$fh>;
chomp(@data);	chomp(@data);
foreach my $item (@data) {	foreach my $item (@data) {
Line 426 sub check_locale {	Line 490 sub check_locale {
$command = 'sudo locale-gen en_US.UTF-8'."\n".	$command = 'sudo locale-gen en_US.UTF-8'."\n".
'sudo update-locale LANG=en_US.UTF-8';	'sudo update-locale LANG=en_US.UTF-8';
} elsif ($distro =~ /^(suse\|sles)/) {	} elsif ($distro =~ /^(suse\|sles)/) {
$command = 'yast language';	$command = 'yast language';
} else {	} elsif (-e '/usr/bin/system-config-language') {
$command = 'system-config-language';	$command = 'system-config-language';
	} elsif (-e '/usr/bin/localectl') {
	$command = '/usr/bin/localectl set-locale LANG=en_US.UTF-8';
	} else {
	$command = 'No standard command found';
}	}
}	}
last;	last;
Line 452 sub check_required {	Line 520 sub check_required {
unless ($localecmd eq '') {	unless ($localecmd eq '') {
return ($distro,$gotprereqs,$localecmd);	return ($distro,$gotprereqs,$localecmd);
}	}
my ($mysqlon,$mysqlsetup,$mysqlrestart,$dbh,$has_pass,$has_lcdb,%recommended,	my ($mysqlon,$mysqlsetup,$mysqlrestart,$dbh,$has_pass,$mysql_unix_socket,$has_lcdb,
$downloadstatus,$filetouse,$production,$testing,$apachefw,$tostop,	%recommended,$downloadstatus,$filetouse,$production,$testing,$apachefw,
$uses_systemctl,$hostname,$hostip);	$tostop,$uses_systemctl,$hostname,$hostip);
my $wwwuid = &uid_of_www();	my $wwwuid = &uid_of_www();
my $wwwgid = getgrnam('www');	my $wwwgid = getgrnam('www');
if (($wwwuid eq '') \|\| ($wwwgid eq '')) {	if (($wwwuid eq '') \|\| ($wwwgid eq '')) {
Line 485 sub check_required {	Line 553 sub check_required {
$mysqlon = &check_mysql_running($distro);	$mysqlon = &check_mysql_running($distro);
if ($mysqlon) {	if ($mysqlon) {
my $mysql_has_wwwuser = &check_mysql_wwwuser();	my $mysql_has_wwwuser = &check_mysql_wwwuser();
($mysqlsetup,$has_pass,$dbh,$mysql_has_wwwuser) =	($mysqlsetup,$has_pass,$dbh,$mysql_has_wwwuser,$mysql_unix_socket) =
&check_mysql_setup($instdir,$dsn,$distro,$mysql_has_wwwuser);	&check_mysql_setup($instdir,$dsn,$distro,$mysql_has_wwwuser);
if ($mysqlsetup eq 'needsrestart') {	if ($mysqlsetup eq 'needsrestart') {
$mysqlrestart = '';	$mysqlrestart = '';
Line 520 sub check_required {	Line 588 sub check_required {
($recommended{'download'},$downloadstatus,$filetouse,$production,$testing)	($recommended{'download'},$downloadstatus,$filetouse,$production,$testing)
= &need_download();	= &need_download();
return ($distro,$gotprereqs,$localecmd,$packagecmd,$updatecmd,$installnow,	return ($distro,$gotprereqs,$localecmd,$packagecmd,$updatecmd,$installnow,
$mysqlrestart,\%recommended,$dbh,$has_pass,$has_lcdb,$downloadstatus,	$mysqlrestart,\%recommended,$dbh,$has_pass,$mysql_unix_socket,
$filetouse,$production,$testing,$apachefw,$uses_systemctl,$hostname,	$has_lcdb,$downloadstatus,$filetouse,$production,$testing,$apachefw,
$hostip,$sslhostsfilesref,$has_std,$has_int,$rewritenum,$nochgstd,	$uses_systemctl,$hostname,$hostip,$sslhostsfilesref,$has_std,$has_int,
$nochgint);	$rewritenum,$nochgstd,$nochgint);
}	}

sub check_mysql_running {	sub check_mysql_running {
Line 549 sub check_mysql_running {	Line 617 sub check_mysql_running {
if ($1 >= 19) {	if ($1 >= 19) {
$mysqldaemon ='mariadb';	$mysqldaemon ='mariadb';
}	}
} elsif ($distro =~ /^(?:centos\|rhes\|scientific)(\d+)/) {	} elsif ($distro =~ /^(?:centos\|rhes\|scientific\|oracle)(\d+)/) {
if ($1 >= 7) {	if ($1 >= 7) {
$mysqldaemon ='mariadb';	$mysqldaemon ='mariadb';
$process = 'mysqld';	$process = 'mysqld';
Line 562 sub check_mysql_running {	Line 630 sub check_mysql_running {
$proc_owner = 'mysql';	$proc_owner = 'mysql';
$process = 'mysqld';	$process = 'mysqld';
}	}
	if ($1 >= 15) {
	$mysqldaemon ='mariadb';
	}
} elsif ($distro =~ /^suse(\d+)/) {	} elsif ($distro =~ /^suse(\d+)/) {
if ($1 >= 13) {	if ($1 >= 13) {
$use_systemctl = 1;	$use_systemctl = 1;
Line 645 sub chkconfig {	Line 716 sub chkconfig {
$uses_systemctl{'ntp'} = 1;	$uses_systemctl{'ntp'} = 1;
$uses_systemctl{'cups'} = 1;	$uses_systemctl{'cups'} = 1;
$uses_systemctl{'memcached'} = 1;	$uses_systemctl{'memcached'} = 1;
$daemon{'ntp'} = 'ntpd';	if (($name eq 'sles') && ($num >= 15)) {
	$daemon{'ntp'} = 'chronyd';
	$daemon{'mysql'} = 'mariadb';
	} else {
	$daemon{'ntp'} = 'ntpd';
	}
}	}
}	}
}	}
Line 668 sub chkconfig {	Line 744 sub chkconfig {
if (($distro =~ /^ubuntu/) && ($version <= 8)) {	if (($distro =~ /^ubuntu/) && ($version <= 8)) {
$daemon{'cups'} = 'cupsys';	$daemon{'cups'} = 'cupsys';
}	}
	if (($distro =~ /^ubuntu/) && ($version >= 18)) {
	$daemon{'ntp'} = 'chrony';
	}
} elsif ($distro =~ /^fedora(\d+)/) {	} elsif ($distro =~ /^fedora(\d+)/) {
my $version = $1;	my $version = $1;
if ($version >= 15) {	if ($version >= 15) {
Line 682 sub chkconfig {	Line 761 sub chkconfig {
if ($version >= 19) {	if ($version >= 19) {
$daemon{'mysql'} = 'mariadb';	$daemon{'mysql'} = 'mariadb';
}	}
} elsif ($distro =~ /^(?:centos\|rhes\|scientific)(\d+)/) {	if ($version >= 26) {
	$daemon{'ntp'} = 'chronyd';
	}
	} elsif ($distro =~ /^(?:centos\|rhes\|scientific\|oracle)(\d+)/) {
my $version = $1;	my $version = $1;
if ($version >= 7) {	if ($version >= 7) {
$uses_systemctl{'ntp'} = 1;	$uses_systemctl{'ntp'} = 1;
Line 692 sub chkconfig {	Line 774 sub chkconfig {
$uses_systemctl{'cups'} = 1;	$uses_systemctl{'cups'} = 1;
$daemon{'mysql'} = 'mariadb';	$daemon{'mysql'} = 'mariadb';
}	}
	if (($version >= 8) \|\| ($distro eq 'oracle7')) {
	$daemon{'ntp'} = 'chronyd';
	}
}	}
my $nocheck;	my $nocheck;
if (! -x $checker_bin) {	if (! -x $checker_bin) {
Line 775 sub chkconfig {	Line 860 sub chkconfig {
} else {	} else {
$major = $version;	$major = $version;
}	}
if ($major > 10) {	if (($major > 10) && ($major <= 13)) {
if (&check_SuSEfirewall2_setup($instdir)) {	if (&check_SuSEfirewall2_setup($instdir)) {
$needfix{'insserv'} = 1;	$needfix{'insserv'} = 1;
}	}
Line 784 sub chkconfig {	Line 869 sub chkconfig {
return (\%needfix,\%tostop,\%uses_systemctl);	return (\%needfix,\%tostop,\%uses_systemctl);
}	}

	sub uses_firewalld {
	my ($distro) = @_;
	my ($inuse,$checkfirewalld,$zone);
	if ($distro =~ /^(suse\|sles)([\d\.]+)$/) {
	if (($1 eq 'sles') && ($2 >= 15)) {
	$checkfirewalld = 1;
	}
	} elsif ($distro =~ /^fedora(\d+)$/) {
	if ($1 >= 18) {
	$checkfirewalld = 1;
	}
	} elsif ($distro =~ /^(?:centos\|rhes\|scientific\|oracle)(\d+)/) {
	if ($1 >= 7) {
	$checkfirewalld = 1;
	}
	}
	if ($checkfirewalld) {
	my ($loaded,$active);
	if (open(PIPE,"systemctl status firewalld \|")) {
	while (<PIPE>) {
	chomp();
	if (/^\s*Loaded:\s+(\w+)/) {
	$loaded = $1;
	}
	if (/^\s*Active\s+(\w+)/) {
	$active = $1;
	}
	}
	close(PIPE);
	}
	if (($loaded eq 'loaded') \|\| ($active eq 'active')) {
	$inuse = 1;
	my $cmd = 'firewall-cmd --get-default-zone';
	if (open(PIPE,"$cmd \|")) {
	my $result = <PIPE>;
	chomp($result);
	close(PIPE);
	if ($result =~ /^\w+$/) {
	$zone = $result;
	}
	}
	}
	}
	return ($inuse,$zone);
	}

sub chkfirewall {	sub chkfirewall {
my ($distro) = @_;	my ($distro) = @_;
my $configfirewall = 1;	my $configfirewall = 1;
Line 792 sub chkfirewall {	Line 923 sub chkfirewall {
https => 443,	https => 443,
);	);
my %activefw;	my %activefw;
if (&firewall_is_active()) {	my ($firewalld,$zone) = &uses_firewalld($distro);
my $iptables = &get_pathto_iptables();	if ($firewalld) {
if ($iptables eq '') {	my %current;
print &mt('Firewall not checked as path to iptables not determined.')."\n";	if (open(PIPE,'firewall-cmd --permanent --zone='.$zone.' --list-services \|')) {
} else {	my $svc = <PIPE>;
my @fwchains = &get_fw_chains($iptables,$distro);	close(PIPE);
if (@fwchains) {	chomp($svc);
foreach my $service ('http','https') {	map { $current{$_} = 1; } (split(/\s+/,$svc));
foreach my $fwchain (@fwchains) {	}
if (&firewall_is_port_open($iptables,$fwchain,$ports{$service})) {	if ($current{'http'} && $current{'https'}) {
$activefw{$service} = 1;	$configfirewall = 0;
last;	}
	} else {
	if (&firewall_is_active()) {
	my $iptables = &get_pathto_iptables();
	if ($iptables eq '') {
	print &mt('Firewall not checked as path to iptables not determined.')."\n";
	} else {
	my @fwchains = &get_fw_chains($iptables,$distro);
	if (@fwchains) {
	foreach my $service ('http','https') {
	foreach my $fwchain (@fwchains) {
	if (&firewall_is_port_open($iptables,$fwchain,$ports{$service})) {
	$activefw{$service} = 1;
	last;
	}
}	}
}	}
	if ($activefw{'http'}) {
	$configfirewall = 0;
	}
	} else {
	print &mt('Firewall not checked as iptables Chains not identified.')."\n";
}	}
if ($activefw{'http'}) {
$configfirewall = 0;
}
} else {
print &mt('Firewall not checked as iptables Chains not identified.')."\n";
}	}
	} else {
	print &mt('Firewall not enabled.')."\n";
}	}
} else {
print &mt('Firewall not enabled.')."\n";
}	}
return ($configfirewall,\%activefw);	return ($configfirewall,\%activefw);
}	}
Line 839 sub chkapache {	Line 984 sub chkapache {
} else {	} else {
my ($configfile,$sitefile);	my ($configfile,$sitefile);
if (($distname eq 'ubuntu') && ($version > 12)) {	if (($distname eq 'ubuntu') && ($version > 12)) {
$sitefile = '/etc/apache2/sites-available/loncapa';	$sitefile = '/etc/apache2/sites-available/loncapa.conf';
$configfile = "/etc/apache2/conf-available/loncapa";	$configfile = '/etc/apache2/conf-available/loncapa.conf';
} else {	} else {
$configfile = "/etc/apache2/sites-available/loncapa";	$configfile = '/etc/apache2/sites-available/loncapa';
}	}
if (($configfile ne '') && (-e $configfile) && (-e $stdconf)) {	if (($configfile ne '') && (-e $configfile) && (-e $stdconf)) {
if (open(PIPE, "diff --brief $stdconf $configfile \|")) {	if (open(PIPE, "diff --brief $stdconf $configfile \|")) {
Line 874 sub chkapache {	Line 1019 sub chkapache {
}	}
}	}
}	}
} elsif ($distro =~ /^(?:suse\|sles)([\d\.]+)$/) {	if ((!$fixapache) && ($distname eq 'ubuntu')) {
	my $sitestatus = "/etc/apache2/mods-available/status.conf";
	my $stdstatus = "$instdir/debian-ubuntu/status.conf";
	if ((-e $stdstatus) && (-e $sitestatus)) {
	if (open(PIPE, "diff --brief $stdstatus $sitestatus \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	$fixapache = 1;
	}
	}
	}
	}
	} elsif ($distro =~ /^(suse\|sles)([\d\.]+)$/) {
	my ($name,$version) = ($1,$2);
my $apache = 'apache';	my $apache = 'apache';
if ($1 >= 10) {	my $conf_file = "$instdir/sles-suse/default-server.conf";
	if ($version >= 10) {
$apache = 'apache2';	$apache = 'apache2';
}	}
if (!-e "$instdir/sles-suse/default-server.conf") {	if (($name eq 'sles') && ($version >= 12)) {
	$conf_file = "$instdir/sles-suse/apache2.4/default-server.conf";
	}
	if (!-e $conf_file) {
$fixapache = 0;	$fixapache = 0;
print &mt('Warning: No LON-CAPA Apache configuration file found for installation check.')."\n";	print &mt('Warning: No LON-CAPA Apache configuration file found for installation check.')."\n";
} elsif ((-e "/etc/$apache/default-server.conf") && (-e "$instdir/sles-suse/default-server.conf")) {	} elsif (-e "/etc/$apache/default-server.conf") {
if (open(PIPE, "diff --brief $instdir/sles-suse/default-server.conf /etc/$apache/default-server.conf \|")) {	if (open(PIPE, "diff --brief $conf_file /etc/$apache/default-server.conf \|")) {
my $diffres = <PIPE>;	my $diffres = <PIPE>;
close(PIPE);	close(PIPE);
chomp($diffres);	chomp($diffres);
Line 908 sub chkapache {	Line 1072 sub chkapache {
}	}
} else {	} else {
my $configfile = 'httpd.conf';	my $configfile = 'httpd.conf';
if ($distro =~ /^(?:centos\|rhes\|scientific)(\d+)$/) {	my $mpmfile = 'mpm.conf';
	if ($distro =~ /^(?:centos\|rhes\|scientific\|oracle)(\d+)$/) {
if ($1 >= 7) {	if ($1 >= 7) {
$configfile = 'apache2.4/httpd.conf';	$configfile = 'apache2.4/httpd.conf';
} elsif ($1 > 5) {	} elsif ($1 > 5) {
Line 916 sub chkapache {	Line 1081 sub chkapache {
}	}
} elsif ($distro =~ /^fedora(\d+)$/) {	} elsif ($distro =~ /^fedora(\d+)$/) {
if ($1 > 17) {	if ($1 > 17) {
$configfile = 'apache2.4/httpd.conf';	$configfile = 'apache2.4/httpd.conf';
} elsif ($1 > 10) {	} elsif ($1 > 10) {
$configfile = 'new/httpd.conf';	$configfile = 'new/httpd.conf';
}	}
Line 934 sub chkapache {	Line 1099 sub chkapache {
}	}
}	}
}	}
	if (-e "/etc/httpd/conf.modules.d/00-mpm.conf") {
	if (!-e "$instdir/centos-rhes-fedora-sl/$mpmfile") {
	print &mt('Warning: No LON-CAPA Apache MPM configuration file found for installation check.')."\n";
	} elsif ((-e "/etc/httpd/conf.modules.d/00-mpm.conf") && (-e "$instdir/centos-rhes-fedora-sl/$mpmfile")) {
	if (open(PIPE, "diff --brief $instdir/centos-rhes-fedora-sl/$mpmfile /etc/httpd/conf.modules.d/00-mpm.conf \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	$fixapache = 1;
	}
	}
	}
	}
}	}
return $fixapache;	return $fixapache;
}	}
Line 1352 sub need_download {	Line 1531 sub need_download {

sub check_mysql_setup {	sub check_mysql_setup {
my ($instdir,$dsn,$distro,$mysql_has_wwwuser) = @_;	my ($instdir,$dsn,$distro,$mysql_has_wwwuser) = @_;
my ($mysqlsetup,$has_pass);	my ($mysqlsetup,$has_pass,$mysql_unix_socket);
my $dbh = DBI->connect($dsn,'root','',{'PrintError'=>0});	my $dbh = DBI->connect($dsn,'root','',{'PrintError'=>0});
	my ($mysqlversion,$mysqlsubver,$mysqlname) = &get_mysql_version();
	if (($mysqlname =~ /^MariaDB/i) && ($mysqlversion >= 10.4)) {
	if ($dbh) {
	my $sth = $dbh->prepare("SELECT Priv FROM mysql.global_priv WHERE (User = 'root' AND Host ='localhost')");
	$sth->execute();
	while (my $priv = $sth->fetchrow_array) {
	if ($priv =~ /unix_socket/) {
	$mysql_unix_socket = 1;
	last;
	}
	}
	$sth->finish();
	if ($mysql_unix_socket) {
	print_and_log(&mt('MariaDB using unix_socket for root access from localhost.')."\n");
	$mysqlsetup = 'rootok';
	$mysql_unix_socket = 1;
	unless ($mysql_has_wwwuser) {
	$mysql_has_wwwuser = &check_mysql_wwwuser();
	}
	return ($mysqlsetup,$has_pass,$dbh,$mysql_has_wwwuser,$mysql_unix_socket);
	}
	}
	}
if ($dbh) {	if ($dbh) {
$mysqlsetup = 'noroot';	$mysqlsetup = 'noroot';
} elsif ($DBI::err =~ /1045/) {	} elsif ($DBI::err =~ /1045/) {
Line 1456 sub get_pathto_iptables {	Line 1658 sub get_pathto_iptables {

sub firewall_is_active {	sub firewall_is_active {
if (-e '/proc/net/ip_tables_names') {	if (-e '/proc/net/ip_tables_names') {
return 1;	if (open(PIPE,'cat /proc/net/ip_tables_names \|grep filter \|')) {
} else {	my $status = <PIPE>;
return 0;	close(PIPE);
	chomp($status);
	if ($status eq 'filter') {
	return 1;
	}
	}
}	}
	return 0;
}	}

sub get_fw_chains {	sub get_fw_chains {
Line 1475 sub get_fw_chains {	Line 1683 sub get_fw_chains {
@posschains = ('ufw-user-input','INPUT');	@posschains = ('ufw-user-input','INPUT');
} elsif ($distro =~ /^debian5/) {	} elsif ($distro =~ /^debian5/) {
@posschains = ('INPUT');	@posschains = ('INPUT');
	} elsif ($distro =~ /^(suse\|sles)(\d+)/) {
	@posschains = ('IN_public');
} else {	} else {
@posschains = ('RH-Firewall-1-INPUT','INPUT');	@posschains = ('RH-Firewall-1-INPUT','INPUT');
if (!-e '/etc/sysconfig/iptables') {	if (!-e '/etc/sysconfig/iptables') {
Line 1670 print "\n".&mt('Checking system status .	Line 1880 print "\n".&mt('Checking system status .

my $dsn = "DBI:mysql:database=mysql";	my $dsn = "DBI:mysql:database=mysql";
my ($distro,$gotprereqs,$localecmd,$packagecmd,$updatecmd,$installnow,$mysqlrestart,	my ($distro,$gotprereqs,$localecmd,$packagecmd,$updatecmd,$installnow,$mysqlrestart,
$recommended,$dbh,$has_pass,$has_lcdb,$downloadstatus,$filetouse,$production,	$recommended,$dbh,$has_pass,$mysql_unix_socket,$has_lcdb,$downloadstatus,
$testing,$apachefw,$uses_systemctl,$hostname,$hostip,$sslhostsfiles,$has_std,	$filetouse,$production,$testing,$apachefw,$uses_systemctl,$hostname,$hostip,
$has_int,$rewritenum,$nochgstd,$nochgint) = &check_required($instdir,$dsn);	$sslhostsfiles,$has_std,$has_int,$rewritenum,$nochgstd,$nochgint) =
	&check_required($instdir,$dsn);
if ($distro eq '') {	if ($distro eq '') {
print "\n".&mt('Linux distribution could not be verified as a supported distribution.')."\n".	print "\n".&mt('Linux distribution could not be verified as a supported distribution.')."\n".
&mt('The following are supported: [_1].',	&mt('The following are supported: [_1].',
'CentOS, RedHat Enterprise, Fedora, Scientific Linux, '.	'CentOS, RedHat Enterprise, Fedora, Scientific Linux, '.
'openSuSE, SLES, Ubuntu LTS, Debian')."\n\n".	'Oracle Linux, openSuSE, SLES, Ubuntu LTS, Debian')."\n\n".
&mt('Stopping execution.')."\n";	&mt('Stopping execution.')."\n";
exit;	exit;
}	}
Line 1714 if (!$gotprereqs) {	Line 1925 if (!$gotprereqs) {
exit;	exit;
} else {	} else {
($distro,$gotprereqs,$localecmd,$packagecmd,$updatecmd,$installnow,	($distro,$gotprereqs,$localecmd,$packagecmd,$updatecmd,$installnow,
$mysqlrestart,$recommended,$dbh,$has_pass,$has_lcdb,$downloadstatus,	$mysqlrestart,$recommended,$dbh,$has_pass,$mysql_unix_socket,
$filetouse,$production,$testing,$apachefw,$uses_systemctl) =	$has_lcdb,$downloadstatus,$filetouse,$production,$testing,$apachefw,
&check_required($instdir,$dsn);	$uses_systemctl,$hostname,$hostip,$sslhostsfiles,$has_std,$has_int,
	$rewritenum,$nochgstd,$nochgint) = &check_required($instdir,$dsn);
}	}
} else {	} else {
print &mt('Failed to run command to install LONCAPA-prerequisites')."\n";	print &mt('Failed to run command to install LONCAPA-prerequisites')."\n";
Line 1813 if ($callsub{'pwauth'}) {	Line 2025 if ($callsub{'pwauth'}) {

if ($callsub{'mysql'}) {	if ($callsub{'mysql'}) {
if ($dbh) {	if ($dbh) {
&setup_mysql($callsub{'mysqlperms'},$distro,$dbh,$has_pass,$has_lcdb);	&setup_mysql($callsub{'mysqlperms'},$dbh,$has_pass,
	$mysql_unix_socket,$has_lcdb);
} else {	} else {
print &mt('Unable to configure MySQL because access is denied.')."\n";	print &mt('Unable to configure MySQL because access is denied.')."\n";
}	}
Line 1821 if ($callsub{'mysql'}) {	Line 2034 if ($callsub{'mysql'}) {
&print_and_log(&mt('Skipping configuration of MySQL.')."\n");	&print_and_log(&mt('Skipping configuration of MySQL.')."\n");
if ($callsub{'mysqlperms'}) {	if ($callsub{'mysqlperms'}) {
if ($dbh) {	if ($dbh) {
&setup_mysql_permissions($dbh,$has_pass);	&setup_mysql_permissions($dbh,$has_pass,$mysql_unix_socket);
} else {	} else {
print &mt('Unable to configure MySQL because access is denied.')."\n";	print &mt('Unable to configure MySQL because access is denied.')."\n";
}	}
Line 1839 if ($dbh) {	Line 2052 if ($dbh) {

if ($callsub{'apache'}) {	if ($callsub{'apache'}) {
if ($distro =~ /^(suse\|sles)/) {	if ($distro =~ /^(suse\|sles)/) {
&copy_apache2_suseconf($instdir,$hostname);	&copy_apache2_suseconf($instdir,$hostname,$distro);
} elsif ($distro =~ /^(debian\|ubuntu)/) {	} elsif ($distro =~ /^(debian\|ubuntu)/) {
&copy_apache2_debconf($instdir,$distro,$hostname);	&copy_apache2_debconf($instdir,$distro,$hostname);
} else {	} else {
&copy_httpd_conf($instdir,$distro,$hostname);	&copy_httpd_conf($instdir,$distro,$hostname);
	&copy_mpm_conf($instdir,$distro);
}	}
} else {	} else {
print_and_log(&mt('Skipping configuration of Apache web server.')."\n");	print_and_log(&mt('Skipping configuration of Apache web server.')."\n");
Line 1903 if ($callsub{'runlevels'}) {	Line 2117 if ($callsub{'runlevels'}) {
}	}
}	}
}	}
if ($distro =~ /^(suse\|sles)/) {	if ($distro =~ /^(suse\|sles)(\d+)/) {
&update_SuSEfirewall2_setup($instdir);	unless(($1 eq 'sles') && ($2 >= 15)) {
	&update_SuSEfirewall2_setup($instdir);
	}
}	}
} else {	} else {
&print_and_log(&mt('Skipping setting override for start-up order of services.')."\n");	&print_and_log(&mt('Skipping setting override for start-up order of services.')."\n");
}	}

if ($callsub{'firewall'}) {	if ($callsub{'firewall'}) {
if ($distro =~ /^(suse\|sles)/) {	my ($firewalld,$zone) = &uses_firewalld($distro);
	if ($firewalld) {
	my (%current,%added);
	if (open(PIPE,"firewall-cmd --permanent --zone=$zone --list-services \|")) {
	my $svc = <PIPE>;
	close(PIPE);
	chomp($svc);
	map { $current{$_} = 1; } (split(/\s+/,$svc));
	}
	foreach my $service ('http','https') {
	unless ($current{$service}) {
	if (open(PIPE,"firewall-cmd --permanent --zone=$zone --add-service=$service \|")) {
	my $result = <PIPE>;
	if ($result =~ /^success/) {
	$added{$service} = 1;
	}
	}
	}
	}
	if (keys(%added) > 0) {
	print &mt('Firewall configured to allow access for: [_1].',
	join(', ',sort(keys(%added))))."\n";
	}
	if ($current{'http'} \|\| $current{'https'}) {
	print &mt('Firewall already configured to allow access for:[_1].',
	(($current{'http'})? ' http':'').(($current{'https'})? ' https':''))."\n";
	}
	unless ($current{'ssh'}) {
	print &mt('If you would the like to allow access to ssh from outside, use the command[_1].',
	"firewall-cmd --permanent --zone=$zone --add-service=ssh")."\n";
	}
	} elsif ($distro =~ /^(suse\|sles)/) {
print &mt('Use [_1] to configure the firewall to allow access for [_2].',	print &mt('Use [_1] to configure the firewall to allow access for [_2].',
'yast -- Security and Users -> Firewall -> Interfaces',	'yast -- Security and Users -> Firewall -> Interfaces',
'ssh, http, https')."\n";	'ssh, http, https')."\n";
} elsif ($distro =~ /^(debian\|ubuntu)(\d+)/) {	} elsif ($distro =~ /^(debian\|ubuntu)(\d+)/) {
if (($1 eq 'ubuntu') \|\| ($2 > 5)) {	if (($1 eq 'ubuntu') \|\| ($2 > 5)) {
print &mt('Use [_1] to configure the firewall to allow access for [_2].',	print &mt('Use [_1] to configure the firewall to allow access for [_2].',
Line 1931 if ($callsub{'firewall'}) {	Line 2178 if ($callsub{'firewall'}) {
}	}
}	}
}	}
} elsif ($distro =~ /^scientific/) {	} elsif ($distro =~ /^(scientific\|oracle)/) {
print &mt('Use [_1] to configure the firewall to allow access for [_2].',	print &mt('Use [_1] to configure the firewall to allow access for [_2].',
'system-config-firewall-tui -- Customize',	'system-config-firewall-tui -- Customize',
'ssh, http')."\n";	'ssh, http')."\n";
} else {	} else {
print &mt('Use [_1] to configure the firewall to allow access for [_2].',	my $version;
'setup -- Firewall configuration -> Customize',	if ($distro =~ /^(redhat\|centos)(\d+)$/) {
'ssh, http, https')."\n";	$version = $1;
	}
	if ($version > 5) {
	print &mt('Use [_1] to configure the firewall to allow access for [_2].',
	'system-config-firewall-tui -- Customize',
	'ssh, http')."\n";
	} else {
	print &mt('Use [_1] to configure the firewall to allow access for [_2].',
	'setup -- Firewall configuration -> Customize',
	'ssh, http, https')."\n";
	}
}	}
} else {	} else {
&print_and_log(&mt('Skipping Firewall configuration.')."\n");	&print_and_log(&mt('Skipping Firewall configuration.')."\n");
Line 2197 sub kill_extra_services {	Line 2454 sub kill_extra_services {
}	}

sub setup_mysql {	sub setup_mysql {
my ($setup_mysql_permissions,$distro,$dbh,$has_pass,$has_lcdb) = @_;	my ($setup_mysql_permissions,$dbh,$has_pass,$mysql_unix_socket,$has_lcdb) = @_;
my @mysql_lc_commands;	my @mysql_lc_commands;
unless ($has_lcdb) {	unless ($has_lcdb) {
push(@mysql_lc_commands,"CREATE DATABASE loncapa");	push(@mysql_lc_commands,"CREATE DATABASE loncapa");
Line 2207 sub setup_mysql {	Line 2464 sub setup_mysql {
CREATE TABLE IF NOT EXISTS metadata (title TEXT, author TEXT, subject TEXT, url TEXT, keywords TEXT, version TEXT, notes TEXT, abstract TEXT, mime TEXT, language TEXT, creationdate DATETIME, lastrevisiondate DATETIME, owner TEXT, copyright TEXT, domain TEXT, dependencies TEXT, modifyinguser TEXT, authorspace TEXT, lowestgradelevel TEXT, highestgradelevel TEXT, standards TEXT, count INT, course INT, course_list TEXT, goto INT, goto_list TEXT, comefrom INT, comefrom_list TEXT, sequsage INT, sequsage_list TEXT, stdno INT, stdno_list TEXT, avetries FLOAT, avetries_list TEXT, difficulty FLOAT, difficulty_list TEXT, disc FLOAT, disc_list TEXT, clear FLOAT, technical FLOAT, correct FLOAT, helpful FLOAT, depth FLOAT, hostname TEXT, FULLTEXT idx_title (title), FULLTEXT idx_author (author), FULLTEXT idx_subject (subject), FULLTEXT idx_url (url), FULLTEXT idx_keywords (keywords), FULLTEXT idx_version (version), FULLTEXT idx_notes (notes), FULLTEXT idx_abstract (abstract), FULLTEXT idx_mime (mime), FULLTEXT idx_language (language), FULLTEXT idx_owner (owner), FULLTEXT idx_copyright (copyright)) ENGINE=MYISAM	CREATE TABLE IF NOT EXISTS metadata (title TEXT, author TEXT, subject TEXT, url TEXT, keywords TEXT, version TEXT, notes TEXT, abstract TEXT, mime TEXT, language TEXT, creationdate DATETIME, lastrevisiondate DATETIME, owner TEXT, copyright TEXT, domain TEXT, dependencies TEXT, modifyinguser TEXT, authorspace TEXT, lowestgradelevel TEXT, highestgradelevel TEXT, standards TEXT, count INT, course INT, course_list TEXT, goto INT, goto_list TEXT, comefrom INT, comefrom_list TEXT, sequsage INT, sequsage_list TEXT, stdno INT, stdno_list TEXT, avetries FLOAT, avetries_list TEXT, difficulty FLOAT, difficulty_list TEXT, disc FLOAT, disc_list TEXT, clear FLOAT, technical FLOAT, correct FLOAT, helpful FLOAT, depth FLOAT, hostname TEXT, FULLTEXT idx_title (title), FULLTEXT idx_author (author), FULLTEXT idx_subject (subject), FULLTEXT idx_url (url), FULLTEXT idx_keywords (keywords), FULLTEXT idx_version (version), FULLTEXT idx_notes (notes), FULLTEXT idx_abstract (abstract), FULLTEXT idx_mime (mime), FULLTEXT idx_language (language), FULLTEXT idx_owner (owner), FULLTEXT idx_copyright (copyright)) ENGINE=MYISAM
});	});
if ($setup_mysql_permissions) {	if ($setup_mysql_permissions) {
&setup_mysql_permissions($dbh,$has_pass,@mysql_lc_commands);	&setup_mysql_permissions($dbh,$has_pass,$mysql_unix_socket,@mysql_lc_commands);
} else {	} else {
print_and_log(&mt('Skipping MySQL permissions setup.')."\n");	print_and_log(&mt('Skipping MySQL permissions setup.')."\n");
if ($dbh) {	if ($dbh) {
Line 2224 CREATE TABLE IF NOT EXISTS metadata (tit	Line 2481 CREATE TABLE IF NOT EXISTS metadata (tit
}	}

sub setup_mysql_permissions {	sub setup_mysql_permissions {
my ($dbh,$has_pass,@mysql_lc_commands) = @_;	my ($dbh,$has_pass,$mysql_unix_socket,@mysql_lc_commands) = @_;
my ($mysqlversion,$mysqlsubver,$mysqlname) = &get_mysql_version();	my ($mysqlversion,$mysqlsubver,$mysqlname) = &get_mysql_version();
my ($usesauth,$hasauthcol,@mysql_commands);	my ($usescreate,$usesauth,$is_mariadb,$hasauthcol,@mysql_commands);
if ($mysqlname =~ /^MariaDB/i) {	if ($mysqlname =~ /^MariaDB/i) {
if ($mysqlversion >= 10.2) {	$is_mariadb = 1;
	if ($mysqlversion >= 10.4) {
	$usescreate = 1;
	} elsif ($mysqlversion >= 10.2) {
$usesauth = 1;	$usesauth = 1;
} elsif ($mysqlversion >= 5.5) {	} elsif ($mysqlversion >= 5.5) {
$hasauthcol = 1;	$hasauthcol = 1;
Line 2240 sub setup_mysql_permissions {	Line 2500 sub setup_mysql_permissions {
$hasauthcol = 1;	$hasauthcol = 1;
}	}
}	}
if ($usesauth) {	if ($usescreate) {
@mysql_commands = ("INSERT user (Host, User, ssl_cipher, x509_issuer, x509_subject, authentication_string) VALUES('localhost','www','','','','')",	@mysql_commands = ("CREATE USER 'www'\@'localhost' IDENTIFIED BY 'localhostkey'");
"ALTER USER 'www'\@'localhost' IDENTIFIED WITH mysql_native_password BY 'localhostkey'");	} elsif ($usesauth) {
	@mysql_commands = ("INSERT user (Host, User, ssl_cipher, x509_issuer, x509_subject, authentication_string) VALUES('localhost','www','','','','')");
	if ($is_mariadb) {
	push(@mysql_commands,"ALTER USER 'www'\@'localhost' IDENTIFIED BY 'localhostkey'");
	} else {
	push(@mysql_commands,"ALTER USER 'www'\@'localhost' IDENTIFIED WITH mysql_native_password BY 'localhostkey'");
	}
} elsif ($hasauthcol) {	} elsif ($hasauthcol) {
@mysql_commands = ("INSERT user (Host, User, Password, ssl_cipher, x509_issuer, x509_subject, authentication_string) VALUES('localhost','www',password('localhostkey'),'','','','');");	@mysql_commands = ("INSERT user (Host, User, Password, ssl_cipher, x509_issuer, x509_subject, authentication_string) VALUES('localhost','www',password('localhostkey'),'','','','');");
} else {	} else {
Line 2256 INSERT db (Host,Db,User,Select_priv,Inse	Line 2522 INSERT db (Host,Db,User,Select_priv,Inse
INSERT db (Host,Db,User,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Create_tmp_table_priv,Lock_tables_priv) VALUES('localhost','loncapa','www','Y','Y','Y','Y','Y','Y','N','Y','Y','Y','Y','Y')");	INSERT db (Host,Db,User,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv,Grant_priv,References_priv,Index_priv,Alter_priv,Create_tmp_table_priv,Lock_tables_priv) VALUES('localhost','loncapa','www','Y','Y','Y','Y','Y','Y','N','Y','Y','Y','Y','Y')");
}	}
push(@mysql_commands,"DELETE FROM user WHERE host<>'localhost'");	push(@mysql_commands,"DELETE FROM user WHERE host<>'localhost'");
if ($has_pass) {	if (($has_pass) \|\| ($mysql_unix_socket)) {
if ($dbh) {	if ($dbh) {
push(@mysql_commands,"FLUSH PRIVILEGES");	push(@mysql_commands,"FLUSH PRIVILEGES");
if (@mysql_commands) {	if (@mysql_commands) {
Line 2297 INSERT db (Host,Db,User,Select_priv,Inse	Line 2563 INSERT db (Host,Db,User,Select_priv,Inse
}	}
}	}
if ($got_passwd) {	if ($got_passwd) {
my (@newpass_cmds) = &new_mysql_rootpasswd($newmysqlpass,$usesauth);	my (@newpass_cmds) = &new_mysql_rootpasswd($newmysqlpass,$usesauth,$is_mariadb);
push(@mysql_commands,@newpass_cmds);	push(@mysql_commands,@newpass_cmds);
} else {	} else {
print_and_log(&mt('Failed to get MySQL root password from user input.')."\n");	print_and_log(&mt('Failed to get MySQL root password from user input.')."\n");
Line 2327 INSERT db (Host,Db,User,Select_priv,Inse	Line 2593 INSERT db (Host,Db,User,Select_priv,Inse
}	}

sub new_mysql_rootpasswd {	sub new_mysql_rootpasswd {
my ($currmysqlpass,$usesauth) = @_;	my ($currmysqlpass,$usesauth,$is_mariadb) = @_;
if ($usesauth) {	if ($usesauth) {
return ("ALTER USER 'root'\@'localhost' IDENTIFIED WITH mysql_native_password BY '$currmysqlpass'",	if ($is_mariadb) {
"FLUSH PRIVILEGES;");	return ("ALTER USER 'root'\@'localhost' IDENTIFIED BY '$currmysqlpass'",
	"FLUSH PRIVILEGES;");
	} else {
	return ("ALTER USER 'root'\@'localhost' IDENTIFIED WITH mysql_native_password BY '$currmysqlpass'",
	"FLUSH PRIVILEGES;");
	}
} else {	} else {
return ("SET PASSWORD FOR 'root'\@'localhost'=PASSWORD('$currmysqlpass')",	return ("SET PASSWORD FOR 'root'\@'localhost'=PASSWORD('$currmysqlpass')",
"FLUSH PRIVILEGES;");	"FLUSH PRIVILEGES;");
Line 2343 sub get_mysql_version {	Line 2614 sub get_mysql_version {
my $info = <PIPE>;	my $info = <PIPE>;
chomp($info);	chomp($info);
close(PIPE);	close(PIPE);
($version,$subversion,$name) = ($info =~ /(\d+\.\d+)\.(\d+)\-?(\w*),/);	($version,$subversion,$name) = ($info =~ /(\d+\.\d+)\.(\d+)(?:\-?(\w*),\|)/);
} else {	} else {
print &mt('Could not determine which version of MySQL is installed.').	print &mt('Could not determine which version of MySQL is installed.').
"\n";	"\n";
Line 2361 sub get_mysql_version {	Line 2632 sub get_mysql_version {
sub copy_httpd_conf {	sub copy_httpd_conf {
my ($instdir,$distro,$hostname) = @_;	my ($instdir,$distro,$hostname) = @_;
my $configfile = 'httpd.conf';	my $configfile = 'httpd.conf';
if ($distro =~ /^(?:centos\|rhes\|scientific)(\d+)$/) {	if ($distro =~ /^(?:centos\|rhes\|scientific\|oracle)(\d+)$/) {
if ($1 >= 7) {	if ($1 >= 7) {
$configfile = 'apache2.4/httpd.conf';	$configfile = 'apache2.4/httpd.conf';
} elsif ($1 > 5) {	} elsif ($1 > 5) {
Line 2382 sub copy_httpd_conf {	Line 2653 sub copy_httpd_conf {
print_and_log("\n");	print_and_log("\n");
}	}

	###########################################################
	##
	## RHEL/CentOS/Fedora/Scientific Linux
	## Copy LON-CAPA mpm.conf to /etc/httpd/conf.modules.d/00-mpm.conf
	##
	## The LON-CAPA mpm.conf enables the prefork MPM module in
	## Apache. This is also the default for RHEL/CentOS/Oracle
	## Linux 7 and earlier, and Fedora 26 and earlier. For more
	## recent versions of those distros, the event MPM is enabled
	## by default. After &copy_mpm_conf() is run, the prefork MPM
	## module will be enabled instead of the event MPM module.
	##
	###########################################################

	sub copy_mpm_conf {
	my ($instdir,$distro) = @_;
	my $mpmfile = 'mpm.conf';
	if ((-e "/etc/httpd/conf.modules.d/00-mpm.conf") &&
	(-e "$instdir/centos-rhes-fedora-sl/$mpmfile")) {
	print_and_log(&mt('Copying the LON-CAPA [_1] to [_2].',"'mpm.conf'",
	"'/etc/httpd/conf.modules.d/00-mpm.conf'")."\n");
	copy "$instdir/centos-rhes-fedora-sl/$mpmfile","/etc/httpd/conf.modules.d/00-mpm.conf";
	chmod(0644,"/etc/httpd/conf.modules.d/00-mpm.conf");
	print_and_log("\n");
	} else {
	my $logfail;
	if ($distro =~ /^(?:centos\|rhes\|scientific\|oracle)(\d+)$/) {
	if ($1 > 7) {
	$logfail = 1;
	}
	} elsif ($distro =~ /^fedora(\d+)$/) {
	if ($1 > 26) {
	$logfail = 1;
	}
	}
	if ($logfail) {
	print_and_log(&mt('Warning: copying the LON-CAPA [_1] failed because [_2] and/or [_3] are missing.',
	$mpmfile,"'$instdir/centos-rhes-fedora-sl/$mpmfile'",
	"'/etc/httpd/conf.modules.d/00-mpm.conf'"));
	print_and_log("\n");
	}
	}
	}

###############################################	###############################################
##	##
## Copy loncapassl.conf and sslrewrite.conf	## Copy loncapassl.conf and sslrewrite.conf
Line 2879 sub copy_apache2_debconf {	Line 3194 sub copy_apache2_debconf {
my $apache2_sites_enabled_dir = '/etc/apache2/sites-enabled';	my $apache2_sites_enabled_dir = '/etc/apache2/sites-enabled';
my $apache2_sites_available_dir = '/etc/apache2/sites-available';	my $apache2_sites_available_dir = '/etc/apache2/sites-available';
my $defaultconfig = "$apache2_sites_enabled_dir/000-default";	my $defaultconfig = "$apache2_sites_enabled_dir/000-default";
	my $defaultsite = "$apache2_sites_enabled_dir/loncapa.conf";
my ($distname,$version);	my ($distname,$version);
if ($distro =~ /^(debian\|ubuntu)(\d+)$/) {	if ($distro =~ /^(debian\|ubuntu)(\d+)$/) {
$distname = $1;	$distname = $1;
Line 2887 sub copy_apache2_debconf {	Line 3203 sub copy_apache2_debconf {
if (($distname eq 'ubuntu') && ($version > 12)) {	if (($distname eq 'ubuntu') && ($version > 12)) {
$defaultconfig = "$apache2_sites_enabled_dir/000-default.conf";	$defaultconfig = "$apache2_sites_enabled_dir/000-default.conf";
}	}
if (-l $defaultconfig) {	my ($skipconf,$skipsite,$skipstatus);
unlink($defaultconfig);
}
if (($distname eq 'ubuntu') && ($version > 12)) {	if (($distname eq 'ubuntu') && ($version > 12)) {
print_and_log(&mt('Copying loncapa [_1] config file to [_2] and pointing [_3] to it from conf-enabled.',"'apache2'","'/etc/apache2/conf-available'","'loncapa.conf symlink'")."\n");
my $apache2_conf_enabled_dir = '/etc/apache2/conf-enabled';	my $apache2_conf_enabled_dir = '/etc/apache2/conf-enabled';
my $apache2_conf_available_dir = '/etc/apache2/conf-available';	my $apache2_conf_available_dir = '/etc/apache2/conf-available';
if (-e "$apache2_conf_available_dir/loncapa") {
copy("$apache2_conf_available_dir/loncapa","$apache2_conf_available_dir/loncapa.original");
}
my $defaultconf = $apache2_conf_enabled_dir.'/loncapa.conf';	my $defaultconf = $apache2_conf_enabled_dir.'/loncapa.conf';
copy("$instdir/debian-ubuntu/ubuntu14/loncapa_conf","$apache2_conf_available_dir/loncapa");	if ((-e "$apache2_conf_available_dir/loncapa") && (-e "$instdir/debian-ubuntu/ubuntu14/loncapa_conf")) {
chmod(0444,"$apache2_conf_available_dir/loncapa");	if (open(PIPE, "diff --brief $apache2_conf_available_dir/loncapa $instdir/debian-ubuntu/ubuntu14/loncapa_conf \|")) {
if (-l $defaultconf) {	my $diffres = <PIPE>;
unlink($defaultconf);	close(PIPE);
}	chomp($diffres);
symlink("$apache2_conf_available_dir/loncapa","$defaultconf");	if ($diffres) {
print_and_log(&mt('Copying loncapa [_1] site file to [_2] and pointing [_3] to it from sites-enabled.',"'apache2'","'/etc/apache2/sites-available'","'000-default.conf symlink'")."\n");	copy("$apache2_conf_available_dir/loncapa","$apache2_conf_available_dir/loncapa.conf.original");
copy("$instdir/debian-ubuntu/ubuntu14/loncapa_site","$apache2_sites_available_dir/loncapa");	} else {
chmod(0444,"$apache2_sites_available_dir/loncapa");	copy("$apache2_conf_available_dir/loncapa","$apache2_conf_available_dir/loncapa.conf");
symlink("$apache2_sites_available_dir/loncapa","$defaultconfig");	chdir($apache2_conf_enabled_dir);
} else {	symlink('../conf-available/loncapa.conf','loncapa.conf');
print_and_log(&mt('Copying loncapa [_1] config file to [_2] and pointing [_3] to it from sites-enabled.',"'apache2'","'/etc/apache2/sites-available'","'000-default symlink'")."\n");	chdir($instdir);
if (-e "$apache2_sites_available_dir/loncapa") {	}
copy("$apache2_sites_available_dir/loncapa","$apache2_sites_available_dir/loncapa.original");	if (-l $defaultconf) {
}	my $linkfname = readlink($defaultconf);
copy("$instdir/debian-ubuntu/loncapa","$apache2_sites_available_dir/loncapa");	if ($linkfname ne '') {
chmod(0444,"$apache2_sites_available_dir/loncapa");	$linkfname = Cwd::abs_path(File::Spec->rel2abs($linkfname,$apache2_conf_enabled_dir));
symlink("$apache2_sites_available_dir/loncapa","$apache2_sites_enabled_dir/000-default");	}
	if ($linkfname eq "$apache2_conf_available_dir/loncapa") {
	unlink($defaultconf);
	}
	}
	unlink("$apache2_conf_available_dir/loncapa");
	}
	}
	if ((-e "$apache2_conf_available_dir/loncapa.conf") && (-e "$instdir/debian-ubuntu/ubuntu14/loncapa_conf")) {
	if (open(PIPE, "diff --brief $apache2_conf_available_dir/loncapa.conf $instdir/debian-ubuntu/ubuntu14/loncapa_conf \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	copy("$apache2_conf_available_dir/loncapa.conf","$apache2_conf_available_dir/loncapa.conf.original");
	}
	if (-l $defaultconf) {
	my $linkfname = readlink($defaultconf);
	if ($linkfname ne '') {
	$linkfname = Cwd::abs_path(File::Spec->rel2abs($linkfname,$apache2_conf_enabled_dir));
	}
	if ($linkfname eq "$apache2_conf_available_dir/loncapa.conf") {
	unless ($diffres) {
	$skipconf = 1;
	}
	}
	}
	}
	}
	unless ($skipconf) {
	print_and_log(&mt('Copying loncapa [_1] config file to [_2] and pointing [_3] to it from conf-enabled.',"'apache2'","'/etc/apache2/conf-available'","'loncapa.conf symlink'")."\n");
	copy("$instdir/debian-ubuntu/ubuntu14/loncapa_conf","$apache2_conf_available_dir/loncapa.conf");
	chmod(0444,"$apache2_conf_available_dir/loncapa.conf");
	if (-l $defaultconf) {
	unlink($defaultconf);
	}
	chdir($apache2_conf_enabled_dir);
	symlink('../conf-available/loncapa.conf','loncapa.conf');
	chdir($instdir);
	}
	my $stdsite = "$instdir/debian-ubuntu/ubuntu14/loncapa_site";
	if ((-e $stdsite) && (-e "$apache2_sites_available_dir/loncapa")) {
	if (open(PIPE, "diff --brief $stdsite $apache2_sites_available_dir/loncapa \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	copy("$apache2_sites_available_dir/loncapa","$apache2_sites_available_dir/loncapa.conf.original");
	} else {
	copy("$apache2_sites_available_dir/loncapa","$apache2_sites_available_dir/loncapa.conf");
	}
	if (-l $defaultconfig) {
	my $linkfname = readlink($defaultconfig);
	if ($linkfname ne '') {
	$linkfname = Cwd::abs_path(File::Spec->rel2abs($linkfname,$apache2_sites_enabled_dir));
	}
	if ($linkfname eq "$apache2_sites_available_dir/loncapa") {
	unlink($defaultconfig);
	}
	}
	unlink("$apache2_sites_available_dir/loncapa");
	}
	}
	if ((-e $stdsite) && (-e "$apache2_sites_available_dir/loncapa.conf")) {
	if (open(PIPE, "diff --brief $stdsite $apache2_sites_available_dir/loncapa.conf \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	copy("$apache2_sites_available_dir/loncapa.conf","$apache2_sites_available_dir/loncapa.conf.original");
	}
	if (-l $defaultsite) {
	my $linkfname = readlink($defaultsite);
	if ($linkfname ne '') {
	$linkfname = Cwd::abs_path(File::Spec->rel2abs($linkfname,$apache2_sites_enabled_dir));
	}
	if ($linkfname eq "$apache2_sites_available_dir/loncapa.conf") {
	unless ($diffres) {
	$skipsite = 1;
	}
	}
	}
	}
	}
	unless ($skipsite) {
	print_and_log(&mt('Copying loncapa [_1] site file to [_2] and pointing [_3] to it from sites-enabled.',"'apache2'","'/etc/apache2/sites-available'","'loncapa.conf symlink'")."\n");
	copy("$instdir/debian-ubuntu/ubuntu14/loncapa_site","$apache2_sites_available_dir/loncapa.conf");
	chmod(0444,"$apache2_sites_available_dir/loncapa.conf");
	chdir($apache2_sites_enabled_dir);
	symlink('../sites-available/loncapa.conf','loncapa.conf');
	chdir($instdir);
	}
	if (-l $defaultconfig) {
	my $linkfname = readlink($defaultconfig);
	if ($linkfname ne '') {
	$linkfname = Cwd::abs_path(File::Spec->rel2abs($linkfname,$apache2_sites_enabled_dir));
	}
	if ($linkfname eq "$apache2_sites_available_dir/000-default.conf") {
	unlink($defaultconfig);
	}
	}
	} else {
	if ((-e "$instdir/debian-ubuntu/loncapa") && (-e "$apache2_sites_available_dir/loncapa")) {
	if (open(PIPE, "diff --brief $instdir/debian-ubuntu/loncapa $apache2_sites_available_dir/loncapa \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	copy("$apache2_sites_available_dir/loncapa","$apache2_sites_available_dir/loncapa.original");
	}
	if (-l $defaultconfig) {
	my $linkfname = readlink($defaultconfig);
	if ($linkfname eq "$apache2_sites_available_dir/loncapa") {
	unless ($diffres) {
	$skipsite = 1;
	}
	}
	}
	}
	}
	unless ($skipsite) {
	if (-l $defaultconfig) {
	unlink($defaultconfig);
	}
	print_and_log(&mt('Copying loncapa [_1] config file to [_2] and pointing [_3] to it from sites-enabled.',"'apache2'","'/etc/apache2/sites-available'","'000-default symlink'")."\n");
	if (-e "$instdir/debian-ubuntu/loncapa") {
	copy("$instdir/debian-ubuntu/loncapa","$apache2_sites_available_dir/loncapa");
	chmod(0444,"$apache2_sites_available_dir/loncapa");
	symlink("$apache2_sites_available_dir/loncapa","$apache2_sites_enabled_dir/000-default");
	}
	}
	}
	if ($distname eq 'ubuntu') {
	my $sitestatus = "$apache2_mods_available_dir/status.conf";
	my $stdstatus = "$instdir/debian-ubuntu/status.conf";
	if ((-e $sitestatus) && (-e $stdstatus)) {
	if (open(PIPE, "diff --brief $stdstatus $sitestatus \|")) {
	my $diffres = <PIPE>;
	close(PIPE);
	chomp($diffres);
	if ($diffres) {
	copy("$apache2_mods_available_dir/status.conf","$apache2_mods_available_dir/status.conf.original");
	} else {
	$skipstatus = 1;
	}
	}
	}
	unless ($skipstatus) {
	if (-e $stdstatus) {
	print_and_log(&mt('Copying loncapa [_1] file to [_2],',"'status.conf'","'/etc/apache2/mods-available/status.conf'")."\n");
	copy($stdstatus,$sitestatus);
	chmod(0644,$sitestatus);
	}
	}
}	}
print_and_log("\n");	print_and_log("\n");
}	}
Line 2929 sub copy_apache2_debconf {	Line 3392 sub copy_apache2_debconf {
###########################################################	###########################################################

sub copy_apache2_suseconf {	sub copy_apache2_suseconf {
my ($instdir,$hostname) = @_;	my ($instdir,$hostname,$distro) = @_;
	my ($name,$version) = ($distro =~ /^(suse\|sles)([\d\.]+)$/);
	my $conf_file = "$instdir/sles-suse/default-server.conf";
	if (($name eq 'sles') && ($version >= 12)) {
	$conf_file = "$instdir/sles-suse/apache2.4/default-server.conf";
	}
print_and_log(&mt('Copying the LON-CAPA [_1] to [_2].',	print_and_log(&mt('Copying the LON-CAPA [_1] to [_2].',
"'default-server.conf'",	"'default-server.conf'",
"'/etc/apache2/default-server.conf'")."\n");	"'/etc/apache2/default-server.conf'")."\n");
if (!-e "/etc/apache2/default-server.conf.original") {	if (!-e "/etc/apache2/default-server.conf.original") {
copy "/etc/apache2/default-server.conf","/etc/apache2/default-server.conf.original";	copy "/etc/apache2/default-server.conf","/etc/apache2/default-server.conf.original";
}	}
copy "$instdir/sles-suse/default-server.conf","/etc/apache2/default-server.conf";	copy $conf_file,"/etc/apache2/default-server.conf";
chmod(0444,"/etc/apache2/default-server.conf");	chmod(0444,"/etc/apache2/default-server.conf");
# Make symlink for conf directory (included in loncapa_apache.conf)	# Make symlink for conf directory (included in loncapa_apache.conf)
my $can_symlink = (eval { symlink('/etc/apache2','/srv/www/conf'); }, $@ eq '');	my $can_symlink = (eval { symlink('/etc/apache2','/srv/www/conf'); }, $@ eq '');
Line 2947 sub copy_apache2_suseconf {	Line 3415 sub copy_apache2_suseconf {
&print_and_log(&mt('Symlink creation failed for [_1] to [_2]. You will need to perform this action from the command line.',"'/srv/www/conf'","'/etc/apache2'")."\n");	&print_and_log(&mt('Symlink creation failed for [_1] to [_2]. You will need to perform this action from the command line.',"'/srv/www/conf'","'/etc/apache2'")."\n");
}	}
&copy_apache2_conf_files($instdir);	&copy_apache2_conf_files($instdir);
&copy_sysconfig_apache2_file($instdir);	&copy_sysconfig_apache2_file($instdir,$name,$version);
print_and_log("\n");	print_and_log("\n");
}	}

Line 2973 sub copy_apache2_conf_files {	Line 3441 sub copy_apache2_conf_files {
##	##
###############################################	###############################################
sub copy_sysconfig_apache2_file {	sub copy_sysconfig_apache2_file {
my ($instdir) = @_;	my ($instdir,$name,$version) = @_;
print_and_log(&mt('Copying the LON-CAPA [_1] to [_2].',"'sysconfig/apache2'","'/etc/sysconfig/apache2'")."\n");	print_and_log(&mt('Copying the LON-CAPA [_1] to [_2].',"'sysconfig/apache2'","'/etc/sysconfig/apache2'")."\n");
if (!-e "/etc/sysconfig/apache2.original") {	if (!-e "/etc/sysconfig/apache2.original") {
copy "/etc/sysconfig/apache2","/etc/sysconfig/apache2.original";	copy "/etc/sysconfig/apache2","/etc/sysconfig/apache2.original";
}	}
copy "$instdir/sles-suse/sysconfig_apache2","/etc/sysconfig/apache2";	my $sysconf_file = "$instdir/sles-suse/sysconfig_apache2";
	if (($name eq 'sles') && ($version >= 12)) {
	$sysconf_file = "$instdir/sles-suse/apache2.4/sysconfig_apache2";
	}
	copy $sysconf_file,"/etc/sysconfig/apache2";
chmod(0444,"/etc/sysconfig/apache2");	chmod(0444,"/etc/sysconfig/apache2");
}	}

Line 3106 wget http://install.loncapa.org/versions	Line 3578 wget http://install.loncapa.org/versions
print &mt('LON-CAPA source files extracted.')."\n".	print &mt('LON-CAPA source files extracted.')."\n".
&mt('It remains for you to execute the following commands:')."	&mt('It remains for you to execute the following commands:')."

cd /root/loncapa-N.N (N.N should correspond to a version number like '0.4')	cd /root/loncapa-X.Y.Z (X.Y.Z should correspond to a version number like '2.11.3')
./UPDATE	./UPDATE

".&mt('If you have any trouble, please see [_1] and [_2]',	".&mt('If you have any trouble, please see [_1] and [_2]',

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.48
changed lines
	Added in v.1.70