Masternode-Install-Script/script.sh at master · syscoin/Masternode-Install-Script · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
#!/bin/bash -i

# Only run as a root user
if [ "$(sudo id -u)" != "0" ]; then
    echo "This script may only be run as root or with user with sudo privileges."
    exit 1
fi

HBAR="---------------------------------------------------------------------------------------"

# import messages
source <(curl -sL https://raw.githubusercontent.com/Syscoin/Masternode-Install-Script/master/messages.sh)

pause(){
  echo ""
  read -n1 -rsp $'Press any key to continue or Ctrl+C to exit...\n'
}

do_exit(){
  echo "$MESSAGE_COMPLETE"
  echo ""
  echo "Your Sentry Node configuration should now be completed and running as the syscoin user."
  echo ""
  echo "Please run the following command"
  echo "source ~/.bashrc"
  echo ""
  echo ""
  echo "Big thanks to demesm & doublesharp for the original script"
  echo ""
  echo "Special mention to bitje, johnp, and SYS Team!"
  echo ""
  echo "Spread Love It's The Brooklyn Way!"
  echo "-BigPoppa"
  echo ""
  echo ""
  exit 0
}

update_system(){
  echo "$MESSAGE_UPDATE"
  # update package and upgrade Ubuntu
  sudo DEBIAN_FRONTEND=noninteractive apt -y update
  sudo DEBIAN_FRONTEND=noninteractive apt -y upgrade
  sudo DEBIAN_FRONTEND=noninteractive apt -y autoremove
  clear
}

maybe_prompt_for_swap_file(){
  # Create swapfile if less than 8GB memory
  MEMORY_RAM=$(free -m | awk '/^Mem:/{print $2}')
  MEMORY_SWAP=$(free -m | awk '/^Swap:/{print $2}')
  MEMORY_TOTAL=$(($MEMORY_RAM + $MEMORY_SWAP))
  if [ $MEMORY_RAM -lt 3800 ]; then
      echo "You need to upgrade your server to 4 GB RAM."
       exit 1
  fi
  if [ $MEMORY_TOTAL -lt 7700 ]; then
      CREATE_SWAP="Y";
  fi
}

maybe_create_swap_file(){
  if [ "$CREATE_SWAP" = "Y" ]; then
    echo "Creating a 4GB swapfile..."
    sudo swapoff -a
    sudo dd if=/dev/zero of=/swap.img bs=1M count=4096
    sudo chmod 600 /swap.img
    sudo mkswap /swap.img
    sudo swapon /swap.img
    echo '/swap.img none swap sw 0 0' | sudo tee --append /etc/fstab > /dev/null
    sudo mount -a
    echo "Swapfile created."
    clear
  fi
}

remove_sentinel_if_exists(){
  if [ -d "/home/syscoin/sentinel" ] || [ -d "$HOME/sentinel" ]; then
    echo "Sentinel installation detected. Removing... "
    sudo systemctl stop sentinel.service 2>/dev/null || true
    sudo rm -rf /home/syscoin/sentinel "$HOME/sentinel"
    sudo crontab -r -u syscoin 2>/dev/null || true
    sudo rm -f /usr/local/bin/sentinel-ping
    echo "Sentinel removed."
  fi
}

syscoin_branch(){
  tag_url="https://github.com/syscoin/syscoin/releases/latest/"
  # tag_get="tag_name=v"
  tag_get="/syscoin/syscoin/releases/tag/v"
  tag_grep=$(curl -sL $tag_url | grep -o -m1 "$tag_get\?[0-9]*\.[0-9]*\.[0-9]*")
  ((tag_pos=${#tag_get}+1))
  tag_ver=$(echo "$tag_grep" | cut -c$tag_pos-)
  read -e -p "Syscoin Core Github Tag [$tag_ver]: " SYSCOIN_BRANCH
  if [ "$SYSCOIN_BRANCH" = "" ]; then
    SYSCOIN_BRANCH=$tag_ver
  fi
}

install_binaries(){
  echo "$MESSAGE_DEPENDENCIES"
  wget https://github.com/syscoin/syscoin/releases/download/v$SYSCOIN_BRANCH/syscoin-$SYSCOIN_BRANCH-x86_64-linux-gnu.tar.gz
  tar xf syscoin-$SYSCOIN_BRANCH-x86_64-linux-gnu.tar.gz
  sudo install -m 0755 -o root -g root -t /usr/local/bin syscoin-$SYSCOIN_BRANCH/bin/*
  rm -r syscoin-$SYSCOIN_BRANCH
  rm syscoin-$SYSCOIN_BRANCH-x86_64-linux-gnu.tar.gz
  clear
}

start_syscoind(){
  echo "$MESSAGE_SYSCOIND"
  sudo service syscoind start     # start the service
  sudo systemctl enable syscoind  # enable at boot
  clear
}

stop_syscoind(){
  echo "$MESSAGE_STOPPING"
  sudo service syscoind stop
  sleep 30
  clear
}

upgrade() {
  syscoin_branch
  stop_syscoind       # stop syscoind if it is running
  install_binaries # make sure we have the latest deps
  update_system       # update all the system libraries
  clear
  remove_sentinel_if_exists

  CONF_PATH="/home/syscoin/.syscoin/syscoin.conf"
  if sudo grep -q '^nodeblsprivkey=' "$CONF_PATH"; then
    echo "Fixing legacy config key 'nodeblsprivkey' to 'masternodeblsprivkey'..."
    sudo sed -i 's/^nodeblsprivkey=/masternodeblsprivkey=/' "$CONF_PATH"
  fi

  create_systemd_syscoind_service

  start_syscoind      # start syscoind back up

  echo "$MESSAGE_COMPLETE"
  do_exit             # exit the script
}

# errors are shown if LC_ALL is blank when you run locale
if [ "$LC_ALL" = "" ]; then export LC_ALL="$LANG"; fi

clear
echo "$MESSAGE_WELCOME"
pause
clear

echo "$MESSAGE_PLAYER_ONE"
sleep 1
clear

# check if there is enough physical memory present
maybe_prompt_for_swap_file

# check to see if there is already a syscoin user on the system
if grep -q '^syscoin:' /etc/passwd; then
  clear
  echo "$MESSAGE_UPGRADE"
  echo ""
  echo "  Choose [Y]es (default) to upgrade Syscoin Core on a working Sentry."
  echo "  Choose [N]o to re-run the configuration process for your Sentry."
  echo ""
  echo "$HBAR"
  echo ""
  read -e -p "Upgrade/reinstall Syscoin Core? [Y/n]: " IS_UPGRADE
  if [ "$IS_UPGRADE" = "" ] || [ "$IS_UPGRADE" = "y" ] || [ "$IS_UPGRADE" = "Y" ]; then
    upgrade
  fi
fi
clear

SYSCOIN_BRANCH="master"
RESOLVED_ADDRESS=$(curl -s ipinfo.io/ip)
DEFAULT_PORT=8369

# syscoin.conf value defaults
rpcuser="sycoinrpc"
rpcpassword="$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1)"
masternodeblsprivkey=""
externalip="$RESOLVED_ADDRESS"
port="$DEFAULT_PORT"

# try to read them in from an existing install
if sudo test -f /home/syscoin/.syscoin/syscoin.conf; then
  sudo cp /home/syscoin/.syscoin/syscoin.conf ~/syscoin.conf
  sudo chown $(whoami).$(id -g -n $(whoami)) ~/syscoin.conf
  source ~/syscoin.conf
  rm -f ~/syscoin.conf
fi

RPC_USER="$rpcuser"
RPC_PASSWORD="$rpcpassword"
NODE_PORT="$port"

# ask which branch to use
syscoin_branch

if [ "$externalip" != "$RESOLVED_ADDRESS" ]; then
  echo ""
  echo "WARNING: The syscoin.conf value for externalip=${externalip} does not match your detected external ip of ${RESOLVED_ADDRESS}."
  echo ""
fi
read -e -p "External IP Address [$externalip]: " EXTERNAL_ADDRESS
if [ "$EXTERNAL_ADDRESS" = "" ]; then
  EXTERNAL_ADDRESS="$externalip"
fi
if [ "$port" != "" ] && [ "$port" != "$DEFAULT_PORT" ]; then
  echo ""
  echo "WARNING: The syscoin.conf value for port=${port} does not match the default of ${DEFAULT_PORT}."
  echo ""
fi
read -e -p "Sentry Node Port [$port]: " NODE_PORT
if [ "$NODE_PORT" = "" ]; then
  NODE_PORT="$port"
fi

node_bls_key(){
  read -e -p "Sentry Node BLS Secret Key [$nodeblskey]: " NODE_BLS_KEY
  if [ "$NODE_BLS_KEY" = "" ]; then
    if [ "$nodeblsprivkey" != "" ]; then
      NODE_BLS_KEY="$nodeblsprivkey"
    else
      echo "You must enter a Sentry Node BLS Key!";
      node_bls_key
    fi
  fi
}

node_bls_key

read -e -p "Configure for mainnet? [Y/n]: " IS_MAINNET

#Generating Random Passwords
RPC_PASSWORD=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1)

pause
clear

# syscoin conf file
SYSCOIN_CONF=$(cat <<EOF
rpcuser=user
rpcpassword=$RPC_PASSWORD
listen=1
daemon=1
server=1
port=8369
rpcport=8370
rpcallowip=127.0.0.1
masternodeblsprivkey=$NODE_BLS_KEY
externalip=$EXTERNAL_ADDRESS
EOF
)

# testnet config
SYSCOIN_TESTNET_CONF=$(cat <<EOF
testnet=1
[test]
rpcuser=user
rpcpassword=$RPC_PASSWORD
listen=1
daemon=1
server=1
port=18369
rpcport=18370
rpcallowip=127.0.0.1
externalip=$EXTERNAL_ADDRESS
masternodeblsprivkey=$NODE_BLS_KEY
EOF
)

# syscoind.service config
SYSCOIND_SERVICE=$(cat <<EOF
[Unit]
Description=Syscoin Core Service
After=network.target iptables.service firewalld.service

[Service]
Type=forking
User=syscoin
ExecStart=/usr/local/bin/syscoind
ExecStop=/usr/local/bin/syscoin-cli stop && sleep 20 && /usr/bin/killall syscoind
ExecReload=/usr/local/bin/syscoin-cli stop && sleep 20 && /usr/local/bin/syscoind -reindex

[Install]
WantedBy=multi-user.target
EOF
)

# functions to install a Sentry Node from scratch
create_and_configure_syscoin_user(){
  echo "$MESSAGE_CREATE_USER"

  # create a syscoin user if it doesn't exist
  grep -q '^syscoin:' /etc/passwd || sudo adduser --disabled-password --gecos "" syscoin

  # add alias to .bashrc to run syscoin-cli as sycoin user
  grep -q "syscli\(\)" ~/.bashrc || echo "syscli() { sudo su -c \"syscoin-cli \$*\" syscoin; }" >> ~/.bashrc
  grep -q "alias syscoin-cli" ~/.bashrc || echo "alias syscoin-cli='syscli'" >> ~/.bashrc
  grep -q "sysd\(\)" ~/.bashrc || echo "sysd() { sudo su -c \"syscoind \$*\" syscoin; }" >> ~/.bashrc
  grep -q "alias syscoind" ~/.bashrc || echo "alias syscoind='echo \"systemd is running as a service - please stop that process first, than use sysd instead of systemd\"'" >> ~/.bashrc
  grep -q "sysmasternode\(\)" ~/.bashrc || echo "sysmasternode() { bash <(curl -sL https://raw.githubusercontent.com/Syscoin/Masternode-Install-Script/master/script.sh) ; }" >> ~/.bashrc

  echo "$SYSCOIN_CONF" > ~/syscoin.conf
  if [ ! "$IS_MAINNET" = "" ] && [ ! "$IS_MAINNET" = "y" ] && [ ! "$IS_MAINNET" = "Y" ]; then
    echo "$SYSCOIN_TESTNET_CONF" > ~/syscoin.conf
  fi

  # in case it's already running because this is a re-install
  sudo service syscoind stop

  # create conf directory
  sudo mkdir -p /home/syscoin/.syscoin
  sudo rm -rf /home/syscoin/.syscoin/debug.log
  sudo mv -f ~/syscoin.conf /home/syscoin/.syscoin/syscoin.conf
  sudo chown -R syscoin.syscoin /home/syscoin/.syscoin
  sudo chmod 600 /home/syscoin/.syscoin/syscoin.conf
  clear
}

create_systemd_syscoind_service(){
  echo "$MESSAGE_SYSTEMD"
  # create systemd service
  echo "$SYSCOIND_SERVICE" > ~/syscoind.service
  # install the service
  sudo mkdir -p /usr/lib/systemd/system/
  sudo mv -f ~/syscoind.service /usr/lib/systemd/system/syscoind.service
  # reload systemd daemon
  sudo systemctl daemon-reload
  clear
}

install_fail2ban(){
  echo "$MESSAGE_FAIL2BAN"
  sudo apt-get install fail2ban -y
  sudo service fail2ban restart
  sudo systemctl fail2ban enable
  clear
}

install_ufw(){
  echo "$MESSAGE_UFW"
  sudo ufw allow ssh/tcp
  sudo ufw limit ssh/tcp
  sudo ufw allow 18369/tcp
  sudo ufw allow 8369/tcp
  sudo ufw allow 30303/tcp
  sudo ufw logging on
  yes | sudo ufw enable
  clear
}

# if there is <4gb and the user said yes to a swapfile...
maybe_create_swap_file
install_ufw

# prepare to build
update_system
install_binaries
clear

create_and_configure_syscoin_user
create_systemd_syscoind_service
start_syscoind
install_fail2ban
clear

do_exit