isabelle: src/Pure/System/linux.scala@314d6b215f90 (annotated)

70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	1	/* Title: Pure/System/linux.scala
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	2	Author: Makarius
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	3
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	4	Specific support for Linux, notably Ubuntu/Debian.
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	5	*/
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	6
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	7	package isabelle
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	8
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	9
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	10	import scala.util.matching.Regex
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	11
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	12
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	13	object Linux {
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	14	/* check system */
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	15
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	16	def check_system(): Unit =
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	17	if (!Platform.is_linux) error("Not a Linux system")
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	18
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	19	def check_system_root(): Unit = {
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	20	check_system()
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	21	if (Isabelle_System.bash("id -u").check.out != "0") error("Not running as superuser (root)")
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	22	}
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	23
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	24
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	25	/* release */
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	26
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	27	object Release {
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	28	private val ID = """^Distributor ID:\s(\S.)$""".r
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	29	private val RELEASE = """^Release:\s(\S.)$""".r
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	30	private val DESCRIPTION = """^Description:\s(\S.)$""".r
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	31
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	32	def apply(): Release = {
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	33	val lines = Isabelle_System.bash("lsb_release -a").check.out_lines
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	34	def find(R: Regex): String = lines.collectFirst({ case R(a) => a }).getOrElse("Unknown")
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	35	new Release(find(ID), find(RELEASE), find(DESCRIPTION))
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	36	}
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	37	}
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	38
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	39	final class Release private(val id: String, val release: String, val description: String) {
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	40	override def toString: String = description
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	41
fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	42	def is_ubuntu: Boolean = id == "Ubuntu"
72521 354bfab78cbf Isabelle/Phabricator supports Ubuntu 20.04 LTS; wenzelm parents: 72494 diff changeset	43	def is_ubuntu_20_04: Boolean = is_ubuntu && release == "20.04"
79487 47272fac86d8 support Phabricator on Ubuntu 22.04 LTS with PHP 8.1, using community form we.phorge.it version "2023 week 49"; wenzelm parents: 75393 diff changeset	44	def is_ubuntu_22_04: Boolean = is_ubuntu && release == "22.04"
80158 059d5e115ae3 support more Ubuntu versions; wenzelm parents: 79515 diff changeset	45	def is_ubuntu_24_04: Boolean = is_ubuntu && release == "24.04"
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	46	}
70966 acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	47
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	48
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	49	/* packages */
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	50
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	51	def reboot_required(): Boolean =
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	52	Path.explode("/var/run/reboot-required").is_file
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	53
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	54	def check_reboot_required(): Unit =
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	55	if (reboot_required()) error("Reboot required")
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	56
71726 a5fda30edae2 clarified signature: more uniform treatment of stopped/interrupted state; wenzelm parents: 71327 diff changeset	57	def package_update(progress: Progress = new Progress): Unit =
70966 acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	58	progress.bash(
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	59	"""apt-get update -y && apt-get upgrade -y && apt autoremove -y""",
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	60	echo = true).check
acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	61
71726 a5fda30edae2 clarified signature: more uniform treatment of stopped/interrupted state; wenzelm parents: 71327 diff changeset	62	def package_install(packages: List[String], progress: Progress = new Progress): Unit =
70966 acc3bac0d7c5 support for Linux packages; wenzelm parents: 70965 diff changeset	63	progress.bash("apt-get install -y -- " + Bash.strings(packages), echo = true).check
71046 b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	64
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	65	def package_installed(name: String): Boolean = {
71327 a89729bdde89 more robust; wenzelm parents: 71280 diff changeset	66	val result = Isabelle_System.bash("dpkg-query -s " + Bash.string(name))
a89729bdde89 more robust; wenzelm parents: 71280 diff changeset	67	val pattern = """^Status:.installed.$""".r.pattern
a89729bdde89 more robust; wenzelm parents: 71280 diff changeset	68	result.ok && result.out_lines.exists(line => pattern.matcher(line).matches)
a89729bdde89 more robust; wenzelm parents: 71280 diff changeset	69	}
71280 5a2033fc8f3d avoid odd (harmless) problem with Mercurial 4.5.3 provided by Ubuntu 18.04 on first push: "couldn't write revision branch cache names"; wenzelm parents: 71268 diff changeset	70
71046 b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	71
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	72	/* users */
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	73
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	74	def user_exists(name: String): Boolean =
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	75	Isabelle_System.bash("id " + Bash.string(name)).ok
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	76
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	77	def user_entry(name: String, field: Int): String = {
71046 b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	78	val result = Isabelle_System.bash("getent passwd " + Bash.string(name)).check
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	79	val fields = space_explode(':', result.out)
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	80
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	81	if (1 <= field && field <= fields.length) fields(field - 1)
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	82	else error("No passwd field " + field + " for user " + quote(name))
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	83	}
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	84
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	85	def user_description(name: String): String = user_entry(name, 5).takeWhile(_ != ',')
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	86
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	87	def user_home(name: String): String = user_entry(name, 6)
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	88
71054 b64fc38327ae prefer system user setup, e.g. avoid occurrence on login screen; wenzelm parents: 71051 diff changeset	89	def user_add(name: String,
b64fc38327ae prefer system user setup, e.g. avoid occurrence on login screen; wenzelm parents: 71051 diff changeset	90	description: String = "",
b64fc38327ae prefer system user setup, e.g. avoid occurrence on login screen; wenzelm parents: 71051 diff changeset	91	system: Boolean = false,
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	92	ssh_setup: Boolean = false
87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	93	): Unit = {
73120 c3589f2dff31 more informative errors: simplify diagnosis of spurious failures reported by users; wenzelm parents: 72521 diff changeset	94	require(!description.contains(','), "malformed description")
71046 b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	95
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	96	if (user_exists(name)) error("User already exists: " + quote(name))
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	97
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	98	Isabelle_System.bash(
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	99	"adduser --quiet --disabled-password --gecos " + Bash.string(description) +
81723 b5d329f7fe95 more robust defaults, notably for Ubuntu 24.04; wenzelm parents: 80158 diff changeset	100	" --home /home/" + Bash.string(name) +
71054 b64fc38327ae prefer system user setup, e.g. avoid occurrence on login screen; wenzelm parents: 71051 diff changeset	101	(if (system) " --system --group --shell /bin/bash " else "") +
71046 b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	102	" " + Bash.string(name)).check
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	103
81723 b5d329f7fe95 more robust defaults, notably for Ubuntu 24.04; wenzelm parents: 80158 diff changeset	104	Isabelle_System.bash("usermod -p '*' " + Bash.string(name)).check
b5d329f7fe95 more robust defaults, notably for Ubuntu 24.04; wenzelm parents: 80158 diff changeset	105
71046 b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	106	if (ssh_setup) {
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	107	val id_rsa = user_home(name) + "/.ssh/id_rsa"
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	108	Isabelle_System.bash("""
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	109	if [ ! -f """ + Bash.string(id_rsa) + """ ]
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	110	then
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	111	yes '\n' \| sudo -i -u """ + Bash.string(name) +
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	112	""" ssh-keygen -q -f """ + Bash.string(id_rsa) + """
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	113	fi
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	114	""").check
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	115	}
b8aeeedf7e68 support for Linux user management; wenzelm parents: 70966 diff changeset	116	}
71048 5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	117
5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	118
5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	119	/* system services */
5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	120
71107 25c85cc3bc71 clarified signature; wenzelm parents: 71054 diff changeset	121	def service_operation(op: String, name: String): Unit =
25c85cc3bc71 clarified signature; wenzelm parents: 71054 diff changeset	122	Isabelle_System.bash("systemctl " + Bash.string(op) + " " + Bash.string(name)).check
71048 5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	123
73340 0ffcad1f6130 tuned --- fewer warnings; wenzelm parents: 73120 diff changeset	124	def service_enable(name: String): Unit = service_operation("enable", name)
0ffcad1f6130 tuned --- fewer warnings; wenzelm parents: 73120 diff changeset	125	def service_disable(name: String): Unit = service_operation("disable", name)
0ffcad1f6130 tuned --- fewer warnings; wenzelm parents: 73120 diff changeset	126	def service_start(name: String): Unit = service_operation("start", name)
0ffcad1f6130 tuned --- fewer warnings; wenzelm parents: 73120 diff changeset	127	def service_stop(name: String): Unit = service_operation("stop", name)
0ffcad1f6130 tuned --- fewer warnings; wenzelm parents: 73120 diff changeset	128	def service_restart(name: String): Unit = service_operation("restart", name)
71051 4eeff87c5072 more phabricator setup; wenzelm parents: 71048 diff changeset	129
73340 0ffcad1f6130 tuned --- fewer warnings; wenzelm parents: 73120 diff changeset	130	def service_shutdown(name: String): Unit =
71111 cd166c3904dd more robust: system ssh service is required for Phabricator ssh service; wenzelm parents: 71108 diff changeset	131	try { service_stop(name) }
cd166c3904dd more robust: system ssh service is required for Phabricator ssh service; wenzelm parents: 71108 diff changeset	132	catch { case ERROR(_) => }
cd166c3904dd more robust: system ssh service is required for Phabricator ssh service; wenzelm parents: 71108 diff changeset	133
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	134	def service_install(name: String, spec: String): Unit = {
71111 cd166c3904dd more robust: system ssh service is required for Phabricator ssh service; wenzelm parents: 71108 diff changeset	135	service_shutdown(name)
cd166c3904dd more robust: system ssh service is required for Phabricator ssh service; wenzelm parents: 71108 diff changeset	136
71048 5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	137	val service_file = Path.explode("/lib/systemd/system") + Path.basic(name).ext("service")
5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	138	File.write(service_file, spec)
71115 3199c08e6413 tuned; wenzelm parents: 71114 diff changeset	139	Isabelle_System.chmod("644", service_file)
71048 5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	140
71107 25c85cc3bc71 clarified signature; wenzelm parents: 71054 diff changeset	141	service_enable(name)
71108 783d5786255d more robust; wenzelm parents: 71107 diff changeset	142	service_restart(name)
71048 5f02ecbb19d6 support for system services; wenzelm parents: 71046 diff changeset	143	}
71265 6ca561001244 support for pwgen; wenzelm parents: 71115 diff changeset	144
6ca561001244 support for pwgen; wenzelm parents: 71115 diff changeset	145
6ca561001244 support for pwgen; wenzelm parents: 71115 diff changeset	146	/* passwords */
6ca561001244 support for pwgen; wenzelm parents: 71115 diff changeset	147
75393 87ebf5a50283 clarified formatting, for the sake of scala3; wenzelm parents: 73534 diff changeset	148	def generate_password(length: Int = 10): String = {
73120 c3589f2dff31 more informative errors: simplify diagnosis of spurious failures reported by users; wenzelm parents: 72521 diff changeset	149	require(length >= 6, "password too short")
71265 6ca561001244 support for pwgen; wenzelm parents: 71115 diff changeset	150	Isabelle_System.bash("pwgen " + length + " 1").check.out
6ca561001244 support for pwgen; wenzelm parents: 71115 diff changeset	151	}
79515 fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	152
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	153
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	154	/* PHP */
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	155
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	156	def php_version(): String =
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	157	Isabelle_System.bash("""php --run 'echo PHP_MAJOR_VERSION . "." . PHP_MINOR_VERSION;'""")
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	158	.check.out
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	159
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	160	def php_conf_dir(name: String): Path =
fa581264522e clarified modules; wenzelm parents: 79487 diff changeset	161	Path.explode("/etc/php") + Path.basic(php_version()) + Path.basic(name) + Path.explode("conf.d")
70965 fe9496df6298 specific support for Linux, notably Ubuntu/Debian; wenzelm parents: diff changeset	162	}

author	wenzelm
	Fri, 04 Apr 2025 16:35:05 +0200
changeset 82432	314d6b215f90
parent 81723	b5d329f7fe95
permissions	-rw-r--r--