[feat] update bitmask-root if needed

Chech the hash of the installed bitmask root and sign as not installed if doesn't match the one we have in the bundle. Also for running bitmask-root, if there is more than one (in /usr/local/sbin and /usr/sbin) run the one with higher version number. - Resolves: #9020
author: Ruben Pollan <meskio@sindominio.net> 2017-11-29 11:42:42 +0100
committer: Ruben Pollan <meskio@sindominio.net> 2017-12-07 21:17:52 +0100
commit: 3fae5a6fdaad3e06770797e6cf8c21d1804ddc22 (patch)
tree: 5a018d90c0e4cd1e1a2c59c4ede37c697f87d923 /src/leap/bitmask/vpn/launchers
parent: 90e72e19989f9ccb5e3109e16459865b8075c009 (diff)
1 files changed, 22 insertions, 3 deletions
diff --git a/src/leap/bitmask/vpn/launchers/linux.py b/src/leap/bitmask/vpn/launchers/linux.py
index bff2d8cb..b6bf278e 100644
--- a/src/leap/bitmask/vpn/launchers/linux.py
+++ b/src/leap/bitmask/vpn/launchers/linux.py
@@ -22,14 +22,15 @@ Linux VPN launcher implementation.
 import os
 
 import psutil
+import subprocess
 
 from twisted.internet import defer, reactor
 from twisted.internet.endpoints import clientFromString, connectProtocol
 from twisted.logger import Logger
 
-from leap.bitmask.util import STANDALONE
 from leap.bitmask.vpn.utils import first, force_eval
 from leap.bitmask.vpn import constants
+from leap.bitmask.vpn import _config
 from leap.bitmask.vpn.privilege import LinuxPolicyChecker
 from leap.bitmask.vpn.management import ManagementProtocol
 from leap.bitmask.vpn.launcher import VPNLauncher
@@ -85,15 +86,33 @@ class LinuxVPNLauncher(VPNLauncher):
 
     class BITMASK_ROOT(object):
         def __call__(self):
+            current_version = self._version(_config.get_bitmask_helper_path())
+
             _sys = constants.BITMASK_ROOT_SYSTEM
-            _local = constants.BITMASK_ROOT_LOCAL
+            _sys_version = 0
             if os.path.isfile(_sys):
+                _sys_version = self._version(_sys)
+
+            _local = constants.BITMASK_ROOT_LOCAL
+            _local_version = 0
+            if os.path.isfile(_local):
+                _local_version = self._version(_local)
+
+            if _sys_version == current_version:
+                return _sys
+            elif _local_version == current_version:
+                return _local
+            elif _sys_version != 0 and _sys_version >= _local_version:
                 return _sys
-            elif os.path.isfile(_local):
+            elif _local_version != 0:
                 return _local
             else:
                 return 'bitmask-root'
 
+        def _version(self, bitmask_root):
+            out = subprocess.check_output(['python', bitmask_root, "version"])
+            return int(out)
+
     class OPENVPN_BIN_PATH(object):
         def __call__(self):
             _sys = constants.OPENVPN_SYSTEM
author	Ruben Pollan <meskio@sindominio.net>	2017-11-29 11:42:42 +0100
committer	Ruben Pollan <meskio@sindominio.net>	2017-12-07 21:17:52 +0100
commit	3fae5a6fdaad3e06770797e6cf8c21d1804ddc22 (patch)
tree	5a018d90c0e4cd1e1a2c59c4ede37c697f87d923 /src/leap/bitmask/vpn/launchers
parent	90e72e19989f9ccb5e3109e16459865b8075c009 (diff)