mirror
/
oragono
mirror of https://github.com/oragono/oragono
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 67 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4966 Commits
19 Branches
Branch: devel+pwcheck
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'devel+pwcheck'
${ noResults }
oragono/ergo.go

ergo.go 6.2KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225 
  1. // Copyright (c) 2012-2014 Jeremy Latt

  2. // Copyright (c) 2014-2015 Edmund Huber

  3. // Copyright (c) 2016-2017 Daniel Oaks <daniel@danieloaks.net>

  4. // released under the MIT license

  5. 

  6. package main

  7. 

  8. import (

  9. 	"bufio"

  10. 	"encoding/json"

  11. 	"fmt"

  12. 	"log"

  13. 	"os"

  14. 	"strings"

  15. 	"syscall"

  16. 

  17. 	"golang.org/x/crypto/bcrypt"

  18. 	"golang.org/x/crypto/ssh/terminal"

  19. 

  20. 	"github.com/docopt/docopt-go"

  21. 	"github.com/ergochat/ergo/irc"

  22. 	"github.com/ergochat/ergo/irc/logger"

  23. 	"github.com/ergochat/ergo/irc/mkcerts"

  24. 	"github.com/ergochat/ergo/irc/passwd"

  25. )

  26. 

  27. // set via linker flags, either by make or by goreleaser:

  28. var commit = ""  // git hash

  29. var version = "" // tagged version

  30. 

  31. // get a password from stdin from the user

  32. func getPassword() string {

  33. 	fd := int(os.Stdin.Fd())

  34. 	if terminal.IsTerminal(fd) {

  35. 		bytePassword, err := terminal.ReadPassword(int(syscall.Stdin))

  36. 		if err != nil {

  37. 			log.Fatal("Error reading password:", err.Error())

  38. 		}

  39. 		return string(bytePassword)

  40. 	}

  41. 	reader := bufio.NewReader(os.Stdin)

  42. 	text, _ := reader.ReadString('\n')

  43. 	return strings.TrimSpace(text)

  44. }

  45. 

  46. func fileDoesNotExist(file string) bool {

  47. 	if _, err := os.Stat(file); os.IsNotExist(err) {

  48. 		return true

  49. 	}

  50. 	return false

  51. }

  52. 

  53. // implements the `ergo mkcerts` command

  54. func doMkcerts(configFile string, quiet bool) {

  55. 	config, err := irc.LoadRawConfig(configFile)

  56. 	if err != nil {

  57. 		log.Fatal(err)

  58. 	}

  59. 	if !quiet {

  60. 		log.Println("making self-signed certificates")

  61. 	}

  62. 

  63. 	certToKey := make(map[string]string)

  64. 	for name, conf := range config.Server.Listeners {

  65. 		if conf.TLS.Cert == "" {

  66. 			continue

  67. 		}

  68. 		existingKey, ok := certToKey[conf.TLS.Cert]

  69. 		if ok {

  70. 			if existingKey == conf.TLS.Key {

  71. 				continue

  72. 			} else {

  73. 				log.Fatal("Conflicting TLS key files for ", conf.TLS.Cert)

  74. 			}

  75. 		}

  76. 		if !quiet {

  77. 			log.Printf(" making cert for %s listener\n", name)

  78. 		}

  79. 		host := config.Server.Name

  80. 		cert, key := conf.TLS.Cert, conf.TLS.Key

  81. 		if !(fileDoesNotExist(cert) && fileDoesNotExist(key)) {

  82. 			log.Fatalf("Preexisting TLS cert and/or key files: %s %s", cert, key)

  83. 		}

  84. 		err := mkcerts.CreateCert("Ergo", host, cert, key)

  85. 		if err == nil {

  86. 			if !quiet {

  87. 				log.Printf("  Certificate created at %s : %s\n", cert, key)

  88. 			}

  89. 			certToKey[cert] = key

  90. 		} else {

  91. 			log.Fatal("  Could not create certificate:", err.Error())

  92. 		}

  93. 	}

  94. }

  95. 

  96. func doCheckPasswd() (returnCode int) {

  97. 	reader := bufio.NewReader(os.Stdin)

  98. 	text, err := reader.ReadBytes('\n')

  99. 	if err != nil {

  100. 		log.Fatal(err)

  101. 	}

  102. 	var hashAndPassword [2]string

  103. 	err = json.Unmarshal(text, &hashAndPassword)

  104. 	if err != nil {

  105. 		log.Fatal(err)

  106. 	}

  107. 	if passwd.CompareHashAndPassword([]byte(hashAndPassword[0]), []byte(hashAndPassword[1])) != nil {

  108. 		return 1

  109. 	}

  110. 	return 0

  111. }

  112. 

  113. func main() {

  114. 	irc.SetVersionString(version, commit)

  115. 	usage := `ergo.

  116. Usage:

  117. 	ergo initdb [--conf <filename>] [--quiet]

  118. 	ergo upgradedb [--conf <filename>] [--quiet]

  119. 	ergo importdb <database.json> [--conf <filename>] [--quiet]

  120. 	ergo genpasswd [--conf <filename>] [--quiet]

  121. 	ergo mkcerts [--conf <filename>] [--quiet]

  122. 	ergo checkpasswd

  123. 	ergo run [--conf <filename>] [--quiet] [--smoke]

  124. 	ergo -h | --help

  125. 	ergo --version

  126. Options:

  127. 	--conf <filename>  Configuration file to use [default: ircd.yaml].

  128. 	--quiet            Don't show startup/shutdown lines.

  129. 	-h --help          Show this screen.

  130. 	--version          Show version.`

  131. 

  132. 	arguments, _ := docopt.ParseArgs(usage, nil, irc.Ver)

  133. 

  134. 	// don't require a config file for genpasswd

  135. 	if arguments["genpasswd"].(bool) {

  136. 		var password string

  137. 		fd := int(os.Stdin.Fd())

  138. 		if terminal.IsTerminal(fd) {

  139. 			fmt.Print("Enter Password: ")

  140. 			password = getPassword()

  141. 			fmt.Print("\n")

  142. 			fmt.Print("Reenter Password: ")

  143. 			confirm := getPassword()

  144. 			fmt.Print("\n")

  145. 			if confirm != password {

  146. 				log.Fatal("passwords do not match")

  147. 			}

  148. 		} else {

  149. 			password = getPassword()

  150. 		}

  151. 		if err := irc.ValidatePassphrase(password); err != nil {

  152. 			log.Printf("WARNING: this password contains characters that may cause problems with your IRC client software.\n")

  153. 			log.Printf("We strongly recommend choosing a different password.\n")

  154. 		}

  155. 		hash, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.MinCost)

  156. 		if err != nil {

  157. 			log.Fatal("encoding error:", err.Error())

  158. 		}

  159. 		fmt.Print(string(hash))

  160. 		if terminal.IsTerminal(fd) {

  161. 			fmt.Println()

  162. 		}

  163. 		return

  164. 	} else if arguments["mkcerts"].(bool) {

  165. 		doMkcerts(arguments["--conf"].(string), arguments["--quiet"].(bool))

  166. 		return

  167. 	} else if arguments["checkpasswd"].(bool) {

  168. 		os.Exit(doCheckPasswd())

  169. 	}

  170. 

  171. 	configfile := arguments["--conf"].(string)

  172. 	config, err := irc.LoadConfig(configfile)

  173. 	if err != nil {

  174. 		_, isCertError := err.(*irc.CertKeyError)

  175. 		if !(isCertError && arguments["mkcerts"].(bool)) {

  176. 			log.Fatal("Config file did not load successfully: ", err.Error())

  177. 		}

  178. 	}

  179. 

  180. 	logman, err := logger.NewManager(config.Logging)

  181. 	if err != nil {

  182. 		log.Fatal("Logger did not load successfully:", err.Error())

  183. 	}

  184. 

  185. 	if arguments["initdb"].(bool) {

  186. 		err = irc.InitDB(config.Datastore.Path)

  187. 		if err != nil {

  188. 			log.Fatal("Error while initializing db:", err.Error())

  189. 		}

  190. 		if !arguments["--quiet"].(bool) {

  191. 			log.Println("database initialized: ", config.Datastore.Path)

  192. 		}

  193. 	} else if arguments["upgradedb"].(bool) {

  194. 		err = irc.UpgradeDB(config)

  195. 		if err != nil {

  196. 			log.Fatal("Error while upgrading db:", err.Error())

  197. 		}

  198. 		if !arguments["--quiet"].(bool) {

  199. 			log.Println("database upgraded: ", config.Datastore.Path)

  200. 		}

  201. 	} else if arguments["importdb"].(bool) {

  202. 		err = irc.ImportDB(config, arguments["<database.json>"].(string))

  203. 		if err != nil {

  204. 			log.Fatal("Error while importing db:", err.Error())

  205. 		}

  206. 	} else if arguments["run"].(bool) {

  207. 		if !arguments["--quiet"].(bool) {

  208. 			logman.Info("server", fmt.Sprintf("%s starting", irc.Ver))

  209. 		}

  210. 

  211. 		// warning if running a non-final version

  212. 		if strings.Contains(irc.Ver, "unreleased") {

  213. 			logman.Warning("server", "You are currently running an unreleased beta version of Ergo that may be unstable and could corrupt your database.\nIf you are running a production network, please download the latest build from https://ergo.chat/downloads.html and run that instead.")

  214. 		}

  215. 

  216. 		server, err := irc.NewServer(config, logman)

  217. 		if err != nil {

  218. 			logman.Error("server", fmt.Sprintf("Could not load server: %s", err.Error()))

  219. 			os.Exit(1)

  220. 		}

  221. 		if !arguments["--smoke"].(bool) {

  222. 			server.Run()

  223. 		}

  224. 	}

  225. }