free
/
freedombone
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
7613 коммитов
5 веток
Дерево: 4bacf8abd5
веток Теги
${ item.name }
Создать ветку ${ searchTerm }
из '4bacf8abd5'
${ noResults }
freedombone/src/freedombone-app-irc

freedombone-app-irc 27KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692 
  1. #!/bin/bash

  2. #

  3. # .---.                  .              .

  4. # |                      |              |

  5. # |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.

  6. # |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'

  7. # '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'

  8. #

  9. #                    Freedom in the Cloud

  10. #

  11. # IRC server application

  12. #

  13. # License

  14. # =======

  15. #

  16. # Copyright (C) 2014-2016 Bob Mottram <bob@freedombone.net>

  17. #

  18. # This program is free software: you can redistribute it and/or modify

  19. # it under the terms of the GNU Affero General Public License as published by

  20. # the Free Software Foundation, either version 3 of the License, or

  21. # (at your option) any later version.

  22. #

  23. # This program is distributed in the hope that it will be useful,

  24. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  25. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  26. # GNU Affero General Public License for more details.

  27. #

  28. # You should have received a copy of the GNU Affero General Public License

  29. # along with this program.  If not, see <http://www.gnu.org/licenses/>.

  30. 

  31. VARIANTS='full full-vim chat'

  32. 

  33. IN_DEFAULT_INSTALL=0

  34. SHOW_ON_ABOUT=1

  35. 

  36. IRC_BOUNCER_PORT=6697

  37. IRC_ONION_PORT=8098

  38. IRC_PORT=6698

  39. 

  40. # An optional password to log into IRC. This applies to all users

  41. IRC_PASSWORD=

  42. 

  43. # Number of entries for the bouncer to buffer

  44. IRC_BUFFER_LENGTH=300

  45. 

  46. irc_variables=(MY_USERNAME

  47.                MY_NAME

  48.                IRC_PORT

  49.                IRC_BOUNCER_PORT

  50.                IRC_ONION_HOSTNAME

  51.                IRC_OPERATOR_PASSWORD

  52.                DEFAULT_DOMAIN_NAME

  53.                INSTALLED_WITHIN_DOCKER

  54.                IRC_BUFFER_LENGTH

  55.                ONION_ONLY)

  56. 

  57. function logging_on_irc {

  58.     echo -n ''

  59. }

  60. 

  61. function logging_off_irc {

  62.     echo -n ''

  63. }

  64. 

  65. function irc_get_global_password {

  66.     echo $(cat /etc/ngircd/ngircd.conf | grep "Password =" | head -n 1 | awk -F '=' '{print $2}')

  67. }

  68. 

  69. function start_irc_bouncer {

  70.     update_default_domain

  71.     if [ ! -f /home/znc/.znc/znc.pem ]; then

  72.         # no certificate exists

  73.         su -c 'znc -p' - znc

  74.     else

  75.         # an existing certificate is being used

  76.         su -c 'znc' - znc

  77.     fi

  78. }

  79. 

  80. function stop_irc_bouncer {

  81.     pkill znc

  82. }

  83. 

  84. function create_irssi_config {

  85.     new_username="$1"

  86. 

  87.     read_config_param IRC_BOUNCER_PORT

  88.     read_config_param IRC_ONION_PORT

  89.     IRC_PASSWORD=$(irc_get_global_password)

  90. 

  91.     new_name="$2"

  92.     if [ ${#new_name} -eq 0 ]; then

  93.         new_name="$new_username"

  94.     fi

  95. 

  96.     echo 'servers = (' > /home/${new_username}/.irssi/config

  97.     echo '  {' >> /home/${new_username}/.irssi/config

  98.     echo '    address = "chat.freenode.net";' >> /home/${new_username}/.irssi/config

  99.     echo '    chatnet = "Freenode";' >> /home/${new_username}/.irssi/config

  100.     echo '    port = "6667";' >> /home/${new_username}/.irssi/config

  101.     echo '    autoconnect = "no";' >> /home/${new_username}/.irssi/config

  102.     echo '  },' >> /home/${new_username}/.irssi/config

  103.     echo '  {' >> /home/${new_username}/.irssi/config

  104.     echo '    address = "irc.oftc.net";' >> /home/${new_username}/.irssi/config

  105.     echo '    chatnet = "OFTC";' >> /home/${new_username}/.irssi/config

  106.     echo '    port = "6667";' >> /home/${new_username}/.irssi/config

  107.     echo '    autoconnect = "no";' >> /home/${new_username}/.irssi/config

  108.     echo '  },' >> /home/${new_username}/.irssi/config

  109.     echo '  {' >> /home/${new_username}/.irssi/config

  110.     echo "    address = \"127.0.0.1\";" >> /home/${new_username}/.irssi/config

  111.     echo '    ssl_verify = "no";' >> /home/${new_username}/.irssi/config

  112.     if [[ ${ONION_ONLY} == 'no' ]]; then

  113.         echo '    use_ssl = "yes";' >> /home/${new_username}/.irssi/config

  114.         echo "    port = \"${IRC_BOUNCER_PORT}\";" >> /home/${new_username}/.irssi/config

  115.     else

  116.         echo '    use_ssl = "no";' >> /home/${new_username}/.irssi/config

  117.         IRC_ONION_HOSTNAME=$(cat ${COMPLETION_FILE} | grep "irc onion domain" | head -n 1 | awk -F ':' '{print $2}')

  118.         echo "    port = \"${IRC_ONION_PORT}\";" >> /home/${new_username}/.irssi/config

  119.     fi

  120.     echo '    chatnet = "Freedombone";' >> /home/${new_username}/.irssi/config

  121.     echo '    autoconnect = "yes";' >> /home/${new_username}/.irssi/config

  122.     if [ ${IRC_PASSWORD} ]; then

  123.         echo "    password = \"${IRC_PASSWORD}\";" >> /home/${new_username}/.irssi/config

  124.     fi

  125.     echo '  }' >> /home/${new_username}/.irssi/config

  126.     echo ');' >> /home/${new_username}/.irssi/config

  127.     echo '' >> /home/${new_username}/.irssi/config

  128.     echo 'chatnets = {' >> /home/${new_username}/.irssi/config

  129.     echo '  Freedombone = {' >> /home/${new_username}/.irssi/config

  130.     echo '    type = "IRC";' >> /home/${new_username}/.irssi/config

  131.     echo '    max_kicks = "1";' >> /home/${new_username}/.irssi/config

  132.     echo '    max_msgs = "4";' >> /home/${new_username}/.irssi/config

  133.     echo '    max_whois = "1";' >> /home/${new_username}/.irssi/config

  134.     echo '  };' >> /home/${new_username}/.irssi/config

  135.     echo '  Freenode = {' >> /home/${new_username}/.irssi/config

  136.     echo '    type = "IRC";' >> /home/${new_username}/.irssi/config

  137.     echo '    max_kicks = "1";' >> /home/${new_username}/.irssi/config

  138.     echo '    max_msgs = "4";' >> /home/${new_username}/.irssi/config

  139.     echo '    max_whois = "1";' >> /home/${new_username}/.irssi/config

  140.     echo '  };' >> /home/${new_username}/.irssi/config

  141.     echo '  OFTC = {' >> /home/${new_username}/.irssi/config

  142.     echo '    type = "IRC";' >> /home/${new_username}/.irssi/config

  143.     echo '    max_kicks = "1";' >> /home/${new_username}/.irssi/config

  144.     echo '    max_msgs = "1";' >> /home/${new_username}/.irssi/config

  145.     echo '    max_whois = "1";' >> /home/${new_username}/.irssi/config

  146.     echo '  };' >> /home/${new_username}/.irssi/config

  147.     echo '};' >> /home/${new_username}/.irssi/config

  148.     echo '' >> /home/${new_username}/.irssi/config

  149.     echo 'channels = (' >> /home/${new_username}/.irssi/config

  150.     echo '  { name = "#freedombone"; chatnet = "Freedombone"; autojoin = "Yes"; },' >> /home/${new_username}/.irssi/config

  151.     echo ');' >> /home/${new_username}/.irssi/config

  152.     echo '' >> /home/${new_username}/.irssi/config

  153.     echo 'settings = {' >> /home/${new_username}/.irssi/config

  154.     echo "  core = { real_name = \"$new_name\"; user_name = \"$new_username\"; nick = \"$new_username\"; };" >> /home/${new_username}/.irssi/config

  155.     echo '  "fe-text" = { actlist_sort = "refnum"; };' >> /home/${new_username}/.irssi/config

  156.     echo '};' >> /home/${new_username}/.irssi/config

  157.     echo 'ignores = ( { level = "CTCPS"; } );' >> /home/${new_username}/.irssi/config

  158. 

  159.     chown -R ${new_username}:${new_username} /home/${new_username}/.irssi

  160. }

  161. 

  162. function remove_user_irc_bouncer {

  163.     remove_username="$1"

  164. 

  165.     if [ -f /home/znc/.znc/configs/znc.conf ]; then

  166.         stop_irc_bouncer

  167.         sed -i "/<User ${remove_username}>/,/</User>/d" /home/znc/.znc/configs/znc.conf

  168.         start_irc_bouncer

  169.     fi

  170. }

  171. 

  172. function remove_user_irc {

  173.     remove_username="$1"

  174. 

  175.     ${PROJECT_NAME}-pass -u $remove_username --rmapp irc

  176. 

  177.     remove_user_irc_bouncer ${remove_username}

  178.     if [ -d /home/${remove_username}/.irssi ]; then

  179.         rm -rf /home/${remove_username}/.irssi

  180.     fi

  181.     if [ -d /home/${remove_username}/irclogs ]; then

  182.         rm -rf /home/${remove_username}/irclogs

  183.     fi

  184. }

  185. 

  186. function irc_set_global_password_base {

  187.     NEW_IRC_PASSWORD="$1"

  188.     EXISTING_IRC_PASSWORD=$(irc_get_global_password)

  189.     sed -i "0,/RE/s/Password =.*/Password =$NEW_IRC_PASSWORD/" /etc/ngircd/ngircd.conf

  190. 

  191.     # replace the password for all users

  192.     for d in /home/*/ ; do

  193.         IRC_USERNAME=$(echo "$d" | awk -F '/' '{print $3}')

  194.         if [[ $(is_valid_user "$IRC_USERNAME") == "1" ]]; then

  195.             if [ -f /home/${IRC_USERNAME}/.irssi/config ]; then

  196.                 sed -i "s|$EXISTING_IRC_PASSWORD|$NEW_IRC_PASSWORD|g" /home/${IRC_USERNAME}/.irssi/config

  197.                 chown -R ${IRC_USERNAME}:${IRC_USERNAME} /home/${IRC_USERNAME}/.irssi

  198.             fi

  199.         fi

  200.     done

  201. 

  202.     read_config_param DEFAULT_DOMAIN_NAME

  203.     read_config_param IRC_PORT

  204.     read_config_param MY_USERNAME

  205. 

  206.     stop_irc_bouncer

  207.     sleep 2

  208. 

  209.     # change the hashes. There are multiple users, but since we're using a global

  210.     # password this doesn't matter

  211.     ZNC_SALT="$(dd if=/dev/urandom bs=16c count=1 | md5sum | awk -F ' ' '{print $1}' | cut -c1-20)"

  212.     new_user_hash=$(echo -n "${NEW_IRC_PASSWORD}${ZNC_SALT}" | sha256sum | awk -F ' ' '{print $1}')

  213.     sed -i "s|Hash = .*|Hash = ${new_user_hash}|g" /home/znc/.znc/configs/znc.conf

  214.     sed -i "s|Salt = .*|Salt = ${ZNC_SALT}|g" /home/znc/.znc/configs/znc.conf

  215. 

  216.     # change the server password

  217.     sed -i "s|Server     = 127.0.0.1.*|Server     = 127.0.0.1 ${IRC_PORT} ${NEW_IRC_PASSWORD}|g" /home/znc/.znc/configs/znc.conf

  218. 

  219.     # Update the password

  220.     ${PROJECT_NAME}-pass -u $MY_USERNAME -a irc -p "$NEW_IRC_PASSWORD"

  221. 

  222.     # matrix bridge to irc

  223.     if [ -f $INSTALL_DIR/matrix_irc_bridge/config.yaml ]; then

  224.         sed -i "s|password: .*|password: \"$NEW_IRC_PASSWORD\"|g" $INSTALL_DIR/matrix_irc_bridge/config.yaml

  225.         systemctl restart matrix_irc_bridge

  226.     fi

  227. 

  228.     write_config_param "IRC_PASSWORD" "$NEW_IRC_PASSWORD"

  229. 

  230.     # restart the daemon for the new password to take effect

  231.     systemctl restart ngircd

  232.     start_irc_bouncer

  233. }

  234. 

  235. function change_password_irc {

  236.     new_global_password="$2"

  237. 

  238.     set_password_for_all_users irc "$new_global_password"

  239.     irc_set_global_password_base "$new_global_password"

  240. }

  241. 

  242. function add_user_irc_bouncer {

  243.     new_username="$1"

  244.     new_user_password=$(irc_get_global_password)

  245.     IRC_PASSWORD="$new_user_password"

  246.     is_admin='true'

  247.     if [ ! $3 ]; then

  248.         is_admin='false'

  249.     fi

  250. 

  251.     if [[ $(is_valid_user "$new_username") == "0" ]]; then

  252.         return

  253.     fi

  254. 

  255.     read_config_param IRC_PORT

  256.     read_config_param DEFAULT_DOMAIN_NAME

  257. 

  258.     ${PROJECT_NAME}-pass -u $new_username -a irc -p "$new_user_password"

  259. 

  260.     stop_irc_bouncer

  261. 

  262.     ZNC_SALT="$(dd if=/dev/urandom bs=16c count=1 | md5sum | awk -F ' ' '{print $1}' | cut -c1-20)"

  263.     new_user_hash=$(echo -n "${new_user_password}${ZNC_SALT}" | sha256sum | awk -F ' ' '{print $1}')

  264. 

  265.     if grep -q "<User ${new_username}>" /home/znc/.znc/configs/znc.conf; then

  266.         # user already exists

  267.         sed -i "s|Hash = .*|Hash = ${new_user_hash}|g" /home/znc/.znc/configs/znc.conf

  268.         sed -i "s|Salt = .*|Salt = ${ZNC_SALT}|g" /home/znc/.znc/configs/znc.conf

  269.         return

  270.     fi

  271. 

  272.     echo "<User ${new_username}>" >> /home/znc/.znc/configs/znc.conf

  273.     echo "    Admin      = ${is_admin}" >> /home/znc/.znc/configs/znc.conf

  274.     echo "    AltNick = ${new_username}_" >> /home/znc/.znc/configs/znc.conf

  275.     echo '    AppendTimestamp = false' >> /home/znc/.znc/configs/znc.conf

  276.     echo '    AutoClearChanBuffer = true' >> /home/znc/.znc/configs/znc.conf

  277.     echo '    AutoClearQueryBuffer = true' >> /home/znc/.znc/configs/znc.conf

  278.     echo "    Buffer = ${IRC_BUFFER_LENGTH}" >> /home/znc/.znc/configs/znc.conf

  279.     echo '    DenyLoadMod = false' >> /home/znc/.znc/configs/znc.conf

  280.     echo '    DenySetBindHost = false' >> /home/znc/.znc/configs/znc.conf

  281.     echo "    Ident = ${new_username}" >> /home/znc/.znc/configs/znc.conf

  282.     echo '    JoinTries = 10' >> /home/znc/.znc/configs/znc.conf

  283.     echo '    LoadModule = chansaver' >> /home/znc/.znc/configs/znc.conf

  284.     echo '    LoadModule = controlpanel' >> /home/znc/.znc/configs/znc.conf

  285.     echo '    MaxJoins = 10' >> /home/znc/.znc/configs/znc.conf

  286.     echo '    MaxNetworks = 10' >> /home/znc/.znc/configs/znc.conf

  287.     echo '    MaxQueryBuffers = 50' >> /home/znc/.znc/configs/znc.conf

  288.     echo '    MultiClients = true' >> /home/znc/.znc/configs/znc.conf

  289.     echo "    Nick = ${new_username}" >> /home/znc/.znc/configs/znc.conf

  290.     echo '    PrependTimestamp = true' >> /home/znc/.znc/configs/znc.conf

  291.     echo '    QuitMsg = Bye' >> /home/znc/.znc/configs/znc.conf

  292.     echo "    RealName = ${new_username}" >> /home/znc/.znc/configs/znc.conf

  293.     echo '    StatusPrefix = *' >> /home/znc/.znc/configs/znc.conf

  294.     echo '    TimestampFormat = [%H:%M:%S]' >> /home/znc/.znc/configs/znc.conf

  295.     echo '' >> /home/znc/.znc/configs/znc.conf

  296.     echo "    <Network ${PROJECT_NAME}>" >> /home/znc/.znc/configs/znc.conf

  297.     echo '        LoadModule = chansaver' >> /home/znc/.znc/configs/znc.conf

  298.     echo '        LoadModule = simple_away' >> /home/znc/.znc/configs/znc.conf

  299.     echo '' >> /home/znc/.znc/configs/znc.conf

  300.     echo "        Server     = 127.0.0.1 ${IRC_PORT} ${IRC_PASSWORD}" >> /home/znc/.znc/configs/znc.conf

  301.     echo '' >> /home/znc/.znc/configs/znc.conf

  302.     echo "        <Chan #${PROJECT_NAME}>" >> /home/znc/.znc/configs/znc.conf

  303.     echo '        </Chan>' >> /home/znc/.znc/configs/znc.conf

  304.     echo '    </Network>' >> /home/znc/.znc/configs/znc.conf

  305.     echo '' >> /home/znc/.znc/configs/znc.conf

  306.     echo '    <Network oftc>' >> /home/znc/.znc/configs/znc.conf

  307.     echo '        LoadModule = chansaver' >> /home/znc/.znc/configs/znc.conf

  308.     echo '        LoadModule = simple_away' >> /home/znc/.znc/configs/znc.conf

  309.     echo '        FloodBurst = 4' >> /home/znc/.znc/configs/znc.conf

  310.     echo '        FloodRate = 1.00' >> /home/znc/.znc/configs/znc.conf

  311.     echo '        IRCConnectEnabled = true' >> /home/znc/.znc/configs/znc.conf

  312.     echo '        Server = irc.oftc.net 6697' >> /home/znc/.znc/configs/znc.conf

  313.     echo '    </Network>' >> /home/znc/.znc/configs/znc.conf

  314.     echo '' >> /home/znc/.znc/configs/znc.conf

  315.     echo '    <Network freenode>' >> /home/znc/.znc/configs/znc.conf

  316.     echo '        LoadModule = chansaver' >> /home/znc/.znc/configs/znc.conf

  317.     echo '        LoadModule = simple_away' >> /home/znc/.znc/configs/znc.conf

  318.     echo '        FloodBurst = 4' >> /home/znc/.znc/configs/znc.conf

  319.     echo '        FloodRate = 1.00' >> /home/znc/.znc/configs/znc.conf

  320.     echo '        IRCConnectEnabled = true' >> /home/znc/.znc/configs/znc.conf

  321.     echo '        Server = irc.freenode.net 6697' >> /home/znc/.znc/configs/znc.conf

  322.     echo '    </Network>' >> /home/znc/.znc/configs/znc.conf

  323.     echo '' >> /home/znc/.znc/configs/znc.conf

  324.     echo '    <Pass password>' >> /home/znc/.znc/configs/znc.conf

  325.     echo "        Hash = ${new_user_hash}" >> /home/znc/.znc/configs/znc.conf

  326.     echo '        Method = sha256' >> /home/znc/.znc/configs/znc.conf

  327.     echo "        Salt = ${ZNC_SALT}" >> /home/znc/.znc/configs/znc.conf

  328.     echo '    </Pass>' >> /home/znc/.znc/configs/znc.conf

  329.     echo '</User>' >> /home/znc/.znc/configs/znc.conf

  330. 

  331.     mkdir -p /home/znc/.znc/users/${new_username}/moddata

  332.     mkdir -p /home/znc/.znc/users/${new_username}/networks

  333.     mkdir /home/znc/.znc/users/${new_username}/moddata/chanserver

  334.     mkdir /home/znc/.znc/users/${new_username}/moddata/controlpanel

  335.     mkdir /home/znc/.znc/users/${new_username}/moddata/perform

  336.     mkdir /home/znc/.znc/users/${new_username}/moddata/webadmin

  337.     mkdir -p /home/znc/.znc/users/${new_username}/networks/${PROJECT_NAME}/moddata/chansaver

  338.     mkdir -p /home/znc/.znc/users/${new_username}/networks/${PROJECT_NAME}/moddata/simple_away

  339. 

  340.     mkdir -p /home/znc/.znc/moddata/webadmin

  341. 

  342.     chown -R znc:znc /home/znc/.znc

  343. 

  344.     start_irc_bouncer

  345. }

  346. 

  347. function add_user_irc {

  348.     new_username="$1"

  349.     new_user_password="$2"

  350. 

  351.     IRC_PASSWORD=$(irc_get_global_password)

  352.     if [ ${#IRC_PASSWORD} -lt 2 ]; then

  353.         IRC_PASSWORD=

  354.     fi

  355. 

  356.     if [ ! -d /home/${new_username}/.irssi ]; then

  357.         mkdir /home/${new_username}/.irssi

  358.     fi

  359. 

  360.     create_irssi_config "${new_username}"

  361.     add_user_irc_bouncer "${new_username}" "${IRC_PASSWORD}"

  362.     echo '0'

  363. }

  364. 

  365. function run_client_irc {

  366.     irssi

  367. }

  368. 

  369. function irc_show_password {

  370.     IRC_PASSWORD=$(irc_get_global_password)

  371.     dialog --title $"IRC Password" \

  372.            --msgbox "$IRC_PASSWORD" 6 40

  373. }

  374. 

  375. function irc_set_global_password {

  376.     EXISTING_IRC_PASSWORD=$(irc_get_global_password)

  377.     dialog --title $"IRC Password" \

  378.            --clear \

  379.            --backtitle $"Freedombone Control Panel" \

  380.            --passwordbox $"Password for all IRC users, or press Enter for no password" 10 60 "$EXISTING_IRC_PASSWORD" 2> $data

  381.     sel=$?

  382.     case $sel in

  383.         0)

  384.             NEW_IRC_PASSWORD=$(<$data)

  385.             irc_set_global_password_base "$NEW_IRC_PASSWORD"

  386.             dialog --title $"IRC Password" \

  387.                    --msgbox $"The IRC password was changed" 6 40

  388.             ;;

  389.     esac

  390. }

  391. 

  392. function configure_interactive_irc {

  393.     if [ ! -d /etc/ngircd ]; then

  394.         dialog --title $"IRC Menu" \

  395.                --msgbox $"No IRC server is installed" 6 70

  396.         return

  397.     fi

  398. 

  399.     while true

  400.     do

  401.         data=$(tempfile 2>/dev/null)

  402.         trap "rm -f $data" 0 1 2 5 15

  403.         dialog --backtitle $"Freedombone Control Panel" \

  404.                --title $"IRC Menu" \

  405.                --radiolist $"Choose an operation:" 14 70 4 \

  406.                1 $"Set a password for all IRC users" off \

  407.                2 $"Show current IRC login password" off \

  408.                3 $"Exit" on 2> $data

  409.         sel=$?

  410.         case $sel in

  411.             1) break;;

  412.             255) break;;

  413.         esac

  414.         case $(cat $data) in

  415.             1) irc_set_global_password;;

  416.             2) irc_show_password;;

  417.             3) break;;

  418.         esac

  419.     done

  420. }

  421. 

  422. function install_interactive_irc {

  423.     echo -n ''

  424.     APP_INSTALLED=1

  425. }

  426. 

  427. function reconfigure_irc {

  428.     echo -n ''

  429. }

  430. 

  431. function upgrade_irc {

  432.     echo -n ''

  433. }

  434. 

  435. function backup_local_irc {

  436.     echo -n ''

  437. }

  438. 

  439. function restore_local_irc {

  440.     echo -n ''

  441. }

  442. 

  443. function backup_remote_irc {

  444.     echo -n ''

  445. }

  446. 

  447. function restore_remote_irc {

  448.     echo -n ''

  449. }

  450. 

  451. function remove_irc {

  452.     remove_watchdog_daemon ngircd

  453.     systemctl stop ngircd

  454.     apt-get -yq remove --purge ngircd

  455.     apt-get -yq remove --purge irssi

  456.     if [ -d /etc/ngircd ]; then

  457.         rm -rf /etc/ngircd

  458.     fi

  459. 

  460.     iptables -D INPUT -p tcp --dport 1024:65535 --sport ${IRC_BOUNCER_PORT} -j ACCEPT

  461.     function_check save_firewall_settings

  462.     save_firewall_settings

  463.     firewall_remove ${IRC_BOUNCER_PORT} tcp

  464. 

  465.     function_check remove_onion_service

  466.     remove_onion_service irc ${IRC_ONION_PORT}

  467.     remove_completion_param install_irc

  468.     remove_completion_param configure_firewall_for_irc

  469.     sed -i '/IRC /d' ${COMPLETION_FILE}

  470.     sed -i '/znc 2> /d' /etc/crontab

  471.     stop_irc_bouncer

  472.     if [ -d /home/znc ]; then

  473.         userdel -r znc

  474.     fi

  475.     if [ -d /var/run/ircd ]; then

  476.         rm -rf /var/run/ircd

  477.     fi

  478. }

  479. 

  480. function configure_firewall_for_irc {

  481.     if [ ! -d /etc/ngircd ]; then

  482.         return

  483.     fi

  484.     if [[ $(is_completed $FUNCNAME) == "1" ]]; then

  485.         return

  486.     fi

  487.     if [[ ${INSTALLED_WITHIN_DOCKER} == "yes" ]]; then

  488.         # docker does its own firewalling

  489.         return

  490.     fi

  491.     if [[ ${ONION_ONLY} != "no" ]]; then

  492.         return

  493.     fi

  494.     iptables -I INPUT -p tcp --dport 1024:65535 --sport ${IRC_BOUNCER_PORT} -j ACCEPT

  495.     function_check save_firewall_settings

  496.     save_firewall_settings

  497. 

  498.     firewall_add IRC ${IRC_BOUNCER_PORT} tcp

  499.     echo 'configure_firewall_for_irc' >> ${COMPLETION_FILE}

  500. }

  501. 

  502. function install_irc_server {

  503.     if [[ $(app_is_installed irc_server) == "1" ]]; then

  504.         return

  505.     fi

  506.     apt-get -yq install ngircd

  507. 

  508.     if [ ! -d /etc/ngircd ]; then

  509.         echo $"ERROR: ngircd does not appear to have installed. $CHECK_MESSAGE"

  510.         exit 53

  511.     fi

  512. 

  513.     # obtain a cert for the default domain

  514.     if [[ "$(cert_exists ${DEFAULT_DOMAIN_NAME} pem)" == "0" ]]; then

  515.         echo $'Obtaining certificate for the main domain'

  516.         create_site_certificate ${DEFAULT_DOMAIN_NAME} 'yes'

  517.     fi

  518. 

  519.     if [[ "$(cert_exists ${DEFAULT_DOMAIN_NAME})" == "0" ]]; then

  520.         ${PROJECT_NAME}-addcert -h ngircd --dhkey ${DH_KEYLENGTH}

  521.         function_check check_certificates

  522.         check_certificates ngircd

  523.     fi

  524. 

  525.     DEFAULTDOMAIN=${DEFAULT_DOMAIN_NAME}

  526. 

  527.     IRC_PASSWORD="$(create_password ${MINIMUM_PASSWORD_LENGTH})"

  528. 

  529.     set_password_for_all_users irc "$IRC_PASSWORD"

  530. 

  531. 

  532.     echo '**************************************************' > /etc/ngircd/motd

  533.     echo $'*           F R E E D O M B O N E   I R C        *' >> /etc/ngircd/motd

  534.     echo '*                                                *' >> /etc/ngircd/motd

  535.     echo $'*               Freedom in the Cloud             *' >> /etc/ngircd/motd

  536.     echo '**************************************************' >> /etc/ngircd/motd

  537.     sed -i 's|MotdFile = /etc/ngircd/ngircd.motd|MotdFile = /etc/ngircd/motd|g' /etc/ngircd/ngircd.conf

  538.     sed -i "s/irc@irc.example.com/$MY_EMAIL_ADDRESS/g" /etc/ngircd/ngircd.conf

  539.     sed -i "s/irc.example.net/$DEFAULTDOMAIN/g" /etc/ngircd/ngircd.conf

  540.     sed -i "s|Yet another IRC Server running on Debian GNU/Linux|IRC Server of $DEFAULTDOMAIN|g" /etc/ngircd/ngircd.conf

  541.     sed -i 's/;Password = wealllikedebian/Password =/g' /etc/ngircd/ngircd.conf

  542.     sed -i "s/;Ports =.*/Ports = ${IRC_PORT}/g" /etc/ngircd/ngircd.conf

  543.     if [[ $ONION_ONLY == 'no' ]]; then

  544.         if [ -f /etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.pem ]; then

  545.             sed -i "s|;CertFile = /etc/ssl/certs/server.crt|CertFile = /etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.pem|g" /etc/ngircd/ngircd.conf

  546.         else

  547.             sed -i "s|;CertFile = /etc/ssl/certs/server.crt|CertFile = /etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.crt|g" /etc/ngircd/ngircd.conf

  548.         fi

  549.         sed -i "s|;DHFile = /etc/ngircd/dhparams.pem|DHFile = /etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.dhparam|g" /etc/ngircd/ngircd.conf

  550.         sed -i "s|;KeyFile = /etc/ssl/private/server.key|KeyFile = /etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key|g" /etc/ngircd/ngircd.conf

  551.         sed -i "s/;Ports =.*/Ports = ${IRC_PORT}/2" /etc/ngircd/ngircd.conf

  552.     else

  553.         sed -i 's|;SSLConnect.*|SSLConnect = no|g'

  554.         # comment out the second Ports entry

  555.         if ! grep -q ";Ports =" /etc/ngircd/ngircd.conf; then

  556.             sed -i '0,/Ports =/! s/Ports =/;Ports =/' /etc/ngircd/ngircd.conf

  557.         fi

  558.     fi

  559.     sed -i "s/;Name = #ngircd/Name = #${PROJECT_NAME}/g" /etc/ngircd/ngircd.conf

  560.     sed -i "s/;Topic = Our ngircd testing channel/Topic = ${PROJECT_NAME} chat channel/g" /etc/ngircd/ngircd.conf

  561.     sed -i 's/;MaxUsers = 23/MaxUsers = 23/g' /etc/ngircd/ngircd.conf

  562.     sed -i "s|;KeyFile = /etc/ngircd/#chan.key|KeyFile = /etc/ngircd/${PROJECT_NAME}.key|g" /etc/ngircd/ngircd.conf

  563.     sed -i "s/;CloakHost = cloaked.host/CloakHost = ${PROJECT_NAME}/g" /etc/ngircd/ngircd.conf

  564.     IRC_SALT="$(create_password 30)"

  565.     if [ -f ${IMAGE_PASSWORD_FILE} ]; then

  566.         IRC_OPERATOR_PASSWORD="$(printf `cat $IMAGE_PASSWORD_FILE`)"

  567.     else

  568.         IRC_OPERATOR_PASSWORD="$(create_password ${MINIMUM_PASSWORD_LENGTH})"

  569.     fi

  570.     sed -i "s|;CloakHostSalt = abcdefghijklmnopqrstuvwxyz|CloakHostSalt = $IRC_SALT|g" /etc/ngircd/ngircd.conf

  571.     sed -i 's/;ConnectIPv4 = yes/ConnectIPv4 = yes/g' /etc/ngircd/ngircd.conf

  572.     sed -i 's/;MorePrivacy = no/MorePrivacy = yes/g' /etc/ngircd/ngircd.conf

  573.     sed -i 's/;RequireAuthPing = no/RequireAuthPing = no/g' /etc/ngircd/ngircd.conf

  574.     sed -i "s/;Name = TheOper/Name = $MY_USERNAME/g" /etc/ngircd/ngircd.conf

  575.     sed -i "s/;Password = ThePwd/Password = $IRC_OPERATOR_PASSWORD/g" /etc/ngircd/ngircd.conf

  576.     sed -i 's|;Listen =.*|Listen = 0.0.0.0,0.0.0.0:9050,127.0.0.1,127.0.0.1:9050|g' /etc/ngircd/ngircd.conf

  577.     if [ ${IRC_PASSWORD} ]; then

  578.         sed -i "0,/RE/s/Password =.*/Password =$IRC_PASSWORD/" /etc/ngircd/ngircd.conf

  579.     fi

  580.     # upgrade a cypher

  581.     sed -i 's|SECURE128|SECURE256|g' /etc/ngircd/ngircd.conf

  582.     mkdir /var/run/ircd

  583.     chown -R irc:irc /var/run/ircd

  584.     mkdir /var/run/ngircd

  585.     touch /var/run/ngircd/ngircd.pid

  586.     chown -R irc:irc /var/run/ngircd

  587. 

  588.     IRC_ONION_HOSTNAME=$(add_onion_service irc ${IRC_BOUNCER_PORT} ${IRC_ONION_PORT})

  589. 

  590.     if [ ! -d /var/run/ircd ]; then

  591.         mkdir /var/run/ircd

  592.         chown -R irc:irc /var/run/ircd

  593.     fi

  594. 

  595.     chmod 600 /etc/ngircd/ngircd.conf

  596.     systemctl restart ngircd

  597. 

  598.     add_watchdog_daemon ngircd

  599. 

  600.     function_check configure_firewall_for_irc

  601.     configure_firewall_for_irc

  602.     install_completed irc_server

  603. }

  604. 

  605. function install_irc_client {

  606.     if [[ $(app_is_installed irc_client) == "1" ]]; then

  607.         return

  608.     fi

  609.     apt-get -yq install irssi

  610. 

  611.     if [ ! -d /home/${MY_USERNAME}/.irssi ]; then

  612.         mkdir /home/${MY_USERNAME}/.irssi

  613.     fi

  614. 

  615.     create_irssi_config "${MY_USERNAME}" "$MY_NAME"

  616.     install_completed irc_client

  617. }

  618. 

  619. function install_irc_bouncer {

  620.     if [[ $(app_is_installed irc_bouncer) == "1" ]]; then

  621.         return

  622.     fi

  623. 

  624.     apt-get -yq install znc

  625. 

  626.     adduser --disabled-login --gecos 'znc' znc

  627.     if [ ! -d /home/znc ]; then

  628.         echo $"/home/znc directory not created"

  629.         exit 7354262

  630.     fi

  631. 

  632.     mkdir -p /home/znc/.znc/configs

  633.     mkdir -p /home/znc/.znc/users

  634. 

  635.     echo 'AnonIPLimit = 10' > /home/znc/.znc/configs/znc.conf

  636.     echo 'ConnectDelay = 5' >> /home/znc/.znc/configs/znc.conf

  637.     echo 'HideVersion = false' >> /home/znc/.znc/configs/znc.conf

  638.     echo 'MaxBufferSize = 500' >> /home/znc/.znc/configs/znc.conf

  639.     echo 'ProtectWebSessions = true' >> /home/znc/.znc/configs/znc.conf

  640.     echo 'SSLCertFile = /home/znc/.znc/znc.pem' >> /home/znc/.znc/configs/znc.conf

  641.     echo 'ServerThrottle = 30' >> /home/znc/.znc/configs/znc.conf

  642.     echo 'Version = 1.6.2' >> /home/znc/.znc/configs/znc.conf

  643.     echo '' >> /home/znc/.znc/configs/znc.conf

  644.     echo '<Listener listener0>' >> /home/znc/.znc/configs/znc.conf

  645.     echo '  AllowIRC = true' >> /home/znc/.znc/configs/znc.conf

  646.     echo '  AllowWeb = false' >> /home/znc/.znc/configs/znc.conf

  647.     echo '  IPv4 = true' >> /home/znc/.znc/configs/znc.conf

  648.     echo '  IPv6 = true' >> /home/znc/.znc/configs/znc.conf

  649.     echo '  Port = 6697' >> /home/znc/.znc/configs/znc.conf

  650.     if [[ ${ONION_ONLY} == 'no' ]]; then

  651.         echo '  SSL = true' >> /home/znc/.znc/configs/znc.conf

  652.     else

  653.         echo '  SSL = false' >> /home/znc/.znc/configs/znc.conf

  654.     fi

  655.     echo '  URIPrefix = /' >> /home/znc/.znc/configs/znc.conf

  656.     echo '</Listener>' >> /home/znc/.znc/configs/znc.conf

  657.     echo '' >> /home/znc/.znc/configs/znc.conf

  658. 

  659.     if [ $IRC_PORT -ne $IRC_ONION_PORT ]; then

  660.         echo '<Listener listener1>' >> /home/znc/.znc/configs/znc.conf

  661.         echo '  AllowIRC = true' >> /home/znc/.znc/configs/znc.conf

  662.         echo '  AllowWeb = false' >> /home/znc/.znc/configs/znc.conf

  663.         echo '  IPv4 = true' >> /home/znc/.znc/configs/znc.conf

  664.         echo '  IPv6 = true' >> /home/znc/.znc/configs/znc.conf

  665.         echo "  Port = ${IRC_ONION_PORT}" >> /home/znc/.znc/configs/znc.conf

  666.         echo '  SSL = false' >> /home/znc/.znc/configs/znc.conf

  667.         echo '  URIPrefix = /' >> /home/znc/.znc/configs/znc.conf

  668.         echo '</Listener>' >> /home/znc/.znc/configs/znc.conf

  669.         echo '' >> /home/znc/.znc/configs/znc.conf

  670.     fi

  671. 

  672.     chown -R znc:znc /home/znc/.znc

  673. 

  674.     add_user_irc_bouncer "${MY_USERNAME}" "${IRC_PASSWORD}" true

  675. 

  676.     # certificate for use with SSL

  677.     start_irc_bouncer

  678. 

  679.     function_check cron_add_mins

  680.     cron_add_mins 10 "/usr/bin/znc 2> /dev/null" znc

  681. 

  682.     install_completed irc_bouncer

  683. }

  684. 

  685. function install_irc {

  686.     install_irc_server

  687.     install_irc_client

  688.     install_irc_bouncer

  689.     APP_INSTALLED=1

  690. }

  691. 

  692. # NOTE: deliberately no exit 0