ergo/ergo.go

// Copyright (c) 2012-2014 Jeremy Latt
// Copyright (c) 2014-2015 Edmund Huber
// Copyright (c) 2016-2017 Daniel Oaks <daniel@danieloaks.net>
// released under the MIT license

package main

import (
	"bufio"
	_ "embed"
	"fmt"
	"log"
	"os"
	"strings"
	"syscall"

	"golang.org/x/crypto/bcrypt"
	"golang.org/x/term"

	"github.com/docopt/docopt-go"
	"github.com/ergochat/ergo/irc"
	"github.com/ergochat/ergo/irc/logger"
	"github.com/ergochat/ergo/irc/mkcerts"
)

// set via linker flags, either by make or by goreleaser:
var commit = ""  // git hash
var version = "" // tagged version

//go:embed default.yaml
var defaultConfig string

// get a password from stdin from the user
func getPasswordFromTerminal() string {
	bytePassword, err := term.ReadPassword(int(syscall.Stdin))
	if err != nil {
		log.Fatal("Error reading password:", err.Error())
	}
	return string(bytePassword)
}

func fileDoesNotExist(file string) bool {
	if _, err := os.Stat(file); os.IsNotExist(err) {
		return true
	}
	return false
}

// implements the `ergo mkcerts` command
func doMkcerts(configFile string, quiet bool) {
	config, err := irc.LoadRawConfig(configFile)
	if err != nil {
		log.Fatal(err)
	}
	if !quiet {
		log.Println("making self-signed certificates")
	}

	certToKey := make(map[string]string)
	for name, conf := range config.Server.Listeners {
		if conf.TLS.Cert == "" {
			continue
		}
		existingKey, ok := certToKey[conf.TLS.Cert]
		if ok {
			if existingKey == conf.TLS.Key {
				continue
			} else {
				log.Fatal("Conflicting TLS key files for ", conf.TLS.Cert)
			}
		}
		if !quiet {
			log.Printf(" making cert for %s listener\n", name)
		}
		host := config.Server.Name
		cert, key := conf.TLS.Cert, conf.TLS.Key
		if !(fileDoesNotExist(cert) && fileDoesNotExist(key)) {
			log.Fatalf("Preexisting TLS cert and/or key files: %s %s", cert, key)
		}
		err := mkcerts.CreateCert("Ergo", host, cert, key)
		if err == nil {
			if !quiet {
				log.Printf("  Certificate created at %s : %s\n", cert, key)
			}
			certToKey[cert] = key
		} else {
			log.Fatal("  Could not create certificate:", err.Error())
		}
	}
}

func main() {
	irc.SetVersionString(version, commit)
	usage := `ergo.
Usage:
	ergo initdb [--conf <filename>] [--quiet]
	ergo upgradedb [--conf <filename>] [--quiet]
	ergo importdb <database.json> [--conf <filename>] [--quiet]
	ergo genpasswd [--conf <filename>] [--quiet]
	ergo mkcerts [--conf <filename>] [--quiet]
	ergo defaultconfig
	ergo run [--conf <filename>] [--quiet] [--smoke]
	ergo -h | --help
	ergo --version
Options:
	--conf <filename>  Configuration file to use [default: ircd.yaml].
	--quiet            Don't show startup/shutdown lines.
	-h --help          Show this screen.
	--version          Show version.`

	arguments, _ := docopt.ParseArgs(usage, nil, irc.Ver)

	// don't require a config file for genpasswd
	if arguments["genpasswd"].(bool) {
		var password string
		if term.IsTerminal(int(syscall.Stdin)) {
			fmt.Print("Enter Password: ")
			password = getPasswordFromTerminal()
			fmt.Print("\n")
			fmt.Print("Reenter Password: ")
			confirm := getPasswordFromTerminal()
			fmt.Print("\n")
			if confirm != password {
				log.Fatal("passwords do not match")
			}
		} else {
			reader := bufio.NewReader(os.Stdin)
			text, _ := reader.ReadString('\n')
			password = strings.TrimSpace(text)
		}
		if err := irc.ValidatePassphrase(password); err != nil {
			log.Printf("WARNING: this password contains characters that may cause problems with your IRC client software.\n")
			log.Printf("We strongly recommend choosing a different password.\n")
		}
		hash, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.MinCost)
		if err != nil {
			log.Fatal("encoding error:", err.Error())
		}
		fmt.Println(string(hash))
		return
	} else if arguments["defaultconfig"].(bool) {
		fmt.Print(defaultConfig)
		return
	} else if arguments["mkcerts"].(bool) {
		doMkcerts(arguments["--conf"].(string), arguments["--quiet"].(bool))
		return
	}

	configfile := arguments["--conf"].(string)
	config, err := irc.LoadConfig(configfile)
	if err != nil {
		_, isCertError := err.(*irc.CertKeyError)
		if !(isCertError && arguments["mkcerts"].(bool)) {
			log.Fatal("Config file did not load successfully: ", err.Error())
		}
	}

	logman, err := logger.NewManager(config.Logging)
	if err != nil {
		log.Fatal("Logger did not load successfully:", err.Error())
	}

	if arguments["initdb"].(bool) {
		err = irc.InitDB(config.Datastore.Path)
		if err != nil {
			log.Fatal("Error while initializing db:", err.Error())
		}
		if !arguments["--quiet"].(bool) {
			log.Println("database initialized: ", config.Datastore.Path)
		}
	} else if arguments["upgradedb"].(bool) {
		err = irc.UpgradeDB(config)
		if err != nil {
			log.Fatal("Error while upgrading db:", err.Error())
		}
		if !arguments["--quiet"].(bool) {
			log.Println("database upgraded: ", config.Datastore.Path)
		}
	} else if arguments["importdb"].(bool) {
		err = irc.ImportDB(config, arguments["<database.json>"].(string))
		if err != nil {
			log.Fatal("Error while importing db:", err.Error())
		}
	} else if arguments["run"].(bool) {
		if !arguments["--quiet"].(bool) {
			logman.Info("server", fmt.Sprintf("%s starting", irc.Ver))
		}

		// warning if running a non-final version
		if strings.Contains(irc.Ver, "unreleased") {
			logman.Warning("server", "You are currently running an unreleased beta version of Ergo that may be unstable and could corrupt your database.\nIf you are running a production network, please download the latest build from https://ergo.chat/downloads.html and run that instead.")
		}

		server, err := irc.NewServer(config, logman)
		if err != nil {
			logman.Error("server", fmt.Sprintf("Could not load server: %s", err.Error()))
			os.Exit(1)
		}
		if !arguments["--smoke"].(bool) {
			server.Run()
		}
	}
}
Attempt to add mostly-correct license info at the top of each file... track this stuff a bit better 2016-06-15 21:50:56 +10:00			`// Copyright (c) 2012-2014 Jeremy Latt`
			`// Copyright (c) 2014-2015 Edmund Huber`
Fix dates at top of source files 2017-03-27 22:15:02 +10:00			`// Copyright (c) 2016-2017 Daniel Oaks <daniel@danieloaks.net>`
Attempt to add mostly-correct license info at the top of each file... track this stuff a bit better 2016-06-15 21:50:56 +10:00			`// released under the MIT license`

organize like a proper go package 2014-02-08 13:18:11 -08:00			`package main`

			`import (`
Allow piping into genpasswd for docker 2019-02-03 07:21:46 +10:00			`"bufio"`
fix #2157 Embed a copy of the ergo default config in the binary; add `ergo defaultconfig` to print it to stdout 2024-05-27 23:08:11 -04:00			`_ "embed"`
do bcrypt in the client main routine 2014-02-23 22:21:39 -08:00			`"fmt"`
configure server with json 2014-02-09 07:53:42 -08:00			`"log"`
Allow piping into genpasswd for docker 2019-02-03 07:21:46 +10:00			`"os"`
startup: Add warning about running unreleased versions 2017-07-01 07:07:48 +10:00			`"strings"`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`"syscall"`
convert some args to subcommands 2014-03-12 18:57:00 -07:00
refactor the password hashing / password autoupgrade system 2018-08-05 22:51:39 -04:00			`"golang.org/x/crypto/bcrypt"`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`"golang.org/x/term"`
first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00
			`"github.com/docopt/docopt-go"`
			`"github.com/ergochat/ergo/irc"`
			`"github.com/ergochat/ergo/irc/logger"`
			`"github.com/ergochat/ergo/irc/mkcerts"`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`)`
convert some args to subcommands 2014-03-12 18:57:00 -07:00
tweak version strings again 2020-05-21 11:25:30 -04:00			`// set via linker flags, either by make or by goreleaser:`
			`var commit = "" // git hash`
			`var version = "" // tagged version`
Expose current git commit 2018-04-09 10:08:54 +10:00
fix #2157 Embed a copy of the ergo default config in the binary; add `ergo defaultconfig` to print it to stdout 2024-05-27 23:08:11 -04:00			`//go:embed default.yaml`
			`var defaultConfig string`

when entering/generating the password it's helpful to at least be asked to confirm the input so if you get something like an extraneous character, on confirmation, you could catch that 2018-04-10 13:21:51 -04:00			`// get a password from stdin from the user`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`func getPasswordFromTerminal() string {`
			`bytePassword, err := term.ReadPassword(int(syscall.Stdin))`
			`if err != nil {`
			`log.Fatal("Error reading password:", err.Error())`
when entering/generating the password it's helpful to at least be asked to confirm the input so if you get something like an extraneous character, on confirmation, you could catch that 2018-04-10 13:21:51 -04:00			`}`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`return string(bytePassword)`
when entering/generating the password it's helpful to at least be asked to confirm the input so if you get something like an extraneous character, on confirmation, you could catch that 2018-04-10 13:21:51 -04:00			`}`

fix #622 2019-09-11 20:15:34 -04:00			`func fileDoesNotExist(file string) bool {`
			`if _, err := os.Stat(file); os.IsNotExist(err) {`
			`return true`
			`}`
			`return false`
			`}`

first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00			// implements the `ergo mkcerts` command
new format for listener section 2019-06-28 10:45:34 -04:00			`func doMkcerts(configFile string, quiet bool) {`
			`config, err := irc.LoadRawConfig(configFile)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
			`if !quiet {`
			`log.Println("making self-signed certificates")`
			`}`

			`certToKey := make(map[string]string)`
			`for name, conf := range config.Server.Listeners {`
			`if conf.TLS.Cert == "" {`
			`continue`
			`}`
			`existingKey, ok := certToKey[conf.TLS.Cert]`
			`if ok {`
			`if existingKey == conf.TLS.Key {`
			`continue`
			`} else {`
fix #622 2019-09-11 20:15:34 -04:00			`log.Fatal("Conflicting TLS key files for ", conf.TLS.Cert)`
new format for listener section 2019-06-28 10:45:34 -04:00			`}`
			`}`
			`if !quiet {`
			`log.Printf(" making cert for %s listener\n", name)`
			`}`
			`host := config.Server.Name`
			`cert, key := conf.TLS.Cert, conf.TLS.Key`
fix #622 2019-09-11 20:15:34 -04:00			`if !(fileDoesNotExist(cert) && fileDoesNotExist(key)) {`
			`log.Fatalf("Preexisting TLS cert and/or key files: %s %s", cert, key)`
			`}`
first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00			`err := mkcerts.CreateCert("Ergo", host, cert, key)`
new format for listener section 2019-06-28 10:45:34 -04:00			`if err == nil {`
			`if !quiet {`
			`log.Printf(" Certificate created at %s : %s\n", cert, key)`
			`}`
			`certToKey[cert] = key`
			`} else {`
			`log.Fatal(" Could not create certificate:", err.Error())`
			`}`
			`}`
			`}`

Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`func main() {`
tweak version strings again 2020-05-21 11:25:30 -04:00			`irc.SetVersionString(version, commit)`
first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00			usage := `ergo.
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`Usage:`
first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00			`ergo initdb [--conf <filename>] [--quiet]`
			`ergo upgradedb [--conf <filename>] [--quiet]`
			`ergo importdb <database.json> [--conf <filename>] [--quiet]`
			`ergo genpasswd [--conf <filename>] [--quiet]`
			`ergo mkcerts [--conf <filename>] [--quiet]`
fix #2157 Embed a copy of the ergo default config in the binary; add `ergo defaultconfig` to print it to stdout 2024-05-27 23:08:11 -04:00			`ergo defaultconfig`
first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00			`ergo run [--conf <filename>] [--quiet] [--smoke]`
			`ergo -h \| --help`
			`ergo --version`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`Options:`
			`--conf <filename> Configuration file to use [default: ircd.yaml].`
oragono: add --quiet flag 2016-09-19 22:30:45 +10:00			`--quiet Don't show startup/shutdown lines.`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`-h --help Show this screen.`
			--version Show version.`

tweak version strings again 2020-05-21 11:25:30 -04:00			`arguments, _ := docopt.ParseArgs(usage, nil, irc.Ver)`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00
fix #952 2020-05-08 01:16:49 -04:00			`// don't require a config file for genpasswd`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`if arguments["genpasswd"].(bool) {`
Allow piping into genpasswd for docker 2019-02-03 07:21:46 +10:00			`var password string`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`if term.IsTerminal(int(syscall.Stdin)) {`
Allow piping into genpasswd for docker 2019-02-03 07:21:46 +10:00			`fmt.Print("Enter Password: ")`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`password = getPasswordFromTerminal()`
Allow piping into genpasswd for docker 2019-02-03 07:21:46 +10:00			`fmt.Print("\n")`
			`fmt.Print("Reenter Password: ")`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`confirm := getPasswordFromTerminal()`
Allow piping into genpasswd for docker 2019-02-03 07:21:46 +10:00			`fmt.Print("\n")`
			`if confirm != password {`
			`log.Fatal("passwords do not match")`
			`}`
			`} else {`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`reader := bufio.NewReader(os.Stdin)`
			`text, _ := reader.ReadString('\n')`
			`password = strings.TrimSpace(text)`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`}`
make `ergo genpasswd` warn for bad passwords 2021-10-28 19:29:55 -04:00			`if err := irc.ValidatePassphrase(password); err != nil {`
			`log.Printf("WARNING: this password contains characters that may cause problems with your IRC client software.\n")`
			`log.Printf("We strongly recommend choosing a different password.\n")`
			`}`
refactor the password hashing / password autoupgrade system 2018-08-05 22:51:39 -04:00			`hash, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.MinCost)`
move password handling into a single file 2014-03-01 15:10:04 -08:00			`if err != nil {`
logger: Very initial working new logs 2017-03-06 15:50:23 +10:00			`log.Fatal("encoding error:", err.Error())`
move password handling into a single file 2014-03-01 15:10:04 -08:00			`}`
upgrade to x/term instead of crypto/ssh/terminal Simplify some of the password hashing logic. This requires a bump of irctest. 2023-04-19 02:58:50 -04:00			`fmt.Println(string(hash))`
history replay enhancements 2018-12-28 13:45:55 -05:00			`return`
don't require a config file for defaultconfig 2024-06-09 03:20:33 -04:00			`} else if arguments["defaultconfig"].(bool) {`
			`fmt.Print(defaultConfig)`
			`return`
new format for listener section 2019-06-28 10:45:34 -04:00			`} else if arguments["mkcerts"].(bool) {`
			`doMkcerts(arguments["--conf"].(string), arguments["--quiet"].(bool))`
			`return`
history replay enhancements 2018-12-28 13:45:55 -05:00			`}`

			`configfile := arguments["--conf"].(string)`
			`config, err := irc.LoadConfig(configfile)`
fix #982 2020-05-06 05:53:45 -04:00			`if err != nil {`
			`_, isCertError := err.(*irc.CertKeyError)`
			`if !(isCertError && arguments["mkcerts"].(bool)) {`
			`log.Fatal("Config file did not load successfully: ", err.Error())`
			`}`
history replay enhancements 2018-12-28 13:45:55 -05:00			`}`

			`logman, err := logger.NewManager(config.Logging)`
			`if err != nil {`
			`log.Fatal("Logger did not load successfully:", err.Error())`
			`}`

			`if arguments["initdb"].(bool) {`
first draft of atheme migration code 2020-10-02 16:48:37 -04:00			`err = irc.InitDB(config.Datastore.Path)`
			`if err != nil {`
			`log.Fatal("Error while initializing db:", err.Error())`
			`}`
oragono: add --quiet flag 2016-09-19 22:30:45 +10:00			`if !arguments["--quiet"].(bool) {`
			`log.Println("database initialized: ", config.Datastore.Path)`
			`}`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`} else if arguments["upgradedb"].(bool) {`
implement database auto-upgrades (#243) 2018-04-16 16:28:31 -04:00			`err = irc.UpgradeDB(config)`
			`if err != nil {`
			`log.Fatal("Error while upgrading db:", err.Error())`
			`}`
oragono: add --quiet flag 2016-09-19 22:30:45 +10:00			`if !arguments["--quiet"].(bool) {`
			`log.Println("database upgraded: ", config.Datastore.Path)`
			`}`
first draft of atheme migration code 2020-10-02 16:48:37 -04:00			`} else if arguments["importdb"].(bool) {`
			`err = irc.ImportDB(config, arguments["<database.json>"].(string))`
			`if err != nil {`
			`log.Fatal("Error while importing db:", err.Error())`
			`}`
Use docopt for command-line processing and new YAML configuration format 2016-04-12 23:00:09 +10:00			`} else if arguments["run"].(bool) {`
logger: Better colours and output 2017-03-06 20:15:28 +10:00			`if !arguments["--quiet"].(bool) {`
tweak version strings again 2020-05-21 11:25:30 -04:00			`logman.Info("server", fmt.Sprintf("%s starting", irc.Ver))`
logger: Better colours and output 2017-03-06 20:15:28 +10:00			`}`
Integrate StackImpact profiling 2017-04-30 12:35:07 +10:00
startup: Add warning about running unreleased versions 2017-07-01 07:07:48 +10:00			`// warning if running a non-final version`
tweak version strings again 2020-05-21 11:25:30 -04:00			`if strings.Contains(irc.Ver, "unreleased") {`
first pass at renaming Oragono to Ergo 2021-05-25 00:34:38 -04:00			`logman.Warning("server", "You are currently running an unreleased beta version of Ergo that may be unstable and could corrupt your database.\nIf you are running a production network, please download the latest build from https://ergo.chat/downloads.html and run that instead.")`
startup: Add warning about running unreleased versions 2017-07-01 07:07:48 +10:00			`}`

Don't override package name 2017-11-19 10:42:40 +10:00			`server, err := irc.NewServer(config, logman)`
logger: Very initial working new logs 2017-03-06 15:50:23 +10:00			`if err != nil {`
unify "startup", "rehash", and "shutdown" log categories as "server" 2019-02-02 21:12:17 -05:00			`logman.Error("server", fmt.Sprintf("Could not load server: %s", err.Error()))`
exit 1 if startup fails 2019-02-02 21:15:41 -05:00			`os.Exit(1)`
Handle db better, fix bug, update db schema, rest 2016-11-06 13:47:13 +10:00			`}`
add --smoke option 2020-03-24 09:53:04 -04:00			`if !arguments["--smoke"].(bool) {`
			`server.Run()`
			`}`
convert some args to subcommands 2014-03-12 18:57:00 -07:00			`}`
organize like a proper go package 2014-02-08 13:18:11 -08:00			`}`