| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064 |
- package functions
- import (
- //"github.com/davecgh/go-spew/spew"
- "fmt"
- "time"
- "errors"
- "context"
- "net/http"
- "io/ioutil"
- "io"
- "strings"
- "log"
- "net"
- "os"
- "strconv"
- "os/exec"
- "github.com/gravitl/netmaker/netclient/config"
- nodepb "github.com/gravitl/netmaker/grpc"
- "golang.zx2c4.com/wireguard/wgctrl"
- "google.golang.org/grpc"
- "google.golang.org/grpc/metadata"
- "golang.zx2c4.com/wireguard/wgctrl/wgtypes"
- //homedir "github.com/mitchellh/go-homedir"
- )
- var (
- wcclient nodepb.NodeServiceClient
- )
- func Install(accesskey string, password string, server string, group string, noauto bool) error {
- wgclient, err := wgctrl.New()
- if err != nil {
- log.Fatalf("failed to open client: %v", err)
- }
- defer wgclient.Close()
- nodecfg := config.Config.Node
- servercfg := config.Config.Server
- fmt.Println("SERVER SETTINGS:")
- if server == "" {
- if servercfg.Address == "" {
- log.Fatal("no server provided")
- } else {
- server = servercfg.Address
- }
- }
- fmt.Println(" Server: " + server)
- if accesskey == "" {
- if servercfg.AccessKey == "" {
- fmt.Println("no access key provided.Proceeding anyway.")
- } else {
- accesskey = servercfg.AccessKey
- }
- }
- fmt.Println(" AccessKey: " + accesskey)
- err = config.WriteServer(server, accesskey)
- if err != nil {
- fmt.Println("Error encountered while writing Server Config.")
- return err
- }
- fmt.Println("NODE REQUESTING SETTINGS:")
- if password == "" {
- if nodecfg.Password == "" {
- //create error here
- log.Fatal("no password provided")
- } else {
- password = nodecfg.Password
- }
- }
- fmt.Println(" Password: " + password)
- if group == "badgroup" {
- if nodecfg.Group == "" {
- //create error here
- log.Fatal("no group provided")
- } else {
- group = nodecfg.Group
- }
- }
- fmt.Println(" Group: " + group)
- var macaddress string
- var localaddress string
- var listenport int32
- var keepalive int32
- var publickey wgtypes.Key
- var privatekey wgtypes.Key
- var privkeystring string
- var endpoint string
- var name string
- var wginterface string
- if nodecfg.Endpoint == "" {
- endpoint, err = getPublicIP()
- if err != nil {
- return err
- }
- } else {
- endpoint = nodecfg.Endpoint
- }
- fmt.Println(" Public Endpoint: " + endpoint)
- if nodecfg.LocalAddress == "" {
- ifaces, err := net.Interfaces()
- if err != nil {
- return err
- }
- var local string
- found := false
- for _, i := range ifaces {
- if i.Flags&net.FlagUp == 0 {
- continue // interface down
- }
- if i.Flags&net.FlagLoopback != 0 {
- continue // loopback interface
- }
- addrs, err := i.Addrs()
- if err != nil {
- return err
- }
- for _, addr := range addrs {
- var ip net.IP
- switch v := addr.(type) {
- case *net.IPNet:
- if !found {
- ip = v.IP
- local = ip.String()
- found = true
- }
- case *net.IPAddr:
- if !found {
- ip = v.IP
- local = ip.String()
- found = true
- }
- }
- }
- }
- localaddress = local
- } else {
- localaddress = nodecfg.LocalAddress
- }
- fmt.Println(" Local Address: " + localaddress)
- if nodecfg.Name != "" {
- name = nodecfg.Name
- }
- fmt.Println(" Name: " + name)
- if nodecfg.Interface != "" {
- wginterface = nodecfg.Interface
- }
- fmt.Println(" Interface: " + wginterface)
- if nodecfg.KeepAlive != 0 {
- keepalive = nodecfg.KeepAlive
- }
- fmt.Println(" KeepAlive: " + wginterface)
- if nodecfg.Port != 0 {
- listenport = nodecfg.Port
- }
- fmt.Println(" Port: " + string(listenport))
- if nodecfg.PrivateKey != "" {
- privkeystring = nodecfg.PrivateKey
- privatekey, err := wgtypes.ParseKey(nodecfg.PrivateKey)
- if err != nil {
- log.Fatal(err)
- }
- if nodecfg.PublicKey != "" {
- publickey, err = wgtypes.ParseKey(nodecfg.PublicKey)
- if err != nil {
- log.Fatal(err)
- }
- } else {
- publickey = privatekey.PublicKey()
- }
- } else {
- privatekey, err := wgtypes.GeneratePrivateKey()
- if err != nil {
- log.Fatal(err)
- }
- privkeystring = privatekey.String()
- publickey = privatekey.PublicKey()
- }
- if nodecfg.MacAddress != "" {
- macaddress = nodecfg.MacAddress
- } else {
- macs, err := getMacAddr()
- if err != nil {
- return err
- } else if len(macs) == 0 {
- log.Fatal()
- } else {
- macaddress = macs[0]
- }
- }
- fmt.Println(" Mac Address: " + macaddress)
- fmt.Println(" Private Key: " + privatekey.String())
- fmt.Println(" Public Key: " + publickey.String())
- var wcclient nodepb.NodeServiceClient
- var requestOpts grpc.DialOption
- requestOpts = grpc.WithInsecure()
- conn, err := grpc.Dial(server, requestOpts)
- if err != nil {
- log.Fatalf("Unable to establish client connection to localhost:50051: %v", err)
- }
- wcclient = nodepb.NewNodeServiceClient(conn)
- postnode := &nodepb.Node{
- Password: password,
- Macaddress: macaddress,
- Accesskey: accesskey,
- Nodegroup: group,
- Listenport: listenport,
- Keepalive: keepalive,
- Localaddress: localaddress,
- Interface: wginterface,
- Publickey: publickey.String(),
- Name: name,
- Endpoint: endpoint,
- }
- fmt.Println("Writing node settings to netconfig file.")
- err = modConfig(postnode)
- if err != nil {
- return err
- }
- res, err := wcclient.CreateNode(
- context.TODO(),
- &nodepb.CreateNodeReq{
- Node: postnode,
- },
- )
- if err != nil {
- return err
- }
- node := res.Node
- fmt.Println("Setting local config from server response")
- if err != nil {
- return err
- }
- fmt.Println("NODE RECIEVED SETTINGS: ")
- fmt.Println(" Password: " + node.Password)
- fmt.Println(" WG Address: " + node.Address)
- fmt.Println(" Group: " + node.Nodegroup)
- fmt.Println(" Public Endpoint: " + node.Endpoint)
- fmt.Println(" Local Address: " + node.Localaddress)
- fmt.Println(" Name: " + node.Name)
- fmt.Println(" Interface: " + node.Interface)
- fmt.Println(" Port: " + strconv.FormatInt(int64(node.Listenport), 10))
- fmt.Println(" KeepAlive: " + strconv.FormatInt(int64(node.Keepalive), 10))
- fmt.Println(" Public Key: " + node.Publickey)
- fmt.Println(" Mac Address: " + node.Macaddress)
- err = modConfig(node)
- if err != nil {
- return err
- }
- if node.Ispending {
- fmt.Println("Node is marked as PENDING.")
- fmt.Println("Awaiting approval from Admin before configuring WireGuard.")
- if !noauto {
- fmt.Println("Configuring Netmaker Service.")
- err = ConfigureSystemD()
- return err
- }
- }
- peers, err := getPeers(node.Macaddress, node.Nodegroup, server)
- if err != nil {
- return err
- }
- fmt.Println("retrived peers, setting wireguard config.")
- err = storePrivKey(privkeystring)
- if err != nil {
- return err
- }
- err = initWireguard(node, privkeystring, peers)
- if err != nil {
- return err
- }
- if !noauto {
- err = ConfigureSystemD()
- }
- if err != nil {
- return err
- }
- return err
- }
- func getPublicIP() (string, error) {
- iplist := []string{"https://ifconfig.me", "http://api.ipify.org", "http://ipinfo.io/ip"}
- endpoint := ""
- var err error
- for _, ipserver := range iplist {
- resp, err := http.Get(ipserver)
- if err != nil {
- continue
- }
- defer resp.Body.Close()
- if resp.StatusCode == http.StatusOK {
- bodyBytes, err := ioutil.ReadAll(resp.Body)
- if err != nil {
- continue
- }
- endpoint = string(bodyBytes)
- break
- }
- }
- if err == nil && endpoint == "" {
- err = errors.New("Public Address Not Found.")
- }
- return endpoint, err
- }
- func modConfig(node *nodepb.Node) error{
- modconfig := config.Config
- modconfig.ReadConfig()
- nodecfg := modconfig.Node
- if node.Name != ""{
- nodecfg.Name = node.Name
- }
- if node.Interface != ""{
- nodecfg.Interface = node.Interface
- }
- if node.Nodegroup != ""{
- nodecfg.Group = node.Nodegroup
- }
- if node.Macaddress != ""{
- nodecfg.MacAddress = node.Macaddress
- }
- if node.Localaddress != ""{
- nodecfg.LocalAddress = node.Localaddress
- }
- if node.Listenport != 0{
- nodecfg.Port = node.Listenport
- }
- if node.Keepalive != 0{
- nodecfg.KeepAlive = node.Keepalive
- }
- if node.Publickey != ""{
- nodecfg.PublicKey = node.Publickey
- }
- if node.Endpoint != ""{
- nodecfg.Endpoint = node.Endpoint
- }
- if node.Password != ""{
- nodecfg.Password = node.Password
- }
- if node.Address != ""{
- nodecfg.WGAddress = node.Address
- }
- if node.Postchanges != "" {
- nodecfg.PostChanges = node.Postchanges
- }
- modconfig.Node = nodecfg
- err := config.Write(modconfig)
- return err
- }
- func getMacAddr() ([]string, error) {
- ifas, err := net.Interfaces()
- if err != nil {
- return nil, err
- }
- var as []string
- for _, ifa := range ifas {
- a := ifa.HardwareAddr.String()
- if a != "" {
- as = append(as, a)
- }
- }
- return as, nil
- }
- /*
- func read(macaddress string, group string) error {
- //this would be used for retrieving state as set by the server.
- }
- func checkLocalConfigChange() error {
- }
- */
- func initWireguard(node *nodepb.Node, privkey string, peers []wgtypes.PeerConfig) error {
- ipExec, err := exec.LookPath("ip")
- if err != nil {
- return err
- }
- key, err := wgtypes.ParseKey(privkey)
- if err != nil {
- return err
- }
- wgclient, err := wgctrl.New()
- modcfg := config.Config
- modcfg.ReadConfig()
- nodecfg := modcfg.Node
- fmt.Println("beginning local WG config")
- if err != nil {
- log.Fatalf("failed to open client: %v", err)
- }
- defer wgclient.Close()
- fmt.Println("setting local settings")
- ifacename := node.Interface
- if nodecfg.Interface != "" {
- ifacename = nodecfg.Interface
- } else if node.Interface != "" {
- ifacename = node.Interface
- } else {
- log.Fatal("no interface to configure")
- }
- if node.Address == "" {
- log.Fatal("no address to configure")
- }
- cmdIPDevLinkAdd := &exec.Cmd {
- Path: ipExec,
- Args: []string{ ipExec, "link", "add", "dev", ifacename, "type", "wireguard" },
- Stdout: os.Stdout,
- Stderr: os.Stdout,
- }
- cmdIPAddrAdd := &exec.Cmd {
- Path: ipExec,
- Args: []string{ ipExec, "address", "add", "dev", ifacename, node.Address+"/24"},
- Stdout: os.Stdout,
- Stderr: os.Stdout,
- }
- currentiface, err := net.InterfaceByName(ifacename)
- if err != nil {
- err = cmdIPDevLinkAdd.Run()
- if err != nil && !strings.Contains(err.Error(), "exists") {
- fmt.Println("Error creating interface")
- //fmt.Println(err.Error())
- //return err
- }
- }
- match := false
- addrs, _ := currentiface.Addrs()
- for _, a := range addrs {
- if strings.Contains(a.String(), node.Address){
- match = true
- }
- }
- if !match {
- err = cmdIPAddrAdd.Run()
- if err != nil {
- fmt.Println("Error adding address")
- //return err
- }
- }
- var nodeport int
- nodeport = int(node.Listenport)
- fmt.Println("setting WG config from node and peers")
- //pubkey := privkey.PublicKey()
- conf := wgtypes.Config{
- PrivateKey: &key,
- ListenPort: &nodeport,
- ReplacePeers: true,
- Peers: peers,
- }
- _, err = wgclient.Device(ifacename)
- if err != nil {
- if os.IsNotExist(err) {
- fmt.Println("Device does not exist: ")
- fmt.Println(err)
- } else {
- log.Fatalf("Unknown config error: %v", err)
- }
- }
- fmt.Println("configuring WG device")
- err = wgclient.ConfigureDevice(ifacename, conf)
- if err != nil {
- if os.IsNotExist(err) {
- fmt.Println("Device does not exist: ")
- fmt.Println(err)
- } else {
- fmt.Printf("This is inconvenient: %v", err)
- }
- }
- cmdIPLinkUp := &exec.Cmd {
- Path: ipExec,
- Args: []string{ ipExec, "link", "set", "up", "dev", ifacename},
- Stdout: os.Stdout,
- Stderr: os.Stdout,
- }
- cmdIPLinkDown := &exec.Cmd {
- Path: ipExec,
- Args: []string{ ipExec, "link", "set", "down", "dev", ifacename},
- Stdout: os.Stdout,
- Stderr: os.Stdout,
- }
- err = cmdIPLinkDown.Run()
- err = cmdIPLinkUp.Run()
- if err != nil {
- return err
- }
- return err
- }
- func setWGConfig() error {
- servercfg := config.Config.Server
- nodecfg := config.Config.Node
- node := getNode()
- peers, err := getPeers(node.Macaddress, nodecfg.Group, servercfg.Address)
- if err != nil {
- return err
- }
- privkey, err := retrievePrivKey()
- if err != nil {
- return err
- }
- err = initWireguard(&node, privkey, peers)
- if err != nil {
- return err
- }
- return err
- }
- func storePrivKey(key string) error{
- d1 := []byte(key)
- err := ioutil.WriteFile("/root/.wckey", d1, 0644)
- return err
- }
- func retrievePrivKey() (string, error) {
- dat, err := ioutil.ReadFile("/root/.wckey")
- return string(dat), err
- }
- func getPrivateAddr() (string, error) {
- ifaces, err := net.Interfaces()
- if err != nil {
- return "", err
- }
- var local string
- found := false
- for _, i := range ifaces {
- if i.Flags&net.FlagUp == 0 {
- continue // interface down
- }
- if i.Flags&net.FlagLoopback != 0 {
- continue // loopback interface
- }
- addrs, err := i.Addrs()
- if err != nil {
- return "", err
- }
- for _, addr := range addrs {
- var ip net.IP
- switch v := addr.(type) {
- case *net.IPNet:
- if !found {
- ip = v.IP
- local = ip.String()
- found = true
- }
- case *net.IPAddr:
- if !found {
- ip = v.IP
- local = ip.String()
- found = true
- }
- }
- }
- }
- if !found {
- err := errors.New("Local Address Not Found.")
- return "", err
- }
- return local, err
- }
- func CheckIn() error {
- node := getNode()
- nodecfg := config.Config.Node
- servercfg := config.Config.Server
- fmt.Println("Checking into server: " + servercfg.Address)
- setupcheck := true
- ipchange := false
- if !nodecfg.RoamingOff {
- fmt.Println("Checking to see if addresses have changed")
- extIP, err := getPublicIP()
- if err != nil {
- fmt.Printf("Error encountered checking ip addresses: %v", err)
- }
- if nodecfg.Endpoint != extIP && extIP != "" {
- fmt.Println("Endpoint has changed from " +
- nodecfg.Endpoint + " to " + extIP)
- fmt.Println("Updating address")
- nodecfg.Endpoint = extIP
- nodecfg.PostChanges = "true"
- node.Endpoint = extIP
- node.Postchanges = "true"
- ipchange = true
- }
- intIP, err := getPrivateAddr()
- if err != nil {
- fmt.Printf("Error encountered checking ip addresses: %v", err)
- }
- if nodecfg.LocalAddress != intIP && intIP != "" {
- fmt.Println("Local Address has changed from " +
- nodecfg.LocalAddress + " to " + intIP)
- fmt.Println("Updating address")
- nodecfg.LocalAddress = intIP
- nodecfg.PostChanges = "true"
- node.Localaddress = intIP
- node.Postchanges = "true"
- ipchange = true
- }
- if node.Postchanges != "true" {
- fmt.Println("Addresses have not changed.")
- }
- }
- if ipchange {
- err := modConfig(&node)
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- err = setWGConfig()
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- node = getNode()
- nodecfg = config.Config.Node
- }
- var wcclient nodepb.NodeServiceClient
- var requestOpts grpc.DialOption
- requestOpts = grpc.WithInsecure()
- conn, err := grpc.Dial(servercfg.Address, requestOpts)
- if err != nil {
- fmt.Printf("Cant dial GRPC server: %v", err)
- return err
- }
- wcclient = nodepb.NewNodeServiceClient(conn)
- ctx := context.Background()
- fmt.Println("Authenticating with GRPC Server")
- ctx, err = SetJWT(wcclient)
- if err != nil {
- fmt.Printf("Failed to authenticate: %v", err)
- return err
- }
- fmt.Println("Authenticated")
- fmt.Println("Checking In.")
- var header metadata.MD
- checkinres, err := wcclient.CheckIn(
- ctx,
- &nodepb.CheckInReq{
- Node: &node,
- },
- grpc.Header(&header),
- )
- if err != nil {
- if checkinres != nil && checkinres.Checkinresponse.Ispending {
- fmt.Println("Node is in pending status. Waiting for Admin approval of node before making furtherupdates.")
- return nil
- }
- fmt.Printf("Unable to process Check In request: %v", err)
- return err
- }
- fmt.Println("Checked in.")
- if checkinres.Checkinresponse.Ispending {
- fmt.Println("Node is in pending status. Waiting for Admin approval of node before making furtherupdates.")
- return err
- }
- newinterface := getNode().Interface
- readreq := &nodepb.ReadNodeReq{
- Macaddress: node.Macaddress,
- Group: node.Nodegroup,
- }
- readres, err := wcclient.ReadNode(ctx, readreq, grpc.Header(&header))
- if err != nil {
- fmt.Printf("Error: %v", err)
- } else {
- currentiface := readres.Node.Interface
- ifaceupdate := newinterface != currentiface
- if err != nil {
- log.Printf("Error retrieving interface: %v", err)
- }
- if ifaceupdate {
- fmt.Println("Interface update: " + currentiface +
- " >>>> " + newinterface)
- err := DeleteInterface(currentiface)
- if err != nil {
- fmt.Println("ERROR DELETING INTERFACE: " + currentiface)
- }
- }
- err = setWGConfig()
- }
- if checkinres.Checkinresponse.Needconfigupdate {
- fmt.Println("Server has requested that node update config.")
- fmt.Println("Updating config from remote server.")
- req := &nodepb.ReadNodeReq{
- Macaddress: node.Macaddress,
- Group: node.Nodegroup,
- }
- readres, err := wcclient.ReadNode(ctx, req, grpc.Header(&header))
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- err = modConfig(readres.Node)
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- err = setWGConfig()
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- setupcheck = false
- } else if nodecfg.PostChanges == "true" {
- fmt.Println("Node has requested to update remote config.")
- fmt.Println("Posting local config to remote server.")
- postnode := getNode()
- req := &nodepb.UpdateNodeReq{
- Node: &postnode,
- }
- res, err := wcclient.UpdateNode(ctx, req, grpc.Header(&header))
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- res.Node.Postchanges = "false"
- err = modConfig(res.Node)
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- err = setWGConfig()
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- setupcheck = false
- }
- if checkinres.Checkinresponse.Needpeerupdate {
- fmt.Println("Server has requested that node update peer list.")
- fmt.Println("Updating peer list from remote server.")
- err = setWGConfig()
- if err != nil {
- return err
- log.Fatalf("Unable to process Set Peers request: %v", err)
- }
- setupcheck = false
- }
- if setupcheck {
- iface := nodecfg.Interface
- _, err := net.InterfaceByName(iface)
- if err != nil {
- fmt.Println("interface " + iface + " does not currently exist. Setting up WireGuard.")
- err = setWGConfig()
- if err != nil {
- return err
- log.Fatalf("Error: %v", err)
- }
- }
- }
- return nil
- }
- func needInterfaceUpdate(ctx context.Context, mac string, group string, iface string) (bool, string, error) {
- var header metadata.MD
- req := &nodepb.ReadNodeReq{
- Macaddress: mac,
- Group: group,
- }
- readres, err := wcclient.ReadNode(ctx, req, grpc.Header(&header))
- if err != nil {
- return false, "", err
- log.Fatalf("Error: %v", err)
- }
- oldiface := readres.Node.Interface
- return iface != oldiface, oldiface, err
- }
- func getNode() nodepb.Node {
- modcfg := config.Config
- modcfg.ReadConfig()
- nodecfg := modcfg.Node
- var node nodepb.Node
- node.Name = nodecfg.Name
- node.Interface = nodecfg.Interface
- node.Nodegroup = nodecfg.Group
- node.Localaddress = nodecfg.LocalAddress
- node.Address = nodecfg.WGAddress
- node.Listenport = nodecfg.Port
- node.Keepalive = nodecfg.KeepAlive
- node.Postup = nodecfg.PostUp
- node.Preup = nodecfg.PreUp
- node.Publickey = nodecfg.PublicKey
- node.Macaddress = nodecfg.MacAddress
- node.Endpoint = nodecfg.Endpoint
- node.Password = nodecfg.Password
- //spew.Dump(node)
- return node
- }
- func Remove() error {
- //need to implement checkin on server side
- servercfg := config.Config.Server
- node := config.Config.Node
- fmt.Println("Deleting remote node with MAC: " + node.MacAddress)
- var wcclient nodepb.NodeServiceClient
- var requestOpts grpc.DialOption
- requestOpts = grpc.WithInsecure()
- conn, err := grpc.Dial(servercfg.Address, requestOpts)
- if err != nil {
- log.Printf("Unable to establish client connection to " + servercfg.Address + ": %v", err)
- //return err
- }else {
- wcclient = nodepb.NewNodeServiceClient(conn)
- ctx := context.Background()
- fmt.Println("Authenticating with GRPC Server")
- ctx, err = SetJWT(wcclient)
- if err != nil {
- //return err
- log.Printf("Failed to authenticate: %v", err)
- } else {
- fmt.Println("Authenticated")
- var header metadata.MD
- _, err = wcclient.DeleteNode(
- ctx,
- &nodepb.DeleteNodeReq{
- Macaddress: node.MacAddress,
- GroupName: node.Group,
- },
- grpc.Header(&header),
- )
- if err != nil {
- log.Printf("Encountered error deleting node: %v", err)
- fmt.Println(err)
- } else {
- fmt.Println("Deleted node " + node.MacAddress)
- }
- }
- }
- err = WipeLocal()
- if err != nil {
- log.Printf("Unable to wipe local config: %v", err)
- }
- err = RemoveSystemDServices()
- if err != nil {
- return err
- log.Printf("Unable to remove systemd services: %v", err)
- }
- fmt.Printf("Please investigate any stated errors to ensure proper removal.")
- fmt.Printf("Failure to delete node from server via gRPC will mean node still exists and needs to be manually deleted by administrator.")
- return nil
- }
- func WipeLocal() error{
- nodecfg := config.Config.Node
- ifacename := nodecfg.Interface
- //home, err := homedir.Dir()
- home := "/etc/netclient"
- err := os.Remove(home + "/.netconfig")
- if err != nil {
- fmt.Println(err)
- }
- err = os.Remove(home + "/.nettoken")
- if err != nil {
- fmt.Println(err)
- }
- ipExec, err := exec.LookPath("ip")
- if ifacename != "" {
- cmdIPLinkDel := &exec.Cmd {
- Path: ipExec,
- Args: []string{ ipExec, "link", "del", ifacename },
- Stdout: os.Stdout,
- Stderr: os.Stdout,
- }
- err = cmdIPLinkDel.Run()
- if err != nil {
- fmt.Println(err)
- }
- }
- return err
- }
- func DeleteInterface(ifacename string) error{
- ipExec, err := exec.LookPath("ip")
- cmdIPLinkDel := &exec.Cmd {
- Path: ipExec,
- Args: []string{ ipExec, "link", "del", ifacename },
- Stdout: os.Stdout,
- Stderr: os.Stdout,
- }
- err = cmdIPLinkDel.Run()
- if err != nil {
- fmt.Println(err)
- }
- return err
- }
- func getPeers(macaddress string, group string, server string) ([]wgtypes.PeerConfig, error) {
- //need to implement checkin on server side
- var peers []wgtypes.PeerConfig
- var wcclient nodepb.NodeServiceClient
- modcfg := config.Config
- modcfg.ReadConfig()
- nodecfg := modcfg.Node
- keepalive := nodecfg.KeepAlive
- keepalivedur, err := time.ParseDuration(strconv.FormatInt(int64(keepalive), 10) + "s")
- if err != nil {
- log.Fatalf("Issue with format of keepalive value. Please update netconfig: %v", err)
- }
- fmt.Println("Registering with GRPC Server")
- requestOpts := grpc.WithInsecure()
- conn, err := grpc.Dial(server, requestOpts)
- if err != nil {
- log.Fatalf("Unable to establish client connection to localhost:50051: %v", err)
- }
- // Instantiate the BlogServiceClient with our client connection to the server
- wcclient = nodepb.NewNodeServiceClient(conn)
- req := &nodepb.GetPeersReq{
- Macaddress: macaddress,
- Group: group,
- }
- ctx := context.Background()
- fmt.Println("Authenticating with GRPC Server")
- ctx, err = SetJWT(wcclient)
- if err != nil {
- fmt.Println("Failed to authenticate.")
- return peers, err
- }
- var header metadata.MD
- stream, err := wcclient.GetPeers(ctx, req, grpc.Header(&header))
- if err != nil {
- return nil, err
- }
- fmt.Println("Parsing peers response")
- for {
- // stream.Recv returns a pointer to a ListBlogRes at the current iteration
- res, err := stream.Recv()
- // If end of stream, break the loop
- if err == io.EOF {
- break
- }
- // if err, return an error
- if err != nil {
- if strings.Contains(err.Error(), "mongo: no documents in result") {
- break
- } else {
- fmt.Println("ERROR ENCOUNTERED WITH RESPONSE")
- fmt.Println(res)
- return peers, err
- }
- }
- pubkey, err := wgtypes.ParseKey(res.Peers.Publickey)
- if err != nil {
- fmt.Println("error parsing key")
- return peers, err
- }
- var peer wgtypes.PeerConfig
- if keepalive != 0 {
- peer = wgtypes.PeerConfig{
- PublicKey: pubkey,
- PersistentKeepaliveInterval: &keepalivedur,
- Endpoint: &net.UDPAddr{
- IP: net.ParseIP(res.Peers.Endpoint),
- Port: int(res.Peers.Listenport),
- },
- ReplaceAllowedIPs: true,
- AllowedIPs: []net.IPNet{{
- IP: net.ParseIP(res.Peers.Address),
- Mask: net.CIDRMask(32, 32),
- }},
- }
- } else {
- peer = wgtypes.PeerConfig{
- PublicKey: pubkey,
- Endpoint: &net.UDPAddr{
- IP: net.ParseIP(res.Peers.Endpoint),
- Port: int(res.Peers.Listenport),
- },
- ReplaceAllowedIPs: true,
- AllowedIPs: []net.IPNet{{
- IP: net.ParseIP(res.Peers.Address),
- Mask: net.CIDRMask(32, 32),
- }},
- }
- }
- peers = append(peers, peer)
- }
- fmt.Println("Finished parsing peers response")
- return peers, err
- }
|
