summaryrefslogtreecommitdiffstats
path: root/retiolum/scripts/tinc_setup/install.sh
blob: 484b5e1d7565c83cc239bfb2089e1456976e8b7b (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
#! /bin/sh
# USE WITH GREAT CAUTION
set -eu

if test "${nosudo-false}" != true -a `id -u` != 0; then
  echo "we're going sudo..." >&2
  exec sudo "$0" "$@"
  exit 23 # go to hell
fi

#make -C ../../ update
set -e
DIRNAME=`dirname $0`
CURR=`readlink -f ${DIRNAME}`
MYBIN=${CURR}/../../bin
netname=retiolum
# create configuration directory for $netname
mkdir -p /etc/tinc/$netname/hosts
cd /etc/tinc/$netname

echo "added known hosts:"
ls -1 hosts | LC_ALL=C sort
echo "delete the nodes you do not trust!"

hostname="${HOSTNAME-`cat /etc/hostname`}"
myname="${1:-}"
if [ ! "$myname" ] 
then
  printf "select node name [$hostname]: "
  read myname
  if test -z "$myname"; then
    myname="$hostname"
  fi
fi
if [ ! -e "hosts/$myname" ]
then

  # TODO eloop until we found a free IPv4
  # myipv4=$(echo 42.$(for i in `seq 1 3`; do echo "ibase=16;`bin/fillxx xx|tr [a-f] [A-F]`" | bc; done)|tr \  .)/32

  myipv4="${2:-}"
  mynet4=10.7.7.0
  
  if [ ! "$myipv4" ] 
  then
    printf 'select v4 subnet ip (1-255): '
    read v4num
    until $MYBIN/check-free-retiolum-v4 $v4num; do
      echo "your're an idiot!"
      printf 'select unused v4 subnet ip (1-255): '
      read v4num
    done
    myipv4="10.7.7.$v4num"
  fi
  echo "Subnet = $myipv4" > hosts/$myname

  myipv6=`$MYBIN/fillxx 42:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx`/128
  echo "Subnet = $myipv6" >> hosts/$myname
else
  echo "own host file already exists! will not write again!"
fi

cp $CURR/tinc-up /etc/tinc/$netname/

cat>tinc.conf<<EOF
Name = $myname
ConnectTo = EUcancER
ConnectTo = kaah
ConnectTo = oxberg
ConnectTo = pa_sharepoint
ConnectTo = supernode
Device = /dev/net/tun
EOF

if [ ! -e rsa_key.priv ] 
then
  echo "creating new keys"
  tincd -n $netname -K 
  python ${CURR}/write_channel.py $myname || \
  echo "cannot write public key to IRC, you are on your own. Good Luck"
else
  echo "key files already exist, skipping"
  echo "if you know what you are doing, remove rsa_key.priv"
fi
# add user tincd
# this is what the setup scripts for the distribution has to do
#useradd tincd