Startsida Utforska Hjälp
Logga in
jbranso
/
linode-guix-system-configuration
Bevaka 1
Stjärnmärk 1
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: 5270c2ba16
Grenar Taggar
linode-guix-...
/
endlessh-service.scm

endlessh-service.scm 6.0 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184 
  1. ;;; GNU Guix --- Functional package management for GNU
    2. 

  2. ;;; Copyright © 2020, 2021, 2023 Joshua Branson <jbranso@dismail.de>
    3. 

  3. ;;;
    4. 

  4. ;;; This file is part of GNU Guix.
    5. 

  5. ;;;
    6. 

  6. ;;; GNU Guix is free software; you can redistribute it and/or modify
    7. 

  7. ;;; it under the terms of the GNU General Public License as published by
    8. 

  8. ;;; the Free Software Foundation, either version 3 of the License, or
    9. 

  9. ;;; (at your option) any later version.
    10. 

  10. ;;;
    11. 

  11. ;;; GNU Guix is distributed in the hope that it will be useful,
    12. 

  12. ;;; but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13. ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14. ;;; GNU General Public License for more details.
    15. 

  15. ;;;
    16. 

  16. ;;; You should have received a copy of the GNU General Public License
    17. 

  17. ;;; along with GNU Guix.  If not, see <http://www.gnu.org/licenses/>.
    18. 

  18. ;;;
    19. 

  19. ;;; TODO  use this link to try to get https://issues.guix.gnu.org/60788
    20. 

  20. ;;; this service looking more like that service.
    21. 

  21. ;;; I can play with that service via
    22. 

  22. ;;; https://paste.centos.org/view/252474c7
    23. 

  23. ;;;
    24. 

  24. ;;;
    25. 

  25. ;;; /gnu/store/a61fxpb2g7fgcr3zmcq891qlwqjinyvn-run-vm.sh
    26. 

  26. ;;;
    27. 

  27. ;;; newer vm:
    28. 

  28. ;;; /gnu/store/07g2mklr9fr3xhwcw8n917cbzpm0dzr9-run-vm.sh
    29. 

  29. ;;;
    30. 

  30. ;;; even never vm:
    31. 

  31. ;;; /gnu/store/4iw889ffc43xay3g4qg7ccv5l8yr5zk9-run-vm.sh
    32. 

  32. ;;;
    33. 

  33. ;;; even even newer vm:
    34. 

  34. ;;; /gnu/store/yx4dbwqxn3ykf2clwl85mzgkzpr1c7xp-run-vm.sh
    35. 

  35. ;;;
    36. 

  36. 

  37. (define-module (endlessh-service)
    38. 

  38.   #:use-module (guix gexp)
    39. 

  39.   #:use-module (guix records)
    40. 

  40.   #:use-module (guix packages)
    41. 

  41.   #:use-module (guix build-system trivial)
    42. 

  42.   #:use-module (gnu packages admin)
    43. 

  43.   #:use-module (gnu packages ssh)
    44. 

  44.   #:use-module (gnu services)
    45. 

  45.   #:use-module (gnu services base)
    46. 

  46.   #:use-module (gnu services configuration)
    47. 

  47.   #:use-module (gnu services shepherd)
    48. 

  48.   #:use-module (gnu services dbus)
    49. 

  49.   #:use-module (gnu services admin)
    50. 

  50.   #:use-module (gnu system shadow)
    51. 

  51.   #:use-module (ice-9 match)
    52. 

  52.   #:use-module (srfi srfi-1)
    53. 

  53.   #:use-module (srfi srfi-26)
    54. 

  54.   #:export (
    55. 

  55.             endlessh-configuration
    56. 

  56.             endlessh-configuration?
    57. 

  57.             endlessh-configuration-bind-family
    58. 

  58.             endlessh-configuration-delay
    59. 

  59.             endlessh-configuration-length
    60. 

  60.             endlessh-configuration-log-level
    61. 

  61.             endlessh-configuration-max-clients
    62. 

  62.             endlessh-configuration-package
    63. 

  63.             endlessh-configuration-port
    64. 

  64.             endlessh-service-type
    65. 

  65.             %default-endlessh
    66. 

  66.             ))
    67. 

  67. 

  68. ;;;; Commentary:
    69. 

  69. ;;; This file provides a basic server to run endlessh.
    70. 

  70. ;;; https://github.com/skeeto/endlessh
    71. 

  71. ;;;; Code:
    72. 

  72. 

  73. (define (camelfy-field-name field-name)
    74. 

  74.   (match (string-split (symbol->string field-name) #\-)
    75. 

  75.     ((head tail ...)
    76. 

  76.      (string-join (cons (string-upcase head 0 1)
    77. 

  77.                         (map (cut string-upcase <> 0 1) tail)) ""))))
    78. 

  78. 

  79. 

  80. 

  81. (define (serialize-integer field-name val)
    82. 

  82.   (string-append (camelfy-field-name field-name) " "
    83. 

  83.                  (number->string val) "\n"))
    84. 

  84. 

  85. (define (list-of-bind-family? val)
    86. 

  86.   (or (equal? val '(ipv4 ipv6))
    87. 

  87.       (equal? val '(ipv6 ipv4))
    88. 

  88.       (equal? val '(ipv4))
    89. 

  89.       (equal? val '(ipv6))))
    90. 

  90. 

  91. (define (serialize-list-of-bind-family field-name val)
    92. 

  92.   (string-append
    93. 

  93.    (camelfy-field-name field-name) " "
    94. 

  94.    (cond ((or (equal? val '(ipv4 ipv6))
    95. 

  95.               (equal? val '(ipv6 ipv4)))
    96. 

  96.           "0")
    97. 

  97.          ((equal? val '(ipv4))
    98. 

  98.           "4")
    99. 

  99.          (else "6")))
    100. 

  100.   "\n")
    101. 

  101. 

  102. (define-configuration endlessh-configuration
    103. 

  103.   (package
    104. 

  104.    (package endlessh)
    105. 

  105.    "The endlessh package to use.")
    106. 

  106.   (bind-family
    107. 

  107.    (list-of-bind-family '(ipv4 ipv6))
    108. 

  108.    "A list of symbols of ip families to run endlessh: ipv4 and/or ipv6.")
    109. 

  109.   (delay
    110. 

  110.     (integer 10000)
    111. 

  111.     "Message milliseconds delay. Default: 10000")
    112. 

  112.   (max-line-length
    113. 

  113.    (integer 32)
    114. 

  114.    "Maximum banner line length (3-255). Default: 32")
    115. 

  115.   (max-clients
    116. 

  116.    (integer 4096)
    117. 

  117.    "Maximum number of clients. Default: 4096")
    118. 

  118.   (port
    119. 

  119.    (integer 2222)
    120. 

  120.    "Set the listening port. Default: 2222")
    121. 

  121.   (log-level
    122. 

  122.    (integer 0)
    123. 

  123.    "Print diagnostics.  Allowed values are 0, 1, 2.  The higher the value
    124. 

  124. the more detailed the log.  A value of 0 turns off logging."))
    125. 

  125. 

  126. (define (serialize-endlessh-configuration config)
    127. 

  127.   (mixed-text-file
    128. 

  128.    "endlessh.conf"
    129. 

  129.    (serialize-configuration config endlessh-configuration-fields)))
    130. 

  130. 

  131. (define (generate-endlessh-documentation)
    132. 

  132.   (generate-documentation
    133. 

  133.    `((endlessh-configuration
    134. 

  134.       ,endlessh-configuration-fields))
    135. 

  135.    'endlessh-configuration))
    136. 

  136. 

  137. ;; how can I add shepherd-configuration-file? to return the service's
    138. 

  138. ;; current config file?
    139. 

  139. (define (endlessh-shepherd-service config)
    140. 

  140.   (list (shepherd-service
    141. 

  141.          (provision '(endlessh))
    142. 

  142.          (documentation "Run the endlessh daemon.")
    143. 

  143.          ;; change this to user-processes & networking? like nginx?
    144. 

  144.          (requirement '(networking))
    145. 

  145.          (start #~(make-forkexec-constructor
    146. 

  146.                    (list #$(file-append (endlessh-configuration-package config)
    147. 

  147.                                         "/bin/endlessh")
    148. 

  148.                          "-f" #$(serialize-endlessh-configuration config))
    149. 

  149.                    #:user "endlessh"
    150. 

  150.                    #:group "endlessh"))
    151. 

  151.          (stop #~(make-kill-destructor)))))
    152. 

  152. 

  153. (define %endlessh-accounts
    154. 

  154.   (list (user-group (name "endlessh")
    155. 

  155.                     (system? #t))
    156. 

  156.         (user-account
    157. 

  157.          (name "endlessh")
    158. 

  158.          (group "endlessh")
    159. 

  159.          (system? #t)
    160. 

  160.          (comment "endlessh user")
    161. 

  161.          (home-directory "/var/empty")
    162. 

  162.          (shell (file-append shadow "/sbin/nologin")))))
    163. 

  163. 

  164. ;; (define endlessh-activation
    165. 

  165. ;;   (match-lambda
    166. 

  166. ;;     (($ <endlessh-configuration> package config-file)
    167. 

  167. ;;      (with-imported-modules '((guix build utils))
    168. 

  168. ;;        #~(begin
    169. 

  169. ;;            (use-modules (guix build utils))
    170. 

  170. ;;            (let ([x #t])
    171. 

  171. ;;              x))))))
    172. 

  172. 

  173. (define endlessh-service-type
    174. 

  174.   (service-type
    175. 

  175.    (name 'endlessh)
    176. 

  176.    (description "Run endlessh, a small turning ssh tarpit.")
    177. 

  177.    (extensions
    178. 

  178.     (list (service-extension shepherd-root-service-type endlessh-shepherd-service)
    179. 

  179.           (service-extension account-service-type
    180. 

  180.                              (const %endlessh-accounts))
    181. 

  181.           ;;(service-extension activation-service-type endlessh-activation)
    182. 

  182.           ))
    183. 

  183.    (default-value (endlessh-configuration))))
    184. 

  184.