util.py

import platform, os, logging_subprocess, random, string, logging, sys, json, urllib2, fileinput

logger = logging.getLogger()

string_pool = string.ascii_letters + string.digits
gen_random_text = lambda s: ''.join(map(lambda _: random.choice(string_pool), range(s)))

def run_command(cmd):
    return not (logging_subprocess.call(cmd,
            stdout_log_level=logging.DEBUG,
            stderr_log_level=logging.DEBUG,
            shell=True))

def check_os():
    if platform.linux_distribution() != ('Ubuntu', '14.04', 'trusty'):
        logger.debug('OS: ' + ' '.join(platform.linux_distribution()))
        return False
    return True

def not_sudo():
    return os.getuid() != 0

def install_packages():
    logger.debug('Update package lists')
    if not run_command("apt-get update"):
        return False

    logger.debug('Update packages')
    if not run_command("apt-get -y upgrade"):
        return False

    logger.debug('Install node.js')
    if not run_command("apt-get install -y nodejs-legacy npm build-essential libssl-dev"):
        return False

    logger.debug('Install vnstat')
    if not run_command("apt-get install -y vnstat vnstati"):
        return False

    logger.debug('Install VPN server packages')
    if not run_command("DEBIAN_FRONTEND=noninteractive apt-get install -q -y openswan xl2tpd ppp lsof"):
        return False

    return True


def setup_sysctl():
    if not run_command("sh files/sysctl.sh"):
        return False
    return True


def setup_passwords():
    try:
        char_set = string.ascii_lowercase + string.ascii_uppercase + string.digits
        f = open('/etc/ppp/chap-secrets', 'w')
        pw1 = gen_random_text(12)
        pw2 = gen_random_text(12)
        f.write("username1 l2tpd {} *\n".format(pw1))
        f.write("username2 l2tpd {} *".format(pw2))
        f.close()
        f = open('/etc/ipsec.secrets', 'w')
        f.write('1.2.3.4 %any: PSK "{}"'.format(gen_random_text(16)))
        f.close()
    except:
        logger.exception("Exception creating passwords:")
        return False

    return True

def cp_configs():
    logger.debug('xl2tpd.conf')
    if not run_command("cp files/xl2tpd.conf /etc/xl2tpd/xl2tpd.conf"):
        return False

    logger.debug('options.xl2tpd')
    if not run_command("cp files/options.xl2tpd /etc/ppp/options.xl2tpd"):
        return False

    logger.debug('ipsec.conf.template')
    if not run_command("cp files/ipsec.conf.template /etc/ipsec.conf.template"):
        return False

    return True

def setup_vpn():
    logger.debug('Write setup-vpn.sh to /etc')
    if not run_command("cp files/setup-vpn.sh /etc/setup-vpn.sh"):
        return False

    logger.debug('Add to rc.local')
    try:
        open("/etc/rc.local", "w").write("bash /etc/setup-vpn.sh\n" + open("/etc/rc.local").read())
    except:
        logger.exception("Exception setting up vpn:")
        return False

    logger.debug('Execute setup-vpn.sh')
    if not run_command("bash /etc/setup-vpn.sh"):
        return False

    logger.debug('Ufw default forward policy')

    try:
        for line in fileinput.input("/etc/default/ufw", inplace=True):
            print line.replace('DEFAULT_FORWARD_POLICY="DROP"', 'DEFAULT_FORWARD_POLICY="ACCEPT"'),
        run_command("service ufw restart")
    except OSError as e:
        logger.warn('ufw not found')

    logger.debug('Copy CLI')
    if not run_command("chmod +x files/instavpn && cp files/instavpn /usr/bin/instavpn"):
        return False

    return True

CRONTAB = 'crontab -l | { cat; echo "* * * * * vnstati -s -i eth0 -o /opt/instavpn/public/images/vnstat.png"; } | crontab -'

def webui():
    logger.debug('Generate random password')
    char_set = string.ascii_lowercase + string.ascii_uppercase + string.digits
    with open('web/server/credentials.json', 'w') as f:
        json.dump({
            "admin": {
                "login": "admin",
                "password": gen_random_text(16)
            }
        }, f)

    logger.debug('Copy web UI directory')
    # it fix web UI critical error
    if not run_command("mkdir --mode=755 -p /opt"):
        return False
    #end
    if not run_command("cp -rf web/ /opt/instavpn"):
        return False

    logger.debug('Install node_modules')
    if not run_command("cd /opt/instavpn && npm install"):
        return False

    logger.debug('Copy upstart script')
    if not run_command("cp files/instavpn.conf /etc/init"):
        return False

    logger.debug('Add vnstati to cron')
    if not run_command(CRONTAB):
        return False

    logger.debug('Start service')
    if not run_command("start instavpn"):
        return False

    return True


def info():
    logger.info('')

    with open('/opt/instavpn/server/credentials.json') as f:
        json_data = json.load(f)
        logger.info('Browse web UI at http://' + urllib2.urlopen("http://myip.dnsdynamic.org/").read() + ':8080/')
        logger.info("  Username: {}".format(json_data["admin"]["login"]))
        logger.info("  Password: {}".format(json_data["admin"]["password"]))

    logger.info("Completed. Run 'instavpn -h' for help")