ZeroTierOne/go/cmd/zerotier/zerotier.go

/*
 * Copyright (c)2019 ZeroTier, Inc.
 *
 * Use of this software is governed by the Business Source License included
 * in the LICENSE.TXT file in the project's root directory.
 *
 * Change Date: 2023-01-01
 *
 * On the date above, in accordance with the Business Source License, use
 * of this software will be governed by version 2.0 of the Apache License.
 */
/****/

package main

import (
	"flag"
	"fmt"
	"io/ioutil"
	"os"
	"path"
	"runtime"
	"strings"
	"zerotier/cmd/zerotier/cli"
	"zerotier/pkg/zerotier"
)

var copyrightText = fmt.Sprintf(`ZeroTier Network Virtualization Service Version %d.%d.%d
(c)2019 ZeroTier, Inc.
Licensed under the ZeroTier BSL (see LICENSE.txt)`, zerotier.CoreVersionMajor, zerotier.CoreVersionMinor, zerotier.CoreVersionRevision)

func printHelp() {
	fmt.Println(copyrightText + `

Usage: zerotier [-options] <command> [-options] [command args]

Global Options
  -j                                   Output raw JSON where applicable
  -p <path>                            Connect to service running at this path
  -t <authtoken.secret path>           Use secret auth token from this file

Commands:
  help                                 Show this help
  version                              Print version
  service [path]                       Start in system service mode
  status                               Show ZeroTier service status and config
  peers                                Show VL1 peers
  roots                                Show VL1 root servers
  addroot <type> [options]             Add a VL1 root
    static <identity> <ip/port> [...]  Add a root with a set identity and IPs
    dynamic <name> [default locator]   Add a dynamic root fetched by name
  removeroot <type> [options]          Remove a VL1 root
    static <identity>                  Remove a root with a set identity
    dynamic <name>                     Remove a dynamic root fetched by name
  networks                             Show joined VL2 virtual networks
  join <network ID>                    Join a virtual network
  leave <network ID>                   Leave a virtual network
  show <network ID>                    Show verbose network info
  set <network ID> <option> <value>    Set a network local config option
    manageips <boolean>                Is IP management allowed?
    manageroutes <boolean>             Is route management allowed?
    globalips <boolean>                Can IPs in global IP space be managed?
    globalroutes <boolean>             Can global IP space routes be set?
    defaultroute <boolean>             Can default route be overridden?
  set <local config option> <value>    Set a local configuration option
    phy <IP/bits> blacklist <boolean>  Set or clear blacklist for CIDR
    phy <IP/bits> trust <path ID/0>    Set or clear trusted path ID for CIDR
    virt <address> try <IP/port> [...] Set explicit IPs for reaching a peer
    port <port>                        Set primary local port for VL1 P2P
    secondaryport <port/0>             Set or disable secondary VL1 P2P port
    tertiaryport <port/0>              Set or disable tertiary VL1 P2P port
    portsearch <boolean>               Set or disable port search on startup
    portmapping <boolean>              Set or disable use of uPnP and NAT-PMP
    explicitaddresses <IP/port> [...]  Set explicit external IPs to advertise

Most commands require a secret token to permit control of a running ZeroTier
service. The CLI will automatically try to read this token from the
authtoken.secret file in the service's working directory and then from a
file called .zerotierauth in the user's home directory. The -t option can be
used to explicitly specify a location.
`)
}

func readAuthToken(basePath string) string {
	data, _ := ioutil.ReadFile(path.Join(basePath, "authtoken.secret"))
	if len(data) > 0 {
		return string(data)
	}
	userHome, _ := os.UserHomeDir()
	if len(userHome) > 0 {
		if runtime.GOOS == "darwin" {
			data, _ = ioutil.ReadFile(userHome + "/Library/Application Support/ZeroTier/authtoken.secret")
			if len(data) > 0 {
				return string(data)
			}
			data, _ = ioutil.ReadFile(userHome + "/Library/Application Support/ZeroTier/One/authtoken.secret")
			if len(data) > 0 {
				return string(data)
			}
		}
		data, _ = ioutil.ReadFile(path.Join(userHome, ".zerotierauth"))
		if len(data) > 0 {
			return string(data)
		}
		data, _ = ioutil.ReadFile(path.Join(userHome, ".zeroTierOneAuthToken"))
		if len(data) > 0 {
			return string(data)
		}
	}
	return ""
}

func main() {
	globalOpts := flag.NewFlagSet("global", flag.ContinueOnError)
	hflag := globalOpts.Bool("h", false, "") // support -h to be canonical with other Unix utilities
	jflag := globalOpts.Bool("j", false, "")
	pflag := globalOpts.String("p", "", "")
	tflag := globalOpts.String("t", "", "")
	err := globalOpts.Parse(os.Args[1:])
	if err != nil {
		printHelp()
		os.Exit(1)
		return
	}
	args := globalOpts.Args()
	if len(args) < 1 || *hflag {
		printHelp()
		os.Exit(0)
		return
	}
	var cmdArgs []string
	if len(args) > 1 {
		cmdArgs = args[1:]
	}

	basePath := zerotier.PlatformDefaultHomePath
	if len(*pflag) > 0 {
		basePath = *pflag
	}
	var authToken string
	if len(*tflag) > 0 {
		authToken = *tflag
	} else {
		authToken = readAuthToken(basePath)
	}
	if len(authToken) == 0 {
		fmt.Println("FATAL: unable to read API authorization token from service path or user home ('sudo' may be needed)")
		os.Exit(1)
	}
	authToken = strings.TrimSpace(authToken)

	switch args[0] {
	case "help":
		printHelp()
		os.Exit(0)
	case "version":
		fmt.Printf("%d.%d.%d\n", zerotier.CoreVersionMajor, zerotier.CoreVersionMinor, zerotier.CoreVersionRevision)
		os.Exit(0)
	case "service":
		cli.Service(basePath, authToken, cmdArgs)
	case "status":
		cli.Status(basePath, authToken, cmdArgs, *jflag)
	case "peers":
		cli.Peers(basePath, authToken, cmdArgs)
	case "roots":
		cli.Roots(basePath, authToken, cmdArgs)
	case "addroot":
		cli.AddRoot(basePath, authToken, cmdArgs)
	case "removeroot":
		cli.RemoveRoot(basePath, authToken, cmdArgs)
	case "networks":
		cli.Networks(basePath, authToken, cmdArgs)
	case "join":
		cli.Join(basePath, authToken, cmdArgs)
	case "leave":
		cli.Leave(basePath, authToken, cmdArgs)
	case "show":
		cli.Show(basePath, authToken, cmdArgs)
	case "set":
		cli.Set(basePath, authToken, cmdArgs)
	}

	printHelp()
	os.Exit(1)
}
Gogogogogogogo 2019-09-23 15:18:52 -07:00			`/*`
			`* Copyright (c)2019 ZeroTier, Inc.`
			`*`
			`* Use of this software is governed by the Business Source License included`
			`* in the LICENSE.TXT file in the project's root directory.`
			`*`
			`* Change Date: 2023-01-01`
			`*`
			`* On the date above, in accordance with the Business Source License, use`
			`* of this software will be governed by version 2.0 of the Apache License.`
			`*/`
			`/****/`

			`package main`

			`import (`
Go CLI work 2019-09-24 12:19:28 -07:00			`"flag"`
			`"fmt"`
. 2019-09-24 16:44:29 -07:00			`"io/ioutil"`
Gogogogogogogo 2019-09-23 15:18:52 -07:00			`"os"`
. 2019-09-24 16:44:29 -07:00			`"path"`
			`"runtime"`
			`"strings"`
Go CLI work 2019-09-24 12:19:28 -07:00			`"zerotier/cmd/zerotier/cli"`
			`"zerotier/pkg/zerotier"`
Gogogogogogogo 2019-09-23 15:18:52 -07:00			`)`

Go CLI work 2019-09-24 12:19:28 -07:00			var copyrightText = fmt.Sprintf(`ZeroTier Network Virtualization Service Version %d.%d.%d
			`(c)2019 ZeroTier, Inc.`
. 2019-09-24 16:44:29 -07:00			Licensed under the ZeroTier BSL (see LICENSE.txt)`, zerotier.CoreVersionMajor, zerotier.CoreVersionMinor, zerotier.CoreVersionRevision)
Go CLI work 2019-09-24 12:19:28 -07:00
			`func printHelp() {`
			fmt.Println(copyrightText + `

			`Usage: zerotier [-options] <command> [-options] [command args]`

			`Global Options`
			`-j Output raw JSON where applicable`
			`-p <path> Connect to service running at this path`
			`-t <authtoken.secret path> Use secret auth token from this file`

			`Commands:`
			`help Show this help`
			`version Print version`
			`service [path] Start in system service mode`
			`status Show ZeroTier service status and config`
			`peers Show VL1 peers`
			`roots Show VL1 root servers`
			`addroot <type> [options] Add a VL1 root`
			`static <identity> <ip/port> [...] Add a root with a set identity and IPs`
			`dynamic <name> [default locator] Add a dynamic root fetched by name`
			`removeroot <type> [options] Remove a VL1 root`
			`static <identity> Remove a root with a set identity`
			`dynamic <name> Remove a dynamic root fetched by name`
			`networks Show joined VL2 virtual networks`
			`join <network ID> Join a virtual network`
			`leave <network ID> Leave a virtual network`
			`show <network ID> Show verbose network info`
			`set <network ID> <option> <value> Set a network local config option`
			`manageips <boolean> Is IP management allowed?`
			`manageroutes <boolean> Is route management allowed?`
			`globalips <boolean> Can IPs in global IP space be managed?`
			`globalroutes <boolean> Can global IP space routes be set?`
			`defaultroute <boolean> Can default route be overridden?`
			`set <local config option> <value> Set a local configuration option`
			`phy <IP/bits> blacklist <boolean> Set or clear blacklist for CIDR`
			`phy <IP/bits> trust <path ID/0> Set or clear trusted path ID for CIDR`
			`virt <address> try <IP/port> [...] Set explicit IPs for reaching a peer`
			`port <port> Set primary local port for VL1 P2P`
			`secondaryport <port/0> Set or disable secondary VL1 P2P port`
			`tertiaryport <port/0> Set or disable tertiary VL1 P2P port`
			`portsearch <boolean> Set or disable port search on startup`
			`portmapping <boolean> Set or disable use of uPnP and NAT-PMP`
			`explicitaddresses <IP/port> [...] Set explicit external IPs to advertise`

			`Most commands require a secret token to permit control of a running ZeroTier`
			`service. The CLI will automatically try to read this token from the`
			`authtoken.secret file in the service's working directory and then from a`
			`file called .zerotierauth in the user's home directory. The -t option can be`
			`used to explicitly specify a location.`
			`)
			`}`

. 2019-09-24 16:44:29 -07:00			`func readAuthToken(basePath string) string {`
			`data, _ := ioutil.ReadFile(path.Join(basePath, "authtoken.secret"))`
			`if len(data) > 0 {`
			`return string(data)`
			`}`
			`userHome, _ := os.UserHomeDir()`
			`if len(userHome) > 0 {`
			`if runtime.GOOS == "darwin" {`
			`data, _ = ioutil.ReadFile(userHome + "/Library/Application Support/ZeroTier/authtoken.secret")`
			`if len(data) > 0 {`
			`return string(data)`
			`}`
			`data, _ = ioutil.ReadFile(userHome + "/Library/Application Support/ZeroTier/One/authtoken.secret")`
			`if len(data) > 0 {`
			`return string(data)`
			`}`
			`}`
			`data, _ = ioutil.ReadFile(path.Join(userHome, ".zerotierauth"))`
			`if len(data) > 0 {`
			`return string(data)`
			`}`
			`data, _ = ioutil.ReadFile(path.Join(userHome, ".zeroTierOneAuthToken"))`
			`if len(data) > 0 {`
			`return string(data)`
			`}`
			`}`
			`return ""`
Gogogogogogogo 2019-09-23 15:18:52 -07:00			`}`

			`func main() {`
Go CLI work 2019-09-24 12:19:28 -07:00			`globalOpts := flag.NewFlagSet("global", flag.ContinueOnError)`
			`hflag := globalOpts.Bool("h", false, "") // support -h to be canonical with other Unix utilities`
. 2019-09-24 16:44:29 -07:00			`jflag := globalOpts.Bool("j", false, "")`
			`pflag := globalOpts.String("p", "", "")`
			`tflag := globalOpts.String("t", "", "")`
Go CLI work 2019-09-24 12:19:28 -07:00			`err := globalOpts.Parse(os.Args[1:])`
			`if err != nil {`
			`printHelp()`
			`os.Exit(1)`
			`return`
			`}`
			`args := globalOpts.Args()`
			`if len(args) < 1 \|\| *hflag {`
			`printHelp()`
			`os.Exit(0)`
			`return`
			`}`
			`var cmdArgs []string`
			`if len(args) > 1 {`
			`cmdArgs = args[1:]`
			`}`

. 2019-09-24 16:44:29 -07:00			`basePath := zerotier.PlatformDefaultHomePath`
			`if len(*pflag) > 0 {`
			`basePath = *pflag`
			`}`
			`var authToken string`
			`if len(*tflag) > 0 {`
			`authToken = *tflag`
			`} else {`
			`authToken = readAuthToken(basePath)`
			`}`
			`if len(authToken) == 0 {`
			`fmt.Println("FATAL: unable to read API authorization token from service path or user home ('sudo' may be needed)")`
			`os.Exit(1)`
			`}`
			`authToken = strings.TrimSpace(authToken)`

Go CLI work 2019-09-24 12:19:28 -07:00			`switch args[0] {`
			`case "help":`
			`printHelp()`
			`os.Exit(0)`
			`case "version":`
			`fmt.Printf("%d.%d.%d\n", zerotier.CoreVersionMajor, zerotier.CoreVersionMinor, zerotier.CoreVersionRevision)`
			`os.Exit(0)`
			`case "service":`
. 2019-09-24 16:44:29 -07:00			`cli.Service(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "status":`
. 2019-09-24 16:44:29 -07:00			`cli.Status(basePath, authToken, cmdArgs, *jflag)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "peers":`
. 2019-09-24 16:44:29 -07:00			`cli.Peers(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "roots":`
. 2019-09-24 16:44:29 -07:00			`cli.Roots(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "addroot":`
. 2019-09-24 16:44:29 -07:00			`cli.AddRoot(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "removeroot":`
. 2019-09-24 16:44:29 -07:00			`cli.RemoveRoot(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "networks":`
. 2019-09-24 16:44:29 -07:00			`cli.Networks(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "join":`
. 2019-09-24 16:44:29 -07:00			`cli.Join(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "leave":`
. 2019-09-24 16:44:29 -07:00			`cli.Leave(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "show":`
. 2019-09-24 16:44:29 -07:00			`cli.Show(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`case "set":`
. 2019-09-24 16:44:29 -07:00			`cli.Set(basePath, authToken, cmdArgs)`
Go CLI work 2019-09-24 12:19:28 -07:00			`}`
. 2019-09-24 12:32:35 -07:00
			`printHelp()`
			`os.Exit(1)`
Gogogogogogogo 2019-09-23 15:18:52 -07:00			`}`