2016-05-15 19:08:32 +00:00
|
|
|
#!/usr/bin/env python
|
2011-10-07 19:47:50 +00:00
|
|
|
# emacs: -*- mode: python; py-indent-offset: 4; indent-tabs-mode: t -*-
|
|
|
|
# vi: set ft=python sts=4 ts=4 sw=4 noet :
|
2006-07-08 16:51:14 +00:00
|
|
|
|
|
|
|
# This file is part of Fail2Ban.
|
|
|
|
#
|
|
|
|
# Fail2Ban is free software; you can redistribute it and/or modify
|
|
|
|
# it under the terms of the GNU General Public License as published by
|
|
|
|
# the Free Software Foundation; either version 2 of the License, or
|
|
|
|
# (at your option) any later version.
|
|
|
|
#
|
|
|
|
# Fail2Ban is distributed in the hope that it will be useful,
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
# GNU General Public License for more details.
|
|
|
|
#
|
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
# along with Fail2Ban; if not, write to the Free Software
|
2011-11-21 12:20:20 +00:00
|
|
|
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
2006-07-08 16:51:14 +00:00
|
|
|
|
2013-04-21 03:12:38 +00:00
|
|
|
__author__ = "Cyril Jaquier, Steven Hiscocks, Yaroslav Halchenko"
|
2016-08-09 10:49:40 +00:00
|
|
|
__copyright__ = "Copyright (c) 2004 Cyril Jaquier, 2008-2016 Fail2Ban Contributors"
|
2006-07-08 16:51:14 +00:00
|
|
|
__license__ = "GPL"
|
|
|
|
|
2016-08-09 10:49:40 +00:00
|
|
|
import platform
|
|
|
|
|
2013-04-20 19:17:36 +00:00
|
|
|
try:
|
|
|
|
import setuptools
|
|
|
|
from setuptools import setup
|
2016-08-12 19:26:26 +00:00
|
|
|
from setuptools.command.install import install
|
2016-08-12 19:47:31 +00:00
|
|
|
from setuptools.command.install_scripts import install_scripts
|
2023-06-16 14:24:32 +00:00
|
|
|
from setuptools.command.build_py import build_py
|
|
|
|
build_scripts = None
|
2013-04-20 19:17:36 +00:00
|
|
|
except ImportError:
|
|
|
|
setuptools = None
|
|
|
|
from distutils.core import setup
|
|
|
|
|
2023-06-16 14:24:32 +00:00
|
|
|
# older versions
|
2016-08-12 19:26:26 +00:00
|
|
|
if setuptools is None:
|
2023-06-16 14:24:32 +00:00
|
|
|
from distutils.command.build_py import build_py
|
|
|
|
from distutils.command.build_scripts import build_scripts
|
2016-08-12 19:26:26 +00:00
|
|
|
from distutils.command.install import install
|
2016-08-12 19:47:31 +00:00
|
|
|
from distutils.command.install_scripts import install_scripts
|
2016-08-11 16:34:18 +00:00
|
|
|
|
2013-07-16 22:37:44 +00:00
|
|
|
import os
|
2015-07-31 14:12:14 +00:00
|
|
|
from os.path import isfile, join, isdir, realpath
|
2017-08-23 10:55:36 +00:00
|
|
|
import re
|
2015-06-26 16:51:19 +00:00
|
|
|
import sys
|
|
|
|
import warnings
|
2006-10-17 21:13:11 +00:00
|
|
|
from glob import glob
|
2006-07-08 16:51:14 +00:00
|
|
|
|
2016-08-11 17:57:40 +00:00
|
|
|
from fail2ban.setup import updatePyExec
|
2021-09-19 16:49:18 +00:00
|
|
|
from fail2ban.version import version
|
2016-08-11 16:34:18 +00:00
|
|
|
|
2017-08-23 10:55:36 +00:00
|
|
|
source_dir = os.path.realpath(os.path.dirname(
|
|
|
|
# __file__ seems to be overwritten sometimes on some python versions (e.g. bug of 2.6 by running under cProfile, etc.):
|
|
|
|
sys.argv[0] if os.path.basename(sys.argv[0]) == 'setup.py' else __file__
|
|
|
|
))
|
|
|
|
|
2020-11-23 13:59:45 +00:00
|
|
|
with_tests = True
|
|
|
|
|
2016-08-11 16:34:18 +00:00
|
|
|
# Wrapper to install python binding (to current python version):
|
|
|
|
class install_scripts_f2b(install_scripts):
|
|
|
|
|
|
|
|
def get_outputs(self):
|
|
|
|
outputs = install_scripts.get_outputs(self)
|
2017-08-23 10:55:36 +00:00
|
|
|
# setup.py --dry-run install:
|
|
|
|
dry_run = not outputs
|
|
|
|
self.update_scripts(dry_run)
|
|
|
|
if dry_run:
|
|
|
|
#bindir = self.install_dir
|
|
|
|
bindir = self.build_dir
|
2023-06-16 13:23:41 +00:00
|
|
|
print(('creating fail2ban-python binding -> %s (dry-run, real path can be different)' % (bindir,)))
|
|
|
|
print(('Copying content of %s to %s' % (self.build_dir, self.install_dir)));
|
2017-08-23 10:55:36 +00:00
|
|
|
return outputs
|
2016-08-11 16:34:18 +00:00
|
|
|
fn = None
|
|
|
|
for fn in outputs:
|
|
|
|
if os.path.basename(fn) == 'fail2ban-server':
|
|
|
|
break
|
|
|
|
bindir = os.path.dirname(fn)
|
2023-06-16 13:23:41 +00:00
|
|
|
print(('creating fail2ban-python binding -> %s' % (bindir,)))
|
2016-08-11 16:34:18 +00:00
|
|
|
updatePyExec(bindir)
|
|
|
|
return outputs
|
|
|
|
|
2017-08-23 10:55:36 +00:00
|
|
|
def update_scripts(self, dry_run=False):
|
|
|
|
buildroot = os.path.dirname(self.build_dir)
|
2017-11-24 12:20:19 +00:00
|
|
|
install_dir = self.install_dir
|
2017-11-24 11:54:45 +00:00
|
|
|
try:
|
2017-11-24 12:20:19 +00:00
|
|
|
# remove root-base from install scripts path:
|
2017-11-24 11:54:45 +00:00
|
|
|
root = self.distribution.command_options['install']['root'][1]
|
2017-11-24 12:20:19 +00:00
|
|
|
if install_dir.startswith(root):
|
|
|
|
install_dir = install_dir[len(root):]
|
2017-11-24 11:54:45 +00:00
|
|
|
except: # pragma: no cover
|
2018-07-15 18:32:07 +00:00
|
|
|
print('WARNING: Cannot find root-base option, check the bin-path to fail2ban-scripts in "fail2ban.service" and "fail2ban-openrc.init".')
|
|
|
|
|
|
|
|
scripts = ['fail2ban.service', 'fail2ban-openrc.init']
|
|
|
|
for script in scripts:
|
2023-06-16 13:23:41 +00:00
|
|
|
print(('Creating %s/%s (from %s.in): @BINDIR@ -> %s' % (buildroot, script, script, install_dir)))
|
2018-07-15 18:32:07 +00:00
|
|
|
with open(os.path.join(source_dir, 'files/%s.in' % script), 'r') as fn:
|
|
|
|
lines = fn.readlines()
|
|
|
|
fn = None
|
|
|
|
if not dry_run:
|
|
|
|
fn = open(os.path.join(buildroot, script), 'w')
|
|
|
|
try:
|
|
|
|
for ln in lines:
|
|
|
|
ln = re.sub(r'@BINDIR@', lambda v: install_dir, ln)
|
|
|
|
if dry_run:
|
|
|
|
sys.stdout.write(' | ' + ln)
|
|
|
|
continue
|
|
|
|
fn.write(ln)
|
|
|
|
finally:
|
|
|
|
if fn: fn.close()
|
|
|
|
if dry_run:
|
|
|
|
print(' `')
|
2017-08-23 10:55:36 +00:00
|
|
|
|
|
|
|
|
2016-08-12 09:07:31 +00:00
|
|
|
# Wrapper to specify fail2ban own options:
|
|
|
|
class install_command_f2b(install):
|
|
|
|
user_options = install.user_options + [
|
2020-11-23 13:59:45 +00:00
|
|
|
('without-tests', None, 'without tests files installation'),
|
2016-08-12 09:07:31 +00:00
|
|
|
]
|
|
|
|
def initialize_options(self):
|
2020-11-23 13:59:45 +00:00
|
|
|
self.without_tests = not with_tests
|
2016-08-12 09:07:31 +00:00
|
|
|
install.initialize_options(self)
|
|
|
|
def finalize_options(self):
|
2020-11-23 13:59:45 +00:00
|
|
|
if self.without_tests:
|
|
|
|
self.distribution.scripts.remove('bin/fail2ban-testcases')
|
|
|
|
|
|
|
|
self.distribution.packages.remove('fail2ban.tests')
|
|
|
|
self.distribution.packages.remove('fail2ban.tests.action_d')
|
|
|
|
|
|
|
|
del self.distribution.package_data['fail2ban.tests']
|
2016-08-12 09:07:31 +00:00
|
|
|
install.finalize_options(self)
|
|
|
|
def run(self):
|
|
|
|
install.run(self)
|
|
|
|
|
2016-08-11 16:34:18 +00:00
|
|
|
|
2016-08-11 17:57:40 +00:00
|
|
|
# Update fail2ban-python env to current python version (where f2b-modules located/installed)
|
2017-08-23 10:55:36 +00:00
|
|
|
updatePyExec(os.path.join(source_dir, 'bin'))
|
2016-08-11 17:57:40 +00:00
|
|
|
|
2013-04-20 19:17:36 +00:00
|
|
|
if setuptools and "test" in sys.argv:
|
|
|
|
import logging
|
|
|
|
logSys = logging.getLogger("fail2ban")
|
|
|
|
hdlr = logging.StreamHandler(sys.stdout)
|
|
|
|
fmt = logging.Formatter("%(asctime)-15s %(message)s")
|
|
|
|
hdlr.setFormatter(fmt)
|
|
|
|
logSys.addHandler(hdlr)
|
|
|
|
if set(["-q", "--quiet"]) & set(sys.argv):
|
2014-02-20 23:01:40 +00:00
|
|
|
logSys.setLevel(logging.CRITICAL)
|
2013-04-21 12:23:08 +00:00
|
|
|
warnings.simplefilter("ignore")
|
|
|
|
sys.warnoptions.append("ignore")
|
2013-04-20 19:17:36 +00:00
|
|
|
elif set(["-v", "--verbose"]) & set(sys.argv):
|
|
|
|
logSys.setLevel(logging.DEBUG)
|
|
|
|
else:
|
|
|
|
logSys.setLevel(logging.INFO)
|
|
|
|
elif "test" in sys.argv:
|
|
|
|
print("python distribute required to execute fail2ban tests")
|
|
|
|
print("")
|
2013-03-31 17:18:21 +00:00
|
|
|
|
2020-11-23 13:59:45 +00:00
|
|
|
# if build without tests:
|
|
|
|
if "build" in sys.argv:
|
|
|
|
if "--without-tests" in sys.argv:
|
|
|
|
with_tests = False
|
|
|
|
sys.argv.remove("--without-tests")
|
|
|
|
|
2006-07-08 16:51:14 +00:00
|
|
|
longdesc = '''
|
|
|
|
Fail2Ban scans log files like /var/log/pwdfail or
|
|
|
|
/var/log/apache/error_log and bans IP that makes
|
|
|
|
too many password failures. It updates firewall rules
|
|
|
|
to reject the IP address or executes user defined
|
|
|
|
commands.'''
|
|
|
|
|
2013-04-20 19:17:36 +00:00
|
|
|
if setuptools:
|
|
|
|
setup_extra = {
|
|
|
|
'test_suite': "fail2ban.tests.utils.gatherTests",
|
|
|
|
}
|
|
|
|
else:
|
|
|
|
setup_extra = {}
|
|
|
|
|
2015-06-12 05:43:42 +00:00
|
|
|
data_files_extra = []
|
|
|
|
if os.path.exists('/var/run'):
|
|
|
|
# if we are on the system with /var/run -- we are to use it for having fail2ban/
|
2015-07-31 14:12:14 +00:00
|
|
|
# directory there for socket file etc.
|
|
|
|
# realpath is used to possibly resolve /var/run -> /run symlink
|
|
|
|
data_files_extra += [(realpath('/var/run/fail2ban'), '')]
|
2015-06-12 05:43:42 +00:00
|
|
|
|
2016-08-09 10:49:40 +00:00
|
|
|
# Installing documentation files only under Linux or other GNU/ systems
|
|
|
|
# (e.g. GNU/kFreeBSD), since others might have protective mechanisms forbidding
|
|
|
|
# installation there (see e.g. #1233)
|
|
|
|
platform_system = platform.system().lower()
|
|
|
|
doc_files = ['README.md', 'DEVELOP', 'FILTERS', 'doc/run-rootless.txt']
|
|
|
|
if platform_system in ('solaris', 'sunos'):
|
|
|
|
doc_files.append('README.Solaris')
|
|
|
|
if platform_system in ('linux', 'solaris', 'sunos') or platform_system.startswith('gnu'):
|
|
|
|
data_files_extra.append(
|
|
|
|
('/usr/share/doc/fail2ban', doc_files)
|
|
|
|
)
|
|
|
|
|
2013-04-20 23:58:22 +00:00
|
|
|
|
2006-07-08 16:51:14 +00:00
|
|
|
setup(
|
2013-02-11 21:17:52 +00:00
|
|
|
name = "fail2ban",
|
2013-04-20 23:58:22 +00:00
|
|
|
version = version,
|
2013-03-31 17:18:21 +00:00
|
|
|
description = "Ban IPs that make too many password failures",
|
2013-02-11 21:17:52 +00:00
|
|
|
long_description = longdesc,
|
2013-04-21 03:12:38 +00:00
|
|
|
author = "Cyril Jaquier & Fail2Ban Contributors",
|
2013-02-11 21:17:52 +00:00
|
|
|
author_email = "cyril.jaquier@fail2ban.org",
|
|
|
|
url = "http://www.fail2ban.org",
|
|
|
|
license = "GPL",
|
|
|
|
platforms = "Posix",
|
2023-06-16 14:24:32 +00:00
|
|
|
cmdclass = dict({'build_py': build_py, 'build_scripts': build_scripts} if build_scripts else {}, **{
|
2016-08-12 09:07:31 +00:00
|
|
|
'install_scripts': install_scripts_f2b, 'install': install_command_f2b
|
2023-06-16 14:24:32 +00:00
|
|
|
}),
|
2014-04-04 02:54:53 +00:00
|
|
|
scripts = [
|
|
|
|
'bin/fail2ban-client',
|
|
|
|
'bin/fail2ban-server',
|
|
|
|
'bin/fail2ban-regex',
|
2016-08-11 16:34:18 +00:00
|
|
|
# 'bin/fail2ban-python', -- link (binary), will be installed via install_scripts_f2b wrapper
|
2020-11-23 13:59:45 +00:00
|
|
|
] + [
|
|
|
|
'bin/fail2ban-testcases',
|
|
|
|
] if with_tests else [],
|
2014-04-04 02:54:53 +00:00
|
|
|
packages = [
|
|
|
|
'fail2ban',
|
|
|
|
'fail2ban.client',
|
|
|
|
'fail2ban.server',
|
2020-11-23 13:59:45 +00:00
|
|
|
] + [
|
2014-04-04 02:54:53 +00:00
|
|
|
'fail2ban.tests',
|
|
|
|
'fail2ban.tests.action_d',
|
2020-11-23 13:59:45 +00:00
|
|
|
] if with_tests else [],
|
2014-04-04 02:54:53 +00:00
|
|
|
package_data = {
|
|
|
|
'fail2ban.tests':
|
|
|
|
[ join(w[0], f).replace("fail2ban/tests/", "", 1)
|
|
|
|
for w in os.walk('fail2ban/tests/files')
|
|
|
|
for f in w[2]] +
|
|
|
|
[ join(w[0], f).replace("fail2ban/tests/", "", 1)
|
|
|
|
for w in os.walk('fail2ban/tests/config')
|
|
|
|
for f in w[2]] +
|
|
|
|
[ join(w[0], f).replace("fail2ban/tests/", "", 1)
|
|
|
|
for w in os.walk('fail2ban/tests/action_d')
|
|
|
|
for f in w[2]]
|
2020-11-23 13:59:45 +00:00
|
|
|
} if with_tests else {},
|
2014-04-04 02:54:53 +00:00
|
|
|
data_files = [
|
|
|
|
('/etc/fail2ban',
|
|
|
|
glob("config/*.conf")
|
|
|
|
),
|
|
|
|
('/etc/fail2ban/filter.d',
|
|
|
|
glob("config/filter.d/*.conf")
|
|
|
|
),
|
2015-02-02 05:42:01 +00:00
|
|
|
('/etc/fail2ban/filter.d/ignorecommands',
|
2016-10-05 13:29:56 +00:00
|
|
|
[p for p in glob("config/filter.d/ignorecommands/*") if isfile(p)]
|
2015-02-02 05:42:01 +00:00
|
|
|
),
|
2014-04-04 02:54:53 +00:00
|
|
|
('/etc/fail2ban/action.d',
|
|
|
|
glob("config/action.d/*.conf") +
|
|
|
|
glob("config/action.d/*.py")
|
|
|
|
),
|
|
|
|
('/etc/fail2ban/fail2ban.d',
|
|
|
|
''
|
|
|
|
),
|
|
|
|
('/etc/fail2ban/jail.d',
|
|
|
|
''
|
|
|
|
),
|
|
|
|
('/var/lib/fail2ban',
|
|
|
|
''
|
|
|
|
),
|
2015-06-12 05:43:42 +00:00
|
|
|
] + data_files_extra,
|
2013-04-20 19:17:36 +00:00
|
|
|
**setup_extra
|
2006-07-08 16:51:14 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
# Do some checks after installation
|
|
|
|
# Search for obsolete files.
|
|
|
|
obsoleteFiles = []
|
2014-04-04 02:54:53 +00:00
|
|
|
elements = {
|
|
|
|
"/etc/":
|
|
|
|
[
|
|
|
|
"fail2ban.conf"
|
|
|
|
],
|
|
|
|
"/usr/bin/":
|
|
|
|
[
|
|
|
|
"fail2ban.py"
|
|
|
|
],
|
|
|
|
"/usr/lib/fail2ban/":
|
|
|
|
[
|
|
|
|
"version.py",
|
|
|
|
"protocol.py"
|
|
|
|
]
|
|
|
|
}
|
2006-08-22 22:05:08 +00:00
|
|
|
|
2006-11-15 23:09:49 +00:00
|
|
|
for directory in elements:
|
|
|
|
for f in elements[directory]:
|
|
|
|
path = join(directory, f)
|
2006-07-08 16:51:14 +00:00
|
|
|
if isfile(path):
|
|
|
|
obsoleteFiles.append(path)
|
2006-11-16 21:07:42 +00:00
|
|
|
|
2006-07-08 16:51:14 +00:00
|
|
|
if obsoleteFiles:
|
2013-04-14 09:18:22 +00:00
|
|
|
print("")
|
|
|
|
print("Obsolete files from previous Fail2Ban versions were found on "
|
|
|
|
"your system.")
|
|
|
|
print("Please delete them:")
|
|
|
|
print("")
|
2006-07-08 16:51:14 +00:00
|
|
|
for f in obsoleteFiles:
|
2023-06-16 13:23:41 +00:00
|
|
|
print(("\t" + f))
|
2013-04-14 09:18:22 +00:00
|
|
|
print("")
|
2006-07-08 16:51:14 +00:00
|
|
|
|
2007-01-04 12:58:21 +00:00
|
|
|
if isdir("/usr/lib/fail2ban"):
|
2013-04-14 09:18:22 +00:00
|
|
|
print("")
|
|
|
|
print("Fail2ban is not installed under /usr/lib anymore. The new "
|
|
|
|
"location is under /usr/share. Please remove the directory "
|
|
|
|
"/usr/lib/fail2ban and everything under this directory.")
|
|
|
|
print("")
|
2007-01-04 12:58:21 +00:00
|
|
|
|
2006-07-08 16:51:14 +00:00
|
|
|
# Update config file
|
2013-04-09 18:40:54 +00:00
|
|
|
if sys.argv[1] == "install":
|
2013-04-14 09:18:22 +00:00
|
|
|
print("")
|
|
|
|
print("Please do not forget to update your configuration files.")
|
2017-08-23 10:55:36 +00:00
|
|
|
print("They are in \"/etc/fail2ban/\".")
|
|
|
|
print("")
|
|
|
|
print("You can also install systemd service-unit file from \"build/fail2ban.service\"")
|
|
|
|
print("resp. corresponding init script from \"files/*-initd\".")
|
2013-04-14 09:18:22 +00:00
|
|
|
print("")
|