summaryrefslogtreecommitdiff
path: root/src/Propellor/Property/Tor.hs
blob: 57fbc7158f32aff7e4d6c4eba46ce78606a3d20a (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
module Propellor.Property.Tor where

import Propellor
import qualified Propellor.Property.File as File
import qualified Propellor.Property.Apt as Apt
import qualified Propellor.Property.Service as Service

isBridge :: Property
isBridge = setup `requires` Apt.installed ["tor"]
	`describe` "tor bridge"
  where
	setup = mainConfig `File.hasContent`
		[ "SocksPort 0"
		, "ORPort 443"
		, "BridgeRelay 1"
		, "Exitpolicy reject *:*"
		] `onChange` restarted

hiddenServiceAvailable :: HostName -> Int -> Property
hiddenServiceAvailable hn port = hiddenServiceHostName prop
  where
	prop = mainConfig `File.containsLines`
		[ unlines ["HiddenServiceDir", varPath </> hn]
		, unlines ["HiddenServicePort", show port, "127.0.0.1:" ++ show port]
		]
		`describe` "hidden service available"
		`onChange` Service.reloaded "tor"
	hiddenServiceHostName p =  adjustProperty p $ \satisfy -> do
		r <- satisfy
		h <- liftIO $ readFile (varPath </> hn </> "hostname")
		warningMessage $ unlines ["hidden service hostname:", h]
		return r

hiddenService :: HostName -> Int -> Property
hiddenService hn port = mainConfig `File.containsLines`
	[ unlines ["HiddenServiceDir", varPath </> hn]
	, unlines ["HiddenServicePort", show port, "127.0.0.1:" ++ show port]
	]
	`describe` unlines ["hidden service available:", hn, show port]
	`onChange` restarted

restarted :: Property
restarted = Service.restarted "tor"

mainConfig :: FilePath
mainConfig = "/etc/tor/torrc"

varPath :: FilePath
varPath = "/var/lib/tor"