hhf/script-management-cloudpanel
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update

Browse source
This commit is contained in:
hhftechnologies 2024-11-27 14:47:29 +05:30
parent 70e73d2e85
commit e74573ce03
1 changed files with 215 additions and 183 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

350
maintenance/crowdsec_removal.sh
View file

@ -4,7 +4,7 @@
# VARIABLES # # VARIABLES #
#-----------------------------------# #-----------------------------------#
this_script_url="https://git.hhf.technology/hhf/script-management-cloudpanel/raw/branch/main/maintenance/crowdsec_removal.sh" # Replace with actual URL this_script_url="https://git.hhf.technology/hhf/script-management-cloudpanel/raw/branch/main/maintenance/crowdsec_removal.sh"
this_script_name="CrowdSec Removal Script" this_script_name="CrowdSec Removal Script"
formatter_url="https://git.hhf.technology/hhf/TaskFormatter/raw/branch/main/bash_task_formatter/task_formatter.sh" formatter_url="https://git.hhf.technology/hhf/TaskFormatter/raw/branch/main/bash_task_formatter/task_formatter.sh"
scriptname=$0 scriptname=$0
@ -19,7 +19,7 @@ success=0
USER_TO_RUN_AS="${1:-$SUDO_USER}" USER_TO_RUN_AS="${1:-$SUDO_USER}"
USER_HOME=$(eval echo ~$USER_TO_RUN_AS) USER_HOME=$(eval echo ~$USER_TO_RUN_AS)
# Logging and backup setup # Logging setup
LOGFILE="/var/log/crowdsec_removal_$(date +%Y%m%d_%H%M%S).log" LOGFILE="/var/log/crowdsec_removal_$(date +%Y%m%d_%H%M%S).log"
BACKUP_DIR="/var/backup/crowdsec_$(date +%Y%m%d_%H%M%S)" BACKUP_DIR="/var/backup/crowdsec_$(date +%Y%m%d_%H%M%S)"
@ -61,23 +61,86 @@ download_formatter
# FUNCTIONS # # FUNCTIONS #
#-----------------------------------# #-----------------------------------#
# Trap errors and interrupts
trap 'error_handler $? $LINENO' ERR
trap 'cleanup' EXIT
trap 'interrupt_handler' INT TERM
# Function to handle errors
error_handler() {
local exit_code=$1
local line_number=$2
log_message "ERROR" "Error $exit_code occurred on line $line_number"
cleanup
exit "$exit_code"
}
# Function to handle interrupts
interrupt_handler() {
log_message "WARNING" "Script interrupted by user"
cleanup
exit 130
}
# Cleanup function
cleanup() {
# Remove temporary files if they exist
[ -f "/tmp/crowdsec_services.tmp" ] && rm -f "/tmp/crowdsec_services.tmp"
[ -f "/tmp/crowdsec_packages.tmp" ] && rm -f "/tmp/crowdsec_packages.tmp"
format_output cleanup_files "Cleaning up temporary files"
format_output remove_script "Removing script"
}
# Function to check if a command exists # Function to check if a command exists
command_exists() { command_exists() {
command -v "$1" >/dev/null 2>&1 command -v "$1" >/dev/null 2>&1
} }
# Enhanced logging function with formatter integration
log_message() {
local level=$1
local message=$2
local timestamp=$(date '+%Y-%m-%d %H:%M:%S')
echo "[$timestamp] [$level] $message" >> "$LOGFILE"
case $level in
"INFO") log "$message" ;;
"WARNING") log "$message" ;;
"ERROR") log "$message" ;;
"SUCCESS") log "${CHECK_MARK} $message" ;;
esac
}
# Function to check system requirements
check_system_requirements() {
local missing_deps=()
# Check for required commands
for cmd in systemctl grep awk sed; do
if ! command_exists "$cmd"; then
missing_deps+=("$cmd")
fi
done
if [ ${#missing_deps[@]} -ne 0 ]; then
log_message "ERROR" "Missing required dependencies: ${missing_deps[*]}"
return 1
fi
return 0
}
# Function to check if running as root # Function to check if running as root
check_root() { check_root() {
if [ "$(id -u)" -ne 0 ]; then if [ "$(id -u)" -ne 0 ]; then
echo -e "Please run as root $CROSS_MARK" log_message "ERROR" "Please run as root"
exit 1 return 1
fi fi
echo -e "Running as root $CHECK_MARK"
return 0 return 0
} }
# Function to create backup # Function to create backup
create_backup() { create_backup() {
log_message "INFO" "Creating backup of CrowdSec configurations..."
mkdir -p "$BACKUP_DIR" mkdir -p "$BACKUP_DIR"
# Backup configuration files # Backup configuration files
@ -94,198 +157,169 @@ create_backup() {
find "/etc/systemd/system" -name "*crowdsec*" -exec cp {} "$BACKUP_DIR/" \; find "/etc/systemd/system" -name "*crowdsec*" -exec cp {} "$BACKUP_DIR/" \;
fi fi
echo -e "Backup created at $BACKUP_DIR $CHECK_MARK" log_message "SUCCESS" "Backup created at $BACKUP_DIR"
return 0 return 0
} }
# Function to check services # Enhanced service check function
check_services() { check_services() {
log_message "INFO" "Checking for CrowdSec services..."
systemctl list-units --type=service --all | grep -i crowdsec | awk '{print $1}' > /tmp/crowdsec_services.tmp systemctl list-units --type=service --all | grep -i crowdsec | awk '{print $1}' > /tmp/crowdsec_services.tmp
if [ ! -s /tmp/crowdsec_services.tmp ]; then if [ ! -s /tmp/crowdsec_services.tmp ]; then
echo -e "No CrowdSec services found $CHECK_MARK" log_message "SUCCESS" "No CrowdSec services found."
services="" services=""
return 0 return 0
else else
services=$(cat /tmp/crowdsec_services.tmp) services=$(cat /tmp/crowdsec_services.tmp)
echo "Found CrowdSec services:" log_message "WARNING" "Found CrowdSec services:"
cat /tmp/crowdsec_services.tmp echo "$services" | while read -r service; do
echo -e "Service check completed $CHECK_MARK" log_message "INFO" "Found service: $service"
done
return 0 return 0
fi fi
} }
# Function to check packages # Enhanced package check function
check_packages() { check_packages() {
log_message "INFO" "Checking for CrowdSec packages..."
if command_exists dpkg; then if command_exists dpkg; then
dpkg -l | grep -i crowdsec | awk '{print $2}' > /tmp/crowdsec_packages.tmp dpkg -l | grep -i crowdsec | awk '{print $2}' > /tmp/crowdsec_packages.tmp
elif command_exists rpm; then elif command_exists rpm; then
rpm -qa | grep -i crowdsec > /tmp/crowdsec_packages.tmp rpm -qa | grep -i crowdsec > /tmp/crowdsec_packages.tmp
else else
echo -e "Unable to determine package manager $CROSS_MARK" log_message "ERROR" "Unable to determine package manager."
return 1 return 1
fi fi
if [ ! -s /tmp/crowdsec_packages.tmp ]; then if [ ! -s /tmp/crowdsec_packages.tmp ]; then
echo -e "No CrowdSec packages found $CHECK_MARK" log_message "SUCCESS" "No CrowdSec packages found."
packages="" packages=""
return 0
else else
packages=$(cat /tmp/crowdsec_packages.tmp) packages=$(cat /tmp/crowdsec_packages.tmp)
echo "Found CrowdSec packages:" log_message "WARNING" "Found CrowdSec packages:"
cat /tmp/crowdsec_packages.tmp echo "$packages" | while read -r package; do
echo -e "Package check completed $CHECK_MARK" log_message "INFO" "Found package: $package"
return 0 done
fi fi
return 0
} }
# Function to disable services # Enhanced service disable function
disable_services() { disable_services() {
log_message "INFO" "Disabling CrowdSec services..."
if [ -z "$services" ]; then if [ -z "$services" ]; then
echo -e "No CrowdSec services to disable $CHECK_MARK" log_message "WARNING" "No CrowdSec services to disable."
return 0 return 0
fi fi
local success=0
echo "$services" | while read -r service; do echo "$services" | while read -r service; do
if ! systemctl stop "$service" 2>/dev/null || ! systemctl disable "$service" 2>/dev/null; then systemctl stop "$service" 2>/dev/null
echo -e "Failed to disable $service $CROSS_MARK" if [ $? -eq 0 ]; then
success=1 systemctl disable "$service" 2>/dev/null
log_message "SUCCESS" "Disabled $service"
else
log_message "ERROR" "Failed to stop $service"
return 1
fi
done
return 0
}
# Enhanced package removal function
remove_packages() {
log_message "INFO" "Removing CrowdSec packages..."
if [ -z "$packages" ]; then
log_message "WARNING" "No CrowdSec packages to remove."
return 0
fi
local remove_cmd=""
if command_exists apt-get; then
remove_cmd="apt-get remove --purge -y"
cleanup_cmd="apt-get autoremove -y"
elif command_exists yum; then
remove_cmd="yum remove -y"
cleanup_cmd="yum autoremove -y"
elif command_exists dnf; then
remove_cmd="dnf remove -y"
cleanup_cmd="dnf autoremove -y"
else
log_message "ERROR" "No supported package manager found."
return 1
fi
local failed=0
echo "$packages" | while read -r package; do
if $remove_cmd "$package"; then
log_message "SUCCESS" "Removed package: $package"
else
log_message "ERROR" "Failed to remove package: $package"
failed=1
fi fi
done done
if [ $success -eq 0 ]; then if [ $failed -eq 0 ] && $cleanup_cmd; then
echo -e "Services disabled successfully $CHECK_MARK" log_message "SUCCESS" "Cleaned up dependencies"
return 0 return 0
else
echo -e "Some services failed to disable $CROSS_MARK"
return 1
fi fi
return 1
} }
# Function to remove packages # Enhanced repository removal function
remove_packages() { remove_apt_repos() {
if [ -z "$packages" ]; then log_message "INFO" "Removing CrowdSec repository entries..."
echo -e "No CrowdSec packages to remove $CHECK_MARK" if ! command_exists apt-get; then
log_message "INFO" "System is not Debian/Ubuntu based, skipping repo removal"
return 0 return 0
fi fi
# First stop and disable all CrowdSec-related services local repo_files=("/etc/apt/sources.list" "/etc/apt/sources.list.d/"*)
systemctl stop 'crowdsec*' 2>/dev/null local failed=0
systemctl disable 'crowdsec*' 2>/dev/null
local success=0 for file in "${repo_files[@]}"; do
if [ -f "$file" ] && grep -q "crowdsec" "$file"; then
# Debian/Ubuntu systems if sed -i '/crowdsec/d' "$file"; then
if command_exists apt-get; then log_message "SUCCESS" "Removed CrowdSec entry from $file"
# Remove CrowdSec packages
DEBIAN_FRONTEND=noninteractive apt-get remove --purge -y crowdsec crowdsec-firewall-bouncer-iptables '*crowdsec*' 2>/dev/null
DEBIAN_FRONTEND=noninteractive apt-get autoremove -y 2>/dev/null
# Remove APT repository
rm -f /etc/apt/sources.list.d/crowdsec.list
apt-get update
# RHEL/CentOS systems
elif command_exists yum; then
yum remove -y crowdsec crowdsec-firewall-bouncer-iptables '*crowdsec*' 2>/dev/null
yum autoremove -y 2>/dev/null
# Remove YUM repository
rm -f /etc/yum.repos.d/crowdsec.repo
yum clean all
# Fedora systems
elif command_exists dnf; then
dnf remove -y crowdsec crowdsec-firewall-bouncer-iptables '*crowdsec*' 2>/dev/null
dnf autoremove -y 2>/dev/null
# Remove DNF repository
rm -f /etc/yum.repos.d/crowdsec.repo
dnf clean all
else else
echo -e "No supported package manager found $CROSS_MARK" log_message "ERROR" "Failed to remove CrowdSec entry from $file"
return 1 failed=1
fi fi
fi
done
echo -e "Packages and repositories removed successfully $CHECK_MARK" if [ $failed -eq 0 ] && apt-get update >/dev/null 2>&1; then
log_message "SUCCESS" "APT repositories updated"
return 0 return 0
fi
return 1
} }
# Function to remove configuration and additional files # Enhanced configuration removal function
remove_config() { remove_config() {
# List of locations to clean log_message "INFO" "Removing CrowdSec configuration files..."
local paths_to_clean=(
# Configuration directories local config_dirs=(
"/etc/crowdsec" "/etc/crowdsec"
"/var/lib/crowdsec" "/var/lib/crowdsec"
"/usr/local/lib/crowdsec" "/usr/local/lib/crowdsec"
"/usr/share/crowdsec" "/usr/share/crowdsec"
# Binary and executable files
"/usr/local/bin/crowdsec"
"/usr/local/bin/cscli"
"/usr/bin/crowdsec"
"/usr/bin/cscli"
# Service files
"/etc/systemd/system/crowdsec.service"
"/etc/systemd/system/crowdsec-firewall-bouncer.service"
"/lib/systemd/system/crowdsec.service"
"/lib/systemd/system/crowdsec-firewall-bouncer.service"
# Log files
"/var/log/crowdsec.log"
"/var/log/crowdsec-firewall-bouncer.log"
# Additional data directories
"/var/run/crowdsec"
"/run/crowdsec"
# Database files
"/var/lib/crowdsec/data/crowdsec.db"
) )
local success=0 local failed=0
for path in "${paths_to_clean[@]}"; do for dir in "${config_dirs[@]}"; do
if [ -e "$path" ]; then if [ -d "$dir" ]; then
if ! rm -rf "$path" 2>/dev/null; then if rm -rf "$dir" 2>/dev/null; then
echo -e "Failed to remove: $path $CROSS_MARK" log_message "SUCCESS" "Removed directory: $dir"
success=1
else else
echo -e "Removed: $path $CHECK_MARK" log_message "ERROR" "Failed to remove directory: $dir"
failed=1
fi fi
fi fi
done done
# Clean up any remaining crowdsec processes [ $failed -eq 0 ] && return 0 || return 1
pkill -f crowdsec 2>/dev/null
# Reload systemd to recognize the changes
systemctl daemon-reload 2>/dev/null
if [ $success -eq 0 ]; then
echo -e "All CrowdSec files and configurations removed successfully $CHECK_MARK"
return 0
else
echo -e "Some files or configurations could not be removed $CROSS_MARK"
return 1
fi
}
# Remove created files on cleanup
cleanup_files() {
rm -f /tmp/crowdsec_services.tmp /tmp/crowdsec_packages.tmp
echo -e "Cleaned up temporary files $CHECK_MARK"
return 0
}
# Remove the script itself
remove_script() {
if [ -f "$0" ]; then
echo "Removing monitoring script..."
rm -- "$0"
fi
if [ -f "task_formatter.sh" ]; then
rm task_formatter.sh
fi
echo -e "Cleaned up $CHECK_MARK"
return 0
} }
#-----------------------------------# #-----------------------------------#
@ -297,33 +331,36 @@ print_header "$this_script_name" "$this_script_url"
echo -e "Running as User: $USER_TO_RUN_AS\nUser Home: $USER_HOME\n" echo -e "Running as User: $USER_TO_RUN_AS\nUser Home: $USER_HOME\n"
# Run with formatted output # Check requirements
if ! format_output check_root "Checking root privileges"; then if ! format_output check_root "Checking root privileges"; then
cleanup_files cleanup
success=1 exit 1
fi fi
if ! format_output check_services "Checking CrowdSec services"; then if ! format_output check_system_requirements "Checking system requirements"; then
cleanup_files cleanup
success=1 exit 1
fi fi
if ! format_output check_packages "Checking CrowdSec packages"; then # Initialize log file
cleanup_files touch "$LOGFILE" || { echo "Cannot create log file"; exit 1; }
success=1 log_message "INFO" "Starting CrowdSec removal script v${VERSION}"
fi
# Check current state
format_output check_services "Checking CrowdSec services"
format_output check_packages "Checking CrowdSec packages"
if [ -z "$services" ] && [ -z "$packages" ]; then if [ -z "$services" ] && [ -z "$packages" ]; then
echo -e "No CrowdSec components found on your system $CHECK_MARK" log_message "SUCCESS" "No CrowdSec components found on your system."
format_output cleanup_files "Cleaning up temporary files" cleanup
format_output remove_script "Removing script"
exit 0 exit 0
fi fi
echo "What would you like to do?" # Interactive menu
log_message "INFO" "What would you like to do?"
echo "1) Disable CrowdSec services" echo "1) Disable CrowdSec services"
echo "2) Remove CrowdSec packages" echo "2) Remove CrowdSec packages"
echo "3) Remove everything (services, packages, and configuration)" echo "3) Remove everything (services, packages, configuration, and repositories)"
echo "4) Exit without changes" echo "4) Exit without changes"
read -r -p "Enter your choice (1-4): " choice read -r -p "Enter your choice (1-4): " choice
@ -333,22 +370,17 @@ case $choice in
2) format_output remove_packages "Removing CrowdSec packages" ;; 2) format_output remove_packages "Removing CrowdSec packages" ;;
3) 3)
format_output create_backup "Creating backup" format_output create_backup "Creating backup"
format_output disable_services "Disabling CrowdSec services" format_output disable_services "Disabling services"
format_output remove_packages "Removing CrowdSec packages" format_output remove_packages "Removing packages"
format_output remove_config "Removing CrowdSec configuration" format_output remove_apt_repos "Removing repositories"
;; format_output remove_config "Removing configuration"
4)
echo -e "Exiting without changes $CHECK_MARK"
success=0
;;
*)
echo -e "Invalid choice $CROSS_MARK"
success=1
;; ;;
4) log_message "INFO" "Exiting without changes."; cleanup; exit 0 ;;
*) log_message "ERROR" "Invalid choice."; cleanup; exit 1 ;;
esac esac
format_output cleanup_files "Cleaning up temporary files" log_message "SUCCESS" "Operations completed successfully."
format_output remove_script "Removing script" echo "Log file available at: $LOGFILE"
# Exit with appropriate status # Exit with appropriate status
exit $success exit $success