pi-hole/pihole

362 lines
10 KiB
Text
Raw Normal View History

2016-08-26 22:10:22 +00:00
#!/bin/bash
# Pi-hole: A black hole for Internet advertisements
2017-02-22 17:55:20 +00:00
# (c) 2017 Pi-hole, LLC (https://pi-hole.net)
# Network-wide ad blocking via your own hardware.
#
2016-08-26 22:10:22 +00:00
# Controller for all pihole scripts and functions.
#
2017-02-22 17:55:20 +00:00
# This file is copyright under the latest version of the EUPL.
# Please see LICENSE file for your rights under this license.
2017-03-08 12:16:40 +00:00
readonly PI_HOLE_SCRIPT_DIR="/opt/pihole"
2017-02-22 17:55:20 +00:00
readonly wildcardlist="/etc/dnsmasq.d/03-pihole-wildcard.conf"
2016-08-26 22:10:22 +00:00
# Must be root to use this tool
if [[ ! $EUID -eq 0 ]];then
2016-11-02 16:36:30 +00:00
if [ -x "$(command -v sudo)" ];then
exec sudo bash "$0" "$@"
exit $?
else
echo "::: sudo is needed to run pihole commands. Please run this script as root or install sudo."
exit 1
fi
2016-08-26 22:10:22 +00:00
fi
2016-11-16 20:34:43 +00:00
webpageFunc() {
2016-12-28 16:25:14 +00:00
source /opt/pihole/webpage.sh
main "$@"
2016-11-16 20:34:43 +00:00
exit 0
}
whitelistFunc() {
"${PI_HOLE_SCRIPT_DIR}"/list.sh "$@"
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
blacklistFunc() {
"${PI_HOLE_SCRIPT_DIR}"/list.sh "$@"
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
2016-12-31 12:49:04 +00:00
wildcardFunc() {
"${PI_HOLE_SCRIPT_DIR}"/list.sh "$@"
exit 0
}
debugFunc() {
2017-02-26 23:36:53 +00:00
local automated
local web
# Pull off the `debug` leaving passed call augmentation flags in $1
2017-02-26 23:36:53 +00:00
shift
if [[ "$@" == *"-a"* ]]; then
2017-02-26 23:36:53 +00:00
automated="true"
fi
if [[ "$@" == *"-w"* ]]; then
web="true"
fi
AUTOMATED=${automated:-} WEBCALL=${web:-} "${PI_HOLE_SCRIPT_DIR}"/piholeDebug.sh
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
flushFunc() {
"${PI_HOLE_SCRIPT_DIR}"/piholeLogFlush.sh
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
updatePiholeFunc() {
"${PI_HOLE_SCRIPT_DIR}"/update.sh
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
reconfigurePiholeFunc() {
2016-11-02 16:36:30 +00:00
/etc/.pihole/automated\ install/basic-install.sh --reconfigure
exit 0;
}
updateGravityFunc() {
"${PI_HOLE_SCRIPT_DIR}"/gravity.sh "$@"
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
scanList(){
domain="${1}"
list="${2}"
method="${3}"
if [[ ${method} == "-exact" ]]; then
grep -i -E -l "(^|\s|\/)${domain}($|\s|\/)" ${list}
else
grep -i "${domain}" ${list}
fi
}
queryFunc() {
method="${3}"
# If domain contains non ASCII characters, convert domain to punycode if python exists
# Cr: https://serverfault.com/a/335079
if [ -z "${2}" ]; then
echo "::: No domain specified"
exit 1
elif [[ ${2} = *[![:ascii:]]* ]]; then
[ `which python` ] && domain=$(python -c 'import sys;print sys.argv[1].decode("utf-8").encode("idna")' "${2}")
else
domain="${2}"
fi
# Scan Whitelist, Blacklist and Wildcards
lists="/etc/pihole/whitelist.txt /etc/pihole/blacklist.txt $wildcardlist"
result=$(scanList ${domain} "${lists}" ${method})
if [ -n "$result" ]; then
echo "$result"
2017-05-11 10:21:23 +00:00
[[ ! -t 1 ]] && exit 0
fi
# Scan Domains lists
result=$(scanList ${domain} "/etc/pihole/*.domains" ${method})
if [ -n "$result" ]; then
sort -t . -k 2 -g <<< "$result"
else
[ -n "$method" ] && exact="exact "
echo "::: No ${exact}results found for ${domain}"
fi
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 08:39:27 +00:00
}
chronometerFunc() {
2016-11-02 16:36:30 +00:00
shift
"${PI_HOLE_SCRIPT_DIR}"/chronometer.sh "$@"
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
uninstallFunc() {
"${PI_HOLE_SCRIPT_DIR}"/uninstall.sh
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
versionFunc() {
2016-11-02 16:36:30 +00:00
shift
"${PI_HOLE_SCRIPT_DIR}"/version.sh "$@"
2016-11-02 16:36:30 +00:00
exit 0
2016-08-26 22:10:22 +00:00
}
restartDNS() {
dnsmasqPid=$(pidof dnsmasq)
if [[ ${dnsmasqPid} ]]; then
# service already running - reload config
if [ -x "$(command -v systemctl)" ]; then
systemctl restart dnsmasq
else
service dnsmasq restart
fi
else
# service not running, start it up
if [ -x "$(command -v systemctl)" ]; then
systemctl start dnsmasq
else
service dnsmasq start
fi
fi
}
piholeEnable() {
if [[ "${1}" == "0" ]] ; then
#Disable Pihole
sed -i 's/^addn-hosts=\/etc\/pihole\/gravity.list/#addn-hosts=\/etc\/pihole\/gravity.list/' /etc/dnsmasq.d/01-pihole.conf
echo "::: Blocking has been disabled!"
if [[ $# > 1 ]] ; then
if [[ ${2} == *"s"* ]] ; then
tt=${2%"s"}
2016-11-18 11:16:10 +00:00
echo "::: Blocking will be re-enabled in ${tt} seconds"
nohup bash -c "sleep ${tt}; pihole enable" </dev/null &>/dev/null &
elif [[ ${2} == *"m"* ]] ; then
tt=${2%"m"}
2016-11-18 11:16:10 +00:00
echo "::: Blocking will be re-enabled in ${tt} minutes"
tt=$((${tt}*60))
nohup bash -c "sleep ${tt}; pihole enable" </dev/null &>/dev/null &
else
echo "::: Unknown format for delayed reactivation of the blocking!"
echo "::: Example:"
echo "::: pihole disable 5s - will disable blocking for 5 seconds"
echo "::: pihole disable 7m - will disable blocking for 7 minutes"
2016-11-17 22:36:53 +00:00
echo "::: Blocking will not automatically be re-enabled!"
fi
fi
else
#Enable pihole
echo "::: Blocking has been enabled!"
sed -i 's/^#addn-hosts/addn-hosts/' /etc/dnsmasq.d/01-pihole.conf
fi
restartDNS
}
piholeLogging() {
2016-11-02 09:35:48 +00:00
shift
if [[ "${1}" == "off" ]] ; then
#Disable Logging
sed -i 's/^log-queries/#log-queries/' /etc/dnsmasq.d/01-pihole.conf
sed -i 's/^QUERY_LOGGING=true/QUERY_LOGGING=false/' /etc/pihole/setupVars.conf
pihole -f
echo "::: Logging has been disabled!"
elif [[ "${1}" == "on" ]] ; then
#Enable logging
sed -i 's/^#log-queries/log-queries/' /etc/dnsmasq.d/01-pihole.conf
sed -i 's/^QUERY_LOGGING=false/QUERY_LOGGING=true/' /etc/pihole/setupVars.conf
echo "::: Logging has been enabled!"
else
echo "::: Invalid option passed, please pass 'on' or 'off'"
exit 1
fi
restartDNS
}
piholeStatus() {
if [[ $(netstat -plnt | grep -c ':53 ') > 0 ]]; then
if [[ "${1}" != "web" ]] ; then
echo "::: DNS service is running"
fi
else
if [[ "${1}" == "web" ]] ; then
echo "-1";
else
echo "::: DNS service is NOT running"
fi
return
fi
2016-11-02 16:28:00 +00:00
if [[ $(grep -i "^#addn-hosts=/" /etc/dnsmasq.d/01-pihole.conf) ]] ; then
2016-10-20 22:40:03 +00:00
#list is commented out
if [[ "${1}" == "web" ]] ; then
echo 0;
else
2016-10-23 18:47:31 +00:00
echo "::: Pi-hole blocking is Disabled";
2016-10-20 22:40:03 +00:00
fi
2016-11-02 16:28:00 +00:00
elif [[ $(grep -i "^addn-hosts=/" /etc/dnsmasq.d/01-pihole.conf) ]] ; then
2016-10-20 22:45:27 +00:00
#list set
if [[ "${1}" == "web" ]] ; then
echo 1;
else
2016-10-23 18:47:31 +00:00
echo "::: Pi-hole blocking is Enabled";
fi
2016-10-20 22:40:03 +00:00
else
#addn-host not found
if [[ "${1}" == "web" ]] ; then
2016-10-20 22:45:27 +00:00
echo 99
else
2016-10-21 01:15:11 +00:00
echo "::: No hosts file linked to dnsmasq, adding it in enabled state"
2016-10-20 22:45:27 +00:00
fi
#add addn-host= to dnsmasq
2016-10-20 22:40:03 +00:00
echo "addn-hosts=/etc/pihole/gravity.list" >> /etc/dnsmasq.d/01-pihole.conf
restartDNS
fi
}
2016-12-08 20:15:03 +00:00
tailFunc() {
2016-12-08 21:35:50 +00:00
echo "Press Ctrl-C to exit"
2016-12-08 20:15:03 +00:00
tail -F /var/log/pihole.log
exit 0
}
2017-03-08 12:16:40 +00:00
piholeCheckoutFunc() {
source "${PI_HOLE_SCRIPT_DIR}"/piholeCheckout.sh
shift
2017-03-08 12:16:40 +00:00
checkout "$@"
}
tricorderFunc() {
if [ ! -p "/dev/stdin" ]; then
echo "Please do not call Tricorder directly."
exit 1
fi
if command -v openssl &> /dev/null; then
openssl s_client -quiet -connect tricorder.pi-hole.net:9998 2> /dev/null < /dev/stdin
else
2017-05-15 23:48:46 +00:00
echo "Your debug log will be transmitted unencrypted via plain-text"
echo "There is a possibility that this could be intercepted by a third party"
echo "If you wish to cancel, press Ctrl-C to exit within 10 seconds"
secs="10"
while [ "$secs" -gt 0 ]; do
echo -ne "."
sleep 1
: $((secs--))
done
echo " "
2017-05-15 23:48:46 +00:00
nc tricorder.pi-hole.net 9999 < /dev/stdin
fi
}
helpFunc() {
2016-10-22 05:53:04 +00:00
cat << EOM
::: Control all Pi-hole specific functions
2016-10-22 05:53:04 +00:00
:::
::: Usage: pihole [options]
::: Add -h after -w (whitelist), -b (blacklist), -c (chronometer), or -a (admin) for more information on usage
2016-10-22 05:53:04 +00:00
:::
::: Options:
::: -w, whitelist Whitelist domain(s)
::: -b, blacklist Blacklist domain(s) (exact match)
::: -wild, wildcard Blacklist whole domain(s) (wildcard)
::: -d, debug Start a debugging session
2017-03-14 17:19:43 +00:00
::: Automated debugging can be enabled with '-a'.
::: 'pihole -d -a'
::: -f, flush Flush the 'pihole.log' file
::: -t, tail Output the last lines of the 'pihole.log' file. Lines are appended as the file grows
::: -up, updatePihole Update Pi-hole components
2016-12-08 20:47:30 +00:00
::: -r, reconfigure Reconfigure or Repair Pi-hole
2016-10-22 05:53:04 +00:00
::: -g, updateGravity Update the list of ad-serving domains
::: -c, chronometer Calculates stats and displays to an LCD
::: -h, help Show this help dialog
::: -v, version Show installed versions of Pi-hole and Web-Admin
2016-10-22 05:53:04 +00:00
::: -q, query Query the adlists for a specific domain
::: 'pihole -q domain -exact' shows exact matches only
::: -l, logging Enable or Disable logging (pass 'on' or 'off')
2016-11-20 14:15:27 +00:00
::: -a, admin Admin webpage options
::: uninstall Uninstall Pi-hole from your system! :(
::: status Display if Pi-hole is Enabled or Disabled
::: enable Enable Pi-hole DNS Blocking
::: disable Disable Pi-hole DNS Blocking
::: Blocking can also be disabled only temporarily, e.g.,
::: 'pihole disable 5m' - will disable blocking for 5 minutes
::: restartdns Restart dnsmasq
2017-03-08 12:16:40 +00:00
::: checkout Check out different branches
2016-10-22 05:53:04 +00:00
EOM
exit 0
2016-08-26 22:10:22 +00:00
}
if [[ $# = 0 ]]; then
2016-11-02 16:36:30 +00:00
helpFunc
2016-08-26 22:10:22 +00:00
fi
# Handle redirecting to specific functions based on arguments
case "${1}" in
2016-11-02 16:36:30 +00:00
"-w" | "whitelist" ) whitelistFunc "$@";;
"-b" | "blacklist" ) blacklistFunc "$@";;
2016-12-31 12:49:04 +00:00
"-wild" | "wildcard" ) wildcardFunc "$@";;
2017-02-26 23:36:53 +00:00
"-d" | "debug" ) debugFunc "$@";;
2016-11-02 16:36:30 +00:00
"-f" | "flush" ) flushFunc;;
"-up" | "updatePihole" ) updatePiholeFunc;;
"-r" | "reconfigure" ) reconfigurePiholeFunc;;
"-g" | "updateGravity" ) updateGravityFunc "$@";;
"-c" | "chronometer" ) chronometerFunc "$@";;
"-h" | "help" ) helpFunc;;
"-v" | "version" ) versionFunc "$@";;
"-q" | "query" ) queryFunc "$@";;
"-l" | "logging" ) piholeLogging "$@";;
"uninstall" ) uninstallFunc;;
"enable" ) piholeEnable 1;;
"disable" ) piholeEnable 0 $2;;
2016-11-02 16:36:30 +00:00
"status" ) piholeStatus "$2";;
"restartdns" ) restartDNS;;
2016-11-20 14:15:27 +00:00
"-a" | "admin" ) webpageFunc "$@";;
2016-12-08 20:15:03 +00:00
"-t" | "tail" ) tailFunc;;
2017-03-08 12:16:40 +00:00
"checkout" ) piholeCheckoutFunc "$@";;
"tricorder" ) tricorderFunc;;
2016-11-02 16:36:30 +00:00
* ) helpFunc;;
esac