/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to network-hooks.d/bridge

Hooks take new "modules" argument, and hook names can contain periods.

* debian/mandos-client.README.Debian: Adjust wording.
* debian/rules (binary-common): Exclude nework-hooks.d directory from
                                dh_fixperms.
* initramfs-tools-hook: Also create network hook directory.  Allow
                        periods in hook names.  Only run executable
                        files in hook directory.  Copy needed modules.
* network-hooks.d/bridge: Fix "/usr/bin/brctl" to "/usr/sbin/brctl".
                          Also take "modules" argument.
* plugins.d/mandos-client.xml (NETWORK HOOKS/REQUIREMENTS): Document
                                                            the
                                                            allowing
                                                            of periods
                                                            in hook
                                                            names.
  (NETWORK HOOKS/REQUIREMENTS/files): Adjust wording.
  (NETWORK HOOKS/REQUIREMENTS/modules): New.
  (NETWORK HOOKS/REQUIREMENTS/MANDOSNETHOOKDIR): Clarify.
  (NETWORK HOOKS/REQUIREMENTS/MODE): Add "modules".

Show diffs side-by-side

added added

removed removed

Lines of Context:
 
1
#!/bin/sh
 
2
#
 
3
# This is an example of a Mandos client network hook.  This hook
 
4
# brings up a bridge interface as specified in a separate
 
5
# configuration file.  To be used, this file and any needed
 
6
# configuration file(s) should be copied into the
 
7
# /etc/mandos/network-hooks.d directory.
 
8
 
9
# Copying and distribution of this file, with or without modification,
 
10
# are permitted in any medium without royalty provided the copyright
 
11
# notice and this notice are preserved.  This file is offered as-is,
 
12
# without any warranty.
 
13
 
 
14
set -e
 
15
 
 
16
CONFIG="$MANDOSNETHOOKDIR/bridge.conf"
 
17
 
 
18
# Read config file, which must set "BRIDGE", "PORTS", and optionally
 
19
# "IPADDRS" and "ROUTES".
 
20
if [ -e "$CONFIG" ]; then
 
21
    . "$CONFIG"
 
22
fi
 
23
 
 
24
if [ -z "$BRIDGE" -o -z "$PORTS" ]; then
 
25
    exit
 
26
fi
 
27
 
 
28
if [ -n "$DEVICE" -a "$DEVICE" != "$BRIDGE" ]; then
 
29
    exit
 
30
fi
 
31
 
 
32
case "$1" in
 
33
    start)
 
34
        brctl addbr "$BRIDGE"
 
35
        for port in $PORTS; do
 
36
            brctl addif "$BRIDGE" "$port"
 
37
        done
 
38
        ip link set up "$BRIDGE"
 
39
        if [ -n "$IPADDRS" ]; then
 
40
            for ipaddr in $IPADDRS; do
 
41
                ip addr add "$ipaddr" dev "$BRIDGE"
 
42
            done
 
43
        fi
 
44
        if [ -n "$ROUTES" ]; then
 
45
            for route in $ROUTES; do
 
46
                ip route add "$route" dev "$BRIDGE"
 
47
            done
 
48
        fi
 
49
        ;;
 
50
    stop)
 
51
        ip link set down "$BRIDGE"
 
52
        for port in $PORTS; do
 
53
            brctl delif "$BRIDGE" "$port"
 
54
        done
 
55
        brctl delbr "$BRIDGE"
 
56
        ;;
 
57
    files)
 
58
        echo /bin/ip
 
59
        echo /usr/sbin/brctl
 
60
        ;;
 
61
    modules)
 
62
        echo bridge
 
63
        ;;
 
64
esac