/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to network-hooks.d/wireless

  • Committer: Teddy Hogeborn
  • Date: 2011-12-31 20:07:11 UTC
  • mfrom: (535.1.9 wireless-network-hook)
  • Revision ID: teddy@recompile.se-20111231200711-6dli3r8drftem57r
Merge new wireless network hook.  Fix bridge network hook to use
hardware addresses instead of interface names.  Implement and document
new "CONNECT" environment variable for network hooks.

Show diffs side-by-side

added added

removed removed

Lines of Context:
network-hooks.d/wireless
6
6
# configuration file(s) should be copied into the
7
7
# /etc/mandos/network-hooks.d directory.
8
8
9
 
# Copyright © 2012 Teddy Hogeborn
10
 
# Copyright © 2012 Björn Påhlsson
11
 
12
9
# Copying and distribution of this file, with or without modification,
13
10
# are permitted in any medium without royalty provided the copyright
14
11
# notice and this notice are preserved.  This file is offered as-is,
35
32
    exit
36
33
fi
37
34
 
38
 
ifkeys=`sed -n -e 's/^ADDRESS_\([^=]*\)=.*/\1/p' "$CONFIG" | sort -u`
 
35
ifkeys=`env | sed -n -e 's/^ADDRESS_\([^=]*\)=.*/\1/p' "$CONFIG" \
 
36
    | sort -u`
39
37
 
40
38
# Exit if DEVICE is set and is not any of the wireless interfaces
41
39
if [ -n "$DEVICE" ]; then
72
70
    WPAS_OPTIONS="-P$PIDFILE $WPAS_OPTIONS"
73
71
fi
74
72
 
75
 
do_start(){
76
 
    mkdir -m u=rwx,go= -p "$CTRLDIR"
77
 
    "$wpa_supplicant" -B -g "$CTRL" -p "$CTRLDIR" $WPAS_OPTIONS
78
 
    for KEY in $ifkeys; do
79
 
        ADDRESS=`eval 'echo "$ADDRESS_'"$KEY"\"`
80
 
        INTERFACE=`addrtoif "$ADDRESS"`
81
 
        DRIVER=`eval 'echo "$WPA_DRIVER_'"$KEY"\"`
82
 
        IFDELAY=`eval 'echo "$DELAY_'"$KEY"\"`
83
 
        "$wpa_cli" -g "$CTRL" interface_add "$INTERFACE" "" \
84
 
            "${DRIVER:-wext}" "$CTRLDIR" > /dev/null \
85
 
            | sed -e '/^OK$/d'
86
 
        NETWORK=`"$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" add_network`
87
 
        eval wpa_interface_"$KEY"
88
 
        "$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" enable_network \
89
 
            "$NETWORK" | sed -e '/^OK$/d'
90
 
        sleep "${IFDELAY:-$DELAY}" &
91
 
        sleep=$!
92
 
        while :; do
93
 
            kill -0 $sleep 2>/dev/null || break
94
 
            STATE=`"$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" status \
95
 
                | sed -n -e 's/^wpa_state=//p'`
96
 
            if [ "$STATE" = COMPLETED ]; then
97
 
                while :; do
98
 
                    kill -0 $sleep 2>/dev/null || break 2
99
 
                    UP=`cat /sys/class/net/"$INTERFACE"/operstate`
100
 
                    if [ "$UP" = up ]; then
101
 
                        kill $sleep 2>/dev/null
102
 
                        break 2
103
 
                    fi
104
 
                    sleep 1
105
 
                done
106
 
            fi
107
 
            sleep 1
108
 
        done &
109
 
        wait $sleep || :
110
 
        IPADDRS=`eval 'echo "$IPADDRS_'"$KEY"\"`
111
 
        if [ -n "$IPADDRS" ]; then
112
 
            if [ "$IPADDRS" = dhcp ]; then
113
 
                ipconfig -c dhcp -d "$INTERFACE" || :
114
 
                #dhclient "$INTERFACE"
115
 
            else
116
 
                for ipaddr in $IPADDRS; do
117
 
                    "$ip" addr add "$ipaddr" dev "$INTERFACE"
118
 
                done
119
 
            fi
120
 
        fi
121
 
        ROUTES=`eval 'echo "$ROUTES_'"$KEY"\"`
122
 
        if [ -n "$ROUTES" ]; then
123
 
            for route in $ROUTES; do
124
 
                "$ip" route add "$route" dev "$BRIDGE"
125
 
            done
126
 
        fi
127
 
    done
128
 
}
129
 
 
130
 
do_stop(){
131
 
    "$wpa_cli" -g "$CTRL" terminate 2>&1 | sed -e '/^OK$/d'
132
 
    for KEY in $ifkeys; do
133
 
        ADDRESS=`eval 'echo "$ADDRESS_'"$KEY"\"`
134
 
        INTERFACE=`addrtoif "$ADDRESS"`
135
 
        "$ip" addr show scope global permanent dev "$INTERFACE" \
136
 
            | while read type addr rest; do
 
73
case "${MODE:-$1}" in
 
74
    start)
 
75
        mkdir -m u=rwx,go= -p "$CTRLDIR"
 
76
        "$wpa_supplicant" -B -g "$CTRL" -p "$CTRLDIR" $WPAS_OPTIONS
 
77
        for KEY in $ifkeys; do
 
78
            ADDRESS=`eval 'echo "$ADDRESS_'"$KEY"\"`
 
79
            INTERFACE=`addrtoif "$ADDRESS"`
 
80
            DRIVER=`eval 'echo "$WPA_DRIVER_'"$KEY"\"`
 
81
            IFDELAY=`eval 'echo "$DELAY_'"$KEY"\"`
 
82
            "$wpa_cli" -g "$CTRL" interface_add "$INTERFACE" "" \
 
83
                "${DRIVER:-wext}" "$CTRLDIR" > /dev/null \
 
84
                | sed -e '/^OK$/d'
 
85
            NETWORK=`"$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" \
 
86
                add_network`
 
87
            eval wpa_interface_"$KEY"
 
88
            "$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" enable_network \
 
89
                "$NETWORK" | sed -e '/^OK$/d'
 
90
            sleep "${IFDELAY:-$DELAY}" &
 
91
            sleep=$!
 
92
            while :; do
 
93
                kill -0 $sleep 2>/dev/null || break
 
94
                STATE=`"$wpa_cli" -p "$CTRLDIR" -i "$INTERFACE" \
 
95
                    status | sed -n -e 's/^wpa_state=//p'`
 
96
                if [ "$STATE" = COMPLETED ]; then
 
97
                    while :; do
 
98
                        kill -0 $sleep 2>/dev/null || break 2
 
99
                        UP=`cat /sys/class/net/"$INTERFACE"/operstate`
 
100
                        if [ "$UP" = up ]; then
 
101
                            kill $sleep 2>/dev/null
 
102
                            break 2
 
103
                        fi
 
104
                        sleep 1
 
105
                    done
 
106
                fi
 
107
                sleep 1
 
108
            done &
 
109
            wait $sleep || :
 
110
            IPADDRS=`eval 'echo "$IPADDRS_'"$KEY"\"`
 
111
            if [ -n "$IPADDRS" ]; then
 
112
                if [ "$IPADDRS" = dhcp ]; then
 
113
                    ipconfig -c dhcp -d "$INTERFACE" || :
 
114
                    #dhclient "$INTERFACE"
 
115
                else
 
116
                    for ipaddr in $IPADDRS; do
 
117
                        "$ip" addr add "$ipaddr" dev "$INTERFACE"
 
118
                    done
 
119
                fi
 
120
            fi
 
121
            ROUTES=`eval 'echo "$ROUTES_'"$KEY"\"`
 
122
            if [ -n "$ROUTES" ]; then
 
123
                for route in $ROUTES; do
 
124
                    "$ip" route add "$route" dev "$BRIDGE"
 
125
                done
 
126
            fi
 
127
        done
 
128
        ;;
 
129
    stop)
 
130
        "$wpa_cli" -g "$CTRL" terminate 2>&1 | sed -e '/^OK$/d'
 
131
        for KEY in $ifkeys; do
 
132
            ADDRESS=`eval 'echo "$ADDRESS_'"$KEY"\"`
 
133
            INTERFACE=`addrtoif "$ADDRESS"`
 
134
            "$ip" addr show scope global permanent dev "$INTERFACE" \
 
135
                | while read type addr rest; do
137
136
                case "$type" in
138
137
                    inet|inet6)
139
138
                        "$ip" addr del "$addr" dev "$INTERFACE"
140
139
                        ;;
141
140
                esac
142
141
            done
143
 
        "$ip" link set dev "$INTERFACE" down
144
 
    done
145
 
}
146
 
 
147
 
case "${MODE:-$1}" in
148
 
    start|stop)
149
 
        do_"${MODE:-$1}"
 
142
            "$ip" link set dev "$INTERFACE" down
 
143
        done
150
144
        ;;
151
145
    files)
152
146
        echo "$wpa_supplicant"