[people/stevee/network.git] / src / hooks / configs / ipv4-static

#!/bin/bash
###############################################################################
#                                                                             #
# IPFire.org - A linux based firewall                                         #
# Copyright (C) 2010  Michael Tremer & Christian Schmidt                      #
#                                                                             #
# This program is free software: you can redistribute it and/or modify        #
# it under the terms of the GNU General Public License as published by        #
# the Free Software Foundation, either version 3 of the License, or           #
# (at your option) any later version.                                         #
#                                                                             #
# This program is distributed in the hope that it will be useful,             #
# but WITHOUT ANY WARRANTY; without even the implied warranty of              #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the               #
# GNU General Public License for more details.                                #
#                                                                             #
# You should have received a copy of the GNU General Public License           #
# along with this program.  If not, see <http://www.gnu.org/licenses/>.       #
#                                                                             #
###############################################################################

. /usr/lib/network/header-config

HOOK_SETTINGS="HOOK ADDRESS PREFIX GATEWAY"

function hook_check() {
	assert isset ADDRESS
	assert isinteger PREFIX

	if [ ${PREFIX} -gt 30 ]; then
		error "PREFIX is greater than 30."
		exit ${EXIT_ERROR}
	fi
}

function hook_create() {
	local zone="${1}"
	assert isset zone
	shift

	while [ $# -gt 0 ]; do
		case "${1}" in
			--address=*)
				ADDRESS=${1#--address=}
				;;
			--netmask=*)
				NETMASK=${1#--netmask=}
				;;
			--prefix=*)
				PREFIX=${1#--prefix=}
				;;
			--gateway=*)
				GATEWAY=${1#--gateway=}
				;;
		esac
		shift
	done

	if [ -z "${PREFIX}" -a -n "${NETMASK}" ]; then
		PREFIX=$(ipv4_mask_to_cidr ${NETMASK})
	fi

	# XXX maybe we can add some hashing to identify a configuration again
	zone_config_settings_write "${zone}" "${HOOK}.$(uuid)" ${HOOK_SETTINGS}

	exit ${EXIT_OK}
}

function hook_up() {
	local zone=${1}
	local config=${2}
	shift 2

	if ! device_exists ${zone}; then
		error "Zone '${zone}' doesn't exist."
		exit ${EXIT_ERROR}
	fi

	zone_config_settings_read "${zone}" "${config}" ${HOOK_SETTINGS}

	ip_address_add ${zone} ${ADDRESS}/${PREFIX}

	# Save configuration
	routing_db_set ${zone} ipv4 type "${HOOK}"
	routing_db_set ${zone} ipv4 local-ip-address "${ADDRESS}/${PREFIX}"
	routing_db_set ${zone} ipv4 remote-ip-address "${GATEWAY}"
	routing_db_set ${zone} ipv4 active 1

	routing_update ${zone} ipv4
	routing_default_update

	exit ${EXIT_OK}
}

function hook_down() {
	local zone=${1}
	local config=${2}
	shift 2

	if ! device_exists ${zone}; then
		error "Zone '${zone}' doesn't exist."
		exit ${EXIT_ERROR}
	fi
	
	zone_config_settings_read "${zone}" "${config}" ${HOOK_SETTINGS}

	ip_address_del ${zone} ${ADDRESS}/${PREFIX}

	# Update routing tables.
	routing_default_update

	exit ${EXIT_OK}
}

function hook_status() {
	local zone=${1}
	local config=${2}
	shift 2

	if ! device_exists ${zone}; then
		error "Zone '${zone}' doesn't exist."
		exit ${EXIT_ERROR}
	fi

	zone_config_settings_read "${zone}" "${config}" ${HOOK_SETTINGS}

	local status
	if zone_has_ip ${zone} ${ADDRESS}/${PREFIX}; then
		status=${MSG_HOOK_UP}
	else
		status=${MSG_HOOK_DOWN}
	fi
	cli_statusline 3 "${HOOK}" "${status}"

	cli_print_fmt1 3 "IPv4 address" "${ADDRESS}/${PREFIX}"
	if [ -n "${GATEWAY}" ]; then
		cli_print_fmt1 3 "Gateway" "${GATEWAY}"
	fi
	cli_space

	exit ${EXIT_OK}
}

function ipv4_mask_to_cidr() {
	local mask=0

	local field
	for field in $(tr '.' ' ' <<<${1}); do
		mask=$(( $(( ${mask} << 8 )) | ${field} ))
	done

	local cidr=0
	local x=$(( 128 << 24 )) # 0x80000000

	while [ $(( ${x} & ${mask} )) -ne 0 ]; do
		[ ${mask} -eq ${x} ] && mask=0 || mask=$(( ${mask} << 1 ))
		cidr=$((${cidr} + 1))
	done

	if [ $(( ${mask} & 2147483647 )) -ne 0 ]; then # 2147483647 = 0x7fffffff
		echo "Invalid net mask: $1" >&2
	else
		echo ${cidr}
	fi
}
Commit	Line	Data
1848564d MT	1	#!/bin/bash
	2	###############################################################################
	3	# #
	4	# IPFire.org - A linux based firewall #
	5	# Copyright (C) 2010 Michael Tremer & Christian Schmidt #
	6	# #
	7	# This program is free software: you can redistribute it and/or modify #
	8	# it under the terms of the GNU General Public License as published by #
	9	# the Free Software Foundation, either version 3 of the License, or #
	10	# (at your option) any later version. #
	11	# #
	12	# This program is distributed in the hope that it will be useful, #
	13	# but WITHOUT ANY WARRANTY; without even the implied warranty of #
	14	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
	15	# GNU General Public License for more details. #
	16	# #
	17	# You should have received a copy of the GNU General Public License #
	18	# along with this program. If not, see <http://www.gnu.org/licenses/>. #
	19	# #
	20	###############################################################################
	21
f41fa3d7	22	. /usr/lib/network/header-config
1848564d MT	23
	24	HOOK_SETTINGS="HOOK ADDRESS PREFIX GATEWAY"
	25
2181765d	26	function hook_check() {
1848564d MT	27	assert isset ADDRESS
	28	assert isinteger PREFIX
	29
	30	if [ ${PREFIX} -gt 30 ]; then
	31	error "PREFIX is greater than 30."
	32	exit ${EXIT_ERROR}
	33	fi
	34	}
	35
2181765d	36	function hook_create() {
ea699552 MT	37	local zone="${1}"
ea699552 MT	38	assert isset zone
1848564d MT	39	shift
	40
	41	while [ $# -gt 0 ]; do
	42	case "${1}" in
	43	--address=*)
	44	ADDRESS=${1#--address=}
	45	;;
	46	--netmask=*)
	47	NETMASK=${1#--netmask=}
	48	;;
	49	--prefix=*)
	50	PREFIX=${1#--prefix=}
	51	;;
	52	--gateway=*)
	53	GATEWAY=${1#--gateway=}
	54	;;
	55	esac
	56	shift
	57	done
	58
	59	if [ -z "${PREFIX}" -a -n "${NETMASK}" ]; then
	60	PREFIX=$(ipv4_mask_to_cidr ${NETMASK})
	61	fi
	62
a5ebb169	63	# XXX maybe we can add some hashing to identify a configuration again
e9df08ad	64	zone_config_settings_write "${zone}" "${HOOK}.$(uuid)" ${HOOK_SETTINGS}
1848564d MT	65
	66	exit ${EXIT_OK}
	67	}
	68
2181765d	69	function hook_up() {
1848564d MT	70	local zone=${1}
	71	local config=${2}
	72	shift 2
	73
	74	if ! device_exists ${zone}; then
	75	error "Zone '${zone}' doesn't exist."
	76	exit ${EXIT_ERROR}
	77	fi
a5ebb169	78
e9df08ad	79	zone_config_settings_read "${zone}" "${config}" ${HOOK_SETTINGS}
1848564d	80
38f61548	81	ip_address_add ${zone} ${ADDRESS}/${PREFIX}
1848564d	82
b368da2f MT	83	# Save configuration
	84	routing_db_set ${zone} ipv4 type "${HOOK}"
	85	routing_db_set ${zone} ipv4 local-ip-address "${ADDRESS}/${PREFIX}"
	86	routing_db_set ${zone} ipv4 remote-ip-address "${GATEWAY}"
	87	routing_db_set ${zone} ipv4 active 1
	88
	89	routing_update ${zone} ipv4
2741ce55	90	routing_default_update
1848564d MT	91
	92	exit ${EXIT_OK}
	93	}
	94
2181765d	95	function hook_down() {
1848564d MT	96	local zone=${1}
	97	local config=${2}
	98	shift 2
	99
	100	if ! device_exists ${zone}; then
	101	error "Zone '${zone}' doesn't exist."
	102	exit ${EXIT_ERROR}
	103	fi
	104
e9df08ad	105	zone_config_settings_read "${zone}" "${config}" ${HOOK_SETTINGS}
1848564d	106
38f61548	107	ip_address_del ${zone} ${ADDRESS}/${PREFIX}
1848564d	108
2741ce55 MT	109	# Update routing tables.
	110	routing_default_update
	111
1848564d MT	112	exit ${EXIT_OK}
	113	}
	114
2181765d	115	function hook_status() {
ae1def39 MT	116	local zone=${1}
	117	local config=${2}
	118	shift 2
	119
	120	if ! device_exists ${zone}; then
	121	error "Zone '${zone}' doesn't exist."
	122	exit ${EXIT_ERROR}
	123	fi
e9df08ad MT	124
e9df08ad MT	125	zone_config_settings_read "${zone}" "${config}" ${HOOK_SETTINGS}
ae1def39	126
8e3508ac	127	local status
38f61548	128	if zone_has_ip ${zone} ${ADDRESS}/${PREFIX}; then
8e3508ac	129	status=${MSG_HOOK_UP}
ae1def39	130	else
8e3508ac	131	status=${MSG_HOOK_DOWN}
ae1def39	132	fi
8e3508ac	133	cli_statusline 3 "${HOOK}" "${status}"
ae1def39	134
8e3508ac	135	cli_print_fmt1 3 "IPv4 address" "${ADDRESS}/${PREFIX}"
ae1def39	136	if [ -n "${GATEWAY}" ]; then
8e3508ac	137	cli_print_fmt1 3 "Gateway" "${GATEWAY}"
ae1def39	138	fi
50250b79	139	cli_space
ae1def39 MT	140
	141	exit ${EXIT_OK}
	142	}
	143
1848564d MT	144	function ipv4_mask_to_cidr() {
	145	local mask=0
	146
	147	local field
	148	for field in $(tr '.' ' ' <<<${1}); do
	149	mask=$(( $(( ${mask} << 8 )) \| ${field} ))
	150	done
	151
	152	local cidr=0
	153	local x=$(( 128 << 24 )) # 0x80000000
	154
	155	while [ $(( ${x} & ${mask} )) -ne 0 ]; do
	156	[ ${mask} -eq ${x} ] && mask=0 \|\| mask=$(( ${mask} << 1 ))
	157	cidr=$((${cidr} + 1))
	158	done
	159
	160	if [ $(( ${mask} & 2147483647 )) -ne 0 ]; then # 2147483647 = 0x7fffffff
	161	echo "Invalid net mask: $1" >&2
	162	else
	163	echo ${cidr}
	164	fi
	165	}